This topic is lockedAdditional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015
Ran by Bryan Bridgewater at 2015-03-14 16:22:55
Running from C:\Documents and Settings\Bryan Bridgewater\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Advantage Plus (HKU\S-1-5-21-1606980848-1801674531-839522115-1004\...\{ABC80E95-873B-43A8-8C05-133BFAD2F76D}) (Version: - )
AGEIA PhysX v6.12.02 (HKLM\...\{7032E73F-68A0-48F9-8100-E70E79169BAE}) (Version: 6.12.02 - AGEIA Technologies, Inc.)
Antivirus Pro (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
CameraDrivers (Version: 7.0.0.310 - Hewlett-Packard) Hidden
CameraUserGuides (Version: 7.0.0.310 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
EVGA Display Driver (HKLM\...\{BEF3EFE7-5159-436D-9BF0-CCC633179EB4}) (Version: 1.00.000 - EVGA)
Gail Howard's Smart Luck Wheel Gold™ version Smart Luck Wheel G (HKLM\...\{47D357C6-2AC9-4AC6-A46C-9C8F14ABC734}_is1) (Version: Smart Luck Wheel Gold™ Version 4.0.0.32 - Gail Howard's)
Google Update Helper (Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000 - Hewlett-Packard) Hidden
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 4620 series Basic Device Software (HKLM\...\{C4E2A2F2-2A53-42C7-920A-169713776631}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 4620 series Help (HKLM\...\{606C37AB-EB04-4270-A592-201A03C2DB36}) (Version: 6.0.0 - Hewlett Packard)
HP Officejet 4620 series Product Improvement Study (HKLM\...\{5696CE5E-FD09-4DFF-82CE-DB87229F03DD}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Photosmart Cameras 7.0 (HKLM\...\{4CE9FD0E-9D00-404a-AA78-F55537371611}) (Version: 7.0 - HP)
HP Update (HKLM\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
hpicamDrvQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
InstantShareAlert (Version: 1.00.0000 - HP) Hidden
LightScribe 1.6.43.1 (Version: 1.6.43.1 - http://www.lightscribe.com) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Office XP Standard (HKLM\...\{91120409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Mozilla Firefox 36.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 36.0.1 (x86 en-US)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (KB925673) (HKLM\...\{FE9126DB-5F84-495A-BB46-3C724F1C2D08}) (Version: 6.00.3888.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{F61DD673-0030-4BB2-A382-7E57E97F1033}) (Version: 7.02.8078 - Nero AG)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
Smart Luck History Editor Version 1.0.1.21 (HKLM\...\{FA9C2068-9144-426E-A0A1-E10E62B5DDB2}_is1) (Version: - Gail Howard's)
VIA Audio Driver Setup Program (HKLM\...\VIA Audio Driver Setup Program) (Version: - )
VIA Rhine-Family Fast Ethernet Adapter (HKLM\...\VN_VUIns_Rhine_VIA) (Version: - )
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebFerret (HKLM\...\WebFerret) (Version: - CNET Networks)
WebFldrs XP (Version: 9.50.6513 - Microsoft Corporation) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0017.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\InprocServer32 -> C:\Documents and Settings\Bryan Bridgewater\Application Data\Facebook\axfbootloader.dll ( )
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{702EB635-D66F-4FAA-834C-97645FF24178}\InprocServer32 -> C:\Documents and Settings\All Users\Application Data\{572AEF17-44EE-4628-95B5-4C1D51D77FED}\ipsecsnp.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{C98FE784-B96E-41e1-8399-1337AE3E539F}\InprocServer32 -> C:\Documents and Settings\Bryan Bridgewater\Application Data\Facebook\npfbplugin_1_0_3.dll ( )
==================== Restore Points =========================
12-03-2015 14:11:55 System Checkpoint
14-03-2015 03:39:57 Removed Garmin Communicator Plugin
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2003-03-31 07:00 - 2003-03-31 07:00 - 00000734 ____C C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\windows\system32\xp_eos.exe
Task: C:\windows\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\windows\system32\xp_eos.exe
==================== Loaded Modules (whitelisted) ==============
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0021 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0022 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0023 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0024 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0025 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0026 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0027 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0028 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0029 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0030 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0031 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0032 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0033 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0034 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0035 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0036 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0037 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0038 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0039 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0040 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0041 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0042 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0043 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0044 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0045 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0046 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0047 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0048 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0049 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0050 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0051 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0052 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0053 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0054 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0055 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0056 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0057 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0058 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0059 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0060 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0061 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0062 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0063 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0064 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0065 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0066 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0067 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0068 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0069 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0070 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0071 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0072 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0073 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0074 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0075 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0076 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0077 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0078 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0079 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0080 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0081 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0082 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0083 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0084 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0085 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0086 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0087 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0088 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0089 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0090 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0091 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0092 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0093 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0094 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0095 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0096 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0097 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0098 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0099 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0100 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMPCHelper => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tvnserver => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0021 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0022 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0023 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0024 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0025 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0026 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0027 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0028 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0029 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0030 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0031 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0032 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0033 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0034 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0035 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0036 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0037 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0038 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0039 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0040 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0041 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0042 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0043 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0044 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0045 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0046 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0047 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0048 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0049 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0050 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0051 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0052 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0053 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0054 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0055 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0056 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0057 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0058 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0059 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0060 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0061 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0062 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0063 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0064 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0065 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0066 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0067 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0068 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0069 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0070 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0071 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0072 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0073 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0074 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0075 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0076 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0077 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0078 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0079 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0080 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0081 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0082 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0083 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0084 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0085 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0086 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0087 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0088 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0089 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0090 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0091 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0092 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0093 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0094 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0095 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0096 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0097 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0098 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0099 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0100 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UploadMgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1606980848-1801674531-839522115-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
DNS Servers: 192.168.1.254
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-1606980848-1801674531-839522115-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-1606980848-1801674531-839522115-1006 - Limited - Enabled)
Bryan Bridgewater (S-1-5-21-1606980848-1801674531-839522115-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Bryan Bridgewater
Guest (S-1-5-21-1606980848-1801674531-839522115-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1606980848-1801674531-839522115-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1606980848-1801674531-839522115-1002 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name: Video Controller (VGA Compatible)
Description: Video Controller (VGA Compatible)
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: RAID Controller
Description: RAID Controller
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/14/2015 01:29:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/14/2015 11:43:39 AM) (Source: Application Error) (EventID: 1004) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0005f97c.
Error in creating result PEAP-TLV in response to received PEAP-TLV (avwebgrd.exe!ld!)
Error: (03/14/2015 06:27:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0002c5d1.
Processing media-specific event for [avwebgrd.exe!ws!]
Error: (03/14/2015 04:52:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0005f97c.
Processing media-specific event for [avwebgrd.exe!ws!]
Error: (03/14/2015 03:14:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application frst.exe, version 11.3.2015.0, faulting module frst.exe, version 11.3.2015.0, fault address 0x0001f09e.
Processing media-specific event for [frst.exe!ws!]
Error: (03/13/2015 11:28:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/12/2015 04:35:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/12/2015 10:27:07 AM) (Source: LoadPerf) (EventID: 3001) (User: )
Description: The performance counter name string value in the registry is incorrectly
formatted. The bogus string is 22402, the bogus index value is the first
DWORD in Data section while the last valid index values are the second and
third DWORD in Data section.
Error: (03/12/2015 09:58:46 AM) (Source: Application Error) (EventID: 1004) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0005f97c.
Error in creating result PEAP-TLV in response to received PEAP-TLV (avwebgrd.exe!ld!)
Error: (03/12/2015 08:09:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
System errors:
=============
Error: (03/14/2015 04:11:46 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
avipbb
SASDIFSV
SASKUTIL
Error: (03/14/2015 04:11:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Safe Web Lite service failed to start due to the following error:
%%3
Error: (03/14/2015 04:11:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SAS Core Service service failed to start due to the following error:
%%3
Error: (03/14/2015 04:11:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The avgntflt service failed to start due to the following error:
%%31
Error: (03/14/2015 11:59:10 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
avipbb
SASDIFSV
SASKUTIL
Error: (03/14/2015 11:59:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Safe Web Lite service failed to start due to the following error:
%%3
Error: (03/14/2015 11:59:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SAS Core Service service failed to start due to the following error:
%%3
Error: (03/14/2015 11:59:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The avgntflt service failed to start due to the following error:
%%31
Error: (03/14/2015 11:43:30 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
avipbb
SASDIFSV
SASKUTIL
Error: (03/14/2015 11:43:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Safe Web Lite service failed to start due to the following error:
%%3
Microsoft Office Sessions:
=========================
Error: (03/14/2015 01:29:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/14/2015 11:43:39 AM) (Source: Application Error) (EventID: 1004) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620005f97c
Error: (03/14/2015 06:27:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620002c5d1
Error: (03/14/2015 04:52:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620005f97c
Error: (03/14/2015 03:14:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: frst.exe11.3.2015.0frst.exe11.3.2015.00001f09e
Error: (03/13/2015 11:28:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/12/2015 04:35:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/12/2015 10:27:07 AM) (Source: LoadPerf) (EventID: 3001) (User: )
Description: 22402
Error: (03/12/2015 09:58:46 AM) (Source: Application Error) (EventID: 1004) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620005f97c
Error: (03/12/2015 08:09:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
==================== Memory info ===========================
Processor: AMD Sempron™ 2400+
Percentage of memory in use: 68%
Total physical RAM: 959.48 MB
Available physical RAM: 298.65 MB
Total Pagefile: 2414.21 MB
Available Pagefile: 1631.31 MB
Total Virtual: 2047.88 MB
Available Virtual: 1942.43 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:37.26 GB) (Free:11.72 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 37.3 GB) (Disk ID: AACBAACB)
Partition 1: (Active) - (Size=37.3 GB) - (Type=07 NTFS)
==================== End Of Log ============================
WinXP is running too slow [Solved]
#16
Posted 14 March 2015 - 04:28 PM
- Topic Starter
-
- Member
-
- 74 posts
Member
#17
Posted 14 March 2015 - 04:37 PM
-
- GeekU Moderator
-
- 20,051 posts
GeekU Instructor
Hello Bryan6971,
Please download the latest version of TDSSKiller from here and save it to your Desktop.
- Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
- Then click on Change parameters in TDSSKiller.
- Another window will appear.
- Check all boxes then click OK.
- Click the Start Scan button.
- The scan should take no longer than 2 minutes.
- If a suspicious object is detected, the default action will be Skip, click on Continue.
- If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
- A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
#18
Posted 14 March 2015 - 06:53 PM
- Topic Starter
-
- Member
-
- 74 posts
Member
19:02:58.0359 0x0e98 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:03:04.0031 0x0e98 ============================================================
19:03:04.0031 0x0e98 Current date / time: 2015/03/14 19:03:04.0031
19:03:04.0031 0x0e98 SystemInfo:
19:03:04.0031 0x0e98
19:03:04.0031 0x0e98 OS Version: 5.1.2600 ServicePack: 3.0
19:03:04.0031 0x0e98 Product type: Workstation
19:03:07.0781 0x0e98 ComputerName: DEBRA
19:03:07.0781 0x0e98 UserName: Bryan Bridgewater
19:03:07.0781 0x0e98 Windows directory: C:\windows
19:03:07.0781 0x0e98 System windows directory: C:\windows
19:03:07.0781 0x0e98 Processor architecture: Intel x86
19:03:07.0781 0x0e98 Number of processors: 1
19:03:07.0781 0x0e98 Page size: 0x1000
19:03:07.0781 0x0e98 Boot type: Normal boot
19:03:07.0781 0x0e98 ============================================================
19:03:07.0781 0x0e98 BG loaded
19:03:09.0640 0x0e98 System UUID: {7749915E-FA80-83DD-5F78-12CEA2B8C189}
19:03:11.0718 0x0e98 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 ( 37.27 Gb ), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000044
19:03:11.0796 0x0e98 Drive \Device\Harddisk1\DR2 - Size: 0xEFBFFE00 ( 3.75 Gb ), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:03:11.0796 0x0e98 ============================================================
19:03:11.0796 0x0e98 \Device\Harddisk0\DR0:
19:03:11.0796 0x0e98 MBR partitions:
19:03:11.0796 0x0e98 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A852C1
19:03:11.0796 0x0e98 \Device\Harddisk1\DR2:
19:03:11.0828 0x0e98 MBR partitions:
19:03:11.0828 0x0e98 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x26, BlocksNum 0x779FC2
19:03:11.0828 0x0e98 ============================================================
19:03:11.0968 0x0e98 C: <-> \Device\Harddisk0\DR0\Partition1
19:03:11.0968 0x0e98 ============================================================
19:03:11.0968 0x0e98 Initialize success
19:03:11.0968 0x0e98 ============================================================
19:03:24.0984 0x0500 ============================================================
19:03:24.0984 0x0500 Scan started
19:03:24.0984 0x0500 Mode: Manual; SigCheck; TDLFS;
19:03:24.0984 0x0500 ============================================================
19:03:24.0984 0x0500 KSN ping started
19:03:28.0765 0x0500 KSN ping finished: true
19:03:34.0359 0x0500 ================ Scan system memory ========================
19:03:34.0390 0x0500 System memory - ok
19:03:34.0406 0x0500 ================ Scan services =============================
19:03:34.0484 0x0500 !SASCORE - ok
19:03:34.0609 0x0500 Suspicious service (NoAccess): 457a756a9fdb4800
19:03:34.0890 0x0500 [ 5E008DC35382F2459E202AF6E7F457C4, 9E0178AAC0CE009FBCB4861FD7A90A2781309BD20B1856A212F1537C9A7EAA91 ] 457a756a9fdb4800 C:\windows\System32\Drivers\457a756a9fdb4800.sys
19:03:34.0890 0x0500 Suspicious file ( NoAccess ): C:\windows\System32\Drivers\457a756a9fdb4800.sys. md5: 5E008DC35382F2459E202AF6E7F457C4, sha256: 9E0178AAC0CE009FBCB4861FD7A90A2781309BD20B1856A212F1537C9A7EAA91
19:03:36.0500 0x0500 457a756a9fdb4800 - detected Rootkit.Win32.Necurs.gen ( 0 )
19:03:37.0781 0x0500 457a756a9fdb4800 ( Rootkit.Win32.Necurs.gen ) - infected
19:03:37.0781 0x0500 Force sending object to P2P due to detect: 457a756a9fdb4800
19:03:39.0562 0x0500 Object send P2P result: true
19:03:41.0125 0x0500 Abiosdsk - ok
19:03:41.0171 0x0500 abp480n5 - ok
19:03:41.0281 0x0500 [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI C:\windows\system32\DRIVERS\ACPI.sys
19:03:48.0000 0x0500 ACPI - ok
19:03:48.0093 0x0500 [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC C:\windows\system32\drivers\ACPIEC.sys
19:03:48.0515 0x0500 ACPIEC - ok
19:03:48.0828 0x0500 [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:03:49.0437 0x0500 AdobeFlashPlayerUpdateSvc - ok
19:03:49.0500 0x0500 adpu160m - ok
19:03:49.0671 0x0500 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\windows\system32\drivers\aec.sys
19:03:50.0140 0x0500 aec - ok
19:03:50.0234 0x0500 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\windows\System32\drivers\afd.sys
19:03:50.0578 0x0500 AFD - ok
19:03:50.0609 0x0500 Aha154x - ok
19:03:50.0703 0x0500 aic78u2 - ok
19:03:50.0812 0x0500 aic78xx - ok
19:03:50.0921 0x0500 [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter C:\windows\system32\alrsvc.dll
19:03:51.0562 0x0500 Alerter - ok
19:03:51.0656 0x0500 [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG C:\windows\System32\alg.exe
19:03:52.0234 0x0500 ALG - ok
19:03:52.0281 0x0500 AliIde - ok
19:03:52.0375 0x0500 [ 8FCE268CDBDD83B23419D1F35F42C7B1, DF1A5097DC5B5C35427460E866E16ED25C3DDD9217065B26C3214A5674BE37DB ] AmdK7 C:\windows\system32\DRIVERS\amdk7.sys
19:03:52.0953 0x0500 AmdK7 - ok
19:03:53.0031 0x0500 amsint - ok
19:03:53.0406 0x0500 [ 5641E3670C9156B2017876AE4B084215, DC3E85B7F45F6C07CAD1418C43D2CECC670F02BFE1051433D5BAD879608E5E72 ] AntiVirMailService C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
19:03:53.0875 0x0500 AntiVirMailService - ok
19:03:54.0093 0x0500 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
19:03:54.0796 0x0500 AntiVirSchedulerService - ok
19:03:54.0968 0x0500 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
19:03:55.0156 0x0500 AntiVirService - ok
19:03:55.0312 0x0500 [ 051A7A9C035BBAB779E2C96E65C32600, 22B9FB02A24A64F8CD2C99BAA3AC0CD4ABD42FBAD495EBB2CE24504A1E44A184 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
19:03:55.0625 0x0500 AntiVirWebService - ok
19:03:55.0687 0x0500 AppMgmt - ok
19:03:55.0734 0x0500 asc - ok
19:03:55.0781 0x0500 asc3350p - ok
19:03:55.0828 0x0500 asc3550 - ok
19:03:56.0234 0x0500 [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:03:56.0828 0x0500 aspnet_state - ok
19:03:56.0906 0x0500 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
19:03:58.0078 0x0500 AsyncMac - ok
19:03:58.0156 0x0500 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\windows\system32\DRIVERS\atapi.sys
19:03:59.0281 0x0500 atapi - ok
19:03:59.0343 0x0500 Atdisk - ok
19:03:59.0531 0x0500 [ 72BC628AF75C4C3250F2A3BAC260265A, 8A7DA327FB053EF172F0FD57F9822CF165B93F4B224D6FEE663690694D9CAA80 ] atksgt C:\windows\system32\DRIVERS\atksgt.sys
19:04:01.0578 0x0500 atksgt - ok
19:04:01.0640 0x0500 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\windows\system32\DRIVERS\atmarpc.sys
19:04:03.0687 0x0500 Atmarpc - ok
19:04:03.0812 0x0500 [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv C:\windows\System32\audiosrv.dll
19:04:04.0921 0x0500 AudioSrv - ok
19:04:05.0140 0x0500 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\windows\system32\DRIVERS\audstub.sys
19:04:06.0078 0x0500 audstub - ok
19:04:06.0156 0x0500 avchv - ok
19:04:06.0265 0x0500 [ F581D2F3E30C1CA7206D660FB7689F98, 53647E017AE58788922F72285DD63E8CD2F9E922B31F7C6711E547BC6B360154 ] avgntflt C:\windows\system32\DRIVERS\avgntflt.sys
19:04:06.0515 0x0500 avgntflt - ok
19:04:06.0609 0x0500 [ A2EE407D6D3757A2FFD5095DD16AE1F2, BBFCC5DC116D6A3AF85591955541528DB0CB1FE81D353F717BE7CAD3F7F446F4 ] avipbb C:\windows\system32\DRIVERS\avipbb.sys
19:04:06.0921 0x0500 avipbb - ok
19:04:07.0093 0x0500 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\windows\system32\DRIVERS\avkmgr.sys
19:04:07.0281 0x0500 avkmgr - ok
19:04:07.0406 0x0500 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\windows\system32\drivers\Beep.sys
19:04:08.0109 0x0500 Beep - ok
19:04:08.0250 0x0500 [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS C:\WINDOWS\system32\qmgr.dll
19:04:12.0093 0x0500 BITS - ok
19:04:12.0234 0x0500 [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser C:\windows\System32\browser.dll
19:04:12.0625 0x0500 Browser - ok
19:04:12.0718 0x0500 [ 50DED7C73E0FB40693EDAB8CAD7C46E7, 1F8526F6A9151C0DF5BFF11B9ACE5A5ABF0244296031CB2E9D52BCB52F438394 ] CA561 C:\windows\system32\Drivers\SPCA561.SYS
19:04:13.0359 0x0500 CA561 - ok
19:04:13.0515 0x0500 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\windows\system32\drivers\cbidf2k.sys
19:04:14.0218 0x0500 cbidf2k - ok
19:04:14.0296 0x0500 [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\windows\system32\DRIVERS\CCDECODE.sys
19:04:14.0781 0x0500 CCDECODE - ok
19:04:14.0828 0x0500 cd20xrnt - ok
19:04:14.0937 0x0500 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\windows\system32\drivers\Cdaudio.sys
19:04:15.0453 0x0500 Cdaudio - ok
19:04:15.0500 0x0500 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\windows\system32\drivers\Cdfs.sys
19:04:16.0234 0x0500 Cdfs - ok
19:04:16.0281 0x0500 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\windows\system32\DRIVERS\cdrom.sys
19:04:17.0406 0x0500 Cdrom - ok
19:04:17.0468 0x0500 Changer - ok
19:04:17.0578 0x0500 [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc C:\windows\system32\cisvc.exe
19:04:18.0500 0x0500 CiSvc - ok
19:04:18.0671 0x0500 [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv C:\windows\system32\clipsrv.exe
19:04:19.0656 0x0500 ClipSrv - ok
19:04:19.0843 0x0500 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:04:20.0421 0x0500 clr_optimization_v2.0.50727_32 - ok
19:04:20.0453 0x0500 CmdIde - ok
19:04:20.0515 0x0500 COMSysApp - ok
19:04:20.0578 0x0500 Cpqarray - ok
19:04:20.0750 0x0500 [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc C:\windows\System32\cryptsvc.dll
19:04:21.0984 0x0500 CryptSvc - ok
19:04:22.0015 0x0500 dac2w2k - ok
19:04:22.0109 0x0500 dac960nt - ok
19:04:22.0187 0x0500 [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch C:\windows\system32\rpcss.dll
19:04:22.0640 0x0500 DcomLaunch - ok
19:04:22.0734 0x0500 [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp C:\windows\System32\dhcpcsvc.dll
19:04:23.0609 0x0500 Dhcp - ok
19:04:23.0765 0x0500 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\windows\system32\DRIVERS\disk.sys
19:04:24.0296 0x0500 Disk - ok
19:04:24.0359 0x0500 dmadmin - ok
19:04:24.0890 0x0500 [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot C:\windows\system32\drivers\dmboot.sys
19:04:25.0937 0x0500 dmboot - ok
19:04:26.0046 0x0500 [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio C:\windows\system32\drivers\dmio.sys
19:04:26.0687 0x0500 dmio - ok
19:04:27.0062 0x0500 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\windows\system32\drivers\dmload.sys
19:04:27.0703 0x0500 dmload - ok
19:04:27.0796 0x0500 [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver C:\windows\System32\dmserver.dll
19:04:28.0437 0x0500 dmserver - ok
19:04:28.0515 0x0500 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\windows\system32\drivers\DMusic.sys
19:04:29.0187 0x0500 DMusic - ok
19:04:29.0281 0x0500 [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache C:\windows\System32\dnsrslvr.dll
19:04:30.0187 0x0500 Dnscache - ok
19:04:30.0250 0x0500 [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc C:\windows\System32\dot3svc.dll
19:04:30.0937 0x0500 Dot3svc - ok
19:04:31.0015 0x0500 dpti2o - ok
19:04:31.0125 0x0500 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
19:04:31.0750 0x0500 drmkaud - ok
19:04:31.0828 0x0500 [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost C:\windows\System32\eapsvc.dll
19:04:32.0453 0x0500 EapHost - ok
19:04:32.0640 0x0500 [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc C:\windows\System32\ersvc.dll
19:04:33.0203 0x0500 ERSvc - ok
19:04:33.0281 0x0500 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog C:\windows\system32\services.exe
19:04:33.0640 0x0500 Eventlog - ok
19:04:33.0828 0x0500 [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem C:\WINDOWS\System32\es.dll
19:04:34.0484 0x0500 EventSystem - ok
19:04:34.0578 0x0500 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\windows\system32\drivers\Fastfat.sys
19:04:35.0281 0x0500 Fastfat - ok
19:04:35.0390 0x0500 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\windows\System32\shsvcs.dll
19:04:35.0656 0x0500 FastUserSwitchingCompatibility - ok
19:04:35.0703 0x0500 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\windows\system32\DRIVERS\fdc.sys
19:04:36.0437 0x0500 Fdc - ok
19:04:36.0562 0x0500 [ CFC4CC73C903152A23E1DB28EABA1F03, 34BB8582D1731C9E2988C1FE786DF66E24B91438B4324D84424B0579C7D5A634 ] FETND5BV C:\windows\system32\DRIVERS\fetnd5bv.sys
19:04:36.0812 0x0500 FETND5BV - ok
19:04:37.0062 0x0500 [ E9648254056BCE81A85380C0C3647DC4, AE58F498BD1C33360FE3BB9EA22C13EA562206B68E7946B587CB5A6DF94586A1 ] FETNDIS C:\windows\system32\DRIVERS\fetnd5.sys
19:04:37.0781 0x0500 FETNDIS - ok
19:04:37.0859 0x0500 [ A583BC166495B07F704533754CE29CBD, 13D7ADD409AA44F0C171943AC075CB2162E0A0D429A1649C02EAA2F083F7FAF8 ] FETNDISB C:\windows\system32\DRIVERS\fetnd5b.sys
19:04:38.0203 0x0500 FETNDISB - ok
19:04:38.0265 0x0500 [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips C:\windows\system32\drivers\Fips.sys
19:04:38.0781 0x0500 Fips - ok
19:04:38.0890 0x0500 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
19:04:39.0515 0x0500 Flpydisk - ok
19:04:39.0609 0x0500 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\windows\system32\drivers\fltmgr.sys
19:04:40.0515 0x0500 FltMgr - ok
19:04:40.0750 0x0500 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:04:41.0265 0x0500 FontCache3.0.0.0 - ok
19:04:41.0312 0x0500 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
19:04:42.0656 0x0500 Fs_Rec - ok
19:04:42.0687 0x0500 [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk C:\windows\system32\DRIVERS\ftdisk.sys
19:04:43.0781 0x0500 Ftdisk - ok
19:04:43.0875 0x0500 GMSIPCI - ok
19:04:43.0984 0x0500 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\windows\system32\DRIVERS\msgpc.sys
19:04:44.0968 0x0500 Gpc - ok
19:04:45.0140 0x0500 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:04:46.0265 0x0500 gupdate - ok
19:04:46.0296 0x0500 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:04:46.0593 0x0500 gupdatem - ok
19:04:46.0796 0x0500 [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc C:\windows\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:04:47.0375 0x0500 helpsvc - ok
19:04:47.0406 0x0500 HidServ - ok
19:04:47.0500 0x0500 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
19:04:47.0953 0x0500 HidUsb - ok
19:04:48.0062 0x0500 [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc C:\windows\System32\kmsvc.dll
19:04:48.0687 0x0500 hkmsvc - ok
19:04:48.0859 0x0500 [ C5F00D15AA15CB7F55A027FF75E44BB7, A266FA9B4333CE35C74BD0F9920CC475545F9A597300F3738F7FE4AB7475321E ] HP Port Resolver C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBPRO.EXE
19:04:49.0062 0x0500 HP Port Resolver - detected UnsignedFile.Multi.Generic ( 1 )
19:04:50.0250 0x0500 Detect skipped due to KSN trusted
19:04:50.0250 0x0500 HP Port Resolver - ok
19:04:50.0375 0x0500 [ C5A288E4CEEF5A26D105117BAA3763AB, 65CC97191B36C3333C8E28F60451ED5D6C9E90582E650EF916B625BD793F7FAC ] HP Status Server C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBOID.EXE
19:04:50.0593 0x0500 HP Status Server - detected UnsignedFile.Multi.Generic ( 1 )
19:04:51.0671 0x0500 Detect skipped due to KSN trusted
19:04:51.0671 0x0500 HP Status Server - ok
19:04:51.0718 0x0500 hpn - ok
19:04:51.0843 0x0500 [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412 C:\windows\system32\DRIVERS\HPZid412.sys
19:04:52.0593 0x0500 HPZid412 - ok
19:04:52.0687 0x0500 [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12 C:\windows\system32\DRIVERS\HPZipr12.sys
19:04:52.0890 0x0500 HPZipr12 - ok
19:04:52.0953 0x0500 [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12 C:\windows\system32\DRIVERS\HPZius12.sys
19:04:53.0125 0x0500 HPZius12 - ok
19:04:53.0312 0x0500 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\windows\system32\Drivers\HTTP.sys
19:04:54.0171 0x0500 HTTP - ok
19:04:54.0234 0x0500 [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter C:\windows\System32\w3ssl.dll
19:04:55.0546 0x0500 HTTPFilter - ok
19:04:55.0640 0x0500 i2omgmt - ok
19:04:55.0718 0x0500 i2omp - ok
19:04:55.0859 0x0500 [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
19:04:56.0359 0x0500 i8042prt - ok
19:04:56.0640 0x0500 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:04:57.0250 0x0500 idsvc - ok
19:04:57.0359 0x0500 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\windows\system32\DRIVERS\imapi.sys
19:04:58.0140 0x0500 Imapi - ok
19:04:58.0281 0x0500 [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService C:\WINDOWS\System32\imapi.exe
19:04:59.0203 0x0500 ImapiService - ok
19:04:59.0250 0x0500 ini910u - ok
19:04:59.0312 0x0500 IntelIde - ok
19:04:59.0437 0x0500 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] ip6fw C:\windows\system32\drivers\ip6fw.sys
19:05:00.0328 0x0500 ip6fw - ok
19:05:00.0406 0x0500 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
19:05:01.0140 0x0500 IpFilterDriver - ok
19:05:01.0250 0x0500 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\windows\system32\DRIVERS\ipinip.sys
19:05:01.0609 0x0500 IpInIp - ok
19:05:01.0718 0x0500 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\windows\system32\DRIVERS\ipnat.sys
19:05:02.0296 0x0500 IpNat - ok
19:05:02.0375 0x0500 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\windows\system32\DRIVERS\ipsec.sys
19:05:03.0421 0x0500 IPSec - ok
19:05:03.0546 0x0500 [ F60AF0F89204A9177D110E3B2BD9FA0B, 4FCB567F33C713E092F5660137122B9B3C30AE98C085E29A16FEDC7F6D0B1826 ] IPVNMon C:\windows\system32\drivers\IPVNMon.sys
19:05:03.0625 0x0500 IPVNMon - detected UnsignedFile.Multi.Generic ( 1 )
19:05:04.0390 0x0500 IPVNMon ( UnsignedFile.Multi.Generic ) - warning
19:05:04.0953 0x0500 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\windows\system32\DRIVERS\irenum.sys
19:05:05.0468 0x0500 IRENUM - ok
19:05:05.0531 0x0500 [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp C:\windows\system32\DRIVERS\isapnp.sys
19:05:05.0937 0x0500 isapnp - ok
19:05:06.0000 0x0500 [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
19:05:06.0437 0x0500 Kbdclass - ok
19:05:06.0500 0x0500 [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
19:05:06.0890 0x0500 kbdhid - ok
19:05:07.0015 0x0500 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\windows\system32\drivers\kmixer.sys
19:05:07.0421 0x0500 kmixer - ok
19:05:07.0500 0x0500 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\windows\system32\drivers\KSecDD.sys
19:05:07.0828 0x0500 KSecDD - ok
19:05:07.0906 0x0500 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver C:\windows\System32\srvsvc.dll
19:05:08.0218 0x0500 lanmanserver - ok
19:05:08.0328 0x0500 [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\windows\System32\wkssvc.dll
19:05:08.0687 0x0500 lanmanworkstation - ok
19:05:08.0718 0x0500 lbrtfdc - ok
19:05:08.0984 0x0500 [ 31D8B705DCD5F2366186E731F87C7A71, D73DC732EF74C3C0EADD650B65BC6EEB44EA2C4E86BFD5BE989971A34FBA160A ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:05:09.0203 0x0500 LightScribeService - ok
19:05:09.0296 0x0500 [ 4127E8B6DDB4090E815C1F8852C277D3, A5BC1F65FA6D8952CDDA08320ADDF0E4394E10AE4780017C8C86AC5E68DF83F8 ] lirsgt C:\windows\system32\DRIVERS\lirsgt.sys
19:05:09.0453 0x0500 lirsgt - ok
19:05:09.0531 0x0500 [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts C:\windows\System32\lmhsvc.dll
19:05:10.0000 0x0500 LmHosts - ok
19:05:10.0046 0x0500 MBAMSwissArmy - ok
19:05:10.0156 0x0500 [ 5BB01B9F582259D1FB7653C5C1DA3653, 468F611A7729102EA493329B4389DEA316EB709C41A9EFA04DBA91CE367C496E ] MCSTRM C:\windows\system32\drivers\MCSTRM.sys
19:05:10.0218 0x0500 MCSTRM - detected UnsignedFile.Multi.Generic ( 1 )
19:05:11.0109 0x0500 Detect skipped due to KSN trusted
19:05:11.0109 0x0500 MCSTRM - ok
19:05:12.0500 0x0500 [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger C:\windows\System32\msgsvc.dll
19:05:13.0031 0x0500 Messenger - ok
19:05:13.0093 0x0500 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\windows\system32\drivers\mnmdd.sys
19:05:13.0859 0x0500 mnmdd - ok
19:05:13.0968 0x0500 [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
19:05:14.0500 0x0500 mnmsrvc - ok
19:05:14.0578 0x0500 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem C:\windows\system32\drivers\Modem.sys
19:05:15.0000 0x0500 Modem - ok
19:05:15.0046 0x0500 [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass C:\windows\system32\DRIVERS\mouclass.sys
19:05:15.0437 0x0500 Mouclass - ok
19:05:15.0984 0x0500 [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
19:05:16.0593 0x0500 mouhid - ok
19:05:16.0671 0x0500 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\windows\system32\drivers\MountMgr.sys
19:05:17.0031 0x0500 MountMgr - ok
19:05:17.0171 0x0500 [ 81E8AF6407EC3F41908FE37F054353EA, 756C7656ED68AEAE4225E952ED1CED0717264D3378DB8DF0B2D70B6EBC67C62F ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:05:17.0375 0x0500 MozillaMaintenance - ok
19:05:17.0406 0x0500 mraid35x - ok
19:05:17.0500 0x0500 [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
19:05:17.0625 0x0500 MREMP50 - detected UnsignedFile.Multi.Generic ( 1 )
19:05:18.0234 0x0500 Detect skipped due to KSN trusted
19:05:18.0234 0x0500 MREMP50 - ok
19:05:18.0265 0x0500 MREMPR5 - ok
19:05:18.0296 0x0500 MRENDIS5 - ok
19:05:18.0406 0x0500 [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
19:05:18.0468 0x0500 MRESP50 - detected UnsignedFile.Multi.Generic ( 1 )
19:05:18.0859 0x0500 Detect skipped due to KSN trusted
19:05:18.0859 0x0500 MRESP50 - ok
19:05:18.0984 0x0500 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\windows\system32\DRIVERS\mrxdav.sys
19:05:19.0421 0x0500 MRxDAV - ok
19:05:19.0515 0x0500 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\windows\system32\DRIVERS\mrxsmb.sys
19:05:19.0859 0x0500 MRxSmb - ok
19:05:19.0937 0x0500 [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC C:\WINDOWS\System32\msdtc.exe
19:05:20.0468 0x0500 MSDTC - ok
19:05:20.0546 0x0500 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\windows\system32\drivers\Msfs.sys
19:05:20.0984 0x0500 Msfs - ok
19:05:21.0000 0x0500 MSICPL - ok
19:05:21.0062 0x0500 MSIServer - ok
19:05:21.0156 0x0500 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
19:05:21.0546 0x0500 MSKSSRV - ok
19:05:21.0625 0x0500 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
19:05:22.0093 0x0500 MSPCLOCK - ok
19:05:22.0156 0x0500 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\windows\system32\drivers\MSPQM.sys
19:05:22.0593 0x0500 MSPQM - ok
19:05:22.0687 0x0500 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
19:05:23.0156 0x0500 mssmbios - ok
19:05:23.0203 0x0500 [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
19:05:23.0593 0x0500 MSTEE - ok
19:05:23.0703 0x0500 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\windows\system32\drivers\Mup.sys
19:05:23.0937 0x0500 Mup - ok
19:05:24.0015 0x0500 [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\windows\system32\DRIVERS\NABTSFEC.sys
19:05:24.0562 0x0500 NABTSFEC - ok
19:05:24.0671 0x0500 [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent C:\windows\System32\qagentrt.dll
19:05:25.0109 0x0500 napagent - ok
19:05:25.0156 0x0500 NAVENG - ok
19:05:25.0203 0x0500 NAVEX15 - ok
19:05:25.0296 0x0500 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\windows\system32\drivers\NDIS.sys
19:05:25.0671 0x0500 NDIS - ok
19:05:25.0718 0x0500 [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\windows\system32\DRIVERS\NdisIP.sys
19:05:29.0750 0x0500 NdisIP - ok
19:05:29.0796 0x0500 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
19:05:30.0187 0x0500 NdisTapi - ok
19:05:30.0234 0x0500 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
19:05:30.0781 0x0500 Ndisuio - ok
19:05:30.0906 0x0500 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
19:05:31.0437 0x0500 NdisWan - ok
19:05:31.0515 0x0500 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\windows\system32\drivers\NDProxy.sys
19:05:31.0890 0x0500 NDProxy - ok
19:05:31.0984 0x0500 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
19:05:32.0109 0x0500 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
19:05:32.0750 0x0500 Detect skipped due to KSN trusted
19:05:32.0750 0x0500 Net Driver HPZ12 - ok
19:05:34.0328 0x0500 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
19:05:34.0843 0x0500 NetBIOS - ok
19:05:34.0984 0x0500 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
19:05:35.0453 0x0500 NetBT - ok
19:05:35.0546 0x0500 [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE C:\windows\system32\netdde.exe
19:05:35.0968 0x0500 NetDDE - ok
19:05:36.0078 0x0500 [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm C:\windows\system32\netdde.exe
19:05:36.0687 0x0500 NetDDEdsdm - ok
19:05:36.0796 0x0500 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon C:\windows\System32\lsass.exe
19:05:37.0281 0x0500 Netlogon - ok
19:05:37.0375 0x0500 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman C:\windows\System32\netman.dll
19:05:37.0843 0x0500 Netman - ok
19:05:38.0015 0x0500 [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:05:38.0093 0x0500 NetTcpPortSharing - ok
19:05:38.0187 0x0500 [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla C:\windows\System32\mswsock.dll
19:05:38.0484 0x0500 Nla - ok
19:05:38.0625 0x0500 [ DBB5F7B1A4F109CD7A1ABD3AC7A10D39, 71251ACDB228CD4778BAB89E2F75256C9ECA34E30ABEB138CD5939BAA88815F1 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
19:05:38.0796 0x0500 NMIndexingService - ok
19:05:38.0906 0x0500 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\windows\system32\drivers\Npfs.sys
19:05:39.0296 0x0500 Npfs - ok
19:05:39.0312 0x0500 NSL - ok
19:05:39.0359 0x0500 NTACCESS - ok
19:05:39.0468 0x0500 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\windows\system32\drivers\Ntfs.sys
19:05:39.0984 0x0500 Ntfs - ok
19:05:40.0078 0x0500 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp C:\windows\System32\lsass.exe
19:05:40.0484 0x0500 NtLmSsp - ok
19:05:40.0609 0x0500 [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc C:\windows\system32\ntmssvc.dll
19:05:41.0046 0x0500 NtmsSvc - ok
19:05:41.0109 0x0500 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\windows\system32\drivers\Null.sys
19:05:41.0531 0x0500 Null - ok
19:05:42.0000 0x0500 [ 9E1F2F09E34C92A96B9900B6A45D5026, FF84A8F4CB8192E132CE96958B625DD545691997E64353D8548DEB74F4B94169 ] nv C:\windows\system32\DRIVERS\nv4_mini.sys
19:05:43.0078 0x0500 nv - ok
19:05:43.0218 0x0500 [ 0B24AB7CC5B7ED2AA7F438A4072459F4, B8D66BF624377BDB600135E816A7D20B0F6B9341D16AA14FBE12B925E1B57A25 ] NVSvc C:\windows\System32\nvsvc32.exe
19:05:43.0562 0x0500 NVSvc - ok
19:05:43.0656 0x0500 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\windows\system32\DRIVERS\nwlnkflt.sys
19:05:44.0406 0x0500 NwlnkFlt - ok
19:05:44.0468 0x0500 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\windows\system32\DRIVERS\nwlnkfwd.sys
19:05:44.0953 0x0500 NwlnkFwd - ok
19:05:45.0062 0x0500 [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport C:\windows\system32\DRIVERS\parport.sys
19:05:45.0484 0x0500 Parport - ok
19:05:45.0578 0x0500 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\windows\system32\drivers\PartMgr.sys
19:05:46.0031 0x0500 PartMgr - ok
19:05:46.0078 0x0500 [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm C:\windows\system32\drivers\ParVdm.sys
19:05:46.0578 0x0500 ParVdm - ok
19:05:46.0656 0x0500 [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI C:\windows\system32\DRIVERS\pci.sys
19:05:47.0093 0x0500 PCI - ok
19:05:47.0140 0x0500 PCIDump - ok
19:05:47.0171 0x0500 PCIIde - ok
19:05:47.0250 0x0500 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia C:\windows\system32\drivers\Pcmcia.sys
19:05:47.0640 0x0500 Pcmcia - ok
19:05:47.0671 0x0500 PDCOMP - ok
19:05:47.0734 0x0500 PDFRAME - ok
19:05:47.0781 0x0500 PDRELI - ok
19:05:48.0265 0x0500 PDRFRAME - ok
19:05:48.0328 0x0500 perc2 - ok
19:05:48.0468 0x0500 perc2hib - ok
19:05:48.0625 0x0500 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay C:\windows\system32\services.exe
19:05:49.0171 0x0500 PlugPlay - ok
19:05:49.0234 0x0500 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
19:05:49.0375 0x0500 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
19:05:50.0078 0x0500 Detect skipped due to KSN trusted
19:05:50.0078 0x0500 Pml Driver HPZ12 - ok
19:05:50.0140 0x0500 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent C:\windows\System32\lsass.exe
19:05:50.0500 0x0500 PolicyAgent - ok
19:05:50.0546 0x0500 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
19:05:50.0906 0x0500 PptpMiniport - ok
19:05:50.0953 0x0500 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\windows\system32\lsass.exe
19:05:51.0265 0x0500 ProtectedStorage - ok
19:05:51.0296 0x0500 [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\windows\system32\DRIVERS\psched.sys
19:05:51.0671 0x0500 PSched - ok
19:05:51.0734 0x0500 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\windows\system32\DRIVERS\ptilink.sys
19:05:52.0140 0x0500 Ptilink - ok
19:05:52.0171 0x0500 ql1080 - ok
19:05:52.0234 0x0500 Ql10wnt - ok
19:05:52.0265 0x0500 ql12160 - ok
19:05:52.0312 0x0500 ql1240 - ok
19:05:52.0328 0x0500 ql1280 - ok
19:05:52.0390 0x0500 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
19:05:52.0703 0x0500 RasAcd - ok
19:05:52.0812 0x0500 [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto C:\windows\System32\rasauto.dll
19:05:53.0187 0x0500 RasAuto - ok
19:05:53.0281 0x0500 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
19:05:53.0546 0x0500 Rasl2tp - ok
19:05:53.0625 0x0500 [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan C:\windows\System32\rasmans.dll
19:05:54.0562 0x0500 RasMan - ok
19:05:54.0640 0x0500 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
19:05:55.0343 0x0500 RasPppoe - ok
19:05:55.0390 0x0500 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\windows\system32\DRIVERS\raspti.sys
19:05:56.0218 0x0500 Raspti - ok
19:05:56.0312 0x0500 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\windows\system32\DRIVERS\rdbss.sys
19:05:56.0718 0x0500 Rdbss - ok
19:05:56.0890 0x0500 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
19:05:57.0234 0x0500 RDPCDD - ok
19:05:57.0421 0x0500 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\windows\system32\drivers\RDPWD.sys
19:06:00.0703 0x0500 RDPWD - ok
19:06:01.0109 0x0500 [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:06:03.0453 0x0500 RDSessMgr - ok
19:06:03.0546 0x0500 [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook C:\windows\system32\DRIVERS\redbook.sys
19:06:05.0296 0x0500 redbook - ok
19:06:05.0390 0x0500 [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess C:\windows\System32\mprdim.dll
19:06:05.0843 0x0500 RemoteAccess - ok
19:06:06.0015 0x0500 [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator C:\windows\System32\locator.exe
19:06:06.0640 0x0500 RpcLocator - ok
19:06:06.0875 0x0500 [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs C:\windows\system32\rpcss.dll
19:06:07.0375 0x0500 RpcSs - ok
19:06:07.0468 0x0500 [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP C:\windows\System32\rsvp.exe
19:06:08.0156 0x0500 RSVP - ok
19:06:08.0218 0x0500 RT73 - ok
19:06:08.0296 0x0500 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs C:\windows\system32\lsass.exe
19:06:09.0046 0x0500 SamSs - ok
19:06:09.0109 0x0500 SASDIFSV - ok
19:06:09.0171 0x0500 SASKUTIL - ok
19:06:09.0296 0x0500 [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr C:\windows\System32\SCardSvr.exe
19:06:09.0921 0x0500 SCardSvr - ok
19:06:10.0000 0x0500 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule C:\windows\system32\schedsvc.dll
19:06:10.0515 0x0500 Schedule - ok
19:06:10.0609 0x0500 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\windows\system32\DRIVERS\secdrv.sys
19:06:11.0093 0x0500 Secdrv - ok
19:06:11.0140 0x0500 [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon C:\windows\System32\seclogon.dll
19:06:11.0734 0x0500 seclogon - ok
19:06:11.0812 0x0500 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS C:\windows\system32\sens.dll
19:06:12.0421 0x0500 SENS - ok
19:06:12.0484 0x0500 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\windows\system32\DRIVERS\serenum.sys
19:06:12.0937 0x0500 serenum - ok
19:06:13.0000 0x0500 [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial C:\windows\system32\DRIVERS\serial.sys
19:06:13.0500 0x0500 Serial - ok
19:06:13.0609 0x0500 SetupNTGLM7X - ok
19:06:13.0687 0x0500 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\windows\system32\drivers\Sfloppy.sys
19:06:14.0125 0x0500 Sfloppy - ok
19:06:14.0296 0x0500 [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess C:\windows\System32\ipnathlp.dll
19:06:14.0843 0x0500 SharedAccess - ok
19:06:14.0921 0x0500 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\windows\System32\shsvcs.dll
19:06:15.0281 0x0500 ShellHWDetection - ok
19:06:15.0312 0x0500 Simbad - ok
19:06:15.0406 0x0500 [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\windows\system32\DRIVERS\SLIP.sys
19:06:15.0859 0x0500 SLIP - ok
19:06:15.0968 0x0500 Sparrow - ok
19:06:16.0031 0x0500 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\windows\system32\drivers\splitter.sys
19:06:16.0359 0x0500 splitter - ok
19:06:16.0453 0x0500 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\windows\system32\spoolsv.exe
19:06:16.0609 0x0500 Spooler - ok
19:06:16.0750 0x0500 [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr C:\windows\system32\DRIVERS\sr.sys
19:06:17.0406 0x0500 sr - ok
19:06:17.0500 0x0500 [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice C:\WINDOWS\System32\srsvc.dll
19:06:18.0109 0x0500 srservice - ok
19:06:18.0234 0x0500 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\windows\system32\DRIVERS\srv.sys
19:06:18.0468 0x0500 Srv - ok
19:06:18.0562 0x0500 [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
19:06:19.0093 0x0500 SSDPSRV - ok
19:06:19.0203 0x0500 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\windows\system32\DRIVERS\ssmdrv.sys
19:06:19.0343 0x0500 ssmdrv - ok
19:06:19.0406 0x0500 [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam C:\windows\system32\DRIVERS\serscan.sys
19:06:20.0078 0x0500 StillCam - ok
19:06:20.0250 0x0500 [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc C:\windows\system32\wiaservc.dll
19:06:20.0843 0x0500 stisvc - ok
19:06:20.0921 0x0500 [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\windows\system32\DRIVERS\StreamIP.sys
19:06:21.0281 0x0500 streamip - ok
19:06:21.0359 0x0500 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\windows\system32\DRIVERS\swenum.sys
19:06:21.0640 0x0500 swenum - ok
19:06:21.0703 0x0500 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\windows\system32\drivers\swmidi.sys
19:06:22.0078 0x0500 swmidi - ok
19:06:22.0125 0x0500 SwPrv - ok
19:06:22.0218 0x0500 symc810 - ok
19:06:22.0234 0x0500 symc8xx - ok
19:06:22.0296 0x0500 sym_hi - ok
19:06:22.0359 0x0500 sym_u3 - ok
19:06:22.0421 0x0500 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\windows\system32\drivers\sysaudio.sys
19:06:22.0734 0x0500 sysaudio - ok
19:06:22.0828 0x0500 [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog C:\windows\system32\smlogsvc.exe
19:06:23.0187 0x0500 SysmonLog - ok
19:06:25.0250 0x0500 [ 74014396C23005218ECDD13FAC0AFF5E, 8479CF0711E75B856A56B95FD649D8BB0C2B9EF234E3B01F1863F2F70B392EBD ] SystemUpdate C:\windows\FrameworkUpdate\Update.exe
19:06:34.0281 0x0500 SystemUpdate - detected UnsignedFile.Multi.Generic ( 1 )
19:06:34.0828 0x0500 SystemUpdate ( UnsignedFile.Multi.Generic ) - warning
19:06:35.0406 0x0500 [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv C:\windows\System32\tapisrv.dll
19:06:36.0296 0x0500 TapiSrv - ok
19:06:36.0437 0x0500 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\windows\system32\DRIVERS\tcpip.sys
19:06:37.0281 0x0500 Tcpip - ok
19:06:37.0359 0x0500 [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\windows\system32\drivers\TDPIPE.sys
19:06:38.0171 0x0500 TDPIPE - ok
19:06:38.0265 0x0500 [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\windows\system32\drivers\TDTCP.sys
19:06:38.0828 0x0500 TDTCP - ok
19:06:38.0890 0x0500 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\windows\system32\DRIVERS\termdd.sys
19:06:39.0171 0x0500 TermDD - ok
19:06:39.0281 0x0500 [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService C:\windows\System32\termsrv.dll
19:06:39.0656 0x0500 TermService - ok
19:06:39.0718 0x0500 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes C:\windows\System32\shsvcs.dll
19:06:39.0796 0x0500 Themes - ok
19:06:39.0859 0x0500 [ DF8444A8FA8FD38D8848BDD40A8403B3, AD61EA0F35E91646F544BC2DDD3AAC51CC21950CBCC9FBACFCF5A03F17105FEF ] tmcomm C:\WINDOWS\system32\drivers\tmcomm.sys
19:06:39.0984 0x0500 tmcomm - ok
19:06:40.0015 0x0500 TosIde - ok
19:06:40.0109 0x0500 [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks C:\windows\system32\trkwks.dll
19:06:40.0500 0x0500 TrkWks - ok
19:06:40.0765 0x0500 [ 711561440FDC396CB6E4C69C13375A38, 42489100F9E0CCED6CC3C7A6CCE6FDF4EF31A773D7D39A24F06DB2DCBAAA1E87 ] tvnserver C:\Program Files\ShowMyPCService\tvnserver.exe
19:06:41.0046 0x0500 tvnserver - ok
19:06:41.0125 0x0500 TweakingRunAsSystem0003 - ok
19:06:41.0171 0x0500 [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\windows\system32\drivers\Udfs.sys
19:06:41.0500 0x0500 Udfs - ok
19:06:41.0531 0x0500 ultra - ok
19:06:41.0625 0x0500 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\windows\system32\DRIVERS\update.sys
19:06:42.0140 0x0500 Update - ok
19:06:42.0328 0x0500 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost C:\windows\System32\upnphost.dll
19:06:42.0843 0x0500 upnphost - ok
19:06:42.0875 0x0500 [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS C:\windows\System32\ups.exe
19:06:43.0328 0x0500 UPS - ok
19:06:43.0468 0x0500 [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
19:06:44.0671 0x0500 usbccgp - ok
19:06:44.0734 0x0500 [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
19:06:45.0281 0x0500 usbehci - ok
19:06:45.0343 0x0500 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
19:06:45.0953 0x0500 usbhub - ok
19:06:46.0031 0x0500 [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
19:06:46.0437 0x0500 usbprint - ok
19:06:46.0531 0x0500 [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
19:06:46.0718 0x0500 usbscan - ok
19:06:46.0765 0x0500 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor C:\windows\system32\DRIVERS\USBSTOR.SYS
19:06:47.0984 0x0500 usbstor - ok
19:06:48.0046 0x0500 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\windows\system32\DRIVERS\usbuhci.sys
19:06:48.0828 0x0500 usbuhci - ok
19:06:48.0921 0x0500 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\windows\System32\drivers\vga.sys
19:06:49.0531 0x0500 VgaSave - ok
19:06:49.0640 0x0500 [ 4B039BBD037B01F5DB5A144C837F283A, EA319B165958D19C71E059762C9F6ECD96BB96FBFF3B187519D1BBB2033F6A6D ] viaagp1 C:\windows\system32\DRIVERS\viaagp1.sys
19:06:49.0843 0x0500 viaagp1 - ok
19:06:49.0890 0x0500 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde C:\windows\system32\DRIVERS\viaide.sys
19:06:50.0218 0x0500 ViaIde - ok
19:06:50.0390 0x0500 [ 2E1FFC794290D9B16F1DB1084583E655, C21D5B1B54141BED1EAD4FE1C670BD840A126E633A15F6AC61F055F39B4C1579 ] VIAudio C:\windows\system32\drivers\vinyl97.sys
19:06:50.0828 0x0500 VIAudio - ok
19:06:50.0875 0x0500 [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap C:\windows\system32\drivers\VolSnap.sys
19:06:51.0078 0x0500 VolSnap - ok
19:06:51.0093 0x0500 Vsp - ok
19:06:51.0359 0x0500 [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS C:\windows\System32\vssvc.exe
19:06:51.0750 0x0500 VSS - ok
19:06:51.0859 0x0500 [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time C:\WINDOWS\System32\w32time.dll
19:06:52.0109 0x0500 W32Time - ok
19:06:52.0218 0x0500 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\windows\system32\DRIVERS\wanarp.sys
19:06:52.0453 0x0500 Wanarp - ok
19:06:52.0609 0x0500 [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000 C:\windows\system32\Drivers\wdf01000.sys
19:06:52.0890 0x0500 Wdf01000 - ok
19:06:52.0921 0x0500 WDICA - ok
19:06:53.0015 0x0500 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\windows\system32\drivers\wdmaud.sys
19:06:53.0234 0x0500 wdmaud - ok
19:06:53.0296 0x0500 [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient C:\windows\System32\webclnt.dll
19:06:53.0515 0x0500 WebClient - ok
19:06:53.0750 0x0500 [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt C:\windows\system32\wbem\WMIsvc.dll
19:06:54.0062 0x0500 winmgmt - ok
19:06:54.0421 0x0500 [ 18F347402DA544A780949B8FDF83351B, D1AD972D438A51A4998FEF68670395DAE3353240AD2A17F35794287AF0826FFB ] WinRM C:\windows\system32\WsmSvc.dll
19:06:55.0406 0x0500 WinRM - ok
19:06:55.0515 0x0500 [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:06:55.0703 0x0500 WmdmPmSN - ok
19:06:55.0859 0x0500 [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
19:06:56.0078 0x0500 WmiApSrv - ok
19:06:56.0484 0x0500 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
19:06:57.0656 0x0500 WMPNetworkSvc - ok
19:06:57.0734 0x0500 [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb C:\windows\system32\DRIVERS\wpdusb.sys
19:06:57.0828 0x0500 WpdUsb - ok
19:06:57.0906 0x0500 [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc C:\windows\system32\wscsvc.dll
19:06:58.0140 0x0500 wscsvc - ok
19:06:58.0218 0x0500 [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\windows\system32\DRIVERS\WSTCODEC.SYS
19:06:58.0437 0x0500 WSTCODEC - ok
19:06:58.0484 0x0500 [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv C:\windows\system32\wuauserv.dll
19:06:58.0703 0x0500 wuauserv - ok
19:06:58.0812 0x0500 [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf C:\windows\system32\DRIVERS\WudfPf.sys
19:06:58.0906 0x0500 WudfPf - ok
19:06:58.0968 0x0500 [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc C:\windows\System32\WUDFSvc.dll
19:06:59.0046 0x0500 WudfSvc - ok
19:06:59.0234 0x0500 [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC C:\windows\System32\wzcsvc.dll
19:06:59.0593 0x0500 WZCSVC - ok
19:06:59.0750 0x0500 [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov C:\windows\System32\xmlprov.dll
19:07:00.0015 0x0500 xmlprov - ok
19:07:00.0078 0x0500 ================ Scan global ===============================
19:07:00.0125 0x0500 [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\windows\system32\basesrv.dll
19:07:00.0281 0x0500 [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\windows\system32\winsrv.dll
19:07:00.0406 0x0500 [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\windows\system32\winsrv.dll
19:07:00.0468 0x0500 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\windows\system32\services.exe
19:07:00.0468 0x0500 [ Global ] - ok
19:07:00.0484 0x0500 ================ Scan MBR ==================================
19:07:00.0515 0x0500 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
19:07:02.0640 0x0500 \Device\Harddisk0\DR0 - ok
19:07:02.0656 0x0500 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR2
19:07:02.0875 0x0500 \Device\Harddisk1\DR2 - ok
19:07:02.0890 0x0500 ================ Scan VBR ==================================
19:07:02.0921 0x0500 [ 3DF3CD52D2E465683B62951B3EA350B8 ] \Device\Harddisk0\DR0\Partition1
19:07:02.0921 0x0500 \Device\Harddisk0\DR0\Partition1 - ok
19:07:02.0968 0x0500 [ 2E90A317D40020535F8ED349C21BEE88 ] \Device\Harddisk1\DR2\Partition1
19:07:02.0968 0x0500 \Device\Harddisk1\DR2\Partition1 - ok
19:07:02.0984 0x0500 ================ Scan active images ========================
19:07:03.0000 0x0500 [ 8FCE268CDBDD83B23419D1F35F42C7B1, DF1A5097DC5B5C35427460E866E16ED25C3DDD9217065B26C3214A5674BE37DB ] C:\WINDOWS\system32\drivers\amdk7.sys
19:07:03.0000 0x0500 C:\WINDOWS\system32\drivers\amdk7.sys - ok
19:07:03.0015 0x0500 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] C:\WINDOWS\system32\drivers\imapi.sys
19:07:03.0015 0x0500 C:\WINDOWS\system32\drivers\imapi.sys - ok
19:07:03.0078 0x0500 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] C:\WINDOWS\system32\drivers\cdrom.sys
19:07:03.0078 0x0500 C:\WINDOWS\system32\drivers\cdrom.sys - ok
19:07:03.0109 0x0500 [ 0753515F78DF7F271A5E61C20BCD36A1, A8D600CD0C592DFB875DE2D4F1AEDB207B80A43CF724051B6552BB6E539E9AFC ] C:\WINDOWS\system32\drivers\ks.sys
19:07:03.0109 0x0500 C:\WINDOWS\system32\drivers\ks.sys - ok
19:07:03.0171 0x0500 [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] C:\WINDOWS\system32\drivers\redbook.sys
19:07:03.0171 0x0500 C:\WINDOWS\system32\drivers\redbook.sys - ok
19:07:03.0187 0x0500 [ 6DF35CA139C3BC15CC74390ABB114EFE, 5401724E49243625C43B3F9032E592EF43605C2510E809C1D318A7792AB9FBBA ] C:\WINDOWS\system32\drivers\usbport.sys
19:07:03.0187 0x0500 C:\WINDOWS\system32\drivers\usbport.sys - ok
19:07:03.0218 0x0500 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] C:\WINDOWS\system32\drivers\usbuhci.sys
19:07:03.0218 0x0500 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
19:07:03.0250 0x0500 [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] C:\WINDOWS\system32\drivers\usbehci.sys
19:07:03.0281 0x0500 C:\WINDOWS\system32\drivers\usbehci.sys - ok
19:07:03.0296 0x0500 [ 6CB08593487F5701D2D2254E693EAFCE, 0518A1FC540C036E6864DA8C01CADE043D4F897D7FCF8C61352865131DEB7414 ] C:\WINDOWS\system32\drivers\drmk.sys
19:07:03.0296 0x0500 C:\WINDOWS\system32\drivers\drmk.sys - ok
19:07:03.0343 0x0500 [ E82A496C3961EFC6828B508C310CE98F, E142A0809525B34A376B3063B07B8822930056BBCB886B7CF1D7585BCEC371A0 ] C:\WINDOWS\system32\drivers\portcls.sys
19:07:03.0343 0x0500 C:\WINDOWS\system32\drivers\portcls.sys - ok
19:07:03.0406 0x0500 [ 2E1FFC794290D9B16F1DB1084583E655, C21D5B1B54141BED1EAD4FE1C670BD840A126E633A15F6AC61F055F39B4C1579 ] C:\WINDOWS\system32\drivers\vinyl97.sys
19:07:03.0406 0x0500 C:\WINDOWS\system32\drivers\vinyl97.sys - ok
19:07:03.0484 0x0500 [ CFC4CC73C903152A23E1DB28EABA1F03, 34BB8582D1731C9E2988C1FE786DF66E24B91438B4324D84424B0579C7D5A634 ] C:\WINDOWS\system32\drivers\fetnd5bv.sys
19:07:03.0484 0x0500 C:\WINDOWS\system32\drivers\fetnd5bv.sys - ok
19:07:03.0546 0x0500 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] C:\WINDOWS\system32\drivers\fdc.sys
19:07:03.0546 0x0500 C:\WINDOWS\system32\drivers\fdc.sys - ok
19:07:03.0578 0x0500 [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] C:\WINDOWS\system32\drivers\serial.sys
19:07:03.0578 0x0500 C:\WINDOWS\system32\drivers\serial.sys - ok
19:07:03.0640 0x0500 [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] C:\WINDOWS\system32\drivers\parport.sys
19:07:03.0640 0x0500 C:\WINDOWS\system32\drivers\parport.sys - ok
19:07:03.0703 0x0500 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] C:\WINDOWS\system32\drivers\serenum.sys
19:07:03.0703 0x0500 C:\WINDOWS\system32\drivers\serenum.sys - ok
19:07:03.0781 0x0500 [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] C:\WINDOWS\system32\drivers\i8042prt.sys
19:07:03.0781 0x0500 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
19:07:03.0828 0x0500 [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] C:\WINDOWS\system32\drivers\kbdclass.sys
19:07:03.0828 0x0500 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
19:07:03.0890 0x0500 [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] C:\WINDOWS\system32\drivers\mouclass.sys
19:07:03.0890 0x0500 C:\WINDOWS\system32\drivers\mouclass.sys - ok
19:07:03.0968 0x0500 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] C:\WINDOWS\system32\drivers\audstub.sys
19:07:03.0968 0x0500 C:\WINDOWS\system32\drivers\audstub.sys - ok
19:07:04.0000 0x0500 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] C:\WINDOWS\system32\drivers\rasl2tp.sys
19:07:04.0000 0x0500 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
19:07:04.0031 0x0500 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] C:\WINDOWS\system32\drivers\ndistapi.sys
19:07:04.0031 0x0500 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
19:07:04.0062 0x0500 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] C:\WINDOWS\system32\drivers\ndiswan.sys
19:07:04.0062 0x0500 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
19:07:04.0078 0x0500 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] C:\WINDOWS\system32\drivers\raspppoe.sys
19:07:04.0078 0x0500 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
19:07:04.0109 0x0500 [ 0539D5E53587F82D1B4FD74C5BE205CF, 9C578FC46AC3B8260258B83C89A33C3D7990B365D7708AEF2296CD235C7D301A ] C:\WINDOWS\system32\drivers\tdi.sys
19:07:04.0109 0x0500 C:\WINDOWS\system32\drivers\tdi.sys - ok
19:07:04.0125 0x0500 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] C:\WINDOWS\system32\drivers\raspptp.sys
19:07:04.0125 0x0500 C:\WINDOWS\system32\drivers\raspptp.sys - ok
19:07:04.0171 0x0500 [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] C:\WINDOWS\system32\drivers\psched.sys
19:07:04.0171 0x0500 C:\WINDOWS\system32\drivers\psched.sys - ok
19:07:04.0203 0x0500 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] C:\WINDOWS\system32\drivers\msgpc.sys
19:07:04.0203 0x0500 C:\WINDOWS\system32\drivers\msgpc.sys - ok
19:07:04.0218 0x0500 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] C:\WINDOWS\system32\drivers\ptilink.sys
19:07:04.0218 0x0500 C:\WINDOWS\system32\drivers\ptilink.sys - ok
19:07:04.0250 0x0500 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] C:\WINDOWS\system32\drivers\raspti.sys
19:07:04.0250 0x0500 C:\WINDOWS\system32\drivers\raspti.sys - ok
19:07:04.0281 0x0500 [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] C:\WINDOWS\system32\drivers\serscan.sys
19:07:04.0281 0x0500 C:\WINDOWS\system32\drivers\serscan.sys - ok
19:07:04.0312 0x0500 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] C:\WINDOWS\system32\drivers\termdd.sys
19:07:04.0312 0x0500 C:\WINDOWS\system32\drivers\termdd.sys - ok
19:07:04.0328 0x0500 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] C:\WINDOWS\system32\drivers\swenum.sys
19:07:04.0328 0x0500 C:\WINDOWS\system32\drivers\swenum.sys - ok
19:07:04.0375 0x0500 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] C:\WINDOWS\system32\drivers\update.sys
19:07:04.0375 0x0500 C:\WINDOWS\system32\drivers\update.sys - ok
19:07:04.0406 0x0500 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] C:\WINDOWS\system32\drivers\mssmbios.sys
19:07:04.0406 0x0500 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
19:07:04.0437 0x0500 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] C:\WINDOWS\system32\drivers\ndproxy.sys
19:07:04.0437 0x0500 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
19:07:04.0484 0x0500 [ 04FE5EF6ED4818EC4839EA5C611A6310, 666479AF6789FC5DF2EA8D4B6216FDA9A4998D252F95BD003619D9376B1DC9E7 ] C:\WINDOWS\system32\drivers\usbd.sys
19:07:04.0484 0x0500 C:\WINDOWS\system32\drivers\usbd.sys - ok
19:07:04.0515 0x0500 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] C:\WINDOWS\system32\drivers\usbhub.sys
19:07:04.0515 0x0500 C:\WINDOWS\system32\drivers\usbhub.sys - ok
19:07:04.0531 0x0500 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] C:\WINDOWS\system32\drivers\flpydisk.sys
19:07:04.0531 0x0500 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
19:07:04.0562 0x0500 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] C:\WINDOWS\system32\drivers\sfloppy.sys
19:07:04.0562 0x0500 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
19:07:04.0593 0x0500 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] C:\WINDOWS\system32\drivers\cdaudio.sys
19:07:04.0593 0x0500 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
19:07:04.0625 0x0500 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] C:\WINDOWS\system32\drivers\fs_rec.sys
19:07:04.0625 0x0500 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
19:07:04.0656 0x0500 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] C:\WINDOWS\system32\drivers\null.sys
19:07:04.0656 0x0500 C:\WINDOWS\system32\drivers\null.sys - ok
19:07:04.0718 0x0500 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] C:\WINDOWS\system32\drivers\beep.sys
19:07:04.0718 0x0500 C:\WINDOWS\system32\drivers\beep.sys - ok
19:07:04.0750 0x0500 [ C569EF030B11F896E123A30AC92678DB, F851E99B968BBAB82E3B0D1D2F985AEE1EAD10C3BBACDD02BAB2ACEE57CB048A ] C:\WINDOWS\system32\drivers\hidparse.sys
19:07:04.0750 0x0500 C:\WINDOWS\system32\drivers\hidparse.sys - ok
19:07:04.0781 0x0500 [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] C:\WINDOWS\system32\drivers\kbdhid.sys
19:07:04.0781 0x0500 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
19:07:04.0828 0x0500 [ E28726B72C46821A28830E077D39A55B, 66BE8A1055544C8CEBB7125726C1C306A026F3A1764589FCDDF3792076AF891F ] C:\WINDOWS\system32\drivers\videoprt.sys
19:07:04.0828 0x0500 C:\WINDOWS\system32\drivers\videoprt.sys - ok
19:07:04.0875 0x0500 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] C:\WINDOWS\system32\drivers\vga.sys
19:07:04.0875 0x0500 C:\WINDOWS\system32\drivers\vga.sys - ok
19:07:04.0906 0x0500 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] C:\WINDOWS\system32\drivers\mnmdd.sys
19:07:04.0906 0x0500 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
19:07:04.0984 0x0500 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] C:\WINDOWS\system32\drivers\rdpcdd.sys
19:07:04.0984 0x0500 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
19:07:05.0015 0x0500 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] C:\WINDOWS\system32\drivers\msfs.sys
19:07:05.0015 0x0500 C:\WINDOWS\system32\drivers\msfs.sys - ok
19:07:05.0046 0x0500 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] C:\WINDOWS\system32\drivers\npfs.sys
19:07:05.0046 0x0500 C:\WINDOWS\system32\drivers\npfs.sys - ok
19:07:05.0078 0x0500 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] C:\WINDOWS\system32\drivers\rasacd.sys
19:07:05.0078 0x0500 C:\WINDOWS\system32\drivers\rasacd.sys - ok
19:07:05.0109 0x0500 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] C:\WINDOWS\system32\drivers\ipsec.sys
19:07:05.0109 0x0500 C:\WINDOWS\system32\drivers\ipsec.sys - ok
19:07:05.0125 0x0500 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] C:\WINDOWS\system32\drivers\tcpip.sys
19:07:05.0125 0x0500 C:\WINDOWS\system32\drivers\tcpip.sys - ok
19:07:05.0156 0x0500 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] C:\WINDOWS\system32\drivers\usbstor.sys
19:07:05.0156 0x0500 C:\WINDOWS\system32\drivers\usbstor.sys - ok
19:07:05.0187 0x0500 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] C:\WINDOWS\system32\drivers\netbt.sys
19:07:05.0187 0x0500 C:\WINDOWS\system32\drivers\netbt.sys - ok
19:07:05.0218 0x0500 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] C:\WINDOWS\system32\drivers\wanarp.sys
19:07:05.0218 0x0500 C:\WINDOWS\system32\drivers\wanarp.sys - ok
19:07:05.0250 0x0500 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] C:\WINDOWS\system32\drivers\afd.sys
19:07:05.0250 0x0500 C:\WINDOWS\system32\drivers\afd.sys - ok
19:07:05.0265 0x0500 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] C:\WINDOWS\system32\drivers\netbios.sys
19:07:05.0281 0x0500 C:\WINDOWS\system32\drivers\netbios.sys - ok
19:07:05.0296 0x0500 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] C:\WINDOWS\system32\drivers\ssmdrv.sys
19:07:05.0296 0x0500 C:\WINDOWS\system32\drivers\ssmdrv.sys - ok
19:07:05.0328 0x0500 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] C:\WINDOWS\system32\drivers\rdbss.sys
19:07:05.0328 0x0500 C:\WINDOWS\system32\drivers\rdbss.sys - ok
19:07:05.0359 0x0500 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
19:07:05.0359 0x0500 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
19:07:05.0375 0x0500 [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] C:\WINDOWS\system32\drivers\fips.sys
19:07:05.0375 0x0500 C:\WINDOWS\system32\drivers\fips.sys - ok
19:07:05.0406 0x0500 [ A2EE407D6D3757A2FFD5095DD16AE1F2, BBFCC5DC116D6A3AF85591955541528DB0CB1FE81D353F717BE7CAD3F7F446F4 ] C:\WINDOWS\system32\drivers\avipbb.sys
19:07:05.0406 0x0500 C:\WINDOWS\system32\drivers\avipbb.sys - ok
19:07:05.0437 0x0500 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] C:\WINDOWS\system32\drivers\avkmgr.sys
19:07:05.0437 0x0500 C:\WINDOWS\system32\drivers\avkmgr.sys - ok
19:07:05.0468 0x0500 [ 5F816C1F539266D2D4C78694239DA0B5, 10BFCCF4EFFC3813A563D528DC5464827BEF10AE21D6B9C1138930228E7047D1 ] C:\WINDOWS\system32\smss.exe
19:07:05.0468 0x0500 C:\WINDOWS\system32\smss.exe - ok
19:07:05.0531 0x0500 [ F8F0D25CA553E39DDE485D8FC7FCCE89, 54DF909101AAEC63234A5C33B51D6689FEF58B943942BFFA9606864F43EC1085 ] C:\WINDOWS\system32\ntdll.dll
19:07:05.0531 0x0500 C:\WINDOWS\system32\ntdll.dll - ok
19:07:05.0562 0x0500 [ 23043C91A0F9DFB4B9E9F87B680863B4, 318A6F6DB4A1EDE7D3758E324350EA852449ABD2A7BB77004FBC403CF9FFB08B ] C:\WINDOWS\system32\autochk.exe
19:07:05.0562 0x0500 C:\WINDOWS\system32\autochk.exe - ok
19:07:05.0593 0x0500 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] C:\WINDOWS\system32\drivers\fastfat.sys
19:07:05.0593 0x0500 C:\WINDOWS\system32\drivers\fastfat.sys - ok
19:07:05.0625 0x0500 [ 9DD07AF82244867CA36681EA2D29CE79, 84926A50CB38C322D1CDFD4C0D5F8FFE3B2EF3080B3401F5D5AE8CBD0A719685 ] C:\WINDOWS\system32\sfcfiles.dll
19:07:05.0625 0x0500 C:\WINDOWS\system32\sfcfiles.dll - ok
19:07:05.0640 0x0500 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] C:\WINDOWS\system32\drivers\cdfs.sys
19:07:05.0640 0x0500 C:\WINDOWS\system32\drivers\cdfs.sys - ok
19:07:05.0656 0x0500 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] C:\WINDOWS\system32\drivers\atapi.sys
19:07:05.0656 0x0500 C:\WINDOWS\system32\drivers\atapi.sys - ok
19:07:05.0687 0x0500 [ 2F31B7F954BED437F2C75026C65CAF7B, 1F8D6CBB01AD403BC89D1E987012E2F63CDFD9C49F402F358B64B31C13E4DD14 ] C:\WINDOWS\system32\drivers\wmilib.sys
19:07:05.0687 0x0500 C:\WINDOWS\system32\drivers\wmilib.sys - ok
19:07:05.0718 0x0500 [ FE97D0343ACFDEBDD578FC67CC91FA87, FE26FBA13079189EF96A1C994036EA472A4BF34FA14C163C693AD481BF31E676 ] C:\WINDOWS\system32\drivers\dxapi.sys
19:07:05.0718 0x0500 C:\WINDOWS\system32\drivers\dxapi.sys - ok
19:07:05.0734 0x0500 [ 9A10AACBFDC4922715375FB4065EC930, E407953587C04F75DDB163420A5121FF520D31F74753D452E316042C42D360CF ] C:\WINDOWS\system32\watchdog.sys
19:07:05.0734 0x0500 C:\WINDOWS\system32\watchdog.sys - ok
19:07:05.0765 0x0500 [ 80AAA73D56272FD54DC6DE8643D10E9F, 0DC91699D5AF322C78AF7783CF3D55A1F561219EE32DC8DA186F2255704D52FC ] C:\WINDOWS\system32\win32k.sys
19:07:05.0765 0x0500 C:\WINDOWS\system32\win32k.sys - ok
19:07:05.0796 0x0500 [ 44F275C64738EA2056E3D9580C23B60F, 5D4B7306E71A44440E7F0B32A373AEC120C01B69F87756589E39EB85C40CD742 ] C:\WINDOWS\system32\csrss.exe
19:07:05.0796 0x0500 C:\WINDOWS\system32\csrss.exe - ok
19:07:05.0812 0x0500 [ DD40363ABAD230A84C5E2178B11EFA88, E4B406C0B10686CF245EC0053A03424CE1FB8AC7FB3545525F13BB3BC5086FF1 ] C:\WINDOWS\system32\csrsrv.dll
19:07:05.0812 0x0500 C:\WINDOWS\system32\csrsrv.dll - ok
19:07:05.0843 0x0500 [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
19:07:05.0843 0x0500 C:\WINDOWS\system32\basesrv.dll - ok
19:07:05.0875 0x0500 [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
19:07:05.0875 0x0500 C:\WINDOWS\system32\winsrv.dll - ok
19:07:05.0890 0x0500 [ AFFE0B7126A86603D3F49A19A5B7DC46, 63C91B4726F583C1DC1B3F26CC8DC39C519401CF0005F223EE17A363BDBEA22F ] C:\WINDOWS\system32\gdi32.dll
19:07:05.0890 0x0500 C:\WINDOWS\system32\gdi32.dll - ok
19:07:05.0921 0x0500 [ 4A45B692D2BAA74124DF57472D5EA2F1, DFC6B595BBADFEF4930CCCF48E9FE55551CF0891571257E3E0A0DE328077A89B ] C:\WINDOWS\system32\kernel32.dll
19:07:05.0921 0x0500 C:\WINDOWS\system32\kernel32.dll - ok
19:07:05.0953 0x0500 [ B26B135FF1B9F60C9388B4A7D16F600B, ACD0AE7B4D5F871E148276C6CC4AE3A216E33F67FC78D827C16986E1F945438C ] C:\WINDOWS\system32\user32.dll
19:07:05.0953 0x0500 C:\WINDOWS\system32\user32.dll - ok
19:07:05.0968 0x0500 [ AC7280566A7BB85CB3291F04DDC1198E, 7640BC4C28B5D5167A10C4B0DA0FC8C7A255334D4BA11FD3E28A697A5B58583C ] C:\WINDOWS\system32\drivers\dxg.sys
19:07:05.0968 0x0500 C:\WINDOWS\system32\drivers\dxg.sys - ok
19:07:06.0000 0x0500 [ A73F5D6705B1D820C19B18782E176EFD, C36486504C3A596FDCA487143F6D3B43C0BEE01321F6F1F3071976556533C419 ] C:\WINDOWS\system32\drivers\dxgthk.sys
19:07:06.0000 0x0500 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
19:07:06.0031 0x0500 [ ECB7591870F8BFB1A4C17B718AD5A4AA, 67E8D218F107F78F9C62999F560E47AEC799E4B4DC4AB3EBC0DC61670BFE3E3D ] C:\WINDOWS\system32\vga.dll
19:07:06.0031 0x0500 C:\WINDOWS\system32\vga.dll - ok
19:07:06.0046 0x0500 [ C669A8B0A436641AAD3C2EADA780CBB9, A2D8154A31D8AD00E4BC70C9C1E138D7D8820D7A5C0A1CF33A4745E933797525 ] C:\WINDOWS\system32\framebuf.dll
19:07:06.0046 0x0500 C:\WINDOWS\system32\framebuf.dll - ok
19:07:06.0078 0x0500 [ 1FB5E4AD68B9091148D2A28CF6831D77, 8ABF5F65F8509C633C24856C808854AE1AC8870A98B3DDBF9ED98B7D3CA48383 ] C:\WINDOWS\system32\vga256.dll
19:07:06.0078 0x0500 C:\WINDOWS\system32\vga256.dll - ok
19:07:06.0109 0x0500 [ D5A9D4E5DFD788A5F427DEC60A278FBD, 2E4F11FC9AC6761EA6D044E40A382B226C0E2B119416DD2B78D3B4B067983484 ] C:\WINDOWS\system32\vga64k.dll
19:07:06.0109 0x0500 C:\WINDOWS\system32\vga64k.dll - ok
19:07:06.0125 0x0500 [ ED0EF0A136DEC83DF69F04118870003E, 45377CB8E9F0120F836FC8261C711F7DBF7199117AFB3652EBF100D5F0429B1E ] C:\WINDOWS\system32\winlogon.exe
19:07:06.0125 0x0500 C:\WINDOWS\system32\winlogon.exe - ok
19:07:06.0140 0x0500 [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] C:\WINDOWS\system32\advapi32.dll
19:07:06.0140 0x0500 C:\WINDOWS\system32\advapi32.dll - ok
19:07:06.0171 0x0500 [ 44C164B34A72F29087ECA32411F2ED44, 112761CCEFE8F4B936AC58FF1F13589C0DBA3BE1AC348584D874B65DAB1EDED6 ] C:\WINDOWS\system32\rpcrt4.dll
19:07:06.0171 0x0500 C:\WINDOWS\system32\rpcrt4.dll - ok
19:07:06.0203 0x0500 [ 5357826C8A8DD6A07F17C48BB45BE46E, E081B04F8C8A31951A0ADEC889E6CA4DEED5FF738446D5A5614B11B113000BCA ] C:\WINDOWS\system32\secur32.dll
19:07:06.0203 0x0500 C:\WINDOWS\system32\secur32.dll - ok
19:07:06.0218 0x0500 [ 714705F29A917993536A6AB2DEDB0B7F, 5C3EA97044A7AF8027000DFA40901C0097EC935A7149C0A46AA2C6A2F9FD6CC1 ] C:\WINDOWS\system32\authz.dll
19:07:06.0218 0x0500 C:\WINDOWS\system32\authz.dll - ok
19:07:06.0250 0x0500 [ 355EDBB4D412B01F1740C17E3F50FA00, 8619D345C864CD8EA704EFAA0A391F5F31AA56BB6D30F62FC60F465873CC1BF9 ] C:\WINDOWS\system32\msvcrt.dll
19:07:06.0250 0x0500 C:\WINDOWS\system32\msvcrt.dll - ok
19:07:06.0281 0x0500 [ 636DF3FF20A1B69B3F9D21325E7115C7, 6B38CF96E92273995F40B6D7029D20B4041342D6EDD5B6CA73967A401823D4F5 ] C:\WINDOWS\system32\crypt32.dll
19:07:06.0281 0x0500 C:\WINDOWS\system32\crypt32.dll - ok
19:07:06.0312 0x0500 [ 04D898830DF96A17A20FD35D7590F87E, 09C75D1D434FF6BBE9B3F5E0A8E63944ACB34E364C4A89676DED2204DBD1AEF5 ] C:\WINDOWS\system32\msasn1.dll
19:07:06.0312 0x0500 C:\WINDOWS\system32\msasn1.dll - ok
19:07:06.0328 0x0500 [ 013C1148C1EC025596896E093F60F608, E19D20E0852372ED7DA66939E995F8F7ECC52ED5B650E8B833944788C0A34F61 ] C:\WINDOWS\system32\nddeapi.dll
19:07:06.0328 0x0500 C:\WINDOWS\system32\nddeapi.dll - ok
19:07:06.0359 0x0500 [ FCFA1C55971CC229D353B3A15ACCD995, 6C21D6EAD676AF8C100666261CE7AA5AA86671883B78092AD61008234C96BBBA ] C:\WINDOWS\system32\profmap.dll
19:07:06.0359 0x0500 C:\WINDOWS\system32\profmap.dll - ok
19:07:06.0375 0x0500 [ CAC752BF84DB4666ED3CE0948E6EA937, C84F9D57C076DE6ACC1720B66147D0CA963C65714593FAFD7FB1FE1F01CC464B ] C:\WINDOWS\system32\netapi32.dll
19:07:06.0375 0x0500 C:\WINDOWS\system32\netapi32.dll - ok
19:07:06.0406 0x0500 [ 43D13C80EBEC0135A3611E0F616F179B, 9C5409ECBD2C3B89C80F0A59B96220178E790A7D78967C6281D56EB1965E9ECD ] C:\WINDOWS\system32\userenv.dll
19:07:06.0406 0x0500 C:\WINDOWS\system32\userenv.dll - ok
19:07:06.0437 0x0500 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31, CC0A76B55B38183B8C6141C290D1858A9D118333C804784AB305FE76A0FCE775 ] C:\WINDOWS\system32\psapi.dll
19:07:06.0437 0x0500 C:\WINDOWS\system32\psapi.dll - ok
19:07:06.0468 0x0500 [ AF11C591F2F4AFF4A6CF699D376F618B, B61C0D1944D5D8F536AB5422017C99773BD89EA59784969E4F8F269BF9EF57C3 ] C:\WINDOWS\system32\regapi.dll
19:07:06.0468 0x0500 C:\WINDOWS\system32\regapi.dll - ok
19:07:06.0500 0x0500 [ 24192246760E0E64435522E246B1D6C2, B1C5A16A73250DEA900FF6ECE71F604E2411B4FDFD497564BEB7D867A75640BF ] C:\WINDOWS\system32\setupapi.dll
19:07:06.0500 0x0500 C:\WINDOWS\system32\setupapi.dll - ok
19:07:06.0515 0x0500 [ C7CE131408739B0B3A318BE2D0032719, CAEEED45F6BAB22F611B2200DC91E68426F169F5646247893CF3AC7EFDDD07B8 ] C:\WINDOWS\system32\version.dll
19:07:06.0515 0x0500 C:\WINDOWS\system32\version.dll - ok
19:07:06.0546 0x0500 [ 430CEB794F6E6EF8AC86958C242366D6, 48066566EDC18654095EAD7F4449CD42B44AD758465A6B36A42B489F32C7E64B ] C:\WINDOWS\system32\winsta.dll
19:07:06.0546 0x0500 C:\WINDOWS\system32\winsta.dll - ok
19:07:06.0593 0x0500 [ D458B738B4C2CE33174CFB2CE12412DB, C8FCA4B1BE8358B1F14BB25F39899A18804133544701DFCF40E8782C2487C912 ] C:\WINDOWS\system32\wintrust.dll
19:07:06.0593 0x0500 C:\WINDOWS\system32\wintrust.dll - ok
19:07:06.0625 0x0500 [ 16E916243BDDBAF44D98E623B2D0CEAD, A1C56AC378EDA9ACBE73342BEE0897E028BDD368288552108FC77A7AA1478690 ] C:\WINDOWS\system32\imagehlp.dll
19:07:06.0625 0x0500 C:\WINDOWS\system32\imagehlp.dll - ok
19:07:06.0640 0x0500 [ 2CCC474EB85CEAA3E1FA1726580A3E5A, 6E99D2FB4997E54E8B1B7D769CF2C0FAE296A6441DC39984850EA26BFEB7E500 ] C:\WINDOWS\system32\ws2_32.dll
19:07:06.0640 0x0500 C:\WINDOWS\system32\ws2_32.dll - ok
19:07:06.0703 0x0500 [ 9789E95E1D88EEB4B922BF3EA7779C28, 2D17FD78E71BDB5D51B69DE6B36D7481A7AA3C61EA7636CD71638AF501883A91 ] C:\WINDOWS\system32\ws2help.dll
19:07:06.0703 0x0500 C:\WINDOWS\system32\ws2help.dll - ok
19:07:06.0734 0x0500 [ 0DA85218E92526972A821587E6A8BF8F, 9377F61D4B10974D5962E03F54BB89C8F804883245D61C670E51228AFE4559EB ] C:\WINDOWS\system32\imm32.dll
19:07:06.0734 0x0500 C:\WINDOWS\system32\imm32.dll - ok
19:07:06.0765 0x0500 [ 56C5B179FE3308B655EB6208C3256FEC, C70BCE54E5DF47D37C835804EAAEC7C06C1A226EFA2003226BE290D1D552126F ] C:\WINDOWS\system32\kbdus.dll
19:07:06.0765 0x0500 C:\WINDOWS\system32\kbdus.dll - ok
19:07:06.0796 0x0500 [ D7B7A57C0E57C836F18CF12A4C62A1CA, 651B16027B4F4B0ED2F827E32B7E66188CDB023DB8C7B1A9A1A44063FB35B9DE ] C:\WINDOWS\system32\msgina.dll
19:07:06.0796 0x0500 C:\WINDOWS\system32\msgina.dll - ok
19:07:06.0812 0x0500 [ 93AFB83FBC1F9443CAC722FCA63D73BF, 853C4A03A153F232E5CAF219F7FD732CB82CB62171F077DE737B32169F7832AB ] C:\WINDOWS\system32\comctl32.dll
19:07:06.0812 0x0500 C:\WINDOWS\system32\comctl32.dll - ok
19:07:06.0843 0x0500 [ 40B0F98BAD16AD5DEF894E88C3EF8014, 916B7BFC23BB5A3F757160BCF2013A8260D9382EFDE6AADAFC4D297828C71003 ] C:\WINDOWS\system32\odbc32.dll
19:07:06.0843 0x0500 C:\WINDOWS\system32\odbc32.dll - ok
19:07:06.0875 0x0500 [ 86987A5000DFA3EBE2275C0456BCF2FE, 31B699E8FD11DD59ADBAE56650C1B7AE80484091B3B6D9015A95F590E2C3EB05 ] C:\WINDOWS\system32\comdlg32.dll
19:07:06.0875 0x0500 C:\WINDOWS\system32\comdlg32.dll - ok
19:07:06.0890 0x0500 [ 6843D54BC4A40CC8C5741AF750233D10, D998B54B7D23A986DD14D8BC56169A10EE43267F4F1914FBDD55B6B028993FAC ] C:\WINDOWS\system32\shell32.dll
19:07:06.0890 0x0500 C:\WINDOWS\system32\shell32.dll - ok
19:07:06.0906 0x0500 [ C448A248B743F5FB935C787A5D97268B, 26E88FF449F938B218FAED6D8F3F095577216A29D656D17ACEA7F6C16E638BED ] C:\WINDOWS\system32\shlwapi.dll
19:07:06.0906 0x0500 C:\WINDOWS\system32\shlwapi.dll - ok
19:07:06.0937 0x0500 [ 694503348B586E99D56C0E30AB5B3EF8, 53A0C2604574058F1520D8F0805F1247B15BB0E00A5B5BAFE027C702D55E5076 ] C:\WINDOWS\system32\sxs.dll
19:07:06.0937 0x0500 C:\WINDOWS\system32\sxs.dll - ok
19:07:06.0968 0x0500 [ 736B12B725AEB2B07F0241A9F680CB10, 9EF1406CAEE256117DA8C8904BCB20FB8F9421F02F812B4DC2CE1F16D2B315F2 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
19:07:06.0968 0x0500 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
19:07:07.0015 0x0500 [ 6B7C6B32F8E84D56C6260D684019FEA2, A10B4D413452D95B6B4087838F2FCE0B9F42D8C0CBE7A91DC080AE1163FB6D1A ] C:\WINDOWS\system32\odbcint.dll
19:07:07.0015 0x0500 C:\WINDOWS\system32\odbcint.dll - ok
19:07:07.0046 0x0500 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] C:\WINDOWS\system32\shsvcs.dll
19:07:07.0046 0x0500 C:\WINDOWS\system32\shsvcs.dll - ok
19:07:07.0062 0x0500 [ 59B408E5B8489B0B36A0D783D150EDCC, CB234B25502B0CE0C1E6CFA883FDDF64DAB7A6E50A6AD36CAB3B30A7C872B403 ] C:\WINDOWS\system32\ole32.dll
19:07:07.0062 0x0500 C:\WINDOWS\system32\ole32.dll - ok
19:07:07.0093 0x0500 [ 96E1C926F22EE1BFBAE82901A35F6BF3, 95568F138216FFADCFC4BAE8A12825FFE53F2EA04C5CAC2AD10F65FC0C4E3CDB ] C:\WINDOWS\system32\sfc.dll
19:07:07.0093 0x0500 C:\WINDOWS\system32\sfc.dll - ok
19:07:07.0125 0x0500 [ 6B5DB6789177A4FD0DEBC248041D0739, 3E3239C3613CCBB9EE2539D78BC745ED19134E1D3BED88C3D5273796FA2507DA ] C:\WINDOWS\system32\sfc_os.dll
19:07:07.0125 0x0500 C:\WINDOWS\system32\sfc_os.dll - ok
19:07:07.0140 0x0500 [ CF492D7E9AF1C628B3536D20EF6F5CC7, 3D7A5A5D6B804C0A3F3E7256B3AC19397567700271CABCD7C4C8B51565958BC8 ] C:\WINDOWS\system32\apphelp.dll
19:07:07.0140 0x0500 C:\WINDOWS\system32\apphelp.dll - ok
19:07:07.0156 0x0500 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
19:07:07.0156 0x0500 C:\WINDOWS\system32\services.exe - ok
19:07:07.0187 0x0500 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] C:\WINDOWS\system32\lsass.exe
19:07:07.0187 0x0500 C:\WINDOWS\system32\lsass.exe - ok
19:07:07.0218 0x0500 [ EC29A79F1E76DC509E24D401F29D0678, 2CECCD7CE806152F6DD1A6812C7DAEC46FB197E63D14414808D713C829EE4260 ] C:\WINDOWS\system32\ncobjapi.dll
19:07:07.0218 0x0500 C:\WINDOWS\system32\ncobjapi.dll - ok
19:07:07.0250 0x0500 [ BD31DC6DBE9333C4FBD4BDF0899F2160, 545D83178CCD74C68B72C607201EF9E1C8A5FC26A08288F8D3A77106964D1034 ] C:\WINDOWS\system32\lsasrv.dll
19:07:07.0250 0x0500 C:\WINDOWS\system32\lsasrv.dll - ok
19:07:07.0265 0x0500 [ F404830F3CD9BF8F2515E489C0CDA297, 4FFFBBDD04B82623983B8B51E52E113EBF0E32E8328BFD3754B7A299E5673569 ] C:\WINDOWS\system32\msvcp60.dll
19:07:07.0265 0x0500 C:\WINDOWS\system32\msvcp60.dll - ok
19:07:07.0296 0x0500 [ B24A42A413E694AD73FDFB7FBD492C31, 52411B5C714ED7FCFF3A120980EB75BF5A64E022303D3E717048E0E44F604AC0 ] C:\WINDOWS\system32\scesrv.dll
19:07:07.0296 0x0500 C:\WINDOWS\system32\scesrv.dll - ok
19:07:07.0328 0x0500 [ DD7BD97FB8BD800963789158A5E4B41D, 4C265CB9AC1B8C398E625C1775A5AADD8A030D158B557E24F90CA57C0253FF0D ] C:\WINDOWS\system32\mpr.dll
19:07:07.0328 0x0500 C:\WINDOWS\system32\mpr.dll - ok
19:07:07.0359 0x0500 [ EC4C0D9BFD9F7E33F8B395AD54E13063, 18E60FF334376604F213F3323FAB81F392493496C6CA809FAD66BB8B0EEB3396 ] C:\WINDOWS\system32\ntdsapi.dll
19:07:07.0359 0x0500 C:\WINDOWS\system32\ntdsapi.dll - ok
19:07:07.0375 0x0500 [ 2EDFC2A8893435723AD80481803C6D5C, CD547E4749EE6466FD4F50CF2EAD37AD993C6BC89068BD51726869D5ADB2AF8E ] C:\WINDOWS\system32\umpnpmgr.dll
19:07:07.0375 0x0500 C:\WINDOWS\system32\umpnpmgr.dll - ok
19:07:07.0390 0x0500 [ 389496118B3B03C2328024AF320132AC, 11F85CA49596CE12B1F80B5BC059B6F5549FC09A43E2C47841A688F2ACEBB8B8 ] C:\WINDOWS\system32\dnsapi.dll
19:07:07.0390 0x0500 C:\WINDOWS\system32\dnsapi.dll - ok
19:07:07.0421 0x0500 [ 1F03103598BD817B1078DAB1326DDE11, 0F0D19E67E25E9D2113920166B7326B46BACD22BA08476EC91D9C564AFC1FAF3 ] C:\WINDOWS\system32\shimeng.dll
19:07:07.0421 0x0500 C:\WINDOWS\system32\shimeng.dll - ok
19:07:07.0453 0x0500 [ 0492CF5870F0E616B0C71695A433D162, 47C9FB64A4CF3DF54F664B2B31A834ACF75B504650007E6201546C2D0E44D9C2 ] C:\WINDOWS\system32\wldap32.dll
19:07:07.0453 0x0500 C:\WINDOWS\system32\wldap32.dll - ok
19:07:07.0484 0x0500 [ EA9EE60B408878E5F2012F9C783836DB, 354A6660705759C0E767BCD7FB6F1B4371B74784A986431A626DF3793D0421EC ] C:\WINDOWS\AppPatch\acadproc.dll
19:07:07.0484 0x0500 C:\WINDOWS\AppPatch\acadproc.dll - ok
19:07:07.0515 0x0500 [ 8329A39D5A402A75A74301D6A62ECDA1, 1947B2B19F2D0C690EC880B5A92F88903D78C6BB6EE47261B3D744B5A863D562 ] C:\WINDOWS\system32\samlib.dll
19:07:07.0515 0x0500 C:\WINDOWS\system32\samlib.dll - ok
19:07:07.0531 0x0500 [ F05B8CDB7FE0E55DCCFB1D946CE80064, E59BC2F25EBFF5F0CF459C9B8DEE882ADE227323F4768EBACFCC6784861BF260 ] C:\WINDOWS\system32\samsrv.dll
19:07:07.0531 0x0500 C:\WINDOWS\system32\samsrv.dll - ok
19:07:07.0562 0x0500 [ 17A1D675C12BBF80CAAC54A4855C41D0, F6185E42180218E932ADFFD63EF78EE8324B816BD57EA217322A46D1D2F47928 ] C:\WINDOWS\system32\cryptdll.dll
19:07:07.0562 0x0500 C:\WINDOWS\system32\cryptdll.dll - ok
19:07:07.0593 0x0500 [ 310C15FD8358B2C4CD7A5B98A112883F, CA656F066373B164A138032F5BF7EF68603EBDB0D49BD4663C99061F47F29085 ] C:\WINDOWS\AppPatch\acgenral.dll
19:07:07.0593 0x0500 C:\WINDOWS\AppPatch\acgenral.dll - ok
19:07:07.0625 0x0500 [ 4A953F13942867BA8FB41F141EC1B80C, BAE05A8CEDA4411324E38DB8A2153A988C6A3FAC8AD7CB27EE14E18FE7C47569 ] C:\WINDOWS\system32\winmm.dll
19:07:07.0625 0x0500 C:\WINDOWS\system32\winmm.dll - ok
19:07:07.0640 0x0500 [ EFF03460E542EEA6B0ABDEC6BF19C897, C2A0DDE6E8B49B152C295E97CFC35557391DEEE5A3A0B1BB4E445C405C716C55 ] C:\WINDOWS\system32\oleaut32.dll
19:07:07.0640 0x0500 C:\WINDOWS\system32\oleaut32.dll - ok
19:07:07.0656 0x0500 [ 2098AB52BD5316E59AA36F3437B13BE6, C4C9F2CFCAFF91B4A6F68E28EFE12EED216B41F081F8D577597C0634ECE57018 ] C:\WINDOWS\system32\msacm32.dll
19:07:07.0656 0x0500 C:\WINDOWS\system32\msacm32.dll - ok
19:07:07.0687 0x0500 [ 7A2CC3719B255E6B5D74396183B7715B, 2C4A2D5B42CFFE42BE72A652D1B0EED43D7EECF7CA3416660A3E0C539AA2AC34 ] C:\WINDOWS\system32\uxtheme.dll
19:07:07.0687 0x0500 C:\WINDOWS\system32\uxtheme.dll - ok
19:07:07.0718 0x0500 [ F24B12786D60A17008319E3F2AEE7799, BF916F65D770C61612678171CC184A0BF259992CEC0BF607D26834CE2A234FB3 ] C:\WINDOWS\system32\msapsspc.dll
19:07:07.0718 0x0500 C:\WINDOWS\system32\msapsspc.dll - ok
19:07:07.0734 0x0500 [ 7A660EDC0757849DF5F8706FB6E9F740, CA3820507A92EE9AB4EE8E804736FE1795224AE02D396AADB5BFD53223D9B7E2 ] C:\WINDOWS\system32\msvcrt40.dll
19:07:07.0734 0x0500 C:\WINDOWS\system32\msvcrt40.dll - ok
19:07:07.0765 0x0500 [ 0F64207B49390C8063C36AE7CBF9C2DB, 52C4A7A38EE11CA247001EB0A3C67BFEB1A09E9AC406486132D5AC38BE3A6A6F ] C:\WINDOWS\system32\schannel.dll
19:07:07.0765 0x0500 C:\WINDOWS\system32\schannel.dll - ok
19:07:07.0796 0x0500 [ 3D76DD0CBC536E0F8C45D23ED230BEB2, F74F94525AB7CE1E269452C9E1DD08411A668CFDD94F069C90FC2EE33CB35A12 ] C:\WINDOWS\system32\digest.dll
19:07:07.0796 0x0500 C:\WINDOWS\system32\digest.dll - ok
19:07:07.0828 0x0500 [ A4388DF80E52695AE92EE5F3F61F1619, A4B7C6E10B92B5022CA6E8FD9094098614FD63178EA86A7B035EB89B373BF033 ] C:\WINDOWS\system32\msnsspc.dll
19:07:07.0828 0x0500 C:\WINDOWS\system32\msnsspc.dll - ok
19:07:07.0843 0x0500 [ 5733177BCF16EE78B99543C9B0AB81EA, 6504D3D665AC8AB27A44F863F9C1A23FF3B68EAC0512F418712CC0D56F739E24 ] C:\WINDOWS\system32\msctfime.ime
19:07:07.0843 0x0500 C:\WINDOWS\system32\msctfime.ime - ok
19:07:07.0875 0x0500 [ C6BB1D1500DB4A0E224CB65E6C7E8A80, 32099A486457D1DC3B1269DE9570EE922F118C3BD443FE78ED051DD764EF4DE3 ] C:\WINDOWS\system32\msprivs.dll
19:07:07.0875 0x0500 C:\WINDOWS\system32\msprivs.dll - ok
19:07:07.0890 0x0500 [ A525C96C51D55111FDF3BEA9FFFFC7AE, AA5B080E01573B96A37E67F871F97AE975E1E9519EDB16476472AA3FA2144643 ] C:\WINDOWS\system32\kerberos.dll
19:07:07.0890 0x0500 C:\WINDOWS\system32\kerberos.dll - ok
19:07:07.0921 0x0500 [ 318FAA70D9B0FB8DD168D4ED628E27B2, 2C407FFDA4A02D4A1CB9592C6FA4293BA31BE8852670436F1187A8107572ED41 ] C:\WINDOWS\system32\atmfd.dll
19:07:07.0921 0x0500 C:\WINDOWS\system32\atmfd.dll - ok
19:07:07.0953 0x0500 [ 517561A1113B04E51D936CD018DE1C1F, A5F572C3557705F28F7A465970F0432F55B616EFD208BA0CBDFFBF7A41F07C04 ] C:\WINDOWS\system32\msv1_0.dll
19:07:07.0953 0x0500 C:\WINDOWS\system32\msv1_0.dll - ok
19:07:07.0968 0x0500 [ AF07DC9B7CC455629E732340C7B15F3A, 4403503F24FB76AB55D347273319B98BC0955AB3E537FA5ADA498B9AED76484A ] C:\WINDOWS\system32\iphlpapi.dll
19:07:07.0968 0x0500 C:\WINDOWS\system32\iphlpapi.dll - ok
19:07:08.0000 0x0500 [ 1B7F071C51B77C272875C3A23E1E4550, 9D6EA6DF4F4A531E35B843CE11AB6BDBEF0C2716773C14660E98038C1F68B7C4 ] C:\WINDOWS\system32\netlogon.dll
19:07:08.0000 0x0500 C:\WINDOWS\system32\netlogon.dll - ok
19:07:08.0031 0x0500 [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] C:\WINDOWS\system32\w32time.dll
19:07:08.0031 0x0500 C:\WINDOWS\system32\w32time.dll - ok
19:07:08.0062 0x0500 [ 3AAF9B35939FF9E58CCD18D41655C2FC, AF7358AB0A507D77569A8D38D2392C224BFBEFD1264C069BBC6C677BC20C6B8B ] C:\WINDOWS\system32\wdigest.dll
19:07:08.0062 0x0500 C:\WINDOWS\system32\wdigest.dll - ok
19:07:08.0078 0x0500 [ 54DAE3EA34802B4ED9AE1C6B1209FA56, EEB1FA90DB44C821B371D5F7C323B4F88E843107BBA16DA2ACB124D6A848B257 ] C:\WINDOWS\system32\rsaenh.dll
19:07:08.0078 0x0500 C:\WINDOWS\system32\rsaenh.dll - ok
19:07:08.0109 0x0500 [ 02988B904C386B500CD08639C4C20EEA, 66E96045957AABD7F5C364D64DE23A09D4C292C844FA00C45626A8D1EC21F206 ] C:\WINDOWS\system32\winscard.dll
19:07:08.0109 0x0500 C:\WINDOWS\system32\winscard.dll - ok
19:07:08.0125 0x0500 [ 0E2735281FBB9A764D5584C2A5DCBA59, B1EFF5D7BFDDFEC3A3E5B2F17A6A0F3F47C344A64AB57E6918B4DEC094FC9444 ] C:\WINDOWS\system32\wtsapi32.dll
19:07:08.0125 0x0500 C:\WINDOWS\system32\wtsapi32.dll - ok
19:07:08.0156 0x0500 [ A86BB5E61BF3E39B62AB4C7E7085A084, B88446E007153BB58C5AE867AC3FB4C46618BBAA5A152687201E0E81F881465A ] C:\WINDOWS\system32\scecli.dll
19:07:08.0156 0x0500 C:\WINDOWS\system32\scecli.dll - ok
19:07:08.0171 0x0500 [ F581D2F3E30C1CA7206D660FB7689F98, 53647E017AE58788922F72285DD63E8CD2F9E922B31F7C6711E547BC6B360154 ] C:\WINDOWS\system32\drivers\avgntflt.sys
19:07:08.0171 0x0500 C:\WINDOWS\system32\drivers\avgntflt.sys - ok
19:07:08.0203 0x0500 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18, 2910EBC692D833D949BFD56059E8106D324A276D5F165F874F3FB1B6C613CDD5 ] C:\WINDOWS\system32\svchost.exe
19:07:08.0203 0x0500 C:\WINDOWS\system32\svchost.exe - ok
19:07:08.0234 0x0500 [ 549290DBC280C887681D7652978DBBE0, CA2CA8561F11CDD5FD5D23D9D88A96A7FFE4AF6DFE8CE783B0969B6ED3C4CBF8 ] C:\WINDOWS\system32\ntmarta.dll
19:07:08.0234 0x0500 C:\WINDOWS\system32\ntmarta.dll - ok
19:07:08.0265 0x0500 [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] C:\WINDOWS\system32\rpcss.dll
19:07:08.0265 0x0500 C:\WINDOWS\system32\rpcss.dll - ok
19:07:08.0281 0x0500 [ 16403217AB6FC5C30C14C6B12098AD4B, DEA7C556BA9C91E056E6035E77A793A77E428D493518D1C6F796B003D4F07305 ] C:\WINDOWS\system32\xpsp2res.dll
19:07:08.0281 0x0500 C:\WINDOWS\system32\xpsp2res.dll - ok
19:07:08.0312 0x0500 [ 6D4FEB43EE538FC5428CC7F0565AA656, 4091D82537198562F0CA1D032B2D4BEC75101342B7BCA7778FDA2D515300BC36 ] C:\WINDOWS\system32\eventlog.dll
19:07:08.0312 0x0500 C:\WINDOWS\system32\eventlog.dll - ok
19:07:08.0343 0x0500 [ F137A0CA70003DB20448D540651FA003, 4D3095FD8431D0839B6EE785A979D005A1035368A152CDC705804E85B7673198 ] C:\WINDOWS\system32\clbcatq.dll
19:07:08.0343 0x0500 C:\WINDOWS\system32\clbcatq.dll - ok
19:07:08.0375 0x0500 [ 1280A158C722FA95A80FB7AEBE78FA7D, 9B6E8158E581500C5C417F6453A6414901020123D34FDBC04289750E8B072538 ] C:\WINDOWS\system32\comres.dll
19:07:08.0375 0x0500 C:\WINDOWS\system32\comres.dll - ok
19:07:08.0390 0x0500 [ C9E370236E9FE10052FE536CC695D6D5, 0AA7F99080273975FDE12B300B0199317C374B7B78E17525F86EF38AA45CE935 ] C:\Documents and Settings\All Users\Application Data\{572AEF17-44EE-4628-95B5-4C1D51D77FED}\ipsecsnp.dll
19:07:08.0390 0x0500 C:\Documents and Settings\All Users\Application Data\{572AEF17-44EE-4628-95B5-4C1D51D77FED}\ipsecsnp.dll - ok
19:07:08.0421 0x0500 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23, 032B6D1F541F180A2FE619664EF180D3FD748AEF7E311BA925FCED74E7ED4713 ] C:\WINDOWS\system32\logonui.exe
19:07:08.0421 0x0500 C:\WINDOWS\system32\logonui.exe - ok
19:07:08.0437 0x0500 [ 8AF91E4B4C1F5338EBE1548117304296, 493F46CB43496B8158924229094374D4531DA32E3C77FF4F86FCB86DEACFB79B ] C:\WINDOWS\system32\wininet.dll
19:07:08.0437 0x0500 C:\WINDOWS\system32\wininet.dll - ok
19:07:08.0468 0x0500 [ 3D41A9326F0376FC73AF961DD23B1FB1, 1242F3B57599675D1E0E26615E206CE3DB15FA6A23BC5D21EB630EE9858EBC7B ] C:\WINDOWS\system32\duser.dll
19:07:08.0468 0x0500 C:\WINDOWS\system32\duser.dll - ok
19:07:08.0500 0x0500 [ AFFC87E2501FCE8F09D4C10BA6421CCF, E63837B281C4AE90A7CBA8E072E07A9A5A2FDD5B15E7FB5C2D7562FE72BE5408 ] C:\WINDOWS\system32\msimg32.dll
19:07:08.0500 0x0500 C:\WINDOWS\system32\msimg32.dll - ok
19:07:08.0531 0x0500 [ 10753A3ADC3E39A3B10CC3F08E98E6B4, 99C7B1B04CD593139917ED3D68BEC36C63BCE76663505CB5D026B62AF39BB383 ] C:\WINDOWS\system32\normaliz.dll
19:07:08.0531 0x0500 C:\WINDOWS\system32\normaliz.dll - ok
19:07:08.0546 0x0500 [ 1387AB5807E7A29D880699CC733F6AED, 0A3B777546E5F5EBC7914118D0BB32546279AEC726FED05519E0CF8F97DFA039 ] C:\WINDOWS\system32\urlmon.dll
19:07:08.0546 0x0500 C:\WINDOWS\system32\urlmon.dll - ok
19:07:08.0578 0x0500 [ 20200EE3CFE10E9F0C028D8653BE11C6, 3ACF2110D72509CBA3BF780C5D6D662BAFEEA6CA423BE8B0F97288B953127035 ] C:\WINDOWS\system32\oleacc.dll
19:07:08.0578 0x0500 C:\WINDOWS\system32\oleacc.dll - ok
19:07:08.0609 0x0500 [ 89A1EE0C4046375B4B9E0B010C90C802, 51D54DA31E30487E73B50F482F1A04F273BC812F3AB2C415D09CB44956097E11 ] C:\WINDOWS\system32\iertutil.dll
19:07:08.0609 0x0500 C:\WINDOWS\system32\iertutil.dll - ok
19:07:08.0625 0x0500 [ E5EDBD51476DB5001ABF5C82AE5C3DD1, 5C97ABF5802A7F886781788FE6107F9F06962F9D704A2A43A03062C9405F56C3 ] C:\WINDOWS\system32\shgina.dll
19:07:08.0625 0x0500 C:\WINDOWS\system32\shgina.dll - ok
19:07:08.0656 0x0500 [ 684559A03CBC1D05BA120A18B0D8BA5D, 7425F27C8EF8CEF26B071D7FD5FED538C74EF524AEF73E427B1781F3A3C16C42 ] C:\WINDOWS\system32\winhttp.dll
19:07:08.0656 0x0500 C:\WINDOWS\system32\winhttp.dll - ok
19:07:08.0671 0x0500 [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] C:\WINDOWS\system32\mswsock.dll
19:07:08.0671 0x0500 C:\WINDOWS\system32\mswsock.dll - ok
19:07:08.0703 0x0500 [ 5F6E19AD732BC449033F22B767464D8B, DEF2C9EE5A77B5070C79AE052B596CF65AF9893D5B5C03953B5FD5212C8DEE48 ] C:\Program Files\Avira\AntiVir Desktop\avsda.dll
19:07:08.0703 0x0500 C:\Program Files\Avira\AntiVir Desktop\avsda.dll - ok
19:07:08.0734 0x0500 [ 3CB32D3B8CBE79899D63280BB7A83CD9, F34DB3B3DD65F0135F1F7005703B824D2C9B17F7A43062F1FFBEC53B3B26EFC3 ] C:\WINDOWS\system32\hnetcfg.dll
19:07:08.0734 0x0500 C:\WINDOWS\system32\hnetcfg.dll - ok
19:07:08.0765 0x0500 [ 4E3D06D6E68EEDB52565080F55B460D3, A503BFC29D3936045488EDC1771914EC84BE80E422F772F53D7961F526D707E6 ] C:\WINDOWS\system32\wshtcpip.dll
19:07:08.0765 0x0500 C:\WINDOWS\system32\wshtcpip.dll - ok
19:07:08.0781 0x0500 [ D72B9EC3337B247A666F098F3D6B43DE, 4BC52AD1116078B0B313AB6555024302225D6CC03CA428151F78B7C48821489F ] C:\WINDOWS\system32\winrnr.dll
19:07:08.0781 0x0500 C:\WINDOWS\system32\winrnr.dll - ok
19:07:08.0812 0x0500 [ 6F9BEF24C578D5D6740E080BEDD6A448, 72426D49BC31488261D226C7D0C98AD11192019E71654F53D1D17183C328CC7C ] C:\WINDOWS\system32\rasadhlp.dll
19:07:08.0812 0x0500 C:\WINDOWS\system32\rasadhlp.dll - ok
19:07:08.0843 0x0500 [ 515A7FAE2070C2B0242B2353443E2F11, 6121C5613784831F584B50E8DC91BBD7AC58BDB602FE4CDB4B237670B6BB4537 ] C:\WINDOWS\system32\cscdll.dll
19:07:08.0843 0x0500 C:\WINDOWS\system32\cscdll.dll - ok
19:07:08.0859 0x0500 [ E2092F0A1D7ABC243F9C2362483D150D, 50028400D6BA1C5B27BFC9AAC9D41539383F3EC723977CA937715E14094D846A ] C:\WINDOWS\system32\dimsntfy.dll
19:07:08.0859 0x0500 C:\WINDOWS\system32\dimsntfy.dll - ok
19:07:08.0875 0x0500 [ 2CC34E8BB667EEF78899546E12649196, 5BA2604041BF7C1D580D4D2AEDC7708F9E9B0AF6E0928663E3D9C7297296D721 ] C:\WINDOWS\system32\wlnotify.dll
19:07:08.0875 0x0500 C:\WINDOWS\system32\wlnotify.dll - ok
19:07:08.0906 0x0500 [ BD83ABA61E8ACCC8D9FFB869F29418CE, 45ED22E825047A1BE07B017F95FBF965A90602C59E6B110D0C604FBE07DE1562 ] C:\WINDOWS\system32\winspool.drv
19:07:08.0906 0x0500 C:\WINDOWS\system32\winspool.drv - ok
19:07:08.0937 0x0500 [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] C:\WINDOWS\system32\WudfSvc.dll
19:07:08.0937 0x0500 C:\WINDOWS\system32\WudfSvc.dll - ok
19:07:08.0968 0x0500 [ 627B55FAD15C6B03B44198AFBEEBAB1A, C173AE4827D5AC0580751397D855E8D6F5B4267B40E7B40406C0EF572DD25AF6 ] C:\WINDOWS\system32\WgaLogon.dll
19:07:08.0968 0x0500 C:\WINDOWS\system32\WgaLogon.dll - ok
19:07:08.0984 0x0500 [ 5CAF91E865FE0C85048A233E594544D2, 23B16D6CB30E124D37949EFCF261BCD9D9872FE2F3852FC345F32283E3D04178 ] C:\WINDOWS\system32\WudfPlatform.dll
19:07:08.0984 0x0500 C:\WINDOWS\system32\WudfPlatform.dll - ok
19:07:09.0015 0x0500 [ 03A02D5A2D50198BDF6C62AF209438D0, 7A2577BB31B937436689EB8E3F415F71D3744209EFFC110C9B12C42025F36C88 ] C:\WINDOWS\system32\msxml3.dll
19:07:09.0015 0x0500 C:\WINDOWS\system32\msxml3.dll - ok
19:07:09.0046 0x0500 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] C:\WINDOWS\system32\drivers\ndisuio.sys
19:07:09.0046 0x0500 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
19:07:09.0078 0x0500 [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] C:\WINDOWS\system32\dhcpcsvc.dll
19:07:09.0078 0x0500 C:\WINDOWS\system32\dhcpcsvc.dll - ok
19:07:09.0109 0x0500 [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] C:\WINDOWS\system32\dnsrslvr.dll
19:07:09.0109 0x0500 C:\WINDOWS\system32\dnsrslvr.dll - ok
19:07:09.0125 0x0500 [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] C:\WINDOWS\system32\lmhsvc.dll
19:07:09.0125 0x0500 C:\WINDOWS\system32\lmhsvc.dll - ok
19:07:09.0140 0x0500 [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] C:\WINDOWS\system32\wzcsvc.dll
19:07:09.0140 0x0500 C:\WINDOWS\system32\wzcsvc.dll - ok
19:07:09.0171 0x0500 [ 876CCF164E08D6B903CD14398E056DD2, 9AC7887F992F20E10EB3ED9B3AEF47B5C840172FA7895531F4EF86D6EA642D0F ] C:\WINDOWS\system32\rtutils.dll
19:07:09.0171 0x0500 C:\WINDOWS\system32\rtutils.dll - ok
19:07:09.0203 0x0500 [ 7B0770526801F05D58C51A3DFB87B4BD, 7A2858DD3AE8C26DE88F8CC71E8DC9A8A50C363BA4FB34EE6EE2D81C18845A96 ] C:\WINDOWS\system32\wmi.dll
19:07:09.0203 0x0500 C:\WINDOWS\system32\wmi.dll - ok
19:07:09.0234 0x0500 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F, EC80729BDD250C161B29DA853D45C703CB4844DE185C5665DB0627D9568995AB ] C:\WINDOWS\system32\eapolqec.dll
19:07:09.0234 0x0500 C:\WINDOWS\system32\eapolqec.dll - ok
19:07:09.0250 0x0500 [ 224FB925C641DA16CEB6D60F40CA4C75, 2DDB3B019D2A22B359C5974DC366EC9B95F4382DB1BF7F1958CFF0EC277895C7 ] C:\WINDOWS\system32\atl.dll
19:07:09.0250 0x0500 C:\WINDOWS\system32\atl.dll - ok
19:07:09.0281 0x0500 [ 8AE93AACC648921BAACB8602991AC4B3, 78292B1BAEE64C997C50B6D907FE623C2EDF937A62D3C3690FA24342180B7AB2 ] C:\WINDOWS\system32\qutil.dll
19:07:09.0281 0x0500 C:\WINDOWS\system32\qutil.dll - ok
19:07:09.0312 0x0500 [ 8E2CC37BA87D8F681066E0E9C8A19F73, 90536FD502D92AE4FECE0C250373742D2E8AC9E9BE314070BB28C4A2BEA15508 ] C:\WINDOWS\system32\dot3api.dll
19:07:09.0312 0x0500 C:\WINDOWS\system32\dot3api.dll - ok
19:07:09.0343 0x0500 [ F5B754CDEA20BBB3A31E16A776EDE6D6, C5D682FA9B86810C6E3D741E507EDA024C4554BEB5B6A1686F70E109EE9CD746 ] C:\WINDOWS\system32\esent.dll
19:07:09.0343 0x0500 C:\WINDOWS\system32\esent.dll - ok
19:07:09.0359 0x0500 [ 085ED2E391A871C7BAE87E0228B546BA, 15C050965A7377CDE1178A0C28C3E05B16838A1D7DEB1DD190E3C5D58511F5AC ] C:\WINDOWS\system32\cscui.dll
19:07:09.0359 0x0500 C:\WINDOWS\system32\cscui.dll - ok
19:07:09.0375 0x0500 [ 50A166237A0FA771261275A405646CC0, CFA9B2C8CDCDB56C27B89593A106AAE211E24D8EA433129A6E9BD2FBF39AB5BB ] C:\WINDOWS\system32\powrprof.dll
19:07:09.0375 0x0500 C:\WINDOWS\system32\powrprof.dll - ok
19:07:09.0406 0x0500 [ A39BE37C9237DB5F1990D61B268EA555, ABAB9D73DF10D2AC78F00A6C5E5318C4DE166CDF70683408D83D218CB39B7449 ] C:\WINDOWS\system32\rastls.dll
19:07:09.0406 0x0500 C:\WINDOWS\system32\rastls.dll - ok
19:07:09.0437 0x0500 [ 3E2F3E2F4A82B7FAE23BAB864FB0F837, 78FEB881B5F1C90AD13DD69BB8C95CDF60C84E127871916D1EE8A938849E6282 ] C:\WINDOWS\system32\dpcdll.dll
19:07:09.0437 0x0500 C:\WINDOWS\system32\dpcdll.dll - ok
19:07:09.0453 0x0500 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3, 9085384DD71F983E7FD8B6C8F54A3097412DA3C802C813C8AAB1F30558C416D6 ] C:\WINDOWS\system32\cryptui.dll
19:07:09.0453 0x0500 C:\WINDOWS\system32\cryptui.dll - ok
19:07:09.0484 0x0500 [ EA5B8BECA3F279C757578CD7F1E95855, 6FA42A9C8A114208BCB1D0A799C43CD07FB0F986495191D58C1BBD150B7B3A90 ] C:\WINDOWS\system32\mprapi.dll
19:07:09.0484 0x0500 C:\WINDOWS\system32\mprapi.dll - ok
19:07:09.0515 0x0500 [ 2CDAE321B8E878A278BA2D2FA013060B, 51A382D665EB4A8BD66A3EF9B518DC02D3637318768758AB6F1017E50826CC56 ] C:\WINDOWS\system32\activeds.dll
19:07:09.0515 0x0500 C:\WINDOWS\system32\activeds.dll - ok
19:07:09.0546 0x0500 [ 0D84657DBF93DB98673DEFDF2B29E25A, 22105E297D663790BFA1EAE5AC670B283E69FDF2428DEBC596F3EB920E53AFF9 ] C:\WINDOWS\system32\adsldpc.dll
19:07:09.0546 0x0500 C:\WINDOWS\system32\adsldpc.dll - ok
19:07:09.0562 0x0500 [ 92C4F48B62B0B876194584C3FF09CCB6, B24FF5E8D4F09B8200395B68A20A083E7ED9A29B9E9FB85F42E1A6BBB911D1C4 ] C:\WINDOWS\system32\rasapi32.dll
19:07:09.0562 0x0500 C:\WINDOWS\system32\rasapi32.dll - ok
19:07:09.0593 0x0500 [ 4DEF926F6A0545AE486A03C84F2EE482, 2D209061632634D7338C0BBEEE8056E8085BE22FA6974A2CC6BAEDC14CF6F6B1 ] C:\WINDOWS\system32\rasman.dll
19:07:09.0593 0x0500 C:\WINDOWS\system32\rasman.dll - ok
19:07:09.0625 0x0500 [ A93AEE1928A9D7CE3E16D24EC7380F89, 944CD2135E171AF338352568AA7FE1B8004733A4281395AD6723E0CF43D5F53F ] C:\WINDOWS\system32\userinit.exe
19:07:09.0625 0x0500 C:\WINDOWS\system32\userinit.exe - ok
19:07:09.0640 0x0500 [ 00AABF131B4823785818DB99A075A313, FF0F24D35325EC246C758C7CF51FDDEF13757DFD7BE5F6F5D51E0DD7C6673686 ] C:\WINDOWS\system32\tapi32.dll
19:07:09.0640 0x0500 C:\WINDOWS\system32\tapi32.dll - ok
19:07:09.0656 0x0500 [ C1FAEA15E41F62D7BFA7FBC395C24BA6, 5DAA7F6E1EEA128AEDEDCAF04EB83AED4BCF856BC123BC134E9FA634DC569C0B ] C:\WINDOWS\system32\riched20.dll
19:07:09.0656 0x0500 C:\WINDOWS\system32\riched20.dll - ok
19:07:09.0687 0x0500 [ 12896823FB95BFB3DC9B46BCAEDC9923, 1E675CB7DF214172F7EB0497F7275556038A0D09C6E5A3E6862C5E26885EF455 ] C:\WINDOWS\explorer.exe
19:07:09.0687 0x0500 C:\WINDOWS\explorer.exe - ok
19:07:09.0718 0x0500 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] C:\WINDOWS\system32\schedsvc.dll
19:07:09.0718 0x0500 C:\WINDOWS\system32\schedsvc.dll - ok
19:07:09.0750 0x0500 [ E392E172687BE172F8600C5F41AB03D9, 5E928035FA9DB71FDCEB74D6D4859E43169A0B202A87653A2CE5F88865D13D2E ] C:\WINDOWS\system32\browseui.dll
19:07:09.0750 0x0500 C:\WINDOWS\system32\browseui.dll - ok
19:07:09.0765 0x0500 [ 56CE97FF94B7662A300D359CD6F4D601, D67A792E176AE3394CEB8FEF16F9E56DC614D7D4F58F6B9202E49EFD42BAE9E4 ] C:\WINDOWS\system32\raschap.dll
19:07:09.0765 0x0500 C:\WINDOWS\system32\raschap.dll - ok
19:07:09.0796 0x0500 [ 62BDF8E945F23BEE485BB3CB4ED19CB7, 392AADBC40E5D4B283AE962113D52A460AA0ACF707C16087F8B60B86D7F59FC3 ] C:\WINDOWS\system32\shdocvw.dll
19:07:09.0796 0x0500 C:\WINDOWS\system32\shdocvw.dll - ok
19:07:09.0828 0x0500 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] C:\WINDOWS\system32\netman.dll
19:07:09.0828 0x0500 C:\WINDOWS\system32\netman.dll - ok
19:07:09.0859 0x0500 [ 062F837C1FBDB6A0A75F82EFC2EE8E74, 3C0BFA381CBC2C55B58A8942A7148A6C27E244D26313EFB4708DD5858C689E02 ] C:\WINDOWS\system32\netshell.dll
19:07:09.0859 0x0500 C:\WINDOWS\system32\netshell.dll - ok
19:07:09.0875 0x0500 [ 235892E493845D64D890163CFEF90E97, 48FC98DD1E5F8F05DE6954FE26C0A448AA9838D7DC716518C715F35E3CFA227D ] C:\WINDOWS\system32\credui.dll
19:07:09.0875 0x0500 C:\WINDOWS\system32\credui.dll - ok
19:07:09.0890 0x0500 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C, 62E73A7D4C58F2E30670F6A72E734B618AF45F60A8CB2177A4D504283F829BE5 ] C:\WINDOWS\system32\dot3dlg.dll
19:07:09.0890 0x0500 C:\WINDOWS\system32\dot3dlg.dll - ok
19:07:09.0921 0x0500 [ CA04959077AFE36369D37B3504740C87, CBB90BC35A74EC03DC04CD60DAC966A9FA98DC9EEFB926089DBE7A47D3B710B1 ] C:\WINDOWS\system32\onex.dll
19:07:09.0953 0x0500 C:\WINDOWS\system32\onex.dll - ok
19:07:09.0984 0x0500 [ 5DB625E7D095604010CF84DE2D8ACFA6, DEED8055CD1F2E2D898C5C77283B56078414CC7D9FCA6FCF58BA0B66B565E826 ] C:\WINDOWS\system32\eappcfg.dll
19:07:09.0984 0x0500 C:\WINDOWS\system32\eappcfg.dll - ok
19:07:10.0015 0x0500 [ ABC4206543450C0666D152F4B65833B8, D78D5E719E7744805DF6DD1D9567E67E11223F4E3B13170E35F27D46FCB6C244 ] C:\WINDOWS\system32\eappprxy.dll
19:07:10.0015 0x0500 C:\WINDOWS\system32\eappprxy.dll - ok
19:07:10.0046 0x0500 [ 767FF54A552732CE772C2302025FA82F, 7761546C33B0E55B0A8214798FD035C2499D31D690CE03E25B0068C81EDECF3F ] C:\WINDOWS\system32\wzcsapi.dll
19:07:10.0046 0x0500 C:\WINDOWS\system32\wzcsapi.dll - ok
19:07:10.0062 0x0500 [ B4ED498E3BFEE64E952BC44FC6057DB8, 1FB5ABAE69103BF477F704189D75B0395F587234BFE94F9F79961D8FE2CE55AC ] C:\WINDOWS\system32\desk.cpl
19:07:10.0078 0x0500 C:\WINDOWS\system32\desk.cpl - ok
19:07:10.0093 0x0500 [ EE9710428FFB95FD3845D41E7148AC31, 5CFBE4B7BCCB136B958E21EACB965E09F7D6CC0CB29DEA9022047809582B1065 ] C:\WINDOWS\system32\themeui.dll
19:07:10.0093 0x0500 C:\WINDOWS\system32\themeui.dll - ok
19:07:10.0109 0x0500 [ E47E364C96467FD54FA44D59F927C3AB, D48C377A7ACF805C413D4618A099A50BE6724E8996C151B00DEAFD27CA935183 ] C:\WINDOWS\system32\msidle.dll
19:07:10.0109 0x0500 C:\WINDOWS\system32\msidle.dll - ok
19:07:10.0125 0x0500 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] C:\WINDOWS\system32\spoolsv.exe
19:07:10.0125 0x0500 C:\WINDOWS\system32\spoolsv.exe - ok
19:07:10.0156 0x0500 [ 912B67BB8249925A5C972FC5839EAE09, 11F9F26C2D5EADD683F9FA4FDC8C25A1FB7EE9D6E3F4419C9DAB8C4E434F1857 ] C:\WINDOWS\system32\actxprxy.dll
19:07:10.0156 0x0500 C:\WINDOWS\system32\actxprxy.dll - ok
19:07:10.0171 0x0500 [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] C:\WINDOWS\system32\audiosrv.dll
19:07:10.0187 0x0500 C:\WINDOWS\system32\audiosrv.dll - ok
19:07:10.0203 0x0500 [ FE2571A8C9FFAB1D45502D6B0BF472AA, 1442FC0180B555BC4F9B97B9A0D7674F75E67A6F61B87A6D690A20AE7D1EF360 ] C:\WINDOWS\system32\xp_eos.exe
19:07:10.0203 0x0500 C:\WINDOWS\system32\xp_eos.exe - ok
19:07:10.0234 0x0500 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] C:\Program Files\Avira\AntiVir Desktop\sched.exe
19:07:10.0234 0x0500 C:\Program Files\Avira\AntiVir Desktop\sched.exe - ok
19:07:10.0265 0x0500 [ 4044E880593FE1AC9942190FCE414BE7, 1EBD42F10592D57A2C8562C641461DE5288D9E900FE91A4A1800C9AB9034F2CD ] C:\WINDOWS\system32\mstask.dll
19:07:10.0265 0x0500 C:\WINDOWS\system32\mstask.dll - ok
19:07:10.0296 0x0500 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files\Google\Update\GoogleUpdate.exe
19:07:10.0296 0x0500 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
19:07:10.0312 0x0500 [ FD5CABBE52272BD76007B68186EBAF00, 87C42CA155473E4E71857D03497C8CBC28FA8FF7F2C8D72E8A1F39B71078F608 ] C:\Program Files\Avira\AntiVir Desktop\msvcp120.dll
19:07:10.0312 0x0500 C:\Program Files\Avira\AntiVir Desktop\msvcp120.dll - ok
19:07:10.0343 0x0500 [ 6D778E0F95447E6546553EEEA709D03C, 62ABED7D45040381BBCED97EA7B6C697B418448FD3322FD4BFB2BBFDB6155EB4 ] C:\WINDOWS\system32\cmd.exe
19:07:10.0343 0x0500 C:\WINDOWS\system32\cmd.exe - ok
19:07:10.0375 0x0500 [ FA4A79DBB0E3CA56E1F0B1FD372559A8, 87BBE8A70DB7C1E3F3A9F42112D5D3A81645FB23A4120DFB926AF7D089ACA462 ] C:\WINDOWS\system32\ieframe.dll
19:07:10.0375 0x0500 C:\WINDOWS\system32\ieframe.dll - ok
19:07:10.0390 0x0500 [ 5C2593649CF4FE6B9ED6F9A734DBF344, DBE8A6B2DAC8F166E08534EBE02D23FF7648E836CFCB507A41F51368CBA01BBE ] C:\Program Files\Google\Update\1.3.26.9\goopdate.dll
19:07:10.0390 0x0500 C:\Program Files\Google\Update\1.3.26.9\goopdate.dll - ok
19:07:10.0421 0x0500 [ 034CCADC1C073E4216E9466B720F9849, 86E39B5995AF0E042FCDAA85FE2AEFD7C9DDC7AD65E6327BD5E7058BC3AB615F ] C:\Program Files\Avira\AntiVir Desktop\msvcr120.dll
19:07:10.0421 0x0500 C:\Program Files\Avira\AntiVir Desktop\msvcr120.dll - ok
19:07:10.0453 0x0500 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4, C095D8A3A1CEAD1D78B0EE17B982718CDF4B3FE1F86D9D273875B8C1893C981B ] C:\WINDOWS\system32\wdmaud.drv
19:07:10.0453 0x0500 C:\WINDOWS\system32\wdmaud.drv - ok
19:07:10.0468 0x0500 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] C:\WINDOWS\system32\drivers\wdmaud.sys
19:07:10.0468 0x0500 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
19:07:10.0500 0x0500 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] C:\WINDOWS\system32\drivers\sysaudio.sys
19:07:10.0500 0x0500 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
19:07:10.0531 0x0500 [ 8C22083ED515DC94D575438662F0BE6A, 67DC2A393AE31764C090BE2AEFAD3E20220538152157BAEBF366112166FEAB23 ] C:\WINDOWS\system32\msi.dll
19:07:10.0531 0x0500 C:\WINDOWS\system32\msi.dll - ok
19:07:10.0562 0x0500 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] C:\WINDOWS\system32\drivers\splitter.sys
19:07:10.0562 0x0500 C:\WINDOWS\system32\drivers\splitter.sys - ok
19:07:10.0578 0x0500 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] C:\WINDOWS\system32\drivers\aec.sys
19:07:10.0578 0x0500 C:\WINDOWS\system32\drivers\aec.sys - ok
19:07:10.0609 0x0500 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] C:\WINDOWS\system32\drivers\swmidi.sys
19:07:10.0609 0x0500 C:\WINDOWS\system32\drivers\swmidi.sys - ok
19:07:10.0625 0x0500 [ B6E6F3F5B63053D5DC1F4EE32992492F, 089F9C92B677A138BABA4817624E8CA49B7E507B7D6FA0B1A3B4302B354B5C7E ] C:\WINDOWS\system32\dbghelp.dll
19:07:10.0625 0x0500 C:\WINDOWS\system32\dbghelp.dll - ok
19:07:10.0640 0x0500 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] C:\WINDOWS\system32\drivers\dmusic.sys
19:07:10.0640 0x0500 C:\WINDOWS\system32\drivers\dmusic.sys - ok
19:07:10.0671 0x0500 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] C:\WINDOWS\system32\drivers\kmixer.sys
19:07:10.0671 0x0500 C:\WINDOWS\system32\drivers\kmixer.sys - ok
19:07:10.0703 0x0500 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] C:\WINDOWS\system32\drivers\drmkaud.sys
19:07:10.0703 0x0500 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
19:07:10.0718 0x0500 [ 9A3BD5F55AADFF859539142F6328A66E, B8165F650F0E24D380601D54BC81A84C06D886A6CF995EA6CA63EABCFA75554A ] C:\WINDOWS\system32\msacm32.drv
19:07:10.0718 0x0500 C:\WINDOWS\system32\msacm32.drv - ok
19:07:10.0750 0x0500 [ 5C12660A97822F6E61576943B49AAAD6, 621BE8E009DC95A8901F701F529ED98BD8E6D62D272AE0E1FAF69889A4D5633B ] C:\WINDOWS\system32\midimap.dll
19:07:10.0750 0x0500 C:\WINDOWS\system32\midimap.dll - ok
19:07:10.0781 0x0500 [ C2DE80FD465871C2A40890EB2B62285C, 44EF6D381DAD1C9A4251B85F3F4F90AA0B2C06FA460645D2A6E69101BE228643 ] C:\Program Files\Avira\AntiVir Desktop\grdcore.dll
19:07:10.0781 0x0500 C:\Program Files\Avira\AntiVir Desktop\grdcore.dll - ok
19:07:10.0812 0x0500 [ 96E4B673436B573A7FD1D68BED0275EB, 925A127825954997EEF88368C4BCA0C66137429874E5433E9AB42B2BA2AAED25 ] C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll
19:07:10.0812 0x0500 C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll - ok
19:07:10.0828 0x0500 [ 0524617B73A8A6326AC72BA0A399DBEF, E44B57062D71362450812072F48A77513DF252AC64A7103898999277F8F84B13 ] C:\Program Files\Avira\AntiVir Desktop\cfglib.dll
19:07:10.0828 0x0500 C:\Program Files\Avira\AntiVir Desktop\cfglib.dll - ok
19:07:10.0859 0x0500 [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] C:\WINDOWS\system32\wkssvc.dll
19:07:10.0859 0x0500 C:\WINDOWS\system32\wkssvc.dll - ok
19:07:10.0875 0x0500 [ EE0C7887E6D18E09C02E1F96E63D3E23, 71B3B8279D820B8067BA6F35B876FCE3FC794A16A8F0D7B4C1120415B17FF1B0 ] C:\Program Files\Avira\AntiVir Desktop\gpipc.dll
19:07:10.0875 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpipc.dll - ok
19:07:10.0890 0x0500 [ 5667CF3FA45ADC4690C61A100BCD29CB, 2AFD27318ED8DEFF3A43FE80F3DAED8DC9FE9330D0E11C02888EC519FAB3C547 ] C:\Program Files\Avira\AntiVir Desktop\gpgen.dll
19:07:10.0890 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpgen.dll - ok
19:07:10.0921 0x0500 [ 83BB030C71C9727DCFB2737005772C4E, 5E1D6120D29B8E263C615142BB3EBA0C67A08C5431F444B993B0CBC6995D8B72 ] C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe
19:07:10.0921 0x0500 C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe - ok
19:07:10.0953 0x0500 [ A7BD47D060F9FC9379B6225A4AD4D724, 8EEAA7D5D5AB80242CFE27F334ECFAEB6559999A281E8F0C6DD341E5159873C7 ] C:\Program Files\Avira\AntiVir Desktop\gpschd.dll
19:07:10.0953 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpschd.dll - ok
19:07:10.0968 0x0500 [ 936F5D04F6AA342FCFB810A9AB276BCB, F24D7CE9A635ACA8DFAD95EA1B3CA99687C1B044C5BF1ABC5D1D8186D9A44F10 ] C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll
19:07:10.0968 0x0500 C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll - ok
19:07:11.0000 0x0500 [ B9B14FD18DAE43522AC19CAFA450C24D, 28571300FCC87E606A0E476DE332137310F4180546C7E1B169DFB599C6BC01AF ] C:\Program Files\Avira\AntiVir Desktop\schedr.dll
19:07:11.0000 0x0500 C:\Program Files\Avira\AntiVir Desktop\schedr.dll - ok
19:07:11.0046 0x0500 [ 7FD084EE8C3F0FA5D900F99CCE09171C, D11A64513FB5A98D1BF2B70E996AA722DF5F53CCC10E01048EF4F7E8147B7D88 ] C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
19:07:11.0046 0x0500 C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll - ok
19:07:11.0078 0x0500 [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{9EEB4598-1ADE-4AB3-9364-CF37D74BE362}.exe
19:07:11.0078 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{9EEB4598-1ADE-4AB3-9364-CF37D74BE362}.exe - ok
19:07:11.0109 0x0500 [ 9D45B2201D0ECF9F42136C7B99DEB8B2, 0251BE4C23EAACE2A9725243936C5E5AC4C0BCEE10EDE85017D91936FEE8CB31 ] C:\WINDOWS\system32\PortableDeviceApi.dll
19:07:11.0109 0x0500 C:\WINDOWS\system32\PortableDeviceApi.dll - ok
19:07:11.0125 0x0500 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] C:\WINDOWS\system32\drivers\mrxdav.sys
19:07:11.0125 0x0500 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
19:07:11.0140 0x0500 [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] C:\WINDOWS\system32\es.dll
19:07:11.0140 0x0500 C:\WINDOWS\system32\es.dll - ok
19:07:11.0171 0x0500 [ 79E3A8C328E7E569C32B0998377D9742, F5854956E452AD663004679BBDF8B006695B69C8962534CD243193F04F294DF3 ] C:\WINDOWS\system32\spoolss.dll
19:07:11.0171 0x0500 C:\WINDOWS\system32\spoolss.dll - ok
19:07:11.0203 0x0500 [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] C:\WINDOWS\system32\webclnt.dll
19:07:11.0203 0x0500 C:\WINDOWS\system32\webclnt.dll - ok
19:07:11.0234 0x0500 [ 5677DFE438EC1F009273FC84FEED6B10, 44B62CC4D138E13C22FC29E9751CB7ED0B0C6C8897A8E6469172F8642B0527BE ] C:\WINDOWS\system32\localspl.dll
19:07:11.0234 0x0500 C:\WINDOWS\system32\localspl.dll - ok
19:07:11.0250 0x0500 [ CC8915DB4E33E8FB29CA0D2DBF75306E, 6319C0580FFDA989A2726814667C330F6A5C864D34B8C87645DD5A98E7A2C7FB ] C:\WINDOWS\system32\webcheck.dll
19:07:11.0250 0x0500 C:\WINDOWS\system32\webcheck.dll - ok
19:07:11.0281 0x0500 [ 5D3D1AB0EF4EA55B731863050482C111, 8713DAA48DBC5FDF95BE993863BEE669BBB4026347DC575D72F520F423EE21BA ] C:\WINDOWS\system32\cnbjmon.dll
19:07:11.0281 0x0500 C:\WINDOWS\system32\cnbjmon.dll - ok
19:07:11.0312 0x0500 [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] C:\WINDOWS\system32\drivers\parvdm.sys
19:07:11.0312 0x0500 C:\WINDOWS\system32\drivers\parvdm.sys - ok
19:07:11.0343 0x0500 [ 37A7CEED6F019E25B4817F99893F050C, DFC9BB3900881B924475AF54CEB596F46152F69A1A61383A97FB77DE93E12397 ] C:\WINDOWS\system32\hpinksts6412LM.dll
19:07:11.0343 0x0500 C:\WINDOWS\system32\hpinksts6412LM.dll - ok
19:07:11.0359 0x0500 [ B714735C12A70171DE28657948FD91F1, DF7BF2D1BEBB016A8CB739EEE2670CF9F44A5CC2319A532E5C3DE0F5AA3AA144 ] C:\WINDOWS\system32\mlang.dll
19:07:11.0359 0x0500 C:\WINDOWS\system32\mlang.dll - ok
19:07:11.0375 0x0500 [ C2700D35AA42311A32DF7EA09630B401, 35B305916DB91EBC86CA70AF23140684F57CF527A0ADE099A79610335C61E861 ] C:\Program Files\Avira\AntiVir Desktop\avguard.exe
19:07:11.0375 0x0500 C:\Program Files\Avira\AntiVir Desktop\avguard.exe - ok
19:07:11.0406 0x0500 [ 2DC5A8019E2387987905F77C664E4BE2, 32FD8D0D3146A599CFB536955F9E93AA50467B2176A70E481133B61D4BD29AD9 ] C:\WINDOWS\system32\linkinfo.dll
19:07:11.0406 0x0500 C:\WINDOWS\system32\linkinfo.dll - ok
19:07:11.0437 0x0500 [ FB034DE7F0D706EBA9513D8ED7478ACB, 94F7D936AC1D69717B1EC1128E4F157C99F96C3808D26241BDCC8838B2AB4863 ] C:\WINDOWS\system32\HPDiscoPM6412.dll
19:07:11.0437 0x0500 C:\WINDOWS\system32\HPDiscoPM6412.dll - ok
19:07:11.0453 0x0500 [ A70A2D85AD143D6BB823C246CEB699A5, D8ED98DC2964A2DAF448893718E6381FBABAB53DD7497266851E0F4221F1B01F ] C:\WINDOWS\system32\ntshrui.dll
19:07:11.0453 0x0500 C:\WINDOWS\system32\ntshrui.dll - ok
19:07:11.0484 0x0500 [ 7B1FCF4422727428E8D81F8AE1D2DCD8, A4E9A941DD7DA0ADB670565D88DBCA23A87DEC62F7FBF58477C97530AA946FCC ] C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll
19:07:11.0484 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll - ok
19:07:11.0515 0x0500 [ 50512FC9B7878E3C2C147BC17326A7DB, 670006280CA98213C3A23B442615FD729C83953795619360F9D2988E56A602D7 ] C:\WINDOWS\system32\stobject.dll
19:07:11.0515 0x0500 C:\WINDOWS\system32\stobject.dll - ok
19:07:11.0546 0x0500 [ 199B34AA8DBBCFB402E6E16687DBF18A, 4AFB1B7D0A8C1869F5A0A995C6A587C9D04651820E97182353AE01233D681DC7 ] C:\Program Files\Avira\AntiVir Desktop\gpgui.dll
19:07:11.0546 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpgui.dll - ok
19:07:11.0578 0x0500 [ 231A0B0E3BA7ABFE469A8262FAA1FD71, 76F8AE2680438B279081EDFC2728E3785736E82A5C6396AA705BFFFF5C361294 ] C:\WINDOWS\system32\batmeter.dll
19:07:11.0578 0x0500 C:\WINDOWS\system32\batmeter.dll - ok
19:07:11.0593 0x0500 [ 2EC1533014F5376E55B53BA261783383, 81AF07716BDFB4AE75AB5F5604E5FF919D31E0380A11BA0779BE5B84A784134C ] C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll
19:07:11.0593 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll - ok
19:07:11.0625 0x0500 [ 72BC628AF75C4C3250F2A3BAC260265A, 8A7DA327FB053EF172F0FD57F9822CF165B93F4B224D6FEE663690694D9CAA80 ] C:\WINDOWS\system32\drivers\atksgt.sys
19:07:11.0625 0x0500 C:\WINDOWS\system32\drivers\atksgt.sys - ok
19:07:11.0640 0x0500 [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] C:\WINDOWS\system32\cryptsvc.dll
19:07:11.0640 0x0500 C:\WINDOWS\system32\cryptsvc.dll - ok
19:07:11.0671 0x0500 [ 045E228F71C31901084B64BE59093499, BA463D9EC2C2D266A34DBAC542CFA0403BFB03DDF3037FBD043BB691A8E493FA ] C:\WINDOWS\system32\WPDShServiceObj.dll
19:07:11.0671 0x0500 C:\WINDOWS\system32\WPDShServiceObj.dll - ok
19:07:11.0687 0x0500 [ 738CB62A1EFE32C755502F33D3BF6320, 88ED8904C6587740AC6F1F257EEB93C6ADDA94796CF2D1FD8D919B9AB724ED7E ] C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll
19:07:11.0687 0x0500 C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll - ok
19:07:11.0718 0x0500 [ 277F3E3333F1D10CA428568197FCCE70, 1AC24A8817396FA4172DC6216FBF82A1F6F8F9A1A1F87D6884FF17DCCB15C3FF ] C:\WINDOWS\system32\wsnmp32.dll
19:07:11.0718 0x0500 C:\WINDOWS\system32\wsnmp32.dll - ok
19:07:11.0750 0x0500 [ 00709952D444EAE14DBBD30D36FBAE0F, A65B57C68F9119940133F6680AF3644866EEBDA5378F9B6AED441FB999B50526 ] C:\WINDOWS\system32\certcli.dll
19:07:11.0750 0x0500 C:\WINDOWS\system32\certcli.dll - ok
19:07:11.0781 0x0500 [ 21F7F465848AB994E461759AA491FF36, DA0545E325E9EC7712BCC39E53BDE2A179FAB20E44039BF402AD599D8B064ED5 ] C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll
19:07:11.0781 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll - ok
19:07:11.0812 0x0500 [ 037B1E7798960E0420003D05BB577EE6, DEE53D6D332DADD40C0CE34A425A6C0781F611765DCD4299D869F2B1EE80AE66 ] C:\WINDOWS\system32\rundll32.exe
19:07:11.0812 0x0500 C:\WINDOWS\system32\rundll32.exe - ok
19:07:11.0828 0x0500 [ 31D8B705DCD5F2366186E731F87C7A71, D73DC732EF74C3C0EADD650B65BC6EEB44EA2C4E86BFD5BE989971A34FBA160A ] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:07:11.0828 0x0500 C:\Program Files\Common Files\LightScribe\LSSrvc.exe - ok
19:07:11.0875 0x0500 [ 5FCF0776C41A0DBC65C498C8E53CD950, F271C66A3AE0977B83102E9C90E27ED802174B1186BB0DBB2FD91CF26AABD81E ] C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll
19:07:11.0875 0x0500 C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll - ok
19:07:11.0890 0x0500 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] C:\WINDOWS\system32\srvsvc.dll
19:07:11.0890 0x0500 C:\WINDOWS\system32\srvsvc.dll - ok
19:07:11.0906 0x0500 [ 2CD31EE61D5D5329107FFDE66B8A00A5, 93C8264547920E3E3CDC9706CBF16178C59F87C8EC442DA9624A0560D88235D3 ] C:\Program Files\Common Files\LightScribe\LSSProxy.dll
19:07:11.0906 0x0500 C:\Program Files\Common Files\LightScribe\LSSProxy.dll - ok
19:07:11.0937 0x0500 [ 20FD44370267CCD0A64A1B31861C21D2, D98194A17D1C63434EC6449742C10033F1B94D80826B20464519B1DD4DE1DB5F ] C:\WINDOWS\system32\netmsg.dll
19:07:11.0937 0x0500 C:\WINDOWS\system32\netmsg.dll - ok
19:07:11.0968 0x0500 [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:07:11.0968 0x0500 C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll - ok
19:07:12.0000 0x0500 [ 982CF5C01E64879C18396CC08BF6BB17, 44E16471AD810BE16D6A5993DA7D210B843F53B4B98A65D1E69ADE91321A7956 ] C:\Program Files\Avira\AntiVir Desktop\gavidb.dll
19:07:12.0000 0x0500 C:\Program Files\Avira\AntiVir Desktop\gavidb.dll - ok
19:07:12.0031 0x0500 [ E50EF1A6E2A82160E470EE042AFCFB38, 7AD79663BA6081F861AD87E7C7545E1829433C56F57877508A5579937484A2EF ] C:\Program Files\Common Files\LightScribe\LSLog.dll
19:07:12.0031 0x0500 C:\Program Files\Common Files\LightScribe\LSLog.dll - ok
19:07:12.0046 0x0500 [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
19:07:12.0046 0x0500 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
19:07:12.0078 0x0500 [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] C:\WINDOWS\system32\ersvc.dll
19:07:12.0078 0x0500 C:\WINDOWS\system32\ersvc.dll - ok
19:07:12.0109 0x0500 [ 5C4ADB808B54126C1ED2FBA0EAE06C63, E1EC1F435C5B552DF878449AE2F81F74F9A33412088F0A7A5E2FE6EF99B656C9 ] C:\WINDOWS\system32\upnpui.dll
19:07:12.0109 0x0500 C:\WINDOWS\system32\upnpui.dll - ok
19:07:12.0125 0x0500 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
19:07:12.0125 0x0500 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
19:07:12.0156 0x0500 [ 3A4CA09CED248FE7C6B2AE83B94E5F81, BE9F59FE674A2FF00AD8673EA28380499313ECDC2BDA808471046BDC66DA7D9E ] C:\Program Files\Avira\AntiVir Desktop\systemutilities.dll
19:07:12.0156 0x0500 C:\Program Files\Avira\AntiVir Desktop\systemutilities.dll - ok
19:07:12.0171 0x0500 [ 3CBA2210FA39C6ED7895634842E930DD, 9AFC6A7E1F936ED3636F89FD49B5C944594F88A5BFB597348AF2FB83DA2E4E40 ] C:\WINDOWS\system32\sensapi.dll
19:07:12.0171 0x0500 C:\WINDOWS\system32\sensapi.dll - ok
19:07:12.0203 0x0500 [ 93C088C2AEB2F23E720BDA7E32BD5117, 7ECFCAF8E057986501B42181E049E48063D940A34A3F3E425FF82D2183008E90 ] C:\WINDOWS\system32\upnp.dll
19:07:12.0203 0x0500 C:\WINDOWS\system32\upnp.dll - ok
19:07:12.0234 0x0500 [ 4E460240CB29778F5F8C1FEB38806679, 81FA129A6C389F9DDBCFBE71A4469F9317F155C81A8A2FC644A0BBC1FE2FE071 ] C:\WINDOWS\system32\HPTcpMon.dll
19:07:12.0234 0x0500 C:\WINDOWS\system32\HPTcpMon.dll - ok
19:07:12.0265 0x0500 [ C9D985299655B1A4C80BEC4D60828F98, 2787D1D49AE3729026AE912CC7AAD0A5D7DE8381C05BABD1470152F7B4AF8665 ] C:\WINDOWS\system32\nvcpl.dll
19:07:12.0265 0x0500 C:\WINDOWS\system32\nvcpl.dll - ok
19:07:12.0281 0x0500 [ F4EE8311B432DDCC3FDEB141588ADA7A, 772905AF8BE1208ED95F1BA070AB1EDA1C02ED86F43C112514C14582A548143A ] C:\Program Files\Avira\AntiVir Desktop\win32apiwrapper.dll
19:07:12.0281 0x0500 C:\Program Files\Avira\AntiVir Desktop\win32apiwrapper.dll - ok
19:07:12.0312 0x0500 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] C:\WINDOWS\system32\drivers\srv.sys
19:07:12.0312 0x0500 C:\WINDOWS\system32\drivers\srv.sys - ok
19:07:12.0343 0x0500 [ 3D075865DCC26931972F6476AD0497BE, E1FB17787F54D9A4E2A04DD699FA770C9CE100A427E6EFBF4E0CF24EAAD3A9BA ] C:\WINDOWS\system32\ssdpapi.dll
19:07:12.0343 0x0500 C:\WINDOWS\system32\ssdpapi.dll - ok
19:07:12.0375 0x0500 [ EA82235F89F7EF4E698CE370F2ABC49C, 20FD25E810A5277C3CB7FC565A6922C793005B12F9801AFC930E1C16B7FBE6FD ] C:\Program Files\Avira\AntiVir Desktop\productutilities.dll
19:07:12.0375 0x0500 C:\Program Files\Avira\AntiVir Desktop\productutilities.dll - ok
19:07:12.0390 0x0500 [ EE142789631138C42112B5B757DDE6A9, 7DD9DA4A7F7D57CD53941A18C1E92A0D5042139080D667461DF3FBA44F2F990C ] C:\WINDOWS\system32\hpzjrd01.dll
19:07:12.0390 0x0500 C:\WINDOWS\system32\hpzjrd01.dll - ok
19:07:12.0421 0x0500 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{F4CED7C4-99BF-4CEE-8436-7E8B8AB4DEF4}.tmp
19:07:12.0421 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{F4CED7C4-99BF-4CEE-8436-7E8B8AB4DEF4}.tmp - ok
19:07:12.0453 0x0500 [ E2A611081DC6D6A13AD3A9DD2F291F30, E0F3D2937CE581B045378F0331BA5CF78B9D0D275A46B9223D4D4E67EC9915D6 ] C:\WINDOWS\system32\HPTcpMUI.dll
19:07:12.0453 0x0500 C:\WINDOWS\system32\HPTcpMUI.dll - ok
19:07:12.0468 0x0500 [ 4127E8B6DDB4090E815C1F8852C277D3, A5BC1F65FA6D8952CDDA08320ADDF0E4394E10AE4780017C8C86AC5E68DF83F8 ] C:\WINDOWS\system32\drivers\lirsgt.sys
19:07:12.0468 0x0500 C:\WINDOWS\system32\drivers\lirsgt.sys - ok
19:07:12.0500 0x0500 [ 5BB01B9F582259D1FB7653C5C1DA3653, 468F611A7729102EA493329B4389DEA316EB709C41A9EFA04DBA91CE367C496E ] C:\WINDOWS\system32\drivers\mcstrm.sys
19:07:12.0500 0x0500 C:\WINDOWS\system32\drivers\mcstrm.sys - ok
19:07:12.0531 0x0500 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{9C69CC47-EB37-40D6-A4D7-2177C504ECDF}.tmp
19:07:12.0531 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{9C69CC47-EB37-40D6-A4D7-2177C504ECDF}.tmp - ok
19:07:12.0562 0x0500 [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{B6198C61-91A2-4761-ADA8-57565ECA983E}.tmp
19:07:12.0562 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{B6198C61-91A2-4761-ADA8-57565ECA983E}.tmp - ok
19:07:12.0593 0x0500 [ 2E29382A55500168CD624F5268DEA1D4, E76489C96A0D409BD5270FC56D4271D9953ECE33B410A9BC0694F58F776B82AC ] C:\Program Files\Avira\AntiVir Desktop\rctext.dll
19:07:12.0593 0x0500 C:\Program Files\Avira\AntiVir Desktop\rctext.dll - ok
19:07:12.0609 0x0500 [ ADBB61BF0B9C97DE818090738EC71E57, 36F84A7504291BE58901028B38F4F30F57C2F4460F10D3ECD247F9D9B1A904C9 ] C:\WINDOWS\system32\HPTcpMib.dll
19:07:12.0609 0x0500 C:\WINDOWS\system32\HPTcpMib.dll - ok
19:07:12.0625 0x0500 [ 1E744353BD534405187A404667DA3DC3, ACE581FBF36BD511C64E37760526F1BB7172FD5045708BA836933D8FACC4FAFA ] C:\WINDOWS\system32\mgmtapi.dll
19:07:12.0625 0x0500 C:\WINDOWS\system32\mgmtapi.dll - ok
19:07:12.0656 0x0500 [ 5C1F0537E61F87B435F56E00B4F20EE8, AA4BAD8612F45125421C13536D6E7FB4C85BA6DE7D61BDE19949286FB1910B3D ] C:\WINDOWS\system32\snmpapi.dll
19:07:12.0656 0x0500 C:\WINDOWS\system32\snmpapi.dll - ok
19:07:12.0687 0x0500 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{CAAB65C5-5C5E-4101-B0EF-BFDA884F684C}.tmp
19:07:12.0687 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{CAAB65C5-5C5E-4101-B0EF-BFDA884F684C}.tmp - ok
19:07:12.0718 0x0500 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{10B5FE16-D1DF-4E62-BBC2-6969760BCDD4}.tmp
19:07:12.0718 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{10B5FE16-D1DF-4E62-BBC2-6969760BCDD4}.tmp - ok
19:07:12.0734 0x0500 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{EC60C3CA-136F-42EB-AFAD-C6AF3B2BA76F}.tmp
19:07:12.0734 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{EC60C3CA-136F-42EB-AFAD-C6AF3B2BA76F}.tmp - ok
19:07:12.0765 0x0500 [ FDB859F93C8491F961C3B9168FA90F51, 559C1D2FBFF758487FBEAA7956E3C63AFF0D639A90F4AE948CBA2B57A036FF55 ] C:\WINDOWS\system32\hpz3l054.dll
19:07:12.0765 0x0500 C:\WINDOWS\system32\hpz3l054.dll - ok
19:07:12.0796 0x0500 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{D27F8C6A-2565-4B28-BCC7-A29D695AAAC8}.tmp
19:07:12.0796 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{D27F8C6A-2565-4B28-BCC7-A29D695AAAC8}.tmp - ok
19:07:12.0828 0x0500 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{48DCB727-7570-433D-9BEB-95DEF7B52291}.tmp
19:07:12.0828 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{48DCB727-7570-433D-9BEB-95DEF7B52291}.tmp - ok
19:07:12.0859 0x0500 [ 8F02E5EEC33FD6E8C8AD58F16FFED286, A77ABAC425A85BF3E506A41CCA7E28BD19F9A6BB4504CC62B47F0C345612037F ] C:\WINDOWS\system32\hpz3l696.dll
19:07:12.0859 0x0500 C:\WINDOWS\system32\hpz3l696.dll - ok
19:07:12.0875 0x0500 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{F866D2E4-1720-4A8B-8CB1-37FA5481C37B}.tmp
19:07:12.0875 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{F866D2E4-1720-4A8B-8CB1-37FA5481C37B}.tmp - ok
19:07:12.0890 0x0500 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] C:\WINDOWS\system32\HPZinw12.dll
19:07:12.0890 0x0500 C:\WINDOWS\system32\HPZinw12.dll - ok
19:07:12.0921 0x0500 [ 222DE7F5EDB9DDBE628384A1A8BE59CE, 063AF8C6C251961ABC93A8E8A07DB9B9582CD1812CA3BB297FAFDF0AD3E5B4CC ] C:\WINDOWS\system32\pjlmon.dll
19:07:12.0921 0x0500 C:\WINDOWS\system32\pjlmon.dll - ok
19:07:12.0953 0x0500 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{DC22F6CE-7D51-4A9D-9B6A-D3F02BF8E417}.tmp
19:07:12.0953 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{900C419F-D973-4CE5-ABD0-6BD0253861AD}\{DC22F6CE-7D51-4A9D-9B6A-D3F02BF8E417}.tmp - ok
19:07:12.0984 0x0500 [ 67156D5A9AC356DC99D7BCCB388E3316, 449A140065197779C0F8588E5C53014BBF54A9C74818D5CFDCB88CC7B36F44CF ] C:\WINDOWS\system32\wsock32.dll
19:07:12.0984 0x0500 C:\WINDOWS\system32\wsock32.dll - ok
19:07:13.0015 0x0500 [ AE0382AD9C73D343D85E1A50C80B7C20, 7477A5A33C0ACF80BE73F0169893A7D53AF8ABC514FCE190A6ACC677092E5A55 ] C:\WINDOWS\system32\tcpmon.dll
19:07:13.0015 0x0500 C:\WINDOWS\system32\tcpmon.dll - ok
19:07:13.0031 0x0500 [ 538A270F35A713C360B7ED4168BB7521, 47D8784C811FCADD1E78A907AF56D3D0FA5ABE9AC7DA7CB41AF60D304CAA06BA ] C:\WINDOWS\system32\mydocs.dll
19:07:13.0031 0x0500 C:\WINDOWS\system32\mydocs.dll - ok
19:07:13.0062 0x0500 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] C:\WINDOWS\system32\HPZipm12.dll
19:07:13.0062 0x0500 C:\WINDOWS\system32\HPZipm12.dll - ok
19:07:13.0093 0x0500 [ F26385E8BA4549B5186B774EC0E45D86, 0BA8CA4C06918690EA68678CA5887F1B7E2B0976C99BDFAF99CC1C99F3E300A0 ] C:\WINDOWS\system32\usbmon.dll
19:07:13.0093 0x0500 C:\WINDOWS\system32\usbmon.dll - ok
19:07:13.0125 0x0500 [ 332760FBA1655FCFD35BD6F4FD871300, 6C539FD14B9CF9423E305EAF60CB5C12CA0F7AEF571FB09BAF64E83F108B7F2D ] C:\WINDOWS\system32\ipsecsvc.dll
19:07:13.0125 0x0500 C:\WINDOWS\system32\ipsecsvc.dll - ok
19:07:13.0125 0x0500 [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] C:\WINDOWS\system32\seclogon.dll
19:07:13.0125 0x0500 C:\WINDOWS\system32\seclogon.dll - ok
19:07:13.0156 0x0500 [ DF8444A8FA8FD38D8848BDD40A8403B3, AD61EA0F35E91646F544BC2DDD3AAC51CC21950CBCC9FBACFCF5A03F17105FEF ] C:\WINDOWS\system32\drivers\tmcomm.sys
19:07:13.0156 0x0500 C:\WINDOWS\system32\drivers\tmcomm.sys - ok
19:07:13.0187 0x0500 [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] C:\WINDOWS\system32\wiaservc.dll
19:07:13.0187 0x0500 C:\WINDOWS\system32\wiaservc.dll - ok
19:07:13.0218 0x0500 [ 584C4DA856450CB22EBBE7A68CC6250F, 56030767CFD2DAFDAE8CC767DC1EED39DD2E6E42152BFAE7904C2C8826B2C3E2 ] C:\WINDOWS\system32\oakley.dll
19:07:13.0218 0x0500 C:\WINDOWS\system32\oakley.dll - ok
19:07:13.0234 0x0500 [ 248712EA6BA17B9FF0C542A3828375DD, 03EFDE351860C4C49F42D6129C6A6F2B3FC859C20F14FE0652F9C4FBD81244B4 ] C:\WINDOWS\system32\winipsec.dll
19:07:13.0234 0x0500 C:\WINDOWS\system32\winipsec.dll - ok
19:07:13.0265 0x0500 [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] C:\WINDOWS\system32\srsvc.dll
19:07:13.0265 0x0500 C:\WINDOWS\system32\srsvc.dll - ok
19:07:13.0296 0x0500 [ 60D44EF1CB5F41160E9D0A7E637CC8AA, AE38FD3C7F7F8FE64AD0C755894F26E8593C6640910DC524E16083B79141AA11 ] C:\WINDOWS\system32\nwiz.exe
19:07:13.0296 0x0500 C:\WINDOWS\system32\nwiz.exe - ok
19:07:13.0328 0x0500 [ 853D0D0C6F02D7BFDF1CF99DD7553732, AC761B4CA518B787CB2C18101606E5F64245049D140C72B6B1112556DEC86B2E ] C:\WINDOWS\system32\pstorsvc.dll
19:07:13.0328 0x0500 C:\WINDOWS\system32\pstorsvc.dll - ok
19:07:13.0343 0x0500 [ 5F0CE62E0831CF972EC6949FD3E37DA7, DFDD251D3FC6CDBD971F52EF0AECEC0344B57214615AA486AA9234D30A40AF60 ] C:\WINDOWS\system32\cfgmgr32.dll
19:07:13.0343 0x0500 C:\WINDOWS\system32\cfgmgr32.dll - ok
19:07:13.0375 0x0500 [ 22D89D84E8E081CDA529DBF8C0255A38, 26863A2D27BE257D99EF28A612FC1B514558B27002EF10B0F682BC15C6D1CD74 ] C:\WINDOWS\system32\psbase.dll
19:07:13.0375 0x0500 C:\WINDOWS\system32\psbase.dll - ok
19:07:13.0390 0x0500 [ 4B410E9DBC93846D2E6C9EBDE8304845, 388DB63E5C51A4196FA9E2B4B4EF49280EA84FAF432286A018C8ABDBF01F6AD4 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp054.dll
19:07:13.0390 0x0500 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp054.dll - ok
19:07:13.0421 0x0500 [ 711561440FDC396CB6E4C69C13375A38, 42489100F9E0CCED6CC3C7A6CCE6FDF4EF31A773D7D39A24F06DB2DCBAAA1E87 ] C:\Program Files\ShowMyPCService\tvnserver.exe
19:07:13.0421 0x0500 C:\Program Files\ShowMyPCService\tvnserver.exe - ok
19:07:13.0437 0x0500 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1, 502B9D43EB6305508E8CDF034528C3F1DDF4525727C1B7663EA835BE2307FF20 ] C:\WINDOWS\system32\mscms.dll
19:07:13.0437 0x0500 C:\WINDOWS\system32\mscms.dll - ok
19:07:13.0468 0x0500 [ 938B769AE6EC8EA502C375391634F051, 6E438D14C64F10F6D5F36E54C52AE84F4798B6DC0B2ABE359FD026630A2391E6 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp696.dll
19:07:13.0468 0x0500 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp696.dll - ok
19:07:13.0500 0x0500 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] C:\WINDOWS\system32\sens.dll
19:07:13.0500 0x0500 C:\WINDOWS\system32\sens.dll - ok
19:07:13.0531 0x0500 [ FEDE68BF80052BAD393AFD5C2E60DCB0, 6A40D89524317C554C5C33A35FB659147A3118F4C646AB36653A19A8811627CB ] C:\WINDOWS\system32\dssenh.dll
19:07:13.0531 0x0500 C:\WINDOWS\system32\dssenh.dll - ok
19:07:13.0562 0x0500 [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] C:\WINDOWS\system32\trkwks.dll
19:07:13.0562 0x0500 C:\WINDOWS\system32\trkwks.dll - ok
19:07:13.0578 0x0500 [ EEE7F12D9FF46F68FBC0DA059A359E9E, 1D0D5AC87ACDF3F041D9C31A92BFE7B1B81CBAD81F8F7CE8183FC3F61CAFF8CC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
19:07:13.0578 0x0500 C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
19:07:13.0609 0x0500 [ 6F56256F5ABF9896DFEA304972F34A16, B79D346887D2B2F3212808A2B25EFD9493B6C466C06FAAFE7F21053FE0EAFD28 ] C:\WINDOWS\system32\nview.dll
19:07:13.0609 0x0500 C:\WINDOWS\system32\nview.dll - ok
19:07:13.0625 0x0500 [ 22358578CB321F3325496A3723029409, 44535E0EFC20714CEF8FFAE51294CFC6AC53F12E464E048ECD92CDC2CA54A312 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
19:07:13.0625 0x0500 C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
19:07:13.0656 0x0500 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C, 7123FC923BA4C3DD3EDFE9F8936442C4CCE7757D370AB799B0B5668223B965EE ] C:\WINDOWS\system32\win32spl.dll
19:07:13.0656 0x0500 C:\WINDOWS\system32\win32spl.dll - ok
19:07:13.0671 0x0500 [ AD26D98C35CA98DE4B3388AFA158FA54, 07509510C4B7E8C19046DA03C24CD158077CD96B721670213A118510277E6BB0 ] C:\WINDOWS\system32\nvmctray.dll
19:07:13.0671 0x0500 C:\WINDOWS\system32\nvmctray.dll - ok
19:07:13.0703 0x0500 [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] C:\WINDOWS\system32\wbem\wmisvc.dll
19:07:13.0703 0x0500 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
19:07:13.0734 0x0500 [ BAF754CF5B70D78088CA59E84D1C41EE, 1BE9ADFF807D0CD7B8757DF9EC45DCF0CA8474321FE2DCE816B925D713CEA863 ] C:\WINDOWS\system32\HPWia1_OJ4620.dll
19:07:13.0734 0x0500 C:\WINDOWS\system32\HPWia1_OJ4620.dll - ok
19:07:13.0765 0x0500 [ B41D53899E37CC43DA85DA19998BEE81, CA92B8313338F0F8B1B630A0057B9C114E8D8BC10F09825C9008A5A824B91FDC ] C:\WINDOWS\system32\netrap.dll
19:07:13.0765 0x0500 C:\WINDOWS\system32\netrap.dll - ok
19:07:13.0781 0x0500 [ ACACB8B14E66109B8ACD6644B5574B9A, 2373E67EB51F8045E7CD346F75B4BAD093E29CC609955BBC4C9FEF7A97A5FD86 ] C:\WINDOWS\system32\vssapi.dll
19:07:13.0781 0x0500 C:\WINDOWS\system32\vssapi.dll - ok
19:07:13.0812 0x0500 [ 5D4D2606B988DAFBD8493348AC830653, 50E2BCB822F56CF919E49E137710DFA8C82FC82031AA369472B528962D65BE53 ] C:\WINDOWS\system32\nvwddi.dll
19:07:13.0812 0x0500 C:\WINDOWS\system32\nvwddi.dll - ok
19:07:13.0843 0x0500 [ EE4C651A217B01D636B5364AC77DA892, E40C7DD39234673A3BA8FD87C189653C391E326ECB3E8011B5020BB9D78F56D0 ] C:\WINDOWS\system32\inetpp.dll
19:07:13.0843 0x0500 C:\WINDOWS\system32\inetpp.dll - ok
19:07:13.0875 0x0500 [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] C:\WINDOWS\system32\browser.dll
19:07:13.0875 0x0500 C:\WINDOWS\system32\browser.dll - ok
19:07:13.0890 0x0500 [ 1819CADD6DB2EBE75875042CF1D272D5, 02368D45DA3D5C24A2BE2C3955A16937E80EC548901EA1F6532AB52AF3E17FC6 ] C:\WINDOWS\system32\HPScanTRDrv_OJ4620.dll
19:07:13.0890 0x0500 C:\WINDOWS\system32\HPScanTRDrv_OJ4620.dll - ok
19:07:13.0906 0x0500 [ 9306F50AB4F21E4782E41EA8C43F5350, 930F8F6702543945D838D823338DD6A2CE87FFF46DACB4C76E4F49B16FC2487D ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
19:07:13.0906 0x0500 C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe - ok
19:07:13.0937 0x0500 [ B0DD232BA44411D2218BE1D28AD2B90A, 98F7D46B3F58F17AC039BCB4447C6D28B27FFFFF6A047D56FFAF379FA4A0239C ] C:\Program Files\Avira\AntiVir Desktop\avipc.dll
19:07:13.0937 0x0500 C:\Program Files\Avira\AntiVir Desktop\avipc.dll - ok
19:07:13.0968 0x0500 [ 18323688FCFED4332E3D6E9FC601878E, E72A3B601B919C31B7422DE89517C7F2DD897355CB9418C74667F0E1A07DC0F3 ] C:\Program Files\Avira\AntiVir Desktop\avlode.dll
19:07:13.0968 0x0500 C:\Program Files\Avira\AntiVir Desktop\avlode.dll - ok
19:07:14.0000 0x0500 [ ED0C0DF222209E43AD9AFBF3FE87DDE0, 927329F9244DA9F0074FA0D4C101EE793AFCF433155E58714C33444C5EF35014 ] C:\WINDOWS\system32\comsvcs.dll
19:07:14.0000 0x0500 C:\WINDOWS\system32\comsvcs.dll - ok
19:07:14.0015 0x0500 [ 690D97864735E8ECD87F55777E266690, 2098D2AADEF82C3EDD82FD6182C14568CDE1EF02205ED1EA4CB19252B74BB807 ] C:\WINDOWS\system32\colbact.dll
19:07:14.0015 0x0500 C:\WINDOWS\system32\colbact.dll - ok
19:07:14.0046 0x0500 [ 36795A645EAA47FE31D2A8F136A2C69B, D681D7DFC4A2A2F10658D76A93F009BDBFC6117E245E0883C509A286DC952EAD ] C:\WINDOWS\system32\mtxclu.dll
19:07:14.0046 0x0500 C:\WINDOWS\system32\mtxclu.dll - ok
19:07:14.0078 0x0500 [ 43C917A76F30F8A6AE522BAC0D48695E, 36AF06FD4CD24EDFB18C4E0A7CE38F5C61531C2591C462CAF65BC8E7F015A5CE ] C:\Program Files\Avira\AntiVir Desktop\apcfile.dll
19:07:14.0078 0x0500 C:\Program Files\Avira\AntiVir Desktop\apcfile.dll - ok
19:07:14.0109 0x0500 [ DF82E222578DBE59FCBBD69A02E4C806, 0F0CD9DC739500536F252475F84F8EF378428CAC7DD9CFCDEC676862A20A0C46 ] C:\WINDOWS\system32\clusapi.dll
19:07:14.0109 0x0500 C:\WINDOWS\system32\clusapi.dll - ok
19:07:14.0125 0x0500 [ B918B4FBA7E16B0F2A0EDED3C22CA5AB, 6F8D4A2B796E47880CD9ADF2DE6949A420133CBEC534EEF36FE1E7D0C5FD3A11 ] C:\Program Files\Avira\AntiVir Desktop\libcurl.dll
19:07:14.0125 0x0500 C:\Program Files\Avira\AntiVir Desktop\libcurl.dll - ok
19:07:14.0140 0x0500 [ F51EBB6FC536A6B2D588FD668D3A8249, 6C22B5FBE3F721025879447B006EC5A343D482A87E23674B5A3BB43983AB328E ] C:\WINDOWS\system32\resutils.dll
19:07:14.0140 0x0500 C:\WINDOWS\system32\resutils.dll - ok
19:07:14.0171 0x0500 [ C4F9FD9419961D401B3508E67A4C3EF7, 06BED14F97952DF05812CE87432438E7E2D27BFE0D2728DDF44A67784B02D08C ] C:\Program Files\Avira\AntiVir Desktop\libeay32.dll
19:07:14.0171 0x0500 C:\Program Files\Avira\AntiVir Desktop\libeay32.dll - ok
19:07:14.0203 0x0500 [ F8B91C91225E5CAA2B2F0370201021C0, 5EF4546D723EFAA97921CFF273FECD78AF9B7740359A5F80375A4272C3D2E7C5 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
19:07:14.0203 0x0500 C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe - ok
19:07:14.0234 0x0500 [ C4A57B23C3F426194AF1E6934ED8B190, C85F87C48CA2C2064576854C40931A4FB4C76F1F438CF39887B7A78EF9E187DD ] C:\Program Files\Avira\AntiVir Desktop\ssleay32.dll
19:07:14.0234 0x0500 C:\Program Files\Avira\AntiVir Desktop\ssleay32.dll - ok
19:07:14.0250 0x0500 [ AF21FBB2E2F88EB29CC23BCA825642FA, 794243BF93693F7F567C6835666CAFD284DC9E1ABF36377F22CE15194A6B05E5 ] C:\Program Files\Avira\AntiVir Desktop\libaprutil-1.dll
19:07:14.0250 0x0500 C:\Program Files\Avira\AntiVir Desktop\libaprutil-1.dll - ok
19:07:14.0281 0x0500 [ EACF0FEB2E38F0F790D73D08826B6567, 150F0DE074DF066A59CEA55CE4549FC6BAF9E2CDDE3C8795937A082CEC07642D ] C:\Program Files\Avira\AntiVir Desktop\libapriconv-1.dll
19:07:14.0281 0x0500 C:\Program Files\Avira\AntiVir Desktop\libapriconv-1.dll - ok
19:07:14.0312 0x0500 [ F5BECD89B78BE45F29B44068A895BA70, 615EB925284527C1591A3683844421DBE381DF2D49CF3540B217D221F04DE913 ] C:\Program Files\Avira\AntiVir Desktop\libapr-1.dll
19:07:14.0312 0x0500 C:\Program Files\Avira\AntiVir Desktop\libapr-1.dll - ok
19:07:14.0328 0x0500 [ 51F3C4FBEEF66CEBA7ABE43F4F5C1B69, 49F2DDAF9A9AB3F9D16EC62BA6C11C376B6D2D4F13F08F9870693AE0A593E5AD ] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
19:07:14.0328 0x0500 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe - ok
19:07:14.0359 0x0500 [ F27DAC21015CEE7D0014AA80C87C7A29, FA4A6C6C677E00F20228F929C85327013EB7AEBB8B707EA61C6C3FDC7752539A ] C:\Program Files\Avira\AntiVir Desktop\avwinll.dll
19:07:14.0359 0x0500 C:\Program Files\Avira\AntiVir Desktop\avwinll.dll - ok
19:07:14.0390 0x0500 [ D97B6650D15F1002B6148DF9404B1ECE, 9D635171F5D415BED584FEE873EF99BA6555876433D0E100F49744EC06726A28 ] C:\Program Files\Avira\AntiVir Desktop\aecore.dll
19:07:14.0390 0x0500 C:\Program Files\Avira\AntiVir Desktop\aecore.dll - ok
19:07:14.0406 0x0500 [ 6A9692792BEFC27B06B763342B74BB6D, 5D13C00449EAB0103883F5EA1A1D2D27AD26F7E385FDED91A3D0BEEF513325E6 ] C:\Program Files\Avira\AntiVir Desktop\aevdf.dll
19:07:14.0421 0x0500 C:\Program Files\Avira\AntiVir Desktop\aevdf.dll - ok
19:07:14.0437 0x0500 [ AA920954473A0C2CC5749237D36CD9B6, 1018526DCA6BEB8A84DDBD92F8E9B631A8539EBC99A1B0F79DAB5844ABA0BEB1 ] C:\Program Files\Avira\AntiVir Desktop\aescript.dll
19:07:14.0437 0x0500 C:\Program Files\Avira\AntiVir Desktop\aescript.dll - ok
19:07:14.0468 0x0500 [ 7954EC74667D298DB411D9E57401F8CA, CFD85E9E9ED83BBCE42A4B8E69819E2ADF1C5807924DFBC6F4849D913071B4D5 ] C:\Program Files\Avira\AntiVir Desktop\aescn.dll
19:07:14.0468 0x0500 C:\Program Files\Avira\AntiVir Desktop\aescn.dll - ok
19:07:14.0500 0x0500 [ A162B967A88BF374A81E01EF6E7A2655, 3616D7DDF72964EB1C7C40E45CCEFD7116252607068AEB9FB093F20064FB5BA2 ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
19:07:14.0500 0x0500 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe - ok
19:07:14.0531 0x0500 [ DB1B0875C5C6873E3B190406388DC24F, 404F4C8F54E92313F97BC597E5CCD268ACAFA40703CBCC183EB0C3CBC5106F0B ] C:\Program Files\Avira\AntiVir Desktop\aesbx.dll
19:07:14.0531 0x0500 C:\Program Files\Avira\AntiVir Desktop\aesbx.dll - ok
19:07:14.0546 0x0500 [ F4F2A4C459DD3AA22DD3984D13B15746, C2D0E285E2333A9C620BE04A5747881AF0D5615DA32226886E659FF31A9761CC ] C:\Program Files\Avira\AntiVir Desktop\mfc120u.dll
19:07:14.0546 0x0500 C:\Program Files\Avira\AntiVir Desktop\mfc120u.dll - ok
19:07:14.0578 0x0500 [ 282E8C065DE4204A77005F894DB855B7, AF286CE17AD9B57AC3F0683A0A0811727C38E4D3D499DC0F213BD99679C6F00E ] C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Macromedia\Flash Player\FlashPlayerUpdateService.exe
19:07:14.0578 0x0500 C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Macromedia\Flash Player\FlashPlayerUpdateService.exe - ok
19:07:14.0609 0x0500 [ EAE92EB7AF1371717F0F84F9C1EC88F3, 717B73903FE2D3EDF47CC76E2F1A8F61E81C2B2236DDB47492932A92BEAFE3AD ] C:\Program Files\Avira\AntiVir Desktop\aerdl.dll
19:07:14.0609 0x0500 C:\Program Files\Avira\AntiVir Desktop\aerdl.dll - ok
19:07:14.0640 0x0500 [ 4C8DE367A1D7E2B77C6C6A81269A6FE0, BDA3F119180A4CBAC89907F14977026ABDB4E3868775EC0C4B2485C140A8DE12 ] C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll
19:07:14.0640 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll - ok
19:07:14.0656 0x0500 [ 46564BF49879D8C309EA859DBF8BD084, C8D3B869D3DDE1DFB943DD2B439044AEEEB209F717FD8E083DE6660254B032BF ] C:\Program Files\Avira\AntiVir Desktop\rcimage.dll
19:07:14.0671 0x0500 C:\Program Files\Avira\AntiVir Desktop\rcimage.dll - ok
19:07:14.0687 0x0500 [ 08A73B0E7EE6E32983B5F9E540A8E380, D9FC89B19C9131C2246D82942D5E6A09F20CB488C26EF007695F1CABB53C8F91 ] C:\WINDOWS\system32\mscoree.dll
19:07:14.0687 0x0500 C:\WINDOWS\system32\mscoree.dll - ok
19:07:14.0718 0x0500 [ 5D310BB7EEE4644360A9548AF8856A13, 452BD562F1DCA7AE97D7DCDCD69DBC69A8D2D836810F427BD13C4BC91448B035 ] C:\Program Files\Avira\AntiVir Desktop\ccguard.dll
19:07:14.0718 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccguard.dll - ok
19:07:14.0750 0x0500 [ E35B2DBB7B88F0D5E99DFD4DE5704EB8, CA6803CB696D9965B122F37C7D17B7898AB765BB509DCD826C1F0E37EFAD7994 ] C:\Program Files\Avira\AntiVir Desktop\aepack.dll
19:07:14.0750 0x0500 C:\Program Files\Avira\AntiVir Desktop\aepack.dll - ok
19:07:14.0781 0x0500 [ 60F36ED5A02B41F9F60CB29D88A9CD01, 15745EB7355A350C9414BBF2054155EDE054088EB17A8F121632EB3EB8AC72F0 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
19:07:14.0781 0x0500 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
19:07:14.0796 0x0500 [ 29ECDA17BA5E6D98430F698587569ACC, 9C37D92CCBED1F9ED4E585F98E7FB17C6AD083712B078ABCB40476310BCDB7F8 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll
19:07:14.0796 0x0500 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll - ok
19:07:14.0828 0x0500 [ 50D8D8247A966DE019DA9D006C7BB706, E197FCD9FE7ED1E00194A088EDA39F13CC4D6F3FD6555CEB868B5A849A36CA73 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll
19:07:14.0828 0x0500 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll - ok
19:07:14.0859 0x0500 [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
19:07:14.0859 0x0500 C:\WINDOWS\system32\ctfmon.exe - ok
19:07:14.0890 0x0500 [ D76A641D5755A982D73BD478762D2F07, CEC86D699D549D5613CE23AFB23C019FA203B4263C077BF6D6470238B295E300 ] C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll
19:07:14.0890 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll - ok
19:07:14.0906 0x0500 [ 6DB02DF61F451062162E41F4CFB006A3, CA2549153698214C29D79A8E3DC815F7D0D195B284CD4FB84201B057843B8E37 ] C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll
19:07:14.0906 0x0500 C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll - ok
19:07:14.0937 0x0500 [ E40FCF943127DDC8FD60554B722D762B, 2E7A7C08B56E07D69CB32F335D93F6D2C748EFA2CF4C41102A18C7761A4E9CF0 ] C:\WINDOWS\system32\msctf.dll
19:07:14.0953 0x0500 C:\WINDOWS\system32\msctf.dll - ok
19:07:14.0968 0x0500 [ 17AA58A54C00F1746B8654C050491F43, AADA0D527FB96852998073E58F93710C4B3A25D7D1414BA9F23A28DA3D06B4CD ] C:\WINDOWS\system32\msutb.dll
19:07:14.0968 0x0500 C:\WINDOWS\system32\msutb.dll - ok
19:07:15.0015 0x0500 [ 53CF42291CA8539BFE4B94543E6F2824, 444D3A61FE81AB303AD6F7061A51AD359D2BB281E687F9DA9DDD150C1325DD57 ] C:\Program Files\Avira\AntiVir Desktop\ccmguard.dll
19:07:15.0015 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccmguard.dll - ok
19:07:15.0046 0x0500 [ 723528449ED0D1B0AD98AF3EDF23101D, 85E00BA1E553367859ED676E0C559A6A79CE296E4B8E2996A315AFACC3CBC393 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
19:07:15.0046 0x0500 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
19:07:15.0093 0x0500 [ 860FAD57B4668A9F5F350A9D5444AE89, 841D463DC71F4B9D511CE8335BDABE59FD4631D6FE6FF946CB4F286602338BE4 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
19:07:15.0093 0x0500 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
19:07:15.0125 0x0500 [ BCBB6181DC4DFBADB7520964A1DA45D7, 4642B813DF5C5FE9F38B8F4743C075C50D7AC311EFDC739C52193B45E9A3F0DA ] C:\Program Files\Avira\AntiVir Desktop\aemobile.dll
19:07:15.0125 0x0500 C:\Program Files\Avira\AntiVir Desktop\aemobile.dll - ok
19:07:15.0140 0x0500 [ F2954C89937DC5A25A2CB51F8294A668, BADC8B115A00D97429196258C36A0F106EB22E39A3546D5BEC1489A1DE27AAB9 ] C:\Program Files\Avira\AntiVir Desktop\ccmgrdrc.dll
19:07:15.0140 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccmgrdrc.dll - ok
19:07:15.0171 0x0500 [ D69290339A5BD2AAF674EA6ABF670F6D, B85D1037816EEC3172F0937FE762CFF4C4A4279BA69DF986E677A47A256D72E5 ] C:\WINDOWS\system32\runas.exe
19:07:15.0171 0x0500 C:\WINDOWS\system32\runas.exe - ok
19:07:15.0187 0x0500 [ F34240521527BF9FA2FAADE36BF4137A, 91BA93C66C820C478E835717175E8589F346DB5C8996BFB554494A0600CCBE18 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll
19:07:15.0187 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll - ok
19:07:15.0218 0x0500 [ F6FAEC07446A78A9C5AF4558FF5BD118, 9291106F6666913DB6D18943D255D60F77CCDB5A46BD4C100A5E80D40D6927D9 ] C:\WINDOWS\ime\sptip.dll
19:07:15.0218 0x0500 C:\WINDOWS\ime\sptip.dll - ok
19:07:15.0250 0x0500 [ 057B81DC070F66589044D7E8AE98EAD8, 0BF6CC1DD8B8E1630863C04EC3467BED9D90B489F887ED1A9FB05281D1184AF4 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll
19:07:15.0250 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll - ok
19:07:15.0281 0x0500 [ 9464C50CE0AC444B1B3B783A16971C8E, E3A1CB4E76EEBCB14C7C062B0EB1ED60131FFD6B544C613961147883FEA8655A ] C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll
19:07:15.0281 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll - ok
19:07:15.0296 0x0500 [ 02A74FF19A17CF405F54F3959AC48430, FF85A158CFE69B81E110CD5D709B311492BB5EB8CF1AC7A6E6BBF054E7441305 ] C:\Program Files\Avira\AntiVir Desktop\ccfwmgt.dll
19:07:15.0296 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccfwmgt.dll - ok
19:07:15.0328 0x0500 [ 4C1463EFA4BEB49BD2106C3071F8253F, 9353858300CD7401BA4DBDF12FCB9D28A1978C381CCDD388CF14DAECEE6FE991 ] C:\Program Files\Avira\AntiVir Desktop\ccfwmgtrc.dll
19:07:15.0328 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccfwmgtrc.dll - ok
19:07:15.0359 0x0500 [ 87891767E817962FD87DF1C471979D50, DC459CAE0DA670A67756644729B636728E56E0DFF2013FB16D29A28CE8527404 ] C:\Program Files\Avira\AntiVir Desktop\firewall.dll
19:07:15.0359 0x0500 C:\Program Files\Avira\AntiVir Desktop\firewall.dll - ok
19:07:15.0390 0x0500 [ 2B24F194FC5B657397ECB2923A68350E, B7F36CD6F0C33A2EC09898E35786E2225AC22408C25720E4D5B7A32CCA54940C ] C:\Program Files\CCleaner\CCleaner.exe
19:07:15.0390 0x0500 C:\Program Files\CCleaner\CCleaner.exe - ok
19:07:15.0390 0x0500 [ 9649DEAB6102B06924E68738EFA374FD, FBDABE4F44C217E76006784C92C108EED3F1A7E37C39E8578285CA8DC9E9DCA1 ] C:\Program Files\Avira\AntiVir Desktop\ccgen.dll
19:07:15.0390 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccgen.dll - ok
19:07:15.0421 0x0500 [ C26BEA10FA489A39EF513CAA5CCBEE18, D99EFBED0314266239CE0F20A803C8E2E666B0EDFE3A16E1F643F6F78E3114CC ] C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll
19:07:15.0421 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll - ok
19:07:15.0453 0x0500 [ 355E94A8A31F367FF5A2D5B62C117121, 325422A1A2945F7228EA47244445F4C16242868518E2149CE5B2437C55B11858 ] C:\Program Files\Avira\AntiVir Desktop\aeheur.dll
19:07:15.0453 0x0500 C:\Program Files\Avira\AntiVir Desktop\aeheur.dll - ok
19:07:15.0484 0x0500 [ B60DDDD2D63CE41CB8C487FCFBB6419E, B18A0D4BEBA606BF30F5010BA3C72ABAFAC80D5F303A8BFFB24D7F7B78B786E6 ] C:\Program Files\Internet Explorer\iexplore.exe
19:07:15.0484 0x0500 C:\Program Files\Internet Explorer\iexplore.exe - ok
19:07:15.0515 0x0500 [ 7982837082425D0A4396E5CD863A3B1C, C878AB7E368535D27CCCBD2D3B0E8D795BC4018BE6B0F2D7361BFF5BA949C182 ] C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll
19:07:15.0515 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll - ok
19:07:15.0531 0x0500 [ BFB788E79C086F0ECA657F1B2653B184, BF476AEEEB6FB87F0FF8BE0A74B4C6B0E2FCF3D8704C82F304505115495076E6 ] C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll
19:07:15.0531 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll - ok
19:07:15.0562 0x0500 [ 878CB937FD897CB40928436B92C1BA02, DF977E93396A898985B6655CBC1D96EF782C9C2B384046174E3C12A52A27C30E ] C:\Program Files\Avira\AntiVir Desktop\cclic.dll
19:07:15.0562 0x0500 C:\Program Files\Avira\AntiVir Desktop\cclic.dll - ok
19:07:15.0593 0x0500 [ B2E60B6C2F49CC7D401759C4712C6E77, 6BFC04D7FB3BB4FE0B665465A1E9F027798CFF3337BB8BF1F5912A6013AE29ED ] C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll
19:07:15.0593 0x0500 C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll - ok
19:07:15.0609 0x0500 [ 245B0C95ED04056E0A89BCEB8B511DDA, 0A371FC428844A88B2AAB7ABE71374A5940AF2B20D791EF73953861A0DB9D94D ] C:\Program Files\Avira\AntiVir Desktop\aehelp.dll
19:07:15.0609 0x0500 C:\Program Files\Avira\AntiVir Desktop\aehelp.dll - ok
19:07:15.0640 0x0500 [ 50AC979E18FD25FD03DA7B5B8628CE07, D84CE62B1E1B35DE69939D837617E08B992E18DA930630ED7349E11F8C5BDBEC ] C:\Program Files\Avira\AntiVir Desktop\aegen.dll
19:07:15.0640 0x0500 C:\Program Files\Avira\AntiVir Desktop\aegen.dll - ok
19:07:15.0656 0x0500 [ 6E0E72DDF0D8AB234B992953131F371C, E6DA4F1E7FE6C5D5C3AA770F48C648ABA64CB690C72B224F2C8294A36CF99680 ] C:\Program Files\Avira\AntiVir Desktop\aeexp.dll
19:07:15.0656 0x0500 C:\Program Files\Avira\AntiVir Desktop\aeexp.dll - ok
19:07:15.0687 0x0500 [ 76E5BF8C3DAD02DC942CF625C5434190, F40D0087C99F49ECF40ACD6D74308B7999780EB4A6F966317C9351F4E4ACEA54 ] C:\Program Files\Avira\AntiVir Desktop\aeemu.dll
19:07:15.0687 0x0500 C:\Program Files\Avira\AntiVir Desktop\aeemu.dll - ok
19:07:15.0718 0x0500 [ 1C2152265EDE4D89F78CF1C51E5F6FF3, F40F1924ED588CE306DF6A830BDF9AA9AF44E161A34E2A6770FA74657DE34B98 ] C:\Program Files\Avira\AntiVir Desktop\aedroid.dll
19:07:15.0718 0x0500 C:\Program Files\Avira\AntiVir Desktop\aedroid.dll - ok
19:07:15.0734 0x0500 [ AE80657661F164C09D802B339539DDC2, 1973B60640DBF0340626A877A8963FBC9F9882A0A7A84DC743A535E9D679F0FE ] C:\Program Files\Avira\AntiVir Desktop\aebb.dll
19:07:15.0734 0x0500 C:\Program Files\Avira\AntiVir Desktop\aebb.dll - ok
19:07:15.0765 0x0500 [ FAAA489BAE4E98B7126EC6889624C2B5, DDE007878C1A1286418A262C996202955E629F1693B8B6A8631355C2871ECB5C ] C:\Program Files\Avira\AntiVir Desktop\ccev.dll
19:07:15.0765 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccev.dll - ok
19:07:15.0796 0x0500 [ BA66D8288B650684333E4368B86ECC37, 3406399D6F57D692E10F9B9F5145B839C7102293E3962BA8CC06CB85DC697729 ] C:\Program Files\Avira\AntiVir Desktop\ccevrc.dll
19:07:15.0796 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccevrc.dll - ok
19:07:15.0828 0x0500 [ 9000D84F03C32C8D4049B3A13D980BA9, BD054EE65E79FE1BD67A26397CBF1DA58B86FFB90DB4B8D5EF256B1BB9D7CAE6 ] C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll
19:07:15.0828 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll - ok
19:07:15.0843 0x0500 [ 74DE608188C18E23DF8EB71A2BA10F8D, 540F84713F23CE8D8825952B988241DCC8B45E0DF4393C397549B0BD7392682C ] C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll
19:07:15.0843 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll - ok
19:07:15.0875 0x0500 [ 1C22A3866112ED41E1F3684DAE9AD5D2, 621989160B8DCE383242FA844CA63557F7BCD4520335E7EA1AF85E7720A760CA ] C:\WINDOWS\system32\mmcshext.dll
19:07:15.0875 0x0500 C:\WINDOWS\system32\mmcshext.dll - ok
19:07:15.0890 0x0500 [ D3E868700D9B5E3C54B7EED060215CC1, C066B0E63815018D6D345CE5DABD443C5CDA73200601FB51F67C602A4133A2C5 ] C:\WINDOWS\system32\hhsetup.dll
19:07:15.0890 0x0500 C:\WINDOWS\system32\hhsetup.dll - ok
19:07:15.0921 0x0500 [ 95B2F18E9D030CE4EF1CDAB1F112D2A4, 58DF3CC32183D5F7AC7DAC182C483522C1D6BB041BC2464CA143AF8405EDD155 ] C:\Program Files\Avira\AntiVir Desktop\avpref.dll
19:07:15.0921 0x0500 C:\Program Files\Avira\AntiVir Desktop\avpref.dll - ok
19:07:15.0953 0x0500 [ F0BF811622F2DD6C8E26EE4600D83731, 81CFC1118551E84F5BBD2A863419529AA32DA92E5834C71DA77D13854F6CF048 ] C:\WINDOWS\system32\wbem\wbemcore.dll
19:07:15.0953 0x0500 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
19:07:15.0968 0x0500 [ E4616430709F440CF1809D88DC2366EA, C2CBC0A21A892FD8341E5A29E7164172340E07A75A5D54493036156D907AEAE7 ] C:\WINDOWS\system32\wbem\esscli.dll
19:07:15.0968 0x0500 C:\WINDOWS\system32\wbem\esscli.dll - ok
19:07:16.0000 0x0500 [ D95C71052E5EF63B55997FB31483D02F, 829A559050680C039CA7AFCFE3246745D465ED11722A603AA32253FD413894C3 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
19:07:16.0000 0x0500 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
19:07:16.0031 0x0500 [ 378A0AEFB11D8B0DC8C27B9F7604B88D, D0D6863FCE412B75B9B5FC38EA923759201E7193ED40CFBAA674630E2DE56FD3 ] C:\WINDOWS\system32\wbem\fastprox.dll
19:07:16.0031 0x0500 C:\WINDOWS\system32\wbem\fastprox.dll - ok
19:07:16.0046 0x0500 [ 3273D1565BF30225C115B480A3BB2C9D, DF802F845EFEE506A0D3CA1EA9AEE1EDE73BCC02F2B64EDFACE0BBEFCF965455 ] C:\WINDOWS\system32\wbem\wmiutils.dll
19:07:16.0046 0x0500 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
19:07:16.0078 0x0500 [ 942A17D2901A31EA68627CBFFCD268CC, C75E1C03929E16EDDBACFC37BD6C40E941F9D99E3E40ED3A07238343342685BD ] C:\WINDOWS\system32\wbem\repdrvfs.dll
19:07:16.0078 0x0500 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
19:07:16.0109 0x0500 [ 071143F687B4F887E21461CA6CC7EB29, 92C849517F985F19926E6425CD99E21029E1CA14FC92C9E40091DC79D4A723F2 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
19:07:16.0109 0x0500 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
19:07:16.0125 0x0500 [ 26D881D27CBE51D3614E68D7313EA026, BC84CFD5F382F6D844815065118793950E922B8FB52944E337DAA62874C103A3 ] C:\WINDOWS\system32\wbem\wbemess.dll
19:07:16.0125 0x0500 C:\WINDOWS\system32\wbem\wbemess.dll - ok
19:07:16.0140 0x0500 [ D26451B540720A7313A9BCBE794DAF62, 255B3594876F9D9222760A53D1119E73D3BA4E4766C9DFAD63DCB180C5F33846 ] C:\WINDOWS\system32\wbem\ncprov.dll
19:07:16.0140 0x0500 C:\WINDOWS\system32\wbem\ncprov.dll - ok
19:07:16.0187 0x0500 [ 6404807ABC7AF52FA3792697AE638B50, 75FB44348CCC53A4EA2C3677F42098A12CE882F3E015E3D847A07972C1E4AEF5 ] C:\WINDOWS\system32\wbem\wbemcons.dll
19:07:16.0187 0x0500 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
19:07:16.0218 0x0500 [ 0AD7FB9DCA55D2FD41891B926E0198C4, F16A99E89E1639F6CDD9F48DDEEABE67EC41FA4A17D33C78ED294B6E86064AFE ] C:\Program Files\Avira\AntiVir Desktop\avbb.dll
19:07:16.0218 0x0500 C:\Program Files\Avira\AntiVir Desktop\avbb.dll - ok
19:07:16.0234 0x0500 [ 6FD029D398C5E8B8410C661850D5FB72, 027DE310038B000C65D04C535E88DFCC947D488DE1BFD2609759975A1D2409ED ] C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll
19:07:16.0234 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll - ok
19:07:16.0265 0x0500 [ 73555F9D3123FA8B42369765C669DF3E, 531C8687358E3DB141076181E54F224D8A153323C4A2897570152FFB54CBD375 ] C:\Program Files\Avira\AntiVir Desktop\avesvc.dll
19:07:16.0265 0x0500 C:\Program Files\Avira\AntiVir Desktop\avesvc.dll - ok
19:07:16.0296 0x0500 [ 51A71C768D88FC2B2867BAD99F601247, F48EFBEBEDE8D730A4D559E2E4A8BB37973CF7511442EE4916FE1869ABB6B652 ] C:\Program Files\Avira\AntiVir Desktop\gpsauth.dll
19:07:16.0296 0x0500 C:\Program Files\Avira\AntiVir Desktop\gpsauth.dll - ok
19:07:16.0328 0x0500 [ 9EE9FDD1C97C7975B6A156E089D7A27F, 4BB8C5648DF60682532E9EE74519B133CCC7750D1D5700004950966CC907905E ] C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll
19:07:16.0328 0x0500 C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll - ok
19:07:16.0343 0x0500 [ F57F3610618357E6D1FF8755B6296B25, DA9F1CAA2BA0E32D04AA1F34C61B87DCACAD7D17213B12C06E2432D5096D1C2A ] C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
19:07:16.0343 0x0500 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe - ok
19:07:16.0375 0x0500 [ 1D71BC12EB9697C7860C7AC8246E6F9E, E7C72CF6E8D61D3E6A35C34D293A19CD475B8432C72E55DC24F3088C4AA733DF ] C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll
19:07:16.0375 0x0500 C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll - ok
19:07:16.0390 0x0500 [ 3575F94073C58DC536624C210391D448, A83D2222986E1EA08970EC73D8429610AA7D26AB3D4B5E9023E4E44E4783BC57 ] C:\Program Files\Avira\AntiVir Desktop\webcat.dll
19:07:16.0390 0x0500 C:\Program Files\Avira\AntiVir Desktop\webcat.dll - ok
19:07:16.0421 0x0500 [ B7400AF2B33958599939601756FD1BAB, E045F97EEE128D92B600C79A3E50375E8861D7BD94948BE759EC1A1AFC676737 ] C:\Program Files\Avira\AntiVir Desktop\webcatrc.dll
19:07:16.0421 0x0500 C:\Program Files\Avira\AntiVir Desktop\webcatrc.dll - ok
19:07:16.0453 0x0500 [ 5641E3670C9156B2017876AE4B084215, DC3E85B7F45F6C07CAD1418C43D2CECC670F02BFE1051433D5BAD879608E5E72 ] C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
19:07:16.0453 0x0500 C:\Program Files\Avira\AntiVir Desktop\avmailc.exe - ok
19:07:16.0484 0x0500 [ 57E51C6347165622C69D456B96B1EB46, CA50A8F65866455E2AE899B0D8C0837D7C626DBD8C508FC2AE74DC2A6259595E ] C:\WINDOWS\system32\dxdiagn.dll
19:07:16.0484 0x0500 C:\WINDOWS\system32\dxdiagn.dll - ok
19:07:16.0500 0x0500 [ 1AD2F2DBE3EC2006B7A7503213E9D1BE, 5E951A0A98CAEA393D9931D654E8BD35A18A31256098E9D6AD866F3FBE98F81F ] C:\Program Files\Avira\AntiVir Desktop\msgclient.dll
19:07:16.0500 0x0500 C:\Program Files\Avira\AntiVir Desktop\msgclient.dll - ok
19:07:16.0531 0x0500 [ 1E4CC6411EC39D356005E2CA7E6401A4, D6BA4F79D7D99AAED9BE09B96C812329D715AD1FB4F6FA9AC06B5E569C4C3F43 ] C:\Program Files\Avira\AntiVir Desktop\mgrs.dll
19:07:16.0531 0x0500 C:\Program Files\Avira\AntiVir Desktop\mgrs.dll - ok
19:07:16.0546 0x0500 [ 051A7A9C035BBAB779E2C96E65C32600, 22B9FB02A24A64F8CD2C99BAA3AC0CD4ABD42FBAD495EBB2CE24504A1E44A184 ] C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
19:07:16.0546 0x0500 C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe - ok
19:07:16.0578 0x0500 [ 7128E2E435F764E72A1F4F126805579E, 78AC0F08697673D7EF138762FA9A95A76370F293D68B8B807C2439F3F2761729 ] C:\Program Files\Avira\AntiVir Desktop\avmailcr.dll
19:07:16.0578 0x0500 C:\Program Files\Avira\AntiVir Desktop\avmailcr.dll - ok
19:07:16.0609 0x0500 [ 205ADD80FF8099B1A8101EB490B933D1, 6B4D94F1683B1D30A1BB0019E2E3E0AE1AA85561D416708198EC2BDAB649E178 ] C:\WINDOWS\system32\wbem\wbemprox.dll
19:07:16.0609 0x0500 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
19:07:16.0625 0x0500 [ 010472D0AE758227C6F6E6933549C219, 4082365231756E2889BD9A19EEFA27665B9902F8C8BC376C70DC3AA80AEA541B ] C:\WINDOWS\system32\wbem\wbemsvc.dll
19:07:16.0625 0x0500 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
19:07:16.0640 0x0500 [ 45F90695C4679D16245B90C91942590B, 0AB05E29EF1F1FD76C73B4023C6AC779C081273945CCEE5E771B0C66C0D6632E ] C:\Program Files\Avira\AntiVir Desktop\avwebgrc.dll
19:07:16.0640 0x0500 C:\Program Files\Avira\AntiVir Desktop\avwebgrc.dll - ok
19:07:16.0671 0x0500 [ 4D5C1A53F276B5C6CF1FD17A499F7938, 067CF5BA6410D52B6F66026101F149FF22781715130C0C92D0381728D9F7990E ] C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll
19:07:16.0671 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll - ok
19:07:16.0687 0x0500 [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] C:\WINDOWS\system32\termsrv.dll
19:07:16.0687 0x0500 C:\WINDOWS\system32\termsrv.dll - ok
19:07:16.0718 0x0500 [ DF6551E4C4C46655A0C76194F1FCEA5D, F3895AE4B36BC85C458EDC85FBD1F5AB5C33913CD91C60A65083DC0BDD037BF5 ] C:\WINDOWS\system32\icaapi.dll
19:07:16.0718 0x0500 C:\WINDOWS\system32\icaapi.dll - ok
19:07:16.0750 0x0500 [ 2D65D56C2F8B6CC5EBFF8E7200C30304, 10CD5FF00D110D1AE2313DBCBDB17C2B9DFF930F5DAD65C35C08FCF9C152C053 ] C:\WINDOWS\system32\mstlsapi.dll
19:07:16.0750 0x0500 C:\WINDOWS\system32\mstlsapi.dll - ok
19:07:16.0765 0x0500 [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] C:\WINDOWS\system32\tapisrv.dll
19:07:16.0765 0x0500 C:\WINDOWS\system32\tapisrv.dll - ok
19:07:16.0796 0x0500 [ 798A9E6828997EEF4517ADA8A2259831, 64389FAD94D54E2D43A7292AD3C57CB16F90F2C80EA44099E02D11E19E390A5B ] C:\WINDOWS\system32\wbem\wmiprvse.exe
19:07:16.0796 0x0500 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
19:07:16.0812 0x0500 [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] C:\WINDOWS\system32\rasmans.dll
19:07:16.0812 0x0500 C:\WINDOWS\system32\rasmans.dll - ok
19:07:16.0843 0x0500 [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] C:\WINDOWS\system32\imapi.exe
19:07:16.0843 0x0500 C:\WINDOWS\system32\imapi.exe - ok
19:07:16.0875 0x0500 [ 37A62C6092AADD2EFDE0468DD8818E99, 2D01A2EEE0BE81B3252E1A3EAD21D3D91EA6DE826A1783B14948A0E0B475BAB1 ] C:\WINDOWS\system32\netcfgx.dll
19:07:16.0875 0x0500 C:\WINDOWS\system32\netcfgx.dll - ok
19:07:16.0890 0x0500 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] C:\WINDOWS\system32\drivers\http.sys
19:07:16.0890 0x0500 C:\WINDOWS\system32\drivers\http.sys - ok
19:07:16.0906 0x0500 [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] C:\WINDOWS\system32\ssdpsrv.dll
19:07:16.0906 0x0500 C:\WINDOWS\system32\ssdpsrv.dll - ok
19:07:16.0937 0x0500 [ 5F7692CEC90E2E9AA32CD58321E234B8, 0F76BD005B6FC51EE8B2D167C5E792947F8A8FF1A4FBC7F9CB3572BEAFC12639 ] C:\WINDOWS\system32\rastapi.dll
19:07:16.0937 0x0500 C:\WINDOWS\system32\rastapi.dll - ok
19:07:16.0953 0x0500 [ E837FDBB92E9873E538395B623F45462, E00D9F1471D9BDE7E53A5F8359B6F3B1606A432D4E94AB6B2A6898AB48E6751B ] C:\WINDOWS\system32\wbem\cimwin32.dll
19:07:16.0953 0x0500 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
19:07:16.0984 0x0500 [ 2DE1190196EE9555DB548A57622022EB, 89DBC777BE06D008AABEDAC61AFC11B4FF7ABCA86C205109ED9D34D21C0B5146 ] C:\WINDOWS\system32\drprov.dll
19:07:16.0984 0x0500 C:\WINDOWS\system32\drprov.dll - ok
19:07:17.0000 0x0500 [ 36468087E22C57A83DF758B3F90DF73F, F6898D07CEE4F528A9F17A231CCB5E38F826A0C1926EFBF35ECCA06E0E8EE565 ] C:\WINDOWS\system32\ntlanman.dll
19:07:17.0000 0x0500 C:\WINDOWS\system32\ntlanman.dll - ok
19:07:17.0031 0x0500 [ AC5DF42FE314C1446B1DAD237BFCFFE0, FD53D9BCC619ED7AE4B7C29B7D457A2F61D6D340841A4E030329D7032C306AB6 ] C:\WINDOWS\system32\netui0.dll
19:07:17.0031 0x0500 C:\WINDOWS\system32\netui0.dll - ok
19:07:17.0062 0x0500 [ AACE07FE34FADDDF973CE068A6424957, A14DC612762F56EE3CF9FBDF58E9476400F2CD9513319AD90E3818B2DB9F4580 ] C:\WINDOWS\system32\unimdm.tsp
19:07:17.0062 0x0500 C:\WINDOWS\system32\unimdm.tsp - ok
19:07:17.0078 0x0500 [ ED5A816D8E11E03F1937AC3C56826EE4, D01525B5BD9F9DDF149B78706C6C2F5AE26F5337F897C1B8763DBC67AB64F875 ] C:\WINDOWS\system32\netui1.dll
19:07:17.0078 0x0500 C:\WINDOWS\system32\netui1.dll - ok
19:07:17.0109 0x0500 [ 995252FCC4692B5B97EE17D596C9386E, E0EC754ADC0976BCF88C4777E788A67844428DF0B828D8EE7B8A039C763DFFDD ] C:\WINDOWS\system32\uniplat.dll
19:07:17.0109 0x0500 C:\WINDOWS\system32\uniplat.dll - ok
19:07:17.0125 0x0500 [ FB8F8EEC8D9C2157789472DD61CDC78B, D5306081621FFEFF585FAD292E60207E1BCB4EA67367E12872AF73C464110C68 ] C:\WINDOWS\system32\davclnt.dll
19:07:17.0125 0x0500 C:\WINDOWS\system32\davclnt.dll - ok
19:07:17.0140 0x0500 [ 76EC97C5068D3D9FAA7774B0F659D31A, 4E2EF0DC0B05187A6154D4D672B7530E14103D7D1EDF1BDE960F9B988B5EC41F ] C:\WINDOWS\system32\kmddsp.tsp
19:07:17.0140 0x0500 C:\WINDOWS\system32\kmddsp.tsp - ok
19:07:17.0171 0x0500 [ 4306FA2F1099D7C606139255FDB62B19, 75A0A99B9D8B0E2B39A8093F72DC283D5F2D56FB731C2BA193579DCE916030A0 ] C:\WINDOWS\system32\wbem\framedyn.dll
19:07:17.0171 0x0500 C:\WINDOWS\system32\wbem\framedyn.dll - ok
19:07:17.0187 0x0500 [ 4589963D84F2984FA5949A72162BA4F4, BC927EC7D0EBDBD2B4780D892D41739840DD31B0FF8C79013014925F52860808 ] C:\WINDOWS\system32\ndptsp.tsp
19:07:17.0187 0x0500 C:\WINDOWS\system32\ndptsp.tsp - ok
19:07:17.0218 0x0500 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8, 7E3A0204FCDD5DFFB3B352451232DD86F8298F83918533D874C122A2EF29081B ] C:\WINDOWS\system32\ipconf.tsp
19:07:17.0218 0x0500 C:\WINDOWS\system32\ipconf.tsp - ok
19:07:17.0234 0x0500 [ 8BC2B02DC11C98D14CEE43B8E8393FF3, 1314C33E2E5F11B361CF1E88884B2A9862F8BAB1C498F48DC4C49ACDB28D4732 ] C:\WINDOWS\system32\h323.tsp
19:07:17.0234 0x0500 C:\WINDOWS\system32\h323.tsp - ok
19:07:17.0265 0x0500 [ 6B552ED3BEE5AA3C4560478FF779BA98, 1778F0B7200F93EB255E1F215BB5FBEAA0DBF63BC60B286D76120F8A787995C4 ] C:\WINDOWS\system32\hidphone.tsp
19:07:17.0265 0x0500 C:\WINDOWS\system32\hidphone.tsp - ok
19:07:17.0281 0x0500 [ 8973122796E3B5D6B5900FC186E55FEA, 350120A20F8591C27E68A5903E3175DD3F4F85BA2FF1F8B6E1D3B3758B5B509D ] C:\WINDOWS\system32\hid.dll
19:07:17.0281 0x0500 C:\WINDOWS\system32\hid.dll - ok
19:07:17.0312 0x0500 [ D0545A010ED2259A740C8414899A938F, 5E6FD116C6F65241A075E4469C5AD1967B8D66DE11E223F7A3F00139FB0160C3 ] C:\WINDOWS\system32\rasppp.dll
19:07:17.0312 0x0500 C:\WINDOWS\system32\rasppp.dll - ok
19:07:17.0343 0x0500 [ B464BD425D5D09ABE4192234D1577B22, DF7333CAF299A18DEA43ACEF0A6D8C3F79918D1B3FCE437FDED6B54F95C106B9 ] C:\WINDOWS\system32\ntlsapi.dll
19:07:17.0343 0x0500 C:\WINDOWS\system32\ntlsapi.dll - ok
19:07:17.0359 0x0500 [ A655C88AA555BB8EF8957BD29408827F, 6CD48D32D1DFF68FEED5CC20D0DE12729101381EB8A6774408566C14E0B18FFB ] C:\WINDOWS\system32\rasqec.dll
19:07:17.0359 0x0500 C:\WINDOWS\system32\rasqec.dll - ok
19:07:17.0390 0x0500 [ 4D83ED8BDDEC431FC8AD907B47CFB6E3, 4687B8DD40CA9B83AA5CE1268F62476EBA886C10CC8B7B5AB716E4C56AF1EEAF ] C:\WINDOWS\system32\dsound.dll
19:07:17.0390 0x0500 C:\WINDOWS\system32\dsound.dll - ok
19:07:17.0390 0x0500 [ ACDAFCD14EC0ECE89198503746A5C147, F90876961B6966915C4A1847F91F45282FFA48140D01503EF9013E774661C4E8 ] C:\WINDOWS\system32\perfos.dll
19:07:17.0390 0x0500 C:\WINDOWS\system32\perfos.dll - ok
19:07:17.0421 0x0500 [ 401A8C0BE0BAA7D7A470F0942244152D, EC21ED13E526617697CD8E6D79FC706CBDA0AF36C02C05B39E8603B217E406BC ] C:\WINDOWS\system32\rasdlg.dll
19:07:17.0421 0x0500 C:\WINDOWS\system32\rasdlg.dll - ok
19:07:17.0453 0x0500 [ 0E8FBF46EEDA16F8577FE294816A8FEB, DC87A902569BABBDC4C69ED2B609C3AA719E4042FC933AE1C172F3B2B023D8E1 ] C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll
19:07:17.0453 0x0500 C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll - ok
19:07:17.0484 0x0500 [ 1C1964F85EE571D788DC8330E1F0195B, 2E2317936914BD198D475473C313E66C2364DB4896D713E7CBAE347D5B70CDA6 ] C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe
19:07:17.0484 0x0500 C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe - ok
19:07:17.0500 0x0500 [ 3DB2624CCB1663BF6D62311B2B9E7B55, 1E00FE8432E0E2039409823081D627A889B5A281096E7304169F2C44B2D8A463 ] C:\WINDOWS\system32\mshtml.dll
19:07:17.0500 0x0500 C:\WINDOWS\system32\mshtml.dll - ok
19:07:17.0531 0x0500 [ 2ACCD352451EC0F99AF2AD9DB6DB4439, 7EFFA9D4561674633B2FFB35F629947B061AFE5DA756DA6D02E0584FCE221445 ] C:\WINDOWS\system32\msls31.dll
19:07:17.0531 0x0500 C:\WINDOWS\system32\msls31.dll - ok
19:07:17.0546 0x0500 [ 9D15CA0CFF672C8A015114029FAF0330, 41A18CCA7F1AAD0A26F3C223F21D346BB1E1AE0B6F92F4BEE0BECF999D85A44F ] C:\Program Files\Avira\AntiVir Desktop\cclicw.dll
19:07:17.0546 0x0500 C:\Program Files\Avira\AntiVir Desktop\cclicw.dll - ok
19:07:17.0578 0x0500 [ E11457C66FDD966EE415FBBC6D9BE643, 9CAF889C740D79F56F1CE817DA7C8F2BAEE740212B578DAC509EA2C8BA2D790E ] C:\WINDOWS\system32\msimtf.dll
19:07:17.0578 0x0500 C:\WINDOWS\system32\msimtf.dll - ok
19:07:17.0609 0x0500 [ 0689622E6484934EB6E5F4D3A96311F9, A7D417556512F0FB129939F70835529F3EAC3D5ACBECE5B960A97C2605AF0833 ] C:\WINDOWS\system32\jscript.dll
19:07:17.0609 0x0500 C:\WINDOWS\system32\jscript.dll - ok
19:07:17.0625 0x0500 [ DCB3EC892201519B02D04706A381D768, 498519C99C17E44042F5448B24B993B6A64D191DA451905D277364CD0B3D6049 ] C:\WINDOWS\system32\Macromed\Flash\Flash32_16_0_0_305.ocx
19:07:17.0625 0x0500 C:\WINDOWS\system32\Macromed\Flash\Flash32_16_0_0_305.ocx - ok
19:07:17.0640 0x0500 [ AA0507F0516A4DFF1B1279AB4A2ABB37, 8EBC13ED4D96F208C5DF940EE51A4D06B64DD789425301B466C9FCD1EF78C64D ] C:\WINDOWS\system32\dinput8.dll
19:07:17.0640 0x0500 C:\WINDOWS\system32\dinput8.dll - ok
19:07:17.0671 0x0500 [ 8721A9BC4B8EC28542D3C36ECCCFC299, 92D2D1E0B70DAB758309C8EC32C65D44AB92907E50007CB373293EA446D563F5 ] C:\WINDOWS\system32\iepeers.dll
19:07:17.0671 0x0500 C:\WINDOWS\system32\iepeers.dll - ok
19:07:17.0687 0x0500 [ D0049860B63DD87A73A5D165C829C65F, 5113DB094113EF8288F646FACA08F2E49D1F0828589334AA5E0A999608BB63EA ] C:\WINDOWS\system32\t2embed.dll
19:07:17.0687 0x0500 C:\WINDOWS\system32\t2embed.dll - ok
19:07:17.0718 0x0500 [ C3200506FB212A0F4FB736A80E646C40, 19D041704CB052BD52BD0DFD70E66E7A55EDEE56888DEEF56A9739476AF91944 ] C:\WINDOWS\system32\lz32.dll
19:07:17.0718 0x0500 C:\WINDOWS\system32\lz32.dll - ok
19:07:17.0734 0x0500 [ 5E28284F9B5F9097640D58A73D38AD4C, 865F34FE7BA81E9622DDBDFC511547D190367BBF3DAD21CEB6DA3EEC621044F5 ] C:\WINDOWS\notepad.exe
19:07:17.0734 0x0500 C:\WINDOWS\notepad.exe - ok
19:07:17.0765 0x0500 [ 5E1A0476E009A1930A524DFF4CA13982, 02635287787412C2075F48A1BBA60B2705C13F5E0D82F82C8C048ED9D8AB5F26 ] C:\WINDOWS\system32\dxtrans.dll
19:07:17.0765 0x0500 C:\WINDOWS\system32\dxtrans.dll - ok
19:07:17.0781 0x0500 [ 42B928FC8518D793BF7A5EAFC57B1D8B, 22C194288DB7FE6902E4BE183856A07456B764D3B123C346A63F49AE55B4EF88 ] C:\WINDOWS\system32\imgutil.dll
19:07:17.0781 0x0500 C:\WINDOWS\system32\imgutil.dll - ok
19:07:17.0812 0x0500 [ A340CD71EB535A3DD751B5F28723E50C, AC19738C9255B6B48D20DDCF384BDDAEE0B3EF50F2297512E1750901DA9CC72A ] C:\WINDOWS\system32\ddraw.dll
19:07:17.0812 0x0500 C:\WINDOWS\system32\ddraw.dll - ok
19:07:17.0843 0x0500 [ A47F6A13202AA54541CA46D6CED79F5F, D1FA5CDA2256F3B10E9306673A0E29EE7693548E29D5665BBEA2D42927D061F0 ] C:\WINDOWS\system32\ddrawex.dll
19:07:17.0843 0x0500 C:\WINDOWS\system32\ddrawex.dll - ok
19:07:17.0859 0x0500 [ D8B91D94ECB123862B390FDE3250D3BB, DB2959E80684627ADD72CD895F8B4CBA56CFEBF60BFD60719E400181DD2CE979 ] C:\WINDOWS\system32\dciman32.dll
19:07:17.0859 0x0500 C:\WINDOWS\system32\dciman32.dll - ok
19:07:17.0890 0x0500 [ E5FA1B044DAC5F6F600A1742D73F6936, 8B9FC6C6388316854F101B99F0C15597DAC20CE43A4B9B151748F98070E9DF8A ] C:\WINDOWS\system32\pngfilt.dll
19:07:17.0890 0x0500 C:\WINDOWS\system32\pngfilt.dll - ok
19:07:17.0906 0x0500 [ 057D53F1490598D41D9D4DEE9A92B0B1, 3B085C27A91BF708B475250630545ECF0D57C454F8C4B21FDD40C81C0B9621B6 ] C:\WINDOWS\system32\dxtmsft.dll
19:07:17.0906 0x0500 C:\WINDOWS\system32\dxtmsft.dll - ok
19:07:17.0921 0x0500 [ B5F23D1BD0E08EC2F5ACCED4193BC764, D17F48A981817400430866A7F193209A87D3FBB8479EFE69F4290B7B666A4154 ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll
19:07:17.0921 0x0500 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll - ok
19:07:17.0953 0x0500 [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\WINDOWS\system32\msvcp100.dll
19:07:17.0953 0x0500 C:\WINDOWS\system32\msvcp100.dll - ok
19:07:17.0968 0x0500 [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\WINDOWS\system32\msvcr100.dll
19:07:17.0968 0x0500 C:\WINDOWS\system32\msvcr100.dll - ok
19:07:18.0000 0x0500 [ 77B4BE0C9AA0AC78884D8E7CFB315463, 8B442725CBA5DC244CBC4246772800095562FEF735852B40C694FA43716510EC ] C:\WINDOWS\system32\wmp.dll
19:07:18.0000 0x0500 C:\WINDOWS\system32\wmp.dll - ok
19:07:18.0031 0x0500 [ 235B2311786AC007AD644B12A2DA8AC7, DB676642F9C0467DBC313D0B475250B247EABB281FD359896398A0E7C725F0F8 ] C:\WINDOWS\system32\msvfw32.dll
19:07:18.0031 0x0500 C:\WINDOWS\system32\msvfw32.dll - ok
19:07:18.0046 0x0500 [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] C:\WINDOWS\system32\msdtc.exe
19:07:18.0046 0x0500 C:\WINDOWS\system32\msdtc.exe - ok
19:07:18.0078 0x0500 [ 31E6A08C6DFB167E15F53B12E57F3F52, A190505328E33D70580FC7C93185C4BB6E1643EE48F162A523CDADECDBD5DF64 ] C:\WINDOWS\system32\msdtctm.dll
19:07:18.0078 0x0500 C:\WINDOWS\system32\msdtctm.dll - ok
19:07:18.0093 0x0500 [ E8885A533A3D46209851433E3B9B3BC4, C21E9B001011C9FA843FA8B5B5F8E4A0D83919BDA8469EBB13DCA013115C541F ] C:\WINDOWS\system32\wmploc.dll
19:07:18.0093 0x0500 C:\WINDOWS\system32\wmploc.dll - ok
19:07:18.0125 0x0500 [ F0D371D357790601C4A03B25F6AD09F8, DBA5EAF0B45D83EFB69BA4F692DA8895026B36094226054AC742136CB7C39E7C ] C:\WINDOWS\system32\msdtclog.dll
19:07:18.0125 0x0500 C:\WINDOWS\system32\msdtclog.dll - ok
19:07:18.0140 0x0500 [ 92E1A82CA4B048D1D970CBEA1A097F6E, 24636052842F89D5627F1C4B931734C50953F9DFA2E7AC60BBA8BD3EAA8F8785 ] C:\WINDOWS\system32\msdtcprx.dll
19:07:18.0140 0x0500 C:\WINDOWS\system32\msdtcprx.dll - ok
19:07:18.0171 0x0500 [ AE3470D2BF8F16FD93FA54167B87172D, 0E01B152CC98D274B19C36C35B22E5FEEAC4A1BA54E92E01B9EFC1933320C60E ] C:\WINDOWS\system32\xolehlp.dll
19:07:18.0171 0x0500 C:\WINDOWS\system32\xolehlp.dll - ok
19:07:18.0187 0x0500 [ D1E18F4AE94FFEC7270BE0A10C0B295E, 4F22F8AB7B282C118B3458051F858D7EAB52B6459206B9CDF01FE97A9F886097 ] C:\WINDOWS\system32\xmllite.dll
19:07:18.0187 0x0500 C:\WINDOWS\system32\xmllite.dll - ok
19:07:18.0218 0x0500 [ 7F7BC88C8FB6B52989E0E93084B5E678, DC521B36AC2DAF555A7D81C978E154CAB8810ADF07714D1071115D3B3DA8F638 ] C:\WINDOWS\system32\msiexec.exe
19:07:18.0218 0x0500 C:\WINDOWS\system32\msiexec.exe - ok
19:07:18.0250 0x0500 [ C14350FC0D47D806699C4F907FC6785B, A8862B47A74F5FB03C9916A42B986D9B352549ED486AD2B9DAD405A98B5564B3 ] C:\WINDOWS\system32\cryptnet.dll
19:07:18.0250 0x0500 C:\WINDOWS\system32\cryptnet.dll - ok
19:07:18.0265 0x0500 [ F9D3C78CFE15271D80790677C893CE45, 885425736648DF7B315E92680ED3BD058ACE97A86D388FEA80EB0C039ADF25D7 ] C:\WINDOWS\system32\cabinet.dll
19:07:18.0265 0x0500 C:\WINDOWS\system32\cabinet.dll - ok
19:07:18.0296 0x0500 [ 1D845821F5ADB076831DE4C2818F858B, 5F1F18042E6B16BC149F2B0F22ECE3D3668E846C843F016D33C9E6C60E2D64C6 ] C:\WINDOWS\system32\usp10.dll
19:07:18.0296 0x0500 C:\WINDOWS\system32\usp10.dll - ok
19:07:18.0328 0x0500 [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:07:18.0328 0x0500 C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe - ok
19:07:18.0343 0x0500 [ 0099D24356585743B0B35C222092FD8F, 9EBC6DF134F0A2984E6385FD9CAD25961D2D789B94A0F8AD9F255947A790655F ] C:\WINDOWS\system32\faultrep.dll
19:07:18.0343 0x0500 C:\WINDOWS\system32\faultrep.dll - ok
19:07:18.0375 0x0500 [ C9F5E1DE6DA983E89E714ED80C11F000, 9FE9A49CFDF8E5764A264C19A11BB123D5BD9F1D11DBC469709B5A8178EC8F8B ] C:\WINDOWS\system32\drwtsn32.exe
19:07:18.0375 0x0500 C:\WINDOWS\system32\drwtsn32.exe - ok
19:07:18.0390 0x0500 [ 06848C5A1674FE6C9B7E9CA9B5B4E6E5, B9E232CAB39F87F6356A2DBB827678A903712AFC04414D6616041135DBBAF9DE ] C:\WINDOWS\system32\dbgeng.dll
19:07:18.0390 0x0500 C:\WINDOWS\system32\dbgeng.dll - ok
19:07:18.0421 0x0500 [ D7AE907903A6F46384B0F1D618FCE822, C0D69E748007268B80D3D3BDA5967EBCCBAEB3A39D9A37DC6A9C3ED3EBE63D9A ] C:\WINDOWS\system32\exts.dll
19:07:18.0421 0x0500 C:\WINDOWS\system32\exts.dll - ok
19:07:18.0453 0x0500 [ 3225C2BCBCAF3F0D994DADC82112E233, 862851D2DA3301B5A64072B323C7DF939121D0981E618BA78D8624D5191DFCDC ] C:\WINDOWS\system32\ntsdexts.dll
19:07:18.0453 0x0500 C:\WINDOWS\system32\ntsdexts.dll - ok
19:07:18.0484 0x0500 [ 0607CBC6FA20114CB491EFE4B2F9EFAD, F1ABF07CC45F9C013B9F53E64820ECB12AC9B1E681B9A1703E30A0637E7D9BB6 ] C:\WINDOWS\system32\d3d9.dll
19:07:18.0484 0x0500 C:\WINDOWS\system32\d3d9.dll - ok
19:07:18.0500 0x0500 [ 31B067C412FA1A9BAD3CA2A63D7DA440, 7A3A1767C42A3CDE83A56780C15887494C2A69197FE964E2A902F99A456BE581 ] C:\WINDOWS\system32\d3d8thk.dll
19:07:18.0500 0x0500 C:\WINDOWS\system32\d3d8thk.dll - ok
19:07:18.0531 0x0500 [ 289510851163F942CAE446714931471B, C90FA93EF6104A0308925A68651278746DBF102BA37E8F351004B41436136B1B ] C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll
19:07:18.0531 0x0500 C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll - ok
19:07:18.0562 0x0500 [ 2E0B0A051FFAA86E358465BB0880D453, 493CF6150DE95B269727631D50FE21405A41E449C4FF43E94F93D27559EA5624 ] C:\WINDOWS\system32\wuauclt.exe
19:07:18.0562 0x0500 C:\WINDOWS\system32\wuauclt.exe - ok
19:07:18.0578 0x0500 [ F3370C98F4981EDA6036689D298E67B9, E003ACCF1FEB1DF3C01BA494CC21449990249424967BFD5509949FA1D8A1E072 ] C:\WINDOWS\system32\browselc.dll
19:07:18.0578 0x0500 C:\WINDOWS\system32\browselc.dll - ok
19:07:18.0609 0x0500 [ 81D2A27C916C7830743E4AFA454099F7, 48E0860DE47517ADEF303E3F16BE11D8BAD13CC675FF3BEE7D81B567BFA59FFD ] C:\WINDOWS\system32\WpdShext.dll
19:07:18.0609 0x0500 C:\WINDOWS\system32\WpdShext.dll - ok
19:07:18.0625 0x0500 [ 6E2A195B0094D8F8A076D248C0BF832E, 316040F375D23CF46A9FCBBB4F507F106FB044029E5C19C905CEEE06A7C47371 ] C:\WINDOWS\system32\Audiodev.dll
19:07:18.0625 0x0500 C:\WINDOWS\system32\Audiodev.dll - ok
19:07:18.0640 0x0500 [ DFFEC6479C5E00A103A44AC33A1058AA, 518C660B2F7FE29E21241780BA9C5DF2615A8F84B04D5FE500CD6BE6C1DE99A6 ] C:\WINDOWS\system32\WMVCore.dll
19:07:18.0640 0x0500 C:\WINDOWS\system32\WMVCore.dll - ok
19:07:18.0671 0x0500 [ 7365B5CA9747C84178D42CCA72486277, C056EA9FCDA15964409DAAEB7B6FB2C21A306AA2744B1F1A19E6277A4351BD97 ] C:\WINDOWS\system32\wmasf.dll
19:07:18.0671 0x0500 C:\WINDOWS\system32\wmasf.dll - ok
19:07:18.0703 0x0500 [ BF67AC2C1F41BE892B98E9B8E91C0CB8, 431B0C05C1243864CBECE189400EC8BE7C1ABEE37360C40FED40C66051D01F3D ] C:\WINDOWS\system32\wiashext.dll
19:07:18.0703 0x0500 C:\WINDOWS\system32\wiashext.dll - ok
19:07:18.0734 0x0500 [ 3CAEAE7608F1BD7BA873A3B02895B106, DE36C4371FC88EE006C9F6914EB98654491D9ED90A1CEFC3D5D0C40D51FB6A6F ] C:\WINDOWS\system32\sti.dll
19:07:18.0734 0x0500 C:\WINDOWS\system32\sti.dll - ok
19:07:18.0765 0x0500 [ 0E876FC0327377F08657A1A0383DDA59, 679B53443BDEC1F900EDAEB56B6312E92F4F6FA0F605D44A67393F88E72041C2 ] C:\WINDOWS\system32\wiadefui.dll
19:07:18.0765 0x0500 C:\WINDOWS\system32\wiadefui.dll - ok
19:07:18.0781 0x0500 [ CC2C07B4A21396C5D4120949A9CD358B, 77C3DE8EC7413694E39481F7CCC03348CBC2FBDBA2B99E08E9E9D8BEA1710BF0 ] C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll
19:07:18.0781 0x0500 C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll - ok
19:07:18.0812 0x0500 [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\Program Files\Common Files\Ahead\Lib\MFC71.dll
19:07:18.0812 0x0500 C:\Program Files\Common Files\Ahead\Lib\MFC71.dll - ok
19:07:18.0843 0x0500 [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Program Files\Common Files\Ahead\Lib\msvcr71.dll
19:07:18.0843 0x0500 C:\Program Files\Common Files\Ahead\Lib\msvcr71.dll - ok
19:07:18.0859 0x0500 [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Program Files\Common Files\Ahead\Lib\msvcp71.dll
19:07:18.0859 0x0500 C:\Program Files\Common Files\Ahead\Lib\msvcp71.dll - ok
19:07:18.0890 0x0500 [ EDFA163FDBD7051CD9148410E4B56AF0, 8DB4A369F42FF3701E02DE3B3BA182E81B4690D6B95AA2C7281B43CCFBF9C242 ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
19:07:18.0890 0x0500 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll - ok
19:07:18.0906 0x0500 [ B5A5231BBB443092AFB8A33EF7AEAEB2, DAED15E21016BC333138C162CBC00338EC1C250D9D3BFCF5B8F9A1F958FE2231 ] C:\WINDOWS\system32\shdoclc.dll
19:07:18.0906 0x0500 C:\WINDOWS\system32\shdoclc.dll - ok
19:07:18.0921 0x0500 [ 72A0DF237F9118F18AD136E99266E816, 76CEB7AC5BE1F645423424641FE4F6087D20B5E066FBA6FF0D688467A48883BC ] C:\Program Files\Microsoft Office\Office10\MSOHEV.DLL
19:07:18.0937 0x0500 C:\Program Files\Microsoft Office\Office10\MSOHEV.DLL - ok
19:07:18.0953 0x0500 [ C444B433A340C24B51A2DACE9D13FC70, 32DF665A6267231245235CC90CC17BC8F9869642D2D848E6FC8F9A417BA570FD ] C:\WINDOWS\system32\zipfldr.dll
19:07:18.0953 0x0500 C:\WINDOWS\system32\zipfldr.dll - ok
19:07:18.0984 0x0500 [ 753228DEFBB82AA7C3F3BA28C133D1BA, 294BD3D029877A45B3F1EB6A113708A7568524A05B5A5A423AB226ABA85E0933 ] C:\Program Files\Avira\AntiVir Desktop\shlext.dll
19:07:18.0984 0x0500 C:\Program Files\Avira\AntiVir Desktop\shlext.dll - ok
19:07:19.0015 0x0500 [ D62E7A444FFBA599A49C0BF93FB004F1, 4D902F56E0EA7CF8C8ABEAB710EC99EF3BF034808D31C015EFD4482EF3B5B9AD ] C:\WINDOWS\system32\diskcopy.dll
19:07:19.0015 0x0500 C:\WINDOWS\system32\diskcopy.dll - ok
19:07:19.0046 0x0500 [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\Documents and Settings\Bryan Bridgewater\Desktop\tdsskiller.exe
19:07:19.0046 0x0500 C:\Documents and Settings\Bryan Bridgewater\Desktop\tdsskiller.exe - ok
19:07:19.0078 0x0500 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{EC2BC2DA-A4AE-4B8D-9CDA-DEB9EF59CA74}.tmp
19:07:19.0078 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{EC2BC2DA-A4AE-4B8D-9CDA-DEB9EF59CA74}.tmp - ok
19:07:19.0093 0x0500 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{220DFE50-6D43-4F70-9261-8BCA45A3FA45}.tmp
19:07:19.0093 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{220DFE50-6D43-4F70-9261-8BCA45A3FA45}.tmp - ok
19:07:19.0125 0x0500 [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{042B933A-E4A8-4E10-8720-F05E294CDF43}.tmp
19:07:19.0125 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{042B933A-E4A8-4E10-8720-F05E294CDF43}.tmp - ok
19:07:19.0140 0x0500 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{C7025267-2497-4729-8720-2AF328DA951A}.tmp
19:07:19.0140 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{C7025267-2497-4729-8720-2AF328DA951A}.tmp - ok
19:07:19.0156 0x0500 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{37F16CFC-17F4-4DA7-9E6F-70063283786B}.tmp
19:07:19.0156 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{37F16CFC-17F4-4DA7-9E6F-70063283786B}.tmp - ok
19:07:19.0187 0x0500 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{DF76A76E-2B07-494B-BA74-074B0841FE67}.tmp
19:07:19.0187 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{DF76A76E-2B07-494B-BA74-074B0841FE67}.tmp - ok
19:07:19.0218 0x0500 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{2E2DB59D-C968-4E05-97BB-C6824A7D5AF7}.tmp
19:07:19.0218 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{2E2DB59D-C968-4E05-97BB-C6824A7D5AF7}.tmp - ok
19:07:19.0234 0x0500 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{7CBEF033-2C5A-4DC9-8118-B65C75B3B50D}.tmp
19:07:19.0234 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{7CBEF033-2C5A-4DC9-8118-B65C75B3B50D}.tmp - ok
19:07:19.0265 0x0500 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{4B5866CC-4E33-4180-B314-FAE8EF4D6DD9}.tmp
19:07:19.0265 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{4B5866CC-4E33-4180-B314-FAE8EF4D6DD9}.tmp - ok
19:07:19.0296 0x0500 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{6636E1EF-739E-45F0-9F1E-9B2C6CF78C4B}.tmp
19:07:19.0296 0x0500 C:\DOCUME~1\BRYANB~1\LOCALS~1\Temp\{B183B073-5898-4D77-97AC-FC86F1ADE93C}\{6636E1EF-739E-45F0-9F1E-9B2C6CF78C4B}.tmp - ok
19:07:19.0312 0x0500 ================ Scan generic autorun ======================
19:07:19.0312 0x0500 NvCplDaemon - ok
19:07:19.0343 0x0500 nwiz - ok
19:07:19.0375 0x0500 NvMediaCenter - ok
19:07:19.0468 0x0500 [ 9306F50AB4F21E4782E41EA8C43F5350, 930F8F6702543945D838D823338DD6A2CE87FFF46DACB4C76E4F49B16FC2487D ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
19:07:19.0500 0x0500 NeroFilterCheck - ok
19:07:20.0453 0x0500 [ F8B91C91225E5CAA2B2F0370201021C0, 5EF4546D723EFAA97921CFF273FECD78AF9B7740359A5F80375A4272C3D2E7C5 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
19:07:20.0906 0x0500 Microsoft Default Manager - ok
19:07:21.0078 0x0500 [ 51F3C4FBEEF66CEBA7ABE43F4F5C1B69, 49F2DDAF9A9AB3F9D16EC62BA6C11C376B6D2D4F13F08F9870693AE0A593E5AD ] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
19:07:21.0234 0x0500 ISUSScheduler - detected UnsignedFile.Multi.Generic ( 1 )
19:07:24.0828 0x0500 Detect skipped due to KSN trusted
19:07:24.0828 0x0500 ISUSScheduler - ok
19:07:25.0171 0x0500 {4e266a7b-5d7d-ff33-89d5-86ac7fe976ee} - ok
19:07:25.0453 0x0500 [ 711561440FDC396CB6E4C69C13375A38, 42489100F9E0CCED6CC3C7A6CCE6FDF4EF31A773D7D39A24F06DB2DCBAAA1E87 ] C:\Program Files\ShowMyPCService\tvnserver.exe
19:07:27.0093 0x0500 tvncontrol - ok
19:07:28.0390 0x0500 [ A162B967A88BF374A81E01EF6E7A2655, 3616D7DDF72964EB1C7C40E45CCEFD7116252607068AEB9FB093F20064FB5BA2 ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
19:07:28.0984 0x0500 avgnt - ok
19:07:29.0328 0x0500 [ 282E8C065DE4204A77005F894DB855B7, AF286CE17AD9B57AC3F0683A0A0811727C38E4D3D499DC0F213BD99679C6F00E ] C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Macromedia\Flash Player\FlashPlayerUpdateService.exe
19:07:29.0437 0x0500 FlashPlayerUpdate - detected UnsignedFile.Multi.Generic ( 1 )
19:07:29.0921 0x0500 FlashPlayerUpdate ( UnsignedFile.Multi.Generic ) - warning
19:07:30.0546 0x0500 [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\windows\system32\ctfmon.exe
19:07:31.0437 0x0500 ctfmon.exe - ok
19:07:32.0046 0x0500 [ 2B24F194FC5B657397ECB2923A68350E, B7F36CD6F0C33A2EC09898E35786E2225AC22408C25720E4D5B7A32CCA54940C ] C:\Program Files\CCleaner\CCleaner.exe
19:07:34.0296 0x0500 CCleaner Monitoring - ok
19:07:34.0328 0x0500 SUPERAntiSpyware - ok
19:07:34.0343 0x0500 Waiting for KSN requests completion. In queue: 2
19:07:42.0109 0x0500 ============================================================
19:07:42.0109 0x0500 Scan finished
19:07:42.0109 0x0500 ============================================================
19:07:42.0187 0x0d08 Detected object count: 4
19:07:42.0187 0x0d08 Actual detected object count: 4
19:08:14.0921 0x0d08 C:\windows\System32\Drivers\457a756a9fdb4800.sys - copied to quarantine
19:08:14.0921 0x0d08 HKLM\SYSTEM\ControlSet001\services\457a756a9fdb4800 - will be deleted on reboot
19:08:14.0953 0x0d08 HKLM\SYSTEM\ControlSet002\services\457a756a9fdb4800 - will be deleted on reboot
19:08:15.0062 0x0d08 C:\windows\System32\Drivers\457a756a9fdb4800.sys - will be deleted on reboot
19:08:15.0062 0x0d08 457a756a9fdb4800 ( Rootkit.Win32.Necurs.gen ) - User select action: Delete
19:08:15.0078 0x0d08 IPVNMon ( UnsignedFile.Multi.Generic ) - skipped by user
19:08:15.0078 0x0d08 IPVNMon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:08:15.0093 0x0d08 SystemUpdate ( UnsignedFile.Multi.Generic ) - skipped by user
19:08:15.0093 0x0d08 SystemUpdate ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:08:15.0109 0x0d08 FlashPlayerUpdate ( UnsignedFile.Multi.Generic ) - skipped by user
19:08:15.0109 0x0d08 FlashPlayerUpdate ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:08:17.0031 0x0d08 KLMD registered as C:\windows\system32\drivers\28299881.sys
19:08:22.0562 0x0d6c Deinitialize success
#19
Posted 14 March 2015 - 06:54 PM
- Topic Starter
-
- Member
-
- 74 posts
Member
19:36:31.0093 0x06a0 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:36:32.0781 0x06a0 ============================================================
19:36:32.0781 0x06a0 Current date / time: 2015/03/14 19:36:32.0781
19:36:32.0781 0x06a0 SystemInfo:
19:36:32.0781 0x06a0
19:36:32.0781 0x06a0 OS Version: 5.1.2600 ServicePack: 3.0
19:36:32.0781 0x06a0 Product type: Workstation
19:36:32.0781 0x06a0 ComputerName: DEBRA
19:36:32.0796 0x06a0 UserName: Bryan Bridgewater
19:36:32.0796 0x06a0 Windows directory: C:\windows
19:36:32.0796 0x06a0 System windows directory: C:\windows
19:36:32.0796 0x06a0 Processor architecture: Intel x86
19:36:32.0796 0x06a0 Number of processors: 1
19:36:32.0796 0x06a0 Page size: 0x1000
19:36:32.0796 0x06a0 Boot type: Normal boot
19:36:32.0796 0x06a0 ============================================================
19:36:41.0812 0x06a0 KLMD registered as C:\windows\system32\drivers\78512871.sys
19:36:45.0656 0x06a0 System UUID: {7749915E-FA80-83DD-5F78-12CEA2B8C189}
19:36:54.0031 0x06a0 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 ( 37.27 Gb ), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:36:54.0203 0x06a0 Drive \Device\Harddisk1\DR2 - Size: 0xEFBFFE00 ( 3.75 Gb ), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:36:54.0203 0x06a0 ============================================================
19:36:54.0203 0x06a0 \Device\Harddisk0\DR0:
19:36:54.0218 0x06a0 MBR partitions:
19:36:54.0218 0x06a0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A852C1
19:36:54.0218 0x06a0 \Device\Harddisk1\DR2:
19:36:54.0234 0x06a0 MBR partitions:
19:36:54.0234 0x06a0 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x26, BlocksNum 0x779FC2
19:36:54.0234 0x06a0 ============================================================
19:36:54.0343 0x06a0 C: <-> \Device\Harddisk0\DR0\Partition1
19:36:54.0343 0x06a0 ============================================================
19:36:54.0343 0x06a0 Initialize success
19:36:54.0343 0x06a0 ============================================================
19:39:35.0375 0x00d0 Deinitialize success
#20
Posted 14 March 2015 - 06:59 PM
-
- GeekU Moderator
-
- 20,051 posts
GeekU Instructor
I take it that TDSSKiller rebooted. If not please reboot and then carry out the actions below. 
Now
Please download Junkware Removal Tool to your desktop.
- Shut down your protection software to avoid potential conflicts.
- Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right click JRT.exe and "Run as Administrator".
- The tool will open and start scanning your system.
- Please be patient as this can take a while to complete depending on your system's specifications.
- On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
- Post the contents of JRT.txt into your next message.
After that
Please download : ADWCleaner to your desktop (use the Download Now @ BleepingComputer button)..
NOTE: If using Internet Explorer and get an alert that stops the program downloading, click on the warning and allow the download to complete.
Close all programs and click on the AdwCleaner icon. AdwCleaner will update itself and then open.
Click on Scan and follow the prompts. It may appear not to be doing anything, please be patient and let it run unhindered. When the "Please uncheck elements you don't want to remove" appears just go ahead and click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy and paste back here. If a report doesn't appear, press the report button and Copy & Paste the contents on your next reply.
A copy of the report is also saved in the C:\AdwCleaner folder.
When you return please post
JRT.txt
AdwCleaner log
#21
Posted 14 March 2015 - 09:45 PM
- Topic Starter
-
- Member
-
- 74 posts
Member
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.3 (03.01.2015:1)
OS: Microsoft Windows XP x86
Ran by Bryan Bridgewater on Sat 03/14/2015 at 20:31:05.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{813AF6BC-803D-42E2-A0E8-2BCA792C6D0F}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\tarma installer"
Successfully deleted: [Folder] "C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\conduit"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\ask"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 03/14/2015 at 21:20:16.06
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v4.112 - Logfile created 14/03/2015 at 22:24:14
# Updated 09/03/2015 by Xplode
# Database : 2015-03-05.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Bryan Bridgewater - DEBRA
# Running from : C:\Documents and Settings\Bryan Bridgewater\Desktop\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
[#] Service Deleted : NetTcpPortSharing
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files\ShowMyPCService
File Deleted : C:\windows\system32\msvchost.exe
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{987D9269-F8A1-408F-BF62-4397D2F5363E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0722BEB-FDA1-4AA1-A2A8-15A74A5B3F70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F1963E76-845B-474C-8C7F-D69A96D8AA34}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E00DE9B9-B128-4C39-B732-B5D85013FA48}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Tarma Installer
***** [ Web browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v36.0.1 (x86 en-US)
*************************
AdwCleaner[R0].txt - [6831 bytes] - [14/03/2015 21:31:32]
AdwCleaner[R1].txt - [6830 bytes] - [14/03/2015 21:44:21]
AdwCleaner[S0].txt - [6906 bytes] - [14/03/2015 22:24:14]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6965 bytes] ##########
#22
Posted 15 March 2015 - 12:29 AM
-
- GeekU Moderator
-
- 20,051 posts
GeekU Instructor
Good progress I think.
Please run a free online scan with the ESET Online Scanner
Vista / Win7 users: Right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator.
Windows 8 & 8.1 users may face another warning from the Windows SmartScreen Protection - please click More information and Run.
Note: This scan works with Internet Explorer or Mozilla FireFox.
If using Mozilla Firefox you may need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
Disable your security programs.
- Click the blue Run ESET Online Scanner box
- Tick the box next to YES, I accept the Terms of Use
then click on: Start - You may see a panel towards the top of the screen telling you the website wants to install an addon... click and allow/install to install. If your firewall asks whether you want to allow installation, say yes. If asked, click yes to allow the program to run on your computer.
- Check "Enable detection of potentially unwanted applications"
- Click on Start and say yes to allow the program to proceed.
- The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
- When completed the Online Scan will begin automatically. The scan may take several hours.
- Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
- When completed click "List of found threats" and click again on Copy to clipboard. Open notepad and past in the clipboard list. Save it as ESET log somewhere that you can find .
- After that click the button "Back"
- Select and check Uninstall application on close and Delete quarantined files.
- Then click on: Finish
- Copy and paste the ESET log back here and tell me how your machine is now.
#23
Posted 15 March 2015 - 08:03 PM
- Topic Starter
-
- Member
-
- 74 posts
Member
I stopped the ESET program. It had been scanning for 10 hours. I did what you told me to do to click the two boxes, but when I hit finish. The program wanted me to either get a free 30 day scan or buy the program.
C:\WINDOWS\Installer\{ADC60442-B6E8-4974-B3A8-CF7D4093ED34}\msiexec.exe a variant of MSIL/Injector.IMM trojan
C:\WINDOWS\Installer\{E14DACCB-780C-4E32-BDBE-ED3A0C33F43C}\msiexec.exe a variant of MSIL/Kryptik.BIB trojan
C:\WINDOWS\Installer\{E96A1E13-C689-40B6-8A7A-D2A025568768}\msiexec.exe a variant of Win32/Kryptik.DBNB trojan
C:\WINDOWS\Installer\{FBDEFBA9-3813-4531-8438-C6E0A645DF96}\msiexec.exe Win32/Filecoder.DA trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\163.tmp Win32/PSW.Papras.DT trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\170.tmp Win32/PSW.Papras.DT trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\1A.tmp Win32/Tinba.BB trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\1AE.tmp Win32/PSW.Papras.DT trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\1EB.tmp a variant of Win32/Kryptik.DBGE trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\20D.tmp a variant of Win32/Kryptik.DBJU trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\263.tmp Win32/PSW.Papras.DT trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\3F2.tmp Win32/PSW.Papras.DT trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\59.tmp a variant of Win32/Kryptik.DBHS trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\7E.tmp a variant of Win32/Injector.BVZK trojan
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\BE.tmp Win32/PSW.Papras.DT trojan
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\C.tmp a variant of Win32/Filecoder.CO trojan cleaned by deleting - quarantined
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\KB00277328.exe a variant of Win32/Filecoder.CO trojan cleaned by deleting - quarantined
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\KB04437125.exe a variant of Win32/Filecoder.CO trojan cleaned by deleting - quarantined
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\rad7DBC9.tmp.exe a variant of MSIL/Injector.INV trojan cleaned by deleting - quarantined
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\rad8D250.tmp.exe a variant of Win32/Kryptik.DBLE trojan cleaned by deleting - quarantined
C:\FRST\Quarantine\C\Documents and Settings\All Users\msbejv.exe.xBAD a variant of Win32/TrojanDownloader.Wauchos.AK trojan cleaned by deleting - quarantined
C:\FRST\Quarantine\C\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\ewltrws.dll.xBAD a variant of Win32/TrojanProxy.Agent.NYC trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{0533D167-491E-42E9-B6C8-E3045DE1206C}\RP2\A0002052.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\System Volume Information\_restore{0533D167-491E-42E9-B6C8-E3045DE1206C}\RP2\A0002056.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\System Volume Information\_restore{0533D167-491E-42E9-B6C8-E3045DE1206C}\RP2\A0002058.dll Win32/Toolbar.Conduit.Y potentially unwanted application deleted - quarantined
C:\TDSSKiller_Quarantine\14.03.2015_19.03.03\necurs0000\svc0000\tsk0000.dta a variant of Win32/Rootkit.Kryptik.ZP trojan cleaned by deleting - quarantined
C:\WINDOWS\FrameworkUpdate\Update.exe a variant of Win32/Agent.WFF trojan cleaned by deleting - quarantined
#24
Posted 15 March 2015 - 08:08 PM
-
- GeekU Moderator
-
- 20,051 posts
GeekU Instructor
I stopped the ESET program.
Up to you but it would have been better to let it finish, just to make sure we hadn't missed anything.
You had a nasty rootkit infection amongst other things and while we got the rootkit, those ones often bring other stuff. We did get some ancillary malware but the ESET scan is a very good check and sometimes reveals something we missed.
It had been scanning for 10 hours.
Where there is a lot of files and/or a machine is severely infected as yours was, it can take a very long time. I had one situation where the scan lasted over 30 hours.
In any event how is your machine now?
#25
Posted 16 March 2015 - 06:20 AM
- Topic Starter
-
- Member
-
- 74 posts
Member
Thanks for helping me with the computer. It is still a little slow. I am still getting those same messages. Do you have any other suggestions and what should I load to keep it clean?
#26
Posted 16 March 2015 - 06:22 AM
- Topic Starter
-
- Member
-
- 74 posts
Member
Here are the error messages that keeps popping up on the WinXP.
Explorer.exe DLL Initialization Failed
Rundll32.exe
MSdtc.exe
MSIexec.exe
CMD.exe
#27
Posted 16 March 2015 - 01:29 PM
-
- GeekU Moderator
-
- 20,051 posts
GeekU Instructor
Let's have another look.
Please run another FRST scan with the Addition.txt box ticked and post back the two logs generated - FRST.txt and Addition.txt.
#28
Posted 16 March 2015 - 03:31 PM
- Topic Starter
-
- Member
-
- 74 posts
Member
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Bryan Bridgewater (administrator) on DEBRA on 16-03-2015 15:21:44
Running from C:\Documents and Settings\Bryan Bridgewater\Desktop
Loaded Profiles: Bryan Bridgewater (Available profiles: Bryan Bridgewater & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
() C:\Documents and Settings\Bryan Bridgewater\Application Data\U3\0876110C6DD07EB6\LaunchPad.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Avira Operations GmbH & Co. KG) C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\SELFUPDATE\update.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Avira Operations GmbH & Co. KG) C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\SELFUPDATE\updrgui.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [161328 2007-05-04] (Nero AG)
HKLM\...\Run: [Microsoft Default Manager] => C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [288080 2009-07-17] (Microsoft Corporation)
HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-08-09] (InstallShield Software Corporation)
HKLM\...\Run: [{4e266a7b-5d7d-ff33-89d5-86ac7fe976ee}] => "C:\Documents and Settings\All Users\Application Data\Microsoft\{4e266a7b-5d7d-ff33-89d5-86ac7fe976ee}\{4e266a7b-5d7d-ff33-89d5-86ac7fe976ee}.exe"
HKLM\...\Run: [tvncontrol] => "C:\Program Files\ShowMyPCService\tvnserver.exe" -controlservice -slave
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [FlashPlayerUpdate] => C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Macromedia\Flash Player\FlashPlayerUpdateService.exe [135168 2015-03-16] ()
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] rundll32.exe javascript:"l5\..\mshtml,RunHTMLApplication ";eval(")odv!@buhwdYNckdbu)#VRbshqu/Ridmm#( (the data entry has 360 more characters). <==== ATTENTION!
HKLM\...99B7938DA9E4}\LocalServer32: [a] rundll32.exe javascript:"l5\..\mshtml,RunHTMLApplication ";eval(")odv!@buhwdYNckdbu)#VRbshqu/Ridmm#( (the data entry has 27830 more characters). <==== ATTENTION!
InvalidSubkeyName: [HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\******<*>] <==== ATTENTION
HKU\S-1-5-21-1606980848-1801674531-839522115-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-1606980848-1801674531-839522115-1004\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
HKU\S-1-5-18\...\RunOnce: [FlashPlayerUpdate] => C:\windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe [960688 2015-02-05] (Adobe Systems Incorporated)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Office Startup.lnk
ShortcutTarget: Office Startup.lnk -> C:\Program Files\Microsoft Office\Office\OSA.EXE (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/
HKU\S-1-5-21-1606980848-1801674531-839522115-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foxnews.com/
HKU\S-1-5-21-1606980848-1801674531-839522115-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1606980848-1801674531-839522115-1004 -> {CC96ABC4-00CF-4501-8CF1-F36B1C97D436} URL = http://www.bing.com/...ms}&FORM=IE0006
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Bryan Bridgewater\Application Data\Mozilla\Firefox\Profiles\dmh1xjgc.default
FF Homepage: hxxp://www.foxnews.com/
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll No File
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1606980848-1801674531-839522115-1004: @facebook.com/FBPlugin,version=1.0.3 -> C:\Documents and Settings\Bryan Bridgewater\Application Data\Facebook\npfbplugin_1_0_3.dll [2010-03-06] ( )
FF SearchPlugin: C:\Documents and Settings\Bryan Bridgewater\Application Data\Mozilla\Firefox\Profiles\dmh1xjgc.default\searchplugins\{688B6F2A-6679-4CEB-A689-3D7DC9DD441E}.xml [2014-09-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-03-21]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [805112 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [992560 2014-11-24] (Avira Operations GmbH & Co. KG)
S3 HP Port Resolver; C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBPRO.EXE [81920 2005-05-20] (Hewlett-Packard Company) [File not signed]
S3 HP Status Server; C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPBOID.EXE [73728 2004-10-16] (Hewlett-Packard Company) [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S2 !SASCORE; "C:\Program Files\SUPERAntiSpyware\SASCORE.EXE" [X]
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
S2 NSL; "C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\ccSvcHst.exe" /s "NSL" /m "C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\diMaster.dll" /prefetch:1
S2 tvnserver; "C:\Program Files\ShowMyPCService\tvnserver.exe" -service [X]
S3 TweakingRunAsSystem0003; "C:\Program Files\Tweaking.com\Windows Repair (All in One)\files\tweaking_ras.exe" 0003[]
C:\windows\System32\cmd.exe
[]/c start /HIGH C:\windows\System32\cmd.exe /c
C:\windows\Temp\temp97841.bat
& exit
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [278728 2011-07-08] ()
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [98160 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [136216 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37352 2015-02-04] (Avira Operations GmbH & Co. KG)
S3 CA561; C:\windows\System32\Drivers\SPCA561.SYS [119798 2002-10-01] (SP)
S3 CCDECODE; C:\windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 FETND5BV; C:\windows\System32\DRIVERS\fetnd5bv.sys [42496 2004-12-16] (VIA Technologies, Inc. )
S3 FETNDIS; C:\windows\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S3 FETNDISB; C:\windows\System32\DRIVERS\fetnd5b.sys [42496 2004-04-14] (VIA Technologies, Inc. )
S3 HPZid412; C:\windows\System32\DRIVERS\HPZid412.sys [49920 2008-10-28] (HP)
S3 HPZipr12; C:\windows\System32\DRIVERS\HPZipr12.sys [16496 2008-10-28] (HP)
S3 HPZius12; C:\windows\System32\DRIVERS\HPZius12.sys [21568 2008-10-28] (HP)
U0 IPVNMon; C:\windows\system32\Drivers\IPVNMon.sys [95884 2002-08-19] (Visual Networks) [File not signed]
R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [25416 2011-07-08] ()
R2 MCSTRM; C:\windows\system32\Drivers\MCSTRM.sys [8413 2007-11-24] (RealNetworks, Inc.)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2009-08-14] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2009-08-14] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 NdisIP; C:\windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [28520 2015-02-04] (Avira GmbH)
R2 tmcomm; C:\WINDOWS\system32\drivers\tmcomm.sys [102664 2007-11-04] (Trend Micro Inc.)
R0 viaagp1; C:\windows\System32\DRIVERS\viaagp1.sys [27904 2003-07-02] (VIA Technologies, Inc.)
R3 VIAudio; C:\windows\System32\drivers\vinyl97.sys [161536 2004-09-06] (VIA Technologies, Inc.)
S0 457a756a9fdb4800; \SystemRoot\System32\Drivers\457a756a9fdb4800.sys [X]
S0 83511773; system32\drivers\28299881.sys [X]
S3 avchv; system32\DRIVERS\avchv.sys [X]
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [X]
S4 IntelIde; No ImagePath
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MSICPL; \??\D:\install4\MSICPL.sys [X]
S3 NAVENG; \??\C:\Program Files\Norton AntiVirus\NortonData\21.1.0.18\Definitions\VirusDefs\20140830.003\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton AntiVirus\NortonData\21.1.0.18\Definitions\VirusDefs\20140830.003\NAVEX15.SYS [X]
S3 NTACCESS; \??\D:\NTACCESS.sys [X]
S3 RT73; system32\DRIVERS\rt73.sys [X]
S1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [X]
S1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [X]
U5 ScsiPort; C:\windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 SetupNTGLM7X; \??\D:\NTGLM7X.sys [X]
S3 Vsp; \??\C:\WINDOWS\System32\drivers\Vsp.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-16 15:21 - 2015-03-16 15:25 - 00013657 _____ () C:\Documents and Settings\Bryan Bridgewater\Desktop\FRST.txt
2015-03-16 15:19 - 2015-03-16 15:22 - 00000000 ____D () C:\FRST
2015-03-16 15:18 - 2015-03-13 19:05 - 01135104 _____ (Farbar) C:\Documents and Settings\Bryan Bridgewater\Desktop\FRST.exe
2015-03-12 16:28 - 2015-03-15 22:47 - 00000180 _____ () C:\windows\setupact.log
2015-03-12 16:28 - 2015-03-12 16:28 - 00000000 _____ () C:\windows\setuperr.log
2015-03-12 14:11 - 2015-03-12 14:11 - 00000000 ____D () C:\RegBackup
2015-03-12 13:57 - 2008-04-13 16:12 - 00116224 ____C (Xerox) C:\windows\system32\dllcache\xrxwiadr.dll
2015-03-12 13:57 - 2008-04-13 16:12 - 00018944 ____C () C:\windows\system32\dllcache\xrxscnui.dll
2015-03-12 13:57 - 2003-03-31 07:00 - 00028288 ____C () C:\windows\system32\dllcache\xjis.nls
2015-03-12 13:57 - 2001-08-17 22:37 - 00099865 ____C (Eicon Technology) C:\windows\system32\dllcache\xlog.exe
2015-03-12 13:57 - 2001-08-17 22:37 - 00027648 ____C () C:\windows\system32\dllcache\xrxftplt.exe
2015-03-12 13:57 - 2001-08-17 22:37 - 00004608 ____C (Microsoft Corporation) C:\windows\system32\dllcache\xrxflnch.exe
2015-03-12 13:57 - 2001-08-17 22:36 - 00023040 ____C (Xerox Corporation) C:\windows\system32\dllcache\xrxwbtmp.dll
2015-03-12 13:56 - 2008-04-13 16:12 - 00008192 ____C (Microsoft Corporation) C:\windows\system32\dllcache\wshirda.dll
2015-03-12 13:56 - 2004-08-03 23:29 - 00019455 ____C (Intel® Corporation) C:\windows\system32\dllcache\wvchntxx.sys
2015-03-12 13:56 - 2004-08-03 23:29 - 00012063 ____C (Intel® Corporation) C:\windows\system32\dllcache\wsiintxx.sys
2015-03-12 13:56 - 2001-08-17 12:11 - 00016970 ____C (US Robotics MCD (Megahertz)) C:\windows\system32\dllcache\xem336n5.sys
2015-03-12 13:55 - 2008-04-13 10:36 - 00008832 ____C (Microsoft Corporation) C:\windows\system32\dllcache\wmiacpi.sys
2015-03-12 13:54 - 2004-08-03 23:31 - 00154624 ____C (Lucent Technologies) C:\windows\system32\dllcache\wlluc48.sys
2015-03-12 13:54 - 2001-08-17 12:12 - 00034890 ____C (Raytheon Corp.) C:\windows\system32\dllcache\wlandrv2.sys
2015-03-12 13:53 - 2015-03-15 09:41 - 00001090 _____ () C:\windows\setupapi.log
2015-03-12 13:53 - 2008-04-13 10:45 - 00031744 ____C (Microsoft Corporation) C:\windows\system32\dllcache\wceusbsh.sys
2015-03-12 13:53 - 2008-04-13 10:45 - 00026112 ____C (Microsoft Corporation) C:\windows\system32\dllcache\usbser.sys
2015-03-12 13:53 - 2008-04-13 10:45 - 00017152 ____C (Microsoft Corporation) C:\windows\system32\dllcache\usbohci.sys
2015-03-12 13:53 - 2004-08-03 23:31 - 00032384 ____C (KLSI USA, Inc.) C:\windows\system32\dllcache\usb101et.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00033599 ____C (Intel® Corporation) C:\windows\system32\dllcache\watv04nt.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00029311 ____C (Intel® Corporation) C:\windows\system32\dllcache\watv01nt.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00023615 ____C (Intel® Corporation) C:\windows\system32\dllcache\wch7xxnt.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00019551 ____C (Intel® Corporation) C:\windows\system32\dllcache\watv02nt.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00012415 ____C (Intel® Corporation) C:\windows\system32\dllcache\wadv01nt.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00012127 ____C (Intel® Corporation) C:\windows\system32\dllcache\wadv02nt.sys
2015-03-12 13:53 - 2004-08-03 23:29 - 00011775 ____C (Intel® Corporation) C:\windows\system32\dllcache\wadv05nt.sys
2015-03-12 13:53 - 2001-08-17 22:36 - 00094720 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxud32.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00087040 ____C (Microsoft Corporation) C:\windows\system32\dllcache\wiafbdrv.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00069632 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxu12.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\windows\system32\dllcache\wiamsmud.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00050688 ____C (UMAX DATA SYSTEMS INC.) C:\windows\system32\dllcache\umaxscan.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00050176 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxp60.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxu40.dll
2015-03-12 13:53 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxu22.dll
2015-03-12 13:53 - 2001-08-17 13:58 - 00022912 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxpcls.sys
2015-03-12 13:53 - 2001-08-17 13:49 - 00024576 ____C (VIA Technologies, Inc.) C:\windows\system32\dllcache\viairda.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00794654 ____C (U.S. Robotics, Inc.) C:\windows\system32\dllcache\usr1801.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00794399 ____C (U.S. Robotics, Inc.) C:\windows\system32\dllcache\usr1806v.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00793598 ____C (U.S. Robotics, Inc.) C:\windows\system32\dllcache\usr1806.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00771581 ____C (Rockwell) C:\windows\system32\dllcache\winacisa.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00765884 ____C (U.S. Robotics, Inc.) C:\windows\system32\dllcache\usrti.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00701386 ____C (3Com Corporation) C:\windows\system32\dllcache\wdhaalba.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00687999 ____C (U.S. Robotics Corporation) C:\windows\system32\dllcache\usrwdxjs.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00604253 ____C (PCTEL, INC.) C:\windows\system32\dllcache\vmodem.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00397502 ____C (PCtel, Inc.) C:\windows\system32\dllcache\vpctcom.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00224802 ____C (U.S. Robotics Corporation) C:\windows\system32\dllcache\usr1807a.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00113762 ____C (U.S. Robotics Corporation) C:\windows\system32\dllcache\usrpda.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00064605 ____C (PCtel, Inc.) C:\windows\system32\dllcache\vvoice.sys
2015-03-12 13:53 - 2001-08-17 13:28 - 00007556 ____C (U.S. Robotics Corporation) C:\windows\system32\dllcache\usroslba.sys
2015-03-12 13:53 - 2001-08-17 12:14 - 00249402 ____C (Xircom) C:\windows\system32\dllcache\vinwm.sys
2015-03-12 13:53 - 2001-08-17 12:13 - 00019528 ____C (Winbond Electronics Corporation) C:\windows\system32\dllcache\w840nd.sys
2015-03-12 13:53 - 2001-08-17 12:13 - 00019016 ____C (Winbond Electronics Corporation) C:\windows\system32\dllcache\w926nd.sys
2015-03-12 13:53 - 2001-08-17 12:13 - 00016925 ____C (Winbond Electronics Corporation) C:\windows\system32\dllcache\w940nd.sys
2015-03-12 13:53 - 2001-08-17 12:10 - 00035871 ____C (Winbond Electronics Corp.) C:\windows\system32\dllcache\wbfirdma.sys
2015-03-12 13:52 - 2008-04-13 16:12 - 00082944 ____C (IBM Corporation) C:\windows\system32\dllcache\tp4mon.exe
2015-03-12 13:52 - 2008-04-13 10:40 - 00149376 ____C (M-Systems) C:\windows\system32\dllcache\tffsport.sys
2015-03-12 13:52 - 2001-08-17 22:36 - 00525568 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\tridxp.dll
2015-03-12 13:52 - 2001-08-17 22:36 - 00216064 ____C (UMAX Data Systems Inc.) C:\windows\system32\dllcache\um34scan.dll
2015-03-12 13:52 - 2001-08-17 22:36 - 00211968 ____C (UMAX Data Systems Inc.) C:\windows\system32\dllcache\um54scan.dll
2015-03-12 13:52 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\windows\system32\dllcache\umaxcam.dll
2015-03-12 13:52 - 2001-08-17 22:36 - 00031744 ____C (IBM Corporation) C:\windows\system32\dllcache\tp4.dll
2015-03-12 13:52 - 2001-08-17 22:35 - 00042496 ____C (IBM Corporation) C:\windows\system32\dllcache\tp4res.dll
2015-03-12 13:52 - 2001-08-17 14:56 - 00440576 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\tridkb.dll
2015-03-12 13:52 - 2001-08-17 14:56 - 00315520 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\trid3d.dll
2015-03-12 13:52 - 2001-08-17 14:56 - 00081408 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\tgiul50.dll
2015-03-12 13:52 - 2001-08-17 14:02 - 00230912 ____C (Toshiba Corporation) C:\windows\system32\dllcache\tosdvd03.sys
2015-03-12 13:52 - 2001-08-17 14:01 - 00241664 ____C (Toshiba Corporation) C:\windows\system32\dllcache\tosdvd02.sys
2015-03-12 13:52 - 2001-08-17 13:52 - 00036736 ____C (Promise Technology, Inc.) C:\windows\system32\dllcache\ultra.sys
2015-03-12 13:52 - 2001-08-17 13:51 - 00004992 ____C (Microsoft Corporation) C:\windows\system32\dllcache\toside.sys
2015-03-12 13:52 - 2001-08-17 13:48 - 00011520 ____C (IBM Corporation) C:\windows\system32\dllcache\twotrack.sys
2015-03-12 13:52 - 2001-08-17 12:51 - 00222336 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\trid3dm.sys
2015-03-12 13:52 - 2001-08-17 12:51 - 00166784 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\tridxpm.sys
2015-03-12 13:52 - 2001-08-17 12:51 - 00159232 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\tridkbm.sys
2015-03-12 13:52 - 2001-08-17 12:51 - 00138528 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\tgiulnt5.sys
2015-03-12 13:52 - 2001-08-17 12:14 - 00123995 ____C (Tiger Jet Network) C:\windows\system32\dllcache\tjisdn.sys
2015-03-12 13:52 - 2001-08-17 12:13 - 00037961 ____C (TDK Corporation) C:\windows\system32\dllcache\tdk100b.sys
2015-03-12 13:52 - 2001-08-17 12:13 - 00017129 ____C (TDK Corporation) C:\windows\system32\dllcache\tdkcd31.sys
2015-03-12 13:52 - 2001-08-17 12:12 - 00034375 ____C (Intel Corporation) C:\windows\system32\dllcache\tpro4.sys
2015-03-12 13:52 - 2001-08-17 12:10 - 00028232 ____C (TOSHIBA Corporation) C:\windows\system32\dllcache\tos4mo.sys
2015-03-12 13:51 - 2001-08-17 14:56 - 00172768 ____C (Number Nine Visual Technology) C:\windows\system32\dllcache\t2r4disp.dll
2015-03-12 13:51 - 2001-08-17 14:07 - 00032640 ____C (LSI Logic) C:\windows\system32\dllcache\symc8xx.sys
2015-03-12 13:51 - 2001-08-17 14:07 - 00030688 ____C (LSI Logic) C:\windows\system32\dllcache\sym_u3.sys
2015-03-12 13:51 - 2001-08-17 14:07 - 00016256 ____C (Symbios Logic Inc.) C:\windows\system32\dllcache\symc810.sys
2015-03-12 13:51 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\windows\system32\dllcache\tandqic.sys
2015-03-12 13:51 - 2001-08-17 13:49 - 00030464 ____C (Toshiba Corporation) C:\windows\system32\dllcache\tbatm155.sys
2015-03-12 13:51 - 2001-08-17 12:50 - 00036640 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\t2r4mini.sys
2015-03-12 13:50 - 2001-08-17 22:36 - 00094293 ____C (Perle Systems Ltd. ) C:\windows\system32\dllcache\sxports.dll
2015-03-12 13:50 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\windows\system32\dllcache\swpidflt.dll
2015-03-12 13:50 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\windows\system32\dllcache\swpdflt2.dll
2015-03-12 13:50 - 2001-08-17 14:07 - 00028384 ____C (LSI Logic) C:\windows\system32\dllcache\sym_hi.sys
2015-03-12 13:50 - 2001-08-17 14:02 - 00003968 ____C (Microsoft Corporation) C:\windows\system32\dllcache\swusbflt.sys
2015-03-12 13:50 - 2001-08-17 13:50 - 00103936 ____C (Perle Systems Ltd. ) C:\windows\system32\dllcache\sx.sys
2015-03-12 13:49 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sw_wheel.dll
2015-03-12 13:49 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sw_effct.dll
2015-03-12 13:48 - 2001-08-17 22:36 - 00155648 ____C (Stallion Technologies) C:\windows\system32\dllcache\stlnprop.dll
2015-03-12 13:48 - 2001-08-17 22:36 - 00053248 ____C (Stallion Technologies) C:\windows\system32\dllcache\stlncoin.dll
2015-03-12 13:48 - 2001-08-17 13:51 - 00016896 ____C (SCM Microsystems, Inc.) C:\windows\system32\dllcache\stcusb.sys
2015-03-12 13:48 - 2001-08-17 12:18 - 00285760 ____C (Stallion Technologies) C:\windows\system32\dllcache\stlnata.sys
2015-03-12 13:47 - 2008-04-13 10:40 - 00007552 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sonyait.sys
2015-03-12 13:47 - 2001-08-17 22:36 - 00114688 ____C (Sony Corporation) C:\windows\system32\dllcache\sonypi.dll
2015-03-12 13:47 - 2001-08-17 22:36 - 00106584 ____C (Perle Systems Ltd.) C:\windows\system32\dllcache\spdports.dll
2015-03-12 13:47 - 2001-08-17 22:36 - 00099328 ____C (Microsoft Corporation) C:\windows\system32\dllcache\srusd.dll
2015-03-12 13:47 - 2001-08-17 22:36 - 00024660 ____C (Perle Systems Ltd.) C:\windows\system32\dllcache\spxupchk.dll
2015-03-12 13:47 - 2001-08-17 14:07 - 00019072 ____C (Adaptec, Inc.) C:\windows\system32\dllcache\sparrow.sys
2015-03-12 13:47 - 2001-08-17 13:56 - 00007552 ____C (Sony Corporation) C:\windows\system32\dllcache\sonypvu1.sys
2015-03-12 13:47 - 2001-08-17 13:53 - 00009600 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sonymc.sys
2015-03-12 13:47 - 2001-08-17 13:51 - 00061824 ____C (Perle Systems Ltd.) C:\windows\system32\dllcache\speed.sys
2015-03-12 13:47 - 2001-08-17 12:51 - 00037040 ____C (Sony Corporation) C:\windows\system32\dllcache\sonypi.sys
2015-03-12 13:47 - 2001-08-17 12:51 - 00020752 ____C (Sony Corporation) C:\windows\system32\dllcache\sonync.sys
2015-03-12 13:47 - 2001-08-17 12:11 - 00048736 ____C (3Com) C:\windows\system32\dllcache\srwlnd5.sys
2015-03-12 13:46 - 2008-04-13 10:36 - 00016000 ____C (Microsoft Corporation) C:\windows\system32\dllcache\smbbatt.sys
2015-03-12 13:46 - 2008-04-13 10:36 - 00006912 ____C (Microsoft Corporation) C:\windows\system32\dllcache\smbclass.sys
2015-03-12 13:46 - 2004-08-03 23:31 - 00063547 ____C (Symbol Technologies) C:\windows\system32\dllcache\sla30nd5.sys
2015-03-12 13:46 - 2004-08-03 23:31 - 00032768 ____C (SiS Corporation) C:\windows\system32\dllcache\sisnic.sys
2015-03-12 13:46 - 2001-08-17 22:36 - 00238592 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sisgrv.dll
2015-03-12 13:46 - 2001-08-17 22:36 - 00045568 ____C (Microsoft Corporation) C:\windows\system32\dllcache\smb3w.dll
2015-03-12 13:46 - 2001-08-17 22:36 - 00033792 ____C (Microsoft Corporation) C:\windows\system32\dllcache\smb0w.dll
2015-03-12 13:46 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sma0w.dll
2015-03-12 13:46 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sm91w.dll
2015-03-12 13:46 - 2001-08-17 14:56 - 00157696 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sisv256.dll
2015-03-12 13:46 - 2001-08-17 14:56 - 00147200 ____C (Silicon Motion Inc.) C:\windows\system32\dllcache\smidispb.dll
2015-03-12 13:46 - 2001-08-17 13:57 - 00006784 ____C (Microsoft Corporation) C:\windows\system32\dllcache\smbhc.sys
2015-03-12 13:46 - 2001-08-17 13:53 - 00007040 ____C (Microsoft Corporation) C:\windows\system32\dllcache\snyaitmc.sys
2015-03-12 13:46 - 2001-08-17 12:51 - 00058368 ____C (Silicon Motion Inc.) C:\windows\system32\dllcache\smiminib.sys
2015-03-12 13:46 - 2001-08-17 12:50 - 00050432 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sisv.sys
2015-03-12 13:46 - 2001-08-17 12:12 - 00094698 ____C (SysKonnect GmbH.) C:\windows\system32\dllcache\sk98xwin.sys
2015-03-12 13:46 - 2001-08-17 12:12 - 00091294 ____C (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) C:\windows\system32\dllcache\skfpwin.sys
2015-03-12 13:46 - 2001-08-17 12:12 - 00025034 ____C (SMC Networks, Inc.) C:\windows\system32\dllcache\smcpwr2n.sys
2015-03-12 13:46 - 2001-08-17 12:12 - 00024576 ____C (SMC Networks, Inc.) C:\windows\system32\dllcache\smc8000n.sys
2015-03-12 13:46 - 2001-08-17 12:10 - 00035913 ____C (SMC) C:\windows\system32\dllcache\smcirda.sys
2015-03-12 13:45 - 2008-04-13 10:45 - 00011520 ____C (Microsoft Corporation) C:\windows\system32\dllcache\scsiscan.sys
2015-03-12 13:45 - 2008-04-13 10:40 - 00043904 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sbp2port.sys
2015-03-12 13:45 - 2001-08-17 22:36 - 00495616 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\sblfx.dll
2015-03-12 13:45 - 2001-08-17 22:36 - 00386560 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\sgiul50.dll
2015-03-12 13:45 - 2001-08-17 14:56 - 00252032 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sis300iv.dll
2015-03-12 13:45 - 2001-08-17 14:56 - 00150144 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sis6306v.dll
2015-03-12 13:45 - 2001-08-17 13:53 - 00006912 ____C (Microsoft Corporation) C:\windows\system32\dllcache\seaddsmc.sys
2015-03-12 13:45 - 2001-08-17 13:52 - 00011648 ____C (Microsoft Corporation) C:\windows\system32\dllcache\scsiprnt.sys
2015-03-12 13:45 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\windows\system32\dllcache\sccmusbm.sys
2015-03-12 13:45 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\windows\system32\dllcache\sccmn50m.sys
2015-03-12 13:45 - 2001-08-17 13:51 - 00017280 ____C (SCM Microsystems) C:\windows\system32\dllcache\scr111.sys
2015-03-12 13:45 - 2001-08-17 13:51 - 00016640 ____C (Microsoft Corporation) C:\windows\system32\dllcache\scmstcs.sys
2015-03-12 13:45 - 2001-08-17 13:48 - 00017664 ____C (Microsoft Corporation) C:\windows\system32\dllcache\sermouse.sys
2015-03-12 13:45 - 2001-08-17 12:51 - 00098080 ____C (Trident Microsystems Inc.) C:\windows\system32\dllcache\sgiulnt5.sys
2015-03-12 13:45 - 2001-08-17 12:50 - 00104064 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sisgrp.sys
2015-03-12 13:45 - 2001-08-17 12:50 - 00101760 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sis300ip.sys
2015-03-12 13:45 - 2001-08-17 12:50 - 00075392 ____C (S3 Graphics, Inc.) C:\windows\system32\dllcache\s3savmxm.sys
2015-03-12 13:45 - 2001-08-17 12:50 - 00068608 ____C (Silicon Integrated Systems Corporation) C:\windows\system32\dllcache\sis6306p.sys
2015-03-12 13:45 - 2001-08-17 12:19 - 00036480 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\sfmanm.sys
2015-03-12 13:45 - 2001-07-21 14:29 - 00161568 ____C (Micro Systemation) C:\windows\system32\dllcache\sgsmusb.sys
2015-03-12 13:45 - 2001-07-21 14:29 - 00018400 ____C (Micro Systemation) C:\windows\system32\dllcache\sgsmld.sys
2015-03-12 13:44 - 2008-04-13 16:12 - 00029696 ____C (Ricoh Co., Ltd.) C:\windows\system32\dllcache\rw450ext.dll
2015-03-12 13:44 - 2008-04-13 16:12 - 00027648 ____C (Ricoh Co., Ltd.) C:\windows\system32\dllcache\rw430ext.dll
2015-03-12 13:44 - 2008-04-13 10:40 - 00079104 ____C (Comtrol Corporation) C:\windows\system32\dllcache\rocket.sys
2015-03-12 13:44 - 2004-08-03 23:31 - 00020992 ____C (Realtek Semiconductor Corporation) C:\windows\system32\dllcache\rtl8139.sys
2015-03-12 13:44 - 2001-08-17 22:36 - 00082432 ____C (Ricoh Co., Ltd.) C:\windows\system32\dllcache\rwia450.dll
2015-03-12 13:44 - 2001-08-17 22:36 - 00079872 ____C (Ricoh Co., Ltd.) C:\windows\system32\dllcache\rwia430.dll
2015-03-12 13:44 - 2001-08-17 22:36 - 00062496 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3mtrio.dll
2015-03-12 13:44 - 2001-08-17 22:36 - 00009216 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\rsmgrstr.dll
2015-03-12 13:44 - 2001-08-17 14:56 - 00245632 ____C (S3 Graphics, Inc.) C:\windows\system32\dllcache\s3savmx.dll
2015-03-12 13:44 - 2001-08-17 14:56 - 00210496 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3mvirge.dll
2015-03-12 13:44 - 2001-08-17 14:56 - 00198400 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3sav4.dll
2015-03-12 13:44 - 2001-08-17 14:56 - 00182272 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3mt3d.dll
2015-03-12 13:44 - 2001-08-17 14:56 - 00179264 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3sav3d.dll
2015-03-12 13:44 - 2001-08-17 13:57 - 00065664 ____C (Microsoft Corporation) C:\windows\system32\dllcache\s3legacy.sys
2015-03-12 13:44 - 2001-08-17 12:50 - 00166720 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3m.sys
2015-03-12 13:44 - 2001-08-17 12:50 - 00077824 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3sav4m.sys
2015-03-12 13:44 - 2001-08-17 12:50 - 00061504 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3sav3dm.sys
2015-03-12 13:44 - 2001-08-17 12:50 - 00041216 ____C (S3 Incorporated) C:\windows\system32\dllcache\s3mt3d.sys
2015-03-12 13:44 - 2001-08-17 12:19 - 00030720 ____C (Conexant Systems Inc.) C:\windows\system32\dllcache\rthwcls.sys
2015-03-12 13:44 - 2001-08-17 12:19 - 00003840 ____C (Conexant Systems Inc.) C:\windows\system32\dllcache\rpfun.sys
2015-03-12 13:44 - 2001-08-17 12:12 - 00037563 ____C (RadioLAN) C:\windows\system32\dllcache\rlnet5.sys
2015-03-12 13:44 - 2001-08-17 12:12 - 00019017 ____C (Realtek Semiconductor Corporation) C:\windows\system32\dllcache\rtl8029.sys
2015-03-12 13:43 - 2001-08-17 22:36 - 00086097 ____C (Xircom) C:\windows\system32\dllcache\reslog32.dll
2015-03-12 13:43 - 2001-08-17 13:51 - 00019584 ____C (Microsoft Corporation) C:\windows\system32\dllcache\rasirda.sys
2015-03-12 13:42 - 2008-04-13 16:12 - 00159232 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ptpusd.dll
2015-03-12 13:42 - 2008-04-13 16:12 - 00033280 ____C () C:\windows\system32\dllcache\psisrndr.ax
2015-03-12 13:42 - 2008-04-13 10:40 - 00006016 ____C (Microsoft Corporation) C:\windows\system32\dllcache\qic157.sys
2015-03-12 13:42 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\windows\system32\dllcache\qvusd.dll
2015-03-12 13:42 - 2001-08-17 22:36 - 00035328 ____C (Microsoft Corporation) C:\windows\system32\dllcache\psisload.dll
2015-03-12 13:42 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ptpusb.dll
2015-03-12 13:42 - 2001-08-17 13:53 - 00003328 ____C (Microsoft Corporation) C:\windows\system32\dllcache\qv2kux.sys
2015-03-12 13:42 - 2001-08-17 13:52 - 00049024 ____C (QLogic Corporation) C:\windows\system32\dllcache\ql1280.sys
2015-03-12 13:42 - 2001-08-17 13:52 - 00045312 ____C (QLogic Corporation) C:\windows\system32\dllcache\ql12160.sys
2015-03-12 13:42 - 2001-08-17 13:52 - 00040448 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ql1240.sys
2015-03-12 13:42 - 2001-08-17 13:52 - 00040320 ____C (QLogic Corporation) C:\windows\system32\dllcache\ql1080.sys
2015-03-12 13:42 - 2001-08-17 13:52 - 00033152 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ql10wnt.sys
2015-03-12 13:42 - 2001-08-17 13:28 - 00899146 ____C (Xircom, Inc.) C:\windows\system32\dllcache\r2mdkxga.sys
2015-03-12 13:42 - 2001-08-17 13:28 - 00714762 ____C (Xircom, Inc.) C:\windows\system32\dllcache\r2mdmkxx.sys
2015-03-12 13:42 - 2001-08-17 13:28 - 00130942 ____C (PCTEL, INC.) C:\windows\system32\dllcache\ptserlv.sys
2015-03-12 13:42 - 2001-08-17 13:28 - 00128286 ____C (PCTEL, INC.) C:\windows\system32\dllcache\ptserli.sys
2015-03-12 13:42 - 2001-08-17 13:28 - 00112574 ____C (PCTEL, INC.) C:\windows\system32\dllcache\ptserlp.sys
2015-03-12 13:41 - 2008-04-13 16:12 - 00363520 ____C () C:\windows\system32\dllcache\psisdecd.dll
2015-03-12 13:41 - 2008-04-13 10:41 - 00017664 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ppa3.sys
2015-03-12 13:41 - 2008-04-13 10:40 - 00008832 ____C (Microsoft Corporation) C:\windows\system32\dllcache\powerfil.sys
2015-03-12 13:41 - 2003-03-31 07:00 - 00083748 ____C () C:\windows\system32\dllcache\prcp.nls
2015-03-12 13:41 - 2003-03-31 07:00 - 00083748 ____C () C:\windows\system32\dllcache\prc.nls
2015-03-12 13:41 - 2001-08-17 13:53 - 00017792 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ppa.sys
2015-03-12 13:41 - 2001-08-17 13:53 - 00007168 ____C (Microsoft Corporation) C:\windows\system32\dllcache\pnrmc.sys
2015-03-12 13:41 - 2001-08-17 13:51 - 00016128 ____C (SCM Microsystems, Inc.) C:\windows\system32\dllcache\pscr.sys
2015-03-12 13:40 - 2008-04-13 16:10 - 00259328 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\windows\system32\dllcache\perm3dd.dll
2015-03-12 13:40 - 2008-04-13 16:10 - 00211584 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\windows\system32\dllcache\perm2dll.dll
2015-03-12 13:40 - 2008-04-13 10:44 - 00028032 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\windows\system32\dllcache\perm3.sys
2015-03-12 13:40 - 2008-04-13 10:44 - 00027904 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\windows\system32\dllcache\perm2.sys
2015-03-12 13:40 - 2004-08-03 23:31 - 00029502 ____C (Marconi Communications, Inc.) C:\windows\system32\dllcache\pca200e.sys
2015-03-12 13:40 - 2004-08-03 23:06 - 00169984 ____C (Cisco Systems) C:\windows\system32\dllcache\pcx500.sys
2015-03-12 13:40 - 2001-08-17 22:37 - 00105984 ____C (Microsoft Corporation) C:\windows\system32\dllcache\phdsext.ax
2015-03-12 13:40 - 2001-08-17 22:36 - 00121344 ____C (Microsoft Corporation) C:\windows\system32\dllcache\phvfwext.dll
2015-03-12 13:40 - 2001-08-17 22:36 - 00086016 ____C (PCtel, Inc.) C:\windows\system32\dllcache\pctspk.exe
2015-03-12 13:40 - 2001-08-17 22:36 - 00016384 ____C (Microsoft Corporation) C:\windows\system32\dllcache\philcam1.dll
2015-03-12 13:40 - 2001-08-17 14:07 - 00027296 ____C (Microsoft Corporation) C:\windows\system32\dllcache\perc2.sys
2015-03-12 13:40 - 2001-08-17 14:07 - 00019840 ____C (Microsoft Corporation) C:\windows\system32\dllcache\philtune.sys
2015-03-12 13:40 - 2001-08-17 14:07 - 00005504 ____C (Microsoft Corporation) C:\windows\system32\dllcache\perc2hib.sys
2015-03-12 13:40 - 2001-08-17 14:04 - 00173696 ____C (Microsoft Corporation) C:\windows\system32\dllcache\philcam2.sys
2015-03-12 13:40 - 2001-08-17 14:04 - 00092416 ____C (Microsoft Corporation) C:\windows\system32\dllcache\phildec.sys
2015-03-12 13:40 - 2001-08-17 14:04 - 00075776 ____C (Microsoft Corporation) C:\windows\system32\dllcache\philcam1.sys
2015-03-12 13:40 - 2001-08-17 13:51 - 00003328 ____C (Microsoft Corporation) C:\windows\system32\dllcache\pciide.sys
2015-03-12 13:40 - 2001-08-17 12:12 - 00030495 ____C (Linksys) C:\windows\system32\dllcache\pc100nds.sys
2015-03-12 13:40 - 2001-08-17 12:12 - 00026153 ____C (Linksys) C:\windows\system32\dllcache\pcmlm56.sys
2015-03-12 13:40 - 2001-08-17 12:11 - 00035328 ____C (AMD Inc.) C:\windows\system32\dllcache\pcntpci5.sys
2015-03-12 13:40 - 2001-08-17 12:11 - 00030282 ____C (AMD Inc.) C:\windows\system32\dllcache\pcntn5hl.sys
2015-03-12 13:40 - 2001-08-17 12:11 - 00029769 ____C (AMD Inc.) C:\windows\system32\dllcache\pcntn5m.sys
2015-03-12 13:37 - 2008-04-13 10:54 - 00028672 ____C (National Semiconductor Corporation) C:\windows\system32\dllcache\nscirda.sys
2015-03-12 13:37 - 2008-04-13 10:46 - 00061696 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ohci1394.sys
2015-03-12 13:37 - 2001-08-17 22:36 - 00123776 ____C (NVIDIA Corporation) C:\windows\system32\dllcache\nv3.dll
2015-03-12 13:37 - 2001-08-17 22:36 - 00116736 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovcodec2.dll
2015-03-12 13:37 - 2001-08-17 22:36 - 00044544 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovui2.dll
2015-03-12 13:37 - 2001-08-17 22:36 - 00041984 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovui2rc.dll
2015-03-12 13:37 - 2001-08-17 22:36 - 00039424 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovcoms.exe
2015-03-12 13:37 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovcomc.dll
2015-03-12 13:37 - 2001-08-17 14:05 - 00351616 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovcodek2.sys
2015-03-12 13:37 - 2001-08-17 14:05 - 00048000 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovcam2.sys
2015-03-12 13:37 - 2001-08-17 14:05 - 00031872 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovce.sys
2015-03-12 13:37 - 2001-08-17 14:05 - 00028032 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovcd.sys
2015-03-12 13:37 - 2001-08-17 14:05 - 00025216 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovsound2.sys
2015-03-12 13:37 - 2001-08-17 14:05 - 00025088 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ovca.sys
2015-03-12 13:37 - 2001-08-17 13:53 - 00007552 ____C (Microsoft Corporation) C:\windows\system32\dllcache\nsmmc.sys
2015-03-12 13:37 - 2001-08-17 13:47 - 00009344 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ntapm.sys
2015-03-12 13:37 - 2001-08-17 13:28 - 00054186 ____C (Ositech Communications, Inc.) C:\windows\system32\dllcache\otcsercb.sys
2015-03-12 13:37 - 2001-08-17 12:50 - 00198144 ____C (NVIDIA Corporation) C:\windows\system32\dllcache\nv3.sys
2015-03-12 13:37 - 2001-08-17 12:49 - 00051552 ____C (Kensington Technology Group) C:\windows\system32\dllcache\ntgrip.sys
2015-03-12 13:37 - 2001-08-17 12:20 - 00126080 ____C (NeoMagic Corporation) C:\windows\system32\dllcache\nm5a2wdm.sys
2015-03-12 13:37 - 2001-08-17 12:20 - 00087040 ____C (NeoMagic Corporation) C:\windows\system32\dllcache\nm6wdm.sys
2015-03-12 13:37 - 2001-08-17 12:20 - 00054528 ____C (Yamaha Corp.) C:\windows\system32\dllcache\opl3sax.sys
2015-03-12 13:37 - 2001-08-17 12:12 - 00043689 ____C (Ositech Communications, Inc.) C:\windows\system32\dllcache\otceth5.sys
2015-03-12 13:37 - 2001-08-17 12:12 - 00032840 ____C (NETGEAR Corporation.) C:\windows\system32\dllcache\ngrpci.sys
2015-03-12 13:37 - 2001-08-17 12:12 - 00027209 ____C (Ositech Communications, Inc.) C:\windows\system32\dllcache\otc06x5.sys
2015-03-12 13:36 - 2004-08-03 23:31 - 00132695 ____C (802.11b) C:\windows\system32\dllcache\netwlan5.sys
2015-03-12 13:36 - 2001-08-17 22:36 - 00060480 ____C (NeoMagic Corporation) C:\windows\system32\dllcache\neo20xx.dll
2015-03-12 13:36 - 2001-08-17 22:36 - 00059104 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\n9i128v2.dll
2015-03-12 13:36 - 2001-08-17 22:36 - 00019968 ____C (Moxa Technologies Co., Ltd) C:\windows\system32\dllcache\mxicfg.dll
2015-03-12 13:36 - 2001-08-17 22:36 - 00007168 ____C (Moxa Technologies Co., Ltd) C:\windows\system32\dllcache\mxport.dll
2015-03-12 13:36 - 2001-08-17 14:56 - 00091488 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\n9i3disp.dll
2015-03-12 13:36 - 2001-08-17 14:56 - 00035392 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\n9i128.dll
2015-03-12 13:36 - 2001-08-17 13:50 - 00075520 ____C (Moxa Technologies Co., Ltd.) C:\windows\system32\dllcache\mxport.sys
2015-03-12 13:36 - 2001-08-17 13:50 - 00021888 ____C (Moxa Technologies Co., Ltd.) C:\windows\system32\dllcache\mxcard.sys
2015-03-12 13:36 - 2001-08-17 13:49 - 00019968 ____C (Macronix International Co., Ltd. ) C:\windows\system32\dllcache\mxnic.sys
2015-03-12 13:36 - 2001-08-17 13:49 - 00015872 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ne2000.sys
2015-03-12 13:36 - 2001-08-17 12:50 - 00103296 ____C (Matrox Graphics Inc) C:\windows\system32\dllcache\mtxvideo.sys
2015-03-12 13:36 - 2001-08-17 12:50 - 00039264 ____C (NeoMagic Corporation) C:\windows\system32\dllcache\neo20xx.sys
2015-03-12 13:36 - 2001-08-17 12:50 - 00033088 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\n9i128v2.sys
2015-03-12 13:36 - 2001-08-17 12:50 - 00027936 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\n9i3d.sys
2015-03-12 13:36 - 2001-08-17 12:50 - 00013664 ____C (Number Nine Visual Technology Corp.) C:\windows\system32\dllcache\n9i128.sys
2015-03-12 13:36 - 2001-08-17 12:11 - 00128000 ____C (Compaq Computer Corporation) C:\windows\system32\dllcache\n100325.sys
2015-03-12 13:36 - 2001-08-17 12:11 - 00065278 ____C (Compaq Computer Corporation) C:\windows\system32\dllcache\netflx3.sys
2015-03-12 13:36 - 2001-08-17 12:11 - 00052255 ____C (Compaq Computer Corporation) C:\windows\system32\dllcache\n1000nt5.sys
2015-03-12 13:35 - 2008-04-13 10:54 - 00022016 ____C (Microsoft Corporation) C:\windows\system32\dllcache\msircomm.sys
2015-03-12 13:35 - 2008-04-13 10:46 - 00049024 ____C (Microsoft Corporation) C:\windows\system32\dllcache\mstape.sys
2015-03-12 13:35 - 2001-08-17 14:00 - 00002944 ____C (Microsoft Corporation) C:\windows\system32\dllcache\msmpu401.sys
2015-03-12 13:35 - 2001-08-17 13:48 - 00012416 ____C (Microsoft Corporation) C:\windows\system32\dllcache\msriffwv.sys
2015-03-12 13:34 - 2008-04-13 16:12 - 00056832 ____C () C:\windows\system32\dllcache\msdvbnp.ax
2015-03-12 13:34 - 2008-04-13 10:46 - 00051200 ____C (Microsoft Corporation) C:\windows\system32\dllcache\msdv.sys
2015-03-12 13:34 - 2001-08-17 14:02 - 00035200 ____C (Microsoft Corporation) C:\windows\system32\dllcache\msgame.sys
2015-03-12 13:34 - 2001-08-17 13:48 - 00006016 ____C (Microsoft Corporation) C:\windows\system32\dllcache\msfsio.sys
2015-03-12 13:33 - 2008-04-13 10:46 - 00015232 ____C (Microsoft Corporation) C:\windows\system32\dllcache\mpe.sys
2015-03-12 13:33 - 2008-04-13 10:41 - 00026112 ____C (Sony Corporation) C:\windows\system32\dllcache\memstpci.sys
2015-03-12 13:33 - 2008-04-13 10:40 - 00007040 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ltotape.sys
2015-03-12 13:33 - 2004-08-03 23:41 - 00606684 ____C (LT) C:\windows\system32\dllcache\ltmdmnt.sys
2015-03-12 13:33 - 2004-08-03 23:41 - 00420992 ____C (LT) C:\windows\system32\dllcache\ltmdmntt.sys
2015-03-12 13:33 - 2004-08-03 23:39 - 00020864 ____C (Logitech Inc.) C:\windows\system32\dllcache\lwadihid.sys
2015-03-12 13:33 - 2001-08-17 22:36 - 00058880 ____C (Microsoft Corporation) C:\windows\system32\dllcache\m3092dc.dll
2015-03-12 13:33 - 2001-08-17 22:36 - 00058368 ____C (Microsoft Corporation) C:\windows\system32\dllcache\m3091dc.dll
2015-03-12 13:33 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\windows\system32\dllcache\memgrp.dll
2015-03-12 13:33 - 2001-08-17 14:56 - 00235648 ____C (Matrox Graphics Inc.) C:\windows\system32\dllcache\mgaud.dll
2015-03-12 13:33 - 2001-08-17 13:58 - 00008320 ____C (Microsoft Corporation) C:\windows\system32\dllcache\memcard.sys
2015-03-12 13:33 - 2001-08-17 13:57 - 00016128 ____C (Microsoft Corporation) C:\windows\system32\dllcache\modemcsa.sys
2015-03-12 13:33 - 2001-08-17 13:53 - 00004992 ____C (Microsoft Corporation) C:\windows\system32\dllcache\loop.sys
2015-03-12 13:33 - 2001-08-17 13:52 - 00017280 ____C (American Megatrends Inc.) C:\windows\system32\dllcache\mraid35x.sys
2015-03-12 13:33 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\windows\system32\dllcache\mammoth.sys
2015-03-12 13:33 - 2001-08-17 13:52 - 00006528 ____C (Microsoft Corporation) C:\windows\system32\dllcache\miniqic.sys
2015-03-12 13:33 - 2001-08-17 13:28 - 00802683 ____C (Lucent Technologies) C:\windows\system32\dllcache\ltsm.sys
2015-03-12 13:33 - 2001-08-17 13:28 - 00797500 ____C (LT) C:\windows\system32\dllcache\ltsmt.sys
2015-03-12 13:33 - 2001-08-17 13:28 - 00727786 ____C (Xircom, Inc.) C:\windows\system32\dllcache\ltck000c.sys
2015-03-12 13:33 - 2001-08-17 13:28 - 00576746 ____C (LT) C:\windows\system32\dllcache\ltmdmntl.sys
2015-03-12 13:33 - 2001-08-17 12:50 - 00320384 ____C (Matrox Graphics Inc.) C:\windows\system32\dllcache\mgaum.sys
2015-03-12 13:33 - 2001-08-17 12:49 - 00022848 ____C (Logitech Inc.) C:\windows\system32\dllcache\lwusbhid.sys
2015-03-12 13:33 - 2001-08-17 12:19 - 00048768 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\maestro.sys
2015-03-12 13:33 - 2001-08-17 12:12 - 00164586 ____C (Madge Networks Ltd) C:\windows\system32\dllcache\mdgndis5.sys
2015-03-12 13:32 - 2008-04-13 16:11 - 00253952 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kdsusd.dll
2015-03-12 13:32 - 2008-04-13 16:11 - 00048640 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kdsui.dll
2015-03-12 13:32 - 2008-04-13 10:40 - 00034688 ____C (Toshiba Corp.) C:\windows\system32\dllcache\lbrtfdc.sys
2015-03-12 13:32 - 2003-03-31 07:00 - 00047066 ____C () C:\windows\system32\dllcache\ksc.nls
2015-03-12 13:32 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kousd.dll
2015-03-12 13:32 - 2001-08-17 13:51 - 00015744 ____C (Litronic Industries) C:\windows\system32\dllcache\lit220p.sys
2015-03-12 13:32 - 2001-08-17 12:12 - 00070730 ____C (Linksys Group, Inc.) C:\windows\system32\dllcache\lne100tx.sys
2015-03-12 13:32 - 2001-08-17 12:12 - 00026442 ____C (SMSC) C:\windows\system32\dllcache\lanepic5.sys
2015-03-12 13:32 - 2001-08-17 12:12 - 00020573 ____C (The Linksts Group ) C:\windows\system32\dllcache\lne100.sys
2015-03-12 13:32 - 2001-08-17 12:12 - 00019016 ____C (Kingston Technology Company ) C:\windows\system32\dllcache\ktc111.sys
2015-03-12 13:32 - 2001-08-17 12:11 - 00025065 ____C (D-Link) C:\windows\system32\dllcache\lmndis3.sys
2015-03-12 13:30 - 2008-04-13 16:12 - 00151552 ____C (Microsoft Corporation) C:\windows\system32\dllcache\irftp.exe
2015-03-12 13:30 - 2008-04-13 16:11 - 00028160 ____C (Microsoft Corporation) C:\windows\system32\dllcache\irmon.dll
2015-03-12 13:30 - 2008-04-13 10:54 - 00088192 ____C (Microsoft Corporation) C:\windows\system32\dllcache\irda.sys
2015-03-12 13:30 - 2001-08-17 13:51 - 00018688 ____C (Microsoft Corporation) C:\windows\system32\dllcache\irsir.sys
2015-03-12 13:30 - 2001-08-17 13:49 - 00026624 ____C (SigmaTel, Inc.) C:\windows\system32\dllcache\irstusb.sys
2015-03-12 13:30 - 2001-08-17 13:49 - 00023552 ____C (MKNet Corporation) C:\windows\system32\dllcache\irmk7.sys
2015-03-12 13:29 - 2008-04-13 10:40 - 00005504 ____C (Microsoft Corporation) C:\windows\system32\dllcache\intelide.sys
2015-03-12 13:29 - 2001-08-17 22:36 - 00090200 ____C (Perle Systems Ltd. ) C:\windows\system32\dllcache\io8ports.dll
2015-03-12 13:29 - 2001-08-17 13:52 - 00016000 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ini910u.sys
2015-03-12 13:29 - 2001-08-17 13:50 - 00038784 ____C (Perle Systems Ltd. ) C:\windows\system32\dllcache\io8.sys
2015-03-12 13:29 - 2001-08-17 13:47 - 00013056 ____C (Microsoft Corporation) C:\windows\system32\dllcache\inport.sys
2015-03-12 13:29 - 2001-08-17 12:12 - 00045632 ____C (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) C:\windows\system32\dllcache\ip5515.sys
2015-03-12 13:25 - 2008-04-13 16:11 - 00702845 ____C (Intel® Corporation) C:\windows\system32\dllcache\i81xdnt5.dll
2015-03-12 13:25 - 2004-08-03 23:29 - 00161020 ____C (Intel® Corporation) C:\windows\system32\dllcache\i81xnt5.sys
2015-03-12 13:25 - 2001-08-17 22:36 - 00372824 ____C (Xircom) C:\windows\system32\dllcache\iconf32.dll
2015-03-12 13:25 - 2001-08-17 22:36 - 00091136 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam4com.dll
2015-03-12 13:25 - 2001-08-17 22:36 - 00061952 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam4ext.dll
2015-03-12 13:25 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam5com.dll
2015-03-12 13:25 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam3ext.dll
2015-03-12 13:25 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam5ext.dll
2015-03-12 13:25 - 2001-08-17 22:34 - 00009216 ____C (IBM Corporation) C:\windows\system32\dllcache\ibmsgnet.dll
2015-03-12 13:25 - 2001-08-17 14:06 - 00154496 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam4usb.sys
2015-03-12 13:25 - 2001-08-17 14:06 - 00100992 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam5usb.sys
2015-03-12 13:25 - 2001-08-17 14:06 - 00038528 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ibmvcap.sys
2015-03-12 13:25 - 2001-08-17 14:05 - 00141056 ____C (Microsoft Corporation) C:\windows\system32\dllcache\icam3.sys
2015-03-12 13:25 - 2001-08-17 12:49 - 00058592 ____C (Intel Corporation) C:\windows\system32\dllcache\i740nt5.sys
2015-03-12 13:25 - 2001-08-17 12:12 - 00109085 ____C (IBM Corporation) C:\windows\system32\dllcache\ibmtrp.sys
2015-03-12 13:25 - 2001-08-17 12:12 - 00100936 ____C (IBM Corporation) C:\windows\system32\dllcache\ibmtok.sys
2015-03-12 13:25 - 2001-08-17 12:11 - 00028700 ____C (IBM Corp.) C:\windows\system32\dllcache\ibmexmp.sys
2015-03-12 13:24 - 2008-04-13 10:41 - 00018560 ____C (Microsoft Corporation) C:\windows\system32\dllcache\i2omp.sys
2015-03-12 13:24 - 2008-04-13 10:41 - 00008576 ____C (Microsoft Corporation) C:\windows\system32\dllcache\i2omgmt.sys
2015-03-12 13:24 - 2001-08-17 14:56 - 00353184 ____C (Intel Corporation) C:\windows\system32\dllcache\i740dnt5.dll
2015-03-12 13:23 - 2001-08-17 22:36 - 00009759 ____C (Conexant) C:\windows\system32\dllcache\hsf_inst.dll
2015-03-12 13:23 - 2001-08-17 13:28 - 00542879 ____C (Conexant) C:\windows\system32\dllcache\hsf_msft.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00488383 ____C (Conexant) C:\windows\system32\dllcache\hsf_v124.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00391199 ____C (Conexant) C:\windows\system32\dllcache\hsf_k56k.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00289887 ____C (Conexant) C:\windows\system32\dllcache\hsf_fall.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00199711 ____C (Conexant) C:\windows\system32\dllcache\hsf_faxx.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00150239 ____C (Conexant) C:\windows\system32\dllcache\hsf_amos.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00115807 ____C (Conexant) C:\windows\system32\dllcache\hsf_fsks.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00073279 ____C (Conexant) C:\windows\system32\dllcache\hsf_spkp.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00067167 ____C (Conexant) C:\windows\system32\dllcache\hsf_bsc2.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00057471 ____C (Conexant) C:\windows\system32\dllcache\hsf_samp.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00050751 ____C (Conexant) C:\windows\system32\dllcache\hsf_tone.sys
2015-03-12 13:23 - 2001-08-17 13:28 - 00044863 ____C (Conexant) C:\windows\system32\dllcache\hsf_soar.sys
2015-03-12 13:22 - 2001-08-17 22:36 - 00324608 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpojwia.dll
2015-03-12 13:22 - 2001-08-17 22:36 - 00068608 ____C (Avisioin) C:\windows\system32\dllcache\hpgt53tk.dll
2015-03-12 13:22 - 2001-08-17 22:36 - 00032768 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpgtmcro.dll
2015-03-12 13:22 - 2001-08-17 22:36 - 00019456 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hr1w.dll
2015-03-12 13:22 - 2001-08-17 22:36 - 00013312 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpsjmcro.dll
2015-03-12 13:22 - 2001-08-17 14:07 - 00025952 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpn.sys
2015-03-12 13:22 - 2001-08-17 13:52 - 00005760 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpt4qic.sys
2015-03-12 13:21 - 2001-08-17 22:36 - 00165888 ____C () C:\windows\system32\dllcache\hpgt53.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00126976 ____C (Hewlett Packard) C:\windows\system32\dllcache\hpgt34tk.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00123392 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpgt21tk.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00119296 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpdigwia.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00101376 ____C () C:\windows\system32\dllcache\hpgt34.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00093696 ____C () C:\windows\system32\dllcache\hpgt42.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00089088 ____C () C:\windows\system32\dllcache\hpgt33.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00083968 ____C () C:\windows\system32\dllcache\hpgt21.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00048128 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpgt33tk.dll
2015-03-12 13:21 - 2001-08-17 22:36 - 00031232 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hpgt42tk.dll
2015-03-12 13:20 - 2008-04-13 16:11 - 00021504 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hidserv.dll
2015-03-12 13:20 - 2008-04-13 10:36 - 00020352 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hidbatt.sys
2015-03-12 13:20 - 2001-08-17 14:02 - 00008576 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hidgame.sys
2015-03-12 13:20 - 2001-08-17 14:02 - 00002688 ____C (Microsoft Corporation) C:\windows\system32\dllcache\hidswvd.sys
2015-03-12 13:19 - 2008-04-13 10:45 - 00059136 ____C (Microsoft Corporation) C:\windows\system32\dllcache\gckernel.sys
2015-03-12 13:19 - 2008-04-13 10:45 - 00010624 ____C (Microsoft Corporation) C:\windows\system32\dllcache\gameenum.sys
2015-03-12 13:19 - 2008-04-13 10:40 - 00028288 ____C (Gemplus) C:\windows\system32\dllcache\grserial.sys
2015-03-12 13:19 - 2004-08-03 23:31 - 00034173 ____C (Marconi Communications, Inc.) C:\windows\system32\dllcache\forehe.sys
2015-03-12 13:19 - 2001-08-17 22:36 - 00092160 ____C (Microsoft Corporation) C:\windows\system32\dllcache\fuusd.dll
2015-03-12 13:19 - 2001-08-17 22:36 - 00071680 ____C (Microsoft Corporation) C:\windows\system32\dllcache\fnfilter.dll
2015-03-12 13:19 - 2001-08-17 14:56 - 01733120 ____C (Matrox Graphics Inc.) C:\windows\system32\dllcache\g400d.dll
2015-03-12 13:19 - 2001-08-17 14:56 - 00470144 ____C (Matrox Graphics Inc.) C:\windows\system32\dllcache\g200d.dll
2015-03-12 13:19 - 2001-08-17 13:51 - 00082304 ____C (Gemplus) C:\windows\system32\dllcache\grclass.sys
2015-03-12 13:19 - 2001-08-17 13:51 - 00017408 ____C (Gemplus) C:\windows\system32\dllcache\gpr400.sys
2015-03-12 13:19 - 2001-08-17 13:28 - 00907456 ____C (Conexant) C:\windows\system32\dllcache\hcf_msft.sys
2015-03-12 13:19 - 2001-08-17 12:49 - 00322432 ____C (Matrox Graphics Inc.) C:\windows\system32\dllcache\g400m.sys
2015-03-12 13:19 - 2001-08-17 12:49 - 00320384 ____C (Matrox Graphics Inc.) C:\windows\system32\dllcache\g200m.sys
2015-03-12 13:19 - 2001-08-17 12:15 - 00455680 ____C (AVM GmbH) C:\windows\system32\dllcache\fus2base.sys
2015-03-12 13:19 - 2001-08-17 12:15 - 00455296 ____C (AVM GmbH) C:\windows\system32\dllcache\fusbbase.sys
2015-03-12 13:19 - 2001-08-17 12:15 - 00454912 ____C (AVM GmbH) C:\windows\system32\dllcache\fxusbase.sys
2015-03-12 13:19 - 2001-08-17 12:15 - 00442240 ____C (AVM GmbH) C:\windows\system32\dllcache\fpnpbase.sys
2015-03-12 13:19 - 2001-08-17 12:14 - 00444416 ____C (AVM GmbH) C:\windows\system32\dllcache\fpcibase.sys
2015-03-12 13:19 - 2001-08-17 12:14 - 00441728 ____C (AVM GmbH) C:\windows\system32\dllcache\fpcmbase.sys
2015-03-12 13:18 - 2004-08-03 23:32 - 00137088 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\essm2e.sys
2015-03-12 13:18 - 2001-08-17 22:36 - 00061952 ____C (Equinox Systems Inc.) C:\windows\system32\dllcache\eqnloop.exe
2015-03-12 13:18 - 2001-08-17 22:36 - 00053248 ____C (Equinox Systems Inc.) C:\windows\system32\dllcache\eqndiag.exe
2015-03-12 13:18 - 2001-08-17 22:36 - 00051200 ____C (Equinox Systems Inc.) C:\windows\system32\dllcache\eqnlogr.exe
2015-03-12 13:18 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\windows\system32\dllcache\esunib.dll
2015-03-12 13:18 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\windows\system32\dllcache\esuni.dll
2015-03-12 13:18 - 2001-08-17 22:36 - 00043008 ____C (SEIKO EPSON CORP.) C:\windows\system32\dllcache\esucm.dll
2015-03-12 13:18 - 2001-08-17 22:36 - 00034816 ____C (SEIKO EPSON CORP.) C:\windows\system32\dllcache\esuimg.dll
2015-03-12 13:18 - 2001-08-17 13:53 - 00007296 ____C (Microsoft Corporation) C:\windows\system32\dllcache\elmsmc.sys
2015-03-12 13:18 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\windows\system32\dllcache\exabyte2.sys
2015-03-12 13:18 - 2001-08-17 13:50 - 00144896 ____C (Microsoft Corporation) C:\windows\system32\dllcache\epcfw2k.sys
2015-03-12 13:18 - 2001-08-17 13:50 - 00114944 ____C (Microsoft Corporation) C:\windows\system32\dllcache\epstw2k.sys
2015-03-12 13:18 - 2001-08-17 13:46 - 00006400 ____C (Microsoft Corporation) C:\windows\system32\dllcache\enum1394.sys
2015-03-12 13:18 - 2001-08-17 13:28 - 00634134 ____C (3Com Corporation) C:\windows\system32\dllcache\el656ct5.sys
2015-03-12 13:18 - 2001-08-17 13:28 - 00595647 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\es56cvmp.sys
2015-03-12 13:18 - 2001-08-17 13:28 - 00594238 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\es56hpi.sys
2015-03-12 13:18 - 2001-08-17 13:28 - 00347550 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\es56tpi.sys
2015-03-12 13:18 - 2001-08-17 13:28 - 00241206 ____C (3Com Corporation) C:\windows\system32\dllcache\el656se5.sys
2015-03-12 13:18 - 2001-08-17 12:19 - 00283904 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\emu10k1m.sys
2015-03-12 13:18 - 2001-08-17 12:19 - 00174464 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\es198x.sys
2015-03-12 13:18 - 2001-08-17 12:19 - 00072192 ____C (ESS Technology Inc.) C:\windows\system32\dllcache\es1969.sys
2015-03-12 13:18 - 2001-08-17 12:19 - 00063360 ____C (ESS Technology, Inc.) C:\windows\system32\dllcache\ess.sys
2015-03-12 13:18 - 2001-08-17 12:19 - 00040704 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\es1371mp.sys
2015-03-12 13:18 - 2001-08-17 12:19 - 00037120 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\es1370mp.sys
2015-03-12 13:18 - 2001-08-17 12:17 - 00629952 ____C (Equinox Systems Inc.) C:\windows\system32\dllcache\eqn.sys
2015-03-12 13:18 - 2001-08-17 12:12 - 00024618 ____C (NETGEAR) C:\windows\system32\dllcache\fa410nd5.sys
2015-03-12 13:18 - 2001-08-17 12:12 - 00018503 ____C (Intel Corporation) C:\windows\system32\dllcache\epro4.sys
2015-03-12 13:18 - 2001-08-17 12:12 - 00016998 ____C (Intel Corporation) C:\windows\system32\dllcache\ex10.sys
2015-03-12 13:18 - 2001-08-17 12:12 - 00016074 ____C (NETGEAR Corp.) C:\windows\system32\dllcache\fa312nd5.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00455199 ____C (3Com Corporation.) C:\windows\system32\dllcache\el985n51.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00171520 ____C (3Com Corporation) C:\windows\system32\dllcache\el99xn51.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00153631 ____C (3Com Corporation) C:\windows\system32\dllcache\el90xnd5.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00077386 ____C (3Com Corporation) C:\windows\system32\dllcache\el656nd5.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00070174 ____C (3Com Corporation) C:\windows\system32\dllcache\el98xn5.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00069194 ____C (3Com Corporation) C:\windows\system32\dllcache\el656cd5.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00066591 ____C (3Com Corporation) C:\windows\system32\dllcache\el90xbc5.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00012362 ____C (FUJITSU LIMITED) C:\windows\system32\dllcache\f3ab18xi.sys
2015-03-12 13:18 - 2001-08-17 12:11 - 00011850 ____C (FUJITSU LIMITED) C:\windows\system32\dllcache\f3ab18xj.sys
2015-03-12 13:18 - 2001-08-17 12:10 - 00069692 ____C (3Com Corporation) C:\windows\system32\dllcache\el575nd5.sys
2015-03-12 13:18 - 2001-08-17 12:10 - 00026141 ____C (3Com Corporation) C:\windows\system32\dllcache\el589nd5.sys
2015-03-12 13:18 - 2001-08-17 12:10 - 00025159 ____C (3Com Corporation) C:\windows\system32\dllcache\elnk3.sys
2015-03-12 13:18 - 2001-08-17 12:10 - 00022090 ____C (3Com Corporation) C:\windows\system32\dllcache\fem556n5.sys
2015-03-12 13:18 - 2001-08-17 12:10 - 00019996 ____C (3Com Corporation) C:\windows\system32\dllcache\em556n4.sys
2015-03-12 13:17 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\windows\system32\dllcache\e100b325.sys
2015-03-12 13:17 - 2001-08-17 12:12 - 00050719 ____C (Intel Corporation) C:\windows\system32\dllcache\e1000nt5.sys
2015-03-12 13:17 - 2001-08-17 12:12 - 00019594 ____C (Intel Corporation) C:\windows\system32\dllcache\e100isa4.sys
2015-03-12 13:17 - 2001-08-17 12:10 - 00055999 ____C (3Com Corporation) C:\windows\system32\dllcache\el556nd5.sys
2015-03-12 13:17 - 2001-08-17 12:10 - 00044103 ____C (3Com Corporation) C:\windows\system32\dllcache\el515.sys
2015-03-12 13:17 - 2001-08-17 12:10 - 00024653 ____C (3Com Corporation) C:\windows\system32\dllcache\el574nd4.sys
2015-03-12 13:16 - 2008-04-13 16:12 - 00020992 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dshowext.ax
2015-03-12 13:16 - 2001-08-17 12:20 - 00334208 ____C (Yamaha Corp.) C:\windows\system32\dllcache\ds1wdm.sys
2015-03-12 13:15 - 2001-08-17 14:07 - 00020192 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dpti2o.sys
2015-03-12 13:14 - 2001-08-17 13:47 - 00023808 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dot4usb.sys
2015-03-12 13:14 - 2001-08-17 13:47 - 00008704 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dot4scan.sys
2015-03-12 13:14 - 2001-08-17 12:12 - 00028062 ____C (National Semiconductor Coproration) C:\windows\system32\dllcache\dp83820.sys
2015-03-12 13:13 - 2008-04-13 10:39 - 00206976 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dot4.sys
2015-03-12 13:13 - 2001-08-17 13:47 - 00012928 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dot4prt.sys
2015-03-12 13:11 - 2008-04-13 10:40 - 00008320 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dlttape.sys
2015-03-12 13:11 - 2001-08-17 22:36 - 00614429 ____C (Digi International Inc.) C:\windows\system32\dllcache\digiview.exe
2015-03-12 13:11 - 2001-08-17 22:36 - 00236060 ____C (Eicon Technology) C:\windows\system32\dllcache\ditrace.exe
2015-03-12 13:11 - 2001-08-17 22:36 - 00038985 ____C (Eicon Technology) C:\windows\system32\dllcache\disrvsu.dll
2015-03-12 13:11 - 2001-08-17 22:36 - 00037962 ____C () C:\windows\system32\dllcache\divaprop.dll
2015-03-12 13:11 - 2001-08-17 22:36 - 00031305 ____C (Eicon Technology) C:\windows\system32\dllcache\disrvpp.dll
2015-03-12 13:11 - 2001-08-17 22:36 - 00029768 ____C () C:\windows\system32\dllcache\divasu.dll
2015-03-12 13:11 - 2001-08-17 22:36 - 00006729 ____C (Eicon Technology) C:\windows\system32\dllcache\disrvci.dll
2015-03-12 13:11 - 2001-08-17 22:36 - 00006216 ____C () C:\windows\system32\dllcache\divaci.dll
2015-03-12 13:11 - 2001-08-17 12:17 - 00042432 ____C (Digi International, Inc.) C:\windows\system32\dllcache\digirlpt.sys
2015-03-12 13:11 - 2001-08-17 12:14 - 00952007 ____C (Eicon Technology) C:\windows\system32\dllcache\diwan.sys
2015-03-12 13:11 - 2001-08-17 12:13 - 00091305 ____C (Eicon Technology) C:\windows\system32\dllcache\dimaint.sys
2015-03-12 13:11 - 2001-08-17 12:11 - 00029696 ____C (CNet Technology, Inc. ) C:\windows\system32\dllcache\dm9pci5.sys
2015-03-12 13:11 - 2001-08-17 12:11 - 00026698 ____C (D-Link Corporation) C:\windows\system32\dllcache\dlh5xnd5.sys
2015-03-12 13:10 - 2001-08-17 22:36 - 00419357 ____C (Digi International) C:\windows\system32\dllcache\dgconfig.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00256512 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\devcon32.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00229462 ____C (Digi International Inc.) C:\windows\system32\dllcache\digifwrk.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00159828 ____C (Digi International Inc.) C:\windows\system32\dllcache\digihlc.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00131156 ____C (Digi International Inc.) C:\windows\system32\dllcache\digidbp.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00110621 ____C (Digi International, Inc.) C:\windows\system32\dllcache\digirlpt.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00110592 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dc260usd.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00102484 ____C (Digi International Inc.) C:\windows\system32\dllcache\digiinf.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00086016 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dc240usd.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00080896 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dc210usd.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00065622 ____C (Digi International Inc.) C:\windows\system32\dllcache\digiasyn.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00041046 ____C (Digi International Inc.) C:\windows\system32\dllcache\digiisdn.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00025600 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dc210_32.dll
2015-03-12 13:10 - 2001-08-17 22:36 - 00024064 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\devldr32.exe
2015-03-12 13:10 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ddsmc.sys
2015-03-12 13:10 - 2001-08-17 12:17 - 00090525 ____C (Digi International Inc.) C:\windows\system32\dllcache\digifep5.sys
2015-03-12 13:10 - 2001-08-17 12:17 - 00029531 ____C (Digi International Inc.) C:\windows\system32\dllcache\dgapci.sys
2015-03-12 13:10 - 2001-08-17 12:14 - 00021606 ____C (Digi International Inc.) C:\windows\system32\dllcache\digiisdn.sys
2015-03-12 13:10 - 2001-08-17 12:13 - 00103044 ____C (Digi International Inc.) C:\windows\system32\dllcache\digidxb.sys
2015-03-12 13:10 - 2001-08-17 12:13 - 00037735 ____C (Digi International Inc.) C:\windows\system32\dllcache\digiasyn.sys
2015-03-12 13:10 - 2001-08-17 12:12 - 00063208 ____C (Intel Corporation.) C:\windows\system32\dllcache\dc21x4.sys
2015-03-12 13:10 - 2001-08-17 12:11 - 00024649 ____C (D-Link) C:\windows\system32\dllcache\dfe650d.sys
2015-03-12 13:10 - 2001-08-17 12:11 - 00024648 ____C (D-Link) C:\windows\system32\dllcache\dfe650.sys
2015-03-12 13:10 - 2001-08-17 12:11 - 00020928 ____C (Digital Networks, LLC) C:\windows\system32\dllcache\defpa.sys
2015-03-12 13:09 - 2001-08-17 13:52 - 00179584 ____C (Mylex Corporation) C:\windows\system32\dllcache\dac2w2k.sys
2015-03-12 13:09 - 2001-08-17 13:52 - 00014720 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dac960nt.sys
2015-03-12 13:08 - 2008-04-13 16:11 - 00249856 ____C (Comtrol® Corporation) C:\windows\system32\dllcache\ctmasetp.dll
2015-03-12 13:08 - 2008-04-13 10:36 - 00013952 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cmbatt.sys
2015-03-12 13:08 - 2008-04-13 10:36 - 00010240 ____C (Microsoft Corporation) C:\windows\system32\dllcache\compbatt.sys
2015-03-12 13:08 - 2004-08-03 23:32 - 00048640 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwrwdm.sys
2015-03-12 13:08 - 2001-08-17 22:36 - 00216064 ____C (COMPAQ Inc.) C:\windows\system32\dllcache\cpscan.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00175104 ____C (Microsoft Corporation) C:\windows\system32\dllcache\csamsp.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00044032 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cnusd.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyycoins.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyzports.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyyports.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00027136 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyzcoins.dll
2015-03-12 13:08 - 2001-08-17 22:36 - 00004096 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\ctwdm32.dll
2015-03-12 13:08 - 2001-08-17 14:56 - 00170880 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cl546x.dll
2015-03-12 13:08 - 2001-08-17 13:57 - 00248064 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cl546xm.sys
2015-03-12 13:08 - 2001-08-17 13:52 - 00014976 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cpqarray.sys
2015-03-12 13:08 - 2001-08-17 13:51 - 00020736 ____C (OMNIKEY AG) C:\windows\system32\dllcache\cmbp0wdm.sys
2015-03-12 13:08 - 2001-08-17 13:51 - 00006656 ____C (CMD Technology, Inc.) C:\windows\system32\dllcache\cmdide.sys
2015-03-12 13:08 - 2001-08-17 13:50 - 00050176 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyyport.sys
2015-03-12 13:08 - 2001-08-17 13:50 - 00049792 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyzport.sys
2015-03-12 13:08 - 2001-08-17 13:50 - 00017152 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyclad-z.sys
2015-03-12 13:08 - 2001-08-17 13:50 - 00014848 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cyclom-y.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00111872 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwcspud.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00096256 ____C (Copyright © Creative Technology Ltd. 1994-2001) C:\windows\system32\dllcache\ctlsb16.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00093952 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwcwdm.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00072832 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwbwdm.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00042112 ____C (Conexant Systems Inc.) C:\windows\system32\dllcache\crtaud.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00006912 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\ctlfacem.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00003712 ____C (Creative Technology Ltd.) C:\windows\system32\dllcache\ctljystk.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00003584 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwcosnt5.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwbmidi.sys
2015-03-12 13:08 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\windows\system32\dllcache\cwbase.sys
2015-03-12 13:08 - 2001-08-17 12:13 - 00021533 ____C (Compaq Computer Corporation) C:\windows\system32\dllcache\cpqndis5.sys
2015-03-12 13:08 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\windows\system32\dllcache\d100ib5.sys
2015-03-12 13:08 - 2001-08-17 12:11 - 00060970 ____C (Compaq Computer Corp.) C:\windows\system32\dllcache\cpqtrnd5.sys
2015-03-12 13:08 - 2001-08-17 12:11 - 00039936 ____C (Conexant Systems, Inc.) C:\windows\system32\dllcache\cnxt1803.sys
2015-03-12 13:07 - 2008-04-13 16:11 - 00121856 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camext30.dll
2015-03-12 13:07 - 2008-04-13 10:40 - 00008192 ____C (Microsoft Corporation) C:\windows\system32\dllcache\changer.sys
2015-03-12 13:07 - 2003-03-31 07:00 - 00177698 ____C () C:\windows\system32\dllcache\c_20949.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00173602 ____C () C:\windows\system32\dllcache\c_20936.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066594 ____C () C:\windows\system32\dllcache\c_864.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066594 ____C () C:\windows\system32\dllcache\c_862.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066594 ____C () C:\windows\system32\dllcache\c_858.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066594 ____C () C:\windows\system32\dllcache\c_720.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_870.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_708.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_28596.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_21027.nls
2015-03-12 13:07 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_21025.nls
2015-03-12 13:07 - 2001-08-17 22:37 - 00244224 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camext20.ax
2015-03-12 13:07 - 2001-08-17 22:37 - 00116736 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camext30.ax
2015-03-12 13:07 - 2001-08-17 22:37 - 00073216 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camexo20.ax
2015-03-12 13:07 - 2001-08-17 22:36 - 00236032 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camext20.dll
2015-03-12 13:07 - 2001-08-17 22:36 - 00074240 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camexo20.dll
2015-03-12 13:07 - 2001-08-17 22:36 - 00032256 ____C (Eicon Technology Corporation) C:\windows\system32\dllcache\diapi2NT.dll
2015-03-12 13:07 - 2001-08-17 14:56 - 00111232 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cl5465.dll
2015-03-12 13:07 - 2001-08-17 14:56 - 00091264 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cirrus.dll
2015-03-12 13:07 - 2001-08-17 14:05 - 00314752 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camdro21.sys
2015-03-12 13:07 - 2001-08-17 14:04 - 00223232 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camdrv21.sys
2015-03-12 13:07 - 2001-08-17 14:04 - 00171264 ____C (Microsoft Corporation) C:\windows\system32\dllcache\camdrv30.sys
2015-03-12 13:07 - 2001-08-17 14:02 - 00272640 ____C (RAVISENT Technologies Inc.) C:\windows\system32\dllcache\cinemclc.sys
2015-03-12 13:07 - 2001-08-17 13:57 - 00045696 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cirrus.sys
2015-03-12 13:07 - 2001-08-17 13:52 - 00007680 ____C (Microsoft Corporation) C:\windows\system32\dllcache\cd20xrnt.sys
2015-03-12 13:07 - 2001-08-17 13:28 - 00714698 ____C (Xircom, Inc.) C:\windows\system32\dllcache\cbmdmkxx.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00980034 ____C (Xircom) C:\windows\system32\dllcache\cicap.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00164923 ____C (Eicon Technology) C:\windows\system32\dllcache\diapi2.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00049182 ____C (Xircom, Inc.) C:\windows\system32\dllcache\cem56n5.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00046108 ____C (Xircom, Inc.) C:\windows\system32\dllcache\cben5.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00027164 ____C (Xircom, Inc.) C:\windows\system32\dllcache\ce3n5.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\windows\system32\dllcache\cem33n5.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\windows\system32\dllcache\cem28n5.sys
2015-03-12 13:07 - 2001-08-17 12:13 - 00021530 ____C (Xircom, Inc.) C:\windows\system32\dllcache\ce2n5.sys
2015-03-12 13:07 - 2001-08-17 12:12 - 00039680 ____C (Silicom Ltd.) C:\windows\system32\dllcache\cb325.sys
2015-03-12 13:07 - 2001-08-17 12:12 - 00037916 ____C (Fast Ethernet Controller Provider) C:\windows\system32\dllcache\cb102.sys
2015-03-12 13:06 - 2003-03-31 07:00 - 00180770 ____C () C:\windows\system32\dllcache\c_20932.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20924.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20880.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20871.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20838.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20833.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20424.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20423.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20420.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20297.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20290.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20285.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20284.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20280.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20278.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20277.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20273.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20269.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20108.nls
2015-03-12 13:06 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20107.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00189986 ____C () C:\windows\system32\dllcache\c_1361.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00187938 ____C () C:\windows\system32\dllcache\c_20005.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00186402 ____C () C:\windows\system32\dllcache\c_20001.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00185378 ____C () C:\windows\system32\dllcache\c_20003.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00180258 ____C () C:\windows\system32\dllcache\c_20004.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00180258 ____C () C:\windows\system32\dllcache\c_20000.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00173602 ____C () C:\windows\system32\dllcache\c_20002.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20106.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_20105.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1149.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1148.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1147.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1146.nls
2015-03-12 13:05 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1145.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00195618 ____C () C:\windows\system32\dllcache\c_10002.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00177698 ____C () C:\windows\system32\dllcache\c_10003.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00173602 ____C () C:\windows\system32\dllcache\c_10008.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00162850 ____C () C:\windows\system32\dllcache\c_10001.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1144.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1143.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1142.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1141.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1140.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_1047.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_10021.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_10005.nls
2015-03-12 13:04 - 2003-03-31 07:00 - 00066082 ____C () C:\windows\system32\dllcache\c_10004.nls
2015-03-12 13:03 - 2001-08-17 13:51 - 00013824 ____C (Microsoft Corporation) C:\windows\system32\dllcache\bulltlp3.sys
2015-03-12 13:02 - 2001-08-17 13:12 - 00010368 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brusbscn.sys
2015-03-12 13:02 - 2001-08-17 12:11 - 00031529 ____C (BreezeCOM) C:\windows\system32\dllcache\brzwlan.sys
2015-03-12 13:01 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brserif.dll
2015-03-12 13:01 - 2001-08-17 22:36 - 00005120 ____C (Brother Industries,Ltd.) C:\windows\system32\dllcache\brscnrsm.dll
2015-03-12 13:01 - 2001-08-17 13:12 - 00060416 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brserwdm.sys
2015-03-12 13:01 - 2001-08-17 13:12 - 00011008 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brusbmdm.sys
2015-03-12 13:00 - 2003-03-31 07:00 - 00082172 ____C () C:\windows\system32\dllcache\bopomofo.nls
2015-03-12 13:00 - 2001-08-17 22:36 - 00081408 ____C (Microsoft Corporation) C:\windows\system32\dllcache\brmfcwia.dll
2015-03-12 13:00 - 2001-08-17 22:36 - 00041472 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brmfusb.dll
2015-03-12 13:00 - 2001-08-17 22:36 - 00032256 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brmfrsmg.exe
2015-03-12 13:00 - 2001-08-17 22:36 - 00029696 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brmflpt.dll
2015-03-12 13:00 - 2001-08-17 22:36 - 00019456 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brbidiif.dll
2015-03-12 13:00 - 2001-08-17 22:36 - 00015360 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brmfbidi.dll
2015-03-12 13:00 - 2001-08-17 22:36 - 00012800 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brevif.dll
2015-03-12 13:00 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brcoinst.dll
2015-03-12 13:00 - 2001-08-17 13:12 - 00039552 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brparwdm.sys
2015-03-12 13:00 - 2001-08-17 13:12 - 00012160 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brfiltlo.sys
2015-03-12 13:00 - 2001-08-17 13:12 - 00003968 ____C (Brother Industries, Ltd.) C:\windows\system32\dllcache\brfiltup.sys
2015-03-12 13:00 - 2001-08-17 13:12 - 00003168 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brparimg.sys
2015-03-12 13:00 - 2001-08-17 13:12 - 00002944 ____C (Brother Industries Ltd.) C:\windows\system32\dllcache\brfilt.sys
2015-03-12 12:59 - 2008-04-13 16:12 - 00018432 ____C (Microsoft Corporation) C:\windows\system32\dllcache\bdaplgin.ax
2015-03-12 12:59 - 2008-04-13 10:46 - 00013696 ____C (Microsoft Corporation) C:\windows\system32\dllcache\avcstrm.sys
2015-03-12 12:59 - 2008-04-13 10:46 - 00011776 ____C (Microsoft Corporation) C:\windows\system32\dllcache\bdasup.sys
2015-03-12 12:59 - 2008-04-13 10:36 - 00014208 ____C (Microsoft Corporation) C:\windows\system32\dllcache\battc.sys
2015-03-12 12:59 - 2003-03-31 07:00 - 00066728 ____C () C:\windows\system32\dllcache\big5.nls
2015-03-12 12:59 - 2001-08-17 22:36 - 00144384 ____C (AVM GmbH) C:\windows\system32\dllcache\avmenum.dll
2015-03-12 12:59 - 2001-08-17 22:36 - 00102400 ____C (Microsoft Corporation) C:\windows\system32\dllcache\binlsvc.dll
2015-03-12 12:59 - 2001-08-17 22:36 - 00087552 ____C (AVM GmbH) C:\windows\system32\dllcache\avmcoxp.dll
2015-03-12 12:59 - 2001-08-17 14:56 - 00342336 ____C (3Dfx Interactive, Inc.) C:\windows\system32\dllcache\banshee.dll
2015-03-12 12:59 - 2001-08-17 14:01 - 00036096 ____C (Microsoft Corporation) C:\windows\system32\dllcache\avcaudio.sys
2015-03-12 12:59 - 2001-08-17 13:28 - 00871388 ____C (BCM) C:\windows\system32\dllcache\bcmdm.sys
2015-03-12 12:59 - 2001-08-17 12:48 - 00036128 ____C (3Dfx Interactive, Inc.) C:\windows\system32\dllcache\banshee.sys
2015-03-12 12:59 - 2001-08-17 12:19 - 00036992 ____C (Aztech Systems Ltd) C:\windows\system32\dllcache\aztw2320.sys
2015-03-12 12:59 - 2001-08-17 12:13 - 00089952 ____C (AVM GmbH) C:\windows\system32\dllcache\b1cbase.sys
2015-03-12 12:59 - 2001-08-17 12:13 - 00037568 ____C (AVM GmbH) C:\windows\system32\dllcache\avmwan.sys
2015-03-12 12:59 - 2001-08-17 12:11 - 00096640 ____C (Broadcom Corporation) C:\windows\system32\dllcache\b57xp32.sys
2015-03-12 12:59 - 2001-08-17 12:11 - 00066557 ____C (Broadcom Corporation) C:\windows\system32\dllcache\bcm42u.sys
2015-03-12 12:59 - 2001-08-17 12:11 - 00054271 ____C (Broadcom Corporation) C:\windows\system32\dllcache\bcm42xx5.sys
2015-03-12 12:59 - 2001-08-17 12:11 - 00026568 ____C (Broadcom Corporation) C:\windows\system32\dllcache\bcm4e5.sys
2015-03-12 12:58 - 2008-04-13 10:46 - 00038912 ____C (Microsoft Corporation) C:\windows\system32\dllcache\avc.sys
2015-03-12 12:57 - 2001-08-17 12:49 - 00026624 ____C () C:\windows\system32\dllcache\ativxbar.sys
2015-03-12 12:57 - 2001-08-17 12:49 - 00023552 ____C () C:\windows\system32\dllcache\atixbar.sys
2015-03-12 12:57 - 2001-08-17 12:49 - 00019456 ____C () C:\windows\system32\dllcache\ativttxx.sys
2015-03-12 12:56 - 2001-08-17 14:56 - 00104832 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atiraged.dll
2015-03-12 12:56 - 2001-08-17 12:49 - 00049920 ____C () C:\windows\system32\dllcache\atirtcap.sys
2015-03-12 12:56 - 2001-08-17 12:49 - 00026880 ____C () C:\windows\system32\dllcache\atirtsnd.sys
2015-03-12 12:56 - 2001-08-17 12:49 - 00017152 ____C () C:\windows\system32\dllcache\atitvsnd.sys
2015-03-12 12:56 - 2001-08-17 12:49 - 00017152 ____C () C:\windows\system32\dllcache\atitunep.sys
2015-03-12 12:56 - 2001-08-17 12:49 - 00010240 ____C () C:\windows\system32\dllcache\atipcxxx.sys
2015-03-12 12:56 - 2001-08-17 12:49 - 00009472 ____C () C:\windows\system32\dllcache\ativmdcd.sys
2015-03-12 12:56 - 2001-08-17 12:48 - 00070528 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atiragem.sys
2015-03-12 12:55 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\windows\system32\dllcache\atievxx.exe
2015-03-12 12:55 - 2001-08-17 12:49 - 00075136 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atimpae.sys
2015-03-12 12:55 - 2001-08-17 12:48 - 00289664 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atimpab.sys
2015-03-12 12:55 - 2001-08-17 12:48 - 00281600 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atimtai.sys
2015-03-12 12:54 - 2001-08-17 14:56 - 00268160 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atidvai.dll
2015-03-12 12:53 - 2001-08-17 14:56 - 00137216 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atidrae.dll
2015-03-12 12:53 - 2001-08-17 14:55 - 00382592 ____C (ATI Technologies Inc.) C:\windows\system32\dllcache\atidrab.dll
2015-03-12 12:53 - 2001-08-17 14:55 - 00096128 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ati.dll
2015-03-12 12:53 - 2001-08-17 13:57 - 00077568 ____C (ATI Technologies, Inc.) C:\windows\system32\dllcache\ati.sys
2015-03-12 12:53 - 2001-08-17 12:49 - 00046464 ____C () C:\windows\system32\dllcache\atibt829.sys
2015-03-12 12:52 - 2004-08-03 23:31 - 00036224 ____C (ADMtek Incorporated.) C:\windows\system32\dllcache\an983.sys
2015-03-12 12:52 - 2001-08-17 14:07 - 00056960 ____C (Microsoft Corporation) C:\windows\system32\dllcache\aic78xx.sys
2015-03-12 12:52 - 2001-08-17 14:07 - 00055168 ____C (Microsoft Corporation) C:\windows\system32\dllcache\aic78u2.sys
2015-03-12 12:52 - 2001-08-17 13:52 - 00026496 ____C (Advanced System Products, Inc.) C:\windows\system32\dllcache\asc.sys
2015-03-12 12:52 - 2001-08-17 13:52 - 00022400 ____C (Microsoft Corporation) C:\windows\system32\dllcache\asc3350p.sys
2015-03-12 12:52 - 2001-08-17 13:52 - 00012800 ____C (Microsoft Corporation) C:\windows\system32\dllcache\aha154x.sys
2015-03-12 12:52 - 2001-08-17 13:52 - 00012032 ____C (Microsoft Corporation) C:\windows\system32\dllcache\amsint.sys
2015-03-12 12:52 - 2001-08-17 13:51 - 00014848 ____C (Advanced System Products, Inc.) C:\windows\system32\dllcache\asc3550.sys
2015-03-12 12:52 - 2001-08-17 13:51 - 00005248 ____C (Acer Laboratories Inc.) C:\windows\system32\dllcache\aliide.sys
2015-03-12 12:52 - 2001-08-17 13:49 - 00026624 ____C (Acer Laboratories Inc.) C:\windows\system32\dllcache\alifir.sys
2015-03-12 12:52 - 2001-08-17 13:47 - 00006272 ____C (Microsoft Corporation) C:\windows\system32\dllcache\apmbatt.sys
2015-03-12 12:52 - 2001-08-17 12:12 - 00097354 ____C (Bay Networks, Inc.) C:\windows\system32\dllcache\aspndis3.sys
2015-03-12 12:52 - 2001-08-17 12:11 - 00027678 ____C (Acer Laboratories Inc.) C:\windows\system32\dllcache\ali5261.sys
2015-03-12 12:52 - 2001-08-17 12:11 - 00016969 ____C (AmbiCom, Inc.) C:\windows\system32\dllcache\amb8002.sys
2015-03-12 12:51 - 2001-08-17 22:37 - 00024576 ____C (Microsoft Corporation) C:\windows\system32\dllcache\agcgauge.ax
2015-03-12 12:44 - 2004-08-03 23:32 - 00010880 ____C (Aureal, Inc.) C:\windows\system32\dllcache\admjoy.sys
2015-03-12 12:44 - 2001-08-17 14:07 - 00101888 ____C (Microsoft Corporation) C:\windows\system32\dllcache\adpu160m.sys
2015-03-12 12:44 - 2001-08-17 13:53 - 00007424 ____C (Microsoft Corporation) C:\windows\system32\dllcache\adicvls.sys
2015-03-12 12:44 - 2001-08-17 12:19 - 00747392 ____C (Aureal, Inc.) C:\windows\system32\dllcache\adm8830.sys
2015-03-12 12:44 - 2001-08-17 12:19 - 00584448 ____C (Aureal, Inc.) C:\windows\system32\dllcache\adm8810.sys
2015-03-12 12:44 - 2001-08-17 12:19 - 00553984 ____C (Aureal, Inc.) C:\windows\system32\dllcache\adm8820.sys
2015-03-12 12:44 - 2001-08-17 12:11 - 00046112 ____C (Adaptec, Inc ) C:\windows\system32\dllcache\adptsf50.sys
2015-03-12 12:44 - 2001-08-17 12:11 - 00020160 ____C (ADMtek Incorporated) C:\windows\system32\dllcache\adm8511.sys
2015-03-12 12:43 - 2008-04-13 10:46 - 00053376 ____C (Microsoft Corporation) C:\windows\system32\dllcache\1394bus.sys
2015-03-12 12:43 - 2008-04-13 10:46 - 00048128 ____C (Microsoft Corporation) C:\windows\system32\dllcache\61883.sys
2015-03-12 12:43 - 2008-04-13 10:40 - 00012288 ____C (Microsoft Corporation) C:\windows\system32\dllcache\4mmdat.sys
2015-03-12 12:43 - 2004-08-03 23:32 - 00231552 ____C (Acer Laboratories Inc.) C:\windows\system32\dllcache\ac97ali.sys
2015-03-12 12:43 - 2004-08-03 23:32 - 00084480 ____C (VIA Technologies, Inc.) C:\windows\system32\dllcache\ac97via.sys
2015-03-12 12:43 - 2001-08-17 22:36 - 00462848 ____C (Aureal Inc.) C:\windows\system32\dllcache\a3dapi.dll
2015-03-12 12:43 - 2001-08-17 22:36 - 00098304 ____C (Aureal Semiconductor) C:\windows\system32\dllcache\a3d.dll
2015-03-12 12:43 - 2001-08-17 22:36 - 00061440 ____C (Color Flatbed Scanner) C:\windows\system32\dllcache\acerscad.dll
2015-03-12 12:43 - 2001-08-17 14:55 - 00689216 ____C (3dfx Interactive, Inc.) C:\windows\system32\dllcache\3dfxvs.dll
2015-03-12 12:43 - 2001-08-17 14:55 - 00038400 ____C (Microsoft Corporation) C:\windows\system32\dllcache\8514a.dll
2015-03-12 12:43 - 2001-08-17 14:06 - 00011264 ____C (Microsoft Corporation) C:\windows\system32\dllcache\1394vdbg.sys
2015-03-12 12:43 - 2001-08-17 13:52 - 00023552 ____C (Microsoft Corporation) C:\windows\system32\dllcache\abp480n5.sys
2015-03-12 12:43 - 2001-08-17 13:28 - 00762780 ____C (3Com, Inc.) C:\windows\system32\dllcache\3cwmcru.sys
2015-03-12 12:43 - 2001-08-17 12:48 - 00148352 ____C (3dfx Interactive, Inc.) C:\windows\system32\dllcache\3dfxvsm.sys
2015-03-12 12:43 - 2001-08-17 12:20 - 00297728 ____C (Silicon Integrated Systems Corp.) C:\windows\system32\dllcache\ac97sis.sys
2015-03-12 12:43 - 2001-08-17 12:20 - 00096256 ____C (Intel Corporation) C:\windows\system32\dllcache\ac97intc.sys
2015-03-12 12:42 - 2001-08-17 14:56 - 00066048 ____C (Microsoft Corporation) C:\windows\system32\dllcache\s3legacy.dll
2015-03-12 11:04 - 2015-03-12 11:04 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Adobe
2015-03-12 11:03 - 2015-03-12 11:03 - 00059184 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-03-12 11:03 - 2015-03-12 11:03 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
2015-03-12 11:03 - 2015-03-12 11:03 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla
2015-03-12 10:43 - 2015-03-13 22:34 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\DoNotTrackPlus
2015-03-12 09:46 - 2015-03-14 03:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\CheckPoint
2015-03-12 09:35 - 2015-03-12 09:35 - 00003970 _____ () C:\windows\DPINST.LOG
2015-03-12 07:50 - 2015-03-12 07:50 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\Adobe
2015-03-11 18:03 - 2015-03-16 15:05 - 00040571 _____ () C:\windows\WindowsUpdate.log
2015-03-10 16:50 - 2015-03-15 20:17 - 00000000 ____D () C:\windows\FrameworkUpdate
2015-03-10 16:50 - 2015-03-10 16:50 - 00000480 ____H () C:\Documents and Settings\Bryan Bridgewater\Application Data\麽鎒駓覜
2015-03-10 16:50 - 2015-03-10 16:50 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Macromedia
2015-03-10 05:25 - 2008-04-13 16:09 - 00006144 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kbd106.dll
2015-03-10 05:25 - 2008-04-13 16:09 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\kbd106.dll
2015-03-10 05:25 - 2001-08-17 22:36 - 00008704 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kbdjpn.dll
2015-03-10 05:25 - 2001-08-17 22:36 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\kbdjpn.dll
2015-03-10 05:25 - 2001-08-17 22:36 - 00008192 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kbdkor.dll
2015-03-10 05:25 - 2001-08-17 22:36 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\kbdkor.dll
2015-03-10 05:25 - 2001-08-17 14:55 - 00006144 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kbd101c.dll
2015-03-10 05:25 - 2001-08-17 14:55 - 00006144 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kbd101b.dll
2015-03-10 05:25 - 2001-08-17 14:55 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\kbd101c.dll
2015-03-10 05:25 - 2001-08-17 14:55 - 00006144 _____ (Microsoft Corporation) C:\windows\system32\kbd101b.dll
2015-03-10 05:25 - 2001-08-17 14:55 - 00005632 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kbd103.dll
2015-03-10 05:25 - 2001-08-17 14:55 - 00005632 _____ (Microsoft Corporation) C:\windows\system32\kbd103.dll
2015-03-09 11:00 - 2015-03-12 11:16 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2015-03-09 11:00 - 2015-03-12 11:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2015-03-09 11:00 - 2015-03-09 11:00 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2015-03-09 11:00 - 2015-03-09 11:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Avira
2015-03-09 11:00 - 2015-03-09 11:00 - 00000000 ____D () C:\Documents and Settings\Administrator
2015-03-09 11:00 - 2014-09-01 23:21 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
2015-03-09 11:00 - 2010-04-30 06:50 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Macromedia
2015-03-09 11:00 - 2007-01-10 05:00 - 00001599 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk
2015-03-09 11:00 - 2007-01-10 05:00 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
2015-03-09 11:00 - 2007-01-10 05:00 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2015-03-09 11:00 - 2002-05-08 19:50 - 00000198 _____ () C:\Documents and Settings\Administrator\My Documents\Yahoo! Briefcase.url
2015-03-08 16:12 - 2015-03-16 15:03 - 00000000 ___HD () C:\Documents and Settings\All Users\Application Data\{572AEF17-44EE-4628-95B5-4C1D51D77FED}
2015-03-05 23:07 - 2015-03-05 23:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-02-23 15:30 - 2015-02-23 15:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Avira
2015-02-23 13:54 - 2015-02-23 13:54 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-02-23 13:16 - 2015-02-23 13:16 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\Avira
2015-02-23 13:11 - 2015-02-23 15:30 - 00001707 _____ () C:\Documents and Settings\All Users\Desktop\Avira Control Center.lnk
2015-02-23 13:07 - 2015-02-23 15:08 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avira
2015-02-23 13:07 - 2015-02-23 13:07 - 00000000 ____D () C:\Program Files\Avira
2015-02-23 13:07 - 2015-02-04 18:51 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avkmgr.sys
2015-02-23 13:07 - 2015-02-04 18:51 - 00028520 _____ (Avira GmbH) C:\windows\system32\Drivers\ssmdrv.sys
2015-02-23 13:07 - 2014-11-24 11:23 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avipbb.sys
2015-02-23 13:07 - 2014-11-24 11:23 - 00098160 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avgntflt.sys
2015-02-23 12:08 - 2015-03-16 15:21 - 00000886 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-23 12:08 - 2015-03-16 15:03 - 00000882 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-23 11:46 - 2015-02-25 20:41 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2015-02-23 11:46 - 2015-02-25 20:41 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-23 11:46 - 2015-02-23 11:46 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
2015-02-23 11:43 - 2015-02-23 11:43 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\TightVNC
2015-02-23 10:27 - 2015-02-23 10:27 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\TeamViewer
2015-02-23 02:29 - 2015-02-23 08:58 - 00000000 ____D () C:\windows\system32\NtmsData
2015-02-23 01:54 - 2015-02-23 01:54 - 00422760 _____ (AVAST Software) C:\windows\system32\Drivers\wrranbfs.sys
2015-02-23 01:54 - 2015-02-23 01:54 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2015-02-23 00:56 - 2015-02-23 01:45 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\LogMeIn Rescue Applet
2015-02-22 14:31 - 2015-02-22 14:31 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\TuneUp Software
2015-02-22 14:26 - 2015-02-23 01:51 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2015-02-22 14:26 - 2015-02-22 14:26 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\MFAData
2015-02-22 14:11 - 2015-02-22 14:22 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\LavasoftStatistics
2015-02-22 14:02 - 2015-02-22 14:02 - 00000000 __HDC () C:\windows\$NtUninstallWdf01009$
2015-02-22 14:02 - 2015-02-22 14:02 - 00000000 ____H () C:\windows\system32\Drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
2015-02-22 14:02 - 2015-02-22 14:02 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-02-22 14:02 - 2008-11-07 19:55 - 00016928 ____N (Microsoft Corporation) C:\windows\system32\spmsgXP_2k3.dll
2015-02-22 13:50 - 2015-02-22 13:50 - 00000000 __HDC () C:\windows\$NtUninstallKB942288-v3$
2015-02-22 13:38 - 2015-02-22 13:38 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2015-02-22 13:38 - 2015-02-22 13:38 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2015-02-22 13:37 - 2015-03-05 23:12 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-02-18 17:51 - 2015-03-13 19:21 - 02031616 _____ () C:\windows\system32\config\WindowsPowerShell.evt
2015-02-18 17:51 - 2015-02-18 17:51 - 00065536 _____ () C:\windows\system32\config\EventForwarding-Operational.Evt
2015-02-18 17:11 - 2015-02-18 17:11 - 00065536 _____ () C:\windows\system32\config\Windows .evt
2015-02-18 17:11 - 2015-02-18 17:11 - 00065536 _____ () C:\windows\system32\config\Microsof.evt
2015-02-18 17:11 - 2015-02-18 17:11 - 00000000 __HDC () C:\windows\$968930Uinstall_KB968930$
2015-02-18 17:11 - 2015-02-18 17:11 - 00000000 ____D () C:\windows\system32\winrm
2015-02-18 17:11 - 2015-02-18 17:11 - 00000000 ____D () C:\windows\system32\WindowsPowerShell
2015-02-18 17:11 - 2015-02-18 17:11 - 00000000 ____D () C:\windows\system32\GroupPolicy
2015-02-18 17:11 - 2015-02-18 17:11 - 00000000 ____D () C:\windows\$NtUninstallKB968930$
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-16 15:34 - 2007-01-10 05:05 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp
2015-03-16 15:17 - 2009-10-22 23:20 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\U3
2015-03-16 15:11 - 2014-02-03 15:17 - 00000664 _____ () C:\windows\system32\d3d9caps.dat
2015-03-16 15:04 - 2007-01-09 19:51 - 00000159 ____C () C:\windows\wiadebug.log
2015-03-16 15:04 - 2007-01-09 19:51 - 00000049 ____C () C:\windows\wiaservc.log
2015-03-16 15:03 - 2014-03-09 22:23 - 00000246 ____C () C:\windows\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2015-03-16 15:03 - 2007-01-10 05:00 - 00000006 ___HC () C:\windows\Tasks\SA.DAT
2015-03-16 07:58 - 2007-01-10 05:05 - 00000178 __SHC () C:\Documents and Settings\Bryan Bridgewater\ntuser.ini
2015-03-16 07:58 - 2007-01-10 05:03 - 00032570 _____ () C:\windows\SchedLgU.Txt
2015-03-16 07:41 - 2012-06-22 11:41 - 00000830 ____C () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-03-16 04:53 - 2014-02-02 17:26 - 00000664 _____ () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\d3d9caps.dat
2015-03-15 23:15 - 2003-03-31 07:00 - 00013646 ____C () C:\windows\system32\wpa.dbl
2015-03-15 02:38 - 2013-10-29 17:07 - 00000402 ____C () C:\Documents and Settings\Bryan Bridgewater\My Documents\mm0115.slh
2015-03-15 02:37 - 2013-05-10 19:58 - 00000000 ____D () C:\gh
2015-03-14 03:48 - 2009-05-28 14:47 - 00000000 ____D () C:\Program Files\Common Files\Motive
2015-03-14 00:40 - 2007-01-09 19:48 - 00523394 ____C () C:\windows\system32\PerfStringBackup.INI
2015-03-14 00:35 - 2007-01-09 19:47 - 00238352 ____C () C:\windows\system32\FNTCACHE.DAT
2015-03-12 14:11 - 2007-01-10 04:58 - 00000000 ____D () C:\windows\system32\Restore
2015-03-12 09:35 - 2007-01-10 05:28 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2015-03-11 18:00 - 2007-01-10 05:05 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater
2015-03-10 05:27 - 2007-01-09 19:41 - 00000000 ____D () C:\windows\Help
2015-03-08 15:05 - 2014-03-09 22:23 - 00000240 ____C () C:\windows\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2015-02-25 08:40 - 2010-03-28 14:34 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\Facebook
2015-02-25 08:28 - 2010-06-23 14:47 - 00000552 _____ () C:\windows\system32\d3d8caps.dat
2015-02-23 15:50 - 2007-01-11 02:57 - 00059184 ____C () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-02-23 14:30 - 2007-01-12 04:09 - 00000000 __HDC () C:\windows\$NtUninstallKB908519$
2015-02-23 11:55 - 2007-08-30 02:09 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\Azureus
2015-02-23 11:55 - 2007-01-13 16:50 - 00000000 ____D () C:\Documents and Settings\Bryan Bridgewater\Application Data\BitTorrent
2015-02-23 02:29 - 2007-01-10 04:57 - 00000000 ____D () C:\windows\Registration
2015-02-23 02:29 - 2007-01-09 19:41 - 00000000 ____D () C:\windows\repair
2015-02-23 02:28 - 2007-01-10 05:03 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-02-21 22:52 - 2014-09-01 15:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\PCPitstop
2015-02-18 17:13 - 2007-01-11 03:08 - 00000000 ____D () C:\windows\Microsoft.NET
2015-02-18 17:11 - 2007-01-10 04:55 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2015-02-18 17:11 - 2007-01-09 19:41 - 00000000 ____D () C:\windows\security
2015-02-16 23:47 - 2009-08-10 22:48 - 00059184 ____C () C:\Documents and Settings\Bryan Bridgewater\Application Data\GDIPFONTCACHEV1.DAT
==================== Files in the root of some directories =======
2015-03-10 16:50 - 2015-03-10 16:50 - 0000480 ____H () C:\Documents and Settings\Bryan Bridgewater\Application Data\麽鎒駓覜
2014-02-02 17:26 - 2015-03-16 04:53 - 0000664 _____ () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\d3d9caps.dat
2007-01-12 01:35 - 2008-05-10 16:37 - 0198144 ____C () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2007-01-11 03:20 - 2007-01-11 03:20 - 0000140 ____C () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\fusioncache.dat
2010-04-24 19:54 - 2010-04-24 21:17 - 0000600 ____C () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\PUTTY.RND
2010-10-14 16:41 - 2010-10-30 03:36 - 0001940 ____C () C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
2013-05-11 00:57 - 2013-05-11 00:57 - 0000022 ____C () C:\Documents and Settings\All Users\New Compressed (zipped) Folder.zip
Some content of TEMP:
====================
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Bryan Bridgewater\Local Settings\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015
Ran by Bryan Bridgewater at 2015-03-16 15:42:58
Running from C:\Documents and Settings\Bryan Bridgewater\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Advantage Plus (HKU\S-1-5-21-1606980848-1801674531-839522115-1004\...\{ABC80E95-873B-43A8-8C05-133BFAD2F76D}) (Version: - )
AGEIA PhysX v6.12.02 (HKLM\...\{7032E73F-68A0-48F9-8100-E70E79169BAE}) (Version: 6.12.02 - AGEIA Technologies, Inc.)
Antivirus Pro (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
CameraDrivers (Version: 7.0.0.310 - Hewlett-Packard) Hidden
CameraUserGuides (Version: 7.0.0.310 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
EVGA Display Driver (HKLM\...\{BEF3EFE7-5159-436D-9BF0-CCC633179EB4}) (Version: 1.00.000 - EVGA)
Gail Howard's Smart Luck Wheel Gold™ version Smart Luck Wheel G (HKLM\...\{47D357C6-2AC9-4AC6-A46C-9C8F14ABC734}_is1) (Version: Smart Luck Wheel Gold™ Version 4.0.0.32 - Gail Howard's)
Google Update Helper (Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000 - Hewlett-Packard) Hidden
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 4620 series Basic Device Software (HKLM\...\{C4E2A2F2-2A53-42C7-920A-169713776631}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 4620 series Help (HKLM\...\{606C37AB-EB04-4270-A592-201A03C2DB36}) (Version: 6.0.0 - Hewlett Packard)
HP Officejet 4620 series Product Improvement Study (HKLM\...\{5696CE5E-FD09-4DFF-82CE-DB87229F03DD}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Photosmart Cameras 7.0 (HKLM\...\{4CE9FD0E-9D00-404a-AA78-F55537371611}) (Version: 7.0 - HP)
HP Update (HKLM\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
hpicamDrvQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
InstantShareAlert (Version: 1.00.0000 - HP) Hidden
LightScribe 1.6.43.1 (Version: 1.6.43.1 - http://www.lightscribe.com) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Office XP Standard (HKLM\...\{91120409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Mozilla Firefox 36.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 36.0.1 (x86 en-US)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (KB925673) (HKLM\...\{FE9126DB-5F84-495A-BB46-3C724F1C2D08}) (Version: 6.00.3888.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{F61DD673-0030-4BB2-A382-7E57E97F1033}) (Version: 7.02.8078 - Nero AG)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
Smart Luck History Editor Version 1.0.1.21 (HKLM\...\{FA9C2068-9144-426E-A0A1-E10E62B5DDB2}_is1) (Version: - Gail Howard's)
VIA Audio Driver Setup Program (HKLM\...\VIA Audio Driver Setup Program) (Version: - )
VIA Rhine-Family Fast Ethernet Adapter (HKLM\...\VN_VUIns_Rhine_VIA) (Version: - )
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebFldrs XP (Version: 9.50.6513 - Microsoft Corporation) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0017.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\InprocServer32 -> C:\Documents and Settings\Bryan Bridgewater\Application Data\Facebook\axfbootloader.dll ( )
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{702EB635-D66F-4FAA-834C-97645FF24178}\InprocServer32 -> C:\Documents and Settings\All Users\Application Data\{572AEF17-44EE-4628-95B5-4C1D51D77FED}\ipsecsnp.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1606980848-1801674531-839522115-1004_Classes\CLSID\{C98FE784-B96E-41e1-8399-1337AE3E539F}\InprocServer32 -> C:\Documents and Settings\Bryan Bridgewater\Application Data\Facebook\npfbplugin_1_0_3.dll ( )
==================== Restore Points =========================
12-03-2015 14:11:55 System Checkpoint
14-03-2015 03:39:57 Removed Garmin Communicator Plugin
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2003-03-31 07:00 - 2003-03-31 07:00 - 00000734 ____C C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\windows\system32\xp_eos.exe
Task: C:\windows\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\windows\system32\xp_eos.exe
==================== Loaded Modules (whitelisted) ==============
2003-03-31 07:00 - 2008-04-13 19:11 - 00059904 ____C () C:\WINDOWS\System32\devenum.dll
2003-03-31 07:00 - 2008-04-13 19:11 - 00014336 ____C () C:\windows\system32\msdmo.dll
2008-05-04 16:02 - 2008-05-04 16:02 - 04603904 _____ () C:\Documents and Settings\Bryan Bridgewater\Application Data\U3\0876110C6DD07EB6\LaunchPad.exe
2007-10-23 09:23 - 2007-10-23 09:23 - 02600960 _____ () C:\Documents and Settings\Bryan Bridgewater\Application Data\U3\0876110C6DD07EB6\u3dapi10.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\61653340.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\83511773.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0021 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0022 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0023 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0024 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0025 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0026 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0027 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0028 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0029 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0030 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0031 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0032 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0033 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0034 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0035 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0036 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0037 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0038 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0039 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0040 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0041 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0042 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0043 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0044 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0045 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0046 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0047 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0048 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0049 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0050 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0051 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0052 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0053 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0054 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0055 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0056 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0057 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0058 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0059 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0060 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0061 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0062 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0063 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0064 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0065 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0066 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0067 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0068 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0069 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0070 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0071 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0072 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0073 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0074 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0075 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0076 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0077 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0078 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0079 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0080 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0081 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0082 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0083 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0084 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0085 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0086 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0087 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0088 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0089 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0090 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0091 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0092 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0093 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0094 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0095 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0096 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0097 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0098 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0099 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsSystem0100 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRunAsTrustedInstaller0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\61653340.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\83511773.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMPCHelper => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tvnserver => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0021 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0022 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0023 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0024 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0025 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0026 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0027 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0028 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0029 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0030 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0031 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0032 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0033 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0034 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0035 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0036 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0037 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0038 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0039 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0040 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0041 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0042 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0043 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0044 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0045 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0046 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0047 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0048 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0049 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0050 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0051 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0052 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0053 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0054 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0055 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0056 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0057 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0058 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0059 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0060 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0061 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0062 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0063 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0064 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0065 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0066 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0067 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0068 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0069 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0070 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0071 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0072 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0073 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0074 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0075 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0076 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0077 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0078 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0079 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0080 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0081 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0082 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0083 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0084 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0085 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0086 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0087 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0088 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0089 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0090 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0091 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0092 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0093 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0094 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0095 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0096 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0097 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0098 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0099 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsSystem0100 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0001 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0002 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0003 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0004 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0005 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0006 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0007 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0008 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0009 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0010 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0011 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0012 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0013 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0014 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0015 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0016 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0017 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0018 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0019 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRunAsTrustedInstaller0020 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UploadMgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1606980848-1801674531-839522115-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Bryan Bridgewater\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
DNS Servers: 192.168.1.254
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-1606980848-1801674531-839522115-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-1606980848-1801674531-839522115-1006 - Limited - Enabled)
Bryan Bridgewater (S-1-5-21-1606980848-1801674531-839522115-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Bryan Bridgewater
Guest (S-1-5-21-1606980848-1801674531-839522115-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1606980848-1801674531-839522115-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1606980848-1801674531-839522115-1002 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name: Video Controller (VGA Compatible)
Description: Video Controller (VGA Compatible)
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: RAID Controller
Description: RAID Controller
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/16/2015 03:21:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/16/2015 03:37:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/16/2015 01:40:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/16/2015 00:59:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0002c5d1.
Processing media-specific event for [avwebgrd.exe!ws!]
Error: (03/15/2015 11:52:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0002c5d1.
Processing media-specific event for [avwebgrd.exe!ws!]
Error: (03/15/2015 09:43:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/15/2015 08:36:04 PM) (Source: Application Error) (EventID: 1004) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0002c5d1.
Error in creating result PEAP-TLV in response to received PEAP-TLV (avwebgrd.exe!ld!)
Error: (03/15/2015 08:35:34 PM) (Source: Application Error) (EventID: 1004) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0005f97c.
Error in creating result PEAP-TLV in response to received PEAP-TLV (avwebgrd.exe!ld!)
Error: (03/15/2015 01:39:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application update.exe, version 15.0.8.644, faulting module update.dll, version 15.0.8.644, fault address 0x0004614d.
Processing media-specific event for [update.exe!ws!]
Error: (03/15/2015 00:17:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application avwebgrd.exe, version 14.0.7.462, faulting module avwebgrd.exe, version 14.0.7.462, fault address 0x0002c5d1.
Processing media-specific event for [avwebgrd.exe!ws!]
System errors:
=============
Error: (03/16/2015 03:07:13 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASDIFSV
SASKUTIL
Error: (03/16/2015 03:05:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The TightVNC Server service failed to start due to the following error:
%%3
Error: (03/16/2015 03:05:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Safe Web Lite service failed to start due to the following error:
%%3
Error: (03/16/2015 03:05:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%3
Error: (03/16/2015 03:05:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SAS Core Service service failed to start due to the following error:
%%3
Error: (03/16/2015 01:35:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Avira Web Protection service terminated unexpectedly. It has done this 3 time(s).
Error: (03/16/2015 01:05:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Avira Web Protection service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
Error: (03/15/2015 11:57:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Avira Web Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
Error: (03/15/2015 11:14:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASDIFSV
SASKUTIL
Error: (03/15/2015 11:14:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The TightVNC Server service failed to start due to the following error:
%%3
Microsoft Office Sessions:
=========================
Error: (03/16/2015 03:21:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/16/2015 03:37:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/16/2015 01:40:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/16/2015 00:59:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620002c5d1
Error: (03/15/2015 11:52:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620002c5d1
Error: (03/15/2015 09:43:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/15/2015 08:36:04 PM) (Source: Application Error) (EventID: 1004) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620002c5d1
Error: (03/15/2015 08:35:34 PM) (Source: Application Error) (EventID: 1004) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620005f97c
Error: (03/15/2015 01:39:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: update.exe15.0.8.644update.dll15.0.8.6440004614d
Error: (03/15/2015 00:17:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: avwebgrd.exe14.0.7.462avwebgrd.exe14.0.7.4620002c5d1
==================== Memory info ===========================
Processor: AMD Sempron™ 2400+
Percentage of memory in use: 90%
Total physical RAM: 959.48 MB
Available physical RAM: 91.02 MB
Total Pagefile: 2414.28 MB
Available Pagefile: 1363.96 MB
Total Virtual: 2047.88 MB
Available Virtual: 1938.36 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:37.26 GB) (Free:11 GB) NTFS
Drive e: (U3 System) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
Drive g: (Cruzer) (Removable) (Total:3.74 GB) (Free:3.73 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 37.3 GB) (Disk ID: AACBAACB)
Partition 1: (Active) - (Size=37.3 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
#29
Posted 16 March 2015 - 03:55 PM
-
- GeekU Moderator
-
- 20,051 posts
GeekU Instructor
Hello Bryan6791,
Download the attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
After that
If you don't already have it please download the attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
After that
Install and Run Malwarebytes' Anti-Malware
Please download Malwarebytes' Anti-Malware from Here
- Double Click the downloaded mbam-setup-x.x.x.xxxx.exe to install the application. (x.x.x.xxxx represents the current version number).
- During installation, make sure uncheck Enable free trial of Malwarebytes Anti-Malware Premium, then click Finish. You can always upgrade later
:
- If an update is found, it will download and install the latest updates automatically:
- Now select the Settings tab > Detection and Protection (left list) and ensure the box next to Scan for rootkits has a tick in it:
- Go back to the Dashboard tab, and click the Scan Now button:
- The scan may take some time to finish,so please be patient.
- When the scan is complete, it will show you the results. (This one is clean):
- Make sure that everything is checked, and click Quarantine All (or similar).
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note below) If the log doesn't open, select View detailed log in the Scan tab:
- The log is automatically saved by MBAM and can be viewed by going to the History tab and clicking on Application Logs:
- Choose the latest Scan Log, and click on the View button:
- In the bottom of the Scanning History Log window that opens, you can click on Export > Save to Text file (*.txt). Save the report to your Desktop.
- Copy & Paste the entire contents of the report log in your next reply.
Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.
*** In your next reply, I need you to Copy&Paste the contents of the MBAM log file.
#30
Posted 17 March 2015 - 11:02 AM
- Topic Starter
-
- Member
-
- 74 posts
Member
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-03-2015
Ran by Bryan Bridgewater at 2015-03-16 19:57:14 Run:2
Running from C:\Documents and Settings\Bryan Bridgewater\Desktop
Loaded Profiles: Bryan Bridgewater (Available profiles: Bryan Bridgewater & Administrator)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] rundll32.exe javascript:"l5\..\mshtml,RunHTMLApplication ";eval(")odv!@buhwdYNckdbu)#VRbshqu/Ridmm#( (the data entry has 360 more characters). <==== ATTENTION!
HKLM\...99B7938DA9E4}\LocalServer32: [a] rundll32.exe javascript:"l5\..\mshtml,RunHTMLApplication ";eval(")odv!@buhwdYNckdbu)#VRbshqu/Ridmm#( (the data entry has 27830 more characters). <==== ATTENTION!
InvalidSubkeyName: [HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\******<*>] <==== ATTENTION
*****************
HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\\Default => Value was restored successfully.
HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\\a => Value not found.
[HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\******<*>] => No subkey with invalid name found.
==== End of Fixlog 19:57:16 ====
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
