Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

FBI moneypak virus


  • This topic is locked This topic is locked
45 replies to this topic

#1 pepro1122

pepro1122

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 29 October 2012 - 10:28 PM

This is my first time posting. I have read and followed virus instructions from this forum in the past with great success, however now my computer is frozen with the FBI Moneypak virus. I tried the removal guide from this website, but every time I try to restart the computer, the FBI screen comes back on and I am back to square one. I don't want to keep repeating the same processes if they are not working or if I am not going about it correctly. I am running Windows vista. I am not sure what other information you need, so I will wait for your instructions.
Thank you so much,
Pepro1122

BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:08:55 PM

Posted 29 October 2012 - 11:07 PM

Hello pepro1122,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Watch Topic.I suggest you click it and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the ADD REPLY button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.

Do you have a Usb Flash drive you can use? Do you know if it is a 64bit Or 32bit installation of Vista?
Can you boot into Safemode or does the FBI screen still come up?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 30 October 2012 - 05:05 AM

I can boot into safe mode. I do have a flash drive. I also have a laptop that I can use. How do I find out what version of vista I am using while in safe mode?
Thanks
Pepro1122

#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:08:55 PM

Posted 30 October 2012 - 05:09 PM

How do I find out what version of vista I am using while in safe mode?


See this article

http://support.microsoft.com/kb/827218

Edited by fireman4it, 30 October 2012 - 05:10 PM.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 30 October 2012 - 05:30 PM

I am running 32-bit system.

#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:08:55 PM

Posted 30 October 2012 - 05:49 PM

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt[*]In the command window type in notepad and press Enter.[*]The notepad opens. Under File menu select Open.[*]Select "Computer" and find your flash drive letter and close the notepad.[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.[*]The tool will start to run.[*]When the tool opens click Yes to disclaimer.[*]Press Scan button.[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list][/quote]

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 30 October 2012 - 06:49 PM

Below is the log from the FRST. I have left my computer at the command prompt with the System Reocvery Options window behind it. Should I leave everything as it is for now?
Thanks so much!
pepro1122

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 30-10-2012
Ran by SYSTEM at 30-10-2012 19:31:18
Running from I:\
Windows Vista ™ Home Premium Service Pack 1 (X86) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [RtHDVCpl] RtHDVCpl.exe [x]
HKLM\...\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup [30192 2010-06-19] (Google)
HKLM\...\Run: [DellComms] "C:\Program Files\Dell\DellComms\bin\sprtcmd.exe" /P DellComms [202544 2008-03-04] (SupportSoft, Inc.)
HKLM\...\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [128296 2008-05-23] (CyberLink Corp.)
HKLM\...\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe [176128 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide [x]
HKLM\...\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" [x]
HKLM\...\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-09] (Hewlett-Packard)
HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2012-02-20] (Apple Inc.)
HKLM\...\Run: [Nike+ Connect] "C:\Program Files\Nike\Nike+ Connect\Nike+ Connect daemon.exe" [70656 2012-09-28] (Nike)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM\...\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [421736 2012-03-06] (Apple Inc.)
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [947176 2012-09-12] (Microsoft Corporation)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2012-04-18] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" [947808 2012-09-04] ()
HKLM\...\Run: [SelectRebates] C:\Program Files\SelectRebates\SelectRebates.exe [886752 2010-11-01] ()
HKLM\...\Run: [ROC_ROC_JULY_P1] "C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1 [1022048 2012-09-04] ()
HKLM\...\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY [3116152 2012-10-10] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot [296096 2012-10-29] (RealNetworks, Inc.)
HKU\David\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [68856 2008-10-23] (Google Inc.)
HKU\David\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\David\...\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe -update activex [x]
HKU\David\...\Policies\system: [LogonHoursAction] 2
HKU\David\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Kelly\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\Kelly\...\Run: [Spotify] "C:\Users\Kelly\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart [9459888 2012-04-29] (Spotify Ltd)
HKU\Kelly\...\Run: [Spotify Web Helper] "C:\Users\Kelly\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [931504 2012-04-29] ()
HKU\Kelly\...\Run: [AdobeBridge] [x]
HKU\Kelly\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\Kelly\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [68856 2008-10-23] (Google Inc.)
HKU\Kelly\...\Run: [secproc_ssp] C:\Users\Kelly\AppData\Local\Microsoft\Windows\2987\secproc_ssp.exe [52736 2012-10-26] (AutoIt Team)
HKU\Kelly\...\RunOnce: [RealUpgradeHelper] "c:\program files\real\realplayer\Update\upgrdhlp.exe" "RealNetworks|RealPlayer|15.0" [178360 2012-10-29] (RealNetworks, Inc.)
HKU\Kelly\...\Policies\system: [LogonHoursAction] 2
HKU\Kelly\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Leah\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\Leah\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [68856 2008-10-23] (Google Inc.)
HKU\Leah\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\Leah\...\Policies\system: [LogonHoursAction] 2
HKU\Leah\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Lindsay\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [68856 2008-10-23] (Google Inc.)
HKU\Lindsay\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\Lindsay\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\Lindsay\...\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618; MSSDMC1.3.1020.3)" -"http://www.miniclip.com/games/spectral-wizard/en/" [460216 2009-01-16] (Adobe Systems, Inc.)
HKU\Lindsay\...\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil10l_ActiveX.exe -update activex [x]
HKU\Lindsay\...\Policies\system: [LogonHoursAction] 2
HKU\Lindsay\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
AppInit_DLLs: C:\PROGRA~1\GOOGLE\GOOGLE~2\GOEC62~1.DLL
Startup: C:\Users\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
Startup: C:\Users\All Users\Start Menu\Programs\Startup\Fliptoast.lnk
ShortcutTarget: Fliptoast.lnk -> C:\Program Files\Fliptoast\fliptoast.exe ()
Startup: C:\Users\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk.disabled
ShortcutTarget: McAfee Security Scan.lnk.disabled -> C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe (No File)
Startup: C:\Users\All Users\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\Default\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Kelly\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Kelly\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> (No File)
Startup: C:\Users\Kelly\Start Menu\Programs\Startup\Mavis Beacon Teaches Typing 11.lnk.disabled
ShortcutTarget: Mavis Beacon Teaches Typing 11.lnk.disabled -> C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\MiniMavis.exe ()
Startup: C:\Users\Kelly\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Kelly\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Leah\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Lindsay\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)

==================== Services (Whitelisted) ===================

2 AERTFilters; C:\Windows\System32\AERTSrv.exe [73728 2008-07-18] (Andrea Electronics Corporation)
2 AVGIDSAgent; "C:\Program Files\AVG\AVG2013\avgidsagent.exe" [5783672 2012-10-01] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files\AVG\AVG2013\avgwdsvc.exe" [193568 2012-10-01] (AVG Technologies CZ, s.r.o.)
2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [161048 2008-05-02] (Stardock Corporation)
2 FreeAgentGoNext Service; "C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe" [189736 2009-09-25] (Seagate Technology LLC)
3 GoogleDesktopManager-051210-111108; "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [30192 2010-06-19] (Google)
2 gupdate1c9bd1134cd28a0; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [133104 2009-04-14] (Google Inc.)
2 iWinTrusted; C:\Program Files\iWin Games\iWinTrusted.exe [78104 2009-11-24] (iWin Inc.)
3 MSSQL$MSSMLBIZ; "C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ [29293408 2010-12-10] (Microsoft Corporation)
2 RoxLiveShare10; "C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe" [309744 2008-05-14] (Sonic Solutions)
2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
2 Secunia PSI Agent; "C:\Program Files\Secunia\PSI\PSIA.exe" --start-service [994360 2011-10-13] (Secunia)
2 Secunia Update Agent; "C:\Program Files\Secunia\PSI\sua.exe" --start-service [399416 2011-10-13] (Secunia)
2 Skype C2C Service; "C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" [3064000 2012-08-13] (Skype Technologies S.A.)
2 sprtsvc_DellComms; "C:\Program Files\Dell\DellComms\bin\sprtsvc.exe" /service /P DellComms [202544 2008-03-04] (SupportSoft, Inc.)
2 vToolbarUpdater12.2.6; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [722528 2012-09-04] ()
2 Web Assistant Updater; C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [188760 2012-07-29] ()
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
3 NisSrv; "c:\Program Files\Microsoft Security Client\NisSrv.exe" [x]
2 SessionLauncher; C:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [x]
2 sprtsvc_dellsupportcenter; C:\Program Files\Dell Support Center\bin\sprtsvc.exe /service /p dellsupportcenter [x]

==================== Drivers (Whitelisted) ====================

1 A2DDA; \??\C:\Users\Kelly\Desktop\Run\a2ddax86.sys [17904 2012-10-26] (Emsi Software GmbH)
1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [177504 2012-09-12] (AVG Technologies CZ, s.r.o. )
0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [55008 2012-09-20] (AVG Technologies CZ, s.r.o. )
1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [19936 2012-09-20] (AVG Technologies CZ, s.r.o. )
1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [159712 2012-10-01] (AVG Technologies CZ, s.r.o.)
0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [177376 2012-09-20] (AVG Technologies CZ, s.r.o.)
0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [93536 2012-10-04] (AVG Technologies CZ, s.r.o.)
0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35552 2012-09-13] (AVG Technologies CZ, s.r.o.)
1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [164832 2012-09-20] (AVG Technologies CZ, s.r.o.)
1 avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [27496 2012-09-04] (AVG Technologies)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [193552 2012-08-30] (Microsoft Corporation)
1 MpKsle7fa7aa0; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D24C5A6A-BBB8-41E9-A7BE-F65D2A98959B}\MpKsle7fa7aa0.sys [29904 2012-10-30] (Microsoft Corporation)
3 mr97310c; C:\Windows\System32\DRIVERS\mr97310c.sys [116992 2008-03-27] (Mars Semiconductor Corp.)
3 PSI; C:\Windows\System32\DRIVERS\psi_mf.sys [15544 2010-09-01] (Secunia)
3 pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [16472 2011-09-02] ()
3 pwdspio; \??\C:\Windows\system32\pwdspio.sys [11104 2011-09-02] ()
3 R300; C:\Windows\System32\DRIVERS\atikmdag.sys [9182208 2012-02-14] (Advanced Micro Devices, Inc.)
2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [27648 2008-07-21] (Windows ® Codename Longhorn DDK provider)
3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [12672 2007-04-09] (LG Electronics Inc.)
3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [21248 2007-04-09] (LG Electronics Inc.)
3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [22912 2007-04-09] (LG Electronics Inc.)
2 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7}; \??\C:\Program Files\CyberLink\PowerDVD DX\000.fcl [61424 2008-06-26] (Cyberlink Corp.)
1 eeCtrl; [x]
3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x]
2 MCSTRM; [x]
3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [x]
3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [x]
3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x]
3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x]
3 PCDSRVC{E9D79540-57D5953E-06020101}_0; \??\c:\program files\dell support center\pcdsrvc.pkms [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2012-10-30 19:31 - 2012-10-30 19:31 - 00000000 ____D C:\FRST
2012-10-29 18:31 - 2012-10-29 18:31 - 00000000 ____D C:\Program Files\Common Files\xing shared
2012-10-29 18:14 - 2012-10-29 18:14 - 00000000 ____D C:\users\TEMP.Kelly-PC
2012-10-28 17:17 - 2012-10-28 17:17 - 00000000 ____D C:\Users\Kelly\AppData\Roaming\AVG2013
2012-10-28 17:17 - 2012-10-28 17:17 - 00000000 ____D C:\Users\Kelly\AppData\Local\Avg2013
2012-10-28 16:54 - 2012-10-28 16:54 - 00000804 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2012-10-28 16:48 - 2012-10-28 16:55 - 00000000 ____D C:\Users\All Users\AVG2013
2012-10-28 11:22 - 2012-10-28 11:22 - 00002017 ____A C:\Users\Kelly\Desktop\aswMBR.txt
2012-10-28 11:22 - 2012-10-28 11:22 - 00000512 ____A C:\Users\Kelly\Desktop\MBR.dat
2012-10-28 11:00 - 2012-10-28 11:00 - 04731392 ____A (AVAST Software) C:\Users\Kelly\Downloads\aswMBR.exe
2012-10-28 10:38 - 2012-10-29 13:03 - 00000000 ____D C:\TDSSKiller_Quarantine
2012-10-27 10:58 - 2012-10-27 10:58 - 00000000 ____D C:\Users\Kelly\AppData\Roaming\EurekaLog
2012-10-27 03:31 - 2012-10-27 03:33 - 00000000 ____D C:\Users\Kelly\Downloads\EmsisoftEmergencyKit
2012-10-26 20:18 - 2012-10-26 17:15 - 01593776 ____A (Emsisoft GmbH) C:\Users\Kelly\Desktop\start.exe
2012-10-26 20:18 - 2012-10-26 17:15 - 00003902 ____A C:\Users\Kelly\Desktop\readme.txt
2012-10-26 20:18 - 2012-10-26 17:15 - 00000056 ____A C:\Users\Kelly\Desktop\EmergencyKitScanner.bat
2012-10-26 20:17 - 2012-10-26 17:15 - 00000060 ____A C:\Users\Kelly\Desktop\CommandlineScanner.bat
2012-10-26 17:15 - 2012-10-26 17:15 - 00000000 ____D C:\Users\Kelly\Desktop\Languages
2012-10-26 17:14 - 2012-10-29 01:05 - 00000000 ____D C:\Users\Kelly\Desktop\Run
2012-10-26 17:00 - 2012-10-26 17:11 - 236188763 ____A C:\Users\Kelly\Downloads\EmsisoftEmergencyKit.zip
2012-10-26 11:31 - 2012-10-26 11:32 - 00000000 ____D C:\Users\Kelly\AppData\Roaming\hellomoto
2012-10-26 11:31 - 2012-10-26 11:31 - 00052736 ____A (AutoIt Team) C:\Users\Kelly\zyqvqvwldesy.exe
2012-10-24 04:48 - 2012-10-24 04:48 - 00002677 ____A C:\Users\Kelly\Desktop\Microsoft Office Word 2007.lnk
2012-10-17 18:07 - 2012-10-17 18:07 - 00014000 ____A C:\Users\Kelly\Documents\Backup of Lindsay Financial hardship.wbk
2012-10-12 13:27 - 2012-10-28 10:35 - 02213464 ____A (Kaspersky Lab ZAO) C:\Users\Kelly\Desktop\TDSSKiller.exe
2012-10-09 19:19 - 2012-09-13 05:28 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2012-10-09 19:19 - 2012-08-29 03:27 - 03602816 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2012-10-09 19:19 - 2012-08-29 03:27 - 03550080 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-10-09 19:19 - 2012-08-24 07:53 - 00172544 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-10-09 19:19 - 2012-06-01 16:02 - 00985088 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2012-10-09 19:19 - 2012-06-01 16:02 - 00133120 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2012-10-09 19:19 - 2012-06-01 16:02 - 00098304 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2012-10-07 10:06 - 2012-10-08 18:51 - 00000000 ____D C:\Users\Kelly\Documents\skate night
2012-10-04 23:26 - 2012-10-04 23:26 - 00093536 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgmfx86.sys
2012-10-03 07:20 - 2012-10-03 07:20 - 00000000 ____D C:\Users\Kelly\AppData\Roaming\.mono
2012-10-03 07:20 - 2012-10-03 07:20 - 00000000 ____D C:\Users\All Users\.mono
2012-10-03 07:16 - 2012-10-03 07:16 - 00001251 ____A C:\Users\Kelly\Desktop\Salamence Rock's!!!.lnk
2012-10-03 07:12 - 2012-10-03 07:12 - 00000000 ____D C:\Users\Kelly\AppData\Roaming\Pokémon Trading Card Game Online
2012-10-02 16:16 - 2012-10-02 16:16 - 00294400 ____N C:\Users\Kelly\Documents\Roller Skate Parent letter.pub
2012-10-02 16:16 - 2012-10-02 16:16 - 00178176 ____N C:\Users\Kelly\Documents\Skate Night Sticker 2012.pub
2012-10-01 23:30 - 2012-10-01 23:30 - 00159712 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgldx86.sys

==================== 3 Months Modified Files ==================

2012-10-30 15:22 - 2010-06-10 20:49 - 00000012 ____A C:\Windows\bthservsdp.dat
2012-10-30 15:22 - 2006-11-02 05:01 - 00032590 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-10-30 15:22 - 2006-11-02 05:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-10-30 15:22 - 2006-11-02 04:47 - 00003744 ____A C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2012-10-30 15:22 - 2006-11-02 04:47 - 00003744 ____A C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2012-10-30 15:21 - 2008-10-23 00:38 - 02038260 ____A C:\Windows\WindowsUpdate.log
2012-10-30 15:19 - 2012-04-22 12:37 - 00000506 ____A C:\Windows\Tasks\SystemToolsDailyTest.job
2012-10-30 14:42 - 2010-04-14 16:58 - 00001356 ____A C:\Users\Kelly\AppData\Local\d3d9caps.dat
2012-10-29 18:32 - 2012-04-01 04:01 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-10-29 18:30 - 2012-02-27 15:54 - 00198864 ____A (RealNetworks, Inc.) C:\Windows\System32\rmoc3260.dll
2012-10-29 18:28 - 2012-02-27 15:54 - 00006656 ____A (RealNetworks, Inc.) C:\Windows\System32\pndx5016.dll
2012-10-29 18:28 - 2012-02-27 15:54 - 00005632 ____A (RealNetworks, Inc.) C:\Windows\System32\pndx5032.dll
2012-10-29 18:27 - 2012-02-27 15:54 - 00272896 ____A (Progressive Networks) C:\Windows\System32\pncrt.dll
2012-10-29 18:17 - 2009-07-04 15:02 - 00000882 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-10-29 18:16 - 2012-05-04 12:12 - 00000410 ____A C:\Windows\Tasks\PC Optimizer Pro startups.job
2012-10-29 18:16 - 2008-10-23 04:51 - 00000276 ____A C:\Windows\Tasks\RtlNICDiagVistaStart.job
2012-10-29 18:08 - 2012-08-22 20:57 - 00016914 ____A C:\Windows\PFRO.log
2012-10-29 12:54 - 2012-03-31 16:44 - 00000370 ____A C:\rkill.log
2012-10-28 16:54 - 2012-10-28 16:54 - 00000804 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2012-10-28 14:48 - 2009-07-04 15:02 - 00000886 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-10-28 13:59 - 2010-01-06 19:35 - 00000442 ____A C:\Windows\Tasks\ParetoLogic Registration.job
2012-10-28 11:22 - 2012-10-28 11:22 - 00002017 ____A C:\Users\Kelly\Desktop\aswMBR.txt
2012-10-28 11:22 - 2012-10-28 11:22 - 00000512 ____A C:\Users\Kelly\Desktop\MBR.dat
2012-10-28 11:00 - 2012-10-28 11:00 - 04731392 ____A (AVAST Software) C:\Users\Kelly\Downloads\aswMBR.exe
2012-10-28 10:35 - 2012-10-12 13:27 - 02213464 ____A (Kaspersky Lab ZAO) C:\Users\Kelly\Desktop\TDSSKiller.exe
2012-10-26 17:15 - 2012-10-26 20:18 - 01593776 ____A (Emsisoft GmbH) C:\Users\Kelly\Desktop\start.exe
2012-10-26 17:15 - 2012-10-26 20:18 - 00003902 ____A C:\Users\Kelly\Desktop\readme.txt
2012-10-26 17:15 - 2012-10-26 20:18 - 00000056 ____A C:\Users\Kelly\Desktop\EmergencyKitScanner.bat
2012-10-26 17:15 - 2012-10-26 20:17 - 00000060 ____A C:\Users\Kelly\Desktop\CommandlineScanner.bat
2012-10-26 17:11 - 2012-10-26 17:00 - 236188763 ____A C:\Users\Kelly\Downloads\EmsisoftEmergencyKit.zip
2012-10-26 11:46 - 2012-04-22 12:37 - 00000564 ____A C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2012-10-26 11:31 - 2012-10-26 11:31 - 00052736 ____A (AutoIt Team) C:\Users\Kelly\zyqvqvwldesy.exe
2012-10-26 10:10 - 2012-08-14 05:44 - 00025816 ____A C:\Users\Kelly\AppData\Roaming\DreamCalc DC4G.dat
2012-10-26 09:08 - 2010-05-28 08:27 - 00000868 ____A C:\Windows\Tasks\Google Software Updater.job
2012-10-25 23:04 - 2009-06-09 19:27 - 00000336 ____A C:\Windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job
2012-10-24 18:14 - 2011-02-20 17:02 - 00000314 ____A C:\Windows\Tasks\Spybot - Search & Destroy Updater - Scheduled Task.job
2012-10-24 04:48 - 2012-10-24 04:48 - 00002677 ____A C:\Users\Kelly\Desktop\Microsoft Office Word 2007.lnk
2012-10-17 18:07 - 2012-10-17 18:07 - 00014000 ____A C:\Users\Kelly\Documents\Backup of Lindsay Financial hardship.wbk
2012-10-17 13:07 - 2012-01-25 17:55 - 00638512 ____A C:\Users\Kelly\2011 Brown J Form 1040 Individual Tax Return.tax2011
2012-10-11 12:53 - 2011-01-30 16:17 - 00002125 ____A C:\Users\All Users\hpzinstall.log
2012-10-11 12:41 - 2011-01-30 16:17 - 00207062 ____A C:\Windows\hpoins46.dat
2012-10-10 01:31 - 2012-04-01 04:01 - 00696760 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2012-10-10 01:31 - 2012-03-31 20:39 - 00073656 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-10-09 23:09 - 2006-11-02 02:24 - 62968832 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2012-10-04 23:26 - 2012-10-04 23:26 - 00093536 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgmfx86.sys
2012-10-03 07:16 - 2012-10-03 07:16 - 00001251 ____A C:\Users\Kelly\Desktop\Salamence Rock's!!!.lnk
2012-10-02 16:16 - 2012-10-02 16:16 - 00294400 ____N C:\Users\Kelly\Documents\Roller Skate Parent letter.pub
2012-10-02 16:16 - 2012-10-02 16:16 - 00178176 ____N C:\Users\Kelly\Documents\Skate Night Sticker 2012.pub
2012-10-01 23:30 - 2012-10-01 23:30 - 00159712 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgldx86.sys
2012-10-01 23:04 - 2011-07-27 15:10 - 00001945 ____A C:\Windows\epplauncher.mif
2012-09-29 15:54 - 2011-04-25 17:25 - 00022856 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2012-09-25 05:35 - 2006-11-02 02:33 - 00772636 ____A C:\Windows\System32\PerfStringBackup.INI
2012-09-20 23:46 - 2012-09-20 23:46 - 00177376 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avglogx.sys
2012-09-20 23:46 - 2012-09-20 23:46 - 00164832 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgtdix.sys
2012-09-20 23:45 - 2012-09-20 23:45 - 00055008 ____A (AVG Technologies CZ, s.r.o. ) C:\Windows\System32\Drivers\avgidshx.sys
2012-09-20 23:45 - 2012-09-20 23:45 - 00019936 ____A (AVG Technologies CZ, s.r.o. ) C:\Windows\System32\Drivers\avgidsshimx.sys
2012-09-20 19:17 - 2012-09-20 19:17 - 00000217 ____A C:\Users\Kelly\Desktop\Connexus Log In.url
2012-09-20 06:37 - 2012-09-20 06:37 - 00011054 ____A C:\Users\Kelly\Documents\Backup of One day there was an accident on our go kart.wbk
2012-09-13 23:05 - 2012-09-13 23:05 - 00035552 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgrkx86.sys
2012-09-13 05:28 - 2012-10-09 19:19 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2012-09-12 23:11 - 2012-09-12 23:11 - 00177504 ____A (AVG Technologies CZ, s.r.o. ) C:\Windows\System32\Drivers\avgidsdriverx.sys
2012-09-04 01:42 - 2012-09-04 01:42 - 00027496 ____A (AVG Technologies) C:\Windows\System32\Drivers\avgtpx86.sys
2012-08-30 18:03 - 2012-08-30 18:03 - 00193552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\MpFilter.sys
2012-08-30 18:03 - 2011-04-27 11:25 - 00099272 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\NisDrvWFP.sys
2012-08-30 17:36 - 2012-08-30 17:35 - 23478880 ____A (University of Georgia) C:\Users\Kelly\Downloads\JExamStudent3_windows_3_3.exe
2012-08-30 10:46 - 2012-08-30 10:23 - 00000024 ____A C:\Users\Kelly\random.dat
2012-08-30 10:23 - 2012-08-30 10:23 - 00000044 ____A C:\Users\Kelly\jagex_cl_runescape_LIVE.dat
2012-08-29 03:27 - 2012-10-09 19:19 - 03602816 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2012-08-29 03:27 - 2012-10-09 19:19 - 03550080 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-08-25 14:54 - 2012-08-25 14:54 - 00000911 ____A C:\Users\Kelly\Desktop\Internet Explorer.lnk
2012-08-24 07:53 - 2012-10-09 19:19 - 00172544 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-08-23 23:27 - 2012-09-21 23:00 - 12319744 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-08-23 23:03 - 2012-09-21 23:00 - 09738240 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-08-23 22:59 - 2012-09-21 23:00 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-23 22:51 - 2012-09-21 23:01 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-08-23 22:51 - 2012-09-21 23:00 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-08-23 22:51 - 2012-09-21 23:00 - 01103872 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-08-23 22:49 - 2012-09-21 23:00 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-23 22:48 - 2012-09-21 23:01 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-23 22:45 - 2012-09-21 23:01 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-08-23 22:44 - 2012-09-21 23:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-08-23 22:44 - 2012-09-21 23:00 - 01793024 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-23 22:43 - 2012-09-21 23:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-23 22:40 - 2012-09-21 23:01 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-23 15:49 - 2012-08-23 15:41 - 00444568 ____A C:\Users\Kelly\Documents\Welcome to Watkinsville.pptx
2012-08-23 06:01 - 2012-08-23 06:01 - 00000000 ____A C:\Windows\setuperr.log
2012-08-23 06:01 - 2012-08-23 06:01 - 00000000 ____A C:\Windows\setupact.log
2012-08-22 20:58 - 2012-08-22 20:57 - 00459160 ____A C:\Windows\System32\FNTCACHE.DAT
2012-08-22 20:58 - 2012-08-22 20:31 - 00129160 ____A C:\Users\Kelly\AppData\Local\GDIPFONTCACHEV1.DAT
2012-08-22 20:49 - 2012-08-22 07:33 - 3565158400 ____A C:\Users\Kelly\Documents\clip0015.avi
2012-08-21 17:40 - 2009-02-09 22:50 - 00050176 ____A C:\Users\Kelly\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-21 17:30 - 2012-08-21 17:30 - 16464650 ____A C:\Users\Kelly\Documents\clip0014.avi
2012-08-21 12:19 - 2012-08-21 12:12 - 2032612458 ____A C:\Users\Kelly\Documents\clip0013.avi
2012-08-21 12:12 - 2012-08-21 12:01 - 2855460374 ____A C:\Users\Kelly\Documents\clip0012.avi
2012-08-21 12:01 - 2012-08-21 11:52 - 2524229610 ____A C:\Users\Kelly\Documents\clip0011.avi
2012-08-21 11:52 - 2012-08-21 11:41 - 3161254118 ____A C:\Users\Kelly\Documents\clip0010.avi
2012-08-21 11:40 - 2012-08-21 11:30 - 2302842254 ____A C:\Users\Kelly\Documents\clip0009.avi
2012-08-21 11:29 - 2012-08-21 11:29 - 14715954 ____A C:\Users\Kelly\Documents\clip0008.avi
2012-08-21 11:28 - 2012-08-21 11:28 - 00462868 ____A C:\Users\Kelly\Documents\clip0007.avi
2012-08-21 11:27 - 2012-08-21 11:27 - 01434432 ____A C:\Users\Kelly\Documents\clip0005.avi
2012-08-21 11:27 - 2012-08-21 11:27 - 01117278 ____A C:\Users\Kelly\Documents\clip0006.avi
2012-08-21 11:26 - 2012-08-21 11:26 - 01294356 ____A C:\Users\Kelly\Documents\clip0004.avi
2012-08-21 11:26 - 2012-08-21 11:26 - 00553462 ____A C:\Users\Kelly\Documents\clip0003.avi
2012-08-21 11:25 - 2012-08-21 11:24 - 07016390 ____A C:\Users\Kelly\Documents\clip0002.avi
2012-08-21 11:20 - 2012-08-21 11:20 - 06613566 ____A C:\Users\Kelly\Documents\clip0001.avi
2012-08-21 11:19 - 2012-03-02 07:36 - 00000743 ____A C:\user.js
2012-08-19 05:48 - 2012-08-19 05:48 - 00002108 ____A C:\Users\Kelly\AppData\Local\rx_audio.Cache
2012-08-17 14:48 - 2012-08-17 14:48 - 00013355 ____A C:\Users\Kelly\Documents\science.xlsx
2012-08-08 04:20 - 2012-08-08 04:20 - 00000813 ____A C:\Users\Kelly\Desktop\DreamCalc.lnk
2012-08-07 18:44 - 2012-08-07 18:44 - 00000201 ____A C:\Users\Kelly\Desktop\Free Online School from Home Connections Academy.url
2012-08-03 11:35 - 2006-11-02 02:22 - 74448896 ____A C:\Windows\System32\config\software_previous
2012-08-03 11:35 - 2006-11-02 02:22 - 54001664 ____A C:\Windows\System32\config\system_previous
2012-08-03 11:29 - 2006-11-02 02:22 - 39321600 ____A C:\Windows\System32\config\components_previous
2012-08-03 11:29 - 2006-11-02 02:22 - 00262144 ____A C:\Windows\System32\config\sam_previous
2012-08-03 07:47 - 2012-08-03 07:47 - 00000227 ____A C:\Users\David\Desktop\Sound - Shortcut.lnk
2012-08-02 22:31 - 2006-11-02 02:22 - 04718592 ____A C:\Windows\System32\config\default_previous


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-10-06 18:41:34
Restore point made on: 2012-10-08 23:16:05
Restore point made on: 2012-10-09 23:01:19
Restore point made on: 2012-10-10 20:00:19
Restore point made on: 2012-10-11 14:04:41
Restore point made on: 2012-10-12 20:00:36
Restore point made on: 2012-10-13 20:54:55
Restore point made on: 2012-10-13 22:22:05
Restore point made on: 2012-10-15 13:17:47
Restore point made on: 2012-10-16 08:53:12
Restore point made on: 2012-10-17 07:38:56
Restore point made on: 2012-10-17 20:00:29
Restore point made on: 2012-10-18 20:00:51
Restore point made on: 2012-10-19 20:00:21
Restore point made on: 2012-10-20 20:00:55
Restore point made on: 2012-10-20 21:51:10
Restore point made on: 2012-10-22 14:13:16
Restore point made on: 2012-10-23 20:00:30
Restore point made on: 2012-10-24 18:35:17
Restore point made on: 2012-10-25 20:00:18
Restore point made on: 2012-10-27 11:55:04
Restore point made on: 2012-10-28 11:38:46
Restore point made on: 2012-10-28 16:47:52
Restore point made on: 2012-10-28 16:49:19

==================== Memory info ===========================

Percentage of memory in use: 9%
Total physical RAM: 4094.26 MB
Available physical RAM: 3689.09 MB
Total Pagefile: 3959.6 MB
Available Pagefile: 3805.02 MB
Total Virtual: 2047.88 MB
Available Virtual: 1966.31 MB

==================== Partitions =============================

1 Drive c: (OS) (Fixed) (Total:581.1 GB) (Free:299.88 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (Feb 16 2012) (CDROM) (Total:0.69 GB) (Free:0.63 GB) UDF
7 Drive i: () (Removable) (Total:1.86 GB) (Free:0.52 GB) FAT32
8 Drive x: (RECOVERY) (Fixed) (Total:15 GB) (Free:7.46 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 596 GB 0 B
Disk 1 No Media 0 B 0 B
Disk 2 No Media 0 B 0 B
Disk 3 No Media 0 B 0 B
Disk 4 No Media 0 B 0 B
Disk 5 Online 1908 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 71 MB 32 KB
Partition 2 Primary 15 GB 71 MB
Partition 3 Primary 581 GB 15 GB

=========================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 8 FAT Partition 71 MB Healthy Hidden

=========================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 X RECOVERY NTFS Partition 15 GB Healthy Boot

=========================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 581 GB Healthy

=========================================================

Partitions of Disk 5:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 1908 MB 16 KB

=========================================================

Disk: 5
Partition 1
Type : 06
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 7 I FAT32 Removable 1908 MB Healthy

=========================================================

Last Boot: 2012-10-30 14:39

==================== End Of Log ============================

#8 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:08:55 PM

Posted 30 October 2012 - 08:18 PM

Hello,

Please boot into Safemode with Networkingand run the following tools and post their logs.



Now reboot into Safe Mode with Networking.
This can be done tapping the F8 key as soon as you start your computer
You will be brought to a menu where you can choose to boot into safe mode.
Make sure you choose the option with networking support.
Please see here for additional details.


1.
Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

2.
Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • Posted Image
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    Posted Image
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


Things to include in your next reply::
TDssKiller log
Combofix.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#9 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 31 October 2012 - 03:55 PM

I am trying to run the TDSS and when it starts to scan the FBI screen comes up after about 10 seconds of scanning. Is the scan still running in the background? Do I leave it alone?
Thanks,
Pepro1122

#10 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:08:55 PM

Posted 31 October 2012 - 06:31 PM

Hello,

This is happening in safemode? Try running Combofix in safemode.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#11 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 31 October 2012 - 11:04 PM

When I try to begin combofix I get warnings about AVG 2013 spyware scanner and windows live one are scanner. I followed all instructions for each virus protection and disabled resident tea timer on spy bot S&D. When I try to temp disable avg there is no options like the instructions are saying. I get a black and white and gray screen with scan instructions only. It is not the normal screen. This was all done in safe mode. I just tried in normal mode but fbi came up. I am sending the TDSS log next. I'm working from ipad. Log is on computer notepad. It's coming next post in few minutes.
Thanks
Pepro1122

#12 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 31 October 2012 - 11:22 PM

16:47:36.0441 5492 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
16:47:36.0909 5492 ============================================================
16:47:36.0909 5492 Current date / time: 2012/10/31 16:47:36.0909
16:47:36.0909 5492 SystemInfo:
16:47:36.0909 5492
16:47:36.0909 5492 OS Version: 6.0.6002 ServicePack: 2.0
16:47:36.0909 5492 Product type: Workstation
16:47:36.0909 5492 ComputerName: KELLY-PC
16:47:36.0909 5492 UserName: Kelly
16:47:36.0909 5492 Windows directory: C:\Windows
16:47:36.0909 5492 System windows directory: C:\Windows
16:47:36.0909 5492 Processor architecture: Intel x86
16:47:36.0909 5492 Number of processors: 2
16:47:36.0909 5492 Page size: 0x1000
16:47:36.0909 5492 Boot type: Normal boot
16:47:36.0909 5492 ============================================================
16:47:41.0059 5492 BG loaded
16:47:41.0839 5492 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:47:41.0917 5492 ============================================================
16:47:41.0917 5492 \Device\Harddisk0\DR0:
16:47:41.0948 5492 MBR partitions:
16:47:41.0948 5492 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23800, BlocksNum 0x1E00000
16:47:41.0948 5492 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E23800, BlocksNum 0x48A34000
16:47:41.0948 5492 ============================================================
16:47:42.0120 5492 C: <-> \Device\Harddisk0\DR0\Partition2
16:47:42.0166 5492 D: <-> \Device\Harddisk0\DR0\Partition1
16:47:42.0166 5492 ============================================================
16:47:42.0166 5492 Initialize success
16:47:42.0166 5492 ============================================================
16:50:21.0954 5552 ============================================================
16:50:21.0956 5552 Scan started
16:50:21.0956 5552 Mode: Manual; SigCheck; TDLFS;
16:50:21.0956 5552 ============================================================
16:50:24.0146 5552 ================ Scan system memory ========================
16:50:24.0146 5552 System memory - ok
16:50:24.0146 5552 ================ Scan services =============================
16:50:24.0974 5552 [ F7EABCA8375EA2DC6F35C4BCA4757515 ] A2DDA C:\Users\Kelly\Desktop\Run\a2ddax86.sys
16:50:25.0657 5552 A2DDA - ok
16:50:32.0918 5552 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
16:50:33.0044 5552 ACPI - ok
16:50:33.0696 5552 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:50:33.0707 5552 AdobeARMservice - ok
16:50:34.0254 5552 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:50:34.0462 5552 AdobeFlashPlayerUpdateSvc - ok
16:50:34.0876 5552 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:50:35.0351 5552 adp94xx - ok
16:50:35.0589 5552 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:50:37.0536 5552 adpahci - ok
16:50:37.0801 5552 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
16:50:38.0005 5552 adpu160m - ok
16:50:38.0159 5552 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:50:38.0375 5552 adpu320 - ok
16:50:38.0683 5552 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:50:38.0703 5552 AeLookupSvc - ok
16:50:38.0962 5552 [ B6D7239E7AF6D1B64C790A28067DC6E5 ] AERTFilters C:\Windows\system32\AERTSrv.exe
16:50:39.0070 5552 AERTFilters - ok
16:50:39.0309 5552 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
16:50:39.0374 5552 AFD - ok
16:50:39.0579 5552 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:50:39.0641 5552 agp440 - ok
16:50:39.0708 5552 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
16:50:39.0749 5552 aic78xx - ok
16:50:39.0769 5552 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
16:50:39.0822 5552 ALG - ok
16:50:39.0890 5552 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
16:50:41.0034 5552 aliide - ok
16:50:42.0108 5552 [ CDE41D99DB840FF9454FC981EBD0EC50 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:50:42.0125 5552 AMD External Events Utility - ok
16:50:42.0373 5552 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
16:50:42.0463 5552 amdagp - ok
16:50:42.0564 5552 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
16:50:42.0640 5552 amdide - ok
16:50:42.0824 5552 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
16:50:43.0031 5552 AmdK7 - ok
16:50:43.0136 5552 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:50:43.0298 5552 AmdK8 - ok
16:50:49.0058 5552 [ FFD082F1F1D4FF5C87F66DF62486BCFA ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:50:51.0050 5552 amdkmdag - ok
16:50:51.0970 5552 [ C541DA5B72FA638469E8DC1E66079330 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:50:52.0253 5552 amdkmdap - ok
16:50:52.0365 5552 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
16:50:52.0499 5552 Appinfo - ok
16:50:53.0185 5552 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:50:53.0228 5552 Apple Mobile Device - ok
16:50:53.0461 5552 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
16:50:53.0587 5552 arc - ok
16:50:53.0684 5552 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:50:56.0121 5552 arcsas - ok
16:50:56.0395 5552 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:50:56.0575 5552 AsyncMac - ok
16:50:56.0638 5552 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
16:50:56.0650 5552 atapi - ok
16:50:59.0110 5552 [ FFD082F1F1D4FF5C87F66DF62486BCFA ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:50:59.0794 5552 atikmdag - ok
16:50:59.0902 5552 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:50:59.0922 5552 AudioEndpointBuilder - ok
16:50:59.0928 5552 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:51:00.0016 5552 Audiosrv - ok
16:51:03.0471 5552 [ B41F0E54105801538D56623271A0AE49 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
16:51:04.0255 5552 AVGIDSAgent - ok
16:51:04.0615 5552 [ 2F47851015D8837976E481F6DAA46A67 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
16:51:04.0645 5552 AVGIDSDriver - ok
16:51:04.0866 5552 [ 303BDE0DCDC04CE597C6C1CD06C6F186 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
16:51:04.0912 5552 AVGIDSHX - ok
16:51:05.0127 5552 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
16:51:05.0137 5552 AVGIDSShim - ok
16:51:05.0460 5552 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
16:51:05.0540 5552 Avgldx86 - ok
16:51:05.0776 5552 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
16:51:05.0959 5552 Avglogx - ok
16:51:05.0992 5552 [ 6DF7236D3A16C8417FF72F2EB2ADD244 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
16:51:06.0099 5552 Avgmfx86 - ok
16:51:06.0177 5552 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
16:51:06.0215 5552 Avgrkx86 - ok
16:51:06.0279 5552 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
16:51:06.0306 5552 Avgtdix - ok
16:51:06.0368 5552 [ 6F76908F065C3C151C4BFCA7DFD86979 ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
16:51:06.0381 5552 avgtp - ok
16:51:06.0493 5552 [ 0D2EB149AFF89A307E5D82D0A2B78439 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
16:51:06.0541 5552 avgwd - ok
16:51:07.0804 5552 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
16:51:08.0058 5552 BcmSqlStartupSvc - ok
16:51:08.0223 5552 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
16:51:08.0280 5552 Beep - ok
16:51:08.0508 5552 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
16:51:09.0054 5552 BFE - ok
16:51:09.0323 5552 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
16:51:09.0416 5552 BITS - ok
16:51:09.0462 5552 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
16:51:09.0573 5552 blbdrive - ok
16:51:10.0014 5552 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:51:10.0053 5552 Bonjour Service - ok
16:51:10.0152 5552 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:51:10.0229 5552 bowser - ok
16:51:10.0716 5552 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
16:51:10.0818 5552 BrFiltLo - ok
16:51:10.0926 5552 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
16:51:11.0126 5552 BrFiltUp - ok
16:51:11.0297 5552 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
16:51:11.0371 5552 Browser - ok
16:51:11.0626 5552 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
16:51:19.0755 5552 Brserid - ok
16:51:19.0891 5552 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
16:51:20.0022 5552 BrSerWdm - ok
16:51:20.0076 5552 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
16:51:20.0719 5552 BrUsbMdm - ok
16:51:20.0816 5552 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
16:51:21.0026 5552 BrUsbSer - ok
16:51:21.0145 5552 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:51:21.0632 5552 BTHMODEM - ok
16:51:21.0807 5552 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
16:51:22.0004 5552 BthServ - ok
16:51:22.0231 5552 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:51:22.0457 5552 cdfs - ok
16:51:22.0691 5552 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:51:22.0737 5552 cdrom - ok
16:51:23.0405 5552 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
16:51:23.0439 5552 CertPropSvc - ok
16:51:23.0604 5552 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
16:51:23.0724 5552 circlass - ok
16:51:23.0813 5552 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
16:51:24.0043 5552 CLFS - ok
16:51:25.0137 5552 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:51:25.0375 5552 clr_optimization_v2.0.50727_32 - ok
16:51:26.0830 5552 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:51:28.0019 5552 clr_optimization_v4.0.30319_32 - ok
16:51:28.0124 5552 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:51:28.0314 5552 cmdide - ok
16:51:28.0462 5552 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
16:51:28.0567 5552 Compbatt - ok
16:51:28.0571 5552 COMSysApp - ok
16:51:28.0703 5552 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:51:28.0832 5552 crcdisk - ok
16:51:28.0915 5552 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
16:51:29.0062 5552 Crusoe - ok
16:51:29.0323 5552 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:51:29.0485 5552 CryptSvc - ok
16:51:29.0975 5552 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:51:30.0319 5552 DcomLaunch - ok
16:51:30.0731 5552 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:51:30.0899 5552 DfsC - ok
16:51:32.0491 5552 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
16:51:35.0046 5552 DFSR - ok
16:51:35.0599 5552 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
16:51:35.0665 5552 Dhcp - ok
16:51:35.0842 5552 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
16:51:36.0421 5552 disk - ok
16:51:36.0735 5552 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:51:36.0816 5552 Dnscache - ok
16:51:37.0337 5552 [ 13511564CAC5A005255765E322C16967 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:51:37.0362 5552 DockLoginService - ok
16:51:37.0531 5552 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:51:37.0774 5552 dot3svc - ok
16:51:38.0069 5552 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
16:51:38.0222 5552 DPS - ok
16:51:38.0358 5552 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:51:38.0520 5552 drmkaud - ok
16:51:38.0916 5552 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:51:40.0449 5552 DXGKrnl - ok
16:51:40.0825 5552 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
16:51:40.0902 5552 e1express - ok
16:51:41.0004 5552 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
16:51:41.0093 5552 E1G60 - ok
16:51:41.0216 5552 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
16:51:41.0287 5552 EapHost - ok
16:51:41.0536 5552 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
16:51:41.0645 5552 Ecache - ok
16:51:42.0159 5552 eeCtrl - ok
16:51:42.0534 5552 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:51:42.0588 5552 ehRecvr - ok
16:51:42.0615 5552 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
16:51:42.0793 5552 ehSched - ok
16:51:42.0816 5552 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
16:51:42.0848 5552 ehstart - ok
16:51:43.0072 5552 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:51:43.0205 5552 elxstor - ok
16:51:43.0720 5552 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
16:51:45.0024 5552 EMDMgmt - ok
16:51:45.0297 5552 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:51:45.0706 5552 ErrDev - ok
16:51:46.0199 5552 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
16:51:46.0404 5552 EventSystem - ok
16:51:46.0892 5552 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
16:51:49.0076 5552 exfat - ok
16:51:49.0448 5552 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:51:49.0469 5552 fastfat - ok
16:51:49.0605 5552 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:51:49.0731 5552 fdc - ok
16:51:49.0858 5552 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
16:51:49.0883 5552 fdPHost - ok
16:51:49.0899 5552 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
16:51:50.0028 5552 FDResPub - ok
16:51:50.0105 5552 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:51:50.0131 5552 FileInfo - ok
16:51:50.0219 5552 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:51:50.0446 5552 Filetrace - ok
16:51:50.0718 5552 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:51:51.0020 5552 flpydisk - ok
16:51:51.0210 5552 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:51:51.0269 5552 FltMgr - ok
16:51:51.0769 5552 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
16:51:52.0122 5552 FontCache - ok
16:51:52.0715 5552 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:51:52.0844 5552 FontCache3.0.0.0 - ok
16:51:53.0149 5552 [ 9513B437B7ADB1E6065B7F0D83D11ECF ] FreeAgentGoNext Service C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
16:51:53.0177 5552 FreeAgentGoNext Service - ok
16:51:53.0305 5552 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:51:55.0223 5552 Fs_Rec - ok
16:51:55.0279 5552 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:51:56.0073 5552 gagp30kx - ok
16:51:56.0249 5552 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:51:56.0259 5552 GEARAspiWDM - ok
16:51:57.0323 5552 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
16:51:57.0353 5552 GoogleDesktopManager-051210-111108 - ok
16:51:57.0506 5552 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
16:51:58.0075 5552 GoToAssist - ok
16:51:58.0479 5552 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
16:51:58.0720 5552 gpsvc - ok
16:51:59.0450 5552 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9bd1134cd28a0 C:\Program Files\Google\Update\GoogleUpdate.exe
16:52:00.0897 5552 gupdate1c9bd1134cd28a0 - ok
16:52:00.0918 5552 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
16:52:00.0927 5552 gupdatem - ok
16:52:00.0987 5552 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:52:01.0004 5552 gusvc - ok
16:52:01.0307 5552 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:52:01.0370 5552 HdAudAddService - ok
16:52:01.0552 5552 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:52:01.0971 5552 HDAudBus - ok
16:52:02.0043 5552 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:52:02.0443 5552 HidBth - ok
16:52:02.0594 5552 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
16:52:02.0973 5552 HidIr - ok
16:52:03.0093 5552 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
16:52:03.0277 5552 hidserv - ok
16:52:03.0336 5552 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:52:03.0576 5552 HidUsb - ok
16:52:03.0626 5552 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:52:03.0681 5552 hkmsvc - ok
16:52:03.0738 5552 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
16:52:03.0791 5552 HpCISSs - ok
16:52:04.0291 5552 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
16:52:04.0332 5552 hpqcxs08 - ok
16:52:04.0397 5552 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
16:52:04.0407 5552 hpqddsvc - ok
16:52:04.0605 5552 [ A04F4AC48895774A2CF9D1C9EAAACEF0 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
16:52:04.0627 5552 HPSLPSVC - ok
16:52:04.0730 5552 [ 99F85640054BA65190B860D878A7C9AE ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
16:52:04.0806 5552 HSF_DPV - ok
16:52:04.0915 5552 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
16:52:04.0931 5552 HSXHWBS2 - ok
16:52:05.0057 5552 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:52:05.0149 5552 HTTP - ok
16:52:05.0246 5552 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
16:52:05.0274 5552 i2omp - ok
16:52:05.0399 5552 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:52:05.0568 5552 i8042prt - ok
16:52:05.0670 5552 [ DB0CC620B27A928D968C1A1E9CD9CB87 ] iaStor C:\Windows\system32\drivers\iastor.sys
16:52:05.0774 5552 iaStor - ok
16:52:05.0802 5552 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
16:52:05.0838 5552 iaStorV - ok
16:52:06.0393 5552 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:52:06.0617 5552 idsvc - ok
16:52:06.0690 5552 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:52:06.0732 5552 iirsp - ok
16:52:07.0000 5552 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
16:52:07.0075 5552 IKEEXT - ok
16:52:07.0322 5552 [ 32ABC54D0DDE1A8885C9439537DD3BAD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
16:52:07.0432 5552 IntcAzAudAddService - ok
16:52:07.0550 5552 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
16:52:07.0562 5552 intelide - ok
16:52:07.0626 5552 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:52:07.0673 5552 intelppm - ok
16:52:08.0140 5552 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
16:52:08.0148 5552 IntuitUpdateService - ok
16:52:08.0361 5552 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
16:52:08.0377 5552 IntuitUpdateServiceV4 - ok
16:52:08.0519 5552 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:52:08.0543 5552 IPBusEnum - ok
16:52:08.0633 5552 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:52:08.0751 5552 IpFilterDriver - ok
16:52:08.0841 5552 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:52:08.0884 5552 iphlpsvc - ok
16:52:08.0888 5552 IpInIp - ok
16:52:08.0930 5552 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
16:52:08.0980 5552 IPMIDRV - ok
16:52:09.0057 5552 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
16:52:09.0094 5552 IPNAT - ok
16:52:09.0615 5552 [ CE004777B92DEA56FE14EC900D20BAA4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:52:09.0690 5552 iPod Service - ok
16:52:09.0716 5552 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:52:09.0872 5552 IRENUM - ok
16:52:09.0888 5552 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:52:09.0932 5552 isapnp - ok
16:52:10.0014 5552 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:52:10.0054 5552 iScsiPrt - ok
16:52:10.0163 5552 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
16:52:10.0197 5552 iteatapi - ok
16:52:10.0221 5552 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
16:52:10.0235 5552 iteraid - ok
16:52:10.0331 5552 [ 45AA6F0F4B57FA9245065113CF6A233C ] iWinTrusted C:\Program Files\iWin Games\iWinTrusted.exe
16:52:10.0344 5552 iWinTrusted - ok
16:52:10.0404 5552 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:52:10.0463 5552 kbdclass - ok
16:52:10.0502 5552 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:52:10.0538 5552 kbdhid - ok
16:52:10.0711 5552 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
16:52:10.0730 5552 KeyIso - ok
16:52:10.0958 5552 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:52:11.0149 5552 KSecDD - ok
16:52:11.0293 5552 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:52:11.0419 5552 KtmRm - ok
16:52:11.0484 5552 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
16:52:11.0546 5552 LanmanServer - ok
16:52:11.0624 5552 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:52:11.0696 5552 LanmanWorkstation - ok
16:52:11.0748 5552 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:52:11.0770 5552 lltdio - ok
16:52:11.0820 5552 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:52:11.0895 5552 lltdsvc - ok
16:52:11.0939 5552 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:52:12.0029 5552 lmhosts - ok
16:52:12.0103 5552 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:52:12.0132 5552 LSI_FC - ok
16:52:12.0159 5552 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:52:12.0197 5552 LSI_SAS - ok
16:52:12.0213 5552 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:52:12.0235 5552 LSI_SCSI - ok
16:52:12.0259 5552 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
16:52:12.0304 5552 luafv - ok
16:52:12.0609 5552 [ F8B823414A22DBF3BEC10DCAA5F93CD8 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
16:52:12.0615 5552 McciCMService ( UnsignedFile.Multi.Generic ) - warning
16:52:12.0616 5552 McciCMService - detected UnsignedFile.Multi.Generic (1)
16:52:12.0633 5552 MCSTRM - ok
16:52:12.0720 5552 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:52:12.0778 5552 Mcx2Svc - ok
16:52:12.0797 5552 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
16:52:12.0808 5552 mdmxsdk - ok
16:52:12.0835 5552 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
16:52:12.0868 5552 megasas - ok
16:52:12.0939 5552 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
16:52:13.0155 5552 MegaSR - ok
16:52:13.0584 5552 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
16:52:13.0619 5552 Microsoft Office Groove Audit Service - ok
16:52:13.0738 5552 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
16:52:13.0786 5552 MMCSS - ok
16:52:13.0830 5552 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
16:52:13.0954 5552 Modem - ok
16:52:14.0258 5552 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:52:14.0280 5552 monitor - ok
16:52:14.0420 5552 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:52:14.0439 5552 mouclass - ok
16:52:14.0527 5552 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:52:14.0588 5552 mouhid - ok
16:52:14.0626 5552 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
16:52:14.0719 5552 MountMgr - ok
16:52:14.0947 5552 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:52:14.0964 5552 MpFilter - ok
16:52:15.0024 5552 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
16:52:15.0159 5552 mpio - ok
16:52:15.0848 5552 [ A69630D039C38018689190234F866D77 ] MpKsl5747fbb3 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D24C5A6A-BBB8-41E9-A7BE-F65D2A98959B}\MpKsl5747fbb3.sys
16:52:15.0858 5552 MpKsl5747fbb3 - ok
16:52:15.0965 5552 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:52:16.0064 5552 mpsdrv - ok
16:52:16.0319 5552 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
16:52:16.0616 5552 MpsSvc - ok
16:52:16.0872 5552 [ 229528A08747A4AF3C572DDE995C6CA1 ] mr97310c C:\Windows\system32\DRIVERS\mr97310c.sys
16:52:16.0992 5552 mr97310c - ok
16:52:17.0036 5552 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
16:52:17.0103 5552 Mraid35x - ok
16:52:17.0220 5552 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
16:52:17.0300 5552 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
16:52:17.0300 5552 MREMP50 - detected UnsignedFile.Multi.Generic (1)
16:52:17.0303 5552 MREMPR5 - ok
16:52:17.0307 5552 MRENDIS5 - ok
16:52:17.0390 5552 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
16:52:17.0458 5552 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
16:52:17.0458 5552 MRESP50 - detected UnsignedFile.Multi.Generic (1)
16:52:17.0512 5552 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:52:17.0676 5552 MRxDAV - ok
16:52:17.0751 5552 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:52:17.0768 5552 mrxsmb - ok
16:52:17.0783 5552 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:52:17.0829 5552 mrxsmb10 - ok
16:52:17.0894 5552 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:52:17.0971 5552 mrxsmb20 - ok
16:52:18.0114 5552 [ F70590424EEFBF5C27A40C67AFDB8383 ] msahci C:\Windows\system32\drivers\msahci.sys
16:52:18.0169 5552 msahci - ok
16:52:18.0323 5552 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:52:18.0448 5552 msdsm - ok
16:52:18.0528 5552 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
16:52:18.0636 5552 MSDTC - ok
16:52:18.0671 5552 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:52:18.0846 5552 Msfs - ok
16:52:18.0906 5552 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:52:18.0957 5552 msisadrv - ok
16:52:19.0054 5552 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:52:19.0147 5552 MSiSCSI - ok
16:52:19.0151 5552 msiserver - ok
16:52:19.0185 5552 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:52:19.0223 5552 MSKSSRV - ok
16:52:19.0416 5552 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:52:19.0431 5552 MsMpSvc - ok
16:52:19.0487 5552 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:52:19.0556 5552 MSPCLOCK - ok
16:52:19.0608 5552 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:52:19.0689 5552 MSPQM - ok
16:52:19.0792 5552 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:52:19.0887 5552 MsRPC - ok
16:52:19.0912 5552 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:52:19.0924 5552 mssmbios - ok
16:52:20.0234 5552 MSSQL$MSSMLBIZ - ok
16:52:20.0456 5552 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
16:52:20.0487 5552 MSSQLServerADHelper - ok
16:52:20.0502 5552 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:52:20.0897 5552 MSTEE - ok
16:52:21.0064 5552 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
16:52:21.0116 5552 Mup - ok
16:52:21.0248 5552 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
16:52:21.0314 5552 napagent - ok
16:52:21.0509 5552 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:52:21.0724 5552 NativeWifiP - ok
16:52:22.0105 5552 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:52:22.0288 5552 NDIS - ok
16:52:22.0362 5552 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:52:22.0496 5552 NdisTapi - ok
16:52:22.0609 5552 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:52:22.0684 5552 Ndisuio - ok
16:52:22.0769 5552 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:52:22.0847 5552 NdisWan - ok
16:52:22.0956 5552 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:52:22.0977 5552 NDProxy - ok
16:52:23.0184 5552 [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
16:52:23.0244 5552 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
16:52:23.0244 5552 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
16:52:23.0372 5552 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:52:23.0417 5552 NetBIOS - ok
16:52:23.0484 5552 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
16:52:23.0613 5552 netbt - ok
16:52:23.0635 5552 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
16:52:23.0648 5552 Netlogon - ok
16:52:23.0734 5552 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
16:52:23.0781 5552 Netman - ok
16:52:23.0896 5552 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
16:52:24.0070 5552 netprofm - ok
16:52:24.0205 5552 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:52:24.0426 5552 NetTcpPortSharing - ok
16:52:24.0522 5552 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:52:24.0577 5552 nfrd960 - ok
16:52:24.0724 5552 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:52:24.0745 5552 NisDrv - ok
16:52:24.0996 5552 [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:52:25.0103 5552 NisSrv - ok
16:52:25.0186 5552 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:52:25.0368 5552 NlaSvc - ok
16:52:25.0506 5552 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:52:25.0579 5552 Npfs - ok
16:52:25.0597 5552 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
16:52:25.0649 5552 nsi - ok
16:52:25.0658 5552 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:52:25.0701 5552 nsiproxy - ok
16:52:26.0380 5552 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:52:26.0561 5552 Ntfs - ok
16:52:26.0665 5552 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
16:52:26.0779 5552 ntrigdigi - ok
16:52:26.0953 5552 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
16:52:27.0041 5552 Null - ok
16:52:27.0187 5552 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:52:27.0315 5552 nvraid - ok
16:52:27.0493 5552 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:52:27.0553 5552 nvstor - ok
16:52:27.0610 5552 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:52:27.0705 5552 nv_agp - ok
16:52:27.0712 5552 NwlnkFlt - ok
16:52:27.0768 5552 NwlnkFwd - ok
16:52:28.0187 5552 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:52:28.0793 5552 odserv - ok
16:52:28.0925 5552 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:52:28.0943 5552 ohci1394 - ok
16:52:29.0239 5552 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:52:29.0396 5552 ose - ok
16:52:29.0813 5552 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
16:52:30.0248 5552 p2pimsvc - ok
16:52:30.0347 5552 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
16:52:30.0401 5552 p2psvc - ok
16:52:30.0422 5552 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
16:52:30.0577 5552 Parport - ok
16:52:30.0719 5552 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:52:30.0758 5552 partmgr - ok
16:52:30.0805 5552 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
16:52:30.0868 5552 Parvdm - ok
16:52:30.0942 5552 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
16:52:31.0001 5552 PcaSvc - ok
16:52:31.0362 5552 [ 92FDDBED716BF5C3CB766101563CFCE5 ] PCDSRVC{E9D79540-57D5953E-06020101}_0 c:\program files\dell support center\pcdsrvc.pkms
16:52:31.0400 5552 PCDSRVC{E9D79540-57D5953E-06020101}_0 - ok
16:52:31.0572 5552 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
16:52:31.0586 5552 pci - ok
16:52:31.0620 5552 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
16:52:31.0650 5552 pciide - ok
16:52:31.0704 5552 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:52:31.0771 5552 pcmcia - ok
16:52:31.0912 5552 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:52:32.0007 5552 PEAUTH - ok
16:52:32.0346 5552 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
16:52:32.0457 5552 pla - ok
16:52:32.0602 5552 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:52:32.0670 5552 PlugPlay - ok
16:52:32.0771 5552 [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
16:52:32.0810 5552 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
16:52:32.0810 5552 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
16:52:32.0857 5552 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
16:52:32.0921 5552 PNRPAutoReg - ok
16:52:33.0224 5552 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
16:52:33.0275 5552 PNRPsvc - ok
16:52:33.0436 5552 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:52:33.0498 5552 PolicyAgent - ok
16:52:33.0582 5552 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:52:33.0646 5552 PptpMiniport - ok
16:52:33.0744 5552 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
16:52:33.0853 5552 Processor - ok
16:52:34.0075 5552 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
16:52:34.0095 5552 ProfSvc - ok
16:52:34.0168 5552 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
16:52:34.0181 5552 ProtectedStorage - ok
16:52:34.0261 5552 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
16:52:34.0355 5552 PSched - ok
16:52:34.0762 5552 [ D24DFD16A1E2A76034DF5AA18125C35D ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys
16:52:34.0797 5552 PSI - ok
16:52:35.0052 5552 [ 81AC2B3FA0E3B4D7FA03D7463ABE2094 ] pwdrvio C:\Windows\system32\pwdrvio.sys
16:52:36.0694 5552 pwdrvio - ok
16:52:36.0874 5552 [ 2D88214F6B54567EAB0A6C42915AA600 ] pwdspio C:\Windows\system32\pwdspio.sys
16:52:36.0965 5552 pwdspio - ok
16:52:37.0161 5552 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
16:52:37.0225 5552 PxHelp20 - ok
16:52:37.0415 5552 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:52:37.0648 5552 ql2300 - ok
16:52:37.0683 5552 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:52:37.0745 5552 ql40xx - ok
16:52:37.0775 5552 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
16:52:37.0846 5552 QWAVE - ok
16:52:37.0854 5552 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:52:37.0910 5552 QWAVEdrv - ok
16:52:38.0292 5552 [ FFD082F1F1D4FF5C87F66DF62486BCFA ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
16:52:38.0841 5552 R300 - ok
16:52:39.0222 5552 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
16:52:39.0234 5552 RapiMgr - ok
16:52:39.0326 5552 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:52:39.0415 5552 RasAcd - ok
16:52:39.0510 5552 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
16:52:39.0631 5552 RasAuto - ok
16:52:39.0660 5552 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:52:39.0710 5552 Rasl2tp - ok
16:52:39.0805 5552 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
16:52:39.0896 5552 RasMan - ok
16:52:39.0972 5552 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:52:40.0061 5552 RasPppoe - ok
16:52:40.0123 5552 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:52:40.0180 5552 RasSstp - ok
16:52:40.0347 5552 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:52:40.0394 5552 rdbss - ok
16:52:40.0441 5552 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:52:40.0592 5552 RDPCDD - ok
16:52:40.0742 5552 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
16:52:40.0922 5552 rdpdr - ok
16:52:40.0963 5552 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:52:41.0035 5552 RDPENCDD - ok
16:52:41.0206 5552 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:52:41.0578 5552 RDPWD - ok
16:52:41.0749 5552 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:52:41.0835 5552 RemoteAccess - ok
16:52:41.0947 5552 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:52:41.0966 5552 RemoteRegistry - ok
16:52:42.0230 5552 [ FDED778DAF09235E4580F1B9046946B6 ] RoxLiveShare10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
16:52:42.0291 5552 RoxLiveShare10 - ok
16:52:42.0399 5552 [ E054A2CAF0E2A55C9AAC0BF1CCC558A5 ] RoxMediaDB10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
16:52:42.0516 5552 RoxMediaDB10 - ok
16:52:42.0537 5552 [ C75FDA9AB3314E555123673E08F9D86D ] RoxWatch10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
16:52:42.0563 5552 RoxWatch10 - ok
16:52:42.0634 5552 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
16:52:42.0646 5552 RpcLocator - ok
16:52:42.0832 5552 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
16:52:44.0474 5552 RpcSs - ok
16:52:44.0495 5552 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:52:44.0560 5552 rspndr - ok
16:52:44.0704 5552 [ 2D19A7469EA19993D0C12E627F4530BC ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
16:52:44.0815 5552 RTL8169 - ok
16:52:44.0935 5552 [ 7F8D15EE000577BE703537849D4F9397 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
16:52:45.0057 5552 RtNdPt60 - ok
16:52:45.0090 5552 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
16:52:45.0118 5552 SamSs - ok
16:52:45.0167 5552 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:52:45.0249 5552 sbp2port - ok
16:52:45.0588 5552 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
16:52:45.0676 5552 SBSDWSCService - ok
16:52:45.0883 5552 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:52:45.0903 5552 SCardSvr - ok
16:52:46.0101 5552 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
16:52:46.0279 5552 Schedule - ok
16:52:46.0367 5552 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:52:46.0407 5552 SCPolicySvc - ok
16:52:46.0495 5552 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:52:46.0530 5552 SDRSVC - ok
16:52:46.0618 5552 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:52:46.0709 5552 secdrv - ok
16:52:46.0811 5552 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
16:52:46.0870 5552 seclogon - ok
16:52:47.0289 5552 [ 5B66DB4877BBAC9F7493AA8D84421E49 ] Secunia PSI Agent C:\Program Files\Secunia\PSI\PSIA.exe
16:52:47.0436 5552 Secunia PSI Agent - ok
16:52:47.0505 5552 [ 0E88FDF474F2CDD370A4A6CE77D018F0 ] Secunia Update Agent C:\Program Files\Secunia\PSI\sua.exe
16:52:47.0562 5552 Secunia Update Agent - ok
16:52:47.0656 5552 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
16:52:47.0702 5552 SENS - ok
16:52:47.0706 5552 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
16:52:47.0794 5552 Serenum - ok
16:52:47.0887 5552 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
16:52:48.0138 5552 Serial - ok
16:52:48.0161 5552 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:52:48.0206 5552 sermouse - ok
16:52:48.0244 5552 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
16:52:48.0349 5552 SessionEnv - ok
16:52:48.0374 5552 SessionLauncher - ok
16:52:48.0384 5552 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:52:48.0627 5552 sffdisk - ok
16:52:48.0668 5552 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:52:48.0821 5552 sffp_mmc - ok
16:52:48.0908 5552 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:52:49.0064 5552 sffp_sd - ok
16:52:49.0078 5552 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:52:49.0155 5552 sfloppy - ok
16:52:49.0318 5552 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:52:49.0489 5552 SharedAccess - ok
16:52:49.0746 5552 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:52:49.0813 5552 ShellHWDetection - ok
16:52:49.0857 5552 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
16:52:49.0895 5552 sisagp - ok
16:52:49.0903 5552 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
16:52:49.0956 5552 SiSRaid2 - ok
16:52:49.0965 5552 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:52:49.0988 5552 SiSRaid4 - ok
16:52:50.0402 5552 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:52:51.0044 5552 Skype C2C Service - ok
16:52:51.0236 5552 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
16:52:51.0247 5552 SkypeUpdate - ok
16:52:52.0320 5552 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
16:52:54.0884 5552 slsvc - ok
16:52:55.0094 5552 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
16:52:55.0150 5552 SLUINotify - ok
16:52:55.0213 5552 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:52:55.0309 5552 Smb - ok
16:52:55.0495 5552 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:52:55.0523 5552 SNMPTRAP - ok
16:52:55.0579 5552 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
16:52:55.0636 5552 spldr - ok
16:52:55.0715 5552 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
16:52:55.0740 5552 Spooler - ok
16:52:56.0169 5552 [ BCDE2AD809248B47B9A3B82B6FD85108 ] sprtsvc_DellComms C:\Program Files\Dell\DellComms\bin\sprtsvc.exe
16:52:56.0183 5552 sprtsvc_DellComms - ok
16:52:56.0187 5552 sprtsvc_dellsupportcenter - ok
16:52:56.0291 5552 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
16:52:56.0307 5552 SQLBrowser - ok
16:52:56.0428 5552 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:52:56.0446 5552 SQLWriter - ok
16:52:56.0552 5552 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:52:56.0764 5552 srv - ok
16:52:57.0460 5552 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:52:57.0501 5552 srv2 - ok
16:52:57.0562 5552 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:52:57.0607 5552 srvnet - ok
16:52:57.0674 5552 [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
16:52:57.0717 5552 sscdbus - ok
16:52:57.0865 5552 [ 8A1BE0C347814F482F493AEA619D57F6 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
16:52:57.0971 5552 sscdmdfl - ok
16:52:58.0035 5552 [ 5AB0B1987F682A59B15B78F84C6AD7D0 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
16:52:58.0212 5552 sscdmdm - ok
16:52:58.0444 5552 [ 751E66EB32EFA80633B80F5D7FF0A1D8 ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
16:52:58.0538 5552 sscdserd - ok
16:52:58.0609 5552 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:52:58.0666 5552 SSDPSRV - ok
16:52:58.0770 5552 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:52:58.0803 5552 SstpSvc - ok
16:52:58.0915 5552 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
16:52:58.0999 5552 StillCam - ok
16:52:59.0290 5552 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
16:52:59.0409 5552 stisvc - ok
16:52:59.0509 5552 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
16:52:59.0649 5552 stllssvr - ok
16:52:59.0679 5552 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:52:59.0707 5552 swenum - ok
16:53:00.0157 5552 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:53:00.0326 5552 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
16:53:00.0326 5552 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
16:53:00.0532 5552 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
16:53:00.0556 5552 swprv - ok
16:53:00.0722 5552 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
16:53:00.0930 5552 Symc8xx - ok
16:53:00.0998 5552 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
16:53:01.0149 5552 Sym_hi - ok
16:53:01.0184 5552 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
16:53:01.0251 5552 Sym_u3 - ok
16:53:01.0464 5552 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
16:53:01.0562 5552 SysMain - ok
16:53:01.0617 5552 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:53:01.0636 5552 TabletInputService - ok
16:53:01.0740 5552 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:53:01.0763 5552 TapiSrv - ok
16:53:01.0791 5552 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
16:53:01.0854 5552 TBS - ok
16:53:02.0314 5552 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:53:02.0411 5552 Tcpip - ok
16:53:02.0426 5552 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
16:53:02.0578 5552 Tcpip6 - ok
16:53:02.0739 5552 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:53:02.0826 5552 tcpipreg - ok
16:53:02.0888 5552 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:53:02.0967 5552 TDPIPE - ok
16:53:03.0045 5552 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:53:03.0098 5552 TDTCP - ok
16:53:03.0270 5552 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:53:03.0356 5552 tdx - ok
16:53:03.0473 5552 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:53:03.0585 5552 TermDD - ok
16:53:03.0643 5552 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
16:53:03.0749 5552 TermService - ok
16:53:03.0795 5552 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
16:53:03.0823 5552 Themes - ok
16:53:03.0827 5552 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
16:53:03.0850 5552 THREADORDER - ok
16:53:03.0860 5552 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
16:53:03.0900 5552 TrkWks - ok
16:53:04.0055 5552 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:53:04.0111 5552 TrustedInstaller - ok
16:53:04.0186 5552 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:53:04.0235 5552 tssecsrv - ok
16:53:04.0266 5552 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
16:53:04.0339 5552 tunmp - ok
16:53:04.0444 5552 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:53:04.0503 5552 tunnel - ok
16:53:04.0566 5552 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:53:04.0625 5552 uagp35 - ok
16:53:04.0729 5552 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:53:04.0756 5552 udfs - ok
16:53:04.0810 5552 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:53:04.0833 5552 UI0Detect - ok
16:53:04.0843 5552 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:53:04.0885 5552 uliagpkx - ok
16:53:04.0948 5552 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
16:53:05.0240 5552 uliahci - ok
16:53:05.0253 5552 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
16:53:05.0292 5552 UlSata - ok
16:53:05.0341 5552 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
16:53:05.0489 5552 ulsata2 - ok
16:53:05.0505 5552 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:53:05.0599 5552 umbus - ok
16:53:05.0716 5552 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
16:53:05.0741 5552 upnphost - ok
16:53:06.0035 5552 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
16:53:06.0181 5552 USBAAPL - ok
16:53:06.0315 5552 [ D9F3BB7C292F194F3B053CE295754EB8 ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
16:53:06.0391 5552 usbbus - ok
16:53:06.0525 5552 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:53:06.0568 5552 usbccgp - ok
16:53:06.0613 5552 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:53:06.0816 5552 usbcir - ok
16:53:06.0903 5552 [ C4F77DA649F99FAD116EA585376FC164 ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
16:53:06.0981 5552 UsbDiag - ok
16:53:07.0077 5552 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:53:07.0134 5552 usbehci - ok
16:53:07.0230 5552 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:53:07.0276 5552 usbhub - ok
16:53:07.0297 5552 [ C0613CE45E617BC671DE8EBB1B30D175 ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
16:53:07.0319 5552 USBModem - ok
16:53:07.0455 5552 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:53:07.0524 5552 usbohci - ok
16:53:07.0571 5552 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:53:07.0634 5552 usbprint - ok
16:53:07.0778 5552 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:53:07.0859 5552 usbscan - ok
16:53:07.0908 5552 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:53:07.0962 5552 USBSTOR - ok
16:53:08.0088 5552 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:53:08.0155 5552 usbuhci - ok
16:53:08.0269 5552 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
16:53:08.0341 5552 usbvideo - ok
16:53:08.0456 5552 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
16:53:08.0514 5552 UxSms - ok
16:53:08.0658 5552 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
16:53:08.0693 5552 vds - ok
16:53:08.0771 5552 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:53:08.0936 5552 vga - ok
16:53:09.0083 5552 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
16:53:09.0119 5552 VgaSave - ok
16:53:09.0154 5552 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
16:53:09.0200 5552 viaagp - ok
16:53:09.0213 5552 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
16:53:09.0257 5552 ViaC7 - ok
16:53:09.0285 5552 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
16:53:09.0317 5552 viaide - ok
16:53:09.0410 5552 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:53:09.0437 5552 volmgr - ok
16:53:09.0495 5552 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:53:09.0736 5552 volmgrx - ok
16:53:09.0872 5552 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:53:09.0956 5552 volsnap - ok
16:53:10.0008 5552 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:53:10.0072 5552 vsmraid - ok
16:53:10.0270 5552 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
16:53:10.0328 5552 VSS - ok
16:53:10.0549 5552 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
16:53:10.0617 5552 vToolbarUpdater12.2.6 - ok
16:53:10.0722 5552 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
16:53:10.0772 5552 W32Time - ok
16:53:10.0803 5552 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:53:10.0942 5552 WacomPen - ok
16:53:10.0995 5552 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:53:11.0026 5552 Wanarp - ok
16:53:11.0029 5552 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:53:11.0055 5552 Wanarpv6 - ok
16:53:11.0288 5552 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
16:53:11.0316 5552 WcesComm - ok
16:53:11.0512 5552 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:53:11.0542 5552 wcncsvc - ok
16:53:11.0571 5552 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:53:11.0619 5552 WcsPlugInService - ok
16:53:11.0668 5552 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
16:53:11.0728 5552 Wd - ok
16:53:11.0764 5552 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:53:11.0858 5552 Wdf01000 - ok
16:53:11.0917 5552 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:53:11.0954 5552 WdiServiceHost - ok
16:53:11.0958 5552 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:53:12.0025 5552 WdiSystemHost - ok
16:53:12.0129 5552 [ FE546ADF53E0AB4C27DC7A49DA0E3ECA ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
16:53:12.0270 5552 Web Assistant Updater - ok
16:53:12.0306 5552 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
16:53:12.0352 5552 WebClient - ok
16:53:12.0423 5552 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:53:12.0485 5552 Wecsvc - ok
16:53:12.0534 5552 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:53:12.0553 5552 wercplsupport - ok
16:53:12.0710 5552 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
16:53:12.0762 5552 WerSvc - ok
16:53:13.0011 5552 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
16:53:13.0171 5552 winachsf - ok
16:53:13.0319 5552 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
16:53:13.0336 5552 WinDefend - ok
16:53:13.0361 5552 WinHttpAutoProxySvc - ok
16:53:13.0588 5552 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:53:13.0622 5552 Winmgmt - ok
16:53:13.0832 5552 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
16:53:13.0880 5552 WinRM - ok
16:53:14.0112 5552 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:53:14.0178 5552 Wlansvc - ok
16:53:14.0648 5552 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:53:14.0789 5552 wlidsvc - ok
16:53:14.0857 5552 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:53:15.0136 5552 WmiAcpi - ok
16:53:15.0570 5552 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:53:15.0644 5552 wmiApSrv - ok
16:53:15.0946 5552 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
16:53:16.0085 5552 WMPNetworkSvc - ok
16:53:16.0360 5552 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:53:16.0440 5552 WPCSvc - ok
16:53:16.0491 5552 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:53:16.0526 5552 WPDBusEnum - ok
16:53:16.0604 5552 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
16:53:16.0662 5552 WpdUsb - ok
16:53:17.0029 5552 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:53:17.0052 5552 WPFFontCache_v0400 - ok
16:53:17.0109 5552 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:53:17.0176 5552 ws2ifsl - ok
16:53:17.0209 5552 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
16:53:17.0247 5552 wscsvc - ok
16:53:17.0251 5552 WSearch - ok
16:53:17.0369 5552 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
16:53:17.0547 5552 wuauserv - ok
16:53:17.0622 5552 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:53:17.0646 5552 WUDFRd - ok
16:53:17.0727 5552 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:53:17.0768 5552 wudfsvc - ok
16:53:17.0817 5552 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
16:53:19.0940 5552 XAudio - ok
16:53:20.0003 5552 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
16:53:20.0079 5552 XAudioService - ok
16:53:20.0159 5552 [ 4D840C6AF3C020ED3A35EFBA9025CF4A ] {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} C:\Program Files\CyberLink\PowerDVD DX\000.fcl
16:53:51.0487 5552 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
16:53:51.0510 5552 ================ Scan global ===============================
16:53:51.0554 5552 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
16:53:51.0693 5552 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
16:53:51.0729 5552 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
16:53:51.0846 5552 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
16:53:51.0849 5552 [Global] - ok
16:53:51.0849 5552 ================ Scan MBR ==================================
16:53:51.0876 5552 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:53:53.0573 5552 \Device\Harddisk0\DR0 - ok
16:53:53.0573 5552 ================ Scan VBR ==================================
16:53:53.0599 5552 [ A0A6EE884871A6B9EACA82D491A0ECB5 ] \Device\Harddisk0\DR0\Partition1
16:53:53.0621 5552 \Device\Harddisk0\DR0\Partition1 - ok
16:53:53.0659 5552 [ 746128ED9827DAA9DA73752F2E7EB71D ] \Device\Harddisk0\DR0\Partition2
16:53:53.0669 5552 \Device\Harddisk0\DR0\Partition2 - ok
16:53:53.0669 5552 ================ Scan active images ========================
16:53:53.0671 5552 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] C:\Windows\System32\drivers\atapi.sys
16:53:53.0671 5552 C:\Windows\System32\drivers\atapi.sys - ok
16:53:53.0675 5552 [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys
16:53:53.0675 5552 C:\Windows\System32\drivers\crashdmp.sys - ok
16:53:53.0689 5552 [ C67EBF9C05531C406E1E079FF669A2E6 ] C:\Windows\System32\drivers\Dumpata.sys
16:53:53.0689 5552 C:\Windows\System32\drivers\Dumpata.sys - ok
16:53:53.0695 5552 [ CAECC0120AC49E3D2F758B9169872D38 ] C:\Windows\System32\drivers\TUNMP.SYS
16:53:53.0695 5552 C:\Windows\System32\drivers\TUNMP.SYS - ok
16:53:53.0699 5552 [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys
16:53:53.0699 5552 C:\Windows\System32\drivers\tunnel.sys - ok
16:53:53.0703 5552 [ C541DA5B72FA638469E8DC1E66079330 ] C:\Windows\System32\drivers\atikmpag.sys
16:53:53.0703 5552 C:\Windows\System32\drivers\atikmpag.sys - ok
16:53:53.0709 5552 [ 224191001E78C89DFA78924C3EA595FF ] C:\Windows\System32\drivers\intelppm.sys
16:53:53.0709 5552 C:\Windows\System32\drivers\intelppm.sys - ok
16:53:53.0723 5552 [ FFD082F1F1D4FF5C87F66DF62486BCFA ] C:\Windows\System32\drivers\atikmdag.sys
16:53:53.0723 5552 C:\Windows\System32\drivers\atikmdag.sys - ok
16:53:53.0728 5552 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] C:\Windows\System32\drivers\dxgkrnl.sys
16:53:53.0728 5552 C:\Windows\System32\drivers\dxgkrnl.sys - ok
16:53:53.0732 5552 [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys
16:53:53.0732 5552 C:\Windows\System32\drivers\watchdog.sys - ok
16:53:53.0748 5552 [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys
16:53:53.0748 5552 C:\Windows\System32\drivers\hdaudbus.sys - ok
16:53:53.0752 5552 [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys
16:53:53.0752 5552 C:\Windows\System32\drivers\usbport.sys - ok
16:53:53.0755 5552 [ 814D653EFC4D48BE3B04A307ECEFF56F ] C:\Windows\System32\drivers\usbuhci.sys
16:53:53.0755 5552 C:\Windows\System32\drivers\usbuhci.sys - ok
16:53:53.0759 5552 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys
16:53:53.0759 5552 C:\Windows\System32\drivers\usbehci.sys - ok
16:53:53.0762 5552 [ 0349BE02F329F4F48F1D48097FD65974 ] C:\Windows\System32\drivers\1394bus.sys
16:53:53.0762 5552 C:\Windows\System32\drivers\1394bus.sys - ok
16:53:53.0765 5552 [ 6F310E890D46E246E0E261A63D9B36B4 ] C:\Windows\System32\drivers\ohci1394.sys
16:53:53.0765 5552 C:\Windows\System32\drivers\ohci1394.sys - ok
16:53:53.0769 5552 [ 2D19A7469EA19993D0C12E627F4530BC ] C:\Windows\System32\drivers\Rtlh86.sys
16:53:53.0769 5552 C:\Windows\System32\drivers\Rtlh86.sys - ok
16:53:53.0773 5552 [ FE440536BD98AF772130DC3A6FE1915F ] C:\Windows\System32\drivers\HSXHWBS2.sys
16:53:53.0773 5552 C:\Windows\System32\drivers\HSXHWBS2.sys - ok
16:53:53.0776 5552 [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys
16:53:53.0776 5552 C:\Windows\System32\drivers\ks.sys - ok
16:53:53.0779 5552 [ 99F85640054BA65190B860D878A7C9AE ] C:\Windows\System32\drivers\HSX_DPV.sys
16:53:53.0779 5552 C:\Windows\System32\drivers\HSX_DPV.sys - ok
16:53:53.0783 5552 [ 72CC6A8CA7891031D6380DB5025C773C ] C:\Windows\System32\drivers\HSX_CNXT.sys
16:53:53.0783 5552 C:\Windows\System32\drivers\HSX_CNXT.sys - ok
16:53:53.0786 5552 [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys
16:53:53.0786 5552 C:\Windows\System32\drivers\cdrom.sys - ok
16:53:53.0789 5552 [ E13B5EA0F51BA5B1512EC671393D09BA ] C:\Windows\System32\drivers\modem.sys
16:53:53.0789 5552 C:\Windows\System32\drivers\modem.sys - ok
16:53:53.0793 5552 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\Windows\System32\drivers\GEARAspiWDM.sys
16:53:53.0793 5552 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
16:53:53.0796 5552 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] C:\Windows\System32\drivers\serscan.sys
16:53:53.0796 5552 C:\Windows\System32\drivers\serscan.sys - ok
16:53:53.0800 5552 [ 47E55AFE1ED1D5AFF09690DB226F4A7A ] C:\Windows\System32\drivers\Storport.sys
16:53:53.0800 5552 C:\Windows\System32\drivers\Storport.sys - ok
16:53:53.0803 5552 [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys
16:53:53.0803 5552 C:\Windows\System32\drivers\msiscsi.sys - ok
16:53:53.0806 5552 [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys
16:53:53.0807 5552 C:\Windows\System32\drivers\rasl2tp.sys - ok
16:53:53.0810 5552 [ 77937EFF009AC696B90E09F671F9D0A4 ] C:\Windows\System32\drivers\tdi.sys
16:53:53.0810 5552 C:\Windows\System32\drivers\tdi.sys - ok
16:53:53.0813 5552 [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys
16:53:53.0813 5552 C:\Windows\System32\drivers\ndistapi.sys - ok
16:53:53.0816 5552 [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys
16:53:53.0816 5552 C:\Windows\System32\drivers\ndiswan.sys - ok
16:53:53.0820 5552 [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys
16:53:53.0820 5552 C:\Windows\System32\drivers\raspppoe.sys - ok
16:53:53.0823 5552 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys
16:53:53.0823 5552 C:\Windows\System32\drivers\raspptp.sys - ok
16:53:53.0826 5552 [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys
16:53:53.0827 5552 C:\Windows\System32\drivers\rassstp.sys - ok
16:53:53.0830 5552 [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys
16:53:53.0830 5552 C:\Windows\System32\drivers\kbdclass.sys - ok
16:53:53.0833 5552 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys
16:53:53.0834 5552 C:\Windows\System32\drivers\termdd.sys - ok
16:53:53.0837 5552 [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys
16:53:53.0837 5552 C:\Windows\System32\drivers\mouclass.sys - ok
16:53:53.0840 5552 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys
16:53:53.0840 5552 C:\Windows\System32\drivers\swenum.sys - ok
16:53:53.0844 5552 [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys
16:53:53.0844 5552 C:\Windows\System32\drivers\mssmbios.sys - ok
16:53:53.0847 5552 [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys
16:53:53.0847 5552 C:\Windows\System32\drivers\umbus.sys - ok
16:53:53.0850 5552 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys
16:53:53.0851 5552 C:\Windows\System32\drivers\usbhub.sys - ok
16:53:53.0854 5552 [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys
16:53:53.0854 5552 C:\Windows\System32\drivers\ndproxy.sys - ok
16:53:53.0857 5552 [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys
16:53:53.0857 5552 C:\Windows\System32\drivers\drmk.sys - ok
16:53:53.0861 5552 [ 3F90E001369A07243763BD5A523D8722 ] C:\Windows\System32\drivers\HdAudio.sys
16:53:53.0861 5552 C:\Windows\System32\drivers\HdAudio.sys - ok
16:53:53.0864 5552 [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys
16:53:53.0864 5552 C:\Windows\System32\drivers\portcls.sys - ok
16:53:53.0867 5552 [ 32ABC54D0DDE1A8885C9439537DD3BAD ] C:\Windows\System32\drivers\RTKVHDA.sys
16:53:53.0868 5552 C:\Windows\System32\drivers\RTKVHDA.sys - ok
16:53:53.0871 5552 [ B972A66758577E0BFD1DE0F91AAA27B5 ] C:\Windows\System32\drivers\fs_rec.sys
16:53:53.0871 5552 C:\Windows\System32\drivers\fs_rec.sys - ok
16:53:53.0874 5552 [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys
16:53:53.0874 5552 C:\Windows\System32\drivers\null.sys - ok
16:53:53.0878 5552 [ 6F76908F065C3C151C4BFCA7DFD86979 ] C:\Windows\System32\drivers\avgtpx86.sys
16:53:53.0878 5552 C:\Windows\System32\drivers\avgtpx86.sys - ok
16:53:53.0881 5552 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys
16:53:53.0881 5552 C:\Windows\System32\drivers\beep.sys - ok
16:53:53.0886 5552 [ 175444D3A01CA45D0E1C5DC5F48DF7CD ] C:\Windows\System32\drivers\hidparse.sys
16:53:53.0886 5552 C:\Windows\System32\drivers\hidparse.sys - ok
16:53:53.0888 5552 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] C:\Windows\System32\drivers\kbdhid.sys
16:53:53.0888 5552 C:\Windows\System32\drivers\kbdhid.sys - ok
16:53:53.0892 5552 [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys
16:53:53.0892 5552 C:\Windows\System32\drivers\vga.sys - ok
16:53:53.0895 5552 [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys
16:53:53.0895 5552 C:\Windows\System32\drivers\videoprt.sys - ok
16:53:53.0898 5552 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys
16:53:53.0898 5552 C:\Windows\System32\drivers\RDPCDD.sys - ok
16:53:53.0902 5552 [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys
16:53:53.0902 5552 C:\Windows\System32\drivers\RDPENCDD.sys - ok
16:53:53.0905 5552 [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys
16:53:53.0905 5552 C:\Windows\System32\drivers\msfs.sys - ok
16:53:53.0909 5552 [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys
16:53:53.0909 5552 C:\Windows\System32\drivers\npfs.sys - ok
16:53:53.0912 5552 [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys
16:53:53.0912 5552 C:\Windows\System32\drivers\rasacd.sys - ok
16:53:53.0915 5552 [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys
16:53:53.0915 5552 C:\Windows\System32\drivers\smb.sys - ok
16:53:53.0919 5552 [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys
16:53:53.0919 5552 C:\Windows\System32\drivers\tdx.sys - ok
16:53:53.0922 5552 [ BA73B38E9033FC6018DB736B635706AE ] C:\Windows\System32\drivers\avgtdix.sys
16:53:53.0922 5552 C:\Windows\System32\drivers\avgtdix.sys - ok
16:53:53.0925 5552 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys
16:53:53.0925 5552 C:\Windows\System32\drivers\netbt.sys - ok
16:53:53.0929 5552 [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys
16:53:53.0929 5552 C:\Windows\System32\drivers\afd.sys - ok
16:53:53.0932 5552 [ E3A3CB253C0EC2494D4A61F5E43A389C ] C:\Windows\System32\drivers\ws2ifsl.sys
16:53:53.0932 5552 C:\Windows\System32\drivers\ws2ifsl.sys - ok
16:53:53.0935 5552 [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys
16:53:53.0935 5552 C:\Windows\System32\drivers\pacer.sys - ok
16:53:53.0939 5552 [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys
16:53:53.0939 5552 C:\Windows\System32\drivers\netbios.sys - ok
16:53:53.0942 5552 [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys
16:53:53.0942 5552 C:\Windows\System32\drivers\wanarp.sys - ok
16:53:53.0945 5552 [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys
16:53:53.0946 5552 C:\Windows\System32\drivers\nsiproxy.sys - ok
16:53:53.0949 5552 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys
16:53:53.0949 5552 C:\Windows\System32\drivers\rdbss.sys - ok
16:53:53.0952 5552 [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys
16:53:53.0952 5552 C:\Windows\System32\drivers\dfsc.sys - ok
16:53:53.0956 5552 [ D53D35031365A0ECCB1DC1BC1B15B18E ] C:\Windows\System32\drivers\avgldx86.sys
16:53:53.0956 5552 C:\Windows\System32\drivers\avgldx86.sys - ok
16:53:53.0959 5552 [ CAF811AE4C147FFCD5B51750C7F09142 ] C:\Windows\System32\drivers\usbccgp.sys
16:53:53.0959 5552 C:\Windows\System32\drivers\usbccgp.sys - ok
16:53:53.0963 5552 [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys
16:53:53.0963 5552 C:\Windows\System32\drivers\usbd.sys - ok
16:53:53.0966 5552 [ 5961CADB7CAD938368D2028725EF771D ] C:\Windows\System32\drivers\hidclass.sys
16:53:53.0966 5552 C:\Windows\System32\drivers\hidclass.sys - ok
16:53:53.0969 5552 [ CCA4B519B17E23A00B826C55716809CC ] C:\Windows\System32\drivers\hidusb.sys
16:53:53.0969 5552 C:\Windows\System32\drivers\hidusb.sys - ok
16:53:53.0973 5552 [ BE3DA31C191BC222D9AD503C5224F2AD ] C:\Windows\System32\drivers\USBSTOR.SYS
16:53:53.0973 5552 C:\Windows\System32\drivers\USBSTOR.SYS - ok
16:53:53.0976 5552 [ A8DE230CC8536790CA07D37FBCD87A74 ] C:\Windows\System32\drivers\avgidsshimx.sys
16:53:53.0976 5552 C:\Windows\System32\drivers\avgidsshimx.sys - ok
16:53:53.0980 5552 [ 2F47851015D8837976E481F6DAA46A67 ] C:\Windows\System32\drivers\avgidsdriverx.sys
16:53:53.0980 5552 C:\Windows\System32\drivers\avgidsdriverx.sys - ok
16:53:53.0984 5552 [ F7EABCA8375EA2DC6F35C4BCA4757515 ] C:\Users\Kelly\Desktop\Run\a2ddax86.sys
16:53:53.0984 5552 C:\Users\Kelly\Desktop\Run\a2ddax86.sys - ok
16:53:53.0988 5552 [ 93B8D4869E12CFBE663915502900876F ] C:\Windows\System32\drivers\mouhid.sys
16:53:53.0988 5552 C:\Windows\System32\drivers\mouhid.sys - ok
16:53:53.0991 5552 [ DDA770BBD7C2ED024D6F50E279D90E5B ] C:\Windows\System32\ntdll.dll
16:53:53.0991 5552 C:\Windows\System32\ntdll.dll - ok
16:53:53.0995 5552 [ 98AF15A94CD6AC37248E72E5FE789B35 ] C:\Windows\System32\smss.exe
16:53:53.0995 5552 C:\Windows\System32\smss.exe - ok
16:53:53.0998 5552 [ 10761177A6EBE45843F443E99509F5E7 ] C:\Windows\System32\autochk.exe
16:53:53.0998 5552 C:\Windows\System32\autochk.exe - ok
16:53:54.0002 5552 [ BAE830DEDEA822DC0A80F5DB50360CE4 ] C:\Program Files\AVG\AVG2013\avgsysx.dll
16:53:54.0002 5552 C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
16:53:54.0009 5552 [ 0996534ED3E15D6E2804CEF40D87F76F ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
16:53:54.0009 5552 C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
16:53:54.0012 5552 [ DAA45E1EB06E221E770A720A9A4234F7 ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
16:53:54.0012 5552 C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
16:53:54.0015 5552 [ AE98898FE52CB97C0AEABA9E0736A3A4 ] C:\Program Files\AVG\AVG2013\avglogx.dll
16:53:54.0015 5552 C:\Program Files\AVG\AVG2013\avglogx.dll - ok
16:53:54.0019 5552 [ D9728AF68C4C7693CB100B8441CBDEC6 ] C:\Windows\System32\drivers\udfs.sys
16:53:54.0019 5552 C:\Windows\System32\drivers\udfs.sys - ok
16:53:54.0022 5552 [ 1725C78E16ADFA2F68F060FAAE31F4AB ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
16:53:54.0022 5552 C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
16:53:54.0026 5552 [ 177503E6ACB69CBE473F7D4CABE91BE6 ] C:\PROGRA~1\AVG\AVG2013\avgclitx.dll
16:53:54.0026 5552 C:\PROGRA~1\AVG\AVG2013\avgclitx.dll - ok
16:53:54.0029 5552 [ 56BB28459E1E355B64D98E1F8899DD2F ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
16:53:54.0029 5552 C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
16:53:54.0032 5552 [ 1411F8FA1CCC1E48078637492C713E81 ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
16:53:54.0032 5552 C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
16:53:54.0036 5552 [ FEB8197654D8D32CA2CE50C5433412D8 ] C:\Program Files\AVG\AVG2013\avgcorex.dll
16:53:54.0036 5552 C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
16:53:54.0040 5552 [ 99E8E7884E278F0636DC121045360698 ] C:\Program Files\AVG\AVG2013\avgcertx.dll
16:53:54.0040 5552 C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
16:53:54.0043 5552 [ C98860554D3CF5C462BF03794A3C8402 ] C:\Program Files\AVG\AVG2013\avgchclx.dll
16:53:54.0043 5552 C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
16:53:54.0047 5552 [ B74DE46764741006CD8196614589A6B2 ] C:\Program Files\AVG\AVG2013\avgcommx.dll
16:53:54.0047 5552 C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
16:53:54.0050 5552 [ 74B48F736B068DD9E36C850133D8FEC8 ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
16:53:54.0050 5552 C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
16:53:54.0054 5552 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll
16:53:54.0054 5552 C:\Windows\System32\clbcatq.dll - ok
16:53:54.0057 5552 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll
16:53:54.0057 5552 C:\Windows\System32\comdlg32.dll - ok
16:53:54.0061 5552 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\System32\iertutil.dll
16:53:54.0061 5552 C:\Windows\System32\iertutil.dll - ok
16:53:54.0064 5552 [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll
16:53:54.0064 5552 C:\Windows\System32\user32.dll - ok
16:53:54.0067 5552 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\System32\wininet.dll
16:53:54.0067 5552 C:\Windows\System32\wininet.dll - ok
16:53:54.0070 5552 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll
16:53:54.0070 5552 C:\Windows\System32\ws2_32.dll - ok
16:53:54.0074 5552 [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\System32\shell32.dll
16:53:54.0074 5552 C:\Windows\System32\shell32.dll - ok
16:53:54.0077 5552 [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll
16:53:54.0077 5552 C:\Windows\System32\gdi32.dll - ok
16:53:54.0080 5552 [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\System32\imagehlp.dll
16:53:54.0080 5552 C:\Windows\System32\imagehlp.dll - ok
16:53:54.0083 5552 [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll
16:53:54.0084 5552 C:\Windows\System32\imm32.dll - ok
16:53:54.0087 5552 [ 574B473FACAA0E91702B86578440B525 ] C:\Windows\System32\kernel32.dll
16:53:54.0087 5552 C:\Windows\System32\kernel32.dll - ok
16:53:54.0090 5552 [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll
16:53:54.0090 5552 C:\Windows\System32\lpk.dll - ok
16:53:54.0093 5552 [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\System32\msvcrt.dll
16:53:54.0093 5552 C:\Windows\System32\msvcrt.dll - ok
16:53:54.0097 5552 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll
16:53:54.0097 5552 C:\Windows\System32\nsi.dll - ok
16:53:54.0100 5552 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll
16:53:54.0100 5552 C:\Windows\System32\usp10.dll - ok
16:53:54.0103 5552 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll
16:53:54.0103 5552 C:\Windows\System32\msctf.dll - ok
16:53:54.0107 5552 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll
16:53:54.0107 5552 C:\Windows\System32\normaliz.dll - ok
16:53:54.0110 5552 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll
16:53:54.0110 5552 C:\Windows\System32\ole32.dll - ok
16:53:54.0113 5552 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll
16:53:54.0113 5552 C:\Windows\System32\setupapi.dll - ok
16:53:54.0117 5552 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll
16:53:54.0117 5552 C:\Windows\System32\Wldap32.dll - ok
16:53:54.0120 5552 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll
16:53:54.0120 5552 C:\Windows\System32\advapi32.dll - ok
16:53:54.0123 5552 [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\System32\oleaut32.dll
16:53:54.0123 5552 C:\Windows\System32\oleaut32.dll - ok
16:53:54.0127 5552 [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll
16:53:54.0127 5552 C:\Windows\System32\rpcrt4.dll - ok
16:53:54.0130 5552 [ 9176285122B7B849FEC2AA1B72A8F7A8 ] C:\Windows\System32\shlwapi.dll
16:53:54.0130 5552 C:\Windows\System32\shlwapi.dll - ok
16:53:54.0133 5552 [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll
16:53:54.0133 5552 C:\Windows\System32\comctl32.dll - ok
16:53:54.0137 5552 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll
16:53:54.0137 5552 C:\Windows\System32\psapi.dll - ok
16:53:54.0140 5552 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\System32\urlmon.dll
16:53:54.0140 5552 C:\Windows\System32\urlmon.dll - ok
16:53:54.0143 5552 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll
16:53:54.0143 5552 C:\Windows\System32\basesrv.dll - ok
16:53:54.0146 5552 [ 187076DD5D8D4D5D23079D0741195EAD ] C:\Windows\System32\csrsrv.dll
16:53:54.0146 5552 C:\Windows\System32\csrsrv.dll - ok
16:53:54.0150 5552 [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe
16:53:54.0150 5552 C:\Windows\System32\csrss.exe - ok
16:53:54.0153 5552 [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys
16:53:54.0153 5552 C:\Windows\System32\drivers\dxapi.sys - ok
16:53:54.0156 5552 [ 92D85E8A4129FE44A3266266AC8D151D ] C:\Windows\System32\win32k.sys
16:53:54.0156 5552 C:\Windows\System32\win32k.sys - ok
16:53:54.0159 5552 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\System32\winsrv.dll
16:53:54.0159 5552 C:\Windows\System32\winsrv.dll - ok
16:53:54.0163 5552 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys
16:53:54.0163 5552 C:\Windows\System32\drivers\monitor.sys - ok
16:53:54.0166 5552 [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll
16:53:54.0166 5552 C:\Windows\System32\tsddd.dll - ok
16:53:54.0169 5552 [ 6434B5F02751B9140DEECF4E4A3BAB47 ] C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
16:53:54.0169 5552 C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL - ok
16:53:54.0173 5552 [ D602FEDBD9155FC2DED6863FB60C950F ] C:\Windows\System32\secur32.dll
16:53:54.0173 5552 C:\Windows\System32\secur32.dll - ok
16:53:54.0176 5552 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll
16:53:54.0176 5552 C:\Windows\System32\userenv.dll - ok
16:53:54.0179 5552 [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe
16:53:54.0179 5552 C:\Windows\System32\wininit.exe - ok
16:53:54.0183 5552 [ 12C8D6C564702B0776512932290A3F6B ] C:\Windows\System32\KBDUS.DLL
16:53:54.0183 5552 C:\Windows\System32\KBDUS.DLL - ok
16:53:54.0186 5552 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll
16:53:54.0186 5552 C:\Windows\System32\apphelp.dll - ok
16:53:54.0189 5552 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\services.exe
16:53:54.0190 5552 C:\Windows\System32\services.exe - ok
16:53:54.0193 5552 [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll
16:53:54.0193 5552 C:\Windows\System32\WlS0WndH.dll - ok
16:53:54.0196 5552 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll
16:53:54.0196 5552 C:\Windows\System32\sxs.dll - ok
16:53:54.0199 5552 [ CF9F5BBC2740C41DD471278C41B91F5F ] C:\Windows\System32\cdd.dll
16:53:54.0199 5552 C:\Windows\System32\cdd.dll - ok
16:53:54.0202 5552 [ A3E186B4B935905B829219502557314E ] C:\Windows\System32\lsass.exe
16:53:54.0202 5552 C:\Windows\System32\lsass.exe - ok
16:53:54.0206 5552 [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe
16:53:54.0206 5552 C:\Windows\System32\lsm.exe - ok
16:53:54.0209 5552 [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll
16:53:54.0209 5552 C:\Windows\System32\authz.dll - ok
16:53:54.0212 5552 [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\System32\netapi32.dll
16:53:54.0212 5552 C:\Windows\System32\netapi32.dll - ok
16:53:54.0216 5552 [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll
16:53:54.0216 5552 C:\Windows\System32\scesrv.dll - ok
16:53:54.0219 5552 [ 178FAC2B7C66E9A4400CE7AC37623E3F ] C:\Windows\System32\lsasrv.dll
16:53:54.0219 5552 C:\Windows\System32\lsasrv.dll - ok
16:53:54.0222 5552 [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll
16:53:54.0222 5552 C:\Windows\System32\ncobjapi.dll - ok
16:53:54.0225 5552 [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll
16:53:54.0225 5552 C:\Windows\System32\samsrv.dll - ok
16:53:54.0228 5552 [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll
16:53:54.0229 5552 C:\Windows\System32\sysntfy.dll - ok
16:53:54.0232 5552 [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll
16:53:54.0232 5552 C:\Windows\System32\wmsgapi.dll - ok
16:53:54.0235 5552 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] C:\Windows\System32\aelupsvc.dll
16:53:54.0235 5552 C:\Windows\System32\aelupsvc.dll - ok
16:53:54.0238 5552 [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe
16:53:54.0239 5552 C:\Windows\System32\alg.exe - ok
16:53:54.0242 5552 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll
16:53:54.0242 5552 C:\Windows\System32\appinfo.dll - ok
16:53:54.0245 5552 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll
16:53:54.0245 5552 C:\Windows\System32\cryptdll.dll - ok
16:53:54.0248 5552 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll
16:53:54.0248 5552 C:\Windows\System32\dnsapi.dll - ok
16:53:54.0252 5552 [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll
16:53:54.0252 5552 C:\Windows\System32\feclient.dll - ok
16:53:54.0255 5552 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll
16:53:54.0255 5552 C:\Windows\System32\msasn1.dll - ok
16:53:54.0258 5552 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll
16:53:54.0258 5552 C:\Windows\System32\ntdsapi.dll - ok
16:53:54.0262 5552 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll
16:53:54.0262 5552 C:\Windows\System32\samlib.dll - ok
16:53:54.0265 5552 [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll
16:53:54.0265 5552 C:\Windows\System32\audiosrv.dll - ok
16:53:54.0268 5552 [ B0F9073BE86C6D4EDD4EBA674251E699 ] C:\Windows\System32\crypt32.dll
16:53:54.0268 5552 C:\Windows\System32\crypt32.dll - ok
16:53:54.0272 5552 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll
16:53:54.0272 5552 C:\Windows\System32\mpr.dll - ok
16:53:54.0275 5552 [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll
16:53:54.0275 5552 C:\Windows\System32\rascfg.dll - ok
16:53:54.0278 5552 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll
16:53:54.0278 5552 C:\Windows\System32\SLC.dll - ok
16:53:54.0281 5552 [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll
16:53:54.0281 5552 C:\Windows\System32\wevtapi.dll - ok
16:53:54.0284 5552 [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL
16:53:54.0285 5552 C:\Windows\System32\BFE.DLL - ok
16:53:54.0288 5552 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll
16:53:54.0288 5552 C:\Windows\System32\browser.dll - ok
16:53:54.0291 5552 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll
16:53:54.0291 5552 C:\Windows\System32\dhcpcsvc.dll - ok
16:53:54.0295 5552 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll
16:53:54.0295 5552 C:\Windows\System32\dhcpcsvc6.dll - ok
16:53:54.0298 5552 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL
16:53:54.0298 5552 C:\Windows\System32\IPHLPAPI.DLL - ok
16:53:54.0301 5552 [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll
16:53:54.0302 5552 C:\Windows\System32\qmgr.dll - ok
16:53:54.0305 5552 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll
16:53:54.0305 5552 C:\Windows\System32\winnsi.dll - ok
16:53:54.0308 5552 [ A4C8377FA4A994E07075107DBE2E3DCE ] C:\Windows\System32\bthserv.dll
16:53:54.0308 5552 C:\Windows\System32\bthserv.dll - ok
16:53:54.0311 5552 [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll
16:53:54.0311 5552 C:\Windows\System32\certprop.dll - ok
16:53:54.0314 5552 [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll
16:53:54.0314 5552 C:\Windows\System32\comres.dll - ok
16:53:54.0318 5552 [ F1E8C34892336D33EDDCDFE44E474F64 ] C:\Windows\System32\cryptsvc.dll
16:53:54.0318 5552 C:\Windows\System32\cryptsvc.dll - ok
16:53:54.0321 5552 [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll
16:53:54.0321 5552 C:\Windows\System32\bcrypt.dll - ok
16:53:54.0324 5552 [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll
16:53:54.0324 5552 C:\Windows\System32\cngaudit.dll - ok
16:53:54.0328 5552 [ 74F380C8EC8813626C670D46E8A714D1 ] C:\Windows\System32\dfsrres.dll
16:53:54.0328 5552 C:\Windows\System32\dfsrres.dll - ok
16:53:54.0331 5552 [ 188CC19108B0EBD6332D6628D4EDE469 ] C:\Windows\System32\ncrypt.dll
16:53:54.0331 5552 C:\Windows\System32\ncrypt.dll - ok
16:53:54.0335 5552 [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll
16:53:54.0335 5552 C:\Windows\System32\oleres.dll - ok
16:53:54.0338 5552 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll
16:53:54.0345 5552 C:\Windows\System32\credssp.dll - ok
16:53:54.0347 5552 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll
16:53:54.0347 5552 C:\Windows\System32\dot3svc.dll - ok
16:53:54.0351 5552 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll
16:53:54.0351 5552 C:\Windows\System32\dps.dll - ok
16:53:54.0354 5552 [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll
16:53:54.0354 5552 C:\Windows\System32\eapsvc.dll - ok
16:53:54.0362 5552 [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll
16:53:54.0363 5552 C:\Windows\System32\msprivs.dll - ok
16:53:54.0373 5552 [ 9BE3744D295A7701EB425332014F0797 ] C:\Windows\ehome\ehrecvr.exe
16:53:54.0374 5552 C:\Windows\ehome\ehrecvr.exe - ok
16:53:54.0377 5552 [ AD1870C8E5D6DD340C829E6074BF3C3F ] C:\Windows\ehome\ehsched.exe
16:53:54.0377 5552 C:\Windows\ehome\ehsched.exe - ok
16:53:54.0380 5552 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] C:\Windows\ehome\ehstart.dll
16:53:54.0380 5552 C:\Windows\ehome\ehstart.dll - ok
16:53:54.0393 5552 [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll
16:53:54.0393 5552 C:\Windows\System32\emdmgmt.dll - ok
16:53:54.0395 5552 [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll
16:53:54.0395 5552 C:\Windows\System32\kerberos.dll - ok
16:53:54.0400 5552 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] C:\Windows\System32\fdPHost.dll
16:53:54.0400 5552 C:\Windows\System32\fdPHost.dll - ok
16:53:54.0404 5552 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] C:\Windows\System32\FDResPub.dll
16:53:54.0404 5552 C:\Windows\System32\FDResPub.dll - ok
16:53:54.0408 5552 [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll
16:53:54.0408 5552 C:\Windows\System32\wevtsvc.dll - ok
16:53:54.0411 5552 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL
16:53:54.0411 5552 C:\Windows\System32\WSHTCPIP.DLL - ok
16:53:54.0414 5552 [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll
16:53:54.0415 5552 C:\Windows\System32\FntCache.dll - ok
16:53:54.0420 5552 [ 302964DCAC79D618CC7B72C778DA9FD2 ] C:\Windows\System32\PresentationHost.exe
16:53:54.0420 5552 C:\Windows\System32\PresentationHost.exe - ok
16:53:54.0436 5552 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll
16:53:54.0436 5552 C:\Windows\System32\wship6.dll - ok
16:53:54.0439 5552 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll
16:53:54.0439 5552 C:\Windows\System32\gpapi.dll - ok
16:53:54.0442 5552 [ 84067081F3318162797385E11A8F0582 ] C:\Windows\System32\hidserv.dll
16:53:54.0442 5552 C:\Windows\System32\hidserv.dll - ok
16:53:54.0446 5552 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll
16:53:54.0446 5552 C:\Windows\System32\wshqos.dll - ok
16:53:54.0451 5552 [ D8AD255B37DA92434C26E4876DB7D418 ] C:\Windows\System32\KMSVC.DLL
16:53:54.0451 5552 C:\Windows\System32\KMSVC.DLL - ok
16:53:54.0455 5552 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll
16:53:54.0455 5552 C:\Windows\System32\NapiNSP.dll - ok
16:53:54.0460 5552 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll
16:53:54.0460 5552 C:\Windows\System32\nlasvc.dll - ok
16:53:54.0464 5552 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll
16:53:54.0464 5552 C:\Windows\System32\pnrpnsp.dll - ok
16:53:54.0468 5552 [ 05586F5438AB0DA4F5149159E0E5FD4B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
16:53:54.0468 5552 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
16:53:54.0472 5552 [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL
16:53:54.0472 5552 C:\Windows\System32\IKEEXT.DLL - ok
16:53:54.0475 5552 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll
16:53:54.0475 5552 C:\Windows\System32\mswsock.dll - ok
16:53:54.0484 5552 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll
16:53:54.0485 5552 C:\Windows\System32\msv1_0.dll - ok
16:53:54.0490 5552 [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll
16:53:54.0490 5552 C:\Windows\System32\netlogon.dll - ok
16:53:54.0494 5552 [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\System32\schannel.dll
16:53:54.0494 5552 C:\Windows\System32\schannel.dll - ok
16:53:54.0497 5552 [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll
16:53:54.0498 5552 C:\Windows\System32\winbrand.dll - ok
16:53:54.0501 5552 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll
16:53:54.0501 5552 C:\Windows\System32\rsaenh.dll - ok
16:53:54.0505 5552 [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll
16:53:54.0505 5552 C:\Windows\System32\wdigest.dll - ok
16:53:54.0508 5552 [ 9AC218C6E6105477484C6FDBE7D409A4 ] C:\Windows\System32\IPBusEnum.dll
16:53:54.0508 5552 C:\Windows\System32\IPBusEnum.dll - ok
16:53:54.0515 5552 [ 1998BD97F950680BB55F55A7244679C2 ] C:\Windows\System32\iphlpsvc.dll
16:53:54.0515 5552 C:\Windows\System32\iphlpsvc.dll - ok
16:53:54.0521 5552 [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll
16:53:54.0522 5552 C:\Windows\System32\TSpkg.dll - ok
16:53:54.0531 5552 [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll
16:53:54.0531 5552 C:\Windows\System32\keyiso.dll - ok
16:53:54.0535 5552 [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll
16:53:54.0535 5552 C:\Windows\System32\srvsvc.dll - ok
16:53:54.0538 5552 [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll
16:53:54.0538 5552 C:\Windows\System32\wkssvc.dll - ok
16:53:54.0546 5552 [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll
16:53:54.0546 5552 C:\Windows\ehome\ehres.dll - ok
16:53:54.0551 5552 [ FA0593D936C9B95FB6FAA32AD1595D49 ] C:\Windows\System32\lltdres.dll
16:53:54.0551 5552 C:\Windows\System32\lltdres.dll - ok
16:53:54.0555 5552 [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll
16:53:54.0555 5552 C:\Windows\System32\lmhsvc.dll - ok
16:53:54.0559 5552 [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll
16:53:54.0559 5552 C:\Windows\System32\FirewallAPI.dll - ok
16:53:54.0564 5552 [ EA822412BBBA9B7D2B1A3748AD50EFB8 ] C:\Windows\System32\iscsidsc.dll
16:53:54.0564 5552 C:\Windows\System32\iscsidsc.dll - ok
16:53:54.0567 5552 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll
16:53:54.0567 5552 C:\Windows\System32\mmcss.dll - ok
16:53:54.0571 5552 [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll
16:53:54.0571 5552 C:\Windows\System32\msimsg.dll - ok
16:53:54.0580 5552 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL
16:53:54.0581 5552 C:\Windows\System32\QAGENTRT.DLL - ok
16:53:54.0586 5552 [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll
16:53:54.0586 5552 C:\Windows\System32\netman.dll - ok
16:53:54.0591 5552 [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll
16:53:54.0591 5552 C:\Windows\System32\netprof.dll - ok
16:53:54.0596 5552 [ CA461A203EF40A98C1C23DE3CBEE68B2 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
16:53:54.0596 5552 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
16:53:54.0598 5552 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll
16:53:54.0598 5552 C:\Windows\System32\nsisvc.dll - ok
16:53:54.0601 5552 [ 0C8E8E61AD1EB0B250B846712C917506 ] C:\Windows\System32\p2psvc.dll
16:53:54.0601 5552 C:\Windows\System32\p2psvc.dll - ok
16:53:54.0608 5552 [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll
16:53:54.0608 5552 C:\Windows\System32\pcasvc.dll - ok
16:53:54.0613 5552 [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll
16:53:54.0614 5552 C:\Windows\System32\pla.dll - ok
16:53:54.0619 5552 [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll
16:53:54.0619 5552 C:\Windows\System32\polstore.dll - ok
16:53:54.0624 5552 [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll
16:53:54.0624 5552 C:\Windows\System32\profsvc.dll - ok
16:53:54.0629 5552 [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll
16:53:54.0629 5552 C:\Windows\System32\umpnpmgr.dll - ok
16:53:54.0633 5552 [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys
16:53:54.0633 5552 C:\Windows\System32\drivers\qwavedrv.sys - ok
16:53:54.0637 5552 [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll
16:53:54.0637 5552 C:\Windows\System32\psbase.dll - ok
16:53:54.0642 5552 [ E9ECAE663F47E6CB43962D18AB18890F ] C:\Windows\System32\qwave.dll
16:53:54.0642 5552 C:\Windows\System32\qwave.dll - ok
16:53:54.0647 5552 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll
16:53:54.0647 5552 C:\Windows\System32\rasauto.dll - ok
16:53:54.0652 5552 [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll
16:53:54.0652 5552 C:\Windows\System32\rasmans.dll - ok
16:53:54.0658 5552 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll
16:53:54.0658 5552 C:\Windows\System32\sstpsvc.dll - ok
16:53:54.0662 5552 [ 8F97D374AD1857E1EED85A79F29A1D3D ] C:\Windows\WindowsMobile\rapimgr.dll
16:53:54.0662 5552 C:\Windows\WindowsMobile\rapimgr.dll - ok
16:53:54.0666 5552 [ 5123F83CBC4349D065534EEB6BBDC42B ] C:\Windows\System32\Locator.exe
16:53:54.0666 5552 C:\Windows\System32\Locator.exe - ok
16:53:54.0670 5552 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll
16:53:54.0670 5552 C:\Windows\System32\mprdim.dll - ok
16:53:54.0678 5552 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] C:\Windows\System32\regsvc.dll
16:53:54.0678 5552 C:\Windows\System32\regsvc.dll - ok
16:53:54.0683 5552 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll
16:53:54.0683 5552 C:\Windows\System32\SCardSvr.dll - ok
16:53:54.0686 5552 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll
16:53:54.0686 5552 C:\Windows\System32\schedsvc.dll - ok
16:53:54.0690 5552 [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll
16:53:54.0690 5552 C:\Windows\System32\sdrsvc.dll - ok
16:53:54.0694 5552 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll
16:53:54.0694 5552 C:\Windows\System32\seclogon.dll - ok
16:53:54.0698 5552 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] C:\Windows\System32\ipnathlp.dll
16:53:54.0698 5552 C:\Windows\System32\ipnathlp.dll - ok
16:53:54.0701 5552 [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll
16:53:54.0701 5552 C:\Windows\System32\Sens.dll - ok
16:53:54.0714 5552 [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll
16:53:54.0714 5552 C:\Windows\System32\SessEnv.dll - ok
16:53:54.0720 5552 [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll
16:53:54.0720 5552 C:\Windows\System32\shsvcs.dll - ok
16:53:54.0723 5552 [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe
16:53:54.0723 5552 C:\Windows\System32\SLsvc.exe - ok
16:53:54.0727 5552 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll
16:53:54.0727 5552 C:\Windows\System32\SLUINotify.dll - ok
16:53:54.0730 5552 [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe
16:53:54.0730 5552 C:\Windows\System32\snmptrap.exe - ok
16:53:54.0738 5552 [ 8554097E5136C3BF9F69FE578A1B35F4 ] C:\Windows\System32\spoolsv.exe
16:53:54.0738 5552 C:\Windows\System32\spoolsv.exe - ok
16:53:54.0740 5552 [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll
16:53:54.0740 5552 C:\Windows\System32\ssdpsrv.dll - ok
16:53:54.0745 5552 [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll
16:53:54.0745 5552 C:\Windows\System32\tcpipcfg.dll - ok
16:53:54.0749 5552 [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll
16:53:54.0749 5552 C:\Windows\System32\swprv.dll - ok
16:53:54.0754 5552 [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll
16:53:54.0754 5552 C:\Windows\System32\sysmain.dll - ok
16:53:54.0758 5552 [ 2DCA225EAE15F42C0933E998EE0231C3 ] C:\Windows\System32\TabSvc.dll
16:53:54.0758 5552 C:\Windows\System32\TabSvc.dll - ok
16:53:54.0762 5552 [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll
16:53:54.0762 5552 C:\Windows\System32\tapisrv.dll - ok
16:53:54.0765 5552 [ CB05822CD9CC6C688168E113C603DBE7 ] C:\Windows\System32\tbssvc.dll
16:53:54.0765 5552 C:\Windows\System32\tbssvc.dll - ok
16:53:54.0768 5552 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll
16:53:54.0768 5552 C:\Windows\System32\wiaservc.dll - ok
16:53:54.0776 5552 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe
16:53:54.0776 5552 C:\Windows\servicing\TrustedInstaller.exe - ok
16:53:54.0784 5552 [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll
16:53:54.0784 5552 C:\Windows\System32\termsrv.dll - ok
16:53:54.0787 5552 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] C:\Windows\System32\trkwks.dll
16:53:54.0787 5552 C:\Windows\System32\trkwks.dll - ok
16:53:54.0790 5552 [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe
16:53:54.0790 5552 C:\Windows\System32\UI0Detect.exe - ok
16:53:54.0794 5552 [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll
16:53:54.0794 5552 C:\Windows\System32\upnphost.dll - ok
16:53:54.0797 5552 [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe
16:53:54.0797 5552 C:\Windows\System32\dwm.exe - ok
16:53:54.0800 5552 [ CD88D1B7776DC17A119049742EC07EB4 ] C:\Windows\System32\vds.exe
16:53:54.0801 5552 C:\Windows\System32\vds.exe - ok
16:53:54.0804 5552 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe
16:53:54.0804 5552 C:\Windows\System32\VSSVC.exe - ok
16:53:54.0807 5552 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll
16:53:54.0807 5552 C:\Windows\System32\w32time.dll - ok
16:53:54.0811 5552 [ A3CD60FD826381B49F03832590E069AF ] C:\Windows\System32\wcncsvc.dll
16:53:54.0811 5552 C:\Windows\System32\wcncsvc.dll - ok
16:53:54.0814 5552 [ 59E19BD13C3BDB857646B9E436BA27F7 ] C:\Windows\WindowsMobile\wcescomm.dll
16:53:54.0814 5552 C:\Windows\WindowsMobile\wcescomm.dll - ok
16:53:54.0818 5552 [ 62DB790A860CDFC4278D2F03CC5675D8 ] C:\Program Files\Windows Defender\MsMpRes.dll
16:53:54.0818 5552 C:\Program Files\Windows Defender\MsMpRes.dll - ok
16:53:54.0821 5552 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll

here is the rest: the post was too long
16:53:54.0821 5552 C:\Windows\System32\WcsPlugInService.dll - ok
16:53:54.0825 5552 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll
16:53:54.0825 5552 C:\Windows\System32\wdi.dll - ok
16:53:54.0828 5552 [ 04C37D8107320312FBAE09926103D5E2 ] C:\Windows\System32\WebClnt.dll
16:53:54.0828 5552 C:\Windows\System32\WebClnt.dll - ok
16:53:54.0831 5552 [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll
16:53:54.0831 5552 C:\Windows\System32\wecsvc.dll - ok
16:53:54.0834 5552 [ 670FF720071ED741206D69BD995EA453 ] C:\Windows\System32\wercplsupport.dll
16:53:54.0835 5552 C:\Windows\System32\wercplsupport.dll - ok
16:53:54.0838 5552 [ 32B88481D3B326DA6DEB07B1D03481E7 ] C:\Windows\System32\wersvc.dll
16:53:54.0838 5552 C:\Windows\System32\wersvc.dll - ok
16:53:54.0841 5552 [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\System32\winhttp.dll
16:53:54.0841 5552 C:\Windows\System32\winhttp.dll - ok
16:53:54.0845 5552 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll
16:53:54.0845 5552 C:\Windows\System32\wbem\WMIsvc.dll - ok
16:53:54.0848 5552 [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll
16:53:54.0848 5552 C:\Windows\System32\wlansvc.dll - ok
16:53:54.0851 5552 [ 7CFE68BDC065E55AA5E8421607037511 ] C:\Windows\System32\WsmSvc.dll
16:53:54.0851 5552 C:\Windows\System32\WsmSvc.dll - ok
16:53:54.0854 5552 [ 3978704576A121A9204F8CC49A301A9B ] C:\Program Files\Windows Media Player\wmpnetwk.exe
16:53:54.0855 5552 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
16:53:54.0858 5552 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:53:54.0858 5552 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok
16:53:54.0862 5552 [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe
16:53:54.0862 5552 C:\Windows\System32\wbem\WmiApSrv.exe - ok
16:53:54.0865 5552 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] C:\Windows\System32\wpcsvc.dll
16:53:54.0865 5552 C:\Windows\System32\wpcsvc.dll - ok
16:53:54.0868 5552 [ 801FBDB89D472B3C467EB112A0FC9246 ] C:\Windows\System32\wpdbusenum.dll
16:53:54.0868 5552 C:\Windows\System32\wpdbusenum.dll - ok
16:53:54.0872 5552 [ AED0DFF80C6B3914769407E78D7AB21A ] C:\Windows\System32\SearchIndexer.exe
16:53:54.0872 5552 C:\Windows\System32\SearchIndexer.exe - ok
16:53:54.0876 5552 [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll
16:53:54.0876 5552 C:\Windows\System32\wscsvc.dll - ok
16:53:54.0880 5552 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
16:53:54.0880 5552 C:\Windows\System32\wuaueng.dll - ok
16:53:54.0883 5552 [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe
16:53:54.0883 5552 C:\Windows\System32\winlogon.exe - ok
16:53:54.0886 5552 [ 575A4190D989F64732119E4114045A4F ] C:\Windows\System32\WUDFSvc.dll
16:53:54.0886 5552 C:\Windows\System32\WUDFSvc.dll - ok
16:53:54.0889 5552 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll
16:53:54.0889 5552 C:\Windows\System32\winsta.dll - ok
16:53:54.0893 5552 [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll
16:53:54.0893 5552 C:\Windows\System32\scecli.dll - ok
16:53:54.0897 5552 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll
16:53:54.0897 5552 C:\Windows\System32\ntmarta.dll - ok
16:53:54.0900 5552 [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe
16:53:54.0900 5552 C:\Windows\System32\svchost.exe - ok
16:53:54.0904 5552 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll
16:53:54.0904 5552 C:\Windows\System32\powrprof.dll - ok
16:53:54.0907 5552 [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys
16:53:54.0907 5552 C:\Windows\System32\drivers\luafv.sys - ok
16:53:54.0912 5552 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll
16:53:54.0912 5552 C:\Windows\System32\rpcss.dll - ok
16:53:54.0915 5552 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll
16:53:54.0915 5552 C:\Windows\System32\version.dll - ok
16:53:54.0919 5552 [ DD1D685D387A8AC666BA3B7539C774E8 ] C:\Windows\System32\wpclsp.dll
16:53:54.0919 5552 C:\Windows\System32\wpclsp.dll - ok
16:53:54.0923 5552 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
16:53:54.0923 5552 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
16:53:54.0926 5552 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
16:53:54.0926 5552 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
16:53:54.0930 5552 [ 9AC7F31404F784753C4C04296E48CFAB ] C:\Program Files\Microsoft Security Client\MpSvc.dll
16:53:54.0930 5552 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
16:53:54.0934 5552 [ 84204FDA617A3611D510A1DCBAE64004 ] C:\Program Files\Microsoft Security Client\MpClient.dll
16:53:54.0934 5552 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
16:53:54.0937 5552 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll
16:53:54.0937 5552 C:\Windows\System32\wtsapi32.dll - ok
16:53:54.0941 5552 [ B2E569EF26DAC9D6994A2AFF4F601B7A ] C:\Windows\System32\wintrust.dll
16:53:54.0941 5552 C:\Windows\System32\wintrust.dll - ok
16:53:54.0944 5552 [ 4575AA12561C5648483403541D0D7F2B ] C:\Program Files\Windows Defender\MpSvc.dll
16:53:54.0944 5552 C:\Program Files\Windows Defender\MpSvc.dll - ok
16:53:54.0948 5552 [ 1BD363738B672A394EBE3B8A78EAB9D3 ] C:\Program Files\Windows Defender\MpClient.dll
16:53:54.0948 5552 C:\Program Files\Windows Defender\MpClient.dll - ok
16:53:54.0951 5552 [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe
16:53:54.0951 5552 C:\Windows\System32\LogonUI.exe - ok
16:53:54.0954 5552 [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll
16:53:54.0954 5552 C:\Windows\System32\authui.dll - ok
16:53:54.0958 5552 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll
16:53:54.0958 5552 C:\Windows\System32\msimg32.dll - ok
16:53:54.0961 5552 [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll
16:53:54.0961 5552 C:\Windows\System32\duser.dll - ok
16:53:54.0964 5552 [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll
16:53:54.0964 5552 C:\Windows\System32\uxtheme.dll - ok
16:53:54.0968 5552 [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll
16:53:54.0968 5552 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok
16:53:54.0971 5552 [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\System32\xmllite.dll
16:53:54.0971 5552 C:\Windows\System32\xmllite.dll - ok
16:53:54.0975 5552 [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll
16:53:54.0975 5552 C:\Windows\System32\rasplap.dll - ok
16:53:54.0978 5552 [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll
16:53:54.0978 5552 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
16:53:54.0982 5552 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll
16:53:54.0982 5552 C:\Windows\System32\rasapi32.dll - ok
16:53:54.0985 5552 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll
16:53:54.0986 5552 C:\Windows\System32\rasman.dll - ok
16:53:54.0989 5552 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll
16:53:54.0989 5552 C:\Windows\System32\rtutils.dll - ok
16:53:54.0993 5552 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll
16:53:54.0993 5552 C:\Windows\System32\tapi32.dll - ok
16:53:54.0997 5552 [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\System32\winmm.dll
16:53:54.0997 5552 C:\Windows\System32\winmm.dll - ok
16:53:55.0000 5552 [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\System32\oleacc.dll
16:53:55.0000 5552 C:\Windows\System32\oleacc.dll - ok
16:53:55.0003 5552 [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll
16:53:55.0003 5552 C:\Windows\System32\WinSCard.dll - ok
16:53:55.0006 5552 [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll
16:53:55.0007 5552 C:\Windows\System32\shgina.dll - ok
16:53:55.0010 5552 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll
16:53:55.0010 5552 C:\Windows\System32\propsys.dll - ok
16:53:55.0013 5552 [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll
16:53:55.0013 5552 C:\Windows\System32\shacct.dll - ok
16:53:55.0016 5552 [ 0DBEE38060475A4C3E04D3B908AEC0B9 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
16:53:55.0016 5552 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
16:53:55.0020 5552 [ CDE41D99DB840FF9454FC981EBD0EC50 ] C:\Windows\System32\atiesrxx.exe
16:53:55.0020 5552 C:\Windows\System32\atiesrxx.exe - ok
16:53:55.0023 5552 [ 7C29BC74635524E13FAA556A5FD48968 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
16:53:55.0024 5552 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
16:53:55.0027 5552 [ 00A0231FCA55C815853B957767E34B02 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
16:53:55.0027 5552 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
16:53:55.0030 5552 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] C:\Windows\System32\drivers\MpFilter.sys
16:53:55.0030 5552 C:\Windows\System32\drivers\MpFilter.sys - ok
16:53:55.0034 5552 [ A9542FF2E9A82CF100E5729EC79068F0 ] C:\Windows\System32\fltLib.dll
16:53:55.0034 5552 C:\Windows\System32\fltLib.dll - ok
16:53:55.0037 5552 [ 2EF4E53ACB0DF0B34091335BB26C2BC2 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
16:53:55.0037 5552 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
16:53:55.0041 5552 [ AEFD5E1D91B86AB41D9705600303F34E ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D24C5A6A-BBB8-41E9-A7BE-F65D2A98959B}\mpengine.dll
16:53:55.0041 5552 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D24C5A6A-BBB8-41E9-A7BE-F65D2A98959B}\mpengine.dll - ok
16:53:55.0044 5552 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll
16:53:55.0044 5552 C:\Windows\System32\MMDevAPI.dll - ok
16:53:55.0048 5552 [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll
16:53:55.0048 5552 C:\Windows\System32\adtschema.dll - ok
16:53:55.0051 5552 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys
16:53:55.0051 5552 C:\Windows\System32\drivers\fltMgr.sys - ok
16:53:55.0055 5552 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll
16:53:55.0055 5552 C:\Windows\System32\avrt.dll - ok
16:53:55.0058 5552 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll
16:53:55.0058 5552 C:\Windows\System32\cabinet.dll - ok
16:53:55.0061 5552 [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL
16:53:55.0061 5552 C:\Windows\System32\PSHED.DLL - ok
16:53:55.0064 5552 [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe
16:53:55.0064 5552 C:\Windows\System32\audiodg.exe - ok
16:53:55.0068 5552 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll
16:53:55.0068 5552 C:\Windows\System32\gpsvc.dll - ok
16:53:55.0071 5552 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll
16:53:55.0071 5552 C:\Windows\System32\atl.dll - ok
16:53:55.0074 5552 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll
16:53:55.0074 5552 C:\Windows\System32\nlaapi.dll - ok
16:53:55.0078 5552 [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll
16:53:55.0078 5552 C:\Windows\System32\es.dll - ok
16:53:55.0081 5552 [ 13511564CAC5A005255765E322C16967 ] C:\Program Files\Dell\DellDock\DockLogin.exe
16:53:55.0081 5552 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
16:53:55.0085 5552 [ 1EBD39E67AAC1AAC035258C7DEF9EFC8 ] C:\Windows\System32\atieclxx.exe
16:53:55.0085 5552 C:\Windows\System32\atieclxx.exe - ok
16:53:55.0088 5552 [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys
16:53:55.0088 5552 C:\Windows\System32\drivers\spsys.sys - ok
16:53:55.0092 5552 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll
16:53:55.0092 5552 C:\Windows\System32\dwmapi.dll - ok
16:53:55.0095 5552 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll
16:53:55.0095 5552 C:\Windows\System32\WindowsCodecs.dll - ok
16:53:55.0099 5552 [ 75BD8BB09907923FB2A89C2EE2C772E0 ] C:\Windows\System32\atiadlxx.dll
16:53:55.0099 5552 C:\Windows\System32\atiadlxx.dll - ok
16:53:55.0102 5552 [ 1509E705F3AC1D474C92454A5C2DD81F ] C:\Windows\System32\uxsms.dll
16:53:55.0102 5552 C:\Windows\System32\uxsms.dll - ok
16:53:55.0105 5552 [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll
16:53:55.0105 5552 C:\Windows\System32\hid.dll - ok
16:53:55.0108 5552 [ 399BB52AD0668472717498E97CF28341 ] C:\Windows\System32\WUDFPlatform.dll
16:53:55.0108 5552 C:\Windows\System32\WUDFPlatform.dll - ok
16:53:55.0112 5552 [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys
16:53:55.0112 5552 C:\Windows\System32\drivers\lltdio.sys - ok
16:53:55.0115 5552 [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys
16:53:55.0115 5552 C:\Windows\System32\drivers\rspndr.sys - ok
16:53:55.0118 5552 [ 7F8D15EE000577BE703537849D4F9397 ] C:\Windows\System32\drivers\RtNdPt60.sys
16:53:55.0118 5552 C:\Windows\System32\drivers\RtNdPt60.sys - ok
16:53:55.0122 5552 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll
16:53:55.0122 5552 C:\Windows\System32\dnsrslvr.dll - ok
16:53:55.0126 5552 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
16:53:55.0126 5552 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok
16:53:55.0129 5552 [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll
16:53:55.0129 5552 C:\Windows\System32\ktmw32.dll - ok
16:53:55.0132 5552 [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll
16:53:55.0133 5552 C:\Windows\System32\taskcomp.dll - ok
16:53:55.0136 5552 [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys
16:53:55.0136 5552 C:\Windows\System32\drivers\http.sys - ok
16:53:55.0139 5552 [ E79FDA8D320147FDC347C504B3487F87 ] C:\Windows\System32\spoolss.dll
16:53:55.0139 5552 C:\Windows\System32\spoolss.dll - ok
16:53:55.0143 5552 [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys
16:53:55.0143 5552 C:\Windows\System32\drivers\srvnet.sys - ok
16:53:55.0146 5552 [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL
16:53:55.0146 5552 C:\Windows\System32\FWPUCLNT.DLL - ok
16:53:55.0149 5552 [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys
16:53:55.0149 5552 C:\Windows\System32\drivers\bowser.sys - ok
16:53:55.0153 5552 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys
16:53:55.0153 5552 C:\Windows\System32\drivers\mpsdrv.sys - ok
16:53:55.0156 5552 [ 82CEA0395524AACFEB58BA1448E8325C ] C:\Windows\System32\drivers\mrxdav.sys
16:53:55.0156 5552 C:\Windows\System32\drivers\mrxdav.sys - ok
16:53:55.0160 5552 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys
16:53:55.0160 5552 C:\Windows\System32\drivers\mrxsmb.sys - ok
16:53:55.0163 5552 [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll
16:53:55.0163 5552 C:\Windows\System32\MPSSVC.dll - ok
16:53:55.0166 5552 [ 4FCCB34D793B116423209C0F8B7A3B03 ] C:\Windows\System32\drivers\mrxsmb10.sys
16:53:55.0166 5552 C:\Windows\System32\drivers\mrxsmb10.sys - ok
16:53:55.0170 5552 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys
16:53:55.0170 5552 C:\Windows\System32\drivers\mrxsmb20.sys - ok
16:53:55.0173 5552 [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys
16:53:55.0173 5552 C:\Windows\System32\drivers\srv2.sys - ok
16:53:55.0176 5552 [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys
16:53:55.0177 5552 C:\Windows\System32\drivers\srv.sys - ok
16:53:55.0180 5552 [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll
16:53:55.0180 5552 C:\Windows\System32\wiarpc.dll - ok
16:53:55.0183 5552 [ FC5372FD2DEB28E847C8394C58BC76FA ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
16:53:55.0183 5552 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
16:53:55.0187 5552 [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll
16:53:55.0187 5552 C:\Windows\System32\activeds.dll - ok
16:53:55.0190 5552 [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll
16:53:55.0190 5552 C:\Windows\System32\clusapi.dll - ok
16:53:55.0193 5552 [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll
16:53:55.0193 5552 C:\Windows\System32\netmsg.dll - ok
16:53:55.0197 5552 [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll
16:53:55.0197 5552 C:\Windows\System32\sscore.dll - ok
16:53:55.0200 5552 [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll
16:53:55.0200 5552 C:\Windows\System32\wscapi.dll - ok
16:53:55.0203 5552 [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll
16:53:55.0203 5552 C:\Windows\System32\adsldpc.dll - ok
16:53:55.0206 5552 [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll
16:53:55.0207 5552 C:\Windows\System32\credui.dll - ok
16:53:55.0210 5552 [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll
16:53:55.0210 5552 C:\Windows\System32\resutils.dll - ok
16:53:55.0213 5552 [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll
16:53:55.0213 5552 C:\Windows\System32\wfapigp.dll - ok
16:53:55.0216 5552 [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\System32\mscms.dll
16:53:55.0216 5552 C:\Windows\System32\mscms.dll - ok
16:53:55.0219 5552 [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\WindowsMobile\wmdcBase.exe
16:53:55.0219 5552 C:\Windows\WindowsMobile\wmdcBase.exe - ok
16:53:55.0223 5552 [ 1311171CF8F6D2954441EF2A42693035 ] C:\Windows\System32\WsmRes.dll
16:53:55.0223 5552 C:\Windows\System32\WsmRes.dll - ok
16:53:55.0226 5552 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv
16:53:55.0226 5552 C:\Windows\System32\winspool.drv - ok
16:53:55.0230 5552 [ E230F3776F373F4C5E788794B53101E4 ] C:\Windows\System32\plasrv.exe
16:53:55.0230 5552 C:\Windows\System32\plasrv.exe - ok
16:53:55.0233 5552 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv
16:53:55.0233 5552 C:\Windows\System32\wdmaud.drv - ok
16:53:55.0236 5552 [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll
16:53:55.0236 5552 C:\Windows\System32\AudioEng.dll - ok
16:53:55.0239 5552 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll
16:53:55.0239 5552 C:\Windows\System32\AudioSes.dll - ok
16:53:55.0243 5552 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll
16:53:55.0243 5552 C:\Windows\System32\ksuser.dll - ok
16:53:55.0246 5552 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll
16:53:55.0246 5552 C:\Windows\System32\p2pcollab.dll - ok
16:53:55.0249 5552 [ 3B47E60E1012B23873ED2E4A9B4F2310 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
16:53:55.0250 5552 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
16:53:55.0253 5552 [ DA887F28054D78EE8637BEBB924A2DB5 ] C:\Windows\System32\slwga.dll
16:53:55.0253 5552 C:\Windows\System32\slwga.dll - ok
16:53:55.0256 5552 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
16:53:55.0256 5552 C:\Program Files\Bonjour\mdnsNSP.dll - ok
16:53:55.0260 5552 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv
16:53:55.0260 5552 C:\Windows\System32\msacm32.drv - ok
16:53:55.0263 5552 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll
16:53:55.0263 5552 C:\Windows\System32\winrnr.dll - ok
16:53:55.0266 5552 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll
16:53:55.0266 5552 C:\Windows\System32\msacm32.dll - ok
16:53:55.0270 5552 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll
16:53:55.0270 5552 C:\Windows\System32\rasadhlp.dll - ok
16:53:55.0273 5552 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll
16:53:55.0273 5552 C:\Windows\System32\midimap.dll - ok
16:53:55.0276 5552 [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll
16:53:55.0276 5552 C:\Windows\System32\AUDIOKSE.dll - ok
16:53:55.0280 5552 [ 14F8E4554F4D09C7F26BC36933C5933C ] C:\Windows\System32\DaisyWrp.dll
16:53:55.0280 5552 C:\Windows\System32\DaisyWrp.dll - ok
16:53:55.0283 5552 [ 9C922524BDFBE9B4E4D1CF270D448E7D ] C:\Windows\System32\CTAPO32.dll
16:53:55.0283 5552 C:\Windows\System32\CTAPO32.dll - ok
16:53:55.0286 5552 [ DDE74A55261AA4BD228682DDDE57A021 ] C:\Windows\System32\RtkAPO.dll
16:53:55.0286 5552 C:\Windows\System32\RtkAPO.dll - ok
16:53:55.0290 5552 [ 0727200F10320A6BA7E59433094FBBA7 ] C:\Windows\System32\WMALFXGFXDSP.dll
16:53:55.0290 5552 C:\Windows\System32\WMALFXGFXDSP.dll - ok
16:53:55.0293 5552 [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll
16:53:55.0293 5552 C:\Windows\System32\mfplat.dll - ok
16:53:55.0297 5552 [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll
16:53:55.0297 5552 C:\Windows\System32\umb.dll - ok
16:53:55.0300 5552 [ 63396CBB1365769D520E0FD89C2419F2 ] C:\Windows\System32\localspl.dll
16:53:55.0300 5552 C:\Windows\System32\localspl.dll - ok
16:53:55.0303 5552 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll
16:53:55.0303 5552 C:\Windows\System32\sfc.dll - ok
16:53:55.0306 5552 [ AE81A42B7A20FA9894B953DFCC3BBC4B ] C:\Windows\System32\CNMLM9I.DLL
16:53:55.0306 5552 C:\Windows\System32\CNMLM9I.DLL - ok
16:53:55.0310 5552 [ 8FA382B5A54DC35875A067C84FBD6240 ] C:\Windows\System32\hpf3l101.dll
16:53:55.0310 5552 C:\Windows\System32\hpf3l101.dll - ok
16:53:55.0313 5552 [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\Windows\System32\msonpmon.dll
16:53:55.0313 5552 C:\Windows\System32\msonpmon.dll - ok
16:53:55.0316 5552 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
16:53:55.0316 5552 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
16:53:55.0320 5552 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll
16:53:55.0320 5552 C:\Windows\System32\msi.dll - ok
16:53:55.0323 5552 [ BB0EB921877A1A7EF15AE2D97A71CBA9 ] C:\Windows\System32\tcpmon.dll
16:53:55.0323 5552 C:\Windows\System32\tcpmon.dll - ok
16:53:55.0327 5552 [ AF24A9DF84637BF9858EC6FB88EBA7B2 ] C:\Windows\System32\snmpapi.dll
16:53:55.0327 5552 C:\Windows\System32\snmpapi.dll - ok
16:53:55.0330 5552 [ 1EDE113859276E4B0F19B80F39E2CC95 ] C:\Windows\System32\wsnmp32.dll
16:53:55.0330 5552 C:\Windows\System32\wsnmp32.dll - ok
16:53:55.0334 5552 [ 024528E25BBE8768536861EA09BE1672 ] C:\Windows\System32\msxml6.dll
16:53:55.0334 5552 C:\Windows\System32\msxml6.dll - ok
16:53:55.0337 5552 [ 5091452DC719281CF1DD69367E13B494 ] C:\Windows\System32\tcpmib.dll
16:53:55.0337 5552 C:\Windows\System32\tcpmib.dll - ok
16:53:55.0340 5552 [ B4F5DE3DAD8E6B97272F45DB97674878 ] C:\Windows\System32\mgmtapi.dll
16:53:55.0340 5552 C:\Windows\System32\mgmtapi.dll - ok
16:53:55.0344 5552 [ 0BF0BB276F17B6AD61A8694D2551EC28 ] C:\Windows\System32\usbmon.dll
16:53:55.0344 5552 C:\Windows\System32\usbmon.dll - ok
16:53:55.0347 5552 [ 0EB1CC5EBFCAAB7DBAEE881E2887F7F9 ] C:\Windows\System32\WSDMon.dll
16:53:55.0347 5552 C:\Windows\System32\WSDMon.dll - ok
16:53:55.0351 5552 [ AD48183027CAFCEBC322CB9CAC60F9B8 ] C:\Windows\System32\WSDApi.dll
16:53:55.0351 5552 C:\Windows\System32\WSDApi.dll - ok
16:53:55.0354 5552 [ F86293D93760C70ADF4F19E66E3FA5E8 ] C:\Windows\System32\httpapi.dll
16:53:55.0354 5552 C:\Windows\System32\httpapi.dll - ok
16:53:55.0357 5552 [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll
16:53:55.0357 5552 C:\Windows\System32\cfgmgr32.dll - ok
16:53:55.0360 5552 [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll
16:53:55.0361 5552 C:\Windows\System32\fundisc.dll - ok
16:53:55.0364 5552 [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\System32\msxml3.dll
16:53:55.0364 5552 C:\Windows\System32\msxml3.dll - ok
16:53:55.0367 5552 [ 549443507E0A4D38EA7160927FA8AE5E ] C:\Windows\System32\spool\prtprocs\w32x86\hpfpp101.dll
16:53:55.0367 5552 C:\Windows\System32\spool\prtprocs\w32x86\hpfpp101.dll - ok
16:53:55.0371 5552 [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
16:53:55.0371 5552 C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
16:53:55.0374 5552 [ C90B296C43EDD9DD1751AD3B590ACDE6 ] C:\Windows\System32\win32spl.dll
16:53:55.0374 5552 C:\Windows\System32\win32spl.dll - ok
16:53:55.0377 5552 [ 4BF053944E973C073339BE841C9ECF28 ] C:\Windows\System32\netrap.dll
16:53:55.0377 5552 C:\Windows\System32\netrap.dll - ok
16:53:55.0381 5552 [ E340845C8E96D107C36420065D7A5733 ] C:\Windows\System32\printcom.dll
16:53:55.0381 5552 C:\Windows\System32\printcom.dll - ok
16:53:55.0384 5552 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll
16:53:55.0384 5552 C:\Windows\System32\SensApi.dll - ok
16:53:55.0387 5552 [ 2E8E30F3B318A9FDA5A2485723F4C2B3 ] C:\Windows\System32\inetpp.dll
16:53:55.0387 5552 C:\Windows\System32\inetpp.dll - ok
16:53:55.0390 5552 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll
16:53:55.0390 5552 C:\Windows\System32\cscapi.dll - ok
16:53:55.0394 5552 [ 8B43B71E6D946C4F5531981FC146A102 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL
16:53:55.0394 5552 C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL - ok
16:53:55.0398 5552 [ 6B7622CA9F9E218B37A4CA89CCD2BD3C ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRVUI.DLL
16:53:55.0398 5552 C:\Windows\System32\spool\drivers\w32x86\3\UNIDRVUI.DLL - ok
16:53:55.0401 5552 [ 0A68CCFFCF684940C910D7037F54A762 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfui101.dll
16:53:55.0401 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfui101.dll - ok
16:53:55.0405 5552 [ 6328085AC6E6C55E47D558E75E5E8AE4 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfst101.dll
16:53:55.0405 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfst101.dll - ok
16:53:55.0409 5552 [ B3E573761417F4E69F60E3853934712B ] C:\Windows\System32\spool\drivers\w32x86\3\UNIRES.DLL
16:53:55.0409 5552 C:\Windows\System32\spool\drivers\w32x86\3\UNIRES.DLL - ok
16:53:55.0412 5552 [ B4D094852B3855265E880F8879744E96 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfvu101.dll
16:53:55.0412 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfvu101.dll - ok
16:53:55.0416 5552 [ 4F35C9BE80C4B42696A171CC6CFFBDA9 ] C:\Windows\System32\spool\drivers\w32x86\3\hpod1103.dll
16:53:55.0416 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpod1103.dll - ok
16:53:55.0419 5552 [ 383CCDF11815D1A02B9DF67D724A2B97 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfev101.dll
16:53:55.0419 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfev101.dll - ok
16:53:55.0423 5552 [ 18ED54F341FB1BA299EB553A4B0F82E5 ] C:\Windows\System32\spool\drivers\w32x86\3\hpf3r101.dll
16:53:55.0423 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpf3r101.dll - ok
16:53:55.0426 5552 [ D050093B156EC82420B181171B8EAA59 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfrs101.dll
16:53:55.0426 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfrs101.dll - ok
16:53:55.0430 5552 [ 688EAACBDAF0B61A09BF7261FCED5CB1 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfie101.dll
16:53:55.0430 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfie101.dll - ok
16:53:55.0433 5552 [ 1DC3750F980A2F824B3FB055C43FC17F ] C:\Windows\System32\spool\drivers\w32x86\3\hpfpr101.dll
16:53:55.0434 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfpr101.dll - ok
16:53:55.0437 5552 [ 8AF26C375169903C5126944C2845D066 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfpa101.dll
16:53:55.0437 5552 C:\Windows\System32\spool\drivers\w32x86\3\hpfpa101.dll - ok
16:53:55.0441 5552 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:53:55.0441 5552 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
16:53:55.0444 5552 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll
16:53:55.0444 5552 C:\Windows\System32\shimeng.dll - ok
16:53:55.0448 5552 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
16:53:55.0448 5552 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
16:53:55.0451 5552 [ B6D7239E7AF6D1B64C790A28067DC6E5 ] C:\Windows\System32\AERTSrv.exe
16:53:55.0451 5552 C:\Windows\System32\AERTSrv.exe - ok
16:53:55.0455 5552 [ 7EF47644B74EBE721CC32211D3C35E76 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:53:55.0455 5552 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
16:53:55.0459 5552 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
16:53:55.0459 5552 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
16:53:55.0462 5552 [ 6C63DC384A15E2AFD4A860031EF40267 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
16:53:55.0462 5552 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
16:53:55.0466 5552 [ 2DEDC3AFE3C49B5DAE717D0A9BEBF298 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
16:53:55.0466 5552 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
16:53:55.0470 5552 [ 67B539D844F804EBAC7A1E3828FDE709 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
16:53:55.0470 5552 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
16:53:55.0474 5552 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
16:53:55.0474 5552 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
16:53:55.0478 5552 [ 4AA0527547BE16653D5ADF96F41E1E24 ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
16:53:55.0478 5552 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
16:53:55.0481 5552 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll
16:53:55.0481 5552 C:\Windows\System32\wsock32.dll - ok
16:53:55.0485 5552 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
16:53:55.0485 5552 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
16:53:55.0488 5552 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
16:53:55.0489 5552 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
16:53:55.0492 5552 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
16:53:55.0492 5552 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
16:53:55.0496 5552 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
16:53:55.0496 5552 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
16:53:55.0500 5552 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
16:53:55.0500 5552 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
16:53:55.0504 5552 [ F8ECB748B53A010464F7A63154D75F56 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
16:53:55.0504 5552 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
16:53:55.0508 5552 [ B41F0E54105801538D56623271A0AE49 ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
16:53:55.0508 5552 C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
16:53:55.0511 5552 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll
16:53:55.0511 5552 C:\Windows\System32\dnssd.dll - ok
16:53:55.0514 5552 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\System32\msvcp100.dll
16:53:55.0514 5552 C:\Windows\System32\msvcp100.dll - ok
16:53:55.0518 5552 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\System32\msvcr100.dll
16:53:55.0518 5552 C:\Windows\System32\msvcr100.dll - ok
16:53:55.0521 5552 [ 19AB8FC7314FF801CDC4163DC930611B ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
16:53:55.0521 5552 C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
16:53:55.0525 5552 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
16:53:55.0525 5552 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
16:53:55.0529 5552 [ 2C478E667CE27B2B7142F756CF569A9A ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
16:53:55.0529 5552 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
16:53:55.0533 5552 [ FC33CBBB9CADCEC307DA010FE763D04C ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
16:53:55.0533 5552 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
16:53:55.0537 5552 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
16:53:55.0537 5552 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
16:53:55.0541 5552 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
16:53:55.0541 5552 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
16:53:55.0544 5552 [ E345949DA70FB66D950D9685EF5E5525 ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
16:53:55.0544 5552 C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
16:53:55.0548 5552 [ 0D2EB149AFF89A307E5D82D0A2B78439 ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
16:53:55.0548 5552 C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
16:53:55.0551 5552 [ 6163664C7E9CD110AF70180C126C3FDC ] C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
16:53:55.0551 5552 C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe - ok
16:53:55.0555 5552 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
16:53:55.0555 5552 C:\Program Files\Bonjour\mDNSResponder.exe - ok
16:53:55.0559 5552 [ 9513B437B7ADB1E6065B7F0D83D11ECF ] C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
16:53:55.0559 5552 C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe - ok
16:53:55.0562 5552 [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll
16:53:55.0562 5552 C:\Windows\System32\wdscore.dll - ok
16:53:55.0565 5552 [ BA7A14CE488EC33BC3CF19AA1574D1EE ] C:\Program Files\Seagate\SeagateManager\Sync\STXDEVIF.dll
16:53:55.0565 5552 C:\Program Files\Seagate\SeagateManager\Sync\STXDEVIF.dll - ok
16:53:55.0569 5552 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
16:53:55.0569 5552 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
16:53:55.0573 5552 [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll
16:53:55.0573 5552 C:\Windows\System32\vssapi.dll - ok
16:53:55.0576 5552 [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll
16:53:55.0576 5552 C:\Windows\System32\taskschd.dll - ok
16:53:55.0580 5552 [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll
16:53:55.0580 5552 C:\Windows\System32\vsstrace.dll - ok
16:53:55.0583 5552 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll
16:53:55.0583 5552 C:\Windows\System32\sfc_os.dll - ok
16:53:55.0586 5552 [ 09469B8EDD2755143FDA06867AAD7E73 ] C:\Windows\System32\cryptnet.dll
16:53:55.0586 5552 C:\Windows\System32\cryptnet.dll - ok
16:53:55.0590 5552 [ 1E9B9A70D332103C52995E957DC09EF8 ] C:\Windows\System32\drivers\fastfat.sys
16:53:55.0590 5552 C:\Windows\System32\drivers\fastfat.sys - ok
16:53:55.0593 5552 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
16:53:55.0593 5552 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
16:53:55.0597 5552 [ 7215E4487C4387B29D315BB002C99F98 ] C:\Program Files\AVG\AVG2013\avgwd.dll
16:53:55.0597 5552 C:\Program Files\AVG\AVG2013\avgwd.dll - ok
16:53:55.0601 5552 [ 277C753EEB845D8556809079155F8CF9 ] C:\Program Files\Seagate\SeagateManager\Encryption\SFECopier.dll
16:53:55.0601 5552 C:\Program Files\Seagate\SeagateManager\Encryption\SFECopier.dll - ok
16:53:55.0604 5552 [ 06E9F58208A5CC2A2F7231E0BD8AF6E2 ] C:\Program Files\Seagate\SeagateManager\Encryption\SFEConfiguration.dll
16:53:55.0604 5552 C:\Program Files\Seagate\SeagateManager\Encryption\SFEConfiguration.dll - ok
16:53:55.0608 5552 [ 77EB21801462857CFD843DFFDDA9895E ] C:\Program Files\Seagate\SeagateManager\Encryption\SFECrypto.dll
16:53:55.0608 5552 C:\Program Files\Seagate\SeagateManager\Encryption\SFECrypto.dll - ok
16:53:55.0612 5552 [ A145B4126F6BBB25A34BBBA9DC90DA4A ] C:\Program Files\Seagate\SeagateManager\Encryption\SFEPassword.dll
16:53:55.0612 5552 C:\Program Files\Seagate\SeagateManager\Encryption\SFEPassword.dll - ok
16:53:55.0615 5552 [ A647E06041B53DDC1D2627D77234B078 ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
16:53:55.0615 5552 C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
16:53:55.0618 5552 [ 45AA6F0F4B57FA9245065113CF6A233C ] C:\Program Files\iWin Games\iWinTrusted.exe
16:53:55.0618 5552 C:\Program Files\iWin Games\iWinTrusted.exe - ok
16:53:55.0622 5552 [ 2A554B759EC7FA76B72D38CBC549DEF2 ] C:\Program Files\Seagate\SeagateManager\Backup\MaxBackServiceInt.exe
16:53:55.0622 5552 C:\Program Files\Seagate\SeagateManager\Backup\MaxBackServiceInt.exe - ok
16:53:55.0626 5552 [ 0756EE69E0B87190253CC54A20F89CD8 ] C:\Program Files\Seagate\SeagateManager\Backup\STXDEVIF.dll
16:53:55.0626 5552 C:\Program Files\Seagate\SeagateManager\Backup\STXDEVIF.dll - ok
16:53:55.0629 5552 [ F8B823414A22DBF3BEC10DCAA5F93CD8 ] C:\Program Files\Common Files\Motive\McciCMService.exe
16:53:55.0629 5552 C:\Program Files\Common Files\Motive\McciCMService.exe - ok
16:53:55.0633 5552 [ D86A39BF100069444D026D22D9A6E555 ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
16:53:55.0633 5552 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
16:53:55.0636 5552 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] C:\Windows\System32\drivers\mdmxsdk.sys
16:53:55.0636 5552 C:\Windows\System32\drivers\mdmxsdk.sys - ok
16:53:55.0639 5552 [ C559672F31ABE6BA7277DD73C4502238 ] C:\Windows\System32\msiexec.exe
16:53:55.0640 5552 C:\Windows\System32\msiexec.exe - ok
16:53:55.0643 5552 [ 2A6B16AAD88A449B9E124FBF2D308E07 ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
16:53:55.0643 5552 C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
16:53:55.0647 5552 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
16:53:55.0647 5552 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
16:53:55.0651 5552 [ 921FFEE6A4F187D0ED0C4B93F2B16D8D ] C:\Program Files\AVG\AVG2013\avgxpl.dll
16:53:55.0651 5552 C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
16:53:55.0654 5552 [ FD647CA82ACF232DBE5F20345647B948 ] C:\Windows\AppPatch\AcGenral.dll
16:53:55.0654 5552 C:\Windows\AppPatch\AcGenral.dll - ok
16:53:55.0657 5552 [ 46A543D049DDAB3716919FFB14BC7713 ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
16:53:55.0657 5552 C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
16:53:55.0661 5552 [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll
16:53:55.0661 5552 C:\Windows\System32\wbemcomn.dll - ok
16:53:55.0664 5552 [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll
16:53:55.0664 5552 C:\Windows\System32\wbem\wbemprox.dll - ok
16:53:55.0668 5552 [ C7F4703C0E8803EE9C9F12C62D2A3662 ] C:\Program Files\AVG\AVG2013\avgnsx.exe
16:53:55.0668 5552 C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
16:53:55.0671 5552 [ EF16562F8E2017A693C4016F5CB94285 ] C:\Program Files\AVG\AVG2013\avgsched.dll
16:53:55.0671 5552 C:\Program Files\AVG\AVG2013\avgsched.dll - ok
16:53:55.0674 5552 [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] C:\Windows\System32\drivers\NisDrvWFP.sys
16:53:55.0674 5552 C:\Windows\System32\drivers\NisDrvWFP.sys - ok
16:53:55.0678 5552 [ A081CB6FB9A12668F233EB5414BE3A0E ] C:\Windows\System32\HPZinw12.dll
16:53:55.0678 5552 C:\Windows\System32\HPZinw12.dll - ok
16:53:55.0681 5552 [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll
16:53:55.0681 5552 C:\Windows\System32\ncsi.dll - ok
16:53:55.0684 5552 [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys
16:53:55.0684 5552 C:\Windows\System32\drivers\PEAuth.sys - ok
16:53:55.0688 5552 [ 65BC271F337637731D3C71455AE1F476 ] C:\Windows\System32\HPZipm12.dll
16:53:55.0688 5552 C:\Windows\System32\HPZipm12.dll - ok
16:53:55.0691 5552 [ FDED778DAF09235E4580F1B9046946B6 ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
16:53:55.0691 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe - ok
16:53:55.0694 5552 [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL
16:53:55.0694 5552 C:\Windows\System32\IPSECSVC.DLL - ok
16:53:55.0697 5552 [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll
16:53:55.0697 5552 C:\Windows\System32\ssdpapi.dll - ok
16:53:55.0701 5552 [ 182913DE5694BA49089F7A1ACB0C2CF6 ] C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\CPSCommonTools10.dll
16:53:55.0701 5552 C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\CPSCommonTools10.dll - ok
16:53:55.0705 5552 [ 3BC916DAB73EE6F41BEB44E2831F2E7A ] C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\roxipp52.dll
16:53:55.0705 5552 C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\roxipp52.dll - ok
16:53:55.0708 5552 [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll
16:53:55.0708 5552 C:\Windows\System32\FwRemoteSvr.dll - ok
16:53:55.0712 5552 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\System32\msvcr71.dll
16:53:55.0712 5552 C:\Windows\System32\msvcr71.dll - ok
16:53:55.0715 5552 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\System32\msvcp71.dll
16:53:55.0715 5552 C:\Windows\System32\msvcp71.dll - ok
16:53:55.0718 5552 [ C75FDA9AB3314E555123673E08F9D86D ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
16:53:55.0718 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe - ok
16:53:55.0722 5552 [ 8289C17E70423B4A2F37E388A93CE911 ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\LeResourceLoader.dll
16:53:55.0722 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\LeResourceLoader.dll - ok
16:53:55.0726 5552 [ C58184E2DF126BCF9E29A3E0F390F9F5 ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFileLoader.dll
16:53:55.0726 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFileLoader.dll - ok
16:53:55.0730 5552 [ 9303C257684E1EC2888D33955A636FCA ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSCommonEnglish.dll
16:53:55.0730 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSCommonEnglish.dll - ok
16:53:55.0733 5552 [ A7D03AB79BA777AB4AB140BC3D290C20 ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSCommonObjects.dll
16:53:55.0733 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSCommonObjects.dll - ok
16:53:55.0737 5552 [ 09DEF3ABB6A196749299359AC5578DD8 ] C:\Windows\System32\msxml4.dll
16:53:55.0737 5552 C:\Windows\System32\msxml4.dll - ok
16:53:55.0740 5552 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
16:53:55.0740 5552 C:\Windows\System32\drivers\secdrv.sys - ok
16:53:55.0744 5552 [ 19B37960F6B8C4C5911783EF25B62D37 ] C:\Program Files\Common Files\Roxio Shared\DLLShared\HomeUtils10.dll
16:53:55.0744 5552 C:\Program Files\Common Files\Roxio Shared\DLLShared\HomeUtils10.dll - ok
16:53:55.0748 5552 [ 8CA8ADFDE2CB6DA69877A3D6A971157B ] C:\Program Files\Common Files\Roxio Shared\DLLShared\rsl.dll
16:53:55.0748 5552 C:\Program Files\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
16:53:55.0752 5552 [ 7B93C623333F121DC9E689CCB1B7A733 ] C:\Windows\System32\mfc71u.dll
16:53:55.0752 5552 C:\Windows\System32\mfc71u.dll - ok
16:53:55.0756 5552 [ 5B66DB4877BBAC9F7493AA8D84421E49 ] C:\Program Files\Secunia\PSI\psia.exe
16:53:55.0756 5552 C:\Program Files\Secunia\PSI\psia.exe - ok
16:53:55.0759 5552 [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\Windows\System32\MFC71ENU.DLL
16:53:55.0759 5552 C:\Windows\System32\MFC71ENU.DLL - ok
16:53:55.0763 5552 [ 43773895A3A08056A62AE564833FAA4E ] C:\Program Files\Common Files\Roxio Shared\DLLShared\rcsl.dll
16:53:55.0763 5552 C:\Program Files\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
16:53:55.0766 5552 [ E34C4AAF1533648BC4B671C0F4D86F03 ] C:\Windows\System32\jscript.dll
16:53:55.0767 5552 C:\Windows\System32\jscript.dll - ok
16:53:55.0770 5552 [ 0E88FDF474F2CDD370A4A6CE77D018F0 ] C:\Program Files\Secunia\PSI\sua.exe
16:53:55.0770 5552 C:\Program Files\Secunia\PSI\sua.exe - ok
16:53:55.0773 5552 [ 753D254205E0A62100A050BD8B458D06 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:53:55.0773 5552 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
16:53:55.0777 5552 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files\Skype\Updater\Updater.exe
16:53:55.0777 5552 C:\Program Files\Skype\Updater\Updater.exe - ok
16:53:55.0780 5552 [ BCDE2AD809248B47B9A3B82B6FD85108 ] C:\Program Files\Dell\DellComms\bin\sprtsvc.exe
16:53:55.0780 5552 C:\Program Files\Dell\DellComms\bin\sprtsvc.exe - ok
16:53:55.0784 5552 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
16:53:55.0784 5552 C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - ok
16:53:55.0788 5552 [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
16:53:55.0788 5552 C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
16:53:55.0791 5552 [ D89083C4EB02DACA8F944B0E05E57F9D ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:53:55.0791 5552 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
16:53:55.0795 5552 [ 0D77436DA61BE7338BC600F0D8773331 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll
16:53:55.0795 5552 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll - ok
16:53:55.0798 5552 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] C:\Windows\System32\drivers\tcpipreg.sys
16:53:55.0798 5552 C:\Windows\System32\drivers\tcpipreg.sys - ok
16:53:55.0802 5552 [ CBA3F6EF1E70167DB376B4013F71A62B ] C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
16:53:55.0802 5552 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe - ok
16:53:55.0806 5552 [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll
16:53:55.0806 5552 C:\Windows\System32\wiatrace.dll - ok
16:53:55.0809 5552 [ 0C84B6AFFA7486422235584110D7176F ] C:\Windows\System32\icaapi.dll
16:53:55.0809 5552 C:\Windows\System32\icaapi.dll - ok
16:53:55.0812 5552 [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll
16:53:55.0812 5552 C:\Windows\System32\wsdchngr.dll - ok
16:53:55.0815 5552 [ FE546ADF53E0AB4C27DC7A49DA0E3ECA ] C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
16:53:55.0816 5552 C:\Program Files\Web Assistant\ExtensionUpdaterService.exe - ok
16:53:55.0819 5552 [ 46E273255CAA784DAEDBFC9887B782C4 ] C:\Program Files\Dell\DellComms\bin\sprtsched.dll
16:53:55.0819 5552 C:\Program Files\Dell\DellComms\bin\sprtsched.dll - ok
16:53:55.0823 5552 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
16:53:55.0823 5552 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok
16:53:55.0826 5552 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL
16:53:55.0826 5552 C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok
16:53:55.0830 5552 [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\System32\wer.dll
16:53:55.0830 5552 C:\Windows\System32\wer.dll - ok
16:53:55.0833 5552 [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll
16:53:55.0833 5552 C:\Windows\System32\wbem\WinMgmtR.dll - ok
16:53:55.0837 5552 [ ED181D1E5521A789C6D7DEAD6FD5A08E ] C:\Program Files\Dell\DellComms\bin\sprtfod.dll
16:53:55.0837 5552 C:\Program Files\Dell\DellComms\bin\sprtfod.dll - ok
16:53:55.0841 5552 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll
16:53:55.0841 5552 C:\Windows\System32\PortableDeviceApi.dll - ok
16:53:55.0844 5552 [ DEB9D08750423069647C3A066CEC7A1B ] C:\Windows\System32\tquery.dll
16:53:55.0844 5552 C:\Windows\System32\tquery.dll - ok
16:53:55.0847 5552 [ A9662BCF218BC76869A8D91635D5F93A ] C:\Windows\System32\Wpc.dll
16:53:55.0847 5552 C:\Windows\System32\Wpc.dll - ok
16:53:55.0850 5552 [ B53BD9E63867CD9FD853F666CA172713 ] C:\Windows\System32\PortableDeviceConnectApi.dll
16:53:55.0850 5552 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
16:53:55.0854 5552 [ 13B5F255E90624A5BA0441D39CFB6BE2 ] C:\Windows\System32\drivers\WUDFPf.sys
16:53:55.0854 5552 C:\Windows\System32\drivers\WUDFPf.sys - ok
16:53:55.0857 5552 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] C:\Windows\System32\drivers\WUDFRd.sys
16:53:55.0857 5552 C:\Windows\System32\drivers\WUDFRd.sys - ok
16:53:55.0861 5552 [ 218B73EA8341EA9FDF018D43052E790A ] C:\Windows\System32\mssrch.dll
16:53:55.0861 5552 C:\Windows\System32\mssrch.dll - ok
16:53:55.0865 5552 [ DDD7D05B676B7CFFA8194F543F718629 ] C:\Program Files\Dell\DellComms\bin\sprtsync.dll
16:53:55.0865 5552 C:\Program Files\Dell\DellComms\bin\sprtsync.dll - ok
16:53:55.0868 5552 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll
16:53:55.0868 5552 C:\Windows\System32\dbghelp.dll - ok
16:53:55.0871 5552 [ 6A7AEC78129AE7CB87E138EC88BA6F1E ] C:\Program Files\Dell\DellComms\bin\sprtupdate.dll
16:53:55.0871 5552 C:\Program Files\Dell\DellComms\bin\sprtupdate.dll - ok
16:53:55.0875 5552 [ C2FA196F8DD651F04E120C7214F18FD1 ] C:\Program Files\Dell\DellComms\bin\libeay32.dll
16:53:55.0875 5552 C:\Program Files\Dell\DellComms\bin\libeay32.dll - ok
16:53:55.0879 5552 [ 9C879E1C3B27085FB46EFECCD7120D51 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
16:53:55.0879 5552 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok
16:53:55.0882 5552 [ 09C7859269563C240AB2AAAB574483DD ] C:\Windows\System32\WUDFHost.exe
16:53:55.0882 5552 C:\Windows\System32\WUDFHost.exe - ok
16:53:55.0885 5552 [ DAB33CFA9DD24251AAA389FF36B64D4B ] C:\Windows\System32\drivers\XAudio.sys
16:53:55.0885 5552 C:\Windows\System32\drivers\XAudio.sys - ok
16:53:55.0889 5552 [ CD5F291A1161F15896D1A4D63DAFF5DF ] C:\Windows\System32\drivers\XAudio.exe
16:53:55.0889 5552 C:\Windows\System32\drivers\XAudio.exe - ok
16:53:55.0892 5552 [ AAB5FEAABF4CB6F76D794203831C8D94 ] C:\Windows\System32\msidle.dll
16:53:55.0892 5552 C:\Windows\System32\msidle.dll - ok
16:53:55.0896 5552 [ 5B7D974F49ADECFFFEDFD2C7C2AC0894 ] C:\Windows\System32\hposwia_p04a.dll
16:53:55.0896 5552 C:\Windows\System32\hposwia_p04a.dll - ok
16:53:55.0899 5552 [ 7DFAE8C4D590D753B5B5671F0A6A809E ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
16:53:55.0899 5552 C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
16:53:55.0902 5552 [ B458B58F7BB97C48D01AC3CF5805AAAC ] C:\Windows\System32\Query.dll
16:53:55.0902 5552 C:\Windows\System32\Query.dll - ok
16:53:55.0906 5552 [ B8A21907FE2F1A113F3487D9AB60BEF9 ] C:\Windows\System32\en-US\tquery.dll.mui
16:53:55.0906 5552 C:\Windows\System32\en-US\tquery.dll.mui - ok
16:53:55.0909 5552 [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll
16:53:55.0909 5552 C:\Windows\System32\esent.dll - ok
16:53:55.0912 5552 [ F85134BF76CB335A39F8D7BC4173D4FB ] C:\Windows\System32\msscb.dll
16:53:55.0912 5552 C:\Windows\System32\msscb.dll - ok
16:53:55.0915 5552 [ 4D840C6AF3C020ED3A35EFBA9025CF4A ] C:\Program Files\CyberLink\PowerDVD DX\000.fcl
16:53:55.0915 5552 C:\Program Files\CyberLink\PowerDVD DX\000.fcl - ok
16:53:55.0919 5552 [ 4B72B5B342ADA4DE8DEEA39CCE465B58 ] C:\Windows\System32\WUDFx.dll
16:53:55.0919 5552 C:\Windows\System32\WUDFx.dll - ok
16:53:55.0922 5552 [ 119A487B94FCB54D5154EBFBFA124755 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
16:53:55.0922 5552 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
16:53:55.0926 5552 [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\System32\WMVCORE.DLL
16:53:55.0926 5552 C:\Windows\System32\WMVCORE.DLL - ok
16:53:55.0929 5552 [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll
16:53:55.0929 5552 C:\Windows\System32\wbem\wbemcore.dll - ok
16:53:55.0932 5552 [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll
16:53:55.0932 5552 C:\Windows\System32\wbem\esscli.dll - ok
16:53:55.0935 5552 [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll
16:53:55.0936 5552 C:\Windows\System32\wbem\fastprox.dll - ok
16:53:55.0939 5552 [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll
16:53:55.0939 5552 C:\Windows\System32\wbem\wbemsvc.dll - ok
16:53:55.0942 5552 [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\System32\WMASF.DLL
16:53:55.0942 5552 C:\Windows\System32\WMASF.DLL - ok
16:53:55.0946 5552 [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe
16:53:55.0946 5552 C:\Windows\System32\dllhost.exe - ok
16:53:55.0949 5552 [ BF7E4D6F60A6D9E866432855C6F8C262 ] C:\Windows\System32\sqmapi.dll
16:53:55.0949 5552 C:\Windows\System32\sqmapi.dll - ok
16:53:55.0953 5552 [ B2B117BD8D1EA80536CDD91797EF4A0A ] C:\Windows\System32\PortableDeviceClassExtension.dll
16:53:55.0953 5552 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
16:53:55.0956 5552 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll
16:53:55.0956 5552 C:\Windows\System32\PortableDeviceTypes.dll - ok
16:53:55.0960 5552 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll
16:53:55.0960 5552 C:\Windows\System32\netprofm.dll - ok
16:53:55.0963 5552 [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll
16:53:55.0963 5552 C:\Windows\System32\wbem\wmiutils.dll - ok
16:53:55.0967 5552 [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
16:53:55.0967 5552 C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe - ok
16:53:55.0970 5552 [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll
16:53:55.0970 5552 C:\Windows\System32\wbem\repdrvfs.dll - ok
16:53:55.0974 5552 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll
16:53:55.0974 5552 C:\Windows\System32\npmproxy.dll - ok
16:53:55.0977 5552 [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll
16:53:55.0977 5552 C:\Windows\System32\netcfgx.dll - ok
16:53:55.0980 5552 [ B288FF7C1987A736726E87C79148C360 ] C:\Windows\System32\PortableDeviceWiaCompat.dll
16:53:55.0980 5552 C:\Windows\System32\PortableDeviceWiaCompat.dll - ok
16:53:55.0984 5552 [ A952D0DED445F26AEFCF593A935AB300 ] C:\Windows\System32\hnetcfg.dll
16:53:55.0984 5552 C:\Windows\System32\hnetcfg.dll - ok
16:53:55.0988 5552 [ 77784A2BD5912A4EC6284255865526BC ] C:\Windows\System32\Faultrep.dll
16:53:55.0988 5552 C:\Windows\System32\Faultrep.dll - ok
16:53:55.0991 5552 [ D8EEF615DC715CA2E4542D9B9C28CF78 ] C:\Program Files\Dell\DellDock\DellDock.exe
16:53:55.0992 5552 C:\Program Files\Dell\DellDock\DellDock.exe - ok
16:53:55.0995 5552 [ 3CD1B69551236977918E60F9543C89A2 ] C:\Windows\System32\AtBroker.exe
16:53:55.0995 5552 C:\Windows\System32\AtBroker.exe - ok
16:53:55.0999 5552 [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe
16:53:55.0999 5552 C:\Windows\System32\userinit.exe - ok
16:53:56.0002 5552 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll
16:53:56.0002 5552 C:\Windows\System32\shdocvw.dll - ok
16:53:56.0004 5552 [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe
16:53:56.0004 5552 C:\Windows\explorer.exe - ok
16:53:56.0008 5552 [ D80C6539C00CB4F5D59066865479C308 ] C:\Windows\System32\dwmredir.dll
16:53:56.0008 5552 C:\Windows\System32\dwmredir.dll - ok
16:53:56.0011 5552 [ C99403A5B641520DAED0021DDA06F272 ] C:\Windows\System32\milcore.dll
16:53:56.0011 5552 C:\Windows\System32\milcore.dll - ok
16:53:56.0014 5552 [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll
16:53:56.0015 5552 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
16:53:56.0018 5552 [ 6B44700917F45B19B96B46B345B6F0E7 ] C:\Program Files\Spybot - Search & Destroy\SDMain.exe
16:53:56.0018 5552 C:\Program Files\Spybot - Search & Destroy\SDMain.exe - ok
16:53:56.0022 5552 [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll
16:53:56.0022 5552 C:\Windows\System32\wbem\wbemess.dll - ok
16:53:56.0025 5552 [ 83C2F5076E1B4A63C04F2B14EE7CAD47 ] C:\Windows\System32\wbem\wbemdisp.dll
16:53:56.0025 5552 C:\Windows\System32\wbem\wbemdisp.dll - ok
16:53:56.0028 5552 [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe
16:53:56.0028 5552 C:\Windows\System32\taskeng.exe - ok
16:53:56.0032 5552 [ FEA6D21F78922D641A0C9346D885133B ] C:\Windows\System32\mssprxy.dll
16:53:56.0032 5552 C:\Windows\System32\mssprxy.dll - ok
16:53:56.0035 5552 [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll
16:53:56.0035 5552 C:\Windows\System32\wbem\NCProv.dll - ok
16:53:56.0038 5552 [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll
16:53:56.0038 5552 C:\Windows\System32\wbem\wbemcons.dll - ok
16:53:56.0042 5552 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll
16:53:56.0042 5552 C:\Windows\System32\wuapi.dll - ok
16:53:56.0045 5552 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
16:53:56.0045 5552 C:\Windows\System32\wups.dll - ok
16:53:56.0048 5552 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll
16:53:56.0048 5552 C:\Windows\System32\dssenh.dll - ok
16:53:56.0051 5552 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll
16:53:56.0051 5552 C:\Windows\System32\d3d9.dll - ok
16:53:56.0055 5552 [ A7E408134B47266E64F83C4DBA1EEA6C ] C:\Program Files\Seagate\SeagateManager\Sync\synconf.dll
16:53:56.0055 5552 C:\Program Files\Seagate\SeagateManager\Sync\synconf.dll - ok
16:53:56.0058 5552 [ 3B846434055F80D9E89D0742F3ADAD34 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
16:53:56.0058 5552 C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
16:53:56.0061 5552 [ D0A95E567224B4C347CBDD6541E5D928 ] C:\Windows\System32\wscisvif.dll
16:53:56.0062 5552 C:\Windows\System32\wscisvif.dll - ok
16:53:56.0065 5552 [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll
16:53:56.0065 5552 C:\Windows\System32\TSChannel.dll - ok
16:53:56.0068 5552 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll
16:53:56.0068 5552 C:\Windows\System32\d3d8thk.dll - ok
16:53:56.0072 5552 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll
16:53:56.0072 5552 C:\Windows\System32\mscoree.dll - ok
16:53:56.0075 5552 [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll
16:53:56.0075 5552 C:\Windows\System32\browseui.dll - ok
16:53:56.0078 5552 [ E3E4013BEAE8A053876F7C3E6162D9D3 ] C:\Windows\System32\aticfx32.dll
16:53:56.0079 5552 C:\Windows\System32\aticfx32.dll - ok
16:53:56.0082 5552 [ E6019253451DBB67740F7027AD9E1CB5 ] C:\Program Files\Real\RealUpgrade\realupgrade.exe
16:53:56.0082 5552 C:\Program Files\Real\RealUpgrade\realupgrade.exe - ok
16:53:56.0085 5552 [ 626A24ED1228580B9518C01930936DF9 ] C:\Program Files\Google\Update\GoogleUpdate.exe
16:53:56.0085 5552 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
16:53:56.0089 5552 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
16:53:56.0089 5552 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
16:53:56.0092 5552 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\goopdate.dll
16:53:56.0092 5552 C:\Program Files\Google\Update\1.3.21.123\goopdate.dll - ok
16:53:56.0096 5552 [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll
16:53:56.0096 5552 C:\Windows\System32\HotStartUserAgent.dll - ok
16:53:56.0100 5552 [ C42AE64F5DB6BC5E947B7E3E1B1E633E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
16:53:56.0100 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
16:53:56.0103 5552 [ 6CEB4C7A30C035393D6EFB599894C32B ] C:\Windows\System32\atiu9pag.dll
16:53:56.0103 5552 C:\Windows\System32\atiu9pag.dll - ok
16:53:56.0106 5552 [ FE3702015BE4D214808A2FBC07B8E5FF ] C:\Windows\System32\wscproxystub.dll
16:53:56.0106 5552 C:\Windows\System32\wscproxystub.dll - ok
16:53:56.0110 5552 [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll
16:53:56.0110 5552 C:\Windows\System32\PlaySndSrv.dll - ok
16:53:56.0113 5552 [ 4C6CA0F172E264B432666A81E4B466AB ] C:\Program Files\Microsoft Security Client\NisLog.dll
16:53:56.0114 5552 C:\Program Files\Microsoft Security Client\NisLog.dll - ok
16:53:56.0117 5552 [ 837608240884733792DDAE81E50B802A ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
16:53:56.0117 5552 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe - ok
16:53:56.0120 5552 [ 70C6489D56008D75DEDF73226FA63C11 ] C:\Windows\System32\dimsjob.dll
16:53:56.0121 5552 C:\Windows\System32\dimsjob.dll - ok
16:53:56.0124 5552 [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll
16:53:56.0124 5552 C:\Windows\System32\MsCtfMonitor.dll - ok
16:53:56.0127 5552 [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll
16:53:56.0127 5552 C:\Windows\System32\msutb.dll - ok
16:53:56.0130 5552 [ 097B8D0348C976A659E3D9D82E35102C ] C:\Windows\System32\atiumdag.dll
16:53:56.0130 5552 C:\Windows\System32\atiumdag.dll - ok
16:53:56.0134 5552 [ 6D74290856347CF8682277A54B433D4B ] C:\Users\Kelly\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
16:53:56.0134 5552 C:\Users\Kelly\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll - ok
16:53:56.0138 5552 [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll
16:53:56.0138 5552 C:\Windows\System32\TMM.dll - ok
16:53:56.0141 5552 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Users\Kelly\AppData\Roaming\Dropbox\bin\msvcp71.dll
16:53:56.0141 5552 C:\Users\Kelly\AppData\Roaming\Dropbox\bin\msvcp71.dll - ok
16:53:56.0145 5552 [ E111CED19D6A9FF9BBA5C219D0C5A3CE ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll
16:53:56.0145 5552 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll - ok
16:53:56.0149 5552 [ D6D4130C0BBC0D18C2DA703CC38260A9 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll
16:53:56.0149 5552 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll - ok
16:53:56.0152 5552 [ 1AF54261C283BAFB021B3D84A7BAE978 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll
16:53:56.0152 5552 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll - ok
16:53:56.0156 5552 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Users\Kelly\AppData\Roaming\Dropbox\bin\msvcr71.dll
16:53:56.0156 5552 C:\Users\Kelly\AppData\Roaming\Dropbox\bin\msvcr71.dll - ok
16:53:56.0159 5552 [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL
16:53:56.0160 5552 C:\Windows\System32\QAGENT.DLL - ok
16:53:56.0163 5552 [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL
16:53:56.0163 5552 C:\Windows\System32\QUTIL.DLL - ok
16:53:56.0166 5552 [ 247FE8DEFBB95A4319C7B4B215F92891 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll
16:53:56.0166 5552 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
16:53:56.0170 5552 [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll
16:53:56.0170 5552 C:\Windows\System32\diagperf.dll - ok
16:53:56.0174 5552 [ F0062778F50838145AC46B384FFB4FA3 ] C:\Windows\System32\pcadm.dll
16:53:56.0174 5552 C:\Windows\System32\pcadm.dll - ok
16:53:56.0177 5552 [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll
16:53:56.0177 5552 C:\Windows\System32\pnpts.dll - ok
16:53:56.0180 5552 [ 98638A4CA187245C469DA0DEC4F04A45 ] C:\Windows\System32\pautoenr.dll
16:53:56.0180 5552 C:\Windows\System32\pautoenr.dll - ok
16:53:56.0183 5552 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll
16:53:56.0183 5552 C:\Windows\System32\EhStorShell.dll - ok
16:53:56.0187 5552 [ 5DA42D24712E00728CEA2342A65009B2 ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
16:53:56.0187 5552 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
16:53:56.0190 5552 [ 9495FCC01D7AB7B60E5B8BA7AEFE9E3D ] C:\Windows\System32\wbem\WmiPrvSE.exe
16:53:56.0190 5552 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
16:53:56.0193 5552 [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll
16:53:56.0193 5552 C:\Windows\System32\shfolder.dll - ok
16:53:56.0197 5552 [ A04F4AC48895774A2CF9D1C9EAAACEF0 ] C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
16:53:56.0197 5552 C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL - ok
16:53:56.0200 5552 [ AC48FD62E22C4425879FCA5A63F50497 ] C:\Windows\System32\certcli.dll
16:53:56.0200 5552 C:\Windows\System32\certcli.dll - ok
16:53:56.0204 5552 [ 1D6B95871DC006190964B04E5657E35F ] C:\Windows\System32\rastapi.dll
16:53:56.0204 5552 C:\Windows\System32\rastapi.dll - ok
16:53:56.0208 5552 [ 053ACAAE0F10C22A00C26DD10EF394BA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{01AB698A-879F-48E2-BD04-9C08E2A6266C}\gapaengine.dll
16:53:56.0208 5552 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{01AB698A-879F-48E2-BD04-9C08E2A6266C}\gapaengine.dll - ok
16:53:56.0211 5552 [ 5527767F1ADD169320020321EEBA581E ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{01AB698A-879F-48E2-BD04-9C08E2A6266C}\nisfull.vdm
16:53:56.0211 5552 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{01AB698A-879F-48E2-BD04-9C08E2A6266C}\nisfull.vdm - ok
16:53:56.0215 5552 [ F21F255B91CA4F04E4250DECD2067CBB ] C:\Windows\System32\bitsperf.dll
16:53:56.0215 5552 C:\Windows\System32\bitsperf.dll - ok
16:53:56.0218 5552 [ B96B60EC821F86D445C9739A0F3DED59 ] C:\Windows\System32\unimdm.tsp
16:53:56.0218 5552 C:\Windows\System32\unimdm.tsp - ok
16:53:56.0221 5552 [ DFBAADF1B624DC71E88D34D86B3595BE ] C:\Windows\System32\uniplat.dll
16:53:56.0221 5552 C:\Windows\System32\uniplat.dll - ok
16:53:56.0225 5552 [ 632557F2495931D952161465AA177B3B ] C:\Windows\System32\bitsigd.dll
16:53:56.0225 5552 C:\Windows\System32\bitsigd.dll - ok
16:53:56.0228 5552 [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll
16:53:56.0228 5552 C:\Windows\System32\upnp.dll - ok
16:53:56.0231 5552 [ 0053319C4438CDE659AA75C19BBD22F1 ] C:\Windows\System32\CertEnroll.dll
16:53:56.0231 5552 C:\Windows\System32\CertEnroll.dll - ok
16:53:56.0234 5552 [ 0B71899E60D1265229BF3D080EAB573D ] C:\Windows\System32\unimdmat.dll
16:53:56.0234 5552 C:\Windows\System32\unimdmat.dll - ok
16:53:56.0238 5552 [ 2E837F3D406224DF131C34BC8F71621E ] C:\Windows\System32\modemui.dll
16:53:56.0238 5552 C:\Windows\System32\modemui.dll - ok
16:53:56.0241 5552 [ 10F13FFF542FEC4A2C4FA734EEBE56B9 ] C:\Windows\System32\qmgrprxy.dll
16:53:56.0241 5552 C:\Windows\System32\qmgrprxy.dll - ok
16:53:56.0245 5552 [ 67BB7141F7F5F37411F796943B3418B6 ] C:\Windows\System32\framedynos.dll
16:53:56.0245 5552 C:\Windows\System32\framedynos.dll - ok
16:53:56.0248 5552 [ F723422A11CD6FA13036746272200993 ] C:\Windows\System32\wbem\cimwin32.dll
16:53:56.0248 5552 C:\Windows\System32\wbem\cimwin32.dll - ok
16:53:56.0251 5552 [ 87CDFFCBD09C1CA03A068343D5D93250 ] C:\Windows\System32\wmi.dll
16:53:56.0251 5552 C:\Windows\System32\wmi.dll - ok
16:53:56.0254 5552 [ 953193A9DEA40348C1086D171F6440AE ] C:\Windows\System32\kmddsp.tsp
16:53:56.0255 5552 C:\Windows\System32\kmddsp.tsp - ok
16:53:56.0258 5552 [ 2F6776ACEFE41EE889C464EA407918F2 ] C:\Windows\System32\ndptsp.tsp
16:53:56.0258 5552 C:\Windows\System32\ndptsp.tsp - ok
16:53:56.0261 5552 [ B4B59AC042EE3733A862F26CBC0B17FC ] C:\Windows\System32\hidphone.tsp
16:53:56.0261 5552 C:\Windows\System32\hidphone.tsp - ok
16:53:56.0264 5552 [ DBBBE5B64E2FE1AF8BE76CCAA2B54DFC ] C:\Windows\System32\vbscript.dll
16:53:56.0264 5552 C:\Windows\System32\vbscript.dll - ok
16:53:56.0268 5552 [ 8B645890A93F1FBBC7DA3E07CC72D762 ] C:\Windows\System32\rasppp.dll
16:53:56.0268 5552 C:\Windows\System32\rasppp.dll - ok
16:53:56.0271 5552 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
16:53:56.0271 5552 C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
16:53:56.0275 5552 [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll
16:53:56.0275 5552 C:\Windows\System32\mprapi.dll - ok
16:53:56.0278 5552 [ 8992F45DED6B63B919BDEB6D270FF9C8 ] C:\Windows\System32\wshom.ocx
16:53:56.0278 5552 C:\Windows\System32\wshom.ocx - ok
16:53:56.0282 5552 [ 88225070DD2F7B0B2ED51E7935078641 ] C:\Windows\System32\rasqec.dll
16:53:56.0282 5552 C:\Windows\System32\rasqec.dll - ok
16:53:56.0285 5552 [ 3DB1530CDD7AEF2BCFA6FB77D097CDDA ] C:\Windows\System32\scrrun.dll
16:53:56.0285 5552 C:\Windows\System32\scrrun.dll - ok
16:53:56.0289 5552 [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll
16:53:56.0289 5552 C:\Windows\System32\raschap.dll - ok
16:53:56.0292 5552 [ 7A623F6B4C51F6F2BC1A31D5787FC0A7 ] C:\Windows\System32\uDWM.dll
16:53:56.0292 5552 C:\Windows\System32\uDWM.dll - ok
16:53:56.0295 5552 [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll
16:53:56.0295 5552 C:\Windows\System32\rastls.dll - ok
16:53:56.0299 5552 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
16:53:56.0299 5552 C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
16:53:56.0302 5552 [ 015ED8906D0E08134ED4BAFB5708C00A ] C:\Windows\System32\atiumdva.dll
16:53:56.0302 5552 C:\Windows\System32\atiumdva.dll - ok
16:53:56.0305 5552 [ 248A1F31ABB58DDDDC01490EF0BDC777 ] C:\Windows\System32\cryptui.dll
16:53:56.0305 5552 C:\Windows\System32\cryptui.dll - ok
16:53:56.0309 5552 [ 0A990AFB9F2726323D61C8ECB8B70B17 ] C:\Windows\System32\security.dll
16:53:56.0309 5552 C:\Windows\System32\security.dll - ok
16:53:56.0312 5552 [ 015A9D857726C083144CA352A273378A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
16:53:56.0313 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll - ok
16:53:56.0316 5552 [ A6FA5D45ACF2E855F890FAC505EFEDB2 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
16:53:56.0317 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
16:53:56.0320 5552 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
16:53:56.0320 5552 C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
16:53:56.0324 5552 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll
16:53:56.0324 5552 C:\Windows\System32\riched20.dll - ok
16:53:56.0327 5552 [ F21E7429164F6451CD3C52BB29E4B8CD ] C:\Windows\System32\atipdlxx.dll
16:53:56.0327 5552 C:\Windows\System32\atipdlxx.dll - ok
16:53:56.0331 5552 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
16:53:56.0331 5552 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
16:53:56.0335 5552 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll
16:53:56.0335 5552 C:\Windows\System32\imageres.dll - ok
16:53:56.0338 5552 [ 163F41CDB6EF7DD1533E4B448BCE9F4D ] C:\Program Files\Dell\DellDock\MyDock.Util.DLL
16:53:56.0338 5552 C:\Program Files\Dell\DellDock\MyDock.Util.DLL - ok
16:53:56.0342 5552 [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll
16:53:56.0342 5552 C:\Windows\System32\IconCodecService.dll - ok
16:53:56.0345 5552 [ 5AE05EF0D1175B8E74FA5F9B910A1031 ] C:\Windows\System32\atitmpxx.dll
16:53:56.0345 5552 C:\Windows\System32\atitmpxx.dll - ok
16:53:56.0348 5552 [ 4B555106290BD117334E9A08761C035A ] C:\Windows\System32\rundll32.exe
16:53:56.0349 5552 C:\Windows\System32\rundll32.exe - ok
16:53:56.0352 5552 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe
16:53:56.0352 5552 C:\Windows\System32\runonce.exe - ok
16:53:56.0355 5552 [ E054A2CAF0E2A55C9AAC0BF1CCC558A5 ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
16:53:56.0355 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe - ok
16:53:56.0359 5552 [ A18AEC9A43D158874075C5B5C1629B4B ] C:\Program Files\Common Files\microsoft shared\DAO\dao360.dll
16:53:56.0359 5552 C:\Program Files\Common Files\microsoft shared\DAO\dao360.dll - ok
16:53:56.0362 5552 [ D6804F089CBB6749E95124E7C4D80900 ] C:\Windows\AppPatch\AcLayers.dll
16:53:56.0362 5552 C:\Windows\AppPatch\AcLayers.dll - ok
16:53:56.0366 5552 [ 7CE1E4240F9FA41EE85683B9EEAB8767 ] C:\Windows\System32\msjet40.dll
16:53:56.0366 5552 C:\Windows\System32\msjet40.dll - ok
16:53:56.0369 5552 [ E0B787702BAF0CF4CEDF8F61B71F8383 ] C:\Windows\System32\mswstr10.dll
16:53:56.0369 5552 C:\Windows\System32\mswstr10.dll - ok
16:53:56.0373 5552 [ 3F994A6CF62AA8ED7B82CBE8AD7BE810 ] C:\Program Files\Real\RealUpgrade\Common\hxmedpltfm.dll
16:53:56.0373 5552 C:\Program Files\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
16:53:56.0376 5552 [ 4995B131F6B4DA0F8F7D2191E37054BD ] C:\Windows\System32\vbajet32.dll
16:53:56.0376 5552 C:\Windows\System32\vbajet32.dll - ok
16:53:56.0380 5552 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe
16:53:56.0380 5552 C:\Windows\System32\cmd.exe - ok
16:53:56.0383 5552 [ 254C64B570A99F10952ACA71F24A2236 ] C:\Windows\System32\expsrv.dll
16:53:56.0383 5552 C:\Windows\System32\expsrv.dll - ok
16:53:56.0386 5552 [ 1E03BABB4D6CA5C27BD2C822F7F95788 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll
16:53:56.0386 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll - ok
16:53:56.0390 5552 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\System32\ieframe.dll
16:53:56.0390 5552 C:\Windows\System32\ieframe.dll - ok
16:53:56.0393 5552 [ 3A2EEE8444A8E5C1A454C57B2198F5FC ] C:\Windows\System32\ntlanman.dll
16:53:56.0393 5552 C:\Windows\System32\ntlanman.dll - ok
16:53:56.0396 5552 [ 582EFE56FC0858E58A6CEBA2A64B02C7 ] C:\Windows\System32\drprov.dll
16:53:56.0397 5552 C:\Windows\System32\drprov.dll - ok
16:53:56.0400 5552 [ CFBD2E1FE18B50748A76703A2DC6D4E3 ] C:\Windows\System32\davclnt.dll
16:53:56.0400 5552 C:\Windows\System32\davclnt.dll - ok
16:53:56.0404 5552 [ F66625A9E51844B99B03A09F1AAF0A12 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\MyDock.Util\d47ab8d1043612fbc28fd67ff61e15cb\MyDock.Util.ni.dll
16:53:56.0404 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\MyDock.Util\d47ab8d1043612fbc28fd67ff61e15cb\MyDock.Util.ni.dll - ok
16:53:56.0408 5552 [ D3FBEACFAE8A28A6F375B20D1A6D2E50 ] C:\Program Files\Dell\DellDock\MenuSkinning.dll
16:53:56.0434 5552 C:\Program Files\Dell\DellDock\MenuSkinning.dll - ok
16:53:56.0441 5552 [ FFBC0AC281D0E14116380CD0D407FC92 ] C:\Program Files\Dell\DellDock\VistaBridgeLibrary.DLL
16:53:56.0441 5552 C:\Program Files\Dell\DellDock\VistaBridgeLibrary.DLL - ok
16:53:56.0446 5552 [ E410F7720A11822D117D779F7C9E907C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\DellDock\e510ac58495dd599fac0176a996c793b\DellDock.ni.exe
16:53:56.0446 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\DellDock\e510ac58495dd599fac0176a996c793b\DellDock.ni.exe - ok
16:53:56.0449 5552 [ 17F0B744896F5921732FDEDA26235F8C ] C:\Program Files\AVG\AVG2013\avgcmgr.exe
16:53:56.0449 5552 C:\Program Files\AVG\AVG2013\avgcmgr.exe - ok
16:53:56.0452 5552 [ D471837414489B593591B3023D4FADDE ] C:\Program Files\AVG\AVG2013\avgcslx.dll
16:53:56.0452 5552 C:\Program Files\AVG\AVG2013\avgcslx.dll - ok
16:53:56.0456 5552 [ 073471D56CB6E5FC969D6CD4900842E7 ] C:\Program Files\Dell\DellDock\VDialog.dll
16:53:56.0456 5552 C:\Program Files\Dell\DellDock\VDialog.dll - ok
16:53:56.0463 5552 [ A2AF0F8D9FBD4F7296DE90A954ADA9C7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\1802136e1ae5bc81fb17204ea694bc00\VistaBridgeLibrary.ni.dll
16:53:56.0463 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\1802136e1ae5bc81fb17204ea694bc00\VistaBridgeLibrary.ni.dll - ok
16:53:56.0468 5552 [ 91856DDB1D41E8AAA9CB0E3569B024BE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\MenuSkinning\35d5c990de9a4f3960faa37e2cc1f50f\MenuSkinning.ni.dll
16:53:56.0468 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\MenuSkinning\35d5c990de9a4f3960faa37e2cc1f50f\MenuSkinning.ni.dll - ok
16:53:56.0474 5552 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
16:53:56.0474 5552 C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
16:53:56.0476 5552 [ 79B0463638C7ED08DB71FE3437C95A44 ] C:\Windows\System32\msjtes40.dll
16:53:56.0476 5552 C:\Windows\System32\msjtes40.dll - ok
16:53:56.0481 5552 [ F05FDB5756F82C6CBBC9203D974A0C3B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll
16:53:56.0481 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll - ok
16:53:56.0485 5552 [ 279A8BE318EBC0C25C5EA9AED19E0CF9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll
16:53:56.0485 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll - ok
16:53:56.0488 5552 [ 0447831A6E9C6AA263792B8F86C240CB ] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSAlbumObjects.dll
16:53:56.0488 5552 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSAlbumObjects.dll - ok
16:53:56.0496 5552 [ 99495E46CBF87F1C1FF3E57C069D0A8D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll
16:53:56.0496 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll - ok
16:53:56.0508 5552 [ F0F163A0FBA15FB5703EC2E9FD9201D3 ] C:\Program Files\Dell\DellDock\MyDockLib.dll
16:53:56.0508 5552 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
16:53:56.0512 5552 [ B8876BBA284DFEC2311D7694483AB8AE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll
16:53:56.0512 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll - ok
16:53:56.0516 5552 [ 530ED4B00397C2E65DDFDDFAC60744D2 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
16:53:56.0516 5552 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
16:53:56.0521 5552 [ 219AF0F9A54EBEEB3E7E20025D801034 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
16:53:56.0521 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
16:53:56.0528 5552 [ 05C245593DCB591A6B38A796D0C1975E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
16:53:56.0528 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
16:53:56.0534 5552 [ 14B1AF40195CF5DB586F39387A77AFB6 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
16:53:56.0534 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
16:53:56.0539 5552 [ 7A9DE8B16CF183D1038E49C9613275B7 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
16:53:56.0539 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
16:53:56.0542 5552 [ FB875FBE3BD042F6A69A4406178C561B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
16:53:56.0542 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
16:53:56.0546 5552 [ D2033210D4DA9E9CE7670DFF45D7101B ] C:\Users\Kelly\AppData\Local\Temp\2AD664A1-3D54-426D-84D5-B72267FBFF6B.exe
16:53:56.0546 5552 C:\Users\Kelly\AppData\Local\Temp\2AD664A1-3D54-426D-84D5-B72267FBFF6B.exe - ok
16:53:56.0550 5552 [ 304503DEE4D3F7989B8660C62CAFAE28 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
16:53:56.0550 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
16:53:56.0553 5552 [ 3787A4BC97CE6C630F4B581425223D96 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
16:53:56.0553 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
16:53:56.0567 5552 [ 27DB3CEB88A1EF2BE1E193A05964973C ] C:\Program Files\Real\RealUpgrade\Plugins\upgrade.dll
16:53:56.0567 5552 C:\Program Files\Real\RealUpgrade\Plugins\upgrade.dll - ok
16:53:56.0573 5552 [ 3DD74DDFADA2D113033EBD87DA85893A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\1b337cf9a031145849bc48c11b2cfe58\Accessibility.ni.dll
16:53:56.0573 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\1b337cf9a031145849bc48c11b2cfe58\Accessibility.ni.dll - ok
16:53:56.0578 5552 [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\System32\mstask.dll
16:53:56.0578 5552 C:\Windows\System32\mstask.dll - ok
16:53:56.0582 5552 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
16:53:56.0582 5552 C:\Windows\System32\ie4uinit.exe - ok
16:53:56.0587 5552 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll
16:53:56.0587 5552 C:\Windows\System32\iedkcs32.dll - ok
16:53:56.0592 5552 [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl
16:53:56.0592 5552 C:\Windows\System32\timedate.cpl - ok
16:53:56.0597 5552 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll
16:53:56.0598 5552 C:\Windows\System32\actxprxy.dll - ok
16:53:56.0603 5552 [ D24DFD16A1E2A76034DF5AA18125C35D ] C:\Windows\System32\drivers\psi_mf.sys
16:53:56.0603 5552 C:\Windows\System32\drivers\psi_mf.sys - ok
16:53:56.0606 5552 [ FF41E1AC301F51E16F61AD7C0F45467C ] C:\Windows\System32\msshsq.dll
16:53:56.0606 5552 C:\Windows\System32\msshsq.dll - ok
16:53:56.0610 5552 [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll
16:53:56.0610 5552 C:\Windows\System32\NaturalLanguage6.dll - ok
16:53:56.0613 5552 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\76680453.sys
16:53:56.0613 5552 C:\Windows\System32\drivers\76680453.sys - ok
16:53:56.0619 5552 [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll
16:53:56.0619 5552 C:\Windows\System32\NlsData0009.dll - ok
16:53:56.0624 5552 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files\Internet Explorer\iexplore.exe
16:53:56.0624 5552 C:\Program Files\Internet Explorer\iexplore.exe - ok
16:53:56.0629 5552 [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll
16:53:56.0629 5552 C:\Windows\System32\NlsLexicons0009.dll - ok
16:53:56.0635 5552 [ A0F1C8C0935233F36886997759FADE92 ] C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
16:53:56.0635 5552 C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe - ok
16:53:56.0638 5552 [ 5A6BFE723CF0E6E39021CDC01CA57EED ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll
16:53:56.0638 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll - ok
16:53:56.0642 5552 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
16:53:56.0642 5552 C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
16:53:56.0646 5552 [ 35A936C7C029A5B705D3FFD40518D660 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
16:53:56.0646 5552 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
16:53:56.0649 5552 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
16:53:56.0650 5552 C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
16:53:56.0653 5552 [ 5016B8FC59AD616F03813FBE63295081 ] C:\Windows\System32\thumbcache.dll
16:53:56.0653 5552 C:\Windows\System32\thumbcache.dll - ok
16:53:56.0660 5552 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll
16:53:56.0660 5552 C:\Windows\System32\ntshrui.dll - ok
16:53:56.0665 5552 [ 7D80F287AEEDD39C03E118E0EBD3311E ] C:\Windows\System32\zipfldr.dll
16:53:56.0665 5552 C:\Windows\System32\zipfldr.dll - ok
16:53:56.0670 5552 [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\System32\linkinfo.dll
16:53:56.0670 5552 C:\Windows\System32\linkinfo.dll - ok
16:53:56.0675 5552 [ 61216539E55DDF2F78E421E7EF140650 ] C:\Windows\System32\ExplorerFrame.dll
16:53:56.0675 5552 C:\Windows\System32\ExplorerFrame.dll - ok
16:53:56.0680 5552 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
16:53:56.0680 5552 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
16:53:56.0685 5552 [ 0554A3186A28B099E82818EA8CAE40E6 ] C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe
16:53:56.0685 5552 C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe - ok
16:53:56.0689 5552 [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\System32\mlang.dll
16:53:56.0689 5552 C:\Windows\System32\mlang.dll - ok
16:53:56.0691 5552 [ B5B742BE900C379573A573D86722EBC8 ] C:\Program Files\Adobe Download Assistant\Adobe Download Assistant.exe
16:53:56.0691 5552 C:\Program Files\Adobe Download Assistant\Adobe Download Assistant.exe - ok
16:53:56.0705 5552 [ 85FB84AAE36E498F471CB76270D4B8F6 ] C:\Windows\RtHDVCpl.exe
16:53:56.0705 5552 C:\Windows\RtHDVCpl.exe - ok
16:53:56.0710 5552 [ 663EF23D1F662DBBB33EBF3D291AE2C7 ] C:\ProgramData\Oberon Media\Channels\110268333\4.0.0.0\Launcher.exe
16:53:56.0710 5552 C:\ProgramData\Oberon Media\Channels\110268333\4.0.0.0\Launcher.exe - ok
16:53:56.0713 5552 [ E1E71D80D078C576801B6FE2A29FCF85 ] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
16:53:56.0713 5552 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
16:53:56.0717 5552 [ 8890FB6CD115366F32C299CD8CE43791 ] C:\Program Files\Adobe\Adobe Help\Adobe Help.exe
16:53:56.0717 5552 C:\Program Files\Adobe\Adobe Help\Adobe Help.exe - ok
16:53:56.0720 5552 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
16:53:56.0720 5552 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe - ok
16:53:56.0727 5552 [ 852AB81EDE166A0B25046DD7F4CD3FFA ] C:\Program Files\Dell\DellComms\bin\sprtcmd.exe
16:53:56.0728 5552 C:\Program Files\Dell\DellComms\bin\sprtcmd.exe - ok
16:53:56.0733 5552 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
16:53:56.0733 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - ok
16:53:56.0739 5552 [ AA8C9EADBCF7A3FF2789853E3012CE2B ] C:\Users\Kelly\AppData\Roaming\Pokémon Trading Card Game Online\Pokemon Trading Card Game Online.exe
16:53:56.0739 5552 C:\Users\Kelly\AppData\Roaming\Pokémon Trading Card Game Online\Pokemon Trading Card Game Online.exe - ok
16:53:56.0744 5552 [ B5EF1DA337DB9859709A387638AC5E07 ] C:\Windows\System32\SearchProtocolHost.exe
16:53:56.0744 5552 C:\Windows\System32\SearchProtocolHost.exe - ok
16:53:56.0748 5552 [ 582BE479E7E286BB3B31C5A4C3DC3987 ] C:\Windows\System32\msshooks.dll
16:53:56.0748 5552 C:\Windows\System32\msshooks.dll - ok
16:53:56.0752 5552 [ 771AF583BC58373A84496CCD52C36E33 ] C:\Windows\System32\mssvp.dll
16:53:56.0752 5552 C:\Windows\System32\mssvp.dll - ok
16:53:56.0754 5552 [ 98C77FD99F3DB37B2C03F32B8F837B65 ] C:\Windows\System32\mapi32.dll
16:53:56.0754 5552 C:\Windows\System32\mapi32.dll - ok
16:53:56.0759 5552 [ 351319EF11C263C95FB721AC76F436D6 ] C:\Windows\System32\mssph.dll
16:53:56.0759 5552 C:\Windows\System32\mssph.dll - ok
16:53:56.0765 5552 [ A1CD5CE96F0A5426DB9A2F793854D1B8 ] C:\PROGRA~1\MICROS~3\Office12\ONFILTER.DLL
16:53:56.0765 5552 C:\PROGRA~1\MICROS~3\Office12\ONFILTER.DLL - ok
16:53:56.0771 5552 [ 186C9D39541CC0DFFCC454F79AA0B0BF ] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
16:53:56.0771 5552 C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe - ok
16:53:56.0776 5552 [ 58A18482F445D1C8DD51A1BC29251F61 ] C:\Windows\System32\msfeeds.dll
16:53:56.0776 5552 C:\Windows\System32\msfeeds.dll - ok
16:53:56.0781 5552 [ A69630D039C38018689190234F866D77 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D24C5A6A-BBB8-41E9-A7BE-F65D2A98959B}\MpKsl5747fbb3.sys
16:53:56.0781 5552 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D24C5A6A-BBB8-41E9-A7BE-F65D2A98959B}\MpKsl5747fbb3.sys - ok
16:53:56.0786 5552 [ BD7442A8E2228C8F45C5477B6CBB9002 ] C:\Program Files\Oberon Media SIDR\110555303\FamilyFeud.exe
16:53:56.0786 5552 C:\Program Files\Oberon Media SIDR\110555303\FamilyFeud.exe - ok
16:53:56.0790 5552 [ C9EE7FF225EAC1CB9C78C413667CDB80 ] C:\Windows\System32\SearchFilterHost.exe
16:53:56.0790 5552 C:\Windows\System32\SearchFilterHost.exe - ok
16:53:56.0794 5552 [ 4998024402D36471D7D238F3292A0F81 ] C:\Program Files\AVG\AVG2013\avgui.exe
16:53:56.0794 5552 C:\Program Files\AVG\AVG2013\avgui.exe - ok
16:53:56.0797 5552 [ B5950DF243837D8217F4E597919B224A ] C:\Windows\System32\stobject.dll
16:53:56.0797 5552 C:\Windows\System32\stobject.dll - ok
16:53:56.0805 5552 [ EC69B16644C613F41A57169F8D068F1D ] C:\Windows\System32\batmeter.dll
16:53:56.0806 5552 C:\Windows\System32\batmeter.dll - ok
16:53:56.0812 5552 [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
16:53:56.0812 5552 C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok
16:53:56.0815 5552 [ C456658AF90F42BE3CDF1048F9CDB5CA ] C:\Windows\System32\wpcumi.exe
16:53:56.0815 5552 C:\Windows\System32\wpcumi.exe - ok
16:53:56.0820 5552 [ 4E73574C3CFE6AA9316A85F2E2790088 ] C:\Users\Kelly\AppData\Roaming\Spotify\spotify.exe
16:53:56.0820 5552 C:\Users\Kelly\AppData\Roaming\Spotify\spotify.exe - ok
16:53:56.0824 5552 [ 3F98D47E2E641D4672FEED632FA5FA5A ] C:\Program Files\Cisco Systems\Cisco Connect\Cisco Connect.exe
16:53:56.0824 5552 C:\Program Files\Cisco Systems\Cisco Connect\Cisco Connect.exe - ok
16:53:56.0828 5552 [ DE7F813217EC88C0A6D4D8F2F39D7949 ] C:\Windows\System32\msiltcfg.dll
16:53:56.0828 5552 C:\Windows\System32\msiltcfg.dll - ok
16:53:56.0831 5552 [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\WindowsMobile\wmdc.exe
16:53:56.0831 5552 C:\Windows\WindowsMobile\wmdc.exe - ok
16:53:56.0845 5552 [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\System32\dsound.dll
16:53:56.0845 5552 C:\Windows\System32\dsound.dll - ok
16:53:56.0850 5552 [ A1FD1CD6D019C4B082EC3AE4957C1EE5 ] C:\ProgramData\KingsIsle Entertainment\Wizard101\Wizard101.exe
16:53:56.0850 5552 C:\ProgramData\KingsIsle Entertainment\Wizard101\Wizard101.exe - ok
16:53:56.0854 5552 [ D2033210D4DA9E9CE7670DFF45D7101B ] C:\Users\Kelly\Desktop\TDSSKiller.exe
16:53:56.0854 5552 C:\Users\Kelly\Desktop\TDSSKiller.exe - ok
16:53:56.0858 5552 [ 0BD8F90130C1C347A642C629B17B1CE3 ] C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe
16:53:56.0858 5552 C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe - ok
16:53:56.0861 5552 [ 6B74CD3C871F728CDAF887E8ECBFE8F4 ] C:\Users\Kelly\Desktop\start.exe
16:53:56.0861 5552 C:\Users\Kelly\Desktop\start.exe - ok
16:53:56.0869 5552 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
16:53:56.0869 5552 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
16:53:56.0875 5552 [ 30F02D9C55053367E26A11482F51E255 ] C:\Windows\System32\SndVolSSO.dll
16:53:56.0875 5552 C:\Windows\System32\SndVolSSO.dll - ok
16:53:56.0883 5552 [ 0477C2F9171599CA5BC3307FDFBA8D89 ] C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
16:53:56.0883 5552 C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe - ok
16:53:56.0887 5552 [ 339E159B0956BA01B6662BB8546BDE95 ] C:\Windows\System32\url.dll
16:53:56.0887 5552 C:\Windows\System32\url.dll - ok
16:53:56.0891 5552 [ 313B30189557A2E2793F845DE0F0A4D5 ] C:\Windows\ehome\ehSSO.dll
16:53:56.0891 5552 C:\Windows\ehome\ehSSO.dll - ok
16:53:56.0894 5552 [ 027E5E14C9CFF810377701BDEAD8210F ] C:\Windows\System32\control.exe
16:53:56.0894 5552 C:\Windows\System32\control.exe - ok
16:53:56.0898 5552 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files\HP\HP Software Update\hpwuschd2.exe
16:53:56.0898 5552 C:\Program Files\HP\HP Software Update\hpwuschd2.exe - ok
16:53:56.0902 5552 [ E98E402067978DB38282158F9E8609CA ] C:\Windows\System32\netshell.dll
16:53:56.0902 5552 C:\Windows\System32\netshell.dll - ok
16:53:56.0905 5552 [ 75AD59B9B12EB194486BE8D97B062994 ] C:\Windows\System32\pnidui.dll
16:53:56.0905 5552 C:\Windows\System32\pnidui.dll - ok
16:53:56.0909 5552 [ 35AC4B63CBB9FB6B4472913E9948B517 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
16:53:56.0909 5552 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
16:53:56.0913 5552 [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll
16:53:56.0913 5552 C:\Windows\System32\wlanutil.dll - ok
16:53:56.0917 5552 [ AFA5FB5707ACFFA8B0A54A61514772AC ] C:\Program Files\Punch! Super Home\P!Super.EXE
16:53:56.0917 5552 C:\Program Files\Punch! Super Home\P!Super.EXE - ok
16:53:56.0920 5552 [ 9FC2C8C69D3408690914AA5E326C98A5 ] C:\Program Files\Punch! Super Home Demo\P!Super.EXE
16:53:56.0920 5552 C:\Program Files\Punch! Super Home Demo\P!Super.EXE - ok
16:53:56.0925 5552 [ BECEEE04AAB6388B66D1FCBD2A9F19A1 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\outicon.exe
16:53:56.0925 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\outicon.exe - ok
16:53:56.0928 5552 [ C82ED45A8D56AB8AC29A4D4CE060C6E9 ] C:\Program Files\Microsoft Small Business\Office Accounting 2008\SBA.exe
16:53:56.0928 5552 C:\Program Files\Microsoft Small Business\Office Accounting 2008\SBA.exe - ok
16:53:56.0932 5552 [ 190733D430587E587F205E790D3E2C3B ] C:\Program Files\Nike\Nike+ Connect\Nike+ Connect daemon.exe
16:53:56.0932 5552 C:\Program Files\Nike\Nike+ Connect\Nike+ Connect daemon.exe - ok
16:53:56.0936 5552 [ ABAEAEE763E287BDD39094C4165E1F3F ] C:\Windows\System32\fdProxy.dll
16:53:56.0936 5552 C:\Windows\System32\fdProxy.dll - ok
16:53:56.0940 5552 [ F7840DAF39052535643D16438A34217E ] C:\Program Files\Fliptoast\fliptoast.exe
16:53:56.0940 5552 C:\Program Files\Fliptoast\fliptoast.exe - ok
16:53:56.0943 5552 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:53:56.0943 5552 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
16:53:56.0948 5552 [ 53B85367EAEAEB3602378521654D7353 ] C:\Program Files\HP\Digital Imaging\bin\Hpqdirec.exe
16:53:56.0948 5552 C:\Program Files\HP\Digital Imaging\bin\Hpqdirec.exe - ok
16:53:56.0951 5552 [ 4BAEC13BCAA595639EBB5185278DEFEA ] C:\Windows\System32\fdWSD.dll
16:53:56.0951 5552 C:\Windows\System32\fdWSD.dll - ok
16:53:56.0955 5552 [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll
16:53:56.0955 5552 C:\Windows\System32\rasdlg.dll - ok
16:53:56.0958 5552 [ 98A078F838A70F84E1BD490D7C7675F4 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
16:53:56.0958 5552 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
16:53:56.0963 5552 [ 49720598C584CD046FED83C743D3DE3D ] C:\ProgramData\PlayFirst\Games\PlayFirst.EXE
16:53:56.0963 5552 C:\ProgramData\PlayFirst\Games\PlayFirst.EXE - ok
16:53:56.0966 5552 [ 443C5961CACD4ABC16648874AF06E4A0 ] C:\Windows\System32\fdSSDP.dll
16:53:56.0966 5552 C:\Windows\System32\fdSSDP.dll - ok
16:53:56.0969 5552 [ 80BD4B26E2CBC0D65445D0463DFF6FC2 ] C:\Windows\System32\oledlg.dll
16:53:56.0969 5552 C:\Windows\System32\oledlg.dll - ok
16:53:56.0974 5552 [ FA2A3AFADC4FB47DBC234A4E57F92CDB ] C:\Windows\System32\ddraw.dll
16:53:56.0974 5552 C:\Windows\System32\ddraw.dll - ok
16:53:56.0977 5552 [ E681281D9BFC9D45D3B72532717E5880 ] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
16:53:56.0977 5552 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
16:53:56.0981 5552 [ B1E4D190CD21CC75AE38562400DD5345 ] C:\Windows\System32\rapistub.dll
16:53:56.0981 5552 C:\Windows\System32\rapistub.dll - ok
16:53:56.0985 5552 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll
16:53:56.0985 5552 C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll - ok
16:53:56.0990 5552 [ CB25DCC5234E5AEBFAA781F5BC5017A0 ] C:\ProgramData\PlayFirst\Games\chocolatier-decadence-design\chocolatier-decadence.exe
16:53:56.0990 5552 C:\ProgramData\PlayFirst\Games\chocolatier-decadence-design\chocolatier-decadence.exe - ok
16:53:56.0994 5552 [ 35937EAD711207544E219C2A19A78A7D ] C:\Program Files\Windows Media Player\wmpnscfg.exe
16:53:56.0994 5552 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
16:53:56.0998 5552 [ 51464B6C373CD07E7D4A6CC9294ED67C ] C:\Users\Kelly\AppData\Roaming\Dropbox\bin\Dropbox.exe
16:53:56.0998 5552 C:\Users\Kelly\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
16:53:57.0001 5552 [ 21FE608C9C3B378B73C051DD5D62D2FD ] C:\Program Files\DreamCalc DC4G\dreamcalc.exe
16:53:57.0002 5552 C:\Program Files\DreamCalc DC4G\dreamcalc.exe - ok
16:53:57.0006 5552 [ C548C425B02650C7F4DC826E7645A7F7 ] C:\Program Files\Encore\Hoyle Slots 2010\Hoyle Slots.exe
16:53:57.0006 5552 C:\Program Files\Encore\Hoyle Slots 2010\Hoyle Slots.exe - ok
16:53:57.0009 5552 [ 7E6EA9CB72B5DE84A5D700BED877E5F9 ] C:\Program Files\Windows Mail\WinMail.exe
16:53:57.0009 5552 C:\Program Files\Windows Mail\WinMail.exe - ok
16:53:57.0013 5552 [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll
16:53:57.0013 5552 C:\Windows\System32\wlanapi.dll - ok
16:53:57.0017 5552 [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll
16:53:57.0017 5552 C:\Windows\System32\onex.dll - ok
16:53:57.0020 5552 [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll
16:53:57.0020 5552 C:\Windows\System32\eappprxy.dll - ok
16:53:57.0024 5552 [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll
16:53:57.0024 5552 C:\Windows\System32\eappcfg.dll - ok
16:53:57.0028 5552 [ 7425C32BA15AFD9ECE75029B00843F64 ] C:\Program Files\Google\Update\1.3.21.123\psmachine.dll
16:53:57.0028 5552 C:\Program Files\Google\Update\1.3.21.123\psmachine.dll - ok
16:53:57.0031 5552 [ 16CE0F8636916C449A5630A53EDB9983 ] C:\Program Files\AmiBroker\Broker.exe
16:53:57.0031 5552 C:\Program Files\AmiBroker\Broker.exe - ok
16:53:57.0035 5552 [ 7746FF4871C7EE3C169D19B424A47710 ] C:\Program Files\iTunes\iTunesHelper.exe
16:53:57.0035 5552 C:\Program Files\iTunes\iTunesHelper.exe - ok
16:53:57.0038 5552 [ 2D821AFA5A1A9CA7F9F997A1AAD09E72 ] C:\Program Files\Windows Media Player\wmplayer.exe
16:53:57.0039 5552 C:\Program Files\Windows Media Player\wmplayer.exe - ok
16:53:57.0043 5552 [ FACE86ABDF4CE94989A9DA4849498EC7 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
16:53:57.0043 5552 C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe - ok
16:53:57.0046 5552 [ 7E1B0C85B7347D9391FE60F6DADFDDF0 ] C:\Program Files\Microsoft Security Client\msseces.exe
16:53:57.0046 5552 C:\Program Files\Microsoft Security Client\msseces.exe - ok
16:53:57.0050 5552 [ 8728A91948AC0FE779BDF47BC551BAF5 ] C:\Windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe
16:53:57.0050 5552 C:\Windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe - ok
16:53:57.0054 5552 [ 4A839160ED1963F9A1526DDA2D1233B2 ] C:\Windows\System32\AltTab.dll
16:53:57.0054 5552 C:\Windows\System32\AltTab.dll - ok
16:53:57.0058 5552 [ 916A2C4EB028604783FD5EA169236C1D ] C:\Program Files\QuickTime\QTTask.exe
16:53:57.0058 5552 C:\Program Files\QuickTime\QTTask.exe - ok
16:53:57.0061 5552 [ 1BCE2C02487972FF0D5E6702D79E7A75 ] C:\Program Files\7-Zip\7zFM.exe
16:53:57.0061 5552 C:\Program Files\7-Zip\7zFM.exe - ok
16:53:57.0064 5552 [ 59DAC066B544F434F3EF8FBE52BCF6CF ] C:\Program Files\Google\Google Desktop Search\GoogleServices.dll
16:53:57.0065 5552 C:\Program Files\Google\Google Desktop Search\GoogleServices.dll - ok
16:53:57.0068 5552 [ 6B5C53E0932C510606D700B7A896EF73 ] C:\Windows\System32\WPDShServiceObj.dll
16:53:57.0068 5552 C:\Windows\System32\WPDShServiceObj.dll - ok
16:53:57.0072 5552 [ D3D1CE8FF30786D50272DA3085149904 ] C:\Windows\System32\msinfo32.exe
16:53:57.0073 5552 C:\Windows\System32\msinfo32.exe - ok
16:53:57.0077 5552 [ 97A09F7215C09826F24D3343A7348361 ] C:\Program Files\7-Zip\Uninstall.exe
16:53:57.0077 5552 C:\Program Files\7-Zip\Uninstall.exe - ok
16:53:57.0081 5552 [ 6D796D59977EB52B33B966EAB9C73E6A ] C:\Program Files\Microsoft Works\MSWorks.exe
16:53:57.0081 5552 C:\Program Files\Microsoft Works\MSWorks.exe - ok
16:53:57.0085 5552 [ 8BC00165083171F8DE760AE39D76D003 ] C:\Program Files\Microsoft Works\wksdb.exe
16:53:57.0085 5552 C:\Program Files\Microsoft Works\wksdb.exe - ok
16:53:57.0089 5552 [ DF5F4ECACF6DF29A0738CCAE7E322371 ] C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll
16:53:57.0089 5552 C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll - ok
16:53:57.0093 5552 [ B3CCB67D0D6A3F653C43B840FF2EA324 ] C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_en.dll
16:53:57.0093 5552 C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_en.dll - ok
16:53:57.0097 5552 [ 1315C5C5C54CE2AA37A155F97027DB59 ] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
16:53:57.0098 5552 C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
16:53:57.0101 5552 [ 744F08CF9ACFFB1C715191D04DEEE907 ] C:\Windows\System32\srchadmin.dll
16:53:57.0101 5552 C:\Windows\System32\srchadmin.dll - ok
16:53:57.0104 5552 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll
16:53:57.0105 5552 C:\Windows\System32\webcheck.dll - ok
16:53:57.0108 5552 [ 4ACEA0C4BB15ACE55E3AE5EC4E88DD55 ] C:\Windows\System32\SyncCenter.dll
16:53:57.0108 5552 C:\Windows\System32\SyncCenter.dll - ok
16:53:57.0112 5552 [ 0B5AC46982E77CAF3EC1D55C9AC6AB56 ] C:\Windows\System32\wscntfy.dll
16:53:57.0112 5552 C:\Windows\System32\wscntfy.dll - ok
16:53:57.0115 5552 [ 9B0726A03B790E5B82BED44D24009BEF ] C:\Windows\System32\imapi2.dll
16:53:57.0115 5552 C:\Windows\System32\imapi2.dll - ok
16:53:57.0118 5552 [ DAF60E13E96ECB67F0EDAA89C6B01B8D ] C:\Windows\System32\notepad.exe
16:53:57.0119 5552 C:\Windows\System32\notepad.exe - ok
16:53:57.0122 5552 [ 3F1CF4271C3758B5DF62A19B541552DF ] C:\Program Files\bfgclient\bfgclient.exe
16:53:57.0122 5552 C:\Program Files\bfgclient\bfgclient.exe - ok
16:53:57.0126 5552 [ BCC6E6FC7A9243527CA07789C2F1AF4C ] C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe
16:53:57.0126 5552 C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe - ok
16:53:57.0130 5552 [ 941486AB385556BF6A62342F8CA15BD8 ] C:\Windows\System32\accessibilitycpl.dll
16:53:57.0130 5552 C:\Windows\System32\accessibilitycpl.dll - ok
16:53:57.0133 5552 [ 8274C87726D4561EE8750D883764ACC1 ] C:\Windows\System32\wbem\unsecapp.exe
16:53:57.0133 5552 C:\Windows\System32\wbem\unsecapp.exe - ok
16:53:57.0137 5552 [ E47C854A28A81F2939F42CBE9FEA994C ] C:\Windows\System32\Magnify.exe
16:53:57.0137 5552 C:\Windows\System32\Magnify.exe - ok
16:53:57.0141 5552 [ 10DE220BDFE330073762F89974DB8403 ] C:\Windows\System32\wbem\wmiprov.dll
16:53:57.0141 5552 C:\Windows\System32\wbem\wmiprov.dll - ok
16:53:57.0144 5552 [ 27BB54357A51594D9F9B6257B5B9A879 ] C:\Windows\System32\Narrator.exe
16:53:57.0144 5552 C:\Windows\System32\Narrator.exe - ok
16:53:57.0148 5552 [ 3D1ABC78415C78A9BA7F3FC2BB8EDC9A ] C:\Windows\System32\wbem\mofd.dll
16:53:57.0148 5552 C:\Windows\System32\wbem\mofd.dll - ok
16:53:57.0152 5552 [ 877F2939794EBA4F3D1BB967007E99E8 ] C:\Windows\System32\osk.exe
16:53:57.0152 5552 C:\Windows\System32\osk.exe - ok
16:53:57.0155 5552 [ BD38CB136C0FDA83708BA5E53B8DFF7F ] C:\Program Files\Secunia\PSI\psi.exe
16:53:57.0155 5552 C:\Program Files\Secunia\PSI\psi.exe - ok
16:53:57.0159 5552 [ BCC412AC5943584ED691BA5715DF46EF ] C:\Program Files\V CAST Music with Rhapsody\rhapsody.exe
16:53:57.0159 5552 C:\Program Files\V CAST Music with Rhapsody\rhapsody.exe - ok
16:53:57.0163 5552 [ CE9191729CD550E871494CBA6ADCA112 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
16:53:57.0163 5552 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
16:53:57.0167 5552 [ C7DAED1FF1D778B301B3D796BA6F6A9C ] C:\Users\Kelly\AppData\Local\ArcadeCandy\ACGames.exe
16:53:57.0167 5552 C:\Users\Kelly\AppData\Local\ArcadeCandy\ACGames.exe - ok
16:53:57.0170 5552 [ 463418D0E272C74F2C4BD8D5A3CA18C2 ] C:\Users\Kelly\AppData\Local\ArcadeCandy\candyRemove.exe
16:53:57.0170 5552 C:\Users\Kelly\AppData\Local\ArcadeCandy\candyRemove.exe - ok
16:53:57.0174 5552 [ F577910A133A592234EBAAD3F3AFA258 ] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:53:57.0174 5552 C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe - ok
16:53:57.0178 5552 [ FC5C0757A0F50D8F3EFC9C1476894934 ] C:\Program Files\iTunes\iTunesHelper.dll
16:53:57.0178 5552 C:\Program Files\iTunes\iTunesHelper.dll - ok
16:53:57.0181 5552 [ C0ABD66F31C0B84CD944802E6D3D02C2 ] C:\Windows\System32\bthprops.cpl
16:53:57.0181 5552 C:\Windows\System32\bthprops.cpl - ok
16:53:57.0185 5552 [ E46A4765F8E6D631C9C9CB0B083602F5 ] C:\Program Files\Windows Media Player\wmpnssci.dll
16:53:57.0185 5552 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
16:53:57.0188 5552 [ 13001914838576400EB9AFDE95AE71CE ] C:\Program Files\CCleaner\CCleaner.exe
16:53:57.0188 5552 C:\Program Files\CCleaner\CCleaner.exe - ok
16:53:57.0191 5552 [ EB14507EB8341AFF8675A2A6B8901CF3 ] C:\Program Files\CCleaner\uninst.exe
16:53:57.0192 5552 C:\Program Files\CCleaner\uninst.exe - ok
16:53:57.0195 5552 [ 790222D6CCFC576F0D07D418E6115D85 ] C:\Program Files\Windows Calendar\WinCal.exe
16:53:57.0195 5552 C:\Program Files\Windows Calendar\WinCal.exe - ok
16:53:57.0198 5552 [ 8FE651ACBA3344E645CFEB6286FFF6B8 ] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
16:53:57.0199 5552 C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe - ok
16:53:57.0202 5552 [ 06164026C38AA5366E4D127E2E36FDE8 ] C:\Program Files\Windows Mail\wab.exe
16:53:57.0202 5552 C:\Program Files\Windows Mail\wab.exe - ok
16:53:57.0206 5552 [ 70CF4129C12FC061F0D4F9AEAE7DCAAE ] C:\Program Files\AVG Secure Search\vprot.exe
16:53:57.0206 5552 C:\Program Files\AVG Secure Search\vprot.exe - ok
16:53:57.0209 5552 [ F2EEADEFFE7F2C5D9194DDFCE0D82F13 ] C:\Users\Kelly\AppData\Roaming\Dropbox\bin\Uninstall.exe
16:53:57.0209 5552 C:\Users\Kelly\AppData\Roaming\Dropbox\bin\Uninstall.exe - ok
16:53:57.0213 5552 [ 0BF024E4F8FC508ACFED092399F0FB4C ] C:\Program Files\SelectRebates\SelectRebates.exe
16:53:57.0213 5552 C:\Program Files\SelectRebates\SelectRebates.exe - ok
16:53:57.0216 5552 [ 0D392EDE3B97E0B3131B2F63EF1DB94E ] C:\Program Files\Windows Defender\MSASCui.exe
16:53:57.0216 5552 C:\Program Files\Windows Defender\MSASCui.exe - ok
16:53:57.0219 5552 [ 395335431AD55C167CFDBBAB8420DA73 ] C:\Program Files\Movie Maker\DVDMaker.exe
16:53:57.0220 5552 C:\Program Files\Movie Maker\DVDMaker.exe - ok
16:53:57.0223 5552 [ 7E72B82A67212BC07E23CC96D966B1CF ] C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe
16:53:57.0223 5552 C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe - ok
16:53:57.0227 5552 [ CCF0785A0D30578A04AB16B92E1A0F40 ] C:\Users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\E-centives\UninstallCouponActivator.exe
16:53:57.0227 5552 C:\Users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\E-centives\UninstallCouponActivator.exe - ok
16:53:57.0230 5552 [ A73731A0B0A165907799E9AFB461F856 ] C:\Program Files\Real\RealPlayer\Update\realsched.exe
16:53:57.0230 5552 C:\Program Files\Real\RealPlayer\Update\realsched.exe - ok
16:53:57.0234 5552 [ B7ED332A57FC78CA29E40D3619550225 ] C:\Windows\ehome\ehshell.exe
16:53:57.0234 5552 C:\Windows\ehome\ehshell.exe - ok
16:53:57.0237 5552 [ BF08674925F151BD4537B89A493E3E0C ] C:\Windows\ehome\ehtray.exe
16:53:57.0237 5552 C:\Windows\ehome\ehtray.exe - ok
16:53:57.0240 5552 [ 52BC119E49F88F2A5D1466230B1275C7 ] C:\Program Files\Windows Collaboration\WinCollab.exe
16:53:57.0240 5552 C:\Program Files\Windows Collaboration\WinCollab.exe - ok
16:53:57.0244 5552 [ 12EE0435829EB8277744E3372AA329ED ] C:\Users\Kelly\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
16:53:57.0244 5552 C:\Users\Kelly\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
16:53:57.0248 5552 [ BF1B989253443A66BB6E000105A5C4EA ] C:\ProgramData\Oberon Media\Channels\110268333\Uninstaller.exe
16:53:57.0248 5552 C:\ProgramData\Oberon Media\Channels\110268333\Uninstaller.exe - ok
16:53:57.0252 5552 [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe
16:53:57.0252 5552 C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe - ok
16:53:57.0255 5552 [ E616A6A6E91B0A86F2F6217CDE835FFE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
16:53:57.0255 5552 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
16:53:57.0259 5552 [ C4AB08459CD7B59B410ACFC04D90E87B ] C:\Program Files\Movie Maker\MOVIEMK.exe
16:53:57.0259 5552 C:\Program Files\Movie Maker\MOVIEMK.exe - ok
16:53:57.0262 5552 [ C03AC1FBCD625F93D2C245D97E06F270 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe
16:53:57.0262 5552 C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok
16:53:57.0266 5552 [ 9BA0BF40279B93B87633F03F7E72FBEB ] C:\Program Files\Encore\Hoyle Slots 2010\Uninstall.exe
16:53:57.0266 5552 C:\Program Files\Encore\Hoyle Slots 2010\Uninstall.exe - ok
16:53:57.0269 5552 [ EF764E33878B3A4A9E5A2FB5D0D031D0 ] C:\Windows\System32\dciman32.dll
16:53:57.0269 5552 C:\Windows\System32\dciman32.dll - ok
16:53:57.0273 5552 [ B1488FC6BEC8C44F46A5686573152B8E ] C:\Program Files\HyperCam 2\HyCam2.exe
16:53:57.0273 5552 C:\Program Files\HyperCam 2\HyCam2.exe - ok
16:53:57.0276 5552 [ C7E9C2954ACAFB7284C2DB21969CFF92 ] C:\Program Files\HyperCam 2\HcUnInst.exe
16:53:57.0276 5552 C:\Program Files\HyperCam 2\HcUnInst.exe - ok
16:53:57.0279 5552 [ 490858A134B9B164D57097690A5FBD8C ] C:\Program Files\JExamStudent3\uninstall.exe
16:53:57.0279 5552 C:\Program Files\JExamStudent3\uninstall.exe - ok
16:53:57.0283 5552 [ D01B0BC49809AE7D8408E79053E6150E ] C:\Program Files\JExamStudent3\JExamStudent3.exe
16:53:57.0283 5552 C:\Program Files\JExamStudent3\JExamStudent3.exe - ok
16:53:57.0286 5552 [ 11FBB8CB6865B7BA387095398EB91ED4 ] C:\Windows\System32\rapi.dll
16:53:57.0286 5552 C:\Windows\System32\rapi.dll - ok
16:53:57.0290 5552 [ 069385484EA57B663D688894C88975C5 ] C:\Windows\System32\wuapp.exe
16:53:57.0290 5552 C:\Windows\System32\wuapp.exe - ok
16:53:57.0293 5552 [ 285C594C4913FA9DC7BB6BA3AD6F101A ] C:\Windows\System32\wucltux.dll
16:53:57.0293 5552 C:\Windows\System32\wucltux.dll - ok
16:53:57.0297 5552 [ C6301E5D939BB495F4AD9FB9F7F5D5B8 ] C:\Users\Kelly\AppData\Local\Microsoft\Windows\2987\secproc_ssp.exe
16:53:57.0297 5552 C:\Users\Kelly\AppData\Local\Microsoft\Windows\2987\secproc_ssp.exe - ok
16:53:57.0301 5552 [ F03FFC962E18F36A922E61F96BE09925 ] C:\Program Files\Digital Line Detect\DLG.exe
16:53:57.0301 5552 C:\Program Files\Digital Line Detect\DLG.exe - ok
16:53:57.0304 5552 [ 6A67E6A6414F17649F105C5673F8561D ] C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\EREG 2.02.2\EREG_INST.EXE
16:53:57.0304 5552 C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\EREG 2.02.2\EREG_INST.EXE - ok
16:53:57.0308 5552 [ EAA666E9DD8DCDA6E075087091CB85EE ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
16:53:57.0308 5552 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe - ok
16:53:57.0311 5552 [ 6878C1E7C035E0AAC08E27AC665BAF6F ] C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\Mavis11.exe
16:53:57.0311 5552 C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\Mavis11.exe - ok
16:53:57.0315 5552 [ 648AB74D9C104FB500B6C4EEDC6A8772 ] C:\Windows\System32\wmpmde.dll
16:53:57.0315 5552 C:\Windows\System32\wmpmde.dll - ok
16:53:57.0318 5552 [ 67D16247C56C26A4F0D79D1A7F272B8F ] C:\Windows\System32\mf.dll
16:53:57.0318 5552 C:\Windows\System32\mf.dll - ok
16:53:57.0321 5552 [ B4FAAAD7FB17366A801D5658690D1925 ] C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\uninst.exe
16:53:57.0322 5552 C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 11\uninst.exe - ok
16:53:57.0326 5552 [ 32C26797AB646074A2BB562F9D10ADB5 ] C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
16:53:57.0326 5552 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE - ok
16:53:57.0330 5552 [ F7DCE54077EE9D8A351C4B1FFA866EE7 ] C:\Program Files\OpenOffice.org 3\program\quickstart.exe
16:53:57.0330 5552 C:\Program Files\OpenOffice.org 3\program\quickstart.exe - ok
16:53:57.0333 5552 [ 2495C4204C63678F8FD5D488CA7DAD26 ] C:\Windows\System32\evr.dll
16:53:57.0333 5552 C:\Windows\System32\evr.dll - ok
16:53:57.0336 5552 [ 4DF10CE50010D70152944B51E03588B0 ] C:\Windows\System32\wmdrmsdk.dll
16:53:57.0336 5552 C:\Windows\System32\wmdrmsdk.dll - ok
16:53:57.0340 5552 [ EFD278F8129EE12F1D4AE0250494B791 ] C:\Windows\System32\dxva2.dll
16:53:57.0340 5552 C:\Windows\System32\dxva2.dll - ok
16:53:57.0343 5552 [ 015E99A7634B93E8BB0380C70F3D2CC3 ] C:\Windows\System32\wmp.dll
16:53:57.0343 5552 C:\Windows\System32\wmp.dll - ok
16:53:57.0346 5552 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:53:57.0346 5552 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
16:53:57.0350 5552 [ 1ED2124313CCE34C877247574212EFC8 ] C:\Windows\System32\calc.exe
16:53:57.0350 5552 C:\Windows\System32\calc.exe - ok
16:53:57.0353 5552 [ 338104E0E18307CD65604FE317B5FB8D ] C:\Windows\System32\mblctr.exe
16:53:57.0353 5552 C:\Windows\System32\mblctr.exe - ok
16:53:57.0356 5552 [ B1AFF0B6DED627A1D22A6817DD58AC0F ] C:\Windows\System32\NetProj.exe
16:53:57.0356 5552 C:\Windows\System32\NetProj.exe - ok
16:53:57.0360 5552 [ A577868F76CEE16D6A82625FD55F379A ] C:\Windows\System32\NetProjW.dll
16:53:57.0360 5552 C:\Windows\System32\NetProjW.dll - ok
16:53:57.0363 5552 [ EACACA0F2FF4CC54A909E3C5721FCDE8 ] C:\Windows\System32\msvfw32.dll
16:53:57.0363 5552 C:\Windows\System32\msvfw32.dll - ok
16:53:57.0366 5552 [ 9441A231C0AA0712F7CF3B10D9CFCF76 ] C:\Windows\System32\wmploc.DLL
16:53:57.0366 5552 C:\Windows\System32\wmploc.DLL - ok
16:53:57.0369 5552 [ 694AF8B27C9A0A99399E02CE977F986B ] C:\Windows\System32\mspaint.exe
16:53:57.0369 5552 C:\Windows\System32\mspaint.exe - ok
16:53:57.0373 5552 [ 3F88D3D7C8DC3F00AAF911F87050E853 ] C:\Program Files\Dell\DellComms\bin\sprtevent.dll
16:53:57.0373 5552 C:\Program Files\Dell\DellComms\bin\sprtevent.dll - ok
16:53:57.0376 5552 [ 16FEE292E95EDC274385103E6B498019 ] C:\Windows\System32\mstsc.exe
16:53:57.0376 5552 C:\Windows\System32\mstsc.exe - ok
16:53:57.0379 5552 [ 9E35FF7F943AE0FB89192BFE058B7FD4 ] C:\Program Files\Windows Sidebar\sidebar.exe
16:53:57.0379 5552 C:\Program Files\Windows Sidebar\sidebar.exe - ok
16:53:57.0383 5552 [ E80DB295132C5EF0C623935422BD0FC7 ] C:\Windows\System32\SnippingTool.exe
16:53:57.0383 5552 C:\Windows\System32\SnippingTool.exe - ok
16:53:57.0386 5552 [ 248F33A6C2380757BC1E20E34D9E827B ] C:\Windows\System32\SoundRecorder.exe
16:53:57.0386 5552 C:\Windows\System32\SoundRecorder.exe - ok
16:53:57.0390 5552 [ 9B89B3BB79EA1ACF041F40A7B6FC5827 ] C:\Windows\System32\mobsync.exe
16:53:57.0390 5552 C:\Windows\System32\mobsync.exe - ok
16:53:57.0393 5552 [ 16FC5B430123238E522B18E63C257AF8 ] C:\Windows\System32\oobefldr.dll
16:53:57.0393 5552 C:\Windows\System32\oobefldr.dll - ok
16:53:57.0396 5552 [ 617F9A5813E69F6E9ED94B811EC75396 ] C:\Windows\System32\wmpps.dll
16:53:57.0396 5552 C:\Windows\System32\wmpps.dll - ok
16:53:57.0400 5552 [ 8C9740A3B7603B0A746213DAE8C89526 ] C:\Program Files\Spybot - Search & Destroy\blindman.exe
16:53:57.0400 5552 C:\Program Files\Spybot - Search & Destroy\blindman.exe - ok
16:53:57.0403 5552 [ F1ECEC53B9FFC30E123D14E087C49111 ] C:\Windows\System32\wmdrmdev.dll
16:53:57.0403 5552 C:\Windows\System32\wmdrmdev.dll - ok
16:53:57.0407 5552 [ 7C7C620860819A62F926D7EC0B72C50B ] C:\Windows\System32\drmv2clt.dll
16:53:57.0459 5552 C:\Windows\System32\drmv2clt.dll - ok
16:53:57.0461 5552 [ 19D0FC69D4E68D5CE2E4B34940529727 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
16:53:57.0462 5552 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
16:53:57.0465 5552 [ 1CB4DEA9295A37B2E182F109A44D205D ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv01.key
16:53:57.0465 5552 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv01.key - ok
16:53:57.0469 5552 [ 105A4D87C8DCF2CF5DB042830B203E5F ] C:\Windows\Speech\Common\sapisvr.exe
16:53:57.0469 5552 C:\Windows\Speech\Common\sapisvr.exe - ok
16:53:57.0472 5552 [ 07A72133045173EBD14F838FE218A326 ] C:\Program Files\Secunia\PSI\psi_tray.exe
16:53:57.0472 5552 C:\Program Files\Secunia\PSI\psi_tray.exe - ok
16:53:57.0476 5552 [ 9AD8AEAAB3EB89277AF1DDF31B14F90F ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
16:53:57.0476 5552 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
16:53:57.0479 5552 [ A623666C8A8EC9A57DCA07915A3F1EC6 ] C:\Windows\System32\sdclt.exe
16:53:57.0479 5552 C:\Windows\System32\sdclt.exe - ok
16:53:57.0482 5552 [ D571295B71C60A67F6F2EA987E5CC3B0 ] C:\Windows\System32\wmdrmnet.dll
16:53:57.0482 5552 C:\Windows\System32\wmdrmnet.dll - ok
16:53:57.0490 5552 [ BB4910DE8B6C5E30DF39EC97308D44BA ] C:\Windows\System32\charmap.exe
16:53:57.0490 5552 C:\Windows\System32\charmap.exe - ok
16:53:57.0495 5552 [ 2327C11B043FCEB80BE00CC8D077E9AA ] C:\Windows\System32\dfrgui.exe
16:53:57.0495 5552 C:\Windows\System32\dfrgui.exe - ok
16:53:57.0500 5552 [ 86AB3F6C784197DC1D994A83AF4259CD ] C:\Windows\System32\cleanmgr.exe
16:53:57.0500 5552 C:\Windows\System32\cleanmgr.exe - ok
16:53:57.0505 5552 [ FBF628702A408977FEB0845D48F4F154 ] C:\Windows\System32\migwiz\migwiz.exe
16:53:57.0505 5552 C:\Windows\System32\migwiz\migwiz.exe - ok
16:53:57.0508 5552 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
16:53:57.0508 5552 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
16:53:57.0511 5552 [ 95D5AC5CCBE10E8B4B8A0DF41022568D ] C:\Windows\System32\rstrui.exe
16:53:57.0511 5552 C:\Windows\System32\rstrui.exe - ok
16:53:57.0514 5552 [ B13A8D6F708AA2034A9DE0979F81D890 ] C:\Windows\System32\miguiresource.dll
16:53:57.0515 5552 C:\Windows\System32\miguiresource.dll - ok
16:53:57.0521 5552 [ C9B520028498E5DA23651619F8A556D4 ] C:\Windows\System32\StikyNot.exe
16:53:57.0521 5552 C:\Windows\System32\StikyNot.exe - ok
16:53:57.0527 5552 [ 7122B0AA2212B07BBFC49BD22215BF3B ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
16:53:57.0527 5552 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok
16:53:57.0532 5552 [ C20436B4F0596ACD5569749206F99265 ] C:\Program Files\Windows Journal\Journal.exe
16:53:57.0532 5552 C:\Program Files\Windows Journal\Journal.exe - ok
16:53:57.0538 5552 [ 36B6F71B6D7D280302B348145DB05A9F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe
16:53:57.0538 5552 C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe - ok
16:53:57.0540 5552 [ DF4217DDB34A0B73DC7AAC7829371C0C ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
16:53:57.0540 5552 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
16:53:57.0544 5552 [ 4CAAD229A00C0DEFFF51841AE2B93B46 ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll
16:53:57.0544 5552 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll - ok
16:53:57.0547 5552 [ 2CB350B72FEA6FB5A010099A4444B636 ] C:\Windows\System32\mycomput.dll
16:53:57.0547 5552 C:\Windows\System32\mycomput.dll - ok
16:53:57.0551 5552 [ 1C474C0C4CB5F15A555FE912CBF4549C ] C:\Windows\System32\odbcad32.exe
16:53:57.0551 5552 C:\Windows\System32\odbcad32.exe - ok
16:53:57.0565 5552 [ 0DAAF8032546D1B4543D7B101B53FD6C ] C:\Windows\System32\odbcint.dll
16:53:57.0565 5552 C:\Windows\System32\odbcint.dll - ok
16:53:57.0568 5552 [ 1CB1B95D67BC380FBCCFAEA3CF2DDA80 ] C:\Windows\System32\iscsicpl.exe
16:53:57.0568 5552 C:\Windows\System32\iscsicpl.exe - ok
16:53:57.0572 5552 [ F84D0B1B90404D0A27E86F159FBDAC81 ] C:\Windows\System32\iscsicpl.dll
16:53:57.0572 5552 C:\Windows\System32\iscsicpl.dll - ok
16:53:57.0576 5552 [ 8D865A3E7E2C78317EDE4EAE8316284F ] C:\Windows\System32\MdSched.exe
16:53:57.0576 5552 C:\Windows\System32\MdSched.exe - ok
16:53:57.0579 5552 [ 1959E5AAEE0D988C10F19CEC7DFF2242 ] C:\Windows\System32\wdc.dll
16:53:57.0579 5552 C:\Windows\System32\wdc.dll - ok
16:53:57.0582 5552 [ 3A72AB0BAF2DC1AE0BA6E1EE28FFCC0B ] C:\Windows\System32\msftedit.dll
16:53:57.0582 5552 C:\Windows\System32\msftedit.dll - ok
16:53:57.0589 5552 [ 90438B514A5AC6A23602484A907E20A7 ] C:\Windows\System32\filemgmt.dll
16:53:57.0589 5552 C:\Windows\System32\filemgmt.dll - ok
16:53:57.0594 5552 [ 7629E9BB2FF06EACA62580A2C1D4FE6A ] C:\Windows\System32\msconfig.exe
16:53:57.0594 5552 C:\Windows\System32\msconfig.exe - ok
16:53:57.0599 5552 [ 0ADED25D371AE14665CE514E413988E7 ] C:\Windows\System32\AuthFWGP.dll
16:53:57.0599 5552 C:\Windows\System32\AuthFWGP.dll - ok
16:53:57.0604 5552 [ 3009B4A9135EAC7C4E3931BA999D3A78 ] C:\Program Files\Adobe\Adobe Bridge CS6\Bridge.exe
16:53:57.0604 5552 C:\Program Files\Adobe\Adobe Bridge CS6\Bridge.exe - ok
16:53:57.0607 5552 [ 8B7AF24C57E1EF77235012F9DA932DCB ] C:\Program Files\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe
16:53:57.0608 5552 C:\Program Files\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe - ok
16:53:57.0612 5552 [ 22E262C67D75893F0C113606FAEE3E48 ] C:\Program Files\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe
16:53:57.0613 5552 C:\Program Files\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe - ok
16:53:57.0616 5552 [ 0F12714568ADDB3ED14E047EF7D2E15D ] C:\Program Files\Adobe\Adobe Flash CS6\Flash.exe
16:53:57.0616 5552 C:\Program Files\Adobe\Adobe Flash CS6\Flash.exe - ok
16:53:57.0623 5552 [ EF24642D5FB52A1EEF56DE9E47CBB993 ] C:\Windows\System32\mfc42.dll
16:53:57.0623 5552 C:\Windows\System32\mfc42.dll - ok
16:53:57.0629 5552 [ B1A31D37554C9572046FC98955363065 ] C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
16:53:57.0629 5552 C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe - ok
16:53:57.0634 5552 [ 2635B1A6B11105AACE0440CEC6830189 ] C:\Program Files\Common Files\Adobe\CS6ServiceManager\VulcanControl.dll
16:53:57.0634 5552 C:\Program Files\Common Files\Adobe\CS6ServiceManager\VulcanControl.dll - ok
16:53:57.0640 5552 [ 8B4E5D0F5A28C486E31EA7A1E8956903 ] C:\Program Files\AmiBroker\AmiQuote\Quote.exe
16:53:57.0640 5552 C:\Program Files\AmiBroker\AmiQuote\Quote.exe - ok
16:53:57.0644 5552 [ 3FDC50BBE7CB86D05E4582C84D940B8E ] C:\Program Files\Atari\RollerCoaster Tycoon 3 Platinum\RCT3plus.exe
16:53:57.0644 5552 C:\Program Files\Atari\RollerCoaster Tycoon 3 Platinum\RCT3plus.exe - ok
16:53:57.0648 5552 [ 9389FF4D36E99352E440CCBEB17C884E ] C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe
16:53:57.0648 5552 C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe - ok
16:53:57.0653 5552 [ 4598876533A0C14AEEC66358AF49F364 ] C:\Program Files\AVG\AVG PC Tuneup\RescueCenter.exe
16:53:57.0653 5552 C:\Program Files\AVG\AVG PC Tuneup\RescueCenter.exe - ok
16:53:57.0658 5552 [ D43C3160A33E57E93923903FF13A4CD1 ] C:\Program Files\AVG\AVG PC Tuneup\unins000.exe
16:53:57.0658 5552 C:\Program Files\AVG\AVG PC Tuneup\unins000.exe - ok
16:53:57.0664 5552 [ 1EBDD4243A1905F2FCAE4F4404C68C06 ] C:\Program Files\AVG\AVG PC Tuneup\DiskDefrag.exe
16:53:57.0664 5552 C:\Program Files\AVG\AVG PC Tuneup\DiskDefrag.exe - ok
16:53:57.0669 5552 [ F248E5EC68A185D1C9D00F63E608DC47 ] C:\Program Files\AVG\AVG PC Tuneup\DiskCleaner.exe
16:53:57.0669 5552 C:\Program Files\AVG\AVG PC Tuneup\DiskCleaner.exe - ok
16:53:57.0674 5552 [ F3841E0C5BACC84216A6375CC73F5405 ] C:\Program Files\AVG\AVG PC Tuneup\DiskDoctor.exe
16:53:57.0674 5552 C:\Program Files\AVG\AVG PC Tuneup\DiskDoctor.exe - ok
16:53:57.0679 5552 [ 25C551922E2C4C5600339A83FAEAA707 ] C:\Program Files\AVG\AVG PC Tuneup\DiskExplorer.exe
16:53:57.0679 5552 C:\Program Files\AVG\AVG PC Tuneup\DiskExplorer.exe - ok
16:53:57.0683 5552 [ 52CF2C6A7898B37BD9731E340D64C762 ] C:\Program Files\AVG\AVG PC Tuneup\DiskWiper.exe
16:53:57.0683 5552 C:\Program Files\AVG\AVG PC Tuneup\DiskWiper.exe - ok
16:53:57.0687 5552 [ 8E5F30BF387CC484A20035BFD8250F2B ] C:\Program Files\AVG\AVG PC Tuneup\DuplicateFileFinder.exe
16:53:57.0687 5552 C:\Program Files\AVG\AVG PC Tuneup\DuplicateFileFinder.exe - ok
16:53:57.0701 5552 [ 2E1AB1265E54D650AFEB39414D0CB94A ] C:\Program Files\AVG\AVG PC Tuneup\FileRecovery.exe
16:53:57.0701 5552 C:\Program Files\AVG\AVG PC Tuneup\FileRecovery.exe - ok
16:53:57.0706 5552 [ BC1C6F055B0FF615B497052883ECACCA ] C:\Program Files\AVG\AVG PC Tuneup\FileShredder.exe
16:53:57.0706 5552 C:\Program Files\AVG\AVG PC Tuneup\FileShredder.exe - ok
16:53:57.0711 5552 [ 23A82DEAA4A8FD8BA26EFB863C2FCCCD ] C:\Program Files\AVG\AVG PC Tuneup\InternetOptimizer.exe
16:53:57.0711 5552 C:\Program Files\AVG\AVG PC Tuneup\InternetOptimizer.exe - ok
16:53:57.0715 5552 [ 38BA892BEAF60D646D9B1B5AEB39E731 ] C:\Program Files\AVG\AVG PC Tuneup\RegCleaner.exe
16:53:57.0715 5552 C:\Program Files\AVG\AVG PC Tuneup\RegCleaner.exe - ok
16:53:57.0719 5552 [ F6A6D1F7AD41690B91544BA079B9173B ] C:\Program Files\AVG\AVG PC Tuneup\RegistryDefrag.exe
16:53:57.0720 5552 C:\Program Files\AVG\AVG PC Tuneup\RegistryDefrag.exe - ok
16:53:57.0726 5552 [ A09D390A98B9942F2542E4275320EBFE ] C:\Program Files\AVG\AVG PC Tuneup\ServiceManager.exe
16:53:57.0726 5552 C:\Program Files\AVG\AVG PC Tuneup\ServiceManager.exe - ok
16:53:57.0731 5552 [ E283E57EACE80E2B49B999CACB099A95 ] C:\Program Files\AVG\AVG PC Tuneup\StartupManager.exe
16:53:57.0731 5552 C:\Program Files\AVG\AVG PC Tuneup\StartupManager.exe - ok
16:53:57.0736 5552 [ 06E9AE36F1D933B939F6B96EC1EAC27C ] C:\Program Files\AVG\AVG PC Tuneup\SystemInformation.exe
16:53:57.0736 5552 C:\Program Files\AVG\AVG PC Tuneup\SystemInformation.exe - ok
16:53:57.0739 5552 [ F075BAB3DE6E552DEAA50C5ACA25219C ] C:\Program Files\AVG\AVG PC Tuneup\TaskManager.exe
16:53:57.0739 5552 C:\Program Files\AVG\AVG PC Tuneup\TaskManager.exe - ok
16:53:57.0744 5552 [ CF595046DA4BF5C0DC13DE5BDDDC4485 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
16:53:57.0744 5552 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
16:53:57.0747 5552 [ 84467C7C63D0A1DBF4DF4050B49DEE38 ] C:\Program Files\AVG\AVG PC Tuneup\TrackEraser.exe
16:53:57.0748 5552 C:\Program Files\AVG\AVG PC Tuneup\TrackEraser.exe - ok
16:53:57.0751 5552 [ 729491978B8CF662882D4A49166141CC ] C:\Program Files\AVG\AVG PC Tuneup\TweakManager.exe
16:53:57.0751 5552 C:\Program Files\AVG\AVG PC Tuneup\TweakManager.exe - ok
16:53:57.0755 5552 [ 002B4C0DFD4E334F7B63615112576CB5 ] C:\Program Files\AVG\AVG PC Tuneup\ProgramManager.exe
16:53:57.0755 5552 C:\Program Files\AVG\AVG PC Tuneup\ProgramManager.exe - ok
16:53:57.0758 5552 [ 8F54191F5F8345E995F92D538BE9ECF3 ] C:\Program Files\Canon\IJ Manual\MP190 SERIES\uninstall.exe
16:53:57.0759 5552 C:\Program Files\Canon\IJ Manual\MP190 SERIES\uninstall.exe - ok
16:53:57.0762 5552 [ 6196AA3918F2888265269C6934064218 ] C:\Program Files\Cat Daddy Games\School Tycoon\School.exe
16:53:57.0762 5552 C:\Program Files\Cat Daddy Games\School Tycoon\School.exe - ok
16:53:57.0766 5552 [ CCA0000B5F9F73ACA4B74D60D590AC48 ] C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll
16:53:57.0766 5552 C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll - ok
16:53:57.0776 5552 [ CB1135906D951B574F9F2498BE8F11F9 ] C:\Program Files\Digital Line Detect\BVRPDiag.dll
16:53:57.0776 5552 C:\Program Files\Digital Line Detect\BVRPDiag.dll - ok
16:53:57.0782 5552 [ 1DCBEDDACCBC99BE7E0251911091953F ] C:\Program Files\Cat Daddy Games\School Tycoon\SchoolTycoon.exe
16:53:57.0782 5552 C:\Program Files\Cat Daddy Games\School Tycoon\SchoolTycoon.exe - ok
16:53:57.0785 5552 [ A9F73085F3E973B664A073698DE63D38 ] C:\Program Files\ConnectionsEducation\Activity Tracker\Activity Tracker.exe
16:53:57.0785 5552 C:\Program Files\ConnectionsEducation\Activity Tracker\Activity Tracker.exe - ok
16:53:57.0789 5552 [ 3FE7C92DBA5C9240B4AB0D6A87E6166A ] C:\Program Files\Coupons\uninstall.exe
16:53:57.0789 5552 C:\Program Files\Coupons\uninstall.exe - ok
16:53:57.0792 5552 [ 34D67C1698E545FC3119AE7D76583684 ] C:\Program Files\Deep Sea Tycoon\ut.exe
16:53:57.0792 5552 C:\Program Files\Deep Sea Tycoon\ut.exe - ok
16:53:57.0796 5552 [ 186790051678CFE06237B1BF637DA433 ] C:\Program Files\Deep Sea Tycoon\setup.exe
16:53:57.0796 5552 C:\Program Files\Deep Sea Tycoon\setup.exe - ok
16:53:57.0799 5552 [ 8FDE804D40DE5E735C717470A494EC9A ] C:\Program Files\Deep Sea Tycoon\uninstall.exe
16:53:57.0800 5552 C:\Program Files\Deep Sea Tycoon\uninstall.exe - ok
16:53:57.0803 5552 [ 32F35EA9D6273ECB6E0CB3EEE9665AAB ] C:\Program Files\Dell\Dell Welcome\welcome.exe
16:53:57.0803 5552 C:\Program Files\Dell\Dell Welcome\welcome.exe - ok
16:53:57.0810 5552 [ 2EFA5CF32A2D77BDB7C11CB74B9F6820 ] C:\Program Files\Dell Support Center\pcdlauncher.exe
16:53:57.0810 5552 C:\Program Files\Dell Support Center\pcdlauncher.exe - ok
16:53:57.0821 5552 [ 601646FEB5D676247148EC219E0BD3AA ] C:\Program Files\Dell Video Chat\DellVideoChat.exe
16:53:57.0821 5552 C:\Program Files\Dell Video Chat\DellVideoChat.exe - ok
16:53:57.0825 5552 [ B0B4C590C0CAE7741DA17E3DC86CC828 ] C:\Windows\System32\ceutil.dll
16:53:57.0825 5552 C:\Windows\System32\ceutil.dll - ok
16:53:57.0828 5552 [ 0F4195B9B348DE5CF9B822F81704B20E ] C:\Windows\ehome\ehmsas.exe
16:53:57.0828 5552 C:\Windows\ehome\ehmsas.exe - ok
16:53:57.0832 5552 [ 059E37AC43C747423766D253467653B8 ] C:\Program Files\Disney\Disney Online\ToontownOnline\ToontownLauncher.exe
16:53:57.0832 5552 C:\Program Files\Disney\Disney Online\ToontownOnline\ToontownLauncher.exe - ok
16:53:57.0836 5552 [ D1455336AEB600108466EA213DEE7956 ] C:\Program Files\Disney\Disney Online\ToontownOnline\uninst.exe
16:53:57.0836 5552 C:\Program Files\Disney\Disney Online\ToontownOnline\uninst.exe - ok
16:53:57.0843 5552 [ 626F198768F67A0FEB3AD909E638F551 ] C:\Windows\System32\WindowsAnytimeUpgrade.exe
16:53:57.0843 5552 C:\Windows\System32\WindowsAnytimeUpgrade.exe - ok
16:53:57.0848 5552 [ 554BF617B3BBE4F2F73BF201B05438DE ] C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
16:53:57.0848 5552 C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll - ok
16:53:57.0854 5552 [ 2310A32BB0164552A311BFA02102A3D6 ] C:\Windows\System32\msvcp60.dll
16:53:57.0854 5552 C:\Windows\System32\msvcp60.dll - ok
16:53:57.0859 5552 [ 3379989F06B31347792836DCF028A325 ] C:\Windows\System32\rapiproxystub.dll
16:53:57.0859 5552 C:\Windows\System32\rapiproxystub.dll - ok
16:53:57.0863 5552 [ 4A938E44BEB41641B70175DACAB1BBB0 ] C:\Windows\ehome\ehProxy.dll
16:53:57.0863 5552 C:\Windows\ehome\ehProxy.dll - ok
16:53:57.0867 5552 [ E5A905BDD0007868FB87007C13324479 ] C:\Windows\System32\winusb.dll
16:53:57.0867 5552 C:\Windows\System32\winusb.dll - ok
16:53:57.0872 5552 [ 8C8C82633A7E90A33E8D7D9617B2B46C ] C:\Windows\WindowsMobile\tcp2udp.dll
16:53:57.0872 5552 C:\Windows\WindowsMobile\tcp2udp.dll - ok
16:53:57.0877 5552 [ 917422E1B95A72B0328B301BACBF1B07 ] C:\Windows\System32\wcescommproxy.dll
16:53:57.0877 5552 C:\Windows\System32\wcescommproxy.dll - ok
16:53:57.0882 5552 [ D5D7C7CBDD63C5938C83846B313FCF3B ] C:\Windows\WindowsMobile\BthASPlugin.dll
16:53:57.0882 5552 C:\Windows\WindowsMobile\BthASPlugin.dll - ok
16:53:57.0887 5552 [ A9FFE290B9539010C1733937438C7A1A ] C:\Program Files\Microsoft SQL Server\90\COM\replsync.dll
16:53:57.0887 5552 C:\Program Files\Microsoft SQL Server\90\COM\replsync.dll - ok
16:53:57.0890 5552 [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\COM\instapi.dll
16:53:57.0890 5552 C:\Program Files\Microsoft SQL Server\90\COM\instapi.dll - ok
16:53:57.0895 5552 [ EEA815CEDF20C8D6C8E051066B508885 ] C:\Program Files\Microsoft SQL Server\90\COM\Resources\1033\REPLRES.rll
16:53:57.0895 5552 C:\Program Files\Microsoft SQL Server\90\COM\Resources\1033\REPLRES.rll - ok
16:53:57.0899 5552 [ E270B78C30A4795978B8067E6A2252A2 ] C:\Windows\WindowsMobile\wmdsyncman.dll
16:53:57.0899 5552 C:\Windows\WindowsMobile\wmdsyncman.dll - ok
16:53:57.0902 5552 [ 7599E425947A595448DA778B610923BC ] C:\Program Files\Windows Media Player\wmpsyncmgr.dll
16:53:57.0902 5552 C:\Program Files\Windows Media Player\wmpsyncmgr.dll - ok
16:53:57.0909 5552 [ 0CADE166293FC566B4B9D477A3A9D650 ] C:\Program Files\Windows Media Player\mpvis.DLL
16:53:57.0909 5552 C:\Program Files\Windows Media Player\mpvis.DLL - ok
16:53:57.0914 5552 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\System32\mfc100u.dll
16:53:57.0914 5552 C:\Windows\System32\mfc100u.dll - ok
16:53:57.0920 5552 [ 83AF9A5C6DEAB93F4850E78589861341 ] C:\Program Files\Fish Tycoon\FishTycoon.exe
16:53:57.0920 5552 C:\Program Files\Fish Tycoon\FishTycoon.exe - ok
16:53:57.0933 5552 [ 915D3430FE926376DD942AE45A9A1665 ] C:\Windows\System32\mswmdm.dll
16:53:57.0933 5552 C:\Windows\System32\mswmdm.dll - ok
16:53:57.0936 5552 [ 523DF3B590D8A353A49235B1B7C571AD ] C:\Windows\WindowsMobile\dtptdns.dll
16:53:57.0936 5552 C:\Windows\WindowsMobile\dtptdns.dll - ok
16:53:57.0944 5552 [ 83ADC95272B048DFD1563E0EA0F269FB ] C:\Windows\System32\cewmdm.dll
16:53:57.0944 5552 C:\Windows\System32\cewmdm.dll - ok
16:53:57.0949 5552 [ 49456BFE373D90B895795C5A1A13A7C8 ] C:\Windows\System32\WPDSp.dll
16:53:57.0949 5552 C:\Windows\System32\WPDSp.dll - ok
16:53:57.0954 5552 [ 5EB87BA0B93CA7E894FC8002E3CE4C2A ] C:\Program Files\Windows Portable Devices\sqmapi.dll
16:53:57.0954 5552 C:\Program Files\Windows Portable Devices\sqmapi.dll - ok
16:53:57.0959 5552 [ 9F1FAC04A274ADF9F65F9E1B851BDB1E ] C:\Windows\System32\wmdmps.dll
16:53:57.0959 5552 C:\Windows\System32\wmdmps.dll - ok
16:53:57.0963 5552 [ 01C5A928DE132CFDFD3B427472B7DA9D ] C:\Windows\System32\udhisapi.dll
16:53:57.0963 5552 C:\Windows\System32\udhisapi.dll - ok
16:53:57.0966 5552 [ 8D43735C8B4519CCC473D68E25F24C1D ] C:\Windows\System32\msvbvm60.dll
16:53:57.0966 5552 C:\Windows\System32\msvbvm60.dll - ok
16:53:57.0971 5552 [ C574BD78AFD3191221CBD8DDED15C818 ] C:\Program Files\Fish Tycoon\uninst.exe
16:53:57.0971 5552 C:\Program Files\Fish Tycoon\uninst.exe - ok
16:53:57.0974 5552 [ 4304D04DFDAAE621171A2F955981016E ] C:\Program Files\Microsoft Games\Chess\Chess.exe
16:53:57.0975 5552 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
16:53:57.0982 5552 [ 21AD332BE723EFE40D9F32AD97BA8376 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe
16:53:57.0982 5552 C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok
16:53:57.0987 5552 [ 9A75518600FBA10980EE94267CA98489 ] C:\Windows\System32\gameux.dll
16:53:57.0988 5552 C:\Windows\System32\gameux.dll - ok
16:53:57.0993 5552 [ 6ED28075D6D9E0C0464048A30432A142 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe
16:53:57.0993 5552 C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok
16:53:57.0998 5552 [ EFF7DBEE92519EB96F70E1E31FDE7098 ] C:\Program Files\Microsoft Games\inkball\inkball.exe
16:53:57.0998 5552 C:\Program Files\Microsoft Games\inkball\inkball.exe - ok
16:53:58.0000 5552 [ 7A88900F2F11882FFCE3BF3D4EAEFB4B ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe
16:53:58.0000 5552 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok
16:53:58.0004 5552 [ C8C383E6AA546780B2AD3034D6F6ACEF ] C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe
16:53:58.0004 5552 C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe - ok
16:53:58.0008 5552 [ 3F903BDD206EB3C688651048B5E304E1 ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe
16:53:58.0008 5552 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok
16:53:58.0011 5552 [ 07302F014858D038CB93CC349505D0E6 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe
16:53:58.0011 5552 C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok
16:53:58.0015 5552 [ 401A203AB058DEC44BD44AA81BF2CB64 ] C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe
16:53:58.0015 5552 C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe - ok
16:53:58.0019 5552 [ 2B92A88E329F4845D31941967A3BAA90 ] C:\Program Files\Nike\Nike+ Connect\msvcr100.dll
16:53:58.0019 5552 C:\Program Files\Nike\Nike+ Connect\msvcr100.dll - ok
16:53:58.0021 5552 [ 848D034D067BE2FF5CD3D779BECBDA00 ] C:\Program Files\Google\Chrome\Application\chrome.exe
16:53:58.0021 5552 C:\Program Files\Google\Chrome\Application\chrome.exe - ok
16:53:58.0025 5552 [ 300C675771A1B568AB624233B132FBF0 ] C:\Program Files\Google\Chrome\Application\22.0.1229.94\Installer\setup.exe
16:53:58.0025 5552 C:\Program Files\Google\Chrome\Application\22.0.1229.94\Installer\setup.exe - ok
16:53:58.0028 5552 [ 91F67571DB8E365E848F78AB4D6580EA ] C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe
16:53:58.0028 5552 C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe - ok
16:53:58.0032 5552 [ 21C4CB94B41424D41C8713F4D3A0BD0A ] C:\Program Files\Google\Google Earth\client\googleearth.exe
16:53:58.0032 5552 C:\Program Files\Google\Google Earth\client\googleearth.exe - ok
16:53:58.0036 5552 [ 6CEA08419C3BD4F68BDAF051AF7993A5 ] C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\googleearth.exe_F6A848FB884248E6A4CDCBDCF41F6A74.exe
16:53:58.0036 5552 C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\googleearth.exe_F6A848FB884248E6A4CDCBDCF41F6A74.exe - ok
16:53:58.0039 5552 [ 6CEA08419C3BD4F68BDAF051AF7993A5 ] C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ShortcutDX_EB071909B9884F8CBF3D6115D4ADEE5E.exe
16:53:58.0040 5552 C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ShortcutDX_EB071909B9884F8CBF3D6115D4ADEE5E.exe - ok
16:53:58.0043 5552 [ 6CEA08419C3BD4F68BDAF051AF7993A5 ] C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ShortcutOGL_EB071909B9884F8CBF3D6115D4ADEE5E.exe
16:53:58.0043 5552 C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ShortcutOGL_EB071909B9884F8CBF3D6115D4ADEE5E.exe - ok
16:53:58.0047 5552 [ 3287AFFC2CB27F5AE72A679221AA2016 ] C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\UNINST_Uninstall_G_F6A848FB884248E6A4CDCBDCF41F6A74.exe
16:53:58.0047 5552 C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\UNINST_Uninstall_G_F6A848FB884248E6A4CDCBDCF41F6A74.exe - ok
16:53:58.0050 5552 [ 77CE82E61CC16F897F346B295ADC17D8 ] C:\Program Files\Google\Google Updater\GoogleUpdater.exe
16:53:58.0051 5552 C:\Program Files\Google\Google Updater\GoogleUpdater.exe - ok
16:53:58.0054 5552 [ 9AD299C8B97CC5014B27D6418EDAFFDE ] C:\Program Files\Hasbro Interactive\Monopoly Junior\junior.exe
16:53:58.0054 5552 C:\Program Files\Hasbro Interactive\Monopoly Junior\junior.exe - ok
16:53:58.0057 5552 [ 515E4684008E955DE0C81E6A7AEA1C2A ] C:\Windows\IsUninst.exe
16:53:58.0057 5552 C:\Windows\IsUninst.exe - ok
16:53:58.0061 5552 [ FFC709CB39BDB2AA9C725A34D26745A1 ] C:\SIERRA\CASINO4\Casino4.exe
16:53:58.0061 5552 C:\SIERRA\CASINO4\Casino4.exe - ok
16:53:58.0064 5552 [ 9E6649A1C7C843A70751C153B2313E1F ] C:\Program Files\HP\HP Software Update\hpwucli.exe
16:53:58.0064 5552 C:\Program Files\HP\HP Software Update\hpwucli.exe - ok
16:53:58.0067 5552 [ 026EE593459C9A2EC280A8FDB378E5A1 ] C:\Windows\Installer\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}\NewShortcut1_47F36D92E58E456DB73C3382737E4C42.exe
16:53:58.0068 5552 C:\Windows\Installer\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}\NewShortcut1_47F36D92E58E456DB73C3382737E4C42.exe - ok
16:53:58.0071 5552 [ 70CC6E295EBF36579BCBC1D4E8DFDEDE ] C:\Program Files\HP\HPSSUPPLY\hpqSSupply.exe
16:53:58.0071 5552 C:\Program Files\HP\HPSSUPPLY\hpqSSupply.exe - ok
16:53:58.0075 5552 [ BB6180CE08F002F682DAE89EBC41C590 ] C:\Program Files\HP\Digital Imaging\{DBC1DE57-B55A-4D57-9769-1DB9BE506AF7}\hpzstub.exe
16:53:58.0075 5552 C:\Program Files\HP\Digital Imaging\{DBC1DE57-B55A-4D57-9769-1DB9BE506AF7}\hpzstub.exe - ok
16:53:58.0079 5552 [ D5592EBE73A1020F4D4DB40A61DA9DAD ] C:\Program Files\HP\Digital Imaging\HelpViewer\hpqhvshm.exe
16:53:58.0079 5552 C:\Program Files\HP\Digital Imaging\HelpViewer\hpqhvshm.exe - ok
16:53:58.0082 5552 [ DA6E7D96E3F685D6BCF93205B63D2E48 ] C:\Program Files\HP\Digital Imaging\bin\hpqwrg.exe
16:53:58.0082 5552 C:\Program Files\HP\Digital Imaging\bin\hpqwrg.exe - ok
16:53:58.0086 5552 [ FD9CEC8F795D45D74AF94A06A2A26307 ] C:\Program Files\HP\Digital Imaging\{DBC1DE57-B55A-4D57-9769-1DB9BE506AF7}\setup\hpzscr01.exe
16:53:58.0086 5552 C:\Program Files\HP\Digital Imaging\{DBC1DE57-B55A-4D57-9769-1DB9BE506AF7}\setup\hpzscr01.exe - ok
16:53:58.0089 5552 [ 3EECEE6F7CFFE0F7A81CE0AF2BC97665 ] C:\Program Files\iTunes\iTunes.exe
16:53:58.0089 5552 C:\Program Files\iTunes\iTunes.exe - ok
16:53:58.0093 5552 [ 880DDAB227C0A21D73BF772FCBFFF842 ] C:\Windows\Installer\{8B92D97D-DB3D-4926-A8F7-718FE7C5EE18}\iTunesIco.exe
16:53:58.0093 5552 C:\Windows\Installer\{8B92D97D-DB3D-4926-A8F7-718FE7C5EE18}\iTunesIco.exe - ok
16:53:58.0096 5552 [ 1AA53F5C901A5FDFF43337E93193E68B ] C:\Program Files\iWin Games\iWinGames.exe
16:53:58.0097 5552 C:\Program Files\iWin Games\iWinGames.exe - ok
16:53:58.0100 5552 [ BC49243557991AC42FCC01B8E3BB05D2 ] C:\Program Files\InstallShield Installation Information\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}\setup.exe
16:53:58.0100 5552 C:\Program Files\InstallShield Installation Information\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}\setup.exe - ok
16:53:58.0104 5552 [ D7E8EBDE5DB201216B755418E2F0A7CE ] C:\Program Files\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll
16:53:58.0104 5552 C:\Program Files\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll - ok
16:53:58.0108 5552 [ 862363973DCBCC31DD161EF41A69153C ] C:\Windows\System32\odbc32.dll
16:53:58.0108 5552 C:\Windows\System32\odbc32.dll - ok
16:53:58.0111 5552 [ 60BBAF3F5A38D0274B0C46710A218051 ] C:\Windows\System32\dxdiag.exe
16:53:58.0111 5552 C:\Windows\System32\dxdiag.exe - ok
16:53:58.0114 5552 [ DEA0E56E5266C141E1D86D6A03E1E706 ] C:\ProgramData\KingsIsle Entertainment\Wizard101\Bin\BugReporter.exe
16:53:58.0115 5552 C:\ProgramData\KingsIsle Entertainment\Wizard101\Bin\BugReporter.exe - ok
16:53:58.0118 5552 [ 91C445E71C2F25E763BFB43240143CCE ] C:\KA\JS1GM\JS1GM.EXE
16:53:58.0118 5552 C:\KA\JS1GM\JS1GM.EXE - ok
16:53:58.0122 5552 [ 9D143DE584AF0B120766B74AA41D1F28 ] C:\Program Files\Common Files\Adobe\CS6ServiceManager\libcurl.dll
16:53:58.0122 5552 C:\Program Files\Common Files\Adobe\CS6ServiceManager\libcurl.dll - ok
16:53:58.0125 5552 [ A5CBDC87E694154F90DBA134733E7E8B ] C:\Windows\System32\brcpl.dll
16:53:58.0125 5552 C:\Windows\System32\brcpl.dll - ok
16:53:58.0128 5552 [ BF899F57858B8C6F162D9EEB2370641C ] C:\Windows\System32\wercon.exe
16:53:58.0128 5552 C:\Windows\System32\wercon.exe - ok
16:53:58.0131 5552 [ 3141224EEBA075BC085175E60CD14782 ] C:\Windows\System32\msra.exe
16:53:58.0131 5552 C:\Windows\System32\msra.exe - ok
16:53:58.0135 5552 [ 3A72D62137659AD7BDEECBB49DD85684 ] C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe
16:53:58.0135 5552 C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe - ok
16:53:58.0138 5552 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
16:53:58.0138 5552 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
16:53:58.0142 5552 [ D3CFDDE30B24B1266030F75BAF337660 ] C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
16:53:58.0142 5552 C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
16:53:58.0146 5552 [ 78C4C40C593DA082FFC1FCCBF7F97E8F ] C:\Program Files\Microsoft Games\Flight Simulator\FLTSIM98.EXE
16:53:58.0146 5552 C:\Program Files\Microsoft Games\Flight Simulator\FLTSIM98.EXE - ok
16:53:58.0149 5552 [ 08457294C7E98C5D3E5EE8CDC25FA537 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\accicons.exe
16:53:58.0150 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\accicons.exe - ok
16:53:58.0153 5552 [ C48A7252B78628D445EA1C085592BD34 ] C:\Program Files\Microsoft Small Business\Office Accounting 2009\SBA.exe
16:53:58.0153 5552 C:\Program Files\Microsoft Small Business\Office Accounting 2009\SBA.exe - ok
16:53:58.0157 5552 [ 1843E81FA7ACFFF4344A7DD4328D7DA0 ] C:\Program Files\Microsoft Office\Office12\1033\ONINTL.DLL
16:53:58.0157 5552 C:\Program Files\Microsoft Office\Office12\1033\ONINTL.DLL - ok
16:53:58.0160 5552 [ 21EF4BB2A6FF4116FD83FAEE52D4A416 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
16:53:58.0161 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - ok
16:53:58.0164 5552 [ BFE69C991171F6527B5BF625ED048471 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\inficon.exe
16:53:58.0164 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\inficon.exe - ok
16:53:58.0168 5552 [ 8A6B867FC26B9850D446D2D86E5DB071 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
16:53:58.0168 5552 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
16:53:58.0172 5552 [ 7E2CF680C69680064D43F4FFE5831DD1 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\joticon.exe
16:53:58.0172 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\joticon.exe - ok
16:53:58.0175 5552 [ C0F4A57BA5E09A28AE3D2F67ED219EEA ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pptico.exe
16:53:58.0176 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pptico.exe - ok
16:53:58.0179 5552 [ 6CE25A4F4F2F70EBF004C9006C647F32 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pubs.exe
16:53:58.0179 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pubs.exe - ok
16:53:58.0183 5552 [ 0BD651B3ABB6EA035AA960BD45B3B11A ] C:\Program Files\Microsoft Small Business\Office Accounting 2008\SBAAccountantHost.exe
16:53:58.0183 5552 C:\Program Files\Microsoft Small Business\Office Accounting 2008\SBAAccountantHost.exe - ok
16:53:58.0186 5552 [ 918B9D6607D358405843973E71104678 ] C:\Windows\Installer\{270940EA-C235-40D9-B2AE-2D450356DF8E}\NewShortcut2.0CB67C87_CD34_43E3_92C0_6091F902D467.exe
16:53:58.0187 5552 C:\Windows\Installer\{270940EA-C235-40D9-B2AE-2D450356DF8E}\NewShortcut2.0CB67C87_CD34_43E3_92C0_6091F902D467.exe - ok
16:53:58.0190 5552 [ 559CC096AD9E0C6C6DCB179794F7AA6E ] C:\Program Files\Microsoft Small Business\Office Accounting 2009\SBAAccountantHost.exe
16:53:58.0190 5552 C:\Program Files\Microsoft Small Business\Office Accounting 2009\SBAAccountantHost.exe - ok
16:53:58.0194 5552 [ 918B9D6607D358405843973E71104678 ] C:\Windows\Installer\{5007E629-8769-44BB-BD51-A20B6DCC5CC9}\NewShortcut2.0CB67C87_CD34_43E3_92C0_6091F902D467.exe
16:53:58.0194 5552 C:\Windows\Installer\{5007E629-8769-44BB-BD51-A20B6DCC5CC9}\NewShortcut2.0CB67C87_CD34_43E3_92C0_6091F902D467.exe - ok
16:53:58.0198 5552 [ FF6669F7A1782D54E338F5C6EC806E1E ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\misc.exe
16:53:58.0198 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\misc.exe - ok
16:53:58.0202 5552 [ 9D680C0DFBD26A3F8F1D5AD424439F23 ] C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\WebKit.dll
16:53:58.0202 5552 C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\WebKit.dll - ok
16:53:58.0206 5552 [ E1AB2AC4A4D50B479DF1B1CEA4A7409B ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
16:53:58.0206 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\cagicon.exe - ok
16:53:58.0209 5552 [ 3E5AA6A816FA331E64C38A45C6FF5637 ] C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
16:53:58.0209 5552 C:\Windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe - ok
16:53:58.0213 5552 [ BB96D0590B491CDEA2EBF6D697BE8976 ] C:\Windows\System32\mmc.exe
16:53:58.0213 5552 C:\Windows\System32\mmc.exe - ok
16:53:58.0216 5552 [ EFFE7724A6615E9099A771CF504888DC ] C:\Program Files\Microsoft SQL Server\90\Shared\SqlWtsn.exe
16:53:58.0216 5552 C:\Program Files\Microsoft SQL Server\90\Shared\SqlWtsn.exe - ok
16:53:58.0220 5552 [ 138124DBCC69E232DED7D621E0B481EA ] C:\Program Files\Microsoft SQL Server\90\Shared\SqlSAC.exe
16:53:58.0220 5552 C:\Program Files\Microsoft SQL Server\90\Shared\SqlSAC.exe - ok
16:53:58.0224 5552 [ 8F10D31A7192382EF97CCAA65FF4EC21 ] C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3054.18910__90ba9c70f846762e\MOM.Implementation.DLL
16:53:58.0224 5552 C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3054.18910__90ba9c70f846762e\MOM.Implementation.DLL - ok
16:53:58.0228 5552 [ 03DFF0D2A8DE6C75F82464A06E4832FD ] C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3005.17465__90ba9c70f846762e\LOG.Foundation.DLL
16:53:58.0228 5552 C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3005.17465__90ba9c70f846762e\LOG.Foundation.DLL - ok
16:53:58.0232 5552 [ A1066C5A9197580B2835A5C655D2545F ] C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3005.17484__90ba9c70f846762e\LOG.Foundation.Private.DLL
16:53:58.0232 5552 C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3005.17484__90ba9c70f846762e\LOG.Foundation.Private.DLL - ok
16:53:58.0235 5552 [ 9EDC7C0B5AD27C48DAE0C53A1822E105 ] C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3054.18907__90ba9c70f846762e\LOG.Foundation.Implementation.DLL
16:53:58.0235 5552 C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3054.18907__90ba9c70f846762e\LOG.Foundation.Implementation.DLL - ok
16:53:58.0239 5552 [ 6F4FEE30A53AB9FE268BB73EC0151075 ] C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3005.17510__90ba9c70f846762e\MOM.Foundation.DLL
16:53:58.0239 5552 C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3005.17510__90ba9c70f846762e\MOM.Foundation.DLL - ok
16:53:58.0243 5552 [ E6089D6570D9C4A559A76A27A4FCFC6E ] C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3005.17511__90ba9c70f846762e\LOG.Foundation.Implementation.Private.DLL
16:53:58.0243 5552 C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3005.17511__90ba9c70f846762e\LOG.Foundation.Implementation.Private.DLL - ok
16:53:58.0247 5552 [ 206EE4B42D11585EB53C47FB69F69E54 ] C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\WksCal.exe
16:53:58.0247 5552 C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\WksCal.exe - ok
16:53:58.0250 5552 [ 5CAD3395A4720BF735836D125297229A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll
16:53:58.0251 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll - ok
16:53:58.0254 5552 [ 8BC00165083171F8DE760AE39D76D003 ] C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\wksdb.exe
16:53:58.0254 5552 C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\wksdb.exe - ok
16:53:58.0258 5552 [ 528DA0632ACC3EC0DABF0EE8F1DD5C20 ] C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\WksSb.exe
16:53:58.0258 5552 C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\WksSb.exe - ok
16:53:58.0262 5552 [ 08BC7211E4E06A47CAC85D5A73D006E2 ] C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\wksss.exe
16:53:58.0262 5552 C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\wksss.exe - ok
16:53:58.0266 5552 [ 25CA1677AAA3CDC99CD4FCF940886F3C ] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
16:53:58.0266 5552 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
16:53:58.0270 5552 [ 5C373483418D410C75BD3E53FEEC9070 ] C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\WksWP.exe
16:53:58.0270 5552 C:\Windows\Installer\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}\WksWP.exe - ok
16:53:58.0273 5552 [ F4BCC0C5F6E88F9C9A18DBCE748963B1 ] C:\Program Files\NetWaiting\NetWaiting.exe
16:53:58.0273 5552 C:\Program Files\NetWaiting\NetWaiting.exe - ok
16:53:58.0277 5552 [ F8D8BB3F6173FFF00128612F33D3197A ] C:\Windows\System32\wbem\WMIADAP.exe
16:53:58.0277 5552 C:\Windows\System32\wbem\WMIADAP.exe - ok
16:53:58.0280 5552 [ 8B2D61CA83825CEAD423228ACD40CFBC ] C:\Windows\System32\loadperf.dll
16:53:58.0280 5552 C:\Windows\System32\loadperf.dll - ok
16:53:58.0284 5552 [ F45D507E4FEED20B47D0B9402A5F8665 ] C:\Program Files\Nike\Nike+ Connect\Nike+ Connect.exe
16:53:58.0284 5552 C:\Program Files\Nike\Nike+ Connect\Nike+ Connect.exe - ok
16:53:58.0287 5552 [ 870EA0DC59163E86251985DB42E2BCC8 ] C:\Program Files\Nike\Nike+ Connect\Uninstall Nike+ Connect.exe
16:53:58.0287 5552 C:\Program Files\Nike\Nike+ Connect\Uninstall Nike+ Connect.exe - ok
16:53:58.0291 5552 [ 2AC74DBBE2AB59D55602425E36357B0C ] C:\Program Files\OpenOffice.org 3\program\sbase.exe
16:53:58.0291 5552 C:\Program Files\OpenOffice.org 3\program\sbase.exe - ok
16:53:58.0294 5552 [ 23A06B8CBA2A5CB8014DD48B6E8640DD ] C:\Program Files\OpenOffice.org 3\program\scalc.exe
16:53:58.0294 5552 C:\Program Files\OpenOffice.org 3\program\scalc.exe - ok
16:53:58.0298 5552 [ 583FA1FAC54A605C7D787E3C3A0ED1C2 ] C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3054.18909__90ba9c70f846762e\CCC.Implementation.DLL
16:53:58.0298 5552 C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3054.18909__90ba9c70f846762e\CCC.Implementation.DLL - ok
16:53:58.0302 5552 [ B9CACFC941D8B4BA28F2D303A5D6E147 ] C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3005.17468__90ba9c70f846762e\CLI.Foundation.DLL
16:53:58.0302 5552 C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3005.17468__90ba9c70f846762e\CLI.Foundation.DLL - ok
16:53:58.0306 5552 [ 273B56E70E4F46F2615B8B9E5FF3F476 ] C:\Program Files\OpenOffice.org 3\program\sdraw.exe
16:53:58.0306 5552 C:\Program Files\OpenOffice.org 3\program\sdraw.exe - ok
16:53:58.0309 5552 [ C4ECD8D76E36520069F83F0F1E3048B9 ] C:\Program Files\OpenOffice.org 3\program\simpress.exe
16:53:58.0309 5552 C:\Program Files\OpenOffice.org 3\program\simpress.exe - ok
16:53:58.0313 5552 [ EEB23BD448C0FDCA091608C7B45D94D1 ] C:\Program Files\OpenOffice.org 3\program\smath.exe
16:53:58.0313 5552 C:\Program Files\OpenOffice.org 3\program\smath.exe - ok
16:53:58.0317 5552 [ 237A6C6BAAD638608F1B38EDA9E480B6 ] C:\Program Files\OpenOffice.org 3\program\swriter.exe
16:53:58.0317 5552 C:\Program Files\OpenOffice.org 3\program\swriter.exe - ok
16:53:58.0320 5552 [ 41B7F0A4EBF804D9D512637A06D96D34 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\508b444db523c5cf20ff12c7f440837b\System.Web.ni.dll
16:53:58.0320 5552 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\508b444db523c5cf20ff12c7f440837b\System.Web.ni.dll - ok
16:53:58.0324 5552 [ E51C7E1738C3EF1514E927BCAD3C0F8C ] C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3005.17608__90ba9c70f846762e\CLI.Foundation.XManifest.DLL
16:53:58.0324 5552 C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3005.17608__90ba9c70f846762e\CLI.Foundation.XManifest.DLL - ok
16:53:58.0327 5552 ============================================================
16:53:58.0327 5552 Scan finished
16:53:58.0327 5552 ============================================================
16:53:58.0338 5016 Detected object count: 6
16:53:58.0338 5016 Actual detected object count: 6

#13 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:08:55 PM

Posted 01 November 2012 - 05:15 PM

Go ahead and run Combofix. Ignore any warning about AVG still being active.

Are you connected to the internet through a router? If so we need to reset that router.

How to Reset your Router.

Edited by fireman4it, 01 November 2012 - 05:15 PM.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#14 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 01 November 2012 - 11:13 PM

Well I finally have something for you!! Combofix has finished and it rebooted into normal mode...haven't seen any fbi warning! What should I do first...re-enable my firewall or reset my router? I also ended up uninstalling AVG. What should I have in its place or should I reinstall? Also, I disabled MBAM and Spybot. Are those something I should have on my system? I just can't tell you how thankful I am for all your help so far! I am a bit worried about resetting my router as we have several wireless systems running on it and I hope I know what I am doing so we can all still get on. Our router gives us headaches every day as it drops all wireless items every few minutes if more than one system is online. Perhaps a reset IS in order. I have posted the combofix log below. Thank you again!
ComboFix 12-10-31.03 - Kelly 11/01/2012 22:59:34.1.2 - x86 NETWORK
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3326.2714 [GMT -4:00]
Running from: c:\users\Kelly\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Incredibar.com
c:\program files\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll
c:\program files\Incredibar.com\incredibar\1.5.11.14\incredibarApp.dll
c:\program files\Incredibar.com\incredibar\1.5.11.14\incredibarEng.dll
c:\program files\Incredibar.com\incredibar\1.5.11.14\incredibarsrv.exe
c:\program files\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll
c:\program files\Incredibar.com\incredibar\1.5.11.14\uninstall.exe
c:\program files\iWin Games\iWinGamesHookIE.dll
c:\program files\SelectRebates
c:\program files\SelectRebates\FFToolbar\chrome.manifest
c:\program files\SelectRebates\FFToolbar\chrome\sahtoolbar.jar
c:\program files\SelectRebates\FFToolbar\defaults\preferences\sahtoolbar.js
c:\program files\SelectRebates\FFToolbar\install.rdf
c:\program files\SelectRebates\SahImages\alert.png
c:\program files\SelectRebates\SahImages\check.png
c:\program files\SelectRebates\SahImages\close.png
c:\program files\SelectRebates\SelectAlerts.dat
c:\program files\SelectRebates\SelectRebates.exe
c:\program files\SelectRebates\SelectRebates.ini
c:\program files\SelectRebates\SelectRebatesA.dat
c:\program files\SelectRebates\SelectRebatesApi.exe
c:\program files\SelectRebates\SelectRebatesB.dat
c:\program files\SelectRebates\SelectRebatesBT.dat
c:\program files\SelectRebates\SelectRebatesDownload.exe
c:\program files\SelectRebates\SelectRebatesH.dat
c:\program files\SelectRebates\SelectRebatesUninstall.exe
c:\program files\SelectRebates\SRebates.dll
c:\program files\SelectRebates\SRFF3.dll
c:\program files\SelectRebates\Toolbar\AddtoList.bmp
c:\program files\SelectRebates\Toolbar\basis.xml
c:\program files\SelectRebates\Toolbar\Basis.xml.dym
c:\program files\SelectRebates\Toolbar\Blank.bmp
c:\program files\SelectRebates\Toolbar\CashBack.bmp
c:\program files\SelectRebates\Toolbar\Coupons.bmp
c:\program files\SelectRebates\Toolbar\GroceryCoupon.bmp
c:\program files\SelectRebates\Toolbar\i_magnifying.bmp
c:\program files\SelectRebates\Toolbar\icons.bmp
c:\program files\SelectRebates\Toolbar\logo.bmp
c:\program files\SelectRebates\Toolbar\logo_24.bmp
c:\program files\SelectRebates\Toolbar\logo_HotSpots.bmp
c:\program files\SelectRebates\Toolbar\ReviewSite.bmp
c:\program files\SelectRebates\Toolbar\RightControls.dym
c:\program files\SelectRebates\Toolbar\sahtb-alert.bmp
c:\program files\SelectRebates\Toolbar\sahtb-go.bmp
c:\program files\SelectRebates\Toolbar\sahtb-grocerycoupons.bmp
c:\program files\SelectRebates\Toolbar\sahtb-icons.bmp
c:\program files\SelectRebates\Toolbar\sahtb-restaurant.bmp
c:\program files\SelectRebates\Toolbar\sahtb-wishlist.bmp
c:\program files\SelectRebates\Toolbar\Scissors.bmp
c:\program files\SelectRebates\Toolbar\ShopAtHomeToolbar.dll
c:\program files\Vid-Saver
c:\program files\Vid-Saver\Vid-Saver-bg.exe
c:\program files\Vid-Saver\Vid-Saver.exe
c:\program files\Vid-Saver\Vid-Saver.ico
c:\program files\Vid-Saver\Vid-Saver.ini
c:\program files\Vid-Saver\Vid-SaverInstaller.log
c:\programdata\58dd6ddab5dbebd7d4e41c040dec5ecc_c
c:\users\Kelly\AppData\Local\TempDIR
c:\users\Kelly\AppData\Local\Vid-Saver
c:\users\Kelly\AppData\Local\Vid-Saver\Chrome\Vid-Saver.crx
c:\users\Kelly\AppData\Roaming\30BB73
c:\users\Kelly\Documents\pubFEF4.tmp
c:\users\Kelly\zyqvqvwldesy.exe
c:\users\Leah\AppData\Roaming\30BB73
c:\users\Leah\Documents\~WRL0003.tmp
c:\users\Leah\Documents\~WRL1403.tmp
c:\users\Lindsay\AppData\Roaming\30BB73
c:\windows\system32\~GLH1059.TMP
c:\windows\system32\~GLH105a.TMP
c:\windows\system32\~GLH105b.TMP
c:\windows\system32\~GLH105c.TMP
c:\windows\system32\~GLH105e.TMP
c:\windows\system32\~GLH105f.TMP
c:\windows\system32\~GLH1060.TMP
c:\windows\system32\~GLH1061.TMP
c:\windows\system32\~GLH1062.TMP
c:\windows\system32\~GLH1063.TMP
c:\windows\system32\~GLH1064.TMP
c:\windows\system32\~GLH1065.TMP
c:\windows\system32\~GLH1066.TMP
c:\windows\system32\~GLH1067.TMP
c:\windows\system32\~GLH1068.TMP
c:\windows\system32\~GLH1069.TMP
c:\windows\system32\~GLH106a.TMP
c:\windows\system32\~GLH106b.TMP
c:\windows\system32\~GLH106c.TMP
c:\windows\system32\~GLH106d.TMP
c:\windows\system32\~GLH106e.TMP
c:\windows\system32\~GLH106f.TMP
c:\windows\system32\~GLH1070.TMP
c:\windows\system32\~GLH1071.TMP
c:\windows\system32\3dr332.dll
c:\windows\system32\3dr555.dll
c:\windows\system32\3dr565.dll
c:\windows\system32\3dr655.dll
c:\windows\system32\3dr664.dll
c:\windows\system32\3drabgr.dll
c:\windows\system32\3drargb.dll
c:\windows\system32\3drbgr.dll
c:\windows\system32\3drbgra.dll
c:\windows\system32\3drrgb.dll
c:\windows\system32\3drrgba.dll
c:\windows\system32\BSTIEPrintCtl1.dll
c:\windows\system32\ijl11.dll
.
c:\windows\system32\grpconv.exe was missing
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-grpconv_31bf3856ad364e35_6.0.6000.16386_none_a05162e240c2c82b\grpconv.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-10-02 to 2012-11-02 )))))))))))))))))))))))))))))))
.
.
2012-11-02 03:09 . 2012-11-02 03:09 -------- d-----w- c:\users\Lindsay\AppData\Local\temp
2012-11-02 03:09 . 2012-11-02 03:09 -------- d-----w- c:\users\Leah\AppData\Local\temp
2012-11-02 03:09 . 2012-11-02 03:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-02 03:09 . 2012-11-02 03:09 -------- d-----w- c:\users\David\AppData\Local\temp
2012-11-02 03:09 . 2012-11-02 03:54 -------- d-----w- c:\users\Kelly\AppData\Local\temp
2012-11-02 03:09 . 2006-11-02 09:45 16896 ----a-w- c:\windows\system32\grpconv.exe
2012-11-01 22:17 . 2012-10-12 05:56 6918632 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCF4B5CE-5323-4B8D-A59A-5D8ACD4102E5}\mpengine.dll
2012-11-01 21:17 . 2012-11-01 21:17 -------- d-----w- c:\users\Kelly\AppData\Roaming\TuneUp Software
2012-11-01 21:14 . 2012-11-01 21:14 -------- d-----w- c:\users\Kelly\AppData\Local\MFAData
2012-10-31 21:25 . 2012-10-12 05:56 6918632 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-10-31 03:31 . 2012-10-31 03:31 -------- d-----w- C:\FRST
2012-10-30 02:31 . 2012-10-30 02:31 -------- d-----w- c:\program files\Common Files\xing shared
2012-10-29 01:17 . 2012-11-01 21:17 -------- d-----w- c:\users\Kelly\AppData\Local\Avg2013
2012-10-28 20:32 . 2012-10-29 01:05 -------- d-----w- c:\users\TEMP
2012-10-28 18:38 . 2012-10-29 21:03 -------- d-----w- C:\TDSSKiller_Quarantine
2012-10-27 18:58 . 2012-10-27 18:58 -------- d-----w- c:\users\Kelly\AppData\Roaming\EurekaLog
2012-10-26 19:31 . 2012-10-26 19:32 -------- d-----w- c:\users\Kelly\AppData\Roaming\hellomoto
2012-10-20 15:39 . 2012-10-03 07:18 740784 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{01AB698A-879F-48E2-BD04-9C08E2A6266C}\gapaengine.dll
2012-10-10 03:19 . 2012-06-02 00:02 985088 ----a-w- c:\windows\system32\crypt32.dll
2012-10-10 03:19 . 2012-06-02 00:02 133120 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-10 03:19 . 2012-06-02 00:02 98304 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-10 03:19 . 2012-08-24 15:53 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 03:19 . 2012-09-13 13:28 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-10 03:19 . 2012-08-29 11:27 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-10-10 03:19 . 2012-08-29 11:27 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-03 15:20 . 2012-10-03 15:20 -------- d-----w- c:\programdata\.mono
2012-10-03 15:20 . 2012-10-03 15:20 -------- d-----w- c:\users\Kelly\AppData\Roaming\.mono
2012-10-03 15:12 . 2012-10-03 15:12 -------- d-----w- c:\users\Kelly\AppData\Roaming\Pokémon Trading Card Game Online
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-10 09:31 . 2012-04-01 12:01 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-10 09:31 . 2012-04-01 04:39 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-03 07:18 . 2011-08-11 16:02 740784 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2012-09-29 23:54 . 2011-04-26 01:25 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-31 02:03 . 2012-08-31 02:03 193552 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-31 02:03 . 2011-04-27 19:25 99272 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2012-08-24 06:59 . 2012-09-22 07:00 1800704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 06:51 . 2012-09-22 07:01 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 06:51 . 2012-09-22 07:00 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 06:47 . 2012-09-22 07:01 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-24 06:47 . 2012-09-22 07:01 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 06:43 . 2012-09-22 07:01 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{3bbd3c14-4c16-4989-8366-95bc9179779d}"= "c:\program files\FLV_Runner\prxtbFLV_.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{3bbd3c14-4c16-4989-8366-95bc9179779d}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3bbd3c14-4c16-4989-8366-95bc9179779d}]
2011-05-09 09:49 176936 ----a-w- c:\program files\FLV_Runner\prxtbFLV_.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3bbd3c14-4c16-4989-8366-95bc9179779d}"= "c:\program files\FLV_Runner\prxtbFLV_.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{3bbd3c14-4c16-4989-8366-95bc9179779d}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3BBD3C14-4C16-4989-8366-95BC9179779D}"= "c:\program files\FLV_Runner\prxtbFLV_.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{3bbd3c14-4c16-4989-8366-95bc9179779d}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Kelly\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Kelly\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Kelly\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-23 68856]
"secproc_ssp"="c:\users\Kelly\AppData\Local\Microsoft\Windows\2987\secproc_ssp.exe" [2012-10-26 52736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-18 6246400]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-06-19 30192]
"DellComms"="c:\program files\Dell\DellComms\bin\sprtcmd.exe" [2008-03-04 202544]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-05-23 128296]
"WPCUMI"="c:\windows\system32\WpcUmi.exe" [2006-11-02 176128]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-06 421736]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 947176]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-19 421888]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2012-10-30 296096]
.
c:\users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2008-7-15 1226024]
Dropbox.lnk - c:\users\Kelly\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
Mavis Beacon Teaches Typing 11.lnk.disabled [2009-9-25 1044]
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
OpenOffice.org 3.3.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2008-10-23 50688]
Fliptoast.lnk.disabled [2012-4-8 798]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
McAfee Security Scan.lnk.disabled [2009-9-14 813]
Secunia PSI Tray.lnk - c:\program files\Secunia\PSI\psi_tray.exe [2011-10-14 291896]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2008-7-15 1226024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Kelly^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.1.lnk]
path=c:\users\Kelly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
backup=c:\windows\pss\OpenOffice.org 3.1.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-27 20:51 919008 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-03-06 23:05 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MaxMenuMgr]
2009-09-26 03:31 185640 ----a-w- c:\program files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2012-04-19 00:56 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
2009-03-05 20:07 2260480 ------w- c:\program files\Spybot - Search & Destroy\TeaTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-01-18 18:02 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"Spotify"="c:\users\Kelly\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
"Spotify Web Helper"="c:\users\Kelly\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"CanonMyPrinter"=c:\program files\Canon\MyPrinter\BJMyPrt.exe /logon
"CanonSolutionMenu"=c:\program files\Canon\SolutionMenu\CNSLMAIN.exe /logon
"MSN Toolbar"="c:\program files\MSN Toolbar\Platform\4.0.0357.1\mswinext.exe"
"Nike+ Connect"="c:\program files\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
"SelectRebates"=c:\program files\SelectRebates\SelectRebates.exe
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe"
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
S1 A2DDA;A2 Direct Disk Access Support Driver;c:\users\Kelly\Desktop\Run\a2ddax86.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AERTFilters;Andrea RT Filters Service;c:\windows\system32\AERTSrv.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
bthsvcs REG_MULTI_SZ BthServ
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-01 09:31]
.
2012-10-26 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-23 19:34]
.
2012-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-14 14:56]
.
2012-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-14 14:56]
.
2012-10-26 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-04-13 05:40]
.
2012-11-02 c:\windows\Tasks\RtlNICDiagVistaStart.job
- c:\program files\Realtek\RTNICDiag\RTNICDiag.exe [2008-10-23 11:18]
.
2012-10-26 c:\windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job
- c:\program files\Spybot - Search & Destroy\SpybotSD.exe [2009-04-25 19:31]
.
2012-10-25 c:\windows\Tasks\Spybot - Search & Destroy Updater - Scheduled Task.job
- c:\program files\Spybot - Search & Destroy\SDUpdate.exe [2009-04-25 19:31]
.
2012-11-02 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-04-13 05:40]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://www.bigseekpro.com/hypercam/{B2C40298-D1C7-4926-975A-FF949DE8D1BE}
mWindow Title =
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
LSP: c:\windows\system32\wpclsp.dll
Trusted Zone: ajc.com\e-edition
Trusted Zone: intuit.com
Trusted Zone: intuit.com\ttlc
Trusted Zone: olivesoftware.com\digital
Trusted Zone: real.com\rhap-app-4-0
Trusted Zone: real.com\rhapreg
TCP: DhcpNameServer = 192.168.1.254
DPF: {20722C4E-9050-45C8-8D1A-816C4A06AD90} - hxxp://www.cvsphoto.com/upload/activex/v3_0_0_6/PhotoCenter_ActiveX_Control.cab
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{F29557FD-78AA-40E6-ABA8-9FA219764018} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-ROC_ROC_JULY_P1 - c:\program files\AVG Secure Search\ROC_ROC_JULY_P1.exe
SafeBoot-03716226.sys
SafeBoot-65959612.sys
SafeBoot-70563090.sys
SafeBoot-92985964.sys
MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe
MSConfigStartUp-Aim - c:\program files\AIM\aim.exe
MSConfigStartUp-Google Update - c:\users\Kelly\AppData\Local\Google\Update\GoogleUpdate.exe
MSConfigStartUp-googletalk - c:\users\Kelly\AppData\Roaming\Google\Google Talk\googletalk.exe
MSConfigStartUp-MSN Toolbar - c:\program files\MSN Toolbar\Platform\4.0.0379.0\mswinext.exe
AddRemove-incredibar - c:\program files\Incredibar.com\incredibar\1.5.11.14\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-11-01 23:55
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\PCDSRVC{E9D79540-57D5953E-06020101}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc.pkms"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD DX\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,be,3e,64,92,01,db,25,4f,8e,b8,a5,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,be,3e,64,92,01,db,25,4f,8e,b8,a5,\
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(4152)
c:\users\Kelly\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\windows\system32\atiesrxx.exe
c:\windows\system32\atieclxx.exe
c:\program files\Dell\DellDock\DockLogin.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe
c:\program files\iWin Games\iWinTrusted.exe
c:\program files\Common Files\Motive\McciCMService.exe
c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
c:\program files\Secunia\PSI\PSIA.exe
c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe
c:\program files\Dell\DellComms\bin\sprtsvc.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Web Assistant\ExtensionUpdaterService.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Spybot - Search & Destroy\SDWinSec.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
c:\program files\Secunia\PSI\sua.exe
c:\program files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
c:\program files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Completion time: 2012-11-01 23:58:18 - machine was rebooted
ComboFix-quarantined-files.txt 2012-11-02 03:58
.
Pre-Run: 412,782,743,552 bytes free
Post-Run: 413,155,258,368 bytes free
.
- - End Of File - - 7E763A5DEB160647AE0FF7B160E220A5

#15 pepro1122

pepro1122
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:55 PM

Posted 02 November 2012 - 08:38 PM

Oh no! Bad news...FBI screen just came up. Not sure what happened. Leaving everything as is and will wait for your assistance.
Thanks ( and sorry)
Pepro1122




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users