Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

System restore [Closed]

Started by radiment040 , Aug 21 2013 01:55 AM

  • This topic is locked This topic is locked

#1
radiment040
Posted 21 August 2013 - 01:55 AM

radiment040

    New Member

  • Member
  • Pip
  • 5 posts
My computer has the system restore option, but I can't click on it. I'm wondering if it's because of malware or spyware. it's a compaq presario cq62, I'm trying to restore it to factory settings but I simply can't.


OTL logfile created on: 8/21/2013 3:29:32 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rose\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16660)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.41 Gb Available Physical Memory | 51.35% Memory free
5.49 Gb Paging File | 3.30 Gb Available in Paging File | 60.06% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 218.96 Gb Total Space | 122.79 Gb Free Space | 56.08% Space Free | Partition Type: NTFS
Drive D: | 13.63 Gb Total Space | 1.92 Gb Free Space | 14.09% Space Free | Partition Type: NTFS
Drive F: | 3.72 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: ROSE-PC | User Name: Rose | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/08/21 03:29:09 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Rose\Downloads\OTL.exe
PRC - [2013/07/23 19:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2013/07/23 03:53:52 | 001,104,384 | ---- | M] (Spotify Ltd) -- C:\Users\Rose\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2013/07/04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2013/07/01 01:46:26 | 004,411,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
PRC - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/09/28 15:42:08 | 000,298,376 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
PRC - [2012/09/28 15:19:16 | 007,392,648 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2011/07/01 15:28:01 | 000,064,048 | ---- | M] (Defender Pro) -- C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\pchooklaunch32.exe
PRC - [2011/03/30 15:44:58 | 001,324,008 | ---- | M] (Iminent) -- C:\Program Files (x86)\Iminent\IMBooster\IMBooster.exe
PRC - [2010/11/01 15:15:12 | 000,886,752 | -H-- | M] () -- C:\Program Files (x86)\SelectRebates\SelectRebates.exe
PRC - [2010/02/26 19:27:16 | 000,127,984 | ---- | M] (CinemaNow, Inc.) -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
PRC - [2009/07/13 21:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/07/13 21:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/07/13 21:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/07/13 21:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/07/13 21:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe


========== Modules (No Company Name) ==========

MOD - [2013/08/15 04:19:40 | 001,840,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\048017d94384988bfe84bcb2ca7ebf0f\System.Web.Services.ni.dll
MOD - [2013/08/15 04:17:56 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
MOD - [2013/08/15 04:17:33 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/08/15 04:16:47 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013/08/15 04:16:39 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll
MOD - [2013/08/15 04:16:36 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/08/15 04:16:23 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013/07/24 20:49:46 | 000,396,240 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\ppgooglenaclpluginchrome.dll
MOD - [2013/07/24 20:49:45 | 013,599,184 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
MOD - [2013/07/24 20:49:44 | 004,052,944 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\pdf.dll
MOD - [2013/07/24 20:48:54 | 000,601,552 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\libglesv2.dll
MOD - [2013/07/24 20:48:53 | 000,123,344 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\libegl.dll
MOD - [2013/07/24 20:48:51 | 001,597,392 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\ffmpegsumo.dll
MOD - [2011/09/27 07:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 07:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/03/30 15:45:06 | 000,236,520 | ---- | M] () -- C:\Program Files (x86)\Iminent\IMBooster\Iminent.Windows.dll
MOD - [2011/03/30 15:45:06 | 000,218,600 | ---- | M] () -- C:\Program Files (x86)\Iminent\IMBooster\Iminent.Workflow.dll
MOD - [2011/03/30 15:45:04 | 001,869,288 | ---- | M] () -- C:\Program Files (x86)\Iminent\IMBooster\Iminent.Services.dll
MOD - [2011/03/30 15:45:02 | 000,041,960 | ---- | M] () -- C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.TinyUrl.dll
MOD - [2011/03/30 15:45:00 | 000,337,896 | ---- | M] () -- C:\Program Files (x86)\Iminent\IMBooster\Iminent.Booster.UI.dll
MOD - [2010/11/01 15:15:12 | 000,886,752 | -H-- | M] () -- C:\Program Files (x86)\SelectRebates\SelectRebates.exe
MOD - [2010/02/22 14:19:10 | 007,745,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
MOD - [2010/02/22 14:19:08 | 002,121,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
MOD - [2010/02/22 14:19:08 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll


========== Services (SafeList) ==========

SRV:64bit: - [2011/07/01 15:24:54 | 000,052,200 | ---- | M] (Defender Pro) [Auto | Running] -- C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatesrv.exe -- (Updatesrv)
SRV:64bit: - [2011/07/01 15:24:28 | 000,467,248 | ---- | M] (Defender Pro) [On_Demand | Stopped] -- C:\Program Files\Common Files\Defender Pro\Defender Pro Arrakis Server\bin\arrakis3.exe -- (Update Server)
SRV:64bit: - [2011/07/01 15:24:14 | 002,534,952 | ---- | M] (Defender Pro) [Auto | Running] -- C:\Program Files\Defender Pro\Defender Pro 15-in-1\vsserv.exe -- (VSSERV)
SRV:64bit: - [2010/12/28 04:00:34 | 001,296,728 | ---- | M] (www.BitComet.com) [On_Demand | Stopped] -- C:\Program Files\BitComet\tools\BitCometService.exe -- (BITCOMET_HELPER_SERVICE)
SRV:64bit: - [2010/04/19 19:55:18 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService)
SRV:64bit: - [2010/03/10 23:29:46 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/02/05 13:50:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2010/01/27 17:01:04 | 000,102,968 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV:64bit: - [2010/01/12 18:44:24 | 000,019,968 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV:64bit: - [2009/03/27 22:10:16 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV - [2013/08/21 00:20:16 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/07/23 19:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2013/07/04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/09/28 15:19:16 | 007,392,648 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2012/09/27 11:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2010/10/22 13:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\Hp\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/26 19:27:16 | 000,127,984 | ---- | M] (CinemaNow, Inc.) [Auto | Running] -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe -- (CinemaNow Service)
SRV - [2010/01/04 14:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/07/20 01:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/07/20 01:50:56 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/07/20 01:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/07/20 01:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/07/10 01:32:38 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/07/01 01:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/04/04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2013/03/21 03:08:24 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2013/02/12 00:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/07/09 13:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/07/01 15:24:55 | 000,099,408 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV:64bit: - [2011/07/01 15:24:09 | 000,088,144 | ---- | M] (BitDefender) [Kernel | System | Running] -- c:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfndisf6.sys -- (bdfndisf)
DRV:64bit: - [2010/12/06 16:16:53 | 000,318,000 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/12/06 16:15:28 | 000,347,680 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 05:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/11 01:11:52 | 000,141,384 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdserd.sys -- (sscdserd)
DRV:64bit: - [2010/11/11 01:11:50 | 000,172,104 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdm.sys -- (sscdmdm)
DRV:64bit: - [2010/11/11 01:11:50 | 000,136,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdbus.sys -- (sscdbus)
DRV:64bit: - [2010/11/11 01:11:50 | 000,019,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV:64bit: - [2010/09/29 06:01:46 | 000,695,400 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RTL8192su.sys -- (RTL8192su)
DRV:64bit: - [2010/09/26 21:15:22 | 002,374,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/07/09 15:08:16 | 000,388,168 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\bdfsfltr.sys -- (bdfsfltr)
DRV:64bit: - [2010/06/28 12:55:44 | 001,040,976 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\avckf.sys -- (avckf)
DRV:64bit: - [2010/06/28 12:55:38 | 000,692,816 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\avc3.sys -- (avc3)
DRV:64bit: - [2010/05/13 16:52:08 | 000,162,896 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\bdfm.sys -- (BDFM)
DRV:64bit: - [2010/03/10 23:39:52 | 006,403,072 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/03/10 22:34:06 | 000,188,928 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/02/22 16:00:12 | 000,239,136 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/01/20 15:18:26 | 000,040,320 | ---- | M] (Belcarra Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btblan.sys -- (Leapfrog-USBLAN)
DRV:64bit: - [2010/01/19 19:32:40 | 000,103,944 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bdvedisk.sys -- (Bdvedisk)
DRV:64bit: - [2009/12/22 05:26:36 | 000,038,456 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009/11/01 19:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009/10/07 23:13:34 | 000,070,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/10/07 23:13:34 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/08/23 22:55:32 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009/07/21 18:03:34 | 001,208,320 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 17:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 17:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 17:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 16:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 16:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 16:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
IE - HKLM\..\URLSearchHook: {08a4f3d8-73a4-4212-b58c-2840ab3578ca} - No CLSID value found
IE - HKLM\..\URLSearchHook: {37153479-1976-43c3-a1ee-557513977b64} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{07BD871A-650C-459D-AE39-EE3E6C2567BA}: "URL" = http://www.ask.com/w...}&l=dis&o=uscql
IE - HKLM\..\SearchScopes\{0B4A10D1-FBD6-451d-BFDA-F03252B05984}: "URL" = http://slirsredirect...mrud=24-08-2011
IE - HKLM\..\SearchScopes\{28697264-E498-4BDE-BBBD-4854902B14C3}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{7931b63e-6ba3-4f38-9d55-5b518a03be02}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2559647

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.msn.com/
IE - HKCU\..\SearchScopes,DefaultScope = {ABD93EAF-D775-BC54-E63B-2804F22FD156}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{07BD871A-650C-459D-AE39-EE3E6C2567BA}: "URL" = http://www.ask.com/w...}&l=dis&o=uscql
IE - HKCU\..\SearchScopes\{0B4A10D1-FBD6-451d-BFDA-F03252B05984}: "URL" = http://slirsredirect...mrud=24-08-2011
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask...D3-F025C9587FDE
IE - HKCU\..\SearchScopes\{28697264-E498-4BDE-BBBD-4854902B14C3}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\{44816E91-C68A-2FF3-3D8F-8970062E5600}: "URL" = http://www.startnow....ion=6.1-x64-SP1
IE - HKCU\..\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}: "URL" = http://search.alot.c...q={searchTerms}
IE - HKCU\..\SearchScopes\{64A280A3-DAF0-48C5-AC01-8D2CEBB0B8A8}: "URL" = http://ws.infospace....r?_iceUrl=true user_id=%userid&tool_id=60231&qkw={searchTerms}
IE - HKCU\..\SearchScopes\{7931b63e-6ba3-4f38-9d55-5b518a03be02}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKCU\..\SearchScopes\{ABD93EAF-D775-BC54-E63B-2804F22FD156}: "URL" = http://search.startn...eferrer:source}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2559647
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AOL Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Coupons.com Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.aol.co...rud=29-06-2012"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.aol.com/?...usaolp00000013"
FF - prefs.js..extensions.enabledAddons: [email protected]:1.2
FF - prefs.js..extensions.enabledAddons: [email protected]:1.20.00
FF - prefs.js..extensions.enabledAddons: [email protected]:1.0.35
FF - prefs.js..extensions.enabledAddons: [email protected]:1.0
FF - prefs.js..extensions.enabledAddons: {c2f863cd-0429-48c7-bb54-db756a951760}:5.96.10.8300
FF - prefs.js..extensions.enabledAddons: {37153479-1976-43c3-a1ee-557513977b64}:3.14.1.0
FF - prefs.js..extensions.enabledAddons: [email protected]:1.2.0.18
FF - prefs.js..keyword.URL: "http://search.condui...rchSource=2&q="
FF - prefs.js..network.proxy.type: 0


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Chimpoo_3a.com/Plugin: C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\NP3aStub.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Rose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\PROGRAM FILES\DEFENDER PRO\DEFENDER PRO 15-IN-1\BDAPHFFEXT\ [2013/07/27 18:59:58 | 000,000,000 | ---D | M]
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\DEFENDER PRO\DEFENDER PRO 15-IN-1\BDTBEXT\ [2013/07/27 18:59:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/27 18:59:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdaphffext\ [2013/07/27 18:59:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\3affxtbr@Chimpoo_3a.com: C:\Program Files (x86)\Chimpoo_3a\bar\1.bin [2013/07/22 19:21:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/21 00:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/27 19:18:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/21 00:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/27 19:18:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/21 00:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/07/27 19:18:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdtbext\ [2013/07/27 18:59:59 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/27 18:59:33 | 000,000,000 | ---D | M]

[2011/05/02 15:58:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Extensions
[2013/07/29 02:54:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] (Quixley_v2b Community Toolbar) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{08a4f3d8-73a4-4212-b58c-2840ab3578ca}
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] (CompTool0234 Community Toolbar) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{37153479-1976-43c3-a1ee-557513977b64}
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] ("AOL Messaging Toolbar") -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760}
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
[2012/03/07 11:18:10 | 000,000,000 | ---D | M] (Coupon Alert) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\2pffxtbr@CouponAlert_2p.com
[2012/05/30 11:52:03 | 000,000,000 | ---D | M] (Chimpoo) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\3affxtbr@Chimpoo_3a.com
[2011/10/30 13:12:58 | 000,000,000 | ---D | M] (My Web Search) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2013/07/27 19:01:18 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2011/08/28 12:56:04 | 000,000,000 | ---D | M] (BetterLinks) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2013/07/29 02:54:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\staged-xpis
[2013/07/27 19:01:18 | 000,000,000 | ---D | M] (WindowShopper) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2013/07/27 19:01:18 | 000,000,000 | ---D | M] (ShopAtHome.com Intelligent Shopping Toolbar) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[1616/02/26 09:01:20 | 000,004,815 | ---- | M] () (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2012/07/19 19:59:00 | 000,553,706 | ---- | M] () (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{0dd5ab7a-9db5-0aa4-e914-7148cd6c0afc}.xpi
[2013/02/19 03:39:44 | 000,890,561 | ---- | M] () (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\staged-xpis\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\bitcomet_extension_signed.xpi
[2012/07/20 17:38:47 | 000,002,562 | ---- | M] () -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\searchplugins\aol-search.xml
[2011/07/07 10:17:58 | 000,000,925 | ---- | M] () -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\searchplugins\conduit.xml
[2011/11/12 14:23:55 | 000,009,987 | ---- | M] () -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\searchplugins\mywebsearch.xml
[2012/07/20 17:38:23 | 000,002,356 | ---- | M] () -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\searchplugins\startnow.xml
[2013/07/27 18:59:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/07/27 18:59:48 | 000,000,000 | ---D | M] (GameTap) -- C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]
[2013/07/27 18:59:48 | 000,000,000 | ---D | M] (Iminent WebBooster) -- C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]
[2012/04/21 00:03:32 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/01/12 04:58:30 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files (x86)\mozilla firefox\plugins\npBitCometAgent.dll
[2011/07/13 17:52:56 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll
[2011/07/13 17:52:58 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll
[2012/04/21 00:03:28 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/04/21 00:03:28 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: BitCometAgent (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U7 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.10 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Zylom Plugin (Enabled) = C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Rose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: HP Product Detection Plugin = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\aelbknmfcacjffmgnoaaonhgoghlmlkp\1.0.28.1_0\
CHR - Extension: YouTube = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Gmail = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (ALOT Toolbar Helper) - {14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} - C:\Program Files (x86)\alot\bin\BHO\alotBHO.dll (Vertro)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll ()
O2 - BHO: (ShopAtHome.com Toolbar) - {66516A07-F617-488A-90CF-4E690CFB3C5F} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O2 - BHO: (Window Shopper) - {74F475FA-6C75-43BD-AAB9-ECDA6184F600} - C:\Program Files (x86)\Superfish\Window Shopper\SuperfishIEAddon.dll (Superfish)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\IMBooster4Web\Iminent.WebBooster.dll (Iminent)
O2 - BHO: (SocialRibbons LP2) - {AE92E5DE-20F7-9934-D515-7BE13880A842} - C:\Program Files (x86)\SocialRibbons LP2\Toolbar.dll ()
O2 - BHO: (AOL Messaging Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
O2 - BHO: (DCA BHO) - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - C:\Program Files (x86)\Common Files\FreeCause\DCA\dca-bho.dll (Compete, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O2 - BHO: (ShopAtHomeIEHelper Class) - {E8DAAA30-6CAA-4b58-9603-8E54238219E2} - C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll (ShopAtHome.com)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Defender Pro Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\Defender Pro\Defender Pro 15-in-1\ietoolbar.dll (Defender Pro)
O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKLM\..\Toolbar: (no name) - {37153479-1976-43c3-a1ee-557513977b64} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Defender Pro Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\ietoolbar.dll (Defender Pro)
O3 - HKLM\..\Toolbar: (ALOT Toolbar) - {5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files (x86)\alot\bin\alot.dll (Vertro)
O3 - HKLM\..\Toolbar: (Chimpoo) - {5b010b98-98f5-4faf-bdc5-f24746d465ce} - C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\3abar.dll File not found
O3 - HKLM\..\Toolbar: (AOL Messaging Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {98279C38-DE4B-4bcf-93C9-8EC26069D6F4} - C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll (ShopAtHome.com)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Chimpoo) - {5B010B98-98F5-4FAF-BDC5-F24746D465CE} - C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\3abar.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (ShopAtHome.com Toolbar) - {98279C38-DE4B-4BCF-93C9-8EC26069D6F4} - C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll (ShopAtHome.com)
O4:64bit: - HKLM..\Run: [BDAgent] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdagent.exe (Defender Pro)
O4:64bit: - HKLM..\Run: [Defender Pro Antiphishing Helper] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ieshow.exe (Defender Pro)
O4:64bit: - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:64bit: - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe ()
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtkOSD] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Defender Pro Antiphishing Helper] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\ieshow.exe (Defender Pro)
O4 - HKLM..\Run: [IMBooster] C:\Program Files (x86)\Iminent\IMBooster\imbooster.exe (Iminent)
O4 - HKLM..\Run: [Monitor] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe (LeapFrog Enterprises, Inc.)
O4 - HKLM..\Run: [SelectRebates] C:\Program Files (x86)\SelectRebates\SelectRebates.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Spotify] C:\Users\Rose\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Rose\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - Startup: C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe (Leader Technologies)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1
O8:64bit: - Extra context menu item: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: Window Shopper - {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - C:\Program Files (x86)\Superfish\Window Shopper\SuperfishIEAddon.dll (Superfish)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: real.com ([rhap-app-4-0] https in Trusted sites)
O15 - HKCU\..Trusted Domains: real.com ([rhapreg] https in Trusted sites)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} http://archives.game...apWebPlayer.cab (GameTap Player)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AF5B3F3C-E2E4-445E-8C37-762358EE0D34}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{35fb6de0-dcca-11e1-81d7-c80aa997dc7a}\Shell - "" = AutoRun
O33 - MountPoints2\{35fb6de0-dcca-11e1-81d7-c80aa997dc7a}\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/08/20 00:58:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon
[2013/08/20 00:53:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
[2013/08/20 00:48:58 | 000,000,000 | ---D | C] -- C:\Nexon
[2013/08/20 00:48:54 | 000,000,000 | ---D | C] -- C:\ProgramData\NexonUS
[2013/08/20 00:14:15 | 1775,341,008 | ---- | C] (Nexon) -- C:\Users\Rose\Desktop\Combatarms_VER_US_1307.10.exe
[2013/08/20 00:09:41 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\runic games
[2013/08/19 23:56:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Runic Games
[2013/08/19 23:53:50 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\WinZip
[2013/08/19 23:53:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2013/08/19 23:53:00 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2013/08/19 23:52:59 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2013/08/16 03:15:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos
[2013/08/16 03:12:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Eidos
[2013/08/15 03:53:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MpEngineStore
[2013/08/15 03:11:51 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/08/12 14:19:40 | 000,000,000 | ---D | C] -- C:\Users\Rose\Documents\Warzone 2100 2.3
[2013/08/09 18:08:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2013/08/07 03:44:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
[2013/08/07 03:41:10 | 000,000,000 | ---D | C] -- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[2013/08/06 04:56:21 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\RSBot
[2013/08/06 04:55:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/08/06 04:46:45 | 000,466,456 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2013/08/06 04:46:45 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2013/08/06 04:46:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2013/08/06 04:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warzone 2100
[2013/08/06 04:46:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Warzone 2100
[2013/08/06 04:05:58 | 052,818,192 | ---- | C] (Warzone 2100 Project) -- C:\Users\Rose\Desktop\warzone2100-2.3.6.exe
[2013/08/01 02:23:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet (64-bit)
[2013/07/28 02:51:25 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\ImgBurn
[2013/07/28 02:47:10 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2013/07/28 02:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ImgBurn
[2013/07/28 01:44:50 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\Language
[2013/07/28 01:39:18 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\SLOT
[2013/07/26 05:56:30 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\IsolatedStorage
[2013/07/26 03:07:31 | 000,000,000 | R--D | C] -- C:\Users\Rose\Desktop\States
[2013/07/26 03:07:30 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\Cheats
[2013/07/26 03:07:30 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\Battery
[2013/07/26 03:07:15 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\Roms
[2013/07/23 21:39:34 | 000,000,000 | ---D | C] -- C:\Users\Rose\Documents\Mario Kart 64
[2013/07/23 21:29:44 | 000,000,000 | ---D | C] -- C:\Users\Rose\Documents\Add-in Express
[2013/07/23 04:10:18 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\AVG2013
[2013/07/23 04:09:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013/07/23 04:09:11 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\TuneUp Software
[2013/07/23 04:06:39 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013/07/23 04:06:39 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013
[2013/07/23 04:05:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2013/07/23 04:01:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013/07/23 04:01:31 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\MFAData
[2013/07/23 04:01:31 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013/07/23 04:01:31 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\Avg2013
[2013/07/23 03:53:58 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\Spotify
[2013/07/23 03:53:31 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\Spotify
[2013/07/23 03:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013/07/23 03:03:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2013/07/23 03:02:59 | 000,000,000 | ---D | C] -- C:\41aef70989dd6d0cd5e8
[2013/07/23 01:59:07 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
[2013/07/23 01:47:33 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2011/04/24 22:33:24 | 000,586,752 | -HS- | C] (Microsoft Corporation) -- C:\Users\Rose\AppData\Local\jfo.exe
[2 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/08/21 03:27:28 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/21 03:27:28 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/21 03:20:10 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/21 03:19:14 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/21 03:18:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/21 03:18:46 | 461,704,325 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/08/21 03:18:46 | 2210,578,432 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/21 03:14:51 | 000,003,120 | ---- | M] () -- C:\Windows\SysWow64\GWJRLE4Q.ocx
[2013/08/21 03:02:03 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-903994150-1397619272-3207344859-1000UA.job
[2013/08/21 03:02:02 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/21 02:00:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-903994150-1397619272-3207344859-1000Core.job
[2013/08/20 00:53:27 | 000,001,603 | ---- | M] () -- C:\Users\Public\Desktop\Combat Arms.lnk
[2013/08/20 00:33:21 | 1775,341,008 | ---- | M] (Nexon) -- C:\Users\Rose\Desktop\Combatarms_VER_US_1307.10.exe
[2013/08/19 23:53:24 | 000,002,277 | ---- | M] () -- C:\Users\Public\Desktop\WinZip.lnk
[2013/08/18 15:55:57 | 000,029,005 | ---- | M] () -- C:\Users\Rose\Desktop\stock-vector-heavy-metal-rock-and-roll-devil-horns-hand-sign-with-a-black-leather-studded-bracelet-56637382.jpg
[2013/08/18 02:15:58 | 000,066,601 | ---- | M] () -- C:\Users\Rose\Desktop\Alexis.jpg
[2013/08/17 02:31:39 | 000,003,120 | ---- | M] () -- C:\Windows\F6TDORFB.ocx
[2013/08/16 03:48:14 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForRose.job
[2013/08/16 03:18:28 | 000,043,520 | ---- | M] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2013/08/16 03:15:33 | 000,001,166 | ---- | M] () -- C:\Users\Rose\Desktop\Play Hitman Contracts.lnk
[2013/08/15 03:15:45 | 000,754,288 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/15 03:15:45 | 000,633,180 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/15 03:15:45 | 000,110,782 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/12 14:11:56 | 000,466,456 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2013/08/12 14:11:56 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2013/08/12 14:11:55 | 000,001,050 | ---- | M] () -- C:\Users\Public\Desktop\Warzone 2100.lnk
[2013/08/07 03:44:53 | 000,002,185 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2013/08/06 06:09:13 | 000,000,024 | ---- | M] () -- C:\Users\Rose\random.dat
[2013/08/06 04:56:38 | 000,000,043 | ---- | M] () -- C:\Users\Rose\jagex_cl_runescape_LIVE.dat
[2013/08/06 04:34:29 | 052,818,192 | ---- | M] (Warzone 2100 Project) -- C:\Users\Rose\Desktop\warzone2100-2.3.6.exe
[2013/08/01 02:24:01 | 000,000,812 | ---- | M] () -- C:\Users\Public\Desktop\BitComet.lnk
[2013/07/31 16:06:49 | 000,002,321 | ---- | M] () -- C:\Users\Rose\Desktop\Google Chrome.lnk
[2013/07/30 16:16:06 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2013/07/30 06:35:56 | 000,002,319 | ---- | M] () -- C:\Users\Rose\Desktop\vba.ini
[2013/07/30 06:35:55 | 000,000,512 | ---- | M] () -- C:\Users\Rose\Desktop\Grand Theft Auto Advance.sav
[2013/07/30 05:58:07 | 000,065,536 | ---- | M] () -- C:\Users\Rose\Desktop\Castlevania - Aria of Sorrow.sav
[2013/07/30 05:58:04 | 000,084,942 | ---- | M] () -- C:\Users\Rose\Desktop\Castlevania - Aria of Sorrow1.sgm
[2013/07/30 04:05:14 | 000,021,444 | ---- | M] () -- C:\Users\Rose\Desktop\994228_10152362934307524_1617810251_n.jpg
[2013/07/30 02:12:40 | 000,088,791 | ---- | M] () -- C:\Users\Rose\Desktop\Glory Days - Essence of a War1.sgm
[2013/07/29 04:43:07 | 000,065,536 | ---- | M] () -- C:\Users\Rose\Desktop\Castlevania - Harmony of Dissonance.sav
[2013/07/29 04:39:06 | 000,073,072 | ---- | M] () -- C:\Users\Rose\Desktop\Castlevania - Harmony of Dissonance1.sgm
[2013/07/29 03:02:54 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/07/28 03:07:22 | 000,000,129 | ---- | M] () -- C:\Windows\SysNative\MRT.INI
[2013/07/28 02:47:11 | 000,001,865 | ---- | M] () -- C:\Users\Rose\Desktop\ImgBurn.lnk
[2013/07/28 02:02:27 | 000,065,536 | ---- | M] () -- C:\Users\Rose\Desktop\Super Mario Advance 4 - Super Mario Bros. 3.sav
[2013/07/28 02:02:27 | 000,002,447 | ---- | M] () -- C:\Users\Rose\Desktop\BoycottAdvance.ini
[2013/07/28 01:47:14 | 000,001,518 | ---- | M] () -- C:\Users\Rose\Desktop\Software.ini
[2013/07/28 01:44:02 | 000,001,536 | ---- | M] () -- C:\Users\Rose\Desktop\NO$GBA.INP
[2013/07/26 16:20:36 | 000,065,068 | ---- | M] () -- C:\Users\Rose\Desktop\Grand Theft Auto Advance1.sgm
[2013/07/26 04:35:30 | 000,065,536 | ---- | M] () -- C:\Users\Rose\Desktop\Pokemon Emerald.sav
[2013/07/26 04:28:59 | 000,050,223 | ---- | M] () -- C:\Users\Rose\Desktop\Pokemon Emerald1.sgm
[2013/07/26 02:59:29 | 000,065,536 | ---- | M] () -- C:\Users\Rose\Desktop\Final Fantasy Tactics Advance.sav
[2013/07/26 02:11:03 | 000,008,192 | ---- | M] () -- C:\Users\Rose\Desktop\Super Mario Advance 3 - Yoshi's Island.sav
[2013/07/23 17:45:27 | 000,440,480 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/07/23 04:22:46 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/07/23 04:22:44 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/07/23 03:53:53 | 000,001,762 | ---- | M] () -- C:\Users\Rose\Desktop\Spotify.lnk
[2013/07/23 03:44:29 | 000,002,413 | ---- | M] () -- C:\Windows\SysWow64\lgAxconfig.ini
[2013/07/23 01:59:07 | 000,002,046 | ---- | M] () -- C:\Users\Rose\Desktop\RuneScape.lnk
[2013/07/23 01:55:50 | 006,623,588 | ---- | M] () -- C:\Users\Rose\Desktop\Castlevania - Aria of Sorrow.gba
[2013/07/23 01:54:50 | 004,194,304 | ---- | M] () -- C:\Users\Rose\Desktop\Glory Days - Essence of a War.gba
[2013/07/23 01:53:26 | 002,464,684 | ---- | M] () -- C:\Users\Rose\Desktop\Glory Days - Essence of a War.zip
[2013/07/23 01:52:16 | 001,974,352 | ---- | M] (None) -- C:\Users\Rose\Desktop\VisualBoyAdvance.exe
[2 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/08/20 00:53:27 | 000,001,603 | ---- | C] () -- C:\Users\Public\Desktop\Combat Arms.lnk
[2013/08/19 23:53:24 | 000,002,277 | ---- | C] () -- C:\Users\Public\Desktop\WinZip.lnk
[2013/08/18 15:55:56 | 000,029,005 | ---- | C] () -- C:\Users\Rose\Desktop\stock-vector-heavy-metal-rock-and-roll-devil-horns-hand-sign-with-a-black-leather-studded-bracelet-56637382.jpg
[2013/08/18 02:15:56 | 000,066,601 | ---- | C] () -- C:\Users\Rose\Desktop\Alexis.jpg
[2013/08/17 02:31:39 | 000,003,120 | ---- | C] () -- C:\Windows\F6TDORFB.ocx
[2013/08/16 03:18:28 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2013/08/16 03:15:33 | 000,001,166 | ---- | C] () -- C:\Users\Rose\Desktop\Play Hitman Contracts.lnk
[2013/08/07 03:48:42 | 000,000,328 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForRose.job
[2013/08/07 03:44:53 | 000,002,185 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2013/08/06 04:46:44 | 000,001,050 | ---- | C] () -- C:\Users\Public\Desktop\Warzone 2100.lnk
[2013/07/30 04:05:13 | 000,021,444 | ---- | C] () -- C:\Users\Rose\Desktop\994228_10152362934307524_1617810251_n.jpg
[2013/07/29 04:34:03 | 000,073,072 | ---- | C] () -- C:\Users\Rose\Desktop\Castlevania - Harmony of Dissonance1.sgm
[2013/07/29 04:25:54 | 000,065,536 | ---- | C] () -- C:\Users\Rose\Desktop\Castlevania - Harmony of Dissonance.sav
[2013/07/29 02:54:27 | 000,000,812 | ---- | C] () -- C:\Users\Public\Desktop\BitComet.lnk
[2013/07/28 02:47:11 | 000,001,865 | ---- | C] () -- C:\Users\Rose\Desktop\ImgBurn.lnk
[2013/07/28 02:47:10 | 000,001,895 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2013/07/28 02:02:27 | 000,002,447 | ---- | C] () -- C:\Users\Rose\Desktop\BoycottAdvance.ini
[2013/07/28 02:01:48 | 000,065,536 | ---- | C] () -- C:\Users\Rose\Desktop\Super Mario Advance 4 - Super Mario Bros. 3.sav
[2013/07/28 01:44:50 | 000,001,518 | ---- | C] () -- C:\Users\Rose\Desktop\Software.ini
[2013/07/28 01:42:42 | 000,001,536 | ---- | C] () -- C:\Users\Rose\Desktop\NO$GBA.INP
[2013/07/26 16:12:02 | 000,065,068 | ---- | C] () -- C:\Users\Rose\Desktop\Grand Theft Auto Advance1.sgm
[2013/07/26 04:35:30 | 000,065,536 | ---- | C] () -- C:\Users\Rose\Desktop\Pokemon Emerald.sav
[2013/07/26 04:22:59 | 000,050,223 | ---- | C] () -- C:\Users\Rose\Desktop\Pokemon Emerald1.sgm
[2013/07/26 02:59:29 | 000,065,536 | ---- | C] () -- C:\Users\Rose\Desktop\Final Fantasy Tactics Advance.sav
[2013/07/26 02:28:58 | 000,000,512 | ---- | C] () -- C:\Users\Rose\Desktop\Grand Theft Auto Advance.sav
[2013/07/26 02:07:40 | 000,008,192 | ---- | C] () -- C:\Users\Rose\Desktop\Super Mario Advance 3 - Yoshi's Island.sav
[2013/07/25 16:43:28 | 000,088,791 | ---- | C] () -- C:\Users\Rose\Desktop\Glory Days - Essence of a War1.sgm
[2013/07/23 04:22:46 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/07/23 04:22:44 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/07/23 04:09:12 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2013/07/23 03:53:53 | 000,001,762 | ---- | C] () -- C:\Users\Rose\Desktop\Spotify.lnk
[2013/07/23 03:53:53 | 000,001,748 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2013/07/23 02:06:20 | 000,084,942 | ---- | C] () -- C:\Users\Rose\Desktop\Castlevania - Aria of Sorrow1.sgm
[2013/07/23 01:59:07 | 000,002,076 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
[2013/07/23 01:59:06 | 000,002,046 | ---- | C] () -- C:\Users\Rose\Desktop\RuneScape.lnk
[2013/07/23 01:58:11 | 000,065,536 | ---- | C] () -- C:\Users\Rose\Desktop\Castlevania - Aria of Sorrow.sav
[2013/07/23 01:56:56 | 000,002,319 | ---- | C] () -- C:\Users\Rose\Desktop\vba.ini
[2013/07/23 01:53:24 | 002,464,684 | ---- | C] () -- C:\Users\Rose\Desktop\Glory Days - Essence of a War.zip
[2012/09/03 09:25:35 | 000,000,184 | -H-- | C] () -- C:\ProgramData\-blQtG85gJjPDzcr
[2012/09/03 09:25:34 | 000,000,168 | -H-- | C] () -- C:\ProgramData\-blQtG85gJjPDzc
[2012/09/03 09:25:24 | 000,000,368 | -H-- | C] () -- C:\ProgramData\blQtG85gJjPDzc
[2012/08/02 14:31:25 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\CommonDL.dll
[2012/08/02 14:31:25 | 000,002,413 | ---- | C] () -- C:\Windows\SysWow64\lgAxconfig.ini
[2011/11/24 18:36:52 | 000,000,043 | ---- | C] () -- C:\Users\Rose\jagex_cl_runescape_LIVE.dat
[2011/11/24 18:36:52 | 000,000,024 | ---- | C] () -- C:\Users\Rose\random.dat
[2011/07/01 15:08:00 | 000,060,523 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2011/04/24 22:33:38 | 000,011,274 | -HS- | C] () -- C:\Users\Rose\AppData\Local\7y6774w28t81a
[2011/04/24 22:33:38 | 000,011,274 | -HS- | C] () -- C:\ProgramData\7y6774w28t81a
[2011/03/01 13:37:10 | 000,001,854 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\GhostObjGAFix.xml
[2010/07/08 10:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-903994150-1397619272-3207344859-1000\$256fafff9b715c3c765fb7f1e8557917\n.

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/05/23 16:11:41 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\.minecraft
[2011/11/16 18:04:21 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\0816B
[2011/11/16 19:20:33 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\6B962
[2011/08/24 19:39:31 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\acccore
[2011/07/07 10:44:17 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\Amazon
[2013/07/27 19:01:17 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\AVG2013
[2013/08/20 00:34:18 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\BitComet
[2010/11/05 15:14:51 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\com.zoodles.3B7D4B2F97D0C2BDB13554D0687ECC70A3734EDD.1
[2013/07/27 19:01:17 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\Defender Pro
[2011/11/16 18:03:36 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\EpppmGG5aQJ6WKf
[2011/11/16 18:03:32 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\F777fRRL9gTXjYe
[2010/12/28 22:06:03 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\GetRightToGo
[2013/07/28 04:24:32 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\ImgBurn
[2011/11/16 19:20:33 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\kiibbD3ppn4aQ6s
[2011/11/16 19:05:43 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\kXwkUVelOtP
[2012/04/04 15:26:37 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\Leadertech
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\OpenCandy
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\Opera
[2011/11/16 18:03:33 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\PELLL8gTZqhYCk
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\PictureMover
[2011/07/01 15:13:06 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\QuickScan
[2011/11/16 18:03:35 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\RNNyyxAA1uS2oF
[2013/08/06 04:57:09 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\RSBot
[2013/08/20 00:09:41 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\runic games
[2011/11/16 19:05:43 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\s4amH5sWJdLgZh
[2013/08/21 03:20:08 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\Spotify
[2011/01/03 18:45:42 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\TeamViewer
[2013/07/23 04:09:11 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\TuneUp Software
[2012/09/04 13:36:32 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\Unity
[2010/11/10 21:19:44 | 000,000,000 | ---D | M] -- C:\Users\Rose\AppData\Roaming\WildTangent

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 150 bytes -> C:\ProgramData\Temp:260575F1
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:0AC32449

< End of report >
  • 0

Advertisements

#2
Jasmyne
Posted 21 August 2013 - 09:01 AM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
Hi! My name is Jasmyne and Welcome to Geeks to Go!

I'm sorry you are having issues with your computer but I will do my best to resolve them as quickly as possible. I know having an infected computer is frustrating because I was once where you are now!

Please be patient with me as I am currently in training, and all of my responses to you have to be reviewed by my instructor before I post them. Just keep in mind that you get the advantage as you have 2 people examining your issue.

  • You may want to print out these instructions, or copy them to a text file so that will have a copy in case you loose your connection to the internet during a removal process.
  • Please make sure to carefully read any instruction that I give you and in perform them in the order they are posted. If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask! Never be afraid to ask questions! :)
  • Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply. You can do this in separate posts if it's easier for you.
  • Please note that there is no "Quick & Easy Fix" to most malware infections and we may need to use several different tools to get your system clean.
  • Please stick with me until I tell you that your machine is clean. If you don't see any symptoms it does not mean your system is clear of malware
  • Please don't run any other scans or other software unless I ask you to, as it will make this repair more difficult.
  • Please reply within 3 days. Topics with no reply in 4 days are closed!

I am going over your log and submitting a fix to my instructors. I will post back to you as soon as possible. While I am doing so could you please look in C:\Users\Rose\Downloads for a file named Extras.txt and post it for me? :)

Jasmyne
  • 0

#3
Jasmyne
Posted 21 August 2013 - 12:43 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
There is quite a bit of malware on your system that could very well be causing System Restore to not work, I've posted several steps to begin removing the malware from your computer. If you have any questions please stop and ask.

Step 1 - Run TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    Posted Image
  • Put a checkmark beside loaded modules.

    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.

    Posted Image
  • Click the Start Scan button.

    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Posted Image

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Step 2 - Run AdwCleaner

Please download AdwCleaner by Xplode from here
  • Close all open windows and browsers
  • Double-click the icon or if using Windows Vista, 7 or 8 right click on the Adwcleaner icon and choose Run as Administrator to execute the program
    Posted Image
  • Click the Delete button and wait for the scan to finish.
  • Please copy/paste the generated log to your next reply. This report is also saved to C:\AdwCleaner[S1].txt

Step 3 - Run Junkware Removal Tool

Posted Image Please download Junkware Removal Tool by Thisisu from here and save it to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
    Posted Image
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Step 4 - New OTL Custom Scan

Please re-open OTL by double-clicking on the icon. If your computer is Windows Vista, 7 or 8, please right-click the icon and choose Run as administrator.
  • Please check the box next to Scan All Users.
  • Make sure Use SafeList is selected under Extra Registry.
  • Under the Custom Scans/Fixes box at the bottom, paste in the following:
    netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
dir C:\ /S /A:L /C
CREATERESTOREPOINT

    Posted Image
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan shouldn't take long.

    Posted Image
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy and paste the contents of these files, one at a time and post them in your next reply.

~~~~~~~~~~~~~~~~~~~~ Things Needed for Your Next Post ~~~~~~~~~~~~~~~~~~~~
  • TDSS Killer Log
  • AdwCleaner Log
  • Junkware Removal Tool Log
  • New OTL Log
  • Extras.txt

  • 0

#4
radiment040
Posted 22 August 2013 - 01:39 PM

radiment040

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
# AdwCleaner v3.000 - Report created 22/08/2013 at 15:35:41
# Updated 20/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Rose - ROSE-PC
# Running from : C:\Users\Rose\Downloads\adwcleaner (1).exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v11.0 (en-US)

[ File : C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\prefs.js ]

Line Found : user_pref("CT2559647..clientLogIsEnabled", true);
Line Found : user_pref("CT2559647..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2559647..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2559647.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2559647.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2559647.AppTrackingLastCheckTime", "Sun Jul 15 2012 03:00:35 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.CTID", "CT2559647");
Line Found : user_pref("CT2559647.CurrentServerDate", "21-7-2012");
Line Found : user_pref("CT2559647.DSChangedManually", false);
Line Found : user_pref("CT2559647.DSProtectChoice", true);
Line Found : user_pref("CT2559647.DSProtectCount", 2);
Line Found : user_pref("CT2559647.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2559647.DialogsGetterLastCheckTime", "Thu Jul 19 2012 19:52:10 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.DownloadReferralCookieData", "");
Line Found : user_pref("CT2559647.ExternalComponentPollDate129404749084494749", "Mon Feb 20 2012 17:57:24 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT2559647.ExternalComponentPollDate129404791544181654", "Mon Feb 20 2012 17:57:24 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT2559647.ExternalComponentPollDate129413165572169584", "Mon Feb 20 2012 17:57:24 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT2559647.FirstServerDate", "8-8-2011");
Line Found : user_pref("CT2559647.FirstTime", true);
Line Found : user_pref("CT2559647.FirstTimeFF3", true);
Line Found : user_pref("CT2559647.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2559647.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2559647.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2559647.HPProtectChoice", true);
Line Found : user_pref("CT2559647.HPProtectCount", 1);
Line Found : user_pref("CT2559647.HasUserGlobalKeys", true);
Line Found : user_pref("CT2559647.HomePageProtectorEnabled", false);
Line Found : user_pref("CT2559647.HomepageBeforeUnload", "hxxp://www.aol.com/?src=aim&ncid=snsusaimc00000001");
Line Found : user_pref("CT2559647.Initialize", true);
Line Found : user_pref("CT2559647.InitializeCommonPrefs", true);
Line Found : user_pref("CT2559647.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2559647.InstallationId", "CT2559647_Coupons.exe");
Line Found : user_pref("CT2559647.InstallationType", "ConduitIntegration");
Line Found : user_pref("CT2559647.InstalledDate", "Sun Aug 07 2011 21:15:30 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.IsAlertDBUpdated", true);
Line Found : user_pref("CT2559647.IsGrouping", false);
Line Found : user_pref("CT2559647.IsInitSetupIni", true);
Line Found : user_pref("CT2559647.IsMulticommunity", false);
Line Found : user_pref("CT2559647.IsOpenThankYouPage", false);
Line Found : user_pref("CT2559647.IsOpenUninstallPage", true);
Line Found : user_pref("CT2559647.IsProtectorsInit", true);
Line Found : user_pref("CT2559647.LanguagePackLastCheckTime", "Thu Jul 19 2012 19:52:06 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2559647.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2559647.LastLogin_3.10.0.1", "Fri Apr 20 2012 22:35:02 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.12.0.7", "Mon May 14 2012 17:03:55 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.12.2.3", "Wed Jun 20 2012 08:22:41 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.13.0.6", "Thu Jul 19 2012 19:52:06 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.14.1.0", "Fri Jul 20 2012 17:38:32 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.5.1.1", "Tue Aug 16 2011 17:59:24 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.6.0.10", "Thu Sep 22 2011 14:30:42 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LastLogin_3.7.0.6", "Tue Nov 08 2011 12:28:14 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT2559647.LastLogin_3.8.0.8", "Mon Dec 05 2011 14:27:00 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT2559647.LastLogin_3.8.1.0", "Wed Jan 11 2012 15:07:07 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT2559647.LastLogin_3.9.0.3", "Mon Apr 16 2012 01:21:21 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.LatestVersion", "3.14.1.0");
Line Found : user_pref("CT2559647.Locale", "en");
Line Found : user_pref("CT2559647.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2559647.MCDetectTooltipShow", false);
Line Found : user_pref("CT2559647.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2559647.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2559647.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT2559647.OriginalFirstVersion", "3.5.1.1");
Line Found : user_pref("CT2559647.SearchEngineBeforeUnload", "Coupons.com Customized Web Search");
Line Found : user_pref("CT2559647.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2559647.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2559647&SearchSource=2&q=");
Line Found : user_pref("CT2559647.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2559647.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2559647.SearchInNewTabLastCheckTime", "Thu Jul 19 2012 19:52:05 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2559647.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT2559647.SearchProtectorEnabled", false);
Line Found : user_pref("CT2559647.SearchProtectorToolbarDisabled", false);
Line Found : user_pref("CT2559647.ServiceMapLastCheckTime", "Thu Jul 19 2012 19:52:06 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.SettingsLastCheckTime", "Fri Jul 20 2012 17:38:30 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.SettingsLastUpdate", "1342344472");
Line Found : user_pref("CT2559647.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT2559647.ThirdPartyComponentsLastCheck", "Fri Jul 20 2012 17:38:29 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.ThirdPartyComponentsLastUpdate", "1331805997");
Line Found : user_pref("CT2559647.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2559647.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2559647");
Line Found : user_pref("CT2559647.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2559647.UserID", "UN05510555763241542");
Line Found : user_pref("CT2559647.ValidationData_Search", 1);
Line Found : user_pref("CT2559647.ValidationData_Toolbar", 2);
Line Found : user_pref("CT2559647.alertChannelId", "952537");
Line Found : user_pref("CT2559647.approveUntrustedApps", false);
Line Found : user_pref("CT2559647.backendstorage.for_aoi", "31333135333333333231");
Line Found : user_pref("CT2559647.backendstorage.for_ccid", "42756666616C6F");
Line Found : user_pref("CT2559647.backendstorage.for_cdtr", "31333135333333333231");
Line Found : user_pref("CT2559647.backendstorage.for_cdtr6", "31333135353834373136");
Line Found : user_pref("CT2559647.backendstorage.for_cid", "5553");
Line Found : user_pref("CT2559647.backendstorage.for_ip", "37362E3138302E33312E3339");
Line Found : user_pref("CT2559647.backendstorage.for_lcut", "31333432373431393335");
Line Found : user_pref("CT2559647.backendstorage.for_rid", "4E59");
Line Found : user_pref("CT2559647.backendstorage.for_zoneid", "3130323631");
Line Found : user_pref("CT2559647.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2559647.globalFirstTimeInfoLastCheckTime", "Sat Jul 14 2012 19:28:09 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2559647.initDone", true);
Line Found : user_pref("CT2559647.isAppTrackingManagerOn", true);
Line Found : user_pref("CT2559647.myStuffEnabled", true);
Line Found : user_pref("CT2559647.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2559647.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2559647.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2559647.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2559647.oldAppsList", "129126535051871363,129126535052027614,111,129732450647667807,1000034,1000080,1000082,1000234,1000515,1000,1001,1002,1003,1004,1005,1006,1007,1008,1009,1010,1011,101[...]
Line Found : user_pref("CT2559647.revertSettingsEnabled", false);
Line Found : user_pref("CT2559647.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2559647.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2559647.testingCtid", "");
Line Found : user_pref("CT2559647.toolbarAppMetaDataLastCheckTime", "Thu Jul 19 2012 19:52:06 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.toolbarContextMenuLastCheckTime", "Sat Jul 14 2012 19:28:09 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT2559647.usagesFlag", 2);
Line Found : user_pref("CT3001705..clientLogIsEnabled", true);
Line Found : user_pref("CT3001705..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT3001705..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT3001705.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT3001705.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT3001705.AppTrackingLastCheckTime", "Sun Aug 14 2011 15:51:46 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT3001705.BrowserCompStateIsOpen_2792312604390954664", true);
Line Found : user_pref("CT3001705.BrowserCompStateIsOpen_3158342308911660207", true);
Line Found : user_pref("CT3001705.CTID", "CT3001705");
Line Found : user_pref("CT3001705.CurrentServerDate", "4-2-2012");
Line Found : user_pref("CT3001705.DialogsAlignMode", "LTR");
Line Found : user_pref("CT3001705.DialogsGetterLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.DownloadReferralCookieData", "");
Line Found : user_pref("CT3001705.FirstServerDate", "15-7-2011");
Line Found : user_pref("CT3001705.FirstTime", true);
Line Found : user_pref("CT3001705.FirstTimeFF3", true);
Line Found : user_pref("CT3001705.FixPageNotFoundErrors", true);
Line Found : user_pref("CT3001705.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT3001705.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT3001705.HasUserGlobalKeys", true);
Line Found : user_pref("CT3001705.HomePageProtectorEnabled", false);
Line Found : user_pref("CT3001705.Initialize", true);
Line Found : user_pref("CT3001705.InitializeCommonPrefs", true);
Line Found : user_pref("CT3001705.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT3001705.InstallationId", "CT3001705_Quixely_v2b.exe");
Line Found : user_pref("CT3001705.InstallationType", "ConduitIntegration");
Line Found : user_pref("CT3001705.InstalledDate", "Thu Jul 14 2011 20:33:41 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT3001705.InvalidateCache", false);
Line Found : user_pref("CT3001705.IsAlertDBUpdated", true);
Line Found : user_pref("CT3001705.IsGrouping", false);
Line Found : user_pref("CT3001705.IsInitSetupIni", true);
Line Found : user_pref("CT3001705.IsMulticommunity", false);
Line Found : user_pref("CT3001705.IsOpenThankYouPage", false);
Line Found : user_pref("CT3001705.IsOpenUninstallPage", true);
Line Found : user_pref("CT3001705.IsProtectorsInit", true);
Line Found : user_pref("CT3001705.LanguagePackLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT3001705.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT3001705.LastLogin_3.5.0.12", "Sun Jul 31 2011 18:12:53 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT3001705.LastLogin_3.6.0.10", "Wed Oct 05 2011 14:22:28 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT3001705.LastLogin_3.7.0.6", "Wed Oct 12 2011 15:41:51 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CT3001705.LastLogin_3.8.0.8", "Mon Dec 05 2011 14:26:57 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.LastLogin_3.8.1.0", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.LatestVersion", "3.8.1.0");
Line Found : user_pref("CT3001705.Locale", "en");
Line Found : user_pref("CT3001705.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT3001705.MCDetectTooltipShow", false);
Line Found : user_pref("CT3001705.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT3001705.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT3001705.MyStuffEnabledAtInstallation", true);
Line Found : user_pref("CT3001705.OriginalFirstVersion", "3.5.0.12");
Line Found : user_pref("CT3001705.RadioIsPodcast", false);
Line Found : user_pref("CT3001705.RadioLastCheckTime", "Sat Feb 04 2012 15:34:04 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.RadioLastUpdateIPServer", "3");
Line Found : user_pref("CT3001705.RadioLastUpdateServer", "3");
Line Found : user_pref("CT3001705.RadioMediaID", "9962");
Line Found : user_pref("CT3001705.RadioMediaType", "Media Player");
Line Found : user_pref("CT3001705.RadioMenuSelectedID", "EBRadioMenu_CT30017059962");
Line Found : user_pref("CT3001705.RadioShrinkedFromSetup", false);
Line Found : user_pref("CT3001705.RadioStationName", "California%20Rock");
Line Found : user_pref("CT3001705.RadioStationURL", "hxxp://feedlive.net/california.asx");
Line Found : user_pref("CT3001705.SavedHomepage", "hxxp://www.msn.com/");
Line Found : user_pref("CT3001705.SearchEngineBeforeUnload", "Coupons.com Customized Web Search");
Line Found : user_pref("CT3001705.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT3001705.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3001705&SearchSource=2&q=");
Line Found : user_pref("CT3001705.SearchInNewTabEnabled", true);
Line Found : user_pref("CT3001705.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT3001705.SearchInNewTabLastCheckTime", "Sat Feb 04 2012 15:34:02 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT3001705.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
Line Found : user_pref("CT3001705.SearchProtectorEnabled", false);
Line Found : user_pref("CT3001705.SearchProtectorToolbarDisabled", false);
Line Found : user_pref("CT3001705.ServiceMapLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.SettingsLastCheckTime", "Sat Feb 04 2012 15:34:01 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.SettingsLastUpdate", "1326723880");
Line Found : user_pref("CT3001705.ThirdPartyComponentsInterval", 504);
Line Found : user_pref("CT3001705.ThirdPartyComponentsLastCheck", "Sat Feb 04 2012 15:34:01 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.ThirdPartyComponentsLastUpdate", "1312887586");
Line Found : user_pref("CT3001705.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT3001705.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3001705");
Line Found : user_pref("CT3001705.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT3001705.UserID", "UN63360138788657193");
Line Found : user_pref("CT3001705.ValidationData_Toolbar", 2);
Line Found : user_pref("CT3001705.WeatherNetwork", "");
Line Found : user_pref("CT3001705.WeatherPollDate", "Sat Feb 04 2012 15:34:06 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.WeatherUnit", "C");
Line Found : user_pref("CT3001705.alertChannelId", "1393439");
Line Found : user_pref("CT3001705.approveUntrustedApps", false);
Line Found : user_pref("CT3001705.backendstorage. appgroupon_dailyactivity", "31333135323432343436343033");
Line Found : user_pref("CT3001705.backendstorage. appgroupon_lifetimesent", "54525545");
Line Found : user_pref("CT3001705.backendstorage.for_aoi", "31333138363334323939");
Line Found : user_pref("CT3001705.backendstorage.for_ccid", "42756666616C6F");
Line Found : user_pref("CT3001705.backendstorage.for_cdtr6", "31333138363334323939");
Line Found : user_pref("CT3001705.backendstorage.for_cid", "5553");
Line Found : user_pref("CT3001705.backendstorage.for_ip", "37362E3138302E33312E3339");
Line Found : user_pref("CT3001705.backendstorage.for_lcut", "31333238333837363532");
Line Found : user_pref("CT3001705.backendstorage.for_rid", "4E59");
Line Found : user_pref("CT3001705.backendstorage.for_zoneid", "3130323631");
Line Found : user_pref("CT3001705.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT3001705.globalFirstTimeInfoLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT3001705.initDone", true);
Line Found : user_pref("CT3001705.isAppTrackingManagerOn", true);
Line Found : user_pref("CT3001705.isFirstRadioInstallation", false);
Line Found : user_pref("CT3001705.myStuffEnabled", true);
Line Found : user_pref("CT3001705.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT3001705.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT3001705.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT3001705.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT3001705.oldAppsList", "129489155740707141,129489155741019643,111,1000234,129489155742113395,129489155745550932,1000082,3158342308911660207,403580376888105107,2146413973793031750,279231260[...]
Line Found : user_pref("CT3001705.revertSettingsEnabled", false);
Line Found : user_pref("CT3001705.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT3001705.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT3001705.testingCtid", "");
Line Found : user_pref("CT3001705.toolbarAppMetaDataLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.toolbarContextMenuLastCheckTime", "Sat Jan 28 2012 15:05:25 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CT3001705.usagesFlag", 2);
Line Found : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3001705&SearchSource=13");
Line Found : user_pref("CommunityToolbar.ConduitSearchList", "Quixley_v2b Customized Web Search,Coupons.com Customized Web Search");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2559647/CT2559647", "\"571465401feb194159dea9cc0f37a8c82\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3001705/CT3001705", "\"9d0a937690d31313ebeae869657a8b881\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1393439/1389098/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/952537/948310/US", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2559647", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3001705", "\"1304441976\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=EB_LOCALE", "4pcdAq0MfLwSeKDCm3BGwA==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "G9mW7heT/8xIX1frcduu0A==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=EB_LOCALE", "vxk6t0OzPvFXpMAKGwRvzg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "2E1/v7EfCEDbv3VaBQMELg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=EB_LOCALE", "Dclc8oo4TTv7+mAkSlUSWg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "k9un27OkAvkwB2ZmvXxTnA==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=EB_LOCALE", "+XDG5SiBDeANgavdIqdCGg==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "FqddrIU7eyJgaaLyHDeVMQ==");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:14f1\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10.0.1", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"0d648794549cd1:1462\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"04afd94b864cd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.0.12", "\"8028f138140cc1:1070\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.1.1", "\"8028f138140cc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.0.10", "\"0ee90707f77cc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.0.6", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.0.8", "\"6a637346d78ccc1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"023d3d3f2c9cc1:12d2\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.9.0.3", "\"4ead38b3e6bcd1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2559647", "\"5a3bfb736bf65ca0cca630a3f0917948\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3001705", "\"13a760730d9291f1df061003ecf304ce\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2559647&octid=CT2559647", "\"1320220264\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT3001705&octid=CT3001705", "\"1322501127\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT3001705/CT3001705", "\"1311168845\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"634492029952000000\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"2292e5c1512a30b86b91a7e3313d799f\"");
Line Found : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Rose\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\ro24c7t8.default\\conduitCommon\\modules\\3.14.1.0");
Line Found : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.14.1.0");
Line Found : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT3001705,CT2559647");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT3001705,CT2559647");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT3001705,CT2559647");
Line Found : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
Line Found : user_pref("CommunityToolbar.globalUserId", "87514386-fb44-4c76-bc6e-8ce4760a6e77");
Line Found : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Found : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2559647");
Line Found : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon Jul 16 2012 20:25:43 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Line Found : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Thu Jul 19 2012 19:52:16 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.firstTimeAlertShown", true);
Line Found : user_pref("CommunityToolbar.notifications.locale", "en");
Line Found : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Line Found : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Thu Jul 19 2012 19:52:08 GMT-0400 (Eastern Daylight Time)");
Line Found : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Line Found : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Line Found : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Found : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Line Found : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Line Found : user_pref("CommunityToolbar.notifications.userId", "236c53a4-3aa2-47a9-a83b-c51b3aff0d0a");
Line Found : user_pref("aim_toolbar.default.search.url", "hxxp://search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aimright-chromesbox-en-us&tb_uuid=20110824233558247&tb_oid=25-08-2011&tb_mru[...]
Line Found : user_pref("aol_toolbar.surf.date", "8");
Line Found : user_pref("aol_toolbar.surf.lastDate", "20");
Line Found : user_pref("aol_toolbar.surf.lastMonth", "6");
Line Found : user_pref("aol_toolbar.surf.lastYear", "2012");
Line Found : user_pref("aol_toolbar.surf.month", "10");
Line Found : user_pref("aol_toolbar.surf.prevMonth", "1");
Line Found : user_pref("aol_toolbar.surf.total", "6789");
Line Found : user_pref("aol_toolbar.surf.week", "10");
Line Found : user_pref("aol_toolbar.surf.year", "280");
Line Found : user_pref("browser.search.defaultthis.engineName", "Coupons.com Customized Web Search");
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aimright-chromesbox-en-us&tb_uuid=20110824233558247&tb_oid=25-08-2011&tb_mrud=29-[...]
Line Found : user_pref("dom.ipc.plugins.enabled.npmywebs.dll", false);
Line Found : user_pref("extensions.enabledAddons", "[email protected]:1.2,[email protected]:1.20.00,[email protected]:1.0.35,[email protected]:1.0,{c2f863cd-0429-48c7-bb54-db756a951760}:5[...]
Line Found : user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"[email protected]\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\HP\\\\Digital Imaging\\\\Smart Web Printin[...]
Line Found : user_pref("[email protected]", true);
Line Found : user_pref("extensions.mywebsearch.openSearchURL", "hxxp://search.mywebsearch.com/mywebsearch/opensearch.jhtml?id=ZLxdm003X9US&ptb=b12fp2NHMDkXkw6o.7qrxg&ind=2011110917&ptnrS=ZLxdm003X9US&si=CMj2qqLLqq[...]
Line Found : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
Line Found : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZLxdm003X9US&ptb=b12fp2NHMDkXkw6o.7qrxg&ind=2011110917&ptnrS=ZLxdm003X9US&si=CMj2qqLLqqwCFQUKK[...]
Line Found : user_pref("extentions.y2layers.installId", "37dabe71-bc51-4f65-b09c-c80f7fa6c953");
Line Found : user_pref("extentions.y2layers.lastDnsTest", 371323);
Line Found : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2559647&SearchSource=2&q=");
Line Found : user_pref("sfLog.3:11:41 PM:971.1154-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?e[...]
Line Found : user_pref("sfLog.3:11:41 PM:972.1157-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:41 PM:974.1166-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:41 PM:974.1169-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=[...]
Line Found : user_pref("sfLog.3:11:41 PM:974.1170-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=c[...]
Line Found : user_pref("sfLog.3:11:41 PM:975.1171-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=comsearchaim50&q=saffari[...]
Line Found : user_pref("sfLog.3:11:41 PM:975.1172-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_term[...]
Line Found : user_pref("sfLog.3:11:41 PM:984.1201-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=comsearchaim50&q=saffari, funcOnLoad=undef[...]
Line Found : user_pref("sfLog.3:11:41 PM:985.1203-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=comsearchaim50&q=saffari", "wsEngine");
Line Found : user_pref("sfLog.3:11:41 PM:985.1204-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/aol/search?enabled_terms=&[...]
Line Found : user_pref("sfLog.3:11:42 PM:281.1222-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?e[...]
Line Found : user_pref("sfLog.3:11:42 PM:281.1225-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:42 PM:282.1234-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:42 PM:39.1207-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?en[...]
Line Found : user_pref("sfLog.3:11:42 PM:39.1210-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?e[...]
Line Found : user_pref("sfLog.3:11:42 PM:39.1219-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:42 PM:730.1237-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?e[...]
Line Found : user_pref("sfLog.3:11:42 PM:730.1240-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:42 PM:731.1249-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:43 PM:296.1252-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?e[...]
Line Found : user_pref("sfLog.3:11:43 PM:297.1255-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:43 PM:299.1264-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:43 PM:790.1267-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?e[...]
Line Found : user_pref("sfLog.3:11:43 PM:790.1270-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:43 PM:791.1279-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:45 PM:539.1282-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:45 PM:540.1285-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:45 PM:540.1294-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:45 PM:540.1297-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelli[...]
Line Found : user_pref("sfLog.3:11:45 PM:541.1298-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spellin[...]
Line Found : user_pref("sfLog.3:11:45 PM:541.1299-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", [...]
Line Found : user_pref("sfLog.3:11:45 PM:541.1300-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_i[...]
Line Found : user_pref("sfLog.3:11:45 PM:545.1329-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50, funcOnLoad=undefine[...]
Line Found : user_pref("sfLog.3:11:45 PM:546.1331-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", "wsEngine");
Line Found : user_pref("sfLog.3:11:45 PM:546.1332-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=s[...]
Line Found : user_pref("sfLog.3:11:45 PM:557.1335-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:45 PM:558.1338-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:45 PM:560.1347-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:45 PM:642.1350-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:45 PM:643.1353-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:45 PM:643.1362-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:45 PM:937.1365-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:45 PM:937.1368-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:45 PM:938.1377-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:46 PM:213.1380-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:46 PM:213.1383-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:46 PM:214.1392-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:46 PM:643.1395-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:46 PM:643.1398-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:46 PM:644.1407-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:47 PM:719.1410-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:47 PM:720.1413-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:47 PM:721.1422-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:11:48 PM:227.1425-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:11:48 PM:228.1428-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:11:48 PM:228.1437-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:03 PM:645.2003-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location=hxxp://search.aol.com/ao[...]
Line Found : user_pref("sfLog.3:12:30 PM:196.2147-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:30 PM:197.2150-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:30 PM:198.2159-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:30 PM:198.2162-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelli[...]
Line Found : user_pref("sfLog.3:12:30 PM:198.2163-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spellin[...]
Line Found : user_pref("sfLog.3:12:30 PM:198.2164-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", [...]
Line Found : user_pref("sfLog.3:12:30 PM:198.2165-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_i[...]
Line Found : user_pref("sfLog.3:12:30 PM:203.2194-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50, funcOnLoad=undefine[...]
Line Found : user_pref("sfLog.3:12:30 PM:204.2196-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", "wsEngine");
Line Found : user_pref("sfLog.3:12:30 PM:204.2197-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=s[...]
Line Found : user_pref("sfLog.3:12:31 PM:113.2200-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:31 PM:114.2203-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:31 PM:114.2212-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:31 PM:771.2215-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:31 PM:771.2218-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:31 PM:772.2227-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:32 PM:237.2230-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:32 PM:238.2233-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:32 PM:239.2242-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:35 PM:268.2245-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:35 PM:268.2248-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:35 PM:269.2257-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:35 PM:311.2260-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:35 PM:312.2263-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:35 PM:312.2272-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:49 PM:995.2396-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:49 PM:996.2399-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:49 PM:998.2408-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:49 PM:998.2411-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelli[...]
Line Found : user_pref("sfLog.3:12:49 PM:998.2412-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spellin[...]
Line Found : user_pref("sfLog.3:12:49 PM:998.2413-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", [...]
Line Found : user_pref("sfLog.3:12:49 PM:999.2414-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_i[...]
Line Found : user_pref("sfLog.3:12:50 PM:3.2443-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50, funcOnLoad=undefined"[...]
Line Found : user_pref("sfLog.3:12:50 PM:4.2445-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", "wsEngine");
Line Found : user_pref("sfLog.3:12:50 PM:4.2446-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spe[...]
Line Found : user_pref("sfLog.3:12:50 PM:440.2449-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:50 PM:440.2452-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:50 PM:441.2461-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:50 PM:697.2464-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:50 PM:697.2467-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:50 PM:698.2476-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.3:12:50 PM:890.2479-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?q[...]
Line Found : user_pref("sfLog.3:12:50 PM:890.2482-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://search.aol.com/aol/search?[...]
Line Found : user_pref("sfLog.3:12:50 PM:891.2491-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:40 PM:484.1159-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:06:40 PM:485.1162-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:06:40 PM:486.1174-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=991667250c919242[...]
Line Found : user_pref("sfLog.5:06:40 PM:486.1175-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=991667250c9192424[...]
Line Found : user_pref("sfLog.5:06:40 PM:486.1176-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=991667250c9192424c1d76d579ce6875&e=&s=c&[...]
Line Found : user_pref("sfLog.5:06:40 PM:486.1177-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=99166725[...]
Line Found : user_pref("sfLog.5:06:40 PM:492.1206-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://click.cheapstuff.com/r2.php?h=991667250c9192424c1d76d579ce6875&e=&s=c&ai=19353&dip=0a8bf[...]
Line Found : user_pref("sfLog.5:06:40 PM:493.1208-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=991667250c9192424c1d76d579ce6875&e=&s=c&ai=19353&dip=0a8bf6c2553[...]
Line Found : user_pref("sfLog.5:06:40 PM:493.1209-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://click.cheapstuff.com/r2.php?h=991667250c9[...]
Line Found : user_pref("sfLog.5:06:40 PM:514.1212-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:06:40 PM:514.1215-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:06:40 PM:727.1227-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:06:40 PM:727.1230-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:06:40 PM:786.1242-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:06:40 PM:786.1245-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:06:41 PM:361.1257-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location=hxxp://click.cheapstuff.[...]
Line Found : user_pref("sfLog.5:06:43 PM:683.1280-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:43 PM:683.1283-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:43 PM:684.1292-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:43 PM:684.1295-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=4[...]
Line Found : user_pref("sfLog.5:06:43 PM:684.1296-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41[...]
Line Found : user_pref("sfLog.5:06:43 PM:684.1297-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-a[...]
Line Found : user_pref("sfLog.5:06:43 PM:684.1298-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page[...]
Line Found : user_pref("sfLog.5:06:43 PM:689.1327-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-acd1cc1cf6f7-0-us_m[...]
Line Found : user_pref("sfLog.5:06:43 PM:690.1329-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-acd1cc1cf6f7-0-us_msb&kv=[...]
Line Found : user_pref("sfLog.5:06:43 PM:690.1330-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://www.ask.com/web?q=safari%20home%20page&as[...]
Line Found : user_pref("sfLog.5:06:43 PM:725.1333-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:43 PM:725.1336-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:43 PM:725.1345-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:44 PM:454.1363-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:44 PM:455.1366-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:44 PM:455.1375-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:44 PM:629.1378-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:44 PM:629.1381-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:44 PM:63.1348-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:06:44 PM:63.1351-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:44 PM:630.1390-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:44 PM:632.1393-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:44 PM:632.1396-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:44 PM:633.1405-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:44 PM:64.1360-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:44 PM:753.1408-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:44 PM:753.1411-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:44 PM:754.1420-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:45 PM:37.1423-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:06:45 PM:38.1426-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:45 PM:39.1435-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:45 PM:408.1453-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:45 PM:409.1456-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:45 PM:409.1465-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:45 PM:519.1468-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:45 PM:519.1471-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:45 PM:520.1480-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:45 PM:522.1483-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:45 PM:522.1486-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:45 PM:523.1495-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:45 PM:88.1438-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:06:45 PM:88.1441-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:45 PM:89.1450-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:197.1498-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:198.1501-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:201.1510-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:204.1513-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:205.1516-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:207.1525-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:258.1528-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:259.1531-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:261.1540-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:286.1543-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:286.1546-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:287.1555-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:317.1558-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:317.1561-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:318.1570-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:319.1573-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:319.1576-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:320.1585-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:321.1588-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:322.1591-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:323.1600-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:06:46 PM:348.1603-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:06:46 PM:348.1606-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:06:46 PM:349.1615-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:02 PM:21.1973-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:02 PM:21.1976-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:02 PM:23.1985-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:02 PM:23.1988-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41[...]
Line Found : user_pref("sfLog.5:07:02 PM:24.1989-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41b[...]
Line Found : user_pref("sfLog.5:07:02 PM:24.1990-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-ac[...]
Line Found : user_pref("sfLog.5:07:02 PM:24.1991-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&[...]
Line Found : user_pref("sfLog.5:07:02 PM:304.2026-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:02 PM:304.2029-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:02 PM:305.2038-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:02 PM:33.2020-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-acd1cc1cf6f7-0-us_ms[...]
Line Found : user_pref("sfLog.5:07:02 PM:34.2022-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-acd1cc1cf6f7-0-us_mse&kv=s[...]
Line Found : user_pref("sfLog.5:07:02 PM:34.2023-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://www.ask.com/web?q=safari%20home%20page&ask[...]
Line Found : user_pref("sfLog.5:07:02 PM:517.2041-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:02 PM:517.2044-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:02 PM:518.2053-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:02 PM:597.2056-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:02 PM:598.2059-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:02 PM:598.2068-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:02 PM:981.2071-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location=hxxp://www.ask.com/web?q[...]
Line Found : user_pref("sfLog.5:07:03 PM:584.2094-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:03 PM:585.2097-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:03 PM:587.2106-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:03 PM:894.2109-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:03 PM:895.2112-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:03 PM:897.2121-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:03 PM:899.2124-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:03 PM:899.2127-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:03 PM:901.2136-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:05 PM:138.2139-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:05 PM:138.2142-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:05 PM:139.2151-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:05 PM:147.2154-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:05 PM:147.2157-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:05 PM:147.2166-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:05 PM:160.2169-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:05 PM:160.2172-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:05 PM:161.2181-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:05 PM:168.2184-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:05 PM:169.2187-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:05 PM:169.2196-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:119.2199-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:120.2202-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:121.2211-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:124.2214-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:125.2217-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:126.2226-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:175.2229-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:175.2232-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:176.2241-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:218.2244-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:219.2247-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:219.2256-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:231.2259-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:231.2262-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:232.2271-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:257.2274-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:257.2277-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:258.2286-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:06 PM:277.2289-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:06 PM:277.2292-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:06 PM:278.2301-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:26 PM:861.2743-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:07:26 PM:861.2746-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:07:26 PM:862.2758-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b9ba78869[...]
Line Found : user_pref("sfLog.5:07:26 PM:862.2759-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b9ba78869a[...]
Line Found : user_pref("sfLog.5:07:26 PM:862.2760-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b9ba78869a52c4caafacac556&e=&s=c&[...]
Line Found : user_pref("sfLog.5:07:26 PM:863.2761-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b[...]
Line Found : user_pref("sfLog.5:07:26 PM:867.2790-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b9ba78869a52c4caafacac556&e=&s=c&ai=19353&dip=0a8bf[...]
Line Found : user_pref("sfLog.5:07:26 PM:868.2792-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b9ba78869a52c4caafacac556&e=&s=c&ai=19353&dip=0a8bf6c2553[...]
Line Found : user_pref("sfLog.5:07:26 PM:868.2793-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://click.cheapstuff.com/r2.php?h=da60c72b9ba[...]
Line Found : user_pref("sfLog.5:07:27 PM:109.2811-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:07:27 PM:109.2814-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:07:27 PM:258.2826-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:07:27 PM:258.2829-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.ph[...]
Line Found : user_pref("sfLog.5:07:27 PM:34.2796-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php?[...]
Line Found : user_pref("sfLog.5:07:27 PM:34.2799-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://click.cheapstuff.com/r2.php[...]
Line Found : user_pref("sfLog.5:07:27 PM:791.2841-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location=hxxp://click.cheapstuff.[...]
Line Found : user_pref("sfLog.5:07:28 PM:885.2864-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:28 PM:886.2867-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:28 PM:886.2876-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:28 PM:887.2879-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=4[...]
Line Found : user_pref("sfLog.5:07:28 PM:887.2880-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41[...]
Line Found : user_pref("sfLog.5:07:28 PM:887.2881-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-a[...]
Line Found : user_pref("sfLog.5:07:28 PM:887.2882-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page[...]
Line Found : user_pref("sfLog.5:07:28 PM:891.2911-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-acd1cc1cf6f7-0-us_m[...]
Line Found : user_pref("sfLog.5:07:28 PM:892.2913-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://www.ask.com/web?q=safari%20home%20page&askid=41bae1f7-26f5-42a2-b306-acd1cc1cf6f7-0-us_mse&kv=[...]
Line Found : user_pref("sfLog.5:07:28 PM:892.2914-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://www.ask.com/web?q=safari%20home%20page&as[...]
Line Found : user_pref("sfLog.5:07:28 PM:920.2917-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:28 PM:921.2920-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:28 PM:924.2929-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:29 PM:365.2932-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:29 PM:366.2935-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:29 PM:367.2944-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:29 PM:382.2947-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:29 PM:383.2950-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:29 PM:383.2959-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:29 PM:761.2962-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:29 PM:761.2965-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:29 PM:762.2974-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:30 PM:111.2977-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location=hxxp://www.ask.com/web?q[...]
Line Found : user_pref("sfLog.5:07:30 PM:382.3000-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:30 PM:383.3003-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:30 PM:383.3012-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:30 PM:787.3015-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:30 PM:787.3018-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:30 PM:788.3027-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:32 PM:157.3030-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:32 PM:158.3033-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:32 PM:160.3042-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:32 PM:163.3045-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:32 PM:163.3048-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:32 PM:165.3057-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:33 PM:388.3090-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:33 PM:389.3093-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:33 PM:389.3102-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:33 PM:74.3060-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:33 PM:74.3063-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:33 PM:75.3072-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:33 PM:90.3075-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:33 PM:90.3078-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:33 PM:91.3087-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:34 PM:1.3105-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20ho[...]
Line Found : user_pref("sfLog.5:07:34 PM:2.3108-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:34 PM:3.3117-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:34 PM:51.3120-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:34 PM:51.3123-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:34 PM:52.3132-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:35 PM:14.3135-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:35 PM:15.3138-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:35 PM:16.3147-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:36 PM:739.3150-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:36 PM:739.3153-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:36 PM:740.3162-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:36 PM:805.3165-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:36 PM:806.3168-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:36 PM:806.3177-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:37 PM:298.3180-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:37 PM:298.3183-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:37 PM:300.3192-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:37 PM:914.3198-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:37 PM:914.3201-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:37 PM:915.3210-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:38 PM:696.3213-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:38 PM:697.3216-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:38 PM:698.3225-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:38 PM:703.3228-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:38 PM:703.3231-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:38 PM:704.3240-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:39 PM:156.3243-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:39 PM:156.3246-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:39 PM:158.3255-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:39 PM:820.3258-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:39 PM:821.3261-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:39 PM:822.3270-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:40 PM:909.3273-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:40 PM:910.3276-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:40 PM:911.3285-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:41 PM:263.3288-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:41 PM:264.3291-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:41 PM:264.3300-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:41 PM:367.3303-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:41 PM:367.3306-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:41 PM:369.3315-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:41 PM:585.3318-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:41 PM:586.3321-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:41 PM:587.3330-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:41 PM:831.3333-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:41 PM:832.3336-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:41 PM:838.3345-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:42 PM:112.3363-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:42 PM:113.3366-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:42 PM:114.3375-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:42 PM:33.3348-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20h[...]
Line Found : user_pref("sfLog.5:07:42 PM:33.3351-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:42 PM:35.3360-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:46 PM:598.3378-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:46 PM:598.3381-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:46 PM:599.3390-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:46 PM:600.3393-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:46 PM:601.3396-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:46 PM:601.3405-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:46 PM:603.3408-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:46 PM:603.3411-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:46 PM:604.3420-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:46 PM:605.3423-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:46 PM:605.3426-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:46 PM:606.3435-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:46 PM:608.3438-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:46 PM:608.3441-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:46 PM:609.3450-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");
Line Found : user_pref("sfLog.5:07:46 PM:642.3453-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%20[...]
Line Found : user_pref("sfLog.5:07:46 PM:642.3456-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://www.ask.com/web?q=safari%2[...]
Line Found : user_pref("sfLog.5:07:46 PM:643.3465-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=www.ask.com", "wsEngine");

-\\ Google Chrome v

[ File : C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [145707 octets] - [22/08/2013 15:18:35]
AdwCleaner[R1].txt - [110756 octets] - [22/08/2013 15:35:41]
AdwCleaner[S0].txt - [86871 octets] - [22/08/2013 15:20:42]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [110879 octets] ##########
  • 0

#5
radiment040
Posted 22 August 2013 - 01:59 PM

radiment040

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.4 (08.22.2013:1)
OS: Windows 7 Home Premium x64
Ran by Rose on Thu 08/22/2013 at 15:41:22.06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\selectrebates



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\uniblue
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\features\482aa67ad25e6e74e9f48bd5fbe8533c
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\features\a28b4d68debaa244eb686953b7074fef
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\products\482aa67ad25e6e74e9f48bd5fbe8533c
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\products\a28b4d68debaa244eb686953b7074fef
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4623A8C4-150D-4983-8982-68C01E7D6541}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2559647
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3001705
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\3aSkPlay_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\3aSkPlay_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\3aSkPlay_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\3aSkPlay_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"



~~~ Files

Successfully deleted: [File] "C:\Program Files (x86)\mozilla firefox\plugins\npcouponprinter.dll"
Successfully deleted: [File] "C:\Program Files (x86)\mozilla firefox\plugins\npmozcouponprinter.dll"
Successfully deleted [File] C:\Windows\svchost.exe [Check for TDL4 Rootkit!]



~~~ Folders

Successfully deleted: [Folder] C:\Users\Rose\AppData\LocalLow\FCTB000100291
Successfully deleted: [Folder] "C:\Users\Rose\appdata\locallow\alot"
Successfully deleted: [Folder] "C:\Program Files (x86)\alot"
Successfully deleted: [Folder] "C:\Program Files (x86)\couponalert_2pei"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"
Successfully deleted: [Folder] "C:\Program Files (x86)\superfish"
Successfully deleted: [Folder] "C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}"



~~~ FireFox

Successfully deleted: [File] C:\Users\Rose\AppData\Roaming\mozilla\firefox\profiles\ro24c7t8.default\extensions\[email protected] [Tracur]
Successfully deleted: [Folder] C:\Users\Rose\AppData\Roaming\mozilla\firefox\profiles\ro24c7t8.default\extensions\[email protected]
Successfully deleted the following from C:\Users\Rose\AppData\Roaming\mozilla\firefox\profiles\ro24c7t8.default\prefs.js

user_pref("CT2559647..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
user_pref("CT2559647..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
user_pref("CT2559647.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
user_pref("CT2559647.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
user_pref("CT2559647.InstallationType", "ConduitIntegration");
user_pref("CT2559647.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
user_pref("CT2559647.SearchEngineBeforeUnload", "Coupons.com Customized Web Search");
user_pref("CT2559647.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2559647&SearchSource=2&q=");
user_pref("CT2559647.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
user_pref("CT2559647.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
user_pref("CT2559647.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2559647");
user_pref("CT2559647.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com
user_pref("CT2559647.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlP
user_pref("CT2559647.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
user_pref("CT2559647.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
user_pref("CT3001705..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
user_pref("CT3001705..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
user_pref("CT3001705.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
user_pref("CT3001705.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
user_pref("CT3001705.InstallationType", "ConduitIntegration");
user_pref("CT3001705.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
user_pref("CT3001705.SearchEngineBeforeUnload", "Coupons.com Customized Web Search");
user_pref("CT3001705.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3001705&SearchSource=2&q=");
user_pref("CT3001705.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
user_pref("CT3001705.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
user_pref("CT3001705.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3001705");
user_pref("CT3001705.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com
user_pref("CT3001705.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlP
user_pref("CT3001705.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
user_pref("CT3001705.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3001705&SearchSource=13");
user_pref("CommunityToolbar.ConduitSearchList", "Quixley_v2b Customized Web Search,Coupons.com Customized Web Search");
user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2559647/CT2559647", "\"571465401feb194159dea9cc0f37a8c82\"");
user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3001705/CT3001705", "\"9d0a937690d31313ebeae869657a8b881\"");
user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1393439/1389098/US", "\"0\"");
user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/952537/948310/US", "\"0\"");
user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2559647", "\"0\"");
user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3001705", "\"1304441976\"");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=EB_LOCALE", "4pcdAq0MfLwSeKDCm3BGwA==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "G9mW7heT/8xIX1frcduu0A==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=EB_LOCALE", "vxk6t0OzPvFXpMAKGwRvzg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "2E1/v7EfCEDbv3VaBQMELg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=EB_LOCALE", "Dclc8oo4TTv7+mAkSlUSWg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "k9un27OkAvkwB2ZmvXxTnA==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=EB_LOCALE", "+XDG5SiBDeANgavdIqdCGg==");
user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "FqddrIU7eyJgaaLyHDeVMQ==");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:14f1\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10.0.1", "\"4ead38b3e6bcd1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"0d648794549cd1:1462\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"04afd94b864cd1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.0.12", "\"8028f138140cc1:1070\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.1.1", "\"8028f138140cc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.0.10", "\"0ee90707f77cc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.0.6", "\"6a637346d78ccc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.0.8", "\"6a637346d78ccc1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"023d3d3f2c9cc1:12d2\"");
user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.9.0.3", "\"4ead38b3e6bcd1:0\"");
user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2559647", "\"5a3bfb736bf65ca0cca630a3f0917948\"");
user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3001705", "\"13a760730d9291f1df061003ecf304ce\"");
user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2559647&octid=CT2559647", "\"1320220264\"");
user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT3001705&octid=CT3001705", "\"1322501127\"");
user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT3001705/CT3001705", "\"1311168845\"");
user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"634492029952000000\"");
user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"2292e5c1512a30b86b91a7e3313d799f\"");
user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Rose\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\ro24c7t8.default\\conduitCommon\\modules\\3.14.1.0");
user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.14.1.0");
user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
user_pref("CommunityToolbar.ToolbarsList", "CT3001705,CT2559647");
user_pref("CommunityToolbar.ToolbarsList2", "CT3001705,CT2559647");
user_pref("CommunityToolbar.ToolbarsList4", "CT3001705,CT2559647");
user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Feb 04 2012 15:34:03 GMT-0500 (Eastern Standard Time)");
user_pref("CommunityToolbar.globalUserId", "87514386-fb44-4c76-bc6e-8ce4760a6e77");
user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2559647");
user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon Jul 16 2012 20:25:43 GMT-0400 (Eastern Daylight Time)");
user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Thu Jul 19 2012 19:52:16 GMT-0400 (Eastern Daylight Time)");
user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
user_pref("CommunityToolbar.notifications.firstTimeAlertShown", true);
user_pref("CommunityToolbar.notifications.locale", "en");
user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Thu Jul 19 2012 19:52:08 GMT-0400 (Eastern Daylight Time)");
user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
user_pref("CommunityToolbar.notifications.showTrayIcon", false);
user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
user_pref("CommunityToolbar.notifications.userId", "236c53a4-3aa2-47a9-a83b-c51b3aff0d0a");
user_pref("aim_toolbar.default.search.url", "hxxp://search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aimright-chromesbox-en-us&tb_uuid=20110824233558247
user_pref("aim_toolbar.search.searchtype", "web");
user_pref("browser.search.defaultthis.engineName", "Coupons.com Customized Web Search");
user_pref("browser.search.defaulturl", "hxxp://search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aimright-chromesbox-en-us&tb_uuid=20110824233558247&tb_o
user_pref("[email protected]", true);
user_pref("extensions.mywebsearch.openSearchURL", "hxxp://search.mywebsearch.com/mywebsearch/opensearch.jhtml?id=ZLxdm003X9US&ptb=b12fp2NHMDkXkw6o.7qrxg&ind=2011110917&ptnrS=Z
user_pref("extensions.mywebsearch.prevKwdEnabled", true);
user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZLxdm003X9US&ptb=b12fp2NHMDkXkw6o.7qrxg&ind=2011110917&ptnrS=ZLxdm003
user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2559647&SearchSource=2&q=");
user_pref("sfLog.3:11:41 PM:971.1154-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:41 PM:972.1157-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:41 PM:974.1166-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:41 PM:974.1169-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/se
user_pref("sfLog.3:11:41 PM:974.1170-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/sea
user_pref("sfLog.3:11:41 PM:975.1171-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it
user_pref("sfLog.3:11:41 PM:975.1172-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.co
user_pref("sfLog.3:11:41 PM:984.1201-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=comsearchaim50&q=
user_pref("sfLog.3:11:41 PM:985.1203-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?enabled_terms=&s_it=comsearchaim50&q=saffar
user_pref("sfLog.3:11:41 PM:985.1204-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/a
user_pref("sfLog.3:11:42 PM:281.1222-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:42 PM:281.1225-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:42 PM:282.1234-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:42 PM:39.1207-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://sea
user_pref("sfLog.3:11:42 PM:39.1210-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:42 PM:39.1219-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:42 PM:730.1237-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:42 PM:730.1240-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:42 PM:731.1249-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:43 PM:296.1252-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:43 PM:297.1255-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:43 PM:299.1264-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:43 PM:790.1267-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:43 PM:790.1270-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:43 PM:791.1279-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:45 PM:539.1282-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:45 PM:540.1285-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:45 PM:540.1294-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:45 PM:540.1297-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/se
user_pref("sfLog.3:11:45 PM:541.1298-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/sea
user_pref("sfLog.3:11:45 PM:541.1299-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spell
user_pref("sfLog.3:11:45 PM:541.1300-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.co
user_pref("sfLog.3:11:45 PM:545.1329-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearcha
user_pref("sfLog.3:11:45 PM:546.1331-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50",
user_pref("sfLog.3:11:45 PM:546.1332-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/a
user_pref("sfLog.3:11:45 PM:557.1335-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:45 PM:558.1338-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:45 PM:560.1347-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:45 PM:642.1350-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:45 PM:643.1353-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:45 PM:643.1362-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:45 PM:937.1365-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:45 PM:937.1368-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:45 PM:938.1377-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:46 PM:213.1380-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:46 PM:213.1383-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:46 PM:214.1392-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:46 PM:643.1395-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:46 PM:643.1398-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:46 PM:644.1407-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:47 PM:719.1410-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:47 PM:720.1413-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:47 PM:721.1422-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:11:48 PM:227.1425-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:11:48 PM:228.1428-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:11:48 PM:228.1437-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:03 PM:645.2003-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location
user_pref("sfLog.3:12:30 PM:196.2147-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:30 PM:197.2150-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:30 PM:198.2159-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:30 PM:198.2162-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/se
user_pref("sfLog.3:12:30 PM:198.2163-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/sea
user_pref("sfLog.3:12:30 PM:198.2164-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spell
user_pref("sfLog.3:12:30 PM:198.2165-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.co
user_pref("sfLog.3:12:30 PM:203.2194-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearcha
user_pref("sfLog.3:12:30 PM:204.2196-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50",
user_pref("sfLog.3:12:30 PM:204.2197-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/a
user_pref("sfLog.3:12:31 PM:113.2200-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:31 PM:114.2203-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:31 PM:114.2212-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:31 PM:771.2215-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:31 PM:771.2218-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:31 PM:772.2227-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:32 PM:237.2230-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:32 PM:238.2233-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:32 PM:239.2242-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:35 PM:268.2245-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:35 PM:268.2248-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:35 PM:269.2257-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:35 PM:311.2260-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:35 PM:312.2263-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:35 PM:312.2272-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:49 PM:995.2396-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:49 PM:996.2399-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:49 PM:998.2408-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:49 PM:998.2411-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://search.aol.com/aol/se
user_pref("sfLog.3:12:49 PM:998.2412-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://search.aol.com/aol/sea
user_pref("sfLog.3:12:49 PM:998.2413-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spell
user_pref("sfLog.3:12:49 PM:999.2414-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://search.aol.co
user_pref("sfLog.3:12:50 PM:3.2443-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim
user_pref("sfLog.3:12:50 PM:4.2445-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://search.aol.com/aol/search?q=safari&s_it=spelling&v_t=comsearchaim50", "
user_pref("sfLog.3:12:50 PM:4.2446-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://search.aol.com/aol
user_pref("sfLog.3:12:50 PM:440.2449-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:50 PM:440.2452-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:50 PM:441.2461-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:50 PM:697.2464-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:50 PM:697.2467-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:50 PM:698.2476-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.3:12:50 PM:890.2479-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://se
user_pref("sfLog.3:12:50 PM:890.2482-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://s
user_pref("sfLog.3:12:50 PM:891.2491-wsEngine:::onStateStopped 4 5 1 OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO aDomDocument.location.host=search.aol.com", "wsEngine");
user_pref("sfLog.5:06:59 PM:502.1890-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://cl
user_pref("sfLog.5:06:59 PM:503.1893-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://c
user_pref("sfLog.5:06:59 PM:505.1905-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://click.cheapstuff.com/
user_pref("sfLog.5:06:59 PM:505.1906-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://click.cheapstuff.com/r
user_pref("sfLog.5:06:59 PM:505.1907-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=c33f36db7bf6ed0
user_pref("sfLog.5:06:59 PM:506.1908-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://click.cheapst
user_pref("sfLog.5:06:59 PM:514.1937-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://click.cheapstuff.com/r2.php?h=c33f36db7bf6ed0f9406f3c51706bec1&
user_pref("sfLog.5:06:59 PM:515.1939-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=c33f36db7bf6ed0f9406f3c51706bec1&e=&s=c
user_pref("sfLog.5:06:59 PM:515.1940-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://click.cheapstuff
user_pref("sfLog.5:06:59 PM:664.1943-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://cl
user_pref("sfLog.5:06:59 PM:665.1946-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://c
user_pref("sfLog.5:06:59 PM:708.1958-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://cl
user_pref("sfLog.5:06:59 PM:708.1961-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://c
user_pref("sfLog.5:07:24 PM:686.2599-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://cl
user_pref("sfLog.5:07:24 PM:686.2602-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://c
user_pref("sfLog.5:07:24 PM:687.2614-wsEngine:::prepareAndInjectJs 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aDomDocument.location=hxxp://click.cheapstuff.com/
user_pref("sfLog.5:07:24 PM:687.2615-wsEngine:::prepareAndInjectJs TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTT aDomDocument.location=hxxp://click.cheapstuff.com/r
user_pref("sfLog.5:07:24 PM:687.2616-wsEngine:::prepareAndInjectJs b4 --------------------------inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=e1f427dc9fa8cda
user_pref("sfLog.5:07:24 PM:688.2617-wsEngine:::prepareAndInjectJs aUtils.isPluginStateEnabled() b4 1 --------------------------inj aDomDocument.location=hxxp://click.cheapst
user_pref("sfLog.5:07:24 PM:692.2646-wsEngine:::jsInject 2 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> doc.location=hxxp://click.cheapstuff.com/r2.php?h=e1f427dc9fa8cdac6736cea94c2bd7a6&
user_pref("sfLog.5:07:24 PM:693.2648-wsEngine:::prepareAndInjectJs after inj aDomDocument.location=hxxp://click.cheapstuff.com/r2.php?h=e1f427dc9fa8cdac6736cea94c2bd7a6&e=&s=c
user_pref("sfLog.5:07:24 PM:693.2649-wsEngine:::addSaveStatisticsWebPageEventListener ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ 1 doc.location=hxxp://click.cheapstuff
user_pref("sfLog.5:07:24 PM:988.2652-wsEngine:::onStateStopped 1 ))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://cl
user_pref("sfLog.5:07:24 PM:989.2655-wsEngine:::onStateStopped 1 3))))))))))))))))))))))))))))))))))))))))))))))))))))))) aWebProgress.DOMWindow.top.document.location=hxxp://c
user_pref("sfLog.5:07:25 PM:545.2667-wsEngine:::myExtension 8888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888888 location



~~~ Chrome

Dumping contents of C:\Users\Rose\appdata\local\Google\Chrome\User Data\Default\Default
C:\Users\Rose\appdata\local\Google\Chrome\User Data\Default\Default\aadcdfgcdcgfdcggdidjddgddedfggdh
C:\Users\Rose\appdata\local\Google\Chrome\User Data\Default\Default\aadcdfgcdcgfdcggdidjddgddedfggdh\background.js
C:\Users\Rose\appdata\local\Google\Chrome\User Data\Default\Default\aadcdfgcdcgfdcggdidjddgddedfggdh\ContentScript.js
C:\Users\Rose\appdata\local\Google\Chrome\User Data\Default\Default\aadcdfgcdcgfdcggdidjddgddedfggdh\manifest.json

Failed to delete: [Folder] C:\Users\Rose\appdata\local\Google\Chrome\User Data\Default\Default [Default Extension 1.0]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 08/22/2013 at 15:57:29.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#6
radiment040
Posted 22 August 2013 - 02:28 PM

radiment040

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
OTL logfile created on: 8/22/2013 4:04:51 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rose\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16660)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.17 Gb Available Physical Memory | 42.45% Memory free
5.49 Gb Paging File | 3.48 Gb Available in Paging File | 63.48% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 218.96 Gb Total Space | 122.59 Gb Free Space | 55.99% Space Free | Partition Type: NTFS
Drive D: | 13.63 Gb Total Space | 1.92 Gb Free Space | 14.08% Space Free | Partition Type: NTFS
Drive E: | 99.18 Mb Total Space | 91.54 Mb Free Space | 92.30% Space Free | Partition Type: FAT32
Drive F: | 3.72 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: ROSE-PC | User Name: Rose | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/08/22 16:03:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Rose\Downloads\OTL.exe
PRC - [2013/07/23 19:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2013/07/04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2013/07/01 01:46:26 | 004,411,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
PRC - [2012/09/28 15:19:16 | 007,392,648 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2011/07/01 15:28:01 | 000,064,048 | ---- | M] (Defender Pro) -- C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\pchooklaunch32.exe
PRC - [2010/02/26 19:27:16 | 000,127,984 | ---- | M] (CinemaNow, Inc.) -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe


========== Modules (No Company Name) ==========

MOD - [2013/08/15 23:21:41 | 000,410,576 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ppgooglenaclpluginchrome.dll
MOD - [2013/08/15 23:21:40 | 013,594,064 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll
MOD - [2013/08/15 23:21:39 | 004,053,456 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\pdf.dll
MOD - [2013/08/15 23:20:49 | 000,709,584 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libglesv2.dll
MOD - [2013/08/15 23:20:48 | 000,099,792 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libegl.dll
MOD - [2013/08/15 23:20:46 | 001,604,560 | ---- | M] () -- C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ffmpegsumo.dll
MOD - [1997/07/11 01:00:00 | 000,022,016 | ---- | M] () -- C:\Windows\SysWOW64\DOCOBJ.DLL


========== Services (SafeList) ==========

SRV:64bit: - [2011/07/01 15:24:54 | 000,052,200 | ---- | M] (Defender Pro) [Auto | Running] -- C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatesrv.exe -- (Updatesrv)
SRV:64bit: - [2011/07/01 15:24:28 | 000,467,248 | ---- | M] (Defender Pro) [On_Demand | Stopped] -- C:\Program Files\Common Files\Defender Pro\Defender Pro Arrakis Server\bin\arrakis3.exe -- (Update Server)
SRV:64bit: - [2011/07/01 15:24:14 | 002,534,952 | ---- | M] (Defender Pro) [Auto | Running] -- C:\Program Files\Defender Pro\Defender Pro 15-in-1\vsserv.exe -- (VSSERV)
SRV:64bit: - [2010/12/28 04:00:34 | 001,296,728 | ---- | M] (www.BitComet.com) [On_Demand | Stopped] -- C:\Program Files\BitComet\tools\BitCometService.exe -- (BITCOMET_HELPER_SERVICE)
SRV:64bit: - [2010/04/19 19:55:18 | 000,315,392 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe -- (RtVOsdService)
SRV:64bit: - [2010/03/10 23:29:46 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/02/05 13:50:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2010/01/27 17:01:04 | 000,102,968 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV:64bit: - [2010/01/12 18:44:24 | 000,019,968 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV:64bit: - [2009/03/27 22:10:16 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV - [2013/08/21 00:20:16 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/07/23 19:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2013/07/04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/09/28 15:19:16 | 007,392,648 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2012/09/27 11:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2010/10/22 13:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\Hp\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/26 19:27:16 | 000,127,984 | ---- | M] (CinemaNow, Inc.) [Auto | Running] -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe -- (CinemaNow Service)
SRV - [2010/01/04 14:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/07/20 01:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/07/20 01:50:56 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/07/20 01:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/07/20 01:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/07/10 01:32:38 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/07/01 01:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/03/21 03:08:24 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2013/02/12 00:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/07/09 13:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/07/01 15:24:55 | 000,099,408 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV:64bit: - [2011/07/01 15:24:09 | 000,088,144 | ---- | M] (BitDefender) [Kernel | System | Running] -- c:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfndisf6.sys -- (bdfndisf)
DRV:64bit: - [2010/12/06 16:16:53 | 000,318,000 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/12/06 16:15:28 | 000,347,680 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 05:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/11 01:11:52 | 000,141,384 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdserd.sys -- (sscdserd)
DRV:64bit: - [2010/11/11 01:11:50 | 000,172,104 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdm.sys -- (sscdmdm)
DRV:64bit: - [2010/11/11 01:11:50 | 000,136,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdbus.sys -- (sscdbus)
DRV:64bit: - [2010/11/11 01:11:50 | 000,019,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV:64bit: - [2010/09/29 06:01:46 | 000,695,400 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RTL8192su.sys -- (RTL8192su)
DRV:64bit: - [2010/09/26 21:15:22 | 002,374,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/07/09 15:08:16 | 000,388,168 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\bdfsfltr.sys -- (bdfsfltr)
DRV:64bit: - [2010/06/28 12:55:44 | 001,040,976 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\avckf.sys -- (avckf)
DRV:64bit: - [2010/06/28 12:55:38 | 000,692,816 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\avc3.sys -- (avc3)
DRV:64bit: - [2010/05/13 16:52:08 | 000,162,896 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\bdfm.sys -- (BDFM)
DRV:64bit: - [2010/03/10 23:39:52 | 006,403,072 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/03/10 22:34:06 | 000,188,928 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/02/22 16:00:12 | 000,239,136 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/01/20 15:18:26 | 000,040,320 | ---- | M] (Belcarra Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btblan.sys -- (Leapfrog-USBLAN)
DRV:64bit: - [2010/01/19 19:32:40 | 000,103,944 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bdvedisk.sys -- (Bdvedisk)
DRV:64bit: - [2009/12/22 05:26:36 | 000,038,456 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009/11/01 19:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009/10/07 23:13:34 | 000,070,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/10/07 23:13:34 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/08/23 22:55:32 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009/07/21 18:03:34 | 001,208,320 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 17:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 17:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 17:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 16:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 16:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 16:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.msn.com/
IE - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AOL Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.aol.com/?...usaolp00000013"
FF - prefs.js..extensions.enabledAddons: [email protected]:1.2
FF - prefs.js..extensions.enabledAddons: [email protected]:1.20.00
FF - prefs.js..extensions.enabledAddons: [email protected]:1.0.35
FF - prefs.js..extensions.enabledAddons: [email protected]:1.0
FF - prefs.js..extensions.enabledAddons: {c2f863cd-0429-48c7-bb54-db756a951760}:5.96.10.8300
FF - prefs.js..extensions.enabledAddons: {37153479-1976-43c3-a1ee-557513977b64}:3.14.1.0
FF - prefs.js..extensions.enabledAddons: [email protected]:1.2.0.18
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Chimpoo_3a.com/Plugin: C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\NP3aStub.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Rose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\PROGRAM FILES\DEFENDER PRO\DEFENDER PRO 15-IN-1\BDAPHFFEXT\ [2013/07/27 18:59:58 | 000,000,000 | ---D | M]
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\DEFENDER PRO\DEFENDER PRO 15-IN-1\BDTBEXT\ [2013/07/27 18:59:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/27 18:59:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdaphffext\ [2013/07/27 18:59:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\3affxtbr@Chimpoo_3a.com: C:\Program Files (x86)\Chimpoo_3a\bar\1.bin [2013/07/22 19:21:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/21 00:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/08/22 15:47:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/21 00:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/08/22 15:47:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/21 00:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/08/22 15:47:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdtbext\ [2013/07/27 18:59:59 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/27 18:59:33 | 000,000,000 | ---D | M]

[2011/05/02 15:58:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Extensions
[2013/08/22 15:55:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2013/07/27 19:01:19 | 000,000,000 | ---D | M] ("AOL Messaging Toolbar") -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760}
[2012/05/30 11:52:03 | 000,000,000 | ---D | M] (Chimpoo) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\3affxtbr@Chimpoo_3a.com
[2011/08/28 12:56:04 | 000,000,000 | ---D | M] (BetterLinks) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2013/07/29 02:54:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\staged-xpis
[2013/07/27 19:01:18 | 000,000,000 | ---D | M] (ShopAtHome.com Intelligent Shopping Toolbar) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2012/07/19 19:59:00 | 000,553,706 | ---- | M] () (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\{0dd5ab7a-9db5-0aa4-e914-7148cd6c0afc}.xpi
[2013/02/19 03:39:44 | 000,890,561 | ---- | M] () (No name found) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\staged-xpis\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\bitcomet_extension_signed.xpi
[2012/07/20 17:38:47 | 000,002,562 | ---- | M] () -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\searchplugins\aol-search.xml
[2012/07/20 17:38:23 | 000,002,356 | ---- | M] () -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\searchplugins\startnow.xml
[2013/08/22 15:21:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\{37153479-1976-43C3-A1EE-557513977B64}
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
[2012/04/21 00:03:32 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/01/12 04:58:30 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files (x86)\mozilla firefox\plugins\npBitCometAgent.dll
[2012/04/21 00:03:28 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/04/21 00:03:28 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: BitCometAgent (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U7 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.10 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Zylom Plugin (Enabled) = C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Rose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: HP Product Detection Plugin = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\aelbknmfcacjffmgnoaaonhgoghlmlkp\1.0.28.1_0\
CHR - Extension: YouTube = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Wallet Service = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_1\
CHR - Extension: Gmail = C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Defender Pro Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\Defender Pro\Defender Pro 15-in-1\ietoolbar.dll (Defender Pro)
O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKLM\..\Toolbar: (Defender Pro Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\ietoolbar.dll (Defender Pro)
O3 - HKLM\..\Toolbar: (Chimpoo) - {5b010b98-98f5-4faf-bdc5-f24746d465ce} - C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\3abar.dll File not found
O3 - HKLM\..\Toolbar: (AOL Messaging Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..\Toolbar\WebBrowser: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..\Toolbar\WebBrowser: (Chimpoo) - {5B010B98-98F5-4FAF-BDC5-F24746D465CE} - C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\3abar.dll File not found
O4:64bit: - HKLM..\Run: [BDAgent] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdagent.exe (Defender Pro)
O4:64bit: - HKLM..\Run: [Defender Pro Antiphishing Helper] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ieshow.exe (Defender Pro)
O4:64bit: - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:64bit: - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe ()
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtkOSD] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Defender Pro Antiphishing Helper] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\ieshow.exe (Defender Pro)
O4 - HKLM..\Run: [IMBooster] C:\Program Files (x86)\Iminent\IMBooster\imbooster.exe /warmup File not found
O4 - HKLM..\Run: [Monitor] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe (LeapFrog Enterprises, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000..\Run: [Spotify] C:\Users\Rose\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000..\Run: [Spotify Web Helper] C:\Users\Rose\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe (Leader Technologies)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1
O8:64bit: - Extra context menu item: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..Trusted Domains: real.com ([rhap-app-4-0] https in Trusted sites)
O15 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..Trusted Domains: real.com ([rhapreg] https in Trusted sites)
O15 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..Trusted Domains: sony.com ([]* in Trusted sites)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} http://archives.game...apWebPlayer.cab (GameTap Player)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AF5B3F3C-E2E4-445E-8C37-762358EE0D34}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{35fb6de0-dcca-11e1-81d7-c80aa997dc7a}\Shell - "" = AutoRun
O33 - MountPoints2\{35fb6de0-dcca-11e1-81d7-c80aa997dc7a}\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/08/22 15:41:16 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/08/22 15:18:08 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/08/22 15:09:08 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2013/08/22 02:17:10 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\SCE
[2013/08/22 02:15:39 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2013/08/21 16:43:15 | 000,000,000 | R--D | C] -- C:\Users\Rose\Desktop\New folder
[2013/08/20 00:58:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon
[2013/08/20 00:53:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
[2013/08/20 00:48:58 | 000,000,000 | ---D | C] -- C:\Nexon
[2013/08/20 00:48:54 | 000,000,000 | ---D | C] -- C:\ProgramData\NexonUS
[2013/08/20 00:14:15 | 1775,341,008 | ---- | C] (Nexon) -- C:\Users\Rose\Desktop\Combatarms_VER_US_1307.10.exe
[2013/08/20 00:09:41 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\runic games
[2013/08/19 23:56:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Runic Games
[2013/08/19 23:53:50 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\WinZip
[2013/08/19 23:53:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2013/08/19 23:53:00 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2013/08/19 23:52:59 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2013/08/16 03:15:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos
[2013/08/16 03:12:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Eidos
[2013/08/15 03:53:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MpEngineStore
[2013/08/15 03:24:57 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/08/15 03:24:56 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/08/15 03:24:55 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/08/15 03:24:54 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/08/15 03:24:54 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/08/15 03:24:54 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/08/15 03:24:54 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/08/15 03:24:54 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/08/15 03:24:54 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/08/15 03:24:54 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/08/15 03:24:54 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/08/15 03:24:51 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/08/15 03:24:50 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/08/15 03:24:50 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/08/15 03:24:48 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/08/15 03:11:51 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/08/15 01:51:14 | 001,472,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/08/15 01:51:13 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2013/08/15 01:51:12 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2013/08/15 01:50:47 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/08/15 01:50:47 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/08/15 01:50:46 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2013/08/12 14:19:40 | 000,000,000 | ---D | C] -- C:\Users\Rose\Documents\Warzone 2100 2.3
[2013/08/09 18:08:50 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2013/08/07 03:44:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
[2013/08/07 03:41:10 | 000,000,000 | ---D | C] -- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[2013/08/06 04:56:21 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\RSBot
[2013/08/06 04:55:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/08/06 04:55:28 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/08/06 04:55:16 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/08/06 04:55:16 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/08/06 04:55:16 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/08/06 04:46:45 | 000,466,456 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2013/08/06 04:46:45 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2013/08/06 04:46:45 | 000,122,904 | ---- | C] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2013/08/06 04:46:45 | 000,109,080 | ---- | C] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2013/08/06 04:46:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2013/08/06 04:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warzone 2100
[2013/08/06 04:46:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Warzone 2100
[2013/08/06 04:05:58 | 052,818,192 | ---- | C] (Warzone 2100 Project) -- C:\Users\Rose\Desktop\warzone2100-2.3.6.exe
[2013/08/01 02:23:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet (64-bit)
[2013/07/28 02:51:25 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\ImgBurn
[2013/07/28 02:47:10 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2013/07/28 02:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ImgBurn
[2013/07/28 01:39:18 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\SLOT
[2013/07/28 01:32:02 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/07/26 05:56:30 | 000,000,000 | ---D | C] -- C:\Users\Rose\AppData\Local\IsolatedStorage
[2013/07/26 03:07:31 | 000,000,000 | R--D | C] -- C:\Users\Rose\Desktop\States
[2013/07/26 03:07:15 | 000,000,000 | ---D | C] -- C:\Users\Rose\Desktop\Roms
[2013/07/23 21:39:34 | 000,000,000 | ---D | C] -- C:\Users\Rose\Documents\Mario Kart 64
[2013/07/23 21:29:44 | 000,000,000 | ---D | C] -- C:\Users\Rose\Documents\Add-in Express
[2011/04/24 22:33:24 | 000,586,752 | -HS- | C] (Microsoft Corporation) -- C:\Users\Rose\AppData\Local\jfo.exe
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/08/22 16:01:02 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/22 16:01:01 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-903994150-1397619272-3207344859-1000UA.job
[2013/08/22 15:20:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/22 15:18:58 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/22 15:18:58 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/22 15:15:08 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/22 15:11:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/22 15:11:17 | 2210,578,432 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/22 14:51:17 | 460,573,829 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/08/22 02:15:35 | 000,002,420 | ---- | M] () -- C:\Users\Rose\Desktop\EverQuest.lnk
[2013/08/22 02:00:01 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-903994150-1397619272-3207344859-1000Core.job
[2013/08/22 01:10:03 | 000,002,321 | ---- | M] () -- C:\Users\Rose\Desktop\Google Chrome.lnk
[2013/08/21 03:48:11 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForRose.job
[2013/08/21 03:14:51 | 000,003,120 | ---- | M] () -- C:\Windows\SysWow64\GWJRLE4Q.ocx
[2013/08/21 00:20:16 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/08/21 00:20:16 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/08/20 00:53:27 | 000,001,603 | ---- | M] () -- C:\Users\Public\Desktop\Combat Arms.lnk
[2013/08/20 00:33:21 | 1775,341,008 | ---- | M] (Nexon) -- C:\Users\Rose\Desktop\Combatarms_VER_US_1307.10.exe
[2013/08/17 02:31:39 | 000,003,120 | ---- | M] () -- C:\Windows\F6TDORFB.ocx
[2013/08/16 03:18:28 | 000,043,520 | ---- | M] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2013/08/15 03:15:45 | 000,754,288 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/15 03:15:45 | 000,633,180 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/15 03:15:45 | 000,110,782 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/12 14:11:56 | 000,466,456 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2013/08/12 14:11:56 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2013/08/12 14:11:56 | 000,122,904 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2013/08/12 14:11:56 | 000,109,080 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2013/08/06 06:09:13 | 000,000,024 | ---- | M] () -- C:\Users\Rose\random.dat
[2013/08/06 04:56:38 | 000,000,043 | ---- | M] () -- C:\Users\Rose\jagex_cl_runescape_LIVE.dat
[2013/08/06 04:55:04 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/08/06 04:55:03 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/08/06 04:55:03 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013/08/06 04:55:03 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/08/06 04:55:03 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/08/06 04:55:03 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/08/06 04:34:29 | 052,818,192 | ---- | M] (Warzone 2100 Project) -- C:\Users\Rose\Desktop\warzone2100-2.3.6.exe
[2013/07/28 03:07:22 | 000,000,129 | ---- | M] () -- C:\Windows\SysNative\MRT.INI
[2013/07/28 02:02:27 | 000,002,447 | ---- | M] () -- C:\Users\Rose\Desktop\BoycottAdvance.ini
[2013/07/26 01:13:58 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/07/26 01:12:27 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/07/26 01:12:08 | 003,958,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/07/26 01:12:08 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/07/26 01:12:04 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/07/26 01:12:04 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/07/26 01:12:03 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/07/26 01:12:03 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/07/25 23:12:04 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/07/25 23:12:00 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/07/25 23:12:00 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/07/25 23:12:00 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/07/25 23:11:59 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/07/25 22:39:38 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/07/25 21:59:38 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/07/25 05:25:54 | 001,888,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/07/25 04:57:27 | 001,620,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/07/23 17:45:27 | 000,440,480 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/08/22 02:15:35 | 000,002,450 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EverQuest.lnk
[2013/08/22 02:15:35 | 000,002,420 | ---- | C] () -- C:\Users\Rose\Desktop\EverQuest.lnk
[2013/08/21 03:14:51 | 000,003,120 | ---- | C] () -- C:\Windows\SysWow64\GWJRLE4Q.ocx
[2013/08/20 00:53:27 | 000,001,603 | ---- | C] () -- C:\Users\Public\Desktop\Combat Arms.lnk
[2013/08/17 02:31:39 | 000,003,120 | ---- | C] () -- C:\Windows\F6TDORFB.ocx
[2013/08/16 03:18:28 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2013/08/07 03:48:42 | 000,000,328 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForRose.job
[2013/07/28 02:47:10 | 000,001,895 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2013/07/28 02:02:27 | 000,002,447 | ---- | C] () -- C:\Users\Rose\Desktop\BoycottAdvance.ini
[2012/09/03 09:25:35 | 000,000,184 | -H-- | C] () -- C:\ProgramData\-blQtG85gJjPDzcr
[2012/09/03 09:25:34 | 000,000,168 | -H-- | C] () -- C:\ProgramData\-blQtG85gJjPDzc
[2012/09/03 09:25:24 | 000,000,368 | -H-- | C] () -- C:\ProgramData\blQtG85gJjPDzc
[2012/08/02 14:31:25 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\CommonDL.dll
[2012/08/02 14:31:25 | 000,002,413 | ---- | C] () -- C:\Windows\SysWow64\lgAxconfig.ini
[2011/11/24 18:36:52 | 000,000,043 | ---- | C] () -- C:\Users\Rose\jagex_cl_runescape_LIVE.dat
[2011/11/24 18:36:52 | 000,000,024 | ---- | C] () -- C:\Users\Rose\random.dat
[2011/07/01 15:08:00 | 000,060,523 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2011/04/24 22:33:38 | 000,011,274 | -HS- | C] () -- C:\Users\Rose\AppData\Local\7y6774w28t81a
[2011/04/24 22:33:38 | 000,011,274 | -HS- | C] () -- C:\ProgramData\7y6774w28t81a
[2011/03/01 13:37:10 | 000,001,854 | ---- | C] () -- C:\Users\Rose\AppData\Roaming\GhostObjGAFix.xml
[2010/07/08 10:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-903994150-1397619272-3207344859-1000\$256fafff9b715c3c765fb7f1e8557917\n.

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2009/07/13 21:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/02/27 01:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/13 21:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2010/11/20 09:27:23 | 000,849,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2010/11/20 09:25:45 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2011/11/17 02:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/13 21:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/13 21:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/04 18:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2013/07/09 01:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2013/07/09 00:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/20 09:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/20 09:26:04 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/20 08:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 02:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/13 21:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/13 21:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/13 21:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/13 21:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2010/11/20 09:26:39 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/13 21:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/13 21:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/13 21:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/13 21:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/13 21:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2010/11/20 09:27:22 | 000,303,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/13 21:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/24 07:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2010/11/20 09:25:21 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/17 02:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/13 21:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/20 09:27:24 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/20 09:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/20 09:27:25 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/17 02:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
No service found with a name of wscsvc
SRV:64bit: - [2010/11/20 09:27:26 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/20 09:27:25 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/20 08:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/20 09:27:25 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/20 09:27:26 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/20 08:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/13 21:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2010/11/20 09:27:23 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/20 09:25:27 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/20 09:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/20 09:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/20 09:27:25 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
No service found with a name of WinDefend
SRV:64bit: - [2010/11/20 09:27:28 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2010/11/20 09:26:59 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2010/11/20 09:27:28 | 000,580,096 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/20 09:24:58 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/20 08:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/13 21:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2012/06/02 18:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2010/11/20 09:26:07 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/13 21:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/20 09:27:28 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2010/03/30 04:47:34 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=00B0358734CAA32C39D181FE6916B178 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_b8b0208ee0ce1889\explorer.exe
[2011/02/26 02:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 01:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/13 21:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 01:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2010/03/30 04:48:42 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011/02/26 01:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 02:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 02:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 02:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 08:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2010/03/30 04:47:34 | 002,868,736 | ---- | M] (Microsoft Corporation) MD5=6D4F9E4B640B413C6F73414327484C80 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe
[2010/03/30 04:46:15 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011/02/25 01:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 01:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/03/30 04:48:42 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010/03/30 04:46:15 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 09:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2010/03/30 04:48:42 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2010/03/30 04:46:15 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/13 21:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2010/03/30 04:48:42 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2010/03/30 04:47:34 | 002,868,736 | ---- | M] (Microsoft Corporation) MD5=CA17F8620815267DC838E30B68CB5052 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe
[2011/02/26 02:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2010/03/30 04:46:15 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[2010/03/30 04:47:34 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=FC89FACA0473641CB625EDA9277D0885 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_b8335443c7a68f7c\explorer.exe

< MD5 for: SERVICES >
[2009/06/10 17:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.DAT >
[2013/08/21 23:53:10 | 000,002,425 | ---- | M] () MD5=5AE76488D9BA2DF5632DD015E33EC3D7 -- C:\Users\Rose\AppData\Local\Temp\jrt\services.dat

< MD5 for: SERVICES.EXE >
[2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2009/07/13 22:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2009/07/13 22:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/14 00:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\Rose\AppData\Local\Temp\smtmp\1\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOCHIADS.COM.SOL >
[2013/08/22 02:24:32 | 000,000,391 | ---- | M] () MD5=7DA8DC705AD3B3BF8289E2326339F7AB -- C:\Users\Rose\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HXSZ26MR\mochiads.com\services.mochiads.com.sol

< MD5 for: SERVICES.MOF >
[2009/06/10 16:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/10 16:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2009/07/13 22:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/10 16:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2009/07/13 22:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/10 17:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2009/07/13 22:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/10 16:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2009/07/13 22:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 17:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 16:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/13 16:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2009/07/13 21:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 21:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Users\Rose\Desktop\New folder\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/13 21:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 21:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 08:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 08:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/13 21:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/13 21:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010/11/20 09:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 09:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 09:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 09:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/13 21:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Users\Rose\Desktop\New folder\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010/03/30 04:48:42 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010/03/30 04:48:42 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< dir C:\ /S /A:L /C >
Volume in drive C has no label.
Volume Serial Number is 0816-B962
Directory of C:\
07/14/2009 01:08 AM <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\ProgramData]
07/14/2009 01:08 AM <JUNCTION> Desktop [C:\Users\Public\Desktop]
07/14/2009 01:08 AM <JUNCTION> Documents [C:\Users\Public\Documents]
07/14/2009 01:08 AM <JUNCTION> Favorites [C:\Users\Public\Favorites]
07/14/2009 01:08 AM <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
07/14/2009 01:08 AM <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
07/14/2009 01:08 AM <SYMLINKD> All Users [C:\ProgramData]
07/14/2009 01:08 AM <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\ProgramData]
07/14/2009 01:08 AM <JUNCTION> Desktop [C:\Users\Public\Desktop]
07/14/2009 01:08 AM <JUNCTION> Documents [C:\Users\Public\Documents]
07/14/2009 01:08 AM <JUNCTION> Favorites [C:\Users\Public\Favorites]
07/14/2009 01:08 AM <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
07/14/2009 01:08 AM <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
07/14/2009 01:08 AM <JUNCTION> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies]
07/14/2009 01:08 AM <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
07/14/2009 01:08 AM <JUNCTION> My Documents [C:\Users\Default\Documents]
07/14/2009 01:08 AM <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
07/14/2009 01:08 AM <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
07/14/2009 01:08 AM <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
07/14/2009 01:08 AM <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
07/14/2009 01:08 AM <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
07/14/2009 01:08 AM <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
07/14/2009 01:08 AM <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
07/14/2009 01:08 AM <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
07/14/2009 01:08 AM <JUNCTION> My Music [C:\Users\Default\Music]
07/14/2009 01:08 AM <JUNCTION> My Pictures [C:\Users\Default\Pictures]
07/14/2009 01:08 AM <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
07/14/2009 01:08 AM <JUNCTION> My Music [C:\Users\Public\Music]
07/14/2009 01:08 AM <JUNCTION> My Pictures [C:\Users\Public\Pictures]
07/14/2009 01:08 AM <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Rose
10/05/2010 02:53 PM <JUNCTION> Application Data [C:\Users\Rose\AppData\Roaming]
10/05/2010 02:53 PM <JUNCTION> Cookies [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Cookies]
10/05/2010 02:53 PM <JUNCTION> Local Settings [C:\Users\Rose\AppData\Local]
10/05/2010 02:53 PM <JUNCTION> My Documents [C:\Users\Rose\Documents]
10/05/2010 02:53 PM <JUNCTION> NetHood [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
10/05/2010 02:53 PM <JUNCTION> PrintHood [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
10/05/2010 02:53 PM <JUNCTION> Recent [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Recent]
10/05/2010 02:53 PM <JUNCTION> SendTo [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\SendTo]
10/05/2010 02:53 PM <JUNCTION> Start Menu [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu]
10/05/2010 02:53 PM <JUNCTION> Templates [C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Rose\AppData\Local
10/05/2010 02:53 PM <JUNCTION> Application Data [C:\Users\Rose\AppData\Local]
10/05/2010 02:53 PM <JUNCTION> History [C:\Users\Rose\AppData\Local\Microsoft\Windows\History]
10/05/2010 02:53 PM <JUNCTION> Temporary Internet Files [C:\Users\Rose\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Rose\Documents
10/05/2010 02:53 PM <JUNCTION> My Music [C:\Users\Rose\Music]
10/05/2010 02:53 PM <JUNCTION> My Pictures [C:\Users\Rose\Pictures]
10/05/2010 02:53 PM <JUNCTION> My Videos [C:\Users\Rose\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
50 Dir(s) 132,554,072,064 bytes free

========== Alternate Data Streams ==========

@Alternate Data Stream - 150 bytes -> C:\ProgramData\Temp:260575F1
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:0AC32449

< End of report >











OTL Extras logfile created on: 8/22/2013 4:04:51 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rose\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16660)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.17 Gb Available Physical Memory | 42.45% Memory free
5.49 Gb Paging File | 3.48 Gb Available in Paging File | 63.48% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 218.96 Gb Total Space | 122.59 Gb Free Space | 55.99% Space Free | Partition Type: NTFS
Drive D: | 13.63 Gb Total Space | 1.92 Gb Free Space | 14.08% Space Free | Partition Type: NTFS
Drive E: | 99.18 Mb Total Space | 91.54 Mb Free Space | 92.30% Space Free | Partition Type: FAT32
Drive F: | 3.72 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: ROSE-PC | User Name: Rose | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2B759EC6-9105-47BA-956A-D04D7F431DD8}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |
"{5133A02A-D1BE-4F4C-8A23-E65F5C0F36B7}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00F76425-1651-4076-83E3-B49B75FC2673}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{04E1746F-9371-4A20-9A72-644AE16B39CE}" = protocol=17 | dir=in | app=c:\nexon\combat arms\nmservice.exe |
"{06B1A2E0-376C-42A4-AA57-DEDF1D4E6319}" = dir=in | app=c:\program files (x86)\hewlett-packard\hp support framework\resources\hpwarrantycheck\hpdevicedetection3.exe |
"{07C34711-8BA7-4A18-939A-2692C9C7A8EE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{0BF5056B-88B5-49BE-852C-9542FD8099BE}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{108F6213-113B-48C1-8822-B7155FA5C25D}" = protocol=17 | dir=in | app=c:\users\rose\appdata\local\temp\rarsfx0\dpreg.exe |
"{1095236C-3F65-443E-91B7-CD1DC4E79904}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{1CFB2AF7-F4FA-4563-850E-23C929A1F7A0}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{20EA996A-2D49-44D5-9880-404FE654CDBD}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{22AE8A4A-83E8-495B-B397-07FCDA06F45C}" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
"{2354963B-25C4-46A2-BFAD-D2C8E6477C36}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{2602573B-17D9-43FE-83DC-ADC0B5CE4242}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
"{2B40CBB4-4FAB-4A0A-B22F-F525CF3DDFAE}" = protocol=6 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{2B500539-D3D1-4E0B-8B9C-AE1DB1D746BB}" = protocol=6 | dir=out | app=c:\program files (x86)\iminent\imbooster\imbooster.exe |
"{32797F6A-24C7-4D7A-B257-88D1B358AB0D}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{34917218-8DB0-43D1-A538-2BB0F03536D1}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{3544FCE1-1120-4FFE-8FE9-F83A9318F4B9}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{3A87F08F-8AB8-4417-A649-F40BB24E871A}" = protocol=6 | dir=in | app=c:\program files (x86)\socialribbons lp2\troubleshooter.exe |
"{3CE978B4-C5DE-451A-80E2-0273959330E6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{3DCB2CC6-A189-4667-8172-57511F907F48}" = protocol=6 | dir=in | app=c:\users\rose\appdata\local\temp\7zs4653.tmp\symnrt.exe |
"{41E80409-2533-43CF-8E3C-D1D46633E69B}" = protocol=6 | dir=in | app=c:\program files (x86)\cinemanow\cinemanow media manager\cinemanowshell.exe |
"{435ACB26-3A7A-4123-ABCA-7567AA4E4ADC}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{43F8C04F-3623-4A44-9BCB-559A0A3B7C18}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{4B75E5F2-F1B4-4FD7-A981-6E02949919EB}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd9.exe |
"{4C4B7C05-B151-4342-866B-43216703BF32}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{4D50733C-4B4E-4F77-8858-990DEE25A316}" = protocol=6 | dir=in | app=c:\programdata\nexonus\ngm\ngm.exe |
"{53700D4A-54C6-4BA7-8C3C-48426918B1AE}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{575565CA-23F0-4BA0-A26E-0FF28E791972}" = protocol=6 | dir=in | app=c:\program files (x86)\hewlett-packard\mediasmart\cinemanow\cinemanow.exe |
"{5A951962-367F-43C4-A863-229D70840F41}" = protocol=17 | dir=in | app=c:\program files (x86)\cinemanow\cinemanow media manager\cinemanowshell.exe |
"{619AAFBC-0CA2-413F-9442-C6471984940F}" = protocol=6 | dir=in | app=c:\program files (x86)\iminent\mmserver\iminent.mmserver.exe |
"{61ADA2E6-F5D7-4CCA-A7D5-20064C21FC90}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"{62050464-B73A-44A7-989C-8A9131E93850}" = protocol=17 | dir=in | app=c:\programdata\nexonus\ngm\ngm.exe |
"{64F794CC-2848-4112-A294-F8783AF6114B}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{68AEE0D0-6B83-44AA-AE8A-7ABA9E6711E6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{6CC4346B-BD71-4DB5-A41A-22D286A7722E}" = protocol=6 | dir=out | app=c:\program files (x86)\iminent\mmserver\iminent.mmserver.exe |
"{6E990394-F8F3-4BB7-8B98-9AA0B4BF505D}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{7A06ED14-CB28-4214-8407-E59E1F48F4A0}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{7E030898-4212-4B5C-BB7F-1F4658CB53DB}" = protocol=6 | dir=in | app=c:\users\rose\appdata\local\microsoft\windows\temporary internet files\content.ie5\3jlrlyda\facemoods.exe |
"{7E2703BD-6E58-4D7B-9580-850C0F77B1FB}" = protocol=17 | dir=in | app=c:\program files (x86)\hewlett-packard\mediasmart\cinemanow\cinemanow.exe |
"{7EB50A7D-7405-4DF7-A7C7-F75C0E6A3DEC}" = protocol=17 | dir=in | app=c:\users\rose\appdata\local\microsoft\windows\temporary internet files\content.ie5\3jlrlyda\facemoods.exe |
"{7F5C2E1A-1D0E-45E5-88A9-31513B98EDBE}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{8686EF1C-E268-4B7F-B450-1C6F11530E5C}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{884D16CE-5C01-4D13-BE23-1D3836CC6AA2}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{9202AA62-0A31-4601-80AF-C827220E37FC}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{921D5313-EB9E-49DB-93BF-AC1403582CB2}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{9E4954D7-5229-4DE4-A1B8-6FD89C7B7139}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{A00867B0-C426-403F-9CA6-09E36870EAB3}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{A0C7ED26-A394-4F3B-8263-2E84C3E072C2}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{A3F5809B-7C1B-43FE-AA9A-FA74593AC3DF}" = protocol=6 | dir=in | app=c:\program files (x86)\iminent\imbooster\imbooster.exe |
"{A5B90378-790D-4932-B128-D63500A98E7D}" = dir=in | app=c:\program files (x86)\leapfrog\leapfrog connect\leapfrogconnect.exe |
"{A838274E-0304-4DD8-87FD-94C3FE352C9F}" = dir=in | app=c:\program files (x86)\hewlett-packard\hp support framework\resources\hpwarrantycheck\hpwarrantychecker.exe |
"{A92FA9EC-8FA9-46C8-9CE5-4E9DFD6875BD}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{AB1409C4-C6F4-4C30-BCEB-4605C2611E66}" = protocol=17 | dir=in | app=c:\program files\defender pro\defender pro\antispam32\dpreg.exe |
"{AF8AD1A6-9BFF-43F5-840B-4483ADC6DBA7}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{B7C333BE-C093-4924-A0DC-286D219D2C4F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{BC1E4F28-AE33-4472-B9C9-BFE3C6E05C05}" = protocol=17 | dir=in | app=c:\users\rose\appdata\local\temp\7zs4653.tmp\symnrt.exe |
"{C450C23D-7A2F-4E75-ABA2-3F42738FAEFE}" = protocol=6 | dir=in | app=c:\program files\defender pro\defender pro\antispam32\dpreg.exe |
"{CE5C6134-4791-4834-B3A2-5ABFC96357F5}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{CEC63A0C-FB75-4673-BE04-BDCD62D5B028}" = protocol=17 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{CFA2C380-00C4-470C-BA58-824897222BE4}" = protocol=6 | dir=in | app=c:\nexon\combat arms\nmservice.exe |
"{D28BE388-4C03-43AC-968E-35384BE47E88}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{DAC24CF9-2F5E-43C1-89C7-DB282951F9E7}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{E11DC814-FE25-4A81-A5CA-C0D5D2079512}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"{E88A8C0C-9F0B-4F70-B762-29A49939F472}" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
"{EA9ABCA2-6FB5-475A-9155-61F88106491E}" = dir=in | app=f:\setup\hpznui40.exe |
"{ED93089E-2C8A-4C60-9A01-2D0592B362C1}" = protocol=6 | dir=in | app=c:\users\rose\appdata\local\temp\rarsfx0\dpreg.exe |
"{EE449415-F6F2-48DB-8FE7-495D1CAF41D4}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{F4060D6A-8D02-499D-AE78-0700DD443EB1}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{FBDF784C-D171-45B5-9B35-23115C4ACDCF}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{FCC29B0E-6E73-4209-A3A0-908E9737C390}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{FF762297-3495-445B-8B3A-0ACA6CA9BBCE}" = protocol=17 | dir=in | app=c:\program files (x86)\socialribbons lp2\troubleshooter.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}" = Network64
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}" = iTunes
"{2012D762-5DCA-455A-B5FE-EDF79BC93E18}" = HP Photosmart C4700 All-In-One Driver Software 13.0 Rel .6
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{26A24AE4-039D-4CA4-87B4-2F86416017FF}" = Java™ 6 Update 17 (64-bit)
"{477EE3A9-4B53-0F22-DB40-277ED46E9E72}" = ccc-utility64
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4FF9E8AA-D554-4CE7-89F9-B69DAA5A1E98}" = AVG 2013
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6A66C1E5-4146-4CA6-A551-627CFCEACC83}" = HP Quick Launch
"{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}" = Network64
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}" = Apple Mobile Device Support
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C3F0426C-175D-39B7-7A14-D6B21952DE5E}" = ATI Catalyst Install Manager
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}" = WinZip 17.5
"{CFB8BDCE-8814-4B9A-8EA9-31DB74FEF0AE}" = Defender Pro 15-in-1
"{E6BC696E-5E96-4C1B-9371-379AF3A46B6B}" = HP Wireless Assistant
"{E74BF83C-2CA5-48EF-901F-959309E7D9EC}" = AVG 2013
"{F3D7AC17-1FF4-41A8-BB18-3FC39C65AEB9}" = RtVOsd
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D" = Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012)
"AVG" = AVG 2013
"Defender Pro 15-in-1" = Defender Pro 15-in-1
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Print Projects" = HP Print Projects 1.0
"HP Smart Web Printing" = HP Smart Web Printing 4.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002FBC80-F076-4442-7C29-F92FF8934B16}" = Zoodles
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{0240CDAE-20F6-4381-A56E-BD2AE3B4B5D0}" = Nancy Drew: Trail of the Twister
"{06C84AD5-A13A-43CC-B20C-D1D5E7BA2658}" = LeapFrog Leapster Explorer Plugin
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{07FB17D8-7DB6-4F06-80C4-8BE1719CB6A1}" = hpWLPGInstaller
"{0AD3D4FC-0B19-B2F2-376A-E6BF36BA342B}" = ccc-core-static
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{120262A6-7A4B-4889-AE85-F5E5688D3683}" = Roxio CinemaNow 2.0
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1896E712-2B3D-45eb-BCE9-542742A51032}" = PictureMover
"{1E27900B-E594-DCA9-10DB-C87A8318991C}" = CCC Help French
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21A2F5EE-1DC5-488A-BE7E-E526F8C61488}" = DeviceDiscovery
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{233E18AE-296B-4189-9D47-139E68095F6E}" = PD Media Converter
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{31F4E558-F8A8-170E-BD85-BAD4EE739991}" = CCC Help Hungarian
"{32A3A4F4-B792-11D6-A78A-00B0D0170250}" = Java SE Development Kit 7 Update 25
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Windows 7
"{3EE9EB18-62AD-4F68-AD11-2DF358CBDCA2}" = RollerCoaster Tycoon
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}" = HP Advisor
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{5124C3E2-5BE8-3FFA-F958-CF0C99961566}" = CCC Help Swedish
"{53839C74-42E0-72E8-0369-C9713A319A26}" = Catalyst Control Center InstallProxy
"{54F17069-7E87-A85A-9078-6F5B06AF21A3}" = CCC Help German
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{6048D442-6C92-D73C-D248-02C1D4038C3E}" = CCC Help Finnish
"{608A6E25-720C-8171-F887-F7664A23CA0C}" = CCC Help Norwegian
"{60D8CA34-642C-476F-AB4E-94DECCAEED69}" = The White Wolf of Icicle Creek
"{60FA1132-0486-41F9-B747-6D308C284D1C}" = Catalyst Control Center - Branding
"{60FAD0EE-2F87-FAEB-FE05-0CDCF8179884}" = CCC Help Thai
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{61BEA823-ECAF-49F1-8378-A59B3B8AD247}" = Microsoft Default Manager
"{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{68A10D12-0D0F-4212-BDE6-D87FAD32A8FA}" = SmartWebPrinting
"{6AFDE3BE-BC01-45A4-9D06-BBF5AD207313}" = LightScribe System Software
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6C122441-1861-4CD7-B1C5-A163A6984E12}" = CinemaNow Media Manager
"{6CAABDBA-F58D-565C-D36E-6D573B1B8E44}" = Catalyst Control Center Graphics Light
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.1.1
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7908E6E5-4BBC-756D-A235-2CFCC142685D}" = CCC Help English
"{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"{854DDB9E-D488-065B-9FEF-18C159E451AF}" = Catalyst Control Center Graphics Previews Vista
"{85BCA864-BDC8-9299-C6AC-C032301D018C}" = Catalyst Control Center Graphics Full New
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87553C1A-35F4-142A-AC88-86B663F7F136}" = CCC Help Czech
"{88146D95-5AEC-96BD-3107-A59328CE35BF}" = CCC Help Chinese Traditional
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{8B8797ED-6E75-FEBA-7210-90A2462B5DA7}" = CCC Help Japanese
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{9008D736-35CA-40DB-A2BE-5F32D954E5AA}" = HP MediaSmart CinemaNow 2.0
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90C2329F-2EE2-5035-21B8-14F2F240D976}" = CCC Help Turkish
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{987B04C4-B5AC-4AD6-A7E9-8D681085B850}" = AMD USB Filter Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4317FB-5775-4FB3-BDC9-995595106F1F}" = HP User Guides 0178
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9F479685-180E-4C05-9400-D59292A1B29C}" = Windows Live Movie Maker
"{A1570454-ED12-4050-A7AC-9282C7AFB23C}" = Window Shopper
"{A55F4F9F-CCA8-4732-AA1F-0390A4A50947}" = C4700
"{A807CEB4-96A8-46A8-A298-C3AA87B47B00}" = HP Software Framework
"{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.4 MUI
"{AE8705FB-E13C-40A9-8A2D-68D6733FBFC2}" = Status
"{B10914FD-8812-47A4-85A1-50FCDE7F1F33}" = Windows Live Sync
"{B75E2857-9A0D-EE0D-B332-A05FBECDDB83}" = Catalyst Control Center Graphics Previews Common
"{BA8D33B9-40B5-BC33-1F48-C2ADC90ABA95}" = CCC Help Italian
"{BD50BAF8-8DBD-C054-ACAA-EB7300A09B5F}" = CCC Help Korean
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Atheros Driver Installation Program
"{C3CBA627-2962-C9B2-6698-C89658757EB9}" = Catalyst Control Center Localization All
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C75CDBA2-3C86-481e-BD10-BDDA758F9DFF}" = hpPrintProjects
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC38C3D1-0359-4308-9DB8-194F8D92B2B6}" = PD Media Converter
"{CE8F47D8-1C4D-48F3-F9F3-3D5DFCC75C24}" = Catalyst Control Center Core Implementation
"{CF4EFF53-CA7D-9479-3E18-AB6253497A95}" = CCC Help Russian
"{D19E881A-4A1E-A947-717F-B8DA93AE2EDA}" = CCC Help Chinese Standard
"{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"{D89D0D05-670D-D6C5-71DA-7C52F754F75F}" = CCC Help Dutch
"{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}" = Adobe Shockwave Player
"{DC0A5F99-FD66-433F-9D3A-05DCBA64BE42}" = TrayApp
"{DD4CEACE-8B19-4B1C-AE82-DE0FC5787D4C}" = Iminent
"{E2831862-F131-4327-B9CC-FA30F587EB6C}" = HP Setup
"{E3148F44-518B-3232-58CA-77DB808E255F}" = Catalyst Control Center Graphics Full Existing
"{E36F3199-C282-47CA-BAC7-2B77D247E760}" = PS_AIO_06_C4700_SW_Min
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}" = Nexon Game Manager
"{EC67E77D-7873-A1B1-17E1-263E10748EEF}" = CCC Help Danish
"{EE202411-2C26-49E8-9784-1BC1DBF7DE96}" = HP Support Assistant
"{EE39FFBD-544E-49E4-A999-6819828EAE91}" = Windows Live Photo Gallery
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F220D637-1086-83C2-EA21-25AF1FE47BEC}" = CCC Help Polish
"{F4693A78-2E6C-2A26-B833-E13A4A5DACB4}" = CCC Help Greek
"{F6B6A150-08FA-46D5-808A-EB638269551D}" = HP Power Plan Utility
"{F9233F02-5617-4BDC-8EC6-4B798EDFE6F4}" = LeapFrog Connect
"{FD122F1F-A640-082D-F4CB-F01259A956B6}" = CCC Help Portuguese
"{FDE722A1-1AEF-0641-D5D1-BA4C464BAB4C}" = CCC Help Spanish
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"AIM Toolbar" = AOL Messaging Toolbar
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.12
"BFGC" = Big Fish Games Client
"BFG-Hidden Expedition - Amazon" = Hidden Expedition: Amazon ™
"BFG-Mystery Case Files - Ravenhearst" = Mystery Case Files: Ravenhearst &reg;
"BitComet_x64" = BitComet 1.29 64-bit
"com.zoodles.3B7D4B2F97D0C2BDB13554D0687ECC70A3734EDD.1" = Zoodles
"Combat Arms" = Combat Arms
"Coupon Printer for Windows5.0.0.1" = Coupon Printer for Windows
"FrostWire 5" = FrostWire 5.1.5
"Hitman: Contracts" = Hitman: Contracts
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Photo Creations" = HP Photo Creations
"ImgBurn" = ImgBurn
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"LeapsterExplorerPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster Explorer Plugin)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Mozilla Firefox 11.0 (x86 en-US)" = Mozilla Firefox 11.0 (x86 en-US)
"My HP Game Console" = HP Game Console
"Office8.0" = Microsoft Office 97, Professional Edition
"OpenAL" = OpenAL
"PROPLUS" = Microsoft Office Professional Plus 2007
"Rescue Heroes™ Tremor Trouble" = Rescue Heroes™ Tremor Trouble
"Rhapsody" = Rhapsody
"Roller Coaster Tycoon 2" = Roller Coaster Tycoon 2
"RtR_is1" = Rule the Rail! 1.5
"Rule the Rail!" = Rule the Rail!
"SelectRebatesUninstall" = ShopAtHome.com Toolbar
"ShopAtHome.com Toolbar" = ShopAtHome.com Toolbar
"SocialRibbons LP2" = SocialRibbons LP2
"UPCShell" = LeapFrog Connect
"Warzone 2100" = Warzone 2100
"WildTangent hp Master Uninstall" = HP Games
"WinLiveSuite_Wave3" = Windows Live Essentials
"WT082122" = Blackhawk Striker 2
"WT082124" = Blasterball 3
"WT082133" = Dora's Carnival Adventure
"WT082141" = FATE
"WT082168" = Penguins!
"WT082170" = Plants vs. Zombies
"WT082171" = Poker Superstars III
"WT082172" = Polar Bowler
"WT082173" = Polar Golfer
"WT082188" = Virtual Families
"WT082189" = Wheel of Fortune 2
"WT082192" = Bejeweled 2 Deluxe
"WT082200" = Chuzzle Deluxe
"WT082241" = Virtual Villagers - The Secret City
"WT082396" = Diner Dash 2 Restaurant Rescue
"WT082438" = Build-a-lot 2
"WT082442" = Faerie Solitaire
"WT082443" = Jewel Quest 3
"WT082463" = Zuma's Revenge
"WT082468" = Jewel Quest Solitaire 2
"WT083477" = Cake Mania
"WT083484" = Escape Rosecliff Island
"WT083491" = TextTwist 2
"Yahoo! Companion" = Yahoo! Toolbar
"Zylom Games Player Plugin" = Zylom Games Player Plugin

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-903994150-1397619272-3207344859-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"AOL Messaging Toolbar" = AOL Messaging Toolbar
"Google Chrome" = Google Chrome
"soe-EverQuest" = EverQuest
"Spotify" = Spotify
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Hewlett-Packard Events ]
Error - 11/26/2012 4:21:35 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description = HP Error ID: -2146233087 Server stack trace: at System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs, TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs) at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage
methodCall, ProxyOperationRuntime operation) at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage
message) Exception rethrown at [0] Message: The server did not provide a meaningful
reply; this might be caused by a contract mismatch, a premature session shutdown
or an internal server error. StackTrace: Server stack trace: at System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs, TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs) at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage
methodCall, ProxyOperationRuntime operation) at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage
message) Exception rethrown at [0]: at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage
reqMsg, IMessage retMsg) at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData&
msgData, Int32 type) at HP.SupportFramework.Communicator.MessengerComm.IMessengerCommunicator.UpdateTimer()

at HP.SupportAssistant.UI.MessengerCommunication.sendTimerUpdate() Source: mscorlib

Name:
HPSF.exe Version: 06.00.01.01 Path: C:\Program Files (x86)\Hewlett-Packard\HP Support
Framework\HPSF.exe Format: en-US RAM: 2810 Ram Utilization: 30 TargetSite: Void HandleReturnMessage(System.Runtime.Remoting.Messaging.IMessage,
System.Runtime.Remoting.Messaging.IMessage)

Error - 11/26/2012 4:21:54 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 11/26/2012 4:21:55 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 11/26/2012 4:21:55 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 1/14/2013 2:16:49 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 7/23/2013 2:13:26 AM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 7/29/2013 5:06:02 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 7/29/2013 5:08:49 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 7/29/2013 5:09:34 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 4000
Description =

Error - 8/12/2013 1:50:42 PM | Computer Name = Rose-PC | Source = HPSF.exe | ID = 2000
Description =

[ HP Wireless Assistant Events ]
Error - 5/25/2012 4:09:38 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/26/2012 8:28:26 AM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/26/2012 7:02:54 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/27/2012 10:17:00 AM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/28/2012 8:59:54 AM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/28/2012 2:29:57 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/28/2012 4:41:59 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/28/2012 7:59:35 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException Call was canceled by the
message filter. (Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED)) at
System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode,
IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObjectSearcher.Initialize()

at System.Management.ManagementObjectSearcher.Get() at HPPA_Service.CurrentConfiguration.FindDevice(String
hostPath, String portName) at HPPA_Service.CurrentConfiguration.ApplyDeviceManagerState(List`1
radios) at HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 5/28/2012 9:45:48 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 5/29/2012 12:30:48 PM | Computer Name = Rose-PC | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE


< End of report >
  • 0

#7
Jasmyne
Posted 22 August 2013 - 03:51 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
Can you please post the log from TDSSKiller? It should be located at C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt.

Thank you,

Jasmyne
  • 0

#8
radiment040
Posted 23 August 2013 - 01:53 PM

radiment040

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
15:04:11.0492 4576 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:04:12.0179 4576 ============================================================
15:04:12.0179 4576 Current date / time: 2013/08/22 15:04:12.0179
15:04:12.0179 4576 SystemInfo:
15:04:12.0179 4576
15:04:12.0179 4576 OS Version: 6.1.7601 ServicePack: 1.0
15:04:12.0179 4576 Product type: Workstation
15:04:12.0179 4576 ComputerName: ROSE-PC
15:04:12.0179 4576 UserName: Rose
15:04:12.0179 4576 Windows directory: C:\Windows
15:04:12.0179 4576 System windows directory: C:\Windows
15:04:12.0179 4576 Running under WOW64
15:04:12.0179 4576 Processor architecture: Intel x64
15:04:12.0179 4576 Number of processors: 2
15:04:12.0179 4576 Page size: 0x1000
15:04:12.0179 4576 Boot type: Normal boot
15:04:12.0179 4576 ============================================================
15:04:25.0227 4576 BG loaded
15:04:25.0711 4576 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:04:25.0711 4576 ============================================================
15:04:25.0711 4576 \Device\Harddisk0\DR0:
15:04:25.0711 4576 MBR partitions:
15:04:25.0711 4576 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
15:04:25.0711 4576 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x1B5EB000
15:04:25.0711 4576 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1B64F000, BlocksNum 0x1B42800
15:04:25.0727 4576 ============================================================
15:04:25.0758 4576 C: <-> \Device\Harddisk0\DR0\Partition2
15:04:25.0789 4576 D: <-> \Device\Harddisk0\DR0\Partition3
15:04:25.0789 4576 ============================================================
15:04:25.0789 4576 Initialize success
15:04:25.0805 4576 ============================================================
15:06:46.0079 4644 ============================================================
15:06:46.0079 4644 Scan started
15:06:46.0079 4644 Mode: Manual; SigCheck; TDLFS;
15:06:46.0080 4644 ============================================================
15:06:51.0869 4644 ================ Scan system memory ========================
15:06:51.0869 4644 System memory - ok
15:06:51.0870 4644 ================ Scan services =============================
15:06:53.0268 4644 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:06:53.0555 4644 1394ohci - ok
15:06:53.0631 4644 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:06:53.0677 4644 ACPI - ok
15:06:53.0803 4644 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:06:54.0172 4644 AcpiPmi - ok
15:06:55.0654 4644 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:06:55.0745 4644 AdobeFlashPlayerUpdateSvc - ok
15:06:56.0082 4644 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:06:56.0149 4644 adp94xx - ok
15:06:56.0311 4644 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:06:56.0351 4644 adpahci - ok
15:06:56.0455 4644 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:06:56.0523 4644 adpu320 - ok
15:06:56.0717 4644 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:06:57.0590 4644 AeLookupSvc - ok
15:06:57.0915 4644 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
15:06:57.0937 4644 AERTFilters - ok
15:06:58.0266 4644 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:06:58.0493 4644 AFD - ok
15:06:58.0676 4644 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
15:06:58.0839 4644 AgereModemAudio - ok
15:06:59.0137 4644 [ C98356D813B581E9C425B42A5D146CE0 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
15:06:59.0273 4644 AgereSoftModem - ok
15:06:59.0399 4644 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:06:59.0437 4644 agp440 - ok
15:06:59.0578 4644 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:06:59.0751 4644 ALG - ok
15:06:59.0868 4644 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:06:59.0900 4644 aliide - ok
15:07:00.0045 4644 [ 0DE7BF2A2E64A841F9ABF9558870D9C4 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:07:00.0280 4644 AMD External Events Utility - ok
15:07:00.0388 4644 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:07:00.0426 4644 amdide - ok
15:07:00.0573 4644 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:07:00.0834 4644 AmdK8 - ok
15:07:01.0151 4644 [ F284DA3156166B45D02ACC3C228ADE1E ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
15:07:01.0415 4644 amdkmdag - ok
15:07:01.0487 4644 [ 91E1DAF0193BD2AB90B1B35C987237FE ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:07:01.0570 4644 amdkmdap - ok
15:07:01.0612 4644 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:07:01.0692 4644 AmdPPM - ok
15:07:01.0717 4644 [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
15:07:01.0901 4644 amdsata - ok
15:07:01.0964 4644 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:07:02.0045 4644 amdsbs - ok
15:07:02.0130 4644 [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
15:07:02.0163 4644 amdxata - ok
15:07:02.0249 4644 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:07:02.0825 4644 AppID - ok
15:07:02.0891 4644 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:07:02.0995 4644 AppIDSvc - ok
15:07:03.0146 4644 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
15:07:03.0225 4644 Appinfo - ok
15:07:03.0456 4644 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:07:03.0493 4644 Apple Mobile Device - ok
15:07:03.0546 4644 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:07:03.0571 4644 arc - ok
15:07:03.0657 4644 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:07:03.0688 4644 arcsas - ok
15:07:03.0920 4644 aspnet_state - ok
15:07:03.0945 4644 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:07:04.0055 4644 AsyncMac - ok
15:07:04.0114 4644 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:07:04.0147 4644 atapi - ok
15:07:04.0308 4644 [ 96ABF88241F90FF647E55C934C55C2F1 ] athr C:\Windows\system32\DRIVERS\athrx.sys
15:07:04.0498 4644 athr - ok
15:07:04.0549 4644 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
15:07:04.0575 4644 AtiPcie - ok
15:07:04.0677 4644 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:07:04.0789 4644 AudioEndpointBuilder - ok
15:07:04.0889 4644 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:07:04.0959 4644 AudioSrv - ok
15:07:05.0067 4644 [ D6AD5A019A914616C7A702C00149283A ] avc3 C:\Windows\system32\DRIVERS\avc3.sys
15:07:05.0103 4644 avc3 - ok
15:07:05.0216 4644 [ 4598404E09F7BC80C53100C560B8C67E ] avckf C:\Windows\system32\DRIVERS\avckf.sys
15:07:05.0288 4644 avckf - ok
15:07:05.0546 4644 [ 4DB93F4DB7077801D2D82013506AC1D0 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
15:07:05.0718 4644 AVGIDSAgent - ok
15:07:05.0809 4644 [ 241C32E942869FD1351CC5864976C3AC ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
15:07:05.0830 4644 AVGIDSDriver - ok
15:07:05.0873 4644 [ C8D9EEACF266512C1FA52E2ECF5AD944 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
15:07:05.0891 4644 AVGIDSHA - ok
15:07:05.0958 4644 [ FACD18A89FDEBC35C85CAF762B294BE2 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
15:07:05.0977 4644 Avgldx64 - ok
15:07:06.0016 4644 [ 29FCDEAC6086FB7E55344B51E35D99CE ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
15:07:06.0037 4644 Avgloga - ok
15:07:06.0069 4644 [ 85053293DCDE19829E8691A9E9E8A6FF ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
15:07:06.0107 4644 Avgmfx64 - ok
15:07:06.0164 4644 [ 0638096A30B7081DAACB8DCC39BD16EF ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
15:07:06.0183 4644 Avgrkx64 - ok
15:07:06.0231 4644 [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
15:07:06.0251 4644 Avgtdia - ok
15:07:06.0286 4644 [ 48939D9F350AEF9370F03A1E49A49BE2 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
15:07:06.0310 4644 avgwd - ok
15:07:06.0392 4644 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:07:06.0520 4644 AxInstSV - ok
15:07:06.0559 4644 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:07:06.0652 4644 b06bdrv - ok
15:07:06.0702 4644 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:07:06.0770 4644 b57nd60a - ok
15:07:06.0857 4644 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:07:06.0913 4644 BDESVC - ok
15:07:07.0051 4644 [ 57A812537B752E2B0409576120183E4F ] BDFM C:\Windows\system32\DRIVERS\bdfm.sys
15:07:07.0112 4644 BDFM - ok
15:07:07.0282 4644 [ 7AFB43894A9BCEA183EBCA27D2BAA48C ] bdfndisf c:\program files\common files\defender pro\defender pro firewall\bdfndisf6.sys
15:07:07.0316 4644 bdfndisf - ok
15:07:07.0494 4644 [ FD25D9E7054A422BD9A4C6540B2B8290 ] bdfsfltr C:\Windows\system32\DRIVERS\bdfsfltr.sys
15:07:07.0528 4644 bdfsfltr - ok
15:07:07.0585 4644 [ 37E7491CA07AB737E68D655D658E1E94 ] bdfwfpf C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfwfpf.sys
15:07:07.0602 4644 bdfwfpf - ok
15:07:07.0657 4644 [ B89DEFF4817B4CC6FC2BCD8F83B4E75D ] Bdvedisk C:\Windows\system32\DRIVERS\bdvedisk.sys
15:07:07.0692 4644 Bdvedisk - ok
15:07:07.0755 4644 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:07:07.0832 4644 Beep - ok
15:07:07.0917 4644 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:07:08.0011 4644 BFE - ok
15:07:08.0059 4644 BITCOMET_HELPER_SERVICE - ok
15:07:08.0167 4644 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:07:08.0299 4644 BITS - ok
15:07:08.0353 4644 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:07:08.0384 4644 blbdrive - ok
15:07:08.0551 4644 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:07:08.0585 4644 Bonjour Service - ok
15:07:08.0666 4644 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:07:08.0763 4644 bowser - ok
15:07:08.0830 4644 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:07:08.0924 4644 BrFiltLo - ok
15:07:08.0942 4644 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:07:08.0963 4644 BrFiltUp - ok
15:07:09.0037 4644 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:07:09.0118 4644 Browser - ok
15:07:09.0151 4644 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:07:09.0223 4644 Brserid - ok
15:07:09.0249 4644 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:07:09.0289 4644 BrSerWdm - ok
15:07:09.0331 4644 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:07:09.0407 4644 BrUsbMdm - ok
15:07:09.0431 4644 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:07:09.0462 4644 BrUsbSer - ok
15:07:09.0535 4644 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:07:09.0586 4644 BTHMODEM - ok
15:07:09.0640 4644 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:07:09.0713 4644 bthserv - ok
15:07:09.0771 4644 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:07:09.0856 4644 cdfs - ok
15:07:09.0934 4644 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:07:09.0955 4644 cdrom - ok
15:07:10.0013 4644 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:07:10.0093 4644 CertPropSvc - ok
15:07:10.0166 4644 [ 2C24DB5F78F0ACA759803001E6B4F320 ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
15:07:10.0182 4644 CinemaNow Service - ok
15:07:10.0202 4644 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:07:10.0267 4644 circlass - ok
15:07:10.0337 4644 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:07:10.0360 4644 CLFS - ok
15:07:10.0402 4644 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:07:10.0444 4644 clr_optimization_v2.0.50727_32 - ok
15:07:10.0563 4644 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:07:10.0580 4644 clr_optimization_v2.0.50727_64 - ok
15:07:10.0741 4644 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:07:10.0757 4644 clr_optimization_v4.0.30319_32 - ok
15:07:10.0846 4644 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:07:10.0861 4644 clr_optimization_v4.0.30319_64 - ok
15:07:10.0963 4644 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:07:11.0011 4644 CmBatt - ok
15:07:11.0081 4644 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:07:11.0109 4644 cmdide - ok
15:07:11.0204 4644 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:07:11.0313 4644 CNG - ok
15:07:11.0391 4644 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:07:11.0417 4644 Compbatt - ok
15:07:11.0467 4644 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:07:11.0505 4644 CompositeBus - ok
15:07:11.0526 4644 COMSysApp - ok
15:07:11.0556 4644 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:07:11.0576 4644 crcdisk - ok
15:07:11.0639 4644 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:07:11.0691 4644 CryptSvc - ok
15:07:11.0784 4644 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:07:11.0881 4644 DcomLaunch - ok
15:07:11.0922 4644 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:07:12.0005 4644 defragsvc - ok
15:07:12.0040 4644 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:07:12.0106 4644 DfsC - ok
15:07:12.0233 4644 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:07:12.0309 4644 Dhcp - ok
15:07:12.0345 4644 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:07:12.0489 4644 discache - ok
15:07:12.0537 4644 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:07:12.0608 4644 Disk - ok
15:07:12.0688 4644 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:07:12.0804 4644 Dnscache - ok
15:07:12.0880 4644 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:07:12.0965 4644 dot3svc - ok
15:07:13.0039 4644 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:07:13.0088 4644 Dot4 - ok
15:07:13.0138 4644 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:07:13.0168 4644 Dot4Print - ok
15:07:13.0194 4644 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:07:13.0237 4644 dot4usb - ok
15:07:13.0297 4644 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:07:13.0375 4644 DPS - ok
15:07:13.0406 4644 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:07:13.0452 4644 drmkaud - ok
15:07:13.0506 4644 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:07:13.0566 4644 DXGKrnl - ok
15:07:13.0618 4644 EagleX64 - ok
15:07:13.0673 4644 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:07:13.0748 4644 EapHost - ok
15:07:13.0932 4644 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:07:14.0151 4644 ebdrv - ok
15:07:14.0190 4644 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:07:14.0310 4644 EFS - ok
15:07:14.0577 4644 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:07:14.0683 4644 ehRecvr - ok
15:07:14.0725 4644 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:07:14.0803 4644 ehSched - ok
15:07:14.0843 4644 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:07:14.0870 4644 elxstor - ok
15:07:14.0925 4644 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:07:14.0974 4644 ErrDev - ok
15:07:15.0077 4644 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:07:15.0150 4644 EventSystem - ok
15:07:15.0206 4644 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:07:15.0274 4644 exfat - ok
15:07:15.0323 4644 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:07:15.0417 4644 fastfat - ok
15:07:15.0576 4644 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:07:15.0662 4644 Fax - ok
15:07:15.0695 4644 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:07:15.0730 4644 fdc - ok
15:07:15.0792 4644 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:07:15.0872 4644 fdPHost - ok
15:07:15.0918 4644 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:07:16.0044 4644 FDResPub - ok
15:07:16.0067 4644 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:07:16.0085 4644 FileInfo - ok
15:07:16.0097 4644 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:07:16.0329 4644 Filetrace - ok
15:07:16.0389 4644 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:07:16.0476 4644 flpydisk - ok
15:07:16.0632 4644 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:07:16.0664 4644 FltMgr - ok
15:07:16.0747 4644 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
15:07:16.0848 4644 FontCache - ok
15:07:17.0010 4644 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:07:17.0047 4644 FontCache3.0.0.0 - ok
15:07:17.0093 4644 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:07:17.0111 4644 FsDepends - ok
15:07:17.0156 4644 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:07:17.0179 4644 Fs_Rec - ok
15:07:17.0244 4644 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:07:17.0271 4644 fvevol - ok
15:07:17.0334 4644 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:07:17.0358 4644 gagp30kx - ok
15:07:17.0442 4644 [ E53EE18A21C025DEABCFE0F72FC481BB ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
15:07:17.0466 4644 GameConsoleService - ok
15:07:17.0531 4644 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:07:17.0553 4644 GEARAspiWDM - ok
15:07:17.0601 4644 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:07:17.0699 4644 gpsvc - ok
15:07:17.0798 4644 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:17.0822 4644 gupdate - ok
15:07:17.0928 4644 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:17.0946 4644 gupdatem - ok
15:07:18.0134 4644 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:07:18.0157 4644 gusvc - ok
15:07:18.0247 4644 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:07:18.0580 4644 hcw85cir - ok
15:07:18.0699 4644 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:07:18.0768 4644 HdAudAddService - ok
15:07:18.0825 4644 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:07:18.0860 4644 HDAudBus - ok
15:07:18.0946 4644 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:07:18.0975 4644 HidBatt - ok
15:07:19.0050 4644 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:07:19.0135 4644 HidBth - ok
15:07:19.0182 4644 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:07:19.0285 4644 HidIr - ok
15:07:19.0350 4644 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:07:19.0553 4644 hidserv - ok
15:07:19.0712 4644 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:07:19.0759 4644 HidUsb - ok
15:07:19.0797 4644 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:07:19.0883 4644 hkmsvc - ok
15:07:20.0004 4644 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:07:20.0121 4644 HomeGroupListener - ok
15:07:20.0206 4644 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:07:20.0268 4644 HomeGroupProvider - ok
15:07:20.0507 4644 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
15:07:20.0551 4644 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
15:07:20.0551 4644 HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
15:07:20.0889 4644 [ 9ABD12FCE4A62905731C286BB1D66789 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
15:07:20.0921 4644 HP Wireless Assistant Service - ok
15:07:21.0218 4644 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
15:07:21.0277 4644 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
15:07:21.0277 4644 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
15:07:21.0308 4644 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
15:07:21.0348 4644 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
15:07:21.0348 4644 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
15:07:21.0463 4644 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
15:07:21.0492 4644 hpqwmiex - ok
15:07:21.0619 4644 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:07:21.0646 4644 HpSAMD - ok
15:07:21.0736 4644 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
15:07:21.0839 4644 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
15:07:21.0839 4644 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
15:07:21.0937 4644 [ DDD6EB8C32AAF5797D71413F2FC7A00F ] HPWMISVC C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
15:07:21.0968 4644 HPWMISVC ( UnsignedFile.Multi.Generic ) - warning
15:07:21.0968 4644 HPWMISVC - detected UnsignedFile.Multi.Generic (1)
15:07:22.0001 4644 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
15:07:22.0076 4644 HTCAND64 - ok
15:07:22.0144 4644 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:07:22.0227 4644 HTTP - ok
15:07:22.0306 4644 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:07:22.0321 4644 hwpolicy - ok
15:07:22.0419 4644 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:07:22.0448 4644 i8042prt - ok
15:07:22.0503 4644 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:07:22.0554 4644 iaStorV - ok
15:07:22.0605 4644 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:07:22.0650 4644 idsvc - ok
15:07:22.0797 4644 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:07:22.0995 4644 igfx - ok
15:07:23.0041 4644 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:07:23.0062 4644 iirsp - ok
15:07:23.0113 4644 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:07:23.0190 4644 IKEEXT - ok
15:07:23.0274 4644 [ B88E24BD77A0CE2CFFEE2FACF1151BE0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:07:23.0365 4644 IntcAzAudAddService - ok
15:07:23.0378 4644 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:07:23.0395 4644 intelide - ok
15:07:23.0436 4644 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:07:23.0485 4644 intelppm - ok
15:07:23.0565 4644 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:07:23.0636 4644 IPBusEnum - ok
15:07:23.0677 4644 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:07:23.0731 4644 IpFilterDriver - ok
15:07:23.0771 4644 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:07:23.0842 4644 iphlpsvc - ok
15:07:23.0873 4644 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:07:23.0912 4644 IPMIDRV - ok
15:07:23.0938 4644 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:07:24.0019 4644 IPNAT - ok
15:07:24.0108 4644 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:07:24.0154 4644 iPod Service - ok
15:07:24.0217 4644 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:07:24.0285 4644 IRENUM - ok
15:07:24.0335 4644 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:07:24.0360 4644 isapnp - ok
15:07:24.0425 4644 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:07:24.0447 4644 iScsiPrt - ok
15:07:24.0482 4644 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:07:24.0504 4644 kbdclass - ok
15:07:24.0574 4644 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:07:24.0639 4644 kbdhid - ok
15:07:24.0685 4644 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:07:24.0724 4644 KeyIso - ok
15:07:24.0757 4644 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:07:24.0783 4644 KSecDD - ok
15:07:24.0798 4644 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:07:24.0824 4644 KSecPkg - ok
15:07:24.0864 4644 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:07:24.0943 4644 ksthunk - ok
15:07:25.0005 4644 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:07:25.0086 4644 KtmRm - ok
15:07:25.0151 4644 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:07:25.0216 4644 LanmanServer - ok
15:07:25.0244 4644 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:07:25.0311 4644 LanmanWorkstation - ok
15:07:25.0539 4644 [ 32F1B95C60042F3D95FC8AB43559B3B1 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
15:07:25.0758 4644 LeapFrog Connect Device Service - ok
15:07:25.0808 4644 [ 797289607A5EBF31353AA5EAD141F872 ] Leapfrog-USBLAN C:\Windows\system32\DRIVERS\btblan.sys
15:07:25.0871 4644 Leapfrog-USBLAN - ok
15:07:25.0893 4644 LgBttPort - ok
15:07:25.0912 4644 lgbusenum - ok
15:07:25.0922 4644 LGVMODEM - ok
15:07:26.0006 4644 [ 47269F0DE1E5089C6F23BC1EC48CFC31 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
15:07:26.0061 4644 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
15:07:26.0061 4644 LightScribeService - detected UnsignedFile.Multi.Generic (1)
15:07:26.0109 4644 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:07:26.0200 4644 lltdio - ok
15:07:26.0236 4644 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:07:26.0303 4644 lltdsvc - ok
15:07:26.0334 4644 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:07:26.0381 4644 lmhosts - ok
15:07:26.0414 4644 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:07:26.0434 4644 LSI_FC - ok
15:07:26.0456 4644 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:07:26.0476 4644 LSI_SAS - ok
15:07:26.0516 4644 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:07:26.0535 4644 LSI_SAS2 - ok
15:07:26.0561 4644 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:07:26.0580 4644 LSI_SCSI - ok
15:07:26.0601 4644 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:07:26.0667 4644 luafv - ok
15:07:26.0756 4644 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:07:26.0773 4644 MBAMProtector - ok
15:07:26.0841 4644 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:07:26.0865 4644 MBAMScheduler - ok
15:07:26.0913 4644 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:07:26.0954 4644 MBAMService - ok
15:07:26.0997 4644 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:07:27.0024 4644 Mcx2Svc - ok
15:07:27.0055 4644 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:07:27.0082 4644 megasas - ok
15:07:27.0133 4644 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:07:27.0155 4644 MegaSR - ok
15:07:27.0226 4644 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:07:27.0308 4644 MMCSS - ok
15:07:27.0344 4644 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:07:27.0415 4644 Modem - ok
15:07:27.0456 4644 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:07:27.0505 4644 monitor - ok
15:07:27.0556 4644 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:07:27.0578 4644 mouclass - ok
15:07:27.0601 4644 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:07:27.0625 4644 mouhid - ok
15:07:27.0700 4644 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:07:27.0722 4644 mountmgr - ok
15:07:27.0763 4644 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:07:27.0787 4644 mpio - ok
15:07:27.0833 4644 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:07:27.0880 4644 mpsdrv - ok
15:07:27.0925 4644 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:07:28.0017 4644 MpsSvc - ok
15:07:28.0047 4644 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:07:28.0091 4644 MRxDAV - ok
15:07:28.0123 4644 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:07:28.0195 4644 mrxsmb - ok
15:07:28.0239 4644 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:07:28.0318 4644 mrxsmb10 - ok
15:07:28.0350 4644 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:07:28.0369 4644 mrxsmb20 - ok
15:07:28.0411 4644 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:07:28.0430 4644 msahci - ok
15:07:28.0455 4644 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:07:28.0479 4644 msdsm - ok
15:07:28.0502 4644 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:07:28.0532 4644 MSDTC - ok
15:07:28.0629 4644 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:07:28.0682 4644 Msfs - ok
15:07:28.0706 4644 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:07:28.0777 4644 mshidkmdf - ok
15:07:28.0808 4644 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:07:28.0829 4644 msisadrv - ok
15:07:28.0885 4644 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:07:28.0950 4644 MSiSCSI - ok
15:07:28.0959 4644 msiserver - ok
15:07:28.0991 4644 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:07:29.0050 4644 MSKSSRV - ok
15:07:29.0075 4644 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:07:29.0144 4644 MSPCLOCK - ok
15:07:29.0170 4644 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:07:29.0234 4644 MSPQM - ok
15:07:29.0299 4644 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:07:29.0325 4644 MsRPC - ok
15:07:29.0339 4644 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:07:29.0354 4644 mssmbios - ok
15:07:29.0368 4644 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:07:29.0430 4644 MSTEE - ok
15:07:29.0454 4644 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:07:29.0474 4644 MTConfig - ok
15:07:29.0495 4644 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:07:29.0514 4644 Mup - ok
15:07:29.0564 4644 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:07:29.0636 4644 napagent - ok
15:07:29.0677 4644 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:07:29.0726 4644 NativeWifiP - ok
15:07:29.0777 4644 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
15:07:29.0825 4644 NDIS - ok
15:07:29.0860 4644 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:07:29.0915 4644 NdisCap - ok
15:07:29.0961 4644 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:07:30.0011 4644 NdisTapi - ok
15:07:30.0062 4644 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:07:30.0132 4644 Ndisuio - ok
15:07:30.0169 4644 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:07:30.0236 4644 NdisWan - ok
15:07:30.0274 4644 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:07:30.0328 4644 NDProxy - ok
15:07:30.0382 4644 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:07:30.0397 4644 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:07:30.0397 4644 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
15:07:30.0412 4644 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:07:30.0482 4644 NetBIOS - ok
15:07:30.0517 4644 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:07:30.0597 4644 NetBT - ok
15:07:30.0617 4644 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:07:30.0637 4644 Netlogon - ok
15:07:30.0697 4644 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:07:30.0768 4644 Netman - ok
15:07:30.0796 4644 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:07:30.0867 4644 netprofm - ok
15:07:30.0912 4644 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:07:30.0930 4644 NetTcpPortSharing - ok
15:07:31.0126 4644 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
15:07:31.0307 4644 netw5v64 - ok
15:07:31.0349 4644 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:07:31.0368 4644 nfrd960 - ok
15:07:31.0449 4644 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:07:31.0523 4644 NlaSvc - ok
15:07:31.0552 4644 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:07:31.0601 4644 Npfs - ok
15:07:31.0629 4644 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:07:31.0705 4644 nsi - ok
15:07:31.0731 4644 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:07:31.0781 4644 nsiproxy - ok
15:07:31.0853 4644 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:07:31.0940 4644 Ntfs - ok
15:07:31.0962 4644 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:07:32.0054 4644 Null - ok
15:07:32.0093 4644 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:07:32.0113 4644 nvraid - ok
15:07:32.0133 4644 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:07:32.0172 4644 nvstor - ok
15:07:32.0189 4644 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:07:32.0208 4644 nv_agp - ok
15:07:32.0299 4644 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:07:32.0332 4644 odserv - ok
15:07:32.0372 4644 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:07:32.0396 4644 ohci1394 - ok
15:07:32.0472 4644 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:07:32.0495 4644 ose - ok
15:07:32.0541 4644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:07:32.0610 4644 p2pimsvc - ok
15:07:32.0645 4644 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:07:32.0671 4644 p2psvc - ok
15:07:32.0723 4644 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:07:32.0745 4644 Parport - ok
15:07:32.0804 4644 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:07:32.0847 4644 partmgr - ok
15:07:32.0909 4644 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:07:32.0963 4644 PcaSvc - ok
15:07:32.0989 4644 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:07:33.0015 4644 pci - ok
15:07:33.0105 4644 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:07:33.0121 4644 pciide - ok
15:07:33.0160 4644 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:07:33.0182 4644 pcmcia - ok
15:07:33.0207 4644 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:07:33.0224 4644 pcw - ok
15:07:33.0263 4644 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:07:33.0364 4644 PEAUTH - ok
15:07:33.0454 4644 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:07:33.0488 4644 PerfHost - ok
15:07:33.0564 4644 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:07:33.0656 4644 pla - ok
15:07:33.0704 4644 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:07:33.0785 4644 PlugPlay - ok
15:07:33.0823 4644 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:07:33.0848 4644 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:07:33.0848 4644 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
15:07:33.0872 4644 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:07:34.0015 4644 PNRPAutoReg - ok
15:07:34.0051 4644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:07:34.0075 4644 PNRPsvc - ok
15:07:34.0144 4644 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:07:34.0248 4644 PolicyAgent - ok
15:07:34.0290 4644 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:07:34.0377 4644 Power - ok
15:07:34.0477 4644 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:07:34.0555 4644 PptpMiniport - ok
15:07:34.0578 4644 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:07:34.0677 4644 Processor - ok
15:07:34.0731 4644 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
15:07:34.0826 4644 ProfSvc - ok
15:07:34.0842 4644 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:07:34.0897 4644 ProtectedStorage - ok
15:07:34.0967 4644 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:07:35.0028 4644 Psched - ok
15:07:35.0134 4644 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:07:35.0240 4644 ql2300 - ok
15:07:35.0302 4644 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:07:35.0331 4644 ql40xx - ok
15:07:35.0374 4644 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:07:35.0416 4644 QWAVE - ok
15:07:35.0445 4644 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:07:35.0483 4644 QWAVEdrv - ok
15:07:35.0499 4644 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:07:35.0546 4644 RasAcd - ok
15:07:35.0572 4644 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:07:35.0618 4644 RasAgileVpn - ok
15:07:35.0636 4644 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:07:35.0705 4644 RasAuto - ok
15:07:35.0743 4644 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:07:35.0803 4644 Rasl2tp - ok
15:07:35.0847 4644 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:07:35.0911 4644 RasMan - ok
15:07:35.0928 4644 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:07:35.0987 4644 RasPppoe - ok
15:07:36.0012 4644 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:07:36.0071 4644 RasSstp - ok
15:07:36.0095 4644 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:07:36.0158 4644 rdbss - ok
15:07:36.0181 4644 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:07:36.0202 4644 rdpbus - ok
15:07:36.0233 4644 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:07:36.0305 4644 RDPCDD - ok
15:07:36.0345 4644 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:07:36.0408 4644 RDPENCDD - ok
15:07:36.0465 4644 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:07:36.0530 4644 RDPREFMP - ok
15:07:36.0569 4644 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:07:36.0625 4644 RDPWD - ok
15:07:36.0673 4644 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:07:36.0704 4644 rdyboost - ok
15:07:36.0755 4644 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:07:36.0847 4644 RemoteAccess - ok
15:07:36.0883 4644 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:07:37.0007 4644 RemoteRegistry - ok
15:07:37.0067 4644 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:07:37.0152 4644 RpcEptMapper - ok
15:07:37.0175 4644 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:07:37.0213 4644 RpcLocator - ok
15:07:37.0245 4644 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:07:37.0302 4644 RpcSs - ok
15:07:37.0350 4644 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:07:37.0399 4644 rspndr - ok
15:07:37.0452 4644 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
15:07:37.0481 4644 RSUSBSTOR - ok
15:07:37.0510 4644 [ 4FBDA07EF0A3097CE14C5CABF723B278 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:07:37.0533 4644 RTL8167 - ok
15:07:37.0601 4644 [ A332DB1DAC07E95667A57AAEEC236C37 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
15:07:37.0637 4644 RTL8192su - ok
15:07:37.0718 4644 [ 5FFF3E71B4724BB10918FD6DD7413D99 ] RtVOsdService C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
15:07:37.0758 4644 RtVOsdService ( UnsignedFile.Multi.Generic ) - warning
15:07:37.0758 4644 RtVOsdService - detected UnsignedFile.Multi.Generic (1)
15:07:37.0778 4644 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:07:37.0796 4644 SamSs - ok
15:07:37.0857 4644 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:07:37.0900 4644 sbp2port - ok
15:07:37.0927 4644 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:07:37.0977 4644 SCardSvr - ok
15:07:38.0014 4644 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:07:38.0071 4644 scfilter - ok
15:07:38.0118 4644 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:07:38.0246 4644 Schedule - ok
15:07:38.0279 4644 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:07:38.0329 4644 SCPolicySvc - ok
15:07:38.0383 4644 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
15:07:38.0423 4644 sdbus - ok
15:07:38.0471 4644 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:07:38.0554 4644 SDRSVC - ok
15:07:38.0583 4644 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:07:38.0627 4644 secdrv - ok
15:07:38.0639 4644 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:07:38.0683 4644 seclogon - ok
15:07:38.0708 4644 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:07:38.0766 4644 SENS - ok
15:07:38.0797 4644 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:07:38.0857 4644 SensrSvc - ok
15:07:38.0885 4644 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:07:38.0923 4644 Serenum - ok
15:07:38.0941 4644 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:07:38.0965 4644 Serial - ok
15:07:39.0012 4644 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:07:39.0056 4644 sermouse - ok
15:07:39.0094 4644 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:07:39.0156 4644 SessionEnv - ok
15:07:39.0178 4644 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:07:39.0241 4644 sffdisk - ok
15:07:39.0276 4644 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:07:39.0306 4644 sffp_mmc - ok
15:07:39.0334 4644 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:07:39.0375 4644 sffp_sd - ok
15:07:39.0422 4644 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:07:39.0451 4644 sfloppy - ok
15:07:39.0523 4644 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:07:39.0595 4644 SharedAccess - ok
15:07:39.0649 4644 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:07:39.0757 4644 ShellHWDetection - ok
15:07:39.0811 4644 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:07:39.0835 4644 SiSRaid2 - ok
15:07:39.0891 4644 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:07:39.0929 4644 SiSRaid4 - ok
15:07:39.0967 4644 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:07:40.0029 4644 Smb - ok
15:07:40.0092 4644 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:07:40.0123 4644 SNMPTRAP - ok
15:07:40.0147 4644 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:07:40.0165 4644 spldr - ok
15:07:40.0183 4644 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
15:07:40.0233 4644 Spooler - ok
15:07:40.0333 4644 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:07:40.0450 4644 sppsvc - ok
15:07:40.0478 4644 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:07:40.0557 4644 sppuinotify - ok
15:07:40.0591 4644 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:07:40.0655 4644 srv - ok
15:07:40.0715 4644 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:07:40.0783 4644 srv2 - ok
15:07:40.0842 4644 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
15:07:40.0895 4644 SrvHsfHDA - ok
15:07:40.0941 4644 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
15:07:41.0037 4644 SrvHsfV92 - ok
15:07:41.0090 4644 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
15:07:41.0165 4644 SrvHsfWinac - ok
15:07:41.0187 4644 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:07:41.0223 4644 srvnet - ok
15:07:41.0264 4644 [ ED161B91FDF7EAA39469D72D463D5F4E ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
15:07:41.0283 4644 sscdbus - ok
15:07:41.0310 4644 [ 4CB09E77593DBD8D7AF33B37375CA715 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
15:07:41.0327 4644 sscdmdfl - ok
15:07:41.0352 4644 [ C7B4CF53497A6E5363F3439427663882 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
15:07:41.0370 4644 sscdmdm - ok
15:07:41.0389 4644 [ 05FFA552F578E27AB2D41B6828DB477F ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
15:07:41.0408 4644 sscdserd - ok
15:07:41.0422 4644 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:07:41.0488 4644 SSDPSRV - ok
15:07:41.0526 4644 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:07:41.0583 4644 SstpSvc - ok
15:07:41.0609 4644 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:07:41.0626 4644 stexstor - ok
15:07:41.0650 4644 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
15:07:41.0684 4644 StillCam - ok
15:07:41.0774 4644 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:07:41.0845 4644 stisvc - ok
15:07:41.0872 4644 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:07:41.0888 4644 swenum - ok
15:07:41.0908 4644 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:07:42.0003 4644 swprv - ok
15:07:42.0079 4644 [ 868DFB220A18312A12CEF01BA9AC069B ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:07:42.0126 4644 SynTP - ok
15:07:42.0203 4644 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:07:42.0310 4644 SysMain - ok
15:07:42.0339 4644 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:07:42.0367 4644 TabletInputService - ok
15:07:42.0395 4644 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:07:42.0459 4644 TapiSrv - ok
15:07:42.0496 4644 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:07:42.0541 4644 TBS - ok
15:07:42.0610 4644 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:07:42.0684 4644 Tcpip - ok
15:07:42.0742 4644 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:07:42.0788 4644 TCPIP6 - ok
15:07:42.0842 4644 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:07:42.0909 4644 tcpipreg - ok
15:07:42.0944 4644 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:07:43.0010 4644 TDPIPE - ok
15:07:43.0041 4644 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:07:43.0100 4644 TDTCP - ok
15:07:43.0158 4644 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:07:43.0267 4644 tdx - ok
15:07:43.0289 4644 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:07:43.0308 4644 TermDD - ok
15:07:43.0335 4644 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:07:43.0398 4644 TermService - ok
15:07:43.0438 4644 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:07:43.0486 4644 Themes - ok
15:07:43.0512 4644 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:07:43.0557 4644 THREADORDER - ok
15:07:43.0570 4644 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:07:43.0621 4644 TrkWks - ok
15:07:43.0693 4644 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:07:43.0761 4644 TrustedInstaller - ok
15:07:43.0794 4644 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:07:43.0874 4644 tssecsrv - ok
15:07:43.0921 4644 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:07:43.0961 4644 TsUsbFlt - ok
15:07:44.0016 4644 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:07:44.0104 4644 tunnel - ok
15:07:44.0135 4644 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:07:44.0157 4644 uagp35 - ok
15:07:44.0205 4644 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:07:44.0286 4644 udfs - ok
15:07:44.0316 4644 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:07:44.0342 4644 UI0Detect - ok
15:07:44.0362 4644 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:07:44.0380 4644 uliagpkx - ok
15:07:44.0435 4644 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
15:07:44.0482 4644 umbus - ok
15:07:44.0524 4644 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:07:44.0584 4644 UmPass - ok
15:07:44.0746 4644 [ 8F4C24F52FB2AC60D7030D038CEC7ECD ] Update Server C:\Program Files\Common Files\Defender Pro\Defender Pro Arrakis Server\bin\arrakis3.exe
15:07:44.0784 4644 Update Server - ok
15:07:44.0846 4644 Updatesrv - ok
15:07:44.0882 4644 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:07:44.0972 4644 upnphost - ok
15:07:45.0021 4644 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:07:45.0066 4644 USBAAPL64 - ok
15:07:45.0095 4644 usbbus - ok
15:07:45.0117 4644 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:07:45.0144 4644 usbccgp - ok
15:07:45.0182 4644 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:07:45.0216 4644 usbcir - ok
15:07:45.0222 4644 UsbDiag - ok
15:07:45.0262 4644 [ CB490987A7F6928A04BB838E3BD8A936 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:07:45.0293 4644 usbehci - ok
15:07:45.0319 4644 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
15:07:45.0334 4644 usbfilter - ok
15:07:45.0408 4644 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:07:45.0482 4644 usbhub - ok
15:07:45.0490 4644 USBModem - ok
15:07:45.0511 4644 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:07:45.0554 4644 usbohci - ok
15:07:45.0589 4644 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:07:45.0626 4644 usbprint - ok
15:07:45.0677 4644 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:07:45.0703 4644 usbscan - ok
15:07:45.0823 4644 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:07:45.0932 4644 USBSTOR - ok
15:07:45.0960 4644 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:07:46.0015 4644 usbuhci - ok
15:07:46.0044 4644 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:07:46.0075 4644 usbvideo - ok
15:07:46.0125 4644 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
15:07:46.0167 4644 usb_rndisx - ok
15:07:46.0202 4644 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:07:46.0273 4644 UxSms - ok
15:07:46.0292 4644 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:07:46.0308 4644 VaultSvc - ok
15:07:46.0350 4644 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:07:46.0383 4644 vdrvroot - ok
15:07:46.0421 4644 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:07:46.0481 4644 vds - ok
15:07:46.0506 4644 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:07:46.0527 4644 vga - ok
15:07:46.0554 4644 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:07:46.0616 4644 VgaSave - ok
15:07:46.0646 4644 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:07:46.0690 4644 vhdmp - ok
15:07:46.0742 4644 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:07:46.0775 4644 viaide - ok
15:07:46.0787 4644 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:07:46.0804 4644 volmgr - ok
15:07:46.0842 4644 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:07:46.0865 4644 volmgrx - ok
15:07:46.0881 4644 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:07:46.0903 4644 volsnap - ok
15:07:46.0933 4644 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:07:46.0953 4644 vsmraid - ok
15:07:47.0109 4644 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:07:47.0187 4644 VSS - ok
15:07:47.0216 4644 VSSERV - ok
15:07:47.0239 4644 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:07:47.0277 4644 vwifibus - ok
15:07:47.0309 4644 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:07:47.0358 4644 vwififlt - ok
15:07:47.0389 4644 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
15:07:47.0429 4644 vwifimp - ok
15:07:47.0465 4644 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:07:47.0522 4644 W32Time - ok
15:07:47.0580 4644 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:07:47.0618 4644 WacomPen - ok
15:07:47.0680 4644 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:07:47.0736 4644 WANARP - ok
15:07:47.0762 4644 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:07:47.0804 4644 Wanarpv6 - ok
15:07:48.0127 4644 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:07:48.0216 4644 WatAdminSvc - ok
15:07:48.0534 4644 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:07:48.0807 4644 wbengine - ok
15:07:48.0995 4644 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:07:49.0067 4644 WbioSrvc - ok
15:07:49.0177 4644 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:07:49.0253 4644 wcncsvc - ok
15:07:49.0270 4644 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:07:49.0333 4644 WcsPlugInService - ok
15:07:49.0375 4644 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:07:49.0407 4644 Wd - ok
15:07:49.0519 4644 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:07:49.0573 4644 Wdf01000 - ok
15:07:49.0611 4644 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:07:49.0892 4644 WdiServiceHost - ok
15:07:49.0906 4644 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:07:49.0938 4644 WdiSystemHost - ok
15:07:50.0013 4644 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:07:50.0083 4644 WebClient - ok
15:07:50.0429 4644 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:07:50.0599 4644 Wecsvc - ok
15:07:50.0678 4644 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:07:50.0736 4644 wercplsupport - ok
15:07:50.0780 4644 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:07:50.0898 4644 WerSvc - ok
15:07:50.0935 4644 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:07:50.0978 4644 WfpLwf - ok
15:07:50.0995 4644 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:07:51.0012 4644 WIMMount - ok
15:07:51.0037 4644 WinHttpAutoProxySvc - ok
15:07:51.0103 4644 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:07:51.0173 4644 Winmgmt - ok
15:07:51.0244 4644 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:07:51.0376 4644 WinRM - ok
15:07:51.0446 4644 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:07:51.0513 4644 WinUsb - ok
15:07:51.0558 4644 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:07:51.0637 4644 Wlansvc - ok
15:07:51.0795 4644 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:07:51.0923 4644 wlidsvc - ok
15:07:51.0960 4644 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:07:51.0976 4644 WmiAcpi - ok
15:07:52.0048 4644 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:07:52.0096 4644 wmiApSrv - ok
15:07:52.0186 4644 WMPNetworkSvc - ok
15:07:52.0211 4644 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:07:52.0321 4644 WPCSvc - ok
15:07:52.0361 4644 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:07:52.0439 4644 WPDBusEnum - ok
15:07:52.0464 4644 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:07:52.0526 4644 ws2ifsl - ok
15:07:52.0530 4644 WSearch - ok
15:07:52.0624 4644 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:07:52.0690 4644 wuauserv - ok
15:07:52.0724 4644 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:07:52.0781 4644 WudfPf - ok
15:07:52.0818 4644 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:07:52.0907 4644 WUDFRd - ok
15:07:52.0937 4644 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:07:52.0980 4644 wudfsvc - ok
15:07:53.0098 4644 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:07:53.0185 4644 WwanSvc - ok
15:07:53.0315 4644 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
15:07:53.0362 4644 yukonw7 - ok
15:07:53.0480 4644 ================ Scan global ===============================
15:07:53.0560 4644 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:07:53.0659 4644 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:07:53.0716 4644 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:07:53.0815 4644 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:07:53.0947 4644 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:07:53.0961 4644 [Global] - ok
15:07:53.0962 4644 ================ Scan MBR ==================================
15:07:54.0004 4644 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:07:54.0005 4644 Suspicious mbr (Forged): \Device\Harddisk0\DR0
15:07:54.0203 4644 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
15:07:54.0203 4644 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
15:07:54.0810 4644 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:07:54.0810 4644 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:07:54.0811 4644 ================ Scan VBR ==================================
15:07:54.0819 4644 [ C39CC8C54B5D421BC2AB05450B7ADAA9 ] \Device\Harddisk0\DR0\Partition1
15:07:54.0823 4644 \Device\Harddisk0\DR0\Partition1 - ok
15:07:54.0852 4644 [ 6CB410250FAA86751866DD638DB822AD ] \Device\Harddisk0\DR0\Partition2
15:07:54.0856 4644 \Device\Harddisk0\DR0\Partition2 - ok
15:07:54.0886 4644 [ 588F6C3ADF97CA6B7488C00BB2B8EDFB ] \Device\Harddisk0\DR0\Partition3
15:07:54.0889 4644 \Device\Harddisk0\DR0\Partition3 - ok
15:07:54.0890 4644 ================ Scan active images ========================
15:07:54.0893 4644 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
15:07:54.0893 4644 C:\Windows\System32\drivers\crashdmp.sys - ok
15:07:54.0902 4644 [ 53D8D46D51D390ABDB54ECA623165CB7 ] C:\Windows\System32\drivers\amdsata.sys
15:07:54.0902 4644 C:\Windows\System32\drivers\amdsata.sys - ok
15:07:54.0908 4644 [ 9BBD8B5855BC6578957F82341F9CDE5A ] C:\Windows\System32\drivers\Diskdump.sys
15:07:54.0908 4644 C:\Windows\System32\drivers\Diskdump.sys - ok
15:07:54.0914 4644 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
15:07:54.0914 4644 C:\Windows\System32\drivers\dumpfve.sys - ok
15:07:54.0921 4644 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
15:07:54.0921 4644 C:\Windows\System32\drivers\beep.sys - ok
15:07:54.0927 4644 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
15:07:54.0927 4644 C:\Windows\System32\drivers\cdrom.sys - ok
15:07:54.0936 4644 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
15:07:54.0936 4644 C:\Windows\System32\drivers\null.sys - ok
15:07:54.0947 4644 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
15:07:54.0947 4644 C:\Windows\System32\drivers\RDPCDD.sys - ok
15:07:54.0955 4644 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
15:07:54.0955 4644 C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:07:54.0961 4644 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
15:07:54.0961 4644 C:\Windows\System32\drivers\vga.sys - ok
15:07:54.0967 4644 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
15:07:54.0967 4644 C:\Windows\System32\drivers\videoprt.sys - ok
15:07:54.0974 4644 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
15:07:54.0974 4644 C:\Windows\System32\drivers\watchdog.sys - ok
15:07:54.0981 4644 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
15:07:54.0981 4644 C:\Windows\System32\drivers\msfs.sys - ok
15:07:54.0988 4644 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
15:07:54.0988 4644 C:\Windows\System32\drivers\npfs.sys - ok
15:07:54.0995 4644 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
15:07:54.0995 4644 C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:07:55.0001 4644 [ 7AFB43894A9BCEA183EBCA27D2BAA48C ] C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfndisf6.sys
15:07:55.0002 4644 C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfndisf6.sys - ok
15:07:55.0009 4644 [ 37E7491CA07AB737E68D655D658E1E94 ] C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfwfpf.sys
15:07:55.0009 4644 C:\Program Files\Common Files\Defender Pro\Defender Pro Firewall\bdfwfpf.sys - ok
15:07:55.0016 4644 [ 69BD90E337625F96C718CACE7A9C9E29 ] C:\Windows\System32\drivers\avgtdia.sys
15:07:55.0016 4644 C:\Windows\System32\drivers\avgtdia.sys - ok
15:07:55.0024 4644 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
15:07:55.0024 4644 C:\Windows\System32\drivers\tdi.sys - ok
15:07:55.0031 4644 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
15:07:55.0031 4644 C:\Windows\System32\drivers\tdx.sys - ok
15:07:55.0037 4644 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
15:07:55.0038 4644 C:\Windows\System32\drivers\netbt.sys - ok
15:07:55.0044 4644 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
15:07:55.0044 4644 C:\Windows\System32\drivers\afd.sys - ok
15:07:55.0051 4644 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
15:07:55.0051 4644 C:\Windows\System32\drivers\pacer.sys - ok
15:07:55.0058 4644 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
15:07:55.0059 4644 C:\Windows\System32\drivers\wfplwf.sys - ok
15:07:55.0066 4644 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
15:07:55.0066 4644 C:\Windows\System32\drivers\netbios.sys - ok
15:07:55.0074 4644 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
15:07:55.0074 4644 C:\Windows\System32\drivers\vwififlt.sys - ok
15:07:55.0085 4644 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
15:07:55.0085 4644 C:\Windows\System32\drivers\wanarp.sys - ok
15:07:55.0093 4644 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
15:07:55.0093 4644 C:\Windows\System32\drivers\termdd.sys - ok
15:07:55.0097 4644 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
15:07:55.0097 4644 C:\Windows\System32\drivers\rdbss.sys - ok
15:07:55.0103 4644 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
15:07:55.0104 4644 C:\Windows\System32\drivers\discache.sys - ok
15:07:55.0111 4644 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
15:07:55.0111 4644 C:\Windows\System32\drivers\mssmbios.sys - ok
15:07:55.0117 4644 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
15:07:55.0117 4644 C:\Windows\System32\drivers\nsiproxy.sys - ok
15:07:55.0123 4644 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
15:07:55.0123 4644 C:\Windows\System32\drivers\blbdrive.sys - ok
15:07:55.0130 4644 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
15:07:55.0130 4644 C:\Windows\System32\drivers\dfsc.sys - ok
15:07:55.0136 4644 [ FACD18A89FDEBC35C85CAF762B294BE2 ] C:\Windows\System32\drivers\avgldx64.sys
15:07:55.0136 4644 C:\Windows\System32\drivers\avgldx64.sys - ok
15:07:55.0143 4644 [ B89DEFF4817B4CC6FC2BCD8F83B4E75D ] C:\Windows\System32\drivers\bdvedisk.sys
15:07:55.0143 4644 C:\Windows\System32\drivers\bdvedisk.sys - ok
15:07:55.0149 4644 [ 241C32E942869FD1351CC5864976C3AC ] C:\Windows\System32\drivers\avgidsdrivera.sys
15:07:55.0150 4644 C:\Windows\System32\drivers\avgidsdrivera.sys - ok
15:07:55.0156 4644 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
15:07:55.0156 4644 C:\Windows\System32\drivers\tunnel.sys - ok
15:07:55.0162 4644 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
15:07:55.0162 4644 C:\Windows\System32\drivers\amdppm.sys - ok
15:07:55.0168 4644 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
15:07:55.0168 4644 C:\Windows\System32\smss.exe - ok
15:07:55.0175 4644 [ 91E1DAF0193BD2AB90B1B35C987237FE ] C:\Windows\System32\drivers\atikmpag.sys
15:07:55.0175 4644 C:\Windows\System32\drivers\atikmpag.sys - ok
15:07:55.0182 4644 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
15:07:55.0182 4644 C:\Windows\System32\ntdll.dll - ok
15:07:55.0190 4644 [ F284DA3156166B45D02ACC3C228ADE1E ] C:\Windows\System32\drivers\atipmdag.sys
15:07:55.0190 4644 C:\Windows\System32\drivers\atipmdag.sys - ok
15:07:55.0196 4644 [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
15:07:55.0196 4644 C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:07:55.0202 4644 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
15:07:55.0202 4644 C:\Windows\System32\drivers\dxgmms1.sys - ok
15:07:55.0209 4644 [ 96ABF88241F90FF647E55C934C55C2F1 ] C:\Windows\System32\drivers\athrx.sys
15:07:55.0209 4644 C:\Windows\System32\drivers\athrx.sys - ok
15:07:55.0215 4644 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
15:07:55.0215 4644 C:\Windows\System32\drivers\vwifibus.sys - ok
15:07:55.0221 4644 [ 4FBDA07EF0A3097CE14C5CABF723B278 ] C:\Windows\System32\drivers\Rt64win7.sys
15:07:55.0222 4644 C:\Windows\System32\drivers\Rt64win7.sys - ok
15:07:55.0228 4644 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
15:07:55.0228 4644 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
15:07:55.0234 4644 [ A91291136D1E70966645252F6B828711 ] C:\Windows\System32\drivers\usbport.sys
15:07:55.0235 4644 C:\Windows\System32\drivers\usbport.sys - ok
15:07:55.0241 4644 [ 2C780746DC44A28FE67004DC58173F05 ] C:\Windows\System32\drivers\usbfilter.sys
15:07:55.0241 4644 C:\Windows\System32\drivers\usbfilter.sys - ok
15:07:55.0247 4644 [ 58E546BBAF87664FC57E0F6081E4F609 ] C:\Windows\System32\drivers\usbohci.sys
15:07:55.0247 4644 C:\Windows\System32\drivers\usbohci.sys - ok
15:07:55.0255 4644 [ CB490987A7F6928A04BB838E3BD8A936 ] C:\Windows\System32\drivers\usbehci.sys
15:07:55.0255 4644 C:\Windows\System32\drivers\usbehci.sys - ok
15:07:55.0261 4644 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
15:07:55.0261 4644 C:\Windows\System32\drivers\hdaudbus.sys - ok
15:07:55.0268 4644 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
15:07:55.0268 4644 C:\Windows\System32\drivers\i8042prt.sys - ok
15:07:55.0276 4644 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
15:07:55.0276 4644 C:\Windows\System32\drivers\kbdclass.sys - ok
15:07:55.0282 4644 [ 868DFB220A18312A12CEF01BA9AC069B ] C:\Windows\System32\drivers\SynTP.sys
15:07:55.0282 4644 C:\Windows\System32\drivers\SynTP.sys - ok
15:07:55.0288 4644 [ 63C8D74BED9F80F4DD0AA7A3101EB639 ] C:\Windows\System32\drivers\usbd.sys
15:07:55.0288 4644 C:\Windows\System32\drivers\usbd.sys - ok
15:07:55.0295 4644 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
15:07:55.0295 4644 C:\Windows\System32\drivers\CmBatt.sys - ok
15:07:55.0302 4644 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
15:07:55.0302 4644 C:\Windows\System32\drivers\mouclass.sys - ok
15:07:55.0309 4644 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
15:07:55.0309 4644 C:\Windows\System32\drivers\CompositeBus.sys - ok
15:07:55.0316 4644 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
15:07:55.0316 4644 C:\Windows\System32\drivers\wmiacpi.sys - ok
15:07:55.0322 4644 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
15:07:55.0322 4644 C:\Windows\System32\drivers\agilevpn.sys - ok
15:07:55.0329 4644 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
15:07:55.0329 4644 C:\Windows\System32\drivers\rasl2tp.sys - ok
15:07:55.0336 4644 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
15:07:55.0336 4644 C:\Windows\System32\drivers\ndistapi.sys - ok
15:07:55.0343 4644 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
15:07:55.0343 4644 C:\Windows\System32\drivers\ndiswan.sys - ok
15:07:55.0350 4644 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
15:07:55.0350 4644 C:\Windows\System32\drivers\raspppoe.sys - ok
15:07:55.0356 4644 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
15:07:55.0357 4644 C:\Windows\System32\drivers\raspptp.sys - ok
15:07:55.0363 4644 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
15:07:55.0363 4644 C:\Windows\System32\drivers\rassstp.sys - ok
15:07:55.0369 4644 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
15:07:55.0369 4644 C:\Windows\System32\drivers\ks.sys - ok
15:07:55.0377 4644 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
15:07:55.0377 4644 C:\Windows\System32\drivers\swenum.sys - ok
15:07:55.0384 4644 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
15:07:55.0384 4644 C:\Windows\System32\drivers\umbus.sys - ok
15:07:55.0391 4644 [ DC96BD9CCB8403251BCF25047573558E ] C:\Windows\System32\drivers\usbhub.sys
15:07:55.0391 4644 C:\Windows\System32\drivers\usbhub.sys - ok
15:07:55.0410 4644 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
15:07:55.0410 4644 C:\Windows\System32\drivers\ndproxy.sys - ok
15:07:55.0416 4644 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
15:07:55.0416 4644 C:\Windows\System32\drivers\drmk.sys - ok
15:07:55.0423 4644 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
15:07:55.0423 4644 C:\Windows\System32\drivers\portcls.sys - ok
15:07:55.0431 4644 [ B88E24BD77A0CE2CFFEE2FACF1151BE0 ] C:\Windows\System32\drivers\RTKVHD64.sys
15:07:55.0431 4644 C:\Windows\System32\drivers\RTKVHD64.sys - ok
15:07:55.0437 4644 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
15:07:55.0437 4644 C:\Windows\System32\drivers\ksthunk.sys - ok
15:07:55.0445 4644 [ C98356D813B581E9C425B42A5D146CE0 ] C:\Windows\System32\drivers\agrsm64.sys
15:07:55.0445 4644 C:\Windows\System32\drivers\agrsm64.sys - ok
15:07:55.0452 4644 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
15:07:55.0452 4644 C:\Windows\System32\drivers\modem.sys - ok
15:07:55.0459 4644 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
15:07:55.0459 4644 C:\Windows\System32\autochk.exe - ok
15:07:55.0465 4644 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
15:07:55.0465 4644 C:\Windows\System32\drivers\hidparse.sys - ok
15:07:55.0472 4644 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
15:07:55.0472 4644 C:\Windows\System32\drivers\hidclass.sys - ok
15:07:55.0479 4644 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
15:07:55.0479 4644 C:\Windows\System32\drivers\hidusb.sys - ok
15:07:55.0483 4644 [ 9D07036B26F23FA56A47DF732F3F5146 ] C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
15:07:55.0483 4644 C:\PROGRA~2\AVG\AVG2013\avgrsa.exe - ok
15:07:55.0490 4644 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
15:07:55.0490 4644 C:\Windows\System32\drivers\mouhid.sys - ok
15:07:55.0496 4644 [ CA81F2ABE0FD82B6D9ECF07E80738780 ] C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll
15:07:55.0496 4644 C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll - ok
15:07:55.0502 4644 [ B988968C8E5A6832CDDF05A74601CF7C ] C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll
15:07:55.0503 4644 C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll - ok
15:07:55.0510 4644 [ 323336FB1DA273A0715844BC695951A0 ] C:\Program Files (x86)\AVG\AVG2013\avgloga.dll
15:07:55.0511 4644 C:\Program Files (x86)\AVG\AVG2013\avgloga.dll - ok
15:07:55.0517 4644 [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
15:07:55.0517 4644 C:\Windows\System32\drivers\udfs.sys - ok
15:07:55.0524 4644 [ 10BC927A9035AA6B244706D9C1641F16 ] C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll
15:07:55.0524 4644 C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll - ok
15:07:55.0530 4644 [ 55DED6BDA026AEBEAB1FDA6E32D9F5B5 ] C:\PROGRA~2\AVG\AVG2013\avgclita.dll
15:07:55.0530 4644 C:\PROGRA~2\AVG\AVG2013\avgclita.dll - ok
15:07:55.0537 4644 [ 4B969AA85CDE4FB9FBCA5F99A66C507B ] C:\PROGRA~2\AVG\AVG2013\avgcclia.dll
15:07:55.0537 4644 C:\PROGRA~2\AVG\AVG2013\avgcclia.dll - ok
15:07:55.0543 4644 [ E55BCC2A12A124216D8B239DF60FDBC3 ] C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
15:07:55.0543 4644 C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe - ok
15:07:55.0550 4644 [ 3D50B01AAD481436596BDA001D150982 ] C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll
15:07:55.0550 4644 C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll - ok
15:07:55.0557 4644 [ 046DF7D9A474763B9A3D19B33AA278E3 ] C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll
15:07:55.0557 4644 C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll - ok
15:07:55.0563 4644 [ 84A4EE57462C8483AAE3F1DF2D82F4ED ] C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll
15:07:55.0564 4644 C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll - ok
15:07:55.0570 4644 [ C3299EB4427E4058A99A28B569B5E555 ] C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll
15:07:55.0570 4644 C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll - ok
15:07:55.0578 4644 [ 9A94644E2A9890FC9A7EE961057FFBA1 ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll
15:07:55.0578 4644 C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll - ok
15:07:55.0585 4644 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
15:07:55.0585 4644 C:\Windows\System32\comdlg32.dll - ok
15:07:55.0592 4644 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
15:07:55.0592 4644 C:\Windows\System32\gdi32.dll - ok
15:07:55.0599 4644 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
15:07:55.0600 4644 C:\Windows\System32\normaliz.dll - ok
15:07:55.0608 4644 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
15:07:55.0608 4644 C:\Windows\System32\ws2_32.dll - ok
15:07:55.0614 4644 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
15:07:55.0615 4644 C:\Windows\System32\ole32.dll - ok
15:07:55.0623 4644 [ 26036E228D2467DE6975AD819C22C043 ] C:\Windows\System32\rpcrt4.dll
15:07:55.0624 4644 C:\Windows\System32\rpcrt4.dll - ok
15:07:55.0630 4644 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
15:07:55.0630 4644 C:\Windows\System32\oleaut32.dll - ok
15:07:55.0637 4644 [ 289C5E0A386E7B6CA9539D66D15E22CC ] C:\Windows\System32\urlmon.dll
15:07:55.0637 4644 C:\Windows\System32\urlmon.dll - ok
15:07:55.0644 4644 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
15:07:55.0644 4644 C:\Windows\System32\user32.dll - ok
15:07:55.0650 4644 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
15:07:55.0650 4644 C:\Windows\System32\clbcatq.dll - ok
15:07:55.0657 4644 [ AC155DD9BD1E6D3B740826A4D1C68AAE ] C:\Windows\System32\wininet.dll
15:07:55.0657 4644 C:\Windows\System32\wininet.dll - ok
15:07:55.0664 4644 [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
15:07:55.0664 4644 C:\Windows\System32\kernel32.dll - ok
15:07:55.0670 4644 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
15:07:55.0670 4644 C:\Windows\System32\shlwapi.dll - ok
15:07:55.0677 4644 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
15:07:55.0677 4644 C:\Windows\System32\advapi32.dll - ok
15:07:55.0684 4644 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
15:07:55.0684 4644 C:\Windows\System32\difxapi.dll - ok
15:07:55.0690 4644 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
15:07:55.0690 4644 C:\Windows\System32\imagehlp.dll - ok
15:07:55.0698 4644 [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
15:07:55.0698 4644 C:\Windows\System32\shell32.dll - ok
15:07:55.0704 4644 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
15:07:55.0704 4644 C:\Windows\System32\msvcrt.dll - ok
15:07:55.0711 4644 [ 65546D87F7A78AB31841A536456CB94D ] C:\Windows\System32\iertutil.dll
15:07:55.0711 4644 C:\Windows\System32\iertutil.dll - ok
15:07:55.0718 4644 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
15:07:55.0718 4644 C:\Windows\System32\Wldap32.dll - ok
15:07:55.0724 4644 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
15:07:55.0724 4644 C:\Windows\System32\imm32.dll - ok
15:07:55.0731 4644 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
15:07:55.0731 4644 C:\Windows\System32\lpk.dll - ok
15:07:55.0737 4644 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
15:07:55.0737 4644 C:\Windows\System32\msctf.dll - ok
15:07:55.0746 4644 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
15:07:55.0746 4644 C:\Windows\System32\nsi.dll - ok
15:07:55.0751 4644 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
15:07:55.0751 4644 C:\Windows\System32\psapi.dll - ok
15:07:55.0757 4644 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
15:07:55.0757 4644 C:\Windows\System32\usp10.dll - ok
15:07:55.0764 4644 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
15:07:55.0764 4644 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
15:07:55.0771 4644 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
15:07:55.0771 4644 C:\Windows\System32\sechost.dll - ok
15:07:55.0778 4644 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
15:07:55.0778 4644 C:\Windows\System32\setupapi.dll - ok
15:07:55.0784 4644 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
15:07:55.0784 4644 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
15:07:55.0791 4644 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
15:07:55.0791 4644 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
15:07:55.0798 4644 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
15:07:55.0798 4644 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
15:07:55.0804 4644 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
15:07:55.0804 4644 C:\Windows\System32\cfgmgr32.dll - ok
15:07:55.0811 4644 [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
15:07:55.0811 4644 C:\Windows\System32\KernelBase.dll - ok
15:07:55.0817 4644 [ 959041D7014C97133D859B45BCA0FC58 ] C:\Windows\System32\wintrust.dll
15:07:55.0817 4644 C:\Windows\System32\wintrust.dll - ok
15:07:55.0823 4644 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
15:07:55.0823 4644 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
15:07:55.0830 4644 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
15:07:55.0830 4644 C:\Windows\System32\comctl32.dll - ok
15:07:55.0836 4644 [ 287998A9BA0140ABB59792CDEB2F8483 ] C:\Windows\System32\crypt32.dll
15:07:55.0836 4644 C:\Windows\System32\crypt32.dll - ok
15:07:55.0843 4644 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
15:07:55.0843 4644 C:\Windows\System32\devobj.dll - ok
15:07:55.0848 4644 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
15:07:55.0849 4644 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
15:07:55.0855 4644 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
15:07:55.0855 4644 C:\Windows\System32\msasn1.dll - ok
15:07:55.0858 4644 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
15:07:55.0859 4644 C:\Windows\SysWOW64\normaliz.dll - ok
15:07:55.0865 4644 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
15:07:55.0865 4644 C:\Windows\System32\drivers\dxapi.sys - ok
15:07:55.0871 4644 [ 73601028E7C44154318AE91D2EB2EDB3 ] C:\Windows\System32\win32k.sys
15:07:55.0871 4644 C:\Windows\System32\win32k.sys - ok
15:07:55.0878 4644 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
15:07:55.0878 4644 C:\Windows\System32\basesrv.dll - ok
15:07:55.0884 4644 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
15:07:55.0884 4644 C:\Windows\System32\csrsrv.dll - ok
15:07:55.0890 4644 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
15:07:55.0890 4644 C:\Windows\System32\csrss.exe - ok
15:07:55.0897 4644 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
15:07:55.0897 4644 C:\Windows\System32\winsrv.dll - ok
15:07:55.0903 4644 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
15:07:55.0903 4644 C:\Windows\System32\drivers\monitor.sys - ok
15:07:55.0910 4644 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
15:07:55.0910 4644 C:\Windows\System32\tsddd.dll - ok
15:07:55.0915 4644 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
15:07:55.0915 4644 C:\Windows\System32\sxssrv.dll - ok
15:07:55.0921 4644 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
15:07:55.0921 4644 C:\Windows\System32\wininit.exe - ok
15:07:55.0927 4644 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
15:07:55.0927 4644 C:\Windows\System32\cdd.dll - ok
15:07:55.0934 4644 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
15:07:55.0934 4644 C:\Windows\System32\profapi.dll - ok
15:07:55.0940 4644 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
15:07:55.0940 4644 C:\Windows\System32\KBDUS.DLL - ok
15:07:55.0946 4644 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
15:07:55.0946 4644 C:\Windows\System32\RpcRtRemote.dll - ok
15:07:55.0952 4644 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
15:07:55.0952 4644 C:\Windows\System32\sxs.dll - ok
15:07:55.0958 4644 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
15:07:55.0958 4644 C:\Windows\System32\WlS0WndH.dll - ok
15:07:55.0964 4644 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
15:07:55.0965 4644 C:\Windows\System32\cryptbase.dll - ok
15:07:55.0971 4644 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
15:07:55.0971 4644 C:\Windows\System32\apphelp.dll - ok
15:07:55.0977 4644 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
15:07:55.0978 4644 C:\Windows\System32\lsass.exe - ok
15:07:55.0981 4644 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
15:07:55.0981 4644 C:\Windows\System32\lsm.exe - ok
15:07:55.0987 4644 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
15:07:55.0987 4644 C:\Windows\System32\services.exe - ok
15:07:55.0994 4644 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
15:07:55.0994 4644 C:\Windows\System32\sysntfy.dll - ok
15:07:56.0000 4644 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
15:07:56.0000 4644 C:\Windows\System32\wmsgapi.dll - ok
15:07:56.0006 4644 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
15:07:56.0006 4644 C:\Windows\System32\sspicli.dll - ok
15:07:56.0012 4644 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
15:07:56.0012 4644 C:\Windows\System32\scesrv.dll - ok
15:07:56.0018 4644 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
15:07:56.0018 4644 C:\Windows\System32\scext.dll - ok
15:07:56.0025 4644 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
15:07:56.0025 4644 C:\Windows\System32\secur32.dll - ok
15:07:56.0031 4644 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
15:07:56.0031 4644 C:\Windows\System32\srvcli.dll - ok
15:07:56.0037 4644 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
15:07:56.0037 4644 C:\Windows\System32\lsasrv.dll - ok
15:07:56.0043 4644 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
15:07:56.0043 4644 C:\Windows\System32\sspisrv.dll - ok
15:07:56.0050 4644 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
15:07:56.0050 4644 C:\Windows\System32\cryptdll.dll - ok
15:07:56.0056 4644 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
15:07:56.0056 4644 C:\Windows\System32\samsrv.dll - ok
15:07:56.0062 4644 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
15:07:56.0062 4644 C:\Windows\System32\wevtapi.dll - ok
15:07:56.0069 4644 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
15:07:56.0069 4644 C:\Windows\System32\authz.dll - ok
15:07:56.0075 4644 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
15:07:56.0075 4644 C:\Windows\System32\bcrypt.dll - ok
15:07:56.0081 4644 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
15:07:56.0081 4644 C:\Windows\System32\cngaudit.dll - ok
15:07:56.0090 4644 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
15:07:56.0090 4644 C:\Windows\System32\ncrypt.dll - ok
15:07:56.0095 4644 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
15:07:56.0095 4644 C:\Windows\System32\atmfd.dll - ok
15:07:56.0101 4644 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
15:07:56.0101 4644 C:\Windows\System32\cryptsp.dll - ok
15:07:56.0108 4644 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
15:07:56.0108 4644 C:\Windows\System32\kerberos.dll - ok
15:07:56.0112 4644 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
15:07:56.0112 4644 C:\Windows\System32\msprivs.dll - ok
15:07:56.0118 4644 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
15:07:56.0118 4644 C:\Windows\System32\negoexts.dll - ok
15:07:56.0123 4644 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
15:07:56.0124 4644 C:\Windows\System32\netjoin.dll - ok
15:07:56.0130 4644 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
15:07:56.0130 4644 C:\Windows\System32\msv1_0.dll - ok
15:07:56.0136 4644 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
15:07:56.0136 4644 C:\Windows\System32\mswsock.dll - ok
15:07:56.0142 4644 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
15:07:56.0142 4644 C:\Windows\System32\wship6.dll - ok
15:07:56.0149 4644 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
15:07:56.0149 4644 C:\Windows\System32\dnsapi.dll - ok
15:07:56.0155 4644 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
15:07:56.0155 4644 C:\Windows\System32\logoncli.dll - ok
15:07:56.0161 4644 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
15:07:56.0161 4644 C:\Windows\System32\netlogon.dll - ok
15:07:56.0167 4644 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
15:07:56.0168 4644 C:\Windows\System32\schannel.dll - ok
15:07:56.0174 4644 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
15:07:56.0174 4644 C:\Windows\System32\rsaenh.dll - ok
15:07:56.0180 4644 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
15:07:56.0180 4644 C:\Windows\System32\wdigest.dll - ok
15:07:56.0186 4644 [ 918434C02A5A8ED1DD1B16A2FF16409C ] C:\Windows\System32\LIVESSP.DLL
15:07:56.0186 4644 C:\Windows\System32\LIVESSP.DLL - ok
15:07:56.0193 4644 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
15:07:56.0193 4644 C:\Windows\System32\pku2u.dll - ok
15:07:56.0203 4644 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
15:07:56.0203 4644 C:\Windows\System32\TSpkg.dll - ok
15:07:56.0210 4644 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
15:07:56.0210 4644 C:\Windows\System32\bcryptprimitives.dll - ok
15:07:56.0218 4644 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
15:07:56.0218 4644 C:\Windows\System32\efslsaext.dll - ok
15:07:56.0225 4644 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
15:07:56.0225 4644 C:\Windows\System32\credssp.dll - ok
15:07:56.0233 4644 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
15:07:56.0233 4644 C:\Windows\System32\ubpm.dll - ok
15:07:56.0240 4644 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
15:07:56.0240 4644 C:\Windows\System32\scecli.dll - ok
15:07:56.0247 4644 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
15:07:56.0247 4644 C:\Windows\System32\winsta.dll - ok
15:07:56.0254 4644 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
15:07:56.0254 4644 C:\Windows\System32\winlogon.exe - ok
15:07:56.0260 4644 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
15:07:56.0261 4644 C:\Windows\System32\svchost.exe - ok
15:07:56.0268 4644 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
15:07:56.0268 4644 C:\Windows\System32\SPInf.dll - ok
15:07:56.0274 4644 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
15:07:56.0274 4644 C:\Windows\System32\umpnpmgr.dll - ok
15:07:56.0280 4644 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
15:07:56.0281 4644 C:\Windows\System32\devrtl.dll - ok
15:07:56.0287 4644 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
15:07:56.0287 4644 C:\Windows\System32\gpapi.dll - ok
15:07:56.0293 4644 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
15:07:56.0294 4644 C:\Windows\System32\userenv.dll - ok
15:07:56.0300 4644 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
15:07:56.0300 4644 C:\Windows\System32\pcwum.dll - ok
15:07:56.0306 4644 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
15:07:56.0306 4644 C:\Windows\System32\umpo.dll - ok
15:07:56.0314 4644 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
15:07:56.0314 4644 C:\Windows\System32\powrprof.dll - ok
15:07:56.0323 4644 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
15:07:56.0323 4644 C:\Windows\System32\drivers\luafv.sys - ok
15:07:56.0336 4644 [ 0BB97D43299910CBFBA59C461B99B910 ] C:\Windows\System32\drivers\mbam.sys
15:07:56.0336 4644 C:\Windows\System32\drivers\mbam.sys - ok
15:07:56.0344 4644 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
15:07:56.0344 4644 C:\Windows\System32\drivers\WUDFPf.sys - ok
15:07:56.0353 4644 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
15:07:56.0353 4644 C:\Windows\System32\rpcss.dll - ok
15:07:56.0360 4644 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
15:07:56.0360 4644 C:\Windows\System32\RpcEpMap.dll - ok
15:07:56.0369 4644 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
15:07:56.0369 4644 C:\Windows\System32\wshqos.dll - ok
15:07:56.0375 4644 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
15:07:56.0375 4644 C:\Windows\System32\WSHTCPIP.DLL - ok
15:07:56.0382 4644 [ 2F1AA09E83219EF615527D4F07A97E0E ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\vsserv.exe
15:07:56.0383 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\vsserv.exe - ok
15:07:56.0389 4644 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
15:07:56.0389 4644 C:\Windows\System32\FirewallAPI.dll - ok
15:07:56.0395 4644 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
15:07:56.0395 4644 C:\Windows\System32\version.dll - ok
15:07:56.0402 4644 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
15:07:56.0402 4644 C:\Windows\System32\LogonUI.exe - ok
15:07:56.0409 4644 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
15:07:56.0409 4644 C:\Windows\System32\webio.dll - ok
15:07:56.0417 4644 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
15:07:56.0417 4644 C:\Windows\System32\winhttp.dll - ok
15:07:56.0424 4644 [ 2AF683EF33E7A83543655FA597B5D9C5 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdutils.dll
15:07:56.0424 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdutils.dll - ok
15:07:56.0431 4644 [ 8D7C00D407C2D873939A82D8EF314CD5 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\npcomm.dll
15:07:56.0431 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\npcomm.dll - ok
15:07:56.0439 4644 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
15:07:56.0439 4644 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
15:07:56.0446 4644 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
15:07:56.0446 4644 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
15:07:56.0454 4644 [ 33289345BADEE17AD0631C9DFD90F7D4 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\wslib.dll
15:07:56.0454 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\wslib.dll - ok
15:07:56.0462 4644 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
15:07:56.0462 4644 C:\Windows\System32\IPHLPAPI.DLL - ok
15:07:56.0470 4644 [ B3B37F44590ED77C8103D7121E77B440 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\wsutils.dll
15:07:56.0471 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\wsutils.dll - ok
15:07:56.0477 4644 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
15:07:56.0477 4644 C:\Windows\System32\winnsi.dll - ok
15:07:56.0484 4644 [ C378563046424FE2E8BC1084CDA81D6B ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\wspack.dll
15:07:56.0484 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\wspack.dll - ok
15:07:56.0490 4644 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
15:07:56.0490 4644 C:\Windows\System32\netapi32.dll - ok
15:07:56.0496 4644 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
15:07:56.0496 4644 C:\Windows\System32\netutils.dll - ok
15:07:56.0503 4644 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
15:07:56.0503 4644 C:\Windows\System32\wkscli.dll - ok
15:07:56.0509 4644 [ F6381835F661EBEAC800FFB5D036953A ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\txmlutil.dll
15:07:56.0509 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\txmlutil.dll - ok
15:07:56.0516 4644 [ 466401CE2D41A2C215F65D2FE597A3AB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\txmlx.dll
15:07:56.0516 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\txmlx.dll - ok
15:07:56.0522 4644 [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
15:07:56.0522 4644 C:\Windows\System32\authui.dll - ok
15:07:56.0528 4644 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
15:07:56.0528 4644 C:\Windows\System32\samcli.dll - ok
15:07:56.0534 4644 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
15:07:56.0534 4644 C:\Windows\System32\wtsapi32.dll - ok
15:07:56.0541 4644 [ 9EE4B71A5DF80CE98139540473F45BA9 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdelev.dll
15:07:56.0541 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdelev.dll - ok
15:07:56.0547 4644 [ B8BB0EF02C69BD603B3E54ED0EFD3541 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdsubmit.dll
15:07:56.0547 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdsubmit.dll - ok
15:07:56.0554 4644 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
15:07:56.0554 4644 C:\Windows\System32\cryptui.dll - ok
15:07:56.0560 4644 [ 5A2162908D18E3C71411C118BDADDF5D ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\strdecoder.dll
15:07:56.0560 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\strdecoder.dll - ok
15:07:56.0567 4644 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
15:07:56.0567 4644 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
15:07:56.0574 4644 [ E734779103B20972E415A74EECAA5673 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\smtplib.dll
15:07:56.0574 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\smtplib.dll - ok
15:07:56.0580 4644 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
15:07:56.0580 4644 C:\Windows\System32\shacct.dll - ok
15:07:56.0589 4644 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
15:07:56.0589 4644 C:\Windows\System32\winmm.dll - ok
15:07:56.0593 4644 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
15:07:56.0593 4644 C:\Windows\System32\propsys.dll - ok
15:07:56.0601 4644 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
15:07:56.0602 4644 C:\Windows\System32\samlib.dll - ok
15:07:56.0608 4644 [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
15:07:56.0609 4644 C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
15:07:56.0612 4644 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
15:07:56.0612 4644 C:\Windows\System32\uxtheme.dll - ok
15:07:56.0620 4644 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
15:07:56.0620 4644 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
15:07:56.0627 4644 [ A6BAD072BB272490166932BAE86BACF4 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\sqlite3.dll
15:07:56.0627 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\sqlite3.dll - ok
15:07:56.0633 4644 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
15:07:56.0633 4644 C:\Windows\System32\dui70.dll - ok
15:07:56.0640 4644 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
15:07:56.0640 4644 C:\Windows\System32\msimg32.dll - ok
15:07:56.0647 4644 [ 18CAAF21CBA3EAEE17BBA5D3807F29B8 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
15:07:56.0647 4644 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
15:07:56.0653 4644 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
15:07:56.0654 4644 C:\Windows\System32\duser.dll - ok
15:07:56.0659 4644 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
15:07:56.0659 4644 C:\Windows\System32\dwmapi.dll - ok
15:07:56.0665 4644 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
15:07:56.0666 4644 C:\Windows\System32\hid.dll - ok
15:07:56.0671 4644 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
15:07:56.0672 4644 C:\Windows\System32\MMDevAPI.dll - ok
15:07:56.0678 4644 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
15:07:56.0678 4644 C:\Windows\System32\SndVolSSO.dll - ok
15:07:56.0684 4644 [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
15:07:56.0684 4644 C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
15:07:56.0691 4644 [ 4ECF273E4F44CC2D051399BE7552F971 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\log.dll
15:07:56.0691 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\log.dll - ok
15:07:56.0698 4644 [ D6F630C1FD7F436316093AE500363B19 ] C:\Windows\System32\xmllite.dll
15:07:56.0698 4644 C:\Windows\System32\xmllite.dll - ok
15:07:56.0704 4644 [ A59B38FF847488E892C15DA0799052AC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\sqlite.dll
15:07:56.0705 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\sqlite.dll - ok
15:07:56.0711 4644 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
15:07:56.0711 4644 C:\Windows\System32\msxml3.dll - ok
15:07:56.0717 4644 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
15:07:56.0717 4644 C:\Windows\System32\WindowsCodecs.dll - ok
15:07:56.0723 4644 [ 78F727A4645BEFF7F343CE7D2D117391 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\iservconfig.dll
15:07:56.0723 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\iservconfig.dll - ok
15:07:56.0730 4644 [ 1FC01E0FFB44A713F2004EB14044D254 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\detectsmtpsettings.ui
15:07:56.0730 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\detectsmtpsettings.ui - ok
15:07:56.0736 4644 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
15:07:56.0736 4644 C:\Windows\System32\ntmarta.dll - ok
15:07:56.0743 4644 [ 1DF7F39749CEEA45BED371DC8719C554 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\privscan.dll
15:07:56.0743 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\privscan.dll - ok
15:07:56.0749 4644 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
15:07:56.0749 4644 C:\Windows\System32\mlang.dll - ok
15:07:56.0755 4644 [ 610D58D965D4AD689190FB411FB5F36F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\dbokf.dll
15:07:56.0756 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\dbokf.dll - ok
15:07:56.0762 4644 [ 5BE0AA57211B4765FA45E054420312DF ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdch.dll
15:07:56.0762 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdch.dll - ok
15:07:56.0769 4644 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
15:07:56.0769 4644 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
15:07:56.0775 4644 [ EAB0E2696A5CABA31EF6BC306559F978 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\iph.dll
15:07:56.0775 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\iph.dll - ok
15:07:56.0781 4644 [ 0DE7BF2A2E64A841F9ABF9558870D9C4 ] C:\Windows\System32\atiesrxx.exe
15:07:56.0781 4644 C:\Windows\System32\atiesrxx.exe - ok
15:07:56.0788 4644 [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
15:07:56.0788 4644 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
15:07:56.0795 4644 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
15:07:56.0795 4644 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
15:07:56.0801 4644 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
15:07:56.0801 4644 C:\Windows\System32\winbrand.dll - ok
15:07:56.0808 4644 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:07:56.0808 4644 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:07:56.0814 4644 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
15:07:56.0814 4644 C:\Windows\System32\VaultCredProvider.dll - ok
15:07:56.0823 4644 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
15:07:56.0823 4644 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
15:07:56.0830 4644 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
15:07:56.0830 4644 C:\Windows\System32\BioCredProv.dll - ok
15:07:56.0836 4644 [ E956FD04B996E7E56BCC259B29A09EBC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\vsserv.ui
15:07:56.0836 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\vsserv.ui - ok
15:07:56.0843 4644 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
15:07:56.0843 4644 C:\Windows\System32\credui.dll - ok
15:07:56.0848 4644 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
15:07:56.0849 4644 C:\Windows\System32\vaultcli.dll - ok
15:07:56.0855 4644 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
15:07:56.0855 4644 C:\Windows\System32\winbio.dll - ok
15:07:56.0861 4644 [ FB25067C233B686B50F29ABD688B2A6D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
15:07:56.0861 4644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
15:07:56.0865 4644 [ 9FA0B1C783F62E698DE7D5333FB14F9F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\framework.dll
15:07:56.0865 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\framework.dll - ok
15:07:56.0872 4644 [ 7AC685785337637A2A6932C85A6C9DFF ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\settings.dll
15:07:56.0872 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\settings.dll - ok
15:07:56.0879 4644 [ E19C7934F5BB828F3EF89079A6FD6629 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\logger.ui
15:07:56.0879 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\logger.ui - ok
15:07:56.0885 4644 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
15:07:56.0885 4644 C:\Windows\System32\certCredProvider.dll - ok
15:07:56.0892 4644 [ 1CFCF40838B15A9236ADAAFCBCC8F063 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\sfal.dll
15:07:56.0892 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\sfal.dll - ok
15:07:56.0899 4644 [ 8799A5EECBABAE639382B70D4891EE7E ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdfltdp.dll
15:07:56.0899 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdfltdp.dll - ok
15:07:56.0905 4644 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
15:07:56.0906 4644 C:\Windows\System32\fltLib.dll - ok
15:07:56.0911 4644 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
15:07:56.0911 4644 C:\Windows\System32\rasapi32.dll - ok
15:07:56.0918 4644 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
15:07:56.0918 4644 C:\Windows\System32\rasman.dll - ok
15:07:56.0924 4644 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
15:07:56.0924 4644 C:\Windows\System32\rasplap.dll - ok
15:07:56.0930 4644 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
15:07:56.0930 4644 C:\Windows\System32\rtutils.dll - ok
15:07:56.0936 4644 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
15:07:56.0936 4644 C:\Windows\System32\wevtsvc.dll - ok
15:07:56.0942 4644 [ 5C78838B4D166D1A27DB3A8A820C799A ] C:\Windows\System32\profsvc.dll
15:07:56.0942 4644 C:\Windows\System32\profsvc.dll - ok
15:07:56.0950 4644 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
15:07:56.0950 4644 C:\Windows\System32\adtschema.dll - ok
15:07:56.0956 4644 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
15:07:56.0956 4644 C:\Windows\System32\radardt.dll - ok
15:07:56.0962 4644 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
15:07:56.0962 4644 C:\Windows\System32\netprofm.dll - ok
15:07:56.0969 4644 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
15:07:56.0969 4644 C:\Windows\System32\audiosrv.dll - ok
15:07:56.0974 4644 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
15:07:56.0974 4644 C:\Windows\System32\avrt.dll - ok
15:07:56.0980 4644 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:07:56.0980 4644 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:07:56.0987 4644 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
15:07:56.0987 4644 C:\Windows\System32\wlansvc.dll - ok
15:07:56.0993 4644 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
15:07:56.0993 4644 C:\Windows\System32\FntCache.dll - ok
15:07:57.0000 4644 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
15:07:57.0000 4644 C:\Windows\System32\mmcss.dll - ok
15:07:57.0006 4644 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
15:07:57.0006 4644 C:\Windows\System32\audiodg.exe - ok
15:07:57.0012 4644 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
15:07:57.0012 4644 C:\Windows\System32\gpsvc.dll - ok
15:07:57.0019 4644 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
15:07:57.0019 4644 C:\Windows\System32\nlaapi.dll - ok
15:07:57.0025 4644 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
15:07:57.0025 4644 C:\Windows\System32\wdmaud.drv - ok
15:07:57.0031 4644 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
15:07:57.0031 4644 C:\Windows\System32\atl.dll - ok
15:07:57.0037 4644 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
15:07:57.0037 4644 C:\Windows\System32\ksuser.dll - ok
15:07:57.0044 4644 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
15:07:57.0044 4644 C:\Windows\System32\themeservice.dll - ok
15:07:57.0054 4644 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
15:07:57.0054 4644 C:\Windows\System32\es.dll - ok
15:07:57.0058 4644 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
15:07:57.0059 4644 C:\Windows\System32\AudioSes.dll - ok
15:07:57.0065 4644 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
15:07:57.0065 4644 C:\Windows\System32\dsrole.dll - ok
15:07:57.0071 4644 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
15:07:57.0071 4644 C:\Windows\System32\slc.dll - ok
15:07:57.0077 4644 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
15:07:57.0077 4644 C:\Windows\System32\msacm32.dll - ok
15:07:57.0083 4644 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
15:07:57.0083 4644 C:\Windows\System32\msacm32.drv - ok
15:07:57.0090 4644 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
15:07:57.0090 4644 C:\Windows\System32\drivers\fltMgr.sys - ok
15:07:57.0096 4644 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
15:07:57.0096 4644 C:\Windows\System32\midimap.dll - ok
15:07:57.0102 4644 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
15:07:57.0102 4644 C:\Windows\System32\PSHED.DLL - ok
15:07:57.0108 4644 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
15:07:57.0109 4644 C:\Windows\System32\comres.dll - ok
15:07:57.0114 4644 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
15:07:57.0115 4644 C:\Windows\System32\Sens.dll - ok
15:07:57.0121 4644 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
15:07:57.0121 4644 C:\Windows\System32\MPSSVC.dll - ok
15:07:57.0127 4644 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
15:07:57.0127 4644 C:\Windows\System32\uxsms.dll - ok
15:07:57.0133 4644 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
15:07:57.0133 4644 C:\Windows\System32\AudioEng.dll - ok
15:07:57.0139 4644 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
15:07:57.0139 4644 C:\Windows\System32\WUDFSvc.dll - ok
15:07:57.0145 4644 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
15:07:57.0145 4644 C:\Windows\System32\WUDFPlatform.dll - ok
15:07:57.0151 4644 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
15:07:57.0151 4644 C:\Windows\System32\AUDIOKSE.dll - ok
15:07:57.0158 4644 [ C95EA36228E0174AC53DC57530549AAF ] C:\Windows\System32\RtkAPO64.dll
15:07:57.0158 4644 C:\Windows\System32\RtkAPO64.dll - ok
15:07:57.0164 4644 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
15:07:57.0164 4644 C:\Windows\System32\UXInit.dll - ok
15:07:57.0170 4644 [ CEE3ECBD814B794F7F3C5EED69C8EE22 ] C:\Windows\System32\atieclxx.exe
15:07:57.0170 4644 C:\Windows\System32\atieclxx.exe - ok
15:07:57.0176 4644 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:07:57.0176 4644 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:07:57.0184 4644 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
15:07:57.0184 4644 C:\Windows\System32\provsvc.dll - ok
15:07:57.0190 4644 [ 973ADB6AD47AC047F900C0D760AB6BE2 ] C:\Windows\System32\AERTAR64.dll
15:07:57.0190 4644 C:\Windows\System32\AERTAR64.dll - ok
15:07:57.0196 4644 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
15:07:57.0196 4644 C:\Windows\System32\imageres.dll - ok
15:07:57.0202 4644 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
15:07:57.0203 4644 C:\Windows\System32\WMALFXGFXDSP.dll - ok
15:07:57.0209 4644 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
15:07:57.0209 4644 C:\Windows\System32\mfplat.dll - ok
15:07:57.0215 4644 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
15:07:57.0215 4644 C:\Windows\System32\drivers\lltdio.sys - ok
15:07:57.0221 4644 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
15:07:57.0222 4644 C:\Windows\System32\drivers\nwifi.sys - ok
15:07:57.0228 4644 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
15:07:57.0228 4644 C:\Windows\System32\drivers\ndisuio.sys - ok
15:07:57.0235 4644 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
15:07:57.0235 4644 C:\Windows\System32\drivers\rspndr.sys - ok
15:07:57.0241 4644 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
15:07:57.0241 4644 C:\Windows\System32\lmhsvc.dll - ok
15:07:57.0247 4644 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
15:07:57.0247 4644 C:\Windows\System32\nrpsrv.dll - ok
15:07:57.0253 4644 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
15:07:57.0253 4644 C:\Windows\System32\nsisvc.dll - ok
15:07:57.0259 4644 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
15:07:57.0259 4644 C:\Windows\System32\dhcpcore.dll - ok
15:07:57.0265 4644 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
15:07:57.0265 4644 C:\Windows\System32\dhcpcore6.dll - ok
15:07:57.0272 4644 [ DF843EBBA76A782FDAA16C3A32B90FBB ] C:\Windows\System32\atiadlxx.dll
15:07:57.0272 4644 C:\Windows\System32\atiadlxx.dll - ok
15:07:57.0278 4644 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
15:07:57.0278 4644 C:\Windows\System32\keyiso.dll - ok
15:07:57.0284 4644 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
15:07:57.0285 4644 C:\Windows\System32\dnsrslvr.dll - ok
15:07:57.0291 4644 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
15:07:57.0291 4644 C:\Windows\System32\FWPUCLNT.DLL - ok
15:07:57.0297 4644 [ F875C67ACF1DB12AF82D163686FBC6E7 ] C:\Windows\System32\atimuixx.dll
15:07:57.0297 4644 C:\Windows\System32\atimuixx.dll - ok
15:07:57.0303 4644 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
15:07:57.0303 4644 C:\Windows\System32\eapsvc.dll - ok
15:07:57.0309 4644 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
15:07:57.0309 4644 C:\Windows\System32\eapphost.dll - ok
15:07:57.0315 4644 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
15:07:57.0315 4644 C:\Windows\System32\dnsext.dll - ok
15:07:57.0321 4644 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
15:07:57.0322 4644 C:\Windows\System32\umb.dll - ok
15:07:57.0327 4644 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
15:07:57.0327 4644 C:\Windows\System32\wlanmsm.dll - ok
15:07:57.0334 4644 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
15:07:57.0334 4644 C:\Windows\System32\wlansec.dll - ok
15:07:57.0342 4644 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
15:07:57.0342 4644 C:\Windows\System32\dhcpcsvc.dll - ok
15:07:57.0349 4644 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
15:07:57.0349 4644 C:\Windows\System32\dhcpcsvc6.dll - ok
15:07:57.0356 4644 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
15:07:57.0356 4644 C:\Windows\System32\eappprxy.dll - ok
15:07:57.0363 4644 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
15:07:57.0364 4644 C:\Windows\System32\onex.dll - ok
15:07:57.0370 4644 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
15:07:57.0370 4644 C:\Windows\System32\eappcfg.dll - ok
15:07:57.0375 4644 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
15:07:57.0375 4644 C:\Windows\System32\wlgpclnt.dll - ok
15:07:57.0382 4644 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
15:07:57.0382 4644 C:\Windows\System32\l2gpstore.dll - ok
15:07:57.0389 4644 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
15:07:57.0389 4644 C:\Windows\System32\wlanutil.dll - ok
15:07:57.0399 4644 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
15:07:57.0399 4644 C:\Windows\System32\WinSCard.dll - ok
15:07:57.0403 4644 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
15:07:57.0403 4644 C:\Windows\System32\msxml6.dll - ok
15:07:57.0410 4644 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
15:07:57.0410 4644 C:\Windows\System32\shsvcs.dll - ok
15:07:57.0417 4644 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
15:07:57.0417 4644 C:\Windows\System32\schedsvc.dll - ok
15:07:57.0425 4644 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
15:07:57.0425 4644 C:\Windows\System32\wlanext.exe - ok
15:07:57.0431 4644 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
15:07:57.0431 4644 C:\Windows\System32\ktmw32.dll - ok
15:07:57.0437 4644 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
15:07:57.0438 4644 C:\Windows\System32\taskcomp.dll - ok
15:07:57.0444 4644 [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
15:07:57.0444 4644 C:\Windows\System32\conhost.exe - ok
15:07:57.0450 4644 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
15:07:57.0450 4644 C:\Windows\System32\drivers\http.sys - ok
15:07:57.0457 4644 [ B96C17B5DC1424D56EEA3A99E97428CD ] C:\Windows\System32\spoolsv.exe
15:07:57.0457 4644 C:\Windows\System32\spoolsv.exe - ok
15:07:57.0463 4644 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
15:07:57.0463 4644 C:\Windows\System32\fveapi.dll - ok
15:07:57.0469 4644 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
15:07:57.0469 4644 C:\Windows\System32\tbs.dll - ok
15:07:57.0475 4644 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
15:07:57.0475 4644 C:\Windows\System32\fvecerts.dll - ok
15:07:57.0481 4644 [ C33EF36ADBD680D166FD9146B5EAF9E2 ] C:\Windows\System32\athihvs.dll
15:07:57.0481 4644 C:\Windows\System32\athihvs.dll - ok
15:07:57.0487 4644 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
15:07:57.0487 4644 C:\Windows\System32\wlanapi.dll - ok
15:07:57.0494 4644 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
15:07:57.0494 4644 C:\Windows\System32\wiarpc.dll - ok
15:07:57.0500 4644 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
15:07:57.0500 4644 C:\Windows\System32\netcfgx.dll - ok
15:07:57.0507 4644 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
15:07:57.0507 4644 C:\Windows\System32\drivers\vwifimp.sys - ok
15:07:57.0514 4644 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
15:07:57.0514 4644 C:\Windows\System32\BFE.DLL - ok
15:07:57.0525 4644 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
15:07:57.0525 4644 C:\Windows\System32\drivers\bowser.sys - ok
15:07:57.0529 4644 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
15:07:57.0529 4644 C:\Windows\System32\drivers\mpsdrv.sys - ok
15:07:57.0536 4644 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
15:07:57.0536 4644 C:\Windows\System32\drivers\mrxsmb.sys - ok
15:07:57.0542 4644 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:07:57.0543 4644 C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:07:57.0550 4644 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
15:07:57.0550 4644 C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:07:57.0557 4644 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
15:07:57.0557 4644 C:\Windows\System32\wkssvc.dll - ok
15:07:57.0564 4644 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
15:07:57.0564 4644 C:\Windows\System32\wfapigp.dll - ok
15:07:57.0571 4644 [ D1E343BC00136CE03C4D403194D06A80 ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
15:07:57.0571 4644 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
15:07:57.0579 4644 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
15:07:57.0579 4644 C:\Windows\System32\mscms.dll - ok
15:07:57.0585 4644 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
15:07:57.0585 4644 C:\Windows\System32\pcasvc.dll - ok
15:07:57.0592 4644 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
15:07:57.0592 4644 C:\Windows\System32\snmptrap.exe - ok
15:07:57.0599 4644 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
15:07:57.0599 4644 C:\Windows\System32\sstpsvc.dll - ok
15:07:57.0607 4644 [ B65F8DBA54F251906BBE8611B5A0E7AB ] C:\Program Files\LSI SoftModem\agr64svc.exe
15:07:57.0607 4644 C:\Program Files\LSI SoftModem\agr64svc.exe - ok
15:07:57.0614 4644 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:07:57.0614 4644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
15:07:57.0620 4644 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
15:07:57.0620 4644 C:\Windows\SysWOW64\ntdll.dll - ok
15:07:57.0625 4644 [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
15:07:57.0625 4644 C:\Windows\System32\wow64.dll - ok
15:07:57.0634 4644 [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
15:07:57.0634 4644 C:\Windows\System32\wow64cpu.dll - ok
15:07:57.0641 4644 [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
15:07:57.0641 4644 C:\Windows\System32\wow64win.dll - ok
15:07:57.0647 4644 [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
15:07:57.0647 4644 C:\Windows\SysWOW64\kernel32.dll - ok
15:07:57.0653 4644 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
15:07:57.0654 4644 C:\Windows\SysWOW64\advapi32.dll - ok
15:07:57.0660 4644 [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
15:07:57.0660 4644 C:\Windows\SysWOW64\KernelBase.dll - ok
15:07:57.0666 4644 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
15:07:57.0666 4644 C:\Windows\SysWOW64\msvcrt.dll - ok
15:07:57.0672 4644 [ 4DC999CED9429939D75682EBD7D48901 ] C:\Windows\SysWOW64\rpcrt4.dll
15:07:57.0672 4644 C:\Windows\SysWOW64\rpcrt4.dll - ok
15:07:57.0678 4644 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
15:07:57.0678 4644 C:\Windows\SysWOW64\sechost.dll - ok
15:07:57.0684 4644 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
15:07:57.0684 4644 C:\Windows\SysWOW64\sspicli.dll - ok
15:07:57.0690 4644 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
15:07:57.0690 4644 C:\Windows\SysWOW64\cryptbase.dll - ok
15:07:57.0697 4644 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
15:07:57.0697 4644 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
15:07:57.0704 4644 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:07:57.0704 4644 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
15:07:57.0710 4644 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
15:07:57.0711 4644 C:\Windows\SysWOW64\gdi32.dll - ok
15:07:57.0716 4644 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
15:07:57.0716 4644 C:\Windows\SysWOW64\shlwapi.dll - ok
15:07:57.0722 4644 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
15:07:57.0722 4644 C:\Windows\SysWOW64\user32.dll - ok
15:07:57.0729 4644 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
15:07:57.0729 4644 C:\Windows\SysWOW64\lpk.dll - ok
15:07:57.0735 4644 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
15:07:57.0735 4644 C:\Windows\SysWOW64\usp10.dll - ok
15:07:57.0741 4644 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
15:07:57.0741 4644 C:\Windows\SysWOW64\imm32.dll - ok
15:07:57.0747 4644 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
15:07:57.0747 4644 C:\Windows\SysWOW64\msctf.dll - ok
15:07:57.0753 4644 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
15:07:57.0753 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
15:07:57.0763 4644 [ DAA3903F06116AE9EE7AC1D1B93684A4 ] C:\Windows\SysWOW64\wininet.dll
15:07:57.0763 4644 C:\Windows\SysWOW64\wininet.dll - ok
15:07:57.0767 4644 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
15:07:57.0767 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
15:07:57.0774 4644 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
15:07:57.0774 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
15:07:57.0780 4644 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
15:07:57.0781 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
15:07:57.0787 4644 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
15:07:57.0787 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
15:07:57.0793 4644 [ D0E0086BA353C379DCFE8624E8B8F17A ] C:\Windows\SysWOW64\iertutil.dll
15:07:57.0794 4644 C:\Windows\SysWOW64\iertutil.dll - ok
15:07:57.0800 4644 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
15:07:57.0800 4644 C:\Windows\SysWOW64\version.dll - ok
15:07:57.0806 4644 [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
15:07:57.0806 4644 C:\Windows\SysWOW64\shell32.dll - ok
15:07:57.0812 4644 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
15:07:57.0812 4644 C:\Windows\SysWOW64\ole32.dll - ok
15:07:57.0818 4644 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
15:07:57.0818 4644 C:\Windows\SysWOW64\oleaut32.dll - ok
15:07:57.0824 4644 [ 059FC59F97A6220C46A612A9470A00B3 ] C:\Windows\SysWOW64\urlmon.dll
15:07:57.0824 4644 C:\Windows\SysWOW64\urlmon.dll - ok
15:07:57.0831 4644 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
15:07:57.0831 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
15:07:57.0838 4644 [ 848BC9A0BB2361E549FD4C22D7548FB8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
15:07:57.0838 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:07:57.0844 4644 [ D339D7F6E52AECCA9C0898CB547B2902 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:07:57.0845 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:07:57.0851 4644 [ 5F3347EBA403EE64780980A5BAF10304 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:07:57.0851 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:07:57.0858 4644 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
15:07:57.0858 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
15:07:57.0864 4644 [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:07:57.0865 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:07:57.0871 4644 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
15:07:57.0871 4644 C:\Windows\SysWOW64\nsi.dll - ok
15:07:57.0877 4644 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
15:07:57.0877 4644 C:\Windows\SysWOW64\ws2_32.dll - ok
15:07:57.0881 4644 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
15:07:57.0881 4644 C:\Windows\SysWOW64\wsock32.dll - ok
15:07:57.0888 4644 [ 09B7E7CD6F202247B3CF2306108589C2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
15:07:57.0888 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:07:57.0895 4644 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
15:07:57.0895 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:07:57.0901 4644 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
15:07:57.0902 4644 C:\Windows\SysWOW64\winmm.dll - ok
15:07:57.0908 4644 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
15:07:57.0908 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:07:57.0915 4644 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
15:07:57.0915 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
15:07:57.0921 4644 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
15:07:57.0921 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:07:57.0928 4644 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
15:07:57.0928 4644 C:\Windows\SysWOW64\profapi.dll - ok
15:07:57.0934 4644 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
15:07:57.0934 4644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
15:07:57.0940 4644 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:07:57.0941 4644 C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:07:57.0948 4644 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
15:07:57.0948 4644 C:\Windows\SysWOW64\setupapi.dll - ok
15:07:57.0956 4644 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
15:07:57.0957 4644 C:\Windows\SysWOW64\devobj.dll - ok
15:07:57.0963 4644 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
15:07:57.0963 4644 C:\Windows\SysWOW64\dnssd.dll - ok
15:07:57.0969 4644 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
15:07:57.0969 4644 C:\Windows\SysWOW64\userenv.dll - ok
15:07:57.0975 4644 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
15:07:57.0975 4644 C:\Windows\SysWOW64\wtsapi32.dll - ok
15:07:57.0982 4644 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
15:07:57.0982 4644 C:\Windows\SysWOW64\ntmarta.dll - ok
15:07:57.0988 4644 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
15:07:57.0988 4644 C:\Windows\SysWOW64\Wldap32.dll - ok
15:07:57.0992 4644 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
15:07:57.0992 4644 C:\Windows\SysWOW64\mswsock.dll - ok
15:07:58.0003 4644 [ 4DB93F4DB7077801D2D82013506AC1D0 ] C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
15:07:58.0003 4644 C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe - ok
15:07:58.0012 4644 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:07:58.0012 4644 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:07:58.0018 4644 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
15:07:58.0018 4644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
15:07:58.0025 4644 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
15:07:58.0025 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:07:58.0032 4644 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:07:58.0032 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:07:58.0038 4644 [ AE8EB083B050E17A7D6EB5E28AECDDD6 ] C:\Windows\SysWOW64\crypt32.dll
15:07:58.0038 4644 C:\Windows\SysWOW64\crypt32.dll - ok
15:07:58.0045 4644 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
15:07:58.0045 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:07:58.0052 4644 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:07:58.0052 4644 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:07:58.0058 4644 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
15:07:58.0058 4644 C:\Windows\SysWOW64\msasn1.dll - ok
15:07:58.0064 4644 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
15:07:58.0064 4644 C:\Windows\SysWOW64\winnsi.dll - ok
15:07:58.0073 4644 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
15:07:58.0074 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:07:58.0080 4644 [ 68EAAEDF0365168B804E8728368FA946 ] C:\Windows\SysWOW64\wintrust.dll
15:07:58.0080 4644 C:\Windows\SysWOW64\wintrust.dll - ok
15:07:58.0087 4644 [ AE4D9DC676A2517DEE3E51978BCFE47C ] C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll
15:07:58.0087 4644 C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll - ok
15:07:58.0093 4644 [ 8BEC8631AED9C58EF8DD7CE1755F86AA ] C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll
15:07:58.0093 4644 C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll - ok
15:07:58.0099 4644 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
15:07:58.0100 4644 C:\Windows\SysWOW64\msvcp100.dll - ok
15:07:58.0106 4644 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
15:07:58.0106 4644 C:\Windows\SysWOW64\msvcr100.dll - ok
15:07:58.0112 4644 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
15:07:58.0112 4644 C:\Windows\SysWOW64\psapi.dll - ok
15:07:58.0121 4644 [ 5BDB1E096DEA119A4D205ACB6E958175 ] C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll
15:07:58.0122 4644 C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll - ok
15:07:58.0126 4644 [ 21139ED432EFB4A8CDF715862DBDF9E0 ] C:\Program Files (x86)\AVG\AVG2013\avglogx.dll
15:07:58.0127 4644 C:\Program Files (x86)\AVG\AVG2013\avglogx.dll - ok
15:07:58.0134 4644 [ 48939D9F350AEF9370F03A1E49A49BE2 ] C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
15:07:58.0134 4644 C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe - ok
15:07:58.0141 4644 [ 71EA9078F6E1246B0BBD746C2999723F ] C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll
15:07:58.0141 4644 C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll - ok
15:07:58.0150 4644 [ 8564728CB493B0704EDB9A3607B3DDE9 ] C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll
15:07:58.0150 4644 C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll - ok
15:07:58.0156 4644 [ 414F57444511B818DB23FA5CF89F3205 ] C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll
15:07:58.0156 4644 C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll - ok
15:07:58.0162 4644 [ 7572D6D0DE68EDC0089578AC952514C2 ] C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll
15:07:58.0163 4644 C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll - ok
15:07:58.0169 4644 [ 3961DE6134280FD3BC911D5B2119CECF ] C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll
15:07:58.0169 4644 C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll - ok
15:07:58.0176 4644 [ 2E967B05E5D1EF57632819BDC54F19B1 ] C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll
15:07:58.0176 4644 C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll - ok
15:07:58.0183 4644 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
15:07:58.0183 4644 C:\Windows\SysWOW64\sfc.dll - ok
15:07:58.0189 4644 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
15:07:58.0189 4644 C:\Windows\SysWOW64\sfc_os.dll - ok
15:07:58.0196 4644 [ 099D9F937F6EE23672391B3A5BD6D7E5 ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll
15:07:58.0196 4644 C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll - ok
15:07:58.0201 4644 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
15:07:58.0201 4644 C:\Windows\SysWOW64\secur32.dll - ok
15:07:58.0207 4644 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
15:07:58.0207 4644 C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:07:58.0214 4644 [ FD25D9E7054A422BD9A4C6540B2B8290 ] C:\Windows\System32\drivers\bdfsfltr.sys
15:07:58.0214 4644 C:\Windows\System32\drivers\bdfsfltr.sys - ok
15:07:58.0220 4644 [ 2C24DB5F78F0ACA759803001E6B4F320 ] C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
15:07:58.0220 4644 C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe - ok
15:07:58.0228 4644 [ 99F360542DD882C812790D406E061A44 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\accessl.dll
15:07:58.0228 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\accessl.dll - ok
15:07:58.0235 4644 [ 99085CF0018ECF088498FDA4CA87D24A ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\connector.dll
15:07:58.0235 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\connector.dll - ok
15:07:58.0245 4644 [ 3D0D14345308C7D84C64882A04C5AD10 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\accessal.dll
15:07:58.0245 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\accessal.dll - ok
15:07:58.0249 4644 [ 4AC59CE2CEAB088FFF82B626DD50FABD ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdmltusrsrv.dll
15:07:58.0249 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdmltusrsrv.dll - ok
15:07:58.0256 4644 [ B5EF1136CC60F13B258791340DEAF92A ] C:\Program Files\Common Files\Defender Pro\Defender Pro Threat Scanner\scan.dll
15:07:58.0256 4644 C:\Program Files\Common Files\Defender Pro\Defender Pro Threat Scanner\scan.dll - ok
15:07:58.0263 4644 [ C7939AF5A67A0B08666112F4B1344DCE ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\scansp.dll
15:07:58.0263 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\scansp.dll - ok
15:07:58.0269 4644 [ B8BB0EF02C69BD603B3E54ED0EFD3541 ] C:\Program Files\Common Files\Defender Pro\Defender Pro Threat Scanner\bdsubmit.dll
15:07:58.0269 4644 C:\Program Files\Common Files\Defender Pro\Defender Pro Threat Scanner\bdsubmit.dll - ok
15:07:58.0276 4644 [ 6FD1D136F45B8876B99CA29E01CFEDD6 ] C:\Program Files\Common Files\Defender Pro\Defender Pro Threat Scanner\smartscn.dll
15:07:58.0276 4644 C:\Program Files\Common Files\Defender Pro\Defender Pro Threat Scanner\smartscn.dll - ok
15:07:58.0283 4644 [ FA65593714495CA9D250E4DF8F15877E ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\smartscnal.dll
15:07:58.0283 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\smartscnal.dll - ok
15:07:58.0290 4644 [ 1F6D37AE0C499951D3F53322E7C6333F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\regal.dll
15:07:58.0290 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\regal.dll - ok
15:07:58.0297 4644 [ DE7FC6DF1C153A2EC75CE2682FD26422 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\netscanal.dll
15:07:58.0297 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\netscanal.dll - ok
15:07:58.0305 4644 [ 7CBF15E0AB12F539C0AD099A894E74A6 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\emaildp.dll
15:07:58.0305 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\emaildp.dll - ok
15:07:58.0311 4644 [ 72EB68A0884031FB30F1B6BE03A1BB24 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\netscanal.ui
15:07:58.0312 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\netscanal.ui - ok
15:07:58.0318 4644 [ 5846607B1ECD18BFCEBEE03127C4B48B ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdpop3p.dll
15:07:58.0318 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdpop3p.dll - ok
15:07:58.0327 4644 [ E0142A2FE00879EA12666752DE377627 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdpredir.dll
15:07:58.0327 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdpredir.dll - ok
15:07:58.0334 4644 [ 5147FE4F117C15BE0DB6CC3F7D72245F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\mimepack.dll
15:07:58.0334 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\mimepack.dll - ok
15:07:58.0341 4644 [ EB65D3C00218500076F42B8EB423A3BB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdsmtpp.dll
15:07:58.0341 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdsmtpp.dll - ok
15:07:58.0348 4644 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
15:07:58.0348 4644 C:\Windows\SysWOW64\clbcatq.dll - ok
15:07:58.0354 4644 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\SysWOW64\wmp.dll
15:07:58.0354 4644 C:\Windows\SysWOW64\wmp.dll - ok
15:07:58.0364 4644 [ 84174CA0E190BB9D1EFD0F005FE13B35 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
15:07:58.0364 4644 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
15:07:58.0370 4644 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
15:07:58.0370 4644 C:\Windows\SysWOW64\dwmapi.dll - ok
15:07:58.0379 4644 [ 3108A68676A1009ACF7A7973FA356677 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdwscloudsp.dll
15:07:58.0379 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdwscloudsp.dll - ok
15:07:58.0384 4644 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\SysWOW64\wmploc.DLL
15:07:58.0384 4644 C:\Windows\SysWOW64\wmploc.DLL - ok
15:07:58.0391 4644 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
15:07:58.0392 4644 C:\Windows\System32\dllhost.exe - ok
15:07:58.0398 4644 [ A58368EB286021D25876D351E4CF6DCB ] C:\Program Files (x86)\AVG\AVG2013\avgwd.dll
15:07:58.0398 4644 C:\Program Files (x86)\AVG\AVG2013\avgwd.dll - ok
15:07:58.0405 4644 [ 9C24B8FD969F4339BCACEF0002FFB05B ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdnimbus.dll
15:07:58.0405 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdnimbus.dll - ok
15:07:58.0412 4644 [ 6B400F211BEE880A37A1ED0368776BF4 ] C:\Windows\System32\cryptsvc.dll
15:07:58.0412 4644 C:\Windows\System32\cryptsvc.dll - ok
15:07:58.0419 4644 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
15:07:58.0419 4644 C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:07:58.0426 4644 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
15:07:58.0426 4644 C:\Windows\SysWOW64\propsys.dll - ok
15:07:58.0434 4644 [ D0DFBF47FBF6D560ADC2247F94B9F916 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\httpdp.dll
15:07:58.0434 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\httpdp.dll - ok
15:07:58.0441 4644 [ A6B726DCA228F7878E38368A1BDC68BE ] C:\Windows\System32\cryptnet.dll
15:07:58.0441 4644 C:\Windows\System32\cryptnet.dll - ok
15:07:58.0448 4644 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
15:07:58.0448 4644 C:\Windows\System32\dps.dll - ok
15:07:58.0455 4644 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
15:07:58.0455 4644 C:\Windows\System32\efscore.dll - ok
15:07:58.0461 4644 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
15:07:58.0461 4644 C:\Windows\System32\efssvc.dll - ok
15:07:58.0467 4644 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
15:07:58.0467 4644 C:\Windows\SysWOW64\svchost.exe - ok
15:07:58.0473 4644 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
15:07:58.0474 4644 C:\Windows\System32\efsutil.dll - ok
15:07:58.0480 4644 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
15:07:58.0480 4644 C:\Windows\System32\taskschd.dll - ok
15:07:58.0487 4644 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
15:07:58.0487 4644 C:\Windows\System32\vssapi.dll - ok
15:07:58.0495 4644 [ 194D3EB2478EA599A120596D7CA7BDFE ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\httproxy.dll
15:07:58.0496 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\httproxy.dll - ok
15:07:58.0504 4644 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
15:07:58.0504 4644 C:\Windows\System32\vsstrace.dll - ok
15:07:58.0510 4644 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
15:07:58.0510 4644 C:\Windows\SysWOW64\AudioSes.dll - ok
15:07:58.0517 4644 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
15:07:58.0517 4644 C:\Windows\SysWOW64\avrt.dll - ok
15:07:58.0524 4644 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
15:07:58.0524 4644 C:\Windows\SysWOW64\mfplat.dll - ok
15:07:58.0532 4644 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
15:07:58.0532 4644 C:\Windows\System32\IDStore.dll - ok
15:07:58.0539 4644 [ EE261B3EB73F760D674C1245E02209EB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\registryal.dll
15:07:58.0539 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\registryal.dll - ok
15:07:58.0546 4644 [ 67DABFB8EB4AFA87C558504D5FCD43C8 ] C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll
15:07:58.0546 4644 C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll - ok
15:07:58.0554 4644 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
15:07:58.0554 4644 C:\Windows\System32\taskhost.exe - ok
15:07:58.0561 4644 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
15:07:58.0561 4644 C:\Windows\SysWOW64\winsta.dll - ok
15:07:58.0568 4644 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
15:07:58.0568 4644 C:\Windows\System32\AtBroker.exe - ok
15:07:58.0575 4644 [ 14558128D04BA3D3E8C7029304CDAE42 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\knownfilessp.dll
15:07:58.0575 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\knownfilessp.dll - ok
15:07:58.0583 4644 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
15:07:58.0583 4644 C:\Windows\System32\mpr.dll - ok
15:07:58.0589 4644 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
15:07:58.0589 4644 C:\Windows\System32\userinit.exe - ok
15:07:58.0596 4644 [ C61FB3AADE764D447D8E188FD1583023 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\imsecurityal.dll
15:07:58.0596 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\imsecurityal.dll - ok
15:07:58.0604 4644 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
15:07:58.0604 4644 C:\Windows\System32\taskeng.exe - ok
15:07:58.0611 4644 [ 0A888754C63C3A5D8CD8F7492C62B40D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
15:07:58.0611 4644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
15:07:58.0622 4644 [ 529EB4573E12FA4F81ED05BCDE0FB3E6 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\loggeral.dll
15:07:58.0623 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\loggeral.dll - ok
15:07:58.0627 4644 [ 00BC3B376083F56BDCE19D64D14A6AB5 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\eventlistener.dll
15:07:58.0627 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\eventlistener.dll - ok
15:07:58.0634 4644 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:07:58.0634 4644 C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:07:58.0639 4644 [ 6B99D0D7C759F1283FB55C7A01EC2565 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\eventlistener.ui
15:07:58.0639 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\eventlistener.ui - ok
15:07:58.0645 4644 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
15:07:58.0645 4644 C:\Windows\System32\rasadhlp.dll - ok
15:07:58.0652 4644 [ ACDD5B324F6DFDC275C3C13CED9379EB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\fwal.dll
15:07:58.0652 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\fwal.dll - ok
15:07:58.0658 4644 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
15:07:58.0658 4644 C:\Windows\System32\localspl.dll - ok
15:07:58.0664 4644 [ 35F848273B5EB616A6FBF8FAC5822A1D ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdfirewallsdk.dll
15:07:58.0664 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdfirewallsdk.dll - ok
15:07:58.0671 4644 [ EE9E86F717DB921AACBCA3E951CAC8D7 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdfwcore.dll
15:07:58.0671 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdfwcore.dll - ok
15:07:58.0678 4644 [ AA6271E335148C3522C416095DDB4638 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdagexec.exe
15:07:58.0678 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdagexec.exe - ok
15:07:58.0685 4644 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
15:07:58.0685 4644 C:\Windows\SysWOW64\wevtapi.dll - ok
15:07:58.0691 4644 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
15:07:58.0691 4644 C:\Windows\System32\spoolss.dll - ok
15:07:58.0697 4644 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
15:07:58.0697 4644 C:\Windows\System32\winspool.drv - ok
15:07:58.0703 4644 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
15:07:58.0703 4644 C:\Windows\System32\PrintIsolationProxy.dll - ok
15:07:58.0710 4644 [ FEBD380C2E06FA189AEAA345B6F84D60 ] C:\Windows\System32\hpf3l70v.dll
15:07:58.0710 4644 C:\Windows\System32\hpf3l70v.dll - ok
15:07:58.0716 4644 [ 4977CBC52959FDBD6B2E40BAA1B631C5 ] C:\Windows\System32\hpzllw71.dll
15:07:58.0716 4644 C:\Windows\System32\hpzllw71.dll - ok
15:07:58.0722 4644 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
15:07:58.0722 4644 C:\Windows\System32\FXSMON.dll - ok
15:07:58.0728 4644 [ 53D8BBB236513133915E8206CC8E419F ] C:\Windows\System32\HPZ3LLHN.DLL
15:07:58.0728 4644 C:\Windows\System32\HPZ3LLHN.DLL - ok
15:07:58.0736 4644 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
15:07:58.0736 4644 C:\Windows\System32\tcpmon.dll - ok
15:07:58.0744 4644 [ F65BEBE969C232F60C7A13B0F00FB52C ] C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll
15:07:58.0745 4644 C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll - ok
15:07:58.0753 4644 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
15:07:58.0753 4644 C:\Windows\SysWOW64\wscapi.dll - ok
15:07:58.0760 4644 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:07:58.0760 4644 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:07:58.0768 4644 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
15:07:58.0768 4644 C:\Windows\System32\snmpapi.dll - ok
15:07:58.0775 4644 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
15:07:58.0775 4644 C:\Windows\System32\wsnmp32.dll - ok
15:07:58.0781 4644 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
15:07:58.0782 4644 C:\Windows\System32\usbmon.dll - ok
15:07:58.0789 4644 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
15:07:58.0790 4644 C:\Windows\System32\WSDMon.dll - ok
15:07:58.0796 4644 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
15:07:58.0796 4644 C:\Windows\System32\WSDApi.dll - ok
15:07:58.0802 4644 [ 90581DDE9FB22E81E28DB90C89EA53FC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdagent.exe
15:07:58.0803 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdagent.exe - ok
15:07:58.0809 4644 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
15:07:58.0809 4644 C:\Windows\System32\HotStartUserAgent.dll - ok
15:07:58.0816 4644 [ F3F72A2A86C22610BCA5439FA789DD52 ] C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqddsvc.dll
15:07:58.0816 4644 C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqddsvc.dll - ok
15:07:58.0822 4644 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
15:07:58.0822 4644 C:\Windows\System32\dwm.exe - ok
15:07:58.0828 4644 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
15:07:58.0828 4644 C:\Windows\System32\webservices.dll - ok
15:07:58.0834 4644 [ 32F1B95C60042F3D95FC8AB43559B3B1 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
15:07:58.0835 4644 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe - ok
15:07:58.0841 4644 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
15:07:58.0841 4644 C:\Windows\System32\IKEEXT.DLL - ok
15:07:58.0848 4644 [ 7E53957E73BFB209D49932A9DDEBEDE4 ] C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqddcmn.dll
15:07:58.0848 4644 C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqddcmn.dll - ok
15:07:58.0855 4644 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
15:07:58.0855 4644 C:\Windows\System32\PlaySndSrv.dll - ok
15:07:58.0861 4644 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
15:07:58.0861 4644 C:\Windows\SysWOW64\winspool.drv - ok
15:07:58.0868 4644 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
15:07:58.0868 4644 C:\Windows\System32\MsCtfMonitor.dll - ok
15:07:58.0873 4644 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
15:07:58.0874 4644 C:\Windows\System32\esent.dll - ok
15:07:58.0879 4644 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
15:07:58.0879 4644 C:\Windows\System32\msutb.dll - ok
15:07:58.0886 4644 [ 31B32C389923137C63876792DBCCB529 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\gamemodeal.dll
15:07:58.0886 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\gamemodeal.dll - ok
15:07:58.0890 4644 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
15:07:58.0890 4644 C:\Windows\System32\TSChannel.dll - ok
15:07:58.0896 4644 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
15:07:58.0896 4644 C:\Windows\explorer.exe - ok
15:07:58.0902 4644 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
15:07:58.0902 4644 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
15:07:58.0909 4644 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
15:07:58.0909 4644 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
15:07:58.0916 4644 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
15:07:58.0916 4644 C:\Windows\SysWOW64\cryptsp.dll - ok
15:07:58.0922 4644 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:07:58.0922 4644 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:07:58.0929 4644 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
15:07:58.0929 4644 C:\Windows\SysWOW64\rsaenh.dll - ok
15:07:58.0935 4644 [ 646BF5C2A626867D38978C8AA2A8E14F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\procinfo.dll
15:07:58.0935 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\procinfo.dll - ok
15:07:58.0942 4644 [ 63C5270317C412CF9E61D496A3B05A12 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ondemandal.dll
15:07:58.0942 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\ondemandal.dll - ok
15:07:58.0948 4644 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
15:07:58.0948 4644 C:\Windows\System32\fundisc.dll - ok
15:07:58.0954 4644 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
15:07:58.0954 4644 C:\Windows\System32\fdPnp.dll - ok
15:07:58.0960 4644 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:07:58.0960 4644 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:07:58.0967 4644 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:07:58.0967 4644 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:07:58.0973 4644 [ 52AE4AFC91002546026AF706ED88C162 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\midasal.dll
15:07:58.0974 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\midasal.dll - ok
15:07:58.0980 4644 [ 86265C4E264E0FFB05BCF7B69C0D2004 ] C:\Windows\System32\spool\prtprocs\x64\hpfpp70v.dll
15:07:58.0980 4644 C:\Windows\System32\spool\prtprocs\x64\hpfpp70v.dll - ok
15:07:58.0986 4644 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
15:07:58.0986 4644 C:\Windows\System32\vpnikeapi.dll - ok
15:07:58.0993 4644 [ F35D42F5E011C4E645E77C95F9B61EC7 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\midasdp.dll
15:07:58.0993 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\midasdp.dll - ok
15:07:59.0000 4644 [ C30A50449EA4B611484A5F1F1F016774 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
15:07:59.0000 4644 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
15:07:59.0007 4644 [ 10CB964D2B2518734272FB848998E829 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\midascomm.dll
15:07:59.0007 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\midascomm.dll - ok
15:07:59.0013 4644 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
15:07:59.0014 4644 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
15:07:59.0020 4644 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
15:07:59.0020 4644 C:\Windows\System32\win32spl.dll - ok
15:07:59.0026 4644 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
15:07:59.0027 4644 C:\Windows\System32\inetpp.dll - ok
15:07:59.0032 4644 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
15:07:59.0032 4644 C:\Windows\System32\dwmredir.dll - ok
15:07:59.0039 4644 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
15:07:59.0039 4644 C:\Windows\System32\cscapi.dll - ok
15:07:59.0045 4644 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
15:07:59.0045 4644 C:\Windows\System32\dwmcore.dll - ok
15:07:59.0051 4644 [ 356E96B2FE133373116D1AEBBCA896A3 ] C:\Windows\System32\drvstore.dll
15:07:59.0051 4644 C:\Windows\System32\drvstore.dll - ok
15:07:59.0057 4644 [ 47269F0DE1E5089C6F23BC1EC48CFC31 ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
15:07:59.0058 4644 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
15:07:59.0064 4644 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
15:07:59.0064 4644 C:\Windows\System32\d3d10_1.dll - ok
15:07:59.0070 4644 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
15:07:59.0070 4644 C:\Windows\System32\d3d10_1core.dll - ok
15:07:59.0076 4644 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
15:07:59.0076 4644 C:\Windows\System32\dxgi.dll - ok
15:07:59.0083 4644 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
15:07:59.0083 4644 C:\Windows\System32\ntprint.dll - ok
15:07:59.0089 4644 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
15:07:59.0089 4644 C:\Windows\System32\d3d11.dll - ok
15:07:59.0095 4644 [ 322A70B65B9C42207D5F0E6A32CC9AEE ] C:\Windows\System32\atidxx64.dll
15:07:59.0095 4644 C:\Windows\System32\atidxx64.dll - ok
15:07:59.0101 4644 [ 6D24703A2A16F5219ED3EE0C02B364A7 ] C:\Windows\System32\atiuxp64.dll
15:07:59.0102 4644 C:\Windows\System32\atiuxp64.dll - ok
15:07:59.0108 4644 [ FF60B8C5BBE73B0790B3332783B6FD81 ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll
15:07:59.0108 4644 C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll - ok
15:07:59.0114 4644 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
15:07:59.0114 4644 C:\Windows\SysWOW64\netapi32.dll - ok
15:07:59.0121 4644 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
15:07:59.0121 4644 C:\Windows\SysWOW64\netutils.dll - ok
15:07:59.0127 4644 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
15:07:59.0127 4644 C:\Windows\SysWOW64\srvcli.dll - ok
15:07:59.0133 4644 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
15:07:59.0133 4644 C:\Windows\SysWOW64\wkscli.dll - ok
15:07:59.0138 4644 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
15:07:59.0138 4644 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
15:07:59.0145 4644 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
15:07:59.0145 4644 C:\Windows\System32\uDWM.dll - ok
15:07:59.0151 4644 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
15:07:59.0151 4644 C:\Windows\SysWOW64\imagehlp.dll - ok
15:07:59.0157 4644 [ 0CE4D3BD306DA6D1F6F233C403F5B667 ] C:\Windows\SysWOW64\msi.dll
15:07:59.0157 4644 C:\Windows\SysWOW64\msi.dll - ok
15:07:59.0167 4644 [ F406A47D5C1120602339CE7BDE6D96DA ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
15:07:59.0167 4644 C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
15:07:59.0174 4644 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
15:07:59.0174 4644 C:\Windows\SysWOW64\cscapi.dll - ok
15:07:59.0180 4644 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
15:07:59.0180 4644 C:\Windows\SysWOW64\dbghelp.dll - ok
15:07:59.0188 4644 [ A7BC0750BE524FB7F88BB16F7AE3D3A6 ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
15:07:59.0188 4644 C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
15:07:59.0193 4644 [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:07:59.0194 4644 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
15:07:59.0200 4644 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
15:07:59.0200 4644 C:\Windows\SysWOW64\apphelp.dll - ok
15:07:59.0206 4644 [ 8726802EA4FBFFA3FD54FD2449BF51D4 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
15:07:59.0207 4644 C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe - ok
15:07:59.0213 4644 [ D9A08472D8D0218A0AE2C9D9F63EA531 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
15:07:59.0213 4644 C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe - ok
15:07:59.0219 4644 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
15:07:59.0220 4644 C:\Windows\SysWOW64\mstask.dll - ok
15:07:59.0230 4644 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
15:07:59.0230 4644 C:\Windows\SysWOW64\wbemcomn.dll - ok
15:07:59.0239 4644 [ 37486A4FA791787355FE9DE2FFC785E0 ] C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
15:07:59.0239 4644 C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe - ok
15:07:59.0244 4644 [ 96BE845C8650A2B59B9BC4D798952969 ] C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
15:07:59.0244 4644 C:\Program Files (x86)\AVG\AVG2013\avgemca.exe - ok
15:07:59.0251 4644 [ 6A0A8D20469EFD39A4A3463A88811A57 ] C:\Program Files (x86)\AVG\AVG2013\avgsched.dll
15:07:59.0251 4644 C:\Program Files (x86)\AVG\AVG2013\avgsched.dll - ok
15:07:59.0257 4644 [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
15:07:59.0257 4644 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
15:07:59.0267 4644 [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
15:07:59.0267 4644 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
15:07:59.0274 4644 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:07:59.0274 4644 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
15:07:59.0280 4644 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
15:07:59.0280 4644 C:\Windows\SysWOW64\SensApi.dll - ok
15:07:59.0287 4644 [ A6639BC625634614DC30392BD81C4001 ] C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll
15:07:59.0287 4644 C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll - ok
15:07:59.0293 4644 [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
15:07:59.0294 4644 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
15:07:59.0300 4644 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
15:07:59.0300 4644 C:\Windows\SysWOW64\mpr.dll - ok
15:07:59.0306 4644 [ 2334DC48997BA203B794DF3EE70521DB ] C:\Windows\System32\HPZinw12.dll
15:07:59.0306 4644 C:\Windows\System32\HPZinw12.dll - ok
15:07:59.0315 4644 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
15:07:59.0315 4644 C:\Windows\System32\nlasvc.dll - ok
15:07:59.0322 4644 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
15:07:59.0322 4644 C:\Windows\System32\wsock32.dll - ok
15:07:59.0328 4644 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
15:07:59.0328 4644 C:\Windows\System32\drivers\PEAuth.sys - ok
15:07:59.0335 4644 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
15:07:59.0335 4644 C:\Windows\System32\ncsi.dll - ok
15:07:59.0341 4644 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
15:07:59.0341 4644 C:\Windows\System32\aepic.dll - ok
15:07:59.0351 4644 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
15:07:59.0352 4644 C:\Windows\System32\sfc.dll - ok
15:07:59.0357 4644 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
15:07:59.0357 4644 C:\Windows\System32\sfc_os.dll - ok
15:07:59.0363 4644 [ D1D5DAB39DCB4BE0359943738D87409B ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
15:07:59.0364 4644 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
15:07:59.0370 4644 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
15:07:59.0370 4644 C:\Windows\System32\ssdpapi.dll - ok
15:07:59.0377 4644 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
15:07:59.0377 4644 C:\Windows\System32\drivers\secdrv.sys - ok
15:07:59.0384 4644 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] C:\Windows\System32\HPZipm12.dll
15:07:59.0384 4644 C:\Windows\System32\HPZipm12.dll - ok
15:07:59.0387 4644 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
15:07:59.0387 4644 C:\Windows\SysWOW64\devrtl.dll - ok
15:07:59.0395 4644 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
15:07:59.0395 4644 C:\Windows\System32\dbghelp.dll - ok
15:07:59.0401 4644 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
15:07:59.0401 4644 C:\Windows\System32\drivers\srvnet.sys - ok
15:07:59.0408 4644 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
15:07:59.0408 4644 C:\Windows\System32\aeevts.dll - ok
15:07:59.0414 4644 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
15:07:59.0414 4644 C:\Windows\System32\drivers\tcpipreg.sys - ok
15:07:59.0420 4644 [ 910710BCEA1966BEDEBD6BA4BEDA8CBD ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatesrv.exe
15:07:59.0420 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatesrv.exe - ok
15:07:59.0428 4644 [ AB8892524844B3576A52E6237F336B17 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatecomm.dll
15:07:59.0428 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatecomm.dll - ok
15:07:59.0434 4644 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
15:07:59.0434 4644 C:\Windows\System32\sysmain.dll - ok
15:07:59.0441 4644 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
15:07:59.0441 4644 C:\Windows\System32\wiaservc.dll - ok
15:07:59.0447 4644 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
15:07:59.0447 4644 C:\Windows\System32\wbem\WMIsvc.dll - ok
15:07:59.0454 4644 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
15:07:59.0454 4644 C:\Windows\System32\wiatrace.dll - ok
15:07:59.0460 4644 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
15:07:59.0461 4644 C:\Windows\System32\wbemcomn.dll - ok
15:07:59.0467 4644 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
15:07:59.0467 4644 C:\Windows\System32\trkwks.dll - ok
15:07:59.0477 4644 [ 353EB4D3DED0BED4355F03E9302BAC6F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatemgr.dll
15:07:59.0477 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\updatemgr.dll - ok
15:07:59.0482 4644 [ 837E9B1921BCDC4429FC706BB1BF96CB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\proxymgr.dll
15:07:59.0482 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\proxymgr.dll - ok
15:07:59.0490 4644 [ 98F138897EF4246381D197CB81846D62 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:07:59.0490 4644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
15:07:59.0496 4644 [ 39CC783463D0D600FD82A57699204AA1 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\installer\installer.exe
15:07:59.0496 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\installer\installer.exe - ok
15:07:59.0504 4644 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:07:59.0504 4644 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:07:59.0511 4644 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
15:07:59.0511 4644 C:\Windows\System32\wbem\fastprox.dll - ok
15:07:59.0517 4644 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
15:07:59.0517 4644 C:\Windows\System32\ntdsapi.dll - ok
15:07:59.0526 4644 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
15:07:59.0526 4644 C:\Windows\System32\wbem\wbemprox.dll - ok
15:07:59.0532 4644 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
15:07:59.0533 4644 C:\Windows\System32\wbem\wbemcore.dll - ok
15:07:59.0540 4644 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
15:07:59.0540 4644 C:\Windows\System32\wbem\esscli.dll - ok
15:07:59.0547 4644 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
15:07:59.0547 4644 C:\Windows\System32\wbem\wbemsvc.dll - ok
15:07:59.0554 4644 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
15:07:59.0554 4644 C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:07:59.0561 4644 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:07:59.0561 4644 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:07:59.0568 4644 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
15:07:59.0568 4644 C:\Windows\System32\wbem\wmiutils.dll - ok
15:07:59.0576 4644 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
15:07:59.0576 4644 C:\Windows\System32\wbem\repdrvfs.dll - ok
15:07:59.0583 4644 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:07:59.0583 4644 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:07:59.0590 4644 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
15:07:59.0590 4644 C:\Windows\SysWOW64\ntdsapi.dll - ok
15:07:59.0596 4644 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:07:59.0597 4644 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:07:59.0603 4644 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
15:07:59.0603 4644 C:\Windows\System32\ncobjapi.dll - ok
15:07:59.0611 4644 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
15:07:59.0611 4644 C:\Windows\System32\wbem\wbemess.dll - ok
15:07:59.0620 4644 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
15:07:59.0620 4644 C:\Windows\System32\msvcr100.dll - ok
15:07:59.0628 4644 [ A94123E41CEEA7797522A10A08DADE23 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdguictl.dll
15:07:59.0628 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdguictl.dll - ok
15:07:59.0635 4644 [ C0148266689B5CE89E524948FD525CDD ] C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll
15:07:59.0635 4644 C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll - ok
15:07:59.0638 4644 [ 7D2DB9CFC2E9E3F4C1D32B18E7B99672 ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapia.dll
15:07:59.0638 4644 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapia.dll - ok
15:07:59.0646 4644 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
15:07:59.0646 4644 C:\Windows\System32\SensApi.dll - ok
15:07:59.0652 4644 [ 57B736E990BA15568FAFAE9262C0AE6B ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
15:07:59.0652 4644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
15:07:59.0659 4644 [ B6FE228F3C3BC92CA4639FA0EC215ACE ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\nag.dll
15:07:59.0659 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\nag.dll - ok
15:07:59.0665 4644 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
15:07:59.0665 4644 C:\Windows\SysWOW64\uxtheme.dll - ok
15:07:59.0672 4644 [ 9657B21E9302AC17C1FF49F3AF624E94 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdguictl.ui
15:07:59.0672 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdguictl.ui - ok
15:07:59.0679 4644 [ 200F708E046FCA3A84ECAC5D0EE3D6F6 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\installer\iph.dll
15:07:59.0679 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\installer\iph.dll - ok
15:07:59.0685 4644 [ 41A4B8BA8F1346F9A502C9BE01F03CF0 ] C:\Program Files (x86)\AVG\AVG2013\avgsecapia.dll
15:07:59.0686 4644 C:\Program Files (x86)\AVG\AVG2013\avgsecapia.dll - ok
15:07:59.0692 4644 [ DDD6EB8C32AAF5797D71413F2FC7A00F ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
15:07:59.0692 4644 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - ok
15:07:59.0699 4644 [ E226B707729D86F71470E9564D0F0C47 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\updategui.dll
15:07:59.0699 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\updategui.dll - ok
15:07:59.0705 4644 [ E2A02984CBEB13BAF07CF744459B3C94 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\updategui.ui
15:07:59.0705 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\updategui.ui - ok
15:07:59.0712 4644 [ DEDBE54276F8DAAD04C46299485FEFBF ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
15:07:59.0712 4644 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
15:07:59.0718 4644 [ EE3A709C926ADFEA18525326BE79343A ] C:\ProgramData\Microsoft\IdentityCRL\production\wlidui.dll
15:07:59.0719 4644 C:\ProgramData\Microsoft\IdentityCRL\production\wlidui.dll - ok
15:07:59.0726 4644 [ 0A085496E934F7785CE3BE7D2F009BF8 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdagent.ui
15:07:59.0726 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdagent.ui - ok
15:07:59.0732 4644 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
15:07:59.0732 4644 C:\Windows\System32\drivers\srv2.sys - ok
15:07:59.0739 4644 [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
15:07:59.0739 4644 C:\Windows\System32\iphlpsvc.dll - ok
15:07:59.0746 4644 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
15:07:59.0747 4644 C:\Windows\System32\sqmapi.dll - ok
15:07:59.0753 4644 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
15:07:59.0753 4644 C:\Windows\System32\drivers\srv.sys - ok
15:07:59.0761 4644 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
15:07:59.0761 4644 C:\Windows\System32\wdscore.dll - ok
15:07:59.0768 4644 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
15:07:59.0768 4644 C:\Windows\System32\actxprxy.dll - ok
15:07:59.0775 4644 [ 2CA1149BF3869FBBF1C436D70CE2271E ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\pchooklaunch64.exe
15:07:59.0775 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\pchooklaunch64.exe - ok
15:07:59.0783 4644 [ E6AE50F947DA4DCA47EF204910DB7825 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\pchooklaunch32.exe
15:07:59.0783 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\pchooklaunch32.exe - ok
15:07:59.0790 4644 [ 32B000EB897A770FCAD5F82AC90C6411 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdusers.dll
15:07:59.0790 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdusers.dll - ok
15:07:59.0797 4644 [ 7BBF670114373CE6A203FA155A9E0D0A ] C:\Windows\System32\ntshrui.dll
15:07:59.0797 4644 C:\Windows\System32\ntshrui.dll - ok
15:07:59.0804 4644 [ DC3DE8088A3CA1660A07F8ADC1A9C5BC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\pcontrol.ui
15:07:59.0804 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\pcontrol.ui - ok
15:07:59.0811 4644 [ A110A2509FBC5A54D38F8622D61BF697 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\pchook64.dll
15:07:59.0811 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\pchook64.dll - ok
15:07:59.0818 4644 [ 56B010C4DAD09555DB4C640B2B52A7B6 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\bdutils.dll
15:07:59.0818 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\bdutils.dll - ok
15:07:59.0824 4644 [ 368B2BEE3F88BFB883D2C74A258DE6F6 ] C:\Windows\AppPatch\AcLayers.dll
15:07:59.0824 4644 C:\Windows\AppPatch\AcLayers.dll - ok
15:07:59.0831 4644 [ E8DDBAF01A7491B04D5AC78EFE2068EE ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\iservconfig.dll
15:07:59.0831 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\iservconfig.dll - ok
15:07:59.0838 4644 [ 4B57803E2B65A26455113CC3B8333B03 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\pchook32.dll
15:07:59.0838 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\pchook32.dll - ok
15:07:59.0845 4644 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
15:07:59.0845 4644 C:\Windows\System32\srvsvc.dll - ok
15:07:59.0852 4644 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
15:07:59.0852 4644 C:\Windows\System32\browser.dll - ok
15:07:59.0857 4644 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
15:07:59.0857 4644 C:\Windows\System32\netmsg.dll - ok
15:07:59.0864 4644 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
15:07:59.0864 4644 C:\Windows\System32\sscore.dll - ok
15:07:59.0870 4644 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
15:07:59.0870 4644 C:\Windows\System32\clusapi.dll - ok
15:07:59.0876 4644 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
15:07:59.0876 4644 C:\Windows\System32\resutils.dll - ok
15:07:59.0883 4644 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
15:07:59.0883 4644 C:\Windows\System32\nci.dll - ok
15:07:59.0889 4644 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
15:07:59.0889 4644 C:\Windows\System32\hnetcfg.dll - ok
15:07:59.0893 4644 [ AD31942BDF3D594C404874613BC2FE4D ] C:\Windows\System32\SearchIndexer.exe
15:07:59.0893 4644 C:\Windows\System32\SearchIndexer.exe - ok
15:07:59.0899 4644 [ 499147F015E87AC2C2EBAA368F6BFE96 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
15:07:59.0899 4644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
15:07:59.0906 4644 [ 6C597496AB646EB9F31C68241050F771 ] C:\Windows\System32\tquery.dll
15:07:59.0906 4644 C:\Windows\System32\tquery.dll - ok
15:07:59.0912 4644 [ 017F5CE9BC2333FE0FB738B0A9C13C2F ] C:\Windows\System32\mssrch.dll
15:07:59.0912 4644 C:\Windows\System32\mssrch.dll - ok
15:07:59.0918 4644 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
15:07:59.0918 4644 C:\Windows\System32\msidle.dll - ok
15:07:59.0924 4644 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
15:07:59.0924 4644 C:\Windows\System32\npmproxy.dll - ok
15:07:59.0930 4644 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
15:07:59.0931 4644 C:\Windows\System32\mssprxy.dll - ok
15:07:59.0937 4644 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
15:07:59.0937 4644 C:\Windows\System32\ndiscapCfg.dll - ok
15:07:59.0943 4644 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
15:07:59.0943 4644 C:\Windows\System32\en-US\tquery.dll.mui - ok
15:07:59.0949 4644 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
15:07:59.0949 4644 C:\Windows\System32\rascfg.dll - ok
15:07:59.0956 4644 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
15:07:59.0956 4644 C:\Windows\System32\mprapi.dll - ok
15:07:59.0962 4644 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
15:07:59.0962 4644 C:\Windows\System32\mprmsg.dll - ok
15:07:59.0968 4644 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
15:07:59.0968 4644 C:\Windows\System32\tcpipcfg.dll - ok
15:07:59.0979 4644 [ 61E0D6527F7577949D1AE9C4B2436553 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\uienvironment.dll
15:07:59.0979 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\uienvironment.dll - ok
15:07:59.0984 4644 [ 67827EEDB7A1A41F73A652ADC6517FF1 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\issues.dll
15:07:59.0984 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\issues.dll - ok
15:07:59.0990 4644 [ DC1DAB609E400102B58BA7865220FD42 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\htmlayout.dll
15:07:59.0990 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\htmlayout.dll - ok
15:07:59.0996 4644 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
15:07:59.0997 4644 C:\Windows\System32\oleacc.dll - ok
15:08:00.0003 4644 [ B078E410A2B35A20B409F0DC39B88CF3 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\issues.ui
15:08:00.0003 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\issues.ui - ok
15:08:00.0009 4644 [ FC52D7BC3AC495F683623C36336E0E0E ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\popup.dll
15:08:00.0009 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\popup.dll - ok
15:08:00.0017 4644 [ 2F7C86C8F16723902C114B1B9C14D35A ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\popup.ui
15:08:00.0017 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\popup.ui - ok
15:08:00.0022 4644 [ 2335EC612AD35ECB4CE4A46A67304D56 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdascl.dll
15:08:00.0022 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdascl.dll - ok
15:08:00.0029 4644 [ 42EC9065D9BF266ADE924B066C783A56 ] C:\Windows\System32\SearchProtocolHost.exe
15:08:00.0029 4644 C:\Windows\System32\SearchProtocolHost.exe - ok
15:08:00.0035 4644 [ 61E1AA209905F11BD7026EA4A406D5CC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdascl.ui
15:08:00.0035 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdascl.ui - ok
15:08:00.0042 4644 [ 18D0B8B3BB62559A43CAFAC93B84DA1C ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\imguiym.dll
15:08:00.0042 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\imguiym.dll - ok
15:08:00.0048 4644 [ 78C60DC048F1D6854A259306635B8264 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\imguimsn.dll
15:08:00.0049 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\imguimsn.dll - ok
15:08:00.0055 4644 [ 12A96D40B48582D6D4D9E93FA204CAA7 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ondemandcomm.dll
15:08:00.0055 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\ondemandcomm.dll - ok
15:08:00.0062 4644 [ 1D41B450164790BF7808A7B759ADA8C4 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\DpReg.exe
15:08:00.0062 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\DpReg.exe - ok
15:08:00.0068 4644 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
15:08:00.0068 4644 C:\Windows\SysWOW64\comdlg32.dll - ok
15:08:00.0074 4644 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
15:08:00.0074 4644 C:\Windows\SysWOW64\oleacc.dll - ok
15:08:00.0081 4644 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
15:08:00.0081 4644 C:\Windows\SysWOW64\oledlg.dll - ok
15:08:00.0087 4644 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
15:08:00.0087 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
15:08:00.0096 4644 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
15:08:00.0096 4644 C:\Windows\SysWOW64\winhttp.dll - ok
15:08:00.0105 4644 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
15:08:00.0105 4644 C:\Windows\SysWOW64\webio.dll - ok
15:08:00.0112 4644 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
15:08:00.0112 4644 C:\Windows\SysWOW64\wship6.dll - ok
15:08:00.0117 4644 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
15:08:00.0117 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
15:08:00.0124 4644 [ 5092FDD5E1A701B0BAB653882A2FEBFF ] C:\Program Files\Internet Explorer\sqmapi.dll
15:08:00.0124 4644 C:\Program Files\Internet Explorer\sqmapi.dll - ok
15:08:00.0130 4644 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
15:08:00.0131 4644 C:\Windows\SysWOW64\dnsapi.dll - ok
15:08:00.0136 4644 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:08:00.0137 4644 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:08:00.0140 4644 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:08:00.0140 4644 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:08:00.0147 4644 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
15:08:00.0147 4644 C:\Windows\SysWOW64\netprofm.dll - ok
15:08:00.0156 4644 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
15:08:00.0156 4644 C:\Windows\SysWOW64\nlaapi.dll - ok
15:08:00.0163 4644 [ 835BFF67EBD89BCE0B13460B2A56C53E ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
15:08:00.0163 4644 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
15:08:00.0169 4644 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
15:08:00.0170 4644 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
15:08:00.0179 4644 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
15:08:00.0179 4644 C:\Windows\SysWOW64\npmproxy.dll - ok
15:08:00.0185 4644 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
15:08:00.0185 4644 C:\Windows\SysWOW64\rasadhlp.dll - ok
15:08:00.0194 4644 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:08:00.0194 4644 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:08:00.0199 4644 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
15:08:00.0199 4644 C:\Windows\SysWOW64\credssp.dll - ok
15:08:00.0208 4644 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
15:08:00.0208 4644 C:\Windows\SysWOW64\schannel.dll - ok
15:08:00.0215 4644 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
15:08:00.0215 4644 C:\Windows\System32\dssenh.dll - ok
15:08:00.0221 4644 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
15:08:00.0221 4644 C:\Windows\SysWOW64\ncrypt.dll - ok
15:08:00.0227 4644 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
15:08:00.0227 4644 C:\Windows\SysWOW64\bcrypt.dll - ok
15:08:00.0234 4644 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:08:00.0234 4644 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:08:00.0240 4644 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
15:08:00.0240 4644 C:\Windows\SysWOW64\gpapi.dll - ok
15:08:00.0246 4644 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
15:08:00.0246 4644 C:\Windows\SysWOW64\FirewallAPI.dll - ok
15:08:00.0252 4644 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
15:08:00.0252 4644 C:\Windows\SysWOW64\msimg32.dll - ok
15:08:00.0261 4644 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
15:08:00.0261 4644 C:\Windows\System32\ExplorerFrame.dll - ok
15:08:00.0267 4644 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
15:08:00.0267 4644 C:\Windows\System32\EhStorShell.dll - ok
15:08:00.0274 4644 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
15:08:00.0274 4644 C:\Windows\System32\IconCodecService.dll - ok
15:08:00.0280 4644 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
15:08:00.0280 4644 C:\Windows\System32\msshooks.dll - ok
15:08:00.0287 4644 [ 52D56D1013D4F1B99102679314CC5325 ] C:\Windows\System32\SearchFilterHost.exe
15:08:00.0287 4644 C:\Windows\System32\SearchFilterHost.exe - ok
15:08:00.0300 4644 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
15:08:00.0300 4644 C:\Windows\System32\NapiNSP.dll - ok
15:08:00.0311 4644 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
15:08:00.0311 4644 C:\Windows\System32\pnrpnsp.dll - ok
15:08:00.0318 4644 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
15:08:00.0318 4644 C:\Windows\System32\winrnr.dll - ok
15:08:00.0325 4644 [ F37882F128EFACEFE353E0BAE2766909 ] C:\Program Files (x86)\Hp\Digital Imaging\bin\HPSLPSVC64.DLL
15:08:00.0325 4644 C:\Program Files (x86)\Hp\Digital Imaging\bin\HPSLPSVC64.DLL - ok
15:08:00.0334 4644 [ 57A812537B752E2B0409576120183E4F ] C:\Windows\System32\drivers\bdfm.sys
15:08:00.0334 4644 C:\Windows\System32\drivers\bdfm.sys - ok
15:08:00.0341 4644 [ 191150400EB109085C4111D739F92528 ] C:\Windows\System32\drivers\bdhv.sys
15:08:00.0341 4644 C:\Windows\System32\drivers\bdhv.sys - ok
15:08:00.0347 4644 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
15:08:00.0347 4644 C:\Windows\System32\wdi.dll - ok
15:08:00.0353 4644 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqcxs08.dll
15:08:00.0353 4644 C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqcxs08.dll - ok
15:08:00.0360 4644 [ 32AF82EE76D8024F1CABD87135654600 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Active Virus Control\Midas_00089_011\neurons.dll
15:08:00.0360 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Active Virus Control\Midas_00089_011\neurons.dll - ok
15:08:00.0367 4644 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
15:08:00.0367 4644 C:\Windows\System32\wpdbusenum.dll - ok
15:08:00.0373 4644 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
15:08:00.0373 4644 C:\Windows\SysWOW64\shfolder.dll - ok
15:08:00.0380 4644 [ 911A11DD4508D657354FCB8ECA628A6A ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\containerdatasp.dll
15:08:00.0380 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\containerdatasp.dll - ok
15:08:00.0386 4644 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
15:08:00.0386 4644 C:\Windows\System32\PortableDeviceApi.dll - ok
15:08:00.0392 4644 [ F5A3819991D82CF2B7DB5E1F031D9B90 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\wsc.ui
15:08:00.0393 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\wsc.ui - ok
15:08:00.0397 4644 [ 2FEAC954135D175A730E365D6092A57C ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\wsc.dll
15:08:00.0397 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\wsc.dll - ok
15:08:00.0403 4644 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
15:08:00.0403 4644 C:\Windows\SysWOW64\sxs.dll - ok
15:08:00.0409 4644 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:08:00.0409 4644 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:08:00.0416 4644 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
15:08:00.0416 4644 C:\Windows\System32\IPSECSVC.DLL - ok
15:08:00.0423 4644 [ 55BD69FCC40668AB7191D62E97C891C1 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\perfal.dll
15:08:00.0423 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\perfal.dll - ok
15:08:00.0431 4644 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
15:08:00.0431 4644 C:\Windows\System32\appinfo.dll - ok
15:08:00.0436 4644 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
15:08:00.0436 4644 C:\Windows\System32\diagperf.dll - ok
15:08:00.0443 4644 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
15:08:00.0443 4644 C:\Windows\System32\FXSRESM.dll - ok
15:08:00.0453 4644 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
15:08:00.0453 4644 C:\Windows\System32\FwRemoteSvr.dll - ok
15:08:00.0460 4644 [ 79D1DF562AFE21ED9B080556251B45AC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\quarcore.dll
15:08:00.0460 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\quarcore.dll - ok
15:08:00.0467 4644 [ CACD17867111D3CB957B70F647FA123B ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\quar.dll
15:08:00.0467 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\quar.dll - ok
15:08:00.0473 4644 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
15:08:00.0473 4644 C:\Windows\System32\mscoree.dll - ok
15:08:00.0479 4644 [ EAF585E023FFE71F84267AC7F467E084 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdasal.dll
15:08:00.0479 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdasal.dll - ok
15:08:00.0486 4644 [ 79E8F9269134DDEC8296C56F74A4B51B ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdassdksp.dll
15:08:00.0486 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdassdksp.dll - ok
15:08:00.0492 4644 [ 667224FF4FD48B182F574AA96E93267C ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
15:08:00.0493 4644 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
15:08:00.0499 4644 [ 37C07F690F5E3560536464007445367F ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\antispam.dll
15:08:00.0499 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\antispam.dll - ok
15:08:00.0506 4644 [ CA0A8496F0CC9340A975F46DE3A3E8D1 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ascore.dll
15:08:00.0506 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ascore.dll - ok
15:08:00.0513 4644 [ ABDBABE3A7D2222B3A0DB1B8B9CAD16E ] C:\Windows\System32\mssph.dll
15:08:00.0513 4644 C:\Windows\System32\mssph.dll - ok
15:08:00.0520 4644 [ 97A4FFED807F796A77677BA77678B3A7 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asfn.dll
15:08:00.0520 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asfn.dll - ok
15:08:00.0527 4644 [ 71175EB96419ACF2FAA85A2336DA04F2 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlapm.mdl
15:08:00.0527 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlapm.mdl - ok
15:08:00.0533 4644 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
15:08:00.0533 4644 C:\Windows\System32\mapi32.dll - ok
15:08:00.0539 4644 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
15:08:00.0539 4644 C:\Windows\System32\runonce.exe - ok
15:08:00.0546 4644 [ C51C168FB33389BBAAD09D7E2FCCD42A ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlbr.mdl
15:08:00.0546 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlbr.mdl - ok
15:08:00.0554 4644 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
15:08:00.0554 4644 C:\Windows\SysWOW64\runonce.exe - ok
15:08:00.0560 4644 [ 7F98C37FA3436C641D40CBA08570C1B0 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlci.mdl
15:08:00.0560 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlci.mdl - ok
15:08:00.0567 4644 [ EA790389F81879A2311BD501B8AC73DD ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemldsp.mdl
15:08:00.0567 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemldsp.mdl - ok
15:08:00.0574 4644 [ B30E31D3EBE36887905F006EEF0B37F0 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlf.mdl
15:08:00.0574 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlf.mdl - ok
15:08:00.0582 4644 [ 3C2AB93506EFCC2B4AD7B762850E4CD8 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlimg.mdl
15:08:00.0582 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlimg.mdl - ok
15:08:00.0590 4644 [ 9B9B7ED26B045D16AC35C2989901BB2D ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlrtr.mdl
15:08:00.0590 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlrtr.mdl - ok
15:08:00.0597 4644 [ E6B549E75E079575AC1C0DF60988189C ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlsgn.mdl
15:08:00.0597 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asemlsgn.mdl - ok
15:08:00.0604 4644 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
15:08:00.0604 4644 C:\Windows\SysWOW64\cmd.exe - ok
15:08:00.0611 4644 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
15:08:00.0611 4644 C:\Windows\System32\aelupsvc.dll - ok
15:08:00.0621 4644 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
15:08:00.0621 4644 C:\Windows\System32\Query.dll - ok
15:08:00.0627 4644 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
15:08:00.0627 4644 C:\Windows\System32\perftrack.dll - ok
15:08:00.0635 4644 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
15:08:00.0635 4644 C:\Windows\SysWOW64\winbrand.dll - ok
15:08:00.0642 4644 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
15:08:00.0642 4644 C:\Windows\System32\PhotoMetadataHandler.dll - ok
15:08:00.0646 4644 [ E9BCB6728DD04412BF87F03DB00DE1CF ] C:\Windows\SysWOW64\ieframe.dll
15:08:00.0646 4644 C:\Windows\SysWOW64\ieframe.dll - ok
15:08:00.0654 4644 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
15:08:00.0654 4644 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
15:08:00.0661 4644 [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
15:08:00.0661 4644 C:\Windows\SysWOW64\shdocvw.dll - ok
15:08:00.0668 4644 [ 956B7AB3A3DA0682A1776A4C07CBFB43 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpbr.mdl
15:08:00.0668 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpbr.mdl - ok
15:08:00.0675 4644 [ EF063E3A1E0E36313171B191DBD36FAD ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpdsp.mdl
15:08:00.0675 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpdsp.mdl - ok
15:08:00.0682 4644 [ AAF43EFE084CAF85C54CBC81948EB3F5 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpf.mdl
15:08:00.0683 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpf.mdl - ok
15:08:00.0689 4644 [ 3555C2AE496C608BA07E2D84F4F08C12 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpfr.mdl
15:08:00.0689 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpfr.mdl - ok
15:08:00.0695 4644 [ B90EC3D322EBA9697B31FEAAEEAA3318 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpph.mdl
15:08:00.0695 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpph.mdl - ok
15:08:00.0705 4644 [ 7F6B44D2E9C2703B5FD75B746CFCAB49 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpphar.mdl
15:08:00.0705 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttpphar.mdl - ok
15:08:00.0709 4644 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
15:08:00.0709 4644 C:\Windows\System32\Apphlpdm.dll - ok
15:08:00.0716 4644 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
15:08:00.0716 4644 C:\Windows\System32\pnpts.dll - ok
15:08:00.0722 4644 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
15:08:00.0722 4644 C:\Windows\System32\wer.dll - ok
15:08:00.0728 4644 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
15:08:00.0728 4644 C:\Windows\System32\wdiasqmmodule.dll - ok
15:08:00.0735 4644 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Rose\AppData\Local\Temp\75BB6CC4-09B4-40DA-A8D9-CC791A87CD4A.exe
15:08:00.0735 4644 C:\Users\Rose\AppData\Local\Temp\75BB6CC4-09B4-40DA-A8D9-CC791A87CD4A.exe - ok
15:08:00.0741 4644 [ 7B851A8018B1EA00A69707A390004884 ] C:\Windows\SysWOW64\cryptnet.dll
15:08:00.0741 4644 C:\Windows\SysWOW64\cryptnet.dll - ok
15:08:00.0747 4644 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:08:00.0747 4644 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:08:00.0755 4644 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
15:08:00.0755 4644 C:\Windows\System32\dimsjob.dll - ok
15:08:00.0762 4644 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
15:08:00.0762 4644 C:\Windows\SysWOW64\EhStorShell.dll - ok
15:08:00.0769 4644 [ EB77DB354791A5932CA559B6F6374E95 ] C:\Windows\SysWOW64\ntshrui.dll
15:08:00.0769 4644 C:\Windows\SysWOW64\ntshrui.dll - ok
15:08:00.0776 4644 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
15:08:00.0776 4644 C:\Windows\SysWOW64\slc.dll - ok
15:08:00.0783 4644 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
15:08:00.0783 4644 C:\Windows\SysWOW64\imageres.dll - ok
15:08:00.0789 4644 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
15:08:00.0790 4644 C:\Windows\System32\pautoenr.dll - ok
15:08:00.0796 4644 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
15:08:00.0796 4644 C:\Windows\System32\certcli.dll - ok
15:08:00.0803 4644 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
15:08:00.0803 4644 C:\Windows\System32\CertEnroll.dll - ok
15:08:00.0810 4644 [ 4A90192030FE703944B2985629FB75C1 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttprbl.mdl
15:08:00.0810 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\ashttprbl.mdl - ok
15:08:00.0817 4644 [ 5A8F42AEC284BAD0EC54981558B4F515 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asimbr.mdl
15:08:00.0817 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asimbr.mdl - ok
15:08:00.0824 4644 [ 8D6127CAB5B8842606F4B804411DB0C9 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asimdsp.mdl
15:08:00.0824 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asimdsp.mdl - ok
15:08:00.0834 4644 [ 6FC08B3308E3FA8CD607F4AACBDF55FC ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asimf.mdl
15:08:00.0834 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\as2core\asimf.mdl - ok
15:08:00.0839 4644 [ C394F2855F4798A25AAB5EAC40F639CB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdaphal.dll
15:08:00.0839 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdaphal.dll - ok
15:08:00.0846 4644 [ A60307B3930B6B8A79CAC86E48893E83 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdasal.ui
15:08:00.0846 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdasal.ui - ok
15:08:00.0852 4644 [ 24900CAAE3558794D58845596720CE32 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdpchal.dll
15:08:00.0852 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdpchal.dll - ok
15:08:00.0859 4644 [ C161BEF9D918F34765F5BB217DEB9F15 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdaphal.ui
15:08:00.0859 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdaphal.ui - ok
15:08:00.0866 4644 [ E0144BEFE9A0149FDA5323E9FFD34A2E ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdlsal.dll
15:08:00.0866 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdlsal.dll - ok
15:08:00.0873 4644 [ 2B42F9CDEFD245C2028F99BFC4E48D6B ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bssettingsal.dll
15:08:00.0873 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bssettingsal.dll - ok
15:08:00.0879 4644 [ 4745E127224CC815E96249B12AC1BD15 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdlsal.ui
15:08:00.0879 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\bdlsal.ui - ok
15:08:00.0886 4644 [ 36247B640574EBB0818B98990F0183F0 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\excludemgr.dll
15:08:00.0886 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\excludemgr.dll - ok
15:08:00.0893 4644 [ 81B11F0A16C6784437D19CCC30D311AB ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\rtreport.dll
15:08:00.0893 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\rtreport.dll - ok
15:08:00.0897 4644 [ 60129AF054B026307E50180C359BAAF0 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ymdp.dll
15:08:00.0897 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\ymdp.dll - ok
15:08:00.0904 4644 [ E6D876826C5068ADAAFFAF332FD95B31 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ycryptp.dll
15:08:00.0904 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\ycryptp.dll - ok
15:08:00.0911 4644 [ 2D734891E6AF8CA10882D2A8E09EA4B8 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\msndp.dll
15:08:00.0911 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\msndp.dll - ok
15:08:00.0917 4644 [ EF84367BF41902F27BA348FBB131AD39 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\msndll.dll
15:08:00.0917 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\msndll.dll - ok
15:08:00.0924 4644 [ C7CFB71A0147F6499316833D18B7F879 ] C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll
15:08:00.0924 4644 C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll - ok
15:08:00.0930 4644 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
15:08:00.0930 4644 C:\Windows\System32\msvcp100.dll - ok
15:08:00.0937 4644 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
15:08:00.0937 4644 C:\Windows\System32\wuapi.dll - ok
15:08:00.0943 4644 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
15:08:00.0943 4644 C:\Windows\System32\cabinet.dll - ok
15:08:00.0952 4644 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
15:08:00.0952 4644 C:\Windows\System32\wups.dll - ok
15:08:00.0956 4644 [ 8750F86BA02A280F4D4A6A3471E70AC2 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdapupck.dll
15:08:00.0956 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\bdapupck.dll - ok
15:08:00.0963 4644 [ F2F19ED0945A3CB719A0A1106714704D ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\recommendations.dll
15:08:00.0963 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\recommendations.dll - ok
15:08:00.0970 4644 [ F9A6AD20E7AB63190A82FF2E5F19864C ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\hmcore.dll
15:08:00.0970 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\hmcore.dll - ok
15:08:00.0976 4644 [ E80E9D69D7C1A76C8988E78F8EE202F5 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\htmlpack.dll
15:08:00.0976 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\htmlpack.dll - ok
15:08:00.0983 4644 [ F7370287B9626D9429C8DDFD42E163BE ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\odscanui.exe
15:08:00.0983 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\odscanui.exe - ok
15:08:00.0991 4644 [ 34684A40BE7FC246134F9A0E6450BDEA ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\odscanui.ui
15:08:00.0991 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\UI\odscanui.ui - ok
15:08:00.0997 4644 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe
15:08:00.0997 4644 C:\Windows\svchost.exe - ok
15:08:01.0004 4644 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
15:08:01.0004 4644 C:\Windows\System32\wbem\NCProv.dll - ok
15:08:01.0010 4644 [ 1FCB1A72BF5C784F7358E6BEF38E4571 ] C:\Windows\System32\timedate.cpl
15:08:01.0010 4644 C:\Windows\System32\timedate.cpl - ok
15:08:01.0016 4644 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
15:08:01.0016 4644 C:\Windows\System32\gameux.dll - ok
15:08:01.0023 4644 [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
15:08:01.0023 4644 C:\Windows\System32\shdocvw.dll - ok
15:08:01.0030 4644 [ 677A1C1B0F254EC918D84A7FE29274CA ] C:\Windows\System32\ieframe.dll
15:08:01.0030 4644 C:\Windows\System32\ieframe.dll - ok
15:08:01.0036 4644 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
15:08:01.0036 4644 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
15:08:01.0043 4644 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
15:08:01.0043 4644 C:\Windows\System32\msiltcfg.dll - ok
15:08:01.0048 4644 [ 6A16BCE3C09496650BE881C467611653 ] C:\Windows\System32\msi.dll
15:08:01.0049 4644 C:\Windows\System32\msi.dll - ok
15:08:01.0055 4644 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
15:08:01.0055 4644 C:\Windows\System32\msftedit.dll - ok
15:08:01.0061 4644 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
15:08:01.0061 4644 C:\Windows\System32\msls31.dll - ok
15:08:01.0067 4644 [ E24810944B2EB49862D835CA5B7E6E43 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
15:08:01.0067 4644 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
15:08:01.0073 4644 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
15:08:01.0074 4644 C:\Windows\System32\linkinfo.dll - ok
15:08:01.0080 4644 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
15:08:01.0080 4644 C:\Windows\System32\UIAnimation.dll - ok
15:08:01.0087 4644 [ 0E4ED29EC307AC7F8F668640DD321D7A ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
15:08:01.0087 4644 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe - ok
15:08:01.0094 4644 [ D0EB6410A7D688E26C8D519425E743C8 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
15:08:01.0094 4644 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe - ok
15:08:01.0101 4644 [ AB41188B4F23059683D849FA7EC9888D ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPKBDCTL.dll
15:08:01.0101 4644 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPKBDCTL.dll - ok
15:08:01.0107 4644 [ 49761B7E50CC76B2FB25F99BF243323F ] C:\Windows\System32\SynCOM.dll
15:08:01.0107 4644 C:\Windows\System32\SynCOM.dll - ok
15:08:01.0113 4644 [ F1475C9B509A8643358C6C7F97F4BAB8 ] C:\Windows\System32\SynTPAPI.dll
15:08:01.0113 4644 C:\Windows\System32\SynTPAPI.dll - ok
15:08:01.0120 4644 [ F333A699C8F43048659F0E201CB7268D ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
15:08:01.0120 4644 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
15:08:01.0126 4644 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
15:08:01.0127 4644 C:\Windows\System32\thumbcache.dll - ok
15:08:01.0133 4644 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:08:01.0133 4644 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:08:01.0140 4644 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
15:08:01.0140 4644 C:\Windows\System32\networkexplorer.dll - ok
15:08:01.0146 4644 [ 0087BBDD20A9C24CC58E8DA367B83B8C ] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe
15:08:01.0146 4644 C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe - ok
15:08:01.0150 4644 [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
15:08:01.0150 4644 C:\Windows\System32\consent.exe - ok
15:08:01.0158 4644 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
15:08:01.0158 4644 C:\Windows\System32\opengl32.dll - ok
15:08:01.0164 4644 [ 52A3DF9E3C34B1AD9E68141B52B5C2F0 ] C:\Program Files\Java\jre6\bin\jusched.exe
15:08:01.0164 4644 C:\Program Files\Java\jre6\bin\jusched.exe - ok
15:08:01.0171 4644 [ A0ABBAD8CE99CBF8467D697073B38E87 ] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
15:08:01.0172 4644 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe - ok
15:08:01.0178 4644 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
15:08:01.0178 4644 C:\Windows\System32\glu32.dll - ok
15:08:01.0184 4644 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
15:08:01.0184 4644 C:\Windows\System32\oledlg.dll - ok
15:08:01.0192 4644 [ 831D841CD720EC14CB53CF193555C2F6 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\ieshow.exe
15:08:01.0192 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\ieshow.exe - ok
15:08:01.0197 4644 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
15:08:01.0197 4644 C:\Windows\System32\wbem\wmiprov.dll - ok
15:08:01.0204 4644 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
15:08:01.0204 4644 C:\Windows\System32\l3codeca.acm - ok
15:08:01.0209 4644 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
15:08:01.0209 4644 C:\Windows\System32\ddraw.dll - ok
15:08:01.0216 4644 [ C06F76EC21B1CD5D8EB8A95243371A67 ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
15:08:01.0216 4644 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe - ok
15:08:01.0222 4644 [ 42B6A94DD747DF2B5F628A2752E62A98 ] C:\Windows\System32\ctfmon.exe
15:08:01.0222 4644 C:\Windows\System32\ctfmon.exe - ok
15:08:01.0228 4644 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
15:08:01.0228 4644 C:\Windows\System32\dciman32.dll - ok
15:08:01.0235 4644 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Users\Rose\AppData\Local\Google\Update\GoogleUpdate.exe
15:08:01.0235 4644 C:\Users\Rose\AppData\Local\Google\Update\GoogleUpdate.exe - ok
15:08:01.0241 4644 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
15:08:01.0241 4644 C:\Windows\System32\dsound.dll - ok
15:08:01.0247 4644 [ DD9EAE1C80561C509A8B8801E16BAA38 ] C:\Users\Rose\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
15:08:01.0247 4644 C:\Users\Rose\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
15:08:01.0254 4644 [ 975BA8331408F9AB25D9EE0712DAF7F0 ] C:\Users\Rose\AppData\Roaming\Spotify\spotify.exe
15:08:01.0254 4644 C:\Users\Rose\AppData\Roaming\Spotify\spotify.exe - ok
15:08:01.0260 4644 [ 0419B153FBCAD8C197E2212EBB5A23DB ] C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe
15:08:01.0261 4644 C:\Users\Rose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe - ok
15:08:01.0267 4644 [ 83AEBB8EA680F3D85742F3C4E5A50D46 ] C:\Windows\System32\RtkCfg64.dll
15:08:01.0267 4644 C:\Windows\System32\RtkCfg64.dll - ok
15:08:01.0273 4644 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\08897888.sys
15:08:01.0273 4644 C:\Windows\System32\drivers\08897888.sys - ok
15:08:01.0279 4644 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
15:08:01.0279 4644 C:\Windows\System32\stobject.dll - ok
15:08:01.0285 4644 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
15:08:01.0285 4644 C:\Windows\System32\batmeter.dll - ok
15:08:01.0295 4644 [ 4F20B82C27CF0EF7A21DC595A6080544 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
15:08:01.0295 4644 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
15:08:01.0299 4644 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
15:08:01.0299 4644 C:\Windows\System32\prnfldr.dll - ok
15:08:01.0306 4644 [ F8B91C91225E5CAA2B2F0370201021C0 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
15:08:01.0306 4644 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe - ok
15:08:01.0313 4644 [ 9AB3620C0A97366E1565967BD78BF64C ] C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
15:08:01.0313 4644 C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll - ok
15:08:01.0319 4644 [ FF60B8C5BBE73B0790B3332783B6FD81 ] C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\goopdate.dll
15:08:01.0320 4644 C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\goopdate.dll - ok
15:08:01.0327 4644 [ BAD6BEA0DE1F69C82BDB74378CE0C20A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:08:01.0327 4644 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:08:01.0333 4644 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
15:08:01.0333 4644 C:\Windows\System32\DXP.dll - ok
15:08:01.0340 4644 [ 37BF603C3685289CA684C4D3400A9DE7 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
15:08:01.0340 4644 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
15:08:01.0346 4644 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
15:08:01.0346 4644 C:\Windows\System32\Syncreg.dll - ok
15:08:01.0352 4644 [ 7DA4F72284D2C927927DFC0E12AFAB85 ] C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
15:08:01.0352 4644 C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll - ok
15:08:01.0359 4644 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
15:08:01.0359 4644 C:\Windows\ehome\ehSSO.dll - ok
15:08:01.0365 4644 [ 38FBB26EC0E2136046E8C355400704A8 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
15:08:01.0365 4644 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe - ok
15:08:01.0372 4644 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
15:08:01.0372 4644 C:\Windows\SysWOW64\msacm32.dll - ok
15:08:01.0378 4644 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
15:08:01.0378 4644 C:\Windows\System32\netshell.dll - ok
15:08:01.0384 4644 [ C4499C1E67418A9D2D492E3CD0303C74 ] C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\ieshow.exe
15:08:01.0384 4644 C:\Program Files\Defender Pro\Defender Pro 15-in-1\Antispam32\ieshow.exe - ok
15:08:01.0390 4644 [ 73430E79D6DF4DE9055E2A7742B881D3 ] C:\Program Files (x86)\QuickTime\QTTask.exe
15:08:01.0391 4644 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
15:08:01.0397 4644 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
15:08:01.0397 4644 C:\Windows\System32\AltTab.dll - ok
15:08:01.0400 4644 [ 82CC8F77E9EC61C6B4D48DD4D5CA78E7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:08:01.0400 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
15:08:01.0407 4644 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
15:08:01.0407 4644 C:\Windows\System32\WPDShServiceObj.dll - ok
15:08:01.0414 4644 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
15:08:01.0414 4644 C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe - ok
15:08:01.0423 4644 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
15:08:01.0424 4644 C:\Windows\System32\pnidui.dll - ok
15:08:01.0429 4644 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
15:08:01.0429 4644 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
15:08:01.0435 4644 [ B7A2C31467594B6063849CA5F9D0E67F ] C:\Program Files (x86)\Iminent\IMBooster\IMBooster.exe
15:08:01.0435 4644 C:\Program Files (x86)\Iminent\IMBooster\IMBooster.exe - ok
15:08:01.0442 4644 [ 0BF024E4F8FC508ACFED092399F0FB4C ] C:\Program Files (x86)\SelectRebates\SelectRebates.exe
15:08:01.0442 4644 C:\Program Files (x86)\SelectRebates\SelectRebates.exe - ok
15:08:01.0448 4644 [ 8726802EA4FBFFA3FD54FD2449BF51D4 ] C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\GoogleCrashHandler.exe
15:08:01.0448 4644 C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\GoogleCrashHandler.exe - ok
15:08:01.0456 4644 [ D02F845EF350910B3424AD15BBB68E83 ] C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
15:08:01.0456 4644 C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll - ok
15:08:01.0462 4644 [ 4AFFDCAADCB1DBBFFAF06C7F82E7F6FC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:08:01.0462 4644 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
15:08:01.0469 4644 [ D9A08472D8D0218A0AE2C9D9F63EA531 ] C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
15:08:01.0469 4644 C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\GoogleCrashHandler64.exe - ok
15:08:01.0476 4644 [ 09374D720138F3C0032884B3D22ABF3E ] C:\Program Files (x86)\Common Files\LightScribe\LSCAPI.dll
15:08:01.0477 4644 C:\Program Files (x86)\Common Files\LightScribe\LSCAPI.dll - ok
15:08:01.0483 4644 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
15:08:01.0483 4644 C:\Windows\System32\QUTIL.DLL - ok
15:08:01.0489 4644 [ 288D8A54FE326AE26AD43F348E646147 ] C:\Program Files (x86)\AVG\AVG2013\avgui.exe
15:08:01.0489 4644 C:\Program Files (x86)\AVG\AVG2013\avgui.exe - ok
15:08:01.0495 4644 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
15:08:01.0495 4644 C:\Windows\System32\PortableDeviceTypes.dll - ok
15:08:01.0501 4644 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
15:08:01.0501 4644 C:\Windows\System32\ActionCenter.dll - ok
15:08:01.0508 4644 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
15:08:01.0508 4644 C:\Windows\System32\srchadmin.dll - ok
15:08:01.0514 4644 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
15:08:01.0514 4644 C:\Windows\System32\bthprops.cpl - ok
15:08:01.0520 4644 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
15:08:01.0520 4644 C:\Windows\System32\webcheck.dll - ok
15:08:01.0529 4644 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
15:08:01.0529 4644 C:\Windows\System32\SyncCenter.dll - ok
15:08:01.0534 4644 [ D63797E8E7781EE1500A810CB6194FA6 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
15:08:01.0534 4644 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
15:08:01.0540 4644 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
15:08:01.0540 4644 C:\Windows\System32\hgcpl.dll - ok
15:08:01.0547 4644 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
15:08:01.0547 4644 C:\Windows\System32\fdPHost.dll - ok
15:08:01.0553 4644 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
15:08:01.0553 4644 C:\Windows\System32\netman.dll - ok
15:08:01.0559 4644 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
15:08:01.0559 4644 C:\Windows\System32\fdWSD.dll - ok
15:08:01.0565 4644 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
15:08:01.0565 4644 C:\Windows\System32\fdSSDP.dll - ok
15:08:01.0571 4644 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
15:08:01.0571 4644 C:\Windows\System32\rasdlg.dll - ok
15:08:01.0578 4644 [ 3A5F1D2CFB2500A539002A63207B9A58 ] C:\Users\Rose\AppData\Roaming\Spotify\Data\libcef.dll
15:08:01.0578 4644 C:\Users\Rose\AppData\Roaming\Spotify\Data\libcef.dll - ok
15:08:01.0584 4644 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
15:08:01.0584 4644 C:\Windows\System32\dot3api.dll - ok
15:08:01.0590 4644 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
15:08:01.0591 4644 C:\Windows\SysWOW64\mscoree.dll - ok
15:08:01.0597 4644 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
15:08:01.0597 4644 C:\Windows\System32\wlanhlp.dll - ok
15:08:01.0603 4644 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
15:08:01.0603 4644 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
15:08:01.0611 4644 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
15:08:01.0611 4644 C:\Windows\System32\WWanAPI.dll - ok
15:08:01.0617 4644 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
15:08:01.0617 4644 C:\Windows\System32\wwapi.dll - ok
15:08:01.0624 4644 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
15:08:01.0624 4644 C:\Windows\System32\FXSST.dll - ok
15:08:01.0630 4644 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
15:08:01.0631 4644 C:\Windows\System32\FXSAPI.dll - ok
15:08:01.0638 4644 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
15:08:01.0638 4644 C:\Windows\System32\QAGENT.DLL - ok
15:08:01.0646 4644 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
15:08:01.0646 4644 C:\Windows\System32\FXSSVC.exe - ok
15:08:01.0653 4644 [ 09A63A79A74B426DD695B83AE52A04D5 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll
15:08:01.0653 4644 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll - ok
15:08:01.0657 4644 [ 2F2C1E01EEB61231390759CF4EA2FE55 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
15:08:01.0657 4644 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
15:08:01.0664 4644 [ 735623AAED32285D47FE6716D92ABC40 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll
15:08:01.0664 4644 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll - ok
15:08:01.0670 4644 [ 964B05EE97D3E71F585F97FD93C2CD6B ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll
15:08:01.0670 4644 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll - ok
15:08:01.0677 4644 [ 0EF962AA9C0D5821CA3F954EA4D5AB0D ] C:\Users\Rose\AppData\Roaming\Spotify\Data\icudt.dll
15:08:01.0677 4644 C:\Users\Rose\AppData\Roaming\Spotify\Data\icudt.dll - ok
15:08:01.0683 4644 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
15:08:01.0684 4644 C:\Windows\System32\FDResPub.dll - ok
15:08:01.0691 4644 [ 5CEDF292F4573A1F36CC7DE598ECCFC7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
15:08:01.0691 4644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
15:08:01.0697 4644 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
15:08:01.0697 4644 C:\Windows\System32\httpapi.dll - ok
15:08:01.0704 4644 [ 4E87AFEC1327D2D71DCB837F8636F428 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_94.ocx
15:08:01.0704 4644 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_94.ocx - ok
15:08:01.0711 4644 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
15:08:01.0711 4644 C:\Windows\SysWOW64\riched20.dll - ok
15:08:01.0718 4644 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:08:01.0718 4644 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:08:01.0725 4644 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
15:08:01.0725 4644 C:\Windows\SysWOW64\duser.dll - ok
15:08:01.0732 4644 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
15:08:01.0732 4644 C:\Windows\SysWOW64\dui70.dll - ok
15:08:01.0739 4644 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
15:08:01.0739 4644 C:\Windows\System32\qmgr.dll - ok
15:08:01.0746 4644 [ 7B845BFE314509D08AB5865CB141E332 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
15:08:01.0746 4644 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
15:08:01.0753 4644 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
15:08:01.0753 4644 C:\Windows\System32\fdProxy.dll - ok
15:08:01.0760 4644 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\SysWOW64\mfc100u.dll
15:08:01.0760 4644 C:\Windows\SysWOW64\mfc100u.dll - ok
15:08:01.0767 4644 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
15:08:01.0767 4644 C:\Windows\System32\bitsperf.dll - ok
15:08:01.0775 4644 [ A7146C0C90D7BA0F251AC073E655D4D2 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
15:08:01.0775 4644 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
15:08:01.0782 4644 [ 9DEE004269DADEE715BD572410AA6076 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
15:08:01.0782 4644 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
15:08:01.0789 4644 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
15:08:01.0789 4644 C:\Windows\System32\bitsigd.dll - ok
15:08:01.0796 4644 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
15:08:01.0796 4644 C:\Windows\System32\upnp.dll - ok
15:08:01.0802 4644 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
15:08:01.0802 4644 C:\Windows\System32\ssdpsrv.dll - ok
15:08:01.0808 4644 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
15:08:01.0809 4644 C:\Windows\SysWOW64\mfc42.dll - ok
15:08:01.0815 4644 [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\SysWOW64\mfc100enu.dll
15:08:01.0815 4644 C:\Windows\SysWOW64\mfc100enu.dll - ok
15:08:01.0820 4644 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
15:08:01.0821 4644 C:\Windows\SysWOW64\odbc32.dll - ok
15:08:01.0827 4644 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
15:08:01.0827 4644 C:\Windows\System32\qmgrprxy.dll - ok
15:08:01.0833 4644 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
15:08:01.0833 4644 C:\Windows\SysWOW64\olepro32.dll - ok
15:08:01.0839 4644 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
15:08:01.0839 4644 C:\Windows\SysWOW64\wdmaud.drv - ok
15:08:01.0846 4644 [ 83BA5E873164A3711B44052F58C8FE9F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:08:01.0847 4644 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:08:01.0853 4644 [ 690AC6BBC42258593E829FB27A80575A ] C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\goopdateres_en.dll
15:08:01.0853 4644 C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\goopdateres_en.dll - ok
15:08:01.0860 4644 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
15:08:01.0860 4644 C:\Windows\SysWOW64\qmgrprxy.dll - ok
15:08:01.0867 4644 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
15:08:01.0867 4644 C:\Windows\SysWOW64\msvcp60.dll - ok
15:08:01.0874 4644 [ 62D32E9C2C63C113BFD011423719B292 ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll
15:08:01.0874 4644 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll - ok
15:08:01.0881 4644 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
15:08:01.0881 4644 C:\Windows\SysWOW64\ksuser.dll - ok
15:08:01.0889 4644 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
15:08:01.0889 4644 C:\Windows\SysWOW64\msacm32.drv - ok
15:08:01.0897 4644 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
15:08:01.0897 4644 C:\Windows\SysWOW64\midimap.dll - ok
15:08:01.0903 4644 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
15:08:01.0904 4644 C:\Windows\SysWOW64\odbcint.dll - ok
15:08:01.0908 4644 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
15:08:01.0908 4644 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
15:08:01.0916 4644 [ 589C85AD4B3FD73456F32EB9D58E2F9C ] C:\Program Files (x86)\SelectRebates\SelectRebatesDownload.exe
15:08:01.0916 4644 C:\Program Files (x86)\SelectRebates\SelectRebatesDownload.exe - ok
15:08:01.0923 4644 [ 196520955B8B9FCE9B8AC486AAF693F2 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeapsterExplorerDeviceHook.dll
15:08:01.0923 4644 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeapsterExplorerDeviceHook.dll - ok
15:08:01.0931 4644 [ 017E694BF86CD554B0FCA3B09957E15F ] C:\Program Files (x86)\SelectRebates\SRebates.dll
15:08:01.0931 4644 C:\Program Files (x86)\SelectRebates\SRebates.dll - ok
15:08:01.0938 4644 [ 37B6EBA4E783A0B25F3FE05EF86722CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:08:01.0938 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:08:01.0945 4644 [ 28BFC80B6652AE0B1B5E4DE75FF2247D ] C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll
15:08:01.0945 4644 C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll - ok
15:08:01.0951 4644 [ 8FAE4C4ACF3F65FBE7BC659257A6B9AA ] C:\Program Files\Internet Explorer\ieproxy.dll
15:08:01.0951 4644 C:\Program Files\Internet Explorer\ieproxy.dll - ok
15:08:01.0958 4644 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
15:08:01.0958 4644 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
15:08:01.0965 4644 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
15:08:01.0965 4644 C:\Windows\SysWOW64\msxml3.dll - ok
15:08:01.0971 4644 [ 9EED448E2C6306BFD8B2B19063FC21A1 ] C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll
15:08:01.0971 4644 C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll - ok
15:08:01.0978 4644 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
15:08:01.0978 4644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
15:08:01.0984 4644 [ 6E50CFA46527B39015B750AAD161C5CC ] C:\Program Files\iPod\bin\iPodService.exe
15:08:01.0984 4644 C:\Program Files\iPod\bin\iPodService.exe - ok
15:08:01.0990 4644 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
15:08:01.0991 4644 C:\Windows\System32\wmdrmdev.dll - ok
15:08:01.0997 4644 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
15:08:01.0997 4644 C:\Windows\System32\drmv2clt.dll - ok
15:08:02.0003 4644 [ 2FEF21EEE9934BB10165AA02E530183C ] C:\Program Files (x86)\AVG\AVG2013\avglngx.dll
15:08:02.0003 4644 C:\Program Files (x86)\AVG\AVG2013\avglngx.dll - ok
15:08:02.0010 4644 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
15:08:02.0010 4644 C:\Windows\System32\blackbox.dll - ok
15:08:02.0020 4644 [ 33A77D477EF9D7A5C65A950129DF2E47 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
15:08:02.0020 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll - ok
15:08:02.0024 4644 [ A1BFA262494126239059107536E1FE44 ] C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\psuser.dll
15:08:02.0025 4644 C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\psuser.dll - ok
15:08:02.0031 4644 [ B80B70609797F944517186DDAC174A50 ] C:\Program Files (x86)\AVG\AVG2013\avguires.dll
15:08:02.0031 4644 C:\Program Files (x86)\AVG\AVG2013\avguires.dll - ok
15:08:02.0038 4644 [ 9AF2D062007C2C39BFC04679E13DC0C4 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
15:08:02.0038 4644 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
15:08:02.0045 4644 [ 8044B0D9959B03894973BBD805CA4F36 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
15:08:02.0045 4644 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
15:08:02.0052 4644 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
15:08:02.0052 4644 C:\Windows\System32\wmp.dll - ok
15:08:02.0058 4644 [ 730E90935150048A4E5F392FCDD49DA3 ] C:\Program Files (x86)\AVG\AVG2013\avgapps.dll
15:08:02.0058 4644 C:\Program Files (x86)\AVG\AVG2013\avgapps.dll - ok
15:08:02.0064 4644 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
15:08:02.0065 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
15:08:02.0071 4644 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
15:08:02.0071 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
15:08:02.0078 4644 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
15:08:02.0078 4644 C:\Windows\SysWOW64\linkinfo.dll - ok
15:08:02.0085 4644 [ 6AFD297191227FF133DCBDABC8F6BDA9 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Windows.dll
15:08:02.0085 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Windows.dll - ok
15:08:02.0092 4644 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
15:08:02.0092 4644 C:\Windows\System32\wmploc.DLL - ok
15:08:02.0099 4644 [ D144849E9B48A7DFB942281ED7EDB1C1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
15:08:02.0099 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll - ok
15:08:02.0109 4644 [ 6C885DD270446B351257FF0216AB1586 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
15:08:02.0109 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll - ok
15:08:02.0116 4644 [ A2E8CDB3F2AF5235C732D3DD563A31D0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
15:08:02.0116 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll - ok
15:08:02.0126 4644 [ AD640CC0BE9DD71EDE6FC6BA1DA1C275 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.dll
15:08:02.0126 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.dll - ok
15:08:02.0138 4644 [ 59867B1CCA2818D1D2D93D48554421C7 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Workflow.dll
15:08:02.0138 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Workflow.dll - ok
15:08:02.0143 4644 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
15:08:02.0143 4644 C:\Windows\System32\wmpps.dll - ok
15:08:02.0151 4644 [ F8DC1D804DA4438A3F4FBF353565FF51 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll
15:08:02.0151 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll - ok
15:08:02.0156 4644 [ 4FD693D4B9AA64EE32BAA9B8D9956ACF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
15:08:02.0156 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll - ok
15:08:02.0164 4644 [ 58F9EFF7176BC8BADD1B0B22400B2EA6 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.TinyUrl.dll
15:08:02.0164 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.TinyUrl.dll - ok
15:08:02.0171 4644 [ BE210318FA6DA2A862BD41EA87E8CBE6 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
15:08:02.0171 4644 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
15:08:02.0177 4644 [ 59FCCF8D2374B02C8A70BAC1E31F7D08 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Booster.UI.dll
15:08:02.0178 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Booster.UI.dll - ok
15:08:02.0184 4644 [ 405EF45565BFA79E1CE3BEE1C75ABC99 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\048017d94384988bfe84bcb2ca7ebf0f\System.Web.Services.ni.dll
15:08:02.0184 4644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\048017d94384988bfe84bcb2ca7ebf0f\System.Web.Services.ni.dll - ok
15:08:02.0190 4644 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
15:08:02.0190 4644 C:\Windows\SysWOW64\rasapi32.dll - ok
15:08:02.0196 4644 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
15:08:02.0196 4644 C:\Windows\SysWOW64\rasman.dll - ok
15:08:02.0203 4644 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
15:08:02.0203 4644 C:\Windows\SysWOW64\rtutils.dll - ok
15:08:02.0209 4644 [ EBE54A141B1E223270451CD31B42B499 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.XmlSerializers.dll
15:08:02.0210 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Business.XmlSerializers.dll - ok
15:08:02.0216 4644 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
15:08:02.0217 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
15:08:02.0223 4644 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
15:08:02.0223 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
15:08:02.0229 4644 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
15:08:02.0229 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
15:08:02.0236 4644 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
15:08:02.0236 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
15:08:02.0243 4644 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
15:08:02.0243 4644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
15:08:02.0249 4644 [ F533FDA9303571C15C49591834F948C5 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.Services.dll
15:08:02.0249 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.Services.dll - ok
15:08:02.0258 4644 [ CAD7F75DDB7F5CA322393CA97522CC57 ] C:\Program Files (x86)\Iminent\IMBooster\Iminent.WinCore.dll
15:08:02.0259 4644 C:\Program Files (x86)\Iminent\IMBooster\Iminent.WinCore.dll - ok
15:08:02.0265 4644 [ C7AA14A215E41463D6345A897D73598D ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\chrome.exe
15:08:02.0265 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\chrome.exe - ok
15:08:02.0272 4644 [ 8A02CB4204008852CABE45F420BDF7EF ] C:\Program Files (x86)\AVG\AVG2013\fixcfg.exe
15:08:02.0272 4644 C:\Program Files (x86)\AVG\AVG2013\fixcfg.exe - ok
15:08:02.0284 4644 [ CDEBD55FFBDA3889AA2A8CE52B9DC097 ] C:\Windows\System32\sdclt.exe
15:08:02.0284 4644 C:\Windows\System32\sdclt.exe - ok
15:08:02.0289 4644 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
15:08:02.0289 4644 C:\Windows\SysWOW64\msisip.dll - ok
15:08:02.0296 4644 [ B80A1F17650DDB99B2214D0EA9590B36 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeExtractFiles.dll
15:08:02.0296 4644 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeExtractFiles.dll - ok
15:08:02.0303 4644 [ 040F837D2BE0891FD77B96E6D95F89BB ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\chrome.dll
15:08:02.0303 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\chrome.dll - ok
15:08:02.0309 4644 [ E631B408882F8320739F6E0CAF444397 ] C:\Windows\SysWOW64\mshtml.dll
15:08:02.0309 4644 C:\Windows\SysWOW64\mshtml.dll - ok
15:08:02.0316 4644 [ 05FB11066966D405ECC541EA2EDB2C0B ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\icudt.dll
15:08:02.0316 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\icudt.dll - ok
15:08:02.0322 4644 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
15:08:02.0322 4644 C:\Windows\SysWOW64\msimtf.dll - ok
15:08:02.0330 4644 [ C225E5307D8D4982A1687F2702C37C78 ] C:\Windows\SysWOW64\msls31.dll
15:08:02.0330 4644 C:\Windows\SysWOW64\msls31.dll - ok
15:08:02.0335 4644 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
15:08:02.0335 4644 C:\Windows\SysWOW64\d2d1.dll - ok
15:08:02.0342 4644 [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
15:08:02.0342 4644 C:\Windows\SysWOW64\KBDUS.DLL - ok
15:08:02.0348 4644 [ 1C0E369575F387460E2A5F28269B2CC4 ] C:\Windows\SysWOW64\DWrite.dll
15:08:02.0349 4644 C:\Windows\SysWOW64\DWrite.dll - ok
15:08:02.0355 4644 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:08:02.0355 4644 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
15:08:02.0361 4644 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
15:08:02.0361 4644 C:\Windows\SysWOW64\dxgi.dll - ok
15:08:02.0367 4644 [ 26B6CE84D8C6ECEF4FC5B037EF4DC227 ] C:\Windows\SysWOW64\atiu9pag.dll
15:08:02.0367 4644 C:\Windows\SysWOW64\atiu9pag.dll - ok
15:08:02.0373 4644 [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
15:08:02.0373 4644 C:\Windows\SysWOW64\d3d11.dll - ok
15:08:02.0380 4644 [ 9DDC0931EDA0F2E31C86180CBA25B0D3 ] C:\Program Files (x86)\Ask.com\UpdateTask.exe
15:08:02.0380 4644 C:\Program Files (x86)\Ask.com\UpdateTask.exe - ok
15:08:02.0386 4644 [ B3170CCC779B682C3341873EA60CF084 ] C:\Windows\SysWOW64\d3d10warp.dll
15:08:02.0386 4644 C:\Windows\SysWOW64\d3d10warp.dll - ok
15:08:02.0392 4644 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
15:08:02.0393 4644 C:\Windows\SysWOW64\mssprxy.dll - ok
15:08:02.0399 4644 [ 236360CE5E4C3F063AC110533747C0A8 ] C:\Windows\SysWOW64\Wpc.dll
15:08:02.0399 4644 C:\Windows\SysWOW64\Wpc.dll - ok
15:08:02.0406 4644 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
15:08:02.0406 4644 C:\Windows\SysWOW64\samcli.dll - ok
15:08:02.0412 4644 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
15:08:02.0412 4644 C:\Windows\SysWOW64\samlib.dll - ok
15:08:02.0419 4644 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
15:08:02.0419 4644 C:\Windows\SysWOW64\mlang.dll - ok
15:08:02.0426 4644 [ ED27D1D75BF5E683AD3EDD9E3123520A ] C:\Windows\SysWOW64\inetcomm.dll
15:08:02.0426 4644 C:\Windows\SysWOW64\inetcomm.dll - ok
15:08:02.0433 4644 [ B7592E80772071D66336B3EC9B82101D ] C:\Windows\SysWOW64\msoert2.dll
15:08:02.0433 4644 C:\Windows\SysWOW64\msoert2.dll - ok
15:08:02.0439 4644 [ 9CB30A4E79BE55751312991DE827F6ED ] C:\Windows\SysWOW64\INETRES.dll
15:08:02.0439 4644 C:\Windows\SysWOW64\INETRES.dll - ok
15:08:02.0445 4644 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
15:08:02.0445 4644 C:\Windows\SysWOW64\mscms.dll - ok
15:08:02.0451 4644 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
15:08:02.0451 4644 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
15:08:02.0458 4644 [ E69A7AD873CAF58D3A39DD8B0DB94724 ] C:\Program Files (x86)\AVG\AVG2013\avgcslx.dll
15:08:02.0458 4644 C:\Program Files (x86)\AVG\AVG2013\avgcslx.dll - ok
15:08:02.0464 4644 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:08:02.0464 4644 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
15:08:02.0471 4644 [ AC8C3591D536D1CCB62EDCBEA88140B3 ] C:\Windows\SysWOW64\jscript9.dll
15:08:02.0471 4644 C:\Windows\SysWOW64\jscript9.dll - ok
15:08:02.0479 4644 [ 71355A5B9B954A85368D1FFF1CA6078C ] C:\Program Files (x86)\Ask.com\SaUpdate.exe
15:08:02.0479 4644 C:\Program Files (x86)\Ask.com\SaUpdate.exe - ok
15:08:02.0486 4644 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
15:08:02.0486 4644 C:\Windows\System32\msvcr100_clr0400.dll - ok
15:08:02.0492 4644 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
15:08:02.0492 4644 C:\Windows\SysWOW64\d3d9.dll - ok
15:08:02.0499 4644 [ 56B336150D84FF3424BDBFE02E5A79C7 ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\pdf.dll
15:08:02.0499 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\pdf.dll - ok
15:08:02.0505 4644 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
15:08:02.0505 4644 C:\Windows\SysWOW64\d3d8thk.dll - ok
15:08:02.0511 4644 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
15:08:02.0511 4644 C:\Windows\SysWOW64\dxva2.dll - ok
15:08:02.0518 4644 [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\SysWOW64\mf.dll
15:08:02.0518 4644 C:\Windows\SysWOW64\mf.dll - ok
15:08:02.0525 4644 [ C99D0D9E0A88B8B7B12E4CBF861C07C2 ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ppgooglenaclpluginchrome.dll
15:08:02.0525 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ppgooglenaclpluginchrome.dll - ok
15:08:02.0532 4644 [ 368276447FC2A313731BD1826E57C15F ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libpeerconnection.dll
15:08:02.0532 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libpeerconnection.dll - ok
15:08:02.0539 4644 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
15:08:02.0539 4644 C:\Windows\SysWOW64\atl.dll - ok
15:08:02.0545 4644 [ 600A65F922CCDCBB2D11467914241556 ] C:\Windows\SysWOW64\msmpeg2vdec.dll
15:08:02.0545 4644 C:\Windows\SysWOW64\msmpeg2vdec.dll - ok
15:08:02.0551 4644 [ 5E0397B745B759E8C7A1EFEBE0F4F621 ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ffmpegsumo.dll
15:08:02.0551 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\ffmpegsumo.dll - ok
15:08:02.0558 4644 [ 53AF1750FD45DDD705C9B68C7DC58827 ] C:\Windows\SysWOW64\evr.dll
15:08:02.0558 4644 C:\Windows\SysWOW64\evr.dll - ok
15:08:02.0563 4644 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
15:08:02.0563 4644 C:\Windows\SysWOW64\powrprof.dll - ok
15:08:02.0570 4644 [ 690AC6BBC42258593E829FB27A80575A ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll
15:08:02.0570 4644 C:\Program Files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll - ok
15:08:02.0576 4644 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
15:08:02.0576 4644 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe - ok
15:08:02.0583 4644 [ 727B0810BA2D92974DF96CB43AE100BC ] C:\Windows\SysWOW64\atiumdag.dll
15:08:02.0583 4644 C:\Windows\SysWOW64\atiumdag.dll - ok
15:08:02.0589 4644 [ 2E01E4119C1D507727097B88F5B035F9 ] C:\Windows\SysWOW64\atiumdva.dll
15:08:02.0589 4644 C:\Windows\SysWOW64\atiumdva.dll - ok
15:08:02.0595 4644 [ C0FAAE8EC1B4760D3D04844F708DA0F0 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
15:08:02.0596 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
15:08:02.0602 4644 [ 5BF8E37FA1E25227480F9CD2ACA21FB6 ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\d3dcompiler_46.dll
15:08:02.0603 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\d3dcompiler_46.dll - ok
15:08:02.0612 4644 [ 8610FD51E7219977F4D08C3F8E3D255B ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libglesv2.dll
15:08:02.0612 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libglesv2.dll - ok
15:08:02.0619 4644 [ 5E37B5CF6A770271CBBD8376D18145B4 ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libegl.dll
15:08:02.0620 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\libegl.dll - ok
15:08:02.0630 4644 [ 7F9C912B2817076DC0C9C129C90D8914 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\88744044294787b99dd4a8704ab75a79\mscorlib.ni.dll
15:08:02.0630 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\88744044294787b99dd4a8704ab75a79\mscorlib.ni.dll - ok
15:08:02.0642 4644 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
15:08:02.0642 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
15:08:02.0649 4644 [ 8A525B8D583D067C5AAAC1AF5F91B89A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\af0a0b96a02f9925eb84392ee65a5cfa\System.ni.dll
15:08:02.0649 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\af0a0b96a02f9925eb84392ee65a5cfa\System.ni.dll - ok
15:08:02.0655 4644 [ 20F79A90C76651A17A9B211BC33743A7 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\bcdc7d59f3f8ed743115a7e706e6232a\System.ServiceProcess.ni.dll
15:08:02.0655 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\bcdc7d59f3f8ed743115a7e706e6232a\System.ServiceProcess.ni.dll - ok
15:08:02.0659 4644 [ ED9B5A0A8B3F352214EADE14051704A4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\bda1d99ab089bb2f18a48ba06d5a4923\System.Runtime.Remoting.ni.dll
15:08:02.0659 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\bda1d99ab089bb2f18a48ba06d5a4923\System.Runtime.Remoting.ni.dll - ok
15:08:02.0666 4644 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
15:08:02.0666 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
15:08:02.0673 4644 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
15:08:02.0673 4644 C:\Windows\System32\riched20.dll - ok
15:08:02.0679 4644 [ 9ABD12FCE4A62905731C286BB1D66789 ] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
15:08:02.0679 4644 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe - ok
15:08:02.0686 4644 [ 0C9874161C59675B493B1CFBBDB13E06 ] C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll
15:08:02.0686 4644 C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll - ok
15:08:02.0693 4644 [ DC118ECD9EA6BC42DC36319C470636FF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\ae3db946d20bb0ad28cf588eef06ecf0\WindowsBase.ni.dll
15:08:02.0693 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\ae3db946d20bb0ad28cf588eef06ecf0\WindowsBase.ni.dll - ok
15:08:02.0699 4644 [ 8751AC6B4B8B2996EC76277D0939321B ] C:\Windows\SysWOW64\atiadlxy.dll
15:08:02.0699 4644 C:\Windows\SysWOW64\atiadlxy.dll - ok
15:08:02.0706 4644 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
15:08:02.0706 4644 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
15:08:02.0712 4644 [ 4C0989878EB9DF67C42A7CD42713451E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\868d117286ad259249f31d3fe813d39a\System.Drawing.ni.dll
15:08:02.0712 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\868d117286ad259249f31d3fe813d39a\System.Drawing.ni.dll - ok
15:08:02.0719 4644 [ DE7A443BE0279111F1A3F07B1D167AB4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\95674cb72317e3a5380ea450b913786f\System.Windows.Forms.ni.dll
15:08:02.0719 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\95674cb72317e3a5380ea450b913786f\System.Windows.Forms.ni.dll - ok
15:08:02.0726 4644 [ 33839CA6CC3FD43400ECAEC4D73C74E2 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
15:08:02.0726 4644 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll - ok
15:08:02.0733 4644 [ 0383A25D0433516CA14918D3779ACFD8 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
15:08:02.0734 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll - ok
15:08:02.0741 4644 [ AE23B8F20E057DD20CC70A1D95050901 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
15:08:02.0741 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll - ok
15:08:02.0748 4644 [ 323FE218DAC089EED70CA55E6C1C2F1D ] C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
15:08:02.0749 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll - ok
15:08:02.0756 4644 [ DBE8C34758DA614F35AE7011284406BB ] C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
15:08:02.0757 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll - ok
15:08:02.0764 4644 [ 25BFEEF810E990DACF6B97D52C7110D9 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
15:08:02.0764 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll - ok
15:08:02.0768 4644 [ 66AA01F29BF8E6147D232BA28B8845C8 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
15:08:02.0768 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll - ok
15:08:02.0776 4644 [ 3BC76BF239C9C65398F0CFD2DA96B929 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
15:08:02.0776 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll - ok
15:08:02.0784 4644 [ C311BECB09762F6CCCD38DE49979CA21 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\296ad113496c7e97a1689ffef9550b19\System.Core.ni.dll
15:08:02.0784 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\296ad113496c7e97a1689ffef9550b19\System.Core.ni.dll - ok
15:08:02.0791 4644 [ 011F3B5057277EC459EF988E36C4A9C8 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
15:08:02.0791 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll - ok
15:08:02.0798 4644 [ 21EF01CBD2E5D126D51EF8FFDBB98390 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
15:08:02.0798 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll - ok
15:08:02.0806 4644 [ BD879D8AFBCCAB1F957904168D9CD6D8 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
15:08:02.0806 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll - ok
15:08:02.0812 4644 [ 38CE113A517976B53DA515D18D3E6700 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
15:08:02.0812 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll - ok
15:08:02.0820 4644 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
15:08:02.0820 4644 C:\Windows\System32\shfolder.dll - ok
15:08:02.0827 4644 [ A9A754661082C44BB236CE45C1F50F1A ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
15:08:02.0827 4644 C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll - ok
15:08:02.0834 4644 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
15:08:02.0834 4644 C:\Windows\System32\wuaueng.dll - ok
15:08:02.0840 4644 [ 0405BACBBD2006CAF3C54256FE71FB2A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\7e1a0f53a8580321c5902b6867c3f7da\System.Management.ni.dll
15:08:02.0840 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\7e1a0f53a8580321c5902b6867c3f7da\System.Management.ni.dll - ok
15:08:02.0847 4644 [ 66AA01F29BF8E6147D232BA28B8845C8 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll
15:08:02.0847 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll - ok
15:08:02.0856 4644 [ 3BC76BF239C9C65398F0CFD2DA96B929 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll
15:08:02.0856 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll - ok
15:08:02.0863 4644 [ 011F3B5057277EC459EF988E36C4A9C8 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll
15:08:02.0863 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll - ok
15:08:02.0872 4644 [ 21EF01CBD2E5D126D51EF8FFDBB98390 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll
15:08:02.0872 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll - ok
15:08:02.0879 4644 [ 5FFF3E71B4724BB10918FD6DD7413D99 ] C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
15:08:02.0879 4644 C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe - ok
15:08:02.0887 4644 [ BD879D8AFBCCAB1F957904168D9CD6D8 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
15:08:02.0887 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll - ok
15:08:02.0894 4644 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
15:08:02.0894 4644 C:\Windows\System32\mspatcha.dll - ok
15:08:02.0902 4644 [ 38CE113A517976B53DA515D18D3E6700 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll
15:08:02.0902 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll - ok
15:08:02.0906 4644 [ AC6E6940C8C98EE153D96FFA2CA7B272 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\3975acf49313ceea1280da91f0383480\System.Xml.ni.dll
15:08:02.0906 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\3975acf49313ceea1280da91f0383480\System.Xml.ni.dll - ok
15:08:02.0913 4644 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
15:08:02.0913 4644 C:\Windows\System32\wups2.dll - ok
15:08:02.0920 4644 [ A9A754661082C44BB236CE45C1F50F1A ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll
15:08:02.0921 4644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll - ok
15:08:02.0927 4644 [ 74EF310FAC89341CE2897B7F2C4A7B0F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
15:08:02.0928 4644 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
15:08:02.0934 4644 [ 101700E93EB905992B518256CB441829 ] C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
15:08:02.0935 4644 C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll - ok
15:08:02.0941 4644 [ ABCB4A6EAB701C629378255ABCB308E5 ] C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
15:08:02.0941 4644 C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll - ok
15:08:02.0948 4644 [ CE3C3DBFF97A7A4DC0B59F2FC710439B ] C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
15:08:02.0948 4644 C:\Program Files\Realtek\RtVOsd\RtVOsd.exe - ok
15:08:02.0957 4644 [ 1C8124B6A03A620EB0CBCA615666D2AE ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
15:08:02.0957 4644 C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
15:08:02.0964 4644 [ C1680C34DE8A405C8829AB93236576FD ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
15:08:02.0964 4644 C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
15:08:02.0971 4644 [ 6D657ABADF217DBB17CF0A0AF44A7E29 ] C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
15:08:02.0971 4644 C:\ProgramData\NexonUS\NGM\npNxGameUS.dll - ok
15:08:02.0979 4644 [ FC5866F7793AF2CBCD425CC4B8D32A9E ] C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
15:08:02.0979 4644 C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - ok
15:08:02.0987 4644 [ 072ABA655B4D0E94AEF778A0491CC21F ] C:\Users\Rose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
15:08:02.0987 4644 C:\Users\Rose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - ok
15:08:02.0994 4644 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
15:08:02.0994 4644 C:\Windows\System32\sppsvc.exe - ok
15:08:03.0002 4644 [ 101700E93EB905992B518256CB441829 ] C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll
15:08:03.0002 4644 C:\Users\Rose\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll - ok
15:08:03.0009 4644 [ 6F58D6F9E829914C75B63D58C6885231 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\c804ef4dba76d2aa3db8d22ec5fbf4e0\System.Web.ni.dll
15:08:03.0010 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\c804ef4dba76d2aa3db8d22ec5fbf4e0\System.Web.ni.dll - ok
15:08:03.0016 4644 [ 6846D2CA7E1D5937AEE3F99BB7F5464B ] C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
15:08:03.0017 4644 C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll - ok
15:08:03.0023 4644 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
15:08:03.0023 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
15:08:03.0030 4644 [ 0C8597DBC74AAF5179471BA013E3C6B4 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
15:08:03.0030 4644 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll - ok
15:08:03.0037 4644 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
15:08:03.0037 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
15:08:03.0044 4644 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
15:08:03.0044 4644 C:\Windows\System32\wbem\cimwin32.dll - ok
15:08:03.0050 4644 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
15:08:03.0050 4644 C:\Windows\System32\drivers\spsys.sys - ok
15:08:03.0057 4644 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
15:08:03.0057 4644 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
15:08:03.0063 4644 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
15:08:03.0063 4644 C:\Windows\System32\framedynos.dll - ok
15:08:03.0070 4644 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
15:08:03.0070 4644 C:\Windows\System32\security.dll - ok
15:08:03.0076 4644 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
15:08:03.0076 4644 C:\Windows\System32\browcli.dll - ok
15:08:03.0082 4644 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
15:08:03.0082 4644 C:\Windows\System32\schedcli.dll - ok
15:08:03.0089 4644 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
15:08:03.0089 4644 C:\Windows\System32\slwga.dll - ok
15:08:03.0095 4644 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
15:08:03.0095 4644 C:\Windows\System32\wbem\wmipcima.dll - ok
15:08:03.0101 4644 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
15:08:03.0101 4644 C:\Windows\System32\sppc.dll - ok
15:08:03.0107 4644 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
15:08:03.0107 4644 C:\Windows\System32\wmi.dll - ok
15:08:03.0113 4644 [ 47CBB77506CFB47D7F86685335985962 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\1031b311ee568364d4ca1c4db634eaf0\System.Configuration.ni.dll
15:08:03.0113 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\1031b311ee568364d4ca1c4db634eaf0\System.Configuration.ni.dll - ok
15:08:03.0120 4644 [ FB8071EE5D544401B4B81D8E8C748518 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\dw20.exe
15:08:03.0120 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\dw20.exe - ok
15:08:03.0127 4644 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
15:08:03.0127 4644 C:\Windows\System32\sppwinob.dll - ok
15:08:03.0137 4644 [ D7324EB1EDCB8990F8522DE0311359E9 ] C:\Windows\SysWOW64\npDeployJava1.dll
15:08:03.0137 4644 C:\Windows\SysWOW64\npDeployJava1.dll - ok
15:08:03.0146 4644 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
15:08:03.0146 4644 C:\Windows\System32\sppobjs.dll - ok
15:08:03.0158 4644 [ 0819EF7DB96DAB8AC3DACE567ED1B99E ] C:\Windows\System32\werui.dll
15:08:03.0158 4644 C:\Windows\System32\werui.dll - ok
15:08:03.0164 4644 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
15:08:03.0164 4644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
15:08:03.0172 4644 [ 6EBC4D003C0FB36CF8E0F638B6D0D6F2 ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll
15:08:03.0172 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll - ok
15:08:03.0178 4644 [ BFEBB6F76A0988A38260870C61A6D1B7 ] C:\Windows\SysWOW64\mfreadwrite.dll
15:08:03.0178 4644 C:\Windows\SysWOW64\mfreadwrite.dll - ok
15:08:03.0184 4644 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
15:08:03.0184 4644 C:\Windows\SysWOW64\devenum.dll - ok
15:08:03.0191 4644 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
15:08:03.0191 4644 C:\Windows\SysWOW64\msdmo.dll - ok
15:08:03.0197 4644 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
15:08:03.0197 4644 C:\Windows\SysWOW64\avicap32.dll - ok
15:08:03.0203 4644 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
15:08:03.0203 4644 C:\Windows\SysWOW64\msvfw32.dll - ok
15:08:03.0209 4644 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
15:08:03.0209 4644 C:\Windows\SysWOW64\vfwwdm32.dll - ok
15:08:03.0215 4644 [ 2FA3736DDC6AF18270CE8867CB00779E ] C:\Windows\SysWOW64\atiuxpag.dll
15:08:03.0215 4644 C:\Windows\SysWOW64\atiuxpag.dll - ok
15:08:03.0222 4644 [ A3A4F132C2873BD68FB8BDFCAA2B198C ] C:\Windows\SysWOW64\atidxx32.dll
15:08:03.0222 4644 C:\Windows\SysWOW64\atidxx32.dll - ok
15:08:03.0228 4644 [ 77F595DEE5FFACEA72B135B1FCE1312E ] C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\xinput1_3.dll
15:08:03.0228 4644 C:\Users\Rose\AppData\Local\Google\Chrome\Application\29.0.1547.57\xinput1_3.dll - ok
15:08:03.0234 4644 [ 5E08AC958BE05247FF1539E0D1CE7905 ] C:\Windows\SysWOW64\dinput8.dll
15:08:03.0235 4644 C:\Windows\SysWOW64\dinput8.dll - ok
15:08:03.0241 4644 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
15:08:03.0241 4644 C:\Windows\SysWOW64\hid.dll - ok
15:08:03.0247 4644 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
15:08:03.0247 4644 C:\Windows\SysWOW64\actxprxy.dll - ok
15:08:03.0254 4644 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
15:08:03.0254 4644 C:\Windows\System32\NaturalLanguage6.dll - ok
15:08:03.0259 4644 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
15:08:03.0259 4644 C:\Windows\System32\NlsData0009.dll - ok
15:08:03.0266 4644 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
15:08:03.0266 4644 C:\Windows\System32\NlsLexicons0009.dll - ok
15:08:03.0272 4644 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
15:08:03.0272 4644 C:\Windows\System32\ELSCore.dll - ok
15:08:03.0278 4644 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
15:08:03.0279 4644 C:\Windows\System32\elsTrans.dll - ok
15:08:03.0285 4644 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
15:08:03.0285 4644 C:\Windows\System32\elslad.dll - ok
15:08:03.0292 4644 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
15:08:03.0292 4644 C:\Windows\servicing\TrustedInstaller.exe - ok
15:08:03.0298 4644 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
15:08:03.0298 4644 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
15:08:03.0304 4644 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
15:08:03.0305 4644 C:\Windows\System32\dpx.dll - ok
15:08:03.0311 4644 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
15:08:03.0311 4644 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
15:08:03.0318 4644 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
15:08:03.0318 4644 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
15:08:03.0324 4644 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
15:08:03.0324 4644 C:\Windows\System32\srclient.dll - ok
15:08:03.0330 4644 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
15:08:03.0330 4644 C:\Windows\System32\spp.dll - ok
15:08:03.0336 4644 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
15:08:03.0336 4644 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
15:08:03.0343 4644 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
15:08:03.0343 4644 C:\Windows\System32\sxsstore.dll - ok
15:08:03.0349 4644 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
15:08:03.0349 4644 C:\Windows\servicing\CbsApi.dll - ok
15:08:03.0356 4644 [ B8478AD7D009CDCD1999AA42681606B5 ] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
15:08:03.0356 4644 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe - ok
15:08:03.0362 4644 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
15:08:03.0362 4644 C:\Windows\System32\wscinterop.dll - ok
15:08:03.0368 4644 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
15:08:03.0369 4644 C:\Windows\System32\wscapi.dll - ok
15:08:03.0375 4644 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
15:08:03.0375 4644 C:\Windows\System32\wscui.cpl - ok
15:08:03.0381 4644 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
15:08:03.0381 4644 C:\Windows\System32\werconcpl.dll - ok
15:08:03.0387 4644 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
15:08:03.0387 4644 C:\Windows\System32\wercplsupport.dll - ok
15:08:03.0393 4644 [ 2C79A8AE1F9E71B870B1D946D1DF98E4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\455f1bf19319ef1c59b3e0c1e45c1c9c\PresentationCore.ni.dll
15:08:03.0394 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\455f1bf19319ef1c59b3e0c1e45c1c9c\PresentationCore.ni.dll - ok
15:08:03.0400 4644 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
15:08:03.0401 4644 C:\Windows\System32\hcproviders.dll - ok
15:08:03.0407 4644 [ 6F564F6B5A33A68425179372767773A6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\90ad207864957bd667f551bdd1c39ada\PresentationFramework.ni.dll
15:08:03.0407 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\90ad207864957bd667f551bdd1c39ada\PresentationFramework.ni.dll - ok
15:08:03.0411 4644 [ AE098D9D3BD83440C59A0C3386F4F5DD ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
15:08:03.0411 4644 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
15:08:03.0418 4644 [ 6E656C325A5519A3A9D951709958CF6F ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
15:08:03.0418 4644 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
15:08:03.0426 4644 [ F980F2E6E8E68D797CF07434C8DDBF30 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\845e04461d3d879b24c5b0d30947050a\System.Runtime.Serialization.Formatters.Soap.ni.dll
15:08:03.0426 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\845e04461d3d879b24c5b0d30947050a\System.Runtime.Serialization.Formatters.Soap.ni.dll - ok
15:08:03.0432 4644 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
15:08:03.0432 4644 C:\Windows\System32\d3d9.dll - ok
15:08:03.0439 4644 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
15:08:03.0439 4644 C:\Windows\System32\d3d8thk.dll - ok
15:08:03.0445 4644 [ 2579C56028F83CB3B550C1F24C822539 ] C:\Windows\System32\atiu9p64.dll
15:08:03.0445 4644 C:\Windows\System32\atiu9p64.dll - ok
15:08:03.0451 4644 [ A3DDAF248F0620DE7AC76C3E4BA5776D ] C:\Windows\System32\atiumd64.dll
15:08:03.0451 4644 C:\Windows\System32\atiumd64.dll - ok
15:08:03.0457 4644 [ 734F66C87A767935F7A41C55CB5B3663 ] C:\Windows\System32\atiumd6a.dll
15:08:03.0457 4644 C:\Windows\System32\atiumd6a.dll - ok
15:08:03.0464 4644 [ 7AD0860F6C04AD34492A6EDFA81ECAC2 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\56d7206478a1eb28089a8efbdf921bf2\PresentationFramework.Aero.ni.dll
15:08:03.0464 4644 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\56d7206478a1eb28089a8efbdf921bf2\PresentationFramework.Aero.ni.dll - ok
15:08:03.0470 4644 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
15:08:03.0470 4644 C:\Windows\System32\wuauclt.exe - ok
15:08:03.0477 4644 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
15:08:03.0477 4644 C:\Windows\System32\wucltux.dll - ok
15:08:03.0483 4644 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
15:08:03.0483 4644 C:\Windows\System32\NlsData0000.dll - ok
15:08:03.0491 4644 [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
15:08:03.0491 4644 C:\Windows\System32\advpack.dll - ok
15:08:03.0497 4644 [ 40AA3956A3EB1D100A3CAC0F0BBB4BE0 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
15:08:03.0497 4644 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe - ok
15:08:03.0504 4644 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
15:08:03.0504 4644 C:\Windows\System32\NlsData000c.dll - ok
15:08:03.0513 4644 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
15:08:03.0514 4644 C:\Windows\System32\NlsLexicons000c.dll - ok
15:08:03.0517 4644 [ 0AE2C218A9AB6C16D79160CCE55B35FC ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
15:08:03.0517 4644 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe - ok
15:08:03.0521 4644 ============================================================
15:08:03.0521 4644 Scan finished
15:08:03.0521 4644 ============================================================
15:08:03.0537 4808 Detected object count: 11
15:08:03.0537 4808 Actual detected object count: 11
15:09:08.0443 4808 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe - copied to quarantine
15:09:08.0445 4808 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0605 4808 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - copied to quarantine
15:09:08.0607 4808 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0642 4808 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - copied to quarantine
15:09:08.0644 4808 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0716 4808 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - copied to quarantine
15:09:08.0721 4808 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0837 4808 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - copied to quarantine
15:09:08.0838 4808 HPWMISVC ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0912 4808 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - copied to quarantine
15:09:08.0913 4808 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0960 4808 C:\Windows\system32\HPZinw12.dll - copied to quarantine
15:09:08.0964 4808 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:08.0989 4808 C:\Windows\system32\HPZipm12.dll - copied to quarantine
15:09:08.0990 4808 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:09.0013 4808 C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe - copied to quarantine
15:09:09.0014 4808 RtVOsdService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
15:09:10.0191 4808 \Device\Harddisk0\DR0\# - copied to quarantine
15:09:10.0197 4808 \Device\Harddisk0\DR0 - copied to quarantine
15:09:10.0395 4808 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
15:09:10.0413 4808 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
15:09:10.0447 4808 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
15:09:10.0467 4808 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
15:09:10.0471 4808 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
15:09:10.0474 4808 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
15:09:10.0478 4808 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
15:09:10.0485 4808 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
15:09:10.0492 4808 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
15:09:10.0495 4808 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
15:09:10.0499 4808 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
15:09:10.0502 4808 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
15:09:10.0631 4808 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
15:09:10.0670 4808 \Device\Harddisk0\DR0 - ok
15:09:11.0734 4808 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
15:09:11.0841 4808 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
15:09:11.0852 4808 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
15:09:11.0888 4808 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
15:09:11.0916 4808 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
15:09:11.0956 4808 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
15:09:11.0962 4808 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
15:09:11.0969 4808 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
15:09:12.0055 4808 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
15:09:12.0180 4808 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
15:09:12.0186 4808 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
15:09:12.0198 4808 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
15:09:12.0206 4808 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
15:09:12.0208 4808 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
15:09:20.0336 4524 Deinitialize success
  • 0

#9
Jasmyne
Posted 23 August 2013 - 03:19 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
There is still some more malware left to remove. Please read and follow the instructions carefully as several objects that were marked as suspicious in the TDSSKiller Scan you selected to Quarantine rather than skip. Those files were not malicious and now we'll have some extra work now to get them back to where they belong.

P2P Warning!

IMPORTANT I notice there are signs of one or more P2P (Person to Person) File Sharing Programs on your computer.

FrostWire
BitComet

Please note that as long as you are using any form of Peer-to-Peer networking and downloading files from non-documented sources, you can expect infestations of malware to occur. Once upon a time, P2P file sharing was fairly safe. That is no longer true. You may continue to use P2P sharing at your own risk; however, please keep in mind that this practice may be the source of your current malware infestation

I'd like you to read the Guidelines for P2P Programs where we explain why it's not a good idea to have them.

Please read these short reports on the dangers of peer-2-peer programs and file sharing.

Cyber Education Letter
File sharing infects 500,000 computers
USAToday

I would recommend that you uninstall the above, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.

If you decide to keep the program in spite of the risks involved, do not use it until I have finished cleaning your computer and have given you the all clear.
[/list]
----------------------------
Now that's out of the way, lets get started :)


Step 1 - Multiple Antivirus Programs
I have noticed in your logs that you currently have two antivirus programs running (AVG and Defender Pro). Having two antivirus programs not only hogs system resources, but many times they conflict with each other and the detection rates are worse, not better. Both are good antivirus programs, so keep which ever one you would like and please uninstall the other one.

Step 2 - New OTL Fix

Warning: This fix was created specifically for the problems on this computer ONLY. If you are not this user, do NOT follow these directions as they could do more damage to your computer.

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

  • Please copy all of the text in the code box below. To do this, highlight everything inside the code box, right click and click Copy.

    :Commands
[createrestorepoint]

:OTL
[2012/05/30 11:52:03 | 000,000,000 | ---D | M] (Chimpoo) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\3affxtbr@Chimpoo_3a.com
[2011/08/28 12:56:04 | 000,000,000 | ---D | M] (BetterLinks) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2013/07/27 19:01:18 | 000,000,000 | ---D | M] (ShopAtHome.com Intelligent Shopping Toolbar) -- C:\Users\Rose\AppData\Roaming\Mozilla\Firefox\Profiles\ro24c7t8.default\extensions\[email protected]
[2013/08/22 15:21:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\{37153479-1976-43C3-A1EE-557513977B64}
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
File not found (No name found) -- C:\USERS\ROSE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\RO24C7T8.DEFAULT\EXTENSIONS\[email protected]
O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKLM\..\Toolbar: (Chimpoo) - {5b010b98-98f5-4faf-bdc5-f24746d465ce} - C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\3abar.dll File not found
O3 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..\Toolbar\WebBrowser: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKU\S-1-5-21-903994150-1397619272-3207344859-1000\..\Toolbar\WebBrowser: (Chimpoo) - {5B010B98-98F5-4FAF-BDC5-F24746D465CE} - C:\Program Files (x86)\Chimpoo_3a\bar\1.bin\3abar.dll File not found
O4 - HKLM..\Run: [IMBooster] C:\Program Files (x86)\Iminent\IMBooster\imbooster.exe /warmup File not found
[2012/09/03 09:25:35 | 000,000,184 | -H-- | C] () -- C:\ProgramData\-blQtG85gJjPDzcr
[2012/09/03 09:25:34 | 000,000,168 | -H-- | C] () -- C:\ProgramData\-blQtG85gJjPDzc
[2012/09/03 09:25:24 | 000,000,368 | -H-- | C] () -- C:\ProgramData\blQtG85gJjPDzc
[2011/04/24 22:33:38 | 000,011,274 | -HS- | C] () -- C:\Users\Rose\AppData\Local\7y6774w28t81a
[2011/04/24 22:33:38 | 000,011,274 | -HS- | C] () -- C:\ProgramData\7y6774w28t81a



:Commands
[emptytemp]
  • Please re-open OTL on your desktop.
  • Place the mouse pointer inside the Custom Scans/Fixes textbox, right click and click Paste. This will put the above script inside the textbox.
  • Click the Run Fix button.

    Posted Image
  • Let the program run unhindered.
  • OTL may ask to reboot the machine. Please do so if asked.
  • A report will open. Copy and Paste that report in your next reply. If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, (where mmddyyyy_hhmmss is the date of the tool run).

Step 3 - OTL Quick Scan
  • Please re-open OTL by double-clicking on the icon. If your computer is Windows Vista, 7 or 8, please right-click the icon and choose Run as administrator.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan shouldn't take long.

    Posted Image
  • When the scan completes, it will open one notepad file, OTL.Txt. It will be saved in the same location as OTL.
  • Please copy and paste the contents of this file, and post it in your next reply.

Step 4 - Microsoft Fixit

Windows Sidebar is running on your computer and it is know to have some security issues. Microsoft has published information about the vulnerabilities here. I would advise you disable it using this Fix it

Step 5 - Run TDSS Qlook

Please download TDSS Qlook from here
  • Extract TDSSQlook to your desktop.
  • Double-click TDSSQlook.exe to run the program
  • Select Option A to Scan.
  • Copy and Paste the log it produces

~~~~~~~~~~~~~~~~~~~~ Things Needed for Your Next Post ~~~~~~~~~~~~~~~~~~~~
1. OTL Fix Log
2. OTL Quick Scan Log
3. TDSSQ.txt Log
  • 0

#10
Essexboy
Posted 18 September 2013 - 06:53 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP