My computer is running very slowly. Ran Malewarebytes and it came up clean. Here is the OTL log.
OTL logfile created on: 3/13/2014 7:31:52 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\K Man's Travel Pal\Desktop
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16798)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1013.10 Mb Total Physical Memory | 220.32 Mb Available Physical Memory | 21.75% Memory free
1.99 Gb Paging File | 1.01 Gb Available in Paging File | 50.70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 135.94 Gb Total Space | 95.95 Gb Free Space | 70.58% Space Free | Partition Type: NTFS
Computer Name: KMANSTRAVELPAL | User Name: K Man's Travel Pal | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/03/13 19:31:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.exe
PRC - [2014/03/11 19:45:30 | 000,841,096 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe
PRC - [2014/02/03 16:26:40 | 003,767,096 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/02/03 16:26:39 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/12/21 01:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/30 20:12:11 | 000,745,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
PRC - [2013/04/03 13:50:34 | 000,172,416 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\mfevtps.exe
PRC - [2012/11/22 21:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/04/23 10:46:32 | 000,735,776 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
PRC - [2010/04/17 00:56:48 | 000,305,520 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
PRC - [2010/04/07 23:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2010/01/29 18:52:58 | 000,260,640 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe
PRC - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2010/01/08 08:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Registration\GREGsvc.exe
PRC - [2009/06/04 21:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
========== Modules (No Company Name) ==========
MOD - [2013/10/24 19:50:20 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
========== Services (SafeList) ==========
SRV - [2014/03/12 04:46:21 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/02/03 16:26:39 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013/12/21 01:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/05/26 23:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/04/03 13:50:34 | 000,172,416 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\System32\mfevtps.exe -- (mfevtp)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/04/23 10:46:32 | 000,735,776 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2010/04/17 00:56:48 | 000,305,520 | ---- | M] (Egis Technology Inc.) [Auto | Running] -- C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe -- (MWLService)
SRV - [2010/04/07 23:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010/01/29 18:52:58 | 000,260,640 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Updater Service)
SRV - [2010/01/08 08:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2009/06/04 21:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\cpuz136\cpuz136_x32.sys -- (cpuz136)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014/02/03 16:26:50 | 000,775,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014/02/03 16:26:50 | 000,064,168 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\aswstm.sys -- (aswStm)
DRV - [2014/02/03 16:26:49 | 000,410,784 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/02/03 16:26:49 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/01/05 11:29:39 | 000,180,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013/10/24 19:50:24 | 000,079,720 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2013/10/24 19:50:24 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013/04/03 13:48:22 | 000,566,656 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2013/04/03 13:46:22 | 000,133,992 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2013/02/19 15:10:52 | 000,092,632 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2012/08/23 09:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 09:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/04/21 02:47:36 | 000,068,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2010/04/06 21:04:42 | 001,792,512 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2010/03/02 01:23:36 | 000,082,384 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\EUCR6SK.sys -- (EUCR)
DRV - [2009/06/02 21:15:40 | 000,060,976 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV - [2009/06/02 21:15:38 | 000,016,432 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV - [2009/06/02 21:15:34 | 000,018,992 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\System32\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...ng}&rlz=1I7ACAW
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://us.my.yahoo.com/
IE - HKCU\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...AW_enUS435US435
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{88219053-82EE-4373-BA11-9E5CA8B34367}: "URL" = http://search.yahoo....p={SearchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MVT: C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected] : C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/04 12:15:50 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected] : C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/04 12:15:50 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
CHR - plugin: McAfee Virtual Technician (Enabled) = C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
CHR - Extension: Google Docs = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: avast! Online Security = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2013.75_0\
CHR - Extension: Google Wallet = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009/06/10 16:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll File not found
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{34D1D2B6-CA20-4F70-97C5-CC1B7A119B89}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8100D57F-88F9-4E95-BA58-1A8EB8A668D9}: DhcpNameServer = 4.2.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2014/03/13 19:31:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.exe
[2014/02/28 08:01:17 | 000,000,000 | ---D | C] -- C:\Users\K Man's Travel Pal\Documents\Prelude and Hop Dance
[2014/02/15 08:35:00 | 000,000,000 | ---D | C] -- C:\Users\K Man's Travel Pal\AppData\Local\{2F75C75C-E117-46AD-89B0-73FE19B9C639}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014/03/13 19:42:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.scr
[2014/03/13 19:31:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.exe
[2014/03/13 19:05:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/03/13 18:52:02 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/13 18:45:15 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/03/13 18:32:13 | 000,009,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/13 18:32:13 | 000,009,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/13 18:24:03 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/03/13 18:23:36 | 796,733,440 | -HS- | M] () -- C:\hiberfil.sys
[2014/03/11 07:41:25 | 000,662,408 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/03/11 07:41:25 | 000,122,244 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/03/02 00:10:46 | 000,002,011 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/02/27 17:33:55 | 000,006,960 | ---- | M] () -- C:\bootsqm.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014/02/27 17:33:55 | 000,006,960 | ---- | C] () -- C:\bootsqm.dat
[2013/08/05 20:16:39 | 000,180,248 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013/08/05 20:16:38 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2013/07/26 19:35:37 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/07/26 19:35:36 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/07/26 19:35:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/07/26 19:35:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/07/26 19:35:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/12/26 16:01:37 | 000,751,078 | ---- | C] () -- C:\Users\K Man's Travel Pal\AppData\Roaming\1.bmp
[2012/12/26 16:01:25 | 000,018,252 | ---- | C] () -- C:\Users\K Man's Travel Pal\AppData\Roaming\sound.mp3
[2012/12/26 16:01:20 | 000,114,890 | ---- | C] () -- C:\Users\K Man's Travel Pal\AppData\Roaming\1.jpg
========== ZeroAccess Check ==========
[2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 20:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012/02/25 22:34:43 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\.minecraft
[2013/08/25 17:37:15 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\Audacity
[2013/10/24 19:53:59 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\AVAST Software
[2013/03/15 21:02:22 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\cef-cache
[2013/08/19 16:50:30 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\Ludia
[2012/02/25 18:31:17 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\MakeMusic
[2013/03/15 21:00:43 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\PPNet
[2013/08/14 18:49:35 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\WildTangent
[2013/09/08 13:04:37 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\Windows Live Writer
========== Purity Check ==========
< End of report >
I posted this a few weeks ago and got no response. Hope this report is still accurate. Thanks for your help!
Computer Runs Extremely Slowly (4/4/14)
#1
Posted 04 April 2014 - 04:24 PM
#2
Posted 04 April 2014 - 07:28 PM
- Please double-click OTL.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
- Copy the entire content of the quote box (except the word quote) below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\cpuz136\cpuz136_x32.sys -- (cpuz136)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\catchme.sys -- (catchme)
:Commands
[EMPTYTEMP]
[RESETHOSTS]
[EMPTYJAVA]
[REBOOT] - Return to OTL, right click in the "Custom Scans/Fixes" window and choose Paste.
- Click the red Run Fix button.
- The computer will restart
- A report will be produced and saved in the C:\_OTL\MovedFiles folder. Open that report and post its contents in a reply.
The McAfee Consumer Products Removal tool allows you to remove McAfee consumer products in the event that they become damaged or are unable to uninstall properly through the Windows control panel. You can run the McAfee Consumer Product Removal tool (MCPR.exe) to remove all 2005 - 2011 versions of McAfee consumer products.
Please download Junkware Removal Tool to your desktop.
- Shut down your protection software now to avoid potential conflicts.
- Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
- The tool will open and start scanning your system.
- Please be patient as this can take a while to complete depending on your system's specifications.
- On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
- Post the contents of JRT.txt into your next message.
NOTE: If using Internet Explorer and get an alert that stops the program downloading, click on the warning and allow the download to complete.
Close all programs and click on the AdwCleaner icon.
Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.
The report will be saved in the C:\AdwCleaner folder. as AdwCleaner[S0].txt
Please download Farbar Recovery Scan Tool and save it to your desktop.
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
- Double-click to run it. When the tool opens click Yes to disclaimer.
- Make sure that under Optional Scans, there is a checkmark on Addition.txt and Shortcut.
- Press Scan button.
- It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
- The first time the tool is run, it makes also another two logs (Addition.txt and Shortcut.txt). Please attach these to your reply.
#3
Posted 06 April 2014 - 05:13 PM
Here are the reports:
# AdwCleaner v3.023 - Report created 06/04/2014 at 17:56:23
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Starter Service Pack 1 (32 bits)
# Username : K Man's Travel Pal - KMANSTRAVELPAL
# Running from : C:\Users\K Man's Travel Pal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XHY0DBDD\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16843
-\\ Google Chrome v33.0.1750.154
[ File : C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1211 octets] - [06/04/2014 17:45:57]
AdwCleaner[S0].txt - [1140 octets] - [06/04/2014 17:56:23]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1200 octets] ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by K Man's Travel Pal (administrator) on KMANSTRAVELPAL on 06-04-2014 18:06:54
Running from C:\Users\K Man's Travel Pal\Desktop
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dropbox, Inc.) C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Registration\GREGsvc.exe
(Egis Technology Inc.) C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-03-31] (AVAST Software)
Startup: C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.my.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...ng}&rlz=1I7ACAW
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...AW_enUS435US435
SearchScopes: HKCU - {88219053-82EE-4373-BA11-9E5CA8B34367} URL = http://search.yahoo....&p={SearchTerms}
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (McAfee Virtual Technician) - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll No File
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-05]
CHR Extension: (Google Drive) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-05]
CHR Extension: (YouTube) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-05]
CHR Extension: (Google Search) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-05]
CHR Extension: (avast! Online Security) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-05]
CHR Extension: (Google Wallet) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-17]
CHR Extension: (Gmail) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-03-31]
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-31] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [735776 2010-04-23] (Acer Incorporated)
R2 GREGService; C:\Program Files\Acer\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MWLService; C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-04-17] (Egis Technology Inc.)
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232 2010-01-28] (Acer Group)
==================== Drivers (Whitelisted) ====================
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-03-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-03-31] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-03-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-03-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-03-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [67264 2014-03-31] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180760 2014-03-31] ()
S3 EUCR; C:\Windows\system32\drivers\EUCR6SK.SYS [82384 2010-03-02] (ENE Technology Inc.)
R1 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [18992 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [60976 2009-06-02] (Egis Technology Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-06 18:06 - 2014-04-06 18:07 - 00009846 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-06 18:06 - 2014-04-06 18:06 - 00000000 ____D () C:\FRST
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 17:45 - 2014-04-06 17:56 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:41 - 2014-04-06 17:41 - 00003541 _____ () C:\Users\K Man's Travel Pal\Desktop\JRT.txt
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:43 - 2014-04-06 16:44 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-03-31 06:45 - 2014-04-06 17:59 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:37 - 2014-03-31 06:45 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:29 - 2014-04-06 17:59 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-23 15:16 - 2014-02-23 01:53 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-23 15:16 - 2014-02-23 01:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-23 15:16 - 2014-02-23 01:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-23 15:15 - 2014-02-23 01:54 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-23 15:15 - 2014-02-23 01:53 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-23 15:15 - 2014-02-23 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-23 14:33 - 2014-02-06 20:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-23 14:33 - 2014-02-03 21:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-23 14:33 - 2014-02-03 21:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-23 14:33 - 2014-01-27 21:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-23 14:31 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
==================== One Month Modified Files and Folders =======
2014-04-06 18:07 - 2014-04-06 18:06 - 00009846 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-06 18:06 - 2014-04-06 18:06 - 00000000 ____D () C:\FRST
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 18:03 - 2011-06-12 17:36 - 01529294 _____ () C:\Windows\WindowsUpdate.log
2014-04-06 17:59 - 2014-03-31 06:45 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-04-06 17:59 - 2014-03-31 06:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-04-06 17:58 - 2013-09-17 05:49 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-06 17:58 - 2009-07-13 23:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-06 17:58 - 2009-07-13 23:39 - 00137905 _____ () C:\Windows\setupact.log
2014-04-06 17:56 - 2014-04-06 17:45 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:45 - 2012-04-11 20:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-06 17:41 - 2014-04-06 17:41 - 00003541 _____ () C:\Users\K Man's Travel Pal\Desktop\JRT.txt
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:58 - 2013-09-17 05:49 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-06 16:44 - 2014-04-06 16:43 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 16:43 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-06 16:43 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-06 16:34 - 2010-05-11 22:22 - 00236434 _____ () C:\Windows\PFRO.log
2014-04-06 16:27 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\config\Journal
2014-04-06 15:55 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\rescache
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-04-05 23:51 - 2013-12-11 06:19 - 00410350 _____ () C:\Windows\IE11_main.log
2014-04-05 22:25 - 2012-02-25 17:36 - 00000455 _____ () C:\Windows\demdata.txt
2014-04-05 19:47 - 2011-06-12 17:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\PokerStars.NET
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:45 - 2014-03-31 06:37 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:45 - 2011-06-12 15:43 - 00000000 ____D () C:\Users\K Man's Travel Pal
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:24 - 2014-02-03 16:27 - 00002011 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-03-31 06:23 - 2014-01-05 11:30 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-31 06:22 - 2013-08-05 20:16 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-31 06:22 - 2013-08-05 20:16 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-29 21:00 - 2011-06-12 16:00 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Adobe
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2010-05-11 22:33 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-29 20:59 - 2010-05-11 22:32 - 00000000 ____D () C:\Program Files\Adobe
2014-03-29 20:56 - 2011-06-12 20:38 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\Adobe
2014-03-29 18:19 - 2012-02-25 16:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\Documents\FINALE
2014-03-28 07:01 - 2012-12-09 09:49 - 00000000 ____D () C:\WACHET AUF
2014-03-23 15:46 - 2012-04-11 20:25 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-23 15:46 - 2011-07-06 05:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-23 15:31 - 2013-01-09 21:01 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 15:29 - 2010-05-11 21:31 - 00782010 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-23 15:21 - 2009-07-13 23:33 - 00351672 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-23 15:19 - 2010-05-11 22:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-23 15:12 - 2013-08-06 05:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-23 15:06 - 2011-06-13 05:49 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-23 12:06 - 2013-07-26 19:35 - 00000000 ____D () C:\ComboFix
2014-03-23 12:06 - 2013-07-26 19:34 - 00000000 ____D () C:\Qoobox
2014-03-23 12:06 - 2011-06-12 17:34 - 00000000 ____D () C:\Program Files\PokerStars.NET
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-03-23 12:05 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\registration
2014-03-23 12:04 - 2010-05-11 22:33 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-23 12:02 - 2013-07-26 16:07 - 00000000 ____D () C:\_OTL
2014-03-23 12:02 - 2009-07-13 21:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-20 17:23 - 2012-12-09 09:48 - 00000000 ____D () C:\GRAND COEUR
2014-03-17 16:59 - 2012-12-09 09:44 - 00000000 ____D () C:\AVE MARIA
2014-03-17 16:54 - 2012-12-09 09:44 - 00000000 ____D () C:\AND WITH HIS STRIPES
Some content of TEMP:
====================
C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll
C:\Users\K Man's Travel Pal\AppData\Local\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-06 15:37
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by K Man's Travel Pal at 2014-04-06 18:09:16
Running from C:\Users\K Man's Travel Pal\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
3100_3200_3300_Help (Version: 82.0.242.000 - Hewlett-Packard) Hidden
3100_3200_3300trb (Version: 82.0.242.000 - Hewlett-Packard) Hidden
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
3300 (Version: 130.0.365.000 - Hewlett-Packard) Hidden
Acer Crystal Eye webcam Ver:1.1.178.503 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.178.503 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3004 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3011 - Acer Incorporated)
Acer Games (HKLM\...\WildTangent acer Master Uninstall) (Version: 1.0.0.80 - WildTangent)
Acer Registration (HKLM\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\Acer Screensaver) (Version: 1.1.0416.2010 - Acer Incorporated)
Acer Updater (HKLM\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3002 - Acer Incorporated)
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.29 - Atheros Communications Inc.)
Audacity 2.0.2 (HKLM\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2016 - Avast Software)
Bejeweled 2 Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
Blackhawk Striker 2 (Version: 2.2.0.82 - WildTangent) Hidden
Blasterball 3 (Version: 2.2.0.82 - WildTangent) Hidden
Bob the Builder Can-Do-Zoo (Version: 2.2.0.82 - WildTangent) Hidden
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Copy (Version: 130.0.428.000 - Hewlett-Packard) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.465.000 - Hewlett-Packard) Hidden
Diner Dash (Version: 2.2.0.82 - WildTangent) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
eBay Worldwide (HKLM\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
ENE USB Card Reader Driver (HKLM\...\F3C7F6463C419D1D216961B5B81E2FE534986562) (Version: 5.89.0.66 - ENE)
Escape Rosecliff Island (Version: 2.2.0.82 - WildTangent) Hidden
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
eSobi v2 (HKLM\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (Version: 2.0.4.000274 - esobi Inc.) Hidden
Faerie Solitaire (Version: 2.2.0.82 - WildTangent) Hidden
FATE - The Traitor Soul (Version: 2.2.0.82 - WildTangent) Hidden
Fax (Version: 130.0.418.000 - Hewlett-Packard) Hidden
FFmpeg v0.6.2 for Audacity (HKLM\...\FFmpeg for Audacity_is1) (Version: - )
Finale PrintMusic 2010 (HKLM\...\Finale PrintMusic 2010) (Version: 15.0.1.1 - MakeMusic)
Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (HKLM\...\{B61ED343-0B14-4241-999C-490CB1A20DA4}) (Version: 13.0 - HP)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Identity Card (HKLM\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Insaniquarium Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2230 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet Explorer (Enable DEP) (HKLM\...\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb) (Version: - )
Jewel Quest (Version: 2.2.0.82 - WildTangent) Hidden
Jewel Quest Solitaire 3 (Version: 2.2.0.82 - WildTangent) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
Launch Manager (HKLM\...\LManager) (Version: 4.0.8 - Acer Inc.)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
McAfee Virtual Technician (HKLM\...\McAfee Virtual Technician) (Version: 6.5.0.2101 - McAfee, Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (Version: 3.1.210.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.210.0 - Egis Technology Inc.)
MyWinLocker Suite (Version: 3.1.210.0 - Egis Technology Inc.) Hidden
Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Penguins! (Version: 2.2.0.82 - WildTangent) Hidden
PokerStars.net (HKLM\...\PokerStars.net) (Version: - PokerStars.net)
Polar Bowler (Version: 2.2.0.82 - WildTangent) Hidden
Polar Golfer (Version: 2.2.0.82 - WildTangent) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6066 - Realtek Semiconductor Corp.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shared C Run-time for x86 (Version: 10.0.0 - McAfee) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
SmartWebPrinting (Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (Version: 130.0.469.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.7.0 - Synaptics Incorporated)
The Price is Right (Version: 2.2.0.82 - WildTangent) Hidden
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Update Installer for WildTangent Games App (Version: - WildTangent) Hidden
Virtual Families (Version: 2.2.0.82 - WildTangent) Hidden
Virtual Villagers - A New Home (Version: 2.2.0.82 - WildTangent) Hidden
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Welcome Center (HKLM\...\Acer Welcome Center) (Version: 1.01.3002 - Acer Incorporated)
WildTangent Games App (HKLM\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.10.20 - WildTangent)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Yahtzee (Version: 2.2.0.82 - WildTangent) Hidden
Zuma Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
==================== Restore Points =========================
23-03-2014 16:20:36 Windows Update
23-03-2014 18:08:00 avast! antivirus system restore point
23-03-2014 19:18:30 avast! antivirus system restore point
23-03-2014 19:33:47 Windows Update
23-03-2014 20:04:54 Windows Update
24-03-2014 10:25:47 Windows Update
26-03-2014 00:34:51 Windows Update
26-03-2014 09:36:45 Windows Update
27-03-2014 01:59:45 Windows Update
27-03-2014 10:38:46 Windows Update
28-03-2014 01:59:25 Windows Update
28-03-2014 10:34:09 Windows Update
29-03-2014 11:17:03 Windows Update
30-03-2014 10:09:10 Windows Update
31-03-2014 11:15:52 Windows Update
01-04-2014 11:45:33 Windows Update
02-04-2014 02:35:38 Windows Update
03-04-2014 04:01:00 Windows Update
04-04-2014 04:00:51 Windows Update
04-04-2014 12:15:12 Windows Update
06-04-2014 04:48:35 Windows Update
==================== Hosts content: ==========================
2009-07-13 21:04 - 2014-04-06 15:21 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {5159FE36-64D7-4043-869B-2B52629E1447} - System32\Tasks\{B5E81122-B5EF-4C20-9895-72BFCD22A99F} => Iexplore.exe http://ui.skype.com/...red;notincluded
Task: {5B3E756D-FBB5-4151-9CC5-365316B9580E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.)
Task: {8B1203F7-461A-4B27-99CC-CBF1B365D62E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-03-31] (AVAST Software)
Task: {B653DA3C-941D-476A-9F56-D293EC99AAED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-23] (Adobe Systems Incorporated)
Task: {CFD84C62-053D-4AA1-B89D-471893757CE4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-04-06 07:42 - 2014-04-06 07:42 - 02189824 _____ () C:\Program Files\AVAST Software\Avast\defs\14040600\algo.dll
2013-10-24 19:50 - 2013-10-24 19:50 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-04-06 17:58 - 2014-04-06 17:58 - 00041984 _____ () C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll
2013-08-23 14:01 - 2013-08-23 14:01 - 25100288 _____ () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\libcef.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk => C:\Windows\pss\Acer VCM.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^K Man's Travel Pal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: Acer ePower Management => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: hpqSRMon => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
MSCONFIG\startupreg: IAAnotif => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: LManager => C:\Program Files\Launch Manager\LManager.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: mwlDaemon => C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: PLFSetI => C:\Windows\PLFSetI.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
MSCONFIG\startupreg: SuiteTray => "C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
==================== Faulty Device Manager Devices =============
Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Error: (04/06/2014 05:58:36 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom
Error: (04/06/2014 05:58:09 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\Windows\system32\athExt.dll
Error Code: 126
Error: (04/06/2014 05:56:29 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-08-25 10:02:29.630
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-08-25 09:58:44.762
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-08-25 09:58:43.498
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-08-25 09:58:39.440
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-08-25 09:12:49.056
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-08-25 09:12:46.854
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-08-25 09:12:39.535
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-03-23 08:13:38.210
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-03-23 08:13:38.195
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
Date: 2013-03-18 19:37:25.814
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 86%
Total physical RAM: 1013.1 MB
Available physical RAM: 134.04 MB
Total Pagefile: 2037.1 MB
Available Pagefile: 773.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1905.34 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:135.94 GB) (Free:98.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: D8067EFC)
Partition: GPT Partition Type.
==================== End Of Log ============================
I don't know where the OTL log went. Cannot find. Thanks for your help!
#4
Posted 06 April 2014 - 09:26 PM
Download the enclosed file. [attachment=69975:fixlist.txt]
Save it in the same location FRST is saved.
Open FRST and click on the Fix button.
#5
Posted 07 April 2014 - 06:32 PM
Here is the last log.. Computer is still running really slow.
Thanks!
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-03-2014 01
Ran by K Man's Travel Pal at 2014-04-07 19:31:13 Run:1
Running from C:\Users\K Man's Travel Pal\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
SearchScopes: HKLM - DefaultScope value is missing.
BHO: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (McAfee Virtual Technician) - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll No File
C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll
C:\Users\K Man's Travel Pal\AppData\Local\temp\Quarantine.exe
End
*****************
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB} => Key deleted successfully.
HKCR\CLSID\{27B4851A-3207-45A2-B947-BE8AFE6163AB} => Key not found.
C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll not found.
C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll not found.
C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll not found.
"C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll" => File/Directory not found.
C:\Users\K Man's Travel Pal\AppData\Local\temp\Quarantine.exe => Moved successfully.
==== End of Fixlog ====
#6
Posted 07 April 2014 - 07:35 PM
Lets empty the temp folders:
Download TFC by OldTimer to your desktop
- Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
- It will close all programs when run, so make sure you have saved all your work before you begin.
- Click the Start button to begin the process. Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. Let it run uninterrupted to completion.
- Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.
Please download the latest version of TDSSKiller from here and save it to your Desktop.
- Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
- Put a checkmark beside loaded modules.
- A reboot will be needed to apply the changes. Do it.
- TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
- Then click on Change parameters in TDSSKiller.
- Check all boxes then click OK.
- Click the Start Scan button.
- The scan should take no longer than 2 minutes.
- If a suspicious object is detected, the default action will be Skip, click on Continue.
- If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed. - A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
Re-scan with FRST and post he new FRST.txt
#7
Posted 08 April 2014 - 06:23 PM
Here is the FRST log:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01 (ATTENTION: ====> FRST version is 26 days old and could be outdated)
Ran by K Man's Travel Pal (administrator) on KMANSTRAVELPAL on 08-04-2014 19:15:09
Running from C:\Users\K Man's Travel Pal\Desktop
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Registration\GREGsvc.exe
(Egis Technology Inc.) C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Kaspersky Lab ZAO) C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dropbox, Inc.) C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-03-31] (AVAST Software)
Startup: C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.my.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...ng}&rlz=1I7ACAW
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...AW_enUS435US435
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...AW_enUS435US435
SearchScopes: HKCU - {88219053-82EE-4373-BA11-9E5CA8B34367} URL = http://search.yahoo....&p={SearchTerms}
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (McAfee Virtual Technician) - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll No File
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-05]
CHR Extension: (Google Drive) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-05]
CHR Extension: (YouTube) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-05]
CHR Extension: (Google Search) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-05]
CHR Extension: (avast! Online Security) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-05]
CHR Extension: (Google Wallet) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-17]
CHR Extension: (Gmail) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-03-31]
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-31] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [735776 2010-04-23] (Acer Incorporated)
R2 GREGService; C:\Program Files\Acer\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MWLService; C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-04-17] (Egis Technology Inc.)
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232 2010-01-28] (Acer Group)
==================== Drivers (Whitelisted) ====================
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-03-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-03-31] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-03-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-03-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-03-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [67264 2014-03-31] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180760 2014-03-31] ()
S3 EUCR; C:\Windows\system32\drivers\EUCR6SK.SYS [82384 2010-03-02] (ENE Technology Inc.)
R1 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [18992 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [60976 2009-06-02] (Egis Technology Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-08 19:15 - 2014-04-08 19:15 - 00010046 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-08 18:58 - 2014-04-08 18:58 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\K Man's Travel Pal\Desktop\tdsskiller.exe
2014-04-08 18:54 - 2014-04-08 18:54 - 00448512 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\TFC.exe
2014-04-06 18:06 - 2014-04-08 19:15 - 00000000 ____D () C:\FRST
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 17:45 - 2014-04-06 17:56 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:43 - 2014-04-06 16:44 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-03-31 06:45 - 2014-04-08 19:09 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:37 - 2014-03-31 06:45 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:29 - 2014-04-08 19:09 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-23 15:16 - 2014-02-23 01:53 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-23 15:16 - 2014-02-23 01:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-23 15:16 - 2014-02-23 01:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-23 15:15 - 2014-02-23 01:54 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-23 15:15 - 2014-02-23 01:53 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-23 15:15 - 2014-02-23 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-23 14:33 - 2014-02-06 20:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-23 14:33 - 2014-02-03 21:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-23 14:33 - 2014-02-03 21:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-23 14:33 - 2014-01-27 21:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-23 14:31 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
==================== One Month Modified Files and Folders =======
2014-04-08 19:15 - 2014-04-08 19:15 - 00010046 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-08 19:15 - 2014-04-06 18:06 - 00000000 ____D () C:\FRST
2014-04-08 19:15 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-08 19:15 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-08 19:09 - 2014-03-31 06:45 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-04-08 19:09 - 2014-03-31 06:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-04-08 19:07 - 2013-09-17 05:49 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-08 19:07 - 2009-07-13 23:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-08 19:07 - 2009-07-13 23:39 - 00138465 _____ () C:\Windows\setupact.log
2014-04-08 19:05 - 2011-06-12 17:36 - 01752235 _____ () C:\Windows\WindowsUpdate.log
2014-04-08 18:58 - 2014-04-08 18:58 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\K Man's Travel Pal\Desktop\tdsskiller.exe
2014-04-08 18:58 - 2013-09-17 05:49 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-08 18:54 - 2014-04-08 18:54 - 00448512 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\TFC.exe
2014-04-08 18:46 - 2012-04-11 20:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-08 18:37 - 2011-06-12 17:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\PokerStars.NET
2014-04-08 17:23 - 2012-02-25 17:36 - 00000455 _____ () C:\Windows\demdata.txt
2014-04-08 05:40 - 2013-12-11 06:19 - 00422530 _____ () C:\Windows\IE11_main.log
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 17:56 - 2014-04-06 17:45 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:44 - 2014-04-06 16:43 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 16:34 - 2010-05-11 22:22 - 00236434 _____ () C:\Windows\PFRO.log
2014-04-06 16:27 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\config\Journal
2014-04-06 15:55 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\rescache
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:45 - 2014-03-31 06:37 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:45 - 2011-06-12 15:43 - 00000000 ____D () C:\Users\K Man's Travel Pal
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:24 - 2014-02-03 16:27 - 00002011 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-03-31 06:23 - 2014-01-05 11:30 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-31 06:22 - 2013-08-05 20:16 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-31 06:22 - 2013-08-05 20:16 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-29 21:00 - 2011-06-12 16:00 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Adobe
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2010-05-11 22:33 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-29 20:59 - 2010-05-11 22:32 - 00000000 ____D () C:\Program Files\Adobe
2014-03-29 20:56 - 2011-06-12 20:38 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\Adobe
2014-03-29 18:19 - 2012-02-25 16:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\Documents\FINALE
2014-03-28 07:01 - 2012-12-09 09:49 - 00000000 ____D () C:\WACHET AUF
2014-03-23 15:46 - 2012-04-11 20:25 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-23 15:46 - 2011-07-06 05:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-23 15:31 - 2013-01-09 21:01 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 15:29 - 2010-05-11 21:31 - 00782010 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-23 15:21 - 2009-07-13 23:33 - 00351672 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-23 15:19 - 2010-05-11 22:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-23 15:12 - 2013-08-06 05:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-23 15:06 - 2011-06-13 05:49 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-23 12:06 - 2013-07-26 19:35 - 00000000 ____D () C:\ComboFix
2014-03-23 12:06 - 2013-07-26 19:34 - 00000000 ____D () C:\Qoobox
2014-03-23 12:06 - 2011-06-12 17:34 - 00000000 ____D () C:\Program Files\PokerStars.NET
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-03-23 12:05 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\registration
2014-03-23 12:04 - 2010-05-11 22:33 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-23 12:02 - 2013-07-26 16:07 - 00000000 ____D () C:\_OTL
2014-03-23 12:02 - 2009-07-13 21:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-20 17:23 - 2012-12-09 09:48 - 00000000 ____D () C:\GRAND COEUR
2014-03-17 16:59 - 2012-12-09 09:44 - 00000000 ____D () C:\AVE MARIA
2014-03-17 16:54 - 2012-12-09 09:44 - 00000000 ____D () C:\AND WITH HIS STRIPES
Some content of TEMP:
====================
C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpx5gvqa.dll
C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-06 15:37
==================== End Of Log ============================
And the TDSS Killer log:
19:08:01.0198 0x0d2c TDSS rootkit removing tool 3.0.0.30 Apr 7 2014 15:39:12
19:08:02.0119 0x0d2c ============================================================
19:08:02.0119 0x0d2c Current date / time: 2014/04/08 19:08:02.0119
19:08:02.0119 0x0d2c SystemInfo:
19:08:02.0119 0x0d2c
19:08:02.0119 0x0d2c OS Version: 6.1.7601 ServicePack: 1.0
19:08:02.0119 0x0d2c Product type: Workstation
19:08:02.0119 0x0d2c ComputerName: KMANSTRAVELPAL
19:08:02.0119 0x0d2c UserName: K Man's Travel Pal
19:08:02.0119 0x0d2c Windows directory: C:\Windows
19:08:02.0119 0x0d2c System windows directory: C:\Windows
19:08:02.0134 0x0d2c Processor architecture: Intel x86
19:08:02.0134 0x0d2c Number of processors: 2
19:08:02.0134 0x0d2c Page size: 0x1000
19:08:02.0134 0x0d2c Boot type: Normal boot
19:08:02.0134 0x0d2c ============================================================
19:08:02.0134 0x0d2c BG loaded
19:08:02.0899 0x0d2c System UUID: {D7B5CD45-E65D-962A-699B-CC605C5E3948}
19:08:05.0941 0x0d2c Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:08:11.0136 0x0d2c ============================================================
19:08:11.0136 0x0d2c \Device\Harddisk0\DR0:
19:08:11.0151 0x0d2c MBR partitions:
19:08:11.0151 0x0d2c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A03C22, BlocksNum 0x32FCD
19:08:11.0151 0x0d2c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A36BEF, BlocksNum 0x10FE2AC1
19:08:11.0151 0x0d2c ============================================================
19:08:11.0323 0x0d2c C: <-> \Device\Harddisk0\DR0\Partition2
19:08:11.0323 0x0d2c ============================================================
19:08:11.0323 0x0d2c Initialize success
19:08:11.0323 0x0d2c ============================================================
19:08:18.0764 0x0edc ============================================================
19:08:18.0764 0x0edc Scan started
19:08:18.0764 0x0edc Mode: Manual;
19:08:18.0764 0x0edc ============================================================
19:08:18.0764 0x0edc KSN ping started
19:08:22.0680 0x0edc KSN ping finished: true
19:08:50.0401 0x0edc ================ Scan system memory ========================
19:08:50.0401 0x0edc System memory - ok
19:08:50.0464 0x0edc ================ Scan services =============================
19:08:55.0534 0x0edc [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:08:55.0549 0x0edc 1394ohci - ok
19:08:57.0546 0x0edc [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:08:57.0562 0x0edc ACPI - ok
19:08:58.0233 0x0edc [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:08:58.0233 0x0edc AcpiPmi - ok
19:08:59.0855 0x0edc [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:08:59.0855 0x0edc AdobeARMservice - ok
19:09:00.0588 0x0edc [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:09:00.0604 0x0edc AdobeFlashPlayerUpdateSvc - ok
19:09:00.0994 0x0edc [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:09:01.0041 0x0edc adp94xx - ok
19:09:01.0462 0x0edc [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:09:01.0587 0x0edc adpahci - ok
19:09:01.0743 0x0edc [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:09:01.0774 0x0edc adpu320 - ok
19:09:02.0101 0x0edc [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:09:02.0242 0x0edc AeLookupSvc - ok
19:09:02.0616 0x0edc [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
19:09:02.0647 0x0edc AFD - ok
19:09:02.0757 0x0edc [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
19:09:02.0757 0x0edc agp440 - ok
19:09:03.0131 0x0edc [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\drivers\djsvs.sys
19:09:03.0178 0x0edc aic78xx - ok
19:09:04.0426 0x0edc [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
19:09:04.0426 0x0edc ALG - ok
19:09:04.0629 0x0edc [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
19:09:04.0691 0x0edc aliide - ok
19:09:04.0785 0x0edc [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:09:04.0831 0x0edc amdagp - ok
19:09:05.0206 0x0edc [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
19:09:05.0206 0x0edc amdide - ok
19:09:05.0362 0x0edc [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:09:05.0362 0x0edc AmdK8 - ok
19:09:05.0471 0x0edc [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:09:05.0549 0x0edc AmdPPM - ok
19:09:05.0861 0x0edc [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:09:05.0861 0x0edc amdsata - ok
19:09:06.0345 0x0edc [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:09:06.0376 0x0edc amdsbs - ok
19:09:06.0407 0x0edc [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:09:06.0423 0x0edc amdxata - ok
19:09:06.0735 0x0edc [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
19:09:06.0750 0x0edc AppID - ok
19:09:06.0984 0x0edc [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:09:07.0000 0x0edc AppIDSvc - ok
19:09:08.0014 0x0edc [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
19:09:08.0029 0x0edc Appinfo - ok
19:09:09.0402 0x0edc [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\drivers\arc.sys
19:09:09.0418 0x0edc arc - ok
19:09:09.0480 0x0edc [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:09:09.0496 0x0edc arcsas - ok
19:09:14.0035 0x0edc [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:09:14.0550 0x0edc aspnet_state - ok
19:09:15.0174 0x0edc [ B347D2FEAE2D063943F16EC98634AB89, 2CA74745232607571ED088270B3B3FA555628455A257A6E52F133D650D861FD4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
19:09:15.0424 0x0edc aswMonFlt - ok
19:09:16.0453 0x0edc [ 769C65057212FB5004679E02EF8145C0, D6876E6ECA13DECB8AD13B3A46D7DA1B1CA4DB01A7A70371D112B491B36EC55E ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
19:09:16.0469 0x0edc aswRdr - ok
19:09:17.0764 0x0edc [ 84B4C00AE8CDFC52CF68F322D821F34C, 9971A8ECDF2B81F4AA59E7680639A8B798430E1FDF5A39C6E05E522BF2DEF3F8 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
19:09:17.0764 0x0edc aswRvrt - ok
19:09:19.0012 0x0edc [ 3A50AD6AE8D8A0F78F03316F5B93FE45, 6F3952EDA23E5FD7CACE152D3DA3B1F1238E9B9976CDD5193D21424463BAA0E9 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
19:09:19.0324 0x0edc aswSnx - ok
19:09:19.0885 0x0edc [ B6381B4DC603C558419641BA969930E0, F6586B6D055C62942CD0E5702FFCC6F4DB7424DC551EB0041876C3544994EB59 ] aswSP C:\Windows\system32\drivers\aswSP.sys
19:09:19.0932 0x0edc aswSP - ok
19:09:20.0385 0x0edc [ 9529E946B8496C1605A9188FFD49DED8, C8AB36A212E4C896D39F6120B72829585E6AFDEACA7DF7FD6D4A6EB8F9C6FF98 ] aswStm C:\Windows\system32\drivers\aswStm.sys
19:09:20.0385 0x0edc aswStm - ok
19:09:20.0634 0x0edc [ 680448905E27BBC6587ADB28597640D6, A55297D872162178FDCF2C64C2357DCE1D98418AB84CF5E8621DED73C7484629 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
19:09:20.0650 0x0edc aswVmm - ok
19:09:20.0899 0x0edc [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:09:20.0899 0x0edc AsyncMac - ok
19:09:21.0804 0x0edc [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
19:09:21.0804 0x0edc atapi - ok
19:09:22.0584 0x0edc [ 8D6E8178AB4379C932C34A109D27C5A9, 808089150DBC965D104E8DE2FCBB5C6F486DA142E3BC75CB3F5D37439ED06684 ] athr C:\Windows\system32\DRIVERS\athr.sys
19:09:23.0224 0x0edc athr - ok
19:09:23.0551 0x0edc [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:09:23.0614 0x0edc AudioEndpointBuilder - ok
19:09:23.0723 0x0edc [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:09:23.0770 0x0edc Audiosrv - ok
19:09:23.0988 0x0edc [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:09:24.0004 0x0edc avast! Antivirus - ok
19:09:24.0269 0x0edc [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:09:24.0269 0x0edc AxInstSV - ok
19:09:24.0441 0x0edc [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
19:09:24.0487 0x0edc b06bdrv - ok
19:09:24.0675 0x0edc [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
19:09:24.0690 0x0edc b57nd60x - ok
19:09:26.0141 0x0edc [ F4D388DC3FF004AEE886762D5CEC7783, 5F667C60E083DC8565753B5AEE96F99F99B583D9A038DE4C95FA5874EFEEE9D5 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
19:09:26.0531 0x0edc BCM43XX - ok
19:09:27.0342 0x0edc [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
19:09:27.0358 0x0edc BDESVC - ok
19:09:27.0420 0x0edc [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
19:09:27.0436 0x0edc Beep - ok
19:09:27.0717 0x0edc [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
19:09:27.0748 0x0edc BFE - ok
19:09:28.0013 0x0edc [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
19:09:28.0122 0x0edc BITS - ok
19:09:28.0216 0x0edc [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
19:09:28.0263 0x0edc blbdrive - ok
19:09:28.0341 0x0edc [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:09:28.0356 0x0edc bowser - ok
19:09:28.0387 0x0edc [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:09:28.0387 0x0edc BrFiltLo - ok
19:09:28.0450 0x0edc [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:09:28.0450 0x0edc BrFiltUp - ok
19:09:28.0762 0x0edc [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:09:28.0777 0x0edc BridgeMP - ok
19:09:28.0855 0x0edc [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
19:09:28.0871 0x0edc Browser - ok
19:09:29.0027 0x0edc [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:09:29.0058 0x0edc Brserid - ok
19:09:29.0136 0x0edc [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:09:29.0152 0x0edc BrSerWdm - ok
19:09:29.0183 0x0edc [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:09:29.0183 0x0edc BrUsbMdm - ok
19:09:29.0292 0x0edc [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:09:29.0292 0x0edc BrUsbSer - ok
19:09:29.0339 0x0edc [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:09:29.0355 0x0edc BTHMODEM - ok
19:09:29.0542 0x0edc [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
19:09:29.0557 0x0edc bthserv - ok
19:09:29.0776 0x0edc [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:09:29.0791 0x0edc cdfs - ok
19:09:29.0994 0x0edc [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:09:29.0994 0x0edc cdrom - ok
19:09:30.0150 0x0edc [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
19:09:30.0181 0x0edc CertPropSvc - ok
19:09:30.0353 0x0edc [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\drivers\circlass.sys
19:09:30.0384 0x0edc circlass - ok
19:09:30.0525 0x0edc [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
19:09:30.0571 0x0edc CLFS - ok
19:09:30.0805 0x0edc [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:09:30.0821 0x0edc clr_optimization_v2.0.50727_32 - ok
19:09:31.0102 0x0edc [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:09:31.0367 0x0edc clr_optimization_v4.0.30319_32 - ok
19:09:31.0414 0x0edc [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:09:31.0429 0x0edc CmBatt - ok
19:09:31.0523 0x0edc [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:09:31.0539 0x0edc cmdide - ok
19:09:31.0695 0x0edc [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
19:09:31.0835 0x0edc CNG - ok
19:09:31.0975 0x0edc [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:09:32.0038 0x0edc Compbatt - ok
19:09:32.0303 0x0edc [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:09:32.0319 0x0edc CompositeBus - ok
19:09:32.0428 0x0edc COMSysApp - ok
19:09:32.0490 0x0edc [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:09:32.0490 0x0edc crcdisk - ok
19:09:32.0787 0x0edc [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:09:32.0802 0x0edc CryptSvc - ok
19:09:33.0005 0x0edc [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
19:09:33.0052 0x0edc DcomLaunch - ok
19:09:33.0192 0x0edc [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
19:09:33.0208 0x0edc defragsvc - ok
19:09:33.0395 0x0edc [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:09:33.0426 0x0edc DfsC - ok
19:09:33.0535 0x0edc [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:09:33.0582 0x0edc Dhcp - ok
19:09:33.0660 0x0edc [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
19:09:33.0660 0x0edc discache - ok
19:09:33.0832 0x0edc [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\drivers\disk.sys
19:09:33.0832 0x0edc Disk - ok
19:09:34.0035 0x0edc [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:09:34.0050 0x0edc Dnscache - ok
19:09:34.0284 0x0edc [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
19:09:34.0378 0x0edc dot3svc - ok
19:09:34.0659 0x0edc [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
19:09:34.0768 0x0edc DPS - ok
19:09:34.0924 0x0edc [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:09:34.0939 0x0edc drmkaud - ok
19:09:36.0375 0x0edc [ E2B2853A0210D6EDAB2261870BD80C1A, BAC20DFFCFD8C324BC5B9CDA7BAFD553BBA8E3ED9224FDCF471357A456AC0A61 ] DsiWMIService C:\Program Files\Launch Manager\dsiwmis.exe
19:09:36.0406 0x0edc DsiWMIService - ok
19:09:36.0562 0x0edc [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:09:36.0624 0x0edc DXGKrnl - ok
19:09:36.0889 0x0edc [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
19:09:37.0311 0x0edc EapHost - ok
19:09:38.0637 0x0edc [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
19:09:39.0245 0x0edc ebdrv - ok
19:09:39.0370 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS C:\Windows\System32\lsass.exe
19:09:39.0401 0x0edc EFS - ok
19:09:39.0775 0x0edc [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:09:39.0822 0x0edc elxstor - ok
19:09:40.0243 0x0edc [ 60B037DB7FA23A40FD6F6C0EE9844852, 3AF944469F840C36336A400EAA66F64FDEEDA48F54DFEE493E4FB75DEF80D795 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
19:09:40.0290 0x0edc ePowerSvc - ok
19:09:40.0509 0x0edc [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:09:40.0540 0x0edc ErrDev - ok
19:09:41.0226 0x0edc [ D8E44D8DAF4DAC7DC6F8D14313EAC823, 4DDDC83582A0DAF424692084F3BFD8CAC40789463D8F259B03B317DEACA3E08B ] EUCR C:\Windows\system32\drivers\EUCR6SK.SYS
19:09:41.0414 0x0edc EUCR - ok
19:09:41.0866 0x0edc [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
19:09:41.0913 0x0edc EventSystem - ok
19:09:42.0006 0x0edc [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
19:09:42.0022 0x0edc exfat - ok
19:09:42.0162 0x0edc [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:09:42.0194 0x0edc fastfat - ok
19:09:42.0334 0x0edc [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
19:09:42.0365 0x0edc Fax - ok
19:09:42.0412 0x0edc [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\drivers\fdc.sys
19:09:42.0428 0x0edc fdc - ok
19:09:42.0506 0x0edc [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
19:09:42.0521 0x0edc fdPHost - ok
19:09:42.0584 0x0edc [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
19:09:42.0630 0x0edc FDResPub - ok
19:09:42.0708 0x0edc [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:09:42.0724 0x0edc FileInfo - ok
19:09:42.0833 0x0edc [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:09:42.0849 0x0edc Filetrace - ok
19:09:42.0927 0x0edc [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
19:09:42.0942 0x0edc flpydisk - ok
19:09:43.0270 0x0edc [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:09:43.0286 0x0edc FltMgr - ok
19:09:43.0644 0x0edc [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
19:09:43.0800 0x0edc FontCache - ok
19:09:44.0019 0x0edc [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:09:44.0034 0x0edc FontCache3.0.0.0 - ok
19:09:44.0112 0x0edc [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:09:44.0112 0x0edc FsDepends - ok
19:09:44.0315 0x0edc [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:09:44.0315 0x0edc fssfltr - ok
19:09:44.0861 0x0edc [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
19:09:45.0173 0x0edc fsssvc - ok
19:09:45.0267 0x0edc [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:09:45.0267 0x0edc Fs_Rec - ok
19:09:45.0454 0x0edc [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:09:45.0485 0x0edc fvevol - ok
19:09:45.0626 0x0edc [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:09:45.0641 0x0edc gagp30kx - ok
19:09:46.0265 0x0edc [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files\WildTangent Games\App\GamesAppService.exe
19:09:46.0343 0x0edc GamesAppService - ok
19:09:46.0749 0x0edc [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
19:09:46.0827 0x0edc gpsvc - ok
19:09:47.0201 0x0edc [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] GREGService C:\Program Files\Acer\Registration\GREGsvc.exe
19:09:47.0295 0x0edc GREGService - ok
19:09:48.0371 0x0edc [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:09:48.0387 0x0edc gupdate - ok
19:09:48.0590 0x0edc [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:09:48.0590 0x0edc gupdatem - ok
19:09:49.0198 0x0edc [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:09:49.0229 0x0edc gusvc - ok
19:09:49.0307 0x0edc [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:09:49.0323 0x0edc hcw85cir - ok
19:09:49.0682 0x0edc [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:09:49.0728 0x0edc HdAudAddService - ok
19:09:49.0838 0x0edc [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:09:49.0853 0x0edc HDAudBus - ok
19:09:49.0916 0x0edc [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:09:49.0916 0x0edc HidBatt - ok
19:09:49.0962 0x0edc [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:09:49.0978 0x0edc HidBth - ok
19:09:50.0118 0x0edc [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\drivers\hidir.sys
19:09:50.0118 0x0edc HidIr - ok
19:09:50.0399 0x0edc [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\System32\hidserv.dll
19:09:50.0415 0x0edc hidserv - ok
19:09:50.0727 0x0edc [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:09:50.0742 0x0edc HidUsb - ok
19:09:50.0852 0x0edc [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
19:09:50.0930 0x0edc hkmsvc - ok
19:09:51.0117 0x0edc [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:09:51.0148 0x0edc HomeGroupListener - ok
19:09:51.0288 0x0edc [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:09:51.0335 0x0edc HomeGroupProvider - ok
19:09:51.0741 0x0edc [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
19:09:51.0772 0x0edc hpqcxs08 - ok
19:09:51.0990 0x0edc [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
19:09:52.0006 0x0edc hpqddsvc - ok
19:09:52.0084 0x0edc [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:09:52.0115 0x0edc HpSAMD - ok
19:09:52.0786 0x0edc [ 79737E0F7D25DE8405CB34D4C9882253, 798E44BAE6CD4ECBC801ACE4089E18388ABD18744B901F53452D8103081DE967 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
19:09:52.0864 0x0edc HPSLPSVC - ok
19:09:53.0051 0x0edc [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:09:53.0098 0x0edc HTTP - ok
19:09:53.0176 0x0edc [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:09:53.0176 0x0edc hwpolicy - ok
19:09:53.0301 0x0edc [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:09:53.0316 0x0edc i8042prt - ok
19:09:53.0847 0x0edc [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
19:09:53.0894 0x0edc IAANTMON - ok
19:09:54.0081 0x0edc [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] iaStor C:\Windows\system32\drivers\iaStor.sys
19:09:54.0128 0x0edc iaStor - ok
19:09:54.0330 0x0edc [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:09:54.0362 0x0edc iaStorV - ok
19:09:54.0783 0x0edc [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:09:55.0032 0x0edc idsvc - ok
19:09:56.0624 0x0edc [ BA41E1BBA410212CE6D30E0DAC47972B, C1D8E5C95EADD9E2083275C1DA633F0B773B65EABEBC0F52224FF1156CBBE8C1 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
19:09:57.0170 0x0edc igfx - ok
19:09:57.0310 0x0edc [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:09:57.0310 0x0edc iirsp - ok
19:09:57.0575 0x0edc [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
19:09:57.0684 0x0edc IKEEXT - ok
19:09:58.0730 0x0edc [ 947318C01C648A054A05DBD1C7F73E3B, 838948A754E8734FE22D4F5939A04C4A6949EA884780C2A1A9B04C609F031D1F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:09:59.0135 0x0edc IntcAzAudAddService - ok
19:09:59.0213 0x0edc [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
19:09:59.0244 0x0edc intelide - ok
19:09:59.0276 0x0edc [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:09:59.0291 0x0edc intelppm - ok
19:09:59.0385 0x0edc [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:09:59.0400 0x0edc IPBusEnum - ok
19:09:59.0463 0x0edc [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:09:59.0478 0x0edc IpFilterDriver - ok
19:09:59.0619 0x0edc [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:09:59.0681 0x0edc iphlpsvc - ok
19:09:59.0759 0x0edc [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:09:59.0790 0x0edc IPMIDRV - ok
19:09:59.0884 0x0edc [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:09:59.0900 0x0edc IPNAT - ok
19:09:59.0993 0x0edc [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:09:59.0993 0x0edc IRENUM - ok
19:10:00.0071 0x0edc [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:10:00.0087 0x0edc isapnp - ok
19:10:00.0243 0x0edc [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:10:00.0258 0x0edc iScsiPrt - ok
19:10:00.0430 0x0edc [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:10:00.0446 0x0edc kbdclass - ok
19:10:00.0524 0x0edc [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:10:00.0539 0x0edc kbdhid - ok
19:10:00.0570 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso C:\Windows\system32\lsass.exe
19:10:00.0586 0x0edc KeyIso - ok
19:10:00.0680 0x0edc [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:10:00.0680 0x0edc KSecDD - ok
19:10:00.0789 0x0edc [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:10:00.0804 0x0edc KSecPkg - ok
19:10:00.0960 0x0edc [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
19:10:01.0007 0x0edc KtmRm - ok
19:10:01.0163 0x0edc [ B86270CC948EAD6481AC487D65DDB462, D2ACFC21AF0EBC9707337C1C3A980F767B0D165AB76434AB7D20504C69E9FDB4 ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
19:10:01.0163 0x0edc L1C - ok
19:10:01.0335 0x0edc [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:10:01.0413 0x0edc LanmanServer - ok
19:10:01.0522 0x0edc [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:10:01.0584 0x0edc LanmanWorkstation - ok
19:10:02.0052 0x0edc [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:10:02.0068 0x0edc lltdio - ok
19:10:02.0193 0x0edc [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:10:02.0240 0x0edc lltdsvc - ok
19:10:02.0302 0x0edc [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:10:02.0318 0x0edc lmhosts - ok
19:10:02.0474 0x0edc [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:10:02.0489 0x0edc LSI_FC - ok
19:10:02.0567 0x0edc [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:10:02.0583 0x0edc LSI_SAS - ok
19:10:02.0723 0x0edc [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:10:02.0739 0x0edc LSI_SAS2 - ok
19:10:02.0801 0x0edc [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:10:02.0817 0x0edc LSI_SCSI - ok
19:10:02.0926 0x0edc [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
19:10:02.0942 0x0edc luafv - ok
19:10:03.0004 0x0edc [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\drivers\megasas.sys
19:10:03.0020 0x0edc megasas - ok
19:10:03.0113 0x0edc [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:10:03.0144 0x0edc MegaSR - ok
19:10:03.0254 0x0edc [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
19:10:03.0269 0x0edc MMCSS - ok
19:10:03.0347 0x0edc [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
19:10:03.0347 0x0edc Modem - ok
19:10:03.0394 0x0edc [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:10:03.0410 0x0edc monitor - ok
19:10:03.0488 0x0edc [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:10:03.0503 0x0edc mouclass - ok
19:10:03.0597 0x0edc [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:10:03.0597 0x0edc mouhid - ok
19:10:03.0675 0x0edc [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:10:03.0690 0x0edc mountmgr - ok
19:10:03.0768 0x0edc [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
19:10:03.0784 0x0edc mpio - ok
19:10:03.0862 0x0edc [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:10:03.0878 0x0edc mpsdrv - ok
19:10:04.0002 0x0edc [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:10:04.0065 0x0edc MpsSvc - ok
19:10:04.0143 0x0edc [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:10:04.0174 0x0edc MRxDAV - ok
19:10:04.0283 0x0edc [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:10:04.0299 0x0edc mrxsmb - ok
19:10:04.0424 0x0edc [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:10:04.0455 0x0edc mrxsmb10 - ok
19:10:04.0533 0x0edc [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:10:04.0548 0x0edc mrxsmb20 - ok
19:10:04.0626 0x0edc [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
19:10:04.0642 0x0edc msahci - ok
19:10:04.0720 0x0edc [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:10:04.0736 0x0edc msdsm - ok
19:10:04.0845 0x0edc [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
19:10:04.0892 0x0edc MSDTC - ok
19:10:05.0016 0x0edc [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:10:05.0016 0x0edc Msfs - ok
19:10:05.0094 0x0edc [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:10:05.0094 0x0edc mshidkmdf - ok
19:10:05.0172 0x0edc [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:10:05.0172 0x0edc msisadrv - ok
19:10:05.0297 0x0edc [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:10:05.0328 0x0edc MSiSCSI - ok
19:10:05.0375 0x0edc msiserver - ok
19:10:05.0531 0x0edc [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:10:05.0531 0x0edc MSKSSRV - ok
19:10:05.0609 0x0edc [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:10:05.0609 0x0edc MSPCLOCK - ok
19:10:05.0703 0x0edc [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:10:05.0703 0x0edc MSPQM - ok
19:10:05.0843 0x0edc [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:10:05.0859 0x0edc MsRPC - ok
19:10:05.0921 0x0edc [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:10:05.0921 0x0edc mssmbios - ok
19:10:06.0015 0x0edc [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:10:06.0030 0x0edc MSTEE - ok
19:10:06.0093 0x0edc [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:10:06.0108 0x0edc MTConfig - ok
19:10:06.0171 0x0edc [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
19:10:06.0186 0x0edc Mup - ok
19:10:06.0280 0x0edc [ CB47C414E083CA6E50E634B148F28F64, 8699FFA4FD53508583B713DDD513CA494FFF8BE71006A2DA55A4EEE03C42BD5B ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
19:10:06.0296 0x0edc mwlPSDFilter - ok
19:10:06.0327 0x0edc [ 647B953019559BFF07536F5C6121F333, E27E2B37544F243BF01EFCA1ECB58C89ED72D88664AABB3BEDFF1304B62417CC ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
19:10:06.0327 0x0edc mwlPSDNServ - ok
19:10:06.0389 0x0edc [ 5A236A36DB8687D1E64DC81C03EAABE1, 63778FDB0CF79419FD8BEC2C3189390A6CDD5E791579133D106BF34378C848C5 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
19:10:06.0389 0x0edc mwlPSDVDisk - ok
19:10:06.0842 0x0edc [ 0036634E5C92BE109056F7E2380103A9, 52CD75711F9021BA99A3E1258E321C507AEE82D9C57B444806115C6463437A9E ] MWLService C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
19:10:06.0888 0x0edc MWLService - ok
19:10:07.0029 0x0edc [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
19:10:07.0122 0x0edc napagent - ok
19:10:07.0325 0x0edc [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:10:07.0372 0x0edc NativeWifiP - ok
19:10:07.0684 0x0edc [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:10:07.0809 0x0edc NDIS - ok
19:10:08.0012 0x0edc [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:10:08.0012 0x0edc NdisCap - ok
19:10:08.0152 0x0edc [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:10:08.0152 0x0edc NdisTapi - ok
19:10:08.0292 0x0edc [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:10:08.0308 0x0edc Ndisuio - ok
19:10:08.0480 0x0edc [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:10:08.0495 0x0edc NdisWan - ok
19:10:08.0604 0x0edc [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:10:08.0604 0x0edc NDProxy - ok
19:10:08.0745 0x0edc [ 510C138564486FF926A3F773205C63D1, 50FBB8555C284ED22F71D99750899321B63E3B4C255174FE9B4F31084F9A34B1 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:10:08.0760 0x0edc Net Driver HPZ12 - ok
19:10:08.0838 0x0edc [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:10:08.0838 0x0edc NetBIOS - ok
19:10:08.0948 0x0edc [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:10:08.0963 0x0edc NetBT - ok
19:10:09.0010 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon C:\Windows\system32\lsass.exe
19:10:09.0026 0x0edc Netlogon - ok
19:10:09.0197 0x0edc [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
19:10:09.0244 0x0edc Netman - ok
19:10:09.0540 0x0edc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:09.0650 0x0edc NetMsmqActivator - ok
19:10:09.0852 0x0edc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:09.0868 0x0edc NetPipeActivator - ok
19:10:10.0055 0x0edc [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
19:10:10.0118 0x0edc netprofm - ok
19:10:10.0320 0x0edc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:10.0336 0x0edc NetTcpActivator - ok
19:10:10.0367 0x0edc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:10.0383 0x0edc NetTcpPortSharing - ok
19:10:10.0492 0x0edc [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:10:10.0508 0x0edc nfrd960 - ok
19:10:10.0617 0x0edc [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:10:10.0664 0x0edc NlaSvc - ok
19:10:10.0742 0x0edc [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:10:10.0757 0x0edc Npfs - ok
19:10:10.0835 0x0edc [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
19:10:10.0866 0x0edc nsi - ok
19:10:10.0929 0x0edc [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:10:10.0944 0x0edc nsiproxy - ok
19:10:11.0334 0x0edc [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:10:11.0522 0x0edc Ntfs - ok
19:10:11.0600 0x0edc [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
19:10:11.0600 0x0edc Null - ok
19:10:11.0693 0x0edc [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:10:11.0724 0x0edc nvraid - ok
19:10:11.0818 0x0edc [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:10:11.0834 0x0edc nvstor - ok
19:10:11.0912 0x0edc [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:10:11.0927 0x0edc nv_agp - ok
19:10:12.0286 0x0edc [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:10:12.0333 0x0edc odserv - ok
19:10:12.0380 0x0edc [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:10:12.0395 0x0edc ohci1394 - ok
19:10:12.0536 0x0edc [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:10:12.0567 0x0edc ose - ok
19:10:12.0660 0x0edc [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:10:12.0707 0x0edc p2pimsvc - ok
19:10:12.0879 0x0edc [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
19:10:12.0926 0x0edc p2psvc - ok
19:10:13.0035 0x0edc [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\drivers\parport.sys
19:10:13.0050 0x0edc Parport - ok
19:10:13.0128 0x0edc [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:10:13.0144 0x0edc partmgr - ok
19:10:13.0222 0x0edc [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
19:10:13.0222 0x0edc Parvdm - ok
19:10:13.0362 0x0edc [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:10:13.0394 0x0edc PcaSvc - ok
19:10:13.0472 0x0edc [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
19:10:13.0503 0x0edc pci - ok
19:10:13.0565 0x0edc [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
19:10:13.0565 0x0edc pciide - ok
19:10:13.0674 0x0edc [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:10:13.0706 0x0edc pcmcia - ok
19:10:13.0799 0x0edc [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
19:10:13.0815 0x0edc pcw - ok
19:10:13.0940 0x0edc [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:10:14.0018 0x0edc PEAUTH - ok
19:10:14.0595 0x0edc [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
19:10:14.0813 0x0edc pla - ok
19:10:15.0047 0x0edc [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:10:15.0110 0x0edc PlugPlay - ok
19:10:15.0359 0x0edc [ 37E5E8FFBAD35605DAEEC3224EA0E465, E3A9BE275D3C8A3E143DF3A795964E9860A1F6C18BE36F8FE552E954435AC927 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:10:15.0375 0x0edc Pml Driver HPZ12 - ok
19:10:15.0484 0x0edc [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:10:15.0515 0x0edc PNRPAutoReg - ok
19:10:15.0656 0x0edc [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:10:15.0718 0x0edc PNRPsvc - ok
19:10:15.0890 0x0edc [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:10:15.0921 0x0edc PolicyAgent - ok
19:10:15.0983 0x0edc [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
19:10:15.0999 0x0edc Power - ok
19:10:16.0092 0x0edc [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:10:16.0108 0x0edc PptpMiniport - ok
19:10:16.0233 0x0edc [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\drivers\processr.sys
19:10:16.0248 0x0edc Processor - ok
19:10:16.0404 0x0edc [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:10:16.0451 0x0edc ProfSvc - ok
19:10:16.0498 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:10:16.0514 0x0edc ProtectedStorage - ok
19:10:16.0670 0x0edc [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:10:16.0685 0x0edc Psched - ok
19:10:17.0106 0x0edc [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:10:17.0231 0x0edc ql2300 - ok
19:10:17.0340 0x0edc [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:10:17.0356 0x0edc ql40xx - ok
19:10:17.0512 0x0edc [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
19:10:17.0543 0x0edc QWAVE - ok
19:10:17.0637 0x0edc [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:10:17.0637 0x0edc QWAVEdrv - ok
19:10:17.0746 0x0edc [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:10:17.0746 0x0edc RasAcd - ok
19:10:17.0902 0x0edc [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:10:17.0902 0x0edc RasAgileVpn - ok
19:10:17.0980 0x0edc [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
19:10:18.0011 0x0edc RasAuto - ok
19:10:18.0120 0x0edc [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:10:18.0136 0x0edc Rasl2tp - ok
19:10:18.0323 0x0edc [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
19:10:18.0370 0x0edc RasMan - ok
19:10:18.0526 0x0edc [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:10:18.0542 0x0edc RasPppoe - ok
19:10:18.0620 0x0edc [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:10:18.0635 0x0edc RasSstp - ok
19:10:18.0776 0x0edc [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:10:18.0807 0x0edc rdbss - ok
19:10:18.0854 0x0edc [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
19:10:18.0854 0x0edc rdpbus - ok
19:10:18.0963 0x0edc [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:10:18.0963 0x0edc RDPCDD - ok
19:10:19.0134 0x0edc [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:10:19.0150 0x0edc RDPENCDD - ok
19:10:19.0275 0x0edc [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:10:19.0275 0x0edc RDPREFMP - ok
19:10:19.0587 0x0edc [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:10:19.0602 0x0edc RdpVideoMiniport - ok
19:10:19.0743 0x0edc [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:10:19.0774 0x0edc RDPWD - ok
19:10:19.0899 0x0edc [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:10:19.0914 0x0edc rdyboost - ok
19:10:19.0992 0x0edc [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:10:20.0024 0x0edc RemoteAccess - ok
19:10:20.0102 0x0edc [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:10:20.0133 0x0edc RemoteRegistry - ok
19:10:20.0289 0x0edc [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:10:20.0320 0x0edc RpcEptMapper - ok
19:10:20.0398 0x0edc [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
19:10:20.0414 0x0edc RpcLocator - ok
19:10:20.0585 0x0edc [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\System32\rpcss.dll
19:10:20.0648 0x0edc RpcSs - ok
19:10:20.0897 0x0edc [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:10:20.0913 0x0edc rspndr - ok
19:10:21.0162 0x0edc [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] RS_Service C:\Program Files\Acer\Acer VCM\RS_Service.exe
19:10:21.0209 0x0edc RS_Service - ok
19:10:21.0240 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs C:\Windows\system32\lsass.exe
19:10:21.0256 0x0edc SamSs - ok
19:10:21.0381 0x0edc [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:10:21.0396 0x0edc sbp2port - ok
19:10:21.0490 0x0edc [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:10:21.0537 0x0edc SCardSvr - ok
19:10:21.0615 0x0edc [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:10:21.0615 0x0edc scfilter - ok
19:10:21.0896 0x0edc [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
19:10:21.0989 0x0edc Schedule - ok
19:10:22.0083 0x0edc [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
19:10:22.0083 0x0edc SCPolicySvc - ok
19:10:22.0176 0x0edc [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:10:22.0223 0x0edc SDRSVC - ok
19:10:22.0301 0x0edc [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:10:22.0317 0x0edc secdrv - ok
19:10:22.0410 0x0edc [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
19:10:22.0426 0x0edc seclogon - ok
19:10:22.0504 0x0edc [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\system32\sens.dll
19:10:22.0535 0x0edc SENS - ok
19:10:22.0566 0x0edc [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\drivers\serenum.sys
19:10:22.0582 0x0edc Serenum - ok
19:10:22.0691 0x0edc [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\drivers\serial.sys
19:10:22.0707 0x0edc Serial - ok
19:10:22.0785 0x0edc [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:10:22.0785 0x0edc sermouse - ok
19:10:22.0925 0x0edc [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
19:10:22.0956 0x0edc SessionEnv - ok
19:10:23.0034 0x0edc [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:10:23.0034 0x0edc sffdisk - ok
19:10:23.0097 0x0edc [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:10:23.0097 0x0edc sffp_mmc - ok
19:10:23.0128 0x0edc [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:10:23.0144 0x0edc sffp_sd - ok
19:10:23.0222 0x0edc [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:10:23.0222 0x0edc sfloppy - ok
19:10:23.0362 0x0edc [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:10:23.0409 0x0edc SharedAccess - ok
19:10:23.0580 0x0edc [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:10:23.0643 0x0edc ShellHWDetection - ok
19:10:23.0721 0x0edc [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:10:23.0736 0x0edc sisagp - ok
19:10:23.0799 0x0edc [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:10:23.0799 0x0edc SiSRaid2 - ok
19:10:23.0846 0x0edc [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:10:23.0861 0x0edc SiSRaid4 - ok
19:10:23.0970 0x0edc [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:10:23.0986 0x0edc Smb - ok
19:10:24.0080 0x0edc [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:10:24.0111 0x0edc SNMPTRAP - ok
19:10:24.0173 0x0edc [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
19:10:24.0189 0x0edc spldr - ok
19:10:24.0345 0x0edc [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
19:10:24.0407 0x0edc Spooler - ok
19:10:25.0390 0x0edc [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
19:10:25.0624 0x0edc sppsvc - ok
19:10:25.0702 0x0edc [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:10:25.0733 0x0edc sppuinotify - ok
19:10:25.0874 0x0edc [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:10:25.0905 0x0edc srv - ok
19:10:26.0061 0x0edc [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:10:26.0092 0x0edc srv2 - ok
19:10:26.0186 0x0edc [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:10:26.0201 0x0edc srvnet - ok
19:10:26.0357 0x0edc [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:10:26.0388 0x0edc SSDPSRV - ok
19:10:26.0466 0x0edc [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:10:26.0513 0x0edc SstpSvc - ok
19:10:26.0591 0x0edc [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:10:26.0591 0x0edc stexstor - ok
19:10:26.0700 0x0edc [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
19:10:26.0700 0x0edc StillCam - ok
19:10:26.0888 0x0edc [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
19:10:26.0966 0x0edc StiSvc - ok
19:10:27.0028 0x0edc [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
19:10:27.0044 0x0edc swenum - ok
19:10:27.0215 0x0edc [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
19:10:27.0262 0x0edc swprv - ok
19:10:27.0418 0x0edc [ 5CDD124913E91C7F79B4D5CAE1C7C4DE, CA4A3DD211CA1227921FBB190AA86291203AA84651B4AF769F9031D698E22FDF ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:10:27.0434 0x0edc SynTP - ok
19:10:27.0824 0x0edc [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
19:10:27.0995 0x0edc SysMain - ok
19:10:28.0073 0x0edc [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
19:10:28.0104 0x0edc TabletInputService - ok
19:10:28.0245 0x0edc [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
19:10:28.0292 0x0edc TapiSrv - ok
19:10:28.0370 0x0edc [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
19:10:28.0401 0x0edc TBS - ok
19:10:28.0697 0x0edc [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:10:28.0822 0x0edc Tcpip - ok
19:10:28.0962 0x0edc [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:10:29.0040 0x0edc TCPIP6 - ok
19:10:29.0134 0x0edc [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:10:29.0150 0x0edc tcpipreg - ok
19:10:29.0259 0x0edc [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:10:29.0259 0x0edc TDPIPE - ok
19:10:29.0321 0x0edc [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:10:29.0321 0x0edc TDTCP - ok
19:10:29.0399 0x0edc [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:10:29.0415 0x0edc tdx - ok
19:10:29.0462 0x0edc [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:10:29.0477 0x0edc TermDD - ok
19:10:29.0680 0x0edc [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
19:10:29.0758 0x0edc TermService - ok
19:10:29.0820 0x0edc [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
19:10:29.0852 0x0edc Themes - ok
19:10:29.0898 0x0edc [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
19:10:29.0930 0x0edc THREADORDER - ok
19:10:30.0070 0x0edc [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
19:10:30.0101 0x0edc TrkWks - ok
19:10:30.0257 0x0edc [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:10:30.0288 0x0edc TrustedInstaller - ok
19:10:30.0366 0x0edc [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:10:30.0366 0x0edc tssecsrv - ok
19:10:30.0476 0x0edc [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:10:30.0491 0x0edc TsUsbFlt - ok
19:10:30.0616 0x0edc [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:10:30.0632 0x0edc tunnel - ok
19:10:30.0678 0x0edc [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:10:30.0694 0x0edc uagp35 - ok
19:10:30.0834 0x0edc [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:10:30.0866 0x0edc udfs - ok
19:10:30.0975 0x0edc [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:10:31.0006 0x0edc UI0Detect - ok
19:10:31.0068 0x0edc [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:10:31.0084 0x0edc uliagpkx - ok
19:10:31.0162 0x0edc [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
19:10:31.0162 0x0edc umbus - ok
19:10:31.0240 0x0edc [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\drivers\umpass.sys
19:10:31.0240 0x0edc UmPass - ok
19:10:31.0427 0x0edc [ F9EC9ACD504D823D9B9CA98A4F8D3CA2, 58DAD5111C598F14CB199FE6A61FA5918F29513B778A8664FD05EFAB3C665D4F ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:10:31.0458 0x0edc Updater Service - ok
19:10:31.0630 0x0edc [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
19:10:31.0677 0x0edc upnphost - ok
19:10:31.0755 0x0edc [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:10:31.0770 0x0edc usbccgp - ok
19:10:31.0911 0x0edc [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:10:31.0926 0x0edc usbcir - ok
19:10:31.0989 0x0edc [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:10:32.0004 0x0edc usbehci - ok
19:10:32.0145 0x0edc [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:10:32.0176 0x0edc usbhub - ok
19:10:32.0254 0x0edc [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:10:32.0254 0x0edc usbohci - ok
19:10:32.0348 0x0edc [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:10:32.0348 0x0edc usbprint - ok
19:10:32.0426 0x0edc [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:10:32.0441 0x0edc USBSTOR - ok
19:10:32.0488 0x0edc [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:10:32.0504 0x0edc usbuhci - ok
19:10:32.0660 0x0edc [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:10:32.0691 0x0edc usbvideo - ok
19:10:32.0753 0x0edc [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
19:10:32.0784 0x0edc UxSms - ok
19:10:32.0816 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc C:\Windows\system32\lsass.exe
19:10:32.0831 0x0edc VaultSvc - ok
19:10:32.0956 0x0edc [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:10:32.0972 0x0edc vdrvroot - ok
19:10:33.0159 0x0edc [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
19:10:33.0252 0x0edc vds - ok
19:10:33.0362 0x0edc [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:10:33.0377 0x0edc vga - ok
19:10:33.0408 0x0edc [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:10:33.0408 0x0edc VgaSave - ok
19:10:33.0502 0x0edc [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:10:33.0533 0x0edc vhdmp - ok
19:10:33.0596 0x0edc [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:10:33.0611 0x0edc viaagp - ok
19:10:33.0642 0x0edc [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
19:10:33.0658 0x0edc ViaC7 - ok
19:10:33.0736 0x0edc [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
19:10:33.0736 0x0edc viaide - ok
19:10:33.0783 0x0edc [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:10:33.0798 0x0edc volmgr - ok
19:10:33.0892 0x0edc [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:10:33.0908 0x0edc volmgrx - ok
19:10:34.0001 0x0edc [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:10:34.0032 0x0edc volsnap - ok
19:10:34.0142 0x0edc [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:10:34.0157 0x0edc vsmraid - ok
19:10:34.0500 0x0edc [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
19:10:34.0625 0x0edc VSS - ok
19:10:34.0703 0x0edc [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:10:34.0703 0x0edc vwifibus - ok
19:10:34.0781 0x0edc [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:10:34.0781 0x0edc vwififlt - ok
19:10:34.0922 0x0edc [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
19:10:34.0968 0x0edc W32Time - ok
19:10:35.0046 0x0edc [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:10:35.0062 0x0edc WacomPen - ok
19:10:35.0140 0x0edc [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:10:35.0156 0x0edc WANARP - ok
19:10:35.0171 0x0edc [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:10:35.0187 0x0edc Wanarpv6 - ok
19:10:35.0639 0x0edc [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
19:10:35.0780 0x0edc wbengine - ok
19:10:35.0889 0x0edc [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:10:35.0920 0x0edc WbioSrvc - ok
19:10:36.0060 0x0edc [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:10:36.0107 0x0edc wcncsvc - ok
19:10:36.0201 0x0edc [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:10:36.0232 0x0edc WcsPlugInService - ok
19:10:36.0310 0x0edc [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\drivers\wd.sys
19:10:36.0326 0x0edc Wd - ok
19:10:36.0560 0x0edc [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:10:36.0622 0x0edc Wdf01000 - ok
19:10:36.0684 0x0edc [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:10:36.0731 0x0edc WdiServiceHost - ok
19:10:36.0747 0x0edc [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:10:36.0794 0x0edc WdiSystemHost - ok
19:10:36.0887 0x0edc [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
19:10:36.0934 0x0edc WebClient - ok
19:10:37.0028 0x0edc [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:10:37.0059 0x0edc Wecsvc - ok
19:10:37.0152 0x0edc [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:10:37.0184 0x0edc wercplsupport - ok
19:10:37.0293 0x0edc [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
19:10:37.0324 0x0edc WerSvc - ok
19:10:37.0464 0x0edc [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:10:37.0480 0x0edc WfpLwf - ok
19:10:37.0558 0x0edc [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:10:37.0558 0x0edc WIMMount - ok
19:10:37.0886 0x0edc [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:10:37.0964 0x0edc WinDefend - ok
19:10:38.0042 0x0edc WinHttpAutoProxySvc - ok
19:10:38.0338 0x0edc [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:10:38.0354 0x0edc Winmgmt - ok
19:10:38.0681 0x0edc [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
19:10:38.0884 0x0edc WinRM - ok
19:10:39.0102 0x0edc [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:10:39.0227 0x0edc Wlansvc - ok
19:10:39.0336 0x0edc [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:10:39.0352 0x0edc wlcrasvc - ok
19:10:39.0726 0x0edc [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:10:39.0929 0x0edc wlidsvc - ok
19:10:40.0007 0x0edc [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:10:40.0023 0x0edc WmiAcpi - ok
19:10:40.0148 0x0edc [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:10:40.0163 0x0edc wmiApSrv - ok
19:10:40.0444 0x0edc [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:10:40.0600 0x0edc WMPNetworkSvc - ok
19:10:40.0678 0x0edc [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:10:40.0725 0x0edc WPCSvc - ok
19:10:40.0787 0x0edc [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:10:40.0834 0x0edc WPDBusEnum - ok
19:10:40.0896 0x0edc [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:10:40.0912 0x0edc ws2ifsl - ok
19:10:41.0021 0x0edc [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\System32\wscsvc.dll
19:10:41.0068 0x0edc wscsvc - ok
19:10:41.0084 0x0edc WSearch - ok
19:10:41.0505 0x0edc [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
19:10:41.0676 0x0edc wuauserv - ok
19:10:41.0754 0x0edc [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:10:41.0754 0x0edc WudfPf - ok
19:10:41.0864 0x0edc [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:10:41.0879 0x0edc WUDFRd - ok
19:10:41.0973 0x0edc [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:10:42.0004 0x0edc wudfsvc - ok
19:10:42.0082 0x0edc [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc C:\Windows\System32\wwansvc.dll
19:10:42.0129 0x0edc WwanSvc - ok
19:10:42.0222 0x0edc ================ Scan global ===============================
19:10:42.0347 0x0edc [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
19:10:42.0410 0x0edc [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
19:10:42.0488 0x0edc [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
19:10:42.0597 0x0edc [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
19:10:42.0737 0x0edc [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
19:10:42.0784 0x0edc [ Global ] - ok
19:10:42.0784 0x0edc ================ Scan MBR ==================================
19:10:42.0815 0x0edc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:10:44.0531 0x0edc \Device\Harddisk0\DR0 - ok
19:10:44.0531 0x0edc ================ Scan VBR ==================================
19:10:44.0547 0x0edc [ A4DABDA017ED9C6170FF17FBA4D58476 ] \Device\Harddisk0\DR0\Partition1
19:10:44.0609 0x0edc \Device\Harddisk0\DR0\Partition1 - ok
19:10:44.0625 0x0edc [ E61D53CAED6E15EB78E39E52315C16F0 ] \Device\Harddisk0\DR0\Partition2
19:10:44.0640 0x0edc \Device\Harddisk0\DR0\Partition2 - ok
19:10:44.0640 0x0edc ================ Scan active images ========================
19:10:44.0656 0x0edc [ B7EFEF22FF426EC4158A177CB3B558D3, 87D8F07E23B928B9D71B13B0F43A6235BAFC48879CFCF5920889849D09FFCD6C ] C:\Windows\System32\drivers\crashdmp.sys
19:10:44.0656 0x0edc C:\Windows\System32\drivers\crashdmp.sys - ok
19:10:44.0687 0x0edc [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] C:\Windows\System32\drivers\iaStor.sys
19:10:44.0687 0x0edc C:\Windows\System32\drivers\iaStor.sys - ok
19:10:44.0703 0x0edc [ 62A63EF2F3053B461CB327E4D69AAA74, 26CC8BBC9BB6C53B46C837FA75C5449508989C26949BD19EB8E03E37F7928456 ] C:\Windows\System32\drivers\dumpfve.sys
19:10:44.0703 0x0edc C:\Windows\System32\drivers\dumpfve.sys - ok
19:10:44.0718 0x0edc [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] C:\Windows\System32\drivers\cdrom.sys
19:10:44.0718 0x0edc C:\Windows\System32\drivers\cdrom.sys - ok
19:10:44.0750 0x0edc [ 3A50AD6AE8D8A0F78F03316F5B93FE45, 6F3952EDA23E5FD7CACE152D3DA3B1F1238E9B9976CDD5193D21424463BAA0E9 ] C:\Windows\System32\drivers\aswSnx.sys
19:10:44.0750 0x0edc C:\Windows\System32\drivers\aswSnx.sys - ok
19:10:44.0765 0x0edc [ CB47C414E083CA6E50E634B148F28F64, 8699FFA4FD53508583B713DDD513CA494FFF8BE71006A2DA55A4EEE03C42BD5B ] C:\Windows\System32\drivers\mwlPSDFilter.sys
19:10:44.0765 0x0edc C:\Windows\System32\drivers\mwlPSDFilter.sys - ok
19:10:44.0781 0x0edc [ B6381B4DC603C558419641BA969930E0, F6586B6D055C62942CD0E5702FFCC6F4DB7424DC551EB0041876C3544994EB59 ] C:\Windows\System32\drivers\aswsp.sys
19:10:44.0781 0x0edc C:\Windows\System32\drivers\aswsp.sys - ok
19:10:44.0812 0x0edc [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] C:\Windows\System32\drivers\beep.sys
19:10:44.0812 0x0edc C:\Windows\System32\drivers\beep.sys - ok
19:10:44.0828 0x0edc [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] C:\Windows\System32\drivers\null.sys
19:10:44.0828 0x0edc C:\Windows\System32\drivers\null.sys - ok
19:10:44.0843 0x0edc [ 15C126D1B55814B9E5CAB10A9C1F4C67, CD118B6508355037294AE940E039C095BA9E4A96AA129D38DB0AEC0C393D0F00 ] C:\Windows\System32\drivers\videoprt.sys
19:10:44.0843 0x0edc C:\Windows\System32\drivers\videoprt.sys - ok
19:10:44.0859 0x0edc [ CB45A417C8EF7BA6BAC67EDCDDED8700, 0D9AD2498A7D3B7C3E485A5803D2BDF781B38E07E3C2B5980859073EF6FD9B8A ] C:\Windows\System32\drivers\watchdog.sys
19:10:44.0859 0x0edc C:\Windows\System32\drivers\watchdog.sys - ok
19:10:44.0874 0x0edc [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] C:\Windows\System32\drivers\RDPCDD.sys
19:10:44.0874 0x0edc C:\Windows\System32\drivers\RDPCDD.sys - ok
19:10:44.0890 0x0edc [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] C:\Windows\System32\drivers\vga.sys
19:10:44.0906 0x0edc C:\Windows\System32\drivers\vga.sys - ok
19:10:44.0921 0x0edc [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:10:44.0921 0x0edc C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:10:44.0937 0x0edc [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] C:\Windows\System32\drivers\RDPREFMP.sys
19:10:44.0937 0x0edc C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:10:44.0952 0x0edc [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] C:\Windows\System32\drivers\msfs.sys
19:10:44.0952 0x0edc C:\Windows\System32\drivers\msfs.sys - ok
19:10:44.0968 0x0edc [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] C:\Windows\System32\drivers\npfs.sys
19:10:44.0968 0x0edc C:\Windows\System32\drivers\npfs.sys - ok
19:10:44.0984 0x0edc [ 2F885864D5BC8A16C86BEE595969A48A, 279E176CDEF9148A4A07F7D37172A2C2BDC89E47021EEB76F1BCDF789B76D95A ] C:\Windows\System32\drivers\tdi.sys
19:10:44.0984 0x0edc C:\Windows\System32\drivers\tdi.sys - ok
19:10:44.0999 0x0edc [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] C:\Windows\System32\drivers\tdx.sys
19:10:44.0999 0x0edc C:\Windows\System32\drivers\tdx.sys - ok
19:10:45.0015 0x0edc [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] C:\Windows\System32\drivers\netbt.sys
19:10:45.0015 0x0edc C:\Windows\System32\drivers\netbt.sys - ok
19:10:45.0030 0x0edc [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] C:\Windows\System32\drivers\afd.sys
19:10:45.0030 0x0edc C:\Windows\System32\drivers\afd.sys - ok
19:10:45.0046 0x0edc [ 769C65057212FB5004679E02EF8145C0, D6876E6ECA13DECB8AD13B3A46D7DA1B1CA4DB01A7A70371D112B491B36EC55E ] C:\Windows\System32\drivers\aswRdr2.sys
19:10:45.0046 0x0edc C:\Windows\System32\drivers\aswRdr2.sys - ok
19:10:45.0077 0x0edc [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] C:\Windows\System32\drivers\wfplwf.sys
19:10:45.0077 0x0edc C:\Windows\System32\drivers\wfplwf.sys - ok
19:10:45.0093 0x0edc [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] C:\Windows\System32\drivers\ws2ifsl.sys
19:10:45.0093 0x0edc C:\Windows\System32\drivers\ws2ifsl.sys - ok
19:10:45.0108 0x0edc [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] C:\Windows\System32\drivers\pacer.sys
19:10:45.0108 0x0edc C:\Windows\System32\drivers\pacer.sys - ok
19:10:45.0140 0x0edc [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] C:\Windows\System32\drivers\vwififlt.sys
19:10:45.0140 0x0edc C:\Windows\System32\drivers\vwififlt.sys - ok
19:10:45.0155 0x0edc [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] C:\Windows\System32\drivers\netbios.sys
19:10:45.0155 0x0edc C:\Windows\System32\drivers\netbios.sys - ok
19:10:45.0171 0x0edc [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] C:\Windows\System32\drivers\wanarp.sys
19:10:45.0171 0x0edc C:\Windows\System32\drivers\wanarp.sys - ok
19:10:45.0202 0x0edc [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] C:\Windows\System32\drivers\termdd.sys
19:10:45.0202 0x0edc C:\Windows\System32\drivers\termdd.sys - ok
19:10:45.0218 0x0edc [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] C:\Windows\System32\drivers\rdbss.sys
19:10:45.0218 0x0edc C:\Windows\System32\drivers\rdbss.sys - ok
19:10:45.0233 0x0edc [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] C:\Windows\System32\drivers\nsiproxy.sys
19:10:45.0233 0x0edc C:\Windows\System32\drivers\nsiproxy.sys - ok
19:10:45.0249 0x0edc [ 5A236A36DB8687D1E64DC81C03EAABE1, 63778FDB0CF79419FD8BEC2C3189390A6CDD5E791579133D106BF34378C848C5 ] C:\Windows\System32\drivers\mwlPSDVDisk.sys
19:10:45.0249 0x0edc C:\Windows\System32\drivers\mwlPSDVDisk.sys - ok
19:10:45.0264 0x0edc [ 647B953019559BFF07536F5C6121F333, E27E2B37544F243BF01EFCA1ECB58C89ED72D88664AABB3BEDFF1304B62417CC ] C:\Windows\System32\drivers\mwlPSDNserv.sys
19:10:45.0264 0x0edc C:\Windows\System32\drivers\mwlPSDNserv.sys - ok
19:10:45.0280 0x0edc [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] C:\Windows\System32\drivers\mssmbios.sys
19:10:45.0296 0x0edc C:\Windows\System32\drivers\mssmbios.sys - ok
19:10:45.0311 0x0edc [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] C:\Windows\System32\drivers\dfsc.sys
19:10:45.0311 0x0edc C:\Windows\System32\drivers\dfsc.sys - ok
19:10:45.0327 0x0edc [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] C:\Windows\System32\drivers\discache.sys
19:10:45.0327 0x0edc C:\Windows\System32\drivers\discache.sys - ok
19:10:45.0342 0x0edc [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] C:\Windows\System32\drivers\blbdrive.sys
19:10:45.0342 0x0edc C:\Windows\System32\drivers\blbdrive.sys - ok
19:10:45.0358 0x0edc [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] C:\Windows\System32\drivers\tunnel.sys
19:10:45.0358 0x0edc C:\Windows\System32\drivers\tunnel.sys - ok
19:10:45.0374 0x0edc [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] C:\Windows\System32\drivers\intelppm.sys
19:10:45.0374 0x0edc C:\Windows\System32\drivers\intelppm.sys - ok
19:10:45.0389 0x0edc [ E0B8C6B1EA1EF94747E966E9093FB968, 364539AE2AD49870DAF2773B6BD6306764D936F5EE1C2929B2B5A47EEC3409A7 ] C:\Windows\System32\ntdll.dll
19:10:45.0389 0x0edc C:\Windows\System32\ntdll.dll - ok
19:10:45.0405 0x0edc [ DE91DCC7BC55E940979097E98F743205, 77CBB42FA1648CF03F21709738F7F91513385F82B544981741F7BD8D65FB7786 ] C:\Windows\System32\smss.exe
19:10:45.0405 0x0edc C:\Windows\System32\smss.exe - ok
19:10:45.0420 0x0edc [ F88A52EB62019D6A62FDD9E08034DBD8, 2E035366E9A1A26FB15F1E4857056E6AD7932BCE8CC68BB4B655609F424D2756 ] C:\Windows\System32\autochk.exe
19:10:45.0420 0x0edc C:\Windows\System32\autochk.exe - ok
19:10:45.0436 0x0edc [ BA41E1BBA410212CE6D30E0DAC47972B, C1D8E5C95EADD9E2083275C1DA633F0B773B65EABEBC0F52224FF1156CBBE8C1 ] C:\Windows\System32\drivers\igdkmd32.sys
19:10:45.0436 0x0edc C:\Windows\System32\drivers\igdkmd32.sys - ok
19:10:45.0452 0x0edc [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] C:\Windows\System32\drivers\dxgkrnl.sys
19:10:45.0452 0x0edc C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:10:45.0467 0x0edc [ E405328A0E38BF823E2361C413283F6D, 7637EA2F14216F0469CC309C0ABBFB70213721B0BADD6C36522F6789CC0F361E ] C:\Windows\System32\drivers\dxgmms1.sys
19:10:45.0467 0x0edc C:\Windows\System32\drivers\dxgmms1.sys - ok
19:10:45.0483 0x0edc [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] C:\Windows\System32\drivers\hdaudbus.sys
19:10:45.0483 0x0edc C:\Windows\System32\drivers\hdaudbus.sys - ok
19:10:45.0498 0x0edc [ B86270CC948EAD6481AC487D65DDB462, D2ACFC21AF0EBC9707337C1C3A980F767B0D165AB76434AB7D20504C69E9FDB4 ] C:\Windows\System32\drivers\L1C62x86.sys
19:10:45.0498 0x0edc C:\Windows\System32\drivers\L1C62x86.sys - ok
19:10:45.0514 0x0edc [ 8D6E8178AB4379C932C34A109D27C5A9, 808089150DBC965D104E8DE2FCBB5C6F486DA142E3BC75CB3F5D37439ED06684 ] C:\Windows\System32\drivers\athr.sys
19:10:45.0514 0x0edc C:\Windows\System32\drivers\athr.sys - ok
19:10:45.0530 0x0edc [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] C:\Windows\System32\drivers\vwifibus.sys
19:10:45.0530 0x0edc C:\Windows\System32\drivers\vwifibus.sys - ok
19:10:45.0545 0x0edc [ EC2C5AF37B76D7B58C642CB74423DB7A, BE1F6F2CE3B1539DAC23B73EA655B77E6E628E5E55BD16091E76934723BE77B1 ] C:\Windows\System32\drivers\usbport.sys
19:10:45.0545 0x0edc C:\Windows\System32\drivers\usbport.sys - ok
19:10:45.0545 0x0edc [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] C:\Windows\System32\drivers\usbuhci.sys
19:10:45.0545 0x0edc C:\Windows\System32\drivers\usbuhci.sys - ok
19:10:45.0576 0x0edc [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] C:\Windows\System32\drivers\usbehci.sys
19:10:45.0576 0x0edc C:\Windows\System32\drivers\usbehci.sys - ok
19:10:45.0592 0x0edc [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] C:\Windows\System32\drivers\CmBatt.sys
19:10:45.0592 0x0edc C:\Windows\System32\drivers\CmBatt.sys - ok
19:10:45.0608 0x0edc [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] C:\Windows\System32\drivers\i8042prt.sys
19:10:45.0608 0x0edc C:\Windows\System32\drivers\i8042prt.sys - ok
19:10:45.0623 0x0edc [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] C:\Windows\System32\drivers\kbdclass.sys
19:10:45.0623 0x0edc C:\Windows\System32\drivers\kbdclass.sys - ok
19:10:45.0639 0x0edc [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] C:\Windows\System32\drivers\CompositeBus.sys
19:10:45.0639 0x0edc C:\Windows\System32\drivers\CompositeBus.sys - ok
19:10:45.0654 0x0edc [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] C:\Windows\System32\drivers\wmiacpi.sys
19:10:45.0654 0x0edc C:\Windows\System32\drivers\wmiacpi.sys - ok
19:10:45.0670 0x0edc [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] C:\Windows\System32\drivers\serscan.sys
19:10:45.0670 0x0edc C:\Windows\System32\drivers\serscan.sys - ok
19:10:45.0670 0x0edc [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] C:\Windows\System32\drivers\agilevpn.sys
19:10:45.0670 0x0edc C:\Windows\System32\drivers\agilevpn.sys - ok
19:10:45.0686 0x0edc [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] C:\Windows\System32\drivers\rasl2tp.sys
19:10:45.0701 0x0edc C:\Windows\System32\drivers\rasl2tp.sys - ok
19:10:45.0701 0x0edc [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] C:\Windows\System32\drivers\ndistapi.sys
19:10:45.0701 0x0edc C:\Windows\System32\drivers\ndistapi.sys - ok
19:10:45.0717 0x0edc [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] C:\Windows\System32\drivers\ndiswan.sys
19:10:45.0732 0x0edc C:\Windows\System32\drivers\ndiswan.sys - ok
19:10:45.0732 0x0edc [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] C:\Windows\System32\drivers\raspppoe.sys
19:10:45.0732 0x0edc C:\Windows\System32\drivers\raspppoe.sys - ok
19:10:45.0748 0x0edc [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] C:\Windows\System32\drivers\raspptp.sys
19:10:45.0748 0x0edc C:\Windows\System32\drivers\raspptp.sys - ok
19:10:45.0764 0x0edc [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\System32\ws2_32.dll
19:10:45.0764 0x0edc C:\Windows\System32\ws2_32.dll - ok
19:10:45.0779 0x0edc [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] C:\Windows\System32\drivers\rassstp.sys
19:10:45.0779 0x0edc C:\Windows\System32\drivers\rassstp.sys - ok
19:10:45.0795 0x0edc [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\System32\ole32.dll
19:10:45.0795 0x0edc C:\Windows\System32\ole32.dll - ok
19:10:45.0810 0x0edc [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] C:\Windows\System32\drivers\mouclass.sys
19:10:45.0810 0x0edc C:\Windows\System32\drivers\mouclass.sys - ok
19:10:45.0826 0x0edc [ 5DCEF0C32BE0F33277326586FA503689, B6AEB5DE8F2430D2032DAF5B58DBB4E192F6113DB5379F5AD8189A7AC2560EEA ] C:\Windows\System32\drivers\ks.sys
19:10:45.0826 0x0edc C:\Windows\System32\drivers\ks.sys - ok
19:10:45.0842 0x0edc [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] C:\Windows\System32\drivers\swenum.sys
19:10:45.0842 0x0edc C:\Windows\System32\drivers\swenum.sys - ok
19:10:45.0857 0x0edc [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\System32\clbcatq.dll
19:10:45.0857 0x0edc C:\Windows\System32\clbcatq.dll - ok
19:10:45.0873 0x0edc [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] C:\Windows\System32\drivers\umbus.sys
19:10:45.0873 0x0edc C:\Windows\System32\drivers\umbus.sys - ok
19:10:45.0888 0x0edc [ E02781D4871844DCD30DF1D69A650F78, DC77302F06CD6CF7FC2C3B0F433A4AE41DF869B9F342C0656CCD8A125B3D3318 ] C:\Windows\System32\shell32.dll
19:10:45.0888 0x0edc C:\Windows\System32\shell32.dll - ok
19:10:45.0904 0x0edc [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] C:\Windows\System32\drivers\usbhub.sys
19:10:45.0904 0x0edc C:\Windows\System32\drivers\usbhub.sys - ok
19:10:45.0920 0x0edc [ 5A775CAE7CCCAC581C05B8D2C92C0DF1, 0BD75912F3BDCF79B6C3CCEBCF3242725A17F73D6F6772C2C145F8157628B2E9 ] C:\Windows\System32\gdi32.dll
19:10:45.0920 0x0edc C:\Windows\System32\gdi32.dll - ok
19:10:45.0935 0x0edc [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\System32\psapi.dll
19:10:45.0935 0x0edc C:\Windows\System32\psapi.dll - ok
19:10:45.0951 0x0edc [ D7B1721B587698D495079B28758F13B3, D1725300E6176F8CBC746A9CD95B4FCFF371D97A143ECA3C42E8498C27CCE92E ] C:\Windows\System32\urlmon.dll
19:10:45.0951 0x0edc C:\Windows\System32\urlmon.dll - ok
19:10:45.0966 0x0edc [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] C:\Windows\System32\drivers\ndproxy.sys
19:10:45.0966 0x0edc C:\Windows\System32\drivers\ndproxy.sys - ok
19:10:45.0966 0x0edc [ 5A043BDA3BFADD5B4C16F3BDE5EC4312, 70E4D7EB03AE69D51EFCFBF227D3C06CD378806B1D0FB6993D6022379FC0B9F9 ] C:\Windows\System32\rpcrt4.dll
19:10:45.0966 0x0edc C:\Windows\System32\rpcrt4.dll - ok
19:10:45.0982 0x0edc [ 24E07A483C6FA35F91E9D2F84495819E, DB77A32D91117159250EDA17ED722C7B6A48323F74BA1BF935EE7BF5CCDB2FC5 ] C:\Windows\System32\iertutil.dll
19:10:45.0982 0x0edc C:\Windows\System32\iertutil.dll - ok
19:10:45.0998 0x0edc [ 9842041E2F5ACE1E2F5FB4EF02053DC8, 8260D3DDCC92987CA3A456ABD0982A7C81DBBEDB87DE781039F2E4BCCF27DB6D ] C:\Windows\System32\drivers\drmk.sys
19:10:45.0998 0x0edc C:\Windows\System32\drivers\drmk.sys - ok
19:10:46.0029 0x0edc [ EB6137D696A9B4E9718AC6F8641CB4C9, 438B6177F8BF50E17226D9C4E5FAE42D82178CCDD79979C78B15261B459E153E ] C:\Windows\System32\drivers\portcls.sys
19:10:46.0029 0x0edc C:\Windows\System32\drivers\portcls.sys - ok
19:10:46.0044 0x0edc [ 947318C01C648A054A05DBD1C7F73E3B, 838948A754E8734FE22D4F5939A04C4A6949EA884780C2A1A9B04C609F031D1F ] C:\Windows\System32\drivers\RTKVHDA.sys
19:10:46.0044 0x0edc C:\Windows\System32\drivers\RTKVHDA.sys - ok
19:10:46.0044 0x0edc [ 6933E2AFF444A7A95D5C67E98449163E, 4E745B89D319FF997F7DFD288E9D02143CEF5474D2B8814803504A6570A146DE ] C:\Windows\System32\kernel32.dll
19:10:46.0044 0x0edc C:\Windows\System32\kernel32.dll - ok
19:10:46.0060 0x0edc [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\System32\sechost.dll
19:10:46.0060 0x0edc C:\Windows\System32\sechost.dll - ok
19:10:46.0091 0x0edc [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\System32\Wldap32.dll
19:10:46.0091 0x0edc C:\Windows\System32\Wldap32.dll - ok
19:10:46.0107 0x0edc [ 070C5B9D3006602A07757179D9B56F5D, 7B24E38ADDEEDD9168D0C87275AC0936D0A4F1195810F9736118076589BC18BA ] C:\Windows\System32\difxapi.dll
19:10:46.0107 0x0edc C:\Windows\System32\difxapi.dll - ok
19:10:46.0122 0x0edc [ B7230010D97787AF3D25E4C82F2B06B9, C795E9811CD461F8E98D1738667EB0C265A57065EA3420CE596D5038E7430C1E ] C:\Windows\System32\usp10.dll
19:10:46.0122 0x0edc C:\Windows\System32\usp10.dll - ok
19:10:46.0138 0x0edc [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\System32\setupapi.dll
19:10:46.0138 0x0edc C:\Windows\System32\setupapi.dll - ok
19:10:46.0154 0x0edc [ F1B27299F547D452EDAEF01FC187CB91, 574FC8ACB349244122E6D76333E2BB72680639EEF61C0B679F8485023B619263 ] C:\Windows\System32\drivers\hidparse.sys
19:10:46.0154 0x0edc C:\Windows\System32\drivers\hidparse.sys - ok
19:10:46.0185 0x0edc [ 50ABE682EBE752EAF62B18790D6D491C, E01499C4F81CC49A89590A07CB814D21126CE52DCD3FACADB6D1E243940C69FA ] C:\Windows\System32\drivers\hidclass.sys
19:10:46.0185 0x0edc C:\Windows\System32\drivers\hidclass.sys - ok
19:10:46.0200 0x0edc [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] C:\Windows\System32\drivers\hidusb.sys
19:10:46.0200 0x0edc C:\Windows\System32\drivers\hidusb.sys - ok
19:10:46.0216 0x0edc [ 74F805AB12EB0E3E49E469F19FF02640, 23A845F9162ECE37B6CF5B2537562C69705A4192D19438109B5212E111A49004 ] C:\Windows\System32\drivers\usbd.sys
19:10:46.0216 0x0edc C:\Windows\System32\drivers\usbd.sys - ok
19:10:46.0232 0x0edc [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] C:\Windows\System32\drivers\usbccgp.sys
19:10:46.0232 0x0edc C:\Windows\System32\drivers\usbccgp.sys - ok
19:10:46.0247 0x0edc [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] C:\Windows\System32\drivers\mouhid.sys
19:10:46.0247 0x0edc C:\Windows\System32\drivers\mouhid.sys - ok
19:10:46.0263 0x0edc [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] C:\Windows\System32\drivers\usbvideo.sys
19:10:46.0263 0x0edc C:\Windows\System32\drivers\usbvideo.sys - ok
19:10:46.0278 0x0edc [ 9284BA6C27D360D71A5C0ECC8456E78E, 1619E95E183AB48535158814826A4F87B1A67AC4777A1637124FCAEF04453768 ] C:\Windows\System32\wininet.dll
19:10:46.0278 0x0edc C:\Windows\System32\wininet.dll - ok
19:10:46.0294 0x0edc [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\System32\oleaut32.dll
19:10:46.0294 0x0edc C:\Windows\System32\oleaut32.dll - ok
19:10:46.0310 0x0edc [ F632602316001D517F4EF3B53B9A6C33, 1492B82B12AA8B69C5111D5E61997D41AEC9E454BE76E8024B18E28B145E9FFD ] C:\Windows\System32\lpk.dll
19:10:46.0310 0x0edc C:\Windows\System32\lpk.dll - ok
19:10:46.0325 0x0edc [ 4A8E2F20809CC161107FAA94F6CF2685, 561DCE9E49696288A9EE802C0BEF424EB34A1C29B6D8931CCD5C7E26CB4F88EA ] C:\Windows\System32\imm32.dll
19:10:46.0325 0x0edc C:\Windows\System32\imm32.dll - ok
19:10:46.0341 0x0edc [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66, 6CCAD926934EACBE92FDFA1AE46DA6101D78A0B44AE38594E3A88FEBB35D230F ] C:\Windows\System32\user32.dll
19:10:46.0341 0x0edc C:\Windows\System32\user32.dll - ok
19:10:46.0356 0x0edc [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\System32\msvcrt.dll
19:10:46.0356 0x0edc C:\Windows\System32\msvcrt.dll - ok
19:10:46.0372 0x0edc [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\System32\normaliz.dll
19:10:46.0372 0x0edc C:\Windows\System32\normaliz.dll - ok
19:10:46.0403 0x0edc [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\System32\nsi.dll
19:10:46.0403 0x0edc C:\Windows\System32\nsi.dll - ok
19:10:46.0419 0x0edc [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\System32\shlwapi.dll
19:10:46.0419 0x0edc C:\Windows\System32\shlwapi.dll - ok
19:10:46.0434 0x0edc [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\System32\comdlg32.dll
19:10:46.0434 0x0edc C:\Windows\System32\comdlg32.dll - ok
19:10:46.0450 0x0edc [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\System32\advapi32.dll
19:10:46.0450 0x0edc C:\Windows\System32\advapi32.dll - ok
19:10:46.0466 0x0edc [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\System32\msctf.dll
19:10:46.0466 0x0edc C:\Windows\System32\msctf.dll - ok
19:10:46.0481 0x0edc [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\System32\imagehlp.dll
19:10:46.0481 0x0edc C:\Windows\System32\imagehlp.dll - ok
19:10:46.0512 0x0edc [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
19:10:46.0512 0x0edc C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
19:10:46.0528 0x0edc [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
19:10:46.0528 0x0edc C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
19:10:46.0544 0x0edc [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\System32\wintrust.dll
19:10:46.0544 0x0edc C:\Windows\System32\wintrust.dll - ok
19:10:46.0559 0x0edc [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\System32\devobj.dll
19:10:46.0559 0x0edc C:\Windows\System32\devobj.dll - ok
19:10:46.0590 0x0edc [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
19:10:46.0590 0x0edc C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
19:10:46.0606 0x0edc [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
19:10:46.0606 0x0edc C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
19:10:46.0622 0x0edc [ 1E65CF7B26D02750544EFDD73C8118FA, EAE54B09FCA7D9A7F26BF3CC30ECDF0E58555F21DEA1A6A3F1D58554DBE86598 ] C:\Windows\System32\KernelBase.dll
19:10:46.0622 0x0edc C:\Windows\System32\KernelBase.dll - ok
19:10:46.0637 0x0edc [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\System32\comctl32.dll
19:10:46.0637 0x0edc C:\Windows\System32\comctl32.dll - ok
19:10:46.0653 0x0edc [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
19:10:46.0653 0x0edc C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
19:10:46.0668 0x0edc [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\System32\cfgmgr32.dll
19:10:46.0668 0x0edc C:\Windows\System32\cfgmgr32.dll - ok
19:10:46.0684 0x0edc [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
19:10:46.0684 0x0edc C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
19:10:46.0700 0x0edc [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\System32\crypt32.dll
19:10:46.0700 0x0edc C:\Windows\System32\crypt32.dll - ok
19:10:46.0715 0x0edc [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\System32\msasn1.dll
19:10:46.0715 0x0edc C:\Windows\System32\msasn1.dll - ok
19:10:46.0715 0x0edc [ 5FCD3320AAE71506B43F9E12E4E72172, 067531833F90241A181EF082D85CFF74336D68DAB0AADE4393C1F35CD662DAAE ] C:\Windows\System32\drivers\dxapi.sys
19:10:46.0715 0x0edc C:\Windows\System32\drivers\dxapi.sys - ok
19:10:46.0731 0x0edc [ 204689EC38738BE7C07F79B745733747, 93A1DC11F4C1F7184AB630CF19EAE94072687E00A6E0467846C9FF12B7B9CCB2 ] C:\Windows\System32\win32k.sys
19:10:46.0731 0x0edc C:\Windows\System32\win32k.sys - ok
19:10:46.0762 0x0edc [ 342271F6142E7C70805B8A81E1BA5F5C, F9112B88FEC5EF10A7AEDF88DCEE61956D1FCDE7CB42197216E8265578713786 ] C:\Windows\System32\csrss.exe
19:10:46.0762 0x0edc C:\Windows\System32\csrss.exe - ok
19:10:46.0778 0x0edc [ 23AB7E36551C6BA5370EF7F05142F0EB, F190F2DCB416D109DFCA167628824CE053774FB708AA494450AD6313EF6BE654 ] C:\Windows\System32\csrsrv.dll
19:10:46.0778 0x0edc C:\Windows\System32\csrsrv.dll - ok
19:10:46.0793 0x0edc [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\System32\basesrv.dll
19:10:46.0793 0x0edc C:\Windows\System32\basesrv.dll - ok
19:10:46.0809 0x0edc [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\System32\winsrv.dll
19:10:46.0809 0x0edc C:\Windows\System32\winsrv.dll - ok
19:10:46.0824 0x0edc [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] C:\Windows\System32\drivers\monitor.sys
19:10:46.0824 0x0edc C:\Windows\System32\drivers\monitor.sys - ok
19:10:46.0840 0x0edc [ 7C76B61A5E1EF5D1FA554CF134100F18, 2B07C27A2C9A5D939CE9255C67E87B4EF8BFD3B011A592CC0E6994E660483648 ] C:\Windows\System32\tsddd.dll
19:10:46.0840 0x0edc C:\Windows\System32\tsddd.dll - ok
19:10:46.0856 0x0edc [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\System32\sxssrv.dll
19:10:46.0856 0x0edc C:\Windows\System32\sxssrv.dll - ok
19:10:46.0871 0x0edc [ B5C5DCAD3899512020D135600129D665, F6B4D18FA0D3C4958711AC0D476C21A6FDF2897F989A0AD290B43F463DD8B5B0 ] C:\Windows\System32\wininit.exe
19:10:46.0871 0x0edc C:\Windows\System32\wininit.exe - ok
19:10:46.0887 0x0edc [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\System32\profapi.dll
19:10:46.0887 0x0edc C:\Windows\System32\profapi.dll - ok
19:10:46.0902 0x0edc [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\System32\RpcRtRemote.dll
19:10:46.0902 0x0edc C:\Windows\System32\RpcRtRemote.dll - ok
19:10:46.0918 0x0edc [ 357B990A4249D7F7485B230C0CC8825A, FE15918D883B0861D6BBA0E6AC77ABD8FE42C8F76869768BE4FD1F2A5027BD7A ] C:\Windows\System32\KBDUS.DLL
19:10:46.0918 0x0edc C:\Windows\System32\KBDUS.DLL - ok
19:10:46.0949 0x0edc [ CAEF9CD6C10B1017E2C298D849CD31DB, 62C6638D34CC554D952A09CDBABF29AA1487EED90578C48E3D01C519A4CC6FB8 ] C:\Windows\System32\cdd.dll
19:10:46.0949 0x0edc C:\Windows\System32\cdd.dll - ok
19:10:46.0965 0x0edc [ 6D13E1406F50C66E2A95D97F22C47560, BE40E84A824CB201F9C54DB4F860F3937630FDA3423940D44FCF4AC5DFF44271 ] C:\Windows\System32\winlogon.exe
19:10:46.0965 0x0edc C:\Windows\System32\winlogon.exe - ok
19:10:46.0980 0x0edc [ 633C2C060CF857099F6C4F8D75C952B1, 95E14B5212301900BC9DDB6B42735B114D364188E9B312C786511258106398C8 ] C:\Windows\System32\WlS0WndH.dll
19:10:46.0980 0x0edc C:\Windows\System32\WlS0WndH.dll - ok
19:10:46.0996 0x0edc [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\System32\winsta.dll
19:10:46.0996 0x0edc C:\Windows\System32\winsta.dll - ok
19:10:47.0027 0x0edc [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\System32\sxs.dll
19:10:47.0027 0x0edc C:\Windows\System32\sxs.dll - ok
19:10:47.0043 0x0edc [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\System32\cryptbase.dll
19:10:47.0043 0x0edc C:\Windows\System32\cryptbase.dll - ok
19:10:47.0058 0x0edc [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\System32\apphelp.dll
19:10:47.0058 0x0edc C:\Windows\System32\apphelp.dll - ok
19:10:47.0074 0x0edc [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\System32\services.exe
19:10:47.0074 0x0edc C:\Windows\System32\services.exe - ok
19:10:47.0090 0x0edc [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] C:\Windows\System32\lsass.exe
19:10:47.0090 0x0edc C:\Windows\System32\lsass.exe - ok
19:10:47.0105 0x0edc [ 8AEA9A37C1A3565A204D37C5E72AB791, 939903F93FF37525A6C4B5CBA29CDEEE6D6055C42D605E80AE787F2A76F9870E ] C:\Windows\System32\lsm.exe
19:10:47.0105 0x0edc C:\Windows\System32\lsm.exe - ok
19:10:47.0121 0x0edc [ D89077E2E1C88A29C57F21FAD28DAC45, 39B760D9976B9FF61046303B9FA29C2A0483D1CCC9617822810F46F288710627 ] C:\Windows\System32\sspisrv.dll
19:10:47.0121 0x0edc C:\Windows\System32\sspisrv.dll - ok
19:10:47.0136 0x0edc [ EF6950D7B24AAF4E477065F5455DD4F8, D02D02528EB103808BAD71FBE0271D5D3C101A53ACFB0B2B3835CFE6C7A2BE03 ] C:\Windows\System32\lsasrv.dll
19:10:47.0136 0x0edc C:\Windows\System32\lsasrv.dll - ok
19:10:47.0152 0x0edc [ BD6B9BC84D004C6BEE89CF7BDB95E1FC, 142BCB6F616A34679FDFB5285E0C8CED110501518BA4B4E2DF3B4F691E28DE72 ] C:\Windows\System32\sspicli.dll
19:10:47.0152 0x0edc C:\Windows\System32\sspicli.dll - ok
19:10:47.0152 0x0edc [ 3369D021265E369D57317D61FA86DD79, 25A3BE3619324578C5B7CCB4585D89131DC60A969D35F9573FF20CCD67809BA3 ] C:\Windows\System32\scext.dll
19:10:47.0152 0x0edc C:\Windows\System32\scext.dll - ok
19:10:47.0168 0x0edc [ BA51FFE170C5B3AE8EC4F5BD2581A29E, CF734875C91B6C547A5F0BA68FB10ECDFD5FF24166A0D69309C27DC712C22F4B ] C:\Windows\System32\sysntfy.dll
19:10:47.0168 0x0edc C:\Windows\System32\sysntfy.dll - ok
19:10:47.0183 0x0edc [ D412B1B72C5AB020218E9A047D90CA05, A9CF8134DB968D259DF4DCC736159841BCB8DF309BEED4FB44F99033B8D31B39 ] C:\Windows\System32\wmsgapi.dll
19:10:47.0183 0x0edc C:\Windows\System32\wmsgapi.dll - ok
19:10:47.0199 0x0edc [ 250AA41DE690561AF1282D598914564C, 0F16F50EC74CAC8879F8D88AF4FB656E06D19819E96BC3D71BCDDBF400C78F60 ] C:\Windows\System32\scesrv.dll
19:10:47.0199 0x0edc C:\Windows\System32\scesrv.dll - ok
19:10:47.0214 0x0edc [ 372948BB5E41CE42341C4398DE572E56, A12A3CB0C04FD02A17E202FEE79EA1B4009DAE4B5DB8B9B9D4919D1FFB270CF3 ] C:\Windows\System32\secur32.dll
19:10:47.0214 0x0edc C:\Windows\System32\secur32.dll - ok
19:10:47.0230 0x0edc [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\System32\srvcli.dll
19:10:47.0230 0x0edc C:\Windows\System32\srvcli.dll - ok
19:10:47.0246 0x0edc [ 245F4691314F42D4D1BC06442F0B2086, 281DD81E06547BEB0DDB1FBB68B149961F1DEE268C9E9648DE662900ECB40FE0 ] C:\Windows\System32\samsrv.dll
19:10:47.0246 0x0edc C:\Windows\System32\samsrv.dll - ok
19:10:47.0261 0x0edc [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\System32\cryptdll.dll
19:10:47.0261 0x0edc C:\Windows\System32\cryptdll.dll - ok
19:10:47.0277 0x0edc [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\System32\wevtapi.dll
19:10:47.0277 0x0edc C:\Windows\System32\wevtapi.dll - ok
19:10:47.0292 0x0edc [ FB4EB9352B7D698E6B3C2AA2ED724DAD, 534AB280ACD29E88FD1BD8838E1231D9364E649C917547A838F51EC8AB941EE2 ] C:\Windows\System32\authz.dll
19:10:47.0292 0x0edc C:\Windows\System32\authz.dll - ok
19:10:47.0308 0x0edc [ 50BA656134F78AF64E4DD3C8B6FEFD7E, F7AB96E0C9658B0444FD473E87165199FA90AE5CE434B40FBA1DB324925DF886 ] C:\Windows\System32\cngaudit.dll
19:10:47.0308 0x0edc C:\Windows\System32\cngaudit.dll - ok
19:10:47.0324 0x0edc [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\System32\ncrypt.dll
19:10:47.0324 0x0edc C:\Windows\System32\ncrypt.dll - ok
19:10:47.0339 0x0edc [ FC7650224790CAE75A5E9231961FDEC5, D634FC1F43AAC41D8B440BD4C1E7576886CDE683EDE4CAF06C43163B5E176CBB ] C:\Windows\System32\bcrypt.dll
19:10:47.0339 0x0edc C:\Windows\System32\bcrypt.dll - ok
19:10:47.0339 0x0edc [ C90878913DF3DC504790282043DB5F4C, 5DC30020A523B5B219A219D74208A1249A43510D70723985817A021249D97036 ] C:\Windows\System32\msprivs.dll
19:10:47.0355 0x0edc C:\Windows\System32\msprivs.dll - ok
19:10:47.0370 0x0edc [ E343CABBD8D600ABAF3F11625D33B3D0, AA73D0F205749C291BF5EF179BDF3BF30977E36C87F4FF5361942EE024E848F9 ] C:\Windows\System32\netjoin.dll
19:10:47.0370 0x0edc C:\Windows\System32\netjoin.dll - ok
19:10:47.0370 0x0edc [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] C:\Windows\System32\drivers\TsUsbFlt.sys
19:10:47.0370 0x0edc C:\Windows\System32\drivers\TsUsbFlt.sys - ok
19:10:47.0386 0x0edc [ 6DCFAEC6D1334AA6CDF8961DB4633CBF, DA7A26935691379DA0DBA829DEDE82401BCA7D35E28BFBFE3F9CE38AFF344737 ] C:\Windows\System32\negoexts.dll
19:10:47.0386 0x0edc C:\Windows\System32\negoexts.dll - ok
19:10:47.0402 0x0edc [ BDA0B954A30498B5A7EDC6204CBA07ED, B14AC33E649F02AEC7ED9237DF6EB1801506C3066B0DACC8EBC4660D408AF614 ] C:\Windows\System32\kerberos.dll
19:10:47.0402 0x0edc C:\Windows\System32\kerberos.dll - ok
19:10:47.0417 0x0edc [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\System32\cryptsp.dll
19:10:47.0417 0x0edc C:\Windows\System32\cryptsp.dll - ok
19:10:47.0433 0x0edc [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\System32\mswsock.dll
19:10:47.0433 0x0edc C:\Windows\System32\mswsock.dll - ok
19:10:47.0448 0x0edc [ 4C1E16B9A53102C8D6FBA587CBCB95DE, F982ABB2353E45E3E09B30EA99EFDC2A905AD75B43CDB0A34DB33D91AADDAB17 ] C:\Windows\System32\msv1_0.dll
19:10:47.0448 0x0edc C:\Windows\System32\msv1_0.dll - ok
19:10:47.0464 0x0edc [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\System32\wship6.dll
19:10:47.0464 0x0edc C:\Windows\System32\wship6.dll - ok
19:10:47.0480 0x0edc [ C1809B9907ADEDAF16F50C894100883B, 464CF897CB376DCDC9A584A2A470B5B82D99C595DC55930778B162E605CDFBA8 ] C:\Windows\System32\netlogon.dll
19:10:47.0480 0x0edc C:\Windows\System32\netlogon.dll - ok
19:10:47.0495 0x0edc [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\System32\dnsapi.dll
19:10:47.0495 0x0edc C:\Windows\System32\dnsapi.dll - ok
19:10:47.0511 0x0edc [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\System32\logoncli.dll
19:10:47.0511 0x0edc C:\Windows\System32\logoncli.dll - ok
19:10:47.0526 0x0edc [ AA6F6457116B559B76BC6A012CB4C293, 87888451759EECCEA178BDB23AE48EEA534202AC40ED0DD83474ED7CE557C9F1 ] C:\Windows\System32\schannel.dll
19:10:47.0526 0x0edc C:\Windows\System32\schannel.dll - ok
19:10:47.0542 0x0edc [ 0450CF487ECD8A67B56F59F9A96D024D, 7B19CD3B3A98384844E3F4D04C505B8D17B2D5AABE184E265E85A17D0DDBC25B ] C:\Windows\System32\wdigest.dll
19:10:47.0542 0x0edc C:\Windows\System32\wdigest.dll - ok
19:10:47.0558 0x0edc [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\System32\rsaenh.dll
19:10:47.0558 0x0edc C:\Windows\System32\rsaenh.dll - ok
19:10:47.0573 0x0edc [ 37CC990D4E2CDFAE12AC47F6B620FC13, D07E6EF4EED10ACA21A41A739147E54CC435EAF952CD0CA1F2E3CB2D83CEC831 ] C:\Windows\System32\pku2u.dll
19:10:47.0573 0x0edc C:\Windows\System32\pku2u.dll - ok
19:10:47.0589 0x0edc [ D29E45078CF4020CE0AAC82EC652D1EA, 3CB552744C9D02A488ABCF171E29872156BA6B57C73EC45D708C72D541BE8365 ] C:\Windows\System32\TSpkg.dll
19:10:47.0589 0x0edc C:\Windows\System32\TSpkg.dll - ok
19:10:47.0589 0x0edc [ 93723774872D9FB903266A46ED1E0BC2, 8C0AF177F314B6EC71827FDDD8B89BB1548EBDFEB2572C0B9C463EC50D49DC1B ] C:\Windows\System32\LIVESSP.DLL
19:10:47.0589 0x0edc C:\Windows\System32\LIVESSP.DLL - ok
19:10:47.0604 0x0edc [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\System32\bcryptprimitives.dll
19:10:47.0604 0x0edc C:\Windows\System32\bcryptprimitives.dll - ok
19:10:47.0620 0x0edc [ 91F434FF6606ED9BDC6A05D651B69553, F2CF43DDDE2241E8A25F710A516371E0C56D99195022D9715A98379C753929B3 ] C:\Windows\System32\efslsaext.dll
19:10:47.0620 0x0edc C:\Windows\System32\efslsaext.dll - ok
19:10:47.0636 0x0edc [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\System32\credssp.dll
19:10:47.0636 0x0edc C:\Windows\System32\credssp.dll - ok
19:10:47.0651 0x0edc [ 8124944EC89D6A1815E4E53F5B96AAF4, A6766BD0F62A381C9899F66E5C32731BD91600363F4CFBE560BC8AA2B111C790 ] C:\Windows\System32\scecli.dll
19:10:47.0651 0x0edc C:\Windows\System32\scecli.dll - ok
19:10:47.0667 0x0edc [ 7222995615BF93B628DCEA4BD6CCACF7, 306A3220868AC38AC796027F0D75052B596F55B9CAE87A9B8863515995BFC2F2 ] C:\Windows\System32\ubpm.dll
19:10:47.0667 0x0edc C:\Windows\System32\ubpm.dll - ok
19:10:47.0682 0x0edc [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\System32\svchost.exe
19:10:47.0682 0x0edc C:\Windows\System32\svchost.exe - ok
19:10:47.0698 0x0edc [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] C:\Windows\System32\umpnpmgr.dll
19:10:47.0698 0x0edc C:\Windows\System32\umpnpmgr.dll - ok
19:10:47.0714 0x0edc [ 4BDBBE5E4208022DD794F7EEEB0F7366, 4F69BA2EDABFA63A300B9F1880349EFAE185B899DD5C561E7B3BA6AAA4B22D6A ] C:\Windows\System32\SPInf.dll
19:10:47.0714 0x0edc C:\Windows\System32\SPInf.dll - ok
19:10:47.0729 0x0edc [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\System32\devrtl.dll
19:10:47.0729 0x0edc C:\Windows\System32\devrtl.dll - ok
19:10:47.0745 0x0edc [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\System32\userenv.dll
19:10:47.0745 0x0edc C:\Windows\System32\userenv.dll - ok
19:10:47.0760 0x0edc [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\System32\gpapi.dll
19:10:47.0760 0x0edc C:\Windows\System32\gpapi.dll - ok
19:10:47.0776 0x0edc [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] C:\Windows\System32\umpo.dll
19:10:47.0776 0x0edc C:\Windows\System32\umpo.dll - ok
19:10:47.0792 0x0edc [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\System32\pcwum.dll
19:10:47.0792 0x0edc C:\Windows\System32\pcwum.dll - ok
19:10:47.0823 0x0edc [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\System32\powrprof.dll
19:10:47.0823 0x0edc C:\Windows\System32\powrprof.dll - ok
19:10:47.0838 0x0edc [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] C:\Windows\System32\drivers\luafv.sys
19:10:47.0838 0x0edc C:\Windows\System32\drivers\luafv.sys - ok
19:10:47.0854 0x0edc [ B347D2FEAE2D063943F16EC98634AB89, 2CA74745232607571ED088270B3B3FA555628455A257A6E52F133D650D861FD4 ] C:\Windows\System32\drivers\aswMonFlt.sys
19:10:47.0854 0x0edc C:\Windows\System32\drivers\aswMonFlt.sys - ok
19:10:47.0885 0x0edc [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] C:\Windows\System32\rpcss.dll
19:10:47.0885 0x0edc C:\Windows\System32\rpcss.dll - ok
19:10:47.0901 0x0edc [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] C:\Windows\System32\RpcEpMap.dll
19:10:47.0901 0x0edc C:\Windows\System32\RpcEpMap.dll - ok
19:10:47.0916 0x0edc [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\System32\WSHTCPIP.DLL
19:10:47.0916 0x0edc C:\Windows\System32\WSHTCPIP.DLL - ok
19:10:47.0916 0x0edc [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\System32\wshqos.dll
19:10:47.0916 0x0edc C:\Windows\System32\wshqos.dll - ok
19:10:47.0932 0x0edc [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\System32\FirewallAPI.dll
19:10:47.0932 0x0edc C:\Windows\System32\FirewallAPI.dll - ok
19:10:47.0948 0x0edc [ 3EF0D8AB08385AAB5802E773511A2E6A, 1A7EE4BC646767004372EAEA9BC0A2071790E739101F7D25ECD9C95D3F29AFD6 ] C:\Windows\System32\LogonUI.exe
19:10:47.0948 0x0edc C:\Windows\System32\LogonUI.exe - ok
19:10:47.0963 0x0edc [ EE7CB55F77465CDAC4C80F587FF7C278, 9DB3FC61275BA78A0A4E66440024341F0C6863659937A78E6224D3C42D7E57E7 ] C:\Windows\System32\authui.dll
19:10:47.0963 0x0edc C:\Windows\System32\authui.dll - ok
19:10:47.0979 0x0edc [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\System32\version.dll
19:10:47.0979 0x0edc C:\Windows\System32\version.dll - ok
19:10:47.0994 0x0edc [ 241E015DD809CFB23242F890B1FC575B, 763381DCBACF06FD8D043B14D383B6F4D5295B8E665796C59603F15F3E3E36FC ] C:\Windows\System32\wevtsvc.dll
19:10:47.0994 0x0edc C:\Windows\System32\wevtsvc.dll - ok
19:10:48.0010 0x0edc [ 28CA821606669BB9215CE010767720FA, C8A1F0D6704F8F37CF8AADDFAD511FF27E56E8BCFFD4AC948DFA0329DB1F3A1E ] C:\Windows\System32\cryptui.dll
19:10:48.0010 0x0edc C:\Windows\System32\cryptui.dll - ok
19:10:48.0026 0x0edc [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:10:48.0026 0x0edc C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:10:48.0041 0x0edc [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] C:\Windows\System32\audiosrv.dll
19:10:48.0041 0x0edc C:\Windows\System32\audiosrv.dll - ok
19:10:48.0041 0x0edc [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\System32\MMDevAPI.dll
19:10:48.0041 0x0edc C:\Windows\System32\MMDevAPI.dll - ok
19:10:48.0072 0x0edc [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\System32\propsys.dll
19:10:48.0072 0x0edc C:\Windows\System32\propsys.dll - ok
19:10:48.0088 0x0edc [ AC8C80DC4F1A6E60C9A762C1799F0B39, 9FD3A62B4E476CBE6D94D587826B5D8C6EB8208035A20B8E17749312C251FD6A ] C:\Windows\System32\adtschema.dll
19:10:48.0088 0x0edc C:\Windows\System32\adtschema.dll - ok
19:10:48.0104 0x0edc [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] C:\Windows\System32\FntCache.dll
19:10:48.0104 0x0edc C:\Windows\System32\FntCache.dll - ok
19:10:48.0119 0x0edc [ F14A9B1778376D0B1788E402AC1F831A, 6110F29669E03F8163B5CD7124BE0FF329F36C18529FA3B8FF70FC00B2D8AA02 ] C:\Windows\System32\shacct.dll
19:10:48.0119 0x0edc C:\Windows\System32\shacct.dll - ok
19:10:48.0135 0x0edc [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\System32\avrt.dll
19:10:48.0135 0x0edc C:\Windows\System32\avrt.dll - ok
19:10:48.0150 0x0edc [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\System32\samlib.dll
19:10:48.0150 0x0edc C:\Windows\System32\samlib.dll - ok
19:10:48.0166 0x0edc [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] C:\Windows\System32\mmcss.dll
19:10:48.0166 0x0edc C:\Windows\System32\mmcss.dll - ok
19:10:48.0197 0x0edc [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\System32\netprofm.dll
19:10:48.0197 0x0edc C:\Windows\System32\netprofm.dll - ok
19:10:48.0197 0x0edc [ 63BFDF555DA2075A77D677829C3CCCD0, 13B0C0576A0158FBEE6C216136F8C66373C8E6592895D3D824EC67147B9190E9 ] C:\Windows\System32\uxtheme.dll
19:10:48.0197 0x0edc C:\Windows\System32\uxtheme.dll - ok
19:10:48.0228 0x0edc [ 84174CA0E190BB9D1EFD0F005FE13B35, B0146E651DAD4A8050FAF70026F1B7CE16EF454EB6E31088CDEBE3CD57E6591C ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
19:10:48.0228 0x0edc C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
19:10:48.0244 0x0edc [ 8B0B4C5927A333A05513791758350DC4, 52FF08569678F3DA6D52FAE200E4C8C85E986805987EF1CDC0616C29664E7D64 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:10:48.0244 0x0edc C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:10:48.0260 0x0edc [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\System32\dui70.dll
19:10:48.0260 0x0edc C:\Windows\System32\dui70.dll - ok
19:10:48.0275 0x0edc [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] C:\Windows\System32\wlansvc.dll
19:10:48.0275 0x0edc C:\Windows\System32\wlansvc.dll - ok
19:10:48.0291 0x0edc [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] C:\Windows\System32\drivers\fltMgr.sys
19:10:48.0291 0x0edc C:\Windows\System32\drivers\fltMgr.sys - ok
19:10:48.0306 0x0edc [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\System32\duser.dll
19:10:48.0306 0x0edc C:\Windows\System32\duser.dll - ok
19:10:48.0306 0x0edc [ D93A937A2A9D2CBC06B3A615A197011F, E55028F641512EC22CEC4674F7E380FE71059A21E51ECB345DDB769A276F30D1 ] C:\Windows\System32\PSHED.DLL
19:10:48.0306 0x0edc C:\Windows\System32\PSHED.DLL - ok
19:10:48.0322 0x0edc [ 2CFA4569350B7F84F815E9EC34E85766, 8DE5F880F23435256E697C24BDDFA9B8994ACC3FAA063AF274BEC918FE012788 ] C:\Windows\System32\SndVolSSO.dll
19:10:48.0322 0x0edc C:\Windows\System32\SndVolSSO.dll - ok
19:10:48.0338 0x0edc [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] C:\Windows\System32\profsvc.dll
19:10:48.0338 0x0edc C:\Windows\System32\profsvc.dll - ok
19:10:48.0353 0x0edc [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\System32\hid.dll
19:10:48.0353 0x0edc C:\Windows\System32\hid.dll - ok
19:10:48.0369 0x0edc [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E, 27848861F25C00168A1A0FE0722D8E327D2251C4FB69A7968EE5722ECCD129E3 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:10:48.0369 0x0edc C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:10:48.0384 0x0edc [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\System32\dwmapi.dll
19:10:48.0400 0x0edc C:\Windows\System32\dwmapi.dll - ok
19:10:48.0400 0x0edc [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\System32\xmllite.dll
19:10:48.0400 0x0edc C:\Windows\System32\xmllite.dll - ok
19:10:48.0416 0x0edc [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] C:\Windows\System32\MPSSVC.dll
19:10:48.0416 0x0edc C:\Windows\System32\MPSSVC.dll - ok
19:10:48.0431 0x0edc [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\System32\WindowsCodecs.dll
19:10:48.0431 0x0edc C:\Windows\System32\WindowsCodecs.dll - ok
19:10:48.0462 0x0edc [ F68194F74350D4A2ADE98961E33F884C, 75DE3554409C42CA3B6FC1503BCB8CAFF85D5D7703F7E68C38A69AA8EF3FDA81 ] C:\Windows\System32\audiodg.exe
19:10:48.0462 0x0edc C:\Windows\System32\audiodg.exe - ok
19:10:48.0478 0x0edc [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\System32\winbrand.dll
19:10:48.0478 0x0edc C:\Windows\System32\winbrand.dll - ok
19:10:48.0494 0x0edc [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\System32\wtsapi32.dll
19:10:48.0494 0x0edc C:\Windows\System32\wtsapi32.dll - ok
19:10:48.0525 0x0edc [ 65BF13016A3C22775F3E17591AE5268A, 7DFE2F99D33D47E4A55ACBE83FE5B536A2983742522629414D5F941043C591D3 ] C:\Windows\System32\VaultCredProvider.dll
19:10:48.0525 0x0edc C:\Windows\System32\VaultCredProvider.dll - ok
19:10:48.0525 0x0edc [ 4BCC63ED1C3D15B2635A8AE2B854B3EB, 4CF29B4E896996145D54263FD06358E16C3FE2CD39C3AF6BCCE607590C637555 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:10:48.0525 0x0edc C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:10:48.0540 0x0edc [ E59F08ED9D2A128CE436BBFC232247F6, 9CD690C1B7CB6CA59F6AB2752A5AF2FC5A057CCBDA4166900F0AC68296972060 ] C:\Windows\System32\BioCredProv.dll
19:10:48.0540 0x0edc C:\Windows\System32\BioCredProv.dll - ok
19:10:48.0556 0x0edc [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\System32\ntmarta.dll
19:10:48.0556 0x0edc C:\Windows\System32\ntmarta.dll - ok
19:10:48.0572 0x0edc [ 3FAD263CE1E2A6FFF40D00043B2275E3, 0063D7DAD57CA78C3DCE6A2E7D4FF7A47DBBBBAA33F92AEF747D8102E055D1AA ] C:\Windows\System32\winbio.dll
19:10:48.0572 0x0edc C:\Windows\System32\winbio.dll - ok
19:10:48.0587 0x0edc [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\System32\credui.dll
19:10:48.0587 0x0edc C:\Windows\System32\credui.dll - ok
19:10:48.0603 0x0edc [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\System32\netapi32.dll
19:10:48.0603 0x0edc C:\Windows\System32\netapi32.dll - ok
19:10:48.0618 0x0edc [ 36B8D5903CEEF0AA42A1EE002BD27FF1, CBD5C4D0E05B9A2657D816B655FFFC386807061594DEAABA754658D3152F7403 ] C:\Windows\System32\vaultcli.dll
19:10:48.0618 0x0edc C:\Windows\System32\vaultcli.dll - ok
19:10:48.0618 0x0edc [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\System32\netutils.dll
19:10:48.0618 0x0edc C:\Windows\System32\netutils.dll - ok
19:10:48.0634 0x0edc [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\System32\samcli.dll
19:10:48.0634 0x0edc C:\Windows\System32\samcli.dll - ok
19:10:48.0650 0x0edc [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\System32\wkscli.dll
19:10:48.0650 0x0edc C:\Windows\System32\wkscli.dll - ok
19:10:48.0665 0x0edc [ 6D8CACF3B1B54943EFCF420C2D667B37, 64EB621EC68077761A0662BE78D2D17ADA982FCFE4D3BBD3A96D0D990BD8541A ] C:\Windows\System32\certCredProvider.dll
19:10:48.0665 0x0edc C:\Windows\System32\certCredProvider.dll - ok
19:10:48.0681 0x0edc [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] C:\Windows\System32\gpsvc.dll
19:10:48.0681 0x0edc C:\Windows\System32\gpsvc.dll - ok
19:10:48.0696 0x0edc [ EFDA8576B2BA177AE3DF78B29EA0C45B, FCAC75169F9DACDB13E3FAFEC633676C0D3346AEB8655A64A7B91D2B5D069B48 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDCREDPROV.DLL
19:10:48.0696 0x0edc C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDCREDPROV.DLL - ok
19:10:48.0712 0x0edc [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\System32\atl.dll
19:10:48.0712 0x0edc C:\Windows\System32\atl.dll - ok
19:10:48.0728 0x0edc [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] C:\Windows\System32\themeservice.dll
19:10:48.0728 0x0edc C:\Windows\System32\themeservice.dll - ok
19:10:48.0728 0x0edc [ FFE4BEC5C187C426A17AE76A773063A6, 0003F7DBCE52F3E7B467FBB6522623E7318E22BC2E1BB5890AFAE29682543F99 ] C:\Windows\System32\rasplap.dll
19:10:48.0743 0x0edc C:\Windows\System32\rasplap.dll - ok
19:10:48.0743 0x0edc [ 50E0DD0A5B8D8BC353578F2F73926697, 9A453F60FC0149417105BB5B4CB910D614A3D832D98313A58D0EA36BABED4460 ] C:\Windows\System32\nlaapi.dll
19:10:48.0743 0x0edc C:\Windows\System32\nlaapi.dll - ok
19:10:48.0759 0x0edc [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] C:\Windows\System32\es.dll
19:10:48.0759 0x0edc C:\Windows\System32\es.dll - ok
19:10:48.0774 0x0edc [ 2F040CF0613A6D64DCBBA9EE81F5A5AE, DA16117429AF47230CD7C136407C81951B8D2E45A8B7A9DC6948407AA2EC4ADD ] C:\Windows\System32\dsrole.dll
19:10:48.0774 0x0edc C:\Windows\System32\dsrole.dll - ok
19:10:48.0790 0x0edc [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\System32\slc.dll
19:10:48.0790 0x0edc C:\Windows\System32\slc.dll - ok
19:10:48.0806 0x0edc [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\System32\rasapi32.dll
19:10:48.0806 0x0edc C:\Windows\System32\rasapi32.dll - ok
19:10:48.0821 0x0edc [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\System32\rasman.dll
19:10:48.0821 0x0edc C:\Windows\System32\rasman.dll - ok
19:10:48.0837 0x0edc [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\System32\rtutils.dll
19:10:48.0837 0x0edc C:\Windows\System32\rtutils.dll - ok
19:10:48.0837 0x0edc [ 808D8A8B2A3074002852BC856D419576, 1AFDEAAD071D398F4663E82D58510ABC0A30048018866C59AB53D3ECB6E6D349 ] C:\Windows\System32\comres.dll
19:10:48.0837 0x0edc C:\Windows\System32\comres.dll - ok
19:10:48.0852 0x0edc [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] C:\Windows\System32\Sens.dll
19:10:48.0852 0x0edc C:\Windows\System32\Sens.dll - ok
19:10:48.0868 0x0edc [ A12829E9974F57E9B5DBFEA7C93190F6, 1EC2A36CAF30A706B6082C5CA79B6A33FA99342E144508DB1415D1611E631EBC ] C:\Windows\System32\UXInit.dll
19:10:48.0868 0x0edc C:\Windows\System32\UXInit.dll - ok
19:10:48.0884 0x0edc [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] C:\Windows\System32\uxsms.dll
19:10:48.0884 0x0edc C:\Windows\System32\uxsms.dll - ok
19:10:48.0899 0x0edc [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] C:\Windows\System32\drivers\lltdio.sys
19:10:48.0899 0x0edc C:\Windows\System32\drivers\lltdio.sys - ok
19:10:48.0915 0x0edc [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] C:\Windows\System32\drivers\nwifi.sys
19:10:48.0915 0x0edc C:\Windows\System32\drivers\nwifi.sys - ok
19:10:48.0930 0x0edc [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] C:\Windows\System32\drivers\ndisuio.sys
19:10:48.0930 0x0edc C:\Windows\System32\drivers\ndisuio.sys - ok
19:10:48.0946 0x0edc [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] C:\Windows\System32\drivers\rspndr.sys
19:10:48.0946 0x0edc C:\Windows\System32\drivers\rspndr.sys - ok
19:10:48.0962 0x0edc [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] C:\Windows\System32\lmhsvc.dll
19:10:48.0962 0x0edc C:\Windows\System32\lmhsvc.dll - ok
19:10:48.0977 0x0edc [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\System32\IPHLPAPI.DLL
19:10:48.0977 0x0edc C:\Windows\System32\IPHLPAPI.DLL - ok
19:10:48.0993 0x0edc [ D2A937964199F647B1C3BC435712E5D9, 03029296547750229C0C484CD09D67286096B92661C41DF67C60019DEF75A2F7 ] C:\Windows\System32\nrpsrv.dll
19:10:48.0993 0x0edc C:\Windows\System32\nrpsrv.dll - ok
19:10:48.0993 0x0edc [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\System32\winnsi.dll
19:10:48.0993 0x0edc C:\Windows\System32\winnsi.dll - ok
19:10:49.0008 0x0edc [ AF75DBA674E55221B7A055B0A4345F16, 50F1B550F4EBFA946564EB66BBD17C308DCB08055017E010095A94C2EBCE208D ] C:\Windows\System32\keyiso.dll
19:10:49.0008 0x0edc C:\Windows\System32\keyiso.dll - ok
19:10:49.0024 0x0edc [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] C:\Windows\System32\nsisvc.dll
19:10:49.0024 0x0edc C:\Windows\System32\nsisvc.dll - ok
19:10:49.0040 0x0edc [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] C:\Windows\System32\eapsvc.dll
19:10:49.0040 0x0edc C:\Windows\System32\eapsvc.dll - ok
19:10:49.0071 0x0edc [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] C:\Windows\System32\dhcpcore.dll
19:10:49.0071 0x0edc C:\Windows\System32\dhcpcore.dll - ok
19:10:49.0086 0x0edc [ 9A892B3439884C62B04718F0303A49E9, E3A772832BE440B074628FCAE06FACA451E2329BAEDD62CAB54310B44AF6BA4A ] C:\Windows\System32\eapphost.dll
19:10:49.0086 0x0edc C:\Windows\System32\eapphost.dll - ok
19:10:49.0086 0x0edc [ EF71BA5DF59034962B0C62314A71351A, BB31EDFCCFF1CE984CDE0E1D8996BF70DC28F97B6685AE54172F2F4BAFA56A0F ] C:\Windows\System32\dhcpcore6.dll
19:10:49.0086 0x0edc C:\Windows\System32\dhcpcore6.dll - ok
19:10:49.0102 0x0edc [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] C:\Windows\System32\dnsrslvr.dll
19:10:49.0102 0x0edc C:\Windows\System32\dnsrslvr.dll - ok
19:10:49.0118 0x0edc [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\System32\FWPUCLNT.DLL
19:10:49.0118 0x0edc C:\Windows\System32\FWPUCLNT.DLL - ok
19:10:49.0133 0x0edc [ D33E95C0A2754061233B58DC41F8094C, C957FD018DCCC8EA4BFD0EBB16A8A65B5F8AD543929EE92251C8718872BBA628 ] C:\Windows\System32\umb.dll
19:10:49.0133 0x0edc C:\Windows\System32\umb.dll - ok
19:10:49.0149 0x0edc [ 3C9035085141162416A0DD34DBF3F3C1, 31856241BBCC5AEC32C36BD073667001ECBA3A65C1D55B26A9CEE186CE1C03E6 ] C:\Windows\System32\wlanmsm.dll
19:10:49.0149 0x0edc C:\Windows\System32\wlanmsm.dll - ok
19:10:49.0164 0x0edc [ 100103C6535C66265267F5EEA5F5846E, DC5972BC1FCABDC51E4DF4D5124D408BB03F2EFAF25AB70C921DD7A03A12DFD4 ] C:\Windows\System32\dnsext.dll
19:10:49.0164 0x0edc C:\Windows\System32\dnsext.dll - ok
19:10:49.0180 0x0edc [ 20C06A50DFC097E134BC6FA8444CA9BC, 7739CF0ABCA918C9A49D655FB4E032163BBFB7064844F0C8EBDA282CB0225DFC ] C:\Windows\System32\wlansec.dll
19:10:49.0180 0x0edc C:\Windows\System32\wlansec.dll - ok
19:10:49.0196 0x0edc [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\System32\dhcpcsvc.dll
19:10:49.0196 0x0edc C:\Windows\System32\dhcpcsvc.dll - ok
19:10:49.0211 0x0edc [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\System32\dhcpcsvc6.dll
19:10:49.0211 0x0edc C:\Windows\System32\dhcpcsvc6.dll - ok
19:10:49.0227 0x0edc [ F748F53FE09D21D8ECBB6421E6792024, 38F737673F8B089B2540CE7015A4DF7081754F7CC83BFF85199B70555AF32ED0 ] C:\Windows\System32\onex.dll
19:10:49.0227 0x0edc C:\Windows\System32\onex.dll - ok
19:10:49.0242 0x0edc [ 666E57B6B51824D1D235F80A3DD70A13, B2ACCABDD5D8B23E502FE691C1DEE4A2C0EA20EDCDE5B4000557579D56D411EC ] C:\Windows\System32\eappprxy.dll
19:10:49.0242 0x0edc C:\Windows\System32\eappprxy.dll - ok
19:10:49.0242 0x0edc [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97, 364A2DC446E9AB091A216D0EED559CEA334AA46EC0BC693CBD6CE1DE0F89317B ] C:\Windows\System32\eappcfg.dll
19:10:49.0242 0x0edc C:\Windows\System32\eappcfg.dll - ok
19:10:49.0258 0x0edc [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\System32\imageres.dll
19:10:49.0258 0x0edc C:\Windows\System32\imageres.dll - ok
19:10:49.0274 0x0edc [ 749F9795F01C35EEBE100A87D82B9681, 03A636328D3D97AFA6B5D6B3085EA8D27C3DBCAEA5986FD74904FC754378CD64 ] C:\Windows\System32\wlgpclnt.dll
19:10:49.0274 0x0edc C:\Windows\System32\wlgpclnt.dll - ok
19:10:49.0289 0x0edc [ C1585EAA67C37A05BF6F93726FAFC069, 50401A628053871D5B864E2493018236A117F177AD1E466EDE6FB3CACBD6C5BD ] C:\Windows\System32\l2gpstore.dll
19:10:49.0289 0x0edc C:\Windows\System32\l2gpstore.dll - ok
19:10:49.0305 0x0edc [ 9419ABF3163B6F0E3AD3DD2B381C879F, 75029AFDB5F8A8F74A63B6C8165E77110E2FBAEC0021A9613035BFFEC646A54E ] C:\Windows\System32\WinSCard.dll
19:10:49.0305 0x0edc C:\Windows\System32\WinSCard.dll - ok
19:10:49.0320 0x0edc [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\System32\wlanutil.dll
19:10:49.0320 0x0edc C:\Windows\System32\wlanutil.dll - ok
19:10:49.0336 0x0edc [ EAADD6E47ED2A7003ACE1793B98CF63F, EE090284CA4595B6A140949A41025926CEC3CCACCD2931B6AC77A1E14D20E5B4 ] C:\Windows\System32\msxml6.dll
19:10:49.0336 0x0edc C:\Windows\System32\msxml6.dll - ok
19:10:49.0336 0x0edc [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:10:49.0336 0x0edc C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
19:10:49.0352 0x0edc [ 6F44F5C0BC6B210FE5F5A1C8D899AD0A, B2CB1477536F92ECD4F7763F95F40B12CE052DC20F33FB22E9F7C8CA00F769FC ] C:\Windows\System32\wlanext.exe
19:10:49.0352 0x0edc C:\Windows\System32\wlanext.exe - ok
19:10:49.0367 0x0edc [ EC86F8AAE19B48D7C801B7C46ED96A0B, 24FC1D92563AB746C86A065F87ABD78F6FAB8CBB56F07858628D68062AD60836 ] C:\Program Files\AVAST Software\Avast\ashBase.dll
19:10:49.0367 0x0edc C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
19:10:49.0383 0x0edc [ 2DE16A63F71D10B42ACE01E759078600, D52FAE32C1BBF982C9222FBF275FF53D5F6F77B7747AFBF641937DFDC8D70487 ] C:\Windows\System32\conhost.exe
19:10:49.0383 0x0edc C:\Windows\System32\conhost.exe - ok
19:10:49.0398 0x0edc [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\System32\wsock32.dll
19:10:49.0398 0x0edc C:\Windows\System32\wsock32.dll - ok
19:10:49.0414 0x0edc [ 0B1CFAAACD595677F72ED121B9D3AED9, 01B6E2FFE78815583A074BDDC44BA73C6948E606250702254363488DAE808881 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
19:10:49.0414 0x0edc C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
19:10:49.0430 0x0edc [ 8A9CF4B91C85E9B81C6F214D0FF6E9A2, 311ABDB653DD83E8189142BD48CD81EC7840FF12CAE23A69EFEB5E51F9D6A1C4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
19:10:49.0430 0x0edc C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
19:10:49.0445 0x0edc [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcr110.dll
19:10:49.0445 0x0edc C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcr110.dll - ok
19:10:49.0461 0x0edc [ 049F49C2C1F517F6359D21DE7CB68E68, B0868E9E3CE24B4B423AD64830C12EDC6AF108E1B3BE1E8EA48FFBA87D572AEE ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
19:10:49.0461 0x0edc C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
19:10:49.0476 0x0edc [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcp110.dll
19:10:49.0476 0x0edc C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcp110.dll - ok
19:10:49.0492 0x0edc [ BA71407956F0268EE59D42FDF3EA3BF6, 46CE9BADD06788B99124631D101EC2C0878FA623D0F0AB109131742E0963BF0C ] C:\Program Files\AVAST Software\Avast\avastIP.dll
19:10:49.0492 0x0edc C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
19:10:49.0508 0x0edc [ E51A74C55CFA03A44DEA833C423753EF, 932059A132DAC4DCCAF8270ACBCEC9B287E45C8EA75732731C1FF6525C852FE5 ] C:\Program Files\AVAST Software\Avast\aswCommChannel.dll
19:10:49.0508 0x0edc C:\Program Files\AVAST Software\Avast\aswCommChannel.dll - ok
19:10:49.0523 0x0edc [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\System32\winhttp.dll
19:10:49.0523 0x0edc C:\Windows\System32\winhttp.dll - ok
19:10:49.0539 0x0edc [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\System32\webio.dll
19:10:49.0539 0x0edc C:\Windows\System32\webio.dll - ok
19:10:49.0554 0x0edc [ D1E2B63FAD77A38151C4994A7AD31449, 0D98DF6C497559F4393A1C8ADAFC96C51F28FBB219B2E9AB2320C0248174C9E5 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
19:10:49.0554 0x0edc C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
19:10:49.0570 0x0edc [ 7048BE0322FAF43BAE861094E083F8D5, 29ECEAB36D350E5741E91A69880B584746D272917719B77B6EED08662F68B98D ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
19:10:49.0570 0x0edc C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
19:10:49.0586 0x0edc [ 1FF7E4F548C7C372C804938F0D5B36AE, F20409733F67853CBF51FD83E4DB73260FED7B7A4F361C6B3482D78C990E16FC ] C:\Windows\System32\netcfgx.dll
19:10:49.0586 0x0edc C:\Windows\System32\netcfgx.dll - ok
19:10:49.0601 0x0edc [ 5C5E3AFD499E5146FEF1DA5EF8A23205, 9A26FFAFFB26FA6549C6DA75F76238A903CA723F9DAD356FBA8D91067FE312FD ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
19:10:49.0601 0x0edc C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
19:10:49.0617 0x0edc [ 2915458A210BE24B7428AA4ECAEE90C2, E5050F9E923C4EDB8C53B74475C13B86417E2A5348DD1806A1AF80666278AD08 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
19:10:49.0617 0x0edc C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
19:10:49.0632 0x0edc [ CDADF961272033E04D9C0B8EB075F840, 179208F3394EE5CE2A6FDFAC7ED1D793FD37BB885F4C65D9CF3CF656C9B5980B ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
19:10:49.0632 0x0edc C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
19:10:49.0648 0x0edc [ 188B2746E1F436B9524BF38806CEF7D0, 8F62E1099CEF1A7A3075C8CCA0BF863C203FBD4A12B733DAFCA6EDD35D366D92 ] C:\Program Files\AVAST Software\Avast\libeay32.dll
19:10:49.0648 0x0edc C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
19:10:49.0648 0x0edc [ EA95BB403BDBD1EF5345A6E5BDE1AD01, DD0ED9A8AA823C46836458DF71DF1D7D016AE85924C5F466BA25B0AAC47053DD ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
19:10:49.0648 0x0edc C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
19:10:49.0664 0x0edc [ 4ED7BB2F2704E36DF5F296D2AFD861D0, 17890D3C3BE344903C0810889040F4FAFACD82DCD83C21684AA83BC985F6EDF6 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
19:10:49.0664 0x0edc C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
19:10:49.0679 0x0edc [ A63DC5C2EA944E6657203E0C8EDEAF61, F7AD4B09AFB301CE46DF695B22114331A57D52E6D4163FF74787BF68CCF44C78 ] C:\Windows\System32\dllhost.exe
19:10:49.0679 0x0edc C:\Windows\System32\dllhost.exe - ok
19:10:49.0710 0x0edc [ 18539DF4401C0A46DA395CF0474CFA13, EDF3FB12DC2067EB67672181C64876952C840475F848A2735B23E4616AD9359E ] C:\Program Files\AVAST Software\Avast\ashServ.dll
19:10:49.0710 0x0edc C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
19:10:49.0710 0x0edc [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] C:\Windows\System32\shsvcs.dll
19:10:49.0710 0x0edc C:\Windows\System32\shsvcs.dll - ok
19:10:49.0726 0x0edc [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
19:10:49.0726 0x0edc C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
19:10:49.0742 0x0edc [ 66AD28B505CA6685BA13BCD9543606DF, CE21FD293F109BA632431CB03B730C6B09D415D3007D1DD24C7FE3E14A177F8E ] C:\Program Files\AVAST Software\Avast\ashTask.dll
19:10:49.0742 0x0edc C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
19:10:49.0757 0x0edc [ E6D90DC604F407B3B5E0FD285E46B2A0, 41C0E25E93E6985445410B23058B8972E7720464ABDB41D84FF10CCAC204921A ] C:\Windows\System32\fveapi.dll
19:10:49.0757 0x0edc C:\Windows\System32\fveapi.dll - ok
19:10:49.0773 0x0edc [ 746013731C6B7DD5AADC358795253118, E4EFC10FD2BDC110F7E696B6DDAAB7B459D2963EDF1D7C1FDD1E887ACFB01B2C ] C:\Program Files\AVAST Software\Avast\aswAux.dll
19:10:49.0773 0x0edc C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
19:10:49.0788 0x0edc [ C87F28A34B3840F4B40011D170B1A159, 4FB94B9197C5FA73E1A74BA8DCD4ACE830C927FD67B117426714CCD7396E3CB9 ] C:\Windows\System32\fvecerts.dll
19:10:49.0788 0x0edc C:\Windows\System32\fvecerts.dll - ok
19:10:49.0804 0x0edc [ EAFC149CD3BD78C443E31BB157841197, 9045425B0C7A23D5A96D1084FB3B1DED35852B3FB1DCB942DEB4A5B906126CA4 ] C:\Windows\System32\tbs.dll
19:10:49.0804 0x0edc C:\Windows\System32\tbs.dll - ok
19:10:49.0820 0x0edc [ 0B31464B7B2D616BD5F7036673588EC1, AAC717D7FB02D5F7CC11AECC5C87FE6B7224340C569EBF7B77BD8C9F79FAA190 ] C:\Windows\System32\IDStore.dll
19:10:49.0820 0x0edc C:\Windows\System32\IDStore.dll - ok
19:10:49.0835 0x0edc [ 0B19BCA16B36BD7F87989A44187407C0, 91DCE33E2D3CE8A7BD1F48D9D6DF16944EA365691D54897B66B7A467CA5FC38A ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
19:10:49.0835 0x0edc C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
19:10:49.0851 0x0edc [ E2D56AE1D40E3725084054CD8E9CFBB1, 7548C22DE09DCCC9BA41BA1DE331CFD0B18DDA00A40E27DFB8EA551CDF7050BC ] C:\Windows\System32\wiarpc.dll
19:10:49.0851 0x0edc C:\Windows\System32\wiarpc.dll - ok
19:10:49.0866 0x0edc [ 1D0B3B947743E8B9C4D06EB6B3A91DFD, AE94EF57C382FDD55314E54D0F1C210CDF752F1ED1AFEF6C8AB333EBAC31B2CD ] C:\Program Files\AVAST Software\Avast\aswLog.dll
19:10:49.0866 0x0edc C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
19:10:49.0866 0x0edc [ 8F441A009034DDAC904C27662A454974, CC3F62F49BDDB5BA1768DC425929F33304BF989844CE74C1360959508B31D0B7 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
19:10:49.0866 0x0edc C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
19:10:49.0882 0x0edc [ 3CA2BB895E204478C7A4C9BAF70970CE, DE3196627BC810DD22F58DEE65747BACA25485CCD0CEE2701055ECE1058F1C6A ] C:\Windows\System32\AtBroker.exe
19:10:49.0882 0x0edc C:\Windows\System32\AtBroker.exe - ok
19:10:49.0898 0x0edc [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\System32\mpr.dll
19:10:49.0898 0x0edc C:\Windows\System32\mpr.dll - ok
19:10:49.0913 0x0edc [ 4D5C0DA06BA462A1DC94555697EC6033, E0465D62D474CA88ADCAA1DE6DEA967A875D40E9C3C030DF5880CC2BBADDE735 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
19:10:49.0913 0x0edc C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
19:10:49.0929 0x0edc [ 3A3F935692BDA212E759AB25839CA1E6, 6030AB3DD767730A4BA450D0992DD46128FF7E384B763134690C111525FF544A ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
19:10:49.0929 0x0edc C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
19:10:49.0944 0x0edc [ 61AC3EFDFACFDD3F0F11DD4FD4044223, 538FE1012FEDC72727A8DE0C2C01944B3D35C29812ECEF88E95AAC07235E0B0B ] C:\Windows\System32\userinit.exe
19:10:49.0944 0x0edc C:\Windows\System32\userinit.exe - ok
19:10:49.0960 0x0edc [ 505BF4D1CADEB8D4F8BCD08D944DE25D, 526F07768471F4457CBEAB7093AF0B0242044C89A80A347DB47F44EBADEEA68D ] C:\Windows\System32\dwm.exe
19:10:49.0960 0x0edc C:\Windows\System32\dwm.exe - ok
19:10:49.0976 0x0edc [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] C:\Windows\System32\schedsvc.dll
19:10:49.0976 0x0edc C:\Windows\System32\schedsvc.dll - ok
19:10:49.0991 0x0edc [ 754AFC50022C95DA7C86B7020DB78136, 81C58F303DA2E0EC066261890C1D638EE02D2B579BBCB1BB398EDF6A0EBA671E ] C:\Windows\System32\dwmredir.dll
19:10:49.0991 0x0edc C:\Windows\System32\dwmredir.dll - ok
19:10:50.0007 0x0edc [ 497E59D9F01C6F247E72222A61835119, 4C31900BA2F911B2A5AE8F7FCE267DCE17655B20A6B71CD4E38FE1B1692142D1 ] C:\Windows\System32\dwmcore.dll
19:10:50.0007 0x0edc C:\Windows\System32\dwmcore.dll - ok
19:10:50.0022 0x0edc [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\System32\wscisvif.dll
19:10:50.0022 0x0edc C:\Windows\System32\wscisvif.dll - ok
19:10:50.0038 0x0edc [ 38B13C0DF479DBA23ECFA815159BA86E, C289C65AF3FB689AD6B770AB0E815860D9EA36FB2A8DE9F1818C63AD0FE47CBD ] C:\Windows\System32\ktmw32.dll
19:10:50.0038 0x0edc C:\Windows\System32\ktmw32.dll - ok
19:10:50.0054 0x0edc [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\System32\wscapi.dll
19:10:50.0054 0x0edc C:\Windows\System32\wscapi.dll - ok
19:10:50.0054 0x0edc [ 3C1936A12C62254F914A01BBC6A8DC69, 0068F7A8B0D9E9776B44EAD99007B0CE5A5600633F2B477E9EFAAC644408C70E ] C:\Windows\System32\d3d10_1.dll
19:10:50.0054 0x0edc C:\Windows\System32\d3d10_1.dll - ok
19:10:50.0085 0x0edc [ 8B88EBBB05A0E56B7DCC708498C02B3E, 9E1EC8B43A88E68767FD8FED2F38E7984357B3F4186D0F907E62F8B6C9FF56AD ] C:\Windows\explorer.exe
19:10:50.0085 0x0edc C:\Windows\explorer.exe - ok
19:10:50.0100 0x0edc [ 1C3E8371377E988B683797A132EFFE1B, CC4A9B9084F163428973A04D77CADDAA838C5761BF9E55971FAD7275BB9D2194 ] C:\Windows\System32\taskcomp.dll
19:10:50.0100 0x0edc C:\Windows\System32\taskcomp.dll - ok
19:10:50.0116 0x0edc [ D4212AB475A3B25EC4DF574536C3EDC5, F8BBEECB66BA6DDE5A64ED41D8BF95A1C81470552B4BFD5B11D888156289CCDD ] C:\Windows\System32\d3d10_1core.dll
19:10:50.0116 0x0edc C:\Windows\System32\d3d10_1core.dll - ok
19:10:50.0116 0x0edc [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\System32\dxgi.dll
19:10:50.0116 0x0edc C:\Windows\System32\dxgi.dll - ok
19:10:50.0132 0x0edc [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] C:\Windows\System32\drivers\http.sys
19:10:50.0132 0x0edc C:\Windows\System32\drivers\http.sys - ok
19:10:50.0147 0x0edc [ CCF1FD2AF23D81C5483359EE1058F769, 4A15CB65E5F71ECCBF6B228994D1811237E1ECA8C5F1F29D80E4BF8ED0E2F6A8 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswEngin.dll
19:10:50.0147 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswEngin.dll - ok
19:10:50.0163 0x0edc [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\System32\d3d11.dll
19:10:50.0163 0x0edc C:\Windows\System32\d3d11.dll - ok
19:10:50.0178 0x0edc [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] C:\Windows\System32\spoolsv.exe
19:10:50.0178 0x0edc C:\Windows\System32\spoolsv.exe - ok
19:10:50.0194 0x0edc [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\System32\ExplorerFrame.dll
19:10:50.0194 0x0edc C:\Windows\System32\ExplorerFrame.dll - ok
19:10:50.0225 0x0edc [ 72E953215CADE1A726C04AAFDF6B463D, 473866333D2241BAD6918D21EBCBE8F8EEA9344D816788300BCA290A89FBD3DD ] C:\Windows\System32\taskhost.exe
19:10:50.0225 0x0edc C:\Windows\System32\taskhost.exe - ok
19:10:50.0241 0x0edc [ CB3C8AAC3C507473A0EC8811D12FD832, CC20C00851CB8D5566B669702B547A7F0DA1FD4C04AAA151F668AA61503ACFDB ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnIS.dll
19:10:50.0241 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnIS.dll - ok
19:10:50.0241 0x0edc [ 4537C83608733A5D112EF268BBDB1ED3, 0337AE367A72536467805ABD4D96372C06304E2B808DC6A739E50AA981FF9458 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnOS.dll
19:10:50.0241 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnOS.dll - ok
19:10:50.0256 0x0edc [ BAAFA3C7BAC465EC825DC86E34D369CE, AD2D6A170F230C10E5B60F32F8BBD0FB285AE0DC48F5DC5F9DDF392411E40F13 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnBS.dll
19:10:50.0256 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnBS.dll - ok
19:10:50.0272 0x0edc [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
19:10:50.0272 0x0edc C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
19:10:50.0288 0x0edc [ F9C1676F621BF55AFBCD31E8001B7EC3, 36DFE1E089875A09700CF7990D4E29777D8902734F8F66CE76A607A79C2B489A ] C:\Program Files\AVAST Software\Avast\ashShell.dll
19:10:50.0288 0x0edc C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
19:10:50.0303 0x0edc [ 5C3F9DBA818CD93379D1A0F215270374, 6A4D96AC83989D47D80332E41E627F2607A3B2167E1A5D8E21361136C4424633 ] C:\Windows\System32\esent.dll
19:10:50.0303 0x0edc C:\Windows\System32\esent.dll - ok
19:10:50.0319 0x0edc [ 2DB72DFA5EE3203C09757835BF5A1388, 1614A08BB35921A991CA005016E6189D6DBA553831F07F3DE63674D875BC1CAB ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswScan.dll
19:10:50.0319 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswScan.dll - ok
19:10:50.0334 0x0edc [ A6C29DB53ECA94FA8591C5388D604B82, F25E95BA669422286A8FA3A68E0C639A2F06319B6DC8FA641C965CFB27A50BD6 ] C:\Windows\System32\msi.dll
19:10:50.0334 0x0edc C:\Windows\System32\msi.dll - ok
19:10:50.0350 0x0edc [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] C:\Windows\System32\BFE.DLL
19:10:50.0350 0x0edc C:\Windows\System32\BFE.DLL - ok
19:10:50.0366 0x0edc [ 936FED3D338661180F42D3EBC213481F, 176E8D0FD11F784F9D5B122748D30BFFF9400FEC28B1587D3EC8BC28167FDBBB ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswRep.dll
19:10:50.0366 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswRep.dll - ok
19:10:50.0381 0x0edc [ B43687C534A49700BF4B3C9898763752, B4C371CB2C0EAC1803E6C845F629814B2CE4C568022EB6A1C9AC1F293BF74F40 ] C:\Windows\System32\MsCtfMonitor.dll
19:10:50.0381 0x0edc C:\Windows\System32\MsCtfMonitor.dll - ok
19:10:50.0397 0x0edc [ 56CEED370508F69A1BA04939BD1BADDA, C84F383F2B3C9581F635E51DA39567F0B5ED2D847B18CCE51022BA4B2FA7EA8D ] C:\Windows\System32\msutb.dll
19:10:50.0397 0x0edc C:\Windows\System32\msutb.dll - ok
19:10:50.0397 0x0edc [ 50A22AA818CEA005683D2E69F3F0E21D, AFF1AD51B9BC3957AD0C2D073EEAAF924EDE440588F5B8E184AB0EC45D27BA06 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswFiDb.dll
19:10:50.0397 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswFiDb.dll - ok
19:10:50.0412 0x0edc [ E3CD8CA170EBFE8ABAC23E7CA44B6292, CB3922E37CDFECC2693FC64285B403AB9C0FE99A2D8A48EE41091F16D5547709 ] C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
19:10:50.0412 0x0edc C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll - ok
19:10:50.0428 0x0edc [ F58516E2DC0D963EF70D6BFC21FD82C4, 5689BF12B43BE0D6BFBD6B9122A2FF53FCEC766A58A0F3C6B88AE504ACB10E04 ] C:\Windows\System32\PlaySndSrv.dll
19:10:50.0428 0x0edc C:\Windows\System32\PlaySndSrv.dll - ok
19:10:50.0444 0x0edc [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\System32\dbghelp.dll
19:10:50.0444 0x0edc C:\Windows\System32\dbghelp.dll - ok
19:10:50.0459 0x0edc [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:10:50.0459 0x0edc C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:10:50.0475 0x0edc [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:10:50.0475 0x0edc C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:10:50.0490 0x0edc [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] C:\Windows\System32\drivers\bowser.sys
19:10:50.0490 0x0edc C:\Windows\System32\drivers\bowser.sys - ok
19:10:50.0506 0x0edc [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] C:\Windows\System32\drivers\mpsdrv.sys
19:10:50.0506 0x0edc C:\Windows\System32\drivers\mpsdrv.sys - ok
19:10:50.0522 0x0edc [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] C:\Windows\System32\drivers\mrxsmb.sys
19:10:50.0522 0x0edc C:\Windows\System32\drivers\mrxsmb.sys - ok
19:10:50.0537 0x0edc [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] C:\Windows\System32\drivers\mrxsmb10.sys
19:10:50.0537 0x0edc C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:10:50.0553 0x0edc [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] C:\Windows\System32\drivers\mrxsmb20.sys
19:10:50.0553 0x0edc C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:10:50.0568 0x0edc [ C628BFA5C816FD29DD25BC75A0AB1D8E, 8995BC632DC3980F05D03988D833CC9C8A39EA07717D540725B3D2F8C93F4953 ] C:\Program Files\EgisTec MyWinLocker\x86\PSDProtect.dll
19:10:50.0568 0x0edc C:\Program Files\EgisTec MyWinLocker\x86\PSDProtect.dll - ok
19:10:50.0584 0x0edc [ 181B03AE919511956FF6B8C0C06B08E7, B6976107433C07A24CA80D1B2F805FFC5900438DE60620E4CAF103601FA449DD ] C:\Program Files\EgisTec MyWinLocker\x86\sysenv.dll
19:10:50.0584 0x0edc C:\Program Files\EgisTec MyWinLocker\x86\sysenv.dll - ok
19:10:50.0600 0x0edc [ 2F22E4F40CBEBB980F923D64A78FEA2B, 929197E5A94EB445238F87765C985EC3C6406ABC0320CCFC4A30AD5B6881B3D1 ] C:\Program Files\EgisTec MyWinLocker\x86\xmllite.dll
19:10:50.0600 0x0edc C:\Program Files\EgisTec MyWinLocker\x86\xmllite.dll - ok
19:10:50.0615 0x0edc [ 019C372B1A9DA73A22D0D35A4D40F5C9, 6DDAF455D528FDC2F8271E5909289E76E54D81AC5563433653FC7E0C6EA5BB70 ] C:\Windows\System32\wfapigp.dll
19:10:50.0615 0x0edc C:\Windows\System32\wfapigp.dll - ok
19:10:50.0631 0x0edc [ 32398694330BE1ECC46A27A36136CE89, F9B4E9ACECA6414EFC24491FC2D605A0D7931E82AF91BB27056AFF169D0321C7 ] C:\Program Files\AVAST Software\Avast\defs\14040802\algo.dll
19:10:50.0631 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\algo.dll - ok
19:10:50.0662 0x0edc [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\System32\EhStorShell.dll
19:10:50.0662 0x0edc C:\Windows\System32\EhStorShell.dll - ok
19:10:50.0678 0x0edc [ 4F2659160AFCCA990305816946F69407, 9E70685B73B3EAB78C55863BABCEECC7CCA89475B508B2A9C651ADE6FDE0751A ] C:\Windows\System32\taskeng.exe
19:10:50.0678 0x0edc C:\Windows\System32\taskeng.exe - ok
19:10:50.0693 0x0edc [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\System32\ntshrui.dll
19:10:50.0693 0x0edc C:\Windows\System32\ntshrui.dll - ok
19:10:50.0709 0x0edc [ 659E04E74135927CA6D7BC5E75C84417, 635CAF4AA78ACFBA30F855C82EFA696E826D710011E960E39817EE0CB6975149 ] C:\Windows\System32\TSChannel.dll
19:10:50.0709 0x0edc C:\Windows\System32\TSChannel.dll - ok
19:10:50.0724 0x0edc [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files\Google\Update\GoogleUpdate.exe
19:10:50.0724 0x0edc C:\Program Files\Google\Update\GoogleUpdate.exe - ok
19:10:50.0740 0x0edc [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\System32\cscapi.dll
19:10:50.0740 0x0edc C:\Windows\System32\cscapi.dll - ok
19:10:50.0756 0x0edc [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\System32\IconCodecService.dll
19:10:50.0756 0x0edc C:\Windows\System32\IconCodecService.dll - ok
19:10:50.0771 0x0edc [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\System32\mscms.dll
19:10:50.0771 0x0edc C:\Windows\System32\mscms.dll - ok
19:10:50.0771 0x0edc [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] C:\Windows\System32\wkssvc.dll
19:10:50.0787 0x0edc C:\Windows\System32\wkssvc.dll - ok
19:10:50.0787 0x0edc [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\System32\NapiNSP.dll
19:10:50.0787 0x0edc C:\Windows\System32\NapiNSP.dll - ok
19:10:50.0802 0x0edc [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\System32\pnrpnsp.dll
19:10:50.0802 0x0edc C:\Windows\System32\pnrpnsp.dll - ok
19:10:50.0818 0x0edc [ 9D4A1690AF93F233E15380398BEC7431, 8CC99491880DBC444651EB7D245EEE46FE77F4FA74FECFCD29E734AA21AF9D75 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
19:10:50.0818 0x0edc C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
19:10:50.0834 0x0edc [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\System32\winrnr.dll
19:10:50.0834 0x0edc C:\Windows\System32\winrnr.dll - ok
19:10:50.0849 0x0edc [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\System32\fltLib.dll
19:10:50.0849 0x0edc C:\Windows\System32\fltLib.dll - ok
19:10:50.0865 0x0edc [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] C:\Windows\System32\drivers\parport.sys
19:10:50.0865 0x0edc C:\Windows\System32\drivers\parport.sys - ok
19:10:50.0880 0x0edc [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] C:\Windows\System32\pcasvc.dll
19:10:50.0880 0x0edc C:\Windows\System32\pcasvc.dll - ok
19:10:50.0896 0x0edc [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] C:\Windows\System32\snmptrap.exe
19:10:50.0896 0x0edc C:\Windows\System32\snmptrap.exe - ok
19:10:50.0912 0x0edc [ F845CB13B1D1FC68C97900FEF94D03CC, 4832FEB9897291297748C95CC44B200239F737A673225F6D5EF89FC6458C5BCC ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
19:10:50.0912 0x0edc C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
19:10:50.0927 0x0edc [ 4A1E806032413883BAF1E9A6047BC668, 4D8EA2B36B57C7ABF131193B9C23B1A7209A3464C2716C471C7F8C11E0FA9E62 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
19:10:50.0927 0x0edc C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
19:10:50.0927 0x0edc [ A86F5616EACB7155998011CEFFFB52F6, 1D877042AD916204D17516A609CE39B6AE9425D6B066E26708D39D53458A406B ] C:\Windows\System32\RdpGroupPolicyExtension.dll
19:10:50.0927 0x0edc C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
19:10:50.0958 0x0edc [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] C:\Windows\System32\sstpsvc.dll
19:10:50.0958 0x0edc C:\Windows\System32\sstpsvc.dll - ok
19:10:50.0974 0x0edc [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] C:\Windows\System32\provsvc.dll
19:10:50.0974 0x0edc C:\Windows\System32\provsvc.dll - ok
19:10:50.0990 0x0edc [ A5711D00938BD64A2410A20CAD9F9AB6, 0D0151441E864AE06EDD43F6849788EA01E2CD465A24F0AC4429F5779D2A0489 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
19:10:50.0990 0x0edc C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
19:10:50.0990 0x0edc [ 486AC1325B7ED9CDB7411FAAD0F8B5B3, 7A1ED488C9E234B34AFA67AF22643ADC53951068850A813A4ED5E4E9AEE13CD4 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
19:10:50.0990 0x0edc C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
19:10:51.0005 0x0edc [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\System32\rasadhlp.dll
19:10:51.0005 0x0edc C:\Windows\System32\rasadhlp.dll - ok
19:10:51.0021 0x0edc [ 8F2DA35E04868DF16DE9295EA6B1D90F, 1C75DE2EBB522E1492F9E0D7E14BB440832D4199886D34739D17B60ACEB7E02C ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
19:10:51.0021 0x0edc C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
19:10:51.0036 0x0edc [ 6B33A45B6CF08CFAA279887BE4AF908D, 7637C8369B0BD581061F97EAAB14B6E71770D77715FBEDE9A5C56D14606A30AE ] C:\Program Files\AVAST Software\Avast\AhResWS2.dll
19:10:51.0036 0x0edc C:\Program Files\AVAST Software\Avast\AhResWS2.dll - ok
19:10:51.0052 0x0edc [ 0928B9C3F2193EE265AA5E9B163D96EB, E2044C1098602441657FCBE2661180A7D3E450B5D8ED42410010AC89F866CF45 ] C:\Program Files\Google\Update\1.3.23.9\goopdate.dll
19:10:51.0052 0x0edc C:\Program Files\Google\Update\1.3.23.9\goopdate.dll - ok
19:10:51.0068 0x0edc [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:10:51.0068 0x0edc C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
19:10:51.0083 0x0edc [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] C:\Windows\System32\cryptsvc.dll
19:10:51.0083 0x0edc C:\Windows\System32\cryptsvc.dll - ok
19:10:51.0099 0x0edc [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\System32\cryptnet.dll
19:10:51.0099 0x0edc C:\Windows\System32\cryptnet.dll - ok
19:10:51.0114 0x0edc [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] C:\Windows\System32\dps.dll
19:10:51.0114 0x0edc C:\Windows\System32\dps.dll - ok
19:10:51.0146 0x0edc [ E2B2853A0210D6EDAB2261870BD80C1A, BAC20DFFCFD8C324BC5B9CDA7BAFD553BBA8E3ED9224FDCF471357A456AC0A61 ] C:\Program Files\Launch Manager\dsiwmis.exe
19:10:51.0146 0x0edc C:\Program Files\Launch Manager\dsiwmis.exe - ok
19:10:51.0161 0x0edc [ 13337A3FB17F2242487FD45488ED0485, C174F8652118876494336AB88A65D594E0E6CCBAB20CC6BA08E6B253855A01CA ] C:\Windows\System32\vssapi.dll
19:10:51.0161 0x0edc C:\Windows\System32\vssapi.dll - ok
19:10:51.0177 0x0edc [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\System32\taskschd.dll
19:10:51.0177 0x0edc C:\Windows\System32\taskschd.dll - ok
19:10:51.0177 0x0edc [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\System32\winmm.dll
19:10:51.0177 0x0edc C:\Windows\System32\winmm.dll - ok
19:10:51.0192 0x0edc [ 3F6D9269E7B3A754B1C2F8533DC7F318, C805967DD9974CE96471482F6DA26073638EF3D2623C82880324DD7C7E839E09 ] C:\Windows\System32\efscore.dll
19:10:51.0192 0x0edc C:\Windows\System32\efscore.dll - ok
19:10:51.0208 0x0edc [ 00A99DA54C14969A899ED316D16E9A9E, E960B567A955962C79FF19E73AD2CB1313BAA9B87F10B460BF2713C1415BC305 ] C:\Windows\System32\efssvc.dll
19:10:51.0208 0x0edc C:\Windows\System32\efssvc.dll - ok
19:10:51.0224 0x0edc [ 359C3AC547AA1D24EED35BE3AB3759DC, 5B9DFACD8B0704F8EC101D4DE36D0E720C1E272F18B07683B80D740CA0B55E6D ] C:\Windows\System32\efsutil.dll
19:10:51.0224 0x0edc C:\Windows\System32\efsutil.dll - ok
19:10:51.0239 0x0edc [ 60B037DB7FA23A40FD6F6C0EE9844852, 3AF944469F840C36336A400EAA66F64FDEEDA48F54DFEE493E4FB75DEF80D795 ] C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
19:10:51.0239 0x0edc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe - ok
19:10:51.0255 0x0edc [ B940289C83121046BD6A60ACC6028593, EBD1C2C0A8EBB201924536AB5C6E032C12B9E081A153CC079748E1D6D625F0DF ] C:\Windows\System32\vsstrace.dll
19:10:51.0255 0x0edc C:\Windows\System32\vsstrace.dll - ok
19:10:51.0270 0x0edc [ 0F572525619B6B9C0BD9456D323579F4, F350BBC6FEFA2FCFBDFBA35E546B5F45DD88D1F9A1F2C3016D3937E3836EB912 ] C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll
19:10:51.0270 0x0edc C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll - ok
19:10:51.0270 0x0edc [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\System32\msimg32.dll
19:10:51.0270 0x0edc C:\Windows\System32\msimg32.dll - ok
19:10:51.0286 0x0edc [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\System32\oleacc.dll
19:10:51.0286 0x0edc C:\Windows\System32\oleacc.dll - ok
19:10:51.0302 0x0edc [ 7E6B107120108B3A15BFECE0DE3201DB, 80E38DD0A8BD05C62E3569A916F50F0596F0C44A8F7EE56F44E101138B59858E ] C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
19:10:51.0302 0x0edc C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe - ok
19:10:51.0317 0x0edc [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\System32\winspool.drv
19:10:51.0317 0x0edc C:\Windows\System32\winspool.drv - ok
19:10:51.0333 0x0edc [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\System32\mstask.dll
19:10:51.0333 0x0edc C:\Windows\System32\mstask.dll - ok
19:10:51.0348 0x0edc [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] C:\Windows\System32\FDResPub.dll
19:10:51.0348 0x0edc C:\Windows\System32\FDResPub.dll - ok
19:10:51.0364 0x0edc [ 73F6C5223F7E9B5780DD4A6C30FCF569, 121A361A572EFC6AC964300DA93BF28DC11E55DDCA29A7C6E6FD12955FBA68B8 ] C:\Windows\System32\WSDApi.dll
19:10:51.0364 0x0edc C:\Windows\System32\WSDApi.dll - ok
19:10:51.0380 0x0edc [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] C:\Program Files\Acer\Registration\GREGsvc.exe
19:10:51.0380 0x0edc C:\Program Files\Acer\Registration\GREGsvc.exe - ok
19:10:51.0395 0x0edc [ DB846EECA70EE9D2E2FF31147C57B0F4, 1086310477697F43EB156314804B7E9100E04966EF3934F9F5E37112C5129954 ] C:\Windows\System32\webservices.dll
19:10:51.0395 0x0edc C:\Windows\System32\webservices.dll - ok
19:10:51.0411 0x0edc [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] C:\Windows\System32\IKEEXT.DLL
19:10:51.0411 0x0edc C:\Windows\System32\IKEEXT.DLL - ok
19:10:51.0426 0x0edc [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
19:10:51.0426 0x0edc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
19:10:51.0426 0x0edc [ 0036634E5C92BE109056F7E2380103A9, 52CD75711F9021BA99A3E1258E321C507AEE82D9C57B444806115C6463437A9E ] C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
19:10:51.0426 0x0edc C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe - ok
19:10:51.0442 0x0edc [ 89D90579E5FB1469CB0464F6512E42B7, 0E85C6935FEAA219C923FF63D17F7C3AF72FF5028E0FF95B66092C6DF64C665C ] C:\Windows\System32\fundisc.dll
19:10:51.0442 0x0edc C:\Windows\System32\fundisc.dll - ok
19:10:51.0458 0x0edc [ 4909501F53DA2EB6603848944C45F524, B362D95F6F78C22D28AAC0ABAAAB6B6D4B295D130EDA231AAFD7033422564983 ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
19:10:51.0458 0x0edc C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
19:10:51.0473 0x0edc [ FE480FA013C5E72DC2EB71161F9A500A, C0AA44A645F1CDCEFD02F78B1DDA42223CC4FD0F4099812DA5C301DC13896FF9 ] C:\Program Files\EgisTec MyWinLocker\x86\mwlOP.dll
19:10:51.0473 0x0edc C:\Program Files\EgisTec MyWinLocker\x86\mwlOP.dll - ok
19:10:51.0489 0x0edc [ D0488D2ACC6882348E8603DA602F0E62, BB2BF6819D13E2458E4AC2A2EA4F88F21F8EF78BD5D53E3D247CD1984B82B8C3 ] C:\Program Files\EgisTec MyWinLocker\x86\CryptoAPI.dll
19:10:51.0489 0x0edc C:\Program Files\EgisTec MyWinLocker\x86\CryptoAPI.dll - ok
19:10:51.0504 0x0edc [ 5845B1C54380FB980F68024B3A8B1E66, A7215D59B5C452F1494CFEC0DFC1E4ABE2D17EA0E1D07FBA062901BC3DED21AF ] C:\Windows\System32\vpnikeapi.dll
19:10:51.0504 0x0edc C:\Windows\System32\vpnikeapi.dll - ok
19:10:51.0520 0x0edc [ 5FF5E12F28725D14CAA3B408848ADFFC, 32C38FEC25F193EAB1C7EB567666D4F7E46117AC3C1F341C14C1DD5C926BFAAC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcr80.dll
19:10:51.0520 0x0edc C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcr80.dll - ok
19:10:51.0536 0x0edc [ A3C190D644E88DE5872FC7FEC7377E35, ABA02BA8E368B09CC9E523A0CCD2F96B0DA3ED14779E592495D478161AE5E4AC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcp80.dll
19:10:51.0536 0x0edc C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcp80.dll - ok
19:10:51.0551 0x0edc [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\System32\httpapi.dll
19:10:51.0551 0x0edc C:\Windows\System32\httpapi.dll - ok
19:10:51.0567 0x0edc [ 510C138564486FF926A3F773205C63D1, 50FBB8555C284ED22F71D99750899321B63E3B4C255174FE9B4F31084F9A34B1 ] C:\Windows\System32\HPZinw12.dll
19:10:51.0567 0x0edc C:\Windows\System32\HPZinw12.dll - ok
19:10:51.0598 0x0edc [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] C:\Windows\System32\nlasvc.dll
19:10:51.0598 0x0edc C:\Windows\System32\nlasvc.dll - ok
19:10:51.0614 0x0edc [ 140D9F911182357626165EA0BEB98C4F, 9B24047BF104895FCFDB68694934BDDD92DE98A0E6334A62E987C6DCBFFB9C5B ] C:\Windows\System32\ncsi.dll
19:10:51.0614 0x0edc C:\Windows\System32\ncsi.dll - ok
19:10:51.0614 0x0edc [ 28E2231BD34A39C854BDF3923AB2FF86, A95179068F7B86E04F976B724F155DA86253B7F4414F43DBD95F2058282B99E4 ] C:\Windows\System32\ssdpapi.dll
19:10:51.0614 0x0edc C:\Windows\System32\ssdpapi.dll - ok
19:10:51.0645 0x0edc [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] C:\Windows\System32\drivers\PEAuth.sys
19:10:51.0645 0x0edc C:\Windows\System32\drivers\PEAuth.sys - ok
19:10:51.0660 0x0edc [ 37E5E8FFBAD35605DAEEC3224EA0E465, E3A9BE275D3C8A3E143DF3A795964E9860A1F6C18BE36F8FE552E954435AC927 ] C:\Windows\System32\HPZipm12.dll
19:10:51.0660 0x0edc C:\Windows\System32\HPZipm12.dll - ok
19:10:51.0676 0x0edc [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] C:\Program Files\Acer\Acer VCM\RS_Service.exe
19:10:51.0676 0x0edc C:\Program Files\Acer\Acer VCM\RS_Service.exe - ok
19:10:51.0692 0x0edc [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] C:\Windows\System32\drivers\secdrv.sys
19:10:51.0692 0x0edc C:\Windows\System32\drivers\secdrv.sys - ok
19:10:51.0707 0x0edc [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] C:\Windows\System32\seclogon.dll
19:10:51.0707 0x0edc C:\Windows\System32\seclogon.dll - ok
19:10:51.0723 0x0edc [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] C:\Windows\System32\drivers\srvnet.sys
19:10:51.0723 0x0edc C:\Windows\System32\drivers\srvnet.sys - ok
19:10:51.0738 0x0edc [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] C:\Windows\System32\wiaservc.dll
19:10:51.0738 0x0edc C:\Windows\System32\wiaservc.dll - ok
19:10:51.0770 0x0edc [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] C:\Windows\System32\drivers\tcpipreg.sys
19:10:51.0770 0x0edc C:\Windows\System32\drivers\tcpipreg.sys - ok
19:10:51.0770 0x0edc [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] C:\Windows\System32\sysmain.dll
19:10:51.0770 0x0edc C:\Windows\System32\sysmain.dll - ok
19:10:51.0785 0x0edc [ B087F2B901570F6EF62F6C2E01A480F3, 9303CB715184D161F3BD8E9EE8799009375B17FA1BD5D7EF661D7CD7555AA251 ] C:\Windows\System32\wiatrace.dll
19:10:51.0785 0x0edc C:\Windows\System32\wiatrace.dll - ok
19:10:51.0801 0x0edc [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] C:\Windows\System32\trkwks.dll
19:10:51.0801 0x0edc C:\Windows\System32\trkwks.dll - ok
19:10:51.0816 0x0edc [ AAF7BEB63E2CC499834B608A85A55E4E, 06809AD771DD20624D715EA1DF85BDD3FD2919C5C139A7C67D6EB140A1D0A439 ] C:\Windows\System32\wsdchngr.dll
19:10:51.0816 0x0edc C:\Windows\System32\wsdchngr.dll - ok
19:10:51.0832 0x0edc [ F34CFADA6C48DAA41B996D24C7D8D3CA, D294DECC607A6ED7264BEC41FDA3BF12D3F2B3FAFAF55F0C5F2235A9066C97EC ] C:\Windows\System32\fdPnp.dll
19:10:51.0832 0x0edc C:\Windows\System32\fdPnp.dll - ok
19:10:51.0863 0x0edc [ 9A23A527D1095907743FF95E718E69C6, C869E0E52E0397B354C36E883A188814C556B0BC729916833AD29C84BE045A17 ] C:\Windows\System32\hpowiav1.dll
19:10:51.0863 0x0edc C:\Windows\System32\hpowiav1.dll - ok
19:10:51.0863 0x0edc [ F9EC9ACD504D823D9B9CA98A4F8D3CA2, 58DAD5111C598F14CB199FE6A61FA5918F29513B778A8664FD05EFAB3C665D4F ] C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:10:51.0863 0x0edc C:\Program Files\Acer\Acer Updater\UpdaterService.exe - ok
19:10:51.0879 0x0edc [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] C:\Windows\System32\wbem\WMIsvc.dll
19:10:51.0879 0x0edc C:\Windows\System32\wbem\WMIsvc.dll - ok
19:10:51.0894 0x0edc [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
19:10:51.0894 0x0edc C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok
19:10:51.0910 0x0edc [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] C:\Program Files\Windows Defender\MpSvc.dll
19:10:51.0910 0x0edc C:\Program Files\Windows Defender\MpSvc.dll - ok
19:10:51.0926 0x0edc [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\System32\sfc.dll
19:10:51.0926 0x0edc C:\Windows\System32\sfc.dll - ok
19:10:51.0941 0x0edc [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\System32\wbemcomn.dll
19:10:51.0941 0x0edc C:\Windows\System32\wbemcomn.dll - ok
19:10:51.0957 0x0edc [ 5B8E80EC0D621CDF920AB2141CDBC733, CDF4BD7BE5B6ADEDD06448DCDCF9FCA6FA9EC57788342FF42D0EF09F651C3245 ] C:\Program Files\Windows Defender\MpClient.dll
19:10:51.0957 0x0edc C:\Program Files\Windows Defender\MpClient.dll - ok
19:10:51.0972 0x0edc [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\System32\sfc_os.dll
19:10:51.0972 0x0edc C:\Windows\System32\sfc_os.dll - ok
19:10:51.0988 0x0edc [ 881D9F2D6E04E1C323050CF1574870F7, DA02C415977A2E50C3D1E96E227234E7195BD33903C446A17FBE0FA8D14A164F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:10:51.0988 0x0edc C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:10:52.0004 0x0edc [ 701C9EB15E1E23D22F7C7184C0506673, 1CD59E8B8889C93B55F600DA1A7246810E8EAB725EFEF80327AC96344AC596A6 ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:10:52.0004 0x0edc C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:10:52.0019 0x0edc [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042, 8E9D77A216D8DD2BE2B304E60EDF85CE825309E67262FCFF1891AEDE63909599 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL
19:10:52.0019 0x0edc C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok
19:10:52.0035 0x0edc [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\System32\SensApi.dll
19:10:52.0035 0x0edc C:\Windows\System32\SensApi.dll - ok
19:10:52.0035 0x0edc [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\System32\wbem\fastprox.dll
19:10:52.0035 0x0edc C:\Windows\System32\wbem\fastprox.dll - ok
19:10:52.0050 0x0edc [ 5826854E4E420E29F59C2865F0FA562F, F62B0AD7C2C0390A715B018180C2C9E6349FEFF605B9C02426099EE632A65D97 ] C:\Program Files\Windows Defender\MpEvMsg.dll
19:10:52.0050 0x0edc C:\Program Files\Windows Defender\MpEvMsg.dll - ok
19:10:52.0066 0x0edc [ 4F8CCD3E7D9F17A7C60FA0AE2466CACF, 77849DD78145EA879E63A42AE1481C0DEA3E16D89BB067229203317E9EDD340D ] C:\Windows\System32\wer.dll
19:10:52.0066 0x0edc C:\Windows\System32\wer.dll - ok
19:10:52.0082 0x0edc [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\System32\ntdsapi.dll
19:10:52.0082 0x0edc C:\Windows\System32\ntdsapi.dll - ok
19:10:52.0097 0x0edc [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\System32\wbem\wbemprox.dll
19:10:52.0097 0x0edc C:\Windows\System32\wbem\wbemprox.dll - ok
19:10:52.0113 0x0edc [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
19:10:52.0113 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
19:10:52.0128 0x0edc [ E4561704CBFA193761743E5AF746C669, DCABD67A2B988BEF70BDD0613B4271BCFD572FAF8018CFA2EA60B8AEFE08C73B ] C:\Windows\System32\msxml3.dll
19:10:52.0128 0x0edc C:\Windows\System32\msxml3.dll - ok
19:10:52.0144 0x0edc [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5, 933DDD0708717B6BF2963B2D7ADE0B61A77E568C91025156A32465A78D1E4ABF ] C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll
19:10:52.0144 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
19:10:52.0160 0x0edc [ 3960CEB4A6B13784252D827ECF65CED3, 65108560A5D9FFBA0BC23068C871955D862F3CA7BA4939BB9DD04FA803D6C162 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
19:10:52.0160 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
19:10:52.0175 0x0edc [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] C:\Windows\System32\drivers\srv2.sys
19:10:52.0175 0x0edc C:\Windows\System32\drivers\srv2.sys - ok
19:10:52.0191 0x0edc [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] C:\Windows\System32\drivers\srv.sys
19:10:52.0191 0x0edc C:\Windows\System32\drivers\srv.sys - ok
19:10:52.0191 0x0edc [ 1530DFBDFD68AAD1FD5FDA52EA44925E, 6C764D50A1E43217306896879EBCE873A680400373400E8941A0F880C2151E33 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
19:10:52.0206 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
19:10:52.0222 0x0edc [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584, 27310A5C2808BF0931130F36A4EC1918CF48C351B95108097F28E07BB555DA85 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
19:10:52.0222 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
19:10:52.0238 0x0edc [ EEA7E552C2C992CFD4B50857010F39EA, 8CEC6EB1FB1C526295D0AFF2C144839D8ADA3CB301E4653C6C77433224277C98 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
19:10:52.0238 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
19:10:52.0253 0x0edc [ 5E2623439A9936D320FE8DC1AB84526A, ECFF83E5DD754ED65E485BE93519E1E7377196510FF683FA849DBEB72D80FA47 ] C:\Program Files\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
19:10:52.0253 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
19:10:52.0253 0x0edc [ 8F1656DEB2E861D608909792F5A68C3B, 53DCC124E507F7CDC6A0252E87B9233B7FF467AA8B61D812419A6EC3BF3C1142 ] C:\Program Files\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
19:10:52.0269 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
19:10:52.0269 0x0edc [ 78193AA97D679531522C3E2FA4A5EDFE, 882F864F0C6734CF7B7A70D28BB29703199B9D675AD74BE828C55CE89E48E832 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
19:10:52.0269 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
19:10:52.0284 0x0edc [ 793A19EAB66BB232F019DFF9D1977A41, C074122351F10D3C707CBC35B2CCA2E53C697FA8A19ECE1AD3B2727C8C9919FF ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
19:10:52.0284 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
19:10:52.0300 0x0edc [ BA726152513EC650EED219B7995DE852, 4AFE666E6D387C14EEF2044E978B5F09AF8DDA6559320B42455FCA849869D26C ] C:\Program Files\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
19:10:52.0300 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
19:10:52.0316 0x0edc [ 77C8E1779E784189EA29D9A5ECCDD9E9, 3CED9F6DB8E0C1CC392337DF247406D3BFF91E1FFBA7676B72544100135674F2 ] C:\Program Files\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
19:10:52.0316 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
19:10:52.0331 0x0edc [ AFD87B70E2C48EC080CA28ADCC3175B5, 58CCB64F5FED5B08EBFF5AC3FB4C60FEAFF6F901428D0B1B69CEC471A2CD7A8A ] C:\Program Files\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
19:10:52.0331 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
19:10:52.0347 0x0edc [ 5ECEA5F29DCEE8D320454C86A1CB3366, 5D37DD1ECCB1617D421022155ED8A71E4E7F7389A570F34943BAAEAC3CF32FB4 ] C:\Program Files\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
19:10:52.0347 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
19:10:52.0362 0x0edc [ 18873D2B1ABBB8826ED18F840CB8E0D3, 93DCA3F67451B5824D8D47F8C438041AA86FEB6D504B4FCE6ED3486357A3FB26 ] C:\Program Files\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
19:10:52.0362 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
19:10:52.0378 0x0edc [ 79ECBC83B844F7A474C66BE77AAF7180, D245681F7BD050E32F5CD120D55913669610A5182DBA0C57261C024181D83DCD ] C:\Program Files\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
19:10:52.0378 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
19:10:52.0394 0x0edc [ 069006BF253F32CD980E67E8671DFE3C, 836FDB3819174770A71CE0A3F1CFBA92AC6DC6328687F088A3E932E807ECC922 ] C:\Program Files\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
19:10:52.0394 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
19:10:52.0425 0x0edc [ 5925F32114BF5ACF50C66500433B35CC, 6E0AA93DCD2C6F8647C1CA202436CE87D2B6728BEC05570261213188ED1C63AE ] C:\Program Files\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
19:10:52.0425 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
19:10:52.0440 0x0edc [ 03C7D7A1553E3009CEBE3013A578B0ED, CBAC9C2E30C0A5D93E8218FA8A51FD23D4D9CC7751993A822532644358664784 ] C:\Program Files\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
19:10:52.0440 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
19:10:52.0456 0x0edc [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF, 862DA57213A513C911338D1BAB13C9C21E9BF55B8A2961D4C31DA53C38F8528B ] C:\Program Files\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
19:10:52.0456 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
19:10:52.0472 0x0edc [ 2499E32320905E68F9710527593A0EDB, ED9CD68E82F71131BDA45618F222088676D35EC6B6F8737514835AFA6E0C053F ] C:\Program Files\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
19:10:52.0487 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
19:10:52.0503 0x0edc [ 591EA8B6991D99720B36EBC1CC16CEA8, CC2D9EB882292F4301246218FADCB02424FF143AF0DD182F29A1F432B41645D4 ] C:\Program Files\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
19:10:52.0503 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
19:10:52.0518 0x0edc [ A4487F6CEFED12F2C1257F6DBCDAEB1E, 9E590453F88C49EDF608649B84943F04E8831FE100018648C3CB85EFCD37942A ] C:\Program Files\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
19:10:52.0518 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
19:10:52.0534 0x0edc [ 35989A505DEEC24DEF8D327D22FF14D4, 31267D0FA4F75B35D92CAC5789297CE96CE53238CA83422F5C46535E383C32B6 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
19:10:52.0534 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
19:10:52.0550 0x0edc [ 9D825B4E6B28F93F326538515EFC880B, 11A53D5AA0D8BF2FCD29AF89833D09EC8D2589BC4CC6430826B415AE017C3AD3 ] C:\Program Files\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
19:10:52.0550 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
19:10:52.0565 0x0edc [ D9BFF3E59CBE32FE72D6D68F6AF348BD, E3763C28524190653DE23F7FB0B70F0EE688496089DE94DCE998EFE88F0F4432 ] C:\Program Files\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
19:10:52.0565 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
19:10:52.0565 0x0edc [ E84CB5D899098DDEA6D013057C9E4B5F, 2D092BAF2D1B8F2A0CA5BBA9E73AC777E171D37268EA363A730A3596F8DEDDF0 ] C:\Program Files\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
19:10:52.0565 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
19:10:52.0581 0x0edc [ 585EB475E7AF55C9065256E8FFB751A1, 5AE557013435DF993F0E872B90A94CBB9E80FA8A080469C300EBCEE62CABA92F ] C:\Windows\System32\wbem\wbemcore.dll
19:10:52.0581 0x0edc C:\Windows\System32\wbem\wbemcore.dll - ok
19:10:52.0596 0x0edc [ 5AE88135C6A86FCD67BA16AFBB1C8389, 0FC750B5C84F1AFBE93E8A23410360F4B068D367A9AF6FF2E3F6160DA5005DE5 ] C:\Windows\System32\wbem\esscli.dll
19:10:52.0596 0x0edc C:\Windows\System32\wbem\esscli.dll - ok
19:10:52.0612 0x0edc [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] C:\Windows\System32\iphlpsvc.dll
19:10:52.0612 0x0edc C:\Windows\System32\iphlpsvc.dll - ok
19:10:52.0628 0x0edc [ CE292C4C10B8DB6070F262EA2733F0DC, 0A685263DA0277F2D215C4C22BF39E2F869B632B42B8C992E068129F57177BE1 ] C:\Windows\System32\sqmapi.dll
19:10:52.0628 0x0edc C:\Windows\System32\sqmapi.dll - ok
19:10:52.0643 0x0edc [ A399514D3B28C9A3453A486BBAAFF1C7, 487CAA68CF4EE0C9DC26975C694A2780ADEFB687D1EDF929CE6E1C7E3722FFE9 ] C:\Windows\System32\wdscore.dll
19:10:52.0643 0x0edc C:\Windows\System32\wdscore.dll - ok
19:10:52.0659 0x0edc [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\System32\wbem\wbemsvc.dll
19:10:52.0659 0x0edc C:\Windows\System32\wbem\wbemsvc.dll - ok
19:10:52.0674 0x0edc [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] C:\Windows\System32\srvsvc.dll
19:10:52.0674 0x0edc C:\Windows\System32\srvsvc.dll - ok
19:10:52.0690 0x0edc [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] C:\Windows\System32\browser.dll
19:10:52.0690 0x0edc C:\Windows\System32\browser.dll - ok
19:10:52.0706 0x0edc [ E4B72E71EC37A59FE574A998A0C0EB9B, C17B06C936FC47B6AA5221ABF1DDE283F59E5751BEE9CDBCCBAF25CD4E7232AD ] C:\Windows\System32\netmsg.dll
19:10:52.0706 0x0edc C:\Windows\System32\netmsg.dll - ok
19:10:52.0721 0x0edc [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\System32\wbem\wmiutils.dll
19:10:52.0721 0x0edc C:\Windows\System32\wbem\wmiutils.dll - ok
19:10:52.0737 0x0edc [ 15C42334805B711FBF0C788A1D751528, 3D43D6D2703451B1C0CA4A4D5B82F31D6507BAED3CEF6BC816C8639D23B02A59 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
19:10:52.0737 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
19:10:52.0752 0x0edc [ 9C879E1C3B27085FB46EFECCD7120D51, B2258E33C2E7646D85264DD8EF35FFD7319481EF7311636B91140D7D9A119F89 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
19:10:52.0752 0x0edc C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok
19:10:52.0768 0x0edc [ 371E3B05894549113D07CD3081ED55EF, 9973678AC0F50B1F02B379B1D4A7DDF317B724D65BE3FF635FD751EDD1D96B5A ] C:\Windows\System32\wbem\repdrvfs.dll
19:10:52.0768 0x0edc C:\Windows\System32\wbem\repdrvfs.dll - ok
19:10:52.0784 0x0edc [ AE9898D5600A232CD8AE3298692162E5, 8B94BA9C404B8A21CE023335960E77C73245FB30015161EEFF48573DDB7E6922 ] C:\Windows\System32\clusapi.dll
19:10:52.0784 0x0edc C:\Windows\System32\clusapi.dll - ok
19:10:52.0799 0x0edc [ 89E783711AF91AF09E1EF30EF3107446, CA91DABED7508A86A4AFA5F99A4A78D0BA3577168B04C8E3462FC4D55FA33FFD ] C:\Windows\System32\sscore.dll
19:10:52.0799 0x0edc C:\Windows\System32\sscore.dll - ok
19:10:52.0815 0x0edc [ 2AF094C822BD6094F14A8E85FB51D52A, F70A4FEC66E64245237D9D1A4C2C87168A26F224FCE648A3D7065E95259887D2 ] C:\Windows\System32\resutils.dll
19:10:52.0815 0x0edc C:\Windows\System32\resutils.dll - ok
19:10:52.0830 0x0edc [ 6383C60EC0133B14F5705F96369421B2, EAB3FA2344B853148F199F744E716FBB8E9331B9DB588F784274599B6BCE2335 ] C:\Windows\System32\hnetcfg.dll
19:10:52.0830 0x0edc C:\Windows\System32\hnetcfg.dll - ok
19:10:52.0830 0x0edc [ 45D9F6CD2469CDB6A640DD4BD2B01471, 21704ADB83B26DD9C2D4D248FE61F3FEC2003D6748BB6A830334F0FDA9610362 ] C:\Windows\System32\nci.dll
19:10:52.0830 0x0edc C:\Windows\System32\nci.dll - ok
19:10:52.0846 0x0edc [ 99B9343280AF6A4C0F27CF2E28E94BBF, 0E29E05E893B2516A1BB5B1D5B7AC91BB55E2B5D463C8C50765328C10BCEA67E ] C:\Windows\System32\dssenh.dll
19:10:52.0846 0x0edc C:\Windows\System32\dssenh.dll - ok
19:10:52.0862 0x0edc [ 3CDE2911462FEC80064A409C07710C06, DBEC8669B1B8FA68750B17008C4328B223F8263EBE02C550780926C23D38D7D3 ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:10:52.0862 0x0edc C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:10:52.0877 0x0edc [ A4CC7227A452C4909F9499D91B184364, 56111E57D17553BE3EAB8DA2DC42C7132E4458549AFFC08975B7A7204D8F5E76 ] C:\Windows\System32\ncobjapi.dll
19:10:52.0877 0x0edc C:\Windows\System32\ncobjapi.dll - ok
19:10:52.0893 0x0edc [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\System32\wlanapi.dll
19:10:52.0893 0x0edc C:\Windows\System32\wlanapi.dll - ok
19:10:52.0908 0x0edc [ B350509B6C9296529BC464C60FEEAEF1, CC653ED001FE6A2BE5A9687572A70CEF9FAB258A57896643379E5D6C1D8E4F1F ] C:\Windows\System32\wbem\wbemess.dll
19:10:52.0908 0x0edc C:\Windows\System32\wbem\wbemess.dll - ok
19:10:52.0924 0x0edc [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\System32\netshell.dll
19:10:52.0924 0x0edc C:\Windows\System32\netshell.dll - ok
19:10:52.0940 0x0edc [ 90EB173A54E28CA09B89D4AFDEBC2F1A, 3657D6E7BB40DAB75C2F06AA13C1EFB87EC1B9777792D821987162F30A1AA6AB ] C:\Program Files\AVAST Software\Avast\defs\14040802\exts.dll
19:10:52.0940 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\exts.dll - ok
19:10:52.0940 0x0edc [ 05E0E444632AEF1E1D778D6E5AE5D621, BA76F22A29CD623DCECE4ECA98347E99DAF22F8DCAB014639061F7077C17BDE5 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
19:10:52.0940 0x0edc C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
19:10:52.0955 0x0edc [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] C:\Windows\System32\wdi.dll
19:10:52.0955 0x0edc C:\Windows\System32\wdi.dll - ok
19:10:52.0986 0x0edc [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] C:\Windows\System32\appinfo.dll
19:10:52.0986 0x0edc C:\Windows\System32\appinfo.dll - ok
19:10:52.0986 0x0edc [ 7E82616BEE76BF5EAA5B30F681414E21, 2138D743C4C09ECD829E194CA42934CB044BFF400921DA9B5FA50371E191656E ] C:\Windows\System32\perftrack.dll
19:10:52.0986 0x0edc C:\Windows\System32\perftrack.dll - ok
19:10:53.0018 0x0edc [ 8B794AE6D5C7D42092804BC39A2EB8F6, 0C8078442EABA31D48019F1A3B7941CC19D9B3AA571FFA5DCD4E19F67DEBF723 ] C:\Windows\System32\aepic.dll
19:10:53.0018 0x0edc C:\Windows\System32\aepic.dll - ok
19:10:53.0033 0x0edc [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\System32\npmproxy.dll
19:10:53.0033 0x0edc C:\Windows\System32\npmproxy.dll - ok
19:10:53.0049 0x0edc [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
19:10:53.0049 0x0edc C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
19:10:53.0064 0x0edc [ 8CBDF28465ABDC5917053B38E1FFBC05, 825E05C704A460C208BF4435140882DF291EE8651B445B1277ED9DA54A92D506 ] C:\Program Files\AVAST Software\Avast\aswStreamFilter.dll
19:10:53.0064 0x0edc C:\Program Files\AVAST Software\Avast\aswStreamFilter.dll - ok
19:10:53.0080 0x0edc [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] C:\Windows\System32\wpdbusenum.dll
19:10:53.0080 0x0edc C:\Windows\System32\wpdbusenum.dll - ok
19:10:53.0096 0x0edc [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\System32\shfolder.dll
19:10:53.0096 0x0edc C:\Windows\System32\shfolder.dll - ok
19:10:53.0096 0x0edc [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] C:\Windows\System32\netman.dll
19:10:53.0096 0x0edc C:\Windows\System32\netman.dll - ok
19:10:53.0111 0x0edc [ ECF036299AA554B5E0455262857B39D0, E7A08E4AA1677291FB55E1B43511B912D45676652E35C6BA75D1604A8BE5B1D0 ] C:\Windows\System32\diagperf.dll
19:10:53.0111 0x0edc C:\Windows\System32\diagperf.dll - ok
19:10:53.0127 0x0edc [ E98278865E8DABA21CFE5FE4BE34210A, 3BB431A9F6476EA98C17DF46BA5DFA265E74328D84875E402236ED12E50B6330 ] C:\Windows\System32\PortableDeviceApi.dll
19:10:53.0127 0x0edc C:\Windows\System32\PortableDeviceApi.dll - ok
19:10:53.0142 0x0edc [ D99621C0735B21DCC8BC4FEF02F379EF, C9FAD74DD80B6CCA95B83B767BB55644E775E8DC3FFC05CD89AEF16686F902FD ] C:\Windows\System32\Apphlpdm.dll
19:10:53.0142 0x0edc C:\Windows\System32\Apphlpdm.dll - ok
19:10:53.0158 0x0edc [ F8E882C10AF4C29E378D1E28D4817CB1, 1164096E044FA9B38CCC462315B9A2F7C43C472091F539F6A4BF7B5EAA389410 ] C:\Windows\System32\pnpts.dll
19:10:53.0158 0x0edc C:\Windows\System32\pnpts.dll - ok
19:10:53.0174 0x0edc [ 7FFD52D73352806969D424EF327D10A7, DD44B084F052EF798997D7A8578E98DD4EF3F0E2A0C522DA2CC169D362C7B900 ] C:\Windows\System32\radardt.dll
19:10:53.0174 0x0edc C:\Windows\System32\radardt.dll - ok
19:10:53.0189 0x0edc [ F0016853FA3F38F55FD868FF74C0359B, 49A6A6D610591D0F2FF8A88C8E72D6DCABB8C5FE5D3E995F0CE0E8FC073BA289 ] C:\Windows\System32\wdiasqmmodule.dll
19:10:53.0189 0x0edc C:\Windows\System32\wdiasqmmodule.dll - ok
19:10:53.0205 0x0edc [ C693E642ACFBDD76433AF6BE3C3EEE6F, 5241C30CCB095B10B10AD11F42F57B2DEA362C7F6DA36A9A5B23E4DFF113CFD7 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:10:53.0205 0x0edc C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:10:53.0220 0x0edc [ F7FE730CE31B54145DEE1F1482BCCDD7, E7F0F59AB2B0D5EC5FE9B966006D06FE0FCEDBA99E2A4A8A6D410A0490F1F017 ] C:\Windows\System32\ndiscapCfg.dll
19:10:53.0220 0x0edc C:\Windows\System32\ndiscapCfg.dll - ok
19:10:53.0236 0x0edc [ 761A3A4038C1FD4F5795427907C28484, B9338BC022DC5B8C0502E6A88E7D76E03C19A828861A922360B147441FB09285 ] C:\Windows\System32\rascfg.dll
19:10:53.0236 0x0edc C:\Windows\System32\rascfg.dll - ok
19:10:53.0252 0x0edc [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\System32\mprapi.dll
19:10:53.0252 0x0edc C:\Windows\System32\mprapi.dll - ok
19:10:53.0267 0x0edc [ 9A7B54D57594233EEB17892BAD309970, 64EF2A51BFA13455038DCB6773F9DEF6FD46FAA1F1CF47E7B61D3E64466DA5AA ] C:\Windows\System32\mprmsg.dll
19:10:53.0267 0x0edc C:\Windows\System32\mprmsg.dll - ok
19:10:53.0267 0x0edc [ 04B88428A872390D235BE52D38A9D4EF, F6954D514B67547738EB012456342D65289B0B18A0304BBAD5BDAA3436181C77 ] C:\Windows\System32\dot3api.dll
19:10:53.0267 0x0edc C:\Windows\System32\dot3api.dll - ok
19:10:53.0283 0x0edc [ CAFC0B884E5590B5E80D84F592388B3D, FFCA66AEB6869BCC7A469C5E968B20A2DFA49D97E4E598CC36E839047FF7AB2B ] C:\Windows\System32\tcpipcfg.dll
19:10:53.0283 0x0edc C:\Windows\System32\tcpipcfg.dll - ok
19:10:53.0298 0x0edc [ 8063046AA70B97CA9985672B8848FB2E, C7A7F2D216D1F0D7F28A22E4933DB3D821AC52CC2EF7AE8BA08D18104FCF8B81 ] C:\Windows\System32\wlanhlp.dll
19:10:53.0298 0x0edc C:\Windows\System32\wlanhlp.dll - ok
19:10:53.0314 0x0edc [ C5C867CD7EFAC60D5021223E374DEEC5, 197FEE8F02DE348E75771AC9AD748EFB29939F1AAF02DA6555181EEF787FD099 ] C:\Windows\System32\dimsjob.dll
19:10:53.0314 0x0edc C:\Windows\System32\dimsjob.dll - ok
19:10:53.0330 0x0edc [ 9529E946B8496C1605A9188FFD49DED8, C8AB36A212E4C896D39F6120B72829585E6AFDEACA7DF7FD6D4A6EB8F9C6FF98 ] C:\Windows\System32\drivers\aswstm.sys
19:10:53.0330 0x0edc C:\Windows\System32\drivers\aswstm.sys - ok
19:10:53.0345 0x0edc [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\System32\runonce.exe
19:10:53.0345 0x0edc C:\Windows\System32\runonce.exe - ok
19:10:53.0361 0x0edc [ 14486EB6AF542F2BD3239F7FC3E713F7, C084C653CF6C63D7B4DB08CBDE2CAF059019D276BCACD923A29D22E69055012C ] C:\Windows\System32\pautoenr.dll
19:10:53.0361 0x0edc C:\Windows\System32\pautoenr.dll - ok
19:10:53.0361 0x0edc [ 74AF6AA2E8B3180AADAE5FE8813CB1CD, FB1C334A76B4E51B1C91141CB7E8B435FE4A8403072112B5F1BAC917649FFC22 ] C:\Windows\System32\localspl.dll
19:10:53.0361 0x0edc C:\Windows\System32\localspl.dll - ok
19:10:53.0376 0x0edc [ 78DE417B7921DACA072059E6BF410FC7, 8A32772A5500F6076D207EA7194C67B4147BCE28DEA4B582C2129BEC4A42D7CD ] C:\Windows\System32\wshnetbs.dll
19:10:53.0376 0x0edc C:\Windows\System32\wshnetbs.dll - ok
19:10:53.0392 0x0edc [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\System32\cmd.exe
19:10:53.0392 0x0edc C:\Windows\System32\cmd.exe - ok
19:10:53.0408 0x0edc [ 629181C26A78EB66B0B4E774E5AC2882, DE39D01ADC4123C81EF77B24D7FC2F66C27CC2D31248EF53C52CD31AC90A95CE ] C:\Windows\System32\spoolss.dll
19:10:53.0408 0x0edc C:\Windows\System32\spoolss.dll - ok
19:10:53.0423 0x0edc [ FDD8C7A73D5DDB9F668A1334D27E4488, 18DCBFBB57785B3983790AF680EE74DC007CDBB4D6ABD13DB897E57D329C6EC9 ] C:\Program Files\AVAST Software\Avast\Setup\instup.exe
19:10:53.0423 0x0edc C:\Program Files\AVAST Software\Avast\Setup\instup.exe - ok
19:10:53.0439 0x0edc [ 03CF941D031F30272D3063E5A4D686F5, 641189DA98156FC8DFABF766EB34726F64E5901AF5F74B42C392C218C892F179 ] C:\Windows\System32\PrintIsolationProxy.dll
19:10:53.0439 0x0edc C:\Windows\System32\PrintIsolationProxy.dll - ok
19:10:53.0454 0x0edc [ 126F8331BD023178C7F0EF2F5EDE16B3, F56DDCC9F282274F2EB073CE33B0CAB7EFC759B9C39B19909FE901E89DA0307F ] C:\Windows\System32\FXSMON.dll
19:10:53.0454 0x0edc C:\Windows\System32\FXSMON.dll - ok
19:10:53.0470 0x0edc [ C52CE534397E1D3A442FB4C88A3CBE42, 4289052A24780CEEE9C96290B47FDD596B7D4426F776BB7B2ACCBB6E01B41E52 ] C:\Windows\System32\msonpmon.dll
19:10:53.0470 0x0edc C:\Windows\System32\msonpmon.dll - ok
19:10:53.0470 0x0edc [ 67B5955F5F2F36D58993EB87101B3D2B, 09BC41D0A9D469E1F9C49308ED81FF31DCC0A1CCC8FEBDBB554F60941C35B9C9 ] C:\Windows\System32\ieframe.dll
19:10:53.0486 0x0edc C:\Windows\System32\ieframe.dll - ok
19:10:53.0486 0x0edc [ B390C1D825C7687493BEDE237C6C2F25, 969C456E52695E8AECDDF80995F05D18F6F686AA1AE58A9A661C3069CDF5B1BD ] C:\Windows\System32\tcpmon.dll
19:10:53.0486 0x0edc C:\Windows\System32\tcpmon.dll - ok
19:10:53.0501 0x0edc [ A5DBC74C5B91CF6E43B73D62936F8186, F4475DB2828729C3ACAD9DB89F5D5C50885742A99E222CE8BF31B5143A20ECCD ] C:\Program Files\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
19:10:53.0501 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
19:10:53.0517 0x0edc [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\System32\snmpapi.dll
19:10:53.0517 0x0edc C:\Windows\System32\snmpapi.dll - ok
19:10:53.0532 0x0edc [ 6357E2B68753A1F5CF4A68A25C4FD14A, F56BFEEACBB9DAE084F4C275DF0086091F5B83DE7183FA33F4445CD31FBB44E3 ] C:\Windows\System32\wsnmp32.dll
19:10:53.0532 0x0edc C:\Windows\System32\wsnmp32.dll - ok
19:10:53.0548 0x0edc [ 79737E0F7D25DE8405CB34D4C9882253, 798E44BAE6CD4ECBC801ACE4089E18388ABD18744B901F53452D8103081DE967 ] C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
19:10:53.0548 0x0edc C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL - ok
19:10:53.0564 0x0edc [ 3CEF96890064B3CDB190963157F24BAC, 4998E9FE3660E8FDA102B148C3CE6B26D607420DF9B8AAE5927CC312185833BE ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
19:10:53.0564 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
19:10:53.0579 0x0edc [ 923CDD30092DB73EC4A0EBCDDD16C686, 83F94BE7C324FFADCA13780C617A8CAA1C7CD80F205EACA8FBADA83865D1E0D3 ] C:\Windows\System32\usbmon.dll
19:10:53.0579 0x0edc C:\Windows\System32\usbmon.dll - ok
19:10:53.0595 0x0edc [ A8EB761DE499242BECF153B2B34F020E, 3C6F477B5143FCE607FDB088AE471C7037E2BAC01D8CE8C57B5CF1BE57E78D46 ] C:\Windows\System32\WSDMon.dll
19:10:53.0595 0x0edc C:\Windows\System32\WSDMon.dll - ok
19:10:53.0610 0x0edc [ 5BFB02BDA2700D078400E149BC4CF87A, 2A79CE238D6009D30312C75484640CDA476D1E2A377655E77CA2DD4C003CD98F ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
19:10:53.0610 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
19:10:53.0626 0x0edc [ 3C29B98149A28FEDA42796D3EA904F62, 4080EBBE5AD9AF5F8F64FF3CB1B8D52D220B7556520BBA704418967692A72892 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
19:10:53.0626 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
19:10:53.0626 0x0edc [ CD72C6406BA561BED6D42CB145E55307, F5DD79FCE5CAA5049C74462B366509356B8B5CCB68E14586ED95CDF98F307787 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
19:10:53.0626 0x0edc C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
19:10:53.0642 0x0edc [ 38ADD53ECFC5F040EF1C647ECD22A2A4, 7E6BB228494A1F4B12CF377F7F7BC915FD299B8919822B0F3323FEBB04BB5B8F ] C:\Program Files\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
19:10:53.0642 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
19:10:53.0657 0x0edc [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F, 8B540FE53652FEFB9AB9E6E72BE6876A75B6E6FABFB5028C5C717A406FDBF70B ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
19:10:53.0673 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
19:10:53.0673 0x0edc [ C2A44C942EC023CF2D5CF144B0F5D146, E7990DDB097C325926DD3BF4BA2695260D670607FC2C5506DD21B3319FB002EA ] C:\Windows\System32\spool\prtprocs\w32x86\HPZPPWN7.DLL
19:10:53.0673 0x0edc C:\Windows\System32\spool\prtprocs\w32x86\HPZPPWN7.DLL - ok
19:10:53.0688 0x0edc [ F348280907B38FDBDB3CEF55D456E149, 526A1A46491401EA9BA241ADA76A610E8D98831F8D2C82712B931B481EA5529E ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
19:10:53.0688 0x0edc C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
19:10:53.0704 0x0edc [ 43B02D7C43B77775F1DA63B1D1014F38, FA4BA69D63B97961457D66C3E308368EFAC398FAB336C686359EE1CE6D1C7871 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
19:10:53.0704 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
19:10:53.0720 0x0edc [ FC415B303B1ECF80B5F130A1F7203D02, ACC51D8CCF02E5EFB495BF66538B5F42CFFE5A186BC5762CC286E98509FC5DC4 ] C:\Windows\System32\win32spl.dll
19:10:53.0720 0x0edc C:\Windows\System32\win32spl.dll - ok
19:10:53.0735 0x0edc [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
19:10:53.0735 0x0edc C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
19:10:53.0751 0x0edc [ C4096CA42199428B3D63DC206C197F0E, 76336CD81608650E5AAD02D59D2AC752E7BDD057314BBC7334CECF74D1EAB587 ] C:\Windows\System32\FXSRESM.dll
19:10:53.0751 0x0edc C:\Windows\System32\FXSRESM.dll - ok
19:10:53.0766 0x0edc [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\System32\certcli.dll
19:10:53.0766 0x0edc C:\Windows\System32\certcli.dll - ok
19:10:53.0782 0x0edc [ 32F4D839CA942236F933A78C3DC404F9, EF925A407D2FC4C8806A6F3EA85BA5C2BC6651EDAADBA29F306034AA9EBC2A54 ] C:\Windows\System32\spool\drivers\w32x86\3\unidrvui.dll
19:10:53.0782 0x0edc C:\Windows\System32\spool\drivers\w32x86\3\unidrvui.dll - ok
19:10:53.0798 0x0edc [ 03F364F70669D6CCDFBB648C735A1CC1, 6D9DAE8350FB2C8B5FB4F2E11896CF7B49FB9CC297178B7C0C6E1D0D2838DF46 ] C:\Windows\System32\tcpmib.dll
19:10:53.0798 0x0edc C:\Windows\System32\tcpmib.dll - ok
19:10:53.0813 0x0edc [ BA54A966F873B043FDFCDA0B77937855, D410F6919D7A6E11615EEE2D20267F258B5A9B934E255D9B9CAF20CC77B1EDB5 ] C:\Windows\System32\mgmtapi.dll
19:10:53.0813 0x0edc C:\Windows\System32\mgmtapi.dll - ok
19:10:53.0829 0x0edc [ 640A476C8867AEAAD8FF9F59A61AFE2F, 075E550CF94840B806E88772A2C05DC12B68B0B55ED4A2A0B5BD69539D67A40E ] C:\Windows\System32\PrintIsolationHost.exe
19:10:53.0829 0x0edc C:\Windows\System32\PrintIsolationHost.exe - ok
19:10:53.0844 0x0edc [ FC70115B86B7BC41467BE7A5696C44C5, 8ED2828F49F679D58B97F17865823C1349993CFC6B9FB7E0BF06F88B3EDD04C6 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL
19:10:53.0844 0x0edc C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL - ok
19:10:53.0860 0x0edc [ 23C3C398E352D5DB6AEFE65736DFD0B5, 3CC9A36279C8F9EC4FFE37A0370C67125E4AE7A2E629A48181546053913DC15F ] C:\Windows\System32\spool\drivers\w32x86\3\HPZUIWN7.DLL
19:10:53.0860 0x0edc C:\Windows\System32\spool\drivers\w32x86\3\HPZUIWN7.DLL - ok
19:10:53.0876 0x0edc [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
19:10:53.0876 0x0edc C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
19:10:53.0891 0x0edc [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
19:10:53.0891 0x0edc C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
19:10:53.0891 0x0edc [ 765A886E3E0557E5A66D95BCFBD0F3AC, 8BFE13473234C88AA0A4FB1C91467D5D93BD23ECA4B420A571902CC11537052E ] C:\Windows\System32\compstui.dll
19:10:53.0891 0x0edc C:\Windows\System32\compstui.dll - ok
19:10:53.0907 0x0edc [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\System32\shdocvw.dll
19:10:53.0907 0x0edc C:\Windows\System32\shdocvw.dll - ok
19:10:53.0922 0x0edc [ 73EF5DBF500742B11C242465CD78489C, 68FF6480D5A3505F9E264FAEE3BFC156A6C172E0A1463CD797489B5EC8F354EB ] C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe
19:10:53.0922 0x0edc C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe - ok
19:10:53.0938 0x0edc [ 29BC473072568C072EC8B176498DE996, D3A4DB88BECA8AB3F8722E499548EFEC63022C1CE38F526AFBDA76DDBA8E9064 ] C:\Windows\System32\CertEnroll.dll
19:10:53.0938 0x0edc C:\Windows\System32\CertEnroll.dll - ok
19:10:53.0954 0x0edc [ A8BEF95B76CF47548C35DEB25DED133F, 433D2AB65F6CBFA8C711597785F828D5D6F8690B7D69D131B19F0C2A1E853F90 ] C:\Program Files\AVAST Software\Avast\aswJSScan.dll
19:10:53.0954 0x0edc C:\Program Files\AVAST Software\Avast\aswJSScan.dll - ok
19:10:53.0969 0x0edc [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] C:\Windows\System32\aelupsvc.dll
19:10:53.0969 0x0edc C:\Windows\System32\aelupsvc.dll - ok
19:10:53.0985 0x0edc [ 8AFB5A1A96DF7F85A8712061F8760256, 864863AC483AD6659B645D42A7FEA729F8A1D941E9E0E6E4670D2DF8B792402E ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
19:10:53.0985 0x0edc C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
19:10:54.0000 0x0edc [ EF09A8335B6C8B5DB62C818B3A949BA5, AE851C7E88B759EC6EB1FE5F50EF0BE4608854CE33DA6B7F0F359DB686DE0F69 ] C:\Program Files\AVAST Software\Avast\defs\14040802\swhealthex.dll
19:10:54.0000 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\swhealthex.dll - ok
19:10:54.0016 0x0edc [ 6F4125795D48765F716249D5185BF91D, A847BB072408E45730D78520CC05D53430733ADBAAEC0FDC0718295F2F187CF7 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswAR.dll
19:10:54.0016 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswAR.dll - ok
19:10:54.0032 0x0edc [ 089B5F924E96BA9C40E4E4522BF43770, F89434E0129FDA710BB9817C5D104415E7642A40B66969F577370761B1C45B4B ] C:\Program Files\Windows Defender\MpRTP.dll
19:10:54.0032 0x0edc C:\Program Files\Windows Defender\MpRTP.dll - ok
19:10:54.0047 0x0edc [ 401D25136E26B237D77DA1BF1198B3BD, 382F977D56683367E095C7B3249708CA412E12AF18C19958470C2256EB9E4082 ] C:\Windows\System32\tdh.dll
19:10:54.0047 0x0edc C:\Windows\System32\tdh.dll - ok
19:10:54.0063 0x0edc [ FEAC444BE2765DC0167889CE6FE33888, D9DD4AB25CEAB411F35EBBA773164CA611C9D43D940D90350536B7F6252539E7 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpengine.dll
19:10:54.0063 0x0edc C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpengine.dll - ok
19:10:54.0063 0x0edc [ 0752E49C9A4311C9C04CC1D4E571B025, F3481407A69D70F5CF241F6F39795278E4DE345112C35822B10047CCD3B7F610 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswRawFS.dll
19:10:54.0063 0x0edc C:\Program Files\AVAST Software\Avast\defs\14040802\aswRawFS.dll - ok
19:10:54.0078 0x0edc [ B0193804FA7DC1EAC86F9E81F9928EE4, 79B4E517F26C8F7A83970EA53929EAE3B2F6413D1DD9AA7FD23040D841F30E6F ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasbase.vdm
19:10:54.0078 0x0edc C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasbase.vdm - ok
19:10:54.0094 0x0edc [ 244C6722289F4869068992FD7D8A8832, 8644D0A55C46C3F081F0AB43D253D13E56E77D89336A87108DB8C47D6EDC3A64 ] C:\Windows\System32\wbem\wbemdisp.dll
19:10:54.0094 0x0edc C:\Windows\System32\wbem\wbemdisp.dll - ok
19:10:54.0110 0x0edc [ E58E84043E8FDAAB1E4108E46D9625D5, 0662425A7D3E279F6A4E9590AFEAB3C1419BD8CC7450442A7A55A64D0122676C ] C:\Program Files\AVAST Software\Avast\Setup\Instup.dll
19:10:54.0110 0x0edc C:\Program Files\AVAST Software\Avast\Setup\Instup.dll - ok
19:10:54.0125 0x0edc [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] C:\Windows\System32\qmgr.dll
19:10:54.0125 0x0edc C:\Windows\System32\qmgr.dll - ok
19:10:54.0156 0x0edc [ 0552A8684BF7566F744D5B19FF6AEC6B, D1EB44C75A0AE0C9ABFE3B1B7AD648DF77B56B4358E522DFF732911906B20B49 ] C:\Windows\System32\bitsperf.dll
19:10:54.0156 0x0edc C:\Windows\System32\bitsperf.dll - ok
19:10:54.0156 0x0edc [ F45ED8C4F9AF862CD9992849B5203C11, F51E56977C33B8F202C2945FB977501C6FFDD453F158B2BE01453FAF13569919 ] C:\Windows\System32\bitsigd.dll
19:10:54.0156 0x0edc C:\Windows\System32\bitsigd.dll - ok
19:10:54.0188 0x0edc [ 954EA9B34F155C844B11F4047A8F6F89, 44703118AE57D44C802DFA5619DC1CA55C5C046D666CE546E5870D722786E395 ] C:\Windows\System32\upnp.dll
19:10:54.0188 0x0edc C:\Windows\System32\upnp.dll - ok
19:10:54.0203 0x0edc [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] C:\Windows\System32\ssdpsrv.dll
19:10:54.0203 0x0edc C:\Windows\System32\ssdpsrv.dll - ok
19:10:54.0219 0x0edc [ 4FB491AC8D46AAF22BA8BC5C73DABEF7, CBE2392792D209E15E44AC29E906FFDD5FBF6EED8BAB0D97D66E109AB2C5C56E ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:10:54.0219 0x0edc C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:10:54.0234 0x0edc [ CB67C2B94302DC94BC15ED6553A5C1C7, AB75F74122123027AF37F8B95CFF1A63852BC2B05F9D7910F0A7FE752AF388FF ] C:\Windows\System32\wbem\cimwin32.dll
19:10:54.0234 0x0edc C:\Windows\System32\wbem\cimwin32.dll - ok
19:10:54.0234 0x0edc [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\System32\qmgrprxy.dll
19:10:54.0234 0x0edc C:\Windows\System32\qmgrprxy.dll - ok
19:10:54.0250 0x0edc [ 3A924B200D86590D2C83214CEBFA9742, 1525F5507D9E7AD2C14A29E6DB31D56D798F1C2FBC86987DCD57704F7A0C2B1B ] C:\Program Files\Google\Chrome\Application\chrome.exe
19:10:54.0250 0x0edc C:\Program Files\Google\Chrome\Application\chrome.exe - ok
19:10:54.0266 0x0edc [ F71D97B6B631D565AF7C6E0BDF9D49F4, F70209BCC5BB38C7934DF364E0324FB9E30749C1EA90ADB52E8EC926E87B8F2C ] C:\Program Files\Internet Explorer\iexplore.exe
19:10:54.0266 0x0edc C:\Program Files\Internet Explorer\iexplore.exe - ok
19:10:54.0281 0x0edc [ 175383778EB24D98C84E624021E3AA0B, FE831AC7C5375FE0F0D2A56F1546F968B2595503CC63FE9A8F819F7910A1604A ] C:\Windows\System32\aeevts.dll
19:10:54.0281 0x0edc C:\Windows\System32\aeevts.dll - ok
19:10:54.0297 0x0edc [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\System32\oledlg.dll
19:10:54.0297 0x0edc C:\Windows\System32\oledlg.dll - ok
19:10:54.0312 0x0edc [ D0481FB85BEEDD30A0884BE327880F80, D28D53F8FFE4F6D728281BC0FBEF4EB435C153774855AE6348D0B75C80C2EC78 ] C:\Windows\System32\framedynos.dll
19:10:54.0312 0x0edc C:\Windows\System32\framedynos.dll - ok
19:10:54.0328 0x0edc [ 8385A341605FAE3FBB5725A4E17E4FEB, 09217CD69D95C41149CEBA69C341F4DCCFED00CBE87AFBCAD1AECA4BBA78D487 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasdlta.vdm
19:10:54.0328 0x0edc C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasdlta.vdm - ok
19:10:54.0344 0x0edc [ 7E9917D5309A90E7576653BFE39F80D8, 3525795CA69EF165AAAA20C878A20DF5A5F183CF6F8358A0132A88153E6459C6 ] C:\Windows\System32\timedate.cpl
19:10:54.0344 0x0edc C:\Windows\System32\timedate.cpl - ok
19:10:54.0359 0x0edc [ D2958325C1AE1AE37A83334C6229E3BC, D8263CB39A25447442B75A8D8E8111DF671D645DA90A33865C089DEDA9706904 ] C:\Windows\System32\actxprxy.dll
19:10:54.0359 0x0edc C:\Windows\System32\actxprxy.dll - ok
19:10:54.0375 0x0edc [ 907281ED4AD35D41B29FFDC211EBAD80, 42171AE21B62F07511D8AEE66FF8AC6D40D53290BD01BA6125D886EC70CD3B8D ] C:\Windows\System32\wmi.dll
19:10:54.0375 0x0edc C:\Windows\System32\wmi.dll - ok
19:10:54.0390 0x0edc [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\System32\linkinfo.dll
19:10:54.0390 0x0edc C:\Windows\System32\linkinfo.dll - ok
19:10:54.0406 0x0edc [ FA752544EE1EE59E8AD938CBB43CAC93, EA633416EF79F5FC1C841D46F3AAEC6A56BD09D2FD8B9CD8584E4AF65B890974 ] C:\PROGRA~1\WIC4A1~1\MESSEN~1\msgslang.dll
19:10:54.0406 0x0edc C:\PROGRA~1\WIC4A1~1\MESSEN~1\msgslang.dll - ok
19:10:54.0406 0x0edc [ 3A16EA01FCFAAB40882DB5BFEE632322, 04ED66BEFDB822181EBD1D84CBF0B17AAADF8455AE742F44D7ADCB26AB07BDAD ] C:\Windows\System32\msftedit.dll
19:10:54.0406 0x0edc C:\Windows\System32\msftedit.dll - ok
19:10:54.0422 0x0edc [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{61BD2868-A386-4A3B-89CA-9A245ECEC560}.tmp
19:10:54.0422 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{61BD2868-A386-4A3B-89CA-9A245ECEC560}.tmp - ok
19:10:54.0437 0x0edc [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{68840591-3CC9-477F-88A3-E371556C1A81}.tmp
19:10:54.0437 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{68840591-3CC9-477F-88A3-E371556C1A81}.tmp - ok
19:10:54.0453 0x0edc [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{5B982F9C-4989-47A4-B1AA-634F912E8E3A}.tmp
19:10:54.0453 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{5B982F9C-4989-47A4-B1AA-634F912E8E3A}.tmp - ok
19:10:54.0468 0x0edc [ C225E5307D8D4982A1687F2702C37C78, 9FCE233CE2C33D33053E4B1EBDC4B4C32CE8660947C2D0CE9384B23550B7BB5F ] C:\Windows\System32\msls31.dll
19:10:54.0468 0x0edc C:\Windows\System32\msls31.dll - ok
19:10:54.0484 0x0edc [ 64E211E0FDFCE4D186DF58BB7D0503BC, 6B9E12979119BAD721D493A9CEFDC7B4150121D5590222069FD1B8D80F9AC5C0 ] C:\Windows\System32\gameux.dll
19:10:54.0484 0x0edc C:\Windows\System32\gameux.dll - ok
19:10:54.0500 0x0edc [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{CB56BF2C-13B4-44B1-BC10-297AB6D4B471}.tmp
19:10:54.0500 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{CB56BF2C-13B4-44B1-BC10-297AB6D4B471}.tmp - ok
19:10:54.0515 0x0edc [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{791AE3E0-0F6B-48D2-8775-96FDAD4D9D66}.tmp
19:10:54.0515 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{791AE3E0-0F6B-48D2-8775-96FDAD4D9D66}.tmp - ok
19:10:54.0531 0x0edc [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{BAF29624-B03C-4018-AA22-3AB4870A4D6A}.tmp
19:10:54.0531 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{BAF29624-B03C-4018-AA22-3AB4870A4D6A}.tmp - ok
19:10:54.0546 0x0edc [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{15D3A23E-364D-4A2C-89CD-2BED6E1EBD1B}.tmp
19:10:54.0546 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{15D3A23E-364D-4A2C-89CD-2BED6E1EBD1B}.tmp - ok
19:10:54.0546 0x0edc [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\System32\msiltcfg.dll
19:10:54.0562 0x0edc C:\Windows\System32\msiltcfg.dll - ok
19:10:54.0562 0x0edc [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{2C97166E-2222-4407-9591-14D95D99D2E2}.tmp
19:10:54.0578 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{2C97166E-2222-4407-9591-14D95D99D2E2}.tmp - ok
19:10:54.0578 0x0edc [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{7A23B855-06E9-4B99-8BCD-570BCBCF1B40}.tmp
19:10:54.0578 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{7A23B855-06E9-4B99-8BCD-570BCBCF1B40}.tmp - ok
19:10:54.0609 0x0edc [ 4BFA1849DC7AA3CB99C160D9EB96C67B, D2B411ED4478FA683F8A51F5AB42F3EC33741421C480F848E04E5DD2A8032525 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
19:10:54.0609 0x0edc C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
19:10:54.0609 0x0edc [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{FFFEF589-D004-4D95-9699-E9333970874C}.tmp
19:10:54.0609 0x0edc C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{FFFEF589-D004-4D95-9699-E9333970874C}.tmp - ok
19:10:54.0624 0x0edc [ BEDDE513A3DB1E1714DDE235CEB09B37, 79E8799BAB2782BAA627B42DC5A17685EB71DACF3F9261662AEC44E51BAFCFF6 ] C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.dll
19:10:54.0624 0x0edc C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.dll - ok
19:10:54.0640 0x0edc [ 2A39F32E0067CBF221611FE1FA8C6D8F, C6D1CAB7BC87F8EB7D801BE3E3DA9B631932A94468E7A6F46D60A43C9AB08EE7 ] C:\Windows\System32\DeviceCenter.dll
19:10:54.0640 0x0edc C:\Windows\System32\DeviceCenter.dll - ok
19:10:54.0656 0x0edc [ 6D961EE2903CA42C673D72F3CC331B11, 673E42F8466499B3CEE8F0AA531D3876C5FE7A81B942BC537BF002F1E3C7A345 ] C:\Program Files\AVAST Software\Avast\libcef.dll
19:10:54.0656 0x0edc C:\Program Files\AVAST Software\Avast\libcef.dll - ok
19:10:54.0671 0x0edc [ 672D7C5080ACB003343006405DA2E621, 5F28C83A20ECB1F20894B60725477BEF0D672817DFDB9822FB345A3270A0C095 ] C:\Windows\System32\thumbcache.dll
19:10:54.0671 0x0edc C:\Windows\System32\thumbcache.dll - ok
19:10:54.0687 0x0edc [ 3D57FFBAD3ED16B63DE3879BAB0FB56F, 6BEAF5AFC98961190B004E8DE57CD5F9F39117287AE18D59DDB2EC5C0A0C6622 ] C:\Windows\System32\networkexplorer.dll
19:10:54.0687 0x0edc C:\Windows\System32\networkexplorer.dll - ok
19:10:54.0702 0x0edc [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\System32\riched20.dll
19:10:54.0702 0x0edc C:\Windows\System32\riched20.dll - ok
19:10:54.0718 0x0edc [ 912649A1B3F9E6ACB3899FBDABA2ED5F, 049DFA9EA45A888B984E459B927A0F8AA4C10B9D36C6C0A0FE57F6329BEAF555 ] C:\Windows\System32\stobject.dll
19:10:54.0718 0x0edc C:\Windows\System32\stobject.dll - ok
19:10:54.0734 0x0edc [ 67C1B58706B47EEBA4E117AC197289E6, 9213E55DA854563E3A99369A4FAD853C0A97241A4F6D93F98444C57ADEEF89C1 ] C:\Windows\System32\batmeter.dll
19:10:54.0734 0x0edc C:\Windows\System32\batmeter.dll - ok
19:10:54.0749 0x0edc [ 8B285BDAB7735FDFB18E6F7122923B77, DE3DBDDBF0E999CDE4A53B194128094671684708CDBED2C4D5362316CAA3A8CD ] C:\Windows\System32\UIAnimation.dll
19:10:54.0749 0x0edc C:\Windows\System32\UIAnimation.dll - ok
19:10:54.0765 0x0edc [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\System32\wdmaud.drv
19:10:54.0765 0x0edc C:\Windows\System32\wdmaud.drv - ok
19:10:54.0780 0x0edc [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\System32\ksuser.dll
19:10:54.0780 0x0edc C:\Windows\System32\ksuser.dll - ok
19:10:54.0796 0x0edc [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] C:\Windows\System32\wersvc.dll
19:10:54.0796 0x0edc C:\Windows\System32\wersvc.dll - ok
19:10:54.0812 0x0edc [ C940F2F5C60B3727C5F18840735B229C, EFC3F465FD6C570505C214A92644357ACD01B1843ED25B5FCCCE10533403485C ] C:\Windows\System32\AudioSes.dll
19:10:54.0812 0x0edc C:\Windows\System32\AudioSes.dll - ok
19:10:54.0812 0x0edc [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\System32\msacm32.drv
19:10:54.0812 0x0edc C:\Windows\System32\msacm32.drv - ok
19:10:54.0827 0x0edc [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\System32\msacm32.dll
19:10:54.0827 0x0edc C:\Windows\System32\msacm32.dll - ok
19:10:54.0843 0x0edc [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\System32\midimap.dll
19:10:54.0843 0x0edc C:\Windows\System32\midimap.dll - ok
19:10:54.0858 0x0edc [ BBA9D5A730D5E304117AD26923EBD8AA, 62DD6CEA9B3819DEC704BFBDCFF771903A2E2E8668EB9D5AD32210EEDB359132 ] C:\Windows\System32\AudioEng.dll
19:10:54.0858 0x0edc C:\Windows\System32\AudioEng.dll - ok
19:10:54.0874 0x0edc [ C8333F1F77A1B2E25F2202E892CAF634, 7A614AA4353ECE8175B6AB7B25EE26FAB22DF2A53C9A5A694B3A3B56F6C783A7 ] C:\Windows\System32\prnfldr.dll
19:10:54.0874 0x0edc C:\Windows\System32\prnfldr.dll - ok
19:10:54.0890 0x0edc [ 96F0F8F4DEE598C8D12AD9633E0CFE2A, 56EA483444BB6CCD6B9BE8030BB0FBB60EEE34A96731AB50CDC7DBA56BF2CB7C ] C:\Windows\System32\AUDIOKSE.dll
19:10:54.0890 0x0edc C:\Windows\System32\AUDIOKSE.dll - ok
19:10:54.0890 0x0edc [ ADDB05C93272A62606599B24730BD645, 38E2E2979C48549A3B72807B33254DB3AC106DB1FD2790C8AC1B27CDE86EC38F ] C:\Windows\System32\DXP.dll
19:10:54.0890 0x0edc C:\Windows\System32\DXP.dll - ok
19:10:54.0905 0x0edc [ 856CFFCD835528136367BB1A8FE1DB87, 97EE0B243F460BE737D18B634559BC6389064BA013890E69B650E5152AB873C8 ] C:\Windows\System32\Syncreg.dll
19:10:54.0905 0x0edc C:\Windows\System32\Syncreg.dll - ok
19:10:54.0921 0x0edc [ B2B3DAE040F6B5AE1DF52B0CD7631A18, 062680EFF24EB83FF34DDD76043DB9ABB476C8FEE7BBE869A1E7F7FC8891314F ] C:\Windows\System32\AltTab.dll
19:10:54.0921 0x0edc C:\Windows\System32\AltTab.dll - ok
19:10:54.0936 0x0edc [ 735263DA17BF5BAF9CCD483843BF9D5A, A493F9191EA3F37A53474E94B3917EA038B29545FC62B1634CE47F05EA2FF5C6 ] C:\Windows\System32\WPDShServiceObj.dll
19:10:54.0936 0x0edc C:\Windows\System32\WPDShServiceObj.dll - ok
19:10:54.0952 0x0edc [ ADB45A977BD9E45790CA496DB84BA148, BB251C9A5D2F5C6BDFB22C6BA235748472FC28AF2ADAF1CE7948352301DDE3C1 ] C:\Windows\System32\PortableDeviceTypes.dll
19:10:54.0952 0x0edc C:\Windows\System32\PortableDeviceTypes.dll - ok
19:10:54.0968 0x0edc [ 3D6F22551D422F97AACB0BB927E4C846, 9AB7C9F2E7F3D1CEC4553D0DF57E074121957055A9A4349946D354ACB6FC4579 ] C:\Windows\System32\pnidui.dll
19:10:54.0968 0x0edc C:\Windows\System32\pnidui.dll - ok
19:10:54.0983 0x0edc [ BD626EF05967D14C772B8096292731A3, FE3838B41DCAFC52089D909E7F411186D993C08AC149E093352D691D57C9BE71 ] C:\Windows\System32\QUTIL.DLL
19:10:54.0983 0x0edc C:\Windows\System32\QUTIL.DLL - ok
19:10:54.0983 0x0edc [ 674B0C0F6A448EB185CAAB9C51D44032, 6722351F46BF70BA967844D3239CD801DFC4538A4EB6C478D8497F27F7FD9F1D ] C:\Windows\System32\srchadmin.dll
19:10:54.0983 0x0edc C:\Windows\System32\srchadmin.dll - ok
19:10:54.0999 0x0edc [ 236F286E103FD44BD85FDD93097FD5DD, C369C98E76FEFBB05A12ABEECCF89C75132419B56866ED9AB77F61F84BA62785 ] C:\Windows\System32\SearchIndexer.exe
19:10:54.0999 0x0edc C:\Windows\System32\SearchIndexer.exe - ok
19:10:55.0014 0x0edc [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\System32\rasdlg.dll
19:10:55.0014 0x0edc C:\Windows\System32\rasdlg.dll - ok
19:10:55.0030 0x0edc [ 9A39A2A5F443A756C568C6ED5748AFE4, 13C2790985CBA9CD325BA20364A665DB50B769B7DDE93E6BE20F25427BDB34F8 ] C:\Windows\System32\ActionCenter.dll
19:10:55.0030 0x0edc C:\Windows\System32\ActionCenter.dll - ok
19:10:55.0046 0x0edc [ 465DBF63A5049E4DB4BC5C12FFE781CB, D12F6A9FB92144B2CFFD28BD72C234BA42F882EF22122DB83CE5EB1B8EBE9017 ] C:\Windows\System32\tquery.dll
19:10:55.0046 0x0edc C:\Windows\System32\tquery.dll - ok
19:10:55.0061 0x0edc [ E7BB5CE3FA24C3D151AC4867C4A37BEC, 2044A015547B7E719030AB0B047EA4712A6027D5845F225D8A58F3BCEA832942 ] C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
19:10:55.0061 0x0edc C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
19:10:55.0077 0x0edc [ FCF4DF6DB5AFB11E3DEBD498C02FF9B3, F0EC63E977E51C4F78F26B0AE51BBB1DC7162EB000D1A042307F1C808C131996 ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
19:10:55.0077 0x0edc C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
19:10:55.0092 0x0edc [ 0241CB16136B9A4939CA0395768AE286, E7A3A0BDB4AC4BD718C93BE650541F96603739BDB3DB6860665DCC073DA8007D ] C:\Windows\System32\mssrch.dll
19:10:55.0092 0x0edc C:\Windows\System32\mssrch.dll - ok
19:10:55.0108 0x0edc [ B8DE851298E99A005BFD34AA906B3FE8, 33F631C0B561199B5FEB9020FAA99E50EFA9F421D7484FFA640C5561494726DA ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\mfc110u.dll
19:10:55.0108 0x0edc C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\mfc110u.dll - ok
19:10:55.0124 0x0edc [ 53683A331F8A1BB20ADD0330F1DE6388, 5525766F740268FF5287F927CD784B885F5B8523374AC2858256E6757CDED9F4 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:10:55.0124 0x0edc C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:10:55.0139 0x0edc [ C02AA67276FEE0C15CC4D6D616BDE95E, 24B0FFA2903CC77FEDE6B491647BB759C4AE054E38A19EFA0D2662AC2959570B ] C:\Windows\System32\WWanAPI.dll
19:10:55.0139 0x0edc C:\Windows\System32\WWanAPI.dll - ok
19:10:55.0139 0x0edc [ F2ED6D00921CA138289E5E0CCB9ABF87, 528F249CE0835CA4D8B7C4940F5132DF1155EB344177BEA4CD7FCF9B8DCCCA4B ] C:\Windows\System32\wwapi.dll
19:10:55.0139 0x0edc C:\Windows\System32\wwapi.dll - ok
19:10:55.0155 0x0edc [ 02530B0B7E048DD5AC8D52DAEACAEB2B, 2DEB454F8B71EC54C59185E2F1D679F7EC1C7AEFCD1D59761FDD3D70CABE0254 ] C:\Windows\System32\QAGENT.DLL
19:10:55.0155 0x0edc C:\Windows\System32\QAGENT.DLL - ok
19:10:55.0170 0x0edc [ 81600E2E27ED61427AAD865B9BCDDB9D, 0D7D39C0A5A2C24FAADCA41658A1C62D13180B462C78103BDF6DBD76B64DD79A ] C:\Windows\System32\msidle.dll
19:10:55.0170 0x0edc C:\Windows\System32\msidle.dll - ok
19:10:55.0186 0x0edc [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\System32\bthprops.cpl
19:10:55.0186 0x0edc C:\Windows\System32\bthprops.cpl - ok
19:10:55.0202 0x0edc [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\System32\mssprxy.dll
19:10:55.0202 0x0edc C:\Windows\System32\mssprxy.dll - ok
19:10:55.0217 0x0edc [ B63E24E9271E99FD4540E3CA22A937DA, A9E75FBF482C4447E887E5B6EBAD96FE827F0BBD1101F1D8B54EE178D3AEAA7E ] C:\Windows\System32\en-US\tquery.dll.mui
19:10:55.0217 0x0edc C:\Windows\System32\en-US\tquery.dll.mui - ok
19:10:55.0233 0x0edc [ C2D6A4475B87651D5909E364439FDA52, BE9B898A8396F977E05A22D6EDF7B6B4EF4C16E159806453D03C2A918D24C19F ] C:\Windows\System32\FXSST.dll
19:10:55.0233 0x0edc C:\Windows\System32\FXSST.dll - ok
19:10:55.0248 0x0edc [ 8F8AB20AA863EA95A421B9D54C74F20C, BA71E3EED39E78EC554049464D4112EB3A15419F0C5809D9C7CB7F1746BDEBD3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:10:55.0248 0x0edc C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:10:55.0264 0x0edc [ 7CF62B6681D2A54D31991C6C62E1E73B, 50FF9D71B2A4D2D7BDCD89FEB028F375789EDF38F803338C5C77D212E41EAF91 ] C:\Program Files\AVAST Software\Avast\HTMLayout.dll
19:10:55.0264 0x0edc C:\Program Files\AVAST Software\Avast\HTMLayout.dll - ok
19:10:55.0280 0x0edc [ 942E57152F1CD0533644AB30EF1A4728, 4F72510BECFAFDBB06C9CAAC66BA9E95225DE1EA12B4D2FD5B67492A2E628ABD ] C:\Windows\System32\FXSAPI.dll
19:10:55.0280 0x0edc C:\Windows\System32\FXSAPI.dll - ok
19:10:55.0295 0x0edc [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:10:55.0295 0x0edc C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:10:55.0295 0x0edc [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] C:\Windows\System32\FXSSVC.exe
19:10:55.0295 0x0edc C:\Windows\System32\FXSSVC.exe - ok
19:10:55.0311 0x0edc [ 5CF15474FFDB5005E54958DF6EDD97AB, D4DBB3AACBB7679948258FFC53472FE8B5D0B3EC06D572EE2BDBF45CE608D86D ] C:\Windows\System32\wmdrmdev.dll
19:10:55.0311 0x0edc C:\Windows\System32\wmdrmdev.dll - ok
19:10:55.0326 0x0edc [ 47D052D9EE1FD3BA2A55D13F61E3EF24, 8DB44BA6FC0C49039F3E95D6137CFFF9EE0E0B24CA4E25342B7EFA897737DFAC ] C:\Windows\System32\drmv2clt.dll
19:10:55.0326 0x0edc C:\Windows\System32\drmv2clt.dll - ok
19:10:55.0342 0x0edc [ 40B82688907A7DBA4DB3B5ADDE3EAB3B, 7A8A051F414A0A11252A361461A086890BCE9F49CE1AF794061184AE16517EF1 ] C:\Windows\System32\mfplat.dll
19:10:55.0342 0x0edc C:\Windows\System32\mfplat.dll - ok
19:10:55.0358 0x0edc [ A68D209899E8776760EF4D3E5EC9ECCD, 9692A38C677116D306E778A24EEFBACE87106C35ED7C0DE2A30B64A1BDE67B5D ] C:\Windows\System32\RtkAPO.dll
19:10:55.0358 0x0edc C:\Windows\System32\RtkAPO.dll - ok
19:10:55.0373 0x0edc [ 6C4B2E1A25841077084EB9F76FF6FFA7, 777D9E5D81409A54BF387BDDF4E471932FFB636406E390EC29EDF1FFFE3D8880 ] C:\Windows\System32\wmp.dll
19:10:55.0373 0x0edc C:\Windows\System32\wmp.dll - ok
19:10:55.0389 0x0edc [ CA1EA5BC13E3820624669E8871EA6DFC, CA4D778E28F94625F1D2FF39E122D7792A301E619323FD4BFBD1E34062136DD4 ] C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe
19:10:55.0389 0x0edc C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
19:10:55.0404 0x0edc [ 02DF0628BE8B64B84D50FBE53549AA3B, AED50B07451F14D0C0682EDDC11ED5BBAD63D6DB11A91826B0ADBDBE411F0084 ] C:\Windows\System32\wmploc.DLL
19:10:55.0404 0x0edc C:\Windows\System32\wmploc.DLL - ok
19:10:55.0420 0x0edc [ 95B256323DA7E8FD06160CA21DED35F4, 92B613CA8DB6E4F6527DE79BD120B1BDC4575BD16BD8A320FE32891F15622E3B ] C:\Windows\System32\FMAPO.dll
19:10:55.0420 0x0edc C:\Windows\System32\FMAPO.dll - ok
19:10:55.0436 0x0edc [ 074A487C1E1FF4F2E6A4CB70967194AF, B9A6E015CD2319AF5647012518B453CA13F6DD312761E26F27269A00B25AF008 ] C:\Program Files\AVAST Software\Avast\aswAra.dll
19:10:55.0436 0x0edc C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
19:10:55.0451 0x0edc [ 4E30ED3E551E867ADD1C8D58F5EDD9DF, C933ABF1069128F4AB73DA47B2E7C029249804D65F50720897ECCAB3F4A07C27 ] C:\Windows\System32\WMALFXGFXDSP.dll
19:10:55.0451 0x0edc C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:10:55.0467 0x0edc [ E1DC6647CC9B6F4403236879BE4FF190, F21E57A982CC822261286A5AC2703533D609E5D0E610E0E014269E3376CA7B04 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01.key
19:10:55.0467 0x0edc C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01.key - ok
19:10:55.0482 0x0edc [ 9DF7A7C74D8632CB5EBD37E3A374825E, 7D53BA04D7508C14BD5D72F4E931C6C7563ABE9795B148EB460465D0ADA4B924 ] C:\Windows\System32\webcheck.dll
19:10:55.0482 0x0edc C:\Windows\System32\webcheck.dll - ok
19:10:55.0498 0x0edc [ F72CA4368CAF46DF00092EA5B19EBB0D, 54931A1C9349097E757E0A4DCE05C8CA9591BBB145F69300021BCF7B4FC98E04 ] C:\Program Files\Internet Explorer\ieproxy.dll
19:10:55.0498 0x0edc C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:10:55.0514 0x0edc [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\System32\mlang.dll
19:10:55.0514 0x0edc C:\Windows\System32\mlang.dll - ok
19:10:55.0514 0x0edc [ 2DDEA2C345DA5BC589EFD398F220DB0E, B515B15BE7CB66F94B7A9B802719DAF7D50E1FE2832B66B6883AC0023060800D ] C:\Windows\System32\SyncCenter.dll
19:10:55.0514 0x0edc C:\Windows\System32\SyncCenter.dll - ok
19:10:55.0529 0x0edc [ 3F2B83695E5BF11930C16AF50E991F96, 339535078CDDEF3B0C7C749E7C53634C3B1C7FF18E808F118E1DF36D748A6E15 ] C:\Windows\System32\wmpps.dll
19:10:55.0529 0x0edc C:\Windows\System32\wmpps.dll - ok
19:10:55.0545 0x0edc [ 2D11BC8B460957E62E4420373A0D8BDA, 56105E84333998D43DFCDA9E8A4D70EAC43076CFF8389B2E525EC5C3017DC5FD ] C:\Windows\System32\imapi2.dll
19:10:55.0545 0x0edc C:\Windows\System32\imapi2.dll - ok
19:10:55.0560 0x0edc [ AD5DC4AEF1968BC9FCB720811B975A6D, DB6C38D8993C447DBFEAC0CD9FC63EBDE9E38F22F46ACE315E67B44330A80F7F ] C:\Program Files\AVAST Software\Avast\aswData.dll
19:10:55.0560 0x0edc C:\Program Files\AVAST Software\Avast\aswData.dll - ok
19:10:55.0576 0x0edc [ C7952D0A4C43A965A1741916BB134751, 84EF222159E8C444A1D9D2E6509245716E4106C8032861DBFF399001A529BF94 ] C:\Windows\System32\hgcpl.dll
19:10:55.0576 0x0edc C:\Windows\System32\hgcpl.dll - ok
19:10:55.0592 0x0edc [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] C:\Windows\System32\fdPHost.dll
19:10:55.0592 0x0edc C:\Windows\System32\fdPHost.dll - ok
19:10:55.0607 0x0edc [ DE6F4B7E62FDE776F3DE8E5FB5A05C48, 703587D10434C1D6755E5F17EB2110433A506E51ECC5329E2CCA0B8380C455EC ] C:\Windows\System32\fdWSD.dll
19:10:55.0607 0x0edc C:\Windows\System32\fdWSD.dll - ok
19:10:55.0623 0x0edc [ 674611721264013DB169EC12AFC9C3B6, 7BC2791EF2239483F1F71A7F0F53E59002F5A1297A39BE3AF51CA34FFCE2CE24 ] C:\Windows\System32\fdSSDP.dll
19:10:55.0623 0x0edc C:\Windows\System32\fdSSDP.dll - ok
19:10:55.0638 0x0edc [ 3FF0FA0A81910617739644A06D06D016, 6B6828E06332805FDA887ED181464FD11A16F49ACADE2856F3CF69E98D81DEDB ] C:\Windows\System32\fdProxy.dll
19:10:55.0638 0x0edc C:\Windows\System32\fdProxy.dll - ok
19:10:55.0654 0x0edc [ E1AC89F6C5252057E6062843E36A6701, 32BE52836F2A011D46957AD60ABA48986B87026FD50ED09D8495460C7F1AB23E ] C:\Windows\System32\SearchProtocolHost.exe
19:10:55.0654 0x0edc C:\Windows\System32\SearchProtocolHost.exe - ok
19:10:55.0654 0x0edc [ A5D237B8673025B052C0E6FDB6A883E8, 0DAE34965C08F7450938A5145D2B53C68AA917744B8C6FCB130A35C03C5CEF6F ] C:\Windows\System32\msshooks.dll
19:10:55.0654 0x0edc C:\Windows\System32\msshooks.dll - ok
19:10:55.0670 0x0edc [ A6CD6B3F71E13E2E45B727FB8A47EA87, 4D84F6B03185DA961543ADFB927CBC17A1A9F216AC24E9A9228780AD7DD0222E ] C:\Windows\System32\SearchFilterHost.exe
19:10:55.0670 0x0edc C:\Windows\System32\SearchFilterHost.exe - ok
19:10:55.0685 0x0edc [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\System32\mscoree.dll
19:10:55.0685 0x0edc C:\Windows\System32\mscoree.dll - ok
19:10:55.0701 0x0edc [ E5F00579E4DEDB11A322AB7D041C8F54, FE41E3B08C57B22DEC21F9E0592347162B923D280A79E8F56DE2B535148E3AD5 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
19:10:55.0701 0x0edc C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
19:10:55.0716 0x0edc [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
19:10:55.0716 0x0edc C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
19:10:55.0732 0x0edc [ DB67C7C62038BDE813CB6486581A7611, DC0ACAA2795BBF4C8C35CE9DD9C14636ACFD94296CDC103696B64357CC2C84BB ] C:\Windows\System32\mssph.dll
19:10:55.0732 0x0edc C:\Windows\System32\mssph.dll - ok
19:10:55.0748 0x0edc [ 63ED6DEDACEDAC71005A29428C1D4382, 134E111A3126934F39BD2145191AC06A0403F82E5BA56C74D27B3064BE0AD9B1 ] C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
19:10:55.0748 0x0edc C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll - ok
19:10:55.0779 0x0edc [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\System32\cabinet.dll
19:10:55.0779 0x0edc C:\Windows\System32\cabinet.dll - ok
19:10:55.0794 0x0edc [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6, 4F40D5CCE264290C8DD73A5766062A55ED4CF77D8F6B59D453DDB6F88B640D7E ] C:\Windows\System32\mapi32.dll
19:10:55.0794 0x0edc C:\Windows\System32\mapi32.dll - ok
19:10:55.0810 0x0edc [ FA9826A3C16C0E6CDF8486EF4BAAA29E, 74AB70234D4F5B60E5C2A17D5C8C709FCD10B78F140D3DB81CC42594DA0EB24E ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
19:10:55.0810 0x0edc C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
19:10:55.0826 0x0edc [ F148865E4AC4F715E322EA06E6E21D84, 88CF0A1CB18BA9CA3D356EAF2F7EF8892CDDD9BF55798E64E4351C1ED111575A ] C:\Windows\System32\wbem\NCProv.dll
19:10:55.0826 0x0edc C:\Windows\System32\wbem\NCProv.dll - ok
19:10:55.0935 0x0edc AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2016.330 ), 0x41000 ( enabled : updated )
19:10:55.0982 0x0edc Win FW state via NFP2: enabled
19:10:58.0961 0x0edc ============================================================
19:10:58.0961 0x0edc Scan finished
19:10:58.0961 0x0edc ============================================================
19:10:58.0992 0x0ed4 Detected object count: 0
19:10:58.0992 0x0ed4 Actual detected object count: 0
Computer is still running very slowly. Thanks for all of your help.
#8
Posted 09 April 2014 - 02:57 PM
There is no sign of malware in those logs. Is there an option for Diagnostics at startup? Open an administrator command prompt (Start, type CMD and press CTRL+SHIFT+ENTER). At the prompt type the following and press Enter:
CHKDSK /r
Schedule a run at startup and restart the computer.
Let me know the outcome.
#9
Posted 10 April 2014 - 01:30 PM
I ran the check disc. Didn't really seem to make any difference. I did notice that the computer programs are running better, but the internet can still be painfully slow.
Do you have anything else in your bag of tricks?
Thanks!
C
#10
Posted 10 April 2014 - 05:37 PM
Is there a diagnostic option at startup? It will be a good idea to check the memory.
Lets check for rootkits:
GMER
Please download GMER from one of the following locations and save it to your desktop:
- Main Mirror which will download a randomly named file
- Zipped Mirror - Unzip the file to its own folder such as C:\gmer
- Disconnect from the Internet and close all running programs
- Temporarily disable any real-time active protection
- It is very important you do not use your computer while GMER is running
- Double-click on the randomly named GMER icon
- GMER will open to the Rootkit/Malware tab and perform an automatic quick scan
- If you receive a warning about rootkit activity and are asked to fully scan your system click NO
- Please check in the Quick scan box
- Please uncheck the following:
- IAT/EAT
- Show All <<< Important
- Click Scan
- If you see a rootkit warning window click OK
- When the scan is finished, Save the results to your desktop as gmer.log
- Click Copy then paste the results in your reply
- Exit GMER and be sure to re-enable your Antivirus, Firewall and any other security programs you had disabled
Note
- If you encounter any problems, try running GMER in Safe Mode
- If GMER crashes or keeps resulting in a Blue Screen of Death, uncheck Devices on the right side before scanning
#11
Posted 10 April 2014 - 07:19 PM
Here is the log.
Thanks for all your help thus far.
C
GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-04-10 19:48:28
Windows 6.1.7601 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 WDC_WD16 rev.01.0 149.05GB
Running: xhyu3zlu.exe; Driver: C:\Users\KMAN'S~1\AppData\Local\Temp\pfdyyaoc.sys
---- System - GMER 2.1 ----
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwAddBootEntry [0x8A93FA9C]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwAssignProcessToJobObject [0x8A94057A]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateEvent [0x8A94C5C4]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateEventPair [0x8A94C610]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateIoCompletion [0x8A94C7AA]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateMutant [0x8A94C532]
SSDT \SystemRoot\system32\drivers\aswSP.sys ZwCreateSection [0x86DA06C2]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateSemaphore [0x8A94C57A]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateThread [0x8A940AB0]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateThreadEx [0x8A940CCC]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwCreateTimer [0x8A94C764]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwDebugActiveProcess [0x8A941368]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwDeleteBootEntry [0x8A93FB02]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwDuplicateObject [0x8A944B3C]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwLoadDriver [0x8A93F6EE]
SSDT \SystemRoot\system32\drivers\aswSP.sys ZwMapViewOfSection [0x86DA07A2]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwModifyBootEntry [0x8A93FB68]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwNotifyChangeKey [0x8A944F32]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwNotifyChangeMultipleKeys [0x8A941E50]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenEvent [0x8A94C5EE]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenEventPair [0x8A94C632]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenIoCompletion [0x8A94C7CE]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenMutant [0x8A94C558]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenProcess [0x8A944436]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenSection [0x8A94C6E2]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenSemaphore [0x8A94C5A2]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenThread [0x8A94481E]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwOpenTimer [0x8A94C788]
SSDT \SystemRoot\system32\drivers\aswSP.sys ZwProtectVirtualMemory [0x86DA0546]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwQueryObject [0x8A941CC4]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwQueueApcThreadEx [0x8A9419D2]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSetBootEntryOrder [0x8A93FBCE]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSetBootOptions [0x8A93FC34]
SSDT \SystemRoot\system32\drivers\aswSP.sys ZwSetContextThread [0x86DA089E]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSetSystemInformation [0x8A93F788]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSetSystemPowerState [0x8A93F95A]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwShutdownSystem [0x8A93F8E8]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSuspendProcess [0x8A941532]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSuspendThread [0x8A941694]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwSystemDebugControl [0x8A93F9E2]
SSDT \SystemRoot\system32\drivers\aswSP.sys ZwTerminateProcess [0x86DA0614]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwTerminateThread [0x8A9411C2]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwVdmControl [0x8A93FC9A]
SSDT \SystemRoot\system32\drivers\aswSnx.sys ZwWriteVirtualMemory [0x8A9405D6]
---- Kernel code sections - GMER 2.1 ----
.text ntkrnlpa.exe!ZwRollbackEnlistment + 142D 8228EA15 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 822C8212 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!KeRemoveQueueEx + 10CB 822CF460 4 Bytes [9C, FA, 93, 8A]
.text ntkrnlpa.exe!KeRemoveQueueEx + 1153 822CF4E8 4 Bytes [7A, 05, 94, 8A]
.text ntkrnlpa.exe!KeRemoveQueueEx + 11A7 822CF53C 5 Bytes [C4, C5, 94, 8A, 10]
.text ntkrnlpa.exe!KeRemoveQueueEx + 11AD 822CF542 2 Bytes [94, 8A]
.text ntkrnlpa.exe!KeRemoveQueueEx + 11B3 822CF548 4 Bytes [AA, C7, 94, 8A]
.text ...
? C:\Windows\System32\Drivers\aswVmm.sys The system cannot find the file specified. !
? C:\Windows\System32\Drivers\aswRvrt.sys The system cannot find the file specified. !
? C:\Windows\system32\drivers\aswSnx.sys The system cannot find the file specified. !
? C:\Windows\system32\drivers\aswSP.sys The system cannot find the file specified. !
? C:\Windows\system32\drivers\aswRdr2.sys The system cannot find the file specified. !
? C:\Windows\system32\drivers\aswMonFlt.sys The system cannot find the file specified. !
---- User code sections - GMER 2.1 ----
.text C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe[12] kernel32.dll!GetBinaryTypeW + 70 76C86AAC 1 Byte [62]
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[360] kernel32.dll!GetBinaryTypeW + 70 76C86AAC 1 Byte [62]
.text C:\Windows\system32\csrss.exe[488] kernel32.dll!GetBinaryTypeW + 70 76C86AAC 1 Byte [62]
.text C:\Windows\system32\wininit.exe[532] kernel32.dll!GetBinaryTypeW + 70 76C86AAC 1 Byte [62]
.text C:\Windows\system32\csrss.exe[540] kernel32.dll!GetBinaryTypeW + 70 76C86AAC 1 Byte [62]
.text ...
---- Devices - GMER 2.1 ----
Device \Driver\aswRdr \Device\ASWRDR aswRdr2.sys
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations ???~????????d???????????????{17CCA71B-ECD7-11D0-B908-00A0C9223196}????????4??~???????????????~??? ???????~???????????<??????????N???????????????????{17CCA71B-ECD7-11D0-B908-00A0C9223196}??????HD Audio Line connector mixer 3??????~?~?=?????????????????e????\\?\HDAUDIO#FUNC_01&VEN_10EC&DEV_0272&SUBSYS_10250349&REV_1000#4&350CB3CC&0&0001#{eb115ffc-10c8-4964-831d-6dcb02e6f23f}\eLineConnector3Wave???????N??~???~??D???? ?????????????????????? ??????????????????????????~???????????????????????????n???????????????????????????n???????~?????~??????????????????????????????????????????????s?????N??~???~???????????????????????????????????????????????????????????????~?????????????????????????????????n???????????????????????????t?????????????~?????????????~?&???~?????????????????????????????????????~?~?~?~?~?~?~?~?~?~?~????? ???????????????????~????????6????????????8???????? ??????????????????????????????????????????????n???????????????????????????n????????????????????????????????????????????????s??????????????????????????
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series@ChangeID 2699191
---- EOF - GMER 2.1 ----
#12
Posted 11 April 2014 - 06:21 PM
Are you having issues with the sound in the computer? There are files missing that belong to AVAST. Uninstalling and reinstalling AVAST should resolve that issue.
Open a Run command window (Press the Windows Key+R). Copy and paste the following commands, one by one and click OK.
cmd /c Reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /s >"%userprofile%\desktop\report.txt"
cmd /c Reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers" /s >>"%userprofile%\desktop\report.txt"
Once done a report.txt will be created on your desktop. Post its contents in a reply.
#13
Posted 13 April 2014 - 06:29 PM
No. No sound issues that I am aware of. I keep trying to send the log, but it won't go through. I'll try to send it in parts.
Thanks!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager
CriticalSectionTimeout REG_DWORD 0x278d00
GlobalFlag REG_DWORD 0x0
HeapDeCommitFreeBlockThreshold REG_DWORD 0x0
HeapDeCommitTotalFreeThreshold REG_DWORD 0x0
HeapSegmentCommit REG_DWORD 0x0
HeapSegmentReserve REG_DWORD 0x0
ProcessorControl REG_DWORD 0x2
ResourceTimeoutCount REG_DWORD 0x9e340
BootExecute REG_MULTI_SZ autocheck autochk *
ExcludeFromKnownDlls REG_MULTI_SZ
ObjectDirectories REG_MULTI_SZ \Windows\0\RPC Control
ProtectionMode REG_DWORD 0x1
NumberOfInitialSessions REG_DWORD 0x2
SetupExecute REG_MULTI_SZ
BidiState REG_DWORD 0x3
DEFAULT-DUPLEX-MODE REG_DWORD 0x1900
COLLATE-ORIGINALS-SUPPORT REG_DWORD 0xffffffff
DMCExportOnly REG_SZ True
InstallDate REG_SZ 09/23/2012:23:17:15
CombinedMediaStatus REG_DWORD 0x0
InstallationComplete REG_DWORD 0x0
SoftwareCUEContextID REG_SZ #Hewlett-Packard#HP Photosmart 3300 series#1328488942
HPDUMMY REG_DWORD 0x0
PresetRegUpdated REG_DWORD 0x0
MediaType REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax
ChangeID REG_DWORD 0x6c7b58
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x180
Name REG_SZ HP Photosmart 3300 series fax
Share Name REG_SZ
Print Processor REG_SZ winprint
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ HP Photosmart 3300 series fax
Default DevMode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
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x1
StartTime REG_DWORD 0x0
UntilTime REG_DWORD 0x0
Separator File REG_SZ
Location REG_SZ IP=192.168.1.64,Host=HP7AABA8
Attributes REG_DWORD 0x0
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ HP_192.168.1.64_MY65GB40C9045M
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax\DsDriver
printBinNames REG_MULTI_SZ Automatically Select\0Upper Paper Tray
printCollate REG_BINARY 01
printColor REG_BINARY 01
printDuplexSupported REG_BINARY 00
printStaplingSupported REG_BINARY 00
printMaxXExtent REG_DWORD 0x86f
printMaxYExtent REG_DWORD 0xde4
printMinXExtent REG_DWORD 0x731
printMinYExtent REG_DWORD 0xa6b
printMediaSupported REG_MULTI_SZ Letter\0Legal\0Executive\0A4
printMediaReady REG_MULTI_SZ Letter
printNumberUp REG_DWORD 0x6
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0xc8
printLanguage REG_MULTI_SZ
printRate REG_DWORD 0x8
printRateUnit REG_SZ PagesPerMinute
printPagesPerMinute REG_DWORD 0x8
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax\DsSpooler
driverName REG_SZ HP Photosmart 3300 series fax
portName REG_MULTI_SZ HP_192.168.1.64_MY65GB40C9045M
printStartTime REG_DWORD 0x0
printEndTime REG_DWORD 0x0
printerName REG_SZ HP Photosmart 3300 series fax
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintWhileSpooling
priority REG_DWORD 0x1
uNCName REG_SZ \\KMansTravelPal\HP Photosmart 3300 series fax
serverName REG_SZ KMansTravelPal
shortServerName REG_SZ KMANSTRAVELPAL
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
location REG_SZ IP=192.168.1.64,Host=HP7AABA8
url REG_SZ http://KMansTravelPal/
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax\PrinterDriverData
InitDriverVersion REG_DWORD 0x600
Model REG_SZ HP PrinttoFax Driver
PrinterDataSize REG_DWORD 0x230
PrinterData REG_BINARY 0006300280080000801A060000000000000000006400580200000000000000000000000000000000F0377FBA000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
FeatureKeywordSize REG_DWORD 0x2
FeatureKeyword REG_BINARY 0000
Forms? REG_DWORD 0xba7f37f0
SoftwareCUEContextID REG_SZ #Hewlett-Packard#HP Photosmart 3300 series#1328488942
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer
ChangeID REG_DWORD 0x5277308
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x80
Name REG_SZ Microsoft XPS Document Writer
Share Name REG_SZ
Print Processor REG_SZ winprint
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ Microsoft XPS Document Writer
Default DevMode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
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x0
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ
Attributes REG_DWORD 0x200
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ XPSPort:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsDriver
printBinNames REG_MULTI_SZ Automatically Select
printCollate REG_BINARY 00
printColor REG_BINARY 01
printDuplexSupported REG_BINARY 00
printStaplingSupported REG_BINARY 00
printMaxXExtent REG_DWORD 0x21bc
printMaxYExtent REG_DWORD 0x2ba8
printMinXExtent REG_DWORD 0x384
printMinYExtent REG_DWORD 0x384
printMediaSupported REG_MULTI_SZ Letter\0Letter Small\0Tabloid\0Ledger\0Legal\0Statement\0Executive\0A3\0A4\0A4 Small\0A5\0B4 (JIS)\0B5 (JIS)\0Folio\0Quarto\010x14\011x17\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0C size sheet\0D size sheet\0E size sheet\0Envelope DL\0Envelope C5\0Envelope C3\0Envelope C4\0Envelope C6\0Envelope C65\0Envelope B4\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0US Std Fanfold\0German Std Fanfold\0German Legal Fanfold\0B4 (ISO)\0Japanese Postcard\09x11\010x11\015x11\0Envelope Invite\0Letter Extra\0Legal Extra\0A4 Extra\0Letter Transverse\0A4 Transverse\0Letter Extra Transverse\0Super A\0Super B\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A3 Extra\0A5 Extra\0B5 (ISO) Extra\0A2\0A3 Transverse\0A3 Extra Transverse\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #2\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0Letter Rotated\0A3 Rotated\0A4 Rotated\0A5 Rotated\0B4 (JIS) Rotated\0B5 (JIS) Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Kaku #2 Rotated\0Japan Envelope Kaku #3 Rotated\0Japan Envelope Chou #3 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\012x11\0Japan Envelope You #4\0Japan Envelope You #4 Rotated\0PRC Envelope #1\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC Envelope #9\0PRC Envelope #10\0PRC Envelope #1 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated\0PRC Envelope #5 Rotated\0PRC Envelope #6 Rotated\0PRC Envelope #7 Rotated\0PRC Envelope #8 Rotated\0PRC Envelope #9 Rotated
printMediaReady REG_MULTI_SZ Letter
printNumberUp REG_DWORD 0x0
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0x258
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsSpooler
driverName REG_SZ Microsoft XPS Document Writer
portName REG_MULTI_SZ XPSPort:
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ Microsoft XPS Document Writer
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintAfterSpooled
priority REG_DWORD 0x1
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\PrinterDriverData
InitDriverVersion REG_DWORD 0x600
Model REG_SZ Microsoft XPS Document Writer
PrinterDataSize REG_DWORD 0x230
PrinterData REG_BINARY 0006300280080000801A060000000000000000006400580200000000000000000000000000000000CAD2F672000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
FeatureKeywordSize REG_DWORD 0x2
FeatureKeyword REG_BINARY 0000
Forms? REG_DWORD 0x72f6d2ca
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007
ChangeID REG_DWORD 0x5278070
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x80
Name REG_SZ Send To OneNote 2007
Share Name REG_SZ
Print Processor REG_SZ OneNotePrint2007
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ Send To Microsoft OneNote Driver
Default DevMode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
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x0
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ
Attributes REG_DWORD 0x0
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ Send To Microsoft OneNote Port:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsDriver
printBinNames REG_MULTI_SZ Default tray
printColor REG_BINARY 01
printMaxXExtent REG_DWORD 0x76
printMaxYExtent REG_DWORD 0x0
printMinXExtent REG_DWORD 0x76
printMinYExtent REG_DWORD 0x0
printMediaSupported REG_MULTI_SZ Letter\0Tabloid\0Legal\0A3\0A4\0A5\0B4 (JIS)\0B5 (JIS)\0Japanese Postcard\0Custom Size
printMediaReady REG_MULTI_SZ
printOrientationsSupported REG_MULTI_SZ PORTRAIT
printMaxResolutionSupported REG_DWORD 0x12c
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsSpooler
driverName REG_SZ Send To Microsoft OneNote Driver
portName REG_MULTI_SZ Send To Microsoft OneNote Port:
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ Send To OneNote 2007
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintWhileSpooling
priority REG_DWORD 0x1
uNCName REG_SZ \\KMansTravelPal\Send To OneNote 2007
serverName REG_SZ KMansTravelPal
shortServerName REG_SZ KMANSTRAVELPAL
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\PrinterDriverData
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers
DefaultSpoolDirectory REG_SZ C:\Windows\system32\spool\PRINTERS
LANGIDOfLastDefaultDevmode REG_DWORD 0x409
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax
ChangeID REG_DWORD 0x5277317
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x180
Name REG_SZ Fax
Share Name REG_SZ
Print Processor REG_SZ winprint
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x0
Description REG_SZ
Printer Driver REG_SZ Microsoft Shared Fax Driver
Default DevMode REG_BINARY 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
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x0
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ
Attributes REG_DWORD 0x4040
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ SHRFAX:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsDriver
printBinNames REG_MULTI_SZ Default
printColor REG_BINARY 00
printMaxXExtent REG_DWORD 0x870
printMaxYExtent REG_DWORD 0xde4
printMinXExtent REG_DWORD 0x0
printMinYExtent REG_DWORD 0x0
printMediaSupported REG_MULTI_SZ Letter\0Letter Small\0Legal\0Statement\0Executive\0A4\0A4 Small\0A5\0B5 (JIS)\0Folio\0Quarto\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0Envelope DL\0Envelope C5\0Envelope C6\0Envelope C65\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0German Std Fanfold\0German Legal Fanfold\0Japanese Postcard\0Reserved48\0Reserved49\0Letter Transverse\0A4 Transverse\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A5 Extra\0B5 (ISO) Extra\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0A5 Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\0Japan Envelope You #4\0PRC 16K\0PRC 32K\0PRC 32K(Big)\0PRC Envelope #1\0PRC Envelope #2\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC 32K Rotated\0PRC 32K(Big) Rotated\0PRC Envelope #1 Rotated\0PRC Envelope #2 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated
printMediaReady REG_MULTI_SZ
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0xc8
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsSpooler
driverName REG_SZ Microsoft Shared Fax Driver
portName REG_MULTI_SZ SHRFAX:
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ Fax
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintWhileSpooling
priority REG_DWORD 0x1
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\PrinterDriverData
PaperSize REG_DWORD 0x1
AsyncUIv1 REG_DWORD 0x4
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series
ChangeID REG_DWORD 0x7f1bdb
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x180
Name REG_SZ HP Photosmart 3300 series
Share Name REG_SZ
Print Processor REG_SZ hpzppwn7
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ HP Photosmart 3300 series
Default DevMode REG_BINARY
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x1
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ IP=192.168.1.64,Host=HP7AABA8
Attributes REG_DWORD 0x200
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ HP_192.168.1.64_MY65GB40C9045M
ConfigFile REG_BINARY 433A5C57696E646F77735C73797374656D33325C73706F6F6C5C445249564552535C5733325838365C335C4850346B686266632E636667
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsDriver
printBinNames REG_MULTI_SZ Automatically Select\0Main tray\0Photo Tray
printCollate REG_BINARY 01
printColor REG_BINARY 01
printDuplexSupported REG_BINARY 01
printStaplingSupported REG_BINARY 00
printMaxXExtent REG_DWORD 0x86f
printMaxYExtent REG_DWORD 0x1735
printMinXExtent REG_DWORD 0x2fa
printMinYExtent REG_DWORD 0x4f6
printMediaSupported REG_MULTI_SZ Letter\0Legal\0Executive\0A4\0A5\0B5 (JIS)\0Envelope DL\0Envelope C6\0Japanese Postcard\0A6\010x15cm\010x15cm (tab)\013x18cm\02L 127x178mm\02L 127x178mm (tab)\04x6in.\04x6in. (tab)\05x7in.\08x10in.\0Cabinet size 120x165mm\0No. 10 envelope 9.5x4.13 in.\0A2 envelope 111x146mm\0Panorama 10x30cm\0Panorama 4x10in.\0Panorama 4x11in.\0Panorama 4x12in.\0Panorama, A4\0Index card 3x5in.\0Index card 4x6in.\0Index card 5x8in.\0Japanese envelope #2 111x146mm\0Japanese Envelope #3 120x235mm\0Japanese Envelope #4 90x205mm\0L 89x127mm\0L 89x127mm (tab)\0Mutsugiri 8x10in.\0Ofuku Hagaki\0Borderless 4x6in.\0Borderless 8.5x11in.\0Borderless cabinet 120x165mm\0Borderless hagaki 100x148mm\0Borderless ofuku hagaki\0Borderless photo 10x15cm\0Borderless photo 13x18cm\0Borderless photo 2L 127x178mm\0Borderless photo 2L (tab)\0Borderless photo 5x7in.\0Borderless photo A4 210x297mm\0Borderless photo A5 148x210mm\0Borderless photo A6\0Borderless photo B5 182x257mm\0Borderless photo L 89x127mm\0Borderless photo mutsugiri 8x10\0Borderless panorama 10x30cm\0Borderless panorama 4x10in.\0Borderless panorama 4x11in.\0Borderless panorama 4x12in.\0Borderless panorama A4\0Borderless photo L (tab)\0Borderless photo 10x15cm (tab)\0Borderless 4x6in. (tab)
printMediaReady REG_MULTI_SZ Letter
printNumberUp REG_DWORD 0x6
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0x4b0
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ PagesPerMinute
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsSpooler
driverName REG_SZ HP Photosmart 3300 series
portName REG_MULTI_SZ HP_192.168.1.64_MY65GB40C9045M
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ HP Photosmart 3300 series
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintAfterSpooled
priority REG_DWORD 0x1
uNCName REG_SZ \\KMansTravelPal\HP Photosmart 3300 series
serverName REG_SZ KMansTravelPal
shortServerName REG_SZ KMANSTRAVELPAL
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
location REG_SZ IP=192.168.1.64,Host=HP7AABA8
url REG_SZ http://KMansTravelPal/
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\HPPresetRoot
HPRestrictedUserGuid REG_SZ 30fcd78e-6618-4403-0787-06436f36c3f5
PresetPoolMaxIndexCount REG_BINARY 0E000000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer
ChangeID REG_DWORD 0x5277308
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x80
Name REG_SZ Microsoft XPS Document Writer
Share Name REG_SZ
Print Processor REG_SZ winprint
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ Microsoft XPS Document Writer
Default DevMode REG_BINARY
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x0
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ
Attributes REG_DWORD 0x200
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ XPSPort:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsDriver
printBinNames REG_MULTI_SZ Automatically Select
printCollate REG_BINARY 00
printColor REG_BINARY 01
printDuplexSupported REG_BINARY 00
printStaplingSupported REG_BINARY 00
printMaxXExtent REG_DWORD 0x21bc
printMaxYExtent REG_DWORD 0x2ba8
printMinXExtent REG_DWORD 0x384
printMinYExtent REG_DWORD 0x384
printMediaSupported REG_MULTI_SZ Letter\0Letter Small\0Tabloid\0Ledger\0Legal\0Statement\0Executive\0A3\0A4\0A4 Small\0A5\0B4 (JIS)\0B5 (JIS)\0Folio\0Quarto\010x14\011x17\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0C size sheet\0D size sheet\0E size sheet\0Envelope DL\0Envelope C5\0Envelope C3\0Envelope C4\0Envelope C6\0Envelope C65\0Envelope B4\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0US Std Fanfold\0German Std Fanfold\0German Legal Fanfold\0B4 (ISO)\0Japanese Postcard\09x11\010x11\015x11\0Envelope Invite\0Letter Extra\0Legal Extra\0A4 Extra\0Letter Transverse\0A4 Transverse\0Letter Extra Transverse\0Super A\0Super B\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A3 Extra\0A5 Extra\0B5 (ISO) Extra\0A2\0A3 Transverse\0A3 Extra Transverse\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #2\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0Letter Rotated\0A3 Rotated\0A4 Rotated\0A5 Rotated\0B4 (JIS) Rotated\0B5 (JIS) Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Kaku #2 Rotated\0Japan Envelope Kaku #3 Rotated\0Japan Envelope Chou #3 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\012x11\0Japan Envelope You #4\0Japan Envelope You #4 Rotated\0PRC Envelope #1\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC Envelope #9\0PRC Envelope #10\0PRC Envelope #1 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated\0PRC Envelope #5 Rotated\0PRC Envelope #6 Rotated\0PRC Envelope #7 Rotated\0PRC Envelope #8 Rotated\0PRC Envelope #9 Rotated
printMediaReady REG_MULTI_SZ Letter
printNumberUp REG_DWORD 0x0
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0x258
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsSpooler
driverName REG_SZ Microsoft XPS Document Writer
portName REG_MULTI_SZ XPSPort:
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ Microsoft XPS Document Writer
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintAfterSpooled
priority REG_DWORD 0x1
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\PrinterDriverData
InitDriverVersion REG_DWORD 0x600
Model REG_SZ Microsoft XPS Document Writer
PrinterDataSize REG_DWORD 0x230
PrinterData REG_BINARY 0006300280080000801A060000000000000000006400580200000000000000000000000000000000CAD2F672000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
FeatureKeywordSize REG_DWORD 0x2
FeatureKeyword REG_BINARY 0000
Forms? REG_DWORD 0x72f6d2ca
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007
ChangeID REG_DWORD 0x5278070
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x80
Name REG_SZ Send To OneNote 2007
Share Name REG_SZ
Print Processor REG_SZ OneNotePrint2007
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ Send To Microsoft OneNote Driver
Default DevMode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
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x0
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ
Attributes REG_DWORD 0x0
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ Send To Microsoft OneNote Port:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsDriver
printBinNames REG_MULTI_SZ Default tray
printColor REG_BINARY 01
printMaxXExtent REG_DWORD 0x76
printMaxYExtent REG_DWORD 0x0
printMinXExtent REG_DWORD 0x76
printMinYExtent REG_DWORD 0x0
printMediaSupported REG_MULTI_SZ Letter\0Tabloid\0Legal\0A3\0A4\0A5\0B4 (JIS)\0B5 (JIS)\0Japanese Postcard\0Custom Size
printMediaReady REG_MULTI_SZ
printOrientationsSupported REG_MULTI_SZ PORTRAIT
printMaxResolutionSupported REG_DWORD 0x12c
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsSpooler
driverName REG_SZ Send To Microsoft OneNote Driver
portName REG_MULTI_SZ Send To Microsoft OneNote Port:
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ Send To OneNote 2007
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintWhileSpooling
priority REG_DWORD 0x1
uNCName REG_SZ \\KMansTravelPal\Send To OneNote 2007
serverName REG_SZ KMansTravelPal
shortServerName REG_SZ KMANSTRAVELPAL
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\PrinterDriverData
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers
DefaultSpoolDirectory REG_SZ C:\Windows\system32\spool\PRINTERS
LANGIDOfLastDefaultDevmode REG_DWORD 0x409
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax
ChangeID REG_DWORD 0x5277317
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x180
Name REG_SZ Fax
Share Name REG_SZ
Print Processor REG_SZ winprint
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x0
Description REG_SZ
Printer Driver REG_SZ Microsoft Shared Fax Driver
Default DevMode REG_BINARY 46006100780000004E002D004400430033004A0035005000310051004A00360031005C004600610078002C004C006F00630061006C004F006E006C007900000001040004DC00C403037E01000100010000000000640000000100C80001000100C800010000004C00650074007400650072000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044666178080000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x0
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ
Attributes REG_DWORD 0x4040
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ SHRFAX:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsDriver
printBinNames REG_MULTI_SZ Default
printColor REG_BINARY 00
printMaxXExtent REG_DWORD 0x870
printMaxYExtent REG_DWORD 0xde4
printMinXExtent REG_DWORD 0x0
printMinYExtent REG_DWORD 0x0
printMediaSupported REG_MULTI_SZ Letter\0Letter Small\0Legal\0Statement\0Executive\0A4\0A4 Small\0A5\0B5 (JIS)\0Folio\0Quarto\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0Envelope DL\0Envelope C5\0Envelope C6\0Envelope C65\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0German Std Fanfold\0German Legal Fanfold\0Japanese Postcard\0Reserved48\0Reserved49\0Letter Transverse\0A4 Transverse\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A5 Extra\0B5 (ISO) Extra\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0A5 Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\0Japan Envelope You #4\0PRC 16K\0PRC 32K\0PRC 32K(Big)\0PRC Envelope #1\0PRC Envelope #2\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC 32K Rotated\0PRC 32K(Big) Rotated\0PRC Envelope #1 Rotated\0PRC Envelope #2 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated
printMediaReady REG_MULTI_SZ
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0xc8
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsSpooler
driverName REG_SZ Microsoft Shared Fax Driver
portName REG_MULTI_SZ SHRFAX:
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ Fax
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintWhileSpooling
priority REG_DWORD 0x1
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\PrinterDriverData
PaperSize REG_DWORD 0x1
AsyncUIv1 REG_DWORD 0x4
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series
ChangeID REG_DWORD 0x7f1bdb
StatusExt REG_DWORD 0x0
Status REG_DWORD 0x180
Name REG_SZ HP Photosmart 3300 series
Share Name REG_SZ
Print Processor REG_SZ hpzppwn7
Datatype REG_SZ RAW
Parameters REG_SZ
Action REG_DWORD 0x0
ObjectGUID REG_SZ
DsKeyUpdate REG_DWORD 0x0
DsKeyUpdateForeground REG_DWORD 0x3
Description REG_SZ
Printer Driver REG_SZ HP Photosmart 3300 series
Default DevMode REG_BINARY
Priority REG_DWORD 0x1
Default Priority REG_DWORD 0x1
StartTime REG_DWORD 0x3c
UntilTime REG_DWORD 0x3c
Separator File REG_SZ
Location REG_SZ IP=192.168.1.64,Host=HP7AABA8
Attributes REG_DWORD 0x200
txTimeout REG_DWORD 0xafc8
dnsTimeout REG_DWORD 0x3a98
Security REG_BINARY 01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
CreatorSid REG_BINARY 010100000000000512000000
SpoolDirectory REG_SZ
Port REG_SZ HP_192.168.1.64_MY65GB40C9045M
ConfigFile REG_BINARY 433A5C57696E646F77735C73797374656D33325C73706F6F6C5C445249564552535C5733325838365C335C4850346B686266632E636667
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsDriver
printBinNames REG_MULTI_SZ Automatically Select\0Main tray\0Photo Tray
printCollate REG_BINARY 01
printColor REG_BINARY 01
printDuplexSupported REG_BINARY 01
printStaplingSupported REG_BINARY 00
printMaxXExtent REG_DWORD 0x86f
printMaxYExtent REG_DWORD 0x1735
printMinXExtent REG_DWORD 0x2fa
printMinYExtent REG_DWORD 0x4f6
printMediaSupported REG_MULTI_SZ Letter\0Legal\0Executive\0A4\0A5\0B5 (JIS)\0Envelope DL\0Envelope C6\0Japanese Postcard\0A6\010x15cm\010x15cm (tab)\013x18cm\02L 127x178mm\02L 127x178mm (tab)\04x6in.\04x6in. (tab)\05x7in.\08x10in.\0Cabinet size 120x165mm\0No. 10 envelope 9.5x4.13 in.\0A2 envelope 111x146mm\0Panorama 10x30cm\0Panorama 4x10in.\0Panorama 4x11in.\0Panorama 4x12in.\0Panorama, A4\0Index card 3x5in.\0Index card 4x6in.\0Index card 5x8in.\0Japanese envelope #2 111x146mm\0Japanese Envelope #3 120x235mm\0Japanese Envelope #4 90x205mm\0L 89x127mm\0L 89x127mm (tab)\0Mutsugiri 8x10in.\0Ofuku Hagaki\0Borderless 4x6in.\0Borderless 8.5x11in.\0Borderless cabinet 120x165mm\0Borderless hagaki 100x148mm\0Borderless ofuku hagaki\0Borderless photo 10x15cm\0Borderless photo 13x18cm\0Borderless photo 2L 127x178mm\0Borderless photo 2L (tab)\0Borderless photo 5x7in.\0Borderless photo A4 210x297mm\0Borderless photo A5 148x210mm\0Borderless photo A6\0Borderless photo B5 182x257mm\0Borderless photo L 89x127mm\0Borderless photo mutsugiri 8x10\0Borderless panorama 10x30cm\0Borderless panorama 4x10in.\0Borderless panorama 4x11in.\0Borderless panorama 4x12in.\0Borderless panorama A4\0Borderless photo L (tab)\0Borderless photo 10x15cm (tab)\0Borderless 4x6in. (tab)
printMediaReady REG_MULTI_SZ Letter
printNumberUp REG_DWORD 0x6
printOrientationsSupported REG_MULTI_SZ PORTRAIT\0LANDSCAPE
printMaxResolutionSupported REG_DWORD 0x4b0
printLanguage REG_MULTI_SZ
printRateUnit REG_SZ PagesPerMinute
driverVersion REG_DWORD 0x401
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsSpooler
driverName REG_SZ HP Photosmart 3300 series
portName REG_MULTI_SZ HP_192.168.1.64_MY65GB40C9045M
printStartTime REG_DWORD 0x3c
printEndTime REG_DWORD 0x3c
printerName REG_SZ HP Photosmart 3300 series
printKeepPrintedJobs REG_BINARY 00
printSpooling REG_SZ PrintAfterSpooled
priority REG_DWORD 0x1
uNCName REG_SZ \\KMansTravelPal\HP Photosmart 3300 series
serverName REG_SZ KMansTravelPal
shortServerName REG_SZ KMANSTRAVELPAL
versionNumber REG_DWORD 0x4
flags REG_DWORD 0x0
location REG_SZ IP=192.168.1.64,Host=HP7AABA8
url REG_SZ http://KMansTravelPal/
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\HPPresetRoot
HPRestrictedUserGuid REG_SZ 30fcd78e-6618-4403-0787-06436f36c3f5
PresetPoolMaxIndexCount REG_BINARY 0E000000
#14
Posted 13 April 2014 - 08:58 PM
cmd /c Reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /s >"%userprofile%\desktop\report.txt"
Once done a report.txt will be created on your desktop. Post its contents in a reply.
#15
Posted 14 April 2014 - 05:50 PM
There is another problem. Every time I try to send the reply, it says the reply is too large and it won't send. I keep cutting it into pieces, but I get the same message--even when the post is pretty short.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users