Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer Runs Extremely Slowly (4/4/14)


  • Please log in to reply

#1
Conrad 678

Conrad 678

    Member

  • Member
  • PipPipPip
  • 103 posts

My computer is running very slowly. Ran Malewarebytes and it came up clean. Here is the OTL log.
OTL logfile created on: 3/13/2014 7:31:52 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\K Man's Travel Pal\Desktop
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16798)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1013.10 Mb Total Physical Memory | 220.32 Mb Available Physical Memory | 21.75% Memory free
1.99 Gb Paging File | 1.01 Gb Available in Paging File | 50.70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 135.94 Gb Total Space | 95.95 Gb Free Space | 70.58% Space Free | Partition Type: NTFS

Computer Name: KMANSTRAVELPAL | User Name: K Man's Travel Pal | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/03/13 19:31:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.exe
PRC - [2014/03/11 19:45:30 | 000,841,096 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe
PRC - [2014/02/03 16:26:40 | 003,767,096 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/02/03 16:26:39 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/12/21 01:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/30 20:12:11 | 000,745,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
PRC - [2013/04/03 13:50:34 | 000,172,416 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\mfevtps.exe
PRC - [2012/11/22 21:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/04/23 10:46:32 | 000,735,776 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
PRC - [2010/04/17 00:56:48 | 000,305,520 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
PRC - [2010/04/07 23:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2010/01/29 18:52:58 | 000,260,640 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe
PRC - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2010/01/08 08:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Registration\GREGsvc.exe
PRC - [2009/06/04 21:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe


========== Modules (No Company Name) ==========

MOD - [2013/10/24 19:50:20 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll


========== Services (SafeList) ==========

SRV - [2014/03/12 04:46:21 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/02/03 16:26:39 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013/12/21 01:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/05/26 23:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/04/03 13:50:34 | 000,172,416 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\System32\mfevtps.exe -- (mfevtp)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/04/23 10:46:32 | 000,735,776 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2010/04/17 00:56:48 | 000,305,520 | ---- | M] (Egis Technology Inc.) [Auto | Running] -- C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe -- (MWLService)
SRV - [2010/04/07 23:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010/01/29 18:52:58 | 000,260,640 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2010/01/28 18:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Updater Service)
SRV - [2010/01/08 08:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2009/06/04 21:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\cpuz136\cpuz136_x32.sys -- (cpuz136)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014/02/03 16:26:50 | 000,775,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014/02/03 16:26:50 | 000,064,168 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\aswstm.sys -- (aswStm)
DRV - [2014/02/03 16:26:49 | 000,410,784 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/02/03 16:26:49 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/01/05 11:29:39 | 000,180,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013/10/24 19:50:24 | 000,079,720 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2013/10/24 19:50:24 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013/04/03 13:48:22 | 000,566,656 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2013/04/03 13:46:22 | 000,133,992 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2013/02/19 15:10:52 | 000,092,632 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2012/08/23 09:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 09:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/04/21 02:47:36 | 000,068,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2010/04/06 21:04:42 | 001,792,512 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2010/03/02 01:23:36 | 000,082,384 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\EUCR6SK.sys -- (EUCR)
DRV - [2009/06/02 21:15:40 | 000,060,976 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV - [2009/06/02 21:15:38 | 000,016,432 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV - [2009/06/02 21:15:34 | 000,018,992 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\System32\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...ng}&rlz=1I7ACAW
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://us.my.yahoo.com/
IE - HKCU\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...AW_enUS435US435
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{88219053-82EE-4373-BA11-9E5CA8B34367}: "URL" = http://search.yahoo....p={SearchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MVT: C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected] : C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/04 12:15:50 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected] : C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/07/04 12:15:50 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
CHR - plugin: McAfee Virtual Technician (Enabled) = C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
CHR - Extension: Google Docs = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: avast! Online Security = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2013.75_0\
CHR - Extension: Google Wallet = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 16:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll File not found
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{34D1D2B6-CA20-4F70-97C5-CC1B7A119B89}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8100D57F-88F9-4E95-BA58-1A8EB8A668D9}: DhcpNameServer = 4.2.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/03/13 19:31:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.exe
[2014/02/28 08:01:17 | 000,000,000 | ---D | C] -- C:\Users\K Man's Travel Pal\Documents\Prelude and Hop Dance
[2014/02/15 08:35:00 | 000,000,000 | ---D | C] -- C:\Users\K Man's Travel Pal\AppData\Local\{2F75C75C-E117-46AD-89B0-73FE19B9C639}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/03/13 19:42:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.scr
[2014/03/13 19:31:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K Man's Travel Pal\Desktop\OTL.exe
[2014/03/13 19:05:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/03/13 18:52:02 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/13 18:45:15 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/03/13 18:32:13 | 000,009,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/13 18:32:13 | 000,009,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/13 18:24:03 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/03/13 18:23:36 | 796,733,440 | -HS- | M] () -- C:\hiberfil.sys
[2014/03/11 07:41:25 | 000,662,408 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/03/11 07:41:25 | 000,122,244 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/03/02 00:10:46 | 000,002,011 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/02/27 17:33:55 | 000,006,960 | ---- | M] () -- C:\bootsqm.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/02/27 17:33:55 | 000,006,960 | ---- | C] () -- C:\bootsqm.dat
[2013/08/05 20:16:39 | 000,180,248 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013/08/05 20:16:38 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2013/07/26 19:35:37 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/07/26 19:35:36 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/07/26 19:35:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/07/26 19:35:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/07/26 19:35:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/12/26 16:01:37 | 000,751,078 | ---- | C] () -- C:\Users\K Man's Travel Pal\AppData\Roaming\1.bmp
[2012/12/26 16:01:25 | 000,018,252 | ---- | C] () -- C:\Users\K Man's Travel Pal\AppData\Roaming\sound.mp3
[2012/12/26 16:01:20 | 000,114,890 | ---- | C] () -- C:\Users\K Man's Travel Pal\AppData\Roaming\1.jpg

========== ZeroAccess Check ==========

[2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 20:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/02/25 22:34:43 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\.minecraft
[2013/08/25 17:37:15 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\Audacity
[2013/10/24 19:53:59 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\AVAST Software
[2013/03/15 21:02:22 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\cef-cache
[2013/08/19 16:50:30 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\Ludia
[2012/02/25 18:31:17 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\MakeMusic
[2013/03/15 21:00:43 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\PPNet
[2013/08/14 18:49:35 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\WildTangent
[2013/09/08 13:04:37 | 000,000,000 | ---D | M] -- C:\Users\K Man's Travel Pal\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



< End of report >

I posted this a few weeks ago and got no response.  Hope this report is still accurate.  Thanks for your help!          


  • 0

Advertisements


#2
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
:welcome:
  • Please double-click OTL.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • Copy the entire content of the quote box (except the word quote) below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
     

    :OTL
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\cpuz136\cpuz136_x32.sys -- (cpuz136)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\KMAN'S~1\AppData\Local\Temp\catchme.sys -- (catchme)
     
    :Commands
    [EMPTYTEMP]
    [RESETHOSTS]
    [EMPTYJAVA]
    [REBOOT]

  • Return to OTL, right click in the "Custom Scans/Fixes" window and choose Paste.
  • Click the red Run Fix button.
  • The computer will restart
  • A report will be produced and saved in the C:\_OTL\MovedFiles folder. Open that report and post its contents in a reply.
Please remove all instances of McAfee:
The McAfee Consumer Products Removal tool allows you to remove McAfee consumer products in the event that they become damaged or are unable to uninstall properly through the Windows control panel.  You can run the McAfee Consumer Product Removal tool (MCPR.exe) to remove all 2005 - 2011 versions of McAfee consumer products.

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Download : ADWCleaner to your desktop.
NOTE: If using Internet Explorer and get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs and click on the AdwCleaner icon.

scan-results.jpg

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder. as AdwCleaner[S0].txt

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt and Shortcut.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another two logs (Addition.txt and Shortcut.txt). Please attach these to your reply.

  • 0

#3
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

Here are the reports:

 

# AdwCleaner v3.023 - Report created 06/04/2014 at 17:56:23
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Starter Service Pack 1 (32 bits)
# Username : K Man's Travel Pal - KMANSTRAVELPAL
# Running from : C:\Users\K Man's Travel Pal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XHY0DBDD\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16843

-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [1211 octets] - [06/04/2014 17:45:57]
AdwCleaner[S0].txt - [1140 octets] - [06/04/2014 17:56:23]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1200 octets] ##########

 

 

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01
Ran by K Man's Travel Pal (administrator) on KMANSTRAVELPAL on 06-04-2014 18:06:54
Running from C:\Users\K Man's Travel Pal\Desktop
Microsoft Windows 7 Starter  Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dropbox, Inc.) C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Registration\GREGsvc.exe
(Egis Technology Inc.) C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-03-31] (AVAST Software)
Startup: C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.my.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...ng}&rlz=1I7ACAW
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...AW_enUS435US435
SearchScopes: HKCU - {88219053-82EE-4373-BA11-9E5CA8B34367} URL = http://search.yahoo....&p={SearchTerms}
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} -  No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (McAfee Virtual Technician) - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll No File
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-05]
CHR Extension: (Google Drive) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-05]
CHR Extension: (YouTube) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-05]
CHR Extension: (Google Search) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-05]
CHR Extension: (avast! Online Security) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-05]
CHR Extension: (Google Wallet) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-17]
CHR Extension: (Gmail) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-03-31]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-31] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [735776 2010-04-23] (Acer Incorporated)
R2 GREGService; C:\Program Files\Acer\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MWLService; C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-04-17] (Egis Technology Inc.)
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232 2010-01-28] (Acer Group)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-03-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-03-31] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-03-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-03-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-03-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [67264 2014-03-31] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180760 2014-03-31] ()
S3 EUCR; C:\Windows\system32\drivers\EUCR6SK.SYS [82384 2010-03-02] (ENE Technology Inc.)
R1 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [18992 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [60976 2009-06-02] (Egis Technology Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-06 18:06 - 2014-04-06 18:07 - 00009846 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-06 18:06 - 2014-04-06 18:06 - 00000000 ____D () C:\FRST
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 17:45 - 2014-04-06 17:56 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:41 - 2014-04-06 17:41 - 00003541 _____ () C:\Users\K Man's Travel Pal\Desktop\JRT.txt
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:43 - 2014-04-06 16:44 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-03-31 06:45 - 2014-04-06 17:59 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:37 - 2014-03-31 06:45 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:29 - 2014-04-06 17:59 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-23 15:16 - 2014-02-23 01:53 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-23 15:16 - 2014-02-23 01:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-23 15:16 - 2014-02-23 01:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-23 15:15 - 2014-02-23 01:54 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-23 15:15 - 2014-02-23 01:53 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-23 15:15 - 2014-02-23 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-23 14:33 - 2014-02-06 20:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-23 14:33 - 2014-02-03 21:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-23 14:33 - 2014-02-03 21:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-23 14:33 - 2014-01-27 21:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-23 14:31 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll

==================== One Month Modified Files and Folders =======

2014-04-06 18:07 - 2014-04-06 18:06 - 00009846 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-06 18:06 - 2014-04-06 18:06 - 00000000 ____D () C:\FRST
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 18:03 - 2011-06-12 17:36 - 01529294 _____ () C:\Windows\WindowsUpdate.log
2014-04-06 17:59 - 2014-03-31 06:45 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-04-06 17:59 - 2014-03-31 06:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-04-06 17:58 - 2013-09-17 05:49 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-06 17:58 - 2009-07-13 23:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-06 17:58 - 2009-07-13 23:39 - 00137905 _____ () C:\Windows\setupact.log
2014-04-06 17:56 - 2014-04-06 17:45 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:45 - 2012-04-11 20:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-06 17:41 - 2014-04-06 17:41 - 00003541 _____ () C:\Users\K Man's Travel Pal\Desktop\JRT.txt
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:58 - 2013-09-17 05:49 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-06 16:44 - 2014-04-06 16:43 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 16:43 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-06 16:43 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-06 16:34 - 2010-05-11 22:22 - 00236434 _____ () C:\Windows\PFRO.log
2014-04-06 16:27 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\config\Journal
2014-04-06 15:55 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\rescache
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-04-05 23:51 - 2013-12-11 06:19 - 00410350 _____ () C:\Windows\IE11_main.log
2014-04-05 22:25 - 2012-02-25 17:36 - 00000455 _____ () C:\Windows\demdata.txt
2014-04-05 19:47 - 2011-06-12 17:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\PokerStars.NET
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:45 - 2014-03-31 06:37 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:45 - 2011-06-12 15:43 - 00000000 ____D () C:\Users\K Man's Travel Pal
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:24 - 2014-02-03 16:27 - 00002011 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-03-31 06:23 - 2014-01-05 11:30 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-31 06:22 - 2013-08-05 20:16 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-31 06:22 - 2013-08-05 20:16 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-29 21:00 - 2011-06-12 16:00 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Adobe
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2010-05-11 22:33 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-29 20:59 - 2010-05-11 22:32 - 00000000 ____D () C:\Program Files\Adobe
2014-03-29 20:56 - 2011-06-12 20:38 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\Adobe
2014-03-29 18:19 - 2012-02-25 16:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\Documents\FINALE
2014-03-28 07:01 - 2012-12-09 09:49 - 00000000 ____D () C:\WACHET AUF
2014-03-23 15:46 - 2012-04-11 20:25 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-23 15:46 - 2011-07-06 05:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-23 15:31 - 2013-01-09 21:01 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 15:29 - 2010-05-11 21:31 - 00782010 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-23 15:21 - 2009-07-13 23:33 - 00351672 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-23 15:19 - 2010-05-11 22:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-23 15:12 - 2013-08-06 05:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-23 15:06 - 2011-06-13 05:49 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-23 12:06 - 2013-07-26 19:35 - 00000000 ____D () C:\ComboFix
2014-03-23 12:06 - 2013-07-26 19:34 - 00000000 ____D () C:\Qoobox
2014-03-23 12:06 - 2011-06-12 17:34 - 00000000 ____D () C:\Program Files\PokerStars.NET
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-03-23 12:05 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\registration
2014-03-23 12:04 - 2010-05-11 22:33 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-23 12:02 - 2013-07-26 16:07 - 00000000 ____D () C:\_OTL
2014-03-23 12:02 - 2009-07-13 21:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-20 17:23 - 2012-12-09 09:48 - 00000000 ____D () C:\GRAND COEUR
2014-03-17 16:59 - 2012-12-09 09:44 - 00000000 ____D () C:\AVE MARIA
2014-03-17 16:54 - 2012-12-09 09:44 - 00000000 ____D () C:\AND WITH HIS STRIPES

Some content of TEMP:
====================
C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll
C:\Users\K Man's Travel Pal\AppData\Local\temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-04-06 15:37

==================== End Of Log ============================

 

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014  01
Ran by K Man's Travel Pal at 2014-04-06 18:09:16
Running from C:\Users\K Man's Travel Pal\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
3100_3200_3300_Help (Version: 82.0.242.000 - Hewlett-Packard) Hidden
3100_3200_3300trb (Version: 82.0.242.000 - Hewlett-Packard) Hidden
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
3300 (Version: 130.0.365.000 - Hewlett-Packard) Hidden
Acer Crystal Eye webcam Ver:1.1.178.503 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.178.503 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3004 - Acer Incorporated)
Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3011 - Acer Incorporated)
Acer Games (HKLM\...\WildTangent acer Master Uninstall) (Version: 1.0.0.80 - WildTangent)
Acer Registration (HKLM\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\Acer Screensaver) (Version: 1.1.0416.2010 - Acer Incorporated)
Acer Updater (HKLM\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3002 - Acer Incorporated)
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.29 - Atheros Communications Inc.)
Audacity 2.0.2 (HKLM\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2016 - Avast Software)
Bejeweled 2 Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
Blackhawk Striker 2 (Version: 2.2.0.82 - WildTangent) Hidden
Blasterball 3 (Version: 2.2.0.82 - WildTangent) Hidden
Bob the Builder Can-Do-Zoo (Version: 2.2.0.82 - WildTangent) Hidden
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Copy (Version: 130.0.428.000 - Hewlett-Packard) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.465.000 - Hewlett-Packard) Hidden
Diner Dash (Version: 2.2.0.82 - WildTangent) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
eBay Worldwide (HKLM\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
ENE USB Card Reader Driver (HKLM\...\F3C7F6463C419D1D216961B5B81E2FE534986562) (Version: 5.89.0.66 - ENE)
Escape Rosecliff Island (Version: 2.2.0.82 - WildTangent) Hidden
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
eSobi v2 (HKLM\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (Version: 2.0.4.000274 - esobi Inc.) Hidden
Faerie Solitaire (Version: 2.2.0.82 - WildTangent) Hidden
FATE - The Traitor Soul (Version: 2.2.0.82 - WildTangent) Hidden
Fax (Version: 130.0.418.000 - Hewlett-Packard) Hidden
FFmpeg v0.6.2 for Audacity (HKLM\...\FFmpeg for Audacity_is1) (Version:  - )
Finale PrintMusic 2010 (HKLM\...\Finale PrintMusic 2010) (Version: 15.0.1.1 - MakeMusic)
Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (HKLM\...\{B61ED343-0B14-4241-999C-490CB1A20DA4}) (Version: 13.0 - HP)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Identity Card (HKLM\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Insaniquarium Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2230 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Internet Explorer (Enable DEP) (HKLM\...\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb) (Version:  - )
Jewel Quest (Version: 2.2.0.82 - WildTangent) Hidden
Jewel Quest Solitaire 3 (Version: 2.2.0.82 - WildTangent) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version:  - )
Launch Manager (HKLM\...\LManager) (Version: 4.0.8 - Acer Inc.)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
McAfee Virtual Technician (HKLM\...\McAfee Virtual Technician) (Version: 6.5.0.2101 - McAfee, Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM\...\{67E03279-F703-408F-B4BF-46B5FC8D70CD}) (Version: 9.7.0621 - Microsoft Corporation)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (Version: 3.1.210.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.210.0 - Egis Technology Inc.)
MyWinLocker Suite (Version: 3.1.210.0 - Egis Technology Inc.) Hidden
Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Penguins! (Version: 2.2.0.82 - WildTangent) Hidden
PokerStars.net (HKLM\...\PokerStars.net) (Version:  - PokerStars.net)
Polar Bowler (Version: 2.2.0.82 - WildTangent) Hidden
Polar Golfer (Version: 2.2.0.82 - WildTangent) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6066 - Realtek Semiconductor Corp.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shared C Run-time for x86 (Version: 10.0.0 - McAfee) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
SmartWebPrinting (Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (Version: 130.0.469.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.7.0 - Synaptics Incorporated)
The Price is Right (Version: 2.2.0.82 - WildTangent) Hidden
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (Version:  - WildTangent) Hidden
Virtual Families (Version: 2.2.0.82 - WildTangent) Hidden
Virtual Villagers - A New Home (Version: 2.2.0.82 - WildTangent) Hidden
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Welcome Center (HKLM\...\Acer Welcome Center) (Version: 1.01.3002 - Acer Incorporated)
WildTangent Games App (HKLM\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.10.20 - WildTangent)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Yahtzee (Version: 2.2.0.82 - WildTangent) Hidden
Zuma Deluxe (Version: 2.2.0.82 - WildTangent) Hidden

==================== Restore Points  =========================

23-03-2014 16:20:36 Windows Update
23-03-2014 18:08:00 avast! antivirus system restore point
23-03-2014 19:18:30 avast! antivirus system restore point
23-03-2014 19:33:47 Windows Update
23-03-2014 20:04:54 Windows Update
24-03-2014 10:25:47 Windows Update
26-03-2014 00:34:51 Windows Update
26-03-2014 09:36:45 Windows Update
27-03-2014 01:59:45 Windows Update
27-03-2014 10:38:46 Windows Update
28-03-2014 01:59:25 Windows Update
28-03-2014 10:34:09 Windows Update
29-03-2014 11:17:03 Windows Update
30-03-2014 10:09:10 Windows Update
31-03-2014 11:15:52 Windows Update
01-04-2014 11:45:33 Windows Update
02-04-2014 02:35:38 Windows Update
03-04-2014 04:01:00 Windows Update
04-04-2014 04:00:51 Windows Update
04-04-2014 12:15:12 Windows Update
06-04-2014 04:48:35 Windows Update

==================== Hosts content: ==========================

2009-07-13 21:04 - 2014-04-06 15:21 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {5159FE36-64D7-4043-869B-2B52629E1447} - System32\Tasks\{B5E81122-B5EF-4C20-9895-72BFCD22A99F} => Iexplore.exe http://ui.skype.com/...red;notincluded
Task: {5B3E756D-FBB5-4151-9CC5-365316B9580E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.)
Task: {8B1203F7-461A-4B27-99CC-CBF1B365D62E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-03-31] (AVAST Software)
Task: {B653DA3C-941D-476A-9F56-D293EC99AAED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-23] (Adobe Systems Incorporated)
Task: {CFD84C62-053D-4AA1-B89D-471893757CE4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-04-06 07:42 - 2014-04-06 07:42 - 02189824 _____ () C:\Program Files\AVAST Software\Avast\defs\14040600\algo.dll
2013-10-24 19:50 - 2013-10-24 19:50 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-04-06 17:58 - 2014-04-06 17:58 - 00041984 _____ () C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll
2013-08-23 14:01 - 2013-08-23 14:01 - 25100288 _____ () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\libcef.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk => C:\Windows\pss\Acer VCM.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^K Man's Travel Pal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupreg: Acer ePower Management => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: hpqSRMon => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
MSCONFIG\startupreg: IAAnotif => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: LManager => C:\Program Files\Launch Manager\LManager.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: mwlDaemon => C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: PLFSetI => C:\Windows\PLFSetI.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
MSCONFIG\startupreg: SuiteTray => "C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

==================== Faulty Device Manager Devices =============

Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart 3300 series
Description: Photosmart 3300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (04/06/2014 05:58:36 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (04/06/2014 05:58:09 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (04/06/2014 05:56:29 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-08-25 10:02:29.630
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-08-25 09:58:44.762
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-08-25 09:58:43.498
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-08-25 09:58:39.440
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-08-25 09:12:49.056
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-08-25 09:12:46.854
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-08-25 09:12:39.535
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-23 08:13:38.210
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-23 08:13:38.195
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-18 19:37:25.814
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\Mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Percentage of memory in use: 86%
Total physical RAM: 1013.1 MB
Available physical RAM: 134.04 MB
Total Pagefile: 2037.1 MB
Available Pagefile: 773.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1905.34 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:135.94 GB) (Free:98.77 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: D8067EFC)

Partition: GPT Partition Type.

==================== End Of Log ============================

 

 

I don't know where the OTL log went.  Cannot find.  Thanks for your help!


  • 0

#4
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts

Download the enclosed file. [attachment=69975:fixlist.txt]

 

Save it in the same location FRST is saved.

 

Open FRST and click on the Fix button.

 

The tool will make a log in the same location FRST is saved (Fixlog.txt), Please post it to your reply.
 
Everything else looks clear. How is the computer doing?
 

  • 0

#5
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

Here is the last log.. Computer is still running really slow.

 

Thanks!

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-03-2014  01
Ran by K Man's Travel Pal at 2014-04-07 19:31:13 Run:1
Running from C:\Users\K Man's Travel Pal\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
SearchScopes: HKLM - DefaultScope value is missing.
BHO: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} -  No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (McAfee Virtual Technician) - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll No File
C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll
C:\Users\K Man's Travel Pal\AppData\Local\temp\Quarantine.exe
End
*****************

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB} => Key deleted successfully.
HKCR\CLSID\{27B4851A-3207-45A2-B947-BE8AFE6163AB} => Key not found.
C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll not found.
C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll not found.
C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll not found.
"C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpu_6iyw.dll" => File/Directory not found.
C:\Users\K Man's Travel Pal\AppData\Local\temp\Quarantine.exe => Moved successfully.

==== End of Fixlog ====


  • 0

#6
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts

Lets empty the temp folders:

Download TFC by OldTimer to your desktop

  • Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • It will close all programs when run, so make sure you have saved all your work before you begin.
  • Click the Start button to begin the process. Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. Let it run uninterrupted to completion.
  • Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    image000q.png
  • Put a checkmark beside loaded modules.
    2012081514h0118.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
    19695967.jpg
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    67776163.jpg
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Re-scan with FRST and post he new FRST.txt


  • 0

#7
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

Here is the FRST log:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01 (ATTENTION: ====> FRST version is 26 days old and could be outdated)
Ran by K Man's Travel Pal (administrator) on KMANSTRAVELPAL on 08-04-2014 19:15:09
Running from C:\Users\K Man's Travel Pal\Desktop
Microsoft Windows 7 Starter  Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Registration\GREGsvc.exe
(Egis Technology Inc.) C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Kaspersky Lab ZAO) C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dropbox, Inc.) C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-03-31] (AVAST Software)
Startup: C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.my.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...ng}&rlz=1I7ACAW
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...AW_enUS435US435
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.co...AW_enUS435US435
SearchScopes: HKCU - {88219053-82EE-4373-BA11-9E5CA8B34367} URL = http://search.yahoo....&p={SearchTerms}
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (McAfee Virtual Technician) - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll No File
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-05]
CHR Extension: (Google Drive) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-05]
CHR Extension: (YouTube) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-05]
CHR Extension: (Google Search) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-05]
CHR Extension: (avast! Online Security) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-05]
CHR Extension: (Google Wallet) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-17]
CHR Extension: (Gmail) - C:\Users\K Man's Travel Pal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-03-31]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-31] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [735776 2010-04-23] (Acer Incorporated)
R2 GREGService; C:\Program Files\Acer\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MWLService; C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-04-17] (Egis Technology Inc.)
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232 2010-01-28] (Acer Group)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-03-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-03-31] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-03-31] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-03-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-03-31] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [67264 2014-03-31] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180760 2014-03-31] ()
S3 EUCR; C:\Windows\system32\drivers\EUCR6SK.SYS [82384 2010-03-02] (ENE Technology Inc.)
R1 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [18992 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2009-06-02] (Egis Technology Inc.)
R1 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [60976 2009-06-02] (Egis Technology Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-08 19:15 - 2014-04-08 19:15 - 00010046 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-08 18:58 - 2014-04-08 18:58 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\K Man's Travel Pal\Desktop\tdsskiller.exe
2014-04-08 18:54 - 2014-04-08 18:54 - 00448512 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\TFC.exe
2014-04-06 18:06 - 2014-04-08 19:15 - 00000000 ____D () C:\FRST
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 17:45 - 2014-04-06 17:56 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:43 - 2014-04-06 16:44 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-03-31 06:45 - 2014-04-08 19:09 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:37 - 2014-03-31 06:45 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:29 - 2014-04-08 19:09 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-23 15:16 - 2014-02-23 01:53 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-23 15:16 - 2014-02-23 01:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-23 15:16 - 2014-02-23 01:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-23 15:15 - 2014-02-23 01:54 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-23 15:15 - 2014-02-23 01:54 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-23 15:15 - 2014-02-23 01:53 - 14358016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-23 15:15 - 2014-02-23 01:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-23 15:15 - 2014-02-23 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-23 14:33 - 2014-02-06 20:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-23 14:33 - 2014-02-03 21:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-23 14:33 - 2014-02-03 21:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-23 14:33 - 2014-01-27 21:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-23 14:31 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll

==================== One Month Modified Files and Folders =======

2014-04-08 19:15 - 2014-04-08 19:15 - 00010046 _____ () C:\Users\K Man's Travel Pal\Desktop\FRST.txt
2014-04-08 19:15 - 2014-04-06 18:06 - 00000000 ____D () C:\FRST
2014-04-08 19:15 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-08 19:15 - 2009-07-13 23:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-08 19:09 - 2014-03-31 06:45 - 00000000 ___RD () C:\Users\K Man's Travel Pal\Dropbox
2014-04-08 19:09 - 2014-03-31 06:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox
2014-04-08 19:07 - 2013-09-17 05:49 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-08 19:07 - 2009-07-13 23:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-08 19:07 - 2009-07-13 23:39 - 00138465 _____ () C:\Windows\setupact.log
2014-04-08 19:05 - 2011-06-12 17:36 - 01752235 _____ () C:\Windows\WindowsUpdate.log
2014-04-08 18:58 - 2014-04-08 18:58 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\K Man's Travel Pal\Desktop\tdsskiller.exe
2014-04-08 18:58 - 2013-09-17 05:49 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-08 18:54 - 2014-04-08 18:54 - 00448512 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\TFC.exe
2014-04-08 18:46 - 2012-04-11 20:26 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-08 18:37 - 2011-06-12 17:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\PokerStars.NET
2014-04-08 17:23 - 2012-02-25 17:36 - 00000455 _____ () C:\Windows\demdata.txt
2014-04-08 05:40 - 2013-12-11 06:19 - 00422530 _____ () C:\Windows\IE11_main.log
2014-04-06 18:04 - 2014-04-06 18:04 - 01145856 _____ (Farbar) C:\Users\K Man's Travel Pal\Desktop\FRST.exe
2014-04-06 17:56 - 2014-04-06 17:45 - 00000000 ____D () C:\AdwCleaner
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Windows\ERUNT
2014-04-06 16:44 - 2014-04-06 16:43 - 01016261 _____ (Thisisu) C:\Users\K Man's Travel Pal\Desktop\JRT.exe
2014-04-06 16:34 - 2010-05-11 22:22 - 00236434 _____ () C:\Windows\PFRO.log
2014-04-06 16:27 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\config\Journal
2014-04-06 15:55 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\rescache
2014-04-06 15:04 - 2014-04-06 15:04 - 00602112 _____ (OldTimer Tools) C:\Users\K Man's Travel Pal\Desktop\OTL.exe
2014-03-31 06:45 - 2014-03-31 06:45 - 00001018 _____ () C:\Users\K Man's Travel Pal\Desktop\Dropbox.lnk
2014-03-31 06:45 - 2014-03-31 06:37 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\DropboxMaster
2014-03-31 06:45 - 2011-06-12 15:43 - 00000000 ____D () C:\Users\K Man's Travel Pal
2014-03-31 06:36 - 2014-03-31 06:36 - 00000194 _____ () C:\Windows\wininit.ini
2014-03-31 06:35 - 2014-03-31 06:35 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-31 06:24 - 2014-02-03 16:27 - 00002011 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-03-31 06:23 - 2014-01-05 11:30 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-03-31 06:22 - 2014-03-31 06:22 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-31 06:22 - 2013-08-05 20:16 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-31 06:22 - 2013-08-05 20:16 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-31 06:22 - 2013-08-05 20:16 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-29 21:00 - 2011-06-12 16:00 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Roaming\Adobe
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2014-03-29 20:59 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-29 20:59 - 2010-05-11 22:33 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-29 20:59 - 2010-05-11 22:32 - 00000000 ____D () C:\Program Files\Adobe
2014-03-29 20:56 - 2011-06-12 20:38 - 00000000 ____D () C:\Users\K Man's Travel Pal\AppData\Local\Adobe
2014-03-29 18:19 - 2012-02-25 16:29 - 00000000 ____D () C:\Users\K Man's Travel Pal\Documents\FINALE
2014-03-28 07:01 - 2012-12-09 09:49 - 00000000 ____D () C:\WACHET AUF
2014-03-23 15:46 - 2012-04-11 20:25 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-23 15:46 - 2011-07-06 05:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-23 15:31 - 2013-01-09 21:01 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 15:29 - 2010-05-11 21:31 - 00782010 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-23 15:21 - 2009-07-13 23:33 - 00351672 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-23 15:19 - 2010-05-11 22:20 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-23 15:12 - 2013-08-06 05:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-23 15:06 - 2011-06-13 05:49 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-23 12:06 - 2013-07-26 19:35 - 00000000 ____D () C:\ComboFix
2014-03-23 12:06 - 2013-07-26 19:34 - 00000000 ____D () C:\Qoobox
2014-03-23 12:06 - 2011-06-12 17:34 - 00000000 ____D () C:\Program Files\PokerStars.NET
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-03-23 12:06 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-03-23 12:05 - 2009-07-13 21:37 - 00000000 ____D () C:\Windows\registration
2014-03-23 12:04 - 2010-05-11 22:33 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-23 12:02 - 2013-07-26 16:07 - 00000000 ____D () C:\_OTL
2014-03-23 12:02 - 2009-07-13 21:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-20 17:23 - 2012-12-09 09:48 - 00000000 ____D () C:\GRAND COEUR
2014-03-17 16:59 - 2012-12-09 09:44 - 00000000 ____D () C:\AVE MARIA
2014-03-17 16:54 - 2012-12-09 09:44 - 00000000 ____D () C:\AND WITH HIS STRIPES

Some content of TEMP:
====================
C:\Users\K Man's Travel Pal\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpx5gvqa.dll
C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-04-06 15:37

==================== End Of Log ============================

 

 

 

And the TDSS Killer log:

 

19:08:01.0198 0x0d2c  TDSS rootkit removing tool 3.0.0.30 Apr  7 2014 15:39:12
19:08:02.0119 0x0d2c  ============================================================
19:08:02.0119 0x0d2c  Current date / time: 2014/04/08 19:08:02.0119
19:08:02.0119 0x0d2c  SystemInfo:
19:08:02.0119 0x0d2c 
19:08:02.0119 0x0d2c  OS Version: 6.1.7601 ServicePack: 1.0
19:08:02.0119 0x0d2c  Product type: Workstation
19:08:02.0119 0x0d2c  ComputerName: KMANSTRAVELPAL
19:08:02.0119 0x0d2c  UserName: K Man's Travel Pal
19:08:02.0119 0x0d2c  Windows directory: C:\Windows
19:08:02.0119 0x0d2c  System windows directory: C:\Windows
19:08:02.0134 0x0d2c  Processor architecture: Intel x86
19:08:02.0134 0x0d2c  Number of processors: 2
19:08:02.0134 0x0d2c  Page size: 0x1000
19:08:02.0134 0x0d2c  Boot type: Normal boot
19:08:02.0134 0x0d2c  ============================================================
19:08:02.0134 0x0d2c  BG loaded
19:08:02.0899 0x0d2c  System UUID: {D7B5CD45-E65D-962A-699B-CC605C5E3948}
19:08:05.0941 0x0d2c  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:08:11.0136 0x0d2c  ============================================================
19:08:11.0136 0x0d2c  \Device\Harddisk0\DR0:
19:08:11.0151 0x0d2c  MBR partitions:
19:08:11.0151 0x0d2c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A03C22, BlocksNum 0x32FCD
19:08:11.0151 0x0d2c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A36BEF, BlocksNum 0x10FE2AC1
19:08:11.0151 0x0d2c  ============================================================
19:08:11.0323 0x0d2c  C: <-> \Device\Harddisk0\DR0\Partition2
19:08:11.0323 0x0d2c  ============================================================
19:08:11.0323 0x0d2c  Initialize success
19:08:11.0323 0x0d2c  ============================================================
19:08:18.0764 0x0edc  ============================================================
19:08:18.0764 0x0edc  Scan started
19:08:18.0764 0x0edc  Mode: Manual;
19:08:18.0764 0x0edc  ============================================================
19:08:18.0764 0x0edc  KSN ping started
19:08:22.0680 0x0edc  KSN ping finished: true
19:08:50.0401 0x0edc  ================ Scan system memory ========================
19:08:50.0401 0x0edc  System memory - ok
19:08:50.0464 0x0edc  ================ Scan services =============================
19:08:55.0534 0x0edc  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:08:55.0549 0x0edc  1394ohci - ok
19:08:57.0546 0x0edc  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:08:57.0562 0x0edc  ACPI - ok
19:08:58.0233 0x0edc  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:08:58.0233 0x0edc  AcpiPmi - ok
19:08:59.0855 0x0edc  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:08:59.0855 0x0edc  AdobeARMservice - ok
19:09:00.0588 0x0edc  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:09:00.0604 0x0edc  AdobeFlashPlayerUpdateSvc - ok
19:09:00.0994 0x0edc  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:09:01.0041 0x0edc  adp94xx - ok
19:09:01.0462 0x0edc  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:09:01.0587 0x0edc  adpahci - ok
19:09:01.0743 0x0edc  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:09:01.0774 0x0edc  adpu320 - ok
19:09:02.0101 0x0edc  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:09:02.0242 0x0edc  AeLookupSvc - ok
19:09:02.0616 0x0edc  [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD             C:\Windows\system32\drivers\afd.sys
19:09:02.0647 0x0edc  AFD - ok
19:09:02.0757 0x0edc  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
19:09:02.0757 0x0edc  agp440 - ok
19:09:03.0131 0x0edc  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
19:09:03.0178 0x0edc  aic78xx - ok
19:09:04.0426 0x0edc  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
19:09:04.0426 0x0edc  ALG - ok
19:09:04.0629 0x0edc  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:09:04.0691 0x0edc  aliide - ok
19:09:04.0785 0x0edc  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
19:09:04.0831 0x0edc  amdagp - ok
19:09:05.0206 0x0edc  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:09:05.0206 0x0edc  amdide - ok
19:09:05.0362 0x0edc  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:09:05.0362 0x0edc  AmdK8 - ok
19:09:05.0471 0x0edc  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
19:09:05.0549 0x0edc  AmdPPM - ok
19:09:05.0861 0x0edc  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:09:05.0861 0x0edc  amdsata - ok
19:09:06.0345 0x0edc  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:09:06.0376 0x0edc  amdsbs - ok
19:09:06.0407 0x0edc  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:09:06.0423 0x0edc  amdxata - ok
19:09:06.0735 0x0edc  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
19:09:06.0750 0x0edc  AppID - ok
19:09:06.0984 0x0edc  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:09:07.0000 0x0edc  AppIDSvc - ok
19:09:08.0014 0x0edc  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
19:09:08.0029 0x0edc  Appinfo - ok
19:09:09.0402 0x0edc  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
19:09:09.0418 0x0edc  arc - ok
19:09:09.0480 0x0edc  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:09:09.0496 0x0edc  arcsas - ok
19:09:14.0035 0x0edc  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:09:14.0550 0x0edc  aspnet_state - ok
19:09:15.0174 0x0edc  [ B347D2FEAE2D063943F16EC98634AB89, 2CA74745232607571ED088270B3B3FA555628455A257A6E52F133D650D861FD4 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
19:09:15.0424 0x0edc  aswMonFlt - ok
19:09:16.0453 0x0edc  [ 769C65057212FB5004679E02EF8145C0, D6876E6ECA13DECB8AD13B3A46D7DA1B1CA4DB01A7A70371D112B491B36EC55E ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
19:09:16.0469 0x0edc  aswRdr - ok
19:09:17.0764 0x0edc  [ 84B4C00AE8CDFC52CF68F322D821F34C, 9971A8ECDF2B81F4AA59E7680639A8B798430E1FDF5A39C6E05E522BF2DEF3F8 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
19:09:17.0764 0x0edc  aswRvrt - ok
19:09:19.0012 0x0edc  [ 3A50AD6AE8D8A0F78F03316F5B93FE45, 6F3952EDA23E5FD7CACE152D3DA3B1F1238E9B9976CDD5193D21424463BAA0E9 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
19:09:19.0324 0x0edc  aswSnx - ok
19:09:19.0885 0x0edc  [ B6381B4DC603C558419641BA969930E0, F6586B6D055C62942CD0E5702FFCC6F4DB7424DC551EB0041876C3544994EB59 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
19:09:19.0932 0x0edc  aswSP - ok
19:09:20.0385 0x0edc  [ 9529E946B8496C1605A9188FFD49DED8, C8AB36A212E4C896D39F6120B72829585E6AFDEACA7DF7FD6D4A6EB8F9C6FF98 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
19:09:20.0385 0x0edc  aswStm - ok
19:09:20.0634 0x0edc  [ 680448905E27BBC6587ADB28597640D6, A55297D872162178FDCF2C64C2357DCE1D98418AB84CF5E8621DED73C7484629 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
19:09:20.0650 0x0edc  aswVmm - ok
19:09:20.0899 0x0edc  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:09:20.0899 0x0edc  AsyncMac - ok
19:09:21.0804 0x0edc  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:09:21.0804 0x0edc  atapi - ok
19:09:22.0584 0x0edc  [ 8D6E8178AB4379C932C34A109D27C5A9, 808089150DBC965D104E8DE2FCBB5C6F486DA142E3BC75CB3F5D37439ED06684 ] athr            C:\Windows\system32\DRIVERS\athr.sys
19:09:23.0224 0x0edc  athr - ok
19:09:23.0551 0x0edc  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:09:23.0614 0x0edc  AudioEndpointBuilder - ok
19:09:23.0723 0x0edc  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:09:23.0770 0x0edc  Audiosrv - ok
19:09:23.0988 0x0edc  [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:09:24.0004 0x0edc  avast! Antivirus - ok
19:09:24.0269 0x0edc  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:09:24.0269 0x0edc  AxInstSV - ok
19:09:24.0441 0x0edc  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
19:09:24.0487 0x0edc  b06bdrv - ok
19:09:24.0675 0x0edc  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
19:09:24.0690 0x0edc  b57nd60x - ok
19:09:26.0141 0x0edc  [ F4D388DC3FF004AEE886762D5CEC7783, 5F667C60E083DC8565753B5AEE96F99F99B583D9A038DE4C95FA5874EFEEE9D5 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
19:09:26.0531 0x0edc  BCM43XX - ok
19:09:27.0342 0x0edc  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
19:09:27.0358 0x0edc  BDESVC - ok
19:09:27.0420 0x0edc  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:09:27.0436 0x0edc  Beep - ok
19:09:27.0717 0x0edc  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
19:09:27.0748 0x0edc  BFE - ok
19:09:28.0013 0x0edc  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
19:09:28.0122 0x0edc  BITS - ok
19:09:28.0216 0x0edc  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
19:09:28.0263 0x0edc  blbdrive - ok
19:09:28.0341 0x0edc  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:09:28.0356 0x0edc  bowser - ok
19:09:28.0387 0x0edc  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
19:09:28.0387 0x0edc  BrFiltLo - ok
19:09:28.0450 0x0edc  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
19:09:28.0450 0x0edc  BrFiltUp - ok
19:09:28.0762 0x0edc  [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
19:09:28.0777 0x0edc  BridgeMP - ok
19:09:28.0855 0x0edc  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
19:09:28.0871 0x0edc  Browser - ok
19:09:29.0027 0x0edc  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:09:29.0058 0x0edc  Brserid - ok
19:09:29.0136 0x0edc  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:09:29.0152 0x0edc  BrSerWdm - ok
19:09:29.0183 0x0edc  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:09:29.0183 0x0edc  BrUsbMdm - ok
19:09:29.0292 0x0edc  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:09:29.0292 0x0edc  BrUsbSer - ok
19:09:29.0339 0x0edc  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:09:29.0355 0x0edc  BTHMODEM - ok
19:09:29.0542 0x0edc  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
19:09:29.0557 0x0edc  bthserv - ok
19:09:29.0776 0x0edc  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:09:29.0791 0x0edc  cdfs - ok
19:09:29.0994 0x0edc  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:09:29.0994 0x0edc  cdrom - ok
19:09:30.0150 0x0edc  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:09:30.0181 0x0edc  CertPropSvc - ok
19:09:30.0353 0x0edc  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:09:30.0384 0x0edc  circlass - ok
19:09:30.0525 0x0edc  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
19:09:30.0571 0x0edc  CLFS - ok
19:09:30.0805 0x0edc  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:09:30.0821 0x0edc  clr_optimization_v2.0.50727_32 - ok
19:09:31.0102 0x0edc  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:09:31.0367 0x0edc  clr_optimization_v4.0.30319_32 - ok
19:09:31.0414 0x0edc  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
19:09:31.0429 0x0edc  CmBatt - ok
19:09:31.0523 0x0edc  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:09:31.0539 0x0edc  cmdide - ok
19:09:31.0695 0x0edc  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\Windows\system32\Drivers\cng.sys
19:09:31.0835 0x0edc  CNG - ok
19:09:31.0975 0x0edc  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
19:09:32.0038 0x0edc  Compbatt - ok
19:09:32.0303 0x0edc  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:09:32.0319 0x0edc  CompositeBus - ok
19:09:32.0428 0x0edc  COMSysApp - ok
19:09:32.0490 0x0edc  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:09:32.0490 0x0edc  crcdisk - ok
19:09:32.0787 0x0edc  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:09:32.0802 0x0edc  CryptSvc - ok
19:09:33.0005 0x0edc  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:09:33.0052 0x0edc  DcomLaunch - ok
19:09:33.0192 0x0edc  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
19:09:33.0208 0x0edc  defragsvc - ok
19:09:33.0395 0x0edc  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:09:33.0426 0x0edc  DfsC - ok
19:09:33.0535 0x0edc  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:09:33.0582 0x0edc  Dhcp - ok
19:09:33.0660 0x0edc  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
19:09:33.0660 0x0edc  discache - ok
19:09:33.0832 0x0edc  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\drivers\disk.sys
19:09:33.0832 0x0edc  Disk - ok
19:09:34.0035 0x0edc  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:09:34.0050 0x0edc  Dnscache - ok
19:09:34.0284 0x0edc  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:09:34.0378 0x0edc  dot3svc - ok
19:09:34.0659 0x0edc  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
19:09:34.0768 0x0edc  DPS - ok
19:09:34.0924 0x0edc  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:09:34.0939 0x0edc  drmkaud - ok
19:09:36.0375 0x0edc  [ E2B2853A0210D6EDAB2261870BD80C1A, BAC20DFFCFD8C324BC5B9CDA7BAFD553BBA8E3ED9224FDCF471357A456AC0A61 ] DsiWMIService   C:\Program Files\Launch Manager\dsiwmis.exe
19:09:36.0406 0x0edc  DsiWMIService - ok
19:09:36.0562 0x0edc  [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:09:36.0624 0x0edc  DXGKrnl - ok
19:09:36.0889 0x0edc  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
19:09:37.0311 0x0edc  EapHost - ok
19:09:38.0637 0x0edc  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
19:09:39.0245 0x0edc  ebdrv - ok
19:09:39.0370 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS             C:\Windows\System32\lsass.exe
19:09:39.0401 0x0edc  EFS - ok
19:09:39.0775 0x0edc  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:09:39.0822 0x0edc  elxstor - ok
19:09:40.0243 0x0edc  [ 60B037DB7FA23A40FD6F6C0EE9844852, 3AF944469F840C36336A400EAA66F64FDEEDA48F54DFEE493E4FB75DEF80D795 ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
19:09:40.0290 0x0edc  ePowerSvc - ok
19:09:40.0509 0x0edc  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:09:40.0540 0x0edc  ErrDev - ok
19:09:41.0226 0x0edc  [ D8E44D8DAF4DAC7DC6F8D14313EAC823, 4DDDC83582A0DAF424692084F3BFD8CAC40789463D8F259B03B317DEACA3E08B ] EUCR            C:\Windows\system32\drivers\EUCR6SK.SYS
19:09:41.0414 0x0edc  EUCR - ok
19:09:41.0866 0x0edc  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
19:09:41.0913 0x0edc  EventSystem - ok
19:09:42.0006 0x0edc  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:09:42.0022 0x0edc  exfat - ok
19:09:42.0162 0x0edc  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:09:42.0194 0x0edc  fastfat - ok
19:09:42.0334 0x0edc  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
19:09:42.0365 0x0edc  Fax - ok
19:09:42.0412 0x0edc  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
19:09:42.0428 0x0edc  fdc - ok
19:09:42.0506 0x0edc  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
19:09:42.0521 0x0edc  fdPHost - ok
19:09:42.0584 0x0edc  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:09:42.0630 0x0edc  FDResPub - ok
19:09:42.0708 0x0edc  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:09:42.0724 0x0edc  FileInfo - ok
19:09:42.0833 0x0edc  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:09:42.0849 0x0edc  Filetrace - ok
19:09:42.0927 0x0edc  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
19:09:42.0942 0x0edc  flpydisk - ok
19:09:43.0270 0x0edc  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:09:43.0286 0x0edc  FltMgr - ok
19:09:43.0644 0x0edc  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
19:09:43.0800 0x0edc  FontCache - ok
19:09:44.0019 0x0edc  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:09:44.0034 0x0edc  FontCache3.0.0.0 - ok
19:09:44.0112 0x0edc  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:09:44.0112 0x0edc  FsDepends - ok
19:09:44.0315 0x0edc  [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
19:09:44.0315 0x0edc  fssfltr - ok
19:09:44.0861 0x0edc  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
19:09:45.0173 0x0edc  fsssvc - ok
19:09:45.0267 0x0edc  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:09:45.0267 0x0edc  Fs_Rec - ok
19:09:45.0454 0x0edc  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:09:45.0485 0x0edc  fvevol - ok
19:09:45.0626 0x0edc  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:09:45.0641 0x0edc  gagp30kx - ok
19:09:46.0265 0x0edc  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files\WildTangent Games\App\GamesAppService.exe
19:09:46.0343 0x0edc  GamesAppService - ok
19:09:46.0749 0x0edc  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:09:46.0827 0x0edc  gpsvc - ok
19:09:47.0201 0x0edc  [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] GREGService     C:\Program Files\Acer\Registration\GREGsvc.exe
19:09:47.0295 0x0edc  GREGService - ok
19:09:48.0371 0x0edc  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:09:48.0387 0x0edc  gupdate - ok
19:09:48.0590 0x0edc  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:09:48.0590 0x0edc  gupdatem - ok
19:09:49.0198 0x0edc  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:09:49.0229 0x0edc  gusvc - ok
19:09:49.0307 0x0edc  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:09:49.0323 0x0edc  hcw85cir - ok
19:09:49.0682 0x0edc  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:09:49.0728 0x0edc  HdAudAddService - ok
19:09:49.0838 0x0edc  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:09:49.0853 0x0edc  HDAudBus - ok
19:09:49.0916 0x0edc  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
19:09:49.0916 0x0edc  HidBatt - ok
19:09:49.0962 0x0edc  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:09:49.0978 0x0edc  HidBth - ok
19:09:50.0118 0x0edc  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:09:50.0118 0x0edc  HidIr - ok
19:09:50.0399 0x0edc  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\System32\hidserv.dll
19:09:50.0415 0x0edc  hidserv - ok
19:09:50.0727 0x0edc  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:09:50.0742 0x0edc  HidUsb - ok
19:09:50.0852 0x0edc  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:09:50.0930 0x0edc  hkmsvc - ok
19:09:51.0117 0x0edc  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:09:51.0148 0x0edc  HomeGroupListener - ok
19:09:51.0288 0x0edc  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:09:51.0335 0x0edc  HomeGroupProvider - ok
19:09:51.0741 0x0edc  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
19:09:51.0772 0x0edc  hpqcxs08 - ok
19:09:51.0990 0x0edc  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
19:09:52.0006 0x0edc  hpqddsvc - ok
19:09:52.0084 0x0edc  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:09:52.0115 0x0edc  HpSAMD - ok
19:09:52.0786 0x0edc  [ 79737E0F7D25DE8405CB34D4C9882253, 798E44BAE6CD4ECBC801ACE4089E18388ABD18744B901F53452D8103081DE967 ] HPSLPSVC        C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
19:09:52.0864 0x0edc  HPSLPSVC - ok
19:09:53.0051 0x0edc  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:09:53.0098 0x0edc  HTTP - ok
19:09:53.0176 0x0edc  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:09:53.0176 0x0edc  hwpolicy - ok
19:09:53.0301 0x0edc  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
19:09:53.0316 0x0edc  i8042prt - ok
19:09:53.0847 0x0edc  [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
19:09:53.0894 0x0edc  IAANTMON - ok
19:09:54.0081 0x0edc  [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
19:09:54.0128 0x0edc  iaStor - ok
19:09:54.0330 0x0edc  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:09:54.0362 0x0edc  iaStorV - ok
19:09:54.0783 0x0edc  [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:09:55.0032 0x0edc  idsvc - ok
19:09:56.0624 0x0edc  [ BA41E1BBA410212CE6D30E0DAC47972B, C1D8E5C95EADD9E2083275C1DA633F0B773B65EABEBC0F52224FF1156CBBE8C1 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
19:09:57.0170 0x0edc  igfx - ok
19:09:57.0310 0x0edc  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:09:57.0310 0x0edc  iirsp - ok
19:09:57.0575 0x0edc  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
19:09:57.0684 0x0edc  IKEEXT - ok
19:09:58.0730 0x0edc  [ 947318C01C648A054A05DBD1C7F73E3B, 838948A754E8734FE22D4F5939A04C4A6949EA884780C2A1A9B04C609F031D1F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:09:59.0135 0x0edc  IntcAzAudAddService - ok
19:09:59.0213 0x0edc  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:09:59.0244 0x0edc  intelide - ok
19:09:59.0276 0x0edc  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:09:59.0291 0x0edc  intelppm - ok
19:09:59.0385 0x0edc  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:09:59.0400 0x0edc  IPBusEnum - ok
19:09:59.0463 0x0edc  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:09:59.0478 0x0edc  IpFilterDriver - ok
19:09:59.0619 0x0edc  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:09:59.0681 0x0edc  iphlpsvc - ok
19:09:59.0759 0x0edc  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:09:59.0790 0x0edc  IPMIDRV - ok
19:09:59.0884 0x0edc  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:09:59.0900 0x0edc  IPNAT - ok
19:09:59.0993 0x0edc  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:09:59.0993 0x0edc  IRENUM - ok
19:10:00.0071 0x0edc  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:10:00.0087 0x0edc  isapnp - ok
19:10:00.0243 0x0edc  [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:10:00.0258 0x0edc  iScsiPrt - ok
19:10:00.0430 0x0edc  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
19:10:00.0446 0x0edc  kbdclass - ok
19:10:00.0524 0x0edc  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:10:00.0539 0x0edc  kbdhid - ok
19:10:00.0570 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso          C:\Windows\system32\lsass.exe
19:10:00.0586 0x0edc  KeyIso - ok
19:10:00.0680 0x0edc  [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:10:00.0680 0x0edc  KSecDD - ok
19:10:00.0789 0x0edc  [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:10:00.0804 0x0edc  KSecPkg - ok
19:10:00.0960 0x0edc  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:10:01.0007 0x0edc  KtmRm - ok
19:10:01.0163 0x0edc  [ B86270CC948EAD6481AC487D65DDB462, D2ACFC21AF0EBC9707337C1C3A980F767B0D165AB76434AB7D20504C69E9FDB4 ] L1C             C:\Windows\system32\DRIVERS\L1C62x86.sys
19:10:01.0163 0x0edc  L1C - ok
19:10:01.0335 0x0edc  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\System32\srvsvc.dll
19:10:01.0413 0x0edc  LanmanServer - ok
19:10:01.0522 0x0edc  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:10:01.0584 0x0edc  LanmanWorkstation - ok
19:10:02.0052 0x0edc  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:10:02.0068 0x0edc  lltdio - ok
19:10:02.0193 0x0edc  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:10:02.0240 0x0edc  lltdsvc - ok
19:10:02.0302 0x0edc  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:10:02.0318 0x0edc  lmhosts - ok
19:10:02.0474 0x0edc  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:10:02.0489 0x0edc  LSI_FC - ok
19:10:02.0567 0x0edc  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:10:02.0583 0x0edc  LSI_SAS - ok
19:10:02.0723 0x0edc  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:10:02.0739 0x0edc  LSI_SAS2 - ok
19:10:02.0801 0x0edc  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:10:02.0817 0x0edc  LSI_SCSI - ok
19:10:02.0926 0x0edc  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:10:02.0942 0x0edc  luafv - ok
19:10:03.0004 0x0edc  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
19:10:03.0020 0x0edc  megasas - ok
19:10:03.0113 0x0edc  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
19:10:03.0144 0x0edc  MegaSR - ok
19:10:03.0254 0x0edc  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
19:10:03.0269 0x0edc  MMCSS - ok
19:10:03.0347 0x0edc  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
19:10:03.0347 0x0edc  Modem - ok
19:10:03.0394 0x0edc  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:10:03.0410 0x0edc  monitor - ok
19:10:03.0488 0x0edc  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:10:03.0503 0x0edc  mouclass - ok
19:10:03.0597 0x0edc  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:10:03.0597 0x0edc  mouhid - ok
19:10:03.0675 0x0edc  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:10:03.0690 0x0edc  mountmgr - ok
19:10:03.0768 0x0edc  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:10:03.0784 0x0edc  mpio - ok
19:10:03.0862 0x0edc  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:10:03.0878 0x0edc  mpsdrv - ok
19:10:04.0002 0x0edc  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:10:04.0065 0x0edc  MpsSvc - ok
19:10:04.0143 0x0edc  [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:10:04.0174 0x0edc  MRxDAV - ok
19:10:04.0283 0x0edc  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:10:04.0299 0x0edc  mrxsmb - ok
19:10:04.0424 0x0edc  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:10:04.0455 0x0edc  mrxsmb10 - ok
19:10:04.0533 0x0edc  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:10:04.0548 0x0edc  mrxsmb20 - ok
19:10:04.0626 0x0edc  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:10:04.0642 0x0edc  msahci - ok
19:10:04.0720 0x0edc  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:10:04.0736 0x0edc  msdsm - ok
19:10:04.0845 0x0edc  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
19:10:04.0892 0x0edc  MSDTC - ok
19:10:05.0016 0x0edc  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:10:05.0016 0x0edc  Msfs - ok
19:10:05.0094 0x0edc  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:10:05.0094 0x0edc  mshidkmdf - ok
19:10:05.0172 0x0edc  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:10:05.0172 0x0edc  msisadrv - ok
19:10:05.0297 0x0edc  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:10:05.0328 0x0edc  MSiSCSI - ok
19:10:05.0375 0x0edc  msiserver - ok
19:10:05.0531 0x0edc  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:10:05.0531 0x0edc  MSKSSRV - ok
19:10:05.0609 0x0edc  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:10:05.0609 0x0edc  MSPCLOCK - ok
19:10:05.0703 0x0edc  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:10:05.0703 0x0edc  MSPQM - ok
19:10:05.0843 0x0edc  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:10:05.0859 0x0edc  MsRPC - ok
19:10:05.0921 0x0edc  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:10:05.0921 0x0edc  mssmbios - ok
19:10:06.0015 0x0edc  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:10:06.0030 0x0edc  MSTEE - ok
19:10:06.0093 0x0edc  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
19:10:06.0108 0x0edc  MTConfig - ok
19:10:06.0171 0x0edc  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:10:06.0186 0x0edc  Mup - ok
19:10:06.0280 0x0edc  [ CB47C414E083CA6E50E634B148F28F64, 8699FFA4FD53508583B713DDD513CA494FFF8BE71006A2DA55A4EEE03C42BD5B ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
19:10:06.0296 0x0edc  mwlPSDFilter - ok
19:10:06.0327 0x0edc  [ 647B953019559BFF07536F5C6121F333, E27E2B37544F243BF01EFCA1ECB58C89ED72D88664AABB3BEDFF1304B62417CC ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
19:10:06.0327 0x0edc  mwlPSDNServ - ok
19:10:06.0389 0x0edc  [ 5A236A36DB8687D1E64DC81C03EAABE1, 63778FDB0CF79419FD8BEC2C3189390A6CDD5E791579133D106BF34378C848C5 ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
19:10:06.0389 0x0edc  mwlPSDVDisk - ok
19:10:06.0842 0x0edc  [ 0036634E5C92BE109056F7E2380103A9, 52CD75711F9021BA99A3E1258E321C507AEE82D9C57B444806115C6463437A9E ] MWLService      C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
19:10:06.0888 0x0edc  MWLService - ok
19:10:07.0029 0x0edc  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
19:10:07.0122 0x0edc  napagent - ok
19:10:07.0325 0x0edc  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:10:07.0372 0x0edc  NativeWifiP - ok
19:10:07.0684 0x0edc  [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:10:07.0809 0x0edc  NDIS - ok
19:10:08.0012 0x0edc  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:10:08.0012 0x0edc  NdisCap - ok
19:10:08.0152 0x0edc  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:10:08.0152 0x0edc  NdisTapi - ok
19:10:08.0292 0x0edc  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:10:08.0308 0x0edc  Ndisuio - ok
19:10:08.0480 0x0edc  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:10:08.0495 0x0edc  NdisWan - ok
19:10:08.0604 0x0edc  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:10:08.0604 0x0edc  NDProxy - ok
19:10:08.0745 0x0edc  [ 510C138564486FF926A3F773205C63D1, 50FBB8555C284ED22F71D99750899321B63E3B4C255174FE9B4F31084F9A34B1 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:10:08.0760 0x0edc  Net Driver HPZ12 - ok
19:10:08.0838 0x0edc  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:10:08.0838 0x0edc  NetBIOS - ok
19:10:08.0948 0x0edc  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:10:08.0963 0x0edc  NetBT - ok
19:10:09.0010 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon        C:\Windows\system32\lsass.exe
19:10:09.0026 0x0edc  Netlogon - ok
19:10:09.0197 0x0edc  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
19:10:09.0244 0x0edc  Netman - ok
19:10:09.0540 0x0edc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:09.0650 0x0edc  NetMsmqActivator - ok
19:10:09.0852 0x0edc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:09.0868 0x0edc  NetPipeActivator - ok
19:10:10.0055 0x0edc  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
19:10:10.0118 0x0edc  netprofm - ok
19:10:10.0320 0x0edc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:10.0336 0x0edc  NetTcpActivator - ok
19:10:10.0367 0x0edc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:10:10.0383 0x0edc  NetTcpPortSharing - ok
19:10:10.0492 0x0edc  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:10:10.0508 0x0edc  nfrd960 - ok
19:10:10.0617 0x0edc  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:10:10.0664 0x0edc  NlaSvc - ok
19:10:10.0742 0x0edc  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:10:10.0757 0x0edc  Npfs - ok
19:10:10.0835 0x0edc  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
19:10:10.0866 0x0edc  nsi - ok
19:10:10.0929 0x0edc  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:10:10.0944 0x0edc  nsiproxy - ok
19:10:11.0334 0x0edc  [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:10:11.0522 0x0edc  Ntfs - ok
19:10:11.0600 0x0edc  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
19:10:11.0600 0x0edc  Null - ok
19:10:11.0693 0x0edc  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:10:11.0724 0x0edc  nvraid - ok
19:10:11.0818 0x0edc  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:10:11.0834 0x0edc  nvstor - ok
19:10:11.0912 0x0edc  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:10:11.0927 0x0edc  nv_agp - ok
19:10:12.0286 0x0edc  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:10:12.0333 0x0edc  odserv - ok
19:10:12.0380 0x0edc  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:10:12.0395 0x0edc  ohci1394 - ok
19:10:12.0536 0x0edc  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:10:12.0567 0x0edc  ose - ok
19:10:12.0660 0x0edc  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:10:12.0707 0x0edc  p2pimsvc - ok
19:10:12.0879 0x0edc  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:10:12.0926 0x0edc  p2psvc - ok
19:10:13.0035 0x0edc  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\drivers\parport.sys
19:10:13.0050 0x0edc  Parport - ok
19:10:13.0128 0x0edc  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:10:13.0144 0x0edc  partmgr - ok
19:10:13.0222 0x0edc  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
19:10:13.0222 0x0edc  Parvdm - ok
19:10:13.0362 0x0edc  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:10:13.0394 0x0edc  PcaSvc - ok
19:10:13.0472 0x0edc  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
19:10:13.0503 0x0edc  pci - ok
19:10:13.0565 0x0edc  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:10:13.0565 0x0edc  pciide - ok
19:10:13.0674 0x0edc  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:10:13.0706 0x0edc  pcmcia - ok
19:10:13.0799 0x0edc  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:10:13.0815 0x0edc  pcw - ok
19:10:13.0940 0x0edc  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:10:14.0018 0x0edc  PEAUTH - ok
19:10:14.0595 0x0edc  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
19:10:14.0813 0x0edc  pla - ok
19:10:15.0047 0x0edc  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:10:15.0110 0x0edc  PlugPlay - ok
19:10:15.0359 0x0edc  [ 37E5E8FFBAD35605DAEEC3224EA0E465, E3A9BE275D3C8A3E143DF3A795964E9860A1F6C18BE36F8FE552E954435AC927 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:10:15.0375 0x0edc  Pml Driver HPZ12 - ok
19:10:15.0484 0x0edc  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:10:15.0515 0x0edc  PNRPAutoReg - ok
19:10:15.0656 0x0edc  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:10:15.0718 0x0edc  PNRPsvc - ok
19:10:15.0890 0x0edc  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:10:15.0921 0x0edc  PolicyAgent - ok
19:10:15.0983 0x0edc  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
19:10:15.0999 0x0edc  Power - ok
19:10:16.0092 0x0edc  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:10:16.0108 0x0edc  PptpMiniport - ok
19:10:16.0233 0x0edc  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
19:10:16.0248 0x0edc  Processor - ok
19:10:16.0404 0x0edc  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:10:16.0451 0x0edc  ProfSvc - ok
19:10:16.0498 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:10:16.0514 0x0edc  ProtectedStorage - ok
19:10:16.0670 0x0edc  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:10:16.0685 0x0edc  Psched - ok
19:10:17.0106 0x0edc  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:10:17.0231 0x0edc  ql2300 - ok
19:10:17.0340 0x0edc  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:10:17.0356 0x0edc  ql40xx - ok
19:10:17.0512 0x0edc  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
19:10:17.0543 0x0edc  QWAVE - ok
19:10:17.0637 0x0edc  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:10:17.0637 0x0edc  QWAVEdrv - ok
19:10:17.0746 0x0edc  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:10:17.0746 0x0edc  RasAcd - ok
19:10:17.0902 0x0edc  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:10:17.0902 0x0edc  RasAgileVpn - ok
19:10:17.0980 0x0edc  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
19:10:18.0011 0x0edc  RasAuto - ok
19:10:18.0120 0x0edc  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:10:18.0136 0x0edc  Rasl2tp - ok
19:10:18.0323 0x0edc  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
19:10:18.0370 0x0edc  RasMan - ok
19:10:18.0526 0x0edc  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:10:18.0542 0x0edc  RasPppoe - ok
19:10:18.0620 0x0edc  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:10:18.0635 0x0edc  RasSstp - ok
19:10:18.0776 0x0edc  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:10:18.0807 0x0edc  rdbss - ok
19:10:18.0854 0x0edc  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
19:10:18.0854 0x0edc  rdpbus - ok
19:10:18.0963 0x0edc  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:10:18.0963 0x0edc  RDPCDD - ok
19:10:19.0134 0x0edc  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:10:19.0150 0x0edc  RDPENCDD - ok
19:10:19.0275 0x0edc  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:10:19.0275 0x0edc  RDPREFMP - ok
19:10:19.0587 0x0edc  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:10:19.0602 0x0edc  RdpVideoMiniport - ok
19:10:19.0743 0x0edc  [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:10:19.0774 0x0edc  RDPWD - ok
19:10:19.0899 0x0edc  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:10:19.0914 0x0edc  rdyboost - ok
19:10:19.0992 0x0edc  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:10:20.0024 0x0edc  RemoteAccess - ok
19:10:20.0102 0x0edc  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:10:20.0133 0x0edc  RemoteRegistry - ok
19:10:20.0289 0x0edc  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:10:20.0320 0x0edc  RpcEptMapper - ok
19:10:20.0398 0x0edc  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
19:10:20.0414 0x0edc  RpcLocator - ok
19:10:20.0585 0x0edc  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\System32\rpcss.dll
19:10:20.0648 0x0edc  RpcSs - ok
19:10:20.0897 0x0edc  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:10:20.0913 0x0edc  rspndr - ok
19:10:21.0162 0x0edc  [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] RS_Service      C:\Program Files\Acer\Acer VCM\RS_Service.exe
19:10:21.0209 0x0edc  RS_Service - ok
19:10:21.0240 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs           C:\Windows\system32\lsass.exe
19:10:21.0256 0x0edc  SamSs - ok
19:10:21.0381 0x0edc  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:10:21.0396 0x0edc  sbp2port - ok
19:10:21.0490 0x0edc  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:10:21.0537 0x0edc  SCardSvr - ok
19:10:21.0615 0x0edc  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:10:21.0615 0x0edc  scfilter - ok
19:10:21.0896 0x0edc  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll
19:10:21.0989 0x0edc  Schedule - ok
19:10:22.0083 0x0edc  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:10:22.0083 0x0edc  SCPolicySvc - ok
19:10:22.0176 0x0edc  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:10:22.0223 0x0edc  SDRSVC - ok
19:10:22.0301 0x0edc  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:10:22.0317 0x0edc  secdrv - ok
19:10:22.0410 0x0edc  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
19:10:22.0426 0x0edc  seclogon - ok
19:10:22.0504 0x0edc  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\system32\sens.dll
19:10:22.0535 0x0edc  SENS - ok
19:10:22.0566 0x0edc  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\drivers\serenum.sys
19:10:22.0582 0x0edc  Serenum - ok
19:10:22.0691 0x0edc  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\drivers\serial.sys
19:10:22.0707 0x0edc  Serial - ok
19:10:22.0785 0x0edc  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:10:22.0785 0x0edc  sermouse - ok
19:10:22.0925 0x0edc  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:10:22.0956 0x0edc  SessionEnv - ok
19:10:23.0034 0x0edc  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:10:23.0034 0x0edc  sffdisk - ok
19:10:23.0097 0x0edc  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:10:23.0097 0x0edc  sffp_mmc - ok
19:10:23.0128 0x0edc  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:10:23.0144 0x0edc  sffp_sd - ok
19:10:23.0222 0x0edc  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
19:10:23.0222 0x0edc  sfloppy - ok
19:10:23.0362 0x0edc  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:10:23.0409 0x0edc  SharedAccess - ok
19:10:23.0580 0x0edc  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:10:23.0643 0x0edc  ShellHWDetection - ok
19:10:23.0721 0x0edc  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
19:10:23.0736 0x0edc  sisagp - ok
19:10:23.0799 0x0edc  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:10:23.0799 0x0edc  SiSRaid2 - ok
19:10:23.0846 0x0edc  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:10:23.0861 0x0edc  SiSRaid4 - ok
19:10:23.0970 0x0edc  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:10:23.0986 0x0edc  Smb - ok
19:10:24.0080 0x0edc  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:10:24.0111 0x0edc  SNMPTRAP - ok
19:10:24.0173 0x0edc  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:10:24.0189 0x0edc  spldr - ok
19:10:24.0345 0x0edc  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
19:10:24.0407 0x0edc  Spooler - ok
19:10:25.0390 0x0edc  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
19:10:25.0624 0x0edc  sppsvc - ok
19:10:25.0702 0x0edc  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:10:25.0733 0x0edc  sppuinotify - ok
19:10:25.0874 0x0edc  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:10:25.0905 0x0edc  srv - ok
19:10:26.0061 0x0edc  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:10:26.0092 0x0edc  srv2 - ok
19:10:26.0186 0x0edc  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:10:26.0201 0x0edc  srvnet - ok
19:10:26.0357 0x0edc  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:10:26.0388 0x0edc  SSDPSRV - ok
19:10:26.0466 0x0edc  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:10:26.0513 0x0edc  SstpSvc - ok
19:10:26.0591 0x0edc  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:10:26.0591 0x0edc  stexstor - ok
19:10:26.0700 0x0edc  [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
19:10:26.0700 0x0edc  StillCam - ok
19:10:26.0888 0x0edc  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
19:10:26.0966 0x0edc  StiSvc - ok
19:10:27.0028 0x0edc  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:10:27.0044 0x0edc  swenum - ok
19:10:27.0215 0x0edc  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
19:10:27.0262 0x0edc  swprv - ok
19:10:27.0418 0x0edc  [ 5CDD124913E91C7F79B4D5CAE1C7C4DE, CA4A3DD211CA1227921FBB190AA86291203AA84651B4AF769F9031D698E22FDF ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:10:27.0434 0x0edc  SynTP - ok
19:10:27.0824 0x0edc  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
19:10:27.0995 0x0edc  SysMain - ok
19:10:28.0073 0x0edc  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
19:10:28.0104 0x0edc  TabletInputService - ok
19:10:28.0245 0x0edc  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:10:28.0292 0x0edc  TapiSrv - ok
19:10:28.0370 0x0edc  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
19:10:28.0401 0x0edc  TBS - ok
19:10:28.0697 0x0edc  [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:10:28.0822 0x0edc  Tcpip - ok
19:10:28.0962 0x0edc  [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:10:29.0040 0x0edc  TCPIP6 - ok
19:10:29.0134 0x0edc  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:10:29.0150 0x0edc  tcpipreg - ok
19:10:29.0259 0x0edc  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:10:29.0259 0x0edc  TDPIPE - ok
19:10:29.0321 0x0edc  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:10:29.0321 0x0edc  TDTCP - ok
19:10:29.0399 0x0edc  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:10:29.0415 0x0edc  tdx - ok
19:10:29.0462 0x0edc  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:10:29.0477 0x0edc  TermDD - ok
19:10:29.0680 0x0edc  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll
19:10:29.0758 0x0edc  TermService - ok
19:10:29.0820 0x0edc  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
19:10:29.0852 0x0edc  Themes - ok
19:10:29.0898 0x0edc  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
19:10:29.0930 0x0edc  THREADORDER - ok
19:10:30.0070 0x0edc  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
19:10:30.0101 0x0edc  TrkWks - ok
19:10:30.0257 0x0edc  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:10:30.0288 0x0edc  TrustedInstaller - ok
19:10:30.0366 0x0edc  [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:10:30.0366 0x0edc  tssecsrv - ok
19:10:30.0476 0x0edc  [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:10:30.0491 0x0edc  TsUsbFlt - ok
19:10:30.0616 0x0edc  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:10:30.0632 0x0edc  tunnel - ok
19:10:30.0678 0x0edc  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:10:30.0694 0x0edc  uagp35 - ok
19:10:30.0834 0x0edc  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:10:30.0866 0x0edc  udfs - ok
19:10:30.0975 0x0edc  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:10:31.0006 0x0edc  UI0Detect - ok
19:10:31.0068 0x0edc  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:10:31.0084 0x0edc  uliagpkx - ok
19:10:31.0162 0x0edc  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\drivers\umbus.sys
19:10:31.0162 0x0edc  umbus - ok
19:10:31.0240 0x0edc  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
19:10:31.0240 0x0edc  UmPass - ok
19:10:31.0427 0x0edc  [ F9EC9ACD504D823D9B9CA98A4F8D3CA2, 58DAD5111C598F14CB199FE6A61FA5918F29513B778A8664FD05EFAB3C665D4F ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:10:31.0458 0x0edc  Updater Service - ok
19:10:31.0630 0x0edc  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
19:10:31.0677 0x0edc  upnphost - ok
19:10:31.0755 0x0edc  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:10:31.0770 0x0edc  usbccgp - ok
19:10:31.0911 0x0edc  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:10:31.0926 0x0edc  usbcir - ok
19:10:31.0989 0x0edc  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:10:32.0004 0x0edc  usbehci - ok
19:10:32.0145 0x0edc  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:10:32.0176 0x0edc  usbhub - ok
19:10:32.0254 0x0edc  [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:10:32.0254 0x0edc  usbohci - ok
19:10:32.0348 0x0edc  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
19:10:32.0348 0x0edc  usbprint - ok
19:10:32.0426 0x0edc  [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:10:32.0441 0x0edc  USBSTOR - ok
19:10:32.0488 0x0edc  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:10:32.0504 0x0edc  usbuhci - ok
19:10:32.0660 0x0edc  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:10:32.0691 0x0edc  usbvideo - ok
19:10:32.0753 0x0edc  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
19:10:32.0784 0x0edc  UxSms - ok
19:10:32.0816 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc        C:\Windows\system32\lsass.exe
19:10:32.0831 0x0edc  VaultSvc - ok
19:10:32.0956 0x0edc  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:10:32.0972 0x0edc  vdrvroot - ok
19:10:33.0159 0x0edc  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
19:10:33.0252 0x0edc  vds - ok
19:10:33.0362 0x0edc  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:10:33.0377 0x0edc  vga - ok
19:10:33.0408 0x0edc  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:10:33.0408 0x0edc  VgaSave - ok
19:10:33.0502 0x0edc  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:10:33.0533 0x0edc  vhdmp - ok
19:10:33.0596 0x0edc  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
19:10:33.0611 0x0edc  viaagp - ok
19:10:33.0642 0x0edc  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
19:10:33.0658 0x0edc  ViaC7 - ok
19:10:33.0736 0x0edc  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:10:33.0736 0x0edc  viaide - ok
19:10:33.0783 0x0edc  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:10:33.0798 0x0edc  volmgr - ok
19:10:33.0892 0x0edc  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:10:33.0908 0x0edc  volmgrx - ok
19:10:34.0001 0x0edc  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:10:34.0032 0x0edc  volsnap - ok
19:10:34.0142 0x0edc  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:10:34.0157 0x0edc  vsmraid - ok
19:10:34.0500 0x0edc  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
19:10:34.0625 0x0edc  VSS - ok
19:10:34.0703 0x0edc  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:10:34.0703 0x0edc  vwifibus - ok
19:10:34.0781 0x0edc  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:10:34.0781 0x0edc  vwififlt - ok
19:10:34.0922 0x0edc  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
19:10:34.0968 0x0edc  W32Time - ok
19:10:35.0046 0x0edc  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:10:35.0062 0x0edc  WacomPen - ok
19:10:35.0140 0x0edc  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:10:35.0156 0x0edc  WANARP - ok
19:10:35.0171 0x0edc  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:10:35.0187 0x0edc  Wanarpv6 - ok
19:10:35.0639 0x0edc  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
19:10:35.0780 0x0edc  wbengine - ok
19:10:35.0889 0x0edc  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:10:35.0920 0x0edc  WbioSrvc - ok
19:10:36.0060 0x0edc  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:10:36.0107 0x0edc  wcncsvc - ok
19:10:36.0201 0x0edc  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:10:36.0232 0x0edc  WcsPlugInService - ok
19:10:36.0310 0x0edc  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
19:10:36.0326 0x0edc  Wd - ok
19:10:36.0560 0x0edc  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:10:36.0622 0x0edc  Wdf01000 - ok
19:10:36.0684 0x0edc  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:10:36.0731 0x0edc  WdiServiceHost - ok
19:10:36.0747 0x0edc  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:10:36.0794 0x0edc  WdiSystemHost - ok
19:10:36.0887 0x0edc  [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient       C:\Windows\System32\webclnt.dll
19:10:36.0934 0x0edc  WebClient - ok
19:10:37.0028 0x0edc  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:10:37.0059 0x0edc  Wecsvc - ok
19:10:37.0152 0x0edc  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:10:37.0184 0x0edc  wercplsupport - ok
19:10:37.0293 0x0edc  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
19:10:37.0324 0x0edc  WerSvc - ok
19:10:37.0464 0x0edc  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:10:37.0480 0x0edc  WfpLwf - ok
19:10:37.0558 0x0edc  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:10:37.0558 0x0edc  WIMMount - ok
19:10:37.0886 0x0edc  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
19:10:37.0964 0x0edc  WinDefend - ok
19:10:38.0042 0x0edc  WinHttpAutoProxySvc - ok
19:10:38.0338 0x0edc  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:10:38.0354 0x0edc  Winmgmt - ok
19:10:38.0681 0x0edc  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
19:10:38.0884 0x0edc  WinRM - ok
19:10:39.0102 0x0edc  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:10:39.0227 0x0edc  Wlansvc - ok
19:10:39.0336 0x0edc  [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:10:39.0352 0x0edc  wlcrasvc - ok
19:10:39.0726 0x0edc  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:10:39.0929 0x0edc  wlidsvc - ok
19:10:40.0007 0x0edc  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:10:40.0023 0x0edc  WmiAcpi - ok
19:10:40.0148 0x0edc  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:10:40.0163 0x0edc  wmiApSrv - ok
19:10:40.0444 0x0edc  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
19:10:40.0600 0x0edc  WMPNetworkSvc - ok
19:10:40.0678 0x0edc  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:10:40.0725 0x0edc  WPCSvc - ok
19:10:40.0787 0x0edc  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:10:40.0834 0x0edc  WPDBusEnum - ok
19:10:40.0896 0x0edc  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:10:40.0912 0x0edc  ws2ifsl - ok
19:10:41.0021 0x0edc  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
19:10:41.0068 0x0edc  wscsvc - ok
19:10:41.0084 0x0edc  WSearch - ok
19:10:41.0505 0x0edc  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:10:41.0676 0x0edc  wuauserv - ok
19:10:41.0754 0x0edc  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:10:41.0754 0x0edc  WudfPf - ok
19:10:41.0864 0x0edc  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:10:41.0879 0x0edc  WUDFRd - ok
19:10:41.0973 0x0edc  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:10:42.0004 0x0edc  wudfsvc - ok
19:10:42.0082 0x0edc  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:10:42.0129 0x0edc  WwanSvc - ok
19:10:42.0222 0x0edc  ================ Scan global ===============================
19:10:42.0347 0x0edc  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
19:10:42.0410 0x0edc  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
19:10:42.0488 0x0edc  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
19:10:42.0597 0x0edc  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
19:10:42.0737 0x0edc  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
19:10:42.0784 0x0edc  [ Global ] - ok
19:10:42.0784 0x0edc  ================ Scan MBR ==================================
19:10:42.0815 0x0edc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:10:44.0531 0x0edc  \Device\Harddisk0\DR0 - ok
19:10:44.0531 0x0edc  ================ Scan VBR ==================================
19:10:44.0547 0x0edc  [ A4DABDA017ED9C6170FF17FBA4D58476 ] \Device\Harddisk0\DR0\Partition1
19:10:44.0609 0x0edc  \Device\Harddisk0\DR0\Partition1 - ok
19:10:44.0625 0x0edc  [ E61D53CAED6E15EB78E39E52315C16F0 ] \Device\Harddisk0\DR0\Partition2
19:10:44.0640 0x0edc  \Device\Harddisk0\DR0\Partition2 - ok
19:10:44.0640 0x0edc  ================ Scan active images ========================
19:10:44.0656 0x0edc  [ B7EFEF22FF426EC4158A177CB3B558D3, 87D8F07E23B928B9D71B13B0F43A6235BAFC48879CFCF5920889849D09FFCD6C ] C:\Windows\System32\drivers\crashdmp.sys
19:10:44.0656 0x0edc  C:\Windows\System32\drivers\crashdmp.sys - ok
19:10:44.0687 0x0edc  [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] C:\Windows\System32\drivers\iaStor.sys
19:10:44.0687 0x0edc  C:\Windows\System32\drivers\iaStor.sys - ok
19:10:44.0703 0x0edc  [ 62A63EF2F3053B461CB327E4D69AAA74, 26CC8BBC9BB6C53B46C837FA75C5449508989C26949BD19EB8E03E37F7928456 ] C:\Windows\System32\drivers\dumpfve.sys
19:10:44.0703 0x0edc  C:\Windows\System32\drivers\dumpfve.sys - ok
19:10:44.0718 0x0edc  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] C:\Windows\System32\drivers\cdrom.sys
19:10:44.0718 0x0edc  C:\Windows\System32\drivers\cdrom.sys - ok
19:10:44.0750 0x0edc  [ 3A50AD6AE8D8A0F78F03316F5B93FE45, 6F3952EDA23E5FD7CACE152D3DA3B1F1238E9B9976CDD5193D21424463BAA0E9 ] C:\Windows\System32\drivers\aswSnx.sys
19:10:44.0750 0x0edc  C:\Windows\System32\drivers\aswSnx.sys - ok
19:10:44.0765 0x0edc  [ CB47C414E083CA6E50E634B148F28F64, 8699FFA4FD53508583B713DDD513CA494FFF8BE71006A2DA55A4EEE03C42BD5B ] C:\Windows\System32\drivers\mwlPSDFilter.sys
19:10:44.0765 0x0edc  C:\Windows\System32\drivers\mwlPSDFilter.sys - ok
19:10:44.0781 0x0edc  [ B6381B4DC603C558419641BA969930E0, F6586B6D055C62942CD0E5702FFCC6F4DB7424DC551EB0041876C3544994EB59 ] C:\Windows\System32\drivers\aswsp.sys
19:10:44.0781 0x0edc  C:\Windows\System32\drivers\aswsp.sys - ok
19:10:44.0812 0x0edc  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] C:\Windows\System32\drivers\beep.sys
19:10:44.0812 0x0edc  C:\Windows\System32\drivers\beep.sys - ok
19:10:44.0828 0x0edc  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] C:\Windows\System32\drivers\null.sys
19:10:44.0828 0x0edc  C:\Windows\System32\drivers\null.sys - ok
19:10:44.0843 0x0edc  [ 15C126D1B55814B9E5CAB10A9C1F4C67, CD118B6508355037294AE940E039C095BA9E4A96AA129D38DB0AEC0C393D0F00 ] C:\Windows\System32\drivers\videoprt.sys
19:10:44.0843 0x0edc  C:\Windows\System32\drivers\videoprt.sys - ok
19:10:44.0859 0x0edc  [ CB45A417C8EF7BA6BAC67EDCDDED8700, 0D9AD2498A7D3B7C3E485A5803D2BDF781B38E07E3C2B5980859073EF6FD9B8A ] C:\Windows\System32\drivers\watchdog.sys
19:10:44.0859 0x0edc  C:\Windows\System32\drivers\watchdog.sys - ok
19:10:44.0874 0x0edc  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] C:\Windows\System32\drivers\RDPCDD.sys
19:10:44.0874 0x0edc  C:\Windows\System32\drivers\RDPCDD.sys - ok
19:10:44.0890 0x0edc  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] C:\Windows\System32\drivers\vga.sys
19:10:44.0906 0x0edc  C:\Windows\System32\drivers\vga.sys - ok
19:10:44.0921 0x0edc  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:10:44.0921 0x0edc  C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:10:44.0937 0x0edc  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] C:\Windows\System32\drivers\RDPREFMP.sys
19:10:44.0937 0x0edc  C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:10:44.0952 0x0edc  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] C:\Windows\System32\drivers\msfs.sys
19:10:44.0952 0x0edc  C:\Windows\System32\drivers\msfs.sys - ok
19:10:44.0968 0x0edc  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] C:\Windows\System32\drivers\npfs.sys
19:10:44.0968 0x0edc  C:\Windows\System32\drivers\npfs.sys - ok
19:10:44.0984 0x0edc  [ 2F885864D5BC8A16C86BEE595969A48A, 279E176CDEF9148A4A07F7D37172A2C2BDC89E47021EEB76F1BCDF789B76D95A ] C:\Windows\System32\drivers\tdi.sys
19:10:44.0984 0x0edc  C:\Windows\System32\drivers\tdi.sys - ok
19:10:44.0999 0x0edc  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] C:\Windows\System32\drivers\tdx.sys
19:10:44.0999 0x0edc  C:\Windows\System32\drivers\tdx.sys - ok
19:10:45.0015 0x0edc  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] C:\Windows\System32\drivers\netbt.sys
19:10:45.0015 0x0edc  C:\Windows\System32\drivers\netbt.sys - ok
19:10:45.0030 0x0edc  [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] C:\Windows\System32\drivers\afd.sys
19:10:45.0030 0x0edc  C:\Windows\System32\drivers\afd.sys - ok
19:10:45.0046 0x0edc  [ 769C65057212FB5004679E02EF8145C0, D6876E6ECA13DECB8AD13B3A46D7DA1B1CA4DB01A7A70371D112B491B36EC55E ] C:\Windows\System32\drivers\aswRdr2.sys
19:10:45.0046 0x0edc  C:\Windows\System32\drivers\aswRdr2.sys - ok
19:10:45.0077 0x0edc  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] C:\Windows\System32\drivers\wfplwf.sys
19:10:45.0077 0x0edc  C:\Windows\System32\drivers\wfplwf.sys - ok
19:10:45.0093 0x0edc  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] C:\Windows\System32\drivers\ws2ifsl.sys
19:10:45.0093 0x0edc  C:\Windows\System32\drivers\ws2ifsl.sys - ok
19:10:45.0108 0x0edc  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] C:\Windows\System32\drivers\pacer.sys
19:10:45.0108 0x0edc  C:\Windows\System32\drivers\pacer.sys - ok
19:10:45.0140 0x0edc  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] C:\Windows\System32\drivers\vwififlt.sys
19:10:45.0140 0x0edc  C:\Windows\System32\drivers\vwififlt.sys - ok
19:10:45.0155 0x0edc  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] C:\Windows\System32\drivers\netbios.sys
19:10:45.0155 0x0edc  C:\Windows\System32\drivers\netbios.sys - ok
19:10:45.0171 0x0edc  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] C:\Windows\System32\drivers\wanarp.sys
19:10:45.0171 0x0edc  C:\Windows\System32\drivers\wanarp.sys - ok
19:10:45.0202 0x0edc  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] C:\Windows\System32\drivers\termdd.sys
19:10:45.0202 0x0edc  C:\Windows\System32\drivers\termdd.sys - ok
19:10:45.0218 0x0edc  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] C:\Windows\System32\drivers\rdbss.sys
19:10:45.0218 0x0edc  C:\Windows\System32\drivers\rdbss.sys - ok
19:10:45.0233 0x0edc  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] C:\Windows\System32\drivers\nsiproxy.sys
19:10:45.0233 0x0edc  C:\Windows\System32\drivers\nsiproxy.sys - ok
19:10:45.0249 0x0edc  [ 5A236A36DB8687D1E64DC81C03EAABE1, 63778FDB0CF79419FD8BEC2C3189390A6CDD5E791579133D106BF34378C848C5 ] C:\Windows\System32\drivers\mwlPSDVDisk.sys
19:10:45.0249 0x0edc  C:\Windows\System32\drivers\mwlPSDVDisk.sys - ok
19:10:45.0264 0x0edc  [ 647B953019559BFF07536F5C6121F333, E27E2B37544F243BF01EFCA1ECB58C89ED72D88664AABB3BEDFF1304B62417CC ] C:\Windows\System32\drivers\mwlPSDNserv.sys
19:10:45.0264 0x0edc  C:\Windows\System32\drivers\mwlPSDNserv.sys - ok
19:10:45.0280 0x0edc  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] C:\Windows\System32\drivers\mssmbios.sys
19:10:45.0296 0x0edc  C:\Windows\System32\drivers\mssmbios.sys - ok
19:10:45.0311 0x0edc  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] C:\Windows\System32\drivers\dfsc.sys
19:10:45.0311 0x0edc  C:\Windows\System32\drivers\dfsc.sys - ok
19:10:45.0327 0x0edc  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] C:\Windows\System32\drivers\discache.sys
19:10:45.0327 0x0edc  C:\Windows\System32\drivers\discache.sys - ok
19:10:45.0342 0x0edc  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] C:\Windows\System32\drivers\blbdrive.sys
19:10:45.0342 0x0edc  C:\Windows\System32\drivers\blbdrive.sys - ok
19:10:45.0358 0x0edc  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] C:\Windows\System32\drivers\tunnel.sys
19:10:45.0358 0x0edc  C:\Windows\System32\drivers\tunnel.sys - ok
19:10:45.0374 0x0edc  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] C:\Windows\System32\drivers\intelppm.sys
19:10:45.0374 0x0edc  C:\Windows\System32\drivers\intelppm.sys - ok
19:10:45.0389 0x0edc  [ E0B8C6B1EA1EF94747E966E9093FB968, 364539AE2AD49870DAF2773B6BD6306764D936F5EE1C2929B2B5A47EEC3409A7 ] C:\Windows\System32\ntdll.dll
19:10:45.0389 0x0edc  C:\Windows\System32\ntdll.dll - ok
19:10:45.0405 0x0edc  [ DE91DCC7BC55E940979097E98F743205, 77CBB42FA1648CF03F21709738F7F91513385F82B544981741F7BD8D65FB7786 ] C:\Windows\System32\smss.exe
19:10:45.0405 0x0edc  C:\Windows\System32\smss.exe - ok
19:10:45.0420 0x0edc  [ F88A52EB62019D6A62FDD9E08034DBD8, 2E035366E9A1A26FB15F1E4857056E6AD7932BCE8CC68BB4B655609F424D2756 ] C:\Windows\System32\autochk.exe
19:10:45.0420 0x0edc  C:\Windows\System32\autochk.exe - ok
19:10:45.0436 0x0edc  [ BA41E1BBA410212CE6D30E0DAC47972B, C1D8E5C95EADD9E2083275C1DA633F0B773B65EABEBC0F52224FF1156CBBE8C1 ] C:\Windows\System32\drivers\igdkmd32.sys
19:10:45.0436 0x0edc  C:\Windows\System32\drivers\igdkmd32.sys - ok
19:10:45.0452 0x0edc  [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] C:\Windows\System32\drivers\dxgkrnl.sys
19:10:45.0452 0x0edc  C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:10:45.0467 0x0edc  [ E405328A0E38BF823E2361C413283F6D, 7637EA2F14216F0469CC309C0ABBFB70213721B0BADD6C36522F6789CC0F361E ] C:\Windows\System32\drivers\dxgmms1.sys
19:10:45.0467 0x0edc  C:\Windows\System32\drivers\dxgmms1.sys - ok
19:10:45.0483 0x0edc  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] C:\Windows\System32\drivers\hdaudbus.sys
19:10:45.0483 0x0edc  C:\Windows\System32\drivers\hdaudbus.sys - ok
19:10:45.0498 0x0edc  [ B86270CC948EAD6481AC487D65DDB462, D2ACFC21AF0EBC9707337C1C3A980F767B0D165AB76434AB7D20504C69E9FDB4 ] C:\Windows\System32\drivers\L1C62x86.sys
19:10:45.0498 0x0edc  C:\Windows\System32\drivers\L1C62x86.sys - ok
19:10:45.0514 0x0edc  [ 8D6E8178AB4379C932C34A109D27C5A9, 808089150DBC965D104E8DE2FCBB5C6F486DA142E3BC75CB3F5D37439ED06684 ] C:\Windows\System32\drivers\athr.sys
19:10:45.0514 0x0edc  C:\Windows\System32\drivers\athr.sys - ok
19:10:45.0530 0x0edc  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] C:\Windows\System32\drivers\vwifibus.sys
19:10:45.0530 0x0edc  C:\Windows\System32\drivers\vwifibus.sys - ok
19:10:45.0545 0x0edc  [ EC2C5AF37B76D7B58C642CB74423DB7A, BE1F6F2CE3B1539DAC23B73EA655B77E6E628E5E55BD16091E76934723BE77B1 ] C:\Windows\System32\drivers\usbport.sys
19:10:45.0545 0x0edc  C:\Windows\System32\drivers\usbport.sys - ok
19:10:45.0545 0x0edc  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] C:\Windows\System32\drivers\usbuhci.sys
19:10:45.0545 0x0edc  C:\Windows\System32\drivers\usbuhci.sys - ok
19:10:45.0576 0x0edc  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] C:\Windows\System32\drivers\usbehci.sys
19:10:45.0576 0x0edc  C:\Windows\System32\drivers\usbehci.sys - ok
19:10:45.0592 0x0edc  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] C:\Windows\System32\drivers\CmBatt.sys
19:10:45.0592 0x0edc  C:\Windows\System32\drivers\CmBatt.sys - ok
19:10:45.0608 0x0edc  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] C:\Windows\System32\drivers\i8042prt.sys
19:10:45.0608 0x0edc  C:\Windows\System32\drivers\i8042prt.sys - ok
19:10:45.0623 0x0edc  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] C:\Windows\System32\drivers\kbdclass.sys
19:10:45.0623 0x0edc  C:\Windows\System32\drivers\kbdclass.sys - ok
19:10:45.0639 0x0edc  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] C:\Windows\System32\drivers\CompositeBus.sys
19:10:45.0639 0x0edc  C:\Windows\System32\drivers\CompositeBus.sys - ok
19:10:45.0654 0x0edc  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] C:\Windows\System32\drivers\wmiacpi.sys
19:10:45.0654 0x0edc  C:\Windows\System32\drivers\wmiacpi.sys - ok
19:10:45.0670 0x0edc  [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] C:\Windows\System32\drivers\serscan.sys
19:10:45.0670 0x0edc  C:\Windows\System32\drivers\serscan.sys - ok
19:10:45.0670 0x0edc  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] C:\Windows\System32\drivers\agilevpn.sys
19:10:45.0670 0x0edc  C:\Windows\System32\drivers\agilevpn.sys - ok
19:10:45.0686 0x0edc  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] C:\Windows\System32\drivers\rasl2tp.sys
19:10:45.0701 0x0edc  C:\Windows\System32\drivers\rasl2tp.sys - ok
19:10:45.0701 0x0edc  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] C:\Windows\System32\drivers\ndistapi.sys
19:10:45.0701 0x0edc  C:\Windows\System32\drivers\ndistapi.sys - ok
19:10:45.0717 0x0edc  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] C:\Windows\System32\drivers\ndiswan.sys
19:10:45.0732 0x0edc  C:\Windows\System32\drivers\ndiswan.sys - ok
19:10:45.0732 0x0edc  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] C:\Windows\System32\drivers\raspppoe.sys
19:10:45.0732 0x0edc  C:\Windows\System32\drivers\raspppoe.sys - ok
19:10:45.0748 0x0edc  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] C:\Windows\System32\drivers\raspptp.sys
19:10:45.0748 0x0edc  C:\Windows\System32\drivers\raspptp.sys - ok
19:10:45.0764 0x0edc  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\System32\ws2_32.dll
19:10:45.0764 0x0edc  C:\Windows\System32\ws2_32.dll - ok
19:10:45.0779 0x0edc  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] C:\Windows\System32\drivers\rassstp.sys
19:10:45.0779 0x0edc  C:\Windows\System32\drivers\rassstp.sys - ok
19:10:45.0795 0x0edc  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\System32\ole32.dll
19:10:45.0795 0x0edc  C:\Windows\System32\ole32.dll - ok
19:10:45.0810 0x0edc  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] C:\Windows\System32\drivers\mouclass.sys
19:10:45.0810 0x0edc  C:\Windows\System32\drivers\mouclass.sys - ok
19:10:45.0826 0x0edc  [ 5DCEF0C32BE0F33277326586FA503689, B6AEB5DE8F2430D2032DAF5B58DBB4E192F6113DB5379F5AD8189A7AC2560EEA ] C:\Windows\System32\drivers\ks.sys
19:10:45.0826 0x0edc  C:\Windows\System32\drivers\ks.sys - ok
19:10:45.0842 0x0edc  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] C:\Windows\System32\drivers\swenum.sys
19:10:45.0842 0x0edc  C:\Windows\System32\drivers\swenum.sys - ok
19:10:45.0857 0x0edc  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\System32\clbcatq.dll
19:10:45.0857 0x0edc  C:\Windows\System32\clbcatq.dll - ok
19:10:45.0873 0x0edc  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] C:\Windows\System32\drivers\umbus.sys
19:10:45.0873 0x0edc  C:\Windows\System32\drivers\umbus.sys - ok
19:10:45.0888 0x0edc  [ E02781D4871844DCD30DF1D69A650F78, DC77302F06CD6CF7FC2C3B0F433A4AE41DF869B9F342C0656CCD8A125B3D3318 ] C:\Windows\System32\shell32.dll
19:10:45.0888 0x0edc  C:\Windows\System32\shell32.dll - ok
19:10:45.0904 0x0edc  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] C:\Windows\System32\drivers\usbhub.sys
19:10:45.0904 0x0edc  C:\Windows\System32\drivers\usbhub.sys - ok
19:10:45.0920 0x0edc  [ 5A775CAE7CCCAC581C05B8D2C92C0DF1, 0BD75912F3BDCF79B6C3CCEBCF3242725A17F73D6F6772C2C145F8157628B2E9 ] C:\Windows\System32\gdi32.dll
19:10:45.0920 0x0edc  C:\Windows\System32\gdi32.dll - ok
19:10:45.0935 0x0edc  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\System32\psapi.dll
19:10:45.0935 0x0edc  C:\Windows\System32\psapi.dll - ok
19:10:45.0951 0x0edc  [ D7B1721B587698D495079B28758F13B3, D1725300E6176F8CBC746A9CD95B4FCFF371D97A143ECA3C42E8498C27CCE92E ] C:\Windows\System32\urlmon.dll
19:10:45.0951 0x0edc  C:\Windows\System32\urlmon.dll - ok
19:10:45.0966 0x0edc  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] C:\Windows\System32\drivers\ndproxy.sys
19:10:45.0966 0x0edc  C:\Windows\System32\drivers\ndproxy.sys - ok
19:10:45.0966 0x0edc  [ 5A043BDA3BFADD5B4C16F3BDE5EC4312, 70E4D7EB03AE69D51EFCFBF227D3C06CD378806B1D0FB6993D6022379FC0B9F9 ] C:\Windows\System32\rpcrt4.dll
19:10:45.0966 0x0edc  C:\Windows\System32\rpcrt4.dll - ok
19:10:45.0982 0x0edc  [ 24E07A483C6FA35F91E9D2F84495819E, DB77A32D91117159250EDA17ED722C7B6A48323F74BA1BF935EE7BF5CCDB2FC5 ] C:\Windows\System32\iertutil.dll
19:10:45.0982 0x0edc  C:\Windows\System32\iertutil.dll - ok
19:10:45.0998 0x0edc  [ 9842041E2F5ACE1E2F5FB4EF02053DC8, 8260D3DDCC92987CA3A456ABD0982A7C81DBBEDB87DE781039F2E4BCCF27DB6D ] C:\Windows\System32\drivers\drmk.sys
19:10:45.0998 0x0edc  C:\Windows\System32\drivers\drmk.sys - ok
19:10:46.0029 0x0edc  [ EB6137D696A9B4E9718AC6F8641CB4C9, 438B6177F8BF50E17226D9C4E5FAE42D82178CCDD79979C78B15261B459E153E ] C:\Windows\System32\drivers\portcls.sys
19:10:46.0029 0x0edc  C:\Windows\System32\drivers\portcls.sys - ok
19:10:46.0044 0x0edc  [ 947318C01C648A054A05DBD1C7F73E3B, 838948A754E8734FE22D4F5939A04C4A6949EA884780C2A1A9B04C609F031D1F ] C:\Windows\System32\drivers\RTKVHDA.sys
19:10:46.0044 0x0edc  C:\Windows\System32\drivers\RTKVHDA.sys - ok
19:10:46.0044 0x0edc  [ 6933E2AFF444A7A95D5C67E98449163E, 4E745B89D319FF997F7DFD288E9D02143CEF5474D2B8814803504A6570A146DE ] C:\Windows\System32\kernel32.dll
19:10:46.0044 0x0edc  C:\Windows\System32\kernel32.dll - ok
19:10:46.0060 0x0edc  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\System32\sechost.dll
19:10:46.0060 0x0edc  C:\Windows\System32\sechost.dll - ok
19:10:46.0091 0x0edc  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\System32\Wldap32.dll
19:10:46.0091 0x0edc  C:\Windows\System32\Wldap32.dll - ok
19:10:46.0107 0x0edc  [ 070C5B9D3006602A07757179D9B56F5D, 7B24E38ADDEEDD9168D0C87275AC0936D0A4F1195810F9736118076589BC18BA ] C:\Windows\System32\difxapi.dll
19:10:46.0107 0x0edc  C:\Windows\System32\difxapi.dll - ok
19:10:46.0122 0x0edc  [ B7230010D97787AF3D25E4C82F2B06B9, C795E9811CD461F8E98D1738667EB0C265A57065EA3420CE596D5038E7430C1E ] C:\Windows\System32\usp10.dll
19:10:46.0122 0x0edc  C:\Windows\System32\usp10.dll - ok
19:10:46.0138 0x0edc  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\System32\setupapi.dll
19:10:46.0138 0x0edc  C:\Windows\System32\setupapi.dll - ok
19:10:46.0154 0x0edc  [ F1B27299F547D452EDAEF01FC187CB91, 574FC8ACB349244122E6D76333E2BB72680639EEF61C0B679F8485023B619263 ] C:\Windows\System32\drivers\hidparse.sys
19:10:46.0154 0x0edc  C:\Windows\System32\drivers\hidparse.sys - ok
19:10:46.0185 0x0edc  [ 50ABE682EBE752EAF62B18790D6D491C, E01499C4F81CC49A89590A07CB814D21126CE52DCD3FACADB6D1E243940C69FA ] C:\Windows\System32\drivers\hidclass.sys
19:10:46.0185 0x0edc  C:\Windows\System32\drivers\hidclass.sys - ok
19:10:46.0200 0x0edc  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] C:\Windows\System32\drivers\hidusb.sys
19:10:46.0200 0x0edc  C:\Windows\System32\drivers\hidusb.sys - ok
19:10:46.0216 0x0edc  [ 74F805AB12EB0E3E49E469F19FF02640, 23A845F9162ECE37B6CF5B2537562C69705A4192D19438109B5212E111A49004 ] C:\Windows\System32\drivers\usbd.sys
19:10:46.0216 0x0edc  C:\Windows\System32\drivers\usbd.sys - ok
19:10:46.0232 0x0edc  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] C:\Windows\System32\drivers\usbccgp.sys
19:10:46.0232 0x0edc  C:\Windows\System32\drivers\usbccgp.sys - ok
19:10:46.0247 0x0edc  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] C:\Windows\System32\drivers\mouhid.sys
19:10:46.0247 0x0edc  C:\Windows\System32\drivers\mouhid.sys - ok
19:10:46.0263 0x0edc  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] C:\Windows\System32\drivers\usbvideo.sys
19:10:46.0263 0x0edc  C:\Windows\System32\drivers\usbvideo.sys - ok
19:10:46.0278 0x0edc  [ 9284BA6C27D360D71A5C0ECC8456E78E, 1619E95E183AB48535158814826A4F87B1A67AC4777A1637124FCAEF04453768 ] C:\Windows\System32\wininet.dll
19:10:46.0278 0x0edc  C:\Windows\System32\wininet.dll - ok
19:10:46.0294 0x0edc  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\System32\oleaut32.dll
19:10:46.0294 0x0edc  C:\Windows\System32\oleaut32.dll - ok
19:10:46.0310 0x0edc  [ F632602316001D517F4EF3B53B9A6C33, 1492B82B12AA8B69C5111D5E61997D41AEC9E454BE76E8024B18E28B145E9FFD ] C:\Windows\System32\lpk.dll
19:10:46.0310 0x0edc  C:\Windows\System32\lpk.dll - ok
19:10:46.0325 0x0edc  [ 4A8E2F20809CC161107FAA94F6CF2685, 561DCE9E49696288A9EE802C0BEF424EB34A1C29B6D8931CCD5C7E26CB4F88EA ] C:\Windows\System32\imm32.dll
19:10:46.0325 0x0edc  C:\Windows\System32\imm32.dll - ok
19:10:46.0341 0x0edc  [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66, 6CCAD926934EACBE92FDFA1AE46DA6101D78A0B44AE38594E3A88FEBB35D230F ] C:\Windows\System32\user32.dll
19:10:46.0341 0x0edc  C:\Windows\System32\user32.dll - ok
19:10:46.0356 0x0edc  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\System32\msvcrt.dll
19:10:46.0356 0x0edc  C:\Windows\System32\msvcrt.dll - ok
19:10:46.0372 0x0edc  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\System32\normaliz.dll
19:10:46.0372 0x0edc  C:\Windows\System32\normaliz.dll - ok
19:10:46.0403 0x0edc  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\System32\nsi.dll
19:10:46.0403 0x0edc  C:\Windows\System32\nsi.dll - ok
19:10:46.0419 0x0edc  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\System32\shlwapi.dll
19:10:46.0419 0x0edc  C:\Windows\System32\shlwapi.dll - ok
19:10:46.0434 0x0edc  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\System32\comdlg32.dll
19:10:46.0434 0x0edc  C:\Windows\System32\comdlg32.dll - ok
19:10:46.0450 0x0edc  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\System32\advapi32.dll
19:10:46.0450 0x0edc  C:\Windows\System32\advapi32.dll - ok
19:10:46.0466 0x0edc  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\System32\msctf.dll
19:10:46.0466 0x0edc  C:\Windows\System32\msctf.dll - ok
19:10:46.0481 0x0edc  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\System32\imagehlp.dll
19:10:46.0481 0x0edc  C:\Windows\System32\imagehlp.dll - ok
19:10:46.0512 0x0edc  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
19:10:46.0512 0x0edc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
19:10:46.0528 0x0edc  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
19:10:46.0528 0x0edc  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
19:10:46.0544 0x0edc  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\System32\wintrust.dll
19:10:46.0544 0x0edc  C:\Windows\System32\wintrust.dll - ok
19:10:46.0559 0x0edc  [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\System32\devobj.dll
19:10:46.0559 0x0edc  C:\Windows\System32\devobj.dll - ok
19:10:46.0590 0x0edc  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
19:10:46.0590 0x0edc  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
19:10:46.0606 0x0edc  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
19:10:46.0606 0x0edc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
19:10:46.0622 0x0edc  [ 1E65CF7B26D02750544EFDD73C8118FA, EAE54B09FCA7D9A7F26BF3CC30ECDF0E58555F21DEA1A6A3F1D58554DBE86598 ] C:\Windows\System32\KernelBase.dll
19:10:46.0622 0x0edc  C:\Windows\System32\KernelBase.dll - ok
19:10:46.0637 0x0edc  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\System32\comctl32.dll
19:10:46.0637 0x0edc  C:\Windows\System32\comctl32.dll - ok
19:10:46.0653 0x0edc  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
19:10:46.0653 0x0edc  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
19:10:46.0668 0x0edc  [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\System32\cfgmgr32.dll
19:10:46.0668 0x0edc  C:\Windows\System32\cfgmgr32.dll - ok
19:10:46.0684 0x0edc  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
19:10:46.0684 0x0edc  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
19:10:46.0700 0x0edc  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\System32\crypt32.dll
19:10:46.0700 0x0edc  C:\Windows\System32\crypt32.dll - ok
19:10:46.0715 0x0edc  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\System32\msasn1.dll
19:10:46.0715 0x0edc  C:\Windows\System32\msasn1.dll - ok
19:10:46.0715 0x0edc  [ 5FCD3320AAE71506B43F9E12E4E72172, 067531833F90241A181EF082D85CFF74336D68DAB0AADE4393C1F35CD662DAAE ] C:\Windows\System32\drivers\dxapi.sys
19:10:46.0715 0x0edc  C:\Windows\System32\drivers\dxapi.sys - ok
19:10:46.0731 0x0edc  [ 204689EC38738BE7C07F79B745733747, 93A1DC11F4C1F7184AB630CF19EAE94072687E00A6E0467846C9FF12B7B9CCB2 ] C:\Windows\System32\win32k.sys
19:10:46.0731 0x0edc  C:\Windows\System32\win32k.sys - ok
19:10:46.0762 0x0edc  [ 342271F6142E7C70805B8A81E1BA5F5C, F9112B88FEC5EF10A7AEDF88DCEE61956D1FCDE7CB42197216E8265578713786 ] C:\Windows\System32\csrss.exe
19:10:46.0762 0x0edc  C:\Windows\System32\csrss.exe - ok
19:10:46.0778 0x0edc  [ 23AB7E36551C6BA5370EF7F05142F0EB, F190F2DCB416D109DFCA167628824CE053774FB708AA494450AD6313EF6BE654 ] C:\Windows\System32\csrsrv.dll
19:10:46.0778 0x0edc  C:\Windows\System32\csrsrv.dll - ok
19:10:46.0793 0x0edc  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\System32\basesrv.dll
19:10:46.0793 0x0edc  C:\Windows\System32\basesrv.dll - ok
19:10:46.0809 0x0edc  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\System32\winsrv.dll
19:10:46.0809 0x0edc  C:\Windows\System32\winsrv.dll - ok
19:10:46.0824 0x0edc  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] C:\Windows\System32\drivers\monitor.sys
19:10:46.0824 0x0edc  C:\Windows\System32\drivers\monitor.sys - ok
19:10:46.0840 0x0edc  [ 7C76B61A5E1EF5D1FA554CF134100F18, 2B07C27A2C9A5D939CE9255C67E87B4EF8BFD3B011A592CC0E6994E660483648 ] C:\Windows\System32\tsddd.dll
19:10:46.0840 0x0edc  C:\Windows\System32\tsddd.dll - ok
19:10:46.0856 0x0edc  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\System32\sxssrv.dll
19:10:46.0856 0x0edc  C:\Windows\System32\sxssrv.dll - ok
19:10:46.0871 0x0edc  [ B5C5DCAD3899512020D135600129D665, F6B4D18FA0D3C4958711AC0D476C21A6FDF2897F989A0AD290B43F463DD8B5B0 ] C:\Windows\System32\wininit.exe
19:10:46.0871 0x0edc  C:\Windows\System32\wininit.exe - ok
19:10:46.0887 0x0edc  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\System32\profapi.dll
19:10:46.0887 0x0edc  C:\Windows\System32\profapi.dll - ok
19:10:46.0902 0x0edc  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\System32\RpcRtRemote.dll
19:10:46.0902 0x0edc  C:\Windows\System32\RpcRtRemote.dll - ok
19:10:46.0918 0x0edc  [ 357B990A4249D7F7485B230C0CC8825A, FE15918D883B0861D6BBA0E6AC77ABD8FE42C8F76869768BE4FD1F2A5027BD7A ] C:\Windows\System32\KBDUS.DLL
19:10:46.0918 0x0edc  C:\Windows\System32\KBDUS.DLL - ok
19:10:46.0949 0x0edc  [ CAEF9CD6C10B1017E2C298D849CD31DB, 62C6638D34CC554D952A09CDBABF29AA1487EED90578C48E3D01C519A4CC6FB8 ] C:\Windows\System32\cdd.dll
19:10:46.0949 0x0edc  C:\Windows\System32\cdd.dll - ok
19:10:46.0965 0x0edc  [ 6D13E1406F50C66E2A95D97F22C47560, BE40E84A824CB201F9C54DB4F860F3937630FDA3423940D44FCF4AC5DFF44271 ] C:\Windows\System32\winlogon.exe
19:10:46.0965 0x0edc  C:\Windows\System32\winlogon.exe - ok
19:10:46.0980 0x0edc  [ 633C2C060CF857099F6C4F8D75C952B1, 95E14B5212301900BC9DDB6B42735B114D364188E9B312C786511258106398C8 ] C:\Windows\System32\WlS0WndH.dll
19:10:46.0980 0x0edc  C:\Windows\System32\WlS0WndH.dll - ok
19:10:46.0996 0x0edc  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\System32\winsta.dll
19:10:46.0996 0x0edc  C:\Windows\System32\winsta.dll - ok
19:10:47.0027 0x0edc  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\System32\sxs.dll
19:10:47.0027 0x0edc  C:\Windows\System32\sxs.dll - ok
19:10:47.0043 0x0edc  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\System32\cryptbase.dll
19:10:47.0043 0x0edc  C:\Windows\System32\cryptbase.dll - ok
19:10:47.0058 0x0edc  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\System32\apphelp.dll
19:10:47.0058 0x0edc  C:\Windows\System32\apphelp.dll - ok
19:10:47.0074 0x0edc  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\System32\services.exe
19:10:47.0074 0x0edc  C:\Windows\System32\services.exe - ok
19:10:47.0090 0x0edc  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] C:\Windows\System32\lsass.exe
19:10:47.0090 0x0edc  C:\Windows\System32\lsass.exe - ok
19:10:47.0105 0x0edc  [ 8AEA9A37C1A3565A204D37C5E72AB791, 939903F93FF37525A6C4B5CBA29CDEEE6D6055C42D605E80AE787F2A76F9870E ] C:\Windows\System32\lsm.exe
19:10:47.0105 0x0edc  C:\Windows\System32\lsm.exe - ok
19:10:47.0121 0x0edc  [ D89077E2E1C88A29C57F21FAD28DAC45, 39B760D9976B9FF61046303B9FA29C2A0483D1CCC9617822810F46F288710627 ] C:\Windows\System32\sspisrv.dll
19:10:47.0121 0x0edc  C:\Windows\System32\sspisrv.dll - ok
19:10:47.0136 0x0edc  [ EF6950D7B24AAF4E477065F5455DD4F8, D02D02528EB103808BAD71FBE0271D5D3C101A53ACFB0B2B3835CFE6C7A2BE03 ] C:\Windows\System32\lsasrv.dll
19:10:47.0136 0x0edc  C:\Windows\System32\lsasrv.dll - ok
19:10:47.0152 0x0edc  [ BD6B9BC84D004C6BEE89CF7BDB95E1FC, 142BCB6F616A34679FDFB5285E0C8CED110501518BA4B4E2DF3B4F691E28DE72 ] C:\Windows\System32\sspicli.dll
19:10:47.0152 0x0edc  C:\Windows\System32\sspicli.dll - ok
19:10:47.0152 0x0edc  [ 3369D021265E369D57317D61FA86DD79, 25A3BE3619324578C5B7CCB4585D89131DC60A969D35F9573FF20CCD67809BA3 ] C:\Windows\System32\scext.dll
19:10:47.0152 0x0edc  C:\Windows\System32\scext.dll - ok
19:10:47.0168 0x0edc  [ BA51FFE170C5B3AE8EC4F5BD2581A29E, CF734875C91B6C547A5F0BA68FB10ECDFD5FF24166A0D69309C27DC712C22F4B ] C:\Windows\System32\sysntfy.dll
19:10:47.0168 0x0edc  C:\Windows\System32\sysntfy.dll - ok
19:10:47.0183 0x0edc  [ D412B1B72C5AB020218E9A047D90CA05, A9CF8134DB968D259DF4DCC736159841BCB8DF309BEED4FB44F99033B8D31B39 ] C:\Windows\System32\wmsgapi.dll
19:10:47.0183 0x0edc  C:\Windows\System32\wmsgapi.dll - ok
19:10:47.0199 0x0edc  [ 250AA41DE690561AF1282D598914564C, 0F16F50EC74CAC8879F8D88AF4FB656E06D19819E96BC3D71BCDDBF400C78F60 ] C:\Windows\System32\scesrv.dll
19:10:47.0199 0x0edc  C:\Windows\System32\scesrv.dll - ok
19:10:47.0214 0x0edc  [ 372948BB5E41CE42341C4398DE572E56, A12A3CB0C04FD02A17E202FEE79EA1B4009DAE4B5DB8B9B9D4919D1FFB270CF3 ] C:\Windows\System32\secur32.dll
19:10:47.0214 0x0edc  C:\Windows\System32\secur32.dll - ok
19:10:47.0230 0x0edc  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\System32\srvcli.dll
19:10:47.0230 0x0edc  C:\Windows\System32\srvcli.dll - ok
19:10:47.0246 0x0edc  [ 245F4691314F42D4D1BC06442F0B2086, 281DD81E06547BEB0DDB1FBB68B149961F1DEE268C9E9648DE662900ECB40FE0 ] C:\Windows\System32\samsrv.dll
19:10:47.0246 0x0edc  C:\Windows\System32\samsrv.dll - ok
19:10:47.0261 0x0edc  [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\System32\cryptdll.dll
19:10:47.0261 0x0edc  C:\Windows\System32\cryptdll.dll - ok
19:10:47.0277 0x0edc  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\System32\wevtapi.dll
19:10:47.0277 0x0edc  C:\Windows\System32\wevtapi.dll - ok
19:10:47.0292 0x0edc  [ FB4EB9352B7D698E6B3C2AA2ED724DAD, 534AB280ACD29E88FD1BD8838E1231D9364E649C917547A838F51EC8AB941EE2 ] C:\Windows\System32\authz.dll
19:10:47.0292 0x0edc  C:\Windows\System32\authz.dll - ok
19:10:47.0308 0x0edc  [ 50BA656134F78AF64E4DD3C8B6FEFD7E, F7AB96E0C9658B0444FD473E87165199FA90AE5CE434B40FBA1DB324925DF886 ] C:\Windows\System32\cngaudit.dll
19:10:47.0308 0x0edc  C:\Windows\System32\cngaudit.dll - ok
19:10:47.0324 0x0edc  [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\System32\ncrypt.dll
19:10:47.0324 0x0edc  C:\Windows\System32\ncrypt.dll - ok
19:10:47.0339 0x0edc  [ FC7650224790CAE75A5E9231961FDEC5, D634FC1F43AAC41D8B440BD4C1E7576886CDE683EDE4CAF06C43163B5E176CBB ] C:\Windows\System32\bcrypt.dll
19:10:47.0339 0x0edc  C:\Windows\System32\bcrypt.dll - ok
19:10:47.0339 0x0edc  [ C90878913DF3DC504790282043DB5F4C, 5DC30020A523B5B219A219D74208A1249A43510D70723985817A021249D97036 ] C:\Windows\System32\msprivs.dll
19:10:47.0355 0x0edc  C:\Windows\System32\msprivs.dll - ok
19:10:47.0370 0x0edc  [ E343CABBD8D600ABAF3F11625D33B3D0, AA73D0F205749C291BF5EF179BDF3BF30977E36C87F4FF5361942EE024E848F9 ] C:\Windows\System32\netjoin.dll
19:10:47.0370 0x0edc  C:\Windows\System32\netjoin.dll - ok
19:10:47.0370 0x0edc  [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] C:\Windows\System32\drivers\TsUsbFlt.sys
19:10:47.0370 0x0edc  C:\Windows\System32\drivers\TsUsbFlt.sys - ok
19:10:47.0386 0x0edc  [ 6DCFAEC6D1334AA6CDF8961DB4633CBF, DA7A26935691379DA0DBA829DEDE82401BCA7D35E28BFBFE3F9CE38AFF344737 ] C:\Windows\System32\negoexts.dll
19:10:47.0386 0x0edc  C:\Windows\System32\negoexts.dll - ok
19:10:47.0402 0x0edc  [ BDA0B954A30498B5A7EDC6204CBA07ED, B14AC33E649F02AEC7ED9237DF6EB1801506C3066B0DACC8EBC4660D408AF614 ] C:\Windows\System32\kerberos.dll
19:10:47.0402 0x0edc  C:\Windows\System32\kerberos.dll - ok
19:10:47.0417 0x0edc  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\System32\cryptsp.dll
19:10:47.0417 0x0edc  C:\Windows\System32\cryptsp.dll - ok
19:10:47.0433 0x0edc  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\System32\mswsock.dll
19:10:47.0433 0x0edc  C:\Windows\System32\mswsock.dll - ok
19:10:47.0448 0x0edc  [ 4C1E16B9A53102C8D6FBA587CBCB95DE, F982ABB2353E45E3E09B30EA99EFDC2A905AD75B43CDB0A34DB33D91AADDAB17 ] C:\Windows\System32\msv1_0.dll
19:10:47.0448 0x0edc  C:\Windows\System32\msv1_0.dll - ok
19:10:47.0464 0x0edc  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\System32\wship6.dll
19:10:47.0464 0x0edc  C:\Windows\System32\wship6.dll - ok
19:10:47.0480 0x0edc  [ C1809B9907ADEDAF16F50C894100883B, 464CF897CB376DCDC9A584A2A470B5B82D99C595DC55930778B162E605CDFBA8 ] C:\Windows\System32\netlogon.dll
19:10:47.0480 0x0edc  C:\Windows\System32\netlogon.dll - ok
19:10:47.0495 0x0edc  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\System32\dnsapi.dll
19:10:47.0495 0x0edc  C:\Windows\System32\dnsapi.dll - ok
19:10:47.0511 0x0edc  [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\System32\logoncli.dll
19:10:47.0511 0x0edc  C:\Windows\System32\logoncli.dll - ok
19:10:47.0526 0x0edc  [ AA6F6457116B559B76BC6A012CB4C293, 87888451759EECCEA178BDB23AE48EEA534202AC40ED0DD83474ED7CE557C9F1 ] C:\Windows\System32\schannel.dll
19:10:47.0526 0x0edc  C:\Windows\System32\schannel.dll - ok
19:10:47.0542 0x0edc  [ 0450CF487ECD8A67B56F59F9A96D024D, 7B19CD3B3A98384844E3F4D04C505B8D17B2D5AABE184E265E85A17D0DDBC25B ] C:\Windows\System32\wdigest.dll
19:10:47.0542 0x0edc  C:\Windows\System32\wdigest.dll - ok
19:10:47.0558 0x0edc  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\System32\rsaenh.dll
19:10:47.0558 0x0edc  C:\Windows\System32\rsaenh.dll - ok
19:10:47.0573 0x0edc  [ 37CC990D4E2CDFAE12AC47F6B620FC13, D07E6EF4EED10ACA21A41A739147E54CC435EAF952CD0CA1F2E3CB2D83CEC831 ] C:\Windows\System32\pku2u.dll
19:10:47.0573 0x0edc  C:\Windows\System32\pku2u.dll - ok
19:10:47.0589 0x0edc  [ D29E45078CF4020CE0AAC82EC652D1EA, 3CB552744C9D02A488ABCF171E29872156BA6B57C73EC45D708C72D541BE8365 ] C:\Windows\System32\TSpkg.dll
19:10:47.0589 0x0edc  C:\Windows\System32\TSpkg.dll - ok
19:10:47.0589 0x0edc  [ 93723774872D9FB903266A46ED1E0BC2, 8C0AF177F314B6EC71827FDDD8B89BB1548EBDFEB2572C0B9C463EC50D49DC1B ] C:\Windows\System32\LIVESSP.DLL
19:10:47.0589 0x0edc  C:\Windows\System32\LIVESSP.DLL - ok
19:10:47.0604 0x0edc  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\System32\bcryptprimitives.dll
19:10:47.0604 0x0edc  C:\Windows\System32\bcryptprimitives.dll - ok
19:10:47.0620 0x0edc  [ 91F434FF6606ED9BDC6A05D651B69553, F2CF43DDDE2241E8A25F710A516371E0C56D99195022D9715A98379C753929B3 ] C:\Windows\System32\efslsaext.dll
19:10:47.0620 0x0edc  C:\Windows\System32\efslsaext.dll - ok
19:10:47.0636 0x0edc  [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\System32\credssp.dll
19:10:47.0636 0x0edc  C:\Windows\System32\credssp.dll - ok
19:10:47.0651 0x0edc  [ 8124944EC89D6A1815E4E53F5B96AAF4, A6766BD0F62A381C9899F66E5C32731BD91600363F4CFBE560BC8AA2B111C790 ] C:\Windows\System32\scecli.dll
19:10:47.0651 0x0edc  C:\Windows\System32\scecli.dll - ok
19:10:47.0667 0x0edc  [ 7222995615BF93B628DCEA4BD6CCACF7, 306A3220868AC38AC796027F0D75052B596F55B9CAE87A9B8863515995BFC2F2 ] C:\Windows\System32\ubpm.dll
19:10:47.0667 0x0edc  C:\Windows\System32\ubpm.dll - ok
19:10:47.0682 0x0edc  [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\System32\svchost.exe
19:10:47.0682 0x0edc  C:\Windows\System32\svchost.exe - ok
19:10:47.0698 0x0edc  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] C:\Windows\System32\umpnpmgr.dll
19:10:47.0698 0x0edc  C:\Windows\System32\umpnpmgr.dll - ok
19:10:47.0714 0x0edc  [ 4BDBBE5E4208022DD794F7EEEB0F7366, 4F69BA2EDABFA63A300B9F1880349EFAE185B899DD5C561E7B3BA6AAA4B22D6A ] C:\Windows\System32\SPInf.dll
19:10:47.0714 0x0edc  C:\Windows\System32\SPInf.dll - ok
19:10:47.0729 0x0edc  [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\System32\devrtl.dll
19:10:47.0729 0x0edc  C:\Windows\System32\devrtl.dll - ok
19:10:47.0745 0x0edc  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\System32\userenv.dll
19:10:47.0745 0x0edc  C:\Windows\System32\userenv.dll - ok
19:10:47.0760 0x0edc  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\System32\gpapi.dll
19:10:47.0760 0x0edc  C:\Windows\System32\gpapi.dll - ok
19:10:47.0776 0x0edc  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] C:\Windows\System32\umpo.dll
19:10:47.0776 0x0edc  C:\Windows\System32\umpo.dll - ok
19:10:47.0792 0x0edc  [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\System32\pcwum.dll
19:10:47.0792 0x0edc  C:\Windows\System32\pcwum.dll - ok
19:10:47.0823 0x0edc  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\System32\powrprof.dll
19:10:47.0823 0x0edc  C:\Windows\System32\powrprof.dll - ok
19:10:47.0838 0x0edc  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] C:\Windows\System32\drivers\luafv.sys
19:10:47.0838 0x0edc  C:\Windows\System32\drivers\luafv.sys - ok
19:10:47.0854 0x0edc  [ B347D2FEAE2D063943F16EC98634AB89, 2CA74745232607571ED088270B3B3FA555628455A257A6E52F133D650D861FD4 ] C:\Windows\System32\drivers\aswMonFlt.sys
19:10:47.0854 0x0edc  C:\Windows\System32\drivers\aswMonFlt.sys - ok
19:10:47.0885 0x0edc  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] C:\Windows\System32\rpcss.dll
19:10:47.0885 0x0edc  C:\Windows\System32\rpcss.dll - ok
19:10:47.0901 0x0edc  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] C:\Windows\System32\RpcEpMap.dll
19:10:47.0901 0x0edc  C:\Windows\System32\RpcEpMap.dll - ok
19:10:47.0916 0x0edc  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\System32\WSHTCPIP.DLL
19:10:47.0916 0x0edc  C:\Windows\System32\WSHTCPIP.DLL - ok
19:10:47.0916 0x0edc  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\System32\wshqos.dll
19:10:47.0916 0x0edc  C:\Windows\System32\wshqos.dll - ok
19:10:47.0932 0x0edc  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\System32\FirewallAPI.dll
19:10:47.0932 0x0edc  C:\Windows\System32\FirewallAPI.dll - ok
19:10:47.0948 0x0edc  [ 3EF0D8AB08385AAB5802E773511A2E6A, 1A7EE4BC646767004372EAEA9BC0A2071790E739101F7D25ECD9C95D3F29AFD6 ] C:\Windows\System32\LogonUI.exe
19:10:47.0948 0x0edc  C:\Windows\System32\LogonUI.exe - ok
19:10:47.0963 0x0edc  [ EE7CB55F77465CDAC4C80F587FF7C278, 9DB3FC61275BA78A0A4E66440024341F0C6863659937A78E6224D3C42D7E57E7 ] C:\Windows\System32\authui.dll
19:10:47.0963 0x0edc  C:\Windows\System32\authui.dll - ok
19:10:47.0979 0x0edc  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\System32\version.dll
19:10:47.0979 0x0edc  C:\Windows\System32\version.dll - ok
19:10:47.0994 0x0edc  [ 241E015DD809CFB23242F890B1FC575B, 763381DCBACF06FD8D043B14D383B6F4D5295B8E665796C59603F15F3E3E36FC ] C:\Windows\System32\wevtsvc.dll
19:10:47.0994 0x0edc  C:\Windows\System32\wevtsvc.dll - ok
19:10:48.0010 0x0edc  [ 28CA821606669BB9215CE010767720FA, C8A1F0D6704F8F37CF8AADDFAD511FF27E56E8BCFFD4AC948DFA0329DB1F3A1E ] C:\Windows\System32\cryptui.dll
19:10:48.0010 0x0edc  C:\Windows\System32\cryptui.dll - ok
19:10:48.0026 0x0edc  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:10:48.0026 0x0edc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:10:48.0041 0x0edc  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] C:\Windows\System32\audiosrv.dll
19:10:48.0041 0x0edc  C:\Windows\System32\audiosrv.dll - ok
19:10:48.0041 0x0edc  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\System32\MMDevAPI.dll
19:10:48.0041 0x0edc  C:\Windows\System32\MMDevAPI.dll - ok
19:10:48.0072 0x0edc  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\System32\propsys.dll
19:10:48.0072 0x0edc  C:\Windows\System32\propsys.dll - ok
19:10:48.0088 0x0edc  [ AC8C80DC4F1A6E60C9A762C1799F0B39, 9FD3A62B4E476CBE6D94D587826B5D8C6EB8208035A20B8E17749312C251FD6A ] C:\Windows\System32\adtschema.dll
19:10:48.0088 0x0edc  C:\Windows\System32\adtschema.dll - ok
19:10:48.0104 0x0edc  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] C:\Windows\System32\FntCache.dll
19:10:48.0104 0x0edc  C:\Windows\System32\FntCache.dll - ok
19:10:48.0119 0x0edc  [ F14A9B1778376D0B1788E402AC1F831A, 6110F29669E03F8163B5CD7124BE0FF329F36C18529FA3B8FF70FC00B2D8AA02 ] C:\Windows\System32\shacct.dll
19:10:48.0119 0x0edc  C:\Windows\System32\shacct.dll - ok
19:10:48.0135 0x0edc  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\System32\avrt.dll
19:10:48.0135 0x0edc  C:\Windows\System32\avrt.dll - ok
19:10:48.0150 0x0edc  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\System32\samlib.dll
19:10:48.0150 0x0edc  C:\Windows\System32\samlib.dll - ok
19:10:48.0166 0x0edc  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] C:\Windows\System32\mmcss.dll
19:10:48.0166 0x0edc  C:\Windows\System32\mmcss.dll - ok
19:10:48.0197 0x0edc  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\System32\netprofm.dll
19:10:48.0197 0x0edc  C:\Windows\System32\netprofm.dll - ok
19:10:48.0197 0x0edc  [ 63BFDF555DA2075A77D677829C3CCCD0, 13B0C0576A0158FBEE6C216136F8C66373C8E6592895D3D824EC67147B9190E9 ] C:\Windows\System32\uxtheme.dll
19:10:48.0197 0x0edc  C:\Windows\System32\uxtheme.dll - ok
19:10:48.0228 0x0edc  [ 84174CA0E190BB9D1EFD0F005FE13B35, B0146E651DAD4A8050FAF70026F1B7CE16EF454EB6E31088CDEBE3CD57E6591C ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
19:10:48.0228 0x0edc  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
19:10:48.0244 0x0edc  [ 8B0B4C5927A333A05513791758350DC4, 52FF08569678F3DA6D52FAE200E4C8C85E986805987EF1CDC0616C29664E7D64 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:10:48.0244 0x0edc  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:10:48.0260 0x0edc  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\System32\dui70.dll
19:10:48.0260 0x0edc  C:\Windows\System32\dui70.dll - ok
19:10:48.0275 0x0edc  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] C:\Windows\System32\wlansvc.dll
19:10:48.0275 0x0edc  C:\Windows\System32\wlansvc.dll - ok
19:10:48.0291 0x0edc  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] C:\Windows\System32\drivers\fltMgr.sys
19:10:48.0291 0x0edc  C:\Windows\System32\drivers\fltMgr.sys - ok
19:10:48.0306 0x0edc  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\System32\duser.dll
19:10:48.0306 0x0edc  C:\Windows\System32\duser.dll - ok
19:10:48.0306 0x0edc  [ D93A937A2A9D2CBC06B3A615A197011F, E55028F641512EC22CEC4674F7E380FE71059A21E51ECB345DDB769A276F30D1 ] C:\Windows\System32\PSHED.DLL
19:10:48.0306 0x0edc  C:\Windows\System32\PSHED.DLL - ok
19:10:48.0322 0x0edc  [ 2CFA4569350B7F84F815E9EC34E85766, 8DE5F880F23435256E697C24BDDFA9B8994ACC3FAA063AF274BEC918FE012788 ] C:\Windows\System32\SndVolSSO.dll
19:10:48.0322 0x0edc  C:\Windows\System32\SndVolSSO.dll - ok
19:10:48.0338 0x0edc  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] C:\Windows\System32\profsvc.dll
19:10:48.0338 0x0edc  C:\Windows\System32\profsvc.dll - ok
19:10:48.0353 0x0edc  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\System32\hid.dll
19:10:48.0353 0x0edc  C:\Windows\System32\hid.dll - ok
19:10:48.0369 0x0edc  [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E, 27848861F25C00168A1A0FE0722D8E327D2251C4FB69A7968EE5722ECCD129E3 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:10:48.0369 0x0edc  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:10:48.0384 0x0edc  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\System32\dwmapi.dll
19:10:48.0400 0x0edc  C:\Windows\System32\dwmapi.dll - ok
19:10:48.0400 0x0edc  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\System32\xmllite.dll
19:10:48.0400 0x0edc  C:\Windows\System32\xmllite.dll - ok
19:10:48.0416 0x0edc  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] C:\Windows\System32\MPSSVC.dll
19:10:48.0416 0x0edc  C:\Windows\System32\MPSSVC.dll - ok
19:10:48.0431 0x0edc  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\System32\WindowsCodecs.dll
19:10:48.0431 0x0edc  C:\Windows\System32\WindowsCodecs.dll - ok
19:10:48.0462 0x0edc  [ F68194F74350D4A2ADE98961E33F884C, 75DE3554409C42CA3B6FC1503BCB8CAFF85D5D7703F7E68C38A69AA8EF3FDA81 ] C:\Windows\System32\audiodg.exe
19:10:48.0462 0x0edc  C:\Windows\System32\audiodg.exe - ok
19:10:48.0478 0x0edc  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\System32\winbrand.dll
19:10:48.0478 0x0edc  C:\Windows\System32\winbrand.dll - ok
19:10:48.0494 0x0edc  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\System32\wtsapi32.dll
19:10:48.0494 0x0edc  C:\Windows\System32\wtsapi32.dll - ok
19:10:48.0525 0x0edc  [ 65BF13016A3C22775F3E17591AE5268A, 7DFE2F99D33D47E4A55ACBE83FE5B536A2983742522629414D5F941043C591D3 ] C:\Windows\System32\VaultCredProvider.dll
19:10:48.0525 0x0edc  C:\Windows\System32\VaultCredProvider.dll - ok
19:10:48.0525 0x0edc  [ 4BCC63ED1C3D15B2635A8AE2B854B3EB, 4CF29B4E896996145D54263FD06358E16C3FE2CD39C3AF6BCCE607590C637555 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:10:48.0525 0x0edc  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:10:48.0540 0x0edc  [ E59F08ED9D2A128CE436BBFC232247F6, 9CD690C1B7CB6CA59F6AB2752A5AF2FC5A057CCBDA4166900F0AC68296972060 ] C:\Windows\System32\BioCredProv.dll
19:10:48.0540 0x0edc  C:\Windows\System32\BioCredProv.dll - ok
19:10:48.0556 0x0edc  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\System32\ntmarta.dll
19:10:48.0556 0x0edc  C:\Windows\System32\ntmarta.dll - ok
19:10:48.0572 0x0edc  [ 3FAD263CE1E2A6FFF40D00043B2275E3, 0063D7DAD57CA78C3DCE6A2E7D4FF7A47DBBBBAA33F92AEF747D8102E055D1AA ] C:\Windows\System32\winbio.dll
19:10:48.0572 0x0edc  C:\Windows\System32\winbio.dll - ok
19:10:48.0587 0x0edc  [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\System32\credui.dll
19:10:48.0587 0x0edc  C:\Windows\System32\credui.dll - ok
19:10:48.0603 0x0edc  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\System32\netapi32.dll
19:10:48.0603 0x0edc  C:\Windows\System32\netapi32.dll - ok
19:10:48.0618 0x0edc  [ 36B8D5903CEEF0AA42A1EE002BD27FF1, CBD5C4D0E05B9A2657D816B655FFFC386807061594DEAABA754658D3152F7403 ] C:\Windows\System32\vaultcli.dll
19:10:48.0618 0x0edc  C:\Windows\System32\vaultcli.dll - ok
19:10:48.0618 0x0edc  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\System32\netutils.dll
19:10:48.0618 0x0edc  C:\Windows\System32\netutils.dll - ok
19:10:48.0634 0x0edc  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\System32\samcli.dll
19:10:48.0634 0x0edc  C:\Windows\System32\samcli.dll - ok
19:10:48.0650 0x0edc  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\System32\wkscli.dll
19:10:48.0650 0x0edc  C:\Windows\System32\wkscli.dll - ok
19:10:48.0665 0x0edc  [ 6D8CACF3B1B54943EFCF420C2D667B37, 64EB621EC68077761A0662BE78D2D17ADA982FCFE4D3BBD3A96D0D990BD8541A ] C:\Windows\System32\certCredProvider.dll
19:10:48.0665 0x0edc  C:\Windows\System32\certCredProvider.dll - ok
19:10:48.0681 0x0edc  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] C:\Windows\System32\gpsvc.dll
19:10:48.0681 0x0edc  C:\Windows\System32\gpsvc.dll - ok
19:10:48.0696 0x0edc  [ EFDA8576B2BA177AE3DF78B29EA0C45B, FCAC75169F9DACDB13E3FAFEC633676C0D3346AEB8655A64A7B91D2B5D069B48 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDCREDPROV.DLL
19:10:48.0696 0x0edc  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDCREDPROV.DLL - ok
19:10:48.0712 0x0edc  [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\System32\atl.dll
19:10:48.0712 0x0edc  C:\Windows\System32\atl.dll - ok
19:10:48.0728 0x0edc  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] C:\Windows\System32\themeservice.dll
19:10:48.0728 0x0edc  C:\Windows\System32\themeservice.dll - ok
19:10:48.0728 0x0edc  [ FFE4BEC5C187C426A17AE76A773063A6, 0003F7DBCE52F3E7B467FBB6522623E7318E22BC2E1BB5890AFAE29682543F99 ] C:\Windows\System32\rasplap.dll
19:10:48.0743 0x0edc  C:\Windows\System32\rasplap.dll - ok
19:10:48.0743 0x0edc  [ 50E0DD0A5B8D8BC353578F2F73926697, 9A453F60FC0149417105BB5B4CB910D614A3D832D98313A58D0EA36BABED4460 ] C:\Windows\System32\nlaapi.dll
19:10:48.0743 0x0edc  C:\Windows\System32\nlaapi.dll - ok
19:10:48.0759 0x0edc  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] C:\Windows\System32\es.dll
19:10:48.0759 0x0edc  C:\Windows\System32\es.dll - ok
19:10:48.0774 0x0edc  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE, DA16117429AF47230CD7C136407C81951B8D2E45A8B7A9DC6948407AA2EC4ADD ] C:\Windows\System32\dsrole.dll
19:10:48.0774 0x0edc  C:\Windows\System32\dsrole.dll - ok
19:10:48.0790 0x0edc  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\System32\slc.dll
19:10:48.0790 0x0edc  C:\Windows\System32\slc.dll - ok
19:10:48.0806 0x0edc  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\System32\rasapi32.dll
19:10:48.0806 0x0edc  C:\Windows\System32\rasapi32.dll - ok
19:10:48.0821 0x0edc  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\System32\rasman.dll
19:10:48.0821 0x0edc  C:\Windows\System32\rasman.dll - ok
19:10:48.0837 0x0edc  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\System32\rtutils.dll
19:10:48.0837 0x0edc  C:\Windows\System32\rtutils.dll - ok
19:10:48.0837 0x0edc  [ 808D8A8B2A3074002852BC856D419576, 1AFDEAAD071D398F4663E82D58510ABC0A30048018866C59AB53D3ECB6E6D349 ] C:\Windows\System32\comres.dll
19:10:48.0837 0x0edc  C:\Windows\System32\comres.dll - ok
19:10:48.0852 0x0edc  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] C:\Windows\System32\Sens.dll
19:10:48.0852 0x0edc  C:\Windows\System32\Sens.dll - ok
19:10:48.0868 0x0edc  [ A12829E9974F57E9B5DBFEA7C93190F6, 1EC2A36CAF30A706B6082C5CA79B6A33FA99342E144508DB1415D1611E631EBC ] C:\Windows\System32\UXInit.dll
19:10:48.0868 0x0edc  C:\Windows\System32\UXInit.dll - ok
19:10:48.0884 0x0edc  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] C:\Windows\System32\uxsms.dll
19:10:48.0884 0x0edc  C:\Windows\System32\uxsms.dll - ok
19:10:48.0899 0x0edc  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] C:\Windows\System32\drivers\lltdio.sys
19:10:48.0899 0x0edc  C:\Windows\System32\drivers\lltdio.sys - ok
19:10:48.0915 0x0edc  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] C:\Windows\System32\drivers\nwifi.sys
19:10:48.0915 0x0edc  C:\Windows\System32\drivers\nwifi.sys - ok
19:10:48.0930 0x0edc  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] C:\Windows\System32\drivers\ndisuio.sys
19:10:48.0930 0x0edc  C:\Windows\System32\drivers\ndisuio.sys - ok
19:10:48.0946 0x0edc  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] C:\Windows\System32\drivers\rspndr.sys
19:10:48.0946 0x0edc  C:\Windows\System32\drivers\rspndr.sys - ok
19:10:48.0962 0x0edc  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] C:\Windows\System32\lmhsvc.dll
19:10:48.0962 0x0edc  C:\Windows\System32\lmhsvc.dll - ok
19:10:48.0977 0x0edc  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\System32\IPHLPAPI.DLL
19:10:48.0977 0x0edc  C:\Windows\System32\IPHLPAPI.DLL - ok
19:10:48.0993 0x0edc  [ D2A937964199F647B1C3BC435712E5D9, 03029296547750229C0C484CD09D67286096B92661C41DF67C60019DEF75A2F7 ] C:\Windows\System32\nrpsrv.dll
19:10:48.0993 0x0edc  C:\Windows\System32\nrpsrv.dll - ok
19:10:48.0993 0x0edc  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\System32\winnsi.dll
19:10:48.0993 0x0edc  C:\Windows\System32\winnsi.dll - ok
19:10:49.0008 0x0edc  [ AF75DBA674E55221B7A055B0A4345F16, 50F1B550F4EBFA946564EB66BBD17C308DCB08055017E010095A94C2EBCE208D ] C:\Windows\System32\keyiso.dll
19:10:49.0008 0x0edc  C:\Windows\System32\keyiso.dll - ok
19:10:49.0024 0x0edc  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] C:\Windows\System32\nsisvc.dll
19:10:49.0024 0x0edc  C:\Windows\System32\nsisvc.dll - ok
19:10:49.0040 0x0edc  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] C:\Windows\System32\eapsvc.dll
19:10:49.0040 0x0edc  C:\Windows\System32\eapsvc.dll - ok
19:10:49.0071 0x0edc  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] C:\Windows\System32\dhcpcore.dll
19:10:49.0071 0x0edc  C:\Windows\System32\dhcpcore.dll - ok
19:10:49.0086 0x0edc  [ 9A892B3439884C62B04718F0303A49E9, E3A772832BE440B074628FCAE06FACA451E2329BAEDD62CAB54310B44AF6BA4A ] C:\Windows\System32\eapphost.dll
19:10:49.0086 0x0edc  C:\Windows\System32\eapphost.dll - ok
19:10:49.0086 0x0edc  [ EF71BA5DF59034962B0C62314A71351A, BB31EDFCCFF1CE984CDE0E1D8996BF70DC28F97B6685AE54172F2F4BAFA56A0F ] C:\Windows\System32\dhcpcore6.dll
19:10:49.0086 0x0edc  C:\Windows\System32\dhcpcore6.dll - ok
19:10:49.0102 0x0edc  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] C:\Windows\System32\dnsrslvr.dll
19:10:49.0102 0x0edc  C:\Windows\System32\dnsrslvr.dll - ok
19:10:49.0118 0x0edc  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\System32\FWPUCLNT.DLL
19:10:49.0118 0x0edc  C:\Windows\System32\FWPUCLNT.DLL - ok
19:10:49.0133 0x0edc  [ D33E95C0A2754061233B58DC41F8094C, C957FD018DCCC8EA4BFD0EBB16A8A65B5F8AD543929EE92251C8718872BBA628 ] C:\Windows\System32\umb.dll
19:10:49.0133 0x0edc  C:\Windows\System32\umb.dll - ok
19:10:49.0149 0x0edc  [ 3C9035085141162416A0DD34DBF3F3C1, 31856241BBCC5AEC32C36BD073667001ECBA3A65C1D55B26A9CEE186CE1C03E6 ] C:\Windows\System32\wlanmsm.dll
19:10:49.0149 0x0edc  C:\Windows\System32\wlanmsm.dll - ok
19:10:49.0164 0x0edc  [ 100103C6535C66265267F5EEA5F5846E, DC5972BC1FCABDC51E4DF4D5124D408BB03F2EFAF25AB70C921DD7A03A12DFD4 ] C:\Windows\System32\dnsext.dll
19:10:49.0164 0x0edc  C:\Windows\System32\dnsext.dll - ok
19:10:49.0180 0x0edc  [ 20C06A50DFC097E134BC6FA8444CA9BC, 7739CF0ABCA918C9A49D655FB4E032163BBFB7064844F0C8EBDA282CB0225DFC ] C:\Windows\System32\wlansec.dll
19:10:49.0180 0x0edc  C:\Windows\System32\wlansec.dll - ok
19:10:49.0196 0x0edc  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\System32\dhcpcsvc.dll
19:10:49.0196 0x0edc  C:\Windows\System32\dhcpcsvc.dll - ok
19:10:49.0211 0x0edc  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\System32\dhcpcsvc6.dll
19:10:49.0211 0x0edc  C:\Windows\System32\dhcpcsvc6.dll - ok
19:10:49.0227 0x0edc  [ F748F53FE09D21D8ECBB6421E6792024, 38F737673F8B089B2540CE7015A4DF7081754F7CC83BFF85199B70555AF32ED0 ] C:\Windows\System32\onex.dll
19:10:49.0227 0x0edc  C:\Windows\System32\onex.dll - ok
19:10:49.0242 0x0edc  [ 666E57B6B51824D1D235F80A3DD70A13, B2ACCABDD5D8B23E502FE691C1DEE4A2C0EA20EDCDE5B4000557579D56D411EC ] C:\Windows\System32\eappprxy.dll
19:10:49.0242 0x0edc  C:\Windows\System32\eappprxy.dll - ok
19:10:49.0242 0x0edc  [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97, 364A2DC446E9AB091A216D0EED559CEA334AA46EC0BC693CBD6CE1DE0F89317B ] C:\Windows\System32\eappcfg.dll
19:10:49.0242 0x0edc  C:\Windows\System32\eappcfg.dll - ok
19:10:49.0258 0x0edc  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\System32\imageres.dll
19:10:49.0258 0x0edc  C:\Windows\System32\imageres.dll - ok
19:10:49.0274 0x0edc  [ 749F9795F01C35EEBE100A87D82B9681, 03A636328D3D97AFA6B5D6B3085EA8D27C3DBCAEA5986FD74904FC754378CD64 ] C:\Windows\System32\wlgpclnt.dll
19:10:49.0274 0x0edc  C:\Windows\System32\wlgpclnt.dll - ok
19:10:49.0289 0x0edc  [ C1585EAA67C37A05BF6F93726FAFC069, 50401A628053871D5B864E2493018236A117F177AD1E466EDE6FB3CACBD6C5BD ] C:\Windows\System32\l2gpstore.dll
19:10:49.0289 0x0edc  C:\Windows\System32\l2gpstore.dll - ok
19:10:49.0305 0x0edc  [ 9419ABF3163B6F0E3AD3DD2B381C879F, 75029AFDB5F8A8F74A63B6C8165E77110E2FBAEC0021A9613035BFFEC646A54E ] C:\Windows\System32\WinSCard.dll
19:10:49.0305 0x0edc  C:\Windows\System32\WinSCard.dll - ok
19:10:49.0320 0x0edc  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\System32\wlanutil.dll
19:10:49.0320 0x0edc  C:\Windows\System32\wlanutil.dll - ok
19:10:49.0336 0x0edc  [ EAADD6E47ED2A7003ACE1793B98CF63F, EE090284CA4595B6A140949A41025926CEC3CCACCD2931B6AC77A1E14D20E5B4 ] C:\Windows\System32\msxml6.dll
19:10:49.0336 0x0edc  C:\Windows\System32\msxml6.dll - ok
19:10:49.0336 0x0edc  [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:10:49.0336 0x0edc  C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
19:10:49.0352 0x0edc  [ 6F44F5C0BC6B210FE5F5A1C8D899AD0A, B2CB1477536F92ECD4F7763F95F40B12CE052DC20F33FB22E9F7C8CA00F769FC ] C:\Windows\System32\wlanext.exe
19:10:49.0352 0x0edc  C:\Windows\System32\wlanext.exe - ok
19:10:49.0367 0x0edc  [ EC86F8AAE19B48D7C801B7C46ED96A0B, 24FC1D92563AB746C86A065F87ABD78F6FAB8CBB56F07858628D68062AD60836 ] C:\Program Files\AVAST Software\Avast\ashBase.dll
19:10:49.0367 0x0edc  C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
19:10:49.0383 0x0edc  [ 2DE16A63F71D10B42ACE01E759078600, D52FAE32C1BBF982C9222FBF275FF53D5F6F77B7747AFBF641937DFDC8D70487 ] C:\Windows\System32\conhost.exe
19:10:49.0383 0x0edc  C:\Windows\System32\conhost.exe - ok
19:10:49.0398 0x0edc  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\System32\wsock32.dll
19:10:49.0398 0x0edc  C:\Windows\System32\wsock32.dll - ok
19:10:49.0414 0x0edc  [ 0B1CFAAACD595677F72ED121B9D3AED9, 01B6E2FFE78815583A074BDDC44BA73C6948E606250702254363488DAE808881 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
19:10:49.0414 0x0edc  C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
19:10:49.0430 0x0edc  [ 8A9CF4B91C85E9B81C6F214D0FF6E9A2, 311ABDB653DD83E8189142BD48CD81EC7840FF12CAE23A69EFEB5E51F9D6A1C4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
19:10:49.0430 0x0edc  C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
19:10:49.0445 0x0edc  [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcr110.dll
19:10:49.0445 0x0edc  C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcr110.dll - ok
19:10:49.0461 0x0edc  [ 049F49C2C1F517F6359D21DE7CB68E68, B0868E9E3CE24B4B423AD64830C12EDC6AF108E1B3BE1E8EA48FFBA87D572AEE ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
19:10:49.0461 0x0edc  C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
19:10:49.0476 0x0edc  [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcp110.dll
19:10:49.0476 0x0edc  C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcp110.dll - ok
19:10:49.0492 0x0edc  [ BA71407956F0268EE59D42FDF3EA3BF6, 46CE9BADD06788B99124631D101EC2C0878FA623D0F0AB109131742E0963BF0C ] C:\Program Files\AVAST Software\Avast\avastIP.dll
19:10:49.0492 0x0edc  C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
19:10:49.0508 0x0edc  [ E51A74C55CFA03A44DEA833C423753EF, 932059A132DAC4DCCAF8270ACBCEC9B287E45C8EA75732731C1FF6525C852FE5 ] C:\Program Files\AVAST Software\Avast\aswCommChannel.dll
19:10:49.0508 0x0edc  C:\Program Files\AVAST Software\Avast\aswCommChannel.dll - ok
19:10:49.0523 0x0edc  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\System32\winhttp.dll
19:10:49.0523 0x0edc  C:\Windows\System32\winhttp.dll - ok
19:10:49.0539 0x0edc  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\System32\webio.dll
19:10:49.0539 0x0edc  C:\Windows\System32\webio.dll - ok
19:10:49.0554 0x0edc  [ D1E2B63FAD77A38151C4994A7AD31449, 0D98DF6C497559F4393A1C8ADAFC96C51F28FBB219B2E9AB2320C0248174C9E5 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
19:10:49.0554 0x0edc  C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
19:10:49.0570 0x0edc  [ 7048BE0322FAF43BAE861094E083F8D5, 29ECEAB36D350E5741E91A69880B584746D272917719B77B6EED08662F68B98D ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
19:10:49.0570 0x0edc  C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
19:10:49.0586 0x0edc  [ 1FF7E4F548C7C372C804938F0D5B36AE, F20409733F67853CBF51FD83E4DB73260FED7B7A4F361C6B3482D78C990E16FC ] C:\Windows\System32\netcfgx.dll
19:10:49.0586 0x0edc  C:\Windows\System32\netcfgx.dll - ok
19:10:49.0601 0x0edc  [ 5C5E3AFD499E5146FEF1DA5EF8A23205, 9A26FFAFFB26FA6549C6DA75F76238A903CA723F9DAD356FBA8D91067FE312FD ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
19:10:49.0601 0x0edc  C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
19:10:49.0617 0x0edc  [ 2915458A210BE24B7428AA4ECAEE90C2, E5050F9E923C4EDB8C53B74475C13B86417E2A5348DD1806A1AF80666278AD08 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
19:10:49.0617 0x0edc  C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
19:10:49.0632 0x0edc  [ CDADF961272033E04D9C0B8EB075F840, 179208F3394EE5CE2A6FDFAC7ED1D793FD37BB885F4C65D9CF3CF656C9B5980B ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
19:10:49.0632 0x0edc  C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
19:10:49.0648 0x0edc  [ 188B2746E1F436B9524BF38806CEF7D0, 8F62E1099CEF1A7A3075C8CCA0BF863C203FBD4A12B733DAFCA6EDD35D366D92 ] C:\Program Files\AVAST Software\Avast\libeay32.dll
19:10:49.0648 0x0edc  C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
19:10:49.0648 0x0edc  [ EA95BB403BDBD1EF5345A6E5BDE1AD01, DD0ED9A8AA823C46836458DF71DF1D7D016AE85924C5F466BA25B0AAC47053DD ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
19:10:49.0648 0x0edc  C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
19:10:49.0664 0x0edc  [ 4ED7BB2F2704E36DF5F296D2AFD861D0, 17890D3C3BE344903C0810889040F4FAFACD82DCD83C21684AA83BC985F6EDF6 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
19:10:49.0664 0x0edc  C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
19:10:49.0679 0x0edc  [ A63DC5C2EA944E6657203E0C8EDEAF61, F7AD4B09AFB301CE46DF695B22114331A57D52E6D4163FF74787BF68CCF44C78 ] C:\Windows\System32\dllhost.exe
19:10:49.0679 0x0edc  C:\Windows\System32\dllhost.exe - ok
19:10:49.0710 0x0edc  [ 18539DF4401C0A46DA395CF0474CFA13, EDF3FB12DC2067EB67672181C64876952C840475F848A2735B23E4616AD9359E ] C:\Program Files\AVAST Software\Avast\ashServ.dll
19:10:49.0710 0x0edc  C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
19:10:49.0710 0x0edc  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] C:\Windows\System32\shsvcs.dll
19:10:49.0710 0x0edc  C:\Windows\System32\shsvcs.dll - ok
19:10:49.0726 0x0edc  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
19:10:49.0726 0x0edc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
19:10:49.0742 0x0edc  [ 66AD28B505CA6685BA13BCD9543606DF, CE21FD293F109BA632431CB03B730C6B09D415D3007D1DD24C7FE3E14A177F8E ] C:\Program Files\AVAST Software\Avast\ashTask.dll
19:10:49.0742 0x0edc  C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
19:10:49.0757 0x0edc  [ E6D90DC604F407B3B5E0FD285E46B2A0, 41C0E25E93E6985445410B23058B8972E7720464ABDB41D84FF10CCAC204921A ] C:\Windows\System32\fveapi.dll
19:10:49.0757 0x0edc  C:\Windows\System32\fveapi.dll - ok
19:10:49.0773 0x0edc  [ 746013731C6B7DD5AADC358795253118, E4EFC10FD2BDC110F7E696B6DDAAB7B459D2963EDF1D7C1FDD1E887ACFB01B2C ] C:\Program Files\AVAST Software\Avast\aswAux.dll
19:10:49.0773 0x0edc  C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
19:10:49.0788 0x0edc  [ C87F28A34B3840F4B40011D170B1A159, 4FB94B9197C5FA73E1A74BA8DCD4ACE830C927FD67B117426714CCD7396E3CB9 ] C:\Windows\System32\fvecerts.dll
19:10:49.0788 0x0edc  C:\Windows\System32\fvecerts.dll - ok
19:10:49.0804 0x0edc  [ EAFC149CD3BD78C443E31BB157841197, 9045425B0C7A23D5A96D1084FB3B1DED35852B3FB1DCB942DEB4A5B906126CA4 ] C:\Windows\System32\tbs.dll
19:10:49.0804 0x0edc  C:\Windows\System32\tbs.dll - ok
19:10:49.0820 0x0edc  [ 0B31464B7B2D616BD5F7036673588EC1, AAC717D7FB02D5F7CC11AECC5C87FE6B7224340C569EBF7B77BD8C9F79FAA190 ] C:\Windows\System32\IDStore.dll
19:10:49.0820 0x0edc  C:\Windows\System32\IDStore.dll - ok
19:10:49.0835 0x0edc  [ 0B19BCA16B36BD7F87989A44187407C0, 91DCE33E2D3CE8A7BD1F48D9D6DF16944EA365691D54897B66B7A467CA5FC38A ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
19:10:49.0835 0x0edc  C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
19:10:49.0851 0x0edc  [ E2D56AE1D40E3725084054CD8E9CFBB1, 7548C22DE09DCCC9BA41BA1DE331CFD0B18DDA00A40E27DFB8EA551CDF7050BC ] C:\Windows\System32\wiarpc.dll
19:10:49.0851 0x0edc  C:\Windows\System32\wiarpc.dll - ok
19:10:49.0866 0x0edc  [ 1D0B3B947743E8B9C4D06EB6B3A91DFD, AE94EF57C382FDD55314E54D0F1C210CDF752F1ED1AFEF6C8AB333EBAC31B2CD ] C:\Program Files\AVAST Software\Avast\aswLog.dll
19:10:49.0866 0x0edc  C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
19:10:49.0866 0x0edc  [ 8F441A009034DDAC904C27662A454974, CC3F62F49BDDB5BA1768DC425929F33304BF989844CE74C1360959508B31D0B7 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
19:10:49.0866 0x0edc  C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
19:10:49.0882 0x0edc  [ 3CA2BB895E204478C7A4C9BAF70970CE, DE3196627BC810DD22F58DEE65747BACA25485CCD0CEE2701055ECE1058F1C6A ] C:\Windows\System32\AtBroker.exe
19:10:49.0882 0x0edc  C:\Windows\System32\AtBroker.exe - ok
19:10:49.0898 0x0edc  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\System32\mpr.dll
19:10:49.0898 0x0edc  C:\Windows\System32\mpr.dll - ok
19:10:49.0913 0x0edc  [ 4D5C0DA06BA462A1DC94555697EC6033, E0465D62D474CA88ADCAA1DE6DEA967A875D40E9C3C030DF5880CC2BBADDE735 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
19:10:49.0913 0x0edc  C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
19:10:49.0929 0x0edc  [ 3A3F935692BDA212E759AB25839CA1E6, 6030AB3DD767730A4BA450D0992DD46128FF7E384B763134690C111525FF544A ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
19:10:49.0929 0x0edc  C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
19:10:49.0944 0x0edc  [ 61AC3EFDFACFDD3F0F11DD4FD4044223, 538FE1012FEDC72727A8DE0C2C01944B3D35C29812ECEF88E95AAC07235E0B0B ] C:\Windows\System32\userinit.exe
19:10:49.0944 0x0edc  C:\Windows\System32\userinit.exe - ok
19:10:49.0960 0x0edc  [ 505BF4D1CADEB8D4F8BCD08D944DE25D, 526F07768471F4457CBEAB7093AF0B0242044C89A80A347DB47F44EBADEEA68D ] C:\Windows\System32\dwm.exe
19:10:49.0960 0x0edc  C:\Windows\System32\dwm.exe - ok
19:10:49.0976 0x0edc  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] C:\Windows\System32\schedsvc.dll
19:10:49.0976 0x0edc  C:\Windows\System32\schedsvc.dll - ok
19:10:49.0991 0x0edc  [ 754AFC50022C95DA7C86B7020DB78136, 81C58F303DA2E0EC066261890C1D638EE02D2B579BBCB1BB398EDF6A0EBA671E ] C:\Windows\System32\dwmredir.dll
19:10:49.0991 0x0edc  C:\Windows\System32\dwmredir.dll - ok
19:10:50.0007 0x0edc  [ 497E59D9F01C6F247E72222A61835119, 4C31900BA2F911B2A5AE8F7FCE267DCE17655B20A6B71CD4E38FE1B1692142D1 ] C:\Windows\System32\dwmcore.dll
19:10:50.0007 0x0edc  C:\Windows\System32\dwmcore.dll - ok
19:10:50.0022 0x0edc  [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\System32\wscisvif.dll
19:10:50.0022 0x0edc  C:\Windows\System32\wscisvif.dll - ok
19:10:50.0038 0x0edc  [ 38B13C0DF479DBA23ECFA815159BA86E, C289C65AF3FB689AD6B770AB0E815860D9EA36FB2A8DE9F1818C63AD0FE47CBD ] C:\Windows\System32\ktmw32.dll
19:10:50.0038 0x0edc  C:\Windows\System32\ktmw32.dll - ok
19:10:50.0054 0x0edc  [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\System32\wscapi.dll
19:10:50.0054 0x0edc  C:\Windows\System32\wscapi.dll - ok
19:10:50.0054 0x0edc  [ 3C1936A12C62254F914A01BBC6A8DC69, 0068F7A8B0D9E9776B44EAD99007B0CE5A5600633F2B477E9EFAAC644408C70E ] C:\Windows\System32\d3d10_1.dll
19:10:50.0054 0x0edc  C:\Windows\System32\d3d10_1.dll - ok
19:10:50.0085 0x0edc  [ 8B88EBBB05A0E56B7DCC708498C02B3E, 9E1EC8B43A88E68767FD8FED2F38E7984357B3F4186D0F907E62F8B6C9FF56AD ] C:\Windows\explorer.exe
19:10:50.0085 0x0edc  C:\Windows\explorer.exe - ok
19:10:50.0100 0x0edc  [ 1C3E8371377E988B683797A132EFFE1B, CC4A9B9084F163428973A04D77CADDAA838C5761BF9E55971FAD7275BB9D2194 ] C:\Windows\System32\taskcomp.dll
19:10:50.0100 0x0edc  C:\Windows\System32\taskcomp.dll - ok
19:10:50.0116 0x0edc  [ D4212AB475A3B25EC4DF574536C3EDC5, F8BBEECB66BA6DDE5A64ED41D8BF95A1C81470552B4BFD5B11D888156289CCDD ] C:\Windows\System32\d3d10_1core.dll
19:10:50.0116 0x0edc  C:\Windows\System32\d3d10_1core.dll - ok
19:10:50.0116 0x0edc  [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\System32\dxgi.dll
19:10:50.0116 0x0edc  C:\Windows\System32\dxgi.dll - ok
19:10:50.0132 0x0edc  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] C:\Windows\System32\drivers\http.sys
19:10:50.0132 0x0edc  C:\Windows\System32\drivers\http.sys - ok
19:10:50.0147 0x0edc  [ CCF1FD2AF23D81C5483359EE1058F769, 4A15CB65E5F71ECCBF6B228994D1811237E1ECA8C5F1F29D80E4BF8ED0E2F6A8 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswEngin.dll
19:10:50.0147 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswEngin.dll - ok
19:10:50.0163 0x0edc  [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\System32\d3d11.dll
19:10:50.0163 0x0edc  C:\Windows\System32\d3d11.dll - ok
19:10:50.0178 0x0edc  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] C:\Windows\System32\spoolsv.exe
19:10:50.0178 0x0edc  C:\Windows\System32\spoolsv.exe - ok
19:10:50.0194 0x0edc  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\System32\ExplorerFrame.dll
19:10:50.0194 0x0edc  C:\Windows\System32\ExplorerFrame.dll - ok
19:10:50.0225 0x0edc  [ 72E953215CADE1A726C04AAFDF6B463D, 473866333D2241BAD6918D21EBCBE8F8EEA9344D816788300BCA290A89FBD3DD ] C:\Windows\System32\taskhost.exe
19:10:50.0225 0x0edc  C:\Windows\System32\taskhost.exe - ok
19:10:50.0241 0x0edc  [ CB3C8AAC3C507473A0EC8811D12FD832, CC20C00851CB8D5566B669702B547A7F0DA1FD4C04AAA151F668AA61503ACFDB ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnIS.dll
19:10:50.0241 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnIS.dll - ok
19:10:50.0241 0x0edc  [ 4537C83608733A5D112EF268BBDB1ED3, 0337AE367A72536467805ABD4D96372C06304E2B808DC6A739E50AA981FF9458 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnOS.dll
19:10:50.0241 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnOS.dll - ok
19:10:50.0256 0x0edc  [ BAAFA3C7BAC465EC825DC86E34D369CE, AD2D6A170F230C10E5B60F32F8BBD0FB285AE0DC48F5DC5F9DDF392411E40F13 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnBS.dll
19:10:50.0256 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswCmnBS.dll - ok
19:10:50.0272 0x0edc  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
19:10:50.0272 0x0edc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
19:10:50.0288 0x0edc  [ F9C1676F621BF55AFBCD31E8001B7EC3, 36DFE1E089875A09700CF7990D4E29777D8902734F8F66CE76A607A79C2B489A ] C:\Program Files\AVAST Software\Avast\ashShell.dll
19:10:50.0288 0x0edc  C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
19:10:50.0303 0x0edc  [ 5C3F9DBA818CD93379D1A0F215270374, 6A4D96AC83989D47D80332E41E627F2607A3B2167E1A5D8E21361136C4424633 ] C:\Windows\System32\esent.dll
19:10:50.0303 0x0edc  C:\Windows\System32\esent.dll - ok
19:10:50.0319 0x0edc  [ 2DB72DFA5EE3203C09757835BF5A1388, 1614A08BB35921A991CA005016E6189D6DBA553831F07F3DE63674D875BC1CAB ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswScan.dll
19:10:50.0319 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswScan.dll - ok
19:10:50.0334 0x0edc  [ A6C29DB53ECA94FA8591C5388D604B82, F25E95BA669422286A8FA3A68E0C639A2F06319B6DC8FA641C965CFB27A50BD6 ] C:\Windows\System32\msi.dll
19:10:50.0334 0x0edc  C:\Windows\System32\msi.dll - ok
19:10:50.0350 0x0edc  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] C:\Windows\System32\BFE.DLL
19:10:50.0350 0x0edc  C:\Windows\System32\BFE.DLL - ok
19:10:50.0366 0x0edc  [ 936FED3D338661180F42D3EBC213481F, 176E8D0FD11F784F9D5B122748D30BFFF9400FEC28B1587D3EC8BC28167FDBBB ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswRep.dll
19:10:50.0366 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswRep.dll - ok
19:10:50.0381 0x0edc  [ B43687C534A49700BF4B3C9898763752, B4C371CB2C0EAC1803E6C845F629814B2CE4C568022EB6A1C9AC1F293BF74F40 ] C:\Windows\System32\MsCtfMonitor.dll
19:10:50.0381 0x0edc  C:\Windows\System32\MsCtfMonitor.dll - ok
19:10:50.0397 0x0edc  [ 56CEED370508F69A1BA04939BD1BADDA, C84F383F2B3C9581F635E51DA39567F0B5ED2D847B18CCE51022BA4B2FA7EA8D ] C:\Windows\System32\msutb.dll
19:10:50.0397 0x0edc  C:\Windows\System32\msutb.dll - ok
19:10:50.0397 0x0edc  [ 50A22AA818CEA005683D2E69F3F0E21D, AFF1AD51B9BC3957AD0C2D073EEAAF924EDE440588F5B8E184AB0EC45D27BA06 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswFiDb.dll
19:10:50.0397 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswFiDb.dll - ok
19:10:50.0412 0x0edc  [ E3CD8CA170EBFE8ABAC23E7CA44B6292, CB3922E37CDFECC2693FC64285B403AB9C0FE99A2D8A48EE41091F16D5547709 ] C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
19:10:50.0412 0x0edc  C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll - ok
19:10:50.0428 0x0edc  [ F58516E2DC0D963EF70D6BFC21FD82C4, 5689BF12B43BE0D6BFBD6B9122A2FF53FCEC766A58A0F3C6B88AE504ACB10E04 ] C:\Windows\System32\PlaySndSrv.dll
19:10:50.0428 0x0edc  C:\Windows\System32\PlaySndSrv.dll - ok
19:10:50.0444 0x0edc  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\System32\dbghelp.dll
19:10:50.0444 0x0edc  C:\Windows\System32\dbghelp.dll - ok
19:10:50.0459 0x0edc  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:10:50.0459 0x0edc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:10:50.0475 0x0edc  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:10:50.0475 0x0edc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:10:50.0490 0x0edc  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] C:\Windows\System32\drivers\bowser.sys
19:10:50.0490 0x0edc  C:\Windows\System32\drivers\bowser.sys - ok
19:10:50.0506 0x0edc  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] C:\Windows\System32\drivers\mpsdrv.sys
19:10:50.0506 0x0edc  C:\Windows\System32\drivers\mpsdrv.sys - ok
19:10:50.0522 0x0edc  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] C:\Windows\System32\drivers\mrxsmb.sys
19:10:50.0522 0x0edc  C:\Windows\System32\drivers\mrxsmb.sys - ok
19:10:50.0537 0x0edc  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] C:\Windows\System32\drivers\mrxsmb10.sys
19:10:50.0537 0x0edc  C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:10:50.0553 0x0edc  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] C:\Windows\System32\drivers\mrxsmb20.sys
19:10:50.0553 0x0edc  C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:10:50.0568 0x0edc  [ C628BFA5C816FD29DD25BC75A0AB1D8E, 8995BC632DC3980F05D03988D833CC9C8A39EA07717D540725B3D2F8C93F4953 ] C:\Program Files\EgisTec MyWinLocker\x86\PSDProtect.dll
19:10:50.0568 0x0edc  C:\Program Files\EgisTec MyWinLocker\x86\PSDProtect.dll - ok
19:10:50.0584 0x0edc  [ 181B03AE919511956FF6B8C0C06B08E7, B6976107433C07A24CA80D1B2F805FFC5900438DE60620E4CAF103601FA449DD ] C:\Program Files\EgisTec MyWinLocker\x86\sysenv.dll
19:10:50.0584 0x0edc  C:\Program Files\EgisTec MyWinLocker\x86\sysenv.dll - ok
19:10:50.0600 0x0edc  [ 2F22E4F40CBEBB980F923D64A78FEA2B, 929197E5A94EB445238F87765C985EC3C6406ABC0320CCFC4A30AD5B6881B3D1 ] C:\Program Files\EgisTec MyWinLocker\x86\xmllite.dll
19:10:50.0600 0x0edc  C:\Program Files\EgisTec MyWinLocker\x86\xmllite.dll - ok
19:10:50.0615 0x0edc  [ 019C372B1A9DA73A22D0D35A4D40F5C9, 6DDAF455D528FDC2F8271E5909289E76E54D81AC5563433653FC7E0C6EA5BB70 ] C:\Windows\System32\wfapigp.dll
19:10:50.0615 0x0edc  C:\Windows\System32\wfapigp.dll - ok
19:10:50.0631 0x0edc  [ 32398694330BE1ECC46A27A36136CE89, F9B4E9ACECA6414EFC24491FC2D605A0D7931E82AF91BB27056AFF169D0321C7 ] C:\Program Files\AVAST Software\Avast\defs\14040802\algo.dll
19:10:50.0631 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\algo.dll - ok
19:10:50.0662 0x0edc  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\System32\EhStorShell.dll
19:10:50.0662 0x0edc  C:\Windows\System32\EhStorShell.dll - ok
19:10:50.0678 0x0edc  [ 4F2659160AFCCA990305816946F69407, 9E70685B73B3EAB78C55863BABCEECC7CCA89475B508B2A9C651ADE6FDE0751A ] C:\Windows\System32\taskeng.exe
19:10:50.0678 0x0edc  C:\Windows\System32\taskeng.exe - ok
19:10:50.0693 0x0edc  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\System32\ntshrui.dll
19:10:50.0693 0x0edc  C:\Windows\System32\ntshrui.dll - ok
19:10:50.0709 0x0edc  [ 659E04E74135927CA6D7BC5E75C84417, 635CAF4AA78ACFBA30F855C82EFA696E826D710011E960E39817EE0CB6975149 ] C:\Windows\System32\TSChannel.dll
19:10:50.0709 0x0edc  C:\Windows\System32\TSChannel.dll - ok
19:10:50.0724 0x0edc  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files\Google\Update\GoogleUpdate.exe
19:10:50.0724 0x0edc  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
19:10:50.0740 0x0edc  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\System32\cscapi.dll
19:10:50.0740 0x0edc  C:\Windows\System32\cscapi.dll - ok
19:10:50.0756 0x0edc  [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\System32\IconCodecService.dll
19:10:50.0756 0x0edc  C:\Windows\System32\IconCodecService.dll - ok
19:10:50.0771 0x0edc  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\System32\mscms.dll
19:10:50.0771 0x0edc  C:\Windows\System32\mscms.dll - ok
19:10:50.0771 0x0edc  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] C:\Windows\System32\wkssvc.dll
19:10:50.0787 0x0edc  C:\Windows\System32\wkssvc.dll - ok
19:10:50.0787 0x0edc  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\System32\NapiNSP.dll
19:10:50.0787 0x0edc  C:\Windows\System32\NapiNSP.dll - ok
19:10:50.0802 0x0edc  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\System32\pnrpnsp.dll
19:10:50.0802 0x0edc  C:\Windows\System32\pnrpnsp.dll - ok
19:10:50.0818 0x0edc  [ 9D4A1690AF93F233E15380398BEC7431, 8CC99491880DBC444651EB7D245EEE46FE77F4FA74FECFCD29E734AA21AF9D75 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
19:10:50.0818 0x0edc  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
19:10:50.0834 0x0edc  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\System32\winrnr.dll
19:10:50.0834 0x0edc  C:\Windows\System32\winrnr.dll - ok
19:10:50.0849 0x0edc  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\System32\fltLib.dll
19:10:50.0849 0x0edc  C:\Windows\System32\fltLib.dll - ok
19:10:50.0865 0x0edc  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] C:\Windows\System32\drivers\parport.sys
19:10:50.0865 0x0edc  C:\Windows\System32\drivers\parport.sys - ok
19:10:50.0880 0x0edc  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] C:\Windows\System32\pcasvc.dll
19:10:50.0880 0x0edc  C:\Windows\System32\pcasvc.dll - ok
19:10:50.0896 0x0edc  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] C:\Windows\System32\snmptrap.exe
19:10:50.0896 0x0edc  C:\Windows\System32\snmptrap.exe - ok
19:10:50.0912 0x0edc  [ F845CB13B1D1FC68C97900FEF94D03CC, 4832FEB9897291297748C95CC44B200239F737A673225F6D5EF89FC6458C5BCC ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
19:10:50.0912 0x0edc  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
19:10:50.0927 0x0edc  [ 4A1E806032413883BAF1E9A6047BC668, 4D8EA2B36B57C7ABF131193B9C23B1A7209A3464C2716C471C7F8C11E0FA9E62 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
19:10:50.0927 0x0edc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
19:10:50.0927 0x0edc  [ A86F5616EACB7155998011CEFFFB52F6, 1D877042AD916204D17516A609CE39B6AE9425D6B066E26708D39D53458A406B ] C:\Windows\System32\RdpGroupPolicyExtension.dll
19:10:50.0927 0x0edc  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
19:10:50.0958 0x0edc  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] C:\Windows\System32\sstpsvc.dll
19:10:50.0958 0x0edc  C:\Windows\System32\sstpsvc.dll - ok
19:10:50.0974 0x0edc  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] C:\Windows\System32\provsvc.dll
19:10:50.0974 0x0edc  C:\Windows\System32\provsvc.dll - ok
19:10:50.0990 0x0edc  [ A5711D00938BD64A2410A20CAD9F9AB6, 0D0151441E864AE06EDD43F6849788EA01E2CD465A24F0AC4429F5779D2A0489 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
19:10:50.0990 0x0edc  C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
19:10:50.0990 0x0edc  [ 486AC1325B7ED9CDB7411FAAD0F8B5B3, 7A1ED488C9E234B34AFA67AF22643ADC53951068850A813A4ED5E4E9AEE13CD4 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
19:10:50.0990 0x0edc  C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
19:10:51.0005 0x0edc  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\System32\rasadhlp.dll
19:10:51.0005 0x0edc  C:\Windows\System32\rasadhlp.dll - ok
19:10:51.0021 0x0edc  [ 8F2DA35E04868DF16DE9295EA6B1D90F, 1C75DE2EBB522E1492F9E0D7E14BB440832D4199886D34739D17B60ACEB7E02C ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
19:10:51.0021 0x0edc  C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
19:10:51.0036 0x0edc  [ 6B33A45B6CF08CFAA279887BE4AF908D, 7637C8369B0BD581061F97EAAB14B6E71770D77715FBEDE9A5C56D14606A30AE ] C:\Program Files\AVAST Software\Avast\AhResWS2.dll
19:10:51.0036 0x0edc  C:\Program Files\AVAST Software\Avast\AhResWS2.dll - ok
19:10:51.0052 0x0edc  [ 0928B9C3F2193EE265AA5E9B163D96EB, E2044C1098602441657FCBE2661180A7D3E450B5D8ED42410010AC89F866CF45 ] C:\Program Files\Google\Update\1.3.23.9\goopdate.dll
19:10:51.0052 0x0edc  C:\Program Files\Google\Update\1.3.23.9\goopdate.dll - ok
19:10:51.0068 0x0edc  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:10:51.0068 0x0edc  C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
19:10:51.0083 0x0edc  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] C:\Windows\System32\cryptsvc.dll
19:10:51.0083 0x0edc  C:\Windows\System32\cryptsvc.dll - ok
19:10:51.0099 0x0edc  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\System32\cryptnet.dll
19:10:51.0099 0x0edc  C:\Windows\System32\cryptnet.dll - ok
19:10:51.0114 0x0edc  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] C:\Windows\System32\dps.dll
19:10:51.0114 0x0edc  C:\Windows\System32\dps.dll - ok
19:10:51.0146 0x0edc  [ E2B2853A0210D6EDAB2261870BD80C1A, BAC20DFFCFD8C324BC5B9CDA7BAFD553BBA8E3ED9224FDCF471357A456AC0A61 ] C:\Program Files\Launch Manager\dsiwmis.exe
19:10:51.0146 0x0edc  C:\Program Files\Launch Manager\dsiwmis.exe - ok
19:10:51.0161 0x0edc  [ 13337A3FB17F2242487FD45488ED0485, C174F8652118876494336AB88A65D594E0E6CCBAB20CC6BA08E6B253855A01CA ] C:\Windows\System32\vssapi.dll
19:10:51.0161 0x0edc  C:\Windows\System32\vssapi.dll - ok
19:10:51.0177 0x0edc  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\System32\taskschd.dll
19:10:51.0177 0x0edc  C:\Windows\System32\taskschd.dll - ok
19:10:51.0177 0x0edc  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\System32\winmm.dll
19:10:51.0177 0x0edc  C:\Windows\System32\winmm.dll - ok
19:10:51.0192 0x0edc  [ 3F6D9269E7B3A754B1C2F8533DC7F318, C805967DD9974CE96471482F6DA26073638EF3D2623C82880324DD7C7E839E09 ] C:\Windows\System32\efscore.dll
19:10:51.0192 0x0edc  C:\Windows\System32\efscore.dll - ok
19:10:51.0208 0x0edc  [ 00A99DA54C14969A899ED316D16E9A9E, E960B567A955962C79FF19E73AD2CB1313BAA9B87F10B460BF2713C1415BC305 ] C:\Windows\System32\efssvc.dll
19:10:51.0208 0x0edc  C:\Windows\System32\efssvc.dll - ok
19:10:51.0224 0x0edc  [ 359C3AC547AA1D24EED35BE3AB3759DC, 5B9DFACD8B0704F8EC101D4DE36D0E720C1E272F18B07683B80D740CA0B55E6D ] C:\Windows\System32\efsutil.dll
19:10:51.0224 0x0edc  C:\Windows\System32\efsutil.dll - ok
19:10:51.0239 0x0edc  [ 60B037DB7FA23A40FD6F6C0EE9844852, 3AF944469F840C36336A400EAA66F64FDEEDA48F54DFEE493E4FB75DEF80D795 ] C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
19:10:51.0239 0x0edc  C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe - ok
19:10:51.0255 0x0edc  [ B940289C83121046BD6A60ACC6028593, EBD1C2C0A8EBB201924536AB5C6E032C12B9E081A153CC079748E1D6D625F0DF ] C:\Windows\System32\vsstrace.dll
19:10:51.0255 0x0edc  C:\Windows\System32\vsstrace.dll - ok
19:10:51.0270 0x0edc  [ 0F572525619B6B9C0BD9456D323579F4, F350BBC6FEFA2FCFBDFBA35E546B5F45DD88D1F9A1F2C3016D3937E3836EB912 ] C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll
19:10:51.0270 0x0edc  C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll - ok
19:10:51.0270 0x0edc  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\System32\msimg32.dll
19:10:51.0270 0x0edc  C:\Windows\System32\msimg32.dll - ok
19:10:51.0286 0x0edc  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\System32\oleacc.dll
19:10:51.0286 0x0edc  C:\Windows\System32\oleacc.dll - ok
19:10:51.0302 0x0edc  [ 7E6B107120108B3A15BFECE0DE3201DB, 80E38DD0A8BD05C62E3569A916F50F0596F0C44A8F7EE56F44E101138B59858E ] C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
19:10:51.0302 0x0edc  C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe - ok
19:10:51.0317 0x0edc  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\System32\winspool.drv
19:10:51.0317 0x0edc  C:\Windows\System32\winspool.drv - ok
19:10:51.0333 0x0edc  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\System32\mstask.dll
19:10:51.0333 0x0edc  C:\Windows\System32\mstask.dll - ok
19:10:51.0348 0x0edc  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] C:\Windows\System32\FDResPub.dll
19:10:51.0348 0x0edc  C:\Windows\System32\FDResPub.dll - ok
19:10:51.0364 0x0edc  [ 73F6C5223F7E9B5780DD4A6C30FCF569, 121A361A572EFC6AC964300DA93BF28DC11E55DDCA29A7C6E6FD12955FBA68B8 ] C:\Windows\System32\WSDApi.dll
19:10:51.0364 0x0edc  C:\Windows\System32\WSDApi.dll - ok
19:10:51.0380 0x0edc  [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] C:\Program Files\Acer\Registration\GREGsvc.exe
19:10:51.0380 0x0edc  C:\Program Files\Acer\Registration\GREGsvc.exe - ok
19:10:51.0395 0x0edc  [ DB846EECA70EE9D2E2FF31147C57B0F4, 1086310477697F43EB156314804B7E9100E04966EF3934F9F5E37112C5129954 ] C:\Windows\System32\webservices.dll
19:10:51.0395 0x0edc  C:\Windows\System32\webservices.dll - ok
19:10:51.0411 0x0edc  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] C:\Windows\System32\IKEEXT.DLL
19:10:51.0411 0x0edc  C:\Windows\System32\IKEEXT.DLL - ok
19:10:51.0426 0x0edc  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
19:10:51.0426 0x0edc  C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
19:10:51.0426 0x0edc  [ 0036634E5C92BE109056F7E2380103A9, 52CD75711F9021BA99A3E1258E321C507AEE82D9C57B444806115C6463437A9E ] C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
19:10:51.0426 0x0edc  C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe - ok
19:10:51.0442 0x0edc  [ 89D90579E5FB1469CB0464F6512E42B7, 0E85C6935FEAA219C923FF63D17F7C3AF72FF5028E0FF95B66092C6DF64C665C ] C:\Windows\System32\fundisc.dll
19:10:51.0442 0x0edc  C:\Windows\System32\fundisc.dll - ok
19:10:51.0458 0x0edc  [ 4909501F53DA2EB6603848944C45F524, B362D95F6F78C22D28AAC0ABAAAB6B6D4B295D130EDA231AAFD7033422564983 ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
19:10:51.0458 0x0edc  C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
19:10:51.0473 0x0edc  [ FE480FA013C5E72DC2EB71161F9A500A, C0AA44A645F1CDCEFD02F78B1DDA42223CC4FD0F4099812DA5C301DC13896FF9 ] C:\Program Files\EgisTec MyWinLocker\x86\mwlOP.dll
19:10:51.0473 0x0edc  C:\Program Files\EgisTec MyWinLocker\x86\mwlOP.dll - ok
19:10:51.0489 0x0edc  [ D0488D2ACC6882348E8603DA602F0E62, BB2BF6819D13E2458E4AC2A2EA4F88F21F8EF78BD5D53E3D247CD1984B82B8C3 ] C:\Program Files\EgisTec MyWinLocker\x86\CryptoAPI.dll
19:10:51.0489 0x0edc  C:\Program Files\EgisTec MyWinLocker\x86\CryptoAPI.dll - ok
19:10:51.0504 0x0edc  [ 5845B1C54380FB980F68024B3A8B1E66, A7215D59B5C452F1494CFEC0DFC1E4ABE2D17EA0E1D07FBA062901BC3DED21AF ] C:\Windows\System32\vpnikeapi.dll
19:10:51.0504 0x0edc  C:\Windows\System32\vpnikeapi.dll - ok
19:10:51.0520 0x0edc  [ 5FF5E12F28725D14CAA3B408848ADFFC, 32C38FEC25F193EAB1C7EB567666D4F7E46117AC3C1F341C14C1DD5C926BFAAC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcr80.dll
19:10:51.0520 0x0edc  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcr80.dll - ok
19:10:51.0536 0x0edc  [ A3C190D644E88DE5872FC7FEC7377E35, ABA02BA8E368B09CC9E523A0CCD2F96B0DA3ED14779E592495D478161AE5E4AC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcp80.dll
19:10:51.0536 0x0edc  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcp80.dll - ok
19:10:51.0551 0x0edc  [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\System32\httpapi.dll
19:10:51.0551 0x0edc  C:\Windows\System32\httpapi.dll - ok
19:10:51.0567 0x0edc  [ 510C138564486FF926A3F773205C63D1, 50FBB8555C284ED22F71D99750899321B63E3B4C255174FE9B4F31084F9A34B1 ] C:\Windows\System32\HPZinw12.dll
19:10:51.0567 0x0edc  C:\Windows\System32\HPZinw12.dll - ok
19:10:51.0598 0x0edc  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] C:\Windows\System32\nlasvc.dll
19:10:51.0598 0x0edc  C:\Windows\System32\nlasvc.dll - ok
19:10:51.0614 0x0edc  [ 140D9F911182357626165EA0BEB98C4F, 9B24047BF104895FCFDB68694934BDDD92DE98A0E6334A62E987C6DCBFFB9C5B ] C:\Windows\System32\ncsi.dll
19:10:51.0614 0x0edc  C:\Windows\System32\ncsi.dll - ok
19:10:51.0614 0x0edc  [ 28E2231BD34A39C854BDF3923AB2FF86, A95179068F7B86E04F976B724F155DA86253B7F4414F43DBD95F2058282B99E4 ] C:\Windows\System32\ssdpapi.dll
19:10:51.0614 0x0edc  C:\Windows\System32\ssdpapi.dll - ok
19:10:51.0645 0x0edc  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] C:\Windows\System32\drivers\PEAuth.sys
19:10:51.0645 0x0edc  C:\Windows\System32\drivers\PEAuth.sys - ok
19:10:51.0660 0x0edc  [ 37E5E8FFBAD35605DAEEC3224EA0E465, E3A9BE275D3C8A3E143DF3A795964E9860A1F6C18BE36F8FE552E954435AC927 ] C:\Windows\System32\HPZipm12.dll
19:10:51.0660 0x0edc  C:\Windows\System32\HPZipm12.dll - ok
19:10:51.0676 0x0edc  [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] C:\Program Files\Acer\Acer VCM\RS_Service.exe
19:10:51.0676 0x0edc  C:\Program Files\Acer\Acer VCM\RS_Service.exe - ok
19:10:51.0692 0x0edc  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] C:\Windows\System32\drivers\secdrv.sys
19:10:51.0692 0x0edc  C:\Windows\System32\drivers\secdrv.sys - ok
19:10:51.0707 0x0edc  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] C:\Windows\System32\seclogon.dll
19:10:51.0707 0x0edc  C:\Windows\System32\seclogon.dll - ok
19:10:51.0723 0x0edc  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] C:\Windows\System32\drivers\srvnet.sys
19:10:51.0723 0x0edc  C:\Windows\System32\drivers\srvnet.sys - ok
19:10:51.0738 0x0edc  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] C:\Windows\System32\wiaservc.dll
19:10:51.0738 0x0edc  C:\Windows\System32\wiaservc.dll - ok
19:10:51.0770 0x0edc  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] C:\Windows\System32\drivers\tcpipreg.sys
19:10:51.0770 0x0edc  C:\Windows\System32\drivers\tcpipreg.sys - ok
19:10:51.0770 0x0edc  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] C:\Windows\System32\sysmain.dll
19:10:51.0770 0x0edc  C:\Windows\System32\sysmain.dll - ok
19:10:51.0785 0x0edc  [ B087F2B901570F6EF62F6C2E01A480F3, 9303CB715184D161F3BD8E9EE8799009375B17FA1BD5D7EF661D7CD7555AA251 ] C:\Windows\System32\wiatrace.dll
19:10:51.0785 0x0edc  C:\Windows\System32\wiatrace.dll - ok
19:10:51.0801 0x0edc  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] C:\Windows\System32\trkwks.dll
19:10:51.0801 0x0edc  C:\Windows\System32\trkwks.dll - ok
19:10:51.0816 0x0edc  [ AAF7BEB63E2CC499834B608A85A55E4E, 06809AD771DD20624D715EA1DF85BDD3FD2919C5C139A7C67D6EB140A1D0A439 ] C:\Windows\System32\wsdchngr.dll
19:10:51.0816 0x0edc  C:\Windows\System32\wsdchngr.dll - ok
19:10:51.0832 0x0edc  [ F34CFADA6C48DAA41B996D24C7D8D3CA, D294DECC607A6ED7264BEC41FDA3BF12D3F2B3FAFAF55F0C5F2235A9066C97EC ] C:\Windows\System32\fdPnp.dll
19:10:51.0832 0x0edc  C:\Windows\System32\fdPnp.dll - ok
19:10:51.0863 0x0edc  [ 9A23A527D1095907743FF95E718E69C6, C869E0E52E0397B354C36E883A188814C556B0BC729916833AD29C84BE045A17 ] C:\Windows\System32\hpowiav1.dll
19:10:51.0863 0x0edc  C:\Windows\System32\hpowiav1.dll - ok
19:10:51.0863 0x0edc  [ F9EC9ACD504D823D9B9CA98A4F8D3CA2, 58DAD5111C598F14CB199FE6A61FA5918F29513B778A8664FD05EFAB3C665D4F ] C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:10:51.0863 0x0edc  C:\Program Files\Acer\Acer Updater\UpdaterService.exe - ok
19:10:51.0879 0x0edc  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] C:\Windows\System32\wbem\WMIsvc.dll
19:10:51.0879 0x0edc  C:\Windows\System32\wbem\WMIsvc.dll - ok
19:10:51.0894 0x0edc  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
19:10:51.0894 0x0edc  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok
19:10:51.0910 0x0edc  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] C:\Program Files\Windows Defender\MpSvc.dll
19:10:51.0910 0x0edc  C:\Program Files\Windows Defender\MpSvc.dll - ok
19:10:51.0926 0x0edc  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\System32\sfc.dll
19:10:51.0926 0x0edc  C:\Windows\System32\sfc.dll - ok
19:10:51.0941 0x0edc  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\System32\wbemcomn.dll
19:10:51.0941 0x0edc  C:\Windows\System32\wbemcomn.dll - ok
19:10:51.0957 0x0edc  [ 5B8E80EC0D621CDF920AB2141CDBC733, CDF4BD7BE5B6ADEDD06448DCDCF9FCA6FA9EC57788342FF42D0EF09F651C3245 ] C:\Program Files\Windows Defender\MpClient.dll
19:10:51.0957 0x0edc  C:\Program Files\Windows Defender\MpClient.dll - ok
19:10:51.0972 0x0edc  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\System32\sfc_os.dll
19:10:51.0972 0x0edc  C:\Windows\System32\sfc_os.dll - ok
19:10:51.0988 0x0edc  [ 881D9F2D6E04E1C323050CF1574870F7, DA02C415977A2E50C3D1E96E227234E7195BD33903C446A17FBE0FA8D14A164F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:10:51.0988 0x0edc  C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:10:52.0004 0x0edc  [ 701C9EB15E1E23D22F7C7184C0506673, 1CD59E8B8889C93B55F600DA1A7246810E8EAB725EFEF80327AC96344AC596A6 ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:10:52.0004 0x0edc  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:10:52.0019 0x0edc  [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042, 8E9D77A216D8DD2BE2B304E60EDF85CE825309E67262FCFF1891AEDE63909599 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL
19:10:52.0019 0x0edc  C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok
19:10:52.0035 0x0edc  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\System32\SensApi.dll
19:10:52.0035 0x0edc  C:\Windows\System32\SensApi.dll - ok
19:10:52.0035 0x0edc  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\System32\wbem\fastprox.dll
19:10:52.0035 0x0edc  C:\Windows\System32\wbem\fastprox.dll - ok
19:10:52.0050 0x0edc  [ 5826854E4E420E29F59C2865F0FA562F, F62B0AD7C2C0390A715B018180C2C9E6349FEFF605B9C02426099EE632A65D97 ] C:\Program Files\Windows Defender\MpEvMsg.dll
19:10:52.0050 0x0edc  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
19:10:52.0066 0x0edc  [ 4F8CCD3E7D9F17A7C60FA0AE2466CACF, 77849DD78145EA879E63A42AE1481C0DEA3E16D89BB067229203317E9EDD340D ] C:\Windows\System32\wer.dll
19:10:52.0066 0x0edc  C:\Windows\System32\wer.dll - ok
19:10:52.0082 0x0edc  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\System32\ntdsapi.dll
19:10:52.0082 0x0edc  C:\Windows\System32\ntdsapi.dll - ok
19:10:52.0097 0x0edc  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\System32\wbem\wbemprox.dll
19:10:52.0097 0x0edc  C:\Windows\System32\wbem\wbemprox.dll - ok
19:10:52.0113 0x0edc  [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
19:10:52.0113 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
19:10:52.0128 0x0edc  [ E4561704CBFA193761743E5AF746C669, DCABD67A2B988BEF70BDD0613B4271BCFD572FAF8018CFA2EA60B8AEFE08C73B ] C:\Windows\System32\msxml3.dll
19:10:52.0128 0x0edc  C:\Windows\System32\msxml3.dll - ok
19:10:52.0144 0x0edc  [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5, 933DDD0708717B6BF2963B2D7ADE0B61A77E568C91025156A32465A78D1E4ABF ] C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll
19:10:52.0144 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
19:10:52.0160 0x0edc  [ 3960CEB4A6B13784252D827ECF65CED3, 65108560A5D9FFBA0BC23068C871955D862F3CA7BA4939BB9DD04FA803D6C162 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
19:10:52.0160 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
19:10:52.0175 0x0edc  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] C:\Windows\System32\drivers\srv2.sys
19:10:52.0175 0x0edc  C:\Windows\System32\drivers\srv2.sys - ok
19:10:52.0191 0x0edc  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] C:\Windows\System32\drivers\srv.sys
19:10:52.0191 0x0edc  C:\Windows\System32\drivers\srv.sys - ok
19:10:52.0191 0x0edc  [ 1530DFBDFD68AAD1FD5FDA52EA44925E, 6C764D50A1E43217306896879EBCE873A680400373400E8941A0F880C2151E33 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
19:10:52.0206 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
19:10:52.0222 0x0edc  [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584, 27310A5C2808BF0931130F36A4EC1918CF48C351B95108097F28E07BB555DA85 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
19:10:52.0222 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
19:10:52.0238 0x0edc  [ EEA7E552C2C992CFD4B50857010F39EA, 8CEC6EB1FB1C526295D0AFF2C144839D8ADA3CB301E4653C6C77433224277C98 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
19:10:52.0238 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
19:10:52.0253 0x0edc  [ 5E2623439A9936D320FE8DC1AB84526A, ECFF83E5DD754ED65E485BE93519E1E7377196510FF683FA849DBEB72D80FA47 ] C:\Program Files\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
19:10:52.0253 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
19:10:52.0253 0x0edc  [ 8F1656DEB2E861D608909792F5A68C3B, 53DCC124E507F7CDC6A0252E87B9233B7FF467AA8B61D812419A6EC3BF3C1142 ] C:\Program Files\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
19:10:52.0269 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
19:10:52.0269 0x0edc  [ 78193AA97D679531522C3E2FA4A5EDFE, 882F864F0C6734CF7B7A70D28BB29703199B9D675AD74BE828C55CE89E48E832 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
19:10:52.0269 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
19:10:52.0284 0x0edc  [ 793A19EAB66BB232F019DFF9D1977A41, C074122351F10D3C707CBC35B2CCA2E53C697FA8A19ECE1AD3B2727C8C9919FF ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
19:10:52.0284 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
19:10:52.0300 0x0edc  [ BA726152513EC650EED219B7995DE852, 4AFE666E6D387C14EEF2044E978B5F09AF8DDA6559320B42455FCA849869D26C ] C:\Program Files\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
19:10:52.0300 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
19:10:52.0316 0x0edc  [ 77C8E1779E784189EA29D9A5ECCDD9E9, 3CED9F6DB8E0C1CC392337DF247406D3BFF91E1FFBA7676B72544100135674F2 ] C:\Program Files\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
19:10:52.0316 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
19:10:52.0331 0x0edc  [ AFD87B70E2C48EC080CA28ADCC3175B5, 58CCB64F5FED5B08EBFF5AC3FB4C60FEAFF6F901428D0B1B69CEC471A2CD7A8A ] C:\Program Files\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
19:10:52.0331 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
19:10:52.0347 0x0edc  [ 5ECEA5F29DCEE8D320454C86A1CB3366, 5D37DD1ECCB1617D421022155ED8A71E4E7F7389A570F34943BAAEAC3CF32FB4 ] C:\Program Files\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
19:10:52.0347 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
19:10:52.0362 0x0edc  [ 18873D2B1ABBB8826ED18F840CB8E0D3, 93DCA3F67451B5824D8D47F8C438041AA86FEB6D504B4FCE6ED3486357A3FB26 ] C:\Program Files\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
19:10:52.0362 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
19:10:52.0378 0x0edc  [ 79ECBC83B844F7A474C66BE77AAF7180, D245681F7BD050E32F5CD120D55913669610A5182DBA0C57261C024181D83DCD ] C:\Program Files\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
19:10:52.0378 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
19:10:52.0394 0x0edc  [ 069006BF253F32CD980E67E8671DFE3C, 836FDB3819174770A71CE0A3F1CFBA92AC6DC6328687F088A3E932E807ECC922 ] C:\Program Files\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
19:10:52.0394 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
19:10:52.0425 0x0edc  [ 5925F32114BF5ACF50C66500433B35CC, 6E0AA93DCD2C6F8647C1CA202436CE87D2B6728BEC05570261213188ED1C63AE ] C:\Program Files\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
19:10:52.0425 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
19:10:52.0440 0x0edc  [ 03C7D7A1553E3009CEBE3013A578B0ED, CBAC9C2E30C0A5D93E8218FA8A51FD23D4D9CC7751993A822532644358664784 ] C:\Program Files\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
19:10:52.0440 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
19:10:52.0456 0x0edc  [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF, 862DA57213A513C911338D1BAB13C9C21E9BF55B8A2961D4C31DA53C38F8528B ] C:\Program Files\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
19:10:52.0456 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
19:10:52.0472 0x0edc  [ 2499E32320905E68F9710527593A0EDB, ED9CD68E82F71131BDA45618F222088676D35EC6B6F8737514835AFA6E0C053F ] C:\Program Files\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
19:10:52.0487 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
19:10:52.0503 0x0edc  [ 591EA8B6991D99720B36EBC1CC16CEA8, CC2D9EB882292F4301246218FADCB02424FF143AF0DD182F29A1F432B41645D4 ] C:\Program Files\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
19:10:52.0503 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
19:10:52.0518 0x0edc  [ A4487F6CEFED12F2C1257F6DBCDAEB1E, 9E590453F88C49EDF608649B84943F04E8831FE100018648C3CB85EFCD37942A ] C:\Program Files\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
19:10:52.0518 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
19:10:52.0534 0x0edc  [ 35989A505DEEC24DEF8D327D22FF14D4, 31267D0FA4F75B35D92CAC5789297CE96CE53238CA83422F5C46535E383C32B6 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
19:10:52.0534 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
19:10:52.0550 0x0edc  [ 9D825B4E6B28F93F326538515EFC880B, 11A53D5AA0D8BF2FCD29AF89833D09EC8D2589BC4CC6430826B415AE017C3AD3 ] C:\Program Files\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
19:10:52.0550 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
19:10:52.0565 0x0edc  [ D9BFF3E59CBE32FE72D6D68F6AF348BD, E3763C28524190653DE23F7FB0B70F0EE688496089DE94DCE998EFE88F0F4432 ] C:\Program Files\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
19:10:52.0565 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
19:10:52.0565 0x0edc  [ E84CB5D899098DDEA6D013057C9E4B5F, 2D092BAF2D1B8F2A0CA5BBA9E73AC777E171D37268EA363A730A3596F8DEDDF0 ] C:\Program Files\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
19:10:52.0565 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
19:10:52.0581 0x0edc  [ 585EB475E7AF55C9065256E8FFB751A1, 5AE557013435DF993F0E872B90A94CBB9E80FA8A080469C300EBCEE62CABA92F ] C:\Windows\System32\wbem\wbemcore.dll
19:10:52.0581 0x0edc  C:\Windows\System32\wbem\wbemcore.dll - ok
19:10:52.0596 0x0edc  [ 5AE88135C6A86FCD67BA16AFBB1C8389, 0FC750B5C84F1AFBE93E8A23410360F4B068D367A9AF6FF2E3F6160DA5005DE5 ] C:\Windows\System32\wbem\esscli.dll
19:10:52.0596 0x0edc  C:\Windows\System32\wbem\esscli.dll - ok
19:10:52.0612 0x0edc  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] C:\Windows\System32\iphlpsvc.dll
19:10:52.0612 0x0edc  C:\Windows\System32\iphlpsvc.dll - ok
19:10:52.0628 0x0edc  [ CE292C4C10B8DB6070F262EA2733F0DC, 0A685263DA0277F2D215C4C22BF39E2F869B632B42B8C992E068129F57177BE1 ] C:\Windows\System32\sqmapi.dll
19:10:52.0628 0x0edc  C:\Windows\System32\sqmapi.dll - ok
19:10:52.0643 0x0edc  [ A399514D3B28C9A3453A486BBAAFF1C7, 487CAA68CF4EE0C9DC26975C694A2780ADEFB687D1EDF929CE6E1C7E3722FFE9 ] C:\Windows\System32\wdscore.dll
19:10:52.0643 0x0edc  C:\Windows\System32\wdscore.dll - ok
19:10:52.0659 0x0edc  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\System32\wbem\wbemsvc.dll
19:10:52.0659 0x0edc  C:\Windows\System32\wbem\wbemsvc.dll - ok
19:10:52.0674 0x0edc  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] C:\Windows\System32\srvsvc.dll
19:10:52.0674 0x0edc  C:\Windows\System32\srvsvc.dll - ok
19:10:52.0690 0x0edc  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] C:\Windows\System32\browser.dll
19:10:52.0690 0x0edc  C:\Windows\System32\browser.dll - ok
19:10:52.0706 0x0edc  [ E4B72E71EC37A59FE574A998A0C0EB9B, C17B06C936FC47B6AA5221ABF1DDE283F59E5751BEE9CDBCCBAF25CD4E7232AD ] C:\Windows\System32\netmsg.dll
19:10:52.0706 0x0edc  C:\Windows\System32\netmsg.dll - ok
19:10:52.0721 0x0edc  [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\System32\wbem\wmiutils.dll
19:10:52.0721 0x0edc  C:\Windows\System32\wbem\wmiutils.dll - ok
19:10:52.0737 0x0edc  [ 15C42334805B711FBF0C788A1D751528, 3D43D6D2703451B1C0CA4A4D5B82F31D6507BAED3CEF6BC816C8639D23B02A59 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
19:10:52.0737 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
19:10:52.0752 0x0edc  [ 9C879E1C3B27085FB46EFECCD7120D51, B2258E33C2E7646D85264DD8EF35FFD7319481EF7311636B91140D7D9A119F89 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
19:10:52.0752 0x0edc  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok
19:10:52.0768 0x0edc  [ 371E3B05894549113D07CD3081ED55EF, 9973678AC0F50B1F02B379B1D4A7DDF317B724D65BE3FF635FD751EDD1D96B5A ] C:\Windows\System32\wbem\repdrvfs.dll
19:10:52.0768 0x0edc  C:\Windows\System32\wbem\repdrvfs.dll - ok
19:10:52.0784 0x0edc  [ AE9898D5600A232CD8AE3298692162E5, 8B94BA9C404B8A21CE023335960E77C73245FB30015161EEFF48573DDB7E6922 ] C:\Windows\System32\clusapi.dll
19:10:52.0784 0x0edc  C:\Windows\System32\clusapi.dll - ok
19:10:52.0799 0x0edc  [ 89E783711AF91AF09E1EF30EF3107446, CA91DABED7508A86A4AFA5F99A4A78D0BA3577168B04C8E3462FC4D55FA33FFD ] C:\Windows\System32\sscore.dll
19:10:52.0799 0x0edc  C:\Windows\System32\sscore.dll - ok
19:10:52.0815 0x0edc  [ 2AF094C822BD6094F14A8E85FB51D52A, F70A4FEC66E64245237D9D1A4C2C87168A26F224FCE648A3D7065E95259887D2 ] C:\Windows\System32\resutils.dll
19:10:52.0815 0x0edc  C:\Windows\System32\resutils.dll - ok
19:10:52.0830 0x0edc  [ 6383C60EC0133B14F5705F96369421B2, EAB3FA2344B853148F199F744E716FBB8E9331B9DB588F784274599B6BCE2335 ] C:\Windows\System32\hnetcfg.dll
19:10:52.0830 0x0edc  C:\Windows\System32\hnetcfg.dll - ok
19:10:52.0830 0x0edc  [ 45D9F6CD2469CDB6A640DD4BD2B01471, 21704ADB83B26DD9C2D4D248FE61F3FEC2003D6748BB6A830334F0FDA9610362 ] C:\Windows\System32\nci.dll
19:10:52.0830 0x0edc  C:\Windows\System32\nci.dll - ok
19:10:52.0846 0x0edc  [ 99B9343280AF6A4C0F27CF2E28E94BBF, 0E29E05E893B2516A1BB5B1D5B7AC91BB55E2B5D463C8C50765328C10BCEA67E ] C:\Windows\System32\dssenh.dll
19:10:52.0846 0x0edc  C:\Windows\System32\dssenh.dll - ok
19:10:52.0862 0x0edc  [ 3CDE2911462FEC80064A409C07710C06, DBEC8669B1B8FA68750B17008C4328B223F8263EBE02C550780926C23D38D7D3 ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:10:52.0862 0x0edc  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:10:52.0877 0x0edc  [ A4CC7227A452C4909F9499D91B184364, 56111E57D17553BE3EAB8DA2DC42C7132E4458549AFFC08975B7A7204D8F5E76 ] C:\Windows\System32\ncobjapi.dll
19:10:52.0877 0x0edc  C:\Windows\System32\ncobjapi.dll - ok
19:10:52.0893 0x0edc  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\System32\wlanapi.dll
19:10:52.0893 0x0edc  C:\Windows\System32\wlanapi.dll - ok
19:10:52.0908 0x0edc  [ B350509B6C9296529BC464C60FEEAEF1, CC653ED001FE6A2BE5A9687572A70CEF9FAB258A57896643379E5D6C1D8E4F1F ] C:\Windows\System32\wbem\wbemess.dll
19:10:52.0908 0x0edc  C:\Windows\System32\wbem\wbemess.dll - ok
19:10:52.0924 0x0edc  [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\System32\netshell.dll
19:10:52.0924 0x0edc  C:\Windows\System32\netshell.dll - ok
19:10:52.0940 0x0edc  [ 90EB173A54E28CA09B89D4AFDEBC2F1A, 3657D6E7BB40DAB75C2F06AA13C1EFB87EC1B9777792D821987162F30A1AA6AB ] C:\Program Files\AVAST Software\Avast\defs\14040802\exts.dll
19:10:52.0940 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\exts.dll - ok
19:10:52.0940 0x0edc  [ 05E0E444632AEF1E1D778D6E5AE5D621, BA76F22A29CD623DCECE4ECA98347E99DAF22F8DCAB014639061F7077C17BDE5 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
19:10:52.0940 0x0edc  C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
19:10:52.0955 0x0edc  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] C:\Windows\System32\wdi.dll
19:10:52.0955 0x0edc  C:\Windows\System32\wdi.dll - ok
19:10:52.0986 0x0edc  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] C:\Windows\System32\appinfo.dll
19:10:52.0986 0x0edc  C:\Windows\System32\appinfo.dll - ok
19:10:52.0986 0x0edc  [ 7E82616BEE76BF5EAA5B30F681414E21, 2138D743C4C09ECD829E194CA42934CB044BFF400921DA9B5FA50371E191656E ] C:\Windows\System32\perftrack.dll
19:10:52.0986 0x0edc  C:\Windows\System32\perftrack.dll - ok
19:10:53.0018 0x0edc  [ 8B794AE6D5C7D42092804BC39A2EB8F6, 0C8078442EABA31D48019F1A3B7941CC19D9B3AA571FFA5DCD4E19F67DEBF723 ] C:\Windows\System32\aepic.dll
19:10:53.0018 0x0edc  C:\Windows\System32\aepic.dll - ok
19:10:53.0033 0x0edc  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\System32\npmproxy.dll
19:10:53.0033 0x0edc  C:\Windows\System32\npmproxy.dll - ok
19:10:53.0049 0x0edc  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
19:10:53.0049 0x0edc  C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
19:10:53.0064 0x0edc  [ 8CBDF28465ABDC5917053B38E1FFBC05, 825E05C704A460C208BF4435140882DF291EE8651B445B1277ED9DA54A92D506 ] C:\Program Files\AVAST Software\Avast\aswStreamFilter.dll
19:10:53.0064 0x0edc  C:\Program Files\AVAST Software\Avast\aswStreamFilter.dll - ok
19:10:53.0080 0x0edc  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] C:\Windows\System32\wpdbusenum.dll
19:10:53.0080 0x0edc  C:\Windows\System32\wpdbusenum.dll - ok
19:10:53.0096 0x0edc  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\System32\shfolder.dll
19:10:53.0096 0x0edc  C:\Windows\System32\shfolder.dll - ok
19:10:53.0096 0x0edc  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] C:\Windows\System32\netman.dll
19:10:53.0096 0x0edc  C:\Windows\System32\netman.dll - ok
19:10:53.0111 0x0edc  [ ECF036299AA554B5E0455262857B39D0, E7A08E4AA1677291FB55E1B43511B912D45676652E35C6BA75D1604A8BE5B1D0 ] C:\Windows\System32\diagperf.dll
19:10:53.0111 0x0edc  C:\Windows\System32\diagperf.dll - ok
19:10:53.0127 0x0edc  [ E98278865E8DABA21CFE5FE4BE34210A, 3BB431A9F6476EA98C17DF46BA5DFA265E74328D84875E402236ED12E50B6330 ] C:\Windows\System32\PortableDeviceApi.dll
19:10:53.0127 0x0edc  C:\Windows\System32\PortableDeviceApi.dll - ok
19:10:53.0142 0x0edc  [ D99621C0735B21DCC8BC4FEF02F379EF, C9FAD74DD80B6CCA95B83B767BB55644E775E8DC3FFC05CD89AEF16686F902FD ] C:\Windows\System32\Apphlpdm.dll
19:10:53.0142 0x0edc  C:\Windows\System32\Apphlpdm.dll - ok
19:10:53.0158 0x0edc  [ F8E882C10AF4C29E378D1E28D4817CB1, 1164096E044FA9B38CCC462315B9A2F7C43C472091F539F6A4BF7B5EAA389410 ] C:\Windows\System32\pnpts.dll
19:10:53.0158 0x0edc  C:\Windows\System32\pnpts.dll - ok
19:10:53.0174 0x0edc  [ 7FFD52D73352806969D424EF327D10A7, DD44B084F052EF798997D7A8578E98DD4EF3F0E2A0C522DA2CC169D362C7B900 ] C:\Windows\System32\radardt.dll
19:10:53.0174 0x0edc  C:\Windows\System32\radardt.dll - ok
19:10:53.0189 0x0edc  [ F0016853FA3F38F55FD868FF74C0359B, 49A6A6D610591D0F2FF8A88C8E72D6DCABB8C5FE5D3E995F0CE0E8FC073BA289 ] C:\Windows\System32\wdiasqmmodule.dll
19:10:53.0189 0x0edc  C:\Windows\System32\wdiasqmmodule.dll - ok
19:10:53.0205 0x0edc  [ C693E642ACFBDD76433AF6BE3C3EEE6F, 5241C30CCB095B10B10AD11F42F57B2DEA362C7F6DA36A9A5B23E4DFF113CFD7 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:10:53.0205 0x0edc  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:10:53.0220 0x0edc  [ F7FE730CE31B54145DEE1F1482BCCDD7, E7F0F59AB2B0D5EC5FE9B966006D06FE0FCEDBA99E2A4A8A6D410A0490F1F017 ] C:\Windows\System32\ndiscapCfg.dll
19:10:53.0220 0x0edc  C:\Windows\System32\ndiscapCfg.dll - ok
19:10:53.0236 0x0edc  [ 761A3A4038C1FD4F5795427907C28484, B9338BC022DC5B8C0502E6A88E7D76E03C19A828861A922360B147441FB09285 ] C:\Windows\System32\rascfg.dll
19:10:53.0236 0x0edc  C:\Windows\System32\rascfg.dll - ok
19:10:53.0252 0x0edc  [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\System32\mprapi.dll
19:10:53.0252 0x0edc  C:\Windows\System32\mprapi.dll - ok
19:10:53.0267 0x0edc  [ 9A7B54D57594233EEB17892BAD309970, 64EF2A51BFA13455038DCB6773F9DEF6FD46FAA1F1CF47E7B61D3E64466DA5AA ] C:\Windows\System32\mprmsg.dll
19:10:53.0267 0x0edc  C:\Windows\System32\mprmsg.dll - ok
19:10:53.0267 0x0edc  [ 04B88428A872390D235BE52D38A9D4EF, F6954D514B67547738EB012456342D65289B0B18A0304BBAD5BDAA3436181C77 ] C:\Windows\System32\dot3api.dll
19:10:53.0267 0x0edc  C:\Windows\System32\dot3api.dll - ok
19:10:53.0283 0x0edc  [ CAFC0B884E5590B5E80D84F592388B3D, FFCA66AEB6869BCC7A469C5E968B20A2DFA49D97E4E598CC36E839047FF7AB2B ] C:\Windows\System32\tcpipcfg.dll
19:10:53.0283 0x0edc  C:\Windows\System32\tcpipcfg.dll - ok
19:10:53.0298 0x0edc  [ 8063046AA70B97CA9985672B8848FB2E, C7A7F2D216D1F0D7F28A22E4933DB3D821AC52CC2EF7AE8BA08D18104FCF8B81 ] C:\Windows\System32\wlanhlp.dll
19:10:53.0298 0x0edc  C:\Windows\System32\wlanhlp.dll - ok
19:10:53.0314 0x0edc  [ C5C867CD7EFAC60D5021223E374DEEC5, 197FEE8F02DE348E75771AC9AD748EFB29939F1AAF02DA6555181EEF787FD099 ] C:\Windows\System32\dimsjob.dll
19:10:53.0314 0x0edc  C:\Windows\System32\dimsjob.dll - ok
19:10:53.0330 0x0edc  [ 9529E946B8496C1605A9188FFD49DED8, C8AB36A212E4C896D39F6120B72829585E6AFDEACA7DF7FD6D4A6EB8F9C6FF98 ] C:\Windows\System32\drivers\aswstm.sys
19:10:53.0330 0x0edc  C:\Windows\System32\drivers\aswstm.sys - ok
19:10:53.0345 0x0edc  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\System32\runonce.exe
19:10:53.0345 0x0edc  C:\Windows\System32\runonce.exe - ok
19:10:53.0361 0x0edc  [ 14486EB6AF542F2BD3239F7FC3E713F7, C084C653CF6C63D7B4DB08CBDE2CAF059019D276BCACD923A29D22E69055012C ] C:\Windows\System32\pautoenr.dll
19:10:53.0361 0x0edc  C:\Windows\System32\pautoenr.dll - ok
19:10:53.0361 0x0edc  [ 74AF6AA2E8B3180AADAE5FE8813CB1CD, FB1C334A76B4E51B1C91141CB7E8B435FE4A8403072112B5F1BAC917649FFC22 ] C:\Windows\System32\localspl.dll
19:10:53.0361 0x0edc  C:\Windows\System32\localspl.dll - ok
19:10:53.0376 0x0edc  [ 78DE417B7921DACA072059E6BF410FC7, 8A32772A5500F6076D207EA7194C67B4147BCE28DEA4B582C2129BEC4A42D7CD ] C:\Windows\System32\wshnetbs.dll
19:10:53.0376 0x0edc  C:\Windows\System32\wshnetbs.dll - ok
19:10:53.0392 0x0edc  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\System32\cmd.exe
19:10:53.0392 0x0edc  C:\Windows\System32\cmd.exe - ok
19:10:53.0408 0x0edc  [ 629181C26A78EB66B0B4E774E5AC2882, DE39D01ADC4123C81EF77B24D7FC2F66C27CC2D31248EF53C52CD31AC90A95CE ] C:\Windows\System32\spoolss.dll
19:10:53.0408 0x0edc  C:\Windows\System32\spoolss.dll - ok
19:10:53.0423 0x0edc  [ FDD8C7A73D5DDB9F668A1334D27E4488, 18DCBFBB57785B3983790AF680EE74DC007CDBB4D6ABD13DB897E57D329C6EC9 ] C:\Program Files\AVAST Software\Avast\Setup\instup.exe
19:10:53.0423 0x0edc  C:\Program Files\AVAST Software\Avast\Setup\instup.exe - ok
19:10:53.0439 0x0edc  [ 03CF941D031F30272D3063E5A4D686F5, 641189DA98156FC8DFABF766EB34726F64E5901AF5F74B42C392C218C892F179 ] C:\Windows\System32\PrintIsolationProxy.dll
19:10:53.0439 0x0edc  C:\Windows\System32\PrintIsolationProxy.dll - ok
19:10:53.0454 0x0edc  [ 126F8331BD023178C7F0EF2F5EDE16B3, F56DDCC9F282274F2EB073CE33B0CAB7EFC759B9C39B19909FE901E89DA0307F ] C:\Windows\System32\FXSMON.dll
19:10:53.0454 0x0edc  C:\Windows\System32\FXSMON.dll - ok
19:10:53.0470 0x0edc  [ C52CE534397E1D3A442FB4C88A3CBE42, 4289052A24780CEEE9C96290B47FDD596B7D4426F776BB7B2ACCBB6E01B41E52 ] C:\Windows\System32\msonpmon.dll
19:10:53.0470 0x0edc  C:\Windows\System32\msonpmon.dll - ok
19:10:53.0470 0x0edc  [ 67B5955F5F2F36D58993EB87101B3D2B, 09BC41D0A9D469E1F9C49308ED81FF31DCC0A1CCC8FEBDBB554F60941C35B9C9 ] C:\Windows\System32\ieframe.dll
19:10:53.0486 0x0edc  C:\Windows\System32\ieframe.dll - ok
19:10:53.0486 0x0edc  [ B390C1D825C7687493BEDE237C6C2F25, 969C456E52695E8AECDDF80995F05D18F6F686AA1AE58A9A661C3069CDF5B1BD ] C:\Windows\System32\tcpmon.dll
19:10:53.0486 0x0edc  C:\Windows\System32\tcpmon.dll - ok
19:10:53.0501 0x0edc  [ A5DBC74C5B91CF6E43B73D62936F8186, F4475DB2828729C3ACAD9DB89F5D5C50885742A99E222CE8BF31B5143A20ECCD ] C:\Program Files\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
19:10:53.0501 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
19:10:53.0517 0x0edc  [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\System32\snmpapi.dll
19:10:53.0517 0x0edc  C:\Windows\System32\snmpapi.dll - ok
19:10:53.0532 0x0edc  [ 6357E2B68753A1F5CF4A68A25C4FD14A, F56BFEEACBB9DAE084F4C275DF0086091F5B83DE7183FA33F4445CD31FBB44E3 ] C:\Windows\System32\wsnmp32.dll
19:10:53.0532 0x0edc  C:\Windows\System32\wsnmp32.dll - ok
19:10:53.0548 0x0edc  [ 79737E0F7D25DE8405CB34D4C9882253, 798E44BAE6CD4ECBC801ACE4089E18388ABD18744B901F53452D8103081DE967 ] C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
19:10:53.0548 0x0edc  C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL - ok
19:10:53.0564 0x0edc  [ 3CEF96890064B3CDB190963157F24BAC, 4998E9FE3660E8FDA102B148C3CE6B26D607420DF9B8AAE5927CC312185833BE ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
19:10:53.0564 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
19:10:53.0579 0x0edc  [ 923CDD30092DB73EC4A0EBCDDD16C686, 83F94BE7C324FFADCA13780C617A8CAA1C7CD80F205EACA8FBADA83865D1E0D3 ] C:\Windows\System32\usbmon.dll
19:10:53.0579 0x0edc  C:\Windows\System32\usbmon.dll - ok
19:10:53.0595 0x0edc  [ A8EB761DE499242BECF153B2B34F020E, 3C6F477B5143FCE607FDB088AE471C7037E2BAC01D8CE8C57B5CF1BE57E78D46 ] C:\Windows\System32\WSDMon.dll
19:10:53.0595 0x0edc  C:\Windows\System32\WSDMon.dll - ok
19:10:53.0610 0x0edc  [ 5BFB02BDA2700D078400E149BC4CF87A, 2A79CE238D6009D30312C75484640CDA476D1E2A377655E77CA2DD4C003CD98F ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
19:10:53.0610 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
19:10:53.0626 0x0edc  [ 3C29B98149A28FEDA42796D3EA904F62, 4080EBBE5AD9AF5F8F64FF3CB1B8D52D220B7556520BBA704418967692A72892 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
19:10:53.0626 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
19:10:53.0626 0x0edc  [ CD72C6406BA561BED6D42CB145E55307, F5DD79FCE5CAA5049C74462B366509356B8B5CCB68E14586ED95CDF98F307787 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
19:10:53.0626 0x0edc  C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
19:10:53.0642 0x0edc  [ 38ADD53ECFC5F040EF1C647ECD22A2A4, 7E6BB228494A1F4B12CF377F7F7BC915FD299B8919822B0F3323FEBB04BB5B8F ] C:\Program Files\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
19:10:53.0642 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
19:10:53.0657 0x0edc  [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F, 8B540FE53652FEFB9AB9E6E72BE6876A75B6E6FABFB5028C5C717A406FDBF70B ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
19:10:53.0673 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
19:10:53.0673 0x0edc  [ C2A44C942EC023CF2D5CF144B0F5D146, E7990DDB097C325926DD3BF4BA2695260D670607FC2C5506DD21B3319FB002EA ] C:\Windows\System32\spool\prtprocs\w32x86\HPZPPWN7.DLL
19:10:53.0673 0x0edc  C:\Windows\System32\spool\prtprocs\w32x86\HPZPPWN7.DLL - ok
19:10:53.0688 0x0edc  [ F348280907B38FDBDB3CEF55D456E149, 526A1A46491401EA9BA241ADA76A610E8D98831F8D2C82712B931B481EA5529E ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
19:10:53.0688 0x0edc  C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
19:10:53.0704 0x0edc  [ 43B02D7C43B77775F1DA63B1D1014F38, FA4BA69D63B97961457D66C3E308368EFAC398FAB336C686359EE1CE6D1C7871 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
19:10:53.0704 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
19:10:53.0720 0x0edc  [ FC415B303B1ECF80B5F130A1F7203D02, ACC51D8CCF02E5EFB495BF66538B5F42CFFE5A186BC5762CC286E98509FC5DC4 ] C:\Windows\System32\win32spl.dll
19:10:53.0720 0x0edc  C:\Windows\System32\win32spl.dll - ok
19:10:53.0735 0x0edc  [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
19:10:53.0735 0x0edc  C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
19:10:53.0751 0x0edc  [ C4096CA42199428B3D63DC206C197F0E, 76336CD81608650E5AAD02D59D2AC752E7BDD057314BBC7334CECF74D1EAB587 ] C:\Windows\System32\FXSRESM.dll
19:10:53.0751 0x0edc  C:\Windows\System32\FXSRESM.dll - ok
19:10:53.0766 0x0edc  [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\System32\certcli.dll
19:10:53.0766 0x0edc  C:\Windows\System32\certcli.dll - ok
19:10:53.0782 0x0edc  [ 32F4D839CA942236F933A78C3DC404F9, EF925A407D2FC4C8806A6F3EA85BA5C2BC6651EDAADBA29F306034AA9EBC2A54 ] C:\Windows\System32\spool\drivers\w32x86\3\unidrvui.dll
19:10:53.0782 0x0edc  C:\Windows\System32\spool\drivers\w32x86\3\unidrvui.dll - ok
19:10:53.0798 0x0edc  [ 03F364F70669D6CCDFBB648C735A1CC1, 6D9DAE8350FB2C8B5FB4F2E11896CF7B49FB9CC297178B7C0C6E1D0D2838DF46 ] C:\Windows\System32\tcpmib.dll
19:10:53.0798 0x0edc  C:\Windows\System32\tcpmib.dll - ok
19:10:53.0813 0x0edc  [ BA54A966F873B043FDFCDA0B77937855, D410F6919D7A6E11615EEE2D20267F258B5A9B934E255D9B9CAF20CC77B1EDB5 ] C:\Windows\System32\mgmtapi.dll
19:10:53.0813 0x0edc  C:\Windows\System32\mgmtapi.dll - ok
19:10:53.0829 0x0edc  [ 640A476C8867AEAAD8FF9F59A61AFE2F, 075E550CF94840B806E88772A2C05DC12B68B0B55ED4A2A0B5BD69539D67A40E ] C:\Windows\System32\PrintIsolationHost.exe
19:10:53.0829 0x0edc  C:\Windows\System32\PrintIsolationHost.exe - ok
19:10:53.0844 0x0edc  [ FC70115B86B7BC41467BE7A5696C44C5, 8ED2828F49F679D58B97F17865823C1349993CFC6B9FB7E0BF06F88B3EDD04C6 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL
19:10:53.0844 0x0edc  C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL - ok
19:10:53.0860 0x0edc  [ 23C3C398E352D5DB6AEFE65736DFD0B5, 3CC9A36279C8F9EC4FFE37A0370C67125E4AE7A2E629A48181546053913DC15F ] C:\Windows\System32\spool\drivers\w32x86\3\HPZUIWN7.DLL
19:10:53.0860 0x0edc  C:\Windows\System32\spool\drivers\w32x86\3\HPZUIWN7.DLL - ok
19:10:53.0876 0x0edc  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
19:10:53.0876 0x0edc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
19:10:53.0891 0x0edc  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
19:10:53.0891 0x0edc  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
19:10:53.0891 0x0edc  [ 765A886E3E0557E5A66D95BCFBD0F3AC, 8BFE13473234C88AA0A4FB1C91467D5D93BD23ECA4B420A571902CC11537052E ] C:\Windows\System32\compstui.dll
19:10:53.0891 0x0edc  C:\Windows\System32\compstui.dll - ok
19:10:53.0907 0x0edc  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\System32\shdocvw.dll
19:10:53.0907 0x0edc  C:\Windows\System32\shdocvw.dll - ok
19:10:53.0922 0x0edc  [ 73EF5DBF500742B11C242465CD78489C, 68FF6480D5A3505F9E264FAEE3BFC156A6C172E0A1463CD797489B5EC8F354EB ] C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe
19:10:53.0922 0x0edc  C:\Users\K Man's Travel Pal\AppData\Local\temp\{996BB2A9-681E-4BA2-81E1-9C416A70FE79}.exe - ok
19:10:53.0938 0x0edc  [ 29BC473072568C072EC8B176498DE996, D3A4DB88BECA8AB3F8722E499548EFEC63022C1CE38F526AFBDA76DDBA8E9064 ] C:\Windows\System32\CertEnroll.dll
19:10:53.0938 0x0edc  C:\Windows\System32\CertEnroll.dll - ok
19:10:53.0954 0x0edc  [ A8BEF95B76CF47548C35DEB25DED133F, 433D2AB65F6CBFA8C711597785F828D5D6F8690B7D69D131B19F0C2A1E853F90 ] C:\Program Files\AVAST Software\Avast\aswJSScan.dll
19:10:53.0954 0x0edc  C:\Program Files\AVAST Software\Avast\aswJSScan.dll - ok
19:10:53.0969 0x0edc  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] C:\Windows\System32\aelupsvc.dll
19:10:53.0969 0x0edc  C:\Windows\System32\aelupsvc.dll - ok
19:10:53.0985 0x0edc  [ 8AFB5A1A96DF7F85A8712061F8760256, 864863AC483AD6659B645D42A7FEA729F8A1D941E9E0E6E4670D2DF8B792402E ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
19:10:53.0985 0x0edc  C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
19:10:54.0000 0x0edc  [ EF09A8335B6C8B5DB62C818B3A949BA5, AE851C7E88B759EC6EB1FE5F50EF0BE4608854CE33DA6B7F0F359DB686DE0F69 ] C:\Program Files\AVAST Software\Avast\defs\14040802\swhealthex.dll
19:10:54.0000 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\swhealthex.dll - ok
19:10:54.0016 0x0edc  [ 6F4125795D48765F716249D5185BF91D, A847BB072408E45730D78520CC05D53430733ADBAAEC0FDC0718295F2F187CF7 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswAR.dll
19:10:54.0016 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswAR.dll - ok
19:10:54.0032 0x0edc  [ 089B5F924E96BA9C40E4E4522BF43770, F89434E0129FDA710BB9817C5D104415E7642A40B66969F577370761B1C45B4B ] C:\Program Files\Windows Defender\MpRTP.dll
19:10:54.0032 0x0edc  C:\Program Files\Windows Defender\MpRTP.dll - ok
19:10:54.0047 0x0edc  [ 401D25136E26B237D77DA1BF1198B3BD, 382F977D56683367E095C7B3249708CA412E12AF18C19958470C2256EB9E4082 ] C:\Windows\System32\tdh.dll
19:10:54.0047 0x0edc  C:\Windows\System32\tdh.dll - ok
19:10:54.0063 0x0edc  [ FEAC444BE2765DC0167889CE6FE33888, D9DD4AB25CEAB411F35EBBA773164CA611C9D43D940D90350536B7F6252539E7 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpengine.dll
19:10:54.0063 0x0edc  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpengine.dll - ok
19:10:54.0063 0x0edc  [ 0752E49C9A4311C9C04CC1D4E571B025, F3481407A69D70F5CF241F6F39795278E4DE345112C35822B10047CCD3B7F610 ] C:\Program Files\AVAST Software\Avast\defs\14040802\aswRawFS.dll
19:10:54.0063 0x0edc  C:\Program Files\AVAST Software\Avast\defs\14040802\aswRawFS.dll - ok
19:10:54.0078 0x0edc  [ B0193804FA7DC1EAC86F9E81F9928EE4, 79B4E517F26C8F7A83970EA53929EAE3B2F6413D1DD9AA7FD23040D841F30E6F ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasbase.vdm
19:10:54.0078 0x0edc  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasbase.vdm - ok
19:10:54.0094 0x0edc  [ 244C6722289F4869068992FD7D8A8832, 8644D0A55C46C3F081F0AB43D253D13E56E77D89336A87108DB8C47D6EDC3A64 ] C:\Windows\System32\wbem\wbemdisp.dll
19:10:54.0094 0x0edc  C:\Windows\System32\wbem\wbemdisp.dll - ok
19:10:54.0110 0x0edc  [ E58E84043E8FDAAB1E4108E46D9625D5, 0662425A7D3E279F6A4E9590AFEAB3C1419BD8CC7450442A7A55A64D0122676C ] C:\Program Files\AVAST Software\Avast\Setup\Instup.dll
19:10:54.0110 0x0edc  C:\Program Files\AVAST Software\Avast\Setup\Instup.dll - ok
19:10:54.0125 0x0edc  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] C:\Windows\System32\qmgr.dll
19:10:54.0125 0x0edc  C:\Windows\System32\qmgr.dll - ok
19:10:54.0156 0x0edc  [ 0552A8684BF7566F744D5B19FF6AEC6B, D1EB44C75A0AE0C9ABFE3B1B7AD648DF77B56B4358E522DFF732911906B20B49 ] C:\Windows\System32\bitsperf.dll
19:10:54.0156 0x0edc  C:\Windows\System32\bitsperf.dll - ok
19:10:54.0156 0x0edc  [ F45ED8C4F9AF862CD9992849B5203C11, F51E56977C33B8F202C2945FB977501C6FFDD453F158B2BE01453FAF13569919 ] C:\Windows\System32\bitsigd.dll
19:10:54.0156 0x0edc  C:\Windows\System32\bitsigd.dll - ok
19:10:54.0188 0x0edc  [ 954EA9B34F155C844B11F4047A8F6F89, 44703118AE57D44C802DFA5619DC1CA55C5C046D666CE546E5870D722786E395 ] C:\Windows\System32\upnp.dll
19:10:54.0188 0x0edc  C:\Windows\System32\upnp.dll - ok
19:10:54.0203 0x0edc  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] C:\Windows\System32\ssdpsrv.dll
19:10:54.0203 0x0edc  C:\Windows\System32\ssdpsrv.dll - ok
19:10:54.0219 0x0edc  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7, CBE2392792D209E15E44AC29E906FFDD5FBF6EED8BAB0D97D66E109AB2C5C56E ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:10:54.0219 0x0edc  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:10:54.0234 0x0edc  [ CB67C2B94302DC94BC15ED6553A5C1C7, AB75F74122123027AF37F8B95CFF1A63852BC2B05F9D7910F0A7FE752AF388FF ] C:\Windows\System32\wbem\cimwin32.dll
19:10:54.0234 0x0edc  C:\Windows\System32\wbem\cimwin32.dll - ok
19:10:54.0234 0x0edc  [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\System32\qmgrprxy.dll
19:10:54.0234 0x0edc  C:\Windows\System32\qmgrprxy.dll - ok
19:10:54.0250 0x0edc  [ 3A924B200D86590D2C83214CEBFA9742, 1525F5507D9E7AD2C14A29E6DB31D56D798F1C2FBC86987DCD57704F7A0C2B1B ] C:\Program Files\Google\Chrome\Application\chrome.exe
19:10:54.0250 0x0edc  C:\Program Files\Google\Chrome\Application\chrome.exe - ok
19:10:54.0266 0x0edc  [ F71D97B6B631D565AF7C6E0BDF9D49F4, F70209BCC5BB38C7934DF364E0324FB9E30749C1EA90ADB52E8EC926E87B8F2C ] C:\Program Files\Internet Explorer\iexplore.exe
19:10:54.0266 0x0edc  C:\Program Files\Internet Explorer\iexplore.exe - ok
19:10:54.0281 0x0edc  [ 175383778EB24D98C84E624021E3AA0B, FE831AC7C5375FE0F0D2A56F1546F968B2595503CC63FE9A8F819F7910A1604A ] C:\Windows\System32\aeevts.dll
19:10:54.0281 0x0edc  C:\Windows\System32\aeevts.dll - ok
19:10:54.0297 0x0edc  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\System32\oledlg.dll
19:10:54.0297 0x0edc  C:\Windows\System32\oledlg.dll - ok
19:10:54.0312 0x0edc  [ D0481FB85BEEDD30A0884BE327880F80, D28D53F8FFE4F6D728281BC0FBEF4EB435C153774855AE6348D0B75C80C2EC78 ] C:\Windows\System32\framedynos.dll
19:10:54.0312 0x0edc  C:\Windows\System32\framedynos.dll - ok
19:10:54.0328 0x0edc  [ 8385A341605FAE3FBB5725A4E17E4FEB, 09217CD69D95C41149CEBA69C341F4DCCFED00CBE87AFBCAD1AECA4BBA78D487 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasdlta.vdm
19:10:54.0328 0x0edc  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{881A3263-BC52-406C-B41A-39469CFE1917}\mpasdlta.vdm - ok
19:10:54.0344 0x0edc  [ 7E9917D5309A90E7576653BFE39F80D8, 3525795CA69EF165AAAA20C878A20DF5A5F183CF6F8358A0132A88153E6459C6 ] C:\Windows\System32\timedate.cpl
19:10:54.0344 0x0edc  C:\Windows\System32\timedate.cpl - ok
19:10:54.0359 0x0edc  [ D2958325C1AE1AE37A83334C6229E3BC, D8263CB39A25447442B75A8D8E8111DF671D645DA90A33865C089DEDA9706904 ] C:\Windows\System32\actxprxy.dll
19:10:54.0359 0x0edc  C:\Windows\System32\actxprxy.dll - ok
19:10:54.0375 0x0edc  [ 907281ED4AD35D41B29FFDC211EBAD80, 42171AE21B62F07511D8AEE66FF8AC6D40D53290BD01BA6125D886EC70CD3B8D ] C:\Windows\System32\wmi.dll
19:10:54.0375 0x0edc  C:\Windows\System32\wmi.dll - ok
19:10:54.0390 0x0edc  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\System32\linkinfo.dll
19:10:54.0390 0x0edc  C:\Windows\System32\linkinfo.dll - ok
19:10:54.0406 0x0edc  [ FA752544EE1EE59E8AD938CBB43CAC93, EA633416EF79F5FC1C841D46F3AAEC6A56BD09D2FD8B9CD8584E4AF65B890974 ] C:\PROGRA~1\WIC4A1~1\MESSEN~1\msgslang.dll
19:10:54.0406 0x0edc  C:\PROGRA~1\WIC4A1~1\MESSEN~1\msgslang.dll - ok
19:10:54.0406 0x0edc  [ 3A16EA01FCFAAB40882DB5BFEE632322, 04ED66BEFDB822181EBD1D84CBF0B17AAADF8455AE742F44D7ADCB26AB07BDAD ] C:\Windows\System32\msftedit.dll
19:10:54.0406 0x0edc  C:\Windows\System32\msftedit.dll - ok
19:10:54.0422 0x0edc  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{61BD2868-A386-4A3B-89CA-9A245ECEC560}.tmp
19:10:54.0422 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{61BD2868-A386-4A3B-89CA-9A245ECEC560}.tmp - ok
19:10:54.0437 0x0edc  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{68840591-3CC9-477F-88A3-E371556C1A81}.tmp
19:10:54.0437 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{68840591-3CC9-477F-88A3-E371556C1A81}.tmp - ok
19:10:54.0453 0x0edc  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{5B982F9C-4989-47A4-B1AA-634F912E8E3A}.tmp
19:10:54.0453 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{5B982F9C-4989-47A4-B1AA-634F912E8E3A}.tmp - ok
19:10:54.0468 0x0edc  [ C225E5307D8D4982A1687F2702C37C78, 9FCE233CE2C33D33053E4B1EBDC4B4C32CE8660947C2D0CE9384B23550B7BB5F ] C:\Windows\System32\msls31.dll
19:10:54.0468 0x0edc  C:\Windows\System32\msls31.dll - ok
19:10:54.0484 0x0edc  [ 64E211E0FDFCE4D186DF58BB7D0503BC, 6B9E12979119BAD721D493A9CEFDC7B4150121D5590222069FD1B8D80F9AC5C0 ] C:\Windows\System32\gameux.dll
19:10:54.0484 0x0edc  C:\Windows\System32\gameux.dll - ok
19:10:54.0500 0x0edc  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{CB56BF2C-13B4-44B1-BC10-297AB6D4B471}.tmp
19:10:54.0500 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{CB56BF2C-13B4-44B1-BC10-297AB6D4B471}.tmp - ok
19:10:54.0515 0x0edc  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{791AE3E0-0F6B-48D2-8775-96FDAD4D9D66}.tmp
19:10:54.0515 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{791AE3E0-0F6B-48D2-8775-96FDAD4D9D66}.tmp - ok
19:10:54.0531 0x0edc  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{BAF29624-B03C-4018-AA22-3AB4870A4D6A}.tmp
19:10:54.0531 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{BAF29624-B03C-4018-AA22-3AB4870A4D6A}.tmp - ok
19:10:54.0546 0x0edc  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{15D3A23E-364D-4A2C-89CD-2BED6E1EBD1B}.tmp
19:10:54.0546 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{15D3A23E-364D-4A2C-89CD-2BED6E1EBD1B}.tmp - ok
19:10:54.0546 0x0edc  [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\System32\msiltcfg.dll
19:10:54.0562 0x0edc  C:\Windows\System32\msiltcfg.dll - ok
19:10:54.0562 0x0edc  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{2C97166E-2222-4407-9591-14D95D99D2E2}.tmp
19:10:54.0578 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{2C97166E-2222-4407-9591-14D95D99D2E2}.tmp - ok
19:10:54.0578 0x0edc  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{7A23B855-06E9-4B99-8BCD-570BCBCF1B40}.tmp
19:10:54.0578 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{7A23B855-06E9-4B99-8BCD-570BCBCF1B40}.tmp - ok
19:10:54.0609 0x0edc  [ 4BFA1849DC7AA3CB99C160D9EB96C67B, D2B411ED4478FA683F8A51F5AB42F3EC33741421C480F848E04E5DD2A8032525 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
19:10:54.0609 0x0edc  C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
19:10:54.0609 0x0edc  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{FFFEF589-D004-4D95-9699-E9333970874C}.tmp
19:10:54.0609 0x0edc  C:\Users\KMAN'S~1\AppData\Local\temp\{8754619D-7252-4DA0-A42C-ABDBC620356A}\{FFFEF589-D004-4D95-9699-E9333970874C}.tmp - ok
19:10:54.0624 0x0edc  [ BEDDE513A3DB1E1714DDE235CEB09B37, 79E8799BAB2782BAA627B42DC5A17685EB71DACF3F9261662AEC44E51BAFCFF6 ] C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.dll
19:10:54.0624 0x0edc  C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.dll - ok
19:10:54.0640 0x0edc  [ 2A39F32E0067CBF221611FE1FA8C6D8F, C6D1CAB7BC87F8EB7D801BE3E3DA9B631932A94468E7A6F46D60A43C9AB08EE7 ] C:\Windows\System32\DeviceCenter.dll
19:10:54.0640 0x0edc  C:\Windows\System32\DeviceCenter.dll - ok
19:10:54.0656 0x0edc  [ 6D961EE2903CA42C673D72F3CC331B11, 673E42F8466499B3CEE8F0AA531D3876C5FE7A81B942BC537BF002F1E3C7A345 ] C:\Program Files\AVAST Software\Avast\libcef.dll
19:10:54.0656 0x0edc  C:\Program Files\AVAST Software\Avast\libcef.dll - ok
19:10:54.0671 0x0edc  [ 672D7C5080ACB003343006405DA2E621, 5F28C83A20ECB1F20894B60725477BEF0D672817DFDB9822FB345A3270A0C095 ] C:\Windows\System32\thumbcache.dll
19:10:54.0671 0x0edc  C:\Windows\System32\thumbcache.dll - ok
19:10:54.0687 0x0edc  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F, 6BEAF5AFC98961190B004E8DE57CD5F9F39117287AE18D59DDB2EC5C0A0C6622 ] C:\Windows\System32\networkexplorer.dll
19:10:54.0687 0x0edc  C:\Windows\System32\networkexplorer.dll - ok
19:10:54.0702 0x0edc  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\System32\riched20.dll
19:10:54.0702 0x0edc  C:\Windows\System32\riched20.dll - ok
19:10:54.0718 0x0edc  [ 912649A1B3F9E6ACB3899FBDABA2ED5F, 049DFA9EA45A888B984E459B927A0F8AA4C10B9D36C6C0A0FE57F6329BEAF555 ] C:\Windows\System32\stobject.dll
19:10:54.0718 0x0edc  C:\Windows\System32\stobject.dll - ok
19:10:54.0734 0x0edc  [ 67C1B58706B47EEBA4E117AC197289E6, 9213E55DA854563E3A99369A4FAD853C0A97241A4F6D93F98444C57ADEEF89C1 ] C:\Windows\System32\batmeter.dll
19:10:54.0734 0x0edc  C:\Windows\System32\batmeter.dll - ok
19:10:54.0749 0x0edc  [ 8B285BDAB7735FDFB18E6F7122923B77, DE3DBDDBF0E999CDE4A53B194128094671684708CDBED2C4D5362316CAA3A8CD ] C:\Windows\System32\UIAnimation.dll
19:10:54.0749 0x0edc  C:\Windows\System32\UIAnimation.dll - ok
19:10:54.0765 0x0edc  [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\System32\wdmaud.drv
19:10:54.0765 0x0edc  C:\Windows\System32\wdmaud.drv - ok
19:10:54.0780 0x0edc  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\System32\ksuser.dll
19:10:54.0780 0x0edc  C:\Windows\System32\ksuser.dll - ok
19:10:54.0796 0x0edc  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] C:\Windows\System32\wersvc.dll
19:10:54.0796 0x0edc  C:\Windows\System32\wersvc.dll - ok
19:10:54.0812 0x0edc  [ C940F2F5C60B3727C5F18840735B229C, EFC3F465FD6C570505C214A92644357ACD01B1843ED25B5FCCCE10533403485C ] C:\Windows\System32\AudioSes.dll
19:10:54.0812 0x0edc  C:\Windows\System32\AudioSes.dll - ok
19:10:54.0812 0x0edc  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\System32\msacm32.drv
19:10:54.0812 0x0edc  C:\Windows\System32\msacm32.drv - ok
19:10:54.0827 0x0edc  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\System32\msacm32.dll
19:10:54.0827 0x0edc  C:\Windows\System32\msacm32.dll - ok
19:10:54.0843 0x0edc  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\System32\midimap.dll
19:10:54.0843 0x0edc  C:\Windows\System32\midimap.dll - ok
19:10:54.0858 0x0edc  [ BBA9D5A730D5E304117AD26923EBD8AA, 62DD6CEA9B3819DEC704BFBDCFF771903A2E2E8668EB9D5AD32210EEDB359132 ] C:\Windows\System32\AudioEng.dll
19:10:54.0858 0x0edc  C:\Windows\System32\AudioEng.dll - ok
19:10:54.0874 0x0edc  [ C8333F1F77A1B2E25F2202E892CAF634, 7A614AA4353ECE8175B6AB7B25EE26FAB22DF2A53C9A5A694B3A3B56F6C783A7 ] C:\Windows\System32\prnfldr.dll
19:10:54.0874 0x0edc  C:\Windows\System32\prnfldr.dll - ok
19:10:54.0890 0x0edc  [ 96F0F8F4DEE598C8D12AD9633E0CFE2A, 56EA483444BB6CCD6B9BE8030BB0FBB60EEE34A96731AB50CDC7DBA56BF2CB7C ] C:\Windows\System32\AUDIOKSE.dll
19:10:54.0890 0x0edc  C:\Windows\System32\AUDIOKSE.dll - ok
19:10:54.0890 0x0edc  [ ADDB05C93272A62606599B24730BD645, 38E2E2979C48549A3B72807B33254DB3AC106DB1FD2790C8AC1B27CDE86EC38F ] C:\Windows\System32\DXP.dll
19:10:54.0890 0x0edc  C:\Windows\System32\DXP.dll - ok
19:10:54.0905 0x0edc  [ 856CFFCD835528136367BB1A8FE1DB87, 97EE0B243F460BE737D18B634559BC6389064BA013890E69B650E5152AB873C8 ] C:\Windows\System32\Syncreg.dll
19:10:54.0905 0x0edc  C:\Windows\System32\Syncreg.dll - ok
19:10:54.0921 0x0edc  [ B2B3DAE040F6B5AE1DF52B0CD7631A18, 062680EFF24EB83FF34DDD76043DB9ABB476C8FEE7BBE869A1E7F7FC8891314F ] C:\Windows\System32\AltTab.dll
19:10:54.0921 0x0edc  C:\Windows\System32\AltTab.dll - ok
19:10:54.0936 0x0edc  [ 735263DA17BF5BAF9CCD483843BF9D5A, A493F9191EA3F37A53474E94B3917EA038B29545FC62B1634CE47F05EA2FF5C6 ] C:\Windows\System32\WPDShServiceObj.dll
19:10:54.0936 0x0edc  C:\Windows\System32\WPDShServiceObj.dll - ok
19:10:54.0952 0x0edc  [ ADB45A977BD9E45790CA496DB84BA148, BB251C9A5D2F5C6BDFB22C6BA235748472FC28AF2ADAF1CE7948352301DDE3C1 ] C:\Windows\System32\PortableDeviceTypes.dll
19:10:54.0952 0x0edc  C:\Windows\System32\PortableDeviceTypes.dll - ok
19:10:54.0968 0x0edc  [ 3D6F22551D422F97AACB0BB927E4C846, 9AB7C9F2E7F3D1CEC4553D0DF57E074121957055A9A4349946D354ACB6FC4579 ] C:\Windows\System32\pnidui.dll
19:10:54.0968 0x0edc  C:\Windows\System32\pnidui.dll - ok
19:10:54.0983 0x0edc  [ BD626EF05967D14C772B8096292731A3, FE3838B41DCAFC52089D909E7F411186D993C08AC149E093352D691D57C9BE71 ] C:\Windows\System32\QUTIL.DLL
19:10:54.0983 0x0edc  C:\Windows\System32\QUTIL.DLL - ok
19:10:54.0983 0x0edc  [ 674B0C0F6A448EB185CAAB9C51D44032, 6722351F46BF70BA967844D3239CD801DFC4538A4EB6C478D8497F27F7FD9F1D ] C:\Windows\System32\srchadmin.dll
19:10:54.0983 0x0edc  C:\Windows\System32\srchadmin.dll - ok
19:10:54.0999 0x0edc  [ 236F286E103FD44BD85FDD93097FD5DD, C369C98E76FEFBB05A12ABEECCF89C75132419B56866ED9AB77F61F84BA62785 ] C:\Windows\System32\SearchIndexer.exe
19:10:54.0999 0x0edc  C:\Windows\System32\SearchIndexer.exe - ok
19:10:55.0014 0x0edc  [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\System32\rasdlg.dll
19:10:55.0014 0x0edc  C:\Windows\System32\rasdlg.dll - ok
19:10:55.0030 0x0edc  [ 9A39A2A5F443A756C568C6ED5748AFE4, 13C2790985CBA9CD325BA20364A665DB50B769B7DDE93E6BE20F25427BDB34F8 ] C:\Windows\System32\ActionCenter.dll
19:10:55.0030 0x0edc  C:\Windows\System32\ActionCenter.dll - ok
19:10:55.0046 0x0edc  [ 465DBF63A5049E4DB4BC5C12FFE781CB, D12F6A9FB92144B2CFFD28BD72C234BA42F882EF22122DB83CE5EB1B8EBE9017 ] C:\Windows\System32\tquery.dll
19:10:55.0046 0x0edc  C:\Windows\System32\tquery.dll - ok
19:10:55.0061 0x0edc  [ E7BB5CE3FA24C3D151AC4867C4A37BEC, 2044A015547B7E719030AB0B047EA4712A6027D5845F225D8A58F3BCEA832942 ] C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
19:10:55.0061 0x0edc  C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
19:10:55.0077 0x0edc  [ FCF4DF6DB5AFB11E3DEBD498C02FF9B3, F0EC63E977E51C4F78F26B0AE51BBB1DC7162EB000D1A042307F1C808C131996 ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
19:10:55.0077 0x0edc  C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
19:10:55.0092 0x0edc  [ 0241CB16136B9A4939CA0395768AE286, E7A3A0BDB4AC4BD718C93BE650541F96603739BDB3DB6860665DCC073DA8007D ] C:\Windows\System32\mssrch.dll
19:10:55.0092 0x0edc  C:\Windows\System32\mssrch.dll - ok
19:10:55.0108 0x0edc  [ B8DE851298E99A005BFD34AA906B3FE8, 33F631C0B561199B5FEB9020FAA99E50EFA9F421D7484FFA640C5561494726DA ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\mfc110u.dll
19:10:55.0108 0x0edc  C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\mfc110u.dll - ok
19:10:55.0124 0x0edc  [ 53683A331F8A1BB20ADD0330F1DE6388, 5525766F740268FF5287F927CD784B885F5B8523374AC2858256E6757CDED9F4 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:10:55.0124 0x0edc  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:10:55.0139 0x0edc  [ C02AA67276FEE0C15CC4D6D616BDE95E, 24B0FFA2903CC77FEDE6B491647BB759C4AE054E38A19EFA0D2662AC2959570B ] C:\Windows\System32\WWanAPI.dll
19:10:55.0139 0x0edc  C:\Windows\System32\WWanAPI.dll - ok
19:10:55.0139 0x0edc  [ F2ED6D00921CA138289E5E0CCB9ABF87, 528F249CE0835CA4D8B7C4940F5132DF1155EB344177BEA4CD7FCF9B8DCCCA4B ] C:\Windows\System32\wwapi.dll
19:10:55.0139 0x0edc  C:\Windows\System32\wwapi.dll - ok
19:10:55.0155 0x0edc  [ 02530B0B7E048DD5AC8D52DAEACAEB2B, 2DEB454F8B71EC54C59185E2F1D679F7EC1C7AEFCD1D59761FDD3D70CABE0254 ] C:\Windows\System32\QAGENT.DLL
19:10:55.0155 0x0edc  C:\Windows\System32\QAGENT.DLL - ok
19:10:55.0170 0x0edc  [ 81600E2E27ED61427AAD865B9BCDDB9D, 0D7D39C0A5A2C24FAADCA41658A1C62D13180B462C78103BDF6DBD76B64DD79A ] C:\Windows\System32\msidle.dll
19:10:55.0170 0x0edc  C:\Windows\System32\msidle.dll - ok
19:10:55.0186 0x0edc  [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\System32\bthprops.cpl
19:10:55.0186 0x0edc  C:\Windows\System32\bthprops.cpl - ok
19:10:55.0202 0x0edc  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\System32\mssprxy.dll
19:10:55.0202 0x0edc  C:\Windows\System32\mssprxy.dll - ok
19:10:55.0217 0x0edc  [ B63E24E9271E99FD4540E3CA22A937DA, A9E75FBF482C4447E887E5B6EBAD96FE827F0BBD1101F1D8B54EE178D3AEAA7E ] C:\Windows\System32\en-US\tquery.dll.mui
19:10:55.0217 0x0edc  C:\Windows\System32\en-US\tquery.dll.mui - ok
19:10:55.0233 0x0edc  [ C2D6A4475B87651D5909E364439FDA52, BE9B898A8396F977E05A22D6EDF7B6B4EF4C16E159806453D03C2A918D24C19F ] C:\Windows\System32\FXSST.dll
19:10:55.0233 0x0edc  C:\Windows\System32\FXSST.dll - ok
19:10:55.0248 0x0edc  [ 8F8AB20AA863EA95A421B9D54C74F20C, BA71E3EED39E78EC554049464D4112EB3A15419F0C5809D9C7CB7F1746BDEBD3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:10:55.0248 0x0edc  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:10:55.0264 0x0edc  [ 7CF62B6681D2A54D31991C6C62E1E73B, 50FF9D71B2A4D2D7BDCD89FEB028F375789EDF38F803338C5C77D212E41EAF91 ] C:\Program Files\AVAST Software\Avast\HTMLayout.dll
19:10:55.0264 0x0edc  C:\Program Files\AVAST Software\Avast\HTMLayout.dll - ok
19:10:55.0280 0x0edc  [ 942E57152F1CD0533644AB30EF1A4728, 4F72510BECFAFDBB06C9CAAC66BA9E95225DE1EA12B4D2FD5B67492A2E628ABD ] C:\Windows\System32\FXSAPI.dll
19:10:55.0280 0x0edc  C:\Windows\System32\FXSAPI.dll - ok
19:10:55.0295 0x0edc  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:10:55.0295 0x0edc  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:10:55.0295 0x0edc  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] C:\Windows\System32\FXSSVC.exe
19:10:55.0295 0x0edc  C:\Windows\System32\FXSSVC.exe - ok
19:10:55.0311 0x0edc  [ 5CF15474FFDB5005E54958DF6EDD97AB, D4DBB3AACBB7679948258FFC53472FE8B5D0B3EC06D572EE2BDBF45CE608D86D ] C:\Windows\System32\wmdrmdev.dll
19:10:55.0311 0x0edc  C:\Windows\System32\wmdrmdev.dll - ok
19:10:55.0326 0x0edc  [ 47D052D9EE1FD3BA2A55D13F61E3EF24, 8DB44BA6FC0C49039F3E95D6137CFFF9EE0E0B24CA4E25342B7EFA897737DFAC ] C:\Windows\System32\drmv2clt.dll
19:10:55.0326 0x0edc  C:\Windows\System32\drmv2clt.dll - ok
19:10:55.0342 0x0edc  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B, 7A8A051F414A0A11252A361461A086890BCE9F49CE1AF794061184AE16517EF1 ] C:\Windows\System32\mfplat.dll
19:10:55.0342 0x0edc  C:\Windows\System32\mfplat.dll - ok
19:10:55.0358 0x0edc  [ A68D209899E8776760EF4D3E5EC9ECCD, 9692A38C677116D306E778A24EEFBACE87106C35ED7C0DE2A30B64A1BDE67B5D ] C:\Windows\System32\RtkAPO.dll
19:10:55.0358 0x0edc  C:\Windows\System32\RtkAPO.dll - ok
19:10:55.0373 0x0edc  [ 6C4B2E1A25841077084EB9F76FF6FFA7, 777D9E5D81409A54BF387BDDF4E471932FFB636406E390EC29EDF1FFFE3D8880 ] C:\Windows\System32\wmp.dll
19:10:55.0373 0x0edc  C:\Windows\System32\wmp.dll - ok
19:10:55.0389 0x0edc  [ CA1EA5BC13E3820624669E8871EA6DFC, CA4D778E28F94625F1D2FF39E122D7792A301E619323FD4BFBD1E34062136DD4 ] C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe
19:10:55.0389 0x0edc  C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
19:10:55.0404 0x0edc  [ 02DF0628BE8B64B84D50FBE53549AA3B, AED50B07451F14D0C0682EDDC11ED5BBAD63D6DB11A91826B0ADBDBE411F0084 ] C:\Windows\System32\wmploc.DLL
19:10:55.0404 0x0edc  C:\Windows\System32\wmploc.DLL - ok
19:10:55.0420 0x0edc  [ 95B256323DA7E8FD06160CA21DED35F4, 92B613CA8DB6E4F6527DE79BD120B1BDC4575BD16BD8A320FE32891F15622E3B ] C:\Windows\System32\FMAPO.dll
19:10:55.0420 0x0edc  C:\Windows\System32\FMAPO.dll - ok
19:10:55.0436 0x0edc  [ 074A487C1E1FF4F2E6A4CB70967194AF, B9A6E015CD2319AF5647012518B453CA13F6DD312761E26F27269A00B25AF008 ] C:\Program Files\AVAST Software\Avast\aswAra.dll
19:10:55.0436 0x0edc  C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
19:10:55.0451 0x0edc  [ 4E30ED3E551E867ADD1C8D58F5EDD9DF, C933ABF1069128F4AB73DA47B2E7C029249804D65F50720897ECCAB3F4A07C27 ] C:\Windows\System32\WMALFXGFXDSP.dll
19:10:55.0451 0x0edc  C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:10:55.0467 0x0edc  [ E1DC6647CC9B6F4403236879BE4FF190, F21E57A982CC822261286A5AC2703533D609E5D0E610E0E014269E3376CA7B04 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01.key
19:10:55.0467 0x0edc  C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01.key - ok
19:10:55.0482 0x0edc  [ 9DF7A7C74D8632CB5EBD37E3A374825E, 7D53BA04D7508C14BD5D72F4E931C6C7563ABE9795B148EB460465D0ADA4B924 ] C:\Windows\System32\webcheck.dll
19:10:55.0482 0x0edc  C:\Windows\System32\webcheck.dll - ok
19:10:55.0498 0x0edc  [ F72CA4368CAF46DF00092EA5B19EBB0D, 54931A1C9349097E757E0A4DCE05C8CA9591BBB145F69300021BCF7B4FC98E04 ] C:\Program Files\Internet Explorer\ieproxy.dll
19:10:55.0498 0x0edc  C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:10:55.0514 0x0edc  [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\System32\mlang.dll
19:10:55.0514 0x0edc  C:\Windows\System32\mlang.dll - ok
19:10:55.0514 0x0edc  [ 2DDEA2C345DA5BC589EFD398F220DB0E, B515B15BE7CB66F94B7A9B802719DAF7D50E1FE2832B66B6883AC0023060800D ] C:\Windows\System32\SyncCenter.dll
19:10:55.0514 0x0edc  C:\Windows\System32\SyncCenter.dll - ok
19:10:55.0529 0x0edc  [ 3F2B83695E5BF11930C16AF50E991F96, 339535078CDDEF3B0C7C749E7C53634C3B1C7FF18E808F118E1DF36D748A6E15 ] C:\Windows\System32\wmpps.dll
19:10:55.0529 0x0edc  C:\Windows\System32\wmpps.dll - ok
19:10:55.0545 0x0edc  [ 2D11BC8B460957E62E4420373A0D8BDA, 56105E84333998D43DFCDA9E8A4D70EAC43076CFF8389B2E525EC5C3017DC5FD ] C:\Windows\System32\imapi2.dll
19:10:55.0545 0x0edc  C:\Windows\System32\imapi2.dll - ok
19:10:55.0560 0x0edc  [ AD5DC4AEF1968BC9FCB720811B975A6D, DB6C38D8993C447DBFEAC0CD9FC63EBDE9E38F22F46ACE315E67B44330A80F7F ] C:\Program Files\AVAST Software\Avast\aswData.dll
19:10:55.0560 0x0edc  C:\Program Files\AVAST Software\Avast\aswData.dll - ok
19:10:55.0576 0x0edc  [ C7952D0A4C43A965A1741916BB134751, 84EF222159E8C444A1D9D2E6509245716E4106C8032861DBFF399001A529BF94 ] C:\Windows\System32\hgcpl.dll
19:10:55.0576 0x0edc  C:\Windows\System32\hgcpl.dll - ok
19:10:55.0592 0x0edc  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] C:\Windows\System32\fdPHost.dll
19:10:55.0592 0x0edc  C:\Windows\System32\fdPHost.dll - ok
19:10:55.0607 0x0edc  [ DE6F4B7E62FDE776F3DE8E5FB5A05C48, 703587D10434C1D6755E5F17EB2110433A506E51ECC5329E2CCA0B8380C455EC ] C:\Windows\System32\fdWSD.dll
19:10:55.0607 0x0edc  C:\Windows\System32\fdWSD.dll - ok
19:10:55.0623 0x0edc  [ 674611721264013DB169EC12AFC9C3B6, 7BC2791EF2239483F1F71A7F0F53E59002F5A1297A39BE3AF51CA34FFCE2CE24 ] C:\Windows\System32\fdSSDP.dll
19:10:55.0623 0x0edc  C:\Windows\System32\fdSSDP.dll - ok
19:10:55.0638 0x0edc  [ 3FF0FA0A81910617739644A06D06D016, 6B6828E06332805FDA887ED181464FD11A16F49ACADE2856F3CF69E98D81DEDB ] C:\Windows\System32\fdProxy.dll
19:10:55.0638 0x0edc  C:\Windows\System32\fdProxy.dll - ok
19:10:55.0654 0x0edc  [ E1AC89F6C5252057E6062843E36A6701, 32BE52836F2A011D46957AD60ABA48986B87026FD50ED09D8495460C7F1AB23E ] C:\Windows\System32\SearchProtocolHost.exe
19:10:55.0654 0x0edc  C:\Windows\System32\SearchProtocolHost.exe - ok
19:10:55.0654 0x0edc  [ A5D237B8673025B052C0E6FDB6A883E8, 0DAE34965C08F7450938A5145D2B53C68AA917744B8C6FCB130A35C03C5CEF6F ] C:\Windows\System32\msshooks.dll
19:10:55.0654 0x0edc  C:\Windows\System32\msshooks.dll - ok
19:10:55.0670 0x0edc  [ A6CD6B3F71E13E2E45B727FB8A47EA87, 4D84F6B03185DA961543ADFB927CBC17A1A9F216AC24E9A9228780AD7DD0222E ] C:\Windows\System32\SearchFilterHost.exe
19:10:55.0670 0x0edc  C:\Windows\System32\SearchFilterHost.exe - ok
19:10:55.0685 0x0edc  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\System32\mscoree.dll
19:10:55.0685 0x0edc  C:\Windows\System32\mscoree.dll - ok
19:10:55.0701 0x0edc  [ E5F00579E4DEDB11A322AB7D041C8F54, FE41E3B08C57B22DEC21F9E0592347162B923D280A79E8F56DE2B535148E3AD5 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
19:10:55.0701 0x0edc  C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
19:10:55.0716 0x0edc  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
19:10:55.0716 0x0edc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
19:10:55.0732 0x0edc  [ DB67C7C62038BDE813CB6486581A7611, DC0ACAA2795BBF4C8C35CE9DD9C14636ACFD94296CDC103696B64357CC2C84BB ] C:\Windows\System32\mssph.dll
19:10:55.0732 0x0edc  C:\Windows\System32\mssph.dll - ok
19:10:55.0748 0x0edc  [ 63ED6DEDACEDAC71005A29428C1D4382, 134E111A3126934F39BD2145191AC06A0403F82E5BA56C74D27B3064BE0AD9B1 ] C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
19:10:55.0748 0x0edc  C:\Users\K Man's Travel Pal\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll - ok
19:10:55.0779 0x0edc  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\System32\cabinet.dll
19:10:55.0779 0x0edc  C:\Windows\System32\cabinet.dll - ok
19:10:55.0794 0x0edc  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6, 4F40D5CCE264290C8DD73A5766062A55ED4CF77D8F6B59D453DDB6F88B640D7E ] C:\Windows\System32\mapi32.dll
19:10:55.0794 0x0edc  C:\Windows\System32\mapi32.dll - ok
19:10:55.0810 0x0edc  [ FA9826A3C16C0E6CDF8486EF4BAAA29E, 74AB70234D4F5B60E5C2A17D5C8C709FCD10B78F140D3DB81CC42594DA0EB24E ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
19:10:55.0810 0x0edc  C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
19:10:55.0826 0x0edc  [ F148865E4AC4F715E322EA06E6E21D84, 88CF0A1CB18BA9CA3D356EAF2F7EF8892CDDD9BF55798E64E4351C1ED111575A ] C:\Windows\System32\wbem\NCProv.dll
19:10:55.0826 0x0edc  C:\Windows\System32\wbem\NCProv.dll - ok
19:10:55.0935 0x0edc  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2016.330 ), 0x41000 ( enabled : updated )
19:10:55.0982 0x0edc  Win FW state via NFP2: enabled
19:10:58.0961 0x0edc  ============================================================
19:10:58.0961 0x0edc  Scan finished
19:10:58.0961 0x0edc  ============================================================
19:10:58.0992 0x0ed4  Detected object count: 0
19:10:58.0992 0x0ed4  Actual detected object count: 0

 

 

Computer is still running very slowly.  Thanks for all of your help.
 


  • 0

#8
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts

There is no sign of malware in those logs. Is there an option for Diagnostics at startup? Open an administrator command prompt (Start, type CMD and press CTRL+SHIFT+ENTER). At the prompt type the following and press Enter:

CHKDSK /r

Schedule a run at startup and restart the computer.

Let me know the outcome.


  • 0

#9
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

I ran the check disc.  Didn't really seem to make any difference.  I did notice that the computer programs are running better, but the internet can still be painfully slow.

 

Do you have anything else in your bag of tricks?

 

Thanks!

 

C


  • 0

#10
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts

Is there a diagnostic option at startup? It will be a good idea to check the memory.

Lets check for rootkits:
 
GMER

Please download GMER from one of the following locations and save it to your desktop:

  • Main Mirror which will download a randomly named file
  • Zipped Mirror - Unzip the file to its own folder such as C:\gmer
  • Disconnect from the Internet and close all running programs
  • Temporarily disable any real-time active protection
  • It is very important you do not use your computer while GMER is running
  • Double-click on the randomly named GMER gmericon_zps951fd5aa.jpg icon
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan
  • If you receive a warning about rootkit activity and are asked to fully scan your system click NO
  • Please check in the Quick scan box
  • Please uncheck the following:
  • IAT/EAT
  • Show All <<< Important

GMER2new_zpsdd936679.jpg

  • Click Scan
  • If you see a rootkit warning window click OK
  • When the scan is finished, Save the results to your desktop as gmer.log
  • Click Copy then paste the results in your reply
  • Exit GMER and be sure to re-enable your Antivirus, Firewall and any other security programs you had disabled

Note

  • If you encounter any problems, try running GMER in Safe Mode
  • If GMER crashes or keeps resulting in a Blue Screen of Death, uncheck Devices on the right side before scanning 

  • 0

Advertisements


#11
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

Here is the log.

 

Thanks for all your help thus far.

 

C

 

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-04-10 19:48:28
Windows 6.1.7601 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 WDC_WD16 rev.01.0 149.05GB
Running: xhyu3zlu.exe; Driver: C:\Users\KMAN'S~1\AppData\Local\Temp\pfdyyaoc.sys

---- System - GMER 2.1 ----

SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwAddBootEntry [0x8A93FA9C]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwAssignProcessToJobObject [0x8A94057A]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateEvent [0x8A94C5C4]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateEventPair [0x8A94C610]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateIoCompletion [0x8A94C7AA]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateMutant [0x8A94C532]
SSDT    \SystemRoot\system32\drivers\aswSP.sys                                                               ZwCreateSection [0x86DA06C2]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateSemaphore [0x8A94C57A]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateThread [0x8A940AB0]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateThreadEx [0x8A940CCC]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwCreateTimer [0x8A94C764]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwDebugActiveProcess [0x8A941368]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwDeleteBootEntry [0x8A93FB02]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwDuplicateObject [0x8A944B3C]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwLoadDriver [0x8A93F6EE]
SSDT    \SystemRoot\system32\drivers\aswSP.sys                                                               ZwMapViewOfSection [0x86DA07A2]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwModifyBootEntry [0x8A93FB68]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwNotifyChangeKey [0x8A944F32]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwNotifyChangeMultipleKeys [0x8A941E50]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenEvent [0x8A94C5EE]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenEventPair [0x8A94C632]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenIoCompletion [0x8A94C7CE]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenMutant [0x8A94C558]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenProcess [0x8A944436]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenSection [0x8A94C6E2]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenSemaphore [0x8A94C5A2]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenThread [0x8A94481E]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwOpenTimer [0x8A94C788]
SSDT    \SystemRoot\system32\drivers\aswSP.sys                                                               ZwProtectVirtualMemory [0x86DA0546]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwQueryObject [0x8A941CC4]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwQueueApcThreadEx [0x8A9419D2]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSetBootEntryOrder [0x8A93FBCE]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSetBootOptions [0x8A93FC34]
SSDT    \SystemRoot\system32\drivers\aswSP.sys                                                               ZwSetContextThread [0x86DA089E]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSetSystemInformation [0x8A93F788]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSetSystemPowerState [0x8A93F95A]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwShutdownSystem [0x8A93F8E8]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSuspendProcess [0x8A941532]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSuspendThread [0x8A941694]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwSystemDebugControl [0x8A93F9E2]
SSDT    \SystemRoot\system32\drivers\aswSP.sys                                                               ZwTerminateProcess [0x86DA0614]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwTerminateThread [0x8A9411C2]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwVdmControl [0x8A93FC9A]
SSDT    \SystemRoot\system32\drivers\aswSnx.sys                                                              ZwWriteVirtualMemory [0x8A9405D6]

---- Kernel code sections - GMER 2.1 ----

.text   ntkrnlpa.exe!ZwRollbackEnlistment + 142D                                                             8228EA15 1 Byte  [06]
.text   ntkrnlpa.exe!KiDispatchInterrupt + 5A2                                                               822C8212 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text   ntkrnlpa.exe!KeRemoveQueueEx + 10CB                                                                  822CF460 4 Bytes  [9C, FA, 93, 8A]
.text   ntkrnlpa.exe!KeRemoveQueueEx + 1153                                                                  822CF4E8 4 Bytes  [7A, 05, 94, 8A]
.text   ntkrnlpa.exe!KeRemoveQueueEx + 11A7                                                                  822CF53C 5 Bytes  [C4, C5, 94, 8A, 10]
.text   ntkrnlpa.exe!KeRemoveQueueEx + 11AD                                                                  822CF542 2 Bytes  [94, 8A]
.text   ntkrnlpa.exe!KeRemoveQueueEx + 11B3                                                                  822CF548 4 Bytes  [AA, C7, 94, 8A]
.text   ...                                                                                                 
?       C:\Windows\System32\Drivers\aswVmm.sys                                                               The system cannot find the file specified. !
?       C:\Windows\System32\Drivers\aswRvrt.sys                                                              The system cannot find the file specified. !
?       C:\Windows\system32\drivers\aswSnx.sys                                                               The system cannot find the file specified. !
?       C:\Windows\system32\drivers\aswSP.sys                                                                The system cannot find the file specified. !
?       C:\Windows\system32\drivers\aswRdr2.sys                                                              The system cannot find the file specified. !
?       C:\Windows\system32\drivers\aswMonFlt.sys                                                            The system cannot find the file specified. !

---- User code sections - GMER 2.1 ----

.text   C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe[12] kernel32.dll!GetBinaryTypeW + 70         76C86AAC 1 Byte  [62]
.text   C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[360] kernel32.dll!GetBinaryTypeW + 70         76C86AAC 1 Byte  [62]
.text   C:\Windows\system32\csrss.exe[488] kernel32.dll!GetBinaryTypeW + 70                                  76C86AAC 1 Byte  [62]
.text   C:\Windows\system32\wininit.exe[532] kernel32.dll!GetBinaryTypeW + 70                                76C86AAC 1 Byte  [62]
.text   C:\Windows\system32\csrss.exe[540] kernel32.dll!GetBinaryTypeW + 70                                  76C86AAC 1 Byte  [62]
.text   ...                                                                                                 

---- Devices - GMER 2.1 ----

Device  \Driver\aswRdr \Device\ASWRDR                                                                        aswRdr2.sys

---- Registry - GMER 2.1 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations                    ???~????????d???????????????{17CCA71B-ECD7-11D0-B908-00A0C9223196}????????4??~???????????????~??? ???????~???????????<??????????N???????????????????{17CCA71B-ECD7-11D0-B908-00A0C9223196}??????HD Audio Line connector mixer 3??????~?~?=?????????????????e????\\?\HDAUDIO#FUNC_01&VEN_10EC&DEV_0272&SUBSYS_10250349&REV_1000#4&350CB3CC&0&0001#{eb115ffc-10c8-4964-831d-6dcb02e6f23f}\eLineConnector3Wave???????N??~???~??D???? ?????????????????????? ??????????????????????????~???????????????????????????n???????????????????????????n???????~?????~??????????????????????????????????????????????s?????N??~???~???????????????????????????????????????????????????????????????~?????????????????????????????????n???????????????????????????t?????????????~?????????????~?&???~?????????????????????????????????????~?~?~?~?~?~?~?~?~?~?~????? ???????????????????~????????6????????????8???????? ??????????????????????????????????????????????n???????????????????????????n????????????????????????????????????????????????s??????????????????????????
Reg     HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series@ChangeID  2699191

---- EOF - GMER 2.1 ----


  • 0

#12
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts

Are you having issues with the sound in the computer? There are files missing that belong to AVAST. Uninstalling and reinstalling AVAST should resolve that issue.

 

Open a Run command window (Press the Windows Key+R). Copy and paste the following commands, one by one and click OK.

 

cmd /c Reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /s >"%userprofile%\desktop\report.txt"

cmd /c Reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers" /s >>"%userprofile%\desktop\report.txt"

 

Once done a report.txt will be created on your desktop. Post its contents in a reply.


  • 0

#13
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

No.  No sound issues that I am aware of.  I keep trying to send the log, but it won't go through.  I'll try to send it in parts.

 

Thanks!

 

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager
    CriticalSectionTimeout    REG_DWORD    0x278d00
    GlobalFlag    REG_DWORD    0x0
    HeapDeCommitFreeBlockThreshold    REG_DWORD    0x0
    HeapDeCommitTotalFreeThreshold    REG_DWORD    0x0
    HeapSegmentCommit    REG_DWORD    0x0
    HeapSegmentReserve    REG_DWORD    0x0
    ProcessorControl    REG_DWORD    0x2
    ResourceTimeoutCount    REG_DWORD    0x9e340
    BootExecute    REG_MULTI_SZ    autocheck autochk *
    ExcludeFromKnownDlls    REG_MULTI_SZ   
    ObjectDirectories    REG_MULTI_SZ    \Windows\0\RPC Control
    ProtectionMode    REG_DWORD    0x1
    NumberOfInitialSessions    REG_DWORD    0x2
    SetupExecute    REG_MULTI_SZ   

 

 

 BidiState    REG_DWORD    0x3
    DEFAULT-DUPLEX-MODE    REG_DWORD    0x1900
    COLLATE-ORIGINALS-SUPPORT    REG_DWORD    0xffffffff
    DMCExportOnly    REG_SZ    True
    InstallDate    REG_SZ    09/23/2012:23:17:15
    CombinedMediaStatus    REG_DWORD    0x0
    InstallationComplete    REG_DWORD    0x0
    SoftwareCUEContextID    REG_SZ    #Hewlett-Packard#HP Photosmart 3300 series#1328488942
    HPDUMMY    REG_DWORD    0x0
    PresetRegUpdated    REG_DWORD    0x0
    MediaType    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax
    ChangeID    REG_DWORD    0x6c7b58
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x180
    Name    REG_SZ    HP Photosmart 3300 series fax
    Share Name    REG_SZ   
    Print Processor    REG_SZ    winprint
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    HP Photosmart 3300 series fax
    Default DevMode    REG_BINARY   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
    Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x1
    StartTime    REG_DWORD    0x0
    UntilTime    REG_DWORD    0x0
    Separator File    REG_SZ   
    Location    REG_SZ    IP=192.168.1.64,Host=HP7AABA8
    Attributes    REG_DWORD    0x0
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    HP_192.168.1.64_MY65GB40C9045M

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax\DsDriver
    printBinNames    REG_MULTI_SZ    Automatically Select\0Upper Paper Tray
    printCollate    REG_BINARY    01
    printColor    REG_BINARY    01
    printDuplexSupported    REG_BINARY    00
    printStaplingSupported    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x86f
    printMaxYExtent    REG_DWORD    0xde4
    printMinXExtent    REG_DWORD    0x731
    printMinYExtent    REG_DWORD    0xa6b
    printMediaSupported    REG_MULTI_SZ    Letter\0Legal\0Executive\0A4
    printMediaReady    REG_MULTI_SZ    Letter
    printNumberUp    REG_DWORD    0x6
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0xc8
    printLanguage    REG_MULTI_SZ   
    printRate    REG_DWORD    0x8
    printRateUnit    REG_SZ    PagesPerMinute
    printPagesPerMinute    REG_DWORD    0x8
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax\DsSpooler
    driverName    REG_SZ    HP Photosmart 3300 series fax
    portName    REG_MULTI_SZ    HP_192.168.1.64_MY65GB40C9045M
    printStartTime    REG_DWORD    0x0
    printEndTime    REG_DWORD    0x0
    printerName    REG_SZ    HP Photosmart 3300 series fax
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintWhileSpooling
    priority    REG_DWORD    0x1
    uNCName    REG_SZ    \\KMansTravelPal\HP Photosmart 3300 series fax
    serverName    REG_SZ    KMansTravelPal
    shortServerName    REG_SZ    KMANSTRAVELPAL
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0
    location    REG_SZ    IP=192.168.1.64,Host=HP7AABA8
    url    REG_SZ    http://KMansTravelPal/

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series fax\PrinterDriverData
    InitDriverVersion    REG_DWORD    0x600
    Model    REG_SZ    HP PrinttoFax Driver
    PrinterDataSize    REG_DWORD    0x230
    PrinterData    REG_BINARY    0006300280080000801A060000000000000000006400580200000000000000000000000000000000F0377FBA000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
    FeatureKeywordSize    REG_DWORD    0x2
    FeatureKeyword    REG_BINARY    0000
    Forms?    REG_DWORD    0xba7f37f0
    SoftwareCUEContextID    REG_SZ    #Hewlett-Packard#HP Photosmart 3300 series#1328488942

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer
    ChangeID    REG_DWORD    0x5277308
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x80
    Name    REG_SZ    Microsoft XPS Document Writer
    Share Name    REG_SZ   
    Print Processor    REG_SZ    winprint
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    Microsoft XPS Document Writer
    Default DevMode    REG_BINARY    4D006900630072006F0073006F00660074002000580050005300200044006F00630075006D0065006E007400200057007200690074006500720000002000000001040006DC00580303FF010001000100EA0A6F08640001000F005802020001005802020000004C00650074007400650072000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000010000000200000001000000FFFFFFFF0000000000000000000000000000000044494E55220010014C030C00CAD2F6720000000000000000000000000000000000000000000000000000000009000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000010010000534D544A00000000100000014D006900630072006F0073006F00660074002000580050005300200044006F00630075006D0065006E00740020005700720069007400650072000000496E70757442696E00464F524D534F5552434500524553444C4C00556E69726573444C4C00496E7465726C656176696E67004F464600496D61676554797065004A5045474D6564004F7269656E746174696F6E00504F52545241495400436F6C6C617465004F4646005265736F6C7574696F6E004F7074696F6E3100506170657253697A65004C455454455200436F6C6F724D6F6465003234627070000000000000000000000000000000000000000000000000000000000000000000000000000000000C0000004D58445701010000
    Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x0
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ   
    Attributes    REG_DWORD    0x200
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    XPSPort:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsDriver
    printBinNames    REG_MULTI_SZ    Automatically Select
    printCollate    REG_BINARY    00
    printColor    REG_BINARY    01
    printDuplexSupported    REG_BINARY    00
    printStaplingSupported    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x21bc
    printMaxYExtent    REG_DWORD    0x2ba8
    printMinXExtent    REG_DWORD    0x384
    printMinYExtent    REG_DWORD    0x384
    printMediaSupported    REG_MULTI_SZ    Letter\0Letter Small\0Tabloid\0Ledger\0Legal\0Statement\0Executive\0A3\0A4\0A4 Small\0A5\0B4 (JIS)\0B5 (JIS)\0Folio\0Quarto\010x14\011x17\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0C size sheet\0D size sheet\0E size sheet\0Envelope DL\0Envelope C5\0Envelope C3\0Envelope C4\0Envelope C6\0Envelope C65\0Envelope B4\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0US Std Fanfold\0German Std Fanfold\0German Legal Fanfold\0B4 (ISO)\0Japanese Postcard\09x11\010x11\015x11\0Envelope Invite\0Letter Extra\0Legal Extra\0A4 Extra\0Letter Transverse\0A4 Transverse\0Letter Extra Transverse\0Super A\0Super B\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A3 Extra\0A5 Extra\0B5 (ISO) Extra\0A2\0A3 Transverse\0A3 Extra Transverse\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #2\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0Letter Rotated\0A3 Rotated\0A4 Rotated\0A5 Rotated\0B4 (JIS) Rotated\0B5 (JIS) Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Kaku #2 Rotated\0Japan Envelope Kaku #3 Rotated\0Japan Envelope Chou #3 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\012x11\0Japan Envelope You #4\0Japan Envelope You #4 Rotated\0PRC Envelope #1\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC Envelope #9\0PRC Envelope #10\0PRC Envelope #1 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated\0PRC Envelope #5 Rotated\0PRC Envelope #6 Rotated\0PRC Envelope #7 Rotated\0PRC Envelope #8 Rotated\0PRC Envelope #9 Rotated
    printMediaReady    REG_MULTI_SZ    Letter
    printNumberUp    REG_DWORD    0x0
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0x258
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ   
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsSpooler
    driverName    REG_SZ    Microsoft XPS Document Writer
    portName    REG_MULTI_SZ    XPSPort:
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    Microsoft XPS Document Writer
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintAfterSpooled
    priority    REG_DWORD    0x1
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\PrinterDriverData
    InitDriverVersion    REG_DWORD    0x600
    Model    REG_SZ    Microsoft XPS Document Writer
    PrinterDataSize    REG_DWORD    0x230
    PrinterData    REG_BINARY    0006300280080000801A060000000000000000006400580200000000000000000000000000000000CAD2F672000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
    FeatureKeywordSize    REG_DWORD    0x2
    FeatureKeyword    REG_BINARY    0000
    Forms?    REG_DWORD    0x72f6d2ca

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007
    ChangeID    REG_DWORD    0x5278070
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x80
    Name    REG_SZ    Send To OneNote 2007
    Share Name    REG_SZ   
    Print Processor    REG_SZ    OneNotePrint2007
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    Send To Microsoft OneNote Driver
    Default DevMode    REG_BINARY    530065006E006400200054006F0020004F006E0065004E006F00740065002000320030003000370000000000000000000000000000000000000000000000000001040004DC009000032F000001000100000000006400010001002C01020001002C01010000004C00650074007400650072000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000077706E6F00000000010000000000000000000000FE0000000100000000000000C8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
    Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x0
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ   
    Attributes    REG_DWORD    0x0
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    Send To Microsoft OneNote Port:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsDriver
    printBinNames    REG_MULTI_SZ    Default tray
    printColor    REG_BINARY    01
    printMaxXExtent    REG_DWORD    0x76
    printMaxYExtent    REG_DWORD    0x0
    printMinXExtent    REG_DWORD    0x76
    printMinYExtent    REG_DWORD    0x0
    printMediaSupported    REG_MULTI_SZ    Letter\0Tabloid\0Legal\0A3\0A4\0A5\0B4 (JIS)\0B5 (JIS)\0Japanese Postcard\0Custom Size
    printMediaReady    REG_MULTI_SZ   
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT
    printMaxResolutionSupported    REG_DWORD    0x12c
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ   
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsSpooler
    driverName    REG_SZ    Send To Microsoft OneNote Driver
    portName    REG_MULTI_SZ    Send To Microsoft OneNote Port:
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    Send To OneNote 2007
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintWhileSpooling
    priority    REG_DWORD    0x1
    uNCName    REG_SZ    \\KMansTravelPal\Send To OneNote 2007
    serverName    REG_SZ    KMansTravelPal
    shortServerName    REG_SZ    KMANSTRAVELPAL
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\PrinterDriverData

 

 

 

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers
    DefaultSpoolDirectory    REG_SZ    C:\Windows\system32\spool\PRINTERS
    LANGIDOfLastDefaultDevmode    REG_DWORD    0x409

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax
    ChangeID    REG_DWORD    0x5277317
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x180
    Name    REG_SZ    Fax
    Share Name    REG_SZ   
    Print Processor    REG_SZ    winprint
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x0
    Description    REG_SZ   
    Printer Driver    REG_SZ    Microsoft Shared Fax Driver
    Default DevMode    REG_BINARY    46006100780000004E002D004400430033004A0035005000310051004A00360031005C004600610078002C004C006F00630061006C004F006E006C007900000001040004DC00C403037E01000100010000000000640000000100C80001000100C800010000004C00650074007400650072000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044666178080000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
    Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x0
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ   
    Attributes    REG_DWORD    0x4040
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    SHRFAX:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsDriver
    printBinNames    REG_MULTI_SZ    Default
    printColor    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x870
    printMaxYExtent    REG_DWORD    0xde4
    printMinXExtent    REG_DWORD    0x0
    printMinYExtent    REG_DWORD    0x0
    printMediaSupported    REG_MULTI_SZ    Letter\0Letter Small\0Legal\0Statement\0Executive\0A4\0A4 Small\0A5\0B5 (JIS)\0Folio\0Quarto\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0Envelope DL\0Envelope C5\0Envelope C6\0Envelope C65\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0German Std Fanfold\0German Legal Fanfold\0Japanese Postcard\0Reserved48\0Reserved49\0Letter Transverse\0A4 Transverse\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A5 Extra\0B5 (ISO) Extra\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0A5 Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\0Japan Envelope You #4\0PRC 16K\0PRC 32K\0PRC 32K(Big)\0PRC Envelope #1\0PRC Envelope #2\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC 32K Rotated\0PRC 32K(Big) Rotated\0PRC Envelope #1 Rotated\0PRC Envelope #2 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated
    printMediaReady    REG_MULTI_SZ   
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0xc8
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ   
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsSpooler
    driverName    REG_SZ    Microsoft Shared Fax Driver
    portName    REG_MULTI_SZ    SHRFAX:
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    Fax
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintWhileSpooling
    priority    REG_DWORD    0x1
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\PrinterDriverData
    PaperSize    REG_DWORD    0x1
    AsyncUIv1    REG_DWORD    0x4

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series
    ChangeID    REG_DWORD    0x7f1bdb
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x180
    Name    REG_SZ    HP Photosmart 3300 series
    Share Name    REG_SZ   
    Print Processor    REG_SZ    hpzppwn7
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    HP Photosmart 3300 series
    Default DevMode    REG_BINARY

 

  Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x1
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ    IP=192.168.1.64,Host=HP7AABA8
    Attributes    REG_DWORD    0x200
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    HP_192.168.1.64_MY65GB40C9045M
    ConfigFile    REG_BINARY    433A5C57696E646F77735C73797374656D33325C73706F6F6C5C445249564552535C5733325838365C335C4850346B686266632E636667

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsDriver
    printBinNames    REG_MULTI_SZ    Automatically Select\0Main tray\0Photo Tray
    printCollate    REG_BINARY    01
    printColor    REG_BINARY    01
    printDuplexSupported    REG_BINARY    01
    printStaplingSupported    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x86f
    printMaxYExtent    REG_DWORD    0x1735
    printMinXExtent    REG_DWORD    0x2fa
    printMinYExtent    REG_DWORD    0x4f6
    printMediaSupported    REG_MULTI_SZ    Letter\0Legal\0Executive\0A4\0A5\0B5 (JIS)\0Envelope DL\0Envelope C6\0Japanese Postcard\0A6\010x15cm\010x15cm (tab)\013x18cm\02L 127x178mm\02L 127x178mm (tab)\04x6in.\04x6in. (tab)\05x7in.\08x10in.\0Cabinet size 120x165mm\0No. 10 envelope 9.5x4.13 in.\0A2 envelope 111x146mm\0Panorama 10x30cm\0Panorama 4x10in.\0Panorama 4x11in.\0Panorama 4x12in.\0Panorama, A4\0Index card 3x5in.\0Index card 4x6in.\0Index card 5x8in.\0Japanese envelope #2 111x146mm\0Japanese Envelope #3 120x235mm\0Japanese Envelope #4 90x205mm\0L 89x127mm\0L 89x127mm (tab)\0Mutsugiri 8x10in.\0Ofuku Hagaki\0Borderless 4x6in.\0Borderless 8.5x11in.\0Borderless cabinet 120x165mm\0Borderless hagaki 100x148mm\0Borderless ofuku hagaki\0Borderless photo 10x15cm\0Borderless photo 13x18cm\0Borderless photo 2L 127x178mm\0Borderless photo 2L (tab)\0Borderless photo 5x7in.\0Borderless photo A4 210x297mm\0Borderless photo A5 148x210mm\0Borderless photo A6\0Borderless photo B5 182x257mm\0Borderless photo L 89x127mm\0Borderless photo mutsugiri 8x10\0Borderless panorama 10x30cm\0Borderless panorama 4x10in.\0Borderless panorama 4x11in.\0Borderless panorama 4x12in.\0Borderless panorama A4\0Borderless photo L (tab)\0Borderless photo 10x15cm (tab)\0Borderless 4x6in. (tab)
    printMediaReady    REG_MULTI_SZ    Letter
    printNumberUp    REG_DWORD    0x6
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0x4b0
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ    PagesPerMinute
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsSpooler
    driverName    REG_SZ    HP Photosmart 3300 series
    portName    REG_MULTI_SZ    HP_192.168.1.64_MY65GB40C9045M
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    HP Photosmart 3300 series
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintAfterSpooled
    priority    REG_DWORD    0x1
    uNCName    REG_SZ    \\KMansTravelPal\HP Photosmart 3300 series
    serverName    REG_SZ    KMansTravelPal
    shortServerName    REG_SZ    KMANSTRAVELPAL
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0
    location    REG_SZ    IP=192.168.1.64,Host=HP7AABA8
    url    REG_SZ    http://KMansTravelPal/

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\HPPresetRoot
    HPRestrictedUserGuid    REG_SZ    30fcd78e-6618-4403-0787-06436f36c3f5
    PresetPoolMaxIndexCount    REG_BINARY    0E000000

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer
    ChangeID    REG_DWORD    0x5277308
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x80
    Name    REG_SZ    Microsoft XPS Document Writer
    Share Name    REG_SZ   
    Print Processor    REG_SZ    winprint
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    Microsoft XPS Document Writer
    Default DevMode    REG_BINARY

 

 

  Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x0
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ   
    Attributes    REG_DWORD    0x200
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    XPSPort:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsDriver
    printBinNames    REG_MULTI_SZ    Automatically Select
    printCollate    REG_BINARY    00
    printColor    REG_BINARY    01
    printDuplexSupported    REG_BINARY    00
    printStaplingSupported    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x21bc
    printMaxYExtent    REG_DWORD    0x2ba8
    printMinXExtent    REG_DWORD    0x384
    printMinYExtent    REG_DWORD    0x384
    printMediaSupported    REG_MULTI_SZ    Letter\0Letter Small\0Tabloid\0Ledger\0Legal\0Statement\0Executive\0A3\0A4\0A4 Small\0A5\0B4 (JIS)\0B5 (JIS)\0Folio\0Quarto\010x14\011x17\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0C size sheet\0D size sheet\0E size sheet\0Envelope DL\0Envelope C5\0Envelope C3\0Envelope C4\0Envelope C6\0Envelope C65\0Envelope B4\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0US Std Fanfold\0German Std Fanfold\0German Legal Fanfold\0B4 (ISO)\0Japanese Postcard\09x11\010x11\015x11\0Envelope Invite\0Letter Extra\0Legal Extra\0A4 Extra\0Letter Transverse\0A4 Transverse\0Letter Extra Transverse\0Super A\0Super B\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A3 Extra\0A5 Extra\0B5 (ISO) Extra\0A2\0A3 Transverse\0A3 Extra Transverse\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #2\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0Letter Rotated\0A3 Rotated\0A4 Rotated\0A5 Rotated\0B4 (JIS) Rotated\0B5 (JIS) Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Kaku #2 Rotated\0Japan Envelope Kaku #3 Rotated\0Japan Envelope Chou #3 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\012x11\0Japan Envelope You #4\0Japan Envelope You #4 Rotated\0PRC Envelope #1\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC Envelope #9\0PRC Envelope #10\0PRC Envelope #1 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated\0PRC Envelope #5 Rotated\0PRC Envelope #6 Rotated\0PRC Envelope #7 Rotated\0PRC Envelope #8 Rotated\0PRC Envelope #9 Rotated
    printMediaReady    REG_MULTI_SZ    Letter
    printNumberUp    REG_DWORD    0x0
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0x258
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ   
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\DsSpooler
    driverName    REG_SZ    Microsoft XPS Document Writer
    portName    REG_MULTI_SZ    XPSPort:
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    Microsoft XPS Document Writer
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintAfterSpooled
    priority    REG_DWORD    0x1
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\PrinterDriverData
    InitDriverVersion    REG_DWORD    0x600
    Model    REG_SZ    Microsoft XPS Document Writer
    PrinterDataSize    REG_DWORD    0x230
    PrinterData    REG_BINARY    0006300280080000801A060000000000000000006400580200000000000000000000000000000000CAD2F672000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
    FeatureKeywordSize    REG_DWORD    0x2
    FeatureKeyword    REG_BINARY    0000
    Forms?    REG_DWORD    0x72f6d2ca

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007
    ChangeID    REG_DWORD    0x5278070
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x80
    Name    REG_SZ    Send To OneNote 2007
    Share Name    REG_SZ   
    Print Processor    REG_SZ    OneNotePrint2007
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    Send To Microsoft OneNote Driver
    Default DevMode    REG_BINARY    530065006E006400200054006F0020004F006E0065004E006F00740065002000320030003000370000000000000000000000000000000000000000000000000001040004DC009000032F000001000100000000006400010001002C01020001002C01010000004C00650074007400650072000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000077706E6F00000000010000000000000000000000FE0000000100000000000000C8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
    Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x0
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ   
    Attributes    REG_DWORD    0x0
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    Send To Microsoft OneNote Port:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsDriver
    printBinNames    REG_MULTI_SZ    Default tray
    printColor    REG_BINARY    01
    printMaxXExtent    REG_DWORD    0x76
    printMaxYExtent    REG_DWORD    0x0
    printMinXExtent    REG_DWORD    0x76
    printMinYExtent    REG_DWORD    0x0
    printMediaSupported    REG_MULTI_SZ    Letter\0Tabloid\0Legal\0A3\0A4\0A5\0B4 (JIS)\0B5 (JIS)\0Japanese Postcard\0Custom Size
    printMediaReady    REG_MULTI_SZ   
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT
    printMaxResolutionSupported    REG_DWORD    0x12c
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ   
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\DsSpooler
    driverName    REG_SZ    Send To Microsoft OneNote Driver
    portName    REG_MULTI_SZ    Send To Microsoft OneNote Port:
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    Send To OneNote 2007
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintWhileSpooling
    priority    REG_DWORD    0x1
    uNCName    REG_SZ    \\KMansTravelPal\Send To OneNote 2007
    serverName    REG_SZ    KMansTravelPal
    shortServerName    REG_SZ    KMANSTRAVELPAL
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Send To OneNote 2007\PrinterDriverData

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers
    DefaultSpoolDirectory    REG_SZ    C:\Windows\system32\spool\PRINTERS
    LANGIDOfLastDefaultDevmode    REG_DWORD    0x409

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax
    ChangeID    REG_DWORD    0x5277317
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x180
    Name    REG_SZ    Fax
    Share Name    REG_SZ   
    Print Processor    REG_SZ    winprint
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x0
    Description    REG_SZ   
    Printer Driver    REG_SZ    Microsoft Shared Fax Driver
    Default DevMode    REG_BINARY    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
    Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x0
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ   
    Attributes    REG_DWORD    0x4040
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    0100048088000000940000000000000014000000020074000500000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    SHRFAX:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsDriver
    printBinNames    REG_MULTI_SZ    Default
    printColor    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x870
    printMaxYExtent    REG_DWORD    0xde4
    printMinXExtent    REG_DWORD    0x0
    printMinYExtent    REG_DWORD    0x0
    printMediaSupported    REG_MULTI_SZ    Letter\0Letter Small\0Legal\0Statement\0Executive\0A4\0A4 Small\0A5\0B5 (JIS)\0Folio\0Quarto\0Note\0Envelope #9\0Envelope #10\0Envelope #11\0Envelope #12\0Envelope #14\0Envelope DL\0Envelope C5\0Envelope C6\0Envelope C65\0Envelope B5\0Envelope B6\0Envelope\0Envelope Monarch\06 3/4 Envelope\0German Std Fanfold\0German Legal Fanfold\0Japanese Postcard\0Reserved48\0Reserved49\0Letter Transverse\0A4 Transverse\0Letter Plus\0A4 Plus\0A5 Transverse\0B5 (JIS) Transverse\0A5 Extra\0B5 (ISO) Extra\0Japanese Double Postcard\0A6\0Japanese Envelope Kaku #3\0Japanese Envelope Chou #3\0Japanese Envelope Chou #4\0A5 Rotated\0Japanese Postcard Rotated\0Double Japan Postcard Rotated\0A6 Rotated\0Japan Envelope Chou #4 Rotated\0B6 (JIS)\0B6 (JIS) Rotated\0Japan Envelope You #4\0PRC 16K\0PRC 32K\0PRC 32K(Big)\0PRC Envelope #1\0PRC Envelope #2\0PRC Envelope #3\0PRC Envelope #4\0PRC Envelope #5\0PRC Envelope #6\0PRC Envelope #7\0PRC Envelope #8\0PRC 32K Rotated\0PRC 32K(Big) Rotated\0PRC Envelope #1 Rotated\0PRC Envelope #2 Rotated\0PRC Envelope #3 Rotated\0PRC Envelope #4 Rotated
    printMediaReady    REG_MULTI_SZ   
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0xc8
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ   
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\DsSpooler
    driverName    REG_SZ    Microsoft Shared Fax Driver
    portName    REG_MULTI_SZ    SHRFAX:
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    Fax
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintWhileSpooling
    priority    REG_DWORD    0x1
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\PrinterDriverData
    PaperSize    REG_DWORD    0x1
    AsyncUIv1    REG_DWORD    0x4

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series
    ChangeID    REG_DWORD    0x7f1bdb
    StatusExt    REG_DWORD    0x0
    Status    REG_DWORD    0x180
    Name    REG_SZ    HP Photosmart 3300 series
    Share Name    REG_SZ   
    Print Processor    REG_SZ    hpzppwn7
    Datatype    REG_SZ    RAW
    Parameters    REG_SZ   
    Action    REG_DWORD    0x0
    ObjectGUID    REG_SZ   
    DsKeyUpdate    REG_DWORD    0x0
    DsKeyUpdateForeground    REG_DWORD    0x3
    Description    REG_SZ   
    Printer Driver    REG_SZ    HP Photosmart 3300 series
    Default DevMode    REG_BINARY

 

 Priority    REG_DWORD    0x1
    Default Priority    REG_DWORD    0x1
    StartTime    REG_DWORD    0x3c
    UntilTime    REG_DWORD    0x3c
    Separator File    REG_SZ   
    Location    REG_SZ    IP=192.168.1.64,Host=HP7AABA8
    Attributes    REG_DWORD    0x200
    txTimeout    REG_DWORD    0xafc8
    dnsTimeout    REG_DWORD    0x3a98
    Security    REG_BINARY    01000C80D0000000DC00000000000000140000000200BC0007000000000024000C000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E80300000009240030000F000105000000000005150000000038B875FA9EAAF8FF1BABC5E803000000091400000000100101000000000003000000000000140008000200010100000000000100000000000A140000000020010100000000000100000000000018000C000F0001020000000000052000000020020000000B18000000001001020000000000052000000020020000010100000000000512000000010100000000000512000000
    CreatorSid    REG_BINARY    010100000000000512000000
    SpoolDirectory    REG_SZ   
    Port    REG_SZ    HP_192.168.1.64_MY65GB40C9045M
    ConfigFile    REG_BINARY    433A5C57696E646F77735C73797374656D33325C73706F6F6C5C445249564552535C5733325838365C335C4850346B686266632E636667

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsDriver
    printBinNames    REG_MULTI_SZ    Automatically Select\0Main tray\0Photo Tray
    printCollate    REG_BINARY    01
    printColor    REG_BINARY    01
    printDuplexSupported    REG_BINARY    01
    printStaplingSupported    REG_BINARY    00
    printMaxXExtent    REG_DWORD    0x86f
    printMaxYExtent    REG_DWORD    0x1735
    printMinXExtent    REG_DWORD    0x2fa
    printMinYExtent    REG_DWORD    0x4f6
    printMediaSupported    REG_MULTI_SZ    Letter\0Legal\0Executive\0A4\0A5\0B5 (JIS)\0Envelope DL\0Envelope C6\0Japanese Postcard\0A6\010x15cm\010x15cm (tab)\013x18cm\02L 127x178mm\02L 127x178mm (tab)\04x6in.\04x6in. (tab)\05x7in.\08x10in.\0Cabinet size 120x165mm\0No. 10 envelope 9.5x4.13 in.\0A2 envelope 111x146mm\0Panorama 10x30cm\0Panorama 4x10in.\0Panorama 4x11in.\0Panorama 4x12in.\0Panorama, A4\0Index card 3x5in.\0Index card 4x6in.\0Index card 5x8in.\0Japanese envelope #2 111x146mm\0Japanese Envelope #3 120x235mm\0Japanese Envelope #4 90x205mm\0L 89x127mm\0L 89x127mm (tab)\0Mutsugiri 8x10in.\0Ofuku Hagaki\0Borderless 4x6in.\0Borderless 8.5x11in.\0Borderless cabinet 120x165mm\0Borderless hagaki 100x148mm\0Borderless ofuku hagaki\0Borderless photo 10x15cm\0Borderless photo 13x18cm\0Borderless photo 2L 127x178mm\0Borderless photo 2L (tab)\0Borderless photo 5x7in.\0Borderless photo A4 210x297mm\0Borderless photo A5 148x210mm\0Borderless photo A6\0Borderless photo B5 182x257mm\0Borderless photo L 89x127mm\0Borderless photo mutsugiri 8x10\0Borderless panorama 10x30cm\0Borderless panorama 4x10in.\0Borderless panorama 4x11in.\0Borderless panorama 4x12in.\0Borderless panorama A4\0Borderless photo L (tab)\0Borderless photo 10x15cm (tab)\0Borderless 4x6in. (tab)
    printMediaReady    REG_MULTI_SZ    Letter
    printNumberUp    REG_DWORD    0x6
    printOrientationsSupported    REG_MULTI_SZ    PORTRAIT\0LANDSCAPE
    printMaxResolutionSupported    REG_DWORD    0x4b0
    printLanguage    REG_MULTI_SZ   
    printRateUnit    REG_SZ    PagesPerMinute
    driverVersion    REG_DWORD    0x401

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\DsSpooler
    driverName    REG_SZ    HP Photosmart 3300 series
    portName    REG_MULTI_SZ    HP_192.168.1.64_MY65GB40C9045M
    printStartTime    REG_DWORD    0x3c
    printEndTime    REG_DWORD    0x3c
    printerName    REG_SZ    HP Photosmart 3300 series
    printKeepPrintedJobs    REG_BINARY    00
    printSpooling    REG_SZ    PrintAfterSpooled
    priority    REG_DWORD    0x1
    uNCName    REG_SZ    \\KMansTravelPal\HP Photosmart 3300 series
    serverName    REG_SZ    KMansTravelPal
    shortServerName    REG_SZ    KMANSTRAVELPAL
    versionNumber    REG_DWORD    0x4
    flags    REG_DWORD    0x0
    location    REG_SZ    IP=192.168.1.64,Host=HP7AABA8
    url    REG_SZ    http://KMansTravelPal/

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Photosmart 3300 series\HPPresetRoot
    HPRestrictedUserGuid    REG_SZ    30fcd78e-6618-4403-0787-06436f36c3f5
    PresetPoolMaxIndexCount    REG_BINARY    0E000000


  • 0

#14
JSntgRvr

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,591 posts
Seems the report missed the PendingFileRenameOperations key. Open a Run command window (Press the Windows Key+R). Copy and paste the following command only and click OK.
 
cmd /c Reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /s >"%userprofile%\desktop\report.txt"
 
Once done a report.txt will be created on your desktop. Post its contents in a reply.
  • 0

#15
Conrad 678

Conrad 678

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 103 posts

There is another problem.  Every time I try to send the reply, it says the reply is too large and it won't send.  I keep cutting it into pieces, but I get the same message--even when the post is pretty short.

 

 


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP