Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

hp not booting up, ran a farbar recovery scan and got log what to do n


  • This topic is locked This topic is locked

#1
tics

tics

    Member

  • Member
  • PipPip
  • 29 posts

So my Hp laptop with windows 7 stopped booting up and is in a continuous restart loop, no start up recovery helps, no problems found on disk checks and theres a blue screen that says problem dtected shut down to prevent damage to your computer. ***STOP: 0x0000007B (0xFFFFF880009A9928,0xFFFFFFFFC000000D,0x0000000000000000,0x0000000000000000).

 

so i saw other posts and i ran a farbar recovery scan on it and got this log

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by SYSTEM on MININT-RNSJGKH on 03-07-2014 09:49:50
Running from G:\
Platform: Windows 7 Home Premium (X64) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312 2010-11-14] (Synaptics Incorporated)
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872 2009-08-25] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre6\bin\jusched.exe [171520 2009-10-30] (Sun Microsystems, Inc.)
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2327952 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-11-14] (IDT, Inc.)
HKLM\...\Run: [SonicWALLNetExtender] => C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe [710528 2009-12-02] (SonicWALL Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1580368 2010-11-03] (Logitech, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPCam_Menu] => c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-03-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AppleSyncNotifier] => C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2012-02-23] (Apple Inc.)
HKLM-x32\...\Run: [StartNowToolbarHelper] => "C:\Program Files (x86)\StartNow Toolbar\ToolbarHelper.exe"
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1564872 2012-06-06] (Ask)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2012-02-20] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736 2012-03-27] (Apple Inc.)
HKLM\...\RunOnce: [*Restore] - C:\Windows\system32\rstrui.exe /RUNONCE [296960 2009-07-13] (Microsoft Corporation)
HKU\house\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKU\house\...\Run: [swg] => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Vincia M. Blaise\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKU\Vincia M. Blaise\...\Run: [LDTray] => C:\Program Files (x86)\Livescribe\Livescribe Desktop\LDTray.exe [647168 2010-05-24] ()
HKU\Vincia M. Blaise\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\Vincia M. Blaise\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\Vincia M. Blaise\...\Run: [StartNow Search Protect] => C:\Program Files (x86)\StartNow Toolbar\search_protect.exe [1352048 2012-09-06] ()
Startup: C:\Users\Vincia M. Blaise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk ->  (No File)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: EnhancedStorageShell -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} =>  No File
ShellIconOverlayIdentifiers-x32: SharingPrivate -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} =>  No File

==================== Services (Whitelisted) =================

S2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe [89600 2010-11-14] (Andrea Electronics Corporation)
S2 PenCommService; C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe [444928 2010-05-24] (Livescribe)
S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
S2 SONICWALL_NetExtender; C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe [482688 2009-12-02] (SonicWALL Inc.)
S2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe [247808 2010-11-14] (IDT, Inc.)
S2 Updater Service for StartNow Toolbar; C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe [267488 2011-07-27] ()

==================== Drivers (Whitelisted) ====================

S3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
S1 kl1; C:\Windows\System32\DRIVERS\kl1.sys [157712 2009-09-01] (Kaspersky Lab)
S3 PulseUsb; C:\Windows\System32\DRIVERS\PulseUsb.sys [26112 2010-05-24] (Windows ® Win 7 DDK provider)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
S3 SSLDrv; C:\Windows\System32\DRIVERS\SSLDrv.sys [22168 2009-02-23] (SonicWALL Inc.)
S2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
S4 eabfiltr;
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-03 09:49 - 2014-07-03 09:49 - 00000000 ____D () C:\FRST
2014-07-02 14:46 - 2014-07-02 14:47 - 00000000 ____D () C:\Windows\System32\config\mybackup
2014-06-30 09:44 - 2014-06-30 09:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{69B6A840-3396-44F9-B103-8DF0ACCCA560}
2014-06-30 07:36 - 2014-06-30 07:36 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{1BE10872-02B6-4FA4-AEA1-1995CE583470}
2014-06-30 07:24 - 2014-06-30 07:24 - 00274776 _____ () C:\Windows\Minidump\063014-26192-01.dmp
2014-06-29 14:09 - 2014-06-29 14:09 - 00000000 ____D () C:\Users\house\AppData\Local\Apple
2014-06-20 11:49 - 2014-06-20 11:50 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{EEAA0F47-4139-4632-8DCE-4D579DEF398C}
2014-06-19 12:19 - 2014-06-30 13:58 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\lptmp2105547642
2014-06-19 12:18 - 2014-06-30 13:58 - 00000000 ____D () C:\Program Files\Webroot
2014-06-19 12:17 - 2014-06-30 13:58 - 00000000 ____D () C:\ProgramData\WRData
2014-06-19 09:04 - 2014-06-19 09:05 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{46D8502A-541B-47C5-A6C5-096BC4BACC2C}
2014-06-19 04:42 - 2014-06-19 04:42 - 00000000 ____D () C:\Users\house\AppData\Local\Trusteer
2014-06-18 14:22 - 2014-06-18 14:22 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\Trusteer
2014-06-18 14:22 - 2014-06-18 14:22 - 00000000 ____D () C:\Program Files (x86)\Trusteer
2014-06-18 14:11 - 2014-06-18 14:11 - 00000000 ____D () C:\ProgramData\Trusteer
2014-06-18 09:52 - 2014-06-18 09:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{810A1B2A-8249-4004-970E-700D3EAA0E6F}
2014-06-18 09:46 - 2014-06-18 09:46 - 00000000 ____D () C:\Users\house\AppData\Local\Macromedia
2014-06-16 15:24 - 2014-06-16 15:25 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{AB968A6C-82B6-4697-852D-6E81D6265080}
2014-06-16 13:32 - 2014-06-16 13:32 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{CCC69CB7-D539-4CF2-87E6-8D0EBEDFA334}
2014-06-16 13:20 - 2014-06-30 09:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\DropboxMaster
2014-06-16 13:18 - 2014-06-16 13:18 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{35412EDE-D3C3-4346-B0A9-2CE9FC8394F2}
2014-06-13 16:07 - 2014-06-13 16:07 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{0F1B5D27-0103-473B-B901-981F20F039E3}
2014-06-12 18:27 - 2014-06-12 18:27 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{77A44DFC-AF34-49FD-8D1F-2189EC9A2D31}
2014-06-12 17:53 - 2014-06-12 17:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{8229FEE7-5C3D-4BD8-B633-72A090D104D4}
2014-06-12 12:31 - 2014-06-12 12:31 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{75EF91B0-C4F9-478D-8FCD-C39A21F17EAD}
2014-06-12 12:06 - 2014-06-12 12:06 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{A7D737E5-A5CB-4302-9CCC-C13DF086F1D5}

==================== One Month Modified Files and Folders =======

2014-07-03 09:49 - 2014-07-03 09:49 - 00000000 ____D () C:\FRST
2014-07-03 09:48 - 2010-06-06 13:42 - 00000000 ____D () C:\ProgramData\Recovery
2014-07-03 07:02 - 2011-07-30 20:53 - 00000000 ____D () C:\users\house
2014-07-03 07:02 - 2011-03-05 07:58 - 00000000 ___RD () C:\Users\Vincia M. Blaise\Dropbox
2014-07-03 07:02 - 2010-05-22 04:54 - 00000000 ____D () C:\users\Vincia M. Blaise
2014-07-03 07:02 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\NDF
2014-07-03 07:01 - 2011-08-27 20:00 - 00000000 ____D () C:\Program Files (x86)\StartNow Toolbar
2014-07-03 07:01 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\registration
2014-07-03 06:59 - 2009-10-30 20:59 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-07-03 06:58 - 2012-04-18 17:37 - 00000000 ____D () C:\Windows\System32\Macromed
2014-07-03 06:57 - 2011-03-05 07:51 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox
2014-07-02 14:47 - 2014-07-02 14:46 - 00000000 ____D () C:\Windows\System32\config\mybackup
2014-06-30 16:09 - 2012-11-12 12:28 - 00000000 ____D () C:\Users\house\AppData\Local\Mozilla
2014-06-30 13:58 - 2014-06-19 12:19 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\lptmp2105547642
2014-06-30 13:58 - 2014-06-19 12:18 - 00000000 ____D () C:\Program Files\Webroot
2014-06-30 13:58 - 2014-06-19 12:17 - 00000000 ____D () C:\ProgramData\WRData
2014-06-30 09:44 - 2014-06-30 09:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{69B6A840-3396-44F9-B103-8DF0ACCCA560}
2014-06-30 09:44 - 2014-06-16 13:20 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\DropboxMaster
2014-06-30 09:43 - 2011-01-19 20:33 - 00000000 ____D () C:\Users\Vincia M. Blaise\Tracing
2014-06-30 07:36 - 2014-06-30 07:36 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{1BE10872-02B6-4FA4-AEA1-1995CE583470}
2014-06-30 07:24 - 2014-06-30 07:24 - 00274776 _____ () C:\Windows\Minidump\063014-26192-01.dmp
2014-06-29 14:09 - 2014-06-29 14:09 - 00000000 ____D () C:\Users\house\AppData\Local\Apple
2014-06-20 11:50 - 2014-06-20 11:49 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{EEAA0F47-4139-4632-8DCE-4D579DEF398C}
2014-06-19 09:05 - 2014-06-19 09:04 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{46D8502A-541B-47C5-A6C5-096BC4BACC2C}
2014-06-19 04:42 - 2014-06-19 04:42 - 00000000 ____D () C:\Users\house\AppData\Local\Trusteer
2014-06-18 14:22 - 2014-06-18 14:22 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\Trusteer
2014-06-18 14:22 - 2014-06-18 14:22 - 00000000 ____D () C:\Program Files (x86)\Trusteer
2014-06-18 14:11 - 2014-06-18 14:11 - 00000000 ____D () C:\ProgramData\Trusteer
2014-06-18 09:53 - 2014-06-18 09:52 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{810A1B2A-8249-4004-970E-700D3EAA0E6F}
2014-06-18 09:46 - 2014-06-18 09:46 - 00000000 ____D () C:\Users\house\AppData\Local\Macromedia
2014-06-18 05:00 - 2011-07-30 20:54 - 00000000 ____D () C:\Users\house\AppData\Local\Google
2014-06-16 15:25 - 2014-06-16 15:24 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{AB968A6C-82B6-4697-852D-6E81D6265080}
2014-06-16 13:32 - 2014-06-16 13:32 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{CCC69CB7-D539-4CF2-87E6-8D0EBEDFA334}
2014-06-16 13:18 - 2014-06-16 13:18 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{35412EDE-D3C3-4346-B0A9-2CE9FC8394F2}
2014-06-13 16:07 - 2014-06-13 16:07 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{0F1B5D27-0103-473B-B901-981F20F039E3}
2014-06-13 16:07 - 2011-01-14 09:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\Windows Live
2014-06-12 18:27 - 2014-06-12 18:27 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{77A44DFC-AF34-49FD-8D1F-2189EC9A2D31}
2014-06-12 17:53 - 2014-06-12 17:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{8229FEE7-5C3D-4BD8-B633-72A090D104D4}
2014-06-12 12:45 - 2012-10-02 17:37 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\StartNow
2014-06-12 12:31 - 2014-06-12 12:31 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{75EF91B0-C4F9-478D-8FCD-C39A21F17EAD}
2014-06-12 12:06 - 2014-06-12 12:06 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{A7D737E5-A5CB-4302-9CCC-C13DF086F1D5}

ZeroAccess:
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\@
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\L\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\L\201d3dde

ZeroAccess:
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\@
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n

ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini

ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini
C:\Windows\svchost.exe
ATTENTION ====> Check for partition/boot infection.

Files to move or delete:
====================
C:\ProgramData\UBxBTSw5.exe


Some content of TEMP:
====================
C:\Users\Vincia M. Blaise\AppData\Local\Temp\0.8263125932535713.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\124kkk290347.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\224kkk290347.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\7d98ha4u.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\ApnStub.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\atl80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\Extract.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\FlashPlayerUpdate01.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\GoogleToolbarInstaller.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\HPQSi.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u20-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u21-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\libexpat.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfc80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfc80u.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfcm80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfcm80u.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcm80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcp80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcr80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\nlsdl.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\Resource.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SearchWithGoogleUpdate.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\setup.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP47326.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP47470.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48159.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48488.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48830.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP49392.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp50843.exe.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp52110.exe.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp54373.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp54620.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\tmdbg64.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\UninstallHPTCA.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\vcredist_x64.exe


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

TDL4: custom:26000022 <===== ATTENTION!

==================== Restore Points  =========================

Restore point made on: 2012-11-15 07:46:18
Restore point made on: 2012-11-15 07:57:16
Restore point made on: 2012-11-15 15:19:34
Restore point made on: 2014-06-12 12:49:52
Restore point made on: 2014-06-16 14:06:55
Restore point made on: 2014-06-18 14:21:26

==================== Memory info ===========================

Percentage of memory in use: 20%
Total physical RAM: 3836.2 MB
Available physical RAM: 3066.27 MB
Total Pagefile: 3834.34 MB
Available Pagefile: 3061.55 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:447.49 GB) (Free:279.37 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (RECOVERY) (Fixed) (Total:17.97 GB) (Free:2.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive g: () (Removable) (Total:0.94 GB) (Free:0.93 GB) FAT
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS ==>[System with boot components (obtained from reading drive)]
ATTENTION: Malware custom entry on BCD on drive y: detected.

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 29E95222)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=447 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=18 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 960 MB) (Disk ID: F9F00BCD)
Partition 1: (Not Active) - (Size=960 MB) - (Type=06)


LastRegBack: 2012-11-15 07:39

==================== End Of Log ============================

 

 

 

please help what to do next to get this computer up and running.


  • 0

Advertisements


#2
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Minion%20Welcome.jpg


My name's Naathim and I'm a GeekU Minion! Now that we are mates and will be working together to clean your machine out of any junkware, feel free to call me Naat :)

Before we start please note the following:

icon_arrow.gif Analysis and research take some time, also sometimes real life gets in the way, please be patient.
icon_arrow.gif Limit your internet access to posting here, some infections just wait to steal typed-in passwords.
icon_arrow.gif Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.
icon_arrow.gif Paste the logs in your posts, attachments make my work harder and more complicated.
icon_arrow.gif Stay with me to the end, the absence of symtoms doesn't mean that your machine is fully operational.
icon_arrow.gif Note that we may live in totally different time zones, what may cause some delays between answers.

icon_idea.gif I can't foresee everything, so if anything unexpected happens, please stop and inform me!
icon_idea.gif There are no silly questions. Never be afraid to ask if in doubt!

Let's start and enjoy the fight! :)
 
 
OK, I went through your logs and spotted some bad guys here. I will come back shortly with more instructions. Stay tuned :)


  • 0

#3
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
ok waiting thanks.
  • 0

#4
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Hi :)

We'll run a fix using Farbar Recovery Scan Tool.
  • Download attached fixlist.txt file and save it in the same location your FRST is present.
    Attached File  fixlist.txt   8.08KB   217 downloads
  • icon_idea.gif Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

icon_exclaim.gif WARNING icon_exclaim.gif

This script was written specifically for this user, for use on that particular machine.
Running this on another machine may cause damage to your operating system!

  • Boot once more into Recovery Mode and run FRST as earlier.
  • Press the Fix button just once and wait.
  • When finished FRST will generate a log on your pendrive (same location as FRST.exe - Fixlog.txt). Please post it to your reply.
After that try to boot in the normal mode and tell me if you succeeded.
 
Cheers,
Naat :)
  • 0

#5
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
Ok will try it and let u kno
  • 0

#6
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Awaiting the results :thumbsup:


  • 0

#7
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-07-2014
Ran by SYSTEM at 2014-07-05 02:35:19 Run:1
Running from G:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
HKLM-x32\...\Run: [StartNowToolbarHelper] => "C:\Program Files (x86)\StartNow Toolbar\ToolbarHelper.exe"
C:\Program Files (x86)\StartNow Toolbar
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ApnUpdater] => C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1564872 2012-06-06] (Ask)
C:\Program Files (x86)\Ask.com
HKU\Vincia M. Blaise\...\Run: [StartNow Search Protect] => C:\Program Files (x86)\StartNow Toolbar\search_protect.exe [1352048 2012-09-06] ()
Startup: C:\Users\Vincia M. Blaise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk ->  (No File)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: EnhancedStorageShell -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} =>  No File
ShellIconOverlayIdentifiers-x32: SharingPrivate -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} =>  No File
S2 Updater Service for StartNow Toolbar; C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe [267488 2011-07-27] ()
S4 eabfiltr;
2014-06-30 09:44 - 2014-06-30 09:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{69B6A840-3396-44F9-B103-8DF0ACCCA560}
2014-06-30 07:36 - 2014-06-30 07:36 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{1BE10872-02B6-4FA4-AEA1-1995CE583470}
2014-06-20 11:49 - 2014-06-20 11:50 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{EEAA0F47-4139-4632-8DCE-4D579DEF398C}
2014-06-19 09:04 - 2014-06-19 09:05 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{46D8502A-541B-47C5-A6C5-096BC4BACC2C}
2014-06-18 09:52 - 2014-06-18 09:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{810A1B2A-8249-4004-970E-700D3EAA0E6F}
2014-06-16 15:24 - 2014-06-16 15:25 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{AB968A6C-82B6-4697-852D-6E81D6265080}
2014-06-16 13:32 - 2014-06-16 13:32 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{CCC69CB7-D539-4CF2-87E6-8D0EBEDFA334}
2014-06-16 13:18 - 2014-06-16 13:18 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{35412EDE-D3C3-4346-B0A9-2CE9FC8394F2}
2014-06-13 16:07 - 2014-06-13 16:07 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{0F1B5D27-0103-473B-B901-981F20F039E3}
2014-06-12 18:27 - 2014-06-12 18:27 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{77A44DFC-AF34-49FD-8D1F-2189EC9A2D31}
2014-06-12 17:53 - 2014-06-12 17:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{8229FEE7-5C3D-4BD8-B633-72A090D104D4}
2014-06-12 12:31 - 2014-06-12 12:31 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{75EF91B0-C4F9-478D-8FCD-C39A21F17EAD}
2014-06-12 12:06 - 2014-06-12 12:06 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{A7D737E5-A5CB-4302-9CCC-C13DF086F1D5}
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\@
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\L\[email protected]
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\L\201d3dde
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\@
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n
C:\Windows\assembly\GAC_32\Desktop.ini
C:\Windows\assembly\GAC_64\Desktop.ini
C:\Windows\svchost.exe
C:\ProgramData\UBxBTSw5.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\0.8263125932535713.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\124kkk290347.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\224kkk290347.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\7d98ha4u.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\ApnStub.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\atl80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\Extract.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\FlashPlayerUpdate01.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\GoogleToolbarInstaller.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\HPQSi.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u20-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u21-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\libexpat.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfc80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfc80u.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfcm80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfcm80u.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcm80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcp80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcr80.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\nlsdl.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\Resource.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SearchWithGoogleUpdate.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\setup.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP47326.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP47470.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48159.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48488.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48830.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP49392.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp50843.exe.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp52110.exe.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp54373.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp54620.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\tmdbg64.dll
C:\Users\Vincia M. Blaise\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\UninstallHPTCA.exe
C:\Users\Vincia M. Blaise\AppData\Local\Temp\vcredist_x64.exe
TDL4: custom:26000022 <===== ATTENTION!
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\StartNowToolbarHelper => value deleted successfully.
C:\Program Files (x86)\StartNow Toolbar => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater => value deleted successfully.
C:\Program Files (x86)\Ask.com => Moved successfully.
HKU\Vincia M. Blaise\Software\Microsoft\Windows\CurrentVersion\Run\\StartNow Search Protect => value deleted successfully.
C:\Users\Vincia M. Blaise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk => Moved successfully.
ShortcutTarget: Dropbox.lnk ->  (No File) not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\EnhancedStorageShell' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub)' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub)' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder)' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark)' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}'=> Key not found.
'HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SharingPrivate' => Key deleted successfully.
'HKLM\Software\Wow6432Node\Classes\CLSID\{08244EE6-92F0-47f2-9FC9-929BAA2E7235}'=> Key not found.
Updater Service for StartNow Toolbar => Service deleted successfully.
eabfiltr => Service deleted successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{69B6A840-3396-44F9-B103-8DF0ACCCA560} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{1BE10872-02B6-4FA4-AEA1-1995CE583470} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{EEAA0F47-4139-4632-8DCE-4D579DEF398C} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{46D8502A-541B-47C5-A6C5-096BC4BACC2C} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{810A1B2A-8249-4004-970E-700D3EAA0E6F} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{AB968A6C-82B6-4697-852D-6E81D6265080} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{CCC69CB7-D539-4CF2-87E6-8D0EBEDFA334} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{35412EDE-D3C3-4346-B0A9-2CE9FC8394F2} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{0F1B5D27-0103-473B-B901-981F20F039E3} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{77A44DFC-AF34-49FD-8D1F-2189EC9A2D31} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{8229FEE7-5C3D-4BD8-B633-72A090D104D4} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{75EF91B0-C4F9-478D-8FCD-C39A21F17EAD} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\{A7D737E5-A5CB-4302-9CCC-C13DF086F1D5} => Moved successfully.
C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b} => Moved successfully.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\@" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\U\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\L\[email protected]" => File/Directory not found.
"C:\Windows\Installer\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\L\201d3dde" => File/Directory not found.
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b} => Moved successfully.
"C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\@" => File/Directory not found.
"C:\Windows\SysWOW64\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n" => File/Directory not found.
C:\Windows\assembly\GAC_32\Desktop.ini => Moved successfully.
C:\Windows\assembly\GAC_64\Desktop.ini => Moved successfully.
C:\Windows\svchost.exe => Moved successfully.
C:\ProgramData\UBxBTSw5.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\0.8263125932535713.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\124kkk290347.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\224kkk290347.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\7d98ha4u.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\ApnStub.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\atl80.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\Extract.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\FlashPlayerUpdate.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\FlashPlayerUpdate01.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\GoogleToolbarInstaller.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\HPQSi.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u20-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u21-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\libexpat.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfc80.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfc80u.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfcm80.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\mfcm80u.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcm80.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcp80.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\msvcr80.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\nlsdl.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\Resource.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SearchWithGoogleUpdate.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\setup.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP47326.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP47470.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48159.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48488.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP48830.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\SP49392.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp50843.exe.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp52110.exe.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp54373.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\sp54620.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\tmdbg64.dll => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\UninstallHPSA.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\UninstallHPTCA.exe => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Local\Temp\vcredist_x64.exe => Moved successfully.

The operation completed successfully.
The operation completed successfully.

==== End of Fixlog ====

 

 

 

 

so thats the results and i was able to reboot and get to desktop.....THANK U SOOOOOOOOOOO MUCH!!!!
should I run some kind of scan? is there anything else i should do to try and prevent this happening again?


  • 0

#8
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi tics :)

 

We are not done here yet. There are multiple steps to get rid of these nasty infections and to repair damage done by them.

 

Give me some time to brainstorm about next steps and I will return back to you shortly.

 

In the meantime could you this one for me?

 

Please copy your existing FRST.exe to your desktop, run it by right clicking and Run as Administrator.

Make sure that Addition option is checked.

Push Scan and wait patiently. Two logfiles shall open shortly: FRST.txt and Addition.txt (should be also saved to your dekstop).

Post their contents here.

 

Cheers,

Naat :)


  • 0

#9
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

Here is the fstlog

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Vincia M. Blaise (administrator) on VINCIAMBLAISE on 05-07-2014 04:57:57
Running from C:\Users\Vincia M. Blaise\Desktop
Platform: Windows 7 Home Premium (X64) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\stacsv64.exe
(Hewlett-Packard) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Livescribe) C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SonicWALL Inc.) C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(SonicWALL Inc.) C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Creative Home) C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2006\Planner\PLNRnote.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312 2010-11-14] (Synaptics Incorporated)
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872 2009-08-25] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre6\bin\jusched.exe [171520 2009-10-31] (Sun Microsystems, Inc.)
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2327952 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-11-14] (IDT, Inc.)
HKLM\...\Run: [SonicWALLNetExtender] => C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe [710528 2009-12-02] (SonicWALL Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1580368 2010-11-03] (Logitech, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPCam_Menu] => c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-03-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AppleSyncNotifier] => C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2012-02-23] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2012-02-20] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736 2012-03-27] (Apple Inc.)
HKU\.DEFAULT\...0c966feabec1\InprocServer32: [Default-shell32] C:\Windows\system32\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n. ATTENTION! ====> ZeroAccess/Alureon?
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\Run: [LDTray] => C:\Program Files (x86)\Livescribe\Livescribe Desktop\LDTray.exe [647168 2010-05-24] ()
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_Plugin.exe [692152 2012-11-03] (Adobe Systems Incorporated)
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\MountPoints2: G - G:\LaunchU3.exe -a
HKU\S-1-5-21-3973434020-1845454714-2837867195-1001\...\MountPoints2: {d22e56de-4078-11e0-bf52-7ee400707f37} - G:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Event Planner Reminder.lnk
ShortcutTarget: Event Planner Reminder.lnk -> C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2006\Planner\PLNRnote.exe (Creative Home)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe ()
Startup: C:\Users\Vincia M. Blaise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://start.iplay.com/?o=shp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {739BD4B5-CD29-4D80-81AC-B65CD917235A} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKLM-x32 - {739BD4B5-CD29-4D80-81AC-B65CD917235A} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKCU - DefaultScope {ABD93EAF-D775-BC54-E63B-2804F22FD156} URL = http://search.startn...eferrer:source}
SearchScopes: HKCU - {0633EE93-1111-472f-A0FF-E1416B8B2E3B} URL = http://www.gooofulls...q={searchTerms}
SearchScopes: HKCU - {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = http://start.iplay.c...q={searchTerms}
SearchScopes: HKCU - {739BD4B5-CD29-4D80-81AC-B65CD917235A} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKCU - {9DC71DDF-6D47-4870-ADED-ED537B875071} URL = http://websearch.ask...29-3D8D7B19CBEE
SearchScopes: HKCU - {ABD93EAF-D775-BC54-E63B-2804F22FD156} URL = http://search.startn...eferrer:source}
SearchScopes: HKCU - {E163AE6E-254C-5FF4-BE33-4CBD31D63F5C} URL = http://www.bing.com/...eferrer:source}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files (x86)\GamesBar\2.0.1.82\oberontb.dll No File
Toolbar: HKLM-x32 - StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
Toolbar: HKLM-x32 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab
DPF: HKLM-x32 {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zon...wn.cab56986.cab
DPF: HKLM-x32 {6C625615-1E0B-44C4-8ED9-C1DDC99C235F} https://hire.jobvite...AddressBook.cab
DPF: HKLM-x32 {8F60EE6F-DC53-4F9C-9E66-84BD2A545805} http://hb.getamped.c.../CsLauncher.cab
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicr...osoft/wrc32.ocx
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab
DPF: HKLM-x32 {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logme...trl.cab?lmi=100
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 mswsock.dll File Not found ()
Winsock: Catalog9 02 mswsock.dll File Not found ()
Winsock: Catalog9 03 mswsock.dll File Not found ()
Winsock: Catalog9 04 mswsock.dll File Not found ()
Winsock: Catalog9 05 mswsock.dll File Not found ()
Winsock: Catalog9 06 mswsock.dll File Not found ()
Winsock: Catalog9 07 mswsock.dll File Not found ()
Winsock: Catalog9 08 mswsock.dll File Not found ()
Winsock: Catalog9 09 mswsock.dll File Not found ()
Winsock: Catalog9 10 mswsock.dll File Not found ()
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 02 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9-x64 01 mswsock.dll File Not found ()
Winsock: Catalog9-x64 02 mswsock.dll File Not found ()
Winsock: Catalog9-x64 03 mswsock.dll File Not found ()
Winsock: Catalog9-x64 04 mswsock.dll File Not found ()
Winsock: Catalog9-x64 05 mswsock.dll File Not found ()
Winsock: Catalog9-x64 06 mswsock.dll File Not found ()
Winsock: Catalog9-x64 07 mswsock.dll File Not found ()
Winsock: Catalog9-x64 08 mswsock.dll File Not found ()
Winsock: Catalog9-x64 09 mswsock.dll File Not found ()
Winsock: Catalog9-x64 10 mswsock.dll File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.5.1

FireFox:
========
FF ProfilePath: C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: StartNow
FF Homepage: hxxp://www.msn.com/?pc=Z125&install_date=20110828
FF Keyword.URL: hxxp://search.startnow.com/s/?src=addrbar&provider=&provider_name=startnow&provider_code=&partner_id=999&product_id=10&affiliate_id=&channel=&toolbar_id=&toolbar_version=&install_country=&install_date=&user_guid=1278D169D8D5474F812EEA14BCD336E0&machine_id=8d089b94925f5ababd02e279192e6bb1&browser=FF&os=win&os_version=6.1-x64-SP0&q=
FF NetworkProxy: "no_proxies_on", "*.local"
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @oberon-media.com/ONCAdapter - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @hulu.com/Hulu Desktop - C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.7.1\npHDPlg.dll (Hulu LLC)
FF SearchPlugin: C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\searchplugins\bing-zugo.xml
FF SearchPlugin: C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\searchplugins\startnow.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\WebSearchober616003862.xml
FF Extension: Oberon GamesBar - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\[email protected] [2011-08-27]
FF Extension: Free software Gooofull toolbar - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{181F4BBC-2453-40D2-B42C-3135E3B07C7B} [2011-11-26]
FF Extension: StartNow Toolbar - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F} [2011-08-28]
FF Extension: Webroot Password Manager - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2014-06-19]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2009-10-31]

Chrome:
=======
CHR HomePage: hxxp://search.startnow.com/s/?src=startpage&provider=&provider_name=startnow&provider_code=&partner_id=999&product_id=10&affiliate_id=&channel=&toolbar_id=&toolbar_version=&install_country=&install_date=&user_guid=1278D169D8D5474F812EEA14BCD336E0&machine_id=8d089b94925f5ababd02e279192e6bb1&browser=IE&os=win&os_version=6.1-x64-SP0&iesrc={referrer:source}
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: startnow.com
CHR DefaultSearchProvider: StartNow
CHR DefaultSearchURL: http://search.startn...ion=6.1-x64-SP0
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Oberon com adapter) - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Hulu Desktop) - C:\Windows\..\Users\Default\AppData\Local\HuluDesktop\instances\0.9.7.1\npHDPlg.dll (Hulu LLC)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Vincia M. Blaise\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-09-16]
CHR Extension: (Google Search) - C:\Users\Vincia M. Blaise\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-09-16]
CHR Extension: (Webroot Password Manager) - C:\Users\Vincia M. Blaise\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfhiodnpcnnnpgbjbhfebjnbagmfhab [2014-06-20]
CHR Extension: (Gmail) - C:\Users\Vincia M. Blaise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-16]

==================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe [89600 2010-11-14] (Andrea Electronics Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PenCommService; C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe [444928 2010-05-24] (Livescribe) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
R2 SONICWALL_NetExtender; C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe [482688 2009-12-02] (SonicWALL Inc.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe [247808 2010-11-14] (IDT, Inc.)

==================== Drivers (Whitelisted) ====================

R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
R1 kl1; C:\Windows\System32\DRIVERS\kl1.sys [157712 2009-09-01] (Kaspersky Lab)
S3 PulseUsb; C:\Windows\System32\DRIVERS\PulseUsb.sys [26112 2010-05-24] (Windows ® Win 7 DDK provider)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
R3 SSLDrv; C:\Windows\System32\DRIVERS\SSLDrv.sys [22168 2009-02-23] (SonicWALL Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [51712 2011-05-10] (Apple, Inc.) [File not signed]
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-03] (CyberLink Corp.)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-05 04:57 - 2014-07-05 04:58 - 00027612 _____ () C:\Users\Vincia M. Blaise\Desktop\FRST.txt
2014-07-05 04:57 - 2014-07-02 20:46 - 02083840 _____ (Farbar) C:\Users\Vincia M. Blaise\Desktop\FRST64.exe
2014-07-05 04:44 - 2014-07-05 04:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{74BA33CB-B9D1-494F-AAB2-BAEF13F99A17}
2014-07-05 04:37 - 2014-07-05 04:38 - 00274776 _____ () C:\Windows\Minidump\070514-18002-01.dmp
2014-07-03 13:49 - 2014-07-05 04:57 - 00000000 ____D () C:\FRST
2014-07-02 18:46 - 2014-07-02 18:47 - 00000000 ____D () C:\Windows\system32\config\mybackup
2014-06-30 11:24 - 2014-06-30 11:24 - 00274776 _____ () C:\Windows\Minidump\063014-26192-01.dmp
2014-06-29 18:09 - 2014-06-29 18:09 - 00000000 ____D () C:\Users\house\AppData\Local\Apple
2014-06-19 16:19 - 2014-06-30 17:58 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\lptmp2105547642
2014-06-19 16:18 - 2014-06-30 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
2014-06-19 16:18 - 2014-06-30 17:58 - 00000000 ____D () C:\Program Files\Webroot
2014-06-19 16:17 - 2014-06-30 17:58 - 00000000 ____D () C:\ProgramData\WRData
2014-06-19 08:42 - 2014-06-19 08:42 - 00000000 ____D () C:\Users\house\AppData\Local\Trusteer
2014-06-18 18:22 - 2014-06-18 18:22 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\Trusteer
2014-06-18 18:22 - 2014-06-18 18:22 - 00000000 ____D () C:\Program Files (x86)\Trusteer
2014-06-18 18:11 - 2014-06-18 18:11 - 00000000 ____D () C:\ProgramData\Trusteer
2014-06-18 13:46 - 2014-06-18 13:46 - 00000000 ____D () C:\Users\house\AppData\Local\Macromedia
2014-06-16 17:20 - 2014-06-30 13:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\DropboxMaster

==================== One Month Modified Files and Folders =======

2014-07-05 06:31 - 2010-06-06 17:42 - 00000000 ____D () C:\ProgramData\Recovery
2014-07-05 04:58 - 2014-07-05 04:57 - 00027612 _____ () C:\Users\Vincia M. Blaise\Desktop\FRST.txt
2014-07-05 04:57 - 2014-07-03 13:49 - 00000000 ____D () C:\FRST
2014-07-05 04:57 - 2009-07-14 01:13 - 00730274 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-05 04:56 - 2011-03-05 11:51 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox
2014-07-05 04:56 - 2009-07-14 00:51 - 00546618 _____ () C:\Windows\setupact.log
2014-07-05 04:51 - 2012-06-09 12:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-05 04:51 - 2011-03-23 22:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-05 04:45 - 2009-07-14 00:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-05 04:45 - 2009-07-14 00:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-05 04:44 - 2014-07-05 04:44 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\{74BA33CB-B9D1-494F-AAB2-BAEF13F99A17}
2014-07-05 04:44 - 2011-01-20 00:33 - 00000000 ____D () C:\Users\Vincia M. Blaise\Tracing
2014-07-05 04:43 - 2010-09-02 23:46 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-05 04:43 - 2010-05-22 08:54 - 00000000 ____D () C:\Users\Vincia M. Blaise
2014-07-05 04:38 - 2014-07-05 04:37 - 00274776 _____ () C:\Windows\Minidump\070514-18002-01.dmp
2014-07-05 04:38 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-05 04:37 - 2012-09-08 22:26 - 426814290 _____ () C:\Windows\MEMORY.DMP
2014-07-05 04:37 - 2012-08-12 16:52 - 00000000 ____D () C:\Windows\Minidump
2014-07-03 11:02 - 2011-07-31 00:53 - 00000000 ____D () C:\Users\house
2014-07-03 11:02 - 2011-03-05 11:58 - 00000000 ___RD () C:\Users\Vincia M. Blaise\Dropbox
2014-07-03 11:02 - 2011-03-05 11:51 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-03 11:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-03 11:01 - 2012-11-04 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-03 11:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration
2014-07-03 10:59 - 2009-10-31 00:59 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-07-03 10:58 - 2012-04-18 21:37 - 00000000 ____D () C:\Windows\system32\Macromed
2014-07-02 20:46 - 2014-07-05 04:57 - 02083840 _____ (Farbar) C:\Users\Vincia M. Blaise\Desktop\FRST64.exe
2014-07-02 18:47 - 2014-07-02 18:46 - 00000000 ____D () C:\Windows\system32\config\mybackup
2014-06-30 20:09 - 2012-11-12 16:28 - 00000000 ____D () C:\Users\house\AppData\Local\Mozilla
2014-06-30 17:58 - 2014-06-19 16:19 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\lptmp2105547642
2014-06-30 17:58 - 2014-06-19 16:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
2014-06-30 17:58 - 2014-06-19 16:18 - 00000000 ____D () C:\Program Files\Webroot
2014-06-30 17:58 - 2014-06-19 16:17 - 00000000 ____D () C:\ProgramData\WRData
2014-06-30 13:44 - 2014-06-16 17:20 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Roaming\DropboxMaster
2014-06-30 11:24 - 2014-06-30 11:24 - 00274776 _____ () C:\Windows\Minidump\063014-26192-01.dmp
2014-06-29 18:09 - 2014-06-29 18:09 - 00000000 ____D () C:\Users\house\AppData\Local\Apple
2014-06-19 08:42 - 2014-06-19 08:42 - 00000000 ____D () C:\Users\house\AppData\Local\Trusteer
2014-06-18 18:22 - 2014-06-18 18:22 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\Trusteer
2014-06-18 18:22 - 2014-06-18 18:22 - 00000000 ____D () C:\Program Files (x86)\Trusteer
2014-06-18 18:11 - 2014-06-18 18:11 - 00000000 ____D () C:\ProgramData\Trusteer
2014-06-18 13:46 - 2014-06-18 13:46 - 00000000 ____D () C:\Users\house\AppData\Local\Macromedia
2014-06-18 09:00 - 2011-07-31 00:54 - 00000000 ____D () C:\Users\house\AppData\Local\Google
2014-06-13 20:07 - 2011-01-14 13:53 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\Windows Live
2014-06-12 16:45 - 2012-10-02 21:37 - 00000000 ____D () C:\Users\Vincia M. Blaise\AppData\Local\StartNow

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2012-11-15 11:39

==================== End Of Log ============================


  • 0

#10
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

here is the addition

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2014
Ran by Vincia M. Blaise at 2014-07-05 04:58:44
Running from C:\Users\Vincia M. Blaise\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
4500_G510nz_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.4.402.287 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.4.402.287 - Adobe Systems Incorporated)
Adobe Reader 9.5.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.1 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
Amazon MP3 Downloader 1.0.10 (HKLM-x32\...\Amazon MP3 Downloader) (Version:  - )
AMD USB Filter Driver (HKLM-x32\...\{5271C0D4-24E4-4C3D-A782-C012033FD3CF}) (Version: 1.0.10.84 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}) (Version: 2.1.7 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B8AD779A-82DA-4365-A7D0-AD3DCFC55CFF}) (Version: 5.1.1.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.15.4.0 - Ask.com) <==== ATTENTION
Ask Toolbar Updater (HKCU\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.2.23821 - Ask.com) <==== ATTENTION
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.0 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{902004C7-2B12-4A4F-E1DB-E75C7B03EDD4}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Bytescout Lossless Codec (HKLM-x32\...\BytescoutLosslessCodec) (Version: 1.0.187.0 - Bytescout)
Bytescout Lossless Codec (x64) (HKLM\...\BytescoutLosslessCodec) (Version: 1.0.187.0 - Bytescout)
Bytescout Lossless Video Codec 1.00.187 (FREEWARE) (HKLM\...\Bytescout Lossless Video Codec_is1) (Version:  - Bytescout Software)
Bytescout PPT To Video Scout (HKLM\...\Bytescout PPT To Video Scout_is1) (Version: 2.42.1 - ByteScout)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.0804.2223.38385 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help English (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help French (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help German (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.0804.2222.38385 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0804.2223.38385 - ATI) Hidden
ccc-utility64 (Version: 2009.0804.2223.38385 - ATI) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cisco Systems VPN Client 5.0.07.0290 (HKLM\...\{467D5E81-8349-4892-9E81-C3674ED8E451}) (Version: 5.0.7 - Cisco Systems, Inc.)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Corel Paint Shop Pro Photo X2 (HKLM-x32\...\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}) (Version: 12.50.0001 - Corel Corporation)
Corel VideoStudio 12 (HKLM-x32\...\InstallShield_{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875}) (Version: 12.0.0.0000 - Corel Corporation)
Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated)
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2111 - CyberLink Corp.)
CyberLink DVD Suite (x32 Version: 7.0.2111 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DealRunner 1.26 (HKLM-x32\...\{6EFDBA50-4ABE-4194-86F7-F3BD0A011F5B}_is1) (Version: 1.26 - Jackpot Rewards)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
DocMgr (x32 Version: 130.0.000.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 1.4.7 - Dropbox, Inc.)
DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.1.3224 - Hewlett-Packard)
DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224 - Hewlett-Packard) Hidden
ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE)
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GamesBar 2.0.1.82 (HKLM-x32\...\GamesBar) (Version: 2.0.1.82 - Oberon Media, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 23.0.1271.64 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.123 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hallmark Card Studio 2006 (HKLM-x32\...\{192C6FB8-40B8-4910-BE8C-5EE77FACF08D}) (Version: 7.0.0.15 - Creative Home)
Hallmark Card Studio Bonus Pack (HKLM-x32\...\{0566C948-B1AB-4E41-82D6-29A5BA8AC990}) (Version: 7.0.0.17 - Creative Home)
Hewlett-Packard ACLM.NET v1.1.2.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
HolyBeast (HKLM-x32\...\{B2D1B6C2-B70A-4217-B5D7-36C846FD8E9E}) (Version: 2.1 - CyberStep)
HP 3D DriveGuard (HKLM\...\{85A42FF0-F0D0-44A3-B226-C124D6E8B1D5}) (Version: 4.0.3.1 - Hewlett-Packard)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.1.3402 - Hewlett-Packard)
HP MediaSmart DVD (x32 Version: 3.1.3402 - Hewlett-Packard) Hidden
HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.1.2125 - Hewlett-Packard)
HP MediaSmart Internet TV (x32 Version: 3.1.2125 - Hewlett-Packard) Hidden
HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.1.2206 - Hewlett-Packard)
HP MediaSmart Live TV (x32 Version: 3.1.2206 - Hewlett-Packard) Hidden
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.1.3405 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (x32 Version: 3.1.3405 - Hewlett-Packard) Hidden
HP MediaSmart SlingPlayer (HKLM-x32\...\{1747DF05-6890-440B-B094-2146F5DC50E0}) (Version: 3.0.1.64 - Sling Media, Inc.)
HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.1.0.1 - Hewlett-Packard)
HP MediaSmart Software Notebook Demo (HKLM-x32\...\{82A213BD-B6AA-4281-A2D3-59D51893CC56}) (Version: 1.00.0000 - Hewlett-Packard)
HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.2207 - Hewlett-Packard)
HP MediaSmart Webcam (x32 Version: 3.1.2207 - Hewlett-Packard) Hidden
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{3CD3B705-467B-408D-A09D-5BF61A59F088}) (Version: 1.0.1.0 - Hewlett-Packard)
HP Officejet 4500 G510n-z (HKLM\...\{7E0E61CC-1C99-429D-BEA7-C4DD5B898D2A}) (Version: 13.0 - HP)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
HP Smart Web Printing (HKLM-x32\...\HP Smart Web Printing) (Version: 131.1.35898 - Hewlett-Packard)
HP Smart Web Printing (x32 Version: 131.1.35898 - Hewlett-Packard) Hidden
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Support Assistant (HKLM-x32\...\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}) (Version: 6.1.12.1 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM-x32\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hulu Desktop (HKCU\...\HuluDesktop) (Version: 0.9.7 - Hulu LLC)
iCloud (HKLM\...\{8B485965-8EFE-464A-842F-CF8F18C3DFD7}) (Version: 1.1.0.40 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6276.0 - IDT)
iTunes (HKLM\...\{CF8FFD12-602B-422D-AF1D-511B411E7632}) (Version: 10.6.1.7 - Apple Inc.)
Java Auto Updater (x32 Version: 2.0.7.1 - Sun Microsystems, Inc.) Hidden
Java™ 6 Update 15 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416015FF}) (Version: 6.0.150 - Sun Microsystems, Inc.)
Java™ 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
Java™ SE Development Kit 6 Update 15 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0160150}) (Version: 1.6.0.150 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2111 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.2111 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{CC8E94A2-55C7-4460-953C-2A790180578C}) (Version: 1.18.8.1 - LightScribe)
Livescribe Desktop (HKLM-x32\...\{169CE656-4BF8-4253-B60A-570DBFF63AAE}) (Version: 2.1.1 - Livescribe Inc.)
Malwarebytes' Anti-Malware (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version:  - Malwarebytes Corporation)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 8.0 (HKLM\...\{563F041C-DFDB-437B-A1E8-E141E0906076}) (Version: 8.0.225.0 - Microsoft)
Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.566.0 - Microsoft Live Search Toolbar)
Microsoft Live Search Toolbar (x32 Version: 3.0.566.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Meeting 2007 (HKLM-x32\...\{BCC7E198-1D10-4B55-956E-550A196F8056}) (Version: 8.0.6362.190 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
MobileMe Control Panel (HKLM\...\{AF5020D9-116A-46AC-A922-087592F37EC9}) (Version: 3.1.8.0 - Apple Inc.)
Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.1.3310 - Hewlett-Packard)
Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310 - Hewlett-Packard) Hidden
Mozilla Firefox 15.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 15.0.1 (x86 en-US)) (Version: 15.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 15.0.1 - Mozilla)
MPlayer (remove only) (HKLM-x32\...\MPlayer) (Version:  - )
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6622 - CyberLink Corp.)
PhotoNow! (x32 Version: 1.1.6622 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3311 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3311 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3311 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3311 - CyberLink Corp.) Hidden
PowerPoint Add-in for PPT To Video Scout (HKLM-x32\...\{742BD5EC-F73E-444D-A006-1F8ECB7CE75E}) (Version: 1.0.0 - Bytescout Software)
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
QuickTime (HKLM-x32\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.)
Realtek 8136 8168 8169 Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0007 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7100.30094 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.2202 - CyberLink Corp.) Hidden
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Scholastic's I SPY Mystery (HKLM-x32\...\Scholastic's I SPY Mystery) (Version:  - )
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Shop To Win (HKLM-x32\...\{F25146ED-8C9C-4D92-B26D-7B40AE34EA66}_is1) (Version: 1.0.25 - Shop To Win, LLC)
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SonicWALL SSL-VPN NetExtender (HKLM-x32\...\SonicWALL SSL-VPN NetExtender) (Version: 3.5.111 - SonicWALL, Inc.)
StartNow Toolbar (HKLM-x32\...\StartNow Toolbar) (Version: 2.3.0 - StartNow.com) <==== ATTENTION
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.0.3 - Synaptics Incorporated)
The Lost Cases of Sherlock Holmes 2 (HKLM-x32\...\Sherlock2) (Version:  - )
The Secret of the Silver Earring (HKLM-x32\...\{6A2B11F2-9230-404E-AD43-A23F42CDC977}) (Version: 0.0 - Frogwares)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISER_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISER_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISER_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISER_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISER_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISER_{8F32B14E-F85E-482C-BF8C-C04E1A5ADE4F}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{8B689F89-5E1C-4DA9-B2B1-7B3843275596}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISER_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6C4E1D7E-EEB2-4EDE-8B39-9844D8AD9273}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISER_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISER_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISER_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISER_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VideoStudio (x32 Version: 12.0.0.0000 - Corel Corporation) Hidden
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Driver Package - Livescribe (PulseUsb) DigitalPen  (04/12/2010 2.2.6.0) (HKLM\...\119B0642D93485253315CC5A682621B74C3A6931) (Version: 04/12/2010 2.2.6.0 - Livescribe)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

15-11-2012 15:46:03 Scheduled Checkpoint
15-11-2012 15:57:12 HPSF Restore Point
15-11-2012 23:19:20 HPSF Restore Point
12-06-2014 20:49:37 HPSF Restore Point
16-06-2014 22:06:37 HPSF Restore Point
18-06-2014 22:20:30 Installed Rapport

==================== Hosts content: ==========================

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1035EFD4-3F1E-4319-A118-C8FAF562409F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [2011-03-22] (Hewlett-Packard Company)
Task: {17608302-6353-4E6A-9FB8-320A543A2FB1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02] (Google Inc.)
Task: {1A3E29D8-B315-465D-958A-5832165A80F4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {2389F0D6-1ACE-4D04-9D92-065BE5E0D612} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-09-09] (Hewlett-Packard Company)
Task: {366B84AD-0D6F-4DE7-B5F7-8318EA16E9E3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe [2012-10-18] (Hewlett-Packard)
Task: {4A573B5D-77D1-428B-A981-76E715577B23} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-10-07] (CL)
Task: {64084EC3-C042-4B97-B50A-4FB0DBBF0278} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
Task: {69E0010F-E0A9-4895-8B9A-CE72086D09D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02] (Google Inc.)
Task: {6EEBE873-83AB-44FE-BF78-7E4B719F4DB7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe [2011-09-09] (Hewlett-Packard Company)
Task: {7D616BA3-5AB4-43E7-93AA-58305DA907F2} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2010-07-21] (Microsoft Corporation)
Task: {827456C3-08A5-407B-A568-3A88AC73AC03} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-10-07] (CL)
Task: {82AAF373-3ED9-4851-9998-E66940F7F709} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe <==== ATTENTION
Task: {B1C6A86E-1BFF-4E0E-8A0A-03F547B02B65} - System32\Tasks\{28A8FF56-8DA8-4550-8BE2-2894C4FF4180} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {B4E2A9E8-6FAE-4740-8D92-7A323F142BF5} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-10-07] (CL)
Task: {BFD83E9F-1AB6-4B28-B8F4-EDF1BA823020} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-03] (Adobe Systems Incorporated)
Task: {CB100B9F-8B4C-4701-81E7-CFB7EB14E70C} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-10-07] (CyberLink Corp.)
Task: {F7497D80-1F49-4CFF-BD65-BDDFA8F4FB8E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-09-09] (Hewlett-Packard Company)
Task: {F7D852BD-68A8-4420-8E92-4D19B994130D} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-06] (CyberLink)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2009-10-31 01:36 - 2009-07-06 15:20 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2009-08-25 12:48 - 2009-08-25 12:48 - 00610872 _____ () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
2009-07-01 18:44 - 2009-07-01 18:44 - 00632888 _____ () C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-03-23 14:26 - 2010-03-23 14:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
2010-05-24 09:50 - 2010-05-24 09:50 - 00257536 _____ () C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommSdk.dll
2009-08-20 15:35 - 2009-08-20 15:35 - 02121728 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2009-08-20 15:35 - 2009-08-20 15:35 - 07745536 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2009-08-20 15:35 - 2009-08-20 15:35 - 00135168 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2009-10-06 02:08 - 2009-10-06 02:08 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Cisco Systems VPN Adapter for 64-bit Windows
Description: Cisco Systems VPN Adapter for 64-bit Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft WPD Enhanced Storage Password Driver
Description: Microsoft WPD Enhanced Storage Password Driver
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: (Enhanced Storage Device)
Service: WUDFRd
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/30/2014 11:33:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000420
Fault offset: 0x00013ce2
Faulting process id: 0xd38
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/29/2014 06:12:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000420
Fault offset: 0x00013ce2
Faulting process id: 0x1dcc
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/29/2014 06:10:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000420
Fault offset: 0x00013ce2
Faulting process id: 0xe24
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 05:03:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7600.16915, time stamp: 0x4ec49d10
Exception code: 0xc0000005
Fault offset: 0x00032955
Faulting process id: 0x13dc
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 04:52:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7600.16915, time stamp: 0x4ec49d10
Exception code: 0xc0000005
Fault offset: 0x00032955
Faulting process id: 0x1178
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 04:44:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7600.16915, time stamp: 0x4ec49d10
Exception code: 0xc0000005
Fault offset: 0x00032955
Faulting process id: 0x21fc
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 04:40:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000420
Fault offset: 0x00013ce2
Faulting process id: 0x1784
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 04:35:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7600.16915, time stamp: 0x4ec49d10
Exception code: 0xc0000005
Fault offset: 0x00032955
Faulting process id: 0x1f80
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 04:31:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: ntdll.dll, version: 6.1.7600.16915, time stamp: 0x4ec49d10
Exception code: 0xc0000005
Fault offset: 0x00032955
Faulting process id: 0x1918
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (06/20/2014 04:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000420
Fault offset: 0x00013ce2
Faulting process id: 0x1144
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3


System errors:
=============
Error: (07/05/2014 04:56:56 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {005A3A96-BAC4-4B0A-94EA-C0CE100EA736}

Error: (07/05/2014 04:38:08 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (07/05/2014 04:38:07 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/05/2014 04:38:07 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (07/05/2014 04:38:04 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (07/05/2014 04:38:02 AM) (Source: Microsoft-Windows-EnhancedStorage-EhStorCertDrv) (EventID: 80) (User: NT AUTHORITY)
Description: Password device is not compatible with Windows.

Error: (07/05/2014 04:37:57 AM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (07/05/2014 04:38:00 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000000a (0x00000000000000dc, 0x0000000000000002, 0x0000000000000001, 0xfffff80002eb3995)C:\Windows\MEMORY.DMP070514-18002-01

Error: (06/30/2014 01:44:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

Error: (06/30/2014 01:44:03 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1053hpqwmiex{F5539356-2F02-40D4-999E-FA61F45FE12E}


Microsoft Office Sessions:
=========================
Error: (03/11/2012 08:15:12 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 319 seconds with 180 seconds of active time.  This session ended with a crash.

Error: (01/04/2011 04:48:33 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6548.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1663571 seconds with 9060 seconds of active time.  This session ended with a crash.

Error: (12/10/2010 06:02:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 66 seconds with 60 seconds of active time.  This session ended with a crash.

Error: (12/10/2010 06:00:45 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 80498 seconds with 4740 seconds of active time.  This session ended with a crash.

Error: (12/09/2010 07:38:55 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 677071 seconds with 9120 seconds of active time.  This session ended with a crash.

Error: (11/27/2010 06:53:17 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 948243 seconds with 9840 seconds of active time.  This session ended with a crash.

Error: (11/09/2010 06:15:47 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1311693 seconds with 16080 seconds of active time.  This session ended with a crash.

Error: (07/05/2010 02:51:06 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 143 seconds with 120 seconds of active time.  This session ended with a crash.


==================== Memory info ===========================

Percentage of memory in use: 34%
Total physical RAM: 3836.2 MB
Available physical RAM: 2514.79 MB
Total Pagefile: 7670.54 MB
Available Pagefile: 6168.26 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:447.49 GB) (Free:279.36 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:17.97 GB) (Free:2.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: () (Removable) (Total:0.94 GB) (Free:0.94 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 29E95222)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=447 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=18 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 960 MB) (Disk ID: F9F00BCD)
Partition 1: (Not Active) - (Size=960 MB) - (Type=06)

==================== End Of Log ============================


  • 0

Advertisements


#11
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi :)

Still plenty of work to be done here...

Tere will be multiple steps here. Be sure to perform them in the order mentioned.

 

= = = = = = = = = = = = = = = = = = = =



We'll run a fix using Farbar Recovery Scan Tool.

 

  • Download attached fixlist.txt file and save it to the Desktop.
    Attached File  fixlist.txt   5.42KB   151 downloads
  • icon_idea.gif Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

icon_exclaim.gifWARNING icon_exclaim.gif
This script was written specifically for this user, for use on that particular machine.
Running this on another machine may cause damage to your operating system!


 

  • Right click on the 12579.gif to Run as administrator (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

= = = = = = = = = = = = = = = = = = = =



Please download Farbar Service Scanner by Farbar and save it on your desktop.
Run it by right-clicking the 51a5c8edc4692-icon1337952077.png icon and choosing Run as Administrator option.
(Users of Windows XP please just double-click).

  • Make sure the all options are checked!
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

= = = = = = = = = = = = = = = = = = = =


 
 
Please download TDSSKiller by Kaspersky and save it to your Desktop.

  • Right-click on 520e76988454e-tdsskiller.PNG icon and select Run as Administrator to run the application.
    (users of Windows XP please just double-click)
    icon_idea.gif Accept the UAC prompt to allow changes to the computer.
  • Click on Change parameters:

    image000q.png

  • Put a checkmark beside loaded modules:

    KaspTDSSkiller-b.jpg

  • A reboot will be needed to apply the changes. Do it.
    icon_exclaim.gif TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
    Check all boxes then click OK.
  • Click the Start Scan button.
    The scan should take no longer than couple of minutes.

    19695967.jpg

  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    67776163.jpg

  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    62117367.jpg


    icon_idea.gif If Cure is not available, please choose Skip instead, do not choose Delete unless instructed!

A report will be created in your root directory, (usually C:\ folder) in the form of TDSSKiller.[Version]_[Date]_[Time]_log.txt. Please copy and paste the contents of that file on your next post.



Cheers,
Naat :)


  • 0

#12
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

ok heres the fixlog from 1st steps

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 05-07-2014
Ran by Vincia M. Blaise at 2014-07-05 14:26:51 Run:2
Running from E:\
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\.DEFAULT\...0c966feabec1\InprocServer32: [Default-shell32] C:\Windows\system32\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}\n. ATTENTION! ====> ZeroAccess/Alureon?
C:\Windows\system32\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://start.iplay.com/?o=shp
SearchScopes: HKLM - {739BD4B5-CD29-4D80-81AC-B65CD917235A} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKLM-x32 - {739BD4B5-CD29-4D80-81AC-B65CD917235A} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKCU - DefaultScope {ABD93EAF-D775-BC54-E63B-2804F22FD156} URL = http://search.startn...eferrer:source}
SearchScopes: HKCU - {0633EE93-1111-472f-A0FF-E1416B8B2E3B} URL = http://www.gooofulls...q={searchTerms}
SearchScopes: HKCU - {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = http://start.iplay.c...q={searchTerms}
SearchScopes: HKCU - {739BD4B5-CD29-4D80-81AC-B65CD917235A} URL = http://www.ask.com/w...}&l=dis&o=ushpl
SearchScopes: HKCU - {9DC71DDF-6D47-4870-ADED-ED537B875071} URL = http://websearch.ask...29-3D8D7B19CBEE
SearchScopes: HKCU - {ABD93EAF-D775-BC54-E63B-2804F22FD156} URL = http://search.startn...eferrer:source}
SearchScopes: HKCU - {E163AE6E-254C-5FF4-BE33-4CBD31D63F5C} URL = http://www.bing.com/...eferrer:source}
BHO-x32: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
C:\Program Files (x86)\StartNow Toolbar
Toolbar: HKLM-x32 - GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files (x86)\GamesBar\2.0.1.82\oberontb.dll No File
Toolbar: HKLM-x32 - StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll No File
Toolbar: HKLM-x32 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
C:\Program Files (x86)\GamesBar
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 02 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
cmd: netsh winsock reset
reboot:
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: StartNow
FF Keyword.URL: hxxp://search.startnow.com/s/?src=addrbar&provider=&provider_name=startnow&provider_code=&partner_id=999&product_id=10&affiliate_id=&channel=&toolbar_id=&toolbar_version=&install_country=&install_date=&user_guid=1278D169D8D5474F812EEA14BCD336E0&machine_id=8d089b94925f5ababd02e279192e6bb1&browser=FF&os=win&os_version=6.1-x64-SP0&q=
FF SearchPlugin: C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\searchplugins\startnow.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\WebSearchober616003862.xml
FF Extension: Oberon GamesBar - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\[email protected] [2011-08-27]
FF Extension: Free software Gooofull toolbar - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{181F4BBC-2453-40D2-B42C-3135E3B07C7B} [2011-11-26]
FF Extension: StartNow Toolbar - C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F} [2011-08-28]
FF Plugin-x32: @oberon-media.com/ONCAdapter - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
CHR HomePage: hxxp://search.startnow.com/s/?src=startpage&provider=&provider_name=startnow&provider_code=&partner_id=999&product_id=10&affiliate_id=&channel=&toolbar_id=&toolbar_version=&install_country=&install_date=&user_guid=1278D169D8D5474F812EEA14BCD336E0&machine_id=8d089b94925f5ababd02e279192e6bb1&browser=IE&os=win&os_version=6.1-x64-SP0&iesrc={referrer:source}
CHR DefaultSearchKeyword: startnow.com
CHR DefaultSearchProvider: StartNow
CHR DefaultSearchURL: http://search.startn...ion=6.1-x64-SP0
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll No File
CHR Plugin: (Oberon com adapter) - C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
R1 kl1; C:\Windows\System32\DRIVERS\kl1.sys [157712 2009-09-01] (Kaspersky Lab)
C:\Windows\System32\DRIVERS\kl1.sys
:\Users\Vincia M. Blaise\AppData\Local\StartNow
Task: {82AAF373-3ED9-4851-9998-E66940F7F709} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe <==== ATTENTION
c:\Program Files (x86)\Ask.com
*****************

'HKU\.DEFAULT\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}' => Key deleted successfully.
"C:\Windows\system32\config\systemprofile\AppData\Local\{faf5218a-a1d6-8c98-7400-f64c2191f96b}" => File/Directory not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Restore => value deleted successfully.
'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{739BD4B5-CD29-4D80-81AC-B65CD917235A}' => Key deleted successfully.
'HKCR\CLSID\{739BD4B5-CD29-4D80-81AC-B65CD917235A}'=> Key not found.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{739BD4B5-CD29-4D80-81AC-B65CD917235A}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{739BD4B5-CD29-4D80-81AC-B65CD917235A}'=> Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-1111-472f-A0FF-E1416B8B2E3B}' => Key deleted successfully.
'HKCR\CLSID\{0633EE93-1111-472f-A0FF-E1416B8B2E3B}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{36377DD7-B3EB-42f5-986F-680BAF59BA9D}' => Key deleted successfully.
'HKCR\CLSID\{36377DD7-B3EB-42f5-986F-680BAF59BA9D}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{739BD4B5-CD29-4D80-81AC-B65CD917235A}' => Key deleted successfully.
'HKCR\CLSID\{739BD4B5-CD29-4D80-81AC-B65CD917235A}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9DC71DDF-6D47-4870-ADED-ED537B875071}' => Key deleted successfully.
'HKCR\CLSID\{9DC71DDF-6D47-4870-ADED-ED537B875071}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ABD93EAF-D775-BC54-E63B-2804F22FD156}' => Key deleted successfully.
'HKCR\CLSID\{ABD93EAF-D775-BC54-E63B-2804F22FD156}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E163AE6E-254C-5FF4-BE33-4CBD31D63F5C}' => Key deleted successfully.
'HKCR\CLSID\{E163AE6E-254C-5FF4-BE33-4CBD31D63F5C}'=> Key not found.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13D095-45C3-4271-9475-F3B48227DD9F}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}' => Key deleted successfully.
"C:\Program Files (x86)\StartNow Toolbar" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{6F282B65-56BF-4BD1-A8B2-A4449A05863D} => value deleted successfully.
'HKCR\Wow6432Node\CLSID\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}' => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{5911488E-9D1E-40ec-8CBB-06B231CC153F} => value deleted successfully.
'HKCR\Wow6432Node\CLSID\{5911488E-9D1E-40ec-8CBB-06B231CC153F}' => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
'HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => value deleted successfully.
'HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
'HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
'HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}'=> Key not found.
C:\Program Files (x86)\GamesBar => Moved successfully.
Winsock: Catalog5 entry 000000000001\\LibraryPath  was set successfully to %SystemRoot%\system32\NLAapi.dll
Winsock: Catalog5 entry 000000000002\\LibraryPath  was set successfully to %SystemRoot%\System32\mswsock.dll
Winsock: Catalog5-x64 entry 000000000001\\LibraryPath  was set successfully to %SystemRoot%\system32\NLAapi.dll
Winsock: Catalog5-x64 entry 000000000002\\LibraryPath  was set successfully to %SystemRoot%\System32\mswsock.dll

=========  netsh winsock reset =========


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= End of CMD: =========

Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\searchplugins\startnow.xml => Moved successfully.
C:\Program Files (x86)\mozilla firefox\searchplugins\WebSearchober616003862.xml => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\[email protected] => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{181F4BBC-2453-40D2-B42C-3135E3B07C7B} => Moved successfully.
C:\Users\Vincia M. Blaise\AppData\Roaming\Mozilla\Firefox\Profiles\idulbske.default\Extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F} => Moved successfully.
'HKLM\Software\Wow6432Node\MozillaPlugins\@oberon-media.com/ONCAdapter' => Key deleted successfully.
C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll => Moved successfully.
CHR HomePage: hxxp://search.startnow.com/s/?src=startpage&provider=&provider_name=startnow&provider_code=&partner_id=999&product_id=10&affiliate_id=&channel=&toolbar_id=&toolbar_version=&install_country=&install_date=&user_guid=1278D169D8D5474F812EEA14BCD336E0&machine_id=8d089b94925f5ababd02e279192e6bb1&browser=IE&os=win&os_version=6.1-x64-SP0&iesrc={referrer:source} ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchKeyword: startnow.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchProvider: StartNow ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://search.startn...ion=6.1-x64-SP0 ==> The Chrome "Settings" can be used to fix the entry.
C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll => Moved successfully.
C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll => Moved successfully.
C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\gcswf32.dll not found.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll not found.
C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll not found.
kl1 => Unable to stop service
kl1 => Service deleted successfully.
C:\Windows\System32\DRIVERS\kl1.sys => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{82AAF373-3ED9-4851-9998-E66940F7F709}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{82AAF373-3ED9-4851-9998-E66940F7F709}' => Key deleted successfully.
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar' => Key deleted successfully.
"c:\Program Files (x86)\Ask.com" => File/Directory not found.


The system needed a reboot.

==== End of Fixlog ====


  • 0

#13
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

heres the scanner log

 

Farbar Service Scanner Version: 10-06-2014
Ran by Vincia M. Blaise (administrator) on 05-07-2014 at 14:34:58
Running from "C:\Users\Vincia M. Blaise\Desktop"
Microsoft Windows 7 Home Premium   (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================
"HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile" registry key does not exist.


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.

Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.

Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking FirewallRules of SharedAccess: ATTENTION!=====> Unable to open "SharedAccess\Defaults\FirewallPolicy\FirewallRules" registry key. The key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****


  • 0

#14
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

so I got 2 logs frm tdsskiller

 

here there are

 

15:15:33.0479 0x087c  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
15:15:42.0605 0x087c  ============================================================
15:15:42.0605 0x087c  Current date / time: 2014/07/05 15:15:42.0605
15:15:42.0605 0x087c  SystemInfo:
15:15:42.0605 0x087c  
15:15:42.0605 0x087c  OS Version: 6.1.7600 ServicePack: 0.0
15:15:42.0605 0x087c  Product type: Workstation
15:15:42.0605 0x087c  ComputerName: VINCIAMBLAISE
15:15:42.0605 0x087c  UserName: Vincia M. Blaise
15:15:42.0605 0x087c  Windows directory: C:\Windows
15:15:42.0605 0x087c  System windows directory: C:\Windows
15:15:42.0605 0x087c  Running under WOW64
15:15:42.0605 0x087c  Processor architecture: Intel x64
15:15:42.0605 0x087c  Number of processors: 2
15:15:42.0605 0x087c  Page size: 0x1000
15:15:42.0605 0x087c  Boot type: Normal boot
15:15:42.0605 0x087c  ============================================================
15:15:44.0212 0x087c  KLMD registered as C:\Windows\system32\drivers\59988237.sys
15:15:44.0477 0x087c  System UUID: {A8F5F797-42AE-0875-55D1-9A96042B8B56}
15:15:44.0852 0x087c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:15:44.0867 0x087c  Drive \Device\Harddisk1\DR2 - Size: 0x3C000000 ( 0.94 Gb ), SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:15:44.0867 0x087c  ============================================================
15:15:44.0867 0x087c  \Device\Harddisk0\DR0:
15:15:44.0867 0x087c  MBR partitions:
15:15:44.0867 0x087c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
15:15:44.0867 0x087c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x37EFB000
15:15:44.0867 0x087c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x37F5F000, BlocksNum 0x23F3000
15:15:44.0867 0x087c  \Device\Harddisk1\DR2:
15:15:44.0867 0x087c  MBR partitions:
15:15:44.0867 0x087c  \Device\Harddisk1\DR2\Partition1: MBR, Type 0x6, StartLBA 0x1B8, BlocksNum 0x1DFE48
15:15:44.0867 0x087c  ============================================================
15:15:44.0883 0x087c  C: <-> \Device\Harddisk0\DR0\Partition2
15:15:44.0930 0x087c  D: <-> \Device\Harddisk0\DR0\Partition3
15:15:44.0930 0x087c  ============================================================
15:15:44.0930 0x087c  Initialize success
15:15:44.0930 0x087c  ============================================================
15:17:36.0807 0x106c  KLMD registered as C:\Windows\system32\drivers\30300505.sys
15:17:38.0055 0x106c  Deinitialize success
 


  • 0

#15
tics

tics

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts

heres the other log

 

15:19:02.0457 0x0a44  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
15:19:04.0470 0x0a44  ============================================================
15:19:04.0470 0x0a44  Current date / time: 2014/07/05 15:19:04.0470
15:19:04.0470 0x0a44  SystemInfo:
15:19:04.0470 0x0a44  
15:19:04.0470 0x0a44  OS Version: 6.1.7600 ServicePack: 0.0
15:19:04.0470 0x0a44  Product type: Workstation
15:19:04.0470 0x0a44  ComputerName: VINCIAMBLAISE
15:19:04.0470 0x0a44  UserName: Vincia M. Blaise
15:19:04.0470 0x0a44  Windows directory: C:\Windows
15:19:04.0470 0x0a44  System windows directory: C:\Windows
15:19:04.0470 0x0a44  Running under WOW64
15:19:04.0470 0x0a44  Processor architecture: Intel x64
15:19:04.0470 0x0a44  Number of processors: 2
15:19:04.0470 0x0a44  Page size: 0x1000
15:19:04.0470 0x0a44  Boot type: Normal boot
15:19:04.0470 0x0a44  ============================================================
15:19:04.0470 0x0a44  BG loaded
15:19:06.0529 0x0a44  System UUID: {A8F5F797-42AE-0875-55D1-9A96042B8B56}
15:19:07.0590 0x0a44  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:19:07.0621 0x0a44  Drive \Device\Harddisk1\DR1 - Size: 0x3C000000 ( 0.94 Gb ), SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:19:07.0621 0x0a44  ============================================================
15:19:07.0621 0x0a44  \Device\Harddisk0\DR0:
15:19:07.0652 0x0a44  MBR partitions:
15:19:07.0652 0x0a44  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
15:19:07.0652 0x0a44  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x37EFB000
15:19:07.0652 0x0a44  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x37F5F000, BlocksNum 0x23F3000
15:19:07.0652 0x0a44  \Device\Harddisk1\DR1:
15:19:07.0652 0x0a44  MBR partitions:
15:19:07.0652 0x0a44  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x1B8, BlocksNum 0x1DFE48
15:19:07.0668 0x0a44  ============================================================
15:19:07.0870 0x0a44  C: <-> \Device\Harddisk0\DR0\Partition2
15:19:09.0448 0x0a44  D: <-> \Device\Harddisk0\DR0\Partition3
15:19:09.0448 0x0a44  ============================================================
15:19:09.0448 0x0a44  Initialize success
15:19:09.0448 0x0a44  ============================================================
15:19:56.0022 0x0d38  ============================================================
15:19:56.0022 0x0d38  Scan started
15:19:56.0022 0x0d38  Mode: Manual; SigCheck; TDLFS;
15:19:56.0022 0x0d38  ============================================================
15:19:56.0022 0x0d38  KSN ping started
15:20:31.0293 0x0d38  KSN ping finished: false
15:20:41.0543 0x0d38  ================ Scan system memory ========================
15:20:41.0543 0x0d38  System memory - ok
15:20:41.0543 0x0d38  ================ Scan services =============================
15:20:41.0777 0x0d38  [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
15:20:41.0948 0x0d38  1394ohci - ok
15:20:41.0979 0x0d38  [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
15:20:41.0995 0x0d38  Accelerometer - ok
15:20:42.0026 0x0d38  [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
15:20:42.0057 0x0d38  ACPI - ok
15:20:42.0073 0x0d38  [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
15:20:42.0167 0x0d38  AcpiPmi - ok
15:20:42.0401 0x0d38  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:20:42.0432 0x0d38  AdobeFlashPlayerUpdateSvc - ok
15:20:42.0494 0x0d38  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:20:42.0525 0x0d38  adp94xx - ok
15:20:42.0557 0x0d38  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:20:42.0572 0x0d38  adpahci - ok
15:20:42.0603 0x0d38  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:20:42.0619 0x0d38  adpu320 - ok
15:20:42.0650 0x0d38  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:20:42.0822 0x0d38  AeLookupSvc - ok
15:20:42.0978 0x0d38  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe
15:20:43.0040 0x0d38  AESTFilters - ok
15:20:43.0118 0x0d38  [ DB9D6C6B2CD95A9CA414D045B627422E, A4A0B2ACBFE311C20EF9F06A49DBE02CE90433C2364B292F6E8F78F6C274DF88 ] AFD             C:\Windows\system32\drivers\afd.sys
15:20:43.0196 0x0d38  AFD - ok
15:20:43.0274 0x0d38  [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
15:20:43.0383 0x0d38  AgereSoftModem - ok
15:20:43.0415 0x0d38  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
15:20:43.0430 0x0d38  agp440 - ok
15:20:43.0461 0x0d38  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:20:43.0586 0x0d38  ALG - ok
15:20:43.0617 0x0d38  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
15:20:43.0649 0x0d38  aliide - ok
15:20:43.0695 0x0d38  [ BCC32BF5EBB5DFD4380FA053D3651949, 72799B17EFB11836FEA241AD844C8D5EEF62656084CE89077DAF8FC30706A019 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:20:43.0773 0x0d38  AMD External Events Utility - ok
15:20:43.0789 0x0d38  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
15:20:43.0805 0x0d38  amdide - ok
15:20:43.0867 0x0d38  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:20:43.0929 0x0d38  AmdK8 - ok
15:20:43.0961 0x0d38  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:20:44.0007 0x0d38  AmdPPM - ok
15:20:44.0054 0x0d38  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9, 786B30C86FA7FEC6BA2569FF818044AA0F7C134693304ED0FF7BD0541F9A755F ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:20:44.0070 0x0d38  amdsata - ok
15:20:44.0117 0x0d38  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:20:44.0148 0x0d38  amdsbs - ok
15:20:44.0179 0x0d38  [ DB27766102C7BF7E95140A2AA81D042E, 489F812B596EA06E53D891CD05047AA17CDF752854BBD553BA65D10799AF78DF ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:20:44.0195 0x0d38  amdxata - ok
15:20:44.0226 0x0d38  [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID           C:\Windows\system32\drivers\appid.sys
15:20:44.0319 0x0d38  AppID - ok
15:20:44.0351 0x0d38  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:20:44.0429 0x0d38  AppIDSvc - ok
15:20:44.0475 0x0d38  [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo         C:\Windows\System32\appinfo.dll
15:20:44.0538 0x0d38  Appinfo - ok
15:20:44.0725 0x0d38  [ 7EF47644B74EBE721CC32211D3C35E76, 1381908E70567AAE5A8C96C4B7BF8E68748F64DE3243FD0FA8CC0E72DEEDA9A7 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:20:44.0772 0x0d38  Apple Mobile Device - ok
15:20:44.0803 0x0d38  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:20:44.0819 0x0d38  arc - ok
15:20:44.0834 0x0d38  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:20:44.0850 0x0d38  arcsas - ok
15:20:44.0881 0x0d38  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:20:44.0959 0x0d38  AsyncMac - ok
15:20:44.0990 0x0d38  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
15:20:45.0006 0x0d38  atapi - ok
15:20:45.0131 0x0d38  [ F8633CDD09647A64EE8DB550630427FF, 565F32E6B1E8451B2DD866E4997336A47B8DC6669392BDAAF252C35C0383E8A3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
15:20:45.0193 0x0d38  athr - ok
15:20:45.0255 0x0d38  [ 3B9014FB7CE9E20FD726321C7DB7D8B0, 9B910D900478A81D52446C6D71C3DDC4B5FE1345674295E1101922B0F32FBCE1 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
15:20:45.0271 0x0d38  AtiHdmiService - ok
15:20:45.0973 0x0d38  [ A29087680A1C3B049E3C05438E8FF2B8, 8895C480DE55078A0B0BDF105A745940E02A8A7545EA5EE84FB675634620AD89 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:20:46.0191 0x0d38  atikmdag - ok
15:20:46.0238 0x0d38  [ 7C5D273E29DCC5505469B299C6F29163, 206CAB85CE12A3953F0861C811575DC7FD000147436219EEE334584A33370B3A ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
15:20:46.0285 0x0d38  AtiPcie - ok
15:20:46.0332 0x0d38  [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:20:46.0410 0x0d38  AudioEndpointBuilder - ok
15:20:46.0425 0x0d38  [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:20:46.0488 0x0d38  AudioSrv - ok
15:20:46.0535 0x0d38  [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:20:46.0659 0x0d38  AxInstSV - ok
15:20:46.0769 0x0d38  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:20:46.0878 0x0d38  b06bdrv - ok
15:20:46.0925 0x0d38  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:20:47.0049 0x0d38  b57nd60a - ok
15:20:47.0159 0x0d38  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:20:47.0237 0x0d38  BDESVC - ok
15:20:47.0283 0x0d38  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:20:47.0315 0x0d38  Beep - ok
15:20:47.0361 0x0d38  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:20:47.0424 0x0d38  blbdrive - ok
15:20:47.0533 0x0d38  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:20:47.0549 0x0d38  Bonjour Service - ok
15:20:47.0595 0x0d38  [ 19D20159708E152267E53B66677A4995, 6401FA5C3EFF26BED075FEC68F868CD8D0598FDB45EA9381810615F7252F7A9A ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:20:47.0689 0x0d38  bowser - ok
15:20:47.0736 0x0d38  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:20:47.0845 0x0d38  BrFiltLo - ok
15:20:47.0876 0x0d38  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:20:47.0954 0x0d38  BrFiltUp - ok
15:20:48.0017 0x0d38  [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] Browser         C:\Windows\System32\browser.dll
15:20:48.0110 0x0d38  Browser - ok
15:20:48.0235 0x0d38  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:20:48.0282 0x0d38  Brserid - ok
15:20:48.0313 0x0d38  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:20:48.0375 0x0d38  BrSerWdm - ok
15:20:48.0407 0x0d38  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:20:48.0438 0x0d38  BrUsbMdm - ok
15:20:48.0469 0x0d38  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:20:48.0500 0x0d38  BrUsbSer - ok
15:20:48.0563 0x0d38  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:20:48.0641 0x0d38  BTHMODEM - ok
15:20:48.0672 0x0d38  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:20:48.0734 0x0d38  bthserv - ok
15:20:48.0765 0x0d38  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:20:48.0828 0x0d38  cdfs - ok
15:20:48.0859 0x0d38  [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:20:48.0921 0x0d38  cdrom - ok
15:20:48.0984 0x0d38  [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:20:49.0062 0x0d38  CertPropSvc - ok
15:20:49.0124 0x0d38  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:20:49.0187 0x0d38  circlass - ok
15:20:49.0233 0x0d38  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
15:20:49.0249 0x0d38  CLFS - ok
15:20:49.0452 0x0d38  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:20:49.0561 0x0d38  clr_optimization_v2.0.50727_32 - ok
15:20:49.0686 0x0d38  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:20:49.0717 0x0d38  clr_optimization_v2.0.50727_64 - ok
15:20:49.0826 0x0d38  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:20:49.0873 0x0d38  clr_optimization_v4.0.30319_32 - ok
15:20:49.0967 0x0d38  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:20:49.0998 0x0d38  clr_optimization_v4.0.30319_64 - ok
15:20:50.0045 0x0d38  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:20:50.0076 0x0d38  CmBatt - ok
15:20:50.0091 0x0d38  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
15:20:50.0107 0x0d38  cmdide - ok
15:20:50.0201 0x0d38  [ CA7720B73446FDDEC5C69519C1174C98, F24796765587CC1D653A04783B1659564F42E600DA3AFA3DED724592B291D033 ] CNG             C:\Windows\system32\Drivers\cng.sys
15:20:50.0232 0x0d38  CNG - ok
15:20:50.0357 0x0d38  [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx       C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
15:20:50.0388 0x0d38  Com4QLBEx - ok
15:20:50.0419 0x0d38  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:20:50.0419 0x0d38  Compbatt - ok
15:20:50.0450 0x0d38  [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:20:50.0481 0x0d38  CompositeBus - ok
15:20:50.0513 0x0d38  COMSysApp - ok
15:20:50.0528 0x0d38  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:20:50.0544 0x0d38  crcdisk - ok
15:20:50.0591 0x0d38  [ F02786B66375292E58C8777082D4396D, EE7BCD10C014A16A06619EFD47226FAA1460A67CD7687EA8C38D63C71DBCD51B ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:20:50.0669 0x0d38  CryptSvc - ok
15:20:50.0700 0x0d38  [ 44BDDEB03C84A1C993C992FFB5700357, 29080E9A434BB2A932783B0B5104BC9E3C514A0FFB387123B75F4F4045E353BC ] CVirtA          C:\Windows\system32\DRIVERS\CVirtA64.sys
15:20:50.0731 0x0d38  CVirtA - ok
15:20:51.0043 0x0d38  [ 66257CB4E4FB69887CDDC71663741435, A072C2868EC3CB773F1C512C9E07D152920794969E302199E8265CFFFD3EFC2D ] CVPND           C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
15:20:51.0090 0x0d38  CVPND - ok
15:20:51.0137 0x0d38  [ CC8E52DAA9826064BA464DBE531F2BB5, 28150B5DDB4DB42839EBB4F3672EB575373046B1676938111904290DFF6DEC8E ] CVPNDRVA        C:\Windows\system32\Drivers\CVPNDRVA.sys
15:20:51.0152 0x0d38  CVPNDRVA - ok
15:20:51.0183 0x0d38  [ 76E02DB615A03801D698199A2BC4A06A, 402A8DE76D2181E2E5E10116284EDB2B5793BE33A417261F4B56B2851F34FA15 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
15:20:51.0199 0x0d38  dc3d - ok
15:20:51.0277 0x0d38  [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:20:51.0355 0x0d38  DcomLaunch - ok
15:20:51.0402 0x0d38  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:20:51.0449 0x0d38  defragsvc - ok
15:20:51.0527 0x0d38  [ 9C253CE7311CA60FC11C774692A13208, 23507138576DB75AA8B7415140F7B5D8A90CB2661796223870461C721A36AEBF ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:20:51.0605 0x0d38  DfsC - ok
15:20:51.0667 0x0d38  [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:20:51.0761 0x0d38  Dhcp - ok
15:20:51.0776 0x0d38  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:20:51.0854 0x0d38  discache - ok
15:20:51.0901 0x0d38  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:20:51.0917 0x0d38  Disk - ok
15:20:51.0979 0x0d38  [ 05CB5910B3CA6019FC3CCA815EE06FFB, 8FA532ED500BB1F08E8034A6125BDD53B74D5E6AB0A83A6185B07AAFCD90AA82 ] DNE             C:\Windows\system32\DRIVERS\dne64x.sys
15:20:51.0979 0x0d38  DNE - ok
15:20:52.0041 0x0d38  [ 85CF424C74A1D5EC33533E1DBFF9920A, 882D5FA0D5EC053D76A0C46A6047A621D607651693CF94E5506219EECCC8D079 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:20:52.0073 0x0d38  Dnscache - ok
15:20:52.0135 0x0d38  [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:20:52.0197 0x0d38  dot3svc - ok
15:20:52.0260 0x0d38  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
15:20:52.0322 0x0d38  Dot4 - ok
15:20:52.0400 0x0d38  [ 85135AD27E79B689335C08167D917CDE, B023ABF4CC71862AE107B27D3CD698517074A97FA76A8AE18058ACF39AC1E786 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:20:52.0463 0x0d38  Dot4Print - ok
15:20:52.0478 0x0d38  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
15:20:52.0541 0x0d38  dot4usb - ok
15:20:52.0665 0x0d38  [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS             C:\Windows\system32\dps.dll
15:20:52.0743 0x0d38  DPS - ok
15:20:52.0775 0x0d38  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:20:52.0821 0x0d38  drmkaud - ok
15:20:52.0962 0x0d38  [ 1633B9ABF52784A1331476397A48CBEF, 697780697C4C55FCCF5FB65C93FB37B3F5A43BF0C59FDBB9EF822D0E993E47BD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:20:52.0993 0x0d38  DXGKrnl - ok
15:20:53.0055 0x0d38  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:20:53.0118 0x0d38  EapHost - ok
15:20:53.0367 0x0d38  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:20:53.0555 0x0d38  ebdrv - ok
15:20:53.0617 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] EFS             C:\Windows\System32\lsass.exe
15:20:53.0695 0x0d38  EFS - ok
15:20:53.0820 0x0d38  [ 47C071994C3F649F23D9CD075AC9304A, B7AA2DD6AD14F18A19620F5FB79D50C630D3750E72DD67BF8D105CC4F5CE1D46 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:20:53.0898 0x0d38  ehRecvr - ok
15:20:53.0945 0x0d38  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:20:53.0976 0x0d38  ehSched - ok
15:20:54.0023 0x0d38  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:20:54.0054 0x0d38  elxstor - ok
15:20:54.0101 0x0d38  [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
15:20:54.0210 0x0d38  enecir - ok
15:20:54.0241 0x0d38  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
15:20:54.0272 0x0d38  ErrDev - ok
15:20:54.0351 0x0d38  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:20:54.0414 0x0d38  EventSystem - ok
15:20:54.0507 0x0d38  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:20:54.0616 0x0d38  exfat - ok
15:20:54.0663 0x0d38  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:20:54.0694 0x0d38  fastfat - ok
15:20:54.0850 0x0d38  [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax             C:\Windows\system32\fxssvc.exe
15:20:54.0928 0x0d38  Fax - ok
15:20:54.0944 0x0d38  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:20:54.0991 0x0d38  fdc - ok
15:20:55.0022 0x0d38  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:20:55.0053 0x0d38  fdPHost - ok
15:20:55.0084 0x0d38  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:20:55.0178 0x0d38  FDResPub - ok
15:20:55.0240 0x0d38  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:20:55.0272 0x0d38  FileInfo - ok
15:20:55.0287 0x0d38  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:20:55.0334 0x0d38  Filetrace - ok
15:20:55.0365 0x0d38  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:20:55.0412 0x0d38  flpydisk - ok
15:20:55.0459 0x0d38  [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:20:55.0474 0x0d38  FltMgr - ok
15:20:55.0662 0x0d38  [ CB5E4B9C319E3C6BB363EB7E58A4A051, C9DCF2C2A6AFE0A0F3E23A265843D0C423C08B2E54702C5B389CF293D9A6BAC5 ] FontCache       C:\Windows\system32\FntCache.dll
15:20:55.0755 0x0d38  FontCache - ok
15:20:55.0818 0x0d38  [ 8D89E3131C27FDD6932189CB785E1B7A, AC7DA4C5E6D2E41D1A1DE146E46F034FAF0FB11AD801F070F2D5CD08166E9EB7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:20:55.0833 0x0d38  FontCache3.0.0.0 - ok
15:20:55.0849 0x0d38  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:20:55.0864 0x0d38  FsDepends - ok
15:20:55.0911 0x0d38  [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
15:20:55.0942 0x0d38  fssfltr - ok
15:20:56.0067 0x0d38  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:20:56.0130 0x0d38  fsssvc - ok
15:20:56.0176 0x0d38  [ D3E3F93D67821A2DB2B3D9FAC2DC2064, 727FAA7E15A20ED3A37668D294ABDE6EAF1C87C34EE283C99EE3303E85001404 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:20:56.0208 0x0d38  Fs_Rec - ok
15:20:56.0239 0x0d38  [ AE87BA80D0EC3B57126ED2CDC15B24ED, 7E0EA3CDB78054D9A4E3B5142305943F2914536D80B8FC363414C8838D51D56C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:20:56.0270 0x0d38  fvevol - ok
15:20:56.0301 0x0d38  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:20:56.0301 0x0d38  gagp30kx - ok
15:20:56.0380 0x0d38  [ 551D463E4CCEB5240234DA6718C93A44, 37CE7DFD392A1899FDB1B36163D34E9C005344EABDF7397BEA81447B9F7262D1 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
15:20:56.0411 0x0d38  GameConsoleService - ok
15:20:56.0458 0x0d38  [ E403AACF8C7BB11375122D2464560311, 0427B8FFD999D256EA1A5135F218692959A7577CB32354D3087CF0FB4F0577DF ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:20:56.0474 0x0d38  GEARAspiWDM - ok
15:20:56.0536 0x0d38  [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:20:56.0599 0x0d38  gpsvc - ok
15:20:56.0692 0x0d38  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:20:56.0723 0x0d38  gupdate - ok
15:20:56.0755 0x0d38  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:20:56.0770 0x0d38  gupdatem - ok
15:20:56.0801 0x0d38  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:20:56.0864 0x0d38  hcw85cir - ok
15:20:56.0926 0x0d38  [ 6410F6F415B2A5A9037224C41DA8BF12, 5B8452BC49FDA2215281D27B22FA9BE46B0460F51C4DC70E58B687CFB541F3A5 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:20:56.0989 0x0d38  HdAudAddService - ok
15:20:57.0020 0x0d38  [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:20:57.0067 0x0d38  HDAudBus - ok
15:20:57.0082 0x0d38  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:20:57.0113 0x0d38  HidBatt - ok
15:20:57.0160 0x0d38  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:20:57.0207 0x0d38  HidBth - ok
15:20:57.0238 0x0d38  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:20:57.0301 0x0d38  HidIr - ok
15:20:57.0316 0x0d38  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
15:20:57.0379 0x0d38  hidserv - ok
15:20:57.0425 0x0d38  [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:20:57.0488 0x0d38  HidUsb - ok
15:20:57.0519 0x0d38  [ EFA58EDE58DD74388FFD04CB32681518, 76D81F9BC1A4D85A779B79DEC23B79F1568AA236CD49247414093CDC1FCC150F ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:20:57.0628 0x0d38  hkmsvc - ok
15:20:57.0644 0x0d38  [ 046B2673767CA626E2CFB7FDF735E9E8, 9C932DCC5DE9B1919AB38C01D76AD7BBAF491DE6D158662407974748BC0B4C6C ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:20:57.0706 0x0d38  HomeGroupListener - ok
15:20:57.0737 0x0d38  [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:20:57.0753 0x0d38  HomeGroupProvider - ok
15:20:57.0831 0x0d38  [ 13BB1114451C63BFB41BA7DAA4D70A29, A07D27DCD1D5F333973DDF7E91BF902307088C48696EE1D1970A0152A507231B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
15:20:57.0862 0x0d38  HP Support Assistant Service - ok
15:20:57.0925 0x0d38  [ BCC4A8B2E2E902F52E7F2E7D8E125765, 4253DEABF5E4613E42BFC921BF4E2DD5BDF80A640250F41BDA7DD2711A6BA8A1 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
15:20:57.0940 0x0d38  HPDrvMntSvc.exe - ok
15:20:57.0956 0x0d38  [ 05712FDDBD45A5864EB326FAABC6A4E3, 8BACA990971A331E6EC7F896EF2404F09E381DAA3519FC6E3027C0DBD991BA7F ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
15:20:57.0971 0x0d38  hpdskflt - ok
15:20:58.0112 0x0d38  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05, 7B3F117C1D606DDA7623BEC0BFBC362C33A12213E899F049AC56A55826984134 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
15:20:58.0143 0x0d38  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
15:20:58.0221 0x0d38  hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
15:20:58.0252 0x0d38  [ F3F72A2A86C22610BCA5439FA789DD52, DA5A8F09DCC512AA1558863AD4FAC12F72DD83CA8FB4D8D9831E4AFBB6B3C616 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
15:20:58.0393 0x0d38  hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
15:20:58.0393 0x0d38  hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
15:20:58.0393 0x0d38  Force sending object to P2P due to detect: hpqddsvc
15:20:58.0393 0x0d38  Object send P2P result: false
15:20:58.0471 0x0d38  [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
15:20:58.0517 0x0d38  HpqKbFiltr - ok
15:20:58.0627 0x0d38  [ EC9739A46F1F83C6E52A7A4697F44A65, CF4E93D3E8CA607DDEF87C6996F6C7326316144A61C1B4F83EA1B4B2F9BDC69B ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
15:20:58.0673 0x0d38  hpqwmiex - ok
15:20:58.0736 0x0d38  [ 0886D440058F203EBA0E1825E4355914, BC49C4CEFE324A08C864A4BF4FEA9A70151FAB7CC30BDC28344F3FFD2F500070 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
15:20:58.0767 0x0d38  HpSAMD - ok
15:20:58.0861 0x0d38  [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
15:20:58.0907 0x0d38  HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
15:20:58.0907 0x0d38  HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
15:20:58.0939 0x0d38  [ AA036CC5F5221D9B915F4D4DCE74BA9A, B90B9F7753B45387AD56A7CE1365BEBC9EB67011B6D2F8C785717942133775AA ] hpsrv           C:\Windows\system32\Hpservice.exe
15:20:58.0954 0x0d38  hpsrv - ok
15:20:59.0017 0x0d38  [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:20:59.0095 0x0d38  HTTP - ok
15:20:59.0110 0x0d38  [ F17766A19145F111856378DF337A5D79, FC1633FB865A5324EBCBE5F97D297B899FABBDD965D862C2EFC743CD36F47E62 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:20:59.0126 0x0d38  hwpolicy - ok
15:20:59.0188 0x0d38  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
15:20:59.0204 0x0d38  i8042prt - ok
15:20:59.0391 0x0d38  [ B75E45C564E944A2657167D197AB29DA, 622EA73F4D9CAE17628C18148FB241817A0AE6D80A74B099204ED27C1A750B24 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:20:59.0422 0x0d38  iaStorV - ok
15:20:59.0734 0x0d38  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:20:59.0812 0x0d38  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
15:20:59.0812 0x0d38  IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:20:59.0921 0x0d38  [ 2F2BE70D3E02B6FA877921AB9516D43C, E04255EE4BD95FC1539EB1EB9F702B039F65993D31A4531DA487274543EF5226 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:20:59.0999 0x0d38  idsvc - ok
15:21:00.0608 0x0d38  [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:21:01.0029 0x0d38  igfx - ok
15:21:01.0060 0x0d38  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:21:01.0076 0x0d38  iirsp - ok
15:21:01.0263 0x0d38  [ C5B4683680DF085B57BC53E5EF34861F, 9C06517DFCB3ED7BB1166F7EB6CCC8713E6B68283C75420C0EDC182094AA1B8F ] IKEEXT          C:\Windows\System32\ikeext.dll
15:21:01.0372 0x0d38  IKEEXT - ok
15:21:01.0419 0x0d38  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
15:21:01.0450 0x0d38  intelide - ok
15:21:01.0513 0x0d38  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:21:01.0575 0x0d38  intelppm - ok
15:21:01.0637 0x0d38  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:21:01.0684 0x0d38  IPBusEnum - ok
15:21:01.0762 0x0d38  [ 722DD294DF62483CECAAE6E094B4D695, 41ABB42EF969EA8A84B546908EBBDC2411D964DE101CE6DD3D7ECF109085E0C0 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:21:01.0856 0x0d38  IpFilterDriver - ok
15:21:01.0887 0x0d38  [ E2B4A4494DB7CB9B89B55CA268C337C5, C59BC4AA03D10647641EC7533F78BC7E2EA6FC48B8B2CF1A49B5148EF40A90FB ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:21:01.0918 0x0d38  IPMIDRV - ok
15:21:02.0012 0x0d38  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:21:02.0105 0x0d38  IPNAT - ok
15:21:02.0324 0x0d38  [ 50D6CCC6FF5561F9F56946B3E6164FB8, 27529E751D3CB13B651B54474F04A17DF5737AD0170CD41F601E779F90603D11 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:21:02.0355 0x0d38  iPod Service - ok
15:21:02.0417 0x0d38  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:21:02.0464 0x0d38  IRENUM - ok
15:21:02.0480 0x0d38  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
15:21:02.0495 0x0d38  isapnp - ok
15:21:02.0527 0x0d38  [ FA4D2557DE56D45B0A346F93564BE6E1, 2827EC3582FF59FFD55BBD4A4F0DDFFEAD4F2537FA043B3A69904FE920B1619C ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
15:21:02.0558 0x0d38  iScsiPrt - ok
15:21:02.0589 0x0d38  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:21:02.0605 0x0d38  kbdclass - ok
15:21:02.0620 0x0d38  [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:21:02.0651 0x0d38  kbdhid - ok
15:21:02.0683 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] KeyIso          C:\Windows\system32\lsass.exe
15:21:02.0698 0x0d38  KeyIso - ok
15:21:02.0729 0x0d38  [ 4F4B5FDE429416877DE7143044582EB5, A28FFEA078DBD91F3CC28088810EEEB727107B3F0F48370B44D87DC8F8C55B99 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:21:02.0761 0x0d38  KSecDD - ok
15:21:02.0792 0x0d38  [ 6F40465A44ECDC1731BEFAFEC5BDD03C, 317334D414D0AF73CB4D9CA11EA80C641E786760B8800F2795D0CB38378DBB80 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:21:02.0823 0x0d38  KSecPkg - ok
15:21:02.0870 0x0d38  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:21:02.0963 0x0d38  ksthunk - ok
15:21:03.0057 0x0d38  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:21:03.0166 0x0d38  KtmRm - ok
15:21:03.0260 0x0d38  [ 81F1D04D4D0E433099365127375FD501, C2A81B5A482C974E8108806486EC28CB2D81400D42639682FE7B7A9BDF14BA9B ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:21:03.0353 0x0d38  LanmanServer - ok
15:21:03.0400 0x0d38  [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:21:03.0463 0x0d38  LanmanWorkstation - ok
15:21:03.0634 0x0d38  [ 2238B91AC1A12CC6CC4C4FED41258B2A, 11DEBFAC8D6B23415928C635981E3378DE7C1F361F2B7A1390D86B0D782C22C6 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
15:21:03.0650 0x0d38  LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
15:21:03.0665 0x0d38  LightScribeService ( UnsignedFile.Multi.Generic ) - warning
15:21:03.0665 0x0d38  Force sending object to P2P due to detect: LightScribeService
15:21:03.0665 0x0d38  Object send P2P result: false
15:21:03.0728 0x0d38  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:21:03.0806 0x0d38  lltdio - ok
15:21:03.0899 0x0d38  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:21:03.0993 0x0d38  lltdsvc - ok
15:21:04.0024 0x0d38  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:21:04.0055 0x0d38  lmhosts - ok
15:21:04.0102 0x0d38  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:21:04.0118 0x0d38  LSI_FC - ok
15:21:04.0165 0x0d38  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:21:04.0211 0x0d38  LSI_SAS - ok
15:21:04.0274 0x0d38  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:21:04.0289 0x0d38  LSI_SAS2 - ok
15:21:04.0321 0x0d38  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:21:04.0352 0x0d38  LSI_SCSI - ok
15:21:04.0399 0x0d38  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:21:04.0461 0x0d38  luafv - ok
15:21:04.0492 0x0d38  [ F84C8F1000BC11E3B7B23CBD3BAFF111, BB4C4FFE3F6C9E5C16C06F6F666F177B94E1CF878397BCC0BDAF6EB3341AAED8 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:21:04.0555 0x0d38  Mcx2Svc - ok
15:21:04.0586 0x0d38  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:21:04.0601 0x0d38  megasas - ok
15:21:04.0633 0x0d38  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:21:04.0664 0x0d38  MegaSR - ok
15:21:04.0742 0x0d38  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
15:21:04.0773 0x0d38  Microsoft Office Groove Audit Service - ok
15:21:04.0804 0x0d38  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:21:04.0867 0x0d38  MMCSS - ok
15:21:04.0913 0x0d38  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:21:05.0007 0x0d38  Modem - ok
15:21:05.0054 0x0d38  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:21:05.0116 0x0d38  monitor - ok
15:21:05.0147 0x0d38  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:21:05.0163 0x0d38  mouclass - ok
15:21:05.0179 0x0d38  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:21:05.0210 0x0d38  mouhid - ok
15:21:05.0241 0x0d38  [ 791AF66C4D0E7C90A3646066386FB571, BF67643099494AEADDDC85E4D97AFF1017806A1DF554F9BE6C864FFECC9EAF42 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:21:05.0257 0x0d38  mountmgr - ok
15:21:05.0335 0x0d38  [ CB8AF049AC9BE419A77ADAE288673359, 57C27A81C09BBEE532D5907D3FACE1B6CBA64D12C33E93582B45FB12DDF41748 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:21:05.0381 0x0d38  MozillaMaintenance - ok
15:21:05.0459 0x0d38  [ 609D1D87649ECC19796F4D76D4C15CEA, 5369F4C83FBAE9C4CFB9ACD36F07479E3F3FD784D79B82AE8D95B818B9F9CE00 ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
15:21:05.0537 0x0d38  mpio - ok
15:21:05.0553 0x0d38  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:21:05.0584 0x0d38  mpsdrv - ok
15:21:05.0615 0x0d38  [ 30524261BB51D96D6FCBAC20C810183C, 19598A9CD0EAAE4ACBF1069E721AB2853452F33FCFB3B5113F023A88A90BF42D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:21:05.0647 0x0d38  MRxDAV - ok
15:21:05.0693 0x0d38  [ 040D62A9D8AD28922632137ACDD984F2, D9457BDA88C2E3AA4E716C0657B77A4A3E212328CDABD5C18279B6440E1C1594 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:21:05.0756 0x0d38  mrxsmb - ok
15:21:05.0803 0x0d38  [ F0067552F8F9B33D7C59403AB808A3CB, 698B63528E1943BB4253BF7578DC128AA824C71BD04FF0521277E68B20656C02 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:21:05.0834 0x0d38  mrxsmb10 - ok
15:21:05.0849 0x0d38  [ 3C142D31DE9F2F193218A53FE2632051, 026B3A932A95D5160B64E470FC414F3D388D429317D5EAEA2D476F715C4CAE75 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:21:05.0881 0x0d38  mrxsmb20 - ok
15:21:05.0927 0x0d38  [ 5C37497276E3B3A5488B23A326A754B7, 9982FCDAFB963868EB93A4DEF811A3167488EB5246BAC3F4AE960506FDF63967 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
15:21:05.0943 0x0d38  msahci - ok
15:21:05.0959 0x0d38  [ 8D27B597229AED79430FB9DB3BCBFBD0, 3D58E08B47E8AE419D405BF263929DFA6F2F5F0C2D79FD8D6F2CED6452F6F248 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
15:21:05.0974 0x0d38  msdsm - ok
15:21:06.0021 0x0d38  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:21:06.0052 0x0d38  MSDTC - ok
15:21:06.0083 0x0d38  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:21:06.0130 0x0d38  Msfs - ok
15:21:06.0146 0x0d38  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:21:06.0177 0x0d38  mshidkmdf - ok
15:21:06.0193 0x0d38  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
15:21:06.0208 0x0d38  msisadrv - ok
15:21:06.0239 0x0d38  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:21:06.0302 0x0d38  MSiSCSI - ok
15:21:06.0302 0x0d38  msiserver - ok
15:21:06.0333 0x0d38  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:21:06.0411 0x0d38  MSKSSRV - ok
15:21:06.0427 0x0d38  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:21:06.0473 0x0d38  MSPCLOCK - ok
15:21:06.0505 0x0d38  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:21:06.0567 0x0d38  MSPQM - ok
15:21:06.0629 0x0d38  [ 89CB141AA8616D8C6A4610FA26C60964, 76E72F6A0348EDC58A8E6F88C7F024B8B077670400BD5A833811DAFCF9F517CC ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:21:06.0676 0x0d38  MsRPC - ok
15:21:06.0692 0x0d38  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:21:06.0707 0x0d38  mssmbios - ok
15:21:06.0754 0x0d38  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:21:06.0863 0x0d38  MSTEE - ok
15:21:06.0895 0x0d38  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:21:06.0926 0x0d38  MTConfig - ok
15:21:06.0957 0x0d38  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:21:06.0957 0x0d38  Mup - ok
15:21:07.0019 0x0d38  [ 4987E079A4530FA737A128BE54B63B12, 27E51CC7D4D90DC4397575491DE7EFE15808709F097E2828E46AA73C771A47A4 ] napagent        C:\Windows\system32\qagentRT.dll
15:21:07.0097 0x0d38  napagent - ok
15:21:07.0160 0x0d38  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:21:07.0222 0x0d38  NativeWifiP - ok
15:21:07.0269 0x0d38  [ CAD515DBD07D082BB317D9928CE8962C, 7AFA6D6154AC68F9FCC37B7B3324F7A170AE91035805026445F24F6EB4FB7F2E ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:21:07.0300 0x0d38  NDIS - ok
15:21:07.0347 0x0d38  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:21:07.0378 0x0d38  NdisCap - ok
15:21:07.0409 0x0d38  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:21:07.0441 0x0d38  NdisTapi - ok
15:21:07.0472 0x0d38  [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:21:07.0550 0x0d38  Ndisuio - ok
15:21:07.0597 0x0d38  [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:21:07.0659 0x0d38  NdisWan - ok
15:21:07.0659 0x0d38  [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:21:07.0721 0x0d38  NDProxy - ok
15:21:07.0815 0x0d38  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:21:07.0846 0x0d38  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:21:07.0846 0x0d38  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:21:07.0893 0x0d38  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:21:07.0955 0x0d38  NetBIOS - ok
15:21:08.0049 0x0d38  [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:21:08.0205 0x0d38  NetBT - ok
15:21:08.0221 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] Netlogon        C:\Windows\system32\lsass.exe
15:21:08.0236 0x0d38  Netlogon - ok
15:21:08.0267 0x0d38  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:21:08.0330 0x0d38  Netman - ok
15:21:08.0455 0x0d38  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:21:08.0548 0x0d38  netprofm - ok
15:21:08.0579 0x0d38  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:21:08.0595 0x0d38  NetTcpPortSharing - ok
15:21:09.0188 0x0d38  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
15:21:09.0484 0x0d38  netw5v64 - ok
15:21:09.0531 0x0d38  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:21:09.0547 0x0d38  nfrd960 - ok
15:21:09.0625 0x0d38  [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:21:09.0703 0x0d38  NlaSvc - ok
15:21:09.0734 0x0d38  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:21:09.0843 0x0d38  Npfs - ok
15:21:09.0890 0x0d38  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:21:09.0937 0x0d38  nsi - ok
15:21:09.0952 0x0d38  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:21:09.0999 0x0d38  nsiproxy - ok
15:21:10.0171 0x0d38  [ 378E0E0DFEA67D98AE6EA53ADBBD76BC, 2A78A36A729B271FE54A54E507EBC9AD9B9D764DBCB58AC3CBB8FC76D0075391 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:21:10.0233 0x0d38  Ntfs - ok
15:21:10.0295 0x0d38  [ 4C08A14D04E62963E96E0BB57BBC953B, AACBD606F31532F49C516751D934E1B3C167C99195B6E3B582CFF5F5FFB420CB ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
15:21:10.0311 0x0d38  NuidFltr - ok
15:21:10.0342 0x0d38  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:21:10.0389 0x0d38  Null - ok
15:21:10.0467 0x0d38  [ A4D9C9A608A97F59307C2F2600EDC6A4, D786F4CA2D10BAC31CE14A338C442F7027D4BB2E955AB99BC44C2F241D383BBE ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:21:10.0514 0x0d38  nvraid - ok
15:21:10.0576 0x0d38  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9, 8D5337742A0F5B04D636C163CE77D4A9B3684CF81170026912A402513B44BA77 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:21:10.0592 0x0d38  nvstor - ok
15:21:10.0623 0x0d38  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
15:21:10.0639 0x0d38  nv_agp - ok
15:21:10.0717 0x0d38  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:21:10.0779 0x0d38  odserv - ok
15:21:10.0857 0x0d38  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
15:21:10.0919 0x0d38  ohci1394 - ok
15:21:10.0982 0x0d38  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:21:10.0997 0x0d38  ose - ok
15:21:11.0029 0x0d38  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:21:11.0091 0x0d38  p2pimsvc - ok
15:21:11.0107 0x0d38  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:21:11.0153 0x0d38  p2psvc - ok
15:21:11.0185 0x0d38  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:21:11.0231 0x0d38  Parport - ok
15:21:11.0278 0x0d38  [ 90061B1ACFE8CCAA5345750FFE08D8B8, 76309683FFDF380AF9C6E1D9A52E46B011A0BF1026D747181D01F3312B7541C7 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:21:11.0294 0x0d38  partmgr - ok
15:21:11.0341 0x0d38  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:21:11.0403 0x0d38  PcaSvc - ok
15:21:11.0434 0x0d38  [ F36F6504009F2FB0DFD1B17A116AD74B, 33A4C217F7DC5E5B7E1B6CF335327C8FE6CC5D6D048D420252965574CAD83918 ] pci             C:\Windows\system32\DRIVERS\pci.sys
15:21:11.0450 0x0d38  pci - ok
15:21:11.0465 0x0d38  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
15:21:11.0481 0x0d38  pciide - ok
15:21:11.0512 0x0d38  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:21:11.0559 0x0d38  pcmcia - ok
15:21:11.0590 0x0d38  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:21:11.0606 0x0d38  pcw - ok
15:21:11.0684 0x0d38  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:21:11.0777 0x0d38  PEAUTH - ok
15:21:11.0855 0x0d38  [ BABC6AB89EB4E2027EA469723D71DE92, DCD806877EDF859002BB2202C9EDAA80DD98503197D92522498736F73EA8F02A ] PenCommService  C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe
15:21:11.0918 0x0d38  PenCommService - detected UnsignedFile.Multi.Generic ( 1 )
15:21:11.0918 0x0d38  PenCommService ( UnsignedFile.Multi.Generic ) - warning
15:21:12.0214 0x0d38  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:21:12.0277 0x0d38  PerfHost - ok
15:21:12.0355 0x0d38  [ 557E9A86F65F0DE18C9B6751DFE9D3F1, 630EE5A80335929517A22D130C75CBCE882B92978372A6F36C30B9D353C7BB07 ] pla             C:\Windows\system32\pla.dll
15:21:12.0448 0x0d38  pla - ok
15:21:12.0635 0x0d38  [ 98B1721B8718164293B9701B98C52D77, 27F5F00D4AA394D4D8D0A0062EDC3F944B603E07CAAEDC5CC959BA1E8C208C2A ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:21:12.0745 0x0d38  PlugPlay - ok
15:21:12.0823 0x0d38  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:21:12.0869 0x0d38  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:21:12.0869 0x0d38  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:21:12.0869 0x0d38  Force sending object to P2P due to detect: Pml Driver HPZ12
15:21:12.0869 0x0d38  Object send P2P result: false
15:21:12.0901 0x0d38  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:21:12.0932 0x0d38  PNRPAutoReg - ok
15:21:12.0979 0x0d38  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:21:13.0010 0x0d38  PNRPsvc - ok
15:21:13.0041 0x0d38  [ B8D8EC78B0F9ED8E220506181274F3D3, D920277EE66AAAB6D66BF328DD5A40DDD8382BF4F331EAB398069EDB842FF18E ] Point64         C:\Windows\system32\DRIVERS\point64.sys
15:21:13.0088 0x0d38  Point64 - ok
15:21:13.0197 0x0d38  [ 166EB40D1F5B47E615DE3D0FFFE5F243, E32BCCA0D25CD631C221986EBE9F6C54BF2F12DE1672D69CCC4E22AD07D0525A ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:21:13.0275 0x0d38  PolicyAgent - ok
15:21:13.0353 0x0d38  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
15:21:13.0415 0x0d38  Power - ok
15:21:13.0462 0x0d38  [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:21:13.0509 0x0d38  PptpMiniport - ok
15:21:13.0525 0x0d38  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:21:13.0571 0x0d38  Processor - ok
15:21:13.0618 0x0d38  [ 97293447431311C06703368AD0F6C4BE, 302A3CA8F6961717D95469B20A8A71954D4ECFCDF4638238D3D44AAE5A8D9B8B ] ProfSvc         C:\Windows\system32\profsvc.dll
15:21:13.0649 0x0d38  ProfSvc - ok
15:21:13.0649 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:21:13.0665 0x0d38  ProtectedStorage - ok
15:21:13.0681 0x0d38  [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:21:13.0712 0x0d38  Psched - ok
15:21:13.0743 0x0d38  [ A6A7AD767BF5141665F5C675F671B3E1, 11D43F732C3B82679E53516F83E675B60B0EFEDE3F4EE3C42AC752AD8D5155AF ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
15:21:13.0759 0x0d38  PSI_SVC_2 - ok
15:21:13.0805 0x0d38  [ EDC3CC1D029601C8DA3FF8BCFB08881F, 0CB471D5338329BC70ECADCB7067F90BC04DCAA770CCF06523836EC6717E5D11 ] PulseUsb        C:\Windows\system32\DRIVERS\PulseUsb.sys
15:21:13.0868 0x0d38  PulseUsb - ok
15:21:13.0977 0x0d38  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:21:14.0039 0x0d38  ql2300 - ok
15:21:14.0071 0x0d38  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:21:14.0086 0x0d38  ql40xx - ok
15:21:14.0117 0x0d38  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:21:14.0149 0x0d38  QWAVE - ok
15:21:14.0164 0x0d38  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:21:14.0180 0x0d38  QWAVEdrv - ok
15:21:14.0195 0x0d38  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:21:14.0242 0x0d38  RasAcd - ok
15:21:14.0273 0x0d38  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:21:14.0305 0x0d38  RasAgileVpn - ok
15:21:14.0336 0x0d38  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:21:14.0398 0x0d38  RasAuto - ok
15:21:14.0414 0x0d38  [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:21:14.0476 0x0d38  Rasl2tp - ok
15:21:14.0523 0x0d38  [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] RasMan          C:\Windows\System32\rasmans.dll
15:21:14.0585 0x0d38  RasMan - ok
15:21:14.0617 0x0d38  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:21:14.0679 0x0d38  RasPppoe - ok
15:21:14.0710 0x0d38  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:21:14.0773 0x0d38  RasSstp - ok
15:21:14.0804 0x0d38  [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:21:14.0866 0x0d38  rdbss - ok
15:21:14.0882 0x0d38  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:21:14.0929 0x0d38  rdpbus - ok
15:21:14.0960 0x0d38  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:21:14.0991 0x0d38  RDPCDD - ok
15:21:15.0007 0x0d38  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:21:15.0053 0x0d38  RDPENCDD - ok
15:21:15.0085 0x0d38  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:21:15.0147 0x0d38  RDPREFMP - ok
15:21:15.0225 0x0d38  [ 447DE7E3DEA39D422C1504F245B668B1, C54D90D2F9405E011E490D3C2F0F64488B87B969C95E367C076BBFCFD8654909 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:21:15.0319 0x0d38  RDPWD - ok
15:21:15.0334 0x0d38  [ 634B9A2181D98F15941236886164EC8B, 15C55F05FD3CD751F619F18E2ADF91552AE82146501CD031402277F496A5B7D8 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:21:15.0350 0x0d38  rdyboost - ok
15:21:15.0381 0x0d38  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:21:15.0443 0x0d38  RemoteAccess - ok
15:21:15.0506 0x0d38  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:21:15.0615 0x0d38  RemoteRegistry - ok
15:21:15.0802 0x0d38  [ 498EB62A160674E793FA40FD65390625, F7EFD480E6C95F5B6202EEB87F519A8A8187F7F26281FB3E302EDD1AD5771025 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
15:21:15.0849 0x0d38  RichVideo - ok
15:21:15.0896 0x0d38  [ 5790BCA445CC40DF8B38C2C48608AAC2, E8CC273ECF44B6638FEC7AF443745C04E03580B5C6ECFE45648F18BA2B9B89E7 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
15:21:15.0943 0x0d38  RimUsb - ok
15:21:15.0974 0x0d38  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:21:16.0021 0x0d38  RpcEptMapper - ok
15:21:16.0067 0x0d38  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:21:16.0114 0x0d38  RpcLocator - ok
15:21:16.0177 0x0d38  [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] RpcSs           C:\Windows\system32\rpcss.dll
15:21:16.0223 0x0d38  RpcSs - ok
15:21:16.0270 0x0d38  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:21:16.0348 0x0d38  rspndr - ok
15:21:16.0395 0x0d38  [ A5DF2F732A6C95554E548FCB6932BD31, C86B89CDB42F465329CAD3B601A6A006C4785F0CBF753361A7677D68D558EFC9 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
15:21:16.0411 0x0d38  RSUSBSTOR - ok
15:21:16.0442 0x0d38  [ B49DC435AE3695BAC5623DD94B05732D, D63160B09385ED31C2A479ADC5AFCA483906F38598874972025D680BDB45ECA0 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:21:16.0504 0x0d38  RTL8167 - ok
15:21:16.0520 0x0d38  RtsUIR - ok
15:21:16.0535 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] SamSs           C:\Windows\system32\lsass.exe
15:21:16.0551 0x0d38  SamSs - ok
15:21:16.0598 0x0d38  [ E3BBB89983DAF5622C1D50CF49F28227, 49370DC142D577D657BF5755AA9B8625C35D3DDAF1F9466B4888507FB8E6FF07 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
15:21:16.0629 0x0d38  sbp2port - ok
15:21:16.0660 0x0d38  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:21:16.0707 0x0d38  SCardSvr - ok
15:21:16.0723 0x0d38  [ C94DA20C7E3BA1DCA269BC8460D98387, E1A5629728A79233B62BA87B4354BC3A332A853CC36A60E77B34923F4BCA8A61 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:21:16.0801 0x0d38  scfilter - ok
15:21:16.0894 0x0d38  [ 624D0F5FF99428BB90A5B8A4123E918E, 90A43E6F09B56CB86A3E3851F8E5ABB74905AEB70296F4B87BEDBC3027E65E86 ] Schedule        C:\Windows\system32\schedsvc.dll
15:21:17.0003 0x0d38  Schedule - ok
15:21:17.0050 0x0d38  [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:21:17.0128 0x0d38  SCPolicySvc - ok
15:21:17.0175 0x0d38  [ 54E47AD086782D3AE9417C155CDCEB9B, 5143DC43B89F9143A56505FA20841AF15E7785A87F88195B08B3E09B87472A07 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
15:21:17.0206 0x0d38  sdbus - ok
15:21:17.0237 0x0d38  [ 765A27C3279CE11D14CB9E4F5869FCA5, B6C2EFFBA938828FEF7FE992A4C88B3154D053763C38762DCE13252FE9571FA1 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:21:17.0300 0x0d38  SDRSVC - ok
15:21:17.0315 0x0d38  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:21:17.0362 0x0d38  secdrv - ok
15:21:17.0393 0x0d38  [ 463B386EBC70F98DA5DFF85F7E654346, 8E27B18B04AF587719D1DAE75A042DB998E06CAE112BD68626EF046036D2DCDC ] seclogon        C:\Windows\system32\seclogon.dll
15:21:17.0471 0x0d38  seclogon - ok
15:21:17.0487 0x0d38  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
15:21:17.0534 0x0d38  SENS - ok
15:21:17.0581 0x0d38  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:21:17.0627 0x0d38  SensrSvc - ok
15:21:17.0659 0x0d38  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:21:17.0705 0x0d38  Serenum - ok
15:21:17.0737 0x0d38  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:21:17.0737 0x0d38  Serial - ok
15:21:17.0783 0x0d38  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:21:17.0815 0x0d38  sermouse - ok
15:21:17.0877 0x0d38  [ C3BC61CE47FF6F4E88AB8A3B429A36AF, 6CA53AD0CB7215BAE3467EC1FD490E3A18504BD6CD4F0FABF9BD37516AB9DFE0 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:21:17.0939 0x0d38  SessionEnv - ok
15:21:17.0955 0x0d38  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
15:21:18.0002 0x0d38  sffdisk - ok
15:21:18.0017 0x0d38  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:21:18.0049 0x0d38  sffp_mmc - ok
15:21:18.0064 0x0d38  [ 5588B8C6193EB1522490C122EB94DFFA, 53AE3597D3305F2839130A2F3567F1690564B922035503EB418B9DE1586AEA43 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
15:21:18.0080 0x0d38  sffp_sd - ok
15:21:18.0111 0x0d38  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:21:18.0127 0x0d38  sfloppy - ok
15:21:18.0173 0x0d38  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:21:18.0220 0x0d38  ShellHWDetection - ok
15:21:18.0236 0x0d38  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:21:18.0251 0x0d38  SiSRaid2 - ok
15:21:18.0251 0x0d38  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:21:18.0267 0x0d38  SiSRaid4 - ok
15:21:18.0298 0x0d38  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:21:18.0345 0x0d38  Smb - ok
15:21:18.0392 0x0d38  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:21:18.0470 0x0d38  SNMPTRAP - ok
15:21:18.0673 0x0d38  [ 4E89E366AC416634A563E9AB8491D0F7, 77459461B6DEF9BF3A9E46BD861579C08121048F9887D9C12E078F7D28D5CF01 ] SONICWALL_NetExtender C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
15:21:18.0704 0x0d38  SONICWALL_NetExtender - ok
15:21:18.0751 0x0d38  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:21:18.0751 0x0d38  spldr - ok
15:21:18.0844 0x0d38  [ F8E1FA03CB70D54A9892AC88B91D1E7B, 55EECAAD4C7EC0868BE937F4ADDA026AFDFCC614E94DE4B3248BFF2BE7FF13E8 ] Spooler         C:\Windows\System32\spoolsv.exe
15:21:18.0907 0x0d38  Spooler - ok
15:21:19.0078 0x0d38  [ 913D843498553A1BC8F8DBAD6358E49F, F8B931FDABF669D642CBDCD2FF31E07F8A5E2D5F72E11D4A8FF219CCFB5825E9 ] sppsvc          C:\Windows\system32\sppsvc.exe
15:21:19.0250 0x0d38  sppsvc - ok
15:21:19.0297 0x0d38  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:21:19.0390 0x0d38  sppuinotify - ok
15:21:19.0531 0x0d38  [ 2408C0366D96BCDF63E8F1C78E4A29C5, 66F646890695B5D80536E88B1566C8765D89CFE25954ED650F6D773EFF045016 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:21:19.0655 0x0d38  srv - ok
15:21:19.0702 0x0d38  [ 76548F7B818881B47D8D1AE1BE9C11F8, 8F1356B07A6A55746FC71B6DB0322128941AE890850196F2B19BC01E6FC9B41C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:21:19.0749 0x0d38  srv2 - ok
15:21:19.0796 0x0d38  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
15:21:19.0827 0x0d38  SrvHsfHDA - ok
15:21:19.0936 0x0d38  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
15:21:20.0045 0x0d38  SrvHsfV92 - ok
15:21:20.0092 0x0d38  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
15:21:20.0139 0x0d38  SrvHsfWinac - ok
15:21:20.0170 0x0d38  [ 0AF6E19D39C70844C5CAA8FB0183C36E, 4494EEFDEA7198888D32E74727E5BC0AC628FFA70B1FE7EB59DBEEDC1A95D0DD ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:21:20.0217 0x0d38  srvnet - ok
15:21:20.0248 0x0d38  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:21:20.0326 0x0d38  SSDPSRV - ok
15:21:20.0373 0x0d38  [ 4B8CDC023E8A7EBABFEFCD2DE67FD488, A21CA521D049859761FCCCEF6119BCECD98D530D028A5E7736FECD93BDDCA329 ] SSLDrv          C:\Windows\system32\DRIVERS\SSLDrv.sys
15:21:20.0373 0x0d38  SSLDrv - ok
15:21:20.0467 0x0d38  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:21:20.0576 0x0d38  SstpSvc - ok
15:21:20.0779 0x0d38  [ 7595D53EE8E8B0BAA9A2DDDE867EBB0C, 8EBBFA456D93E63AF9D64CC95A58651E2C1B1398B6052C0E65D3005AD5AC8CB5 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe
15:21:20.0888 0x0d38  STacSV - ok
15:21:20.0919 0x0d38  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:21:20.0919 0x0d38  stexstor - ok
15:21:20.0981 0x0d38  [ DFFBC024DFC7BB05B2129E05CBC7A201, CA07944B864D7F3DA673040CF6314FECCAF80B8EADAF648392AE79697DAC15B4 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
15:21:21.0028 0x0d38  STHDA - ok
15:21:21.0059 0x0d38  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
15:21:21.0122 0x0d38  StillCam - ok
15:21:21.0169 0x0d38  [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] stisvc          C:\Windows\System32\wiaservc.dll
15:21:21.0231 0x0d38  stisvc - ok
15:21:21.0262 0x0d38  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:21:21.0278 0x0d38  swenum - ok
15:21:21.0496 0x0d38  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:21:21.0590 0x0d38  swprv - ok
15:21:21.0683 0x0d38  [ 924D711941956F7420A4925592BE8253, D621114FC94D9B257EC5B684B90E54B63D4078D5FC19550C2E396AE4EDD2C552 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
15:21:21.0699 0x0d38  SynTP - ok
15:21:21.0980 0x0d38  [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] SysMain         C:\Windows\system32\sysmain.dll
15:21:22.0073 0x0d38  SysMain - ok
15:21:22.0120 0x0d38  [ 238935C3CF2854886DC7CBB2A0E2CC66, BBF7A70BF218A544CC1A6FB81F75EAD29D418794162936BE197D6D61FE0DB1C4 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:21:22.0151 0x0d38  TabletInputService - ok
15:21:22.0198 0x0d38  [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:21:22.0276 0x0d38  TapiSrv - ok
15:21:22.0307 0x0d38  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
15:21:22.0339 0x0d38  TBS - ok
15:21:22.0541 0x0d38  [ 624C5B3AA4C99B3184BB922D9ECE3FF0, DF9527CBA335A51513FBFFD95DAF3FA79A19F2B417C533EE384D397FB1E0889E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:21:22.0604 0x0d38  Tcpip - ok
15:21:22.0729 0x0d38  [ 624C5B3AA4C99B3184BB922D9ECE3FF0, DF9527CBA335A51513FBFFD95DAF3FA79A19F2B417C533EE384D397FB1E0889E ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:21:22.0792 0x0d38  TCPIP6 - ok
15:21:22.0839 0x0d38  [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:21:22.0870 0x0d38  tcpipreg - ok
15:21:22.0917 0x0d38  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:21:22.0964 0x0d38  TDPIPE - ok
15:21:22.0995 0x0d38  [ 7518F7BCFD4B308ABC9192BACAF6C970, CF08E547EF4059DA3F5A2FCBA98939E84092BB6E0E37F9BBCD1E4D9EBB8A58BB ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:21:23.0057 0x0d38  TDTCP - ok
15:21:23.0104 0x0d38  [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:21:23.0182 0x0d38  tdx - ok
15:21:23.0213 0x0d38  [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:21:23.0229 0x0d38  TermDD - ok
15:21:23.0354 0x0d38  [ 0F05EC2887BFE197AD82A13287D2F404, 78C8A8FE9B1101430CA79875DA34413C35B6D7A5EE1932E454C50731335437A6 ] TermService     C:\Windows\System32\termsrv.dll
15:21:23.0432 0x0d38  TermService - ok
15:21:23.0478 0x0d38  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:21:23.0541 0x0d38  Themes - ok
15:21:23.0603 0x0d38  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:21:23.0666 0x0d38  THREADORDER - ok
15:21:23.0728 0x0d38  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:21:23.0807 0x0d38  TrkWks - ok
15:21:23.0916 0x0d38  [ 840F7FB849F5887A49BA18C13B2DA920, A59C40A090E03C0136A865FC54508BA938E7B467C8198BC009FE263E6C275781 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:21:23.0963 0x0d38  TrustedInstaller - ok
15:21:23.0994 0x0d38  [ 61B96C26131E37B24E93327A0BD1FB95, 7C551B6FD0447258BC3FDED72D8D41A0E8B731562170C264295592D45F85D9FF ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:21:24.0057 0x0d38  tssecsrv - ok
15:21:24.0088 0x0d38  [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:21:24.0119 0x0d38  tunnel - ok
15:21:24.0150 0x0d38  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:21:24.0197 0x0d38  uagp35 - ok
15:21:24.0259 0x0d38  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB, DBAEA010F11A5EFD961B1841308EA3F220A9FFB01F364BA9B8F72200DA2BBCD8 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:21:24.0337 0x0d38  udfs - ok
15:21:24.0384 0x0d38  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:21:24.0384 0x0d38  UI0Detect - ok
15:21:24.0415 0x0d38  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
15:21:24.0431 0x0d38  uliagpkx - ok
15:21:24.0462 0x0d38  [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:21:24.0493 0x0d38  umbus - ok
15:21:24.0540 0x0d38  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:21:24.0571 0x0d38  UmPass - ok
15:21:24.0603 0x0d38  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:21:24.0665 0x0d38  upnphost - ok
15:21:24.0712 0x0d38  [ AA33FC47ED58C34E6E9261E4F850B7EB, C6388127CAA695434ABFB6C59A53C8544E67E414012DE5F21B36D035BB1BACC8 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:21:24.0727 0x0d38  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
15:21:24.0727 0x0d38  USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
15:21:24.0790 0x0d38  [ 7B6A127C93EE590E4D79A5F2A76FE46F, 6F178916EF6D58D1E5B26C0D9D95C276B776505BFC9F716BB1E3ABD3B2B72FCE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:21:24.0868 0x0d38  usbccgp - ok
15:21:24.0883 0x0d38  USBCCID - ok
15:21:24.0899 0x0d38  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
15:21:24.0946 0x0d38  usbcir - ok
15:21:24.0993 0x0d38  [ 92969BA5AC44E229C55A332864F79677, 4ED1E1049E7641D3FFF5D296F2D59060225CE52AB9F7B5CA618898B46A772F98 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:21:25.0008 0x0d38  usbehci - ok
15:21:25.0071 0x0d38  [ 44D9C773FEBFF10593B50DDFC2D6BC27, 17D76961C77476FAFC4487C03A9748C378FA7C3858F764DD87B4B127504E7E1F ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
15:21:25.0086 0x0d38  usbfilter - ok
15:21:25.0195 0x0d38  [ E7DF1CFD28CA86B35EF5ADD0735CEEF3, AA751288EC34D61D934D7E8C036B60BBCEDC2A746815623478BB015D87D6A998 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:21:25.0258 0x0d38  usbhub - ok
15:21:25.0289 0x0d38  [ F1BB1E55F1E7A65C5839CCC7B36D773E, 4F517F81FA5688D78D3627EA7D2EA16AD4EB410D7624FE483C7AF26951E579A9 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
15:21:25.0320 0x0d38  usbohci - ok
15:21:25.0367 0x0d38  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:21:25.0398 0x0d38  usbprint - ok
15:21:25.0445 0x0d38  [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:21:25.0492 0x0d38  usbscan - ok
15:21:25.0539 0x0d38  [ F39983647BC1F3E6100778DDFE9DCE29, 3BD36594F7C753680DB5A4354B1D6A33FC3011631D2D56DD4B2464AA99C85F7B ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:21:25.0585 0x0d38  USBSTOR - ok
15:21:25.0617 0x0d38  [ BC3070350A491D84B518D7CCA9ABD36F, 96FFF9F76A93CF4806297AE7C11A5C6D1E7A9980260E6CFC960F8247D5032161 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:21:25.0648 0x0d38  usbuhci - ok
15:21:25.0679 0x0d38  [ 7CB8C573C6E4A2714402CC0A36EAB4FE, FCD65AA3723617F58F77C4DA93CE910C712B8AA9411B5C4A60DC6C684EA53C1B ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
15:21:25.0726 0x0d38  usbvideo - ok
15:21:25.0757 0x0d38  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:21:25.0804 0x0d38  UxSms - ok
15:21:25.0835 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] VaultSvc        C:\Windows\system32\lsass.exe
15:21:25.0835 0x0d38  VaultSvc - ok
15:21:25.0882 0x0d38  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
15:21:25.0897 0x0d38  vdrvroot - ok
15:21:25.0913 0x0d38  [ 44D73E0BBC1D3C8981304BA15135C2F2, 2849387BBCFB0189AF5604D2F7A631BD5D6BBB2CA73AF6E870069AF382A74DED ] vds             C:\Windows\System32\vds.exe
15:21:25.0960 0x0d38  vds - ok
15:21:26.0007 0x0d38  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:21:26.0038 0x0d38  vga - ok
15:21:26.0069 0x0d38  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:21:26.0116 0x0d38  VgaSave - ok
15:21:26.0163 0x0d38  [ C82E748660F62A242B2DFAC1442F22A4, 24AD6CAA918C5AB6F461D88825885C8637C224001AAD7A80BDC240368CDB0B7E ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
15:21:26.0225 0x0d38  vhdmp - ok
15:21:26.0272 0x0d38  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
15:21:26.0334 0x0d38  viaide - ok
15:21:26.0381 0x0d38  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3, 91F2B935E1E88C5542650F7D679A75D0562F4A5812179D1EC146D4B6351361E2 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
15:21:26.0412 0x0d38  volmgr - ok
15:21:26.0443 0x0d38  [ 99B0CBB569CA79ACAED8C91461D765FB, 5BE394A39A941DE2AA1212E66B7068F90D423FA816238657CB9B2DA8BBE69B9B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:21:26.0475 0x0d38  volmgrx - ok
15:21:26.0506 0x0d38  [ 58F82EED8CA24B461441F9C3E4F0BF5C, 40B8C9C9D1BEDD1507138273A3C000C753C8765E1873F2170DE63555A042928C ] volsnap         C:\Windows\system32\DRIVERS\volsnap.sys
15:21:26.0537 0x0d38  volsnap - ok
15:21:26.0553 0x0d38  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:21:26.0568 0x0d38  vsmraid - ok
15:21:26.0693 0x0d38  [ 787898BF9FB6D7BD87A36E2D95C899BA, A6C0C7402B1A198E7B3D6D7D283FCB5815AC429DA68FC9B54C67707F3233CCB5 ] VSS             C:\Windows\system32\vssvc.exe
15:21:26.0802 0x0d38  VSS - ok
15:21:26.0833 0x0d38  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:21:26.0880 0x0d38  vwifibus - ok
15:21:26.0911 0x0d38  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:21:27.0052 0x0d38  vwififlt - ok
15:21:27.0067 0x0d38  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:21:27.0099 0x0d38  vwifimp - ok
15:21:27.0192 0x0d38  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:21:27.0270 0x0d38  W32Time - ok
15:21:27.0286 0x0d38  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:21:27.0348 0x0d38  WacomPen - ok
15:21:27.0395 0x0d38  [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:21:27.0457 0x0d38  WANARP - ok
15:21:27.0473 0x0d38  [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:21:27.0504 0x0d38  Wanarpv6 - ok
15:21:27.0613 0x0d38  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:21:27.0676 0x0d38  WatAdminSvc - ok
15:21:27.0769 0x0d38  [ 5AB1BB85BD8B5089CC5D64200DEDAE68, 28777D4F3CD07C8E3465B6DA0FCA994E0B93071A3A0D4D1D64C1DF633DD1C64F ] wbengine        C:\Windows\system32\wbengine.exe
15:21:27.0879 0x0d38  wbengine - ok
15:21:27.0910 0x0d38  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:21:27.0941 0x0d38  WbioSrvc - ok
15:21:28.0097 0x0d38  [ DD1BAE8EBFC653824D29CCF8C9054D68, 81D6640222FE276D721168745F6BB905D4E756909A9B2C706AF25465D748772D ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:21:28.0191 0x0d38  wcncsvc - ok
15:21:28.0222 0x0d38  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:21:28.0284 0x0d38  WcsPlugInService - ok
15:21:28.0331 0x0d38  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:21:28.0362 0x0d38  Wd - ok
15:21:28.0425 0x0d38  [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:21:28.0487 0x0d38  Wdf01000 - ok
15:21:28.0503 0x0d38  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:21:28.0565 0x0d38  WdiServiceHost - ok
15:21:28.0565 0x0d38  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:21:28.0596 0x0d38  WdiSystemHost - ok
15:21:28.0643 0x0d38  [ 733006127F235BE7C35354EBEE7B9A7B, 2C7E7030D586C36261F33F29883337695493D48CEA415D6DBA7C5635845A5B32 ] WebClient       C:\Windows\System32\webclnt.dll
15:21:28.0705 0x0d38  WebClient - ok
15:21:28.0768 0x0d38  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:21:28.0830 0x0d38  Wecsvc - ok
15:21:28.0846 0x0d38  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:21:28.0893 0x0d38  wercplsupport - ok
15:21:28.0908 0x0d38  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:21:28.0971 0x0d38  WerSvc - ok
15:21:29.0002 0x0d38  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:21:29.0033 0x0d38  WfpLwf - ok
15:21:29.0049 0x0d38  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:21:29.0049 0x0d38  WIMMount - ok
15:21:29.0064 0x0d38  WinHttpAutoProxySvc - ok
15:21:29.0142 0x0d38  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:21:29.0220 0x0d38  Winmgmt - ok
15:21:29.0595 0x0d38  [ 41FBB751936B387F9179E7F03A74FE29, 7A73D887BEC19DFC485ED42B4E6ABEBF824555139B81EA30731A00773E707464 ] WinRM           C:\Windows\system32\WsmSvc.dll
15:21:29.0735 0x0d38  WinRM - ok
15:21:29.0813 0x0d38  [ 817EAFF5D38674EDD7713B9DFB8E9791, F6E0BFC503BA7395F92989C11B454D1F1E58E29302BA203801449A2C5236E84D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:21:29.0875 0x0d38  WinUsb - ok
15:21:30.0047 0x0d38  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:21:30.0109 0x0d38  Wlansvc - ok
15:21:30.0234 0x0d38  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:21:30.0265 0x0d38  wlcrasvc - ok
15:21:30.0765 0x0d38  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:21:30.0827 0x0d38  wlidsvc - ok
15:21:30.0889 0x0d38  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
15:21:30.0921 0x0d38  WmiAcpi - ok
15:21:31.0045 0x0d38  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:21:31.0139 0x0d38  wmiApSrv - ok
15:21:31.0186 0x0d38  WMPNetworkSvc - ok
15:21:31.0217 0x0d38  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:21:31.0264 0x0d38  WPCSvc - ok
15:21:31.0295 0x0d38  [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:21:31.0326 0x0d38  WPDBusEnum - ok
15:21:31.0373 0x0d38  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:21:31.0451 0x0d38  ws2ifsl - ok
15:21:31.0451 0x0d38  WSearch - ok
15:21:31.0482 0x0d38  [ 7CADC74271DD6461C452C271B30BD378, D58C2094C36FC665C03A6A269EED80DC71F330C3DCF40A27A3C8F56AB7A96861 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:21:31.0529 0x0d38  WudfPf - ok
15:21:31.0560 0x0d38  [ 3B197AF0FFF08AA66B6B2241CA538D64, BC94E5EFF38B9C6A37717B2A6CA56679781A4872A0C4298056E074033571BE79 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:21:31.0591 0x0d38  WUDFRd - ok
15:21:31.0654 0x0d38  [ B551D6637AA0E132C18AC6E504F7B79B, FA6495533A14E01ABB0F6689AB7503B1B439D3ADA7457DFCB7D81714A9817327 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:21:31.0763 0x0d38  wudfsvc - ok
15:21:31.0841 0x0d38  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:21:31.0903 0x0d38  WwanSvc - ok
15:21:31.0981 0x0d38  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
15:21:32.0028 0x0d38  yukonw7 - ok
15:21:32.0122 0x0d38  [ 74983ADDCA2D9618512C088D856D6615, C4592EFC1206BD813221814FD529AD38ED26E4AE086613EB95D3D5E20448A1F0 ] {55662437-DA8C-40c0-AADA-2C816A897A49} c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
15:21:32.0137 0x0d38  {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
15:21:32.0137 0x0d38  ================ Scan global ===============================
15:21:32.0169 0x0d38  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
15:21:32.0247 0x0d38  [ 0CB6EBF4B461A6043353C570BD72A1E1, B6DA0AE56A7DC373F60CA1EF69E4D55E6F2EEB0D62AB78D555C5F85EB389A356 ] C:\Windows\system32\winsrv.dll
15:21:32.0309 0x0d38  [ 0CB6EBF4B461A6043353C570BD72A1E1, B6DA0AE56A7DC373F60CA1EF69E4D55E6F2EEB0D62AB78D555C5F85EB389A356 ] C:\Windows\system32\winsrv.dll
15:21:32.0356 0x0d38  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:21:32.0465 0x0d38  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
15:21:32.0496 0x0d38  [ Global ] - ok
15:21:32.0496 0x0d38  ================ Scan MBR ==================================
15:21:32.0496 0x0d38  [ 1D82ABE77C362645E4648D325BA8C970 ] \Device\Harddisk0\DR0
15:21:35.0164 0x0d38  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
15:21:35.0164 0x0d38  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:21:35.0179 0x0d38  [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR1
15:21:35.0367 0x0d38  \Device\Harddisk1\DR1 - ok
15:21:35.0367 0x0d38  ================ Scan VBR ==================================
15:21:35.0429 0x0d38  [ 454D74EFB3CD5BE136092A3788589AD3 ] \Device\Harddisk0\DR0\Partition1
15:21:35.0445 0x0d38  \Device\Harddisk0\DR0\Partition1 - ok
15:21:35.0491 0x0d38  [ 1C8AAB63049B06AE57A2BC99B0526D3D ] \Device\Harddisk0\DR0\Partition2
15:21:35.0554 0x0d38  \Device\Harddisk0\DR0\Partition2 - ok
15:21:35.0616 0x0d38  [ 97EDFA423782B77DB1EECF95E9BDAAAD ] \Device\Harddisk0\DR0\Partition3
15:21:35.0757 0x0d38  \Device\Harddisk0\DR0\Partition3 - ok
15:21:35.0757 0x0d38  [ 7696C80400532CCF08A37E19822A2224 ] \Device\Harddisk1\DR1\Partition1
15:21:35.0772 0x0d38  \Device\Harddisk1\DR1\Partition1 - ok
15:21:35.0772 0x0d38  ================ Scan active images ========================
15:21:35.0772 0x0d38  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
15:21:35.0772 0x0d38  C:\Windows\System32\drivers\crashdmp.sys - ok
15:21:35.0788 0x0d38  [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
15:21:35.0788 0x0d38  C:\Windows\System32\drivers\Dumpata.sys - ok
15:21:35.0803 0x0d38  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
15:21:35.0803 0x0d38  C:\Windows\System32\drivers\dumpfve.sys - ok
15:21:35.0803 0x0d38  [ 5C37497276E3B3A5488B23A326A754B7, 9982FCDAFB963868EB93A4DEF811A3167488EB5246BAC3F4AE960506FDF63967 ] C:\Windows\System32\drivers\msahci.sys
15:21:35.0803 0x0d38  C:\Windows\System32\drivers\msahci.sys - ok
15:21:35.0819 0x0d38  [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] C:\Windows\System32\drivers\cdrom.sys
15:21:35.0819 0x0d38  C:\Windows\System32\drivers\cdrom.sys - ok
15:21:35.0819 0x0d38  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
15:21:35.0819 0x0d38  C:\Windows\System32\drivers\null.sys - ok
15:21:35.0819 0x0d38  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
15:21:35.0819 0x0d38  C:\Windows\System32\drivers\beep.sys - ok
15:21:35.0835 0x0d38  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
15:21:35.0835 0x0d38  C:\Windows\System32\drivers\vga.sys - ok
15:21:35.0835 0x0d38  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
15:21:35.0835 0x0d38  C:\Windows\System32\drivers\videoprt.sys - ok
15:21:35.0835 0x0d38  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
15:21:35.0835 0x0d38  C:\Windows\System32\drivers\watchdog.sys - ok
15:21:35.0850 0x0d38  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
15:21:35.0850 0x0d38  C:\Windows\System32\drivers\msfs.sys - ok
15:21:35.0850 0x0d38  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
15:21:35.0850 0x0d38  C:\Windows\System32\drivers\npfs.sys - ok
15:21:35.0850 0x0d38  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
15:21:35.0850 0x0d38  C:\Windows\System32\drivers\RDPCDD.sys - ok
15:21:35.0866 0x0d38  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
15:21:35.0866 0x0d38  C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:21:35.0866 0x0d38  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
15:21:35.0866 0x0d38  C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:21:35.0866 0x0d38  [ 0CA6FE26ACC7FFEE1BD0463F40835F32, 22D29762CED22BBDA3D89D9AFFDEA2F3DAF91524D7A7524BE45578F17781F376 ] C:\Windows\System32\drivers\tdi.sys
15:21:35.0866 0x0d38  C:\Windows\System32\drivers\tdi.sys - ok
15:21:35.0881 0x0d38  [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] C:\Windows\System32\drivers\tdx.sys
15:21:35.0881 0x0d38  C:\Windows\System32\drivers\tdx.sys - ok
15:21:35.0881 0x0d38  [ DB9D6C6B2CD95A9CA414D045B627422E, A4A0B2ACBFE311C20EF9F06A49DBE02CE90433C2364B292F6E8F78F6C274DF88 ] C:\Windows\System32\drivers\afd.sys
15:21:35.0881 0x0d38  C:\Windows\System32\drivers\afd.sys - ok
15:21:35.0897 0x0d38  [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] C:\Windows\System32\drivers\netbt.sys
15:21:35.0897 0x0d38  C:\Windows\System32\drivers\netbt.sys - ok
15:21:35.0897 0x0d38  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
15:21:35.0897 0x0d38  C:\Windows\System32\drivers\wfplwf.sys - ok
15:21:35.0897 0x0d38  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
15:21:35.0897 0x0d38  C:\Windows\System32\drivers\netbios.sys - ok
15:21:35.0913 0x0d38  [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] C:\Windows\System32\drivers\pacer.sys
15:21:35.0913 0x0d38  C:\Windows\System32\drivers\pacer.sys - ok
15:21:35.0913 0x0d38  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
15:21:35.0913 0x0d38  C:\Windows\System32\drivers\vwififlt.sys - ok
15:21:35.0913 0x0d38  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
15:21:35.0913 0x0d38  C:\Windows\System32\drivers\serial.sys - ok
15:21:35.0928 0x0d38  [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] C:\Windows\System32\drivers\wanarp.sys
15:21:35.0928 0x0d38  C:\Windows\System32\drivers\wanarp.sys - ok
15:21:35.0928 0x0d38  [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] C:\Windows\System32\drivers\rdbss.sys
15:21:35.0928 0x0d38  C:\Windows\System32\drivers\rdbss.sys - ok
15:21:35.0928 0x0d38  [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] C:\Windows\System32\drivers\termdd.sys
15:21:35.0928 0x0d38  C:\Windows\System32\drivers\termdd.sys - ok
15:21:35.0944 0x0d38  [ 9C253CE7311CA60FC11C774692A13208, 23507138576DB75AA8B7415140F7B5D8A90CB2661796223870461C721A36AEBF ] C:\Windows\System32\drivers\dfsc.sys
15:21:35.0944 0x0d38  C:\Windows\System32\drivers\dfsc.sys - ok
15:21:35.0944 0x0d38  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
15:21:35.0944 0x0d38  C:\Windows\System32\drivers\discache.sys - ok
15:21:35.0944 0x0d38  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
15:21:35.0944 0x0d38  C:\Windows\System32\drivers\mssmbios.sys - ok
15:21:35.0959 0x0d38  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
15:21:35.0959 0x0d38  C:\Windows\System32\drivers\nsiproxy.sys - ok
15:21:35.0959 0x0d38  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] C:\Windows\System32\drivers\amdppm.sys
15:21:35.0959 0x0d38  C:\Windows\System32\drivers\amdppm.sys - ok
15:21:35.0959 0x0d38  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
15:21:35.0959 0x0d38  C:\Windows\System32\drivers\blbdrive.sys - ok
15:21:35.0959 0x0d38  [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] C:\Windows\System32\drivers\tunnel.sys
15:21:35.0959 0x0d38  C:\Windows\System32\drivers\tunnel.sys - ok
15:21:35.0975 0x0d38  [ 1911A3356FA3F77CCC825CCBAC038C2A, 6ED135B792C81D78B33A57F0F4770DB6105C9ED3E2193629CB3EC38BFD5B7E1B ] C:\Windows\System32\smss.exe
15:21:35.0975 0x0d38  C:\Windows\System32\smss.exe - ok
15:21:35.0975 0x0d38  [ 68DB778AC4FD7896CE2F153353BA15C8, 17519E42980AD537826D934F7E216071B8558986ADAE47B7871DE859CBBF04B2 ] C:\Windows\System32\ntdll.dll
15:21:35.0975 0x0d38  C:\Windows\System32\ntdll.dll - ok
15:21:35.0975 0x0d38  [ A29087680A1C3B049E3C05438E8FF2B8, 8895C480DE55078A0B0BDF105A745940E02A8A7545EA5EE84FB675634620AD89 ] C:\Windows\System32\drivers\atikmdag.sys
15:21:35.0975 0x0d38  C:\Windows\System32\drivers\atikmdag.sys - ok
15:21:35.0991 0x0d38  [ 8B7F8E882A649D81CEA1EDE9BBB68FFF, 3BDA2C1F922EC672353CB2F296720FC75F3D573A6FCF879B220EB793611CF82E ] C:\Windows\System32\autochk.exe
15:21:35.0991 0x0d38  C:\Windows\System32\autochk.exe - ok
15:21:35.0991 0x0d38  [ 1633B9ABF52784A1331476397A48CBEF, 697780697C4C55FCCF5FB65C93FB37B3F5A43BF0C59FDBB9EF822D0E993E47BD ] C:\Windows\System32\drivers\dxgkrnl.sys
15:21:35.0991 0x0d38  C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:21:36.0006 0x0d38  [ 3238B9078E0766AB5E62DC737A809ADB, ADE62EB3709549508A71CBB390EDC8537AC354FE88D3A33D95C818F0DD72B86E ] C:\Windows\System32\drivers\dxgmms1.sys
15:21:36.0006 0x0d38  C:\Windows\System32\drivers\dxgmms1.sys - ok
15:21:36.0006 0x0d38  [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] C:\Windows\System32\drivers\hdaudbus.sys
15:21:36.0006 0x0d38  C:\Windows\System32\drivers\hdaudbus.sys - ok
15:21:36.0006 0x0d38  [ F8633CDD09647A64EE8DB550630427FF, 565F32E6B1E8451B2DD866E4997336A47B8DC6669392BDAAF252C35C0383E8A3 ] C:\Windows\System32\drivers\athrx.sys
15:21:36.0006 0x0d38  C:\Windows\System32\drivers\athrx.sys - ok
15:21:36.0022 0x0d38  [ B49DC435AE3695BAC5623DD94B05732D, D63160B09385ED31C2A479ADC5AFCA483906F38598874972025D680BDB45ECA0 ] C:\Windows\System32\drivers\Rt64win7.sys
15:21:36.0022 0x0d38  C:\Windows\System32\drivers\Rt64win7.sys - ok
15:21:36.0022 0x0d38  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
15:21:36.0022 0x0d38  C:\Windows\System32\drivers\vwifibus.sys - ok
15:21:36.0022 0x0d38  [ E403AACF8C7BB11375122D2464560311, 0427B8FFD999D256EA1A5135F218692959A7577CB32354D3087CF0FB4F0577DF ] C:\Windows\System32\drivers\GEARAspiWDM.sys
15:21:36.0022 0x0d38  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
15:21:36.0037 0x0d38  [ BBF36EB7117F6B976975C9D8D877DF18, B0C0F0B9ED0835D2CAE65385FD31AA85007AC3433A44A284287B129745A74035 ] C:\Windows\System32\drivers\usbport.sys
15:21:36.0037 0x0d38  C:\Windows\System32\drivers\usbport.sys - ok
15:21:36.0037 0x0d38  [ F1BB1E55F1E7A65C5839CCC7B36D773E, 4F517F81FA5688D78D3627EA7D2EA16AD4EB410D7624FE483C7AF26951E579A9 ] C:\Windows\System32\drivers\usbohci.sys
15:21:36.0037 0x0d38  C:\Windows\System32\drivers\usbohci.sys - ok
15:21:36.0037 0x0d38  [ 70B5A5A7E0DDD5EBAF6E35B7257A6B9D, A4B04982BC02D4E79B334FC835349362860FA8248913C9EF84A1BA7109D1FD4D ] C:\Windows\System32\drivers\usbd.sys
15:21:36.0037 0x0d38  C:\Windows\System32\drivers\usbd.sys - ok
15:21:36.0053 0x0d38  [ 44D9C773FEBFF10593B50DDFC2D6BC27, 17D76961C77476FAFC4487C03A9748C378FA7C3858F764DD87B4B127504E7E1F ] C:\Windows\System32\drivers\usbfilter.sys
15:21:36.0053 0x0d38  C:\Windows\System32\drivers\usbfilter.sys - ok
15:21:36.0053 0x0d38  [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] C:\Windows\System32\drivers\HpqKbFiltr.sys
15:21:36.0053 0x0d38  C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
15:21:36.0053 0x0d38  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
15:21:36.0053 0x0d38  C:\Windows\System32\drivers\i8042prt.sys - ok
15:21:36.0069 0x0d38  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
15:21:36.0069 0x0d38  C:\Windows\System32\drivers\kbdclass.sys - ok
15:21:36.0069 0x0d38  [ 92969BA5AC44E229C55A332864F79677, 4ED1E1049E7641D3FFF5D296F2D59060225CE52AB9F7B5CA618898B46A772F98 ] C:\Windows\System32\drivers\usbehci.sys
15:21:36.0069 0x0d38  C:\Windows\System32\drivers\usbehci.sys - ok
15:21:36.0069 0x0d38  [ 924D711941956F7420A4925592BE8253, D621114FC94D9B257EC5B684B90E54B63D4078D5FC19550C2E396AE4EDD2C552 ] C:\Windows\System32\drivers\SynTP.sys
15:21:36.0069 0x0d38  C:\Windows\System32\drivers\SynTP.sys - ok
15:21:36.0084 0x0d38  [ 8D3BC4F666B994382CE1B02E1BFEE0F6, 285990FFE8459918A3D56F7A5FD1BF7FDE51A4C61264ED92FB513DA70CD76DE8 ] C:\Windows\System32\wininet.dll
15:21:36.0084 0x0d38  C:\Windows\System32\wininet.dll - ok
15:21:36.0084 0x0d38  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
15:21:36.0084 0x0d38  C:\Windows\System32\drivers\CmBatt.sys - ok
15:21:36.0084 0x0d38  [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] C:\Windows\System32\drivers\enecir.sys
15:21:36.0084 0x0d38  C:\Windows\System32\drivers\enecir.sys - ok
15:21:36.0100 0x0d38  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
15:21:36.0100 0x0d38  C:\Windows\System32\drivers\mouclass.sys - ok
15:21:36.0100 0x0d38  [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] C:\Windows\System32\drivers\Accelerometer.sys
15:21:36.0100 0x0d38  C:\Windows\System32\drivers\Accelerometer.sys - ok
15:21:36.0100 0x0d38  [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] C:\Windows\System32\drivers\CompositeBus.sys
15:21:36.0100 0x0d38  C:\Windows\System32\drivers\CompositeBus.sys - ok
15:21:36.0115 0x0d38  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
15:21:36.0115 0x0d38  C:\Windows\System32\drivers\wmiacpi.sys - ok
15:21:36.0115 0x0d38  [ 05CB5910B3CA6019FC3CCA815EE06FFB, 8FA532ED500BB1F08E8034A6125BDD53B74D5E6AB0A83A6185B07AAFCD90AA82 ] C:\Windows\System32\drivers\dne64x.sys
15:21:36.0115 0x0d38  C:\Windows\System32\drivers\dne64x.sys - ok
15:21:36.0115 0x0d38  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
15:21:36.0115 0x0d38  C:\Windows\System32\drivers\agilevpn.sys - ok
15:21:36.0131 0x0d38  [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] C:\Windows\System32\drivers\rasl2tp.sys
15:21:36.0131 0x0d38  C:\Windows\System32\drivers\rasl2tp.sys - ok
15:21:36.0131 0x0d38  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
15:21:36.0131 0x0d38  C:\Windows\System32\drivers\ndistapi.sys - ok
15:21:36.0131 0x0d38  [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] C:\Windows\System32\drivers\ndiswan.sys
15:21:36.0131 0x0d38  C:\Windows\System32\drivers\ndiswan.sys - ok
15:21:36.0147 0x0d38  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
15:21:36.0147 0x0d38  C:\Windows\System32\drivers\raspppoe.sys - ok
15:21:36.0147 0x0d38  [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] C:\Windows\System32\drivers\raspptp.sys
15:21:36.0147 0x0d38  C:\Windows\System32\drivers\raspptp.sys - ok
15:21:36.0147 0x0d38  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
15:21:36.0147 0x0d38  C:\Windows\System32\drivers\rassstp.sys - ok
15:21:36.0162 0x0d38  [ 5C7AF4A20F5BF67042B2E613D123D111, 0255F59ADF5AAD1ACF0CA1D5B7FB9163167599F330DBD4C60607B4A014F1E1B2 ] C:\Windows\System32\drivers\ks.sys
15:21:36.0162 0x0d38  C:\Windows\System32\drivers\ks.sys - ok
15:21:36.0162 0x0d38  [ 4B8CDC023E8A7EBABFEFCD2DE67FD488, A21CA521D049859761FCCCEF6119BCECD98D530D028A5E7736FECD93BDDCA329 ] C:\Windows\System32\drivers\SSLDrv.sys
15:21:36.0162 0x0d38  C:\Windows\System32\drivers\SSLDrv.sys - ok
15:21:36.0162 0x0d38  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
15:21:36.0162 0x0d38  C:\Windows\System32\drivers\swenum.sys - ok
15:21:36.0178 0x0d38  [ E1B1255D3A4B3367FE4E9C71E62E3B5A, DBFE4268D8365D97ED948BC56EBC886B4BF2684F6A31FAC7ECEA3B289F13906D ] C:\Windows\System32\gdi32.dll
15:21:36.0178 0x0d38  C:\Windows\System32\gdi32.dll - ok
15:21:36.0178 0x0d38  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
15:21:36.0178 0x0d38  C:\Windows\System32\msctf.dll - ok
15:21:36.0178 0x0d38  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
15:21:36.0178 0x0d38  C:\Windows\System32\normaliz.dll - ok
15:21:36.0193 0x0d38  [ 15A54626213EBF003F7D4C9D8380A656, 0217E919DD8EB74E19FAF2B9D98D77EDC803D9B1AE78A6EA0EF1A76D72296B36 ] C:\Windows\System32\imagehlp.dll
15:21:36.0193 0x0d38  C:\Windows\System32\imagehlp.dll - ok
15:21:36.0193 0x0d38  [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C, 91523F6E2227847A0BFDE7265C704602DF4D9455FC02AC5C7409450FE46720E2 ] C:\Windows\System32\usp10.dll
15:21:36.0193 0x0d38  C:\Windows\System32\usp10.dll - ok
15:21:36.0193 0x0d38  [ 6DF46D2BD74E3DA1B45F08F10D172732, 2DC945F6F2C4A82189BC7DA2FCBB7D9A0E2588A909539249E55BA82468E0C677 ] C:\Windows\System32\advapi32.dll
15:21:36.0193 0x0d38  C:\Windows\System32\advapi32.dll - ok
15:21:36.0209 0x0d38  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
15:21:36.0209 0x0d38  C:\Windows\System32\imm32.dll - ok
15:21:36.0209 0x0d38  [ 7083F463788CB34FCC42F565D56F89E8, 43876B0BD4D8E94D9234D9726B0B492C9EB0F66A6951861DF7148C16AF7EA09D ] C:\Windows\System32\ws2_32.dll
15:21:36.0209 0x0d38  C:\Windows\System32\ws2_32.dll - ok
15:21:36.0209 0x0d38  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
15:21:36.0209 0x0d38  C:\Windows\System32\difxapi.dll - ok
15:21:36.0225 0x0d38  [ D202223587518B13D72D68937B7E3F70, 9DB971B866D058ADBB518DD99B87C5DB8DD1E7C9073755B989AE7E9FB62901E8 ] C:\Windows\System32\lpk.dll
15:21:36.0225 0x0d38  C:\Windows\System32\lpk.dll - ok
15:21:36.0225 0x0d38  [ 6A4EA4C29FBF78112AE20013FB71E9C1, 2FA53B8F98F2E8AEF50880AF1C64664A4FD1F38F47779DC6476F50907B685FF2 ] C:\Windows\System32\setupapi.dll
15:21:36.0225 0x0d38  C:\Windows\System32\setupapi.dll - ok
15:21:36.0225 0x0d38  [ 0066F74BAD8A8825A330604FC65C3FB9, 51ABA5F7CAD7F2ED2819CF70D40F6A408A8B94A4947A534E934EC55E8525E6B5 ] C:\Windows\System32\iertutil.dll
15:21:36.0225 0x0d38  C:\Windows\System32\iertutil.dll - ok
15:21:36.0240 0x0d38  [ F94B8644F3AFE040EC6E1B6FBC9EFAA9, 5BEC7DBD63AA8AC19FCA7AF6AD751C683911964FE5268D2C73DF42C3C48147A7 ] C:\Windows\System32\comdlg32.dll
15:21:36.0240 0x0d38  C:\Windows\System32\comdlg32.dll - ok
15:21:36.0240 0x0d38  [ E5CBF5F8623BBD1DB7B8148A66F6EBA4, 533021C8FAB7C6FA34F57350308F30B55620AFFABCBA9A624039A1B07AD3E94F ] C:\Windows\System32\Wldap32.dll
15:21:36.0240 0x0d38  C:\Windows\System32\Wldap32.dll - ok
15:21:36.0240 0x0d38  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
15:21:36.0240 0x0d38  C:\Windows\System32\psapi.dll - ok
15:21:36.0256 0x0d38  [ 48C903068B6BDAB5EF650B9CBEE85295, 69FF82F689ABBDD66E48D27F40DEE69F96C4E1E8193F78A12911C8DB5D0D1939 ] C:\Windows\System32\rpcrt4.dll
15:21:36.0256 0x0d38  C:\Windows\System32\rpcrt4.dll - ok
15:21:36.0256 0x0d38  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
15:21:36.0256 0x0d38  C:\Windows\System32\nsi.dll - ok
15:21:36.0256 0x0d38  [ 676EDC510F2C27AC633F44113DEDE683, CB07C8BED2BC2260C77AA0F4100FF44D35C4B293E3146C0C24F747DD03192B6F ] C:\Windows\System32\urlmon.dll
15:21:36.0256 0x0d38  C:\Windows\System32\urlmon.dll - ok
15:21:36.0271 0x0d38  [ DDBD24DC04DA5FD0EDF45CF72B7C01E2, DAC1F31009C755E38DC8F86BFCFB70D06FDF21FF0FF24701520E26988100FF30 ] C:\Windows\System32\kernel32.dll
15:21:36.0271 0x0d38  C:\Windows\System32\kernel32.dll - ok
15:21:36.0271 0x0d38  [ AC8F79017C5C1FB316930EDEAD0AF517, AF8BBCB0629F7F60ADA084EBA8169C99F595254B6E1147D749E6629961C72969 ] C:\Windows\System32\ole32.dll
15:21:36.0271 0x0d38  C:\Windows\System32\ole32.dll - ok
15:21:36.0271 0x0d38  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
15:21:36.0271 0x0d38  C:\Windows\System32\sechost.dll - ok
15:21:36.0287 0x0d38  [ 72D7B3EA16946E8F0CF7458150031CC6, 350ED7B07948C716D2CE51F324171942C534E875FBF5492250A5385B75176374 ] C:\Windows\System32\user32.dll
15:21:36.0287 0x0d38  C:\Windows\System32\user32.dll - ok
15:21:36.0287 0x0d38  [ 2A46451EE42BCD2C842D8AA4923FAC16, 2FBE848D23B107DB706EA01499776D7B10D66444FDC1B4FBF34A6E29730312ED ] C:\Windows\System32\oleaut32.dll
15:21:36.0287 0x0d38  C:\Windows\System32\oleaut32.dll - ok
15:21:36.0287 0x0d38  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
15:21:36.0287 0x0d38  C:\Windows\System32\clbcatq.dll - ok
15:21:36.0303 0x0d38  [ 15BDC173EB5FA4F92B67D9FFB269A6EA, 3AD223CEA07093E42D37FDB81D0E045FFD724D7DEDDCC5A70631481A49D3D7A0 ] C:\Windows\System32\shlwapi.dll
15:21:36.0303 0x0d38  C:\Windows\System32\shlwapi.dll - ok
15:21:36.0303 0x0d38  [ 48CC125A6AB6C72A13E3D3E9C39AD9D9, BC56289A6D8F68158500B74ACF06C5C4E55874967FE2CC6634D0171D62A9B7DB ] C:\Windows\System32\shell32.dll
15:21:36.0303 0x0d38  C:\Windows\System32\shell32.dll - ok
15:21:36.0303 0x0d38  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] C:\Windows\System32\drivers\circlass.sys
15:21:36.0303 0x0d38  C:\Windows\System32\drivers\circlass.sys - ok
15:21:36.0318 0x0d38  [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] C:\Windows\System32\drivers\umbus.sys
15:21:36.0318 0x0d38  C:\Windows\System32\drivers\umbus.sys - ok
15:21:36.0318 0x0d38  [ 3B197AF0FFF08AA66B6B2241CA538D64, BC94E5EFF38B9C6A37717B2A6CA56679781A4872A0C4298056E074033571BE79 ] C:\Windows\System32\drivers\WUDFRd.sys
15:21:36.0318 0x0d38  C:\Windows\System32\drivers\WUDFRd.sys - ok
15:21:36.0318 0x0d38  [ 579F6AFC6A6561951FA2202EFC3FE485, DF4A4DFB36332C69D801AAF9E613C62BA457E78DE18FACDA7D8690AF47A4DA56 ] C:\Windows\System32\msvcrt.dll
15:21:36.0318 0x0d38  C:\Windows\System32\msvcrt.dll - ok
15:21:36.0334 0x0d38  [ 08B1BDCDF896D38C6E820B9B155E7A17, E9F590A12F8098EA723F4CCA741EB0D4D35C9028A0728F684ED8EB8C1959F053 ] C:\Windows\System32\KernelBase.dll
15:21:36.0334 0x0d38  C:\Windows\System32\KernelBase.dll - ok
15:21:36.0334 0x0d38  [ FEC6244873AB7981326CAEEC5B5FFF11, 1DE505E5CCB14530734FD123E364EEB7DF118B5BFC2CCCD2F534ED60CDBE6D2F ] C:\Windows\System32\wintrust.dll
15:21:36.0334 0x0d38  C:\Windows\System32\wintrust.dll - ok
15:21:36.0334 0x0d38  [ D05E03C1B2824236531F5E37334B6A8A, 4C79F02AA9F4C36B5A463B71A715523B5D4860B28A40840E54C1C4C5685018C6 ] C:\Windows\System32\cfgmgr32.dll
15:21:36.0334 0x0d38  C:\Windows\System32\cfgmgr32.dll - ok
15:21:36.0349 0x0d38  [ BC052EFAD10ACA1AD69545B629F50D99, C29C5F5B000EFB54CCFC0724F82C7520AE60D911F3FD4BF17D8EA40D3877FD03 ] C:\Windows\System32\comctl32.dll
15:21:36.0349 0x0d38  C:\Windows\System32\comctl32.dll - ok
15:21:36.0349 0x0d38  [ B0B310037A3A9151735E9952D4395C76, 2273049511B4C67404C908ACF9595CCAFB8DCE92121483DEEFC59562180C64C6 ] C:\Windows\System32\crypt32.dll
15:21:36.0349 0x0d38  C:\Windows\System32\crypt32.dll - ok
15:21:36.0349 0x0d38  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
15:21:36.0349 0x0d38  C:\Windows\System32\devobj.dll - ok
15:21:36.0365 0x0d38  [ E7DF1CFD28CA86B35EF5ADD0735CEEF3, AA751288EC34D61D934D7E8C036B60BBCEDC2A746815623478BB015D87D6A998 ] C:\Windows\System32\drivers\usbhub.sys
15:21:36.0365 0x0d38  C:\Windows\System32\drivers\usbhub.sys - ok
15:21:36.0365 0x0d38  [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01, 5567BC80CA43FB755A98D2C380483D0C6F4101BF86BBD1EA14950B5D1A02A970 ] C:\Windows\System32\msasn1.dll
15:21:36.0365 0x0d38  C:\Windows\System32\msasn1.dll - ok
15:21:36.0365 0x0d38  [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] C:\Windows\System32\drivers\ndproxy.sys
15:21:36.0365 0x0d38  C:\Windows\System32\drivers\ndproxy.sys - ok
15:21:36.0381 0x0d38  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
15:21:36.0381 0x0d38  C:\Windows\SysWOW64\normaliz.dll - ok
15:21:36.0381 0x0d38  [ 21D26064AEDB4988F785BB4A3A2C051E, F6FA2CA351B24DA19645EB542596C82F9A68D84CC7CCFE6F9FC15CE2CE4D1961 ] C:\Windows\System32\drivers\drmk.sys
15:21:36.0381 0x0d38  C:\Windows\System32\drivers\drmk.sys - ok
15:21:36.0381 0x0d38  [ 3B9014FB7CE9E20FD726321C7DB7D8B0, 9B910D900478A81D52446C6D71C3DDC4B5FE1345674295E1101922B0F32FBCE1 ] C:\Windows\System32\drivers\AtiHdmi.sys
15:21:36.0381 0x0d38  C:\Windows\System32\drivers\AtiHdmi.sys - ok
15:21:36.0396 0x0d38  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
15:21:36.0396 0x0d38  C:\Windows\System32\drivers\ksthunk.sys - ok
15:21:36.0396 0x0d38  [ 32E11315B5126921FFD9074840EF13D3, FC7C0E1CC447FDD89C0FA5EBFD04CCEABFB27751AB57A7176F12BD0D35306E1C ] C:\Windows\System32\drivers\portcls.sys
15:21:36.0396 0x0d38  C:\Windows\System32\drivers\portcls.sys - ok
15:21:36.0396 0x0d38  [ DFFBC024DFC7BB05B2129E05CBC7A201, CA07944B864D7F3DA673040CF6314FECCAF80B8EADAF648392AE79697DAC15B4 ] C:\Windows\System32\drivers\stwrt64.sys
15:21:36.0396 0x0d38  C:\Windows\System32\drivers\stwrt64.sys - ok
15:21:36.0412 0x0d38  [ 685FEC2407FC121EB937CB658B3C0F35, 9357476FB5722A15B109FAC45F8110BD17BEBFB941BB2770808882805935B9C1 ] C:\Windows\System32\drivers\hidclass.sys
15:21:36.0412 0x0d38  C:\Windows\System32\drivers\hidclass.sys - ok
15:21:36.0412 0x0d38  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] C:\Windows\System32\drivers\hidir.sys
15:21:36.0412 0x0d38  C:\Windows\System32\drivers\hidir.sys - ok
15:21:36.0412 0x0d38  [ 49EE2E52E6CD03947DAD72F65367BE06, 933097B903B13767DD49192E7BF8EAABC5BADFDAF8B31B806AA65C533F24B686 ] C:\Windows\System32\drivers\hidparse.sys
15:21:36.0412 0x0d38  C:\Windows\System32\drivers\hidparse.sys - ok
15:21:36.0427 0x0d38  [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] C:\Windows\System32\drivers\kbdhid.sys
15:21:36.0427 0x0d38  C:\Windows\System32\drivers\kbdhid.sys - ok
15:21:36.0427 0x0d38  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
15:21:36.0427 0x0d38  C:\Windows\System32\drivers\mouhid.sys - ok
15:21:36.0427 0x0d38  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
15:21:36.0427 0x0d38  C:\Windows\System32\drivers\dxapi.sys - ok
15:21:36.0443 0x0d38  [ 7FF70301AB5176FC3B72BD6C9B8BF888, C14F3BEECAECFDAA2DB946EB93F1F0B257EFF94C57F04FEF1000637FD709D93E ] C:\Windows\System32\win32k.sys
15:21:36.0443 0x0d38  C:\Windows\System32\win32k.sys - ok
15:21:36.0443 0x0d38  [ E730EADB8F176DB06A378435BEB2E823, 8A7137877C8A8E41DB191AD8DBCBA76B0E875671B05E6818DDD325CC6E790478 ] C:\Windows\System32\csrsrv.dll
15:21:36.0443 0x0d38  C:\Windows\System32\csrsrv.dll - ok
15:21:36.0443 0x0d38  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
15:21:36.0443 0x0d38  C:\Windows\System32\csrss.exe - ok
15:21:36.0459 0x0d38  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
15:21:36.0459 0x0d38  C:\Windows\System32\basesrv.dll - ok
15:21:36.0459 0x0d38  [ 0CB6EBF4B461A6043353C570BD72A1E1, B6DA0AE56A7DC373F60CA1EF69E4D55E6F2EEB0D62AB78D555C5F85EB389A356 ] C:\Windows\System32\winsrv.dll
15:21:36.0459 0x0d38  C:\Windows\System32\winsrv.dll - ok
15:21:36.0459 0x0d38  [ F39983647BC1F3E6100778DDFE9DCE29, 3BD36594F7C753680DB5A4354B1D6A33FC3011631D2D56DD4B2464AA99C85F7B ] C:\Windows\System32\drivers\USBSTOR.SYS
15:21:36.0459 0x0d38  C:\Windows\System32\drivers\USBSTOR.SYS - ok
15:21:36.0474 0x0d38  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
15:21:36.0474 0x0d38  C:\Windows\System32\drivers\monitor.sys - ok
15:21:36.0474 0x0d38  [ 7B6A127C93EE590E4D79A5F2A76FE46F, 6F178916EF6D58D1E5B26C0D9D95C276B776505BFC9F716BB1E3ABD3B2B72FCE ] C:\Windows\System32\drivers\usbccgp.sys
15:21:36.0474 0x0d38  C:\Windows\System32\drivers\usbccgp.sys - ok
15:21:36.0474 0x0d38  [ 7CB8C573C6E4A2714402CC0A36EAB4FE, FCD65AA3723617F58F77C4DA93CE910C712B8AA9411B5C4A60DC6C684EA53C1B ] C:\Windows\System32\drivers\usbvideo.sys
15:21:36.0474 0x0d38  C:\Windows\System32\drivers\usbvideo.sys - ok
15:21:36.0490 0x0d38  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
15:21:36.0490 0x0d38  C:\Windows\System32\tsddd.dll - ok
15:21:36.0490 0x0d38  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
15:21:36.0490 0x0d38  C:\Windows\System32\profapi.dll - ok
15:21:36.0490 0x0d38  [ F4389DA7DBDA2E7D292D360CF8E400C7, EBB50703FA573932727FBDCB407D9D5945BDC052CEFADED8237185063DD3A4AE ] C:\Windows\System32\RpcRtRemote.dll
15:21:36.0490 0x0d38  C:\Windows\System32\RpcRtRemote.dll - ok
15:21:36.0505 0x0d38  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
15:21:36.0505 0x0d38  C:\Windows\System32\sxssrv.dll - ok
15:21:36.0505 0x0d38  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
15:21:36.0505 0x0d38  C:\Windows\System32\wininit.exe - ok
15:21:36.0505 0x0d38  [ B9A047D231D32FDF5AF2F281E4326A9D, 814DC543DBBA137D478C51248A99ACC2485744F7BDC7A382B03B8912C0EB73EE ] C:\Windows\System32\KBDUS.DLL
15:21:36.0505 0x0d38  C:\Windows\System32\KBDUS.DLL - ok
15:21:36.0521 0x0d38  [ 100BDF2F89D6056CEE900BB6156DA737, 4FDBD1B3F6D2B81137096343BA90DE2EFAE02D963B7376145947106B9AF7DF42 ] C:\Windows\System32\cdd.dll
15:21:36.0521 0x0d38  C:\Windows\System32\cdd.dll - ok
15:21:36.0521 0x0d38  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
15:21:36.0521 0x0d38  C:\Windows\System32\WlS0WndH.dll - ok
15:21:36.0521 0x0d38  [ 456C92A9D8DB51B9938A6234BBC65FC9, A20EF19E25384B34D3FE997099DD71EA595F3ACDA0F7C56695DC48ADFA54F5B8 ] C:\Windows\System32\sxs.dll
15:21:36.0521 0x0d38  C:\Windows\System32\sxs.dll - ok
15:21:36.0537 0x0d38  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
15:21:36.0537 0x0d38  C:\Windows\System32\cryptbase.dll - ok
15:21:36.0537 0x0d38  [ 01A465AC251BCCF6037DF2EF28AA4292, 49C0E1B5B0B7FAACF226C8DA15F518BEAE6B868AB079023B9181A5039DD5E456 ] C:\Windows\System32\apphelp.dll
15:21:36.0537 0x0d38  C:\Windows\System32\apphelp.dll - ok
15:21:36.0537 0x0d38  [ 156F6159457D0AA7E59B62681B56EB90, 27B855BF79490E4CC58D38A920C077A56785494BFFF0B448A898486009B24937 ] C:\Windows\System32\lsass.exe
15:21:36.0537 0x0d38  C:\Windows\System32\lsass.exe - ok
15:21:36.0552 0x0d38  [ 04FCA22B77A2E37332CC8226187AF87B, 6B085DB5C2EC21D2ED7BE842E7842FCC3530D1828FBE28C16E61F7E12B27833B ] C:\Windows\System32\lsm.exe
15:21:36.0552 0x0d38  C:\Windows\System32\lsm.exe - ok
15:21:36.0552 0x0d38  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
15:21:36.0552 0x0d38  C:\Windows\System32\services.exe - ok
15:21:36.0552 0x0d38  [ BFA69408620587AFDEC2E8C12CA60492, E1C87992AB8EF3236F267F521F884F26629F6951BD65D3CE96DF5164AE1304C4 ] C:\Windows\System32\lsasrv.dll
15:21:36.0552 0x0d38  C:\Windows\System32\lsasrv.dll - ok
15:21:36.0568 0x0d38  [ 1F582C6C84D5243692F9C3E04D0A663F, 9AD813BAB4D9B459E541E08A9C521F74840EE02FB2CCB7A5199E9313E727688B ] C:\Windows\System32\sspicli.dll
15:21:36.0568 0x0d38  C:\Windows\System32\sspicli.dll - ok
15:21:36.0568 0x0d38  [ 68EA2513CA68AD8F741FF4F5B8D8590C, 3A3CE9006D1953A9743F0D79B1B585A65B74B669518585A908BC062D0AED7F09 ] C:\Windows\System32\sspisrv.dll
15:21:36.0568 0x0d38  C:\Windows\System32\sspisrv.dll - ok
15:21:36.0568 0x0d38  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
15:21:36.0568 0x0d38  C:\Windows\System32\sysntfy.dll - ok
15:21:36.0583 0x0d38  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
15:21:36.0583 0x0d38  C:\Windows\System32\wmsgapi.dll - ok
15:21:36.0583 0x0d38  [ 941AF3C8B0DE1B359BE22DD3288A8C8E, 8D1081C58097C68939955E3C700B1B9764212A6A70BEEE353985512F39DE2EBF ] C:\Windows\System32\scesrv.dll
15:21:36.0583 0x0d38  C:\Windows\System32\scesrv.dll - ok
15:21:36.0583 0x0d38  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
15:21:36.0583 0x0d38  C:\Windows\System32\scext.dll - ok
15:21:36.0599 0x0d38  [ 74A0871810BF0F2AA3EB6681E9BECDD3, C3631C440E3BEEB9C43C8A7D11FEEE822EF873EA67E5878D844244E844D3D6E3 ] C:\Windows\System32\secur32.dll
15:21:36.0599 0x0d38  C:\Windows\System32\secur32.dll - ok
15:21:36.0599 0x0d38  [ B160ADAEFC76031D92C4FBAC0918B033, A3A0D5AE3F15D6275005EA104D992A3A84B0AC0CA2E629716065DB715CCA856B ] C:\Windows\System32\samsrv.dll
15:21:36.0599 0x0d38  C:\Windows\System32\samsrv.dll - ok
15:21:36.0599 0x0d38  [ DA3E2A6FA9660CC75B471530CE88453A, 85E8DC87EBF2C713EE879ED4E60EEC2F9940FC2755FC6BE7E0E96C61894AB558 ] C:\Windows\System32\winlogon.exe
15:21:36.0599 0x0d38  C:\Windows\System32\winlogon.exe - ok
15:21:36.0615 0x0d38  [ D23371AB9607651937C7641A38CD52BC, 00ED1F9EC0B57A3E970F707C3B91CC68F874C0F0073CEA9FAD09EA2515B751C0 ] C:\Windows\System32\srvcli.dll
15:21:36.0615 0x0d38  C:\Windows\System32\srvcli.dll - ok
15:21:36.0615 0x0d38  [ D8C88512BA9544AE1CC2034F50ECFA12, 99CFB478DF31214E98CAB81EFF7346500579AE262100BD418F3C9D47437F4413 ] C:\Windows\System32\winsta.dll
15:21:36.0615 0x0d38  C:\Windows\System32\winsta.dll - ok
15:21:36.0615 0x0d38  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
15:21:36.0615 0x0d38  C:\Windows\System32\cryptdll.dll - ok
15:21:36.0630 0x0d38  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
15:21:36.0630 0x0d38  C:\Windows\System32\wevtapi.dll - ok
15:21:36.0630 0x0d38  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
15:21:36.0630 0x0d38  C:\Windows\System32\authz.dll - ok
15:21:36.0630 0x0d38  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
15:21:36.0630 0x0d38  C:\Windows\System32\cngaudit.dll - ok
15:21:36.0646 0x0d38  [ E08926B4E52F92FF8852BECC0E2F358A, 80D5A2D33505235D4A1B128FD0C3E7FA35743E136CDBF467DFC4545C0DD9DA77 ] C:\Windows\System32\ncrypt.dll
15:21:36.0646 0x0d38  C:\Windows\System32\ncrypt.dll - ok
15:21:36.0646 0x0d38  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
15:21:36.0646 0x0d38  C:\Windows\System32\bcrypt.dll - ok
15:21:36.0646 0x0d38  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
15:21:36.0646 0x0d38  C:\Windows\System32\msprivs.dll - ok
15:21:36.0661 0x0d38  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
15:21:36.0661 0x0d38  C:\Windows\System32\negoexts.dll - ok
15:21:36.0661 0x0d38  [ B561B451320B0B40908A8BFD81705262, D9E6B0C33B03D7648A8229FB5FE06332141F1F8E9F73790D4D7D621DC53EF9D3 ] C:\Windows\System32\netjoin.dll
15:21:36.0661 0x0d38  C:\Windows\System32\netjoin.dll - ok
15:21:36.0661 0x0d38  [ EFC5353E4F513DEF55ED7B7872363957, 18F56D0C33DA273550F887EAD282FC6B5E904ACB8D98E7868E02D7C43926D931 ] C:\Windows\System32\atmfd.dll
15:21:36.0661 0x0d38  C:\Windows\System32\atmfd.dll - ok
15:21:36.0677 0x0d38  [ 96772B584BD0E667CD7741EF96284ACB, 1C84A92E03DB791803F71ED3FE02286A1165F6EF93525794E367E63A874C1E12 ] C:\Windows\System32\kerberos.dll
15:21:36.0677 0x0d38  C:\Windows\System32\kerberos.dll - ok
15:21:36.0677 0x0d38  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
15:21:36.0677 0x0d38  C:\Windows\System32\cryptsp.dll - ok
15:21:36.0677 0x0d38  [ FC76FE3C1E1FDB761244D4F74EF560FD, 85D7BD8887E53F7E1C37D2EC3964D714C0939ED5D45F95332F425341AA181C19 ] C:\Windows\System32\mswsock.dll
15:21:36.0677 0x0d38  C:\Windows\System32\mswsock.dll - ok
15:21:36.0693 0x0d38  [ FA4DB05923DDDEDE3196ABD09AE0F1E9, 93224D8495DD67A2904DB6FFF3AD27C49E55B6463F7BF96DFE3E5070437456A6 ] C:\Windows\System32\msv1_0.dll
15:21:36.0693 0x0d38  C:\Windows\System32\msv1_0.dll - ok
15:21:36.0693 0x0d38  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
15:21:36.0693 0x0d38  C:\Windows\System32\wship6.dll - ok
15:21:36.0693 0x0d38  [ 956D030D375F207B22FB111E06EF9C35, D2C6B0C0C9E951F6715252C54A620CF6AF1A3845014035334C92B3DDDEFD52E5 ] C:\Windows\System32\netlogon.dll
15:21:36.0693 0x0d38  C:\Windows\System32\netlogon.dll - ok
15:21:36.0708 0x0d38  [ E247E7DEB20C0CF0801A8AC39E9CE1DF, FE0296C43A417F3E03989A5AEFB0D98282F62A5C766DD4F7119041DD5774146E ] C:\Windows\System32\dnsapi.dll
15:21:36.0708 0x0d38  C:\Windows\System32\dnsapi.dll - ok
15:21:36.0708 0x0d38  [ 8CE22E63F08613036DF8C7B00FBDF36B, 442DDE1C1F1073BFB1730D3B258D249DD6FFAED7D2452493C2E1D4CF48F5376C ] C:\Windows\System32\logoncli.dll
15:21:36.0708 0x0d38  C:\Windows\System32\logoncli.dll - ok
15:21:36.0708 0x0d38  [ 90B780886BD813882CB382FF3E90E092, CC633D6380798DA93B28999B44DC2EC0E1678FD9A73930EF50424D7A09BB135B ] C:\Windows\System32\schannel.dll
15:21:36.0708 0x0d38  C:\Windows\System32\schannel.dll - ok
15:21:36.0724 0x0d38  [ 95FB6CA4374E343DDD653FCC43F9D26B, 911A240F9C1DD155C2B1CD85FE4A8044EB2816AF166CD8CB66EEB905CA352881 ] C:\Windows\System32\wdigest.dll
15:21:36.0724 0x0d38  C:\Windows\System32\wdigest.dll - ok
15:21:36.0724 0x0d38  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
15:21:36.0724 0x0d38  C:\Windows\System32\rsaenh.dll - ok
15:21:36.0724 0x0d38  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
15:21:36.0724 0x0d38  C:\Windows\System32\pku2u.dll - ok
15:21:36.0739 0x0d38  [ 0DEFD5FBF801DD8F83BC0ED09861A8EC, A00E0CCDE4270452139C37E1599F3ED3ACCF02BEE371F5534E17E93DB46ED082 ] C:\Windows\System32\TSpkg.dll
15:21:36.0739 0x0d38  C:\Windows\System32\TSpkg.dll - ok
15:21:36.0739 0x0d38  [ 7DBA64AD70C2E2481C68D9E0F7CD7840, 52EE57E9A8D3C28336BB8E7536ECE77A9FB4BAF93B9651F9A897F79F873D66BE ] C:\Windows\System32\LIVESSP.DLL
15:21:36.0739 0x0d38  C:\Windows\System32\LIVESSP.DLL - ok
15:21:36.0739 0x0d38  [ DA090E97E57DCB48888015B5D3C749CD, 9C351013A7791CB0998E3E2519A460CBC6EED5E595EEA7A3394DA74738A7132E ] C:\Windows\System32\bcryptprimitives.dll
15:21:36.0739 0x0d38  C:\Windows\System32\bcryptprimitives.dll - ok
15:21:36.0755 0x0d38  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
15:21:36.0755 0x0d38  C:\Windows\System32\efslsaext.dll - ok
15:21:36.0755 0x0d38  [ 9301B8810B2DA4EB6AD55DB75FC1E339, 765D23BD3D5D8768550D82CFDBD26365E2AE896DE9E5F123CE4045BDF8E838BB ] C:\Windows\System32\credssp.dll
15:21:36.0755 0x0d38  C:\Windows\System32\credssp.dll - ok
15:21:36.0755 0x0d38  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
15:21:36.0755 0x0d38  C:\Windows\System32\ubpm.dll - ok
15:21:36.0771 0x0d38  [ 398712DDDAEFB85EDF61DF6A07B65C79, 08732BF5C5FFAF953FF4065AA5D35CFF797590E1C2CD12E4E923E932B5722A20 ] C:\Windows\System32\scecli.dll
15:21:36.0771 0x0d38  C:\Windows\System32\scecli.dll - ok
15:21:36.0771 0x0d38  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
15:21:36.0771 0x0d38  C:\Windows\System32\svchost.exe - ok
15:21:36.0771 0x0d38  [ 98B1721B8718164293B9701B98C52D77, 27F5F00D4AA394D4D8D0A0062EDC3F944B603E07CAAEDC5CC959BA1E8C208C2A ] C:\Windows\System32\umpnpmgr.dll
15:21:36.0771 0x0d38  C:\Windows\System32\umpnpmgr.dll - ok
15:21:36.0771 0x0d38  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
15:21:36.0771 0x0d38  C:\Windows\System32\SPInf.dll - ok
15:21:36.0786 0x0d38  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
15:21:36.0786 0x0d38  C:\Windows\System32\devrtl.dll - ok
15:21:36.0786 0x0d38  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
15:21:36.0786 0x0d38  C:\Windows\System32\gpapi.dll - ok
15:21:36.0786 0x0d38  [ 0776CF79590BDEF0A2728B0B9A813B96, 8205E0F3CC3DD8605769EC4DD85E6ACE89B219F62379C8FD74C62047BD339F22 ] C:\Windows\System32\userenv.dll
15:21:36.0786 0x0d38  C:\Windows\System32\userenv.dll - ok
15:21:36.0802 0x0d38  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
15:21:36.0802 0x0d38  C:\Windows\System32\pcwum.dll - ok
15:21:36.0802 0x0d38  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
15:21:36.0802 0x0d38  C:\Windows\System32\umpo.dll - ok
15:21:36.0802 0x0d38  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
15:21:36.0802 0x0d38  C:\Windows\System32\powrprof.dll - ok
15:21:36.0817 0x0d38  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
15:21:36.0817 0x0d38  C:\Windows\System32\drivers\luafv.sys - ok
15:21:36.0817 0x0d38  [ 7CADC74271DD6461C452C271B30BD378, D58C2094C36FC665C03A6A269EED80DC71F330C3DCF40A27A3C8F56AB7A96861 ] C:\Windows\System32\drivers\WUDFPf.sys
15:21:36.0817 0x0d38  C:\Windows\System32\drivers\WUDFPf.sys - ok
15:21:36.0817 0x0d38  [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] C:\Windows\System32\rpcss.dll
15:21:36.0817 0x0d38  C:\Windows\System32\rpcss.dll - ok
15:21:36.0833 0x0d38  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
15:21:36.0833 0x0d38  C:\Windows\System32\RpcEpMap.dll - ok
15:21:36.0833 0x0d38  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
15:21:36.0833 0x0d38  C:\Windows\System32\wshqos.dll - ok
15:21:36.0833 0x0d38  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
15:21:36.0833 0x0d38  C:\Windows\System32\WSHTCPIP.DLL - ok
15:21:36.0849 0x0d38  [ BCC32BF5EBB5DFD4380FA053D3651949, 72799B17EFB11836FEA241AD844C8D5EEF62656084CE89077DAF8FC30706A019 ] C:\Windows\System32\atiesrxx.exe
15:21:36.0849 0x0d38  C:\Windows\System32\atiesrxx.exe - ok
15:21:36.0849 0x0d38  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
15:21:36.0849 0x0d38  C:\Windows\System32\FirewallAPI.dll - ok
15:21:36.0849 0x0d38  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
15:21:36.0849 0x0d38  C:\Windows\System32\wtsapi32.dll - ok
15:21:36.0864 0x0d38  [ BCF0A980D21711E47D0803BDB0E99CAD, CBC125C6F043584416BC20CB1F12B2BFDC6D99DAC942EDDA90754779C947E31A ] C:\Windows\System32\authui.dll
15:21:36.0864 0x0d38  C:\Windows\System32\authui.dll - ok
15:21:36.0864 0x0d38  [ 93E6A39B1DB898F7C949FA5567E774CF, 914F12718CEF019DE2AB18776DD23C669F218B4FA2292BECFE34A95872040789 ] C:\Windows\System32\LogonUI.exe
15:21:36.0864 0x0d38  C:\Windows\System32\LogonUI.exe - ok
15:21:36.0864 0x0d38  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
15:21:36.0864 0x0d38  C:\Windows\System32\version.dll - ok
15:21:36.0880 0x0d38  [ 99ABDA9C92EC76CBAF52F00239D909C9, 2959EFBF1C597BABD5D934667255E7B8E098C4C7FEE9DED65C9D04ECA852D7A3 ] C:\Windows\System32\wevtsvc.dll
15:21:36.0880 0x0d38  C:\Windows\System32\wevtsvc.dll - ok
15:21:36.0880 0x0d38  [ DBA90306A721FB922FDACED9E9728C28, 9D1F36D8A17DABED318B3AC4940FF537FFF9C77F6E8CF0EB799A68F5B7B34EB8 ] C:\Windows\System32\cryptui.dll
15:21:36.0880 0x0d38  C:\Windows\System32\cryptui.dll - ok
15:21:36.0895 0x0d38  [ 113921FC4A80A3DDF646852998B836D0, 8952BB3822438BB89381BE85E49088348208D02F0596107FDB2B19AAF9CF5040 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
15:21:36.0895 0x0d38  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
15:21:36.0895 0x0d38  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
15:21:36.0895 0x0d38  C:\Windows\System32\samlib.dll - ok
15:21:36.0895 0x0d38  [ 84F8C8B9FB1F12532999D25F5DD7E77C, D3442C2091D35A1483D3C317ED45B77F64BFE882992105DA97A6BF67E265B0D9 ] C:\Windows\System32\shacct.dll
15:21:36.0895 0x0d38  C:\Windows\System32\shacct.dll - ok
15:21:36.0911 0x0d38  [ B27EA141A7E748B607600A8551A44D5A, 551636B1E4A4D6CB21E243E2C01DDEA7CF5BACDD290B3A618DDD0055729F0F5E ] C:\Windows\System32\propsys.dll
15:21:36.0911 0x0d38  C:\Windows\System32\propsys.dll - ok
15:21:36.0911 0x0d38  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
15:21:36.0911 0x0d38  C:\Windows\System32\uxtheme.dll - ok
15:21:36.0911 0x0d38  [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] C:\Windows\System32\audiosrv.dll
15:21:36.0911 0x0d38  C:\Windows\System32\audiosrv.dll - ok
15:21:36.0927 0x0d38  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
15:21:36.0927 0x0d38  C:\Windows\System32\avrt.dll - ok
15:21:36.0927 0x0d38  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
15:21:36.0927 0x0d38  C:\Windows\System32\mmcss.dll - ok
15:21:36.0927 0x0d38  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
15:21:36.0927 0x0d38  C:\Windows\System32\MMDevAPI.dll - ok
15:21:36.0942 0x0d38  [ DD0701DE0AAA010E6EBD0F53B672DCEE, 7B430DFE74CDBA6503133CC03C723A3761C47270DF4AD99F333EA209617B4FA5 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
15:21:36.0942 0x0d38  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
15:21:36.0942 0x0d38  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
15:21:36.0942 0x0d38  C:\Windows\System32\dui70.dll - ok
15:21:36.0942 0x0d38  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
15:21:36.0942 0x0d38  C:\Windows\System32\duser.dll - ok
15:21:36.0958 0x0d38  [ B2E3D4BB3389817FB5E4CD9378BC8791, 827432B830552DE87D44B0B3D298CC9E17A81C352803D439753135B35F7AAD67 ] C:\Windows\System32\SndVolSSO.dll
15:21:36.0958 0x0d38  C:\Windows\System32\SndVolSSO.dll - ok
15:21:36.0958 0x0d38  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
15:21:36.0958 0x0d38  C:\Windows\System32\dwmapi.dll - ok
15:21:36.0958 0x0d38  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
15:21:36.0958 0x0d38  C:\Windows\System32\hid.dll - ok
15:21:36.0973 0x0d38  [ 39F91A948E6017B732C4A0B3086A8E32, B040D05D899E8A3F9BD36ECFDAE9F4D835D756CAF6EBD3C042B269DC6AD36A9A ] C:\Windows\System32\xmllite.dll
15:21:36.0973 0x0d38  C:\Windows\System32\xmllite.dll - ok
15:21:36.0973 0x0d38  [ EA99F234843BBDDA1ABD2767111ADE25, EF578F52BB359DA01465A754EAB6289232F80661774E6C0E1E1469573006CD72 ] C:\Windows\System32\WindowsCodecs.dll
15:21:36.0973 0x0d38  C:\Windows\System32\WindowsCodecs.dll - ok
15:21:36.0973 0x0d38  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
15:21:36.0973 0x0d38  C:\Windows\System32\wlansvc.dll - ok
15:21:36.0989 0x0d38  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
15:21:36.0989 0x0d38  C:\Windows\System32\winbrand.dll - ok
15:21:36.0989 0x0d38  [ 7595D53EE8E8B0BAA9A2DDDE867EBB0C, 8EBBFA456D93E63AF9D64CC95A58651E2C1B1398B6052C0E65D3005AD5AC8CB5 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\stacsv64.exe
15:21:36.0989 0x0d38  C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\stacsv64.exe - ok
15:21:36.0989 0x0d38  [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
15:21:36.0989 0x0d38  C:\Windows\System32\dsound.dll - ok
15:21:37.0005 0x0d38  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
15:21:37.0005 0x0d38  C:\Windows\System32\winmm.dll - ok
15:21:37.0005 0x0d38  [ D152EBC32A23069F8AA1D1F24B15E3F9, B032CC7CBD715196BEC3B0B7C2DFD1D6169B66CC1770DD4B708951CC87DD871B ] C:\Windows\System32\audiodg.exe
15:21:37.0005 0x0d38  C:\Windows\System32\audiodg.exe - ok
15:21:37.0005 0x0d38  [ 58C84FDC71B992A0E70592E478780D5E, D58F2EB05D14E0B06A9F39F6758A49D40E14D2852E6FA5A98A83D944BD5FF5BE ] C:\Windows\System32\stapi64.dll
15:21:37.0005 0x0d38  C:\Windows\System32\stapi64.dll - ok
15:21:37.0020 0x0d38  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
15:21:37.0020 0x0d38  C:\Windows\System32\ntmarta.dll - ok
15:21:37.0020 0x0d38  [ 81D64E8D70E5FBF9F7ABF2D41154F54D, 878E5A32AF0E7633830FE313CF9319DE3EBE0A9AA78DCDD525C0A3500A698CB6 ] C:\Windows\System32\AudioSes.dll
15:21:37.0020 0x0d38  C:\Windows\System32\AudioSes.dll - ok
15:21:37.0020 0x0d38  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
15:21:37.0020 0x0d38  C:\Windows\System32\VaultCredProvider.dll - ok
15:21:37.0036 0x0d38  [ 2A381A9740165D7A1405148B6DFB3E38, 885241B9ED8A6074D428FDE0B326B2E1A59254CE779B884EE61716F45CDF2712 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:21:37.0036 0x0d38  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:21:37.0036 0x0d38  [ 30F9BACA07F8251D7DD1805A9E919CE0, 7B6569B744EA9700957510CDDC8F02E7F47B99564B03E4784AA44EA89B750288 ] C:\Windows\System32\wdmaud.drv
15:21:37.0036 0x0d38  C:\Windows\System32\wdmaud.drv - ok
15:21:37.0036 0x0d38  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
15:21:37.0036 0x0d38  C:\Windows\System32\BioCredProv.dll - ok
15:21:37.0051 0x0d38  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
15:21:37.0051 0x0d38  C:\Windows\System32\ksuser.dll - ok
15:21:37.0051 0x0d38  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
15:21:37.0051 0x0d38  C:\Windows\System32\winbio.dll - ok
15:21:37.0051 0x0d38  [ 97D38371502AA797DB14EB1FA5FCE4CD, 6F71EF6DE07C2A34339726775FF8D8A64254A287B5D1972B55D9874EC9E6912F ] C:\Windows\System32\credui.dll
15:21:37.0051 0x0d38  C:\Windows\System32\credui.dll - ok
15:21:37.0067 0x0d38  [ 1C10772935D67F74ABDFE542ECE7551D, A42095C09C1827203DD2A271B116010E8DCBFBB8C21779425018AF92DF4F2C93 ] C:\Windows\System32\netapi32.dll
15:21:37.0067 0x0d38  C:\Windows\System32\netapi32.dll - ok
15:21:37.0067 0x0d38  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
15:21:37.0067 0x0d38  C:\Windows\System32\vaultcli.dll - ok
15:21:37.0067 0x0d38  [ 4C8C2F987FC397DCE98874D6C9C0736A, 005D2CF9311799E8151B7154469D10D9346AFC2E0BF88358E54A091D5D14B970 ] C:\Windows\System32\netutils.dll
15:21:37.0067 0x0d38  C:\Windows\System32\netutils.dll - ok
15:21:37.0083 0x0d38  [ B33CBD1A8C2A33121321D0FEBD7DD870, 248E01B3E88D0243AF4771A18AFCDE3DB04475EFB7D0E426CA1D00358C84A465 ] C:\Windows\System32\wkscli.dll
15:21:37.0083 0x0d38  C:\Windows\System32\wkscli.dll - ok
15:21:37.0083 0x0d38  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
15:21:37.0083 0x0d38  C:\Windows\System32\certCredProvider.dll - ok
15:21:37.0083 0x0d38  [ A87205FE194B239D8D96E4972B779CC1, F392004842E291097385A0C1DC9143356CA195B18638E58E552BA20F386489AC ] C:\Windows\System32\samcli.dll
15:21:37.0083 0x0d38  C:\Windows\System32\samcli.dll - ok
15:21:37.0098 0x0d38  [ 032229246107C5C7211E6D1498B52D3D, 8B492A0621BA88EBF3ABFC072C9023B2162C59AA6E9C61DA6D4762DB6C6C7B4A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
15:21:37.0098 0x0d38  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
15:21:37.0098 0x0d38  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
15:21:37.0098 0x0d38  C:\Windows\System32\rasplap.dll - ok
15:21:37.0098 0x0d38  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
15:21:37.0098 0x0d38  C:\Windows\System32\rasapi32.dll - ok
15:21:37.0114 0x0d38  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
15:21:37.0114 0x0d38  C:\Windows\System32\rasman.dll - ok
15:21:37.0114 0x0d38  [ F5A61F0A0030C80DF319B0C14A4C8885, 3D579E003440FEF0CD88E7A4FC6765D22560D5B142441217A897E8A37D2958A8 ] C:\Windows\System32\rtutils.dll
15:21:37.0114 0x0d38  C:\Windows\System32\rtutils.dll - ok
15:21:37.0114 0x0d38  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
15:21:37.0114 0x0d38  C:\Windows\System32\msacm32.dll - ok
15:21:37.0129 0x0d38  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
15:21:37.0129 0x0d38  C:\Windows\System32\msacm32.drv - ok
15:21:37.0129 0x0d38  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
15:21:37.0129 0x0d38  C:\Windows\System32\midimap.dll - ok
15:21:37.0129 0x0d38  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
15:21:37.0129 0x0d38  C:\Windows\System32\AudioEng.dll - ok
15:21:37.0145 0x0d38  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
15:21:37.0145 0x0d38  C:\Windows\System32\AUDIOKSE.dll - ok
15:21:37.0145 0x0d38  [ F9949A5756E07A338CDFD34BA3DFB4E4, 2A2D892AE784E4DBCE88D0C92547632D90C7B49C1373673CB6C304F6D7F130B7 ] C:\Windows\System32\stapo64.dll
15:21:37.0145 0x0d38  C:\Windows\System32\stapo64.dll - ok
15:21:37.0145 0x0d38  [ 5E65E90DA3A478C377F7332A9386B023, FF7C7386FEFA9A9CA26DECD8FEEBBA8991DF06835A300126205F8A21BF0BEF95 ] C:\Windows\System32\AESTAC64.dll
15:21:37.0145 0x0d38  C:\Windows\System32\AESTAC64.dll - ok
15:21:37.0161 0x0d38  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
15:21:37.0161 0x0d38  C:\Windows\System32\adtschema.dll - ok
15:21:37.0161 0x0d38  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
15:21:37.0161 0x0d38  C:\Windows\System32\netprofm.dll - ok
15:21:37.0161 0x0d38  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:21:37.0161 0x0d38  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:21:37.0176 0x0d38  [ 37B68E458C0BC255DF2FB7454D0798D3, ADA50F59137E650E7A7256E5E1A5B5F52273A44CEDD2F7BB5709F1109AA67930 ] C:\Windows\System32\WUDFPlatform.dll
15:21:37.0176 0x0d38  C:\Windows\System32\WUDFPlatform.dll - ok
15:21:37.0176 0x0d38  [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] C:\Windows\System32\drivers\fltMgr.sys
15:21:37.0176 0x0d38  C:\Windows\System32\drivers\fltMgr.sys - ok
15:21:37.0176 0x0d38  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
15:21:37.0176 0x0d38  C:\Windows\System32\PSHED.DLL - ok
15:21:37.0192 0x0d38  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:21:37.0192 0x0d38  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:21:37.0192 0x0d38  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
15:21:37.0192 0x0d38  C:\Windows\System32\WMALFXGFXDSP.dll - ok
15:21:37.0192 0x0d38  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
15:21:37.0192 0x0d38  C:\Windows\System32\mfplat.dll - ok
15:21:37.0207 0x0d38  [ C469893743E18BA547DB3C7ED98B32F5, CD6FA1900174AF013D312C51753173A39691F0EE5799D1E7AD2604A220D64C2E ] C:\Windows\System32\AESTAR64.dll
15:21:37.0207 0x0d38  C:\Windows\System32\AESTAR64.dll - ok
15:21:37.0207 0x0d38  [ 3D9FC44CA93001B423F89876369F1348, C538E2502402A66415D0591A97E17BA6FB020A5E7031BC54BB0931D94B4F879F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
15:21:37.0207 0x0d38  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
15:21:37.0223 0x0d38  [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] C:\Windows\System32\gpsvc.dll
15:21:37.0223 0x0d38  C:\Windows\System32\gpsvc.dll - ok
15:21:37.0223 0x0d38  [ B6F0676FC23D543452FE81D8B71D24E7, 6D17CEEC23D616A181457A1041F7BC5E33453C511A59A661CA0A091386E30336 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
15:21:37.0223 0x0d38  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
15:21:37.0223 0x0d38  [ F7BA79CEFBD9DF4AF781E00356FBF48E, 6A1BD3054136FA031CCA0361F52D61A2B91B5FCD87BC0FFBCB99FDF9932A785F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
15:21:37.0223 0x0d38  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
15:21:37.0239 0x0d38  [ 79E25E0628A2FF7A74356EAEF5011C26, 7DCA0461C070C31B8DB433797A5D6D4C76530ED3DFC5EAE9E35C123929C8B04C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
15:21:37.0239 0x0d38  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
15:21:37.0239 0x0d38  [ 86E3822A34D454032D8E88C72AE8CF2D, 3A8DA946AFAC023254E9D260BFB796FF356A3978F28DA1FC6B939B0E234C9A64 ] C:\Windows\System32\nlaapi.dll
15:21:37.0239 0x0d38  C:\Windows\System32\nlaapi.dll - ok
15:21:37.0239 0x0d38  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
15:21:37.0239 0x0d38  C:\Windows\System32\themeservice.dll - ok
15:21:37.0254 0x0d38  [ 97293447431311C06703368AD0F6C4BE, 302A3CA8F6961717D95469B20A8A71954D4ECFCDF4638238D3D44AAE5A8D9B8B ] C:\Windows\System32\profsvc.dll
15:21:37.0254 0x0d38  C:\Windows\System32\profsvc.dll - ok
15:21:37.0254 0x0d38  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
15:21:37.0254 0x0d38  C:\Windows\System32\atl.dll - ok
15:21:37.0254 0x0d38  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
15:21:37.0254 0x0d38  C:\Windows\System32\dsrole.dll - ok
15:21:37.0270 0x0d38  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
15:21:37.0270 0x0d38  C:\Windows\System32\slc.dll - ok
15:21:37.0270 0x0d38  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
15:21:37.0270 0x0d38  C:\Windows\System32\es.dll - ok
15:21:37.0270 0x0d38  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
15:21:37.0270 0x0d38  C:\Windows\System32\comres.dll - ok
15:21:37.0285 0x0d38  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
15:21:37.0285 0x0d38  C:\Windows\System32\Sens.dll - ok
15:21:37.0285 0x0d38  [ AA036CC5F5221D9B915F4D4DCE74BA9A, B90B9F7753B45387AD56A7CE1365BEBC9EB67011B6D2F8C785717942133775AA ] C:\Windows\System32\hpservice.exe
15:21:37.0285 0x0d38  C:\Windows\System32\hpservice.exe - ok
15:21:37.0285 0x0d38  [ 0ABCA5A037A8B4D744991544B286D847, 334FD24687D533A1E3B2EDF87A8D20F8417126FB63BD3938E4AEF54A755C9D60 ] C:\Windows\System32\mfc42u.dll
15:21:37.0285 0x0d38  C:\Windows\System32\mfc42u.dll - ok
15:21:37.0301 0x0d38  [ DFF4993094A11275601E7ADBF1D1BD25, 45F22A23CFE950D29AFB9735FAD43FA7709DEFCDAF92E58F57FD356382B1944D ] C:\Windows\System32\odbc32.dll
15:21:37.0301 0x0d38  C:\Windows\System32\odbc32.dll - ok
15:21:37.0301 0x0d38  [ E4534381D36D42EBF3A5E9B17DEBC707, 86EBD78571649BBC7BCE280EDE90BDDE40D6D37839F450DF7E3D477CA20E8EFF ] C:\Windows\System32\accelerometerdll.DLL
15:21:37.0301 0x0d38  C:\Windows\System32\accelerometerdll.DLL - ok
15:21:37.0301 0x0d38  [ 3E466073C3B1033FF92ADE9031E3D4A2, 2B26096A6BA2EE8C496D3252248F21D214E8C41ECF79A60A60E52D3BC4135C03 ] C:\Windows\System32\odbcint.dll
15:21:37.0301 0x0d38  C:\Windows\System32\odbcint.dll - ok
15:21:37.0301 0x0d38  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
15:21:37.0301 0x0d38  C:\Windows\System32\uxsms.dll - ok
15:21:37.0317 0x0d38  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
15:21:37.0317 0x0d38  C:\Windows\System32\UXInit.dll - ok
15:21:37.0317 0x0d38  [ 6D4B42346B76245E8870CEA5786E8E85, BEC090D3AE6F71441B07F084F5D34AA0EB52F689DAAE1E877468B39ECA3F38B6 ] C:\Windows\System32\atieclxx.exe
15:21:37.0317 0x0d38  C:\Windows\System32\atieclxx.exe - ok
15:21:37.0317 0x0d38  [ B7728F2D6361742D3A99956A63357B15, 2095F7E005FA529B44E80D7727AD390AB2CA9B5363840A24E79D90FE339771D7 ] C:\Windows\System32\atiadlxx.dll
15:21:37.0317 0x0d38  C:\Windows\System32\atiadlxx.dll - ok
15:21:37.0332 0x0d38  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
15:21:37.0332 0x0d38  C:\Windows\System32\imageres.dll - ok
15:21:37.0332 0x0d38  [ F8A669920BE3AE5ED88731D88BAA7F77, 033416E08D61476BDF0E3018A4BABFEECFCD7FCAA5664C4862167A0BBEC2331E ] C:\Windows\System32\atimuixx.dll
15:21:37.0332 0x0d38  C:\Windows\System32\atimuixx.dll - ok
15:21:37.0332 0x0d38  [ B551D6637AA0E132C18AC6E504F7B79B, FA6495533A14E01ABB0F6689AB7503B1B439D3ADA7457DFCB7D81714A9817327 ] C:\Windows\System32\WUDFSvc.dll
15:21:37.0332 0x0d38  C:\Windows\System32\WUDFSvc.dll - ok
15:21:37.0348 0x0d38  [ 95D498927F74ACA3593D653D42099915, E2194B2EA9832EAB69D76F578C8905FD7956D74CD85E4E10251606C048903941 ] C:\Windows\System32\WUDFHost.exe
15:21:37.0348 0x0d38  C:\Windows\System32\WUDFHost.exe - ok
15:21:37.0348 0x0d38  [ 518A0FD2A0E7BE84589659A948B1FBD6, D556BA169C35DC32577F06C1ECCE18B8DDA26B82DB62D23FC863891AD09ED1E6 ] C:\Windows\System32\WUDFx.dll
15:21:37.0348 0x0d38  C:\Windows\System32\WUDFx.dll - ok
15:21:37.0363 0x0d38  [ D5AB7A80129593168AC2F112B40D8545, 42B82F855C0F8CDB55EE33AB678007F936DFB4188112172003478374E0EACDAA ] C:\Windows\System32\drivers\UMDF\EhStorPwdDrv.dll
15:21:37.0363 0x0d38  C:\Windows\System32\drivers\UMDF\EhStorPwdDrv.dll - ok
15:21:37.0363 0x0d38  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
15:21:37.0363 0x0d38  C:\Windows\System32\PortableDeviceTypes.dll - ok
15:21:37.0363 0x0d38  [ 389CA818132C1D7DCF0C791E8D9035DE, 5E54799F92CC604FABEF2F97AFD97F9CAD70D01BCDBC41FAC408D60821927C12 ] C:\Windows\System32\PortableDeviceClassExtension.dll
15:21:37.0363 0x0d38  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
15:21:37.0379 0x0d38  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
15:21:37.0379 0x0d38  C:\Windows\System32\drivers\lltdio.sys - ok
15:21:37.0379 0x0d38  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
15:21:37.0379 0x0d38  C:\Windows\System32\drivers\nwifi.sys - ok
15:21:37.0379 0x0d38  [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] C:\Windows\System32\drivers\ndisuio.sys
15:21:37.0379 0x0d38  C:\Windows\System32\drivers\ndisuio.sys - ok
15:21:37.0395 0x0d38  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
15:21:37.0395 0x0d38  C:\Windows\System32\drivers\rspndr.sys - ok
15:21:37.0395 0x0d38  [ 57FE2CFC2F25C200499D5D934EA24EB5, 4802E9A2AE7849AAF1103113A9DB3647CFD7EA7472E712D3A1E768DA81A24F74 ] C:\Windows\System32\IPHLPAPI.DLL
15:21:37.0395 0x0d38  C:\Windows\System32\IPHLPAPI.DLL - ok
15:21:37.0395 0x0d38  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
15:21:37.0395 0x0d38  C:\Windows\System32\lmhsvc.dll - ok
15:21:37.0410 0x0d38  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
15:21:37.0410 0x0d38  C:\Windows\System32\winnsi.dll - ok
15:21:37.0410 0x0d38  [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] C:\Windows\System32\dhcpcore.dll
15:21:37.0410 0x0d38  C:\Windows\System32\dhcpcore.dll - ok
15:21:37.0410 0x0d38  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
15:21:37.0410 0x0d38  C:\Windows\System32\keyiso.dll - ok
15:21:37.0426 0x0d38  [ FD5BA198F7190DFE9BE1947EB8710396, DF901E8704FE4EFA7E386D0B432BDAF5129C8BBAF635921CEF16A2E016151B80 ] C:\Windows\System32\nrpsrv.dll
15:21:37.0426 0x0d38  C:\Windows\System32\nrpsrv.dll - ok
15:21:37.0426 0x0d38  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
15:21:37.0426 0x0d38  C:\Windows\System32\nsisvc.dll - ok
15:21:37.0426 0x0d38  [ 71C7B65B6557B75B99907E76956AE4B8, 38AD0E96D6AD36C0643761D5F5DB7A2802E059008C0984ABF61F4D8703DE4B3B ] C:\Windows\System32\dhcpcore6.dll
15:21:37.0426 0x0d38  C:\Windows\System32\dhcpcore6.dll - ok
15:21:37.0441 0x0d38  [ 85CF424C74A1D5EC33533E1DBFF9920A, 882D5FA0D5EC053D76A0C46A6047A621D607651693CF94E5506219EECCC8D079 ] C:\Windows\System32\dnsrslvr.dll
15:21:37.0441 0x0d38  C:\Windows\System32\dnsrslvr.dll - ok
15:21:37.0441 0x0d38  [ 982F5395AD181179320083A4FA7E7CA8, A54205CF9D5C0CE01D1BA079508BABF80F5B35D7DADBB1D64699E9E1D7CF37E8 ] C:\Windows\System32\eapphost.dll
15:21:37.0441 0x0d38  C:\Windows\System32\eapphost.dll - ok
15:21:37.0441 0x0d38  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
15:21:37.0441 0x0d38  C:\Windows\System32\eapsvc.dll - ok
15:21:37.0457 0x0d38  [ 0040C486584A8E582C861CFB57AB5387, 5EE17B55CB702D14AE75B19226DE21CD2498BDA6C6EF5872FDB8A718F401FED1 ] C:\Windows\System32\FWPUCLNT.DLL
15:21:37.0457 0x0d38  C:\Windows\System32\FWPUCLNT.DLL - ok
15:21:37.0457 0x0d38  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
15:21:37.0457 0x0d38  C:\Windows\System32\dnsext.dll - ok
15:21:37.0457 0x0d38  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
15:21:37.0457 0x0d38  C:\Windows\System32\dhcpcsvc.dll - ok
15:21:37.0473 0x0d38  [ 2017BFE87CAB3D7EF632CFD2AA08D3F0, 8A03D1EB5091E1C1DBD909CDC401DA2E876B0EA9893126840B8B87426C211992 ] C:\Windows\System32\umb.dll
15:21:37.0473 0x0d38  C:\Windows\System32\umb.dll - ok
15:21:37.0473 0x0d38  [ 4CBCC37856EA2039C27A2FB661DDA0E5, 74CBFAB3092A9564BDDFCB84DB3E3F8BCFD1492938ADF187423D3355D73D21C6 ] C:\Windows\System32\dhcpcsvc6.dll
15:21:37.0473 0x0d38  C:\Windows\System32\dhcpcsvc6.dll - ok
15:21:37.0473 0x0d38  [ 48A31B7CF046702059A86836DC21D786, 6876FA74DEBC66D2FA4FCB3009C29ECCD2107F1E103FCE90BC8C29C7360A9168 ] C:\Windows\System32\wlanmsm.dll
15:21:37.0473 0x0d38  C:\Windows\System32\wlanmsm.dll - ok
15:21:37.0488 0x0d38  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
15:21:37.0488 0x0d38  C:\Windows\System32\wlansec.dll - ok
15:21:37.0488 0x0d38  [ D2B0D1C2BE5ECA80387F7CB8626DCAFE, 14A269EB190CCF290BECEAC4A7B63B1312ED208F839A6C7B8E4BF74A786CE271 ] C:\Windows\System32\onex.dll
15:21:37.0488 0x0d38  C:\Windows\System32\onex.dll - ok
15:21:37.0488 0x0d38  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
15:21:37.0488 0x0d38  C:\Windows\System32\eappprxy.dll - ok
15:21:37.0504 0x0d38  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
15:21:37.0504 0x0d38  C:\Windows\System32\eappcfg.dll - ok
15:21:37.0504 0x0d38  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
15:21:37.0504 0x0d38  C:\Windows\System32\l2gpstore.dll - ok
15:21:37.0504 0x0d38  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
15:21:37.0504 0x0d38  C:\Windows\System32\wlgpclnt.dll - ok
15:21:37.0519 0x0d38  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
15:21:37.0519 0x0d38  C:\Windows\System32\wlanutil.dll - ok
15:21:37.0519 0x0d38  [ 22E7431E7DAE8463AF94A79A054276E5, 980EA547B86D3F2DF698FCB6A90200CC993DF4B7EE23BDB749D9179E0DD46944 ] C:\Windows\System32\WinSCard.dll
15:21:37.0519 0x0d38  C:\Windows\System32\WinSCard.dll - ok
15:21:37.0519 0x0d38  [ 72D3D64526765C34DBFC7D895B4FBDF6, 8BBBFE682253D2AD77B16C2C36551215CB212E51A24D4A6ACFDC844C37921660 ] C:\Windows\System32\msxml6.dll
15:21:37.0519 0x0d38  C:\Windows\System32\msxml6.dll - ok
15:21:37.0535 0x0d38  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] C:\Windows\System32\shsvcs.dll
15:21:37.0535 0x0d38  C:\Windows\System32\shsvcs.dll - ok
15:21:37.0535 0x0d38  [ 624D0F5FF99428BB90A5B8A4123E918E, 90A43E6F09B56CB86A3E3851F8E5ABB74905AEB70296F4B87BEDBC3027E65E86 ] C:\Windows\System32\schedsvc.dll
15:21:37.0535 0x0d38  C:\Windows\System32\schedsvc.dll - ok
15:21:37.0535 0x0d38  [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe
15:21:37.0535 0x0d38  C:\Windows\System32\wlanext.exe - ok
15:21:37.0551 0x0d38  [ F0D1646162FB07476CCCF62EDB034B8B, 1D79E18EC208FB8A31D2A2A1A1176B3B85154AAF16D05FFC893473BE46220565 ] C:\Windows\System32\conhost.exe
15:21:37.0551 0x0d38  C:\Windows\System32\conhost.exe - ok
15:21:37.0551 0x0d38  [ CC5902FC8AFCF96535CF683C73982AB3, 1830D2BC81F1CBBA75A8D75FE5D050252A6CC982FD39C48D3C90077FE817ADE5 ] C:\Windows\System32\athihvs.dll
15:21:37.0551 0x0d38  C:\Windows\System32\athihvs.dll - ok
15:21:37.0551 0x0d38  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
15:21:37.0551 0x0d38  C:\Windows\System32\ktmw32.dll - ok
15:21:37.0566 0x0d38  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
15:21:37.0566 0x0d38  C:\Windows\System32\wlanapi.dll - ok
15:21:37.0566 0x0d38  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
15:21:37.0566 0x0d38  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
15:21:37.0566 0x0d38  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] C:\Windows\System32\drivers\fastfat.sys
15:21:37.0566 0x0d38  C:\Windows\System32\drivers\fastfat.sys - ok
15:21:37.0582 0x0d38  [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9, 8450D5EE6B75FD4A6F36D47DD4B99E77A95F77447C7E39B06B1EAA7584B3775E ] C:\Windows\System32\taskcomp.dll
15:21:37.0582 0x0d38  C:\Windows\System32\taskcomp.dll - ok
15:21:37.0582 0x0d38  [ 1B38A0F123FCF1546FACEAF1EFAFAA00, CC3972B3011078568E548D97202973F374F7BA5BD23B4A52786D23D881281E10 ] C:\Windows\System32\fveapi.dll
15:21:37.0582 0x0d38  C:\Windows\System32\fveapi.dll - ok
15:21:37.0582 0x0d38  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
15:21:37.0582 0x0d38  C:\Windows\System32\fvecerts.dll - ok
15:21:37.0597 0x0d38  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
15:21:37.0597 0x0d38  C:\Windows\System32\tbs.dll - ok
15:21:37.0597 0x0d38  [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] C:\Windows\System32\drivers\http.sys
15:21:37.0597 0x0d38  C:\Windows\System32\drivers\http.sys - ok
15:21:37.0597 0x0d38  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
15:21:37.0597 0x0d38  C:\Windows\System32\wiarpc.dll - ok
15:21:37.0613 0x0d38  [ F8E1FA03CB70D54A9892AC88B91D1E7B, 55EECAAD4C7EC0868BE937F4ADDA026AFDFCC614E94DE4B3248BFF2BE7FF13E8 ] C:\Windows\System32\spoolsv.exe
15:21:37.0613 0x0d38  C:\Windows\System32\spoolsv.exe - ok
15:21:37.0613 0x0d38  [ ABB8771F4C78B7D60DE24437502D6B55, 9822B0A83D81342F1F2E2EA749F77264B2C552D6B63ED7A5DF59170AC0E781BB ] C:\Windows\System32\rastls.dll
15:21:37.0613 0x0d38  C:\Windows\System32\rastls.dll - ok
15:21:37.0613 0x0d38  [ BC052EFAD10ACA1AD69545B629F50D99, C29C5F5B000EFB54CCFC0724F82C7520AE60D911F3FD4BF17D8EA40D3877FD03 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
15:21:37.0613 0x0d38  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
15:21:37.0629 0x0d38  [ 0AF6E19D39C70844C5CAA8FB0183C36E, 4494EEFDEA7198888D32E74727E5BC0AC628FFA70B1FE7EB59DBEEDC1A95D0DD ] C:\Windows\System32\drivers\srvnet.sys
15:21:37.0629 0x0d38  C:\Windows\System32\drivers\srvnet.sys - ok
15:21:37.0629 0x0d38  [ 1482CC99F7E2DA2FECF59C6A774FED0A, 5C2D8DE9989E6E0F02EAA23B22554C273A340A2B938FBC78F7E993D6AE137CB8 ] C:\Windows\System32\raschap.dll
15:21:37.0629 0x0d38  C:\Windows\System32\raschap.dll - ok
15:21:37.0629 0x0d38  [ 19D20159708E152267E53B66677A4995, 6401FA5C3EFF26BED075FEC68F868CD8D0598FDB45EA9381810615F7252F7A9A ] C:\Windows\System32\drivers\bowser.sys
15:21:37.0629 0x0d38  C:\Windows\System32\drivers\bowser.sys - ok
15:21:37.0644 0x0d38  [ 040D62A9D8AD28922632137ACDD984F2, D9457BDA88C2E3AA4E716C0657B77A4A3E212328CDABD5C18279B6440E1C1594 ] C:\Windows\System32\drivers\mrxsmb.sys
15:21:37.0644 0x0d38  C:\Windows\System32\drivers\mrxsmb.sys - ok
15:21:37.0644 0x0d38  [ F0067552F8F9B33D7C59403AB808A3CB, 698B63528E1943BB4253BF7578DC128AA824C71BD04FF0521277E68B20656C02 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:21:37.0644 0x0d38  C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:21:37.0644 0x0d38  [ 3C142D31DE9F2F193218A53FE2632051, 026B3A932A95D5160B64E470FC414F3D388D429317D5EAEA2D476F715C4CAE75 ] C:\Windows\System32\drivers\mrxsmb20.sys
15:21:37.0644 0x0d38  C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:21:37.0660 0x0d38  [ 76548F7B818881B47D8D1AE1BE9C11F8, 8F1356B07A6A55746FC71B6DB0322128941AE890850196F2B19BC01E6FC9B41C ] C:\Windows\System32\drivers\srv2.sys
15:21:37.0660 0x0d38  C:\Windows\System32\drivers\srv2.sys - ok
15:21:37.0660 0x0d38  [ 2408C0366D96BCDF63E8F1C78E4A29C5, 66F646890695B5D80536E88B1566C8765D89CFE25954ED650F6D773EFF045016 ] C:\Windows\System32\drivers\srv.sys
15:21:37.0660 0x0d38  C:\Windows\System32\drivers\srv.sys - ok
15:21:37.0660 0x0d38  [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] C:\Windows\System32\wkssvc.dll
15:21:37.0660 0x0d38  C:\Windows\System32\wkssvc.dll - ok
15:21:37.0675 0x0d38  [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] C:\Windows\System32\browser.dll
15:21:37.0675 0x0d38  C:\Windows\System32\browser.dll - ok
15:21:37.0675 0x0d38  [ 8F6D9A20F1FB06F0602A7D5A82840DBF, 2BC5D14472205C1593D8153DEC48E42A5B5FD27A710DE091052152E0AE6A850E ] C:\Windows\System32\netcfgx.dll
15:21:37.0675 0x0d38  C:\Windows\System32\netcfgx.dll - ok
15:21:37.0675 0x0d38  [ 81F1D04D4D0E433099365127375FD501, C2A81B5A482C974E8108806486EC28CB2D81400D42639682FE7B7A9BDF14BA9B ] C:\Windows\System32\srvsvc.dll
15:21:37.0675 0x0d38  C:\Windows\System32\srvsvc.dll - ok
15:21:37.0691 0x0d38  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
15:21:37.0691 0x0d38  C:\Windows\System32\netmsg.dll - ok
15:21:37.0691 0x0d38  [ 836892094209E5D9CF403B4CF2829B5C, C8CB0FCCBF4C7E5E64E1B4225B559E049A25792F99A880DEEC5C66243B6EC2CA ] C:\Windows\System32\sscore.dll
15:21:37.0691 0x0d38  C:\Windows\System32\sscore.dll - ok
15:21:37.0707 0x0d38  [ 4EAE37133B78A26A84EA1649D9B21A1E, 832FE4BCF5E3721267E5E30392C29FC96976F2ABFF5B0BED768F8D97606D8D98 ] C:\Windows\System32\clusapi.dll
15:21:37.0707 0x0d38  C:\Windows\System32\clusapi.dll - ok
15:21:37.0707 0x0d38  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
15:21:37.0707 0x0d38  C:\Windows\System32\resutils.dll - ok
15:21:37.0707 0x0d38  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] C:\Windows\System32\drivers\vwifimp.sys
15:21:37.0707 0x0d38  C:\Windows\System32\drivers\vwifimp.sys - ok
15:21:37.0722 0x0d38  [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:21:37.0722 0x0d38  C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:21:37.0722 0x0d38  [ AFB5B500AD69E24ED1BC15D1161641EF, C8EE01224FA8020DAE6F9BCE2FD88EDC2441164393ED6E68DAA1EA0B8190276F ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
15:21:37.0722 0x0d38  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
15:21:37.0722 0x0d38  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
15:21:37.0722 0x0d38  C:\Windows\System32\rasadhlp.dll - ok
15:21:37.0738 0x0d38  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe
15:21:37.0738 0x0d38  C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe - ok
15:21:37.0738 0x0d38  [ 3ABE95D92C80DC79707D8E168D79A994, 2159D9D5C9355521DE859D1C40907FCDFEF19F8CF68EDA7485B89E9AA119E3AD ] C:\Windows\System32\EhStorAuthn.exe
15:21:37.0738 0x0d38  C:\Windows\System32\EhStorAuthn.exe - ok
15:21:37.0738 0x0d38  [ 7EF47644B74EBE721CC32211D3C35E76, 1381908E70567AAE5A8C96C4B7BF8E68748F64DE3243FD0FA8CC0E72DEEDA9A7 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:21:37.0738 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
15:21:37.0753 0x0d38  [ DB6DD54A93522CA3572D04B56C5DB890, 8513EB3785009B89E592422C159675142DE4D7BE4EA4000C65EC7AFC0F719383 ] C:\Windows\SysWOW64\ntdll.dll
15:21:37.0753 0x0d38  C:\Windows\SysWOW64\ntdll.dll - ok
15:21:37.0753 0x0d38  [ ADFDF57DC62AE66FE47D5AD1C838131B, D9D96BCBAB179E44EA92B0E3282577171BC54CF2585230DA0B920A1761280558 ] C:\Windows\System32\wow64.dll
15:21:37.0753 0x0d38  C:\Windows\System32\wow64.dll - ok
15:21:37.0753 0x0d38  [ E9727C5B096B0722BEBEE269ED841F37, 9E3D670DDD441C371C5C955B95AAE261066E01B5FC8BB9D69E482BD01AF93BCF ] C:\Windows\System32\wow64win.dll
15:21:37.0753 0x0d38  C:\Windows\System32\wow64win.dll - ok
15:21:37.0769 0x0d38  [ C0A718C7421975E8D25FF78271A8F54A, A2D6E9226765DE3735647E6D379F54C0760376AEA914FADB18132D6554972B2D ] C:\Windows\System32\wow64cpu.dll
15:21:37.0769 0x0d38  C:\Windows\System32\wow64cpu.dll - ok
15:21:37.0769 0x0d38  [ 4EA99F1644627B1EBAD99D0B93CDEE1C, 979B96262620CEB59621B3007678AF35FAAFDBA34E9DC5C48F5DA2CC08BA1D25 ] C:\Windows\SysWOW64\kernel32.dll
15:21:37.0769 0x0d38  C:\Windows\SysWOW64\kernel32.dll - ok
15:21:37.0769 0x0d38  [ 2BF12696F4AC8AFCFC06EAD6F8D2DB4C, 0CDF5AEEF97C9AE414162B2500EE28686C8DE9BEB541D1E0257F9358FE36A19B ] C:\Windows\SysWOW64\KernelBase.dll
15:21:37.0769 0x0d38  C:\Windows\SysWOW64\KernelBase.dll - ok
15:21:37.0785 0x0d38  [ 0C65FA8214D6F8378D1D3BA1CA46AF0A, C8D0226F39A9DE3B871E84BB6B14975CBBE16A34ADAACBC33ACF726EE6E17104 ] C:\Windows\SysWOW64\advapi32.dll
15:21:37.0785 0x0d38  C:\Windows\SysWOW64\advapi32.dll - ok
15:21:37.0785 0x0d38  [ F8A61B2E713309B4616D107919BDAB6E, 53641E6362A8E229D34480E873618F42AF45116C960458422398B35B5D029289 ] C:\Windows\SysWOW64\msvcrt.dll
15:21:37.0785 0x0d38  C:\Windows\SysWOW64\msvcrt.dll - ok
15:21:37.0785 0x0d38  [ 90385551B6B3793E949DF310A11D64E7, 11AF8D1723F6C57781B200CD78A93686BF26B645ACEEF336FAC7E7E53C4E0946 ] C:\Windows\SysWOW64\rpcrt4.dll
15:21:37.0785 0x0d38  C:\Windows\SysWOW64\rpcrt4.dll - ok
15:21:37.0800 0x0d38  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
15:21:37.0800 0x0d38  C:\Windows\SysWOW64\sechost.dll - ok
15:21:37.0800 0x0d38  [ 351F62085F1D007533B4BB159C9EFDE3, B7C92318C3CADD757BE3CF1830C1A938951D15493758AC33B87CBC4AECBACCDF ] C:\Windows\SysWOW64\sspicli.dll
15:21:37.0800 0x0d38  C:\Windows\SysWOW64\sspicli.dll - ok
15:21:37.0800 0x0d38  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
15:21:37.0800 0x0d38  C:\Windows\SysWOW64\cryptbase.dll - ok
15:21:37.0816 0x0d38  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
15:21:37.0816 0x0d38  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
15:21:37.0816 0x0d38  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:21:37.0816 0x0d38  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
15:21:37.0816 0x0d38  [ F037DB14CF6165C62F4A64D12A25B07C, 26CE06C858F59691F6D6D41E0031D9CD1ACB9AF24569FC3A0E869C08AA5225B5 ] C:\Windows\SysWOW64\shlwapi.dll
15:21:37.0816 0x0d38  C:\Windows\SysWOW64\shlwapi.dll - ok
15:21:37.0831 0x0d38  [ FBE1E0B9EF53B5BB7C36763AA6A685CF, E999D53365387DCE50BE8A0FBD5E05222636D8CDDB309A529380076BE778729D ] C:\Windows\SysWOW64\gdi32.dll
15:21:37.0831 0x0d38  C:\Windows\SysWOW64\gdi32.dll - ok
15:21:37.0831 0x0d38  [ E8B0FFC209E504CB7E79FC24E6C085F0, 7F756B1DA060D5764C81F8D099E34265186B7E5E6B0FCA08E7FB3989EF4ED0E4 ] C:\Windows\SysWOW64\user32.dll
15:21:37.0831 0x0d38  C:\Windows\SysWOW64\user32.dll - ok
15:21:37.0831 0x0d38  [ 384721EF4024890092625E20CADFAF85, 32FB012437C271CA4408EC60E6858485C2F9489107BBDB7011F728A0D2A26D2C ] C:\Windows\SysWOW64\lpk.dll
15:21:37.0831 0x0d38  C:\Windows\SysWOW64\lpk.dll - ok
15:21:37.0847 0x0d38  [ 0BA19F3198C40AC4E8CC66EE02EDA6C6, 4555FB6ED0F286DF94FEACFEC36BF23E0F586CFA80DEE45C5EA7A0760C967E84 ] C:\Windows\SysWOW64\usp10.dll
15:21:37.0847 0x0d38  C:\Windows\SysWOW64\usp10.dll - ok
15:21:37.0847 0x0d38  [ 0DE3069D6E09BA262856EF31C941BEFE, 5F73305B7910B486882AFA838F1A0F0104B8FB1C2EAC14623D2028D23A704CA7 ] C:\Windows\SysWOW64\imm32.dll
15:21:37.0847 0x0d38  C:\Windows\SysWOW64\imm32.dll - ok
15:21:37.0847 0x0d38  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
15:21:37.0847 0x0d38  C:\Windows\SysWOW64\msctf.dll - ok
15:21:37.0863 0x0d38  [ 60C079CB2150760263D1FE5FF6218961, FDC5B854D44033F2B6063E4964BA753E7F8280F210103FF9AAC72CFDF70F08DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
15:21:37.0863 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:21:37.0863 0x0d38  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
15:21:37.0863 0x0d38  C:\Windows\SysWOW64\version.dll - ok
15:21:37.0863 0x0d38  [ 2DEDC3AFE3C49B5DAE717D0A9BEBF298, 2809209FC4E6C7EEC80ADA7886096086E18DEA91547A34B4338528DB4AD24C78 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:21:37.0863 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:21:37.0878 0x0d38  [ 67B539D844F804EBAC7A1E3828FDE709, C1973A3CF2C937262224690168F1530162B2E08773C9F7C690ACFD81E427A8D3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:21:37.0878 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:21:37.0878 0x0d38  [ 2CBC35E872BA9B46474890135B56DD66, 70A1FEA26B55CF9A4B9CD67B94EE9D04F55CF02A7BFCA4B650B4A47A57B8B043 ] C:\Windows\SysWOW64\shell32.dll
15:21:37.0878 0x0d38  C:\Windows\SysWOW64\shell32.dll - ok
15:21:37.0878 0x0d38  [ DAAE8A9B8C0ACC7F858454132553C30D, 668A2FF7C4774A73D19E06D0E32B070C3B58FA66D273E647A01EE502A0CEE026 ] C:\Windows\SysWOW64\ws2_32.dll
15:21:37.0878 0x0d38  C:\Windows\SysWOW64\ws2_32.dll - ok
15:21:37.0894 0x0d38  [ DF1C1CD0C7EE95CC00D71E9E415E7BCD, 668B6A8E029D364B70C965E2692EC0B8138D798AA26FDAB00AD71183BFFC60A8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:21:37.0894 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:21:37.0894 0x0d38  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
15:21:37.0894 0x0d38  C:\Windows\SysWOW64\nsi.dll - ok
15:21:37.0909 0x0d38  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
15:21:37.0909 0x0d38  C:\Windows\SysWOW64\wsock32.dll - ok
15:21:37.0909 0x0d38  [ 32D78DCABFB942275E01363D5232C77D, 3ACE2DFCA8E82AFEE6F2BB84BABA6B7D0547C5D4148B1B5E25B9B75FAD2CA0E9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
15:21:37.0909 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
15:21:37.0909 0x0d38  [ 3BDE52411DF2FE4252C9289F51CB0F7E, 7C88DEDBBCCE71AA765B3078520B871C1D069DBFD6F78639B8541C3FD356756E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
15:21:37.0909 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:21:37.0925 0x0d38  [ 26A634B2E0FD87F23541AD13A503CA72, B4D6CA0EADA9862493C449A8532C4033F11CE835E048857BF604DB9D893C0943 ] C:\Windows\SysWOW64\winmm.dll
15:21:37.0925 0x0d38  C:\Windows\SysWOW64\winmm.dll - ok
15:21:37.0925 0x0d38  [ FD86C605FD7AD4A41C01EC7A4A1E1C5D, 416DA89AD7BF8D830BD9FAAC0D05B7327D8AF8D82E2B32C1BA3501123FA9192A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
15:21:37.0925 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:21:37.0925 0x0d38  [ A3609397EF273B03295DBB10274BE12C, E8B676074B1C17A6380248DEBC1C8D337FD3AC7CCCAD9B0E1F1A41D30F6146DC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
15:21:37.0925 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:21:37.0941 0x0d38  [ 149D74E1128A86DC9CFB2851FBEA11EB, 95E2FF3379DEE729089CF85140C4D4C202B7FEFE239024D48DFFD5CB1E7415BC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
15:21:37.0941 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
15:21:37.0941 0x0d38  [ BA02F01BE7ED88E8974C798ACB3075F5, D7631726821FD0330BC301E70E1BA79B6941DE8D6E606DA0872B2B027EBECC9B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
15:21:37.0941 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:21:37.0941 0x0d38  [ E2C2D8C982316C8ABF800C6CE3F28FAB, C785FD0FEF845F71E4B08F6B01F6ED5024555B75D70B0D890582912C07300993 ] C:\Windows\SysWOW64\ole32.dll
15:21:37.0941 0x0d38  C:\Windows\SysWOW64\ole32.dll - ok
15:21:37.0956 0x0d38  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
15:21:37.0956 0x0d38  C:\Windows\SysWOW64\profapi.dll - ok
15:21:37.0956 0x0d38  [ F8ECB748B53A010464F7A63154D75F56, 21D8B92B78373ED4E26EF903574A24A56AC63C9C545C77B888408F49D27475AE ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
15:21:37.0956 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
15:21:37.0956 0x0d38  [ 41323AB614A2B66AD77B1121D24AC895, 3B441E113365F597F5AA18979AFFD5F7F37F75EBFBBA0AE821ACEE550E3EEC05 ] C:\Windows\SysWOW64\setupapi.dll
15:21:37.0956 0x0d38  C:\Windows\SysWOW64\setupapi.dll - ok
15:21:37.0972 0x0d38  [ E702ED19C332C1F12C1403D100E2F4F3, F0BC68B69E7732DD46381D0B0D9A31EFC499DE1D1134F25098732510E3F16E19 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:21:37.0972 0x0d38  C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:21:37.0972 0x0d38  [ 705C210EFC5564BE49EB026BD7AFF27A, 8C46F126D2945A2A33DC28A9C9ECBE9C78FC30091D7D410490569F9819AEE73F ] C:\Windows\SysWOW64\oleaut32.dll
15:21:37.0972 0x0d38  C:\Windows\SysWOW64\oleaut32.dll - ok
15:21:37.0972 0x0d38  [ 6C9C05D5344B9AB80E9180FC859BC45A, 036E82A0D01612503388E4A008D80D662FA4D8003A8F6CBA1C4CE6170A3DFF6F ] C:\Windows\SysWOW64\devobj.dll
15:21:37.0972 0x0d38  C:\Windows\SysWOW64\devobj.dll - ok
15:21:37.0987 0x0d38  [ 9C0DC1DAAD14D443DD5A0D1EE78D775E, 73BA5BDF50EB78FA8BF479ADE0F1826FBB161CA70AF1405E06B64F4D2254B42C ] C:\Windows\SysWOW64\userenv.dll
15:21:37.0987 0x0d38  C:\Windows\SysWOW64\userenv.dll - ok
15:21:37.0987 0x0d38  [ 062373995EAE5F0EAC9EAA9192136BFB, 0392D5656BD677C4C5CB74C96E7B85B0867F2535A37950AEC7F5C4A1A70D19AE ] C:\Windows\SysWOW64\dnssd.dll
15:21:37.0987 0x0d38  C:\Windows\SysWOW64\dnssd.dll - ok
15:21:37.0987 0x0d38  [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9, 70D11382A242DB280FC121DBB95D2810E9139DAB6B66BA5FD58F115E3572649B ] C:\Windows\SysWOW64\wtsapi32.dll
15:21:37.0987 0x0d38  C:\Windows\SysWOW64\wtsapi32.dll - ok
15:21:38.0003 0x0d38  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
15:21:38.0003 0x0d38  C:\Windows\SysWOW64\ntmarta.dll - ok
15:21:38.0003 0x0d38  [ BFA70A99AD1434263F2DFBBA103BDEF8, 5A0E73D48824C23E2C221EAC369A906FEDECE0E047E8C7E5F012242E74AFAF9E ] C:\Windows\SysWOW64\Wldap32.dll
15:21:38.0003 0x0d38  C:\Windows\SysWOW64\Wldap32.dll - ok
15:21:38.0003 0x0d38  [ 11A41F17527ED75D6B758FDD7F4FD00D, A646BA0BAA992A7B98C813AD8D834D57F27DB6F7F0F3200F68CB8B99F4C5D731 ] C:\Windows\SysWOW64\mswsock.dll
15:21:38.0003 0x0d38  C:\Windows\SysWOW64\mswsock.dll - ok
15:21:38.0019 0x0d38  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:21:38.0019 0x0d38  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:21:38.0019 0x0d38  [ 2C478E667CE27B2B7142F756CF569A9A, DE7BB5AC07BE80C0908C0CDC245E13704E425870D6A9B8FF22CAEFF3728761DC ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
15:21:38.0019 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
15:21:38.0034 0x0d38  [ 9B086D98370BA0219F6805675D38DDA7, 21CC0889600A98E3D4BAE9033DE91821D7EA43628F03A1ECD41FF92ACD9A70F8 ] C:\Windows\SysWOW64\wininet.dll
15:21:38.0034 0x0d38  C:\Windows\SysWOW64\wininet.dll - ok
15:21:38.0034 0x0d38  [ B113ACEF21F65B2DA781C4F2F36233FA, 2D6B49F52A34C0913283719B5DBC67E83BAA7A8E8124903409EDB2CCF4E459FE ] C:\Windows\SysWOW64\urlmon.dll
15:21:38.0034 0x0d38  C:\Windows\SysWOW64\urlmon.dll - ok
15:21:38.0034 0x0d38  [ 5923DB041C82BD93FE6C54114470CE17, 998A6FF982D61A2F174FB706863A1FEB52ADCD5672F4F2A6800E0A0B5CDC5322 ] C:\Windows\SysWOW64\crypt32.dll
15:21:38.0034 0x0d38  C:\Windows\SysWOW64\crypt32.dll - ok
15:21:38.0050 0x0d38  [ 4C04900AA8C323F5D4C316A89E976849, E84FB3D045CF0250C3DE3C39248639D38625FCC31AC16B65BFAC0D3245FF8FEB ] C:\Windows\SysWOW64\msasn1.dll
15:21:38.0050 0x0d38  C:\Windows\SysWOW64\msasn1.dll - ok
15:21:38.0050 0x0d38  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe
15:21:38.0050 0x0d38  C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:21:38.0050 0x0d38  [ F02786B66375292E58C8777082D4396D, EE7BCD10C014A16A06619EFD47226FAA1460A67CD7687EA8C38D63C71DBCD51B ] C:\Windows\System32\cryptsvc.dll
15:21:38.0050 0x0d38  C:\Windows\System32\cryptsvc.dll - ok
15:21:38.0050 0x0d38  [ C6D332ED6A3BD6060C0F0F5A18C1A3C0, AA9BA25BB74271F59752B520C83442BF67B3088F9B11087E5AEA3D0FBC4AAC75 ] C:\Windows\System32\cryptnet.dll
15:21:38.0065 0x0d38  C:\Windows\System32\cryptnet.dll - ok
15:21:38.0065 0x0d38  [ A261AD1FDC6D6A658A82B81AF81B215F, 1E967BD93AEC90A68E1B376A6433F0BAF659E7DFEED39EDA34BAF8E4B88FA2D2 ] C:\Windows\System32\vssapi.dll
15:21:38.0065 0x0d38  C:\Windows\System32\vssapi.dll - ok
15:21:38.0065 0x0d38  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
15:21:38.0065 0x0d38  C:\Windows\System32\vsstrace.dll - ok
15:21:38.0081 0x0d38  [ 66257CB4E4FB69887CDDC71663741435, A072C2868EC3CB773F1C512C9E07D152920794969E302199E8265CFFFD3EFC2D ] C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
15:21:38.0081 0x0d38  C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe - ok
15:21:38.0081 0x0d38  [ B7E663FF6F235820BCA06BA925335AE3, 3ABB0EBFE9C47F8A2CEF6F405518E405F4A92871D73BC00D9B22076E09A8FDE8 ] C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
15:21:38.0081 0x0d38  C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll - ok
15:21:38.0081 0x0d38  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
15:21:38.0081 0x0d38  C:\Windows\SysWOW64\rasapi32.dll - ok
15:21:38.0097 0x0d38  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
15:21:38.0097 0x0d38  C:\Windows\SysWOW64\rasman.dll - ok
15:21:38.0097 0x0d38  [ 73D0D7B600FD4785E019AACC60E4E77B, 7D641D0102E11784EC20F8E9637F1AA483EEAA71C27E80939C28F162EAC686F4 ] C:\Windows\SysWOW64\iertutil.dll
15:21:38.0097 0x0d38  C:\Windows\SysWOW64\iertutil.dll - ok
15:21:38.0097 0x0d38  [ A56CCBBFCCEDCE2FD9C69FED24E035E3, F2D59EBD24EF8ED039EDA084229201D180F8CE8C2B4A2F48FFD364979697AC85 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
15:21:38.0097 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:21:38.0112 0x0d38  [ 126B75D50756FE204283D418AE1A66DF, 3D12ADDCFD4D7233C787101C848FD1D7A62B6B6386FB2043B3D8F45502950312 ] C:\Windows\SysWOW64\msvcirt.dll
15:21:38.0112 0x0d38  C:\Windows\SysWOW64\msvcirt.dll - ok
15:21:38.0112 0x0d38  [ 46A6BA9274D075A2C30025C4E96D875A, 5A7D7335EC2E5E08DC459E2C972A2A8D62AEC500452F1773ADE272B56C12EC56 ] C:\Windows\SysWOW64\msvcp60.dll
15:21:38.0112 0x0d38  C:\Windows\SysWOW64\msvcp60.dll - ok
15:21:38.0112 0x0d38  [ 74C76BB54B26CE50C4BC755F92687C63, 7DD3D4A6898F5C0FC3B6BBEB1556F48CC4F7E599D9B63F5F04231B3CA8A7922A ] C:\Windows\SysWOW64\mfc42.dll
15:21:38.0112 0x0d38  C:\Windows\SysWOW64\mfc42.dll - ok
15:21:38.0128 0x0d38  [ 5D76C8CC87D0EFBE0B4A3BEF6B67EBF0, B14D8B284F383608B21F772CCB720DFEF9E4285AAC3605F577751B6CB8F3FF99 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:21:38.0128 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:21:38.0128 0x0d38  [ 5764C381949147EBCFB9A7134E2ABF06, 4D5F30F0B084D867609A2B4A1F0AE7950B270209A30F5030E18CEED2C8D83BD7 ] C:\Windows\SysWOW64\odbc32.dll
15:21:38.0128 0x0d38  C:\Windows\SysWOW64\odbc32.dll - ok
15:21:38.0128 0x0d38  [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\SysWOW64\odbcint.dll
15:21:38.0128 0x0d38  C:\Windows\SysWOW64\odbcint.dll - ok
15:21:38.0143 0x0d38  [ 6095266CAAF5E75F394CFD4844CC4C25, 99C10DDD9F86D6FC10F5417F7FDE7A48909CDEF53F47D8A2DBFB0B656F89FCA6 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:21:38.0143 0x0d38  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:21:38.0143 0x0d38  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
15:21:38.0143 0x0d38  C:\Windows\SysWOW64\winnsi.dll - ok
15:21:38.0143 0x0d38  [ C28FD3B37B6F18751C99E6022A2A9782, 0D59CEE5F5E0731DD250A4FFD794E4F8ACA43BB5408145261D218245C4683551 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
15:21:38.0143 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:21:38.0159 0x0d38  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:21:38.0159 0x0d38  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:21:38.0159 0x0d38  [ 29CA5974FAB0E8AE4AA7814FE05CF832, ADE54D406AAB7C364851AAD278A569426C9ADD4F7FB543BB08428CED963BF541 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:21:38.0159 0x0d38  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:21:38.0159 0x0d38  [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] C:\Windows\System32\dps.dll
15:21:38.0159 0x0d38  C:\Windows\System32\dps.dll - ok
15:21:38.0175 0x0d38  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
15:21:38.0175 0x0d38  C:\Windows\System32\FDResPub.dll - ok
15:21:38.0175 0x0d38  [ 6380BE4AB7AFA48BAEF321E8CA980ADD, 13E888FD9C67395B69FEE5288241287C8C55E50CC8E9A732C62540589042DA7B ] C:\Windows\SysWOW64\wintrust.dll
15:21:38.0175 0x0d38  C:\Windows\SysWOW64\wintrust.dll - ok
15:21:38.0175 0x0d38  [ 18301B40411B2108076AB685B4E4B6DC, 5E9DCB2376FCBAB5958BF3272B180221D547B3AE3D6758BBD354B9F57BD28C43 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
15:21:38.0175 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:21:38.0190 0x0d38  [ DC57BAF15064ECB79F6D2CCF352E1D88, 0693B2F061F0E8CA75A136E3563C4F7DF86CDDA878439CC44A745CA19D097E31 ] C:\Windows\System32\taskschd.dll
15:21:38.0190 0x0d38  C:\Windows\System32\taskschd.dll - ok
15:21:38.0190 0x0d38  [ 05FE4A30177E858B51F5E1E970FE9925, 83711861B648EBC744BDC846DBF043C9D6ED8324E5768A40338C6161613C2E70 ] C:\Windows\System32\WSDApi.dll
15:21:38.0190 0x0d38  C:\Windows\System32\WSDApi.dll - ok
15:21:38.0190 0x0d38  [ BCC4A8B2E2E902F52E7F2E7D8E125765, 4253DEABF5E4613E42BFC921BF4E2DD5BDF80A640250F41BDA7DD2711A6BA8A1 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
15:21:38.0190 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - ok
15:21:38.0206 0x0d38  [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\SysWOW64\svchost.exe
15:21:38.0206 0x0d38  C:\Windows\SysWOW64\svchost.exe - ok
15:21:38.0206 0x0d38  [ F3F72A2A86C22610BCA5439FA789DD52, DA5A8F09DCC512AA1558863AD4FAC12F72DD83CA8FB4D8D9831E4AFBB6B3C616 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
15:21:38.0206 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
15:21:38.0206 0x0d38  [ A3EA403D2B74C5F71B7E8B3DAE92DE1E, DF91A8D06EA27D4CF7D61A8EF488D4F42DE88629CC2BC9F4A72B66FF2D6CEE4B ] C:\Windows\System32\webservices.dll
15:21:38.0206 0x0d38  C:\Windows\System32\webservices.dll - ok
15:21:38.0221 0x0d38  [ 2238B91AC1A12CC6CC4C4FED41258B2A, 11DEBFAC8D6B23415928C635981E3378DE7C1F361F2B7A1390D86B0D782C22C6 ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
15:21:38.0221 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
15:21:38.0221 0x0d38  [ BBB4F402C02367449C4C38D7D7097458, 6CC850C2AD585634954201A7244E1E9F081255FD8D7198E4E528CA539436B4F4 ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
15:21:38.0221 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
15:21:38.0221 0x0d38  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
15:21:38.0221 0x0d38  C:\Windows\System32\fundisc.dll - ok
15:21:38.0237 0x0d38  [ AAFCA5BE1E8D0844A4DBA0A6E61C2CA3, F27A0AF69490785BBA6B3C7CE444E998B1EC2668FF5B8CF431D6E56E72F872EF ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
15:21:38.0237 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
15:21:38.0237 0x0d38  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
15:21:38.0237 0x0d38  C:\Windows\SysWOW64\psapi.dll - ok
15:21:38.0253 0x0d38  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] C:\Windows\System32\HPZinw12.dll
15:21:38.0253 0x0d38  C:\Windows\System32\HPZinw12.dll - ok
15:21:38.0253 0x0d38  [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] C:\Windows\System32\nlasvc.dll
15:21:38.0253 0x0d38  C:\Windows\System32\nlasvc.dll - ok
15:21:38.0253 0x0d38  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
15:21:38.0253 0x0d38  C:\Windows\System32\pcasvc.dll - ok
15:21:38.0268 0x0d38  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
15:21:38.0268 0x0d38  C:\Windows\System32\wsock32.dll - ok
15:21:38.0268 0x0d38  [ 107F279517E2A04DB4AC1B1FAF1D573B, 487F505E97288ACA23229D1D421FD62E3A8FE59FA3A504F6C125854DF8BEDE5B ] C:\Windows\System32\ncsi.dll
15:21:38.0268 0x0d38  C:\Windows\System32\ncsi.dll - ok
15:21:38.0268 0x0d38  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
15:21:38.0268 0x0d38  C:\Windows\System32\aepic.dll - ok
15:21:38.0284 0x0d38  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
15:21:38.0284 0x0d38  C:\Windows\System32\sfc.dll - ok
15:21:38.0284 0x0d38  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
15:21:38.0284 0x0d38  C:\Windows\System32\sfc_os.dll - ok
15:21:38.0284 0x0d38  [ 0BF0C2A72F2CB0BA4382C392D3E331AF, 08C959E87614F6D740374A0D2F7AD9FE47EA4AA531E05F5411469370CA34309F ] C:\Windows\System32\winhttp.dll
15:21:38.0284 0x0d38  C:\Windows\System32\winhttp.dll - ok
15:21:38.0299 0x0d38  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
15:21:38.0299 0x0d38  C:\Windows\System32\drivers\PEAuth.sys - ok
15:21:38.0299 0x0d38  [ 2196CDBFA4B99BEEDAE300FA21DFE718, E6CFAA2AC254B2F26249CC43B2B960FE7621C6CC493B7E6976D3AB46349BB129 ] C:\Windows\System32\webio.dll
15:21:38.0299 0x0d38  C:\Windows\System32\webio.dll - ok
15:21:38.0299 0x0d38  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
15:21:38.0299 0x0d38  C:\Windows\System32\ssdpapi.dll - ok
15:21:38.0315 0x0d38  [ BABC6AB89EB4E2027EA469723D71DE92, DCD806877EDF859002BB2202C9EDAA80DD98503197D92522498736F73EA8F02A ] C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe
15:21:38.0315 0x0d38  C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe - ok
15:21:38.0315 0x0d38  [ EABEE740565B231696A7DD8D0BFF069F, 14BD4B8C4F7FF8FCB6FFB7315D0C287F5B241F4B1BD8E91A1D0BBD7D58D68D28 ] C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommSdk.dll
15:21:38.0315 0x0d38  C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommSdk.dll - ok
15:21:38.0315 0x0d38  [ A6A7AD767BF5141665F5C675F671B3E1, 11D43F732C3B82679E53516F83E675B60B0EFEDE3F4EE3C42AC752AD8D5155AF ] C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
15:21:38.0315 0x0d38  C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe - ok
15:21:38.0331 0x0d38  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] C:\Windows\System32\HPZipm12.dll
15:21:38.0331 0x0d38  C:\Windows\System32\HPZipm12.dll - ok
15:21:38.0331 0x0d38  [ 61E02CC3184B63FAFE0B83EAC8B3B8EF, 006E453C901E2D3ED53D359087071145D27AE4CFFEBD5C6EDCFEFB17DFF27F15 ] C:\Windows\SysWOW64\winspool.drv
15:21:38.0331 0x0d38  C:\Windows\SysWOW64\winspool.drv - ok
15:21:38.0331 0x0d38  [ 4D59A5B6EF0AF6F9FDF3D157534380AF, C9C5F454C9E555D44667240FBA891924EF1FCDA020FEDC996D91DAE29E3526E4 ] C:\Windows\SysWOW64\oleacc.dll
15:21:38.0331 0x0d38  C:\Windows\SysWOW64\oleacc.dll - ok
15:21:38.0346 0x0d38  [ D3EAD1CF16BA729A7F7C9A5D94AA7C05, 6736723C88B2324CD8B39516E7908E75E31A923E93DDBE05F81E8D1A08DBC585 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
15:21:38.0346 0x0d38  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
15:21:38.0346 0x0d38  [ 6C0BD9D59C7E97DEE2FB3407D17BF697, C77DF45B0969DC9D99C1B0F14BECF95403679B912B26B66039A408921613499B ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:21:38.0346 0x0d38  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:21:38.0346 0x0d38  [ 498EB62A160674E793FA40FD65390625, F7EFD480E6C95F5B6202EEB87F519A8A8187F7F26281FB3E302EDD1AD5771025 ] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
15:21:38.0346 0x0d38  C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe - ok
15:21:38.0362 0x0d38  [ 7E53957E73BFB209D49932A9DDEBEDE4, 03D6FA75D15283C9402B46DBE9CDA1FA832971443AB188D3FA8E4708C32FAAC5 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
15:21:38.0362 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
15:21:38.0362 0x0d38  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
15:21:38.0362 0x0d38  C:\Windows\System32\drivers\secdrv.sys - ok
15:21:38.0362 0x0d38  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
15:21:38.0362 0x0d38  C:\Windows\SysWOW64\clbcatq.dll - ok
15:21:38.0377 0x0d38  [ 4E89E366AC416634A563E9AB8491D0F7, 77459461B6DEF9BF3A9E46BD861579C08121048F9887D9C12E078F7D28D5CF01 ] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
15:21:38.0377 0x0d38  C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe - ok
15:21:38.0377 0x0d38  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
15:21:38.0377 0x0d38  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
15:21:38.0377 0x0d38  [ 370C768027532CF01E8B9183A7DE8DBC, 3FB994F4B0D5B089EEAD799C1C12E80E97C2B906139E074C8C01E711191D9AFB ] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\SLog64.dll
15:21:38.0377 0x0d38  C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\SLog64.dll - ok
15:21:38.0393 0x0d38  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
15:21:38.0393 0x0d38  C:\Windows\SysWOW64\cryptsp.dll - ok
15:21:38.0393 0x0d38  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
15:21:38.0393 0x0d38  C:\Windows\SysWOW64\rsaenh.dll - ok
15:21:38.0393 0x0d38  [ CF006673B3FD5DC08A781FAEB9A7EB73, EBE054EF4CC07FF73EC1271CE8B455FD257DDD5BA27737178EC8B2BCF156113B ] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NECore64.dll
15:21:38.0393 0x0d38  C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NECore64.dll - ok
15:21:38.0409 0x0d38  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
15:21:38.0409 0x0d38  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
15:21:38.0409 0x0d38  [ BB7E865599FA258C70DF8B1F70109F6F, 9DE5150D59127632BF2CD5DAF84D2D9E6E367E958A3A839F5134DC6685E7A284 ] C:\Windows\System32\newdev.dll
15:21:38.0409 0x0d38  C:\Windows\System32\newdev.dll - ok
15:21:38.0424 0x0d38  [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] C:\Windows\System32\drivers\tcpipreg.sys
15:21:38.0424 0x0d38  C:\Windows\System32\drivers\tcpipreg.sys - ok
15:21:38.0424 0x0d38  [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] C:\Windows\System32\sysmain.dll
15:21:38.0424 0x0d38  C:\Windows\System32\sysmain.dll - ok
15:21:38.0424 0x0d38  [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] C:\Windows\System32\wiaservc.dll
15:21:38.0424 0x0d38  C:\Windows\System32\wiaservc.dll - ok
15:21:38.0440 0x0d38  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
15:21:38.0440 0x0d38  C:\Windows\System32\wiatrace.dll - ok
15:21:38.0440 0x0d38  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
15:21:38.0440 0x0d38  C:\Windows\System32\trkwks.dll - ok
15:21:38.0440 0x0d38  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
15:21:38.0440 0x0d38  C:\Windows\System32\wbem\WMIsvc.dll - ok
15:21:38.0455 0x0d38  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:21:38.0455 0x0d38  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
15:21:38.0455 0x0d38  [ FAF9BA81FB0543CB4B7EFFD24CFA815F, DC876993FDAEE449C228D23942E3CA8C116AEA5F64D55A7C45F5EA0AB61CD62F ] C:\Windows\System32\wbemcomn.dll
15:21:38.0455 0x0d38  C:\Windows\System32\wbemcomn.dll - ok
15:21:38.0455 0x0d38  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
15:21:38.0455 0x0d38  C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:21:38.0471 0x0d38  [ A7582A70802D5B9F28ED3940F6A3E9ED, 18BA69BF8386610F5EDA4430991C22D895477EA8911B855C951F70AE03CEA8AB ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:21:38.0471 0x0d38  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:21:38.0471 0x0d38  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
15:21:38.0471 0x0d38  C:\Windows\System32\wbem\fastprox.dll - ok
15:21:38.0471 0x0d38  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
15:21:38.0471 0x0d38  C:\Windows\System32\aeevts.dll - ok
15:21:38.0487 0x0d38  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
15:21:38.0487 0x0d38  C:\Windows\System32\SensApi.dll - ok
15:21:38.0487 0x0d38  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
15:21:38.0487 0x0d38  C:\Windows\System32\ntdsapi.dll - ok
15:21:38.0487 0x0d38  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
15:21:38.0487 0x0d38  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
15:21:38.0502 0x0d38  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
15:21:38.0502 0x0d38  C:\Windows\System32\wbem\wbemprox.dll - ok
15:21:38.0502 0x0d38  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65, 914AD22D98975578BC14D821F72E8DFCE24F2092F9C299D24EBBAF5408FE8B8B ] C:\Windows\System32\wer.dll
15:21:38.0502 0x0d38  C:\Windows\System32\wer.dll - ok
15:21:38.0502 0x0d38  [ 3B9665D4B8C587A6014B9B8DFF5974A0, C616EB39D923954B484CEA863CA840E525366916286962D737D04FCCBD3610B8 ] C:\Windows\System32\wbem\wbemcore.dll
15:21:38.0502 0x0d38  C:\Windows\System32\wbem\wbemcore.dll - ok
15:21:38.0518 0x0d38  [ 74983ADDCA2D9618512C088D856D6615, C4592EFC1206BD813221814FD529AD38ED26E4AE086613EB95D3D5E20448A1F0 ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
15:21:38.0518 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl - ok
15:21:38.0518 0x0d38  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
15:21:38.0518 0x0d38  C:\Windows\System32\wbem\esscli.dll - ok
15:21:38.0518 0x0d38  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05, 7B3F117C1D606DDA7623BEC0BFBC362C33A12213E899F049AC56A55826984134 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
15:21:38.0518 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
15:21:38.0533 0x0d38  [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
15:21:38.0533 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
15:21:38.0533 0x0d38  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
15:21:38.0533 0x0d38  C:\Windows\System32\wdi.dll - ok
15:21:38.0533 0x0d38  [ 818465153468F5ADE86044660F9A7279, 012538C3789F1039BB7F9950BDA7EB2E172AE3E17F1C6ECBD0827B40C9AE6A80 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
15:21:38.0533 0x0d38  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
15:21:38.0549 0x0d38  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
15:21:38.0549 0x0d38  C:\Windows\System32\wbem\wbemsvc.dll - ok
15:21:38.0549 0x0d38  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
15:21:38.0549 0x0d38  C:\Windows\System32\sstpsvc.dll - ok
15:21:38.0549 0x0d38  [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] C:\Windows\System32\tapisrv.dll
15:21:38.0549 0x0d38  C:\Windows\System32\tapisrv.dll - ok
15:21:38.0565 0x0d38  [ 4509387963DF66A6401752A0C631F6E8, B160BD61BEC4D4566442106CCF48182481DF55F937DE5A816436D202630145DC ] C:\Windows\System32\httpapi.dll
15:21:38.0565 0x0d38  C:\Windows\System32\httpapi.dll - ok
15:21:38.0565 0x0d38  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
15:21:38.0565 0x0d38  C:\Windows\System32\wbem\wmiutils.dll - ok
15:21:38.0580 0x0d38  [ CE07AF86AA72F4AE964239DE0DABE738, 6203A65C5E4F7395737725FE00C52227795EFB00AC649EBD0A379EEBF7C8516B ] C:\Windows\System32\msxml3.dll
15:21:38.0580 0x0d38  C:\Windows\System32\msxml3.dll - ok
15:21:38.0580 0x0d38  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
15:21:38.0580 0x0d38  C:\Windows\System32\perftrack.dll - ok
15:21:38.0580 0x0d38  [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] C:\Windows\System32\rasmans.dll
15:21:38.0580 0x0d38  C:\Windows\System32\rasmans.dll - ok
15:21:38.0596 0x0d38  [ 44C96B48112EB24AE7764EBF1C527000, 6691D008C834686906B4841EF27604B0F0E70E668C09CEE19369426BF168AF44 ] C:\Windows\System32\rastapi.dll
15:21:38.0596 0x0d38  C:\Windows\System32\rastapi.dll - ok
15:21:38.0596 0x0d38  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
15:21:38.0596 0x0d38  C:\Windows\SysWOW64\shfolder.dll - ok
15:21:38.0596 0x0d38  [ FAFAE01E889DC9C05A6CA2138CFC220B, 192CFDE3593ED0A9B397461D912074C0F062015C23E6F6658571C7C2864D9A51 ] C:\Windows\System32\tapi32.dll
15:21:38.0596 0x0d38  C:\Windows\System32\tapi32.dll - ok
15:21:38.0611 0x0d38  [ ACCBA604D34842844133A731F8045B32, F4F7987A7A06823B8D34BD1D54390F33A4523C934F289ED2A5EBB457B16329F2 ] C:\Windows\SysWOW64\sxs.dll
15:21:38.0611 0x0d38  C:\Windows\SysWOW64\sxs.dll - ok
15:21:38.0611 0x0d38  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
15:21:38.0611 0x0d38  C:\Windows\System32\wbem\repdrvfs.dll - ok
15:21:38.0611 0x0d38  [ CC8E52DAA9826064BA464DBE531F2BB5, 28150B5DDB4DB42839EBB4F3672EB575373046B1676938111904290DFF6DEC8E ] C:\Windows\System32\drivers\CVPNDRVA.sys
15:21:38.0611 0x0d38  C:\Windows\System32\drivers\CVPNDRVA.sys - ok
15:21:38.0627 0x0d38  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
15:21:38.0627 0x0d38  C:\Windows\System32\hidserv.dll - ok
15:21:38.0627 0x0d38  [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0, A67878B5CC9109AA8513C0307EEDCB17840288509BF80838E2A753C632B47521 ] C:\Windows\System32\winspool.drv
15:21:38.0627 0x0d38  C:\Windows\System32\winspool.drv - ok
15:21:38.0627 0x0d38  [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] C:\Windows\System32\wpdbusenum.dll
15:21:38.0627 0x0d38  C:\Windows\System32\wpdbusenum.dll - ok
15:21:38.0643 0x0d38  [ 045DB4EAB4FBD23210E85ECC3F464A2E, 506D7FAABE12470263502F99D86C81E0EE21C8789132FE1B24774ABDB4484468 ] C:\Windows\SysWOW64\nlaapi.dll
15:21:38.0643 0x0d38  C:\Windows\SysWOW64\nlaapi.dll - ok
15:21:38.0643 0x0d38  [ D891293880F2F00AB7BA959910300EF7, 2C974D3BE5E762694B5270330211D761C35C25C495EA173FC22DCD8820FDAF0A ] C:\Windows\System32\diagperf.dll
15:21:38.0643 0x0d38  C:\Windows\System32\diagperf.dll - ok
15:21:38.0643 0x0d38  [ 62390F4ACE9E2B63E3CA26B7F7497897, 0A87C8D6D63954207B088B04C6B8C50DD8F1064D52E4C51865DC50E3AD866EEC ] C:\Windows\SysWOW64\dnsapi.dll
15:21:38.0643 0x0d38  C:\Windows\SysWOW64\dnsapi.dll - ok
15:21:38.0658 0x0d38  [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
15:21:38.0658 0x0d38  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
15:21:38.0658 0x0d38  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
15:21:38.0658 0x0d38  C:\Windows\SysWOW64\NapiNSP.dll - ok
15:21:38.0658 0x0d38  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
15:21:38.0658 0x0d38  C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:21:38.0674 0x0d38  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
15:21:38.0674 0x0d38  C:\Windows\SysWOW64\winrnr.dll - ok
15:21:38.0674 0x0d38  [ 12B79422A23814429CDA9E734C58F78F, 88D8EBB4815896921ED88BC46E8C37844FB8C62CD05F507BFCF9825EBC9607DE ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
15:21:38.0674 0x0d38  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
15:21:38.0674 0x0d38  [ 158117F3CF278F01C6F24E89E2141E81, F8178F093F09A6DB981019D2D0D514145B170D1377FE3C2479028D915663E28F ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:21:38.0674 0x0d38  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:21:38.0689 0x0d38  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
15:21:38.0689 0x0d38  C:\Windows\SysWOW64\rasadhlp.dll - ok
15:21:38.0689 0x0d38  [ 13F03B7C59D28C82F6B689FF90003471, 1C7BDFED01DDE526580E0F97149C4B045C52B52FBD9E6F0682459296B521AE6D ] C:\Windows\System32\localspl.dll
15:21:38.0689 0x0d38  C:\Windows\System32\localspl.dll - ok
15:21:38.0689 0x0d38  [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7, A0B8795965A10B045A6316FCEB48DF389E35E8739EEE4358789A18A7B8140E7A ] C:\Windows\System32\PortableDeviceApi.dll
15:21:38.0689 0x0d38  C:\Windows\System32\PortableDeviceApi.dll - ok
15:21:38.0705 0x0d38  [ EE25B470C39126B08055A7CB71A67A58, F4BCB36B4EC07F66ABFCED06D194585CACA48CEB0BFB1E28A31207121F71A321 ] C:\Windows\System32\unimdm.tsp
15:21:38.0705 0x0d38  C:\Windows\System32\unimdm.tsp - ok
15:21:38.0705 0x0d38  [ AF28348ED585539C4A33A4341FF23696, 012DEB04B0AAC947E5EB1F191C8EDE4185EDA050592F0BBD93FB7354834ABE20 ] C:\Windows\System32\oleacc.dll
15:21:38.0705 0x0d38  C:\Windows\System32\oleacc.dll - ok
15:21:38.0705 0x0d38  [ 94B7DF336815B47236724019FAB24B7C, 43549F1FB89D0585A0E0333BB8E1DDED2EBD0F3C0EC3EA93B238EA037188AA41 ] C:\Windows\System32\uniplat.dll
15:21:38.0705 0x0d38  C:\Windows\System32\uniplat.dll - ok
15:21:38.0721 0x0d38  [ 41326DD08ACC0CDC5F8177AF96C066E8, 9C21BB553EEDD28272E865396C9EF94655EC1CF216290A56581AEF7908B7AFDD ] C:\Windows\System32\kmddsp.tsp
15:21:38.0721 0x0d38  C:\Windows\System32\kmddsp.tsp - ok
15:21:38.0721 0x0d38  [ 1D6BC2769DA66C1145F4DA5A65F52E61, B38EFF16652E751BF3B3BD85DA6EA33AB9B7F4228C59F741074E33085DB66ED0 ] C:\Windows\System32\ndptsp.tsp
15:21:38.0721 0x0d38  C:\Windows\System32\ndptsp.tsp - ok
15:21:38.0721 0x0d38  [ 7C1BAE7D23D4874FEE256A2B9C00E019, 4EE87C2F0CACE557AA159349133474A5857B6667DDB976BA5A18489A3333F798 ] C:\Windows\System32\hidphone.tsp
15:21:38.0721 0x0d38  C:\Windows\System32\hidphone.tsp - ok
15:21:38.0736 0x0d38  [ DF627325D25191236BABA895D5A51EF6, 568B2ADF5400CAFC2C438F9BB8108B0C055C13F62396DB098F08894CFEFB0446 ] C:\Windows\System32\rasppp.dll
15:21:38.0736 0x0d38  C:\Windows\System32\rasppp.dll - ok
15:21:38.0736 0x0d38  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
15:21:38.0736 0x0d38  C:\Windows\System32\spoolss.dll - ok
15:21:38.0736 0x0d38  [ E3DA135D4DD0D34512D4FEBCB6ED760E, 00C24E5C1511B6AEBD39BC976C2CDC2D101BE21902F776802326768E9137D9EC ] C:\Windows\System32\vpnike.dll
15:21:38.0736 0x0d38  C:\Windows\System32\vpnike.dll - ok
15:21:38.0752 0x0d38  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:21:38.0752 0x0d38  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:21:38.0752 0x0d38  [ 50F9F2BCF53491C43755A553D6E39DB6, 8D4F41D5846FC94F4ADE5C2D4F37E0167992842943F781F15658D0519175AAC6 ] C:\Windows\System32\hpf3l092.dll
15:21:38.0752 0x0d38  C:\Windows\System32\hpf3l092.dll - ok
15:21:38.0752 0x0d38  [ 33CC7FFA41F6157592E1578BD253F30E, 03D3473A02B8A8D9D8EA74D588552FB7972600902188659832FBD2CF91B594FC ] C:\Windows\System32\PrintIsolationProxy.dll
15:21:38.0752 0x0d38  C:\Windows\System32\PrintIsolationProxy.dll - ok
15:21:38.0767 0x0d38  [ 20BEB8C403C6E28C9B13644787F5177D, D3E2DAC2A8BEFC10C1F16FD3B297BF5551254D4DB1C791CA795AA083EADA08F9 ] C:\Windows\System32\FXSMON.dll
15:21:38.0767 0x0d38  C:\Windows\System32\FXSMON.dll - ok
15:21:38.0767 0x0d38  [ 2A46FFE841EC43001D5A293A54DB34DE, 8ED96FA434B48B0C1772195ED477536960C84CAFCE9A9A43543DFFA85483B00D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
15:21:38.0767 0x0d38  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
15:21:38.0767 0x0d38  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
15:21:38.0767 0x0d38  C:\Windows\System32\pnpts.dll - ok
15:21:38.0783 0x0d38  [ 65AF044B5570D355124DCD1E099AA98F, 84165B4C2F7EA6DCC52442C50610F363D319B7768A62A7E8B4920D459A3024CD ] C:\Windows\System32\wdiasqmmodule.dll
15:21:38.0783 0x0d38  C:\Windows\System32\wdiasqmmodule.dll - ok
15:21:38.0783 0x0d38  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
15:21:38.0783 0x0d38  C:\Windows\System32\Apphlpdm.dll - ok
15:21:38.0783 0x0d38  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
15:21:38.0783 0x0d38  C:\Windows\System32\tcpmon.dll - ok
15:21:38.0799 0x0d38  [ 91D6F0AB79AA36FFB932157865206F35, 5C20EA92737A4409DF4601D6D256DBC7A8D0AE4C31A32F20054E873473B27781 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
15:21:38.0799 0x0d38  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
15:21:38.0799 0x0d38  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
15:21:38.0799 0x0d38  C:\Windows\System32\snmpapi.dll - ok
15:21:38.0799 0x0d38  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
15:21:38.0799 0x0d38  C:\Windows\System32\usbmon.dll - ok
15:21:38.0814 0x0d38  [ AD7C70077D4C81558E909D34EF6B995E, 41F3A6166FFC8BBCC952BB06F9639B6B6B016970971E1E249917B305F6DD45C8 ] C:\Windows\System32\wsnmp32.dll
15:21:38.0814 0x0d38  C:\Windows\System32\wsnmp32.dll - ok
15:21:38.0814 0x0d38  [ 9AA6F803C9BD4A0EC2B0BF1EB458C821, 9ADD389A86EC2C014DEF9A7B96BC10B44A81802497337A379DCFA855EAF2DAA4 ] C:\Windows\System32\WMVCORE.DLL
15:21:38.0814 0x0d38  C:\Windows\System32\WMVCORE.DLL - ok
15:21:38.0814 0x0d38  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
15:21:38.0814 0x0d38  C:\Windows\System32\WSDMon.dll - ok
15:21:38.0830 0x0d38  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
15:21:38.0830 0x0d38  C:\Windows\System32\fdPnp.dll - ok
15:21:38.0830 0x0d38  [ 7EDB2BF840ECB14D6E6B11C035708719, 42633433A5BB105A18BF2B10F28C9A801B08E4321757530646FBD96227A3AB94 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:21:38.0830 0x0d38  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:21:38.0830 0x0d38  [ 5208EBD5AB37F0A6AE026DB4F1AEED2A, 0CE436C951F9A1D32FE95EB15A0E95CE8BF7ED2C12A682390DCD6D72F2632C55 ] C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll
15:21:38.0830 0x0d38  C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll - ok
15:21:38.0845 0x0d38  [ 79A37AE3806851CB445C475D527CF685, 9B5E374C8C56C492F98068D3F973DFFA46D203AD6799146817753FE4C6765C0F ] C:\Windows\System32\win32spl.dll
15:21:38.0845 0x0d38  C:\Windows\System32\win32spl.dll - ok
15:21:38.0845 0x0d38  [ 17EAB1AEA937EFFCD107EFBA94FEDB34, 544CE9BFE2291D985FDD3505ADDE42478C8C69D8B116B54F531DD0D2D72D160D ] C:\Windows\System32\inetpp.dll
15:21:38.0845 0x0d38  C:\Windows\System32\inetpp.dll - ok
15:21:38.0845 0x0d38  [ AACC48FE239F0DF126DA2F28930A5B83, D55E7D9AA79B1875E9074CFFBBCD484024902566B49806A8639B5C04847DFF89 ] C:\Windows\System32\WMASF.DLL
15:21:38.0845 0x0d38  C:\Windows\System32\WMASF.DLL - ok
15:21:38.0861 0x0d38  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
15:21:38.0861 0x0d38  C:\Windows\System32\FXSRESM.dll - ok
15:21:38.0861 0x0d38  [ BFEBE1E4B301F44CEA7C1B4021BD0264, F6984FC40F1731A936A1671A422FF750056418199576EDCD5F9373A23D0D0221 ] C:\Windows\System32\cscapi.dll
15:21:38.0861 0x0d38  C:\Windows\System32\cscapi.dll - ok
15:21:38.0861 0x0d38  [ 70A72FC276267DBFDB39AC1FD358CFE0, 7C2B922B9807B0D456906C4D1BB48BAF2CCDF19B814D51451802021D6D009197 ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
15:21:38.0861 0x0d38  C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
15:21:38.0877 0x0d38  [ E81F5A2F6D52215C0E84F2849503EBA8, D372F90035F38A91703E8C017A26D6BB91FDF9B65B7B6DA24BB9D25485A91942 ] C:\Windows\System32\tcpmib.dll
15:21:38.0877 0x0d38  C:\Windows\System32\tcpmib.dll - ok
15:21:38.0877 0x0d38  [ EFEC3847B47CC9357D5C33BBAB59B7EB, C093AF387AC9B7C5FA92D90DB1C3EC228A2C64CE4229539A25C8A47AD7E6D133 ] C:\Windows\System32\mgmtapi.dll
15:21:38.0877 0x0d38  C:\Windows\System32\mgmtapi.dll - ok
15:21:38.0877 0x0d38  [ 10082D5492C7BD118FE703AC6CCB8AFC, D3B18C3E4AE14807D80BA6E2033FD5A040B15DFEABABAF00E7E9666E97C7C4C9 ] C:\Windows\System32\spool\drivers\x64\3\unidrv.dll
15:21:38.0877 0x0d38  C:\Windows\System32\spool\drivers\x64\3\unidrv.dll - ok
15:21:38.0892 0x0d38  [ C89C024827F15F047FC8A5910F2A100B, 67FE5B30D8423571EF233E2B4BDE4F7F384C9B359C5B2A18C1BFA7AFEE38DDA1 ] C:\Windows\System32\spool\drivers\x64\3\hpfui092.dll
15:21:38.0892 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfui092.dll - ok
15:21:38.0892 0x0d38  [ 53F631B5ECEB4D441F48DEEE37B8688A, 6719AB8C76D99657028C4284AFD15142BA33376A802F613EDCB8E60A040151D7 ] C:\Windows\System32\spool\drivers\x64\3\hpfst092.dll
15:21:38.0892 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfst092.dll - ok
15:21:38.0892 0x0d38  [ 416EDAF698AE65E4A0E744299B259361, BCA1C80EE21F605642A4BCEE7CAC6A082092B64227AEDCC188D2C9FB1ACF4986 ] C:\Windows\System32\spool\drivers\x64\3\unires.dll
15:21:38.0892 0x0d38  C:\Windows\System32\spool\drivers\x64\3\unires.dll - ok
15:21:38.0908 0x0d38  [ 3C89D68CD17612D03F3FB59765C8967E, E9D0F0FE91F6BB5F83512E7BEF5F3E9E2BB8FA0108C8CDC8E48D229651F8ACCC ] C:\Windows\System32\spool\drivers\x64\3\hpfvu092.dll
15:21:38.0908 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfvu092.dll - ok
15:21:38.0908 0x0d38  [ 8E408F9F2E7A84C1F60D791C7B54E8F8, 7E1315BFB28DD5CAA7D3CD02102B564CB928BB4AB220A7553B651BBAA45147A1 ] C:\Windows\System32\spool\drivers\x64\3\hpw450n3.dll
15:21:38.0908 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpw450n3.dll - ok
15:21:38.0908 0x0d38  [ BF4A7C7A25F8266A9F22043B1472ADC5, 7267BC5E825DE66C2E735FF169509C275807205CC2182A2EFE4266CC1F5FFC50 ] C:\Windows\System32\spool\drivers\x64\3\hpfev092.dll
15:21:38.0908 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfev092.dll - ok
15:21:38.0923 0x0d38  [ 4FE9C6DC32B0A8751BA5D9652647FFD8, 7DB7B1904063AC738E06ACCC9CBB4D54A9D91AD3476ABADF1ED19DDCE40161DC ] C:\Windows\System32\spool\drivers\x64\3\hpf3r092.dll
15:21:38.0923 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpf3r092.dll - ok
15:21:38.0923 0x0d38  [ 13DAACA26818567F7A868703AB0E5274, 220183A158B90C7EE940029C718230428E714AE0BB665B468F4C1BADEC709D7B ] C:\Windows\System32\spool\drivers\x64\3\hpfrs092.dll
15:21:38.0923 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfrs092.dll - ok
15:21:38.0923 0x0d38  [ BB77858B20C9402256C6C46BB7B09601, 6892138EFEA936CEAAC31870B80AB407F86ADB4E266546C99C8343482A1B63E5 ] C:\Windows\System32\spool\drivers\x64\3\hpfie092.dll
15:21:38.0923 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfie092.dll - ok
15:21:38.0939 0x0d38  [ 3022EBE8221C13385EA59C9212F0408B, 4FAD1E1220B0FE708EA3E5B55CCA8328FA54997F28C3297B4752502598CD14D9 ] C:\Windows\System32\spool\drivers\x64\3\hpfpr092.dll
15:21:38.0939 0x0d38  C:\Windows\System32\spool\drivers\x64\3\hpfpr092.dll - ok
15:21:38.0939 0x0d38  [ 6D5D668F1D0B242836F1FFB04C136436, 5E7541E30A6AB67E7CE07C622F240D6365B602A2BD96D512F68B3A6DC24EFC84 ] C:\Windows\System32\spool\drivers\x64\3\HPCDMC64.dll
15:21:38.0939 0x0d38  C:\Windows\System32\spool\drivers\x64\3\HPCDMC64.dll - ok
15:21:38.0939 0x0d38  [ D06A0B6260D9B6E5C5F6C800E2574267, 10168F83DFAB370D8851BB779E24896A126032B088D9FA2725905EE1D9F422C3 ] C:\Windows\System32\ntprint.dll
15:21:38.0939 0x0d38  C:\Windows\System32\ntprint.dll - ok
15:21:38.0955 0x0d38  [ 3EEFB971D61EF9638FD21F14C703CA11, A01BCD7E884E407C82DEB84D5B31F517F32A4FA2CF143372BAC896CC9478BE0E ] C:\Windows\System32\taskhost.exe
15:21:38.0955 0x0d38  C:\Windows\System32\taskhost.exe - ok
15:21:38.0955 0x0d38  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
15:21:38.0955 0x0d38  C:\Windows\System32\dimsjob.dll - ok
15:21:38.0955 0x0d38  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
15:21:38.0955 0x0d38  C:\Windows\System32\npmproxy.dll - ok
15:21:38.0970 0x0d38  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
15:21:38.0970 0x0d38  C:\Windows\System32\NapiNSP.dll - ok
15:21:38.0970 0x0d38  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
15:21:38.0970 0x0d38  C:\Windows\System32\winrnr.dll - ok
15:21:38.0970 0x0d38  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
15:21:38.0970 0x0d38  C:\Windows\System32\pnrpnsp.dll - ok
15:21:38.0986 0x0d38  [ 82BC97E5793DEF69691AAD5AB953A200, E589D638C8FEAA88EA9149E463C675C36FEA4310923C47C095B1EA50B2DC52F6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:21:38.0986 0x0d38  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:21:38.0986 0x0d38  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
15:21:38.0986 0x0d38  C:\Windows\System32\ncobjapi.dll - ok
15:21:38.0986 0x0d38  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
15:21:38.0986 0x0d38  C:\Windows\System32\radardt.dll - ok
15:21:39.0001 0x0d38  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
15:21:39.0001 0x0d38  C:\Windows\System32\wbem\wbemess.dll - ok
15:21:39.0001 0x0d38  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
15:21:39.0001 0x0d38  C:\Windows\System32\dllhost.exe - ok
15:21:39.0001 0x0d38  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
15:21:39.0001 0x0d38  C:\Windows\System32\IDStore.dll - ok
15:21:39.0017 0x0d38  [ AE5FF948400A51B040F999BF04290373, 7D1A0C2C1C2E136DC840979CC3287E6D305E511A8E2E04956A4EC9EBA11E15E5 ] C:\Windows\SysWOW64\winsta.dll
15:21:39.0017 0x0d38  C:\Windows\SysWOW64\winsta.dll - ok
15:21:39.0017 0x0d38  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
15:21:39.0017 0x0d38  C:\Windows\System32\PlaySndSrv.dll - ok
15:21:39.0017 0x0d38  [ 60CAE1FA4888ED41B41AEE91C774E4A2, 230884FD137ECF361478D37A11233D993F89D25514A86FA7A8732F3A1D02256E ] C:\Windows\System32\taskeng.exe
15:21:39.0017 0x0d38  C:\Windows\System32\taskeng.exe - ok
15:21:39.0033 0x0d38  [ 7F37322A489E285CFBCC02F6A53B3F1B, 7A64799611A5A1B251C4136AC486A4D3D9145E3F95D6056ED0FEE24C7E050472 ] C:\Windows\System32\HotStartUserAgent.dll
15:21:39.0033 0x0d38  C:\Windows\System32\HotStartUserAgent.dll - ok
15:21:39.0033 0x0d38  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
15:21:39.0033 0x0d38  C:\Windows\System32\MsCtfMonitor.dll - ok
15:21:39.0033 0x0d38  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
15:21:39.0033 0x0d38  C:\Windows\System32\msutb.dll - ok
15:21:39.0048 0x0d38  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
15:21:39.0048 0x0d38  C:\Windows\System32\pautoenr.dll - ok
15:21:39.0048 0x0d38  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
15:21:39.0048 0x0d38  C:\Windows\System32\TSChannel.dll - ok
15:21:39.0048 0x0d38  [ AAA6D0DF7356BBA706BD67385A103AAB, 4A483A9EEC0F3881C0252E975852A8D96D81DA0CC35C5E2E4F00947E6C2B0A69 ] C:\Windows\System32\certcli.dll
15:21:39.0048 0x0d38  C:\Windows\System32\certcli.dll - ok
15:21:39.0064 0x0d38  [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll
15:21:39.0064 0x0d38  C:\Windows\System32\dssenh.dll - ok
15:21:39.0064 0x0d38  [ 522BD073F617060AFCB9CC5707778DB1, AB7E98207EEE79713851034E4448E5C54864E584EA450BED67E248F338B360C6 ] C:\Windows\System32\CertEnroll.dll
15:21:39.0064 0x0d38  C:\Windows\System32\CertEnroll.dll - ok
15:21:39.0064 0x0d38  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
15:21:39.0064 0x0d38  C:\Windows\System32\AtBroker.exe - ok
15:21:39.0079 0x0d38  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
15:21:39.0079 0x0d38  C:\Windows\System32\mpr.dll - ok
15:21:39.0079 0x0d38  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:21:39.0079 0x0d38  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:21:39.0079 0x0d38  [ 6F8F1376A13114CC10C0E69274F5A4DE, 8EFD33E1C5A40C231BCB8ED73277F645BE87AE03FCDBA8134FAC053E90290A9C ] C:\Windows\System32\userinit.exe
15:21:39.0079 0x0d38  C:\Windows\System32\userinit.exe - ok
15:21:39.0095 0x0d38  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
15:21:39.0095 0x0d38  C:\Windows\System32\dwm.exe - ok
15:21:39.0095 0x0d38  [ EF184066A851E7838D5BF8C8FAE66CC4, 813247114C5AA374585F669ADA5DFD25615D1B15B14518A195995D5BF7A8FA25 ] C:\Windows\System32\dwmredir.dll
15:21:39.0095 0x0d38  C:\Windows\System32\dwmredir.dll - ok
15:21:39.0111 0x0d38  [ 77E585EDD4C7EB7AB2ACC36BC1DC32A5, 57BF4D683CA66AAC2A4B7FEDF9F7FB254860BE77E1F4A6DD2C40410783B5C113 ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll
15:21:39.0111 0x0d38  C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll - ok
15:21:39.0111 0x0d38  [ C3DBF7DFF5A38136E26BADB7AB4E2972, EA7484034B14F9F1082F8FA802560D61740DD030F008B59CED204ED55B7C437B ] C:\Windows\SysWOW64\netapi32.dll
15:21:39.0111 0x0d38  C:\Windows\SysWOW64\netapi32.dll - ok
15:21:39.0111 0x0d38  [ C6BB27D9A8AC13D4A44486F528B5C884, 9624D886A3EBA94E61F90F62BD9A823B799C3A3B9C0E4C59E49824FEBBB18D77 ] C:\Windows\SysWOW64\netutils.dll
15:21:39.0111 0x0d38  C:\Windows\SysWOW64\netutils.dll - ok
15:21:39.0126 0x0d38  [ 89D840773C9C4358A5031DCC860449EC, F6C241D73E05A95B7C81C12979FF625BFD89C12CDD13193AA137E02A8C0046F2 ] C:\Windows\SysWOW64\srvcli.dll
15:21:39.0126 0x0d38  C:\Windows\SysWOW64\srvcli.dll - ok
15:21:39.0126 0x0d38  [ 7AD12703039056D2A0815F85960E1FA1, 22C9E953D499555F8BD7719786F3450EF5619672F4FF91082758BAB3FD8A288D ] C:\Windows\SysWOW64\wkscli.dll
15:21:39.0126 0x0d38  C:\Windows\SysWOW64\wkscli.dll - ok
15:21:39.0126 0x0d38  [ 4B8DD8541C0E26602005DD0137333615, 41B348205576E72C628DC471F155733DE361DE60911B2726EC2490EF666CCAEF ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
15:21:39.0126 0x0d38  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
15:21:39.0142 0x0d38  [ F1317678AC2FBA9F640279290B2E2988, E0628CFB4EF6E4D2A87A6B8BD047F0BA8B3A33FF15609F4D0EE2B45C89FEEBAD ] C:\Windows\SysWOW64\msi.dll
15:21:39.0142 0x0d38  C:\Windows\SysWOW64\msi.dll - ok
15:21:39.0142 0x0d38  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
15:21:39.0142 0x0d38  C:\Windows\SysWOW64\msimg32.dll - ok
15:21:39.0142 0x0d38  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
15:21:39.0142 0x0d38  C:\Windows\SysWOW64\uxtheme.dll - ok
15:21:39.0142 0x0d38  [ ADD9D33D685DFADDFAD5AFB42CF31A70, 8E0D2D0CEFC59548BED08D36D55865D8633E1512AE81D93F728F3D9631A3CC6F ] C:\Windows\SysWOW64\cscapi.dll
15:21:39.0142 0x0d38  C:\Windows\SysWOW64\cscapi.dll - ok
15:21:39.0157 0x0d38  [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA, BE7B559C8A33E7F8B19D4E7B70ED2257C49CB1FE7B944F63ADBAE1D31E0A1E93 ] C:\Windows\SysWOW64\dbghelp.dll
15:21:39.0157 0x0d38  C:\Windows\SysWOW64\dbghelp.dll - ok
15:21:39.0157 0x0d38  [ C02E3CE20E7776C922B5C8938350B5F1, 4BA2250230BC496ACF5709AD54E99BAC858C298BF09DBC574F8CA365A33E5FFC ] C:\Windows\SysWOW64\apphelp.dll
15:21:39.0157 0x0d38  C:\Windows\SysWOW64\apphelp.dll - ok
15:21:39.0157 0x0d38  [ 397D14958D6C9C2B365469A857B2AC4E, 1465D7DC50A27A2C75FFC477E8A453B0884D1E298F804233483B63A47634B7EA ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
15:21:39.0157 0x0d38  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe - ok
15:21:39.0173 0x0d38  [ AA0E4F73727BFC8BA404884B1C1DB719, 0DEB88BBBC3DD37824B484FA38487280CB6A049D235519584DA562C3C91F18A7 ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
15:21:39.0173 0x0d38  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe - ok
15:21:39.0173 0x0d38  [ 0089563F324FA784DA849D6A636141E0, E8B242102082DA4387063EF10167531EA020C6E0657DA71ADC1A0282BD3762AA ] C:\Windows\SysWOW64\mstask.dll
15:21:39.0173 0x0d38  C:\Windows\SysWOW64\mstask.dll - ok
15:21:39.0173 0x0d38  [ A74316B5C28D94AF0825267D8715549F, C45D33E809FC97AF7334A481F56E878894A8F9127380261A7A4BA6F22A5D19F1 ] C:\Windows\System32\dbghelp.dll
15:21:39.0189 0x0d38  C:\Windows\System32\dbghelp.dll - ok
15:21:39.0189 0x0d38  [ 9D8AB964CE511AF81207DF0E1205184C, 35DCB9F5DD59F97337B293EC55C5FADAA41806BA050592790338E34D843DA4B1 ] C:\Windows\System32\dwmcore.dll
15:21:39.0189 0x0d38  C:\Windows\System32\dwmcore.dll - ok
15:21:39.0189 0x0d38  [ 58A0C212ED2ABE462B3A9626F5B96261, 41FAB8D66FCBEFAF451DA82D621A85EC91CC2E4E3D2A6F0EFCF9FF77F7FFFE7D ] C:\Windows\System32\d3d10_1.dll
15:21:39.0189 0x0d38  C:\Windows\System32\d3d10_1.dll - ok
15:21:39.0204 0x0d38  [ AFBBC34687FA48A4928B99AF097C1EC0, 3ED81C3DCAAF497345D017BB7FB114F4ADC3E8E90B5173DC0AE84478A7FABE54 ] C:\Windows\System32\d3d10_1core.dll
15:21:39.0204 0x0d38  C:\Windows\System32\d3d10_1core.dll - ok
15:21:39.0204 0x0d38  [ D95DB5C915C001F78709C17285109BDC, 2A538725F8E2E0A394CA58CD262C5159BCA59B12C591EC59F2E052FDAA21F99F ] C:\Windows\System32\dxgi.dll
15:21:39.0204 0x0d38  C:\Windows\System32\dxgi.dll - ok
15:21:39.0204 0x0d38  [ CE36A3C5002D302F8AEA2C61C8160575, 8C22D865D947EA7716ADC4B3E822AB5E073F310CEAB8FF549296A7CCEAA4523A ] C:\Windows\System32\atidxx64.dll
15:21:39.0204 0x0d38  C:\Windows\System32\atidxx64.dll - ok
15:21:39.0204 0x0d38  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
15:21:39.0220 0x0d38  C:\Windows\System32\uDWM.dll - ok
15:21:39.0220 0x0d38  [ 0862495E0C825893DB75EF44FAEA8E93, D190B84F29A6F22ACFC313373301A848A927882CF728CA6D72EED4073DFC2B75 ] C:\Windows\explorer.exe
15:21:39.0220 0x0d38  C:\Windows\explorer.exe - ok
15:21:39.0220 0x0d38  [ 1C27E145EC99F20BC1B13FD98165A83F, D3BCEC5DBEFAF1BE50EF7C42FE56D2B88AB8395C96887D8180A929E0F31C9983 ] C:\Windows\System32\ExplorerFrame.dll
15:21:39.0220 0x0d38  C:\Windows\System32\ExplorerFrame.dll - ok
15:21:39.0220 0x0d38  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
15:21:39.0235 0x0d38  C:\Windows\System32\EhStorShell.dll - ok
15:21:39.0235 0x0d38  [ 5F917AEEEA363B8A5DC8624795CB1D60, ECD17723AE9BE507535A7897EE23FD656B43B614C41165353FBF15A91328199D ] C:\Windows\System32\ntshrui.dll
15:21:39.0235 0x0d38  C:\Windows\System32\ntshrui.dll - ok
15:21:39.0235 0x0d38  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
15:21:39.0235 0x0d38  C:\Windows\System32\IconCodecService.dll - ok
15:21:39.0251 0x0d38  [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] C:\Windows\System32\appinfo.dll
15:21:39.0251 0x0d38  C:\Windows\System32\appinfo.dll - ok
15:21:39.0251 0x0d38  [ 6AB6D4DF10EC784CF4A66CBFAF417A11, 7DD59A6A686736D4CCA4D486BD2FE0A0743AFBA838DBCBDBFF3078080BFA1CF3 ] C:\Windows\System32\runonce.exe
15:21:39.0251 0x0d38  C:\Windows\System32\runonce.exe - ok
15:21:39.0251 0x0d38  [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
15:21:39.0251 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe - ok
15:21:39.0267 0x0d38  [ 72AB6633E9B39EC7FEBEDF083A9061E5, 758E5BA89665C574456A2A826EF5A7DC2487C8379893010EB57BC40127AC918F ] C:\Windows\System32\mscoree.dll
15:21:39.0267 0x0d38  C:\Windows\System32\mscoree.dll - ok
15:21:39.0267 0x0d38  [ AA794B099F776B37ACCDEAD00E0FBFC9, CB6DA7F6A8BB09BBCFCB37E96FBA44F989DD7485535801CB9B6BD7F5A9C838E0 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
15:21:39.0267 0x0d38  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
15:21:39.0267 0x0d38  [ 3CA4ADDA47D97DDF412893F1D03EA6F6, E23A344A3B35329CC30C84DDA7EE4D12DD1F3AABDF81754A7840F86CD9907CBC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
15:21:39.0267 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
15:21:39.0282 0x0d38  [ D3C8C6B6DB123B0E51ECFFF0F6DF145E, 4B03110B8344DCDDE391A17F434D27A585816D4CCBA8E8896D764294876D099A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll
15:21:39.0282 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll - ok
15:21:39.0282 0x0d38  [ 0A94DE4AA9864D312E60D747FD249ABE, C3A7D31624240142F745C2D5A86D383386ECDA875B8ACA0C3081F995CE1EF900 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
15:21:39.0282 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
15:21:39.0282 0x0d38  [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8, 99582C21200B511C08CB2559028F25186660C362C75CD74DB99FDF8C2EC1450A ] C:\Windows\System32\riched20.dll
15:21:39.0282 0x0d38  C:\Windows\System32\riched20.dll - ok
15:21:39.0298 0x0d38  [ 3A2F5C8666F08B31C61DBAE9C297551C, D1312BC9179D1F2CA23656FA219774C3ECB25D63B54EA603E4D8F5CC8A5205E3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
15:21:39.0298 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
15:21:39.0298 0x0d38  [ C8FE465986FE1E242C92B6B76CDFEC6F, 017DB434C054D451B7716B5657486B0CB4A903EE1DA2F2B62F53CE28C42ED511 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll
15:21:39.0298 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll - ok
15:21:39.0313 0x0d38  [ EFEA483CB72A27915FA97AF700FDA05C, C062553718546F4554BD8B796DB118A51B7A4681EAAFC24612772A6FDE6DFF6B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll
15:21:39.0313 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll - ok
15:21:39.0313 0x0d38  [ 044CB0374E0DA180A29278901EB259E1, 41F40B6EC3A5DDC6794F9FAF5E027DEAFE0986C44A42761294E664BE04D68EDC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\ced1d3b0790804426463ad06a61f180e\System.Windows.Forms.ni.dll
15:21:39.0313 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\ced1d3b0790804426463ad06a61f180e\System.Windows.Forms.ni.dll - ok
15:21:39.0313 0x0d38  [ 169F916EFEAA44487E65305B7D2D754B, E87069D36E05133A58638A1CBD765AE3122917B3E0AFA06C8644C861B3ED5A16 ] C:\Windows\SysWOW64\runonce.exe
15:21:39.0313 0x0d38  C:\Windows\SysWOW64\runonce.exe - ok
15:21:39.0329 0x0d38  [ 26EAEE08CAF82AA7F03C5020F51DA541, 5541193DD9A16E27339225E6BA4F2664B0B166E9A13D2FFF267F6E15211B5794 ] C:\Windows\SysWOW64\propsys.dll
15:21:39.0329 0x0d38  C:\Windows\SysWOW64\propsys.dll - ok
15:21:39.0329 0x0d38  [ 30DB64D316F502558DB2380F7343C9FD, 4C1B8F9637EA79644CDD86AEA0A3360482905321DD32B158587FBB60884E93D6 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
15:21:39.0329 0x0d38  C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
15:21:39.0329 0x0d38  [ 207204AF80505AF51271FE164B56F662, 509E2F4D2F696108E4DBE40A7828C633E988289EE4756D2E0FAC9D59604445C6 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
15:21:39.0329 0x0d38  C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
15:21:39.0345 0x0d38  [ 30EFEBDC960A482E3E188B9960B286E2, C4B0ABD3C8E4D6C78F713B93C382E9DC2C86F03B479FDE461EAD2DB1BCDF0578 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
15:21:39.0345 0x0d38  C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
15:21:39.0345 0x0d38  [ D5E459BED3DB9CF7FC6CC1455F177D2D, FCAB2130FAB57B6728C50D5B9E9924F001C43538DE4F675DE03537FF0D9B84BD ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
15:21:39.0345 0x0d38  C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
15:21:39.0345 0x0d38  [ D8C2B95BC2353E1F18850D6B8F5DBA13, 0C448A46CDDD0C39092E371EEDF2DD9A0F21E051109ED15C3D7F3C6E9E53782D ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
15:21:39.0345 0x0d38  C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
15:21:39.0360 0x0d38  [ 533AECD1B5356870AE2D905B4D3B42B7, 953338C70D58C65D64503694B2CAFE60D71B204EFAA326FCB9685B8AAF756B84 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
15:21:39.0360 0x0d38  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
15:21:39.0360 0x0d38  [ 00D1F89836927C0F2E37321E6B441FCE, BA9D076E18EAE0DC7AE96F6AE8749C24E58E74C5902A7079519B96818BBD0FB0 ] C:\Windows\SysWOW64\msxml3.dll
15:21:39.0360 0x0d38  C:\Windows\SysWOW64\msxml3.dll - ok
15:21:39.0376 0x0d38  [ 8AE6DD9A6D246004DA047F704F0CC487, 8DEAB32F7297BCBC22CAA7BAEB2DDB6BF36E73D9A7F68B6737C1E4C75E213CB9 ] C:\Windows\SysWOW64\cmd.exe
15:21:39.0376 0x0d38  C:\Windows\SysWOW64\cmd.exe - ok
15:21:39.0376 0x0d38  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
15:21:39.0376 0x0d38  C:\Windows\SysWOW64\winbrand.dll - ok
15:21:39.0376 0x0d38  [ A6B8D17F22576051888F3AB6B89D5034, 7B5C7A2A5E7B8F03DB9B9C626BA87AAB44B55545D276E386EBD9587A371E6907 ] C:\Windows\SysWOW64\ieframe.dll
15:21:39.0376 0x0d38  C:\Windows\SysWOW64\ieframe.dll - ok
15:21:39.0391 0x0d38  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
15:21:39.0391 0x0d38  C:\Windows\System32\aelupsvc.dll - ok
15:21:39.0391 0x0d38  [ E07B77C3BDC82A024E294FB67ABFEDA0, B7ADCD536544F4C59748562504824B252B503E0C6DFF8D94512A88EE4A38B0E0 ] C:\Windows\SysWOW64\shdocvw.dll
15:21:39.0391 0x0d38  C:\Windows\SysWOW64\shdocvw.dll - ok
15:21:39.0391 0x0d38  [ 94E3A2D6251A35ED69DB3221329E8584, EE55890F58C13E5A2540196ECFC0789EE027FCD4819B2040162D76F7AE2C6A68 ] C:\Users\Vincia M. Blaise\AppData\Local\Temp\{50154599-4D3A-4DE8-8CDD-30E4DDCF3350}.exe
15:21:39.0391 0x0d38  C:\Users\Vincia M. Blaise\AppData\Local\Temp\{50154599-4D3A-4DE8-8CDD-30E4DDCF3350}.exe - ok
15:21:39.0407 0x0d38  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
15:21:39.0407 0x0d38  C:\Windows\SysWOW64\sfc.dll - ok
15:21:39.0407 0x0d38  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
15:21:39.0407 0x0d38  C:\Windows\SysWOW64\sfc_os.dll - ok
15:21:39.0407 0x0d38  [ 11CDF138552BFEC115B60ED6DC3ACEB6, 81200BD6634BE7769E3F99B3BF92EF93FAFB7F620E8665C9B603CD2912251D1B ] C:\Windows\SysWOW64\devrtl.dll
15:21:39.0407 0x0d38  C:\Windows\SysWOW64\devrtl.dll - ok
15:21:39.0423 0x0d38  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
15:21:39.0423 0x0d38  C:\Windows\SysWOW64\mpr.dll - ok
15:21:39.0423 0x0d38  [ CC9BBCFC715FBEDF7AE476106FE653E9, 0F8EE6E853756EB302A75C69937DDC3EC05A7D4A075D7314D329E497FD1BBA1C ] C:\Windows\SysWOW64\winhttp.dll
15:21:39.0423 0x0d38  C:\Windows\SysWOW64\winhttp.dll - ok
15:21:39.0423 0x0d38  [ 33562531229E7C297D92EB77FEC05862, F54DEF4D2C4086EB87E5732E49BD6BF29B9C8CA5E296C26D16D5D9F99061D05C ] C:\Windows\System32\iedkcs32.dll
15:21:39.0423 0x0d38  C:\Windows\System32\iedkcs32.dll - ok
15:21:39.0438 0x0d38  [ A86A1C5DF1C662D1C75815BF4794F16D, 6AA810207BC574B5E63DB59391EDACDD5B7FE7057DC39C204310511BDEA6351F ] C:\Windows\SysWOW64\webio.dll
15:21:39.0438 0x0d38  C:\Windows\SysWOW64\webio.dll - ok
15:21:39.0438 0x0d38  [ 6D220604AA4240303DD8DEAEAB428377, 0AC013CFA8F8040017969B3110BBD3B9A4827E0DFC4BE65F334F607248DF9550 ] C:\Windows\System32\ie4uinit.exe
15:21:39.0438 0x0d38  C:\Windows\System32\ie4uinit.exe - ok
15:21:39.0438 0x0d38  [ 18245DC72B65D488A8B2D75A8FE088EA, 8A696D167C29BB363ACB8D0A1AC36039566E8EF1FCD2AE92A61454398FE68190 ] C:\Windows\System32\timedate.cpl
15:21:39.0438 0x0d38  C:\Windows\System32\timedate.cpl - ok
15:21:39.0454 0x0d38  [ 1E4BDDBD5A63059A97063339B4F8986F, 0EFBD43CEB83B4D72EDD7CE58F81504DFFB6C8E78A185DE1437CFC39E7EB90C0 ] C:\Windows\System32\actxprxy.dll
15:21:39.0454 0x0d38  C:\Windows\System32\actxprxy.dll - ok
15:21:39.0454 0x0d38  [ FBE8EBF528DC49B3DEB186CA9545D97E, 9A5BFB1975822B09C453DC62B241A6F4FC1F1F98D67506FB08A136AC4FA904F3 ] C:\Windows\System32\shdocvw.dll
15:21:39.0454 0x0d38  C:\Windows\System32\shdocvw.dll - ok
15:21:39.0454 0x0d38  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
15:21:39.0454 0x0d38  C:\Windows\System32\linkinfo.dll - ok
15:21:39.0469 0x0d38  [ 577EE424A9C2E5259FF1137D27CDCE48, 8140527B6F1F96C8A28B1817A94B4A23073402F2E989C86DCDFF5FF28C221688 ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll
15:21:39.0469 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll - ok
15:21:39.0469 0x0d38  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
15:21:39.0469 0x0d38  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
15:21:39.0469 0x0d38  [ E6DD15E668DAF0A02470CF551B0A0105, 3AF2BE87974A9AF7F7F43DB9E39F35BF93F893844F03F77780EDC174AF5F49ED ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
15:21:39.0469 0x0d38  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
15:21:39.0485 0x0d38  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
15:21:39.0485 0x0d38  C:\Windows\SysWOW64\dwmapi.dll - ok
15:21:39.0485 0x0d38  [ 46EDD0A6B42BA5D2044FA0909BE4BE95, 0007398C004C9AB40DA086A712AFAF1FB6C8D1D23821628F185ED49B2AD95EF5 ] C:\Windows\System32\msftedit.dll
15:21:39.0485 0x0d38  C:\Windows\System32\msftedit.dll - ok
15:21:39.0485 0x0d38  [ BF591B5C2CC38314518467E883AE37C5, AE87A8812B9836440094558D198B15C1EBD333E1F739295BE80F8D7BA23B05DF ] C:\Windows\SysWOW64\credssp.dll
15:21:39.0485 0x0d38  C:\Windows\SysWOW64\credssp.dll - ok
15:21:39.0501 0x0d38  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
15:21:39.0501 0x0d38  C:\Windows\SysWOW64\wship6.dll - ok
15:21:39.0501 0x0d38  [ 7CB3ACB163DE051169095DC6507B8977, 45D4DEB0695440D8B5E959945B3F7A773E02E2AB305E316123A1064FC1905402 ] C:\Windows\System32\msls31.dll
15:21:39.0501 0x0d38  C:\Windows\System32\msls31.dll - ok
15:21:39.0501 0x0d38  [ 14F5C0DB4B2C47874D6C937A5A1B367C, B59C4FB22138F8F0C9B85337D79B8353C9A6722F83CF9DC16F0CDC289379F14A ] C:\Windows\System32\gameux.dll
15:21:39.0501 0x0d38  C:\Windows\System32\gameux.dll - ok
15:21:39.0516 0x0d38  [ 5F45D87B172CFCA862B7F1BED641F263, 0BCDDB6636CE6D4A6EE9DA30717917C630159299C29D0424081E6FB11B04B977 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
15:21:39.0516 0x0d38  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
15:21:39.0516 0x0d38  [ DD76912E8D165C68659D9875256710A3, 0DDD342EBCC2EE2D023FF6E94A2DB2822A5CC38C747A9226B253BF99F8BCF639 ] C:\Windows\System32\DeviceCenter.dll
15:21:39.0516 0x0d38  C:\Windows\System32\DeviceCenter.dll - ok
15:21:39.0516 0x0d38  [ 59E58A7A5388E00BB4347AEBBDCC84FE, 9B06344F13C8F8831549410B78E084BFEA9EC2E181ECA49FF9586424999CE758 ] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
15:21:39.0516 0x0d38  C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe - ok
15:21:39.0532 0x0d38  [ 2F407AA24101E4678B110A1FFA13F587, 9E55908961E8B4FEAA1798CC51A090912DB7D8384E07D232DE83D8D239FC9330 ] C:\Program Files\Java\jre6\bin\jusched.exe
15:21:39.0532 0x0d38  C:\Program Files\Java\jre6\bin\jusched.exe - ok
15:21:39.0532 0x0d38  [ 7FA5CA36B613A000F3A37E6B5170A195, 92FD1742A10B4C427ADF0D59BC14942F11E1AE4F347472CC40255362935AF42B ] C:\Windows\System32\d2d1.dll
15:21:39.0532 0x0d38  C:\Windows\System32\d2d1.dll - ok
15:21:39.0532 0x0d38  [ 4C59ACAAEEAF1E1E0A1A7DEDA7C2C9EE, 43DFEB60995865C4CAFA63CFC0D5EB8EFA39187DA25E61C4BD9D8F234A918360 ] C:\Windows\System32\ieframe.dll
15:21:39.0532 0x0d38  C:\Windows\System32\ieframe.dll - ok
15:21:39.0547 0x0d38  [ E9FD4DA5188391ECD30E6C29213EABF0, 008C39463E24105E067C66547646CB56A1A25AACF7C5B243AC3E1E3CA578E000 ] C:\Windows\System32\DWrite.dll
15:21:39.0547 0x0d38  C:\Windows\System32\DWrite.dll - ok
15:21:39.0547 0x0d38  [ E7D38DBCFA8D80C1C05FBE1AACD3FFCC, 2E7BB7E86CC5C110983EBC3651921792C1AA8E841B2DBC1959F2874014AD0342 ] C:\Windows\System32\SynCOM.dll
15:21:39.0547 0x0d38  C:\Windows\System32\SynCOM.dll - ok
15:21:39.0547 0x0d38  [ 41F2A2F9EDFC2F0A2C99FD4A39E9F7CF, D101DF3AA7A63A3201C89777779DBFA0D2A058F4D4FDCD8C421B4F1A39030540 ] C:\Windows\System32\SynTPAPI.dll
15:21:39.0547 0x0d38  C:\Windows\System32\SynTPAPI.dll - ok
15:21:39.0563 0x0d38  [ B15DFB916F0D7AFEA5802A014E0A3715, 6AD00906ADC8BF04AFBAF44477E14C40E724817C3DBC48CA62135455BFD37EF2 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
15:21:39.0563 0x0d38  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
15:21:39.0563 0x0d38  [ 241AF87821FDA0F5792037B779F49BE0, B3F4FDA27430ACC6D6BC1C3CBD518B9CAE5BA0F22AB8917578A7F16270F94C8B ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
15:21:39.0563 0x0d38  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
15:21:39.0579 0x0d38  [ D32EE82DA63D39D337D5AEEA2928B1DE, E5AFD28BA78D772DA58022EF395E0AD4A948CB8F6DECF944E03FB99C2FDC099C ] C:\Windows\System32\consent.exe
15:21:39.0579 0x0d38  C:\Windows\System32\consent.exe - ok
15:21:39.0579 0x0d38  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
15:21:39.0579 0x0d38  C:\Windows\System32\msimg32.dll - ok
15:21:39.0579 0x0d38  [ CB5E4B9C319E3C6BB363EB7E58A4A051, C9DCF2C2A6AFE0A0F3E23A265843D0C423C08B2E54702C5B389CF293D9A6BAC5 ] C:\Windows\System32\FntCache.dll
15:21:39.0579 0x0d38  C:\Windows\System32\FntCache.dll - ok
15:21:39.0594 0x0d38  [ DC2755EB981280C312E7BE5EE8CF5D62, 4E52976235B1D2E756235F988709D84E9D83D60927138376BDE1405902997997 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
15:21:39.0594 0x0d38  C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
15:21:39.0594 0x0d38  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
15:21:39.0594 0x0d38  C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
15:21:39.0594 0x0d38  [ 2EEED500C1EC095CB3D0DE7A3C7E4278, 06D0DC42A7DE207D675A0DE69001D20941FC0B8D067504CD8B56DD0B952A5ACE ] C:\Program Files\IDT\WDM\sttray64.exe
15:21:39.0594 0x0d38  C:\Program Files\IDT\WDM\sttray64.exe - ok
15:21:39.0610 0x0d38  [ 58BD95D6BEFB95C8B30F915B5DCFF9A3, 5C9179C63CF47723785B677BEB0E180E0CBD95098199EB32E4506FB38F6CFCF5 ] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe
15:21:39.0610 0x0d38  C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe - ok
15:21:39.0610 0x0d38  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\System32\rundll32.exe
15:21:39.0610 0x0d38  C:\Windows\System32\rundll32.exe - ok
15:21:39.0610 0x0d38  [ 14EAAD6A782FF16B05AADACFE05C8D2A, F28A159BA5CB8943533B2F4CEB3B22D9E2DA0ABD4BB96035C1DD231831A6996E ] C:\Windows\System32\LogiLDA.DLL
15:21:39.0610 0x0d38  C:\Windows\System32\LogiLDA.DLL - ok
15:21:39.0625 0x0d38  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
15:21:39.0625 0x0d38  C:\Windows\System32\msiltcfg.dll - ok
15:21:39.0625 0x0d38  [ E37A7354D3E135E61203BE0CFB90E978, BCC635418799652D2B31FA89F78FAE74CD1D0E97322BA51DD061DA1EF2EF9A4C ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
15:21:39.0625 0x0d38  C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
15:21:39.0625 0x0d38  [ 537A71EF146D42D2580FFFC19539C737, 6EE215B181CB391FEAAA196C8173E42CB66077C12D47EDF16751709C784FB805 ] C:\Program Files\IDT\WDM\stlang64.dll
15:21:39.0625 0x0d38  C:\Program Files\IDT\WDM\stlang64.dll - ok
15:21:39.0641 0x0d38  [ E8132FB3BAC7C0CDBD581485B8BA947F, 063ABE4F7FE9E81543377AD45F58D9C61B06453025B0CCC3E3388C93FE8DBF57 ] C:\Windows\SysWOW64\cryptui.dll
15:21:39.0641 0x0d38  C:\Windows\SysWOW64\cryptui.dll - ok
15:21:39.0641 0x0d38  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
15:21:39.0641 0x0d38  C:\Windows\System32\oledlg.dll - ok
15:21:39.0641 0x0d38  [ A223CF703E28CBD7E9E7982141FA403C, EF6D32CD7EACE2F67B2819000D1A7D7127DBCE36BAE76541B6B2D7C075502F93 ] C:\Windows\SysWOW64\comdlg32.dll
15:21:39.0641 0x0d38  C:\Windows\SysWOW64\comdlg32.dll - ok
15:21:39.0657 0x0d38  [ 3819AD4329303EAC88480CA16A650735, FBE665BEE15A334851AF4BF9969C8BC21B3F0254CAA5E21E67D7843D4171E675 ] C:\Windows\System32\UIAnimation.dll
15:21:39.0657 0x0d38  C:\Windows\System32\UIAnimation.dll - ok
15:21:39.0657 0x0d38  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{675FE2A2-9F45-4B4A-948D-57F4E58F9798}.tmp
15:21:39.0657 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{675FE2A2-9F45-4B4A-948D-57F4E58F9798}.tmp - ok
15:21:39.0657 0x0d38  [ 0CCA9F023E7DC078D7CFBF024655AB7F, 374B208DE74AB49192916232B76F99954A76067A86AFA080C8762E0B141013DD ] C:\Windows\System32\d3d10warp.dll
15:21:39.0657 0x0d38  C:\Windows\System32\d3d10warp.dll - ok
15:21:39.0672 0x0d38  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{966C6D61-17AA-4B90-896B-2DAD35919F64}.tmp
15:21:39.0672 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{966C6D61-17AA-4B90-896B-2DAD35919F64}.tmp - ok
15:21:39.0672 0x0d38  [ 599EBE6C7EA52B5FF9603F203E8EC080, F2E67FF46080E318AB0B90F7C1A5B280191AD127ED94529446473E584E63BCC0 ] C:\Windows\System32\msi.dll
15:21:39.0672 0x0d38  C:\Windows\System32\msi.dll - ok
15:21:39.0672 0x0d38  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{3462CEDD-6A14-4D21-A31E-E3E0A8147A74}.tmp
15:21:39.0672 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{3462CEDD-6A14-4D21-A31E-E3E0A8147A74}.tmp - ok
15:21:39.0688 0x0d38  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll
15:21:39.0688 0x0d38  C:\Windows\SysWOW64\oledlg.dll - ok
15:21:39.0688 0x0d38  [ 55AA98EAB721E7C390C0445B97494501, 846A08EDCD74EA2E5EB5EEE52006AB72A882D90676BC39DDDB60BB7AEE226330 ] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\uninst.exe
15:21:39.0688 0x0d38  C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\uninst.exe - ok
15:21:39.0688 0x0d38  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{25CD4BEE-E7EE-409F-9677-E24A32CD6B5C}.tmp
15:21:39.0688 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{25CD4BEE-E7EE-409F-9677-E24A32CD6B5C}.tmp - ok
15:21:39.0703 0x0d38  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{B1EB5F3B-9923-4131-ADC4-98F88D971FBC}.tmp
15:21:39.0703 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{B1EB5F3B-9923-4131-ADC4-98F88D971FBC}.tmp - ok
15:21:39.0703 0x0d38  [ 691C8DFB208227F0CBB5C0897C742ACE, 3240EAFF8182D1E8C8EA4642D2BF7A6EF19DCA2618E0C20B1FC6E81C277B8649 ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:21:39.0703 0x0d38  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:21:39.0703 0x0d38  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{52C495E2-B014-4B28-AFD2-82E5EDC357A5}.tmp
15:21:39.0703 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{52C495E2-B014-4B28-AFD2-82E5EDC357A5}.tmp - ok
15:21:39.0719 0x0d38  [ 6CC10D9FD128069DBFE476222F097616, 33CC9C9A76A69C50433875FCAF3D20065E5EDADC42899D54CD2191F559956079 ] C:\Windows\SysWOW64\secur32.dll
15:21:39.0719 0x0d38  C:\Windows\SysWOW64\secur32.dll - ok
15:21:39.0719 0x0d38  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{84BAA015-7E82-4011-88D0-97E3AF0675E4}.tmp
15:21:39.0719 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{84BAA015-7E82-4011-88D0-97E3AF0675E4}.tmp - ok
15:21:39.0719 0x0d38  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{DEF1EE83-305E-410D-892C-2DE86C976B5C}.tmp
15:21:39.0719 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{DEF1EE83-305E-410D-892C-2DE86C976B5C}.tmp - ok
15:21:39.0735 0x0d38  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{120FB310-86D1-4DC9-97DB-8E790DA9D0C1}.tmp
15:21:39.0735 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{120FB310-86D1-4DC9-97DB-8E790DA9D0C1}.tmp - ok
15:21:39.0735 0x0d38  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{1CFD69BD-5F2F-42E1-8F8E-775E61D5B320}.tmp
15:21:39.0735 0x0d38  C:\Users\VINCIA~1.BLA\AppData\Local\Temp\{1285AB2C-11E5-4E61-A0A3-10093493FDD2}\{1CFD69BD-5F2F-42E1-8F8E-775E61D5B320}.tmp - ok
15:21:39.0750 0x0d38  [ 8BC7AE7E16458355508ECF5EC3A04E72, 39FE3D8E0D42D51809E33160DEA291E732615DB1C6EA24558B3731349F6F9A2E ] C:\Windows\System32\networkexplorer.dll
15:21:39.0750 0x0d38  C:\Windows\System32\networkexplorer.dll - ok
15:21:39.0750 0x0d38  [ A1A6509F6D12AB2B435EF08CD4FD675E, 6482D239CC9D78B71A4CAAF4A0689BD8F60161A598EE5D44EC5DFEFD50122D7D ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
15:21:39.0750 0x0d38  C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
15:21:39.0750 0x0d38  [ F468C806267D46B68DB7EB32FBF0A103, 6454E84A39E4B6E11BEC99357ADBD1CA039F7BBDDF9036ACD8F3B0AB6608A60B ] C:\Windows\System32\thumbcache.dll
15:21:39.0750 0x0d38  C:\Windows\System32\thumbcache.dll - ok
15:21:39.0766 0x0d38  [ E02E715FA2BC8D88FF9362374E309D76, A10E4D4B02F147A38364A2DEBF9691771BD381B8FC1E672EF96C0509DD919EDE ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
15:21:39.0766 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe - ok
15:21:39.0766 0x0d38  [ 60CC15392FF14DCB9C29C69B3233741B, 458FB3DCDC4828D5C5625517D074795A706A545FB8D0FF46C5981A118D846A66 ] C:\Windows\System32\stobject.dll
15:21:39.0766 0x0d38  C:\Windows\System32\stobject.dll - ok
15:21:39.0766 0x0d38  [ 86B6AC0FD2881B3D20B80F51C7152AE0, BF1A04E0B00159925E716CD3A72CD40FD4BDD7D05684932A91629373CE524186 ] C:\Windows\System32\batmeter.dll
15:21:39.0766 0x0d38  C:\Windows\System32\batmeter.dll - ok
15:21:39.0781 0x0d38  [ 180CCEE7403DDA0C6E86317D5DB2E87B, 13B26658704526DEBD7141F55E4FE7E4B81B392729B8433D5FC7E6B85A86B421 ] C:\Program Files (x86)\Livescribe\Livescribe Desktop\LDTray.exe
15:21:39.0781 0x0d38  C:\Program Files (x86)\Livescribe\Livescribe Desktop\LDTray.exe - ok
15:21:39.0781 0x0d38  [ B79515AFF098E5A56DFBD316152534DE, D796DCC8E363744FBC75426B0B64F083A3C82B984F76216796E2B2D55325DA15 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
15:21:39.0781 0x0d38  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
15:21:39.0797 0x0d38  [ EABEE740565B231696A7DD8D0BFF069F, 14BD4B8C4F7FF8FCB6FFB7315D0C287F5B241F4B1BD8E91A1D0BBD7D58D68D28 ] C:\Program Files (x86)\Livescribe\Livescribe Desktop\PenCommSDK.dll
15:21:39.0797 0x0d38  C:\Program Files (x86)\Livescribe\Livescribe Desktop\PenCommSDK.dll - ok
15:21:39.0797 0x0d38  [ A5F78606A9BA8F0C4C8FF9DED6ED5107, 57583EFF4FBC0B31A47ED6C7BC58E575470F9BF4F12D8E05648507ACA6741965 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
15:21:39.0797 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe - ok
15:21:39.0797 0x0d38  [ 651F169718CC46C8A9264880C538D5FF, D93EB53F909EA1120D647BA672481E0150CD3EC3C86D4B80BDC0E4670D34D2D9 ] C:\Windows\System32\prnfldr.dll
15:21:39.0797 0x0d38  C:\Windows\System32\prnfldr.dll - ok
15:21:39.0813 0x0d38  [ 913C2E4A03201644FC986EDEB5F8A390, C635EE4A2A309EB8C550F6F0B1A0723AA7317C9B3396641D9EA9231255944C6F ] C:\Windows\System32\DXP.dll
15:21:39.0813 0x0d38  C:\Windows\System32\DXP.dll - ok
15:21:39.0813 0x0d38  [ 6EC594AB7EFA45EACDE65FD4040F53D9, A2119AFC55B1231A838C9FD98F50DA9AA85E26EAF1991E8EFF27ADB7C7C3D250 ] C:\Windows\SysWOW64\riched20.dll
15:21:39.0813 0x0d38  C:\Windows\SysWOW64\riched20.dll - ok
15:21:39.0813 0x0d38  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
15:21:39.0813 0x0d38  C:\Windows\System32\Syncreg.dll - ok
15:21:39.0828 0x0d38  [ 9AB3620C0A97366E1565967BD78BF64C, 1F0F2E39BA15B847EE35A0AC403E53C9DA0837E7CE7A56BB055D9E866A9A2B10 ] C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
15:21:39.0828 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll - ok
15:21:39.0828 0x0d38  [ 8898C95862D03D16B2A06DB4DB6BB6B2, DFD06AA65AC6A8BBF24FFDF8355098C3BB0A54400A77EBFDB845B6A47733D8B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:21:39.0828 0x0d38  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:21:39.0828 0x0d38  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
15:21:39.0828 0x0d38  C:\Windows\System32\AltTab.dll - ok
15:21:39.0844 0x0d38  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
15:21:39.0844 0x0d38  C:\Windows\ehome\ehSSO.dll - ok
15:21:39.0844 0x0d38  [ FD4F95ABDE5603478C929B6CB0BDCFFF, 9CDF8BD864CB5714CC2CF7F7A5612FEEDDAE6B92DD14F794946E565F235AA59F ] C:\Windows\System32\pnidui.dll
15:21:39.0844 0x0d38  C:\Windows\System32\pnidui.dll - ok
15:21:39.0844 0x0d38  [ 128DD9AF8640DBCC711940903C8B554F, 46E9715F3CD09F32FBEAA5379991E9E7DACCBD2407C2D061FDA3A04F05108133 ] C:\Windows\SysWOW64\mscoree.dll
15:21:39.0844 0x0d38  C:\Windows\SysWOW64\mscoree.dll - ok
15:21:39.0859 0x0d38  [ F5DF6846F30E9F54EA60CCAEB3FB2055, 07B71E3AA36F90D3D6B60D56F51A524AC769DFD1233BADB76B65874C7BCC5083 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:21:39.0859 0x0d38  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:21:39.0859 0x0d38  [ 24B1666FD14CC71C7B0679AC61625B90, 4243F0B91BF9EAB365BBC724F5984FEB3AD74DF91EAF15F36A44DEA0AEDB7D20 ] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
15:21:39.0859 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe - ok
15:21:39.0859 0x0d38  [ E29DD25C9AAC2C5D626F0DF8A6A9468B, A39471F13A39FF0E82778CAFD01D51C35FE10F12FC21BDAD837C93F9FD72D46C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
15:21:39.0859 0x0d38  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
15:21:39.0875 0x0d38  [ BD03C64C4B1F34D1F330BF6C4AC8113D, CA229A40A8073BFB067F8110E4FF9ECF398131FB5AE225F9477E79049817B3DD ] C:\Windows\System32\QUTIL.DLL
15:21:39.0875 0x0d38  C:\Windows\System32\QUTIL.DLL - ok
15:21:39.0875 0x0d38  [ 66920354B984D4A3848A84B4E66745EA, 3F98352A38512C81FAF2C3FE6F00D766B33111A0EA5F7B43B0DBF5A2952B5F79 ] C:\Windows\System32\netshell.dll
15:21:39.0875 0x0d38  C:\Windows\System32\netshell.dll - ok
15:21:39.0875 0x0d38  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
15:21:39.0875 0x0d38  C:\Windows\SysWOW64\duser.dll - ok
15:21:39.0891 0x0d38  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe
15:21:39.0891 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe - ok
15:21:39.0891 0x0d38  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
15:21:39.0891 0x0d38  C:\Windows\SysWOW64\imageres.dll - ok
15:21:39.0891 0x0d38  [ C98FF6C440E8967251F59C7919B505A1, 3486C9C855E52FD084FBA3276E296ED8647B445A52FC459B794367AAED48D817 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
15:21:39.0891 0x0d38  C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
15:21:39.0906 0x0d38  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
15:21:39.0906 0x0d38  C:\Windows\SysWOW64\dui70.dll - ok
15:21:39.0906 0x0d38  [ DA4ED31DD43ABB0AF99888E236FFDB91, EFB8639A4854A8CB1516639DD032ADFD5AE58082880078115EE1AFB71C9696AF ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
15:21:39.0906 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe - ok
15:21:39.0906 0x0d38  [ 7DA4F72284D2C927927DFC0E12AFAB85, 95C5C4E8999C3A309C9161D26CDBA9C4EFE97FE21FB3760A7F5A98DB137A6543 ] C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
15:21:39.0906 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll - ok
15:21:39.0922 0x0d38  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
15:21:39.0922 0x0d38  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
15:21:39.0922 0x0d38  [ B8E421C0890356CD4A793D8A346D9096, 1FDA1E3C530DF98A258D95F6ED129D8AB11FBC90167E9455C0A85C24A6249F13 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:21:39.0922 0x0d38  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:21:39.0937 0x0d38  [ 714C602C1B8CEF17E25C753F1BACF78D, E0B0DC548CA9DA7F3D0EEE9EDACC9058D5C845E8B03B841434EB1E03683A9B73 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
15:21:39.0937 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe - ok
15:21:39.0937 0x0d38  [ EBC9F71C62296108B60A35B3A54F04FE, 1BAA9FB6C838F52D0F473132D60A99C707F1AB749DC6BAB70D15E789B17100E6 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:21:39.0937 0x0d38  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:21:39.0937 0x0d38  [ 35AC4B63CBB9FB6B4472913E9948B517, 104C7D5E97A680CDF660AA98E6E92447F0FF6B857A847CDAFB0A9EB26086B5A4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:21:39.0937 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
15:21:39.0953 0x0d38  [ B9C1B78DA276F254BFDA950B2DFFBA59, 3C05E47A3EA67111939C9949E2A749FFB573AF805CD462F01D5C830646A57ADE ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll
15:21:39.0953 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll - ok
15:21:39.0953 0x0d38  [ BE33E6A340B7C740226C28B177857948, 57626137C123CA1368170D23C47888753641E887EF71297678D3F8C3E4AE6905 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
15:21:39.0953 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
15:21:39.0953 0x0d38  [ EF294A2159EAE77D837D51141F158EC1, 89F443C6853E85B539099EC069F726633F252CF55A58C66336E9082164EFC919 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll
15:21:39.0953 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll - ok
15:21:39.0969 0x0d38  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
15:21:39.0969 0x0d38  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
15:21:39.0969 0x0d38  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
15:21:39.0969 0x0d38  C:\Windows\SysWOW64\SensApi.dll - ok
15:21:39.0969 0x0d38  [ E83D2495D5867E224FBF42EF40D8856C, 2C806D9B932F24C4BC84E86CED7962A75C0161FF732F77EB1827A3A14976B2C1 ] C:\Program Files\DVD Maker\DVDMaker.exe
15:21:39.0969 0x0d38  C:\Program Files\DVD Maker\DVDMaker.exe - ok
15:21:39.0984 0x0d38  [ 8A6B867FC26B9850D446D2D86E5DB071, 2C699D4C1872693AFD992797B6B37EE482FBD6CE0E68DA3412BC58E22ADF71F9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
15:21:39.0984 0x0d38  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
15:21:39.0984 0x0d38  [ 8A4E324E2C857D7B762B62A684E03E9C, EF9A48553E800AA72F095A642E727982C2ED94247B8DD54FA9F635545632EC9A ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
15:21:39.0984 0x0d38  C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
15:21:39.0984 0x0d38  [ 06C93406C5C9C29F2380FF6600AB1320, A40F336810BE34CFAC629080B65E631AE896FF24C871079E005339234244AEC9 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll
15:21:39.0984 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll - ok
15:21:40.0000 0x0d38  [ D9D79F547AE2A70C650DFCFC27AEC0F7, 756BA12D31908746AA6B743040990C5CCA2D2FB500199B67580F2E548DD2FE86 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:21:40.0000 0x0d38  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
15:21:40.0000 0x0d38  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll
15:21:40.0000 0x0d38  C:\Windows\System32\shfolder.dll - ok
15:21:40.0000 0x0d38  [ 2424231BBD703A677D115C29983B4293, B33022D9BEE7B8B472A73C242578089D02CD683EBDD41CB519AEDC6C18E5D485 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
15:21:40.0000 0x0d38  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
15:21:40.0015 0x0d38  [ AB01C36BCC34CCFE5B0BB5FFB2605135, 214D133CE85504AF924D1CE00FC10DD80E8397C6E1994841EAE78008FAAAE661 ] C:\Windows\System32\WPDShServiceObj.dll
15:21:40.0015 0x0d38  C:\Windows\System32\WPDShServiceObj.dll - ok
15:21:40.0015 0x0d38  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
15:21:40.0015 0x0d38  C:\Windows\System32\FXSST.dll - ok
15:21:40.0015 0x0d38  [ B64F80B64EE7DE4FB68A0FEDA192EE52, 6C09A8E1B4F9C354CEA02B66F8CC2EBDE098C79EB8D88D3789DDA1DF4C7DAC77 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
15:21:40.0015 0x0d38  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
15:21:40.0031 0x0d38  [ D64D99EC088B54FFE8EE67A480386C20, A6D1E4CA40843B0B9B32019E69479457D46CA99A2804E937CDC385C9DEDFDE62 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
15:21:40.0031 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
15:21:40.0031 0x0d38  [ 406F7B9C71B99872670EE9A8D52E2FE5, 7FB2D333947E72962EB2C69CECBC0822B838429EDDD3B179C093B1CE46A26AFB ] C:\Windows\SysWOW64\rtutils.dll
15:21:40.0031 0x0d38  C:\Windows\SysWOW64\rtutils.dll - ok
15:21:40.0047 0x0d38  [ A0F110AB73271DA15E6BC314A8C1512A, 4A74188EE918F35861D190771191A85CA63EDEFF2DC02B35821D183F3BE56FEC ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
15:21:40.0047 0x0d38  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
15:21:40.0047 0x0d38  [ 76C48F0CD8A526858AB9A4886586942A, CF24C562D26B6EFEA09546753DA2BF0B24676BCC05CD5B196DB6C493C4DD4610 ] C:\Windows\SysWOW64\schannel.dll
15:21:40.0047 0x0d38  C:\Windows\SysWOW64\schannel.dll - ok
15:21:40.0047 0x0d38  [ F047AC8029004B2FB94E2429F54617A9, 549F7F8B2B11A99EDE6668C75BD913DF4CC68CDC870DC233E9112AD4E42F248B ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
15:21:40.0047 0x0d38  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
15:21:40.0062 0x0d38  [ 16AA294947C12F5B6D814F009622C581, 8678A255F61CD995A8E42CEE6A1CEE4474ACECBC5EA226EA5C155FEFB27C120A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\bc4eb71543857d07a7401eab3a93d412\System.Management.ni.dll
15:21:40.0062 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\bc4eb71543857d07a7401eab3a93d412\System.Management.ni.dll - ok
15:21:40.0062 0x0d38  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll
15:21:40.0062 0x0d38  C:\Windows\SysWOW64\netprofm.dll - ok
15:21:40.0062 0x0d38  [ 34E6D8C67E7FD7C917BECFECA326B168, 23A0BD68C969E795DA55041982672550DC1557BC64D3C42D76AFD6A3F83AD33F ] C:\Windows\System32\FXSAPI.dll
15:21:40.0062 0x0d38  C:\Windows\System32\FXSAPI.dll - ok
15:21:40.0078 0x0d38  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\SysWOW64\npmproxy.dll
15:21:40.0078 0x0d38  C:\Windows\SysWOW64\npmproxy.dll - ok
15:21:40.0078 0x0d38  [ 0470997A5ADC2FCDDCB3461D92073FAA, 930C03DD63C4105C5A701B453F821B6BD4FA14CF34119AE75ECCCF872C1613FC ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
15:21:40.0078 0x0d38  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
15:21:40.0078 0x0d38  [ 6D563B2AE816E856771C1763E651022A, C44392E551454091D2BE9DE90EDEDCD3678BACCB6893F616F15B7A506B3C13E3 ] C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2006\Planner\PLNRnote.exe
15:21:40.0078 0x0d38  C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2006\Planner\PLNRnote.exe - ok
15:21:40.0093 0x0d38  [ 2C5B8A680A90E96B1EC0D6DA0505E685, 7E81B078A0BB75B1345FF6164D1EA6F6F6784435B92124C99318D6BAB29B3F8B ] C:\Windows\System32\srchadmin.dll
15:21:40.0093 0x0d38  C:\Windows\System32\srchadmin.dll - ok
15:21:40.0093 0x0d38  [ D8ECA7A87AAA3AE308B5277411666622, 2F67D5567DC1174B36E67C1009B827E3C48F05551D4B4A39D7B02B8D12041406 ] C:\Windows\SysWOW64\logoncli.dll
15:21:40.0093 0x0d38  C:\Windows\SysWOW64\logoncli.dll - ok
15:21:40.0093 0x0d38  [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\Windows\SysWOW64\MFC71.dll
15:21:40.0093 0x0d38  C:\Windows\SysWOW64\MFC71.dll - ok
15:21:40.0109 0x0d38  [ 742AA02BD9FA3492C9E525BBD427D87D, 21BB644D6591F10AC8F0A74950D89F4341781C65B79D28BEF6A67823CB933695 ] C:\Windows\SysWOW64\samcli.dll
15:21:40.0109 0x0d38  C:\Windows\SysWOW64\samcli.dll - ok
15:21:40.0109 0x0d38  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
15:21:40.0109 0x0d38  C:\Windows\SysWOW64\msacm32.dll - ok
15:21:40.0109 0x0d38  [ D02F845EF350910B3424AD15BBB68E83, 1A60A21B4372EF1F18711D99A3DCF19DED60D63B9D968944A9298F93A342A3C1 ] C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
15:21:40.0109 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll - ok
15:21:40.0125 0x0d38  [ C6AF064CE23D822C397C771CD4985BC5, 138CA869F4EC8E486289326D55FFC03FF44068FBB7A9DE8502372F8062470C59 ] C:\Program Files (x86)\Common Files\LightScribe\LSCAPI.dll
15:21:40.0125 0x0d38  C:\Program Files (x86)\Common Files\LightScribe\LSCAPI.dll - ok
15:21:40.0125 0x0d38  [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] C:\Windows\System32\FXSSVC.exe
15:21:40.0125 0x0d38  C:\Windows\System32\FXSSVC.exe - ok
15:21:40.0125 0x0d38  [ EC9739A46F1F83C6E52A7A4697F44A65, CF4E93D3E8CA607DDEF87C6996F6C7326316144A61C1B4F83EA1B4B2F9BDC69B ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
15:21:40.0125 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
15:21:40.0140 0x0d38  [ 8019A904EBB6F8CFBA9E41A76A99604A, E3565098FA6519BCFF7140A1112208BD8F1E298415B2DFA0B938D146098164DF ] C:\Windows\SysWOW64\wer.dll
15:21:40.0140 0x0d38  C:\Windows\SysWOW64\wer.dll - ok
15:21:40.0140 0x0d38  [ B9F0DAC554B9B90C32C2E91A83979BA7, B7CE5AFDB53118D1928B1825C8047946BD0CB1AA60831CE3A4227D310A61AE8A ] C:\Windows\SysWOW64\mshtml.dll
15:21:40.0140 0x0d38  C:\Windows\SysWOW64\mshtml.dll - ok
15:21:40.0140 0x0d38  [ 92AAF75C3EB344A098DC026BC9DDF42A, 1E47DCB47C9543452013E98B457E6A4DA21FF6F38BA551A87D8A42C5645F35CA ] C:\Windows\System32\bthprops.cpl
15:21:40.0140 0x0d38  C:\Windows\System32\bthprops.cpl - ok
15:21:40.0156 0x0d38  [ ECF45E3FC8C63E44ED45D38A8672E7F1, 2E3FB2C462F50EB4D05876E645C6B75D2231F787769E5815E117D59ECB832443 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
15:21:40.0156 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe - ok
15:21:40.0156 0x0d38  [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Windows\SysWOW64\msvcr71.dll
15:21:40.0156 0x0d38  C:\Windows\SysWOW64\msvcr71.dll - ok
15:21:40.0156 0x0d38  [ 09EAD9CB2346B671F8F079D3472134D8, 4E257B7112123752F2708CB49FCCB931B1F74284D60F76CC810AEB40DE2BB99B ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
15:21:40.0156 0x0d38  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
15:21:40.0171 0x0d38  [ 45406FFD87F6BA4345B018E303A64FF1, 614ACC05B53B478077D9A3ECABB43A20F956096559D33095A39A1EEAF2673AD2 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
15:21:40.0171 0x0d38  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
15:21:40.0171 0x0d38  [ 19CCF6D39E15B13D00106F9795721136, 719A47B3B5E49FDB78EA4A250FB3BAD8F5BD41209801C16A0FAA288BE18B6467 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
15:21:40.0171 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll - ok
15:21:40.0187 0x0d38  [ DA6C4B5FEEEA4DC7162B5D0C055EB967, 5261EE8EE90598DC10B1B8E85096E601A260BD0671660F667A3DAF470523A70C ] C:\Windows\System32\imaadp32.acm
15:21:40.0187 0x0d38  C:\Windows\System32\imaadp32.acm - ok
15:21:40.0187 0x0d38  [ 1C81E1BEA4847F406BBDB74D19721CE6, 0080A37A732A6C3E78F2BB7E84F3BBC89B1468129A7F0A8DD68108B40F89B4FE ] C:\Windows\System32\msg711.acm
15:21:40.0187 0x0d38  C:\Windows\System32\msg711.acm - ok
15:21:40.0187 0x0d38  [ E5B9A2FA94D21C44DA2B898DC326B0C2, BE6930B076E8A493082BB71797C07AE6B831029095D3666EB606BBFDABD53FD9 ] C:\Windows\System32\msgsm32.acm
15:21:40.0187 0x0d38  C:\Windows\System32\msgsm32.acm - ok
15:21:40.0203 0x0d38  [ 3C33562F4FAE3D58E47F662DCE07675E, C38FACCC84AF8FD72A3C295F4205A6F9FDA6A9B05FFD1676C8971628DE4CB48D ] C:\Windows\SysWOW64\WinSCard.dll
15:21:40.0203 0x0d38  C:\Windows\SysWOW64\WinSCard.dll - ok
15:21:40.0203 0x0d38  [ 329FEB3452982A377726DEDAFE9BBDF0, 1160B58DC172148BF46DEACBF94443C23A4AE467F7A5CE3D1A3D1A98D756D5FE ] C:\Windows\System32\msadp32.acm
15:21:40.0203 0x0d38  C:\Windows\System32\msadp32.acm - ok
15:21:40.0203 0x0d38  [ 5046E55184021406C27E8D48A1B2C9D2, DA592E05F2BA21A540B409FD2156A5BDF253EB3B50B30EEDCAE325DD026993D7 ] C:\Windows\System32\l3codeca.acm
15:21:40.0203 0x0d38  C:\Windows\System32\l3codeca.acm - ok
15:21:40.0218 0x0d38  [ D25C90F166CB25DCB85755F3DAA984B3, 4A30E495D5FB3DDE167472B2BAACA63E28F6F8D1BFBFE743150C5EACBBE49C1B ] C:\Program Files (x86)\Windows Live\Shared\wldlog.dll
15:21:40.0218 0x0d38  C:\Program Files (x86)\Windows Live\Shared\wldlog.dll - ok
15:21:40.0218 0x0d38  [ 8EB5E95365AC5796E0C8175267D50744, E9623A4F22E6C51C6D909D8D185E692DB3C51050D6DEEA85FF75C0C2F4D78625 ] C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll
15:21:40.0218 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll - ok
15:21:40.0218 0x0d38  [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\SysWOW64\msiltcfg.dll
15:21:40.0218 0x0d38  C:\Windows\SysWOW64\msiltcfg.dll - ok
15:21:40.0234 0x0d38  [ 27FF86CBDFABD326001102B28C7638BA, 667FE510C6E05A646ABF3E0D6EB4B4ABE3D1A0C41E59490B435D8FBB7298CF21 ] C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2006\Planner\PLANNER.exe
15:21:40.0234 0x0d38  C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2006\Planner\PLANNER.exe - ok
15:21:40.0234 0x0d38  [ C0E1D09C01019F27F2B06BBA152CDB07, AA41B49A4E373707A9880B27AA40B6A185B6B22FCB67911FDC43EB73ADC6D22C ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll
15:21:40.0234 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll - ok
15:21:40.0234 0x0d38  [ ACEB5E6F416223806421D8864FC0EEB4, 6B395CB096E12B027400B2C35DBCB8CD040F16E36F8E3E70C4F8E138AE1FF2E8 ] C:\Program Files (x86)\Windows Live\Shared\uxcore.dll
15:21:40.0234 0x0d38  C:\Program Files (x86)\Windows Live\Shared\uxcore.dll - ok
15:21:40.0249 0x0d38  [ 96F3F676B4D0DF4DA9C4081358C4662F, 99EC65A61B88DFEFB2F02C3E3D01638FCBC41773AB40268F9CB2C72FD288CF62 ] C:\Windows\SysWOW64\wbemcomn.dll
15:21:40.0249 0x0d38  C:\Windows\SysWOW64\wbemcomn.dll - ok
15:21:40.0249 0x0d38  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:21:40.0249 0x0d38  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:21:40.0249 0x0d38  [ 794918BA6D0EEB27C9132F5B90A39C0C, 473667F39656CE33837E89027374076AD328F771DE663C97027C790655E87CD9 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
15:21:40.0249 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc - ok
15:21:40.0265 0x0d38  [ DD1173E82083162858D1D4EAF43EC69B, 97AEDAEB4E4DDF636E03B863C1B83FFCBFE09A78A09ABD5B187BE2C44DAC870C ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll
15:21:40.0265 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll - ok
15:21:40.0265 0x0d38  [ A763DC95B9FC813108E6CE66B9527714, 80FD23CB544A89F03942B1ECBA63B918F3A1C34CFD61C93AD5CE629F4113EA71 ] C:\Program Files (x86)\Cisco Systems\VPN Client\vpngui.exe
15:21:40.0265 0x0d38  C:\Program Files (x86)\Cisco Systems\VPN Client\vpngui.exe - ok
15:21:40.0265 0x0d38  [ 51464B6C373CD07E7D4A6CC9294ED67C, 798EF881E40993ACA1E9730A3E2018441FB4D29976E1E362D70BA9E1ECA71396 ] C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\Dropbox.exe
15:21:40.0265 0x0d38  C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
15:21:40.0281 0x0d38  [ 26025A46FB3FDB40FF06BBF1834093B5, EEA5F111C6F3A86EE2CB7D11C2C9986DC540E713817929366ABD4DB132C61F7B ] C:\Windows\SysWOW64\msls31.dll
15:21:40.0281 0x0d38  C:\Windows\SysWOW64\msls31.dll - ok
15:21:40.0281 0x0d38  [ 1CEDFE91F527858CACA1B08B04666BC0, B29D4545DAEBF28C07DF684C9AF0C5EE8DE5C723E81B8832188FA27106F1FC50 ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:21:40.0281 0x0d38  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:21:40.0281 0x0d38  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:21:40.0281 0x0d38  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:21:40.0296 0x0d38  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
15:21:40.0296 0x0d38  C:\Windows\SysWOW64\ntdsapi.dll - ok
15:21:40.0296 0x0d38  [ 8CD2A697B18069A62A035E756E51E934, 954C5C3861C06B3F9247E7BFEC4EDA104EDE10BB9454F4677492EC73952781BF ] C:\Windows\System32\SearchIndexer.exe
15:21:40.0296 0x0d38  C:\Windows\System32\SearchIndexer.exe - ok
15:21:40.0296 0x0d38  [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Windows\SysWOW64\msvcp71.dll
15:21:40.0296 0x0d38  C:\Windows\SysWOW64\msvcp71.dll - ok
15:21:40.0312 0x0d38  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
15:21:40.0312 0x0d38  C:\Windows\System32\wbem\NCProv.dll - ok
15:21:40.0312 0x0d38  [ 64D757051B5B273E55C93E4503EA4F3E, 64DE8773FEF4B1158AF23C9EDCFF22F89A32BC6E47CB833D1CB5C2C9DBE5DD75 ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:21:40.0312 0x0d38  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:21:40.0312 0x0d38  [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\SysWOW64\mlang.dll
15:21:40.0312 0x0d38  C:\Windows\SysWOW64\mlang.dll - ok
15:21:40.0327 0x0d38  [ F8F532C7509C3238C9827BAE861A48D7, CDD88CDC7BBC667265683FBFD7E33AE12ECE927B0AB20F279DD1C112BE5E7DE7 ] C:\Windows\System32\tquery.dll
15:21:40.0327 0x0d38  C:\Windows\System32\tquery.dll - ok
15:21:40.0327 0x0d38  [ 031C6782F2D50336FC2C72F8D14A4C13, A548A1360D5F30771DB5E3E9391965B3FF2E89B146B1595583009852A6FA73E0 ] C:\Windows\System32\wbem\wmiprov.dll
15:21:40.0327 0x0d38  C:\Windows\System32\wbem\wmiprov.dll - ok
15:21:40.0327 0x0d38  [ FE56C0DA05F4C3B8BEAB297C486FF737, 89D7DCF5B07A586CCC06E023F8417E3A3B4FB0949D82461DB4DA97525EF7A01C ] C:\Program Files (x86)\Cisco Systems\VPN Client\qt-mt335.dll
15:21:40.0327 0x0d38  C:\Program Files (x86)\Cisco Systems\VPN Client\qt-mt335.dll - ok
15:21:40.0343 0x0d38  [ BB50B21FEE2A6F3E5FC92B330ECCF050, FD8A126C7F19267821C5FFC6C8341BBF2E11ADB241C49371BFB8CA00218A5754 ] C:\Windows\SysWOW64\hhctrl.ocx
15:21:40.0343 0x0d38  C:\Windows\SysWOW64\hhctrl.ocx - ok
15:21:40.0343 0x0d38  [ 9FDF43178419CB0D4B50373C50396BDF, 4B2B3AA8DB77F529C11D7FB43A7899CF9E3339D526886F941EED0970D0274E2B ] C:\Windows\SysWOW64\d2d1.dll
15:21:40.0343 0x0d38  C:\Windows\SysWOW64\d2d1.dll - ok
15:21:40.0343 0x0d38  [ 6E9E439517D89EDC9A6CB1E94489620A, 2E56936B6780C7377DDF468EA5F4115BBBFE7B43E5813710621003F401E1F7ED ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
15:21:40.0343 0x0d38  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
15:21:40.0359 0x0d38  [ 1CE55AE7E57826457FD56EB3C50E4E54, 1AC982B3BAC0B8E7E43BFD09BBDB10C8D4FE7304A2B297911F7B397A08928504 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
15:21:40.0359 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe - ok
15:21:40.0359 0x0d38  [ C6331D11F80B3AFFD91A9B3858E00F23, A6EC2B7AAA8B707EC89A00D332200C1011E8B8F47615119996C9BE502620C6AF ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
15:21:40.0359 0x0d38  C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe - ok
15:21:40.0374 0x0d38  [ 97CCB4D737B426B200E5EF90C877DF32, 3BE85121CCF11B688D1FFDB52076367A46B52EE4ACD9F164922EDCD5BA05C3FB ] C:\Windows\SysWOW64\imagehlp.dll
15:21:40.0374 0x0d38  C:\Windows\SysWOW64\imagehlp.dll - ok
15:21:40.0374 0x0d38  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
15:21:40.0374 0x0d38  C:\Windows\SysWOW64\ddraw.dll - ok
15:21:40.0374 0x0d38  [ 3989BB6998C32753FDD5493879C1835A, CAEA8F2CEF0329A2F7FA84A9D524BC671C6CD69F5A4FFF40E1882846912CE5DE ] C:\Windows\SysWOW64\ncrypt.dll
15:21:40.0374 0x0d38  C:\Windows\SysWOW64\ncrypt.dll - ok
15:21:40.0374 0x0d38  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
15:21:40.0374 0x0d38  C:\Windows\SysWOW64\bcrypt.dll - ok
15:21:40.0390 0x0d38  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:21:40.0390 0x0d38  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:21:40.0390 0x0d38  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
15:21:40.0390 0x0d38  C:\Windows\SysWOW64\gpapi.dll - ok
15:21:40.0405 0x0d38  [ BA4A19DE93FBDFE6DB5F0EBC99732A06, C7FB853E484D6A78AED734B8DD14C429C71CE7D1F8E5EEA5D40A2ED4D3CED0F5 ] C:\Windows\System32\mssrch.dll
15:21:40.0405 0x0d38  C:\Windows\System32\mssrch.dll - ok
15:21:40.0405 0x0d38  [ 506C4E1324ABE11CEC172569F5DDAB06, F5E9EDD4B3DB0DE3DE3CBA08D05B29C4F65C6EB61BB647C8C66B7BBC3986014C ] C:\Windows\SysWOW64\cryptnet.dll
15:21:40.0405 0x0d38  C:\Windows\SysWOW64\cryptnet.dll - ok
15:21:40.0405 0x0d38  [ AD8F6914F7A9AC28047389BE7AF56EBF, 1442A3C64E27D4F7D7B7D1967246BEE505CF294399069278CF916FDB10453642 ] C:\Windows\SysWOW64\d3d10_1.dll
15:21:40.0405 0x0d38  C:\Windows\SysWOW64\d3d10_1.dll - ok
15:21:40.0421 0x0d38  [ 55E5B32AE8D1F51A63C82919656FD275, 1E32D9471902F0743BF234466E44A7ECCF7B55618A2D42F9B0902AD591133700 ] C:\Windows\SysWOW64\dciman32.dll
15:21:40.0421 0x0d38  C:\Windows\SysWOW64\dciman32.dll - ok
15:21:40.0421 0x0d38  [ BCD6FF65A80EE7556062AE1FA23261A2, 26243A95BF76F41F02A8065BB76B55C2EC942963749ADE8ED143AD88E037FDF6 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll
15:21:40.0421 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll - ok
15:21:40.0421 0x0d38  [ 7459301D21C2E21468823F73042D9F87, 74CF393FDA910EBF50F5EE74DF001F29467FE83F0457895FB267518A8504800B ] C:\Windows\SysWOW64\d3d9.dll
15:21:40.0421 0x0d38  C:\Windows\SysWOW64\d3d9.dll - ok
15:21:40.0437 0x0d38  [ 601FFAEAF926AFBD72E60EA5C9987371, 5E78AC4C321DAA341B5E5DDEF7CAE58C0F02084E8BC30ACA154D37259F63423F ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
15:21:40.0437 0x0d38  C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll - ok
15:21:40.0437 0x0d38  [ 59A15C87764F54CC4E201E114926356B, CD7821F2C526BE441BB9BE28A647F976A93FE641000BA4AFB141F00715239058 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll
15:21:40.0437 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll - ok
15:21:40.0437 0x0d38  [ D84222A740EE7A135FC68AEB11121523, 1E51E4F63A114B0B481B9276A423AEACC857497DFF74EA6CCE778193DAB01283 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
15:21:40.0437 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll - ok
15:21:40.0452 0x0d38  [ 9103E020906FC7A166F380EF2D2516B2, CC18951F81D8E817A0D60FF3842024B5D986526FA7F874B6D223746CAE44D66C ] C:\Windows\SysWOW64\d3d10_1core.dll
15:21:40.0452 0x0d38  C:\Windows\SysWOW64\d3d10_1core.dll - ok
15:21:40.0452 0x0d38  [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\msvcr71.dll
15:21:40.0452 0x0d38  C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\msvcr71.dll - ok
15:21:40.0452 0x0d38  [ DD76301614636306414EFA94A9AC5A03, D84F407CB32FE495844EEB90C156CEE191E005EB89F4D349426A34C04DC019B9 ] C:\Windows\SysWOW64\dxgi.dll
15:21:40.0452 0x0d38  C:\Windows\SysWOW64\dxgi.dll - ok
15:21:40.0468 0x0d38  [ FAD9E417338BC60375D296C6D649EC86, D6B2D442FB9819F86FC262F6242582ED7867104952158ED42F498E8AE73D1D13 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc
15:21:40.0468 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc - ok
15:21:40.0468 0x0d38  [ 2C64AF297F12582BD95D7D94C18E464C, 6B5680C82887DFBF79CF75D0395E2BA1FD8093BF176AA27AFEC23A197ADA88B7 ] C:\Windows\System32\esent.dll
15:21:40.0468 0x0d38  C:\Windows\System32\esent.dll - ok
15:21:40.0468 0x0d38  [ 1AA571774936717EE776DBED51E9EDF4, 9F4C15E1F68795727EDED4737ACC5A1AA85F896CD9E6924FDDC9128B48F1BBD6 ] C:\Windows\SysWOW64\d3dx10_41.dll
15:21:40.0468 0x0d38  C:\Windows\SysWOW64\d3dx10_41.dll - ok
15:21:40.0483 0x0d38  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
15:21:40.0483 0x0d38  C:\Windows\SysWOW64\d3d8thk.dll - ok
15:21:40.0483 0x0d38  [ 3C69CE161C7007E9AD53A325492D446A, 4837BE44E0C2492FF5D4F9F84B7627BD7A93BF4FEBF7AF9578650404F2241848 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll
15:21:40.0483 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll - ok
15:21:40.0483 0x0d38  [ 9F9B0AD8804ECFF8CBD279992DCF7210, F673277B72FAF9EEA15F575B5BE9F32EB813E663062CA1DCDFFC093C6746726D ] C:\Windows\SysWOW64\DWrite.dll
15:21:40.0483 0x0d38  C:\Windows\SysWOW64\DWrite.dll - ok
15:21:40.0499 0x0d38  [ B0A41262968DD6FCE3933527892D4A24, 1B7EEADB1C437E9779D9DE81A3FDA320661DE95D4BCAAB525D717BC887B5E640 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
15:21:40.0499 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll - ok
15:21:40.0499 0x0d38  [ 8639237940994AAB9B8E8503F2A551A0, 591FADA9797F4E55FB395AAE09842B5CEA586196E8301490F9E342D366A8588A ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
15:21:40.0499 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
15:21:40.0499 0x0d38  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
15:21:40.0499 0x0d38  C:\Windows\System32\msidle.dll - ok
15:21:40.0515 0x0d38  [ 9DBD149CAF43D2E7C874C5F40600825C, E755F86824D846AC556441F00C294445C37F08B1176F771F9B826A8F826CA952 ] C:\Program Files (x86)\Windows Live\Shared\wldcore.dll
15:21:40.0515 0x0d38  C:\Program Files (x86)\Windows Live\Shared\wldcore.dll - ok
15:21:40.0515 0x0d38  [ 50D6CCC6FF5561F9F56946B3E6164FB8, 27529E751D3CB13B651B54474F04A17DF5737AD0170CD41F601E779F90603D11 ] C:\Program Files\iPod\bin\iPodService.exe
15:21:40.0515 0x0d38  C:\Program Files\iPod\bin\iPodService.exe - ok
15:21:40.0515 0x0d38  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
15:21:40.0515 0x0d38  C:\Windows\System32\mssprxy.dll - ok
15:21:40.0530 0x0d38  [ 0DE3C7622EC33126579B1742260F08C2, 1F6082C0E3A8593E1BB60D4B8C30D48E41D433A6CF67146A5CED13467A890892 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
15:21:40.0530 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe - ok
15:21:40.0530 0x0d38  [ 51AE7FB541762F4E66303146E03AD15C, A27136C8ED4A6153BEAC97910B9B3A834E4085A67BF5EA7DBBFC2F506C7D3087 ] C:\Program Files (x86)\Windows Live\Shared\uxctl.dll
15:21:40.0530 0x0d38  C:\Program Files (x86)\Windows Live\Shared\uxctl.dll - ok
15:21:40.0530 0x0d38  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
15:21:40.0530 0x0d38  C:\Windows\System32\netman.dll - ok
15:21:40.0546 0x0d38  [ 371A6D058281FCFC2A7AD0A0ABB1ADEC, 0E9911EA344805D5BE36EF8A799F051E1442DEA97B8C58E659B4F7ADA758966A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll
15:21:40.0546 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll - ok
15:21:40.0546 0x0d38  [ D171FFB6DF8F648BA9022A550B056E00, 945BFE78FABEC3900C56155F84A420AE07F47BBF2F69950A22B32065F481DC69 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
15:21:40.0546 0x0d38  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
15:21:40.0546 0x0d38  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
15:21:40.0546 0x0d38  C:\Windows\System32\rasdlg.dll - ok
15:21:40.0561 0x0d38  [ 22309C300E4F1E33BC75EDA065C3C384, EA0E996174669056578985DC88C212A5BA5A93F5A8986CDDDB63567DD3CB20F5 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
15:21:40.0561 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe - ok
15:21:40.0561 0x0d38  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
15:21:40.0561 0x0d38  C:\Windows\System32\en-US\tquery.dll.mui - ok
15:21:40.0561 0x0d38  [ E0A8EDCE1DFDC9874CD2817F9FC4BDF0, B2A3F293F276B779B5AB1ED050D15BD02E3B578C0202143E8767EB8EBCBB0EB7 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
15:21:40.0561 0x0d38  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
15:21:40.0577 0x0d38  [ 6780F366154293210F661A48043CC469, AC8FABE2FE3DD579663C5AD5271CDC636B87C5BB794E4ACDB35148A4B2A72FC0 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Helper.dll
15:21:40.0577 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Helper.dll - ok
15:21:40.0577 0x0d38  [ 114429A77D935053E13A9BF98A8B8CA1, 6120CF8EC6D2F262A3FCB0C0BB185DA8BE5F4D5FF6A114D8F54CC13535C31EE5 ] C:\Windows\System32\mprapi.dll
15:21:40.0577 0x0d38  C:\Windows\System32\mprapi.dll - ok
15:21:40.0593 0x0d38  [ FF316FF0C5D332667C6FA8CA5D98A352, 9F81795A82A1F4725E6217EE0133C8432704B02E8E6E4F1CBE9E15AAFE22F038 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll
15:21:40.0593 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll - ok
15:21:40.0593 0x0d38  [ 95D21D0C1072A158ADD1A84DE1EF05D9, 8135C0906F8CB45BEC126A2C844EA101EE04A9A657BB94F73E817C0D3023736F ] C:\Windows\SysWOW64\atiumdag.dll
15:21:40.0593 0x0d38  C:\Windows\SysWOW64\atiumdag.dll - ok
15:21:40.0593 0x0d38  [ 4A5B13F3F00F4BC122C45B46F54FFCA3, D7FF1D9193C72CC6C7AD0B87C3A070F003F3760975C2792C680A8213522E4610 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll
15:21:40.0593 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll - ok
15:21:40.0608 0x0d38  [ BB68579E181956E37EB11F9083C01CF3, 969920A2137BAC81810A7F635A0C486892D66E95C49E7EC54ABB93FC52071788 ] C:\Windows\System32\dot3api.dll
15:21:40.0608 0x0d38  C:\Windows\System32\dot3api.dll - ok
15:21:40.0608 0x0d38  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
15:21:40.0608 0x0d38  C:\Windows\System32\wlanhlp.dll - ok
15:21:40.0608 0x0d38  [ A0C69A8661CCEB20DB60A4FA35A2FBE4, 7330B2E737B489E17922FE5B491F07BA5A74293186D0727BA07CF49966A5A878 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll
15:21:40.0608 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll - ok
15:21:40.0624 0x0d38  [ 18C49CF5352BF8DE47BD2B1E5A912886, 72D9D3FD256D9F3806D827FF139DB6FDF7355AA224B05EB627171BE48754B197 ] C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll
15:21:40.0624 0x0d38  C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll - ok
15:21:40.0624 0x0d38  [ 0F082AA29D17B61EE9B4D62D2300CD82, 95EFBFF358D8162CE457EEC5929FE0513D01636F04D49060879BA9F492A55AC5 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
15:21:40.0624 0x0d38  C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
15:21:40.0624 0x0d38  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
15:21:40.0624 0x0d38  C:\Windows\System32\hnetcfg.dll - ok
15:21:40.0639 0x0d38  [ F8D838913C7A84DDB98204E775C3F49E, E8BA38A13F136C0D41695DDE2C9660797A413A956A4489F39CFE9A82D8B8F959 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll
15:21:40.0639 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll - ok
15:21:40.0639 0x0d38  [ D779D935A3109B2D20FD84EA097E3E4A, D29C890C825F4E09CF277E3DCA8E33E4850A08FB0B84F28A7DEA35F12E37E1A0 ] C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll
15:21:40.0639 0x0d38  C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll - ok
15:21:40.0639 0x0d38  [ EB24684437EC448D680A7CACBDE94C94, 44A465820E6A6F6BD573D49E5FEFBC07C5839074EBBC0DAF0FDEE725A909E85D ] C:\Program Files (x86)\Windows Live\Shared\wlidux.dll
15:21:40.0639 0x0d38  C:\Program Files (x86)\Windows Live\Shared\wlidux.dll - ok
15:21:40.0655 0x0d38  [ 7349C9EBA29D3D7661CA5353E613D12F, 0D8A430BC66249704C2F482B6AF502C4135DA41677EC686C75370D60C1851EDF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll
15:21:40.0655 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll - ok
15:21:40.0655 0x0d38  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
15:21:40.0655 0x0d38  C:\Windows\System32\WWanAPI.dll - ok
15:21:40.0671 0x0d38  [ D0D99257DDDCDDBE998AF7CA14E85BD0, 442DB50095CCCB5728CB5BC8D19BB7B6813BA38DD05DC6B64B3C5A193B04CB86 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
15:21:40.0671 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe - ok
15:21:40.0671 0x0d38  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
15:21:40.0671 0x0d38  C:\Windows\System32\wwapi.dll - ok
15:21:40.0671 0x0d38  [ 58A14C45A5CD2528F10A889E7B0C3FC2, 81521B27F6DE4F2451C5441DFA93781B6687EE8F9AE62A8FE76D61DE7965E6EF ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
15:21:40.0671 0x0d38  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
15:21:40.0686 0x0d38  [ 0B9F7D42D745038437FAE70D97F9AD5A, D690FC5DC287D29A2FA4C2AA820E09D57B5B513C2B1FB07BFBC7E59577887DB0 ] C:\Windows\System32\QAGENT.DLL
15:21:40.0686 0x0d38  C:\Windows\System32\QAGENT.DLL - ok
15:21:40.0686 0x0d38  [ D8FFBD5E7EA9B634EDF04707A8DB70D6, 88D08AC1101F81C62C4E8A869FC6B2751B8C12D7BFE858FB599F683A79279A9C ] C:\Windows\SysWOW64\atiumdva.dll
15:21:40.0686 0x0d38  C:\Windows\SysWOW64\atiumdva.dll - ok
15:21:40.0686 0x0d38  [ 464822A1F51A2340FE8BE020A1EA3052, 1F9D51DDD1EF3A907BA1F6BDCF3EB8AF72CDC7DB6AE9A14781D5B39A13F7AA11 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
15:21:40.0686 0x0d38  C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
15:21:40.0702 0x0d38  [ 9843F58DF3E2908D1FED4DF4B8747E51, B080032C4AE5E048DC4B984A4BC906E78739D470EEB2BA3B6ED18439FD6442B2 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
15:21:40.0702 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe - ok
15:21:40.0702 0x0d38  [ 8541447303958819ADB46B557ADD3750, 14ECBF3C3B159585E145203D9609097C6A8F2A3F1EB1667545ECA6C763BB22D3 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll
15:21:40.0702 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll - ok
15:21:40.0702 0x0d38  [ C6595B078842E187C6587A285B43A565, 61CFB5B4888960D61EDB53C1E46C99035ADA9FCC343A4662E66B233DFF5A0270 ] C:\Windows\SysWOW64\inetcomm.dll
15:21:40.0702 0x0d38  C:\Windows\SysWOW64\inetcomm.dll - ok
15:21:40.0717 0x0d38  [ 03211597018F96769F7F731039F692E1, F3E2D571CE28EDBBEAE81E4A591666EF60F12B9E4ABF1C7C2AE63A17C89FF655 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll
15:21:40.0717 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll - ok
15:21:40.0717 0x0d38  [ B7592E80772071D66336B3EC9B82101D, EF7B70870C42CF0C2062CCEBD0922003A7D68333B7A4829D6792B9534B39ACF0 ] C:\Windows\SysWOW64\msoert2.dll
15:21:40.0717 0x0d38  C:\Windows\SysWOW64\msoert2.dll - ok
15:21:40.0717 0x0d38  [ 9CB30A4E79BE55751312991DE827F6ED, 9B6451C8C3BDD3070543758DCAC24FB98AD79D1A0BB08D89905913FF76E5A39D ] C:\Windows\SysWOW64\INETRES.dll
15:21:40.0717 0x0d38  C:\Windows\SysWOW64\INETRES.dll - ok
15:21:40.0733 0x0d38  [ AFF3C845926422E135A08AE474DE27EA, 0EF8D29338DEFC34C2892A26B51A14CCDF67522ACF5DFCBCE5F8682F5ED6E87F ] C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm
15:21:40.0733 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm - ok
15:21:40.0733 0x0d38  [ EB7368D501B9D22E777F6011F72F60FE, A631D249B59573A47A2CA2DA0F1E9D161FEDB7D5EA0C170A8819F8B8E025064D ] C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui
15:21:40.0733 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui - ok
15:21:40.0733 0x0d38  [ 649ED39CA880B4CC5602D80931FF8817, 951B4E88B55F99678E796F8733FA7F05287DFA48ADF2A56F6A1062F531561AFE ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
15:21:40.0733 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
15:21:40.0749 0x0d38  [ F60F6F24FEF1024A64889A6D656381AE, EB3A33D4EE176F91A4446534D4F1FFE6BC8402A7521F0F5960EBB6140C561FDF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll
15:21:40.0749 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll - ok
15:21:40.0749 0x0d38  [ F0842CF3C0B33C07B2CA1692900F21B4, 9FA173B8C67DEB75011C10AC25D990A667056FF2E5C5BF50914C753703435806 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll
15:21:40.0749 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll - ok
15:21:40.0764 0x0d38  [ 1CD5C2DFD2A5BF6DA720386679F3C449, DF2CA61C4F235371324CDF7AADE3A6FC3DC7FD2918006FA6D0682E6EE5D19A30 ] C:\Windows\SysWOW64\HPZipr12.dll
15:21:40.0764 0x0d38  C:\Windows\SysWOW64\HPZipr12.dll - ok
15:21:40.0764 0x0d38  [ 9F6258F4166AB24B4B681EB1ED44534C, FCB57D7D756B75A862B031EC3D9C76CE85A06116EFBA6E3206898991DCF8DEBC ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll
15:21:40.0764 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll - ok
15:21:40.0764 0x0d38  [ 347A39B69AC03B8F56D8807B989F5CA8, F641238432D0590592441C02A8044F687BD5219AF5591BAE1F61B76C1C9A88FD ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll
15:21:40.0764 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll - ok
15:21:40.0780 0x0d38  [ 883008A9B5BFF94A153D99DBA54CB5C1, 9EF1DBCCCA4603A44D07E676870DF71E0B5B9B1BA1ABF70C09EE4E661CFE0537 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
15:21:40.0780 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe - ok
15:21:40.0780 0x0d38  [ CA6ADE4F7761BB15B3325356DC3B82BB, 0EA4CD410DA764916EA201C0C1E16752E0D3DC9D8571510782AF4AAE62509AF7 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
15:21:40.0780 0x0d38  C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
15:21:40.0780 0x0d38  [ B4FEBBAC47297242F04EF7F14FE6DF99, 89BD6D2870B1F0DD59675E8CF7F5C8A1FB8D0C6CE7EA288C5EAAAFC714CF2573 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
15:21:40.0780 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll - ok
15:21:40.0795 0x0d38  [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042, 8E9D77A216D8DD2BE2B304E60EDF85CE825309E67262FCFF1891AEDE63909599 ] C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll
15:21:40.0795 0x0d38  C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll - ok
15:21:40.0795 0x0d38  [ CCA3CD390BB5B890617494CA66E5614E, 31BD33A2F9508565B01D887D63CE8569D37F4815EEBC8DA7744CC01BB0466007 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
15:21:40.0795 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll - ok
15:21:40.0795 0x0d38  [ 35E65E4AA4131F2BA024ED1DE81261F1, E321AA4923A6CCEF83A706395D5286CC2A863EF9104C0F6B341D4F4B475D7CDE ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll
15:21:40.0795 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll - ok
15:21:40.0811 0x0d38  [ BFD17358837F27235BFC1640905C683C, C0A73E30BB8929C34AAA08360D3281D926CFB5E39B8C3FAA8BD3D46AF412250E ] C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll
15:21:40.0811 0x0d38  C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll - ok
15:21:40.0811 0x0d38  [ 27BED235F5497DEBC6EF6EFAF4BA1D60, 9B5C1724678E8982E07739E62DD883707A91C16590E044E439E636C22CE23ED9 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
15:21:40.0811 0x0d38  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
15:21:40.0811 0x0d38  [ B8956806B33366E28C08C261E746B0B8, 9D5EA5FAF5BEFD60B4A4697EF02E2B83556A054D87CCFD4ACC6D0ECD99D9F0FB ] C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll
15:21:40.0811 0x0d38  C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll - ok
15:21:40.0827 0x0d38  [ FBFCA1A574D47EE575448B719CBBF2E4, B7CAB2D0D95679B05EFC8E1303BAA65C9B3B80527C3FD3AECDC0D2E59919D36E ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
15:21:40.0827 0x0d38  C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
15:21:40.0827 0x0d38  [ E301F09BEB39DAF997D6609C5913599F, D029A60CED180A48C86AC3EBE6F041D8EDB09B58334C82811455EDCDAF81C5FB ] C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll
15:21:40.0827 0x0d38  C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll - ok
15:21:40.0842 0x0d38  [ 0EE03D901B5DCD3941686B95FCC98C89, 9767C42677ECDC5540E642B35B883326EA58DF09FC66E69A08A0448661184E75 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll
15:21:40.0842 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll - ok
15:21:40.0842 0x0d38  [ 531E3414858A817152EDEDE9C1BF9DE3, FA6914C8E74CCE634B386F9190D539F6E85849829E0E9BC4271A2CD3D50F9621 ] C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll
15:21:40.0842 0x0d38  C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll - ok
15:21:40.0842 0x0d38  [ 640FA356E88422165D95C1F94E943745, A31D771C3709EE0F28D5204AACE8A1EBD329DA4ED681A87862647C893BD56306 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc
15:21:40.0842 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc - ok
15:21:40.0858 0x0d38  [ 9E438543222120696C04A39BFAC56FB6, 5138947EA91AC49C089FA4EC6E81A49ED139D0CF794808D0868555757E1D96D4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqssm08.dll
15:21:40.0858 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqssm08.dll - ok
15:21:40.0858 0x0d38  [ 4F6E72B34ED3DC53DCC5E8708E60B61F, CB79F4EBCE11ECCFA167498F329F95D545F8D4E5CCE4006B2A03B595733AEBC2 ] C:\Windows\SysWOW64\security.dll
15:21:40.0858 0x0d38  C:\Windows\SysWOW64\security.dll - ok
15:21:40.0858 0x0d38  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] C:\Windows\SysWOW64\es.dll
15:21:40.0858 0x0d38  C:\Windows\SysWOW64\es.dll - ok
15:21:40.0873 0x0d38  [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\msvcp71.dll
15:21:40.0873 0x0d38  C:\Users\Vincia M. Blaise\AppData\Roaming\Dropbox\bin\msvcp71.dll - ok
15:21:40.0873 0x0d38  [ 39D8EAA29CC2CC144E2B1214FA774F6A, E09B5F66722C6B1CAEE9A7074B01E223F90A18B511AB282A5845D08EC4B50335 ] C:\Program Files (x86)\Windows Live\Messenger\vvpltfrm.dll
15:21:40.0873 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\vvpltfrm.dll - ok
15:21:40.0873 0x0d38  [ 4538040E7B6B281A0468BFBD7BE6ADBB, FA1F554D2E156DC92F3BA6EEFA880611CA52B0D37C87EBD42214641BFEF1CA47 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
15:21:40.0873 0x0d38  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
15:21:40.0889 0x0d38  [ 648960669086E3BA915A49ABD2556944, 4433FEE8E8BCBAC529DF3FCE17277BACD45DC3732D89E49D1F1440280E95FDE8 ] C:\Windows\SysWOW64\atidxx32.dll
15:21:40.0889 0x0d38  C:\Windows\SysWOW64\atidxx32.dll - ok
15:21:40.0889 0x0d38  [ 9E113C0AD33F92A5741584286F93F84B, 6C9848A1E41EB827331B964A30019FF3EF73E7ED63D3773D75864488C74F5C02 ] C:\Windows\System32\VAN.dll
15:21:40.0889 0x0d38  C:\Windows\System32\VAN.dll - ok
15:21:40.0889 0x0d38  [ 5D68F68E12B8BCD35ADE5A7B4FE5F456, D4514803EDFCF9B83D2F439570C9A0E84A75DF07BF7821FB4E2BB002F8BD5E83 ] C:\Windows\System32\wwanmm.dll
15:21:40.0889 0x0d38  C:\Windows\System32\wwanmm.dll - ok
15:21:40.0905 0x0d38  [ D146C378AEC2D1570A4E4F81E2B621B3, EDD340EC52030E5901DE9D68104EF568F1FED28995E626AC46A3DAA60E2F3AEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
15:21:40.0905 0x0d38  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
15:21:40.0905 0x0d38  [ 4AD76DBBE1F1361EBAEC935D9D3F6A79, 6D5B7CB0F31B3AAE55F069A67807B420D497D92BB9108050BEE2C76E699771AD ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc
15:21:40.0905 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc - ok
15:21:40.0905 0x0d38  [ 18C27789FCFDDDB8D45C1EC4BC77CC8C, 588CA4582AAC716E93F7A26E53786FE25B02DFFDF12609D01562439BF54EE3FD ] C:\Windows\System32\RASMM.dll
15:21:40.0905 0x0d38  C:\Windows\System32\RASMM.dll - ok
15:21:40.0920 0x0d38  [ C2FB797884D9CC30AC0B5FB28146FE7A, EB22F152F0D7141B11D1D0CE6AF7DEEE48D3CF3243885F7435832DCF1FF4302D ] C:\Program Files (x86)\Windows Live\Messenger\uccapi.dll
15:21:40.0920 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\uccapi.dll - ok
15:21:40.0920 0x0d38  [ 55CF0A197DC8972AC829B30ACAE00E5E, BB59AAB18243AA6B890E3151FF924C07CE5BB2A410759A9722E246F6DEE0D345 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSplh08.dll
15:21:40.0920 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSplh08.dll - ok
15:21:40.0920 0x0d38  [ A0617B5753E31126AD29C03154F4F329, 3BC10C0A54D1D60B0C670D901944D3F115E2EBB406C989409145E7151AA55EFE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
15:21:40.0920 0x0d38  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
15:21:40.0936 0x0d38  [ 448DE6CDB7976373B35CA03B6BF9BE48, C88987F084375DDBCF2F209274543157443031B6A6C644EEF96AD7489BA8B804 ] C:\Windows\System32\WlanMM.dll
15:21:40.0936 0x0d38  C:\Windows\System32\WlanMM.dll - ok
15:21:40.0936 0x0d38  [ 6F5146363FD295BAF70A1F04C591EDD2, 0B59C0DBC18567678ACFFBBE72419B82D6775F25D54DB40D5D7F4DCDDDF536EA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
15:21:40.0936 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll - ok
15:21:40.0936 0x0d38  [ CBBAF06C2AC8882D239C8DC5BFA197FD, D982988C45D7BF8B9CA0136851028C84E3A524582062C4040F0D981E10899868 ] C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll
15:21:40.0936 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll - ok
15:21:40.0951 0x0d38  [ CC190B07E357BCD40C2AFB57B9A67B7F, 54287794CB881CF41A16462256DE6ED7A6D4DB6F15513002A9B4B279544F0FA2 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll
15:21:40.0951 0x0d38  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll - ok
15:21:40.0951 0x0d38  [ 5DB64F0ADBAD651B1CD099A79ECAAB2B, B5502E85F3BD2B4997F4A6EC94EC8D45774081DA1B97D8E289DCB952909B4A80 ] C:\Program Files (x86)\Windows Live\Messenger\rtmpltfm.dll
15:21:40.0951 0x0d38  C:\Program Files (x86)\Windows Live\Messenger\rtmpltfm.dll - ok
15:21:40.0967 0x0d38  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll
15:21:40.0967 0x0d38  C:\Windows\SysWOW64\FirewallAPI.dll - ok
15:21:40.0967 0x0d38  [ 21D23E2DF4A657878CF9793ED010A5C9, 3AE195B77D0FC8AF9F4D372D8C9A766908BF3A687311E0C28228215F28247E4E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
15:21:40.0967 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll - ok
15:21:40.0967 0x0d38  [ 20A771958DB2B8CA4372EB95F59FDF3F, 1F62A53E09DE128960A3344D9203A3BBA27C8B2D4FD836DF5F61544C411A16A2 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll
15:21:40.0967 0x0d38  C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll - ok
15:21:40.0983 0x0d38  [ 6960D29ABE74341FAB8300DB3E6F883D, 8651E663D5EFFB9022046AB46452A102D1F31F5EDB90AC87D8DB023FE54B92F0 ] C:\Windows\System32\cmd.exe
15:21:40.0983 0x0d38  C:\Windows\System32\cmd.exe - ok
15:21:40.0983 0x0d38  [ 93C1B8183B7A14C05FBC4FC6EAFB57D1, 5E502E7F3EF4A13B286ABE322AB8D60B59932BF3A70914886C0CD311DE6CD01D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
15:21:40.0983 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll - ok
15:21:40.0983 0x0d38  [ 6C52313AA302C80110D7B55CC84BBE6B, 335425084F13917B210D6FA66CD16DA07685194E56A391FBB3A33A34AECD9A90 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\dw20.exe
15:21:40.0983 0x0d38  C:\Windows\Microsoft.NET\Framework\v2.0.50727\dw20.exe - ok
15:21:40.0998 0x0d38  [ 1D1EAA16D193C6A2D45981ED3914D22A, 587228942AA867FBA0D2A04F52A3431F33453B2C2735E4C45D621A4358BB9BB0 ] C:\Windows\SysWOW64\msimtf.dll
15:21:40.0998 0x0d38  C:\Windows\SysWOW64\msimtf.dll - ok
15:21:40.0998 0x0d38  [ 02DB9473E6F0AB8CE7C6EF51AE891721, 1FD1C5A4AB5BD39E59A39024C51ACF92E9D4178D479B29FB218C614DCC525636 ] C:\Windows\SysWOW64\jscript.dll
15:21:40.0998 0x0d38  C:\Windows\SysWOW64\jscript.dll - ok
15:21:40.0998 0x0d38  [ BB3C7E48088D37417EB37F1A9E3D2449, EA1AA2D208472790FCA1ACFC8A6DB9EAF0CDDE4E0B54B0B8631B3F6EC0FD56FF ] C:\Windows\SysWOW64\werui.dll
15:21:40.0998 0x0d38  C:\Windows\SysWOW64\werui.dll - ok
15:21:41.0014 0x0d38  [ 0C2AE180D8C35F723BA13A16AA9AC453, 69F6AD304F1D9DEC8F8BD846C0399A834EF460846E7369DE2133698C95B306C5 ] C:\Windows\SysWOW64\xmllite.dll
15:21:41.0014 0x0d38  C:\Windows\SysWOW64\xmllite.dll - ok
15:21:41.0014 0x0d38  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\SysWOW64\avrt.dll
15:21:41.0014 0x0d38  C:\Windows\SysWOW64\avrt.dll - ok
15:21:41.0014 0x0d38  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll
15:21:41.0014 0x0d38  C:\Windows\SysWOW64\wlanapi.dll - ok
15:21:41.0029 0x0d38  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll
15:21:41.0029 0x0d38  C:\Windows\SysWOW64\wlanutil.dll - ok
15:21:41.0029 0x0d38  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
15:21:41.0029 0x0d38  C:\Windows\SysWOW64\powrprof.dll - ok
15:21:41.0029 0x0d38  [ 8C680C0E6B3D6711B2B88AC82FE1804E, 1308E99ADBA5DA47689A7B089016BDDA93AC6EADD0698225C07F5C7453582A9F ] C:\Windows\SysWOW64\MMDevAPI.dll
15:21:41.0029 0x0d38  C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:21:41.0045 0x0d38  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\SysWOW64\hid.dll
15:21:41.0045 0x0d38  C:\Windows\SysWOW64\hid.dll - ok
15:21:41.0045 0x0d38  [ D96AF6FAF24D5653D558FB5861BD8F29, B3EA5A4BD9A3A8D5C4D0EB18B7CE75652B43568F3095A821CFAD6D9D864EF8ED ] C:\Windows\SysWOW64\dxtrans.dll
15:21:41.0045 0x0d38  C:\Windows\SysWOW64\dxtrans.dll - ok
15:21:41.0045 0x0d38  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\SysWOW64\devenum.dll
15:21:41.0045 0x0d38  C:\Windows\SysWOW64\devenum.dll - ok
15:21:41.0061 0x0d38  [ C5413BC4F10CEB4C3070BBF04D324117, 83908C79D22458BC05FAB5ABF1DDF74177B1E5C612E893C62C19C284D2C86F60 ] C:\Windows\SysWOW64\msisip.dll
15:21:41.0061 0x0d38  C:\Windows\SysWOW64\msisip.dll - ok
15:21:41.0061 0x0d38  [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\SysWOW64\atl.dll
15:21:41.0061 0x0d38  C:\Windows\SysWOW64\atl.dll - ok
15:21:41.0061 0x0d38  [ 70F03B29A62194E69911952B3640D9D2, 837E2672660DC72DEA9A75B2E7DC952065770E83C52D63FF3042BF42C72E1664 ] C:\Windows\SysWOW64\msdmo.dll
15:21:41.0061 0x0d38  C:\Windows\SysWOW64\msdmo.dll - ok
15:21:41.0076 0x0d38  [ BAB9EF9A340113666F678AA2474904B6, B1C6B2D704B81274D3AF6A726F376D1183403732214298C051A1CE75EEB754C0 ] C:\Windows\SysWOW64\ddrawex.dll
15:21:41.0076 0x0d38  C:\Windows\SysWOW64\ddrawex.dll - ok
15:21:41.0076 0x0d38  [ E24FE90E9DE8D8AE70E59F7B01675DEF, DDB0691488DB424CC203505E27364B24E4410E599A972CF2C1AFF4E2F3E3C04F ] C:\Windows\SysWOW64\avicap32.dll
15:21:41.0076 0x0d38  C:\Windows\SysWOW64\avicap32.dll - ok
15:21:41.0076 0x0d38  [ 2DEEB96A0957BD058753FF250E85EF49, ABBC70ADA045C12F7100438B7A3FAFB0BC6900FF67668FEFEE96DD09F663E2D5 ] C:\Windows\SysWOW64\msvfw32.dll
15:21:41.0076 0x0d38  C:\Windows\SysWOW64\msvfw32.dll - ok
15:21:41.0092 0x0d38  [ 55A97EC5956A72D3B7060560F785FF32, 0673CAF7F08BCB9896BC071DCFA145D9CE2F52239B9E24E173D6E44527CBA93D ] C:\Windows\SysWOW64\dxtmsft.dll
15:21:41.0092 0x0d38  C:\Windows\SysWOW64\dxtmsft.dll - ok
15:21:41.0092 0x0d38  [ E8F6851E4600CD3674422487EE240941, D7CC1B8975E919C0B91AE877561F0245C8700082470C806618A09D87D1A6923A ] C:\Windows\SysWOW64\wshext.dll
15:21:41.0092 0x0d38  C:\Windows\SysWOW64\wshext.dll - ok
15:21:41.0092 0x0d38  [ 203C3380A744CA5B9B1A9CAEB57F7D57, 43907909F307FADA0A748ACE0363AA82768BAD3F9107B0DC524ED2BD4205360A ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
15:21:41.0092 0x0d38  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
15:21:41.0107 0x0d38  [ 2875B386B45B8A77E2343C5E129AE50C, 674AA2DA0F27D11FDB9FF42DCF9910DC0ED320B45E60300C07990D11CA57496F ] C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll
15:21:41.0107 0x0d38  C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll - ok
15:21:41.0107 0x0d38  [ E9AF8B12CFFC04C0F4399ED8E4D3826E, EAF06B6DEAA0D22E750E2A7C09893A5E8F453D21AC71B7E36BF3DF610640E760 ] C:\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll
15:21:41.0107 0x0d38  C:\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll - ok
15:21:41.0107 0x0d38  [ E32B288B38C3182D9F890F45B067A5DB, B3524CAE7372157C6BB692A3781FC4125E7C77494E1F68C48778299C3B3C7FAB ] C:\Windows\SysWOW64\vfwwdm32.dll
15:21:41.0107 0x0d38  C:\Windows\SysWOW64\vfwwdm32.dll - ok
15:21:41.0123 0x0d38  [ AFBB5060A2DAD431A2EAEB2C86CFFE81, 03BBBC09385CD995D143356D6CAE0B255AB08C47C8E778CD965C87B17DA10956 ] C:\Windows\SysWOW64\AudioSes.dll
15:21:41.0123 0x0d38  C:\Windows\SysWOW64\AudioSes.dll - ok
15:21:41.0123 0x0d38  [ B24ABFAB2D541996A38905369D511953, D683C5B6C5FEC53B595D2A28556CB11BA4867597114986B8605E2FAC10410EBF ] C:\Windows\SysWOW64\wdmaud.drv
15:21:41.0123 0x0d38  C:\Windows\SysWOW64\wdmaud.drv - ok
15:21:41.0123 0x0d38  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll
15:21:41.0123 0x0d38  C:\Windows\SysWOW64\ksuser.dll - ok
15:21:41.0139 0x0d38  [ A6667B635552BD679DF80CE357459A2E, D48E06F1FD16CE1F58450EC7846CD427D018D61FA36C81DBC3F860EC1F5E85B4 ] C:\Windows\SysWOW64\atiadlxy.dll
15:21:41.0139 0x0d38  C:\Windows\SysWOW64\atiadlxy.dll - ok
15:21:41.0139 0x0d38  [ A4CC7227A452C4909F9499D91B184364, 56111E57D17553BE3EAB8DA2DC42C7132E4458549AFFC08975B7A7204D8F5E76 ] C:\Windows\SysWOW64\ncobjapi.dll
15:21:41.0139 0x0d38  C:\Windows\SysWOW64\ncobjapi.dll - ok
15:21:41.0139 0x0d38  [ 8BF179E9513F70EA95DE2D539650EAF0, 101B085AB7B54ECE34C411331FF4EE141FDE73CD8757F54A461177B68633609F ] C:\Windows\SysWOW64\ksproxy.ax
15:21:41.0139 0x0d38  C:\Windows\SysWOW64\ksproxy.ax - ok
15:21:41.0154 0x0d38  [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
15:21:41.0154 0x0d38  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
15:21:41.0154 0x0d38  [ 62D6C0C69ADFB00C3EB9A0CC81F39EE6, 49A6561F2BE7F7A5F4DEF76A6435ED2D1DBFEA3FE4C0355800304EC0DAA7E7AF ] C:\Windows\SysWOW64\WinSATAPI.dll
15:21:41.0154 0x0d38  C:\Windows\SysWOW64\WinSATAPI.dll - ok
15:21:41.0154 0x0d38  [ E7704CBF568815C1CAA6E513387BD3F2, E289A7D966787DEE258699AC7863D0AA53B91DBED1B3C9C289342253073EE2EC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
15:21:41.0154 0x0d38  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
15:21:41.0170 0x0d38  [ 4DDACA8A66B95ABA02812FF3C13DE198, FC14FA85367B29A5DA6479D198B9FA1D9A41C965685F51D5F0166D72A9F4668E ] C:\Windows\SysWOW64\vidcap.ax
15:21:41.0170 0x0d38  C:\Windows\SysWOW64\vidcap.ax - ok
15:21:41.0170 0x0d38  [ 3F41165F3F56547D0BACA826C2651A77, 5F8258433A6BC0224564653852B089ED6CAE69C3E16B8FDDFDB535D3D931EBC5 ] C:\Windows\SysWOW64\Kswdmcap.ax
15:21:41.0170 0x0d38  C:\Windows\SysWOW64\Kswdmcap.ax - ok
15:21:41.0170 0x0d38  [ 4DBC81CEFE9DB36856880BFB3491C100, 5E3AC8E011FDFD56317C92C6DD1CAA65DD67D34F3DED615B5E8279DE4EA395B7 ] C:\Windows\SysWOW64\msxml6.dll
15:21:41.0170 0x0d38  C:\Windows\SysWOW64\msxml6.dll - ok
15:21:41.0185 0x0d38  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\SysWOW64\msacm32.drv
15:21:41.0185 0x0d38  C:\Windows\SysWOW64\msacm32.drv - ok
15:21:41.0185 0x0d38  [ 56FDA3D2EC8957CC560080916A798548, CC3550B806AD3304CCC85E564A13D2413503A466CF0B9BFF410942DCB5B6AD8F ] C:\Windows\SysWOW64\BytescoutScreenCapturingFilter.dll
15:21:41.0185 0x0d38  C:\Windows\SysWOW64\BytescoutScreenCapturingFilter.dll - ok
15:21:41.0185 0x0d38  [ 0F6652951129F283C72E1A5A951FF948, B77C12DDE527FBB218E333B90CE06886ACB951C9A7CFAD0FFD3C6088F6E865F1 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
15:21:41.0185 0x0d38  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
15:21:41.0201 0x0d38  [ BFEB59D2C6A56F0C13BFA40CDF4B8668, 4B8C0F1B49AF3CE47FC95A2D24E2137A5033E271BAABED095ECEFBA809257645 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\17bf0932e5c6cb8ba59046456f13328d\System.Runtime.Remoting.ni.dll
15:21:41.0201 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\17bf0932e5c6cb8ba59046456f13328d\System.Runtime.Remoting.ni.dll - ok
15:21:41.0201 0x0d38  [ 74EF310FAC89341CE2897B7F2C4A7B0F, F75D632A58FFF2DE2DB40ADA8F207792105A5DA4B4F6BF53BCDE5083436FBCDC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
15:21:41.0201 0x0d38  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
15:21:41.0201 0x0d38  [ 07974A6FC98ED17E4522F59C8F38B210, 26F9BD71BC1A373C45EF8B17C72F046C857C72C9F3096C104B066E2F748F9B0A ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCWebCameraSource.ax
15:21:41.0201 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCWebCameraSource.ax - ok
15:21:41.0217 0x0d38  [ 19D7924625C98632FEE89CF308D6BC29, E0449DC91C5C80A1B9329B3DD0B264E0C8EFD24960C057C24F484DC13B4AE150 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MFC71u.dll
15:21:41.0217 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MFC71u.dll - ok
15:21:41.0217 0x0d38  [ A82B4FFE7A319508BDD5A2034AD39121, 1C2CBB7F642D1D178310D58AF7B81C768F8060DB9017A68EB7BE33023B8AE21D ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcr71.dll
15:21:41.0217 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcr71.dll - ok
15:21:41.0232 0x0d38  [ D7D7EB64B7DE14A783329805E5AC0031, 37B69D3EBB7A26B67261AF6ABDB74329A38F2012CCDF44F75901B8E1D3BC323E ] C:\Windows\System32\webcheck.dll
15:21:41.0232 0x0d38  C:\Windows\System32\webcheck.dll - ok
15:21:41.0232 0x0d38  [ D08B1758D95F446130EFE89B4AC78D75, 1BC5E4F7D42C2516160AC798DF0BEC7DFC411356252CC47256439F4CE17EA861 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcp71.dll
15:21:41.0232 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcp71.dll - ok
15:21:41.0232 0x0d38  [ 6D17CFCD070D7E68E24CDCEC0ACE4678, 89B4775C7F306E9FEE16D0F30CD1E748BC6F13A652A5C170D8F35A8E866BDFBC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\f6514b690596d60ca9f4fa64e14a8355\System.Web.ni.dll
15:21:41.0232 0x0d38  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\f6514b690596d60ca9f4fa64e14a8355\System.Web.ni.dll - ok
15:21:41.0248 0x0d38  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
15:21:41.0248 0x0d38  C:\Windows\System32\mlang.dll - ok
15:21:41.0248 0x0d38  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\SysWOW64\midimap.dll
15:21:41.0248 0x0d38  C:\Windows\SysWOW64\midimap.dll - ok
15:21:41.0248 0x0d38  [ 83C8B733586FDAE483EDEF28B5B0FB88, 64E69F93D371F5C82BE35F9E42A96A2E0FB46CC835682CDA574E6121A176E411 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCRgl.ax
15:21:41.0248 0x0d38  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCRgl.ax - ok
15:21:41.0263 0x0d38  [ E6F66F31422C44EDC00D9C9329E7DF60, 81DB3B830F100ACEC5538840D73713FD3C530227886B6CEF250A48A3697729FE ] C:\Windows\System32\SyncCenter.dll
15:21:41.0263 0x0d38  C:\Windows\System32\SyncCenter.dll - ok
15:21:41.0263 0x0d38  [ BDDCD13F341CBA21775FF66A5C27F59E, B252236BAAD91BEE1E52951BACF298E245401A11EB489941885118C675346A5F ] C:\Windows\System32\SearchProtocolHost.exe
15:21:41.0263 0x0d38  C:\Windows\System32\SearchProtocolHost.exe - ok
15:21:41.0263 0x0d38  [ B6884AE857E0C2106FA718A6C688CD7C, D0F342EA91A58850575F3D09DAF0C778118EB41FA983F2DE0B139F0A5B83C4E9 ] C:\Program Files (x86)\Windows Live\Shared\en\wliduxloc.dll.mui
15:21:41.0263 0x0d38  C:\Program Files (x86)\Windows Live\Shared\en\wliduxloc.dll.mui - ok
15:21:41.0279 0x0d38  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll
15:21:41.0279 0x0d38  C:\Windows\System32\msshooks.dll - ok
15:21:41.0279 0x0d38  [ F024058C391B99397EC3CCF6F77B7189, 7550C883C3CBCD846FDA02609155BED002ED9479C2D066C966D119A46DB11ACE ] C:\Windows\System32\SearchFilterHost.exe
15:21:41.0279 0x0d38  C:\Windows\System32\SearchFilterHost.exe - ok
15:21:41.0279 0x0d38  [ B9980FCD160D1EC1422B111C74B56DB2, 2C964F3FB5058F3B1BACAF35A9EB74F2009406CD412F3FE3F22846D24AA07D97 ] C:\Windows\SysWOW64\quartz.dll
15:21:41.0279 0x0d38  C:\Windows\SysWOW64\quartz.dll - ok
15:21:41.0295 0x0d38  [ 7DBA2DA71D798C644D59B454374F4049, D6F75731AAA3B75AEF5D34D1E1E2210E4ECCFF6B31B2007E6B6084FEB74274C1 ] C:\Windows\SysWOW64\qcap.dll
15:21:41.0295 0x0d38  C:\Windows\SysWOW64\qcap.dll - ok
15:21:41.0295 0x0d38  [ 58FAE29A82984E817BBA70D0144E52ED, 99BD0B7AAB424B1F92CED29B6AFABCB9EAECACD08F842693FDDE1840B3BE161D ] C:\Windows\System32\mssph.dll
15:21:41.0295 0x0d38  C:\Windows\System32\mssph.dll - ok
15:21:41.0295 0x0d38  [ 8B886A0AC14EAA8599142887991A5A2E, 5CD23A0F7DC53B1F4E8D33E2FD5C3C6E375EE5F542EBCEE2989400F352815462 ] C:\Windows\System32\imapi2.dll
15:21:41.0295 0x0d38  C:\Windows\System32\imapi2.dll - ok
15:21:41.0310 0x0d38  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] C:\Windows\System32\drivers\mspqm.sys
15:21:41.0310 0x0d38  C:\Windows\System32\drivers\mspqm.sys - ok
15:21:41.0310 0x0d38  [ 2A556E2D703DED03186C596B90AC6869, 566DF5F4754D3510D277B30A773E5A21B1D30EADBA0B585A18A68AC9BC72A7EC ] C:\Windows\System32\mapi32.dll
15:21:41.0310 0x0d38  C:\Windows\System32\mapi32.dll - ok
15:21:41.0310 0x0d38  [ F0AAB2A76A7AF04C70A818E96BAF3E64, 44E7D7A0D1F35D02D627D449EE773177AEE026B6D6C787B1463362E73670CB77 ] C:\Windows\System32\hgcpl.dll
15:21:41.0310 0x0d38  C:\Windows\System32\hgcpl.dll - ok
15:21:41.0326 0x0d38  [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] C:\Windows\System32\provsvc.dll
15:21:41.0326 0x0d38  C:\Windows\System32\provsvc.dll - ok
15:21:41.0326 0x0d38  [ FB8071EE5D544401B4B81D8E8C748518, F4D775BBFBB6DDE563F208EA07AA28183891017F05F459AA3432BF0A05C63B11 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\dw20.exe
15:21:41.0326 0x0d38  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\dw20.exe - ok
15:21:41.0326 0x0d38  [ 0819EF7DB96DAB8AC3DACE567ED1B99E, 1489E5BC7F6E7E25665F0ED681A74DC65ADAC331895416F1980BD9D22E79B897 ] C:\Windows\System32\werui.dll
15:21:41.0326 0x0d38  C:\Windows\System32\werui.dll - ok
15:21:41.0341 0x0d38  [ ECDA90A844B955A2F8730DA9D13FA8DE, 3F74250C55AD773B7FF8CFDA5B876B582582E7C53C52A7B5927A24F2F304A531 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
15:21:41.0341 0x0d38  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
15:21:41.0341 0x0d38  ================ Scan generic autorun ======================
15:21:41.0341 0x0d38  SynTPEnh - ok
15:21:41.0700 0x0d38  [ 59E58A7A5388E00BB4347AEBBDCC84FE, 9B06344F13C8F8831549410B78E084BFEA9EC2E181ECA49FF9586424999CE758 ] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
15:21:41.0731 0x0d38  SmartMenu - ok
15:21:41.0950 0x0d38  [ 2F407AA24101E4678B110A1FFA13F587, 9E55908961E8B4FEAA1798CC51A090912DB7D8384E07D232DE83D8D239FC9330 ] C:\Program Files\Java\jre6\bin\jusched.exe
15:21:41.0981 0x0d38  SunJavaUpdateSched - detected UnsignedFile.Multi.Generic ( 1 )
15:21:41.0981 0x0d38  SunJavaUpdateSched ( UnsignedFile.Multi.Generic ) - warning
15:21:42.0090 0x0d38  [ DC2755EB981280C312E7BE5EE8CF5D62, 4E52976235B1D2E756235F988709D84E9D83D60927138376BDE1405902997997 ] c:\Program Files\Microsoft IntelliPoint\ipoint.exe
15:21:42.0153 0x0d38  IntelliPoint - ok
15:21:42.0387 0x0d38  [ 2EEED500C1EC095CB3D0DE7A3C7E4278, 06D0DC42A7DE207D675A0DE69001D20941FC0B8D067504CD8B56DD0B952A5ACE ] C:\Program Files\IDT\WDM\sttray64.exe
15:21:42.0433 0x0d38  SysTrayApp - ok
15:21:42.0480 0x0d38  [ 58BD95D6BEFB95C8B30F915B5DCFF9A3, 5C9179C63CF47723785B677BEB0E180E0CBD95098199EB32E4506FB38F6CFCF5 ] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe
15:21:42.0496 0x0d38  SonicWALLNetExtender - ok
15:21:42.0527 0x0d38  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
15:21:42.0605 0x0d38  Logitech Download Assistant - ok
15:21:42.0777 0x0d38  [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
15:21:42.0808 0x0d38  NCPluginUpdater - ok
15:21:42.0948 0x0d38  [ E29DD25C9AAC2C5D626F0DF8A6A9468B, A39471F13A39FF0E82778CAFD01D51C35FE10F12FC21BDAD837C93F9FD72D46C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
15:21:42.0995 0x0d38  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
15:21:42.0995 0x0d38  StartCCC ( UnsignedFile.Multi.Generic ) - warning
15:21:43.0104 0x0d38  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe
15:21:43.0120 0x0d38  HPCam_Menu - ok
15:21:43.0323 0x0d38  [ C98FF6C440E8967251F59C7919B505A1, 3486C9C855E52FD084FBA3276E296ED8647B445A52FC459B794367AAED48D817 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
15:21:43.0338 0x0d38  Adobe Reader Speed Launcher - ok
15:21:43.0479 0x0d38  [ DA4ED31DD43ABB0AF99888E236FFDB91, EFB8639A4854A8CB1516639DD032ADFD5AE58082880078115EE1AFB71C9696AF ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
15:21:43.0494 0x0d38  WirelessAssistant - ok
15:21:43.0806 0x0d38  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
15:21:43.0853 0x0d38  GrooveMonitor - ok
15:21:44.0118 0x0d38  [ B8E421C0890356CD4A793D8A346D9096, 1FDA1E3C530DF98A258D95F6ED129D8AB11FBC90167E9455C0A85C24A6249F13 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:21:44.0149 0x0d38  Adobe ARM - ok
15:21:44.0274 0x0d38  [ 714C602C1B8CEF17E25C753F1BACF78D, E0B0DC548CA9DA7F3D0EEE9EDACC9058D5C845E8B03B841434EB1E03683A9B73 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
15:21:44.0305 0x0d38  AppleSyncNotifier - ok
15:21:44.0399 0x0d38  [ 35AC4B63CBB9FB6B4472913E9948B517, 104C7D5E97A680CDF660AA98E6E92447F0FF6B857A847CDAFB0A9EB26086B5A4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:21:44.0430 0x0d38  APSDaemon - ok
15:21:44.0539 0x0d38  [ AF43C4F7F3C8BC95DAD95024F96CDC4A, 6348F6D8F301C5F7290B963D6923E389414ADFBCF6AED562A32245BCADC05580 ] C:\Program Files (x86)\QuickTime\QTTask.exe
15:21:44.0571 0x0d38  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
15:21:44.0571 0x0d38  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
15:21:44.0695 0x0d38  [ D9D79F547AE2A70C650DFCFC27AEC0F7, 756BA12D31908746AA6B743040990C5CCA2D2FB500199B67580F2E548DD2FE86 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:21:44.0711 0x0d38  iTunesHelper - ok
15:21:45.0117 0x0d38  [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:21:45.0226 0x0d38  Sidebar - ok
15:21:45.0257 0x0d38  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:21:45.0288 0x0d38  mctadmin - ok
15:21:45.0569 0x0d38  [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:21:45.0600 0x0d38  Sidebar - ok
15:21:45.0631 0x0d38  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:21:45.0647 0x0d38  mctadmin - ok
15:21:46.0770 0x0d38  [ E02E715FA2BC8D88FF9362374E309D76, A10E4D4B02F147A38364A2DEBF9691771BD381B8FC1E672EF96C0509DD919EDE ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
15:21:46.0864 0x0d38  LightScribe Control Panel - detected UnsignedFile.Multi.Generic ( 1 )
15:21:46.0864 0x0d38  LightScribe Control Panel ( UnsignedFile.Multi.Generic ) - warning
15:21:47.0098 0x0d38  [ 180CCEE7403DDA0C6E86317D5DB2E87B, 13B26658704526DEBD7141F55E4FE7E4B81B392729B8433D5FC7E6B85A86B421 ] C:\Program Files (x86)\Livescribe\Livescribe Desktop\LDTray.exe
15:21:47.0176 0x0d38  LDTray - detected UnsignedFile.Multi.Generic ( 1 )
15:21:47.0176 0x0d38  LDTray ( UnsignedFile.Multi.Generic ) - warning
15:21:47.0176 0x0d38  Force sending object to P2P due to detect: C:\Program Files (x86)\Livescribe\Livescribe Desktop\LDTray.exe
15:21:47.0176 0x0d38  Object send P2P result: false
15:21:47.0394 0x0d38  [ A5F78606A9BA8F0C4C8FF9DED6ED5107, 57583EFF4FBC0B31A47ED6C7BC58E575470F9BF4F12D8E05648507ACA6741965 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
15:21:47.0441 0x0d38  HPADVISOR - ok
15:21:47.0691 0x0d38  [ 24B1666FD14CC71C7B0679AC61625B90, 4243F0B91BF9EAB365BBC724F5984FEB3AD74DF91EAF15F36A44DEA0AEDB7D20 ] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
15:21:47.0815 0x0d38  msnmsgr - ok
15:21:48.0112 0x0d38  [ E02E715FA2BC8D88FF9362374E309D76, A10E4D4B02F147A38364A2DEBF9691771BD381B8FC1E672EF96C0509DD919EDE ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
15:21:48.0190 0x0d38  LightScribe Control Panel - detected UnsignedFile.Multi.Generic ( 1 )
15:21:48.0190 0x0d38  LightScribe Control Panel ( UnsignedFile.Multi.Generic ) - warning
15:21:48.0252 0x0d38  swg - ok
15:21:48.0330 0x0d38  Win FW state via NFP2: enabled
15:21:48.0330 0x0d38  ============================================================
15:21:48.0330 0x0d38  Scan finished
15:21:48.0330 0x0d38  ============================================================
15:21:48.0346 0x05b0  Detected object count: 16
15:21:48.0346 0x05b0  Actual detected object count: 16
15:22:31.0449 0x05b0  hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0449 0x05b0  hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0449 0x05b0  hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0449 0x05b0  hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0449 0x05b0  HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0449 0x05b0  HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0449 0x05b0  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0449 0x05b0  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0449 0x05b0  LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0449 0x05b0  LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0449 0x05b0  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0449 0x05b0  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  PenCommService ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  PenCommService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:22:31.0464 0x05b0  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
15:22:31.0464 0x05b0  SunJavaUpdateSched ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  SunJavaUpdateSched ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  StartCCC ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  StartCCC ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0464 0x05b0  LightScribe Control Panel ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0464 0x05b0  LightScribe Control Panel ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0480 0x05b0  LDTray ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0480 0x05b0  LDTray ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:22:31.0480 0x05b0  LightScribe Control Panel ( UnsignedFile.Multi.Generic ) - skipped by user
15:22:31.0480 0x05b0  LightScribe Control Panel ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:23:25.0082 0x0a38  Deinitialize success
 


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP