Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Vista can't update, svchost issues


  • This topic is locked This topic is locked
167 replies to this topic

#1 narcher007

narcher007

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 14 January 2013 - 01:04 PM

I am running Windows Vista Home Premium (32bit) with SP2 and 4gigs of ram. I have several errors that I believe are linked to one main cause. My svchost keeps crashing (using Soluto which notifies me), I can't use Windows Update, it tells me I need to update Windows Update and it fails to do so Code 80070426.

My copy of Vista is valid and used to be activated, but now when I go to Control Panel->System it says it is not activated. I get error code 0x80070426 with that. I followed some forums about the tokens.dat file, but I couldn't find it under the folder structure they said it should be in, yet I did find it under a different folder. Not sure if I need to rename or move or restructure my folders. While it is not registered I don't seem to have lost any functionality other than I can no longer update Vista.

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.11.2
Run by Owner at 11:58:41 on 2013-01-14
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3454.1014 [GMT -6:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\CrashPlan\CrashPlanService.exe
C:\Windows\system32\CTsvcCDA.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Soluto\SolutoLauncherService.exe
C:\Program Files\Soluto\SolutoService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Soluto\Soluto.exe
C:\Program Files\Calibrize\CalibrizeResume.exe
C:\Program Files\Polkast\PolkastLibrary.exe
C:\Program Files\Polkast\PolkastServiceApp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\CrashPlan\CrashPlanTray.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\ehome\ehsched.exe
C:\Windows\ehome\ehRecvr.exe
C:\hp\kbd\kbd.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\vssvc.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\System32\svchost.exe -k NetworkService
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [CGFLoader] c:\program files\calibrize\CalibrizeLoader.exe
uRun: [CalibrizeResume] c:\program files\calibrize\CalibrizeResume.exe
uRun: [PolkastLibrary] c:\program files\polkast\PolkastLibrary.exe "auto"
uRun: [PolkastServiceApp] c:\program files\polkast\PolkastServiceApp.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
mRun: [KBD] "c:\hp\kbd\KbdStub.EXE"
mRun: [hpsysdrv] "c:\hp\support\hpsysdrv.exe"
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [LWS] c:\program files\logitech\lws\webcam software\LWS.exe -hide
mRun: [Garmin Lifetime Updater] c:\program files\garmin\lifetime updater\GarminLifetime.exe /StartMinimized
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [DivXMediaServer] c:\program files\divx\divx media server\DivXMediaServer.exe
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [Soluto] c:\program files\soluto\soluto.exe /init
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\crashp~1.lnk - c:\program files\crashplan\CrashPlanTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:149
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:149
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: mybsa.org
Trusted Zone: netbsa.org
Trusted Zone: scouting.org
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} - hxxp://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab
DPF: {49232000-16E4-426C-A231-62846947304B} - hxxps://wimpro2.cce.hp.com/ChatEntry/downloads/sysinfo.cab
DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader3.cab
DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} - hxxp://mediaplayer.walmart.com/installer/install.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://secure.mybsa.org/dana-cached/sc/JuniperSetupClient.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{2F29242B-E267-4293-88A6-9A3B2C91547F} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{56D9CC25-1AE1-486A-9FBA-F3D600073E2B} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{BE1BF9A7-4BA8-4713-9C14-0DEE88ECAE70} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{C0C050B0-2AB4-4E12-BD06-8B0805F5106B} : DHCPNameServer = 192.168.1.254
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} -
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-2-3 64160]
R0 Soluto;Soluto;c:\windows\system32\drivers\Soluto.sys [2013-1-2 51144]
R0 ssfs0bbc;ssfs0bbc;c:\windows\system32\drivers\ssfs0bbc.sys [2009-9-18 29808]
R0 tpcdrdrv;tpcdrdrv;c:\windows\system32\drivers\tpcdrdrv.sys [2012-11-6 13312]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-1-6 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-1-6 361032]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-11-16 239168]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2010-2-17 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67664]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-1-6 21256]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-1-6 58680]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2013-1-6 44808]
R2 CrashPlanService;CrashPlan Backup Service;c:\program files\crashplan\CrashPlanService.exe [2012-8-16 152576]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-5-27 21504]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2012-12-13 3290896]
R2 SolutoLauncherService;Soluto Launcher Service;c:\program files\soluto\SolutoLauncherService.exe [2012-12-31 167048]
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\soluto\SolutoService.exe [2012-12-31 542344]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-11-9 160944]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2010-12-13 14216]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2010-12-13 8456]
S3 hcw18bda;Hauppauge WinTV 418 Driver;c:\windows\system32\drivers\hcw18bda.sys [2009-3-19 391168]
S3 netr73;Belkin Wireless G Plus MIMO USB Network Adapter Driver for Vista;c:\windows\system32\drivers\netr73.sys [2007-11-12 468480]
S3 PinnacleMovieBox;Pinnacle Systems MovieBox USB Device;c:\windows\system32\drivers\PcleMBox.sys [2008-5-14 995456]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2012-9-6 27192]
S3 SolutoRemoteService;Soluto Remote Service;c:\program files\soluto\SolutoRemoteService.exe [2012-12-31 1239552]
S3 TucbAudio;TucbAudio;c:\windows\system32\drivers\TucbAudio.sys [2010-4-5 23096]
S3 VX6000;Microsoft LifeCam VX-6000;c:\windows\system32\drivers\VX6000Xp.sys [2007-4-10 2385896]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2010-4-5 25704]
S4 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2010-6-29 116608]
S4 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\hi-rez studios\HiPatchService.exe [2012-7-9 8704]
S4 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2011-4-1 428640]
S4 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-10-30 24652]
S4 WebrootSpySweeperService;Webroot Spy Sweeper Engine;c:\program files\webroot\spy sweeper\SpySweeper.exe [2009-9-18 4048240]
.
=============== Created Last 30 ================
.
2013-01-14 17:45:47 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-01-14 16:37:20 -------- d-----w- c:\users\owner\appdata\local\{F450059F-235C-4D08-AF2C-1947E57F4E02}
2013-01-12 05:28:10 -------- d-----w- c:\users\owner\appdata\local\{58A77C38-BFC0-4622-AEE2-1AE1EA31A11C}
2013-01-10 18:49:39 -------- d-----w- c:\users\owner\appdata\local\{0B22B1C2-3C26-46B4-9518-F5FC2337C36F}
2013-01-10 06:49:14 -------- d-----w- c:\users\owner\appdata\local\{1C24A401-BFC0-4486-AAF0-9D0CA726BB49}
2013-01-09 18:48:47 -------- d-----w- c:\users\owner\appdata\local\{15359080-F82B-4B7D-A128-B4E0327BF131}
2013-01-08 19:43:02 73 ----a-w- c:\windows\system32\ssprs.dll
2013-01-08 19:43:02 205 ----a-w- c:\windows\system32\lsprst7.dll
2013-01-08 19:43:02 0 ----a-w- c:\windows\system32\tmpPrst.dll
2013-01-08 18:56:39 -------- d-----w- c:\users\owner\appdata\local\{1274B112-BF36-44BA-B65C-3C2D7EE77525}
2013-01-07 19:00:14 -------- d-----w- c:\users\owner\appdata\local\{727B13E5-E4BA-4100-A7AD-A7A96003DDB3}
2013-01-06 21:55:44 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-06 21:55:43 58680 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-06 21:55:12 41224 ----a-w- c:\windows\avastSS.scr
2013-01-06 21:54:07 -------- d-----w- c:\programdata\AVAST Software
2013-01-06 21:54:07 -------- d-----w- c:\program files\AVAST Software
2013-01-06 08:19:02 -------- d-----w- C:\$RECYCLE.BIN
2013-01-06 08:18:26 98816 ----a-w- c:\windows\sed.exe
2013-01-06 08:18:26 256000 ----a-w- c:\windows\PEV.exe
2013-01-06 08:18:26 208896 ----a-w- c:\windows\MBR.exe
2013-01-06 08:18:20 -------- d-----w- C:\ComboFix
2013-01-06 00:15:06 -------- d-----w- c:\users\owner\appdata\local\ElevatedDiagnostics
2013-01-06 00:13:14 -------- d-----w- c:\programdata\Sophos
2013-01-06 00:13:01 73728 ----a-r- c:\users\owner\appdata\roaming\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-01-06 00:13:01 73728 ----a-r- c:\users\owner\appdata\roaming\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-01-06 00:13:01 73728 ----a-r- c:\users\owner\appdata\roaming\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\ARPPRODUCTICON.exe
2013-01-06 00:12:51 -------- d-----w- c:\program files\Sophos
2013-01-05 23:36:54 -------- d-----w- C:\WINSSLog
2013-01-05 22:30:04 -------- d-----w- c:\program files\Polkast
2013-01-03 21:22:41 -------- d-----w- c:\program files\Dropbox
2013-01-03 20:44:36 -------- d-----w- c:\users\owner\appdata\local\{428A7010-79F5-4FA5-B3CB-22D696098E01}
2013-01-02 16:18:04 51144 ----a-w- c:\windows\system32\drivers\Soluto.sys
2013-01-02 16:17:55 -------- d-----w- c:\program files\Soluto
2013-01-02 14:40:31 -------- d-----w- c:\users\owner\appdata\local\{5C14D622-FEBC-4B87-B9AC-C878718007B5}
2012-12-28 03:38:24 -------- d-----w- c:\users\owner\appdata\local\{74FEE5C1-2667-4619-92C2-990A45D7CB08}
2012-12-26 21:20:10 -------- d-----w- c:\program files\Garmin GPS Plugin
2012-12-26 21:19:40 -------- d-----w- c:\program files\Garmin
2012-12-26 18:31:12 -------- d-----w- c:\users\owner\appdata\roaming\Garmin
2012-12-26 15:36:53 -------- d-----w- c:\users\owner\appdata\local\{C3AF1330-BE0E-4D09-8F93-69908452DF07}
2012-12-24 12:24:32 -------- d-----w- c:\users\owner\appdata\local\{27BCE167-DE6B-440F-8A63-94E3F8EA3EC7}
2012-12-23 20:38:36 -------- d-----w- c:\users\owner\appdata\local\{E3D50A38-3368-4AA0-B4E6-E04C7BDEDDE1}
2012-12-23 08:37:59 -------- d-----w- c:\users\owner\appdata\local\{74EB60E0-0E00-4715-81E4-DBD091AECF7F}
2012-12-22 20:37:14 -------- d-----w- c:\users\owner\appdata\local\{9236F5B8-A298-4084-9464-3F46E2610FE1}
2012-12-19 21:00:26 -------- d-----w- c:\users\owner\appdata\local\{6251812F-841E-417C-A32F-15CA9C9B778A}
2012-12-18 14:28:14 186584 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
2012-12-18 02:46:58 -------- d-----w- c:\users\owner\appdata\local\{9A88AC85-D483-4B8E-A18D-26F89D0008BE}
2012-12-16 14:11:51 -------- d-----w- c:\users\owner\appdata\local\{9C511635-042F-46E6-9AB5-87897FCE540A}
2012-12-16 02:11:26 -------- d-----w- c:\users\owner\appdata\local\{5B6ACEB0-A5C5-4F03-82BD-7B14313B77A5}
.
==================== Find3M ====================
.
2012-12-14 22:49:28 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-12 16:48:44 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-12 16:48:43 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-11-13 20:29:04 354216 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl
2012-10-25 09:12:26 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 09:12:26 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-10-24 12:00:07 821736 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-10-24 12:00:07 746984 ----a-w- c:\windows\system32\deployJava1.dll
.
============= FINISH: 12:01:05.40 ===============

Attached Files


-Nate

"Lots of planets have a north."

BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,739 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:08 PM

Posted 19 January 2013 - 01:05 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

Posted Image In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/481726 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

Posted Image If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 19 January 2013 - 02:46 PM

Here are the new DDS logs. I do not have my original Vista CD as it was bought pre-built from Best Buy. I do have the Geek Squad recovery discs.

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.11.2
Run by Owner at 13:41:12 on 2013-01-19
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3454.1008 [GMT -6:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\CrashPlan\CrashPlanService.exe
C:\Windows\system32\CTsvcCDA.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Soluto\SolutoLauncherService.exe
C:\Program Files\Soluto\SolutoService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Soluto\Soluto.exe
C:\Program Files\Calibrize\CalibrizeResume.exe
C:\Program Files\Polkast\PolkastLibrary.exe
C:\Program Files\Polkast\PolkastServiceApp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\CrashPlan\CrashPlanTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\ehome\ehsched.exe
C:\Windows\ehome\ehRecvr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\hp\kbd\kbd.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\vssvc.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Soluto\SolutoConsole.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k swprv
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [CGFLoader] c:\program files\calibrize\CalibrizeLoader.exe
uRun: [CalibrizeResume] c:\program files\calibrize\CalibrizeResume.exe
uRun: [PolkastLibrary] c:\program files\polkast\PolkastLibrary.exe "auto"
uRun: [PolkastServiceApp] c:\program files\polkast\PolkastServiceApp.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
mRun: [KBD] "c:\hp\kbd\KbdStub.EXE"
mRun: [hpsysdrv] "c:\hp\support\hpsysdrv.exe"
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [LWS] c:\program files\logitech\lws\webcam software\LWS.exe -hide
mRun: [Garmin Lifetime Updater] c:\program files\garmin\lifetime updater\GarminLifetime.exe /StartMinimized
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [DivXMediaServer] c:\program files\divx\divx media server\DivXMediaServer.exe
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Soluto] c:\program files\soluto\soluto.exe /init
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\crashp~1.lnk - c:\program files\crashplan\CrashPlanTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:149
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:149
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: mybsa.org
Trusted Zone: netbsa.org
Trusted Zone: scouting.org
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} - hxxp://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab
DPF: {49232000-16E4-426C-A231-62846947304B} - hxxps://wimpro2.cce.hp.com/ChatEntry/downloads/sysinfo.cab
DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader3.cab
DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} - hxxp://mediaplayer.walmart.com/installer/install.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://secure.mybsa.org/dana-cached/sc/JuniperSetupClient.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{2F29242B-E267-4293-88A6-9A3B2C91547F} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{56D9CC25-1AE1-486A-9FBA-F3D600073E2B} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{BE1BF9A7-4BA8-4713-9C14-0DEE88ECAE70} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{C0C050B0-2AB4-4E12-BD06-8B0805F5106B} : DHCPNameServer = 192.168.1.254
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} -
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-2-3 64160]
R0 Soluto;Soluto;c:\windows\system32\drivers\Soluto.sys [2013-1-2 51144]
R0 ssfs0bbc;ssfs0bbc;c:\windows\system32\drivers\ssfs0bbc.sys [2009-9-18 29808]
R0 tpcdrdrv;tpcdrdrv;c:\windows\system32\drivers\tpcdrdrv.sys [2012-11-6 13312]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-1-6 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-1-6 361032]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-11-16 239168]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2010-2-17 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67664]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-1-6 21256]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-1-6 58680]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2013-1-6 44808]
R2 CrashPlanService;CrashPlan Backup Service;c:\program files\crashplan\CrashPlanService.exe [2012-8-16 152576]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-5-27 21504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2010-12-13 14216]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2010-12-13 8456]
S3 hcw18bda;Hauppauge WinTV 418 Driver;c:\windows\system32\drivers\hcw18bda.sys [2009-3-19 391168]
S3 netr73;Belkin Wireless G Plus MIMO USB Network Adapter Driver for Vista;c:\windows\system32\drivers\netr73.sys [2007-11-12 468480]
S3 PinnacleMovieBox;Pinnacle Systems MovieBox USB Device;c:\windows\system32\drivers\PcleMBox.sys [2008-5-14 995456]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2012-9-6 27192]
S3 TucbAudio;TucbAudio;c:\windows\system32\drivers\TucbAudio.sys [2010-4-5 23096]
S3 VX6000;Microsoft LifeCam VX-6000;c:\windows\system32\drivers\VX6000Xp.sys [2007-4-10 2385896]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2010-4-5 25704]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2010-4-5 25704]
S4 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2010-6-29 116608]
S4 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\hi-rez studios\HiPatchService.exe [2012-7-9 8704]
.
=============== Created Last 30 ================
.
2013-01-19 14:16:22 -------- d-----w- c:\users\owner\appdata\local\{F46D4B22-2637-4E0E-966A-E494D897C4A8}
2013-01-16 10:45:56 -------- d-----w- c:\users\owner\appdata\local\{732C1BB2-2A32-4E49-90B5-91CF1BEB4245}
2013-01-15 22:29:35 -------- d-----w- c:\users\owner\appdata\roaming\XYplorer
2013-01-15 22:29:26 -------- d-----w- c:\program files\XYplorer
2013-01-15 16:39:04 -------- d-----w- c:\users\owner\appdata\local\{B2DA8F8B-4C3D-455F-B529-33FD9F161D18}
2013-01-15 04:38:22 -------- d-----w- c:\users\owner\appdata\local\{2BC58CC7-AB3A-482E-A1B1-9306BEF579B8}
2013-01-14 17:45:47 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-01-14 16:37:20 -------- d-----w- c:\users\owner\appdata\local\{F450059F-235C-4D08-AF2C-1947E57F4E02}
2013-01-12 05:28:10 -------- d-----w- c:\users\owner\appdata\local\{58A77C38-BFC0-4622-AEE2-1AE1EA31A11C}
2013-01-10 18:49:39 -------- d-----w- c:\users\owner\appdata\local\{0B22B1C2-3C26-46B4-9518-F5FC2337C36F}
2013-01-10 06:49:14 -------- d-----w- c:\users\owner\appdata\local\{1C24A401-BFC0-4486-AAF0-9D0CA726BB49}
2013-01-09 18:48:47 -------- d-----w- c:\users\owner\appdata\local\{15359080-F82B-4B7D-A128-B4E0327BF131}
2013-01-08 19:43:02 73 ----a-w- c:\windows\system32\ssprs.dll
2013-01-08 19:43:02 205 ----a-w- c:\windows\system32\lsprst7.dll
2013-01-08 19:43:02 0 ----a-w- c:\windows\system32\tmpPrst.dll
2013-01-08 18:56:39 -------- d-----w- c:\users\owner\appdata\local\{1274B112-BF36-44BA-B65C-3C2D7EE77525}
2013-01-07 19:00:14 -------- d-----w- c:\users\owner\appdata\local\{727B13E5-E4BA-4100-A7AD-A7A96003DDB3}
2013-01-06 21:55:44 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-06 21:55:43 58680 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-06 21:55:12 41224 ----a-w- c:\windows\avastSS.scr
2013-01-06 21:54:07 -------- d-----w- c:\programdata\AVAST Software
2013-01-06 21:54:07 -------- d-----w- c:\program files\AVAST Software
2013-01-06 08:19:02 -------- d-----w- C:\$RECYCLE.BIN
2013-01-06 08:18:26 98816 ----a-w- c:\windows\sed.exe
2013-01-06 08:18:26 256000 ----a-w- c:\windows\PEV.exe
2013-01-06 08:18:26 208896 ----a-w- c:\windows\MBR.exe
2013-01-06 08:18:20 -------- d-----w- C:\ComboFix
2013-01-06 00:15:06 -------- d-----w- c:\users\owner\appdata\local\ElevatedDiagnostics
2013-01-06 00:13:14 -------- d-----w- c:\programdata\Sophos
2013-01-06 00:13:01 73728 ----a-r- c:\users\owner\appdata\roaming\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-01-06 00:13:01 73728 ----a-r- c:\users\owner\appdata\roaming\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-01-06 00:13:01 73728 ----a-r- c:\users\owner\appdata\roaming\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\ARPPRODUCTICON.exe
2013-01-06 00:12:51 -------- d-----w- c:\program files\Sophos
2013-01-05 23:36:54 -------- d-----w- C:\WINSSLog
2013-01-05 22:30:04 -------- d-----w- c:\program files\Polkast
2013-01-03 21:22:41 -------- d-----w- c:\program files\Dropbox
2013-01-03 20:44:36 -------- d-----w- c:\users\owner\appdata\local\{428A7010-79F5-4FA5-B3CB-22D696098E01}
2013-01-02 16:18:04 51144 ----a-w- c:\windows\system32\drivers\Soluto.sys
2013-01-02 16:17:55 -------- d-----w- c:\program files\Soluto
2013-01-02 14:40:31 -------- d-----w- c:\users\owner\appdata\local\{5C14D622-FEBC-4B87-B9AC-C878718007B5}
2012-12-28 03:38:24 -------- d-----w- c:\users\owner\appdata\local\{74FEE5C1-2667-4619-92C2-990A45D7CB08}
2012-12-26 21:20:10 -------- d-----w- c:\program files\Garmin GPS Plugin
2012-12-26 21:19:40 -------- d-----w- c:\program files\Garmin
2012-12-26 18:31:12 -------- d-----w- c:\users\owner\appdata\roaming\Garmin
2012-12-26 15:36:53 -------- d-----w- c:\users\owner\appdata\local\{C3AF1330-BE0E-4D09-8F93-69908452DF07}
2012-12-24 12:24:32 -------- d-----w- c:\users\owner\appdata\local\{27BCE167-DE6B-440F-8A63-94E3F8EA3EC7}
2012-12-23 20:38:36 -------- d-----w- c:\users\owner\appdata\local\{E3D50A38-3368-4AA0-B4E6-E04C7BDEDDE1}
2012-12-23 08:37:59 -------- d-----w- c:\users\owner\appdata\local\{74EB60E0-0E00-4715-81E4-DBD091AECF7F}
2012-12-22 20:37:14 -------- d-----w- c:\users\owner\appdata\local\{9236F5B8-A298-4084-9464-3F46E2610FE1}
.
==================== Find3M ====================
.
2013-01-15 15:16:12 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-01-15 15:16:12 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-14 22:49:28 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-11-13 20:29:04 354216 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl
2012-10-25 09:12:26 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 09:12:26 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-10-24 12:00:07 821736 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-10-24 12:00:07 746984 ----a-w- c:\windows\system32\deployJava1.dll
.
============= FINISH: 13:45:10.49 ===============

Attached Files


-Nate

"Lots of planets have a north."

#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:08 AM

Posted 21 January 2013 - 03:48 PM

Greetings narcher007 and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:


===================================================


Ground Rules:

  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me about it.
  • When you post your reply, do not use the Posted Image button but use the Posted Image button instead.
  • In the upper right hand corner of the topic you will see the Posted Image button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:

===================================================


Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. Please allow me some time to review the information you have provided. I will post back as soon as possible.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:08 AM

Posted 21 January 2013 - 05:22 PM

Greetings narcher007,

Thank you for patiently waiting for assistance. There are two programs I would like you to run but I must first advise you of the following:


===================================================


BACKDOOR WARNING!

--------------------

One or more of the identified infections is a Backdoor Trojan.

This allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation. Please let me know if you have already noticed evedences of financial institution irregularities.

Though the trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

We can still clean this machine but I can't guarantee that it will be 100% secure afterwards. Let me know what you decide to do. If you decide to go through with the cleanup, please proceed with the following steps.


===================================================


P2P Warning

--------------------

Going over your logs I noticed that you have µTorrent installed. It is pretty much certain that if you continue to use P2P programs, you will get infected again.

  • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
  • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
I would recommend that you uninstall µTorrent, however that choice is up to you. If you choose to remove the program, you can do so via Start > Control Panel > Add/Remove Programs.

If you are still leaning toward using this program, please take a look at this information about Ransomware which can be delivered via P2P file transfers. The newest variation of Ransomware can make it impossible to recover the files this malicious software encrypts. In other words, you will probably lose most if not all of your valuable information, including pictures. In addition it has recently been reported that P2P downloads may be tracked resulting in your IP address being monitored by copyright authorities. .

If you wish to keep it, please do not use it until we are completely done and your machine is determined to be clean and updated.


===================================================


Running TDSSKiller with Changed Parameters

--------------------

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    Posted Image

  • Check Loaded Modules and Detect TDLFS file system. Do not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    Posted Image
  • Click Start Scan and allow the scan process to run


    Posted Image

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    Posted Image

  • Click Reboot computer
  • Please copy and paste the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    Posted Image
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    Posted Image
  • Please post the contents of the log in your next reply.
NOTE: aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#6 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 12:39 PM

Thanks Gary. I'm Nate. Here is the TDSSkiller log. The other log will follow. There was a long long one, and this shorter one:

10:55:46.0503 7836 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:55:47.0133 7836 ============================================================
10:55:47.0133 7836 Current date / time: 2013/01/22 10:55:47.0133
10:55:47.0133 7836 SystemInfo:
10:55:47.0133 7836
10:55:47.0133 7836 OS Version: 6.0.6002 ServicePack: 2.0
10:55:47.0133 7836 Product type: Workstation
10:55:47.0133 7836 ComputerName: HAL2007
10:55:47.0134 7836 UserName: Owner
10:55:47.0134 7836 Windows directory: C:\Windows
10:55:47.0134 7836 System windows directory: C:\Windows
10:55:47.0135 7836 Processor architecture: Intel x86
10:55:47.0135 7836 Number of processors: 2
10:55:47.0135 7836 Page size: 0x1000
10:55:47.0135 7836 Boot type: Normal boot
10:55:47.0135 7836 ============================================================
10:55:50.0899 7836 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:55:50.0952 7836 Drive \Device\Harddisk5\DR5 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:55:50.0962 7836 ============================================================
10:55:50.0962 7836 \Device\Harddisk0\DR0:
10:55:50.0982 7836 MBR partitions:
10:55:50.0982 7836 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x391D2B3F
10:55:50.0982 7836 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x391D2B7E, BlocksNum 0x11B20C3
10:55:50.0982 7836 \Device\Harddisk5\DR5:
10:55:50.0983 7836 MBR partitions:
10:55:50.0983 7836 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
10:55:50.0983 7836 ============================================================
10:55:51.0069 7836 C: <-> \Device\Harddisk0\DR0\Partition1
10:55:51.0159 7836 D: <-> \Device\Harddisk0\DR0\Partition2
10:55:51.0235 7836 K: <-> \Device\Harddisk5\DR5\Partition1
10:55:51.0236 7836 ============================================================
10:55:51.0236 7836 Initialize success
10:55:51.0236 7836 ============================================================
11:00:34.0728 3676 Deinitialize success
-Nate

"Lots of planets have a north."

#7 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 03:31 PM

Here is the other one. I had to put the computer in Safe Mode for it to run successfully as it BSODed in normal mode:
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-22 12:49:37
-----------------------------
12:49:37.600 OS Version: Windows 6.0.6002 Service Pack 2
12:49:37.600 Number of processors: 2 586 0x4303
12:49:37.600 ComputerName: HAL2007 UserName: Owner
12:50:18.363 Initialize success
12:50:42.699 AVAST engine defs: 13012200
12:50:59.968 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000063
12:50:59.968 Disk 0 Vendor: ST350063 3.AH Size: 476940MB BusType: 6
12:50:59.984 Disk 0 MBR read successfully
12:50:59.984 Disk 0 MBR scan
12:51:00.405 Disk 0 unknown MBR code
12:51:00.421 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 467877 MB offset 63
12:51:00.857 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 9060 MB offset 958212990
12:51:00.935 Disk 0 scanning sectors +976768065
12:51:01.279 Disk 0 scanning C:\Windows\system32\drivers
12:51:18.205 Service scanning
12:51:40.559 Modules scanning
12:55:43.529 Disk 0 trace - called modules:
12:55:43.529 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys
12:55:43.529 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x878ea158]
12:55:43.529 3 CLASSPNP.SYS[8cbc98b3] -> nt!IofCallDriver -> [0x8662b358]
12:55:43.545 5 acpi.sys[840176bc] -> nt!IofCallDriver -> \Device\00000063[0x8662b928]
12:55:44.372 AVAST engine scan C:\Windows
12:55:48.740 AVAST engine scan C:\Windows\system32
12:58:00.731 AVAST engine scan C:\Windows\system32\drivers
12:58:20.497 AVAST engine scan C:\Users\Owner
13:58:26.437 AVAST engine scan C:\ProgramData
14:04:34.565 Scan finished successfully
14:17:01.681 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Downloads\MBR.dat"
14:17:01.681 The log file has been saved successfully to "C:\Users\Owner\Downloads\aswMBR.txt"
-Nate

"Lots of planets have a north."

#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:08 AM

Posted 22 January 2013 - 04:20 PM

Hi Nate,

Can you check your TDSSKiller log. There should be more to it.

Also, please run this program for me.


===================================================


BlueScreenView

----------

  • Download BlueScreenView and save it to your desktop
  • Double click the BlueScreenView.exe file then click OK
  • Select Run, Next, then Next again
  • Click Install
  • When the scanning is complete, select Edit and Select All
  • Then click File and Save Selected Items
  • Save the report as BSOD.txt
  • Open BSOD.txt in Notepad, copy the entire content and paste it into your next reply

===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Full TDSSKiller log
  • BSOD.txt

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#9 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 05:00 PM

11:07:51.0879 3660 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:07:52.0909 3660 ============================================================
11:07:52.0909 3660 Current date / time: 2013/01/22 11:07:52.0909
11:07:52.0909 3660 SystemInfo:
11:07:52.0909 3660
11:07:52.0909 3660 OS Version: 6.0.6002 ServicePack: 2.0
11:07:52.0909 3660 Product type: Workstation
11:07:52.0909 3660 ComputerName: HAL2007
11:07:52.0909 3660 UserName: Owner
11:07:52.0909 3660 Windows directory: C:\Windows
11:07:52.0909 3660 System windows directory: C:\Windows
11:07:52.0909 3660 Processor architecture: Intel x86
11:07:52.0909 3660 Number of processors: 2
11:07:52.0909 3660 Page size: 0x1000
11:07:52.0909 3660 Boot type: Normal boot
11:07:52.0909 3660 ============================================================
11:07:53.0549 3660 BG loaded
11:07:55.0764 3660 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:07:55.0795 3660 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:07:55.0842 3660 ============================================================
11:07:55.0842 3660 \Device\Harddisk0\DR0:
11:07:55.0857 3660 MBR partitions:
11:07:55.0857 3660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x391D2B3F
11:07:55.0857 3660 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x391D2B7E, BlocksNum 0x11B20C3
11:07:55.0857 3660 \Device\Harddisk1\DR1:
11:07:55.0857 3660 MBR partitions:
11:07:55.0857 3660 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
11:07:55.0857 3660 ============================================================
11:07:56.0076 3660 C: <-> \Device\Harddisk0\DR0\Partition1
11:07:56.0247 3660 D: <-> \Device\Harddisk0\DR0\Partition2
11:07:56.0325 3660 K: <-> \Device\Harddisk1\DR1\Partition1
11:07:56.0325 3660 ============================================================
11:07:56.0325 3660 Initialize success
11:07:56.0325 3660 ============================================================
11:11:53.0305 3024 ============================================================
11:11:53.0305 3024 Scan started
11:11:53.0305 3024 Mode: Manual; TDLFS;
11:11:53.0305 3024 ============================================================
11:11:57.0275 3024 ================ Scan system memory ========================
11:11:57.0275 3024 System memory - ok
11:11:57.0276 3024 ================ Scan services =============================
11:11:57.0463 3024 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
11:11:57.0476 3024 !SASCORE - ok
11:11:57.0708 3024 [ 585E64BB6DFBC0A2F1F0B554DED012DF ] 61883 C:\Windows\system32\DRIVERS\61883.sys
11:11:57.0714 3024 61883 - ok
11:11:57.0758 3024 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:11:57.0764 3024 ACPI - ok
11:11:57.0805 3024 [ 303C174A7303A7702A68653152FC65A0 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
11:11:57.0811 3024 Adobe LM Service - ok
11:11:57.0883 3024 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:11:57.0887 3024 AdobeARMservice - ok
11:11:58.0051 3024 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:11:58.0202 3024 AdobeFlashPlayerUpdateSvc - ok
11:11:58.0355 3024 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:11:58.0380 3024 adp94xx - ok
11:11:58.0427 3024 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:11:58.0519 3024 adpahci - ok
11:11:58.0544 3024 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:11:58.0550 3024 adpu160m - ok
11:11:58.0572 3024 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:11:58.0593 3024 adpu320 - ok
11:11:58.0615 3024 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:11:58.0618 3024 AeLookupSvc - ok
11:11:58.0675 3024 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:11:58.0680 3024 AFD - ok
11:11:58.0700 3024 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:11:58.0713 3024 agp440 - ok
11:11:58.0749 3024 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:11:58.0768 3024 aic78xx - ok
11:11:58.0791 3024 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:11:58.0793 3024 ALG - ok
11:11:58.0811 3024 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
11:11:58.0816 3024 aliide - ok
11:11:58.0841 3024 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:11:58.0854 3024 amdagp - ok
11:11:58.0878 3024 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
11:11:58.0882 3024 amdide - ok
11:11:58.0913 3024 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:11:58.0930 3024 AmdK7 - ok
11:11:58.0957 3024 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:11:58.0959 3024 AmdK8 - ok
11:11:58.0992 3024 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:11:58.0994 3024 Appinfo - ok
11:11:59.0069 3024 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:11:59.0080 3024 Apple Mobile Device - ok
11:11:59.0150 3024 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
11:11:59.0156 3024 arc - ok
11:11:59.0188 3024 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:11:59.0203 3024 arcsas - ok
11:11:59.0248 3024 [ 54AB078660E536DA72B21A27F56B035B ] ASPI32 C:\Windows\system32\drivers\ASPI32.sys
11:11:59.0251 3024 ASPI32 - ok
11:11:59.0323 3024 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:11:59.0344 3024 aspnet_state - ok
11:11:59.0366 3024 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
11:11:59.0369 3024 aswFsBlk - ok
11:11:59.0398 3024 [ 62F9DCEC95F91B8E0203E85D344A7E65 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:11:59.0400 3024 aswMonFlt - ok
11:11:59.0416 3024 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
11:11:59.0418 3024 AswRdr - ok
11:11:59.0476 3024 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:11:59.0483 3024 aswSnx - ok
11:11:59.0538 3024 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:11:59.0542 3024 aswSP - ok
11:11:59.0563 3024 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
11:11:59.0566 3024 aswTdi - ok
11:11:59.0610 3024 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:11:59.0614 3024 AsyncMac - ok
11:11:59.0642 3024 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:11:59.0646 3024 atapi - ok
11:11:59.0677 3024 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:11:59.0682 3024 AudioEndpointBuilder - ok
11:11:59.0689 3024 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:11:59.0694 3024 Audiosrv - ok
11:11:59.0758 3024 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:11:59.0761 3024 avast! Antivirus - ok
11:11:59.0804 3024 [ F4B56425A00BEB32F5FA6603FF7B0EA2 ] Avc C:\Windows\system32\DRIVERS\avc.sys
11:11:59.0809 3024 Avc - ok
11:11:59.0844 3024 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:11:59.0848 3024 Beep - ok
11:11:59.0890 3024 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:11:59.0896 3024 BFE - ok
11:11:59.0951 3024 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
11:11:59.0990 3024 BITS - ok
11:11:59.0997 3024 blbdrive - ok
11:12:00.0076 3024 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:12:00.0101 3024 Bonjour Service - ok
11:12:00.0129 3024 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:12:00.0133 3024 bowser - ok
11:12:00.0161 3024 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:12:00.0167 3024 BrFiltLo - ok
11:12:00.0190 3024 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:12:00.0203 3024 BrFiltUp - ok
11:12:00.0235 3024 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:12:00.0240 3024 Browser - ok
11:12:00.0265 3024 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:12:00.0274 3024 Brserid - ok
11:12:00.0299 3024 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:12:00.0307 3024 BrSerWdm - ok
11:12:00.0323 3024 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:12:00.0337 3024 BrUsbMdm - ok
11:12:00.0365 3024 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:12:00.0384 3024 BrUsbSer - ok
11:12:00.0414 3024 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
11:12:00.0427 3024 BthEnum - ok
11:12:00.0470 3024 [ 9A966A8E86D1771911AE34A20D11BFF3 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:12:00.0486 3024 BTHMODEM - ok
11:12:00.0524 3024 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:12:00.0541 3024 BthPan - ok
11:12:00.0573 3024 [ 5A3ABAA2F8EECE7AEFB942773766E3DB ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
11:12:00.0585 3024 BTHPORT - ok
11:12:00.0631 3024 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
11:12:00.0635 3024 BthServ - ok
11:12:00.0661 3024 [ 94E2941280E3756A5E0BCB467865C43A ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
11:12:00.0675 3024 BTHUSB - ok
11:12:00.0705 3024 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\Windows\system32\drivers\BVRPMPR5.SYS
11:12:00.0710 3024 BVRPMPR5 - ok
11:12:00.0770 3024 catchme - ok
11:12:00.0801 3024 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:12:00.0805 3024 cdfs - ok
11:12:00.0831 3024 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:12:00.0835 3024 cdrom - ok
11:12:00.0871 3024 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:12:00.0877 3024 CertPropSvc - ok
11:12:00.0912 3024 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:12:00.0915 3024 circlass - ok
11:12:00.0967 3024 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:12:00.0976 3024 CLFS - ok
11:12:01.0045 3024 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:12:01.0053 3024 clr_optimization_v2.0.50727_32 - ok
11:12:01.0091 3024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:12:01.0187 3024 clr_optimization_v4.0.30319_32 - ok
11:12:01.0237 3024 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:12:01.0299 3024 cmdide - ok
11:12:01.0397 3024 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:12:01.0487 3024 Compbatt - ok
11:12:01.0493 3024 COMSysApp - ok
11:12:01.0748 3024 cpuz135 - ok
11:12:01.0782 3024 cpuz136 - ok
11:12:01.0895 3024 [ C295EF49BE39C1170D44F90E740C5D61 ] CrashPlanService C:\Program Files\CrashPlan\CrashPlanService.exe
11:12:01.0897 3024 CrashPlanService - ok
11:12:02.0229 3024 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:12:02.0234 3024 crcdisk - ok
11:12:02.0258 3024 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\Windows\system32\CTsvcCDA.exe
11:12:02.0263 3024 Creative Service for CDROM Access - ok
11:12:02.0292 3024 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:12:02.0297 3024 Crusoe - ok
11:12:02.0344 3024 [ FB27772BEAF8E1D28CCD825C09DA939B ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:12:02.0350 3024 CryptSvc - ok
11:12:02.0382 3024 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:12:02.0427 3024 DcomLaunch - ok
11:12:02.0465 3024 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:12:02.0470 3024 DfsC - ok
11:12:02.0572 3024 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:12:02.0632 3024 DFSR - ok
11:12:02.0660 3024 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:12:02.0674 3024 Dhcp - ok
11:12:02.0709 3024 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:12:02.0717 3024 disk - ok
11:12:02.0744 3024 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:12:02.0754 3024 Dnscache - ok
11:12:02.0806 3024 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:12:02.0819 3024 dot3svc - ok
11:12:02.0842 3024 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:12:02.0875 3024 DPS - ok
11:12:02.0903 3024 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:12:02.0906 3024 drmkaud - ok
11:12:02.0984 3024 [ FB38473835476A6FB272215A1D972AF9 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:12:02.0989 3024 dtsoftbus01 - ok
11:12:03.0027 3024 [ 1FC1EED3EA0C3A0ECF8A95B97E1B4831 ] dvd43llh C:\Windows\system32\DRIVERS\dvd43llh.sys
11:12:03.0032 3024 dvd43llh - ok
11:12:03.0082 3024 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:12:03.0091 3024 DXGKrnl - ok
11:12:03.0143 3024 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:12:03.0162 3024 E1G60 - ok
11:12:03.0195 3024 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:12:03.0207 3024 EapHost - ok
11:12:03.0242 3024 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:12:03.0249 3024 Ecache - ok
11:12:03.0322 3024 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:12:03.0333 3024 ehRecvr - ok
11:12:03.0367 3024 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:12:03.0381 3024 ehSched - ok
11:12:03.0394 3024 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:12:03.0397 3024 ehstart - ok
11:12:03.0419 3024 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:12:03.0430 3024 elxstor - ok
11:12:03.0476 3024 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:12:03.0497 3024 EMDMgmt - ok
11:12:03.0557 3024 [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv C:\Windows\system32\epmntdrv.sys
11:12:03.0572 3024 epmntdrv - ok
11:12:03.0618 3024 [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
11:12:03.0633 3024 EuGdiDrv - ok
11:12:03.0700 3024 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:12:03.0716 3024 EventSystem - ok
11:12:03.0763 3024 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:12:03.0770 3024 exfat - ok
11:12:03.0913 3024 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:12:03.0921 3024 fastfat - ok
11:12:03.0968 3024 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:12:03.0974 3024 fdc - ok
11:12:04.0003 3024 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:12:04.0017 3024 fdPHost - ok
11:12:04.0050 3024 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:12:04.0065 3024 FDResPub - ok
11:12:04.0090 3024 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:12:04.0104 3024 FileInfo - ok
11:12:04.0169 3024 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:12:04.0185 3024 Filetrace - ok
11:12:04.0304 3024 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:12:04.0346 3024 FLEXnet Licensing Service - ok
11:12:04.0380 3024 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:12:04.0387 3024 flpydisk - ok
11:12:04.0417 3024 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:12:04.0423 3024 FltMgr - ok
11:12:04.0497 3024 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:12:04.0515 3024 FontCache - ok
11:12:04.0587 3024 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:12:04.0599 3024 FontCache3.0.0.0 - ok
11:12:04.0625 3024 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:12:04.0629 3024 Fs_Rec - ok
11:12:04.0660 3024 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:12:04.0667 3024 gagp30kx - ok
11:12:04.0728 3024 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
11:12:04.0733 3024 GEARAspiWDM - ok
11:12:04.0826 3024 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:12:04.0901 3024 gpsvc - ok
11:12:05.0050 3024 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:12:05.0053 3024 gupdate - ok
11:12:05.0066 3024 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:12:05.0070 3024 gupdatem - ok
11:12:05.0112 3024 [ 06D43E140A1B20BEA7307B91ECE79A32 ] hcw18bda C:\Windows\system32\drivers\hcw18bda.sys
11:12:05.0128 3024 hcw18bda - ok
11:12:05.0204 3024 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:12:05.0235 3024 HdAudAddService - ok
11:12:05.0277 3024 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:12:05.0285 3024 HDAudBus - ok
11:12:05.0324 3024 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:12:05.0339 3024 HidBth - ok
11:12:05.0357 3024 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:12:05.0367 3024 HidIr - ok
11:12:05.0397 3024 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
11:12:05.0413 3024 hidserv - ok
11:12:05.0449 3024 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:12:05.0455 3024 HidUsb - ok
11:12:05.0551 3024 [ 00C71C3FB915BA353740999ADF447927 ] HiPatchService C:\Program Files\Hi-Rez Studios\HiPatchService.exe
11:12:05.0565 3024 HiPatchService - ok
11:12:05.0581 3024 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:12:05.0598 3024 hkmsvc - ok
11:12:05.0655 3024 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:12:05.0662 3024 HpCISSs - ok
11:12:05.0751 3024 [ ED377B3C83FDEA8D906109A085D219BA ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
11:12:05.0756 3024 hpqcxs08 - ok
11:12:05.0783 3024 [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
11:12:05.0787 3024 hpqddsvc - ok
11:12:05.0840 3024 [ 78C88781FBD2FDD3BCBA09F58897FE45 ] HSF_DP C:\Windows\system32\DRIVERS\HSX_DP.sys
11:12:05.0850 3024 HSF_DP - ok
11:12:05.0887 3024 [ 1E289F978D1E6F11DB88D4FCB2F9D92F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
11:12:05.0892 3024 HSXHWBS2 - ok
11:12:05.0951 3024 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:12:05.0958 3024 HTTP - ok
11:12:05.0989 3024 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:12:05.0996 3024 i2omp - ok
11:12:06.0024 3024 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:12:06.0028 3024 i8042prt - ok
11:12:06.0059 3024 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:12:06.0069 3024 iaStorV - ok
11:12:06.0157 3024 [ 6F95324909B502E2651442C1548AB12F ] IDriverT c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
11:12:06.0168 3024 IDriverT - ok
11:12:06.0284 3024 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:12:06.0443 3024 idsvc - ok
11:12:06.0472 3024 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:12:06.0487 3024 iirsp - ok
11:12:06.0511 3024 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:12:06.0533 3024 IKEEXT - ok
11:12:06.0658 3024 [ D4394A481B845CC1DF361A85751C071A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:12:06.0690 3024 IntcAzAudAddService - ok
11:12:06.0707 3024 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
11:12:06.0713 3024 intelide - ok
11:12:06.0740 3024 [ CE44CC04262F28216DD4341E9E36A16F ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:12:06.0747 3024 intelppm - ok
11:12:06.0766 3024 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:12:06.0798 3024 IPBusEnum - ok
11:12:06.0843 3024 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:12:06.0853 3024 IpFilterDriver - ok
11:12:06.0904 3024 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:12:06.0938 3024 iphlpsvc - ok
11:12:06.0943 3024 IpInIp - ok
11:12:06.0958 3024 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:12:06.0967 3024 IPMIDRV - ok
11:12:07.0005 3024 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:12:07.0017 3024 IPNAT - ok
11:12:07.0073 3024 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:12:07.0079 3024 iPod Service - ok
11:12:07.0117 3024 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:12:07.0125 3024 IRENUM - ok
11:12:07.0154 3024 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:12:07.0161 3024 isapnp - ok
11:12:07.0226 3024 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:12:07.0235 3024 iScsiPrt - ok
11:12:07.0258 3024 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:12:07.0265 3024 iteatapi - ok
11:12:07.0291 3024 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:12:07.0307 3024 iteraid - ok
11:12:07.0315 3024 Iviaspi - ok
11:12:07.0340 3024 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:12:07.0346 3024 kbdclass - ok
11:12:07.0375 3024 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:12:07.0381 3024 kbdhid - ok
11:12:07.0406 3024 [ 3978F3540329E16C0AC3BCF677E5669F ] KeyIso C:\Windows\system32\lsass.exe
11:12:07.0481 3024 KeyIso - ok
11:12:07.0630 3024 [ 86165728AF9BF72D6442A894FDFB4F8B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:12:07.0685 3024 KSecDD - ok
11:12:07.0776 3024 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:12:07.0801 3024 KtmRm - ok
11:12:07.0880 3024 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
11:12:07.0949 3024 LanmanServer - ok
11:12:08.0001 3024 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:12:08.0109 3024 LanmanWorkstation - ok
11:12:08.0166 3024 Lavasoft Kernexplorer - ok
11:12:08.0183 3024 [ 53B670772D98B459A5AF35598AB5815E ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys
11:12:08.0192 3024 Lbd - ok
11:12:08.0272 3024 [ 05D6B85ECC3204931923AB7940B9596E ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:12:08.0283 3024 LHidFilt - ok
11:12:08.0327 3024 LightScribeService - ok
11:12:08.0374 3024 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:12:08.0378 3024 lltdio - ok
11:12:08.0429 3024 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:12:08.0521 3024 lltdsvc - ok
11:12:08.0576 3024 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:12:08.0595 3024 lmhosts - ok
11:12:08.0671 3024 [ 053DBCC1082FDF74AB145A71917A6556 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:12:08.0685 3024 LMouFilt - ok
11:12:08.0752 3024 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:12:08.0759 3024 LSI_FC - ok
11:12:08.0787 3024 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:12:08.0825 3024 LSI_SAS - ok
11:12:08.0869 3024 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:12:08.0880 3024 LSI_SCSI - ok
11:12:08.0918 3024 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:12:08.0937 3024 luafv - ok
11:12:09.0012 3024 [ 95DAB70D56BBAC7DDB7E6D0017D71369 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
11:12:09.0020 3024 LUsbFilt - ok
11:12:09.0142 3024 [ E1158B0CB852DB0573922C92E6E564DE ] lvpopflt C:\Windows\system32\DRIVERS\lvpopflt.sys
11:12:09.0259 3024 lvpopflt - ok
11:12:09.0331 3024 [ 8BE71D7EDB8C7494913722059F760DD0 ] LVPr2Mon C:\Windows\system32\Drivers\LVPr2Mon.sys
11:12:09.0340 3024 LVPr2Mon - ok
11:12:09.0406 3024 [ B6E1CCD6572984ADCAE68439AFD07011 ] LVRS C:\Windows\system32\DRIVERS\lvrs.sys
11:12:09.0423 3024 LVRS - ok
11:12:09.0463 3024 [ 23F8EF78BB9553E465A476F3CEE5CA18 ] LVUSBSta C:\Windows\system32\drivers\LVUSBSta.sys
11:12:09.0474 3024 LVUSBSta - ok
11:12:09.0932 3024 [ 6C42815DD57E397F0CD988304B5EB4B3 ] LVUVC C:\Windows\system32\DRIVERS\lvuvc.sys
11:12:10.0027 3024 LVUVC - ok
11:12:10.0063 3024 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:12:10.0084 3024 Mcx2Svc - ok
11:12:10.0107 3024 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
11:12:10.0112 3024 mdmxsdk - ok
11:12:10.0140 3024 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
11:12:10.0162 3024 megasas - ok
11:12:10.0192 3024 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:12:10.0213 3024 MMCSS - ok
11:12:10.0251 3024 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:12:10.0256 3024 Modem - ok
11:12:10.0276 3024 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:12:10.0287 3024 monitor - ok
11:12:10.0313 3024 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:12:10.0317 3024 mouclass - ok
11:12:10.0340 3024 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:12:10.0344 3024 mouhid - ok
11:12:10.0377 3024 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:12:10.0385 3024 MountMgr - ok
11:12:10.0427 3024 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
11:12:10.0443 3024 mpio - ok
11:12:10.0475 3024 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:12:10.0480 3024 mpsdrv - ok
11:12:10.0585 3024 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:12:10.0607 3024 MpsSvc - ok
11:12:10.0629 3024 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:12:10.0637 3024 Mraid35x - ok
11:12:10.0668 3024 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:12:10.0675 3024 MRxDAV - ok
11:12:10.0700 3024 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:12:10.0705 3024 mrxsmb - ok
11:12:10.0751 3024 [ D4A3C7C580C4CCB5C06F2ADA933AD507 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:12:10.0757 3024 mrxsmb10 - ok
11:12:10.0779 3024 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:12:10.0785 3024 mrxsmb20 - ok
11:12:10.0810 3024 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
11:12:10.0833 3024 msahci - ok
11:12:10.0931 3024 [ 641199534871783DD74138FE0BCFDAE7 ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS32.exe
11:12:10.0935 3024 MSCamSvc - ok
11:12:10.0971 3024 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:12:10.0997 3024 msdsm - ok
11:12:11.0025 3024 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:12:11.0077 3024 MSDTC - ok
11:12:11.0131 3024 [ 343291A4DFD7C923C3F71F550830EC1C ] MSDV C:\Windows\system32\DRIVERS\msdv.sys
11:12:11.0146 3024 MSDV - ok
11:12:11.0270 3024 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:12:11.0276 3024 Msfs - ok
11:12:11.0316 3024 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:12:11.0343 3024 msisadrv - ok
11:12:11.0402 3024 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:12:11.0430 3024 MSiSCSI - ok
11:12:11.0436 3024 msiserver - ok
11:12:11.0479 3024 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:12:11.0505 3024 MSKSSRV - ok
11:12:11.0527 3024 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:12:11.0561 3024 MSPCLOCK - ok
11:12:11.0592 3024 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:12:11.0619 3024 MSPQM - ok
11:12:11.0677 3024 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:12:11.0704 3024 MsRPC - ok
11:12:11.0759 3024 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:12:11.0765 3024 mssmbios - ok
11:12:11.0797 3024 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:12:11.0818 3024 MSTEE - ok
11:12:11.0874 3024 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:12:11.0908 3024 Mup - ok
11:12:12.0023 3024 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:12:12.0055 3024 napagent - ok
11:12:12.0124 3024 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:12:12.0133 3024 NativeWifiP - ok
11:12:12.0350 3024 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:12:12.0661 3024 NDIS - ok
11:12:12.0725 3024 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:12:12.0731 3024 NdisTapi - ok
11:12:12.0766 3024 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:12:12.0772 3024 Ndisuio - ok
11:12:12.0818 3024 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:12:12.0824 3024 NdisWan - ok
11:12:12.0877 3024 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:12:12.0884 3024 NDProxy - ok
11:12:12.0920 3024 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:12:12.0926 3024 NetBIOS - ok
11:12:13.0008 3024 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:12:13.0014 3024 netbt - ok
11:12:13.0029 3024 [ 3978F3540329E16C0AC3BCF677E5669F ] Netlogon C:\Windows\system32\lsass.exe
11:12:13.0050 3024 Netlogon - ok
11:12:13.0148 3024 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:12:13.0172 3024 Netman - ok
11:12:13.0575 3024 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:13.0679 3024 NetMsmqActivator - ok
11:12:13.0694 3024 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:13.0700 3024 NetPipeActivator - ok
11:12:13.0753 3024 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:12:13.0788 3024 netprofm - ok
11:12:14.0105 3024 [ FBBDCACBC128670983CCA59345BE5454 ] netr73 C:\Windows\system32\DRIVERS\netr73.sys
11:12:14.0222 3024 netr73 - ok
11:12:14.0250 3024 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:14.0255 3024 NetTcpActivator - ok
11:12:14.0287 3024 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:14.0293 3024 NetTcpPortSharing - ok
11:12:14.0370 3024 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:12:14.0394 3024 nfrd960 - ok
11:12:14.0466 3024 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:12:14.0492 3024 NlaSvc - ok
11:12:14.0545 3024 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:12:14.0550 3024 Npfs - ok
11:12:14.0593 3024 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:12:14.0618 3024 nsi - ok
11:12:14.0664 3024 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:12:14.0670 3024 nsiproxy - ok
11:12:14.0729 3024 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:12:15.0212 3024 Ntfs - ok
11:12:15.0261 3024 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:12:15.0281 3024 ntrigdigi - ok
11:12:15.0337 3024 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:12:15.0343 3024 Null - ok
11:12:15.0593 3024 [ D958A2B5F6AD5C3B8CCDC4D7DA62466C ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
11:12:15.0608 3024 NVENETFD - ok
11:12:17.0611 3024 [ E891B3979F0CF2740C1B073F834221FE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:12:17.0680 3024 nvlddmkm - ok
11:12:17.0716 3024 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:12:17.0778 3024 nvraid - ok
11:12:17.0808 3024 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:12:17.0823 3024 nvstor - ok
11:12:17.0852 3024 [ 7EBA6C9A0A295B1559EFB9062E701218 ] nvstor32 C:\Windows\system32\drivers\nvstor32.sys
11:12:17.0860 3024 nvstor32 - ok
11:12:17.0930 3024 [ AE2DE8E165DCB93A66B21748E6F913DF ] nvsvc C:\Windows\system32\nvvsvc.exe
11:12:17.0979 3024 nvsvc - ok
11:12:18.0195 3024 [ C78581C14699C46FE0F0817416383134 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
11:12:18.0290 3024 nvUpdatusService - ok
11:12:18.0324 3024 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:12:18.0350 3024 nv_agp - ok
11:12:18.0366 3024 NwlnkFlt - ok
11:12:18.0372 3024 NwlnkFwd - ok
11:12:18.0448 3024 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:12:18.0462 3024 odserv - ok
11:12:18.0503 3024 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:12:18.0510 3024 ohci1394 - ok
11:12:18.0536 3024 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:12:18.0548 3024 ose - ok
11:12:18.0658 3024 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:12:18.0724 3024 p2pimsvc - ok
11:12:18.0748 3024 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:12:18.0782 3024 p2psvc - ok
11:12:18.0816 3024 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
11:12:18.0827 3024 Parport - ok
11:12:18.0870 3024 [ 57389FA59A36D96B3EB09D0CB91E9CDC ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:12:18.0880 3024 partmgr - ok
11:12:18.0904 3024 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:12:18.0930 3024 Parvdm - ok
11:12:18.0976 3024 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:12:19.0007 3024 PcaSvc - ok
11:12:19.0078 3024 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:12:19.0092 3024 pci - ok
11:12:19.0147 3024 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
11:12:19.0160 3024 pciide - ok
11:12:19.0218 3024 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:12:19.0302 3024 pcmcia - ok
11:12:19.0326 3024 [ 02AAAFB7BA137CE5DDABCDF8090954D9 ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
11:12:19.0383 3024 pcouffin - ok
11:12:19.0604 3024 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:12:19.0618 3024 PEAUTH - ok
11:12:19.0713 3024 [ 444F122E68DB44C0589227781F3C8B3F ] pfc C:\Windows\system32\drivers\pfc.sys
11:12:19.0721 3024 pfc - ok
11:12:19.0822 3024 [ E73BD25036809BC973050A898246D5B7 ] PinnacleMovieBox C:\Windows\system32\DRIVERS\PcleMBox.sys
11:12:19.0873 3024 PinnacleMovieBox - ok
11:12:20.0167 3024 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:12:20.0207 3024 pla - ok
11:12:20.0244 3024 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:12:20.0295 3024 PlugPlay - ok
11:12:20.0466 3024 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:12:20.0502 3024 PNRPAutoReg - ok
11:12:20.0557 3024 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:12:20.0598 3024 PNRPsvc - ok
11:12:20.0646 3024 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:12:20.0667 3024 PolicyAgent - ok
11:12:20.0734 3024 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:12:20.0743 3024 PptpMiniport - ok
11:12:20.0774 3024 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
11:12:20.0785 3024 Processor - ok
11:12:20.0797 3024 PROCEXP151 - ok
11:12:20.0890 3024 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:12:20.0923 3024 ProfSvc - ok
11:12:20.0976 3024 [ 3978F3540329E16C0AC3BCF677E5669F ] ProtectedStorage C:\Windows\system32\lsass.exe
11:12:21.0010 3024 ProtectedStorage - ok
11:12:21.0087 3024 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\Windows\system32\DRIVERS\PS2.sys
11:12:21.0093 3024 Ps2 - ok
11:12:21.0158 3024 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:12:21.0164 3024 PSched - ok
11:12:21.0265 3024 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
11:12:21.0331 3024 PxHelp20 - ok
11:12:21.0601 3024 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:12:21.0678 3024 ql2300 - ok
11:12:21.0708 3024 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:12:21.0719 3024 ql40xx - ok
11:12:21.0767 3024 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:12:21.0810 3024 QWAVE - ok
11:12:21.0848 3024 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:12:21.0857 3024 QWAVEdrv - ok
11:12:21.0942 3024 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:12:21.0952 3024 RasAcd - ok
11:12:21.0996 3024 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:12:22.0074 3024 RasAuto - ok
11:12:22.0120 3024 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:12:22.0131 3024 Rasl2tp - ok
11:12:22.0217 3024 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:12:22.0263 3024 RasMan - ok
11:12:22.0313 3024 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:12:22.0323 3024 RasPppoe - ok
11:12:22.0388 3024 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:12:22.0400 3024 RasSstp - ok
11:12:22.0502 3024 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:12:22.0510 3024 rdbss - ok
11:12:22.0568 3024 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:12:22.0576 3024 RDPCDD - ok
11:12:22.0789 3024 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:12:22.0896 3024 rdpdr - ok
11:12:22.0944 3024 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:12:22.0951 3024 RDPENCDD - ok
11:12:23.0141 3024 [ 30BFBDFB7F95559EDE971F9DDB9A00BA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:12:23.0158 3024 RDPWD - ok
11:12:23.0274 3024 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:12:23.0323 3024 RemoteAccess - ok
11:12:23.0425 3024 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:12:23.0491 3024 RemoteRegistry - ok
11:12:23.0575 3024 [ B9BB8E2093C1615AD6EA55AD96214354 ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
11:12:23.0603 3024 Revoflt - ok
11:12:23.0910 3024 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:12:24.0119 3024 RFCOMM - ok
11:12:24.0197 3024 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:12:24.0215 3024 RpcLocator - ok
11:12:24.0416 3024 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
11:12:24.0445 3024 RpcSs - ok
11:12:24.0528 3024 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:12:24.0534 3024 rspndr - ok
11:12:24.0567 3024 [ 3978F3540329E16C0AC3BCF677E5669F ] SamSs C:\Windows\system32\lsass.exe
11:12:24.0586 3024 SamSs - ok
11:12:24.0813 3024 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:12:24.0814 3024 SASDIFSV - ok
11:12:24.0904 3024 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:12:24.0905 3024 SASKUTIL - ok
11:12:25.0003 3024 [ 37CA203F8CCF732CD272A27E55B268C4 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
11:12:25.0059 3024 sbp2port - ok
11:12:25.0136 3024 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:12:25.0188 3024 SCardSvr - ok
11:12:25.0402 3024 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:12:25.0710 3024 Schedule - ok
11:12:25.0787 3024 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:12:25.0791 3024 SCPolicySvc - ok
11:12:25.0855 3024 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:12:25.0916 3024 SDRSVC - ok
11:12:26.0062 3024 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:12:26.0117 3024 secdrv - ok
11:12:26.0215 3024 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:12:26.0255 3024 seclogon - ok
11:12:26.0313 3024 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
11:12:26.0357 3024 SENS - ok
11:12:26.0435 3024 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:12:26.0455 3024 Serenum - ok
11:12:26.0554 3024 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
11:12:26.0594 3024 Serial - ok
11:12:26.0680 3024 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:12:26.0750 3024 sermouse - ok
11:12:26.0878 3024 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:12:26.0938 3024 SessionEnv - ok
11:12:27.0023 3024 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:12:27.0043 3024 sffdisk - ok
11:12:27.0103 3024 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:12:27.0128 3024 sffp_mmc - ok
11:12:27.0150 3024 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:12:27.0167 3024 sffp_sd - ok
11:12:27.0220 3024 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:12:27.0255 3024 sfloppy - ok
11:12:27.0385 3024 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:12:27.0470 3024 SharedAccess - ok
11:12:27.0561 3024 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:12:27.0602 3024 ShellHWDetection - ok
11:12:27.0634 3024 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:12:27.0649 3024 sisagp - ok
11:12:27.0699 3024 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:12:27.0710 3024 SiSRaid2 - ok
11:12:27.0735 3024 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:12:27.0752 3024 SiSRaid4 - ok
11:12:28.0905 3024 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:12:29.0941 3024 Skype C2C Service - ok
11:12:30.0124 3024 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
11:12:30.0152 3024 SkypeUpdate - ok
11:12:30.0895 3024 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:12:32.0422 3024 slsvc - ok
11:12:32.0591 3024 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:12:32.0626 3024 SLUINotify - ok
11:12:32.0743 3024 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:12:32.0750 3024 Smb - ok
11:12:32.0913 3024 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:12:32.0942 3024 SNMPTRAP - ok
11:12:33.0185 3024 [ FF35C2D01AC36B446A1B997F305F0FC2 ] Soluto C:\Windows\system32\Drivers\Soluto.sys
11:12:33.0246 3024 Soluto - ok
11:12:33.0659 3024 [ C4710D7911A20F70D126DB7571C3004A ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe
11:12:33.0801 3024 SolutoLauncherService - ok
11:12:34.0472 3024 [ BCA25A87AD78FEDAC5C5ABD92DB3BECD ] SolutoRemoteService C:\Program Files\Soluto\SolutoRemoteService.exe
11:12:34.0664 3024 SolutoRemoteService - ok
11:12:35.0046 3024 [ E2774CDAC3BDCDC188891236F64594DC ] SolutoService C:\Program Files\Soluto\SolutoService.exe
11:12:35.0504 3024 SolutoService - ok
11:12:35.0593 3024 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:12:35.0654 3024 spldr - ok
11:12:35.0742 3024 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:12:35.0809 3024 Spooler - ok
11:12:35.0928 3024 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:12:35.0938 3024 srv - ok
11:12:36.0104 3024 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:12:36.0112 3024 srv2 - ok
11:12:36.0159 3024 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:12:36.0256 3024 srvnet - ok
11:12:36.0332 3024 [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
11:12:36.0346 3024 sscdbus - ok
11:12:36.0422 3024 [ 8A1BE0C347814F482F493AEA619D57F6 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
11:12:36.0439 3024 sscdmdfl - ok
11:12:36.0475 3024 [ 5AB0B1987F682A59B15B78F84C6AD7D0 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
11:12:36.0497 3024 sscdmdm - ok
11:12:36.0571 3024 [ 751E66EB32EFA80633B80F5D7FF0A1D8 ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
11:12:36.0612 3024 sscdserd - ok
11:12:36.0695 3024 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:12:36.0781 3024 SSDPSRV - ok
11:12:36.0848 3024 [ 82022BDFA46A8F1A9A57B6E810428DCC ] ssfs0bbc C:\Windows\system32\DRIVERS\ssfs0bbc.sys
11:12:36.0899 3024 ssfs0bbc - ok
11:12:37.0048 3024 [ AE317DAD2C6E923232656E91F28CF121 ] SSHRMD C:\Windows\system32\Drivers\SSHRMD.SYS
11:12:37.0064 3024 SSHRMD - ok
11:12:37.0147 3024 [ FED786B5EBEC2E764FBD241C4A8464D7 ] SSIDRV C:\Windows\system32\Drivers\SSIDRV.SYS
11:12:37.0197 3024 SSIDRV - ok
11:12:37.0276 3024 [ 8564BC9598BE1705477B7FA61D657C2B ] SSKBFD C:\Windows\system32\Drivers\sskbfd.sys
11:12:37.0344 3024 SSKBFD - ok
11:12:37.0575 3024 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:12:37.0661 3024 SstpSvc - ok
11:12:37.0770 3024 [ 306521935042FC0A6988D528643619B3 ] StarOpen C:\Windows\system32\drivers\StarOpen.sys
11:12:37.0778 3024 StarOpen - ok
11:12:37.0873 3024 Steam Client Service - ok
11:12:38.0057 3024 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:12:38.0318 3024 stisvc - ok
11:12:38.0435 3024 [ 90FE523D8EDCE9B7781BA9A296A30E29 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
11:12:38.0489 3024 stllssvr - ok
11:12:38.0526 3024 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:12:38.0535 3024 swenum - ok
11:12:38.0677 3024 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:12:38.0757 3024 swprv - ok
11:12:38.0856 3024 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:12:38.0874 3024 Symc8xx - ok
11:12:38.0932 3024 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:12:38.0974 3024 Sym_hi - ok
11:12:38.0995 3024 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:12:39.0009 3024 Sym_u3 - ok
11:12:39.0115 3024 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:12:39.0191 3024 SysMain - ok
11:12:39.0259 3024 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:12:39.0293 3024 TabletInputService - ok
11:12:39.0436 3024 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:12:39.0471 3024 TapiSrv - ok
11:12:39.0543 3024 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:12:39.0576 3024 TBS - ok
11:12:39.0884 3024 [ A474879AFA4A596B3A531F3E69730DBF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:12:40.0591 3024 Tcpip - ok
11:12:40.0720 3024 [ A474879AFA4A596B3A531F3E69730DBF ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:12:40.0741 3024 Tcpip6 - ok
11:12:40.0809 3024 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:12:40.0820 3024 tcpipreg - ok
11:12:40.0925 3024 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:12:40.0958 3024 TDPIPE - ok
11:12:41.0020 3024 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:12:41.0042 3024 TDTCP - ok
11:12:41.0145 3024 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:12:41.0153 3024 tdx - ok
11:12:41.0178 3024 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:12:41.0186 3024 TermDD - ok
11:12:41.0376 3024 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:12:41.0410 3024 TermService - ok
11:12:41.0448 3024 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:12:41.0529 3024 Themes - ok
11:12:41.0548 3024 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:12:41.0573 3024 THREADORDER - ok
11:12:41.0649 3024 [ 07A91FEADC24C2EF4111637F9FC349BB ] tpcdrdrv C:\Windows\system32\DRIVERS\tpcdrdrv.sys
11:12:41.0661 3024 tpcdrdrv - ok
11:12:41.0766 3024 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:12:41.0809 3024 TrkWks - ok
11:12:41.0935 3024 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:12:41.0937 3024 TrustedInstaller - ok
11:12:42.0226 3024 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:12:42.0261 3024 tssecsrv - ok
11:12:42.0697 3024 [ EAF1C1C87294DD60260A53E68FBA5C7E ] TucbAudio C:\Windows\system32\drivers\TucbAudio.sys
11:12:42.0741 3024 TucbAudio - ok
11:12:42.0780 3024 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:12:42.0788 3024 tunmp - ok
11:12:42.0885 3024 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:12:42.0894 3024 tunnel - ok
11:12:42.0946 3024 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:12:42.0992 3024 uagp35 - ok
11:12:43.0125 3024 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:12:43.0154 3024 udfs - ok
11:12:43.0213 3024 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:12:43.0243 3024 UI0Detect - ok
11:12:43.0279 3024 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:12:43.0313 3024 uliagpkx - ok
11:12:43.0440 3024 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:12:43.0576 3024 uliahci - ok
11:12:43.0642 3024 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:12:43.0702 3024 UlSata - ok
11:12:43.0820 3024 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:12:43.0878 3024 ulsata2 - ok
11:12:43.0961 3024 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:12:43.0981 3024 umbus - ok
11:12:44.0321 3024 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
11:12:44.0546 3024 UMVPFSrv - ok
11:12:44.0668 3024 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:12:44.0725 3024 upnphost - ok
11:12:44.0789 3024 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
11:12:44.0886 3024 USBAAPL - ok
11:12:44.0975 3024 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:12:45.0140 3024 usbaudio - ok
11:12:45.0223 3024 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:12:45.0234 3024 usbccgp - ok
11:12:45.0335 3024 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
11:12:45.0443 3024 usbcir - ok
11:12:45.0530 3024 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:12:45.0538 3024 usbehci - ok
11:12:45.0602 3024 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:12:45.0612 3024 usbhub - ok
11:12:45.0642 3024 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:12:45.0651 3024 usbohci - ok
11:12:45.0679 3024 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:12:45.0692 3024 usbprint - ok
11:12:45.0747 3024 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:12:45.0756 3024 usbscan - ok
11:12:45.0817 3024 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:12:45.0826 3024 USBSTOR - ok
11:12:45.0878 3024 [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:12:45.0914 3024 usbuhci - ok
11:12:45.0990 3024 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:12:46.0042 3024 UxSms - ok
11:12:46.0133 3024 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:12:46.0209 3024 vds - ok
11:12:46.0266 3024 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:12:46.0284 3024 vga - ok
11:12:46.0337 3024 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:12:46.0347 3024 VgaSave - ok
11:12:46.0382 3024 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:12:46.0399 3024 viaagp - ok
11:12:46.0425 3024 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:12:46.0451 3024 ViaC7 - ok
11:12:46.0472 3024 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
11:12:46.0483 3024 viaide - ok
11:12:46.0574 3024 [ 5F974FDE801C73952770736BECDE11E7 ] Viewpoint Manager Service C:\Program Files\Viewpoint\Common\ViewpointService.exe
11:12:46.0612 3024 Viewpoint Manager Service - ok
11:12:46.0640 3024 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:12:46.0654 3024 volmgr - ok
11:12:46.0758 3024 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:12:46.0878 3024 volmgrx - ok
11:12:46.0931 3024 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:12:46.0961 3024 volsnap - ok
11:12:47.0019 3024 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:12:47.0057 3024 vsmraid - ok
11:12:47.0374 3024 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:12:47.0444 3024 VSS - ok
11:12:48.0048 3024 [ 3C296E30C519E2F71E47820D8F4DD1E7 ] VX6000 C:\Windows\system32\DRIVERS\VX6000Xp.sys
11:12:48.0690 3024 VX6000 - ok
11:12:48.0872 3024 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:12:48.0912 3024 W32Time - ok
11:12:48.0964 3024 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:12:48.0985 3024 WacomPen - ok
11:12:49.0107 3024 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:12:49.0117 3024 Wanarp - ok
11:12:49.0128 3024 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:12:49.0136 3024 Wanarpv6 - ok
11:12:49.0268 3024 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:12:49.0305 3024 wcncsvc - ok
11:12:49.0447 3024 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:12:49.0481 3024 WcsPlugInService - ok
11:12:49.0570 3024 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
11:12:49.0608 3024 Wd - ok
11:12:49.0633 3024 WDC_SAM - ok
11:12:49.0777 3024 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:12:50.0110 3024 Wdf01000 - ok
11:12:50.0217 3024 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:12:50.0254 3024 WdiServiceHost - ok
11:12:50.0265 3024 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:12:50.0301 3024 WdiSystemHost - ok
11:12:50.0403 3024 [ 0AAC22D28116E45B85E16021FD988A3A ] WD_FireWire_HID C:\Windows\system32\DRIVERS\wdfwhid.sys
11:12:50.0426 3024 WD_FireWire_HID - ok
11:12:50.0549 3024 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:12:50.0585 3024 WebClient - ok
11:12:51.0021 3024 [ 8DD3005ECF696E114A8EE43FFF6C35A9 ] WebrootSpySweeperService C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
11:12:51.0280 3024 WebrootSpySweeperService - ok
11:12:51.0338 3024 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:12:51.0382 3024 Wecsvc - ok
11:12:51.0432 3024 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:12:51.0470 3024 wercplsupport - ok
11:12:51.0539 3024 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:12:51.0578 3024 WerSvc - ok
11:12:51.0743 3024 [ 0869C31E0FF995BF00628AF8C1658E26 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
11:12:51.0753 3024 winachsf - ok
11:12:51.0884 3024 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:12:51.0901 3024 WinDefend - ok
11:12:51.0939 3024 WinHttpAutoProxySvc - ok
11:12:52.0730 3024 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:12:52.0737 3024 Winmgmt - ok
11:12:53.0228 3024 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:12:53.0482 3024 WinRM - ok
11:12:53.0786 3024 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:12:54.0060 3024 Wlansvc - ok
11:12:54.0557 3024 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:12:54.0579 3024 wlidsvc - ok
11:12:54.0662 3024 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:12:54.0697 3024 WmiAcpi - ok
11:12:54.0771 3024 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:12:54.0864 3024 wmiApSrv - ok
11:12:55.0256 3024 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:12:56.0106 3024 WMPNetworkSvc - ok
11:12:56.0228 3024 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:12:56.0352 3024 WPCSvc - ok
11:12:56.0448 3024 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:12:56.0553 3024 WPDBusEnum - ok
11:12:56.0672 3024 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:12:56.0761 3024 WpdUsb - ok
11:12:58.0501 3024 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:12:58.0718 3024 WPFFontCache_v0400 - ok
11:12:58.0750 3024 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:12:58.0762 3024 ws2ifsl - ok
11:12:58.0802 3024 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys
11:12:58.0830 3024 WsAudio_DeviceS(1) - ok
11:12:58.0878 3024 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys
11:12:58.0941 3024 WsAudio_DeviceS(2) - ok
11:12:58.0972 3024 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys
11:12:59.0009 3024 WsAudio_DeviceS(3) - ok
11:12:59.0055 3024 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys
11:12:59.0073 3024 WsAudio_DeviceS(4) - ok
11:12:59.0138 3024 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys
11:12:59.0177 3024 WsAudio_DeviceS(5) - ok
11:12:59.0218 3024 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
11:12:59.0256 3024 wscsvc - ok
11:12:59.0267 3024 WSearch - ok
11:12:59.0681 3024 [ 6298277B73C77FA99106B271A7525163 ] wuauserv C:\Windows\system32\wuaueng.dll
11:12:59.0753 3024 wuauserv - ok
11:12:59.0798 3024 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:12:59.0830 3024 WUDFRd - ok
11:12:59.0884 3024 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:12:59.0939 3024 wudfsvc - ok
11:13:00.0023 3024 [ BFCC507ECA58F11C5FED96E192B878CB ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
11:13:00.0159 3024 XAudio - ok
11:13:00.0166 3024 XAudioService - ok
11:13:00.0205 3024 ================ Scan global ===============================
11:13:00.0401 3024 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:13:00.0540 3024 [ 40864DA48A14EBC68A0D6BFD08BA21EB ] C:\Windows\system32\winsrv.dll
11:13:00.0799 3024 [ 40864DA48A14EBC68A0D6BFD08BA21EB ] C:\Windows\system32\winsrv.dll
11:13:00.0883 3024 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:13:00.0935 3024 [Global] - ok
11:13:00.0937 3024 ================ Scan MBR ==================================
11:13:00.0954 3024 [ 8913823FF508CCF109DB74B636C301DA ] \Device\Harddisk0\DR0
11:13:06.0464 3024 \Device\Harddisk0\DR0 - ok
11:13:06.0471 3024 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
11:13:06.0978 3024 \Device\Harddisk1\DR1 - ok
11:13:06.0981 3024 ================ Scan VBR ==================================
11:13:07.0002 3024 [ 0D6C7738F84B2F514ED9CD59F31CA4A6 ] \Device\Harddisk0\DR0\Partition1
11:13:07.0015 3024 \Device\Harddisk0\DR0\Partition1 - ok
11:13:07.0052 3024 [ 9AB8B4DC397F4F023BA06C8DD23D5DFE ] \Device\Harddisk0\DR0\Partition2
11:13:07.0079 3024 \Device\Harddisk0\DR0\Partition2 - ok
11:13:07.0110 3024 [ 2AF305C951E3A42661AAB8433E955502 ] \Device\Harddisk1\DR1\Partition1
11:13:07.0114 3024 \Device\Harddisk1\DR1\Partition1 - ok
11:13:07.0118 3024 ================ Scan active images ========================
11:13:07.0120 3024 [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys
11:13:07.0120 3024 C:\Windows\System32\drivers\crashdmp.sys - ok
11:13:07.0126 3024 [ 494075282E23D838F43A4C9FB7143959 ] C:\Windows\System32\drivers\Diskdump.sys
11:13:07.0126 3024 C:\Windows\System32\drivers\Diskdump.sys - ok
11:13:07.0131 3024 [ 7EBA6C9A0A295B1559EFB9062E701218 ] C:\Windows\System32\drivers\nvstor32.sys
11:13:07.0131 3024 C:\Windows\System32\drivers\nvstor32.sys - ok
11:13:07.0136 3024 [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys
11:13:07.0136 3024 C:\Windows\System32\drivers\tunnel.sys - ok
11:13:07.0140 3024 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] C:\Windows\System32\drivers\amdk8.sys
11:13:07.0140 3024 C:\Windows\System32\drivers\amdk8.sys - ok
11:13:07.0144 3024 [ CAECC0120AC49E3D2F758B9169872D38 ] C:\Windows\System32\drivers\TUNMP.SYS
11:13:07.0144 3024 C:\Windows\System32\drivers\TUNMP.SYS - ok
11:13:07.0151 3024 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] C:\Windows\System32\drivers\i8042prt.sys
11:13:07.0151 3024 C:\Windows\System32\drivers\i8042prt.sys - ok
11:13:07.0156 3024 [ 390C204CED3785609AB24E9C52054A84 ] C:\Windows\System32\drivers\PS2.sys
11:13:07.0156 3024 C:\Windows\System32\drivers\PS2.sys - ok
11:13:07.0162 3024 [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys
11:13:07.0162 3024 C:\Windows\System32\drivers\kbdclass.sys - ok
11:13:07.0173 3024 [ CE697FEE0D479290D89BEC80DFE793B7 ] C:\Windows\System32\drivers\usbohci.sys
11:13:07.0173 3024 C:\Windows\System32\drivers\usbohci.sys - ok
11:13:07.0178 3024 [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys
11:13:07.0178 3024 C:\Windows\System32\drivers\usbport.sys - ok
11:13:07.0188 3024 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys
11:13:07.0188 3024 C:\Windows\System32\drivers\usbehci.sys - ok
11:13:07.0192 3024 [ 1E289F978D1E6F11DB88D4FCB2F9D92F ] C:\Windows\System32\drivers\HSXHWBS2.sys
11:13:07.0192 3024 C:\Windows\System32\drivers\HSXHWBS2.sys - ok
11:13:07.0198 3024 [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys
11:13:07.0198 3024 C:\Windows\System32\drivers\ks.sys - ok
11:13:07.0202 3024 [ 78C88781FBD2FDD3BCBA09F58897FE45 ] C:\Windows\System32\drivers\HSX_DP.sys
11:13:07.0202 3024 C:\Windows\System32\drivers\HSX_DP.sys - ok
11:13:07.0208 3024 [ 0869C31E0FF995BF00628AF8C1658E26 ] C:\Windows\System32\drivers\HSX_CNXT.sys
11:13:07.0208 3024 C:\Windows\System32\drivers\HSX_CNXT.sys - ok
11:13:07.0212 3024 [ E13B5EA0F51BA5B1512EC671393D09BA ] C:\Windows\System32\drivers\modem.sys
11:13:07.0212 3024 C:\Windows\System32\drivers\modem.sys - ok
11:13:07.0217 3024 [ 0349BE02F329F4F48F1D48097FD65974 ] C:\Windows\System32\drivers\1394bus.sys
11:13:07.0217 3024 C:\Windows\System32\drivers\1394bus.sys - ok
11:13:07.0221 3024 [ 6F310E890D46E246E0E261A63D9B36B4 ] C:\Windows\System32\drivers\ohci1394.sys
11:13:07.0221 3024 C:\Windows\System32\drivers\ohci1394.sys - ok
11:13:07.0228 3024 [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys
11:13:07.0228 3024 C:\Windows\System32\drivers\hdaudbus.sys - ok
11:13:07.0232 3024 [ D958A2B5F6AD5C3B8CCDC4D7DA62466C ] C:\Windows\System32\drivers\nvmfdx32.sys
11:13:07.0232 3024 C:\Windows\System32\drivers\nvmfdx32.sys - ok
11:13:07.0237 3024 [ 1FC1EED3EA0C3A0ECF8A95B97E1B4831 ] C:\Windows\System32\drivers\dvd43llh.sys
11:13:07.0237 3024 C:\Windows\System32\drivers\dvd43llh.sys - ok
11:13:07.0242 3024 [ 444F122E68DB44C0589227781F3C8B3F ] C:\Windows\System32\drivers\pfc.sys
11:13:07.0242 3024 C:\Windows\System32\drivers\pfc.sys - ok
11:13:07.0248 3024 [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys
11:13:07.0248 3024 C:\Windows\System32\drivers\cdrom.sys - ok
11:13:07.0252 3024 [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys
11:13:07.0252 3024 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
11:13:07.0257 3024 [ E891B3979F0CF2740C1B073F834221FE ] C:\Windows\System32\drivers\nvlddmkm.sys
11:13:07.0257 3024 C:\Windows\System32\drivers\nvlddmkm.sys - ok
11:13:07.0261 3024 [ 71AE6F6463EC16B2B8B6B3A60C55C676 ] C:\Windows\System32\drivers\nvBridge.kmd
11:13:07.0261 3024 C:\Windows\System32\drivers\nvBridge.kmd - ok
11:13:07.0273 3024 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] C:\Windows\System32\drivers\dxgkrnl.sys
11:13:07.0273 3024 C:\Windows\System32\drivers\dxgkrnl.sys - ok
11:13:07.0277 3024 [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys
11:13:07.0277 3024 C:\Windows\System32\drivers\watchdog.sys - ok
11:13:07.0283 3024 [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys
11:13:07.0283 3024 C:\Windows\System32\drivers\msiscsi.sys - ok
11:13:07.0288 3024 [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys
11:13:07.0288 3024 C:\Windows\System32\drivers\rasl2tp.sys - ok
11:13:07.0294 3024 [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys
11:13:07.0294 3024 C:\Windows\System32\drivers\ndistapi.sys - ok
11:13:07.0298 3024 [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys
11:13:07.0298 3024 C:\Windows\System32\drivers\ndiswan.sys - ok
11:13:07.0303 3024 [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys
11:13:07.0303 3024 C:\Windows\System32\drivers\raspppoe.sys - ok
11:13:07.0309 3024 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys
11:13:07.0309 3024 C:\Windows\System32\drivers\raspptp.sys - ok
11:13:07.0316 3024 [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys
11:13:07.0316 3024 C:\Windows\System32\drivers\rassstp.sys - ok
11:13:07.0319 3024 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys
11:13:07.0319 3024 C:\Windows\System32\drivers\termdd.sys - ok
11:13:07.0324 3024 [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys
11:13:07.0324 3024 C:\Windows\System32\drivers\mouclass.sys - ok
11:13:07.0330 3024 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys
11:13:07.0330 3024 C:\Windows\System32\drivers\swenum.sys - ok
11:13:07.0334 3024 [ E5D4133F37219DBCFE102BC61072589D ] C:\Windows\System32\drivers\circlass.sys
11:13:07.0334 3024 C:\Windows\System32\drivers\circlass.sys - ok
11:13:07.0343 3024 [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys
11:13:07.0343 3024 C:\Windows\System32\drivers\mssmbios.sys - ok
11:13:07.0349 3024 [ FB38473835476A6FB272215A1D972AF9 ] C:\Windows\System32\drivers\dtsoftbus01.sys
11:13:07.0350 3024 C:\Windows\System32\drivers\dtsoftbus01.sys - ok
11:13:07.0355 3024 [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys
11:13:07.0356 3024 C:\Windows\System32\drivers\umbus.sys - ok
11:13:07.0360 3024 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys
11:13:07.0360 3024 C:\Windows\System32\drivers\usbhub.sys - ok
11:13:07.0365 3024 [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys
11:13:07.0365 3024 C:\Windows\System32\drivers\ndproxy.sys - ok
11:13:07.0369 3024 [ 23F8EF78BB9553E465A476F3CEE5CA18 ] C:\Windows\System32\drivers\LVUSBSta.sys
11:13:07.0370 3024 C:\Windows\System32\drivers\LVUSBSta.sys - ok
11:13:07.0375 3024 [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys
11:13:07.0382 3024 C:\Windows\System32\drivers\usbd.sys - ok
11:13:07.0389 3024 [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys
11:13:07.0389 3024 C:\Windows\System32\drivers\drmk.sys - ok
11:13:07.0393 3024 [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys
11:13:07.0393 3024 C:\Windows\System32\drivers\portcls.sys - ok
11:13:07.0395 3024 [ D4394A481B845CC1DF361A85751C071A ] C:\Windows\System32\drivers\RTKVHDA.sys
11:13:07.0395 3024 C:\Windows\System32\drivers\RTKVHDA.sys - ok
11:13:07.0400 3024 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] C:\Windows\System32\drivers\aswSnx.sys
11:13:07.0400 3024 C:\Windows\System32\drivers\aswSnx.sys - ok
11:13:07.0404 3024 [ 65EA8B77B5851854F0C55C43FA51A198 ] C:\Windows\System32\drivers\fs_rec.sys
11:13:07.0404 3024 C:\Windows\System32\drivers\fs_rec.sys - ok
11:13:07.0408 3024 [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys
11:13:07.0408 3024 C:\Windows\System32\drivers\null.sys - ok
11:13:07.0412 3024 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys
11:13:07.0412 3024 C:\Windows\System32\drivers\beep.sys - ok
11:13:07.0419 3024 [ 175444D3A01CA45D0E1C5DC5F48DF7CD ] C:\Windows\System32\drivers\hidparse.sys
11:13:07.0419 3024 C:\Windows\System32\drivers\hidparse.sys - ok
11:13:07.0422 3024 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] C:\Windows\System32\drivers\kbdhid.sys
11:13:07.0422 3024 C:\Windows\System32\drivers\kbdhid.sys - ok
11:13:07.0427 3024 [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys
11:13:07.0427 3024 C:\Windows\System32\drivers\vga.sys - ok
11:13:07.0433 3024 [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys
11:13:07.0433 3024 C:\Windows\System32\drivers\videoprt.sys - ok
11:13:07.0438 3024 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys
11:13:07.0438 3024 C:\Windows\System32\drivers\RDPCDD.sys - ok
11:13:07.0441 3024 [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys
11:13:07.0441 3024 C:\Windows\System32\drivers\RDPENCDD.sys - ok
11:13:07.0446 3024 [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys
11:13:07.0446 3024 C:\Windows\System32\drivers\msfs.sys - ok
11:13:07.0455 3024 [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys
11:13:07.0455 3024 C:\Windows\System32\drivers\npfs.sys - ok
11:13:07.0462 3024 [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys
11:13:07.0462 3024 C:\Windows\System32\drivers\rasacd.sys - ok
11:13:07.0468 3024 [ E3E73B2B73A4DFADFDDF557192C4B08A ] C:\Windows\System32\drivers\aswTdi.sys
11:13:07.0468 3024 C:\Windows\System32\drivers\aswTdi.sys - ok
11:13:07.0473 3024 [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys
11:13:07.0473 3024 C:\Windows\System32\drivers\tdx.sys - ok
11:13:07.0478 3024 [ CAF811AE4C147FFCD5B51750C7F09142 ] C:\Windows\System32\drivers\usbccgp.sys
11:13:07.0478 3024 C:\Windows\System32\drivers\usbccgp.sys - ok
11:13:07.0483 3024 [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys
11:13:07.0483 3024 C:\Windows\System32\drivers\smb.sys - ok
11:13:07.0488 3024 [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys
11:13:07.0488 3024 C:\Windows\System32\drivers\afd.sys - ok
11:13:07.0493 3024 [ 5961CADB7CAD938368D2028725EF771D ] C:\Windows\System32\drivers\hidclass.sys
11:13:07.0493 3024 C:\Windows\System32\drivers\hidclass.sys - ok
11:13:07.0498 3024 [ CCA4B519B17E23A00B826C55716809CC ] C:\Windows\System32\drivers\hidusb.sys
11:13:07.0498 3024 C:\Windows\System32\drivers\hidusb.sys - ok
11:13:07.0503 3024 [ 7C9F0A2AB17D52261A9252A2EB320884 ] C:\Windows\System32\drivers\aswRdr.sys
11:13:07.0503 3024 C:\Windows\System32\drivers\aswRdr.sys - ok
11:13:07.0511 3024 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys
11:13:07.0511 3024 C:\Windows\System32\drivers\netbt.sys - ok
11:13:07.0515 3024 [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys
11:13:07.0515 3024 C:\Windows\System32\drivers\pacer.sys - ok
11:13:07.0521 3024 [ E3A3CB253C0EC2494D4A61F5E43A389C ] C:\Windows\System32\drivers\ws2ifsl.sys
11:13:07.0521 3024 C:\Windows\System32\drivers\ws2ifsl.sys - ok
11:13:07.0526 3024 [ 93B8D4869E12CFBE663915502900876F ] C:\Windows\System32\drivers\mouhid.sys
11:13:07.0526 3024 C:\Windows\System32\drivers\mouhid.sys - ok
11:13:07.0530 3024 [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys
11:13:07.0530 3024 C:\Windows\System32\drivers\netbios.sys - ok
11:13:07.0535 3024 [ 306521935042FC0A6988D528643619B3 ] C:\Windows\System32\drivers\StarOpen.sys
11:13:07.0535 3024 C:\Windows\System32\drivers\StarOpen.sys - ok
11:13:07.0541 3024 [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys
11:13:07.0541 3024 C:\Windows\System32\drivers\wanarp.sys - ok
11:13:07.0545 3024 [ 77B9FC20084B48408AD3E87570EB4A85 ] C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:13:07.0545 3024 C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS - ok
11:13:07.0552 3024 [ 39763504067962108505BFF25F024345 ] C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:13:07.0552 3024 C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS - ok
11:13:07.0558 3024 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys
11:13:07.0558 3024 C:\Windows\System32\drivers\rdbss.sys - ok
11:13:07.0563 3024 [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys
11:13:07.0563 3024 C:\Windows\System32\drivers\nsiproxy.sys - ok
11:13:07.0569 3024 [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys
11:13:07.0570 3024 C:\Windows\System32\drivers\dfsc.sys - ok
11:13:07.0575 3024 [ 67B558895695545FB0568B7541F3BCA7 ] C:\Windows\System32\drivers\aswSP.sys
11:13:07.0575 3024 C:\Windows\System32\drivers\aswSP.sys - ok
11:13:07.0583 3024 [ 54AB078660E536DA72B21A27F56B035B ] C:\Windows\System32\drivers\aspi32.sys
11:13:07.0583 3024 C:\Windows\System32\drivers\aspi32.sys - ok
11:13:07.0588 3024 [ BE3DA31C191BC222D9AD503C5224F2AD ] C:\Windows\System32\drivers\USBSTOR.SYS
11:13:07.0588 3024 C:\Windows\System32\drivers\USBSTOR.SYS - ok
11:13:07.0592 3024 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] C:\Windows\System32\drivers\usbprint.sys
11:13:07.0592 3024 C:\Windows\System32\drivers\usbprint.sys - ok
11:13:07.0599 3024 [ A508C9BD8724980512136B039BBA65E9 ] C:\Windows\System32\drivers\usbscan.sys
11:13:07.0599 3024 C:\Windows\System32\drivers\usbscan.sys - ok
11:13:07.0602 3024 [ 708FB84003732E220C23CDF207F5A329 ] C:\Windows\System32\ntdll.dll
11:13:07.0602 3024 C:\Windows\System32\ntdll.dll - ok
11:13:07.0609 3024 [ 98AF15A94CD6AC37248E72E5FE789B35 ] C:\Windows\System32\smss.exe
11:13:07.0609 3024 C:\Windows\System32\smss.exe - ok
11:13:07.0612 3024 [ 10761177A6EBE45843F443E99509F5E7 ] C:\Windows\System32\autochk.exe
11:13:07.0612 3024 C:\Windows\System32\autochk.exe - ok
11:13:07.0619 3024 [ 58D6C5775290D5ABE5F0CC325F1DFA6D ] C:\Windows\System32\SsiEfr.exe
11:13:07.0619 3024 C:\Windows\System32\SsiEfr.exe - ok
11:13:07.0624 3024 [ 7ADD03E75BEB9E6DD102C3081D29840A ] C:\Windows\System32\drivers\cdfs.sys
11:13:07.0624 3024 C:\Windows\System32\drivers\cdfs.sys - ok
11:13:07.0631 3024 [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll
11:13:07.0631 3024 C:\Windows\System32\user32.dll - ok
11:13:07.0639 3024 [ 8C55A6333DAFAB88E44C040C55179274 ] C:\Windows\System32\imagehlp.dll
11:13:07.0639 3024 C:\Windows\System32\imagehlp.dll - ok
11:13:07.0643 3024 [ D3F60BC53FF510B88B9ACBC3F64FE922 ] C:\Windows\System32\iertutil.dll
11:13:07.0643 3024 C:\Windows\System32\iertutil.dll - ok
11:13:07.0649 3024 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll
11:13:07.0649 3024 C:\Windows\System32\ole32.dll - ok
11:13:07.0652 3024 [ 9176285122B7B849FEC2AA1B72A8F7A8 ] C:\Windows\System32\shlwapi.dll
11:13:07.0652 3024 C:\Windows\System32\shlwapi.dll - ok
11:13:07.0659 3024 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll
11:13:07.0659 3024 C:\Windows\System32\Wldap32.dll - ok
11:13:07.0664 3024 [ BB8509089E7DF514310814E1B2593FFC ] C:\Windows\System32\kernel32.dll
11:13:07.0664 3024 C:\Windows\System32\kernel32.dll - ok
11:13:07.0669 3024 [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll
11:13:07.0669 3024 C:\Windows\System32\gdi32.dll - ok
11:13:07.0675 3024 [ F5E991236960137B1F5449C5E5DF4656 ] C:\Windows\System32\msvcrt.dll
11:13:07.0675 3024 C:\Windows\System32\msvcrt.dll - ok
11:13:07.0681 3024 [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll
11:13:07.0681 3024 C:\Windows\System32\imm32.dll - ok
11:13:07.0686 3024 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll
11:13:07.0686 3024 C:\Windows\System32\ws2_32.dll - ok
11:13:07.0692 3024 [ AA5F4683A0C3C40D90377AA238A6F1B7 ] C:\Windows\System32\urlmon.dll
11:13:07.0692 3024 C:\Windows\System32\urlmon.dll - ok
11:13:07.0699 3024 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll
11:13:07.0699 3024 C:\Windows\System32\advapi32.dll - ok
11:13:07.0705 3024 [ 33AE914C24F546AABF281BA7B138186D ] C:\Windows\System32\shell32.dll
11:13:07.0705 3024 C:\Windows\System32\shell32.dll - ok
11:13:07.0710 3024 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll
11:13:07.0710 3024 C:\Windows\System32\clbcatq.dll - ok
11:13:07.0715 3024 [ A1236375B74EA63C75657D564890C436 ] C:\Windows\System32\wininet.dll
11:13:07.0715 3024 C:\Windows\System32\wininet.dll - ok
11:13:07.0720 3024 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll
11:13:07.0720 3024 C:\Windows\System32\comdlg32.dll - ok
11:13:07.0725 3024 [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll
11:13:07.0725 3024 C:\Windows\System32\lpk.dll - ok
11:13:07.0732 3024 [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll
11:13:07.0732 3024 C:\Windows\System32\rpcrt4.dll - ok
11:13:07.0736 3024 [ DE4CD76C254E143F40E62952788D3BE7 ] C:\Windows\System32\oleaut32.dll
11:13:07.0736 3024 C:\Windows\System32\oleaut32.dll - ok
11:13:07.0743 3024 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll
11:13:07.0743 3024 C:\Windows\System32\msctf.dll - ok
11:13:07.0748 3024 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll
11:13:07.0748 3024 C:\Windows\System32\setupapi.dll - ok
11:13:07.0754 3024 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll
11:13:07.0754 3024 C:\Windows\System32\nsi.dll - ok
11:13:07.0759 3024 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll
11:13:07.0760 3024 C:\Windows\System32\usp10.dll - ok
11:13:07.0765 3024 [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll
11:13:07.0765 3024 C:\Windows\System32\comctl32.dll - ok
11:13:07.0768 3024 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll
11:13:07.0768 3024 C:\Windows\System32\normaliz.dll - ok
11:13:07.0772 3024 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll
11:13:07.0772 3024 C:\Windows\System32\psapi.dll - ok
11:13:07.0776 3024 [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys
11:13:07.0776 3024 C:\Windows\System32\drivers\dxapi.sys - ok
11:13:07.0782 3024 [ BE9AC15503AD65C35D9EF649539C4E3F ] C:\Windows\System32\win32k.sys
11:13:07.0783 3024 C:\Windows\System32\win32k.sys - ok
11:13:07.0785 3024 [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe
11:13:07.0785 3024 C:\Windows\System32\csrss.exe - ok
11:13:07.0789 3024 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll
11:13:07.0789 3024 C:\Windows\System32\basesrv.dll - ok
11:13:07.0795 3024 [ 7F55C714567E2E55C79B7FD33433C93D ] C:\Windows\System32\csrsrv.dll
11:13:07.0795 3024 C:\Windows\System32\csrsrv.dll - ok
11:13:07.0800 3024 [ 40864DA48A14EBC68A0D6BFD08BA21EB ] C:\Windows\System32\winsrv.dll
11:13:07.0800 3024 C:\Windows\System32\winsrv.dll - ok
11:13:07.0805 3024 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys
11:13:07.0806 3024 C:\Windows\System32\drivers\monitor.sys - ok
11:13:07.0811 3024 [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll
11:13:07.0811 3024 C:\Windows\System32\tsddd.dll - ok
11:13:07.0816 3024 [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe
11:13:07.0816 3024 C:\Windows\System32\wininit.exe - ok
11:13:07.0821 3024 [ C325DDFBDB15E8ABFFF532D6D25FD4E3 ] C:\Windows\System32\secur32.dll
11:13:07.0821 3024 C:\Windows\System32\secur32.dll - ok
11:13:07.0826 3024 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll
11:13:07.0826 3024 C:\Windows\System32\userenv.dll - ok
11:13:07.0831 3024 [ 12C8D6C564702B0776512932290A3F6B ] C:\Windows\System32\KBDUS.DLL
11:13:07.0831 3024 C:\Windows\System32\KBDUS.DLL - ok
11:13:07.0836 3024 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll
11:13:07.0836 3024 C:\Windows\System32\apphelp.dll - ok
11:13:07.0839 3024 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\services.exe
11:13:07.0839 3024 C:\Windows\System32\services.exe - ok
11:13:07.0844 3024 [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll
11:13:07.0844 3024 C:\Windows\System32\WlS0WndH.dll - ok
11:13:07.0849 3024 [ CF9F5BBC2740C41DD471278C41B91F5F ] C:\Windows\System32\cdd.dll
11:13:07.0849 3024 C:\Windows\System32\cdd.dll - ok
11:13:07.0852 3024 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll
11:13:07.0853 3024 C:\Windows\System32\sxs.dll - ok
11:13:07.0856 3024 [ 3978F3540329E16C0AC3BCF677E5669F ] C:\Windows\System32\lsass.exe
11:13:07.0857 3024 C:\Windows\System32\lsass.exe - ok
11:13:07.0860 3024 [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll
11:13:07.0860 3024 C:\Windows\System32\scesrv.dll - ok
11:13:07.0865 3024 [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll
11:13:07.0865 3024 C:\Windows\System32\authz.dll - ok
11:13:07.0871 3024 [ C94108296530A097B2E1E18C101E4703 ] C:\Windows\System32\netapi32.dll
11:13:07.0871 3024 C:\Windows\System32\netapi32.dll - ok
11:13:07.0874 3024 [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe
11:13:07.0874 3024 C:\Windows\System32\lsm.exe - ok
11:13:07.0880 3024 [ 306AD1920492A43FC14CC3579C404D3F ] C:\Windows\System32\lsasrv.dll
11:13:07.0880 3024 C:\Windows\System32\lsasrv.dll - ok
11:13:07.0883 3024 [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll
11:13:07.0883 3024 C:\Windows\System32\ncobjapi.dll - ok
11:13:07.0887 3024 [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll
11:13:07.0887 3024 C:\Windows\System32\sysntfy.dll - ok
11:13:07.0892 3024 [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll
11:13:07.0892 3024 C:\Windows\System32\wmsgapi.dll - ok
11:13:07.0896 3024 [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll
11:13:07.0896 3024 C:\Windows\System32\samsrv.dll - ok
11:13:07.0900 3024 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll
11:13:07.0900 3024 C:\Windows\System32\cryptdll.dll - ok
11:13:07.0904 3024 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll
11:13:07.0904 3024 C:\Windows\System32\dnsapi.dll - ok
11:13:07.0911 3024 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll
11:13:07.0911 3024 C:\Windows\System32\msasn1.dll - ok
11:13:07.0917 3024 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll
11:13:07.0917 3024 C:\Windows\System32\samlib.dll - ok
11:13:07.0919 3024 [ 6659EC6006FD99A3AF1B8A6306F8BE3C ] C:\Windows\System32\crypt32.dll
11:13:07.0920 3024 C:\Windows\System32\crypt32.dll - ok
11:13:07.0924 3024 [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll
11:13:07.0924 3024 C:\Windows\System32\feclient.dll - ok
11:13:07.0929 3024 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll
11:13:07.0929 3024 C:\Windows\System32\mpr.dll - ok
11:13:07.0934 3024 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll
11:13:07.0934 3024 C:\Windows\System32\ntdsapi.dll - ok
11:13:07.0938 3024 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll
11:13:07.0938 3024 C:\Windows\System32\SLC.dll - ok
11:13:07.0943 3024 [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll
11:13:07.0943 3024 C:\Windows\System32\wevtapi.dll - ok
11:13:07.0946 3024 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll
11:13:07.0947 3024 C:\Windows\System32\dhcpcsvc.dll - ok
11:13:07.0951 3024 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL
11:13:07.0951 3024 C:\Windows\System32\IPHLPAPI.DLL - ok
11:13:07.0955 3024 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll
11:13:08.0006 3024 C:\Windows\System32\dhcpcsvc6.dll - ok
11:13:08.0010 3024 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll
11:13:08.0010 3024 C:\Windows\System32\winnsi.dll - ok
11:13:08.0016 3024 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] C:\Windows\System32\aelupsvc.dll
11:13:08.0016 3024 C:\Windows\System32\aelupsvc.dll - ok
11:13:08.0021 3024 [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe
11:13:08.0021 3024 C:\Windows\System32\alg.exe - ok
11:13:08.0024 3024 [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll
11:13:08.0024 3024 C:\Windows\System32\cngaudit.dll - ok
11:13:08.0028 3024 [ A57260867734FB1F68241ECA3D589F76 ] C:\Windows\System32\ncrypt.dll
11:13:08.0028 3024 C:\Windows\System32\ncrypt.dll - ok
11:13:08.0032 3024 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll
11:13:08.0032 3024 C:\Windows\System32\appinfo.dll - ok
11:13:08.0036 3024 [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll
11:13:08.0036 3024 C:\Windows\System32\bcrypt.dll - ok
11:13:08.0040 3024 [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll
11:13:08.0040 3024 C:\Windows\System32\audiosrv.dll - ok
11:13:08.0044 3024 [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL
11:13:08.0044 3024 C:\Windows\System32\BFE.DLL - ok
11:13:08.0048 3024 [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll
11:13:08.0048 3024 C:\Windows\System32\qmgr.dll - ok
11:13:08.0055 3024 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll
11:13:08.0055 3024 C:\Windows\System32\credssp.dll - ok
11:13:08.0058 3024 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll
11:13:08.0058 3024 C:\Windows\System32\browser.dll - ok
11:13:08.0064 3024 [ A4C8377FA4A994E07075107DBE2E3DCE ] C:\Windows\System32\bthserv.dll
11:13:08.0064 3024 C:\Windows\System32\bthserv.dll - ok
11:13:08.0070 3024 [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll
11:13:08.0070 3024 C:\Windows\System32\msprivs.dll - ok
11:13:08.0076 3024 [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe
11:13:08.0076 3024 C:\Windows\System32\winlogon.exe - ok
11:13:08.0078 3024 [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll
11:13:08.0078 3024 C:\Windows\System32\certprop.dll - ok
11:13:08.0083 3024 [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll
11:13:08.0084 3024 C:\Windows\System32\comres.dll - ok
11:13:08.0088 3024 [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll
11:13:08.0088 3024 C:\Windows\System32\kerberos.dll - ok
11:13:08.0092 3024 [ FB27772BEAF8E1D28CCD825C09DA939B ] C:\Windows\System32\cryptsvc.dll
11:13:08.0092 3024 C:\Windows\System32\cryptsvc.dll - ok
11:13:08.0096 3024 [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll
11:13:08.0096 3024 C:\Windows\System32\oleres.dll - ok
11:13:08.0104 3024 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL
11:13:08.0104 3024 C:\Windows\System32\WSHTCPIP.DLL - ok
11:13:08.0109 3024 [ 74F380C8EC8813626C670D46E8A714D1 ] C:\Windows\System32\dfsrres.dll
11:13:08.0109 3024 C:\Windows\System32\dfsrres.dll - ok
11:13:08.0113 3024 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll
11:13:08.0113 3024 C:\Windows\System32\winsta.dll - ok
11:13:08.0116 3024 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll
11:13:08.0116 3024 C:\Windows\System32\dot3svc.dll - ok
11:13:08.0124 3024 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll
11:13:08.0124 3024 C:\Windows\System32\dps.dll - ok
11:13:08.0129 3024 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll
11:13:08.0129 3024 C:\Windows\System32\wship6.dll - ok
11:13:08.0132 3024 [ 9BE3744D295A7701EB425332014F0797 ] C:\Windows\ehome\ehrecvr.exe
11:13:08.0132 3024 C:\Windows\ehome\ehrecvr.exe - ok
11:13:08.0136 3024 [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll
11:13:08.0136 3024 C:\Windows\System32\eapsvc.dll - ok
11:13:08.0140 3024 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll
11:13:08.0140 3024 C:\Windows\System32\wshqos.dll - ok
11:13:08.0147 3024 [ AD1870C8E5D6DD340C829E6074BF3C3F ] C:\Windows\ehome\ehsched.exe
11:13:08.0147 3024 C:\Windows\ehome\ehsched.exe - ok
11:13:08.0152 3024 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] C:\Windows\ehome\ehstart.dll
11:13:08.0152 3024 C:\Windows\ehome\ehstart.dll - ok
11:13:08.0157 3024 [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll
11:13:08.0157 3024 C:\Windows\System32\emdmgmt.dll - ok
11:13:08.0163 3024 [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll
11:13:08.0163 3024 C:\Windows\System32\wevtsvc.dll - ok
11:13:08.0167 3024 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] C:\Windows\System32\fdPHost.dll
11:13:08.0167 3024 C:\Windows\System32\fdPHost.dll - ok
11:13:08.0171 3024 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] C:\Windows\System32\FDResPub.dll
11:13:08.0171 3024 C:\Windows\System32\FDResPub.dll - ok
11:13:08.0178 3024 [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll
11:13:08.0178 3024 C:\Windows\System32\FntCache.dll - ok
11:13:08.0181 3024 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll
11:13:08.0181 3024 C:\Windows\System32\pnrpnsp.dll - ok
11:13:08.0186 3024 [ 302964DCAC79D618CC7B72C778DA9FD2 ] C:\Windows\System32\PresentationHost.exe
11:13:08.0186 3024 C:\Windows\System32\PresentationHost.exe - ok
11:13:08.0190 3024 [ B44A7AC9E801C38F54F7340351313E85 ] C:\Windows\System32\atmfd.dll
11:13:08.0190 3024 C:\Windows\System32\atmfd.dll - ok
11:13:08.0194 3024 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll
11:13:08.0194 3024 C:\Windows\System32\gpapi.dll - ok
11:13:08.0198 3024 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll
11:13:08.0198 3024 C:\Windows\System32\nlasvc.dll - ok
11:13:08.0203 3024 [ 84067081F3318162797385E11A8F0582 ] C:\Windows\System32\hidserv.dll
11:13:08.0203 3024 C:\Windows\System32\hidserv.dll - ok
11:13:08.0208 3024 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll
11:13:08.0208 3024 C:\Windows\System32\NapiNSP.dll - ok
11:13:08.0214 3024 [ D8AD255B37DA92434C26E4876DB7D418 ] C:\Windows\System32\KMSVC.DLL
11:13:08.0214 3024 C:\Windows\System32\KMSVC.DLL - ok
11:13:08.0217 3024 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll
11:13:08.0217 3024 C:\Windows\System32\mswsock.dll - ok
11:13:08.0222 3024 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll
11:13:08.0222 3024 C:\Windows\System32\msv1_0.dll - ok
11:13:08.0226 3024 [ 05586F5438AB0DA4F5149159E0E5FD4B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
11:13:08.0226 3024 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
11:13:08.0232 3024 [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll
11:13:08.0232 3024 C:\Windows\System32\netlogon.dll - ok
11:13:08.0238 3024 [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL
11:13:08.0238 3024 C:\Windows\System32\IKEEXT.DLL - ok
11:13:08.0241 3024 [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll
11:13:08.0241 3024 C:\Windows\System32\winbrand.dll - ok
11:13:08.0251 3024 [ 9AC218C6E6105477484C6FDBE7D409A4 ] C:\Windows\System32\IPBusEnum.dll
11:13:08.0251 3024 C:\Windows\System32\IPBusEnum.dll - ok
11:13:08.0254 3024 [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll
11:13:08.0254 3024 C:\Windows\System32\rascfg.dll - ok
11:13:08.0259 3024 [ 1998BD97F950680BB55F55A7244679C2 ] C:\Windows\System32\iphlpsvc.dll
11:13:08.0259 3024 C:\Windows\System32\iphlpsvc.dll - ok
11:13:08.0264 3024 [ F6A242BC0136506EC5BE3605763ACD0B ] C:\Windows\System32\schannel.dll
11:13:08.0264 3024 C:\Windows\System32\schannel.dll - ok
11:13:08.0269 3024 [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll
11:13:08.0269 3024 C:\Windows\System32\wdigest.dll - ok
11:13:08.0275 3024 [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll
11:13:08.0275 3024 C:\Windows\System32\keyiso.dll - ok
11:13:08.0279 3024 [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll
11:13:08.0279 3024 C:\Windows\System32\srvsvc.dll - ok
11:13:08.0286 3024 [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll
11:13:08.0286 3024 C:\Windows\System32\wkssvc.dll - ok
11:13:08.0291 3024 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll
11:13:08.0291 3024 C:\Windows\System32\rsaenh.dll - ok
11:13:08.0296 3024 [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll
11:13:08.0297 3024 C:\Windows\System32\TSpkg.dll - ok
11:13:08.0301 3024 [ FA0593D936C9B95FB6FAA32AD1595D49 ] C:\Windows\System32\lltdres.dll
11:13:08.0301 3024 C:\Windows\System32\lltdres.dll - ok
11:13:08.0309 3024 [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll
11:13:08.0309 3024 C:\Windows\System32\lmhsvc.dll - ok
11:13:08.0317 3024 [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll
11:13:08.0317 3024 C:\Windows\ehome\ehres.dll - ok
11:13:08.0322 3024 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll
11:13:08.0322 3024 C:\Windows\System32\mmcss.dll - ok
11:13:08.0328 3024 [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll
11:13:08.0328 3024 C:\Windows\System32\FirewallAPI.dll - ok
11:13:08.0333 3024 [ EA822412BBBA9B7D2B1A3748AD50EFB8 ] C:\Windows\System32\iscsidsc.dll
11:13:08.0333 3024 C:\Windows\System32\iscsidsc.dll - ok
11:13:08.0340 3024 [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll
11:13:08.0340 3024 C:\Windows\System32\msimsg.dll - ok
11:13:08.0347 3024 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL
11:13:08.0347 3024 C:\Windows\System32\QAGENTRT.DLL - ok
11:13:08.0354 3024 [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll
11:13:08.0354 3024 C:\Windows\System32\netman.dll - ok
11:13:08.0359 3024 [ 4EF5DF1B011B05737ECB8F0B7B171510 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll
11:13:08.0359 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll - ok
11:13:08.0364 3024 [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll
11:13:08.0365 3024 C:\Windows\System32\netprof.dll - ok
11:13:08.0369 3024 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll
11:13:08.0369 3024 C:\Windows\System32\nsisvc.dll - ok
11:13:08.0373 3024 [ 0C8E8E61AD1EB0B250B846712C917506 ] C:\Windows\System32\p2psvc.dll
11:13:08.0374 3024 C:\Windows\System32\p2psvc.dll - ok
11:13:08.0384 3024 [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll
11:13:08.0384 3024 C:\Windows\System32\pcasvc.dll - ok
11:13:08.0387 3024 [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll
11:13:08.0387 3024 C:\Windows\System32\pla.dll - ok
11:13:08.0391 3024 [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll
11:13:08.0391 3024 C:\Windows\System32\umpnpmgr.dll - ok
11:13:08.0398 3024 [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll
11:13:08.0398 3024 C:\Windows\System32\polstore.dll - ok
11:13:08.0404 3024 [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll
11:13:08.0404 3024 C:\Windows\System32\profsvc.dll - ok
11:13:08.0410 3024 [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll
11:13:08.0410 3024 C:\Windows\System32\psbase.dll - ok
11:13:08.0413 3024 [ E9ECAE663F47E6CB43962D18AB18890F ] C:\Windows\System32\qwave.dll
11:13:08.0413 3024 C:\Windows\System32\qwave.dll - ok
11:13:08.0417 3024 [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys
11:13:08.0417 3024 C:\Windows\System32\drivers\qwavedrv.sys - ok
11:13:08.0422 3024 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll
11:13:08.0422 3024 C:\Windows\System32\rasauto.dll - ok
11:13:08.0426 3024 [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll
11:13:08.0426 3024 C:\Windows\System32\rasmans.dll - ok
11:13:08.0433 3024 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll
11:13:08.0433 3024 C:\Windows\System32\sstpsvc.dll - ok
11:13:08.0435 3024 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll
11:13:08.0435 3024 C:\Windows\System32\mprdim.dll - ok
11:13:08.0440 3024 [ 5123F83CBC4349D065534EEB6BBDC42B ] C:\Windows\System32\Locator.exe
11:13:08.0440 3024 C:\Windows\System32\Locator.exe - ok
11:13:08.0444 3024 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] C:\Windows\System32\regsvc.dll
11:13:08.0444 3024 C:\Windows\System32\regsvc.dll - ok
11:13:08.0451 3024 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll
11:13:08.0451 3024 C:\Windows\System32\SCardSvr.dll - ok
11:13:08.0454 3024 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll
11:13:08.0454 3024 C:\Windows\System32\schedsvc.dll - ok
11:13:08.0458 3024 [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll
11:13:08.0458 3024 C:\Windows\System32\sdrsvc.dll - ok
11:13:08.0462 3024 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll
11:13:08.0462 3024 C:\Windows\System32\seclogon.dll - ok
11:13:08.0466 3024 [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll
11:13:08.0466 3024 C:\Windows\System32\Sens.dll - ok
11:13:08.0470 3024 [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll
11:13:08.0470 3024 C:\Windows\System32\SessEnv.dll - ok
11:13:08.0474 3024 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] C:\Windows\System32\ipnathlp.dll
11:13:08.0474 3024 C:\Windows\System32\ipnathlp.dll - ok
11:13:08.0478 3024 [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll
11:13:08.0478 3024 C:\Windows\System32\shsvcs.dll - ok
11:13:08.0485 3024 [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe
11:13:08.0485 3024 C:\Windows\System32\SLsvc.exe - ok
11:13:08.0489 3024 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll
11:13:08.0489 3024 C:\Windows\System32\SLUINotify.dll - ok
11:13:08.0492 3024 [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe
11:13:08.0492 3024 C:\Windows\System32\snmptrap.exe - ok
11:13:08.0496 3024 [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll
11:13:08.0496 3024 C:\Windows\System32\tcpipcfg.dll - ok
11:13:08.0503 3024 [ 8554097E5136C3BF9F69FE578A1B35F4 ] C:\Windows\System32\spoolsv.exe
11:13:08.0503 3024 C:\Windows\System32\spoolsv.exe - ok
11:13:08.0507 3024 [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll
11:13:08.0507 3024 C:\Windows\System32\ssdpsrv.dll - ok
11:13:08.0510 3024 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll
11:13:08.0510 3024 C:\Windows\System32\wiaservc.dll - ok
11:13:08.0517 3024 [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll
11:13:08.0517 3024 C:\Windows\System32\sysmain.dll - ok
11:13:08.0521 3024 [ 2DCA225EAE15F42C0933E998EE0231C3 ] C:\Windows\System32\TabSvc.dll
11:13:08.0521 3024 C:\Windows\System32\TabSvc.dll - ok
11:13:08.0525 3024 [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll
11:13:08.0525 3024 C:\Windows\System32\tapisrv.dll - ok
11:13:08.0529 3024 [ CB05822CD9CC6C688168E113C603DBE7 ] C:\Windows\System32\tbssvc.dll
11:13:08.0529 3024 C:\Windows\System32\tbssvc.dll - ok
11:13:08.0533 3024 [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll
11:13:08.0533 3024 C:\Windows\System32\termsrv.dll - ok
11:13:08.0538 3024 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] C:\Windows\System32\trkwks.dll
11:13:08.0538 3024 C:\Windows\System32\trkwks.dll - ok
11:13:08.0542 3024 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe
11:13:08.0542 3024 C:\Windows\servicing\TrustedInstaller.exe - ok
11:13:08.0546 3024 [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe
11:13:08.0546 3024 C:\Windows\System32\UI0Detect.exe - ok
11:13:08.0551 3024 [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll
11:13:08.0551 3024 C:\Windows\System32\upnphost.dll - ok
11:13:08.0558 3024 [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe
11:13:08.0558 3024 C:\Windows\System32\dwm.exe - ok
11:13:08.0565 3024 [ CD88D1B7776DC17A119049742EC07EB4 ] C:\Windows\System32\vds.exe
11:13:08.0565 3024 C:\Windows\System32\vds.exe - ok
11:13:08.0571 3024 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe
11:13:08.0571 3024 C:\Windows\System32\VSSVC.exe - ok
11:13:08.0574 3024 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll
11:13:08.0574 3024 C:\Windows\System32\w32time.dll - ok
11:13:08.0579 3024 [ A3CD60FD826381B49F03832590E069AF ] C:\Windows\System32\wcncsvc.dll
11:13:08.0579 3024 C:\Windows\System32\wcncsvc.dll - ok
11:13:08.0584 3024 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll
11:13:08.0584 3024 C:\Windows\System32\WcsPlugInService.dll - ok
11:13:08.0589 3024 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll
11:13:08.0589 3024 C:\Windows\System32\wdi.dll - ok
11:13:08.0599 3024 [ 04C37D8107320312FBAE09926103D5E2 ] C:\Windows\System32\WebClnt.dll
11:13:08.0599 3024 C:\Windows\System32\WebClnt.dll - ok
11:13:08.0602 3024 [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll
11:13:08.0602 3024 C:\Windows\System32\wecsvc.dll - ok
11:13:08.0607 3024 [ 670FF720071ED741206D69BD995EA453 ] C:\Windows\System32\wercplsupport.dll
11:13:08.0607 3024 C:\Windows\System32\wercplsupport.dll - ok
11:13:08.0612 3024 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll
11:13:08.0612 3024 C:\Windows\System32\wbem\WMIsvc.dll - ok
11:13:08.0617 3024 [ 6DF578562D2FA95ACAA37D359B68A31D ] C:\Windows\System32\winhttp.dll
11:13:08.0617 3024 C:\Windows\System32\winhttp.dll - ok
11:13:08.0622 3024 [ 7CFE68BDC065E55AA5E8421607037511 ] C:\Windows\System32\WsmSvc.dll
11:13:08.0623 3024 C:\Windows\System32\WsmSvc.dll - ok
11:13:08.0628 3024 [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll
11:13:08.0628 3024 C:\Windows\System32\wlansvc.dll - ok
11:13:08.0633 3024 [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe
11:13:08.0633 3024 C:\Windows\System32\wbem\WmiApSrv.exe - ok
11:13:08.0638 3024 [ 3978704576A121A9204F8CC49A301A9B ] C:\Program Files\Windows Media Player\wmpnetwk.exe
11:13:08.0638 3024 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
11:13:08.0643 3024 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] C:\Windows\System32\wpcsvc.dll
11:13:08.0643 3024 C:\Windows\System32\wpcsvc.dll - ok
11:13:08.0648 3024 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:13:08.0648 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok
11:13:08.0656 3024 [ 801FBDB89D472B3C467EB112A0FC9246 ] C:\Windows\System32\wpdbusenum.dll
11:13:08.0656 3024 C:\Windows\System32\wpdbusenum.dll - ok
11:13:08.0661 3024 [ AED0DFF80C6B3914769407E78D7AB21A ] C:\Windows\System32\SearchIndexer.exe
11:13:08.0661 3024 C:\Windows\System32\SearchIndexer.exe - ok
11:13:08.0668 3024 [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll
11:13:08.0668 3024 C:\Windows\System32\wscsvc.dll - ok
11:13:08.0674 3024 [ 575A4190D989F64732119E4114045A4F ] C:\Windows\System32\WUDFSvc.dll
11:13:08.0674 3024 C:\Windows\System32\WUDFSvc.dll - ok
11:13:08.0676 3024 [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll
11:13:08.0676 3024 C:\Windows\System32\scecli.dll - ok
11:13:08.0681 3024 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll
11:13:08.0681 3024 C:\Windows\System32\ntmarta.dll - ok
11:13:08.0687 3024 [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe
11:13:08.0687 3024 C:\Windows\System32\svchost.exe - ok
11:13:08.0696 3024 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll
11:13:08.0696 3024 C:\Windows\System32\powrprof.dll - ok
11:13:08.0704 3024 [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys
11:13:08.0704 3024 C:\Windows\System32\drivers\luafv.sys - ok
11:13:08.0711 3024 [ 62F9DCEC95F91B8E0203E85D344A7E65 ] C:\Windows\System32\drivers\aswMonFlt.sys
11:13:08.0711 3024 C:\Windows\System32\drivers\aswMonFlt.sys - ok
11:13:08.0716 3024 [ DE6ED95AEF259979B2830450072A627B ] C:\Windows\System32\drivers\aswFsBlk.sys
11:13:08.0716 3024 C:\Windows\System32\drivers\aswFsBlk.sys - ok
11:13:08.0721 3024 [ AE2DE8E165DCB93A66B21748E6F913DF ] C:\Windows\System32\nvvsvc.exe
11:13:08.0721 3024 C:\Windows\System32\nvvsvc.exe - ok
11:13:08.0725 3024 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll
11:13:08.0725 3024 C:\Windows\System32\wtsapi32.dll - ok
11:13:08.0732 3024 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
11:13:08.0732 3024 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
11:13:08.0737 3024 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll
11:13:08.0737 3024 C:\Windows\System32\rpcss.dll - ok
11:13:08.0743 3024 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:13:08.0743 3024 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - ok
11:13:08.0750 3024 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll
11:13:08.0750 3024 C:\Windows\System32\mscoree.dll - ok
11:13:08.0755 3024 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll
11:13:08.0755 3024 C:\Windows\System32\version.dll - ok
11:13:08.0761 3024 [ 83BA5E873164A3711B44052F58C8FE9F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
11:13:08.0761 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
11:13:08.0765 3024 [ E96B4D51BB06B66610E91B36E0929232 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
11:13:08.0765 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
11:13:08.0772 3024 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
11:13:08.0772 3024 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
11:13:08.0776 3024 [ 987B6AA874DA68210462F9C8AAC51203 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b2a5854682691830b9f62ec351c8b54e\mscorlib.ni.dll
11:13:08.0776 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b2a5854682691830b9f62ec351c8b54e\mscorlib.ni.dll - ok
11:13:08.0784 3024 [ 60A3231C5EAFDB68147EB06F783B68B9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\45f10e36f25d92dd808caab75e45b8ae\System.ni.dll
11:13:08.0784 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\45f10e36f25d92dd808caab75e45b8ae\System.ni.dll - ok
11:13:08.0789 3024 [ 9532CBADC9F36FC93F2778AB20620273 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\0c7b2a0925eee0967c30fc4cdf49a837\PresentationFontCache.ni.exe
11:13:08.0789 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\0c7b2a0925eee0967c30fc4cdf49a837\PresentationFontCache.ni.exe - ok
11:13:08.0794 3024 [ 78780B9E9774ED9166A5E5D565F9523A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ce73262a893af528ab9fde7b033f6da2\System.ServiceProcess.ni.dll
11:13:08.0794 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ce73262a893af528ab9fde7b033f6da2\System.ServiceProcess.ni.dll - ok
11:13:08.0801 3024 [ 77D7A50C125EC03B404FD38D12E160BC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b713b41679bdcb5a6cc0487bb4ceb9f0\WindowsBase.ni.dll
11:13:08.0801 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b713b41679bdcb5a6cc0487bb4ceb9f0\WindowsBase.ni.dll - ok
11:13:08.0805 3024 [ 071DEEC767CE959262F35007A152E609 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\267585069dce3fd61bd67943953a6d04\PresentationCore.ni.dll
11:13:08.0805 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\267585069dce3fd61bd67943953a6d04\PresentationCore.ni.dll - ok
11:13:08.0811 3024 [ 2A4CF3BE9DE790B458FD03F2F58C9411 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
11:13:08.0811 3024 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
11:13:08.0817 3024 [ 2375A14D4F181E0535C5C32FB4C55F26 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
11:13:08.0817 3024 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
11:13:08.0824 3024 [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll
11:13:08.0824 3024 C:\Windows\System32\shfolder.dll - ok
11:13:08.0848 3024 [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe
11:13:08.0848 3024 C:\Windows\System32\LogonUI.exe - ok
11:13:08.0852 3024 [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll
11:13:08.0852 3024 C:\Windows\System32\authui.dll - ok
11:13:08.0857 3024 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll
11:13:08.0857 3024 C:\Windows\System32\msimg32.dll - ok
11:13:08.0862 3024 [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll
11:13:08.0862 3024 C:\Windows\System32\uxtheme.dll - ok
11:13:08.0867 3024 [ B5B09091B0E33C396CEEC8995515BD41 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\GdiPlus.dll
11:13:08.0867 3024 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\GdiPlus.dll - ok
11:13:08.0872 3024 [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll
11:13:08.0872 3024 C:\Windows\System32\duser.dll - ok
11:13:08.0877 3024 [ 84ABB260A81130D39126EF79F2624E15 ] C:\Windows\System32\xmllite.dll
11:13:08.0877 3024 C:\Windows\System32\xmllite.dll - ok
11:13:08.0882 3024 [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll
11:13:08.0882 3024 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
11:13:08.0887 3024 [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll
11:13:08.0887 3024 C:\Windows\System32\rasplap.dll - ok
11:13:08.0892 3024 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll
11:13:08.0892 3024 C:\Windows\System32\MMDevAPI.dll - ok
11:13:08.0900 3024 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll
11:13:08.0900 3024 C:\Windows\System32\rasapi32.dll - ok
11:13:08.0912 3024 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll
11:13:08.0912 3024 C:\Windows\System32\rasman.dll - ok
11:13:08.0916 3024 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll
11:13:08.0916 3024 C:\Windows\System32\tapi32.dll - ok
11:13:08.0920 3024 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys
11:13:08.0920 3024 C:\Windows\System32\drivers\fltMgr.sys - ok
11:13:08.0925 3024 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll
11:13:08.0925 3024 C:\Windows\System32\avrt.dll - ok
11:13:08.0929 3024 [ 2829C93217B147387F186479A5F6A1E5 ] C:\Windows\System32\wintrust.dll
11:13:08.0929 3024 C:\Windows\System32\wintrust.dll - ok
11:13:08.0936 3024 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll
11:13:08.0936 3024 C:\Windows\System32\rtutils.dll - ok
11:13:08.0939 3024 [ 934511EFE4461F84CA946B9C0321F365 ] C:\Windows\System32\winmm.dll
11:13:08.0939 3024 C:\Windows\System32\winmm.dll - ok
11:13:08.0944 3024 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll
11:13:08.0944 3024 C:\Windows\System32\cabinet.dll - ok
11:13:08.0949 3024 [ 2ED5C3A4CBC59D19881164F697CF960D ] C:\Windows\System32\oleacc.dll
11:13:08.0949 3024 C:\Windows\System32\oleacc.dll - ok
11:13:08.0956 3024 [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll
11:13:08.0956 3024 C:\Windows\System32\WinSCard.dll - ok
11:13:08.0961 3024 [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll
11:13:08.0961 3024 C:\Windows\System32\adtschema.dll - ok
11:13:08.0966 3024 [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll
11:13:08.0966 3024 C:\Windows\System32\shgina.dll - ok
11:13:08.0972 3024 [ 22F73612087430A94DBE912AB58E0C79 ] C:\Windows\System32\ci.dll
11:13:08.0972 3024 C:\Windows\System32\ci.dll - ok
11:13:08.0975 3024 [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll
11:13:08.0975 3024 C:\Windows\System32\shacct.dll - ok
11:13:08.0982 3024 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll
11:13:08.0982 3024 C:\Windows\System32\propsys.dll - ok
11:13:08.0987 3024 [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL
11:13:08.0987 3024 C:\Windows\System32\PSHED.DLL - ok
11:13:08.0993 3024 [ 97FEF831AB90BEE128C9AF390E243F80 ] C:\Windows\System32\drivers\drmkaud.sys
11:13:08.0993 3024 C:\Windows\System32\drivers\drmkaud.sys - ok
11:13:08.0998 3024 [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe
11:13:08.0998 3024 C:\Windows\System32\audiodg.exe - ok
11:13:09.0003 3024 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv
11:13:09.0003 3024 C:\Windows\System32\wdmaud.drv - ok
11:13:09.0008 3024 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll
11:13:09.0008 3024 C:\Windows\System32\gpsvc.dll - ok
11:13:09.0013 3024 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll
11:13:09.0013 3024 C:\Windows\System32\nlaapi.dll - ok
11:13:09.0017 3024 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll
11:13:09.0017 3024 C:\Windows\System32\atl.dll - ok
11:13:09.0022 3024 [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll
11:13:09.0022 3024 C:\Windows\System32\es.dll - ok
11:13:09.0027 3024 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll
11:13:09.0027 3024 C:\Windows\System32\ksuser.dll - ok
11:13:09.0031 3024 [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll
11:13:09.0031 3024 C:\Windows\System32\AudioEng.dll - ok
11:13:09.0037 3024 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll
11:13:09.0037 3024 C:\Windows\System32\AudioSes.dll - ok
11:13:09.0040 3024 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll
11:13:09.0040 3024 C:\Windows\System32\msacm32.dll - ok
11:13:09.0045 3024 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv
11:13:09.0045 3024 C:\Windows\System32\msacm32.drv - ok
11:13:09.0050 3024 [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys
11:13:09.0050 3024 C:\Windows\System32\drivers\spsys.sys - ok
11:13:09.0057 3024 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll
11:13:09.0057 3024 C:\Windows\System32\midimap.dll - ok
11:13:09.0060 3024 [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll
11:13:09.0060 3024 C:\Windows\System32\AUDIOKSE.dll - ok
11:13:09.0064 3024 [ 1509E705F3AC1D474C92454A5C2DD81F ] C:\Windows\System32\uxsms.dll
11:13:09.0064 3024 C:\Windows\System32\uxsms.dll - ok
11:13:09.0069 3024 [ B7A9E32D60C23C7CA9B968C20752B43B ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
11:13:09.0069 3024 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
11:13:09.0074 3024 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll
11:13:09.0074 3024 C:\Windows\System32\WindowsCodecs.dll - ok
11:13:09.0079 3024 [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll
11:13:09.0079 3024 C:\Windows\System32\hid.dll - ok
11:13:09.0085 3024 [ 399BB52AD0668472717498E97CF28341 ] C:\Windows\System32\WUDFPlatform.dll
11:13:09.0085 3024 C:\Windows\System32\WUDFPlatform.dll - ok
11:13:09.0092 3024 [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys
11:13:09.0092 3024 C:\Windows\System32\drivers\lltdio.sys - ok
11:13:09.0095 3024 [ C0BDE00F27C5E16E7DED25314FA5A680 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
11:13:09.0095 3024 C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
11:13:09.0100 3024 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] C:\Windows\System32\drivers\nwifi.sys
11:13:09.0100 3024 C:\Windows\System32\drivers\nwifi.sys - ok
11:13:09.0104 3024 [ D6973AA34C4D5D76C0430B181C3CD389 ] C:\Windows\System32\drivers\ndisuio.sys
11:13:09.0104 3024 C:\Windows\System32\drivers\ndisuio.sys - ok
11:13:09.0110 3024 [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys
11:13:09.0110 3024 C:\Windows\System32\drivers\rspndr.sys - ok
11:13:09.0113 3024 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll
11:13:09.0113 3024 C:\Windows\System32\dwmapi.dll - ok
11:13:09.0119 3024 [ E8893F06FD546701CD07921FA63FE42C ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
11:13:09.0119 3024 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
11:13:09.0123 3024 [ BB81564B8E4C025B3840C19A2A7756C2 ] C:\Windows\System32\nvsvc.dll
11:13:09.0123 3024 C:\Windows\System32\nvsvc.dll - ok
11:13:09.0127 3024 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll
11:13:09.0127 3024 C:\Windows\System32\dnsrslvr.dll - ok
11:13:09.0134 3024 [ 3AB4023CBD406AC33AB8CDFF6C8079A0 ] C:\Windows\System32\eapphost.dll
11:13:09.0134 3024 C:\Windows\System32\eapphost.dll - ok
11:13:09.0139 3024 [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll
11:13:09.0139 3024 C:\Windows\System32\rastls.dll - ok
11:13:09.0144 3024 [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll
11:13:09.0144 3024 C:\Windows\System32\raschap.dll - ok
11:13:09.0149 3024 [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll
11:13:09.0149 3024 C:\Windows\System32\umb.dll - ok
11:13:09.0154 3024 [ 3727F8B85E24BBDD325BFF75F029DDE3 ] C:\Windows\System32\wlanmsm.dll
11:13:09.0154 3024 C:\Windows\System32\wlanmsm.dll - ok
11:13:09.0160 3024 [ 4662AF853DFAD5648CE3814E7D9EF3D6 ] C:\Windows\System32\wlansec.dll
11:13:09.0160 3024 C:\Windows\System32\wlansec.dll - ok
11:13:09.0166 3024 [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll
11:13:09.0166 3024 C:\Windows\System32\onex.dll - ok
11:13:09.0171 3024 [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\System32\mscms.dll
11:13:09.0171 3024 C:\Windows\System32\mscms.dll - ok
11:13:09.0176 3024 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv
11:13:09.0176 3024 C:\Windows\System32\winspool.drv - ok
11:13:09.0181 3024 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
11:13:09.0181 3024 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok
11:13:09.0186 3024 [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll
11:13:09.0186 3024 C:\Windows\System32\eappprxy.dll - ok
11:13:09.0191 3024 [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll
11:13:09.0191 3024 C:\Windows\System32\eappcfg.dll - ok
11:13:09.0195 3024 [ 31B1403AF2020640D5F3D88A6AD18583 ] C:\Windows\System32\nvapi.dll
11:13:09.0196 3024 C:\Windows\System32\nvapi.dll - ok
11:13:09.0200 3024 [ 295363D4317820AED0D527E15B90A8ED ] C:\Windows\System32\pdh.dll
11:13:09.0200 3024 C:\Windows\System32\pdh.dll - ok
11:13:09.0205 3024 [ 19FFAD68A02AF1BF0BC336EE26CD6767 ] C:\Windows\System32\l2gpstore.dll
11:13:09.0205 3024 C:\Windows\System32\l2gpstore.dll - ok
11:13:09.0210 3024 [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll
11:13:09.0210 3024 C:\Windows\System32\wlanutil.dll - ok
11:13:09.0215 3024 [ 91D995A67D9447592A1BF21CBC15C628 ] C:\Windows\System32\wlgpclnt.dll
11:13:09.0215 3024 C:\Windows\System32\wlgpclnt.dll - ok
11:13:09.0220 3024 [ BDAE82BFE54B38792665D20486600177 ] C:\Windows\System32\msxml6.dll
11:13:09.0220 3024 C:\Windows\System32\msxml6.dll - ok
11:13:09.0225 3024 [ 9013AC085127B9BCE9CE944C5BE8FD62 ] C:\Windows\System32\nvsvcr.dll
11:13:09.0225 3024 C:\Windows\System32\nvsvcr.dll - ok

11:13:09.0230 3024 [ 9AC63026E26D544816A4ACAA98A9674E ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
11:13:09.0230 3024 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
11:13:09.0235 3024 [ C122DEC63F654C39996A397CCFE93A07 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
11:13:09.0235 3024 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
11:13:09.0239 3024 [ B178BF22327FB4B0545040EFF84F4FC7 ] C:\Windows\System32\nvcpl.dll
11:13:09.0239 3024 C:\Windows\System32\nvcpl.dll - ok
11:13:09.0244 3024 [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:13:09.0244 3024 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
11:13:09.0249 3024 [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
11:13:09.0249 3024 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
11:13:09.0254 3024 [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
11:13:09.0254 3024 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
11:13:09.0259 3024 [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
11:13:09.0259 3024 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
11:13:09.0265 3024 [ 4B555106290BD117334E9A08761C035A ] C:\Windows\System32\rundll32.exe
11:13:09.0265 3024 C:\Windows\System32\rundll32.exe - ok
11:13:09.0270 3024 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
11:13:09.0271 3024 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
11:13:09.0277 3024 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
11:13:09.0277 3024 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
11:13:09.0283 3024 [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
11:13:09.0283 3024 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
11:13:09.0291 3024 [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
11:13:09.0291 3024 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
11:13:09.0297 3024 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll
11:13:09.0297 3024 C:\Windows\System32\wsock32.dll - ok
11:13:09.0303 3024 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll
11:13:09.0303 3024 C:\Windows\System32\shimeng.dll - ok
11:13:09.0308 3024 [ D6804F089CBB6749E95124E7C4D80900 ] C:\Windows\AppPatch\AcLayers.dll
11:13:09.0309 3024 C:\Windows\AppPatch\AcLayers.dll - ok
11:13:09.0314 3024 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll
11:13:09.0314 3024 C:\Windows\System32\dbghelp.dll - ok
11:13:09.0320 3024 [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
11:13:09.0320 3024 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
11:13:09.0326 3024 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll
11:13:09.0326 3024 C:\Windows\System32\cscapi.dll - ok
11:13:09.0331 3024 [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
11:13:09.0332 3024 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
11:13:09.0337 3024 [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
11:13:09.0337 3024 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
11:13:09.0343 3024 [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
11:13:09.0343 3024 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
11:13:09.0349 3024 [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
11:13:09.0349 3024 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
11:13:09.0355 3024 [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
11:13:09.0355 3024 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
11:13:09.0361 3024 [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
11:13:09.0361 3024 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
11:13:09.0366 3024 [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
11:13:09.0366 3024 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
11:13:09.0371 3024 [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
11:13:09.0371 3024 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
11:13:09.0375 3024 [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
11:13:09.0375 3024 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
11:13:09.0381 3024 [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
11:13:09.0381 3024 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
11:13:09.0387 3024 [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
11:13:09.0387 3024 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
11:13:09.0393 3024 [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
11:13:09.0393 3024 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
11:13:09.0398 3024 [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll
11:13:09.0399 3024 C:\Windows\System32\ktmw32.dll - ok
11:13:09.0404 3024 [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll
11:13:09.0404 3024 C:\Windows\System32\wscapi.dll - ok
11:13:09.0410 3024 [ D0A95E567224B4C347CBDD6541E5D928 ] C:\Windows\System32\wscisvif.dll
11:13:09.0410 3024 C:\Windows\System32\wscisvif.dll - ok
11:13:09.0414 3024 [ 0A907E7EDC0A0C0750E1626B126A2F5C ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswEngin.dll
11:13:09.0414 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswEngin.dll - ok
11:13:09.0420 3024 [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll
11:13:09.0420 3024 C:\Windows\System32\taskcomp.dll - ok
11:13:09.0426 3024 [ E895E417F04339B583A90A1959054BEA ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswCmnOS.dll
11:13:09.0426 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswCmnOS.dll - ok
11:13:09.0432 3024 [ 3AE814769FD59498E9AF30A1B86417DF ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswCmnIS.dll
11:13:09.0432 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswCmnIS.dll - ok
11:13:09.0438 3024 [ BBC1BF4FEE6C7558CD54CF5F5AF17D00 ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswCmnBS.dll
11:13:09.0438 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswCmnBS.dll - ok
11:13:09.0447 3024 [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys
11:13:09.0447 3024 C:\Windows\System32\drivers\http.sys - ok
11:13:09.0453 3024 [ C3D4295E1A00A814200B58410FE9E2C0 ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswScan.dll
11:13:09.0453 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswScan.dll - ok
11:13:09.0461 3024 [ FAD306DD70634B3168CB025C8432CE7E ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswRep.dll
11:13:09.0461 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswRep.dll - ok
11:13:09.0467 3024 [ C1F048B33A1BD8F5B05AF76469252F55 ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswFiDb.dll
11:13:09.0467 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswFiDb.dll - ok
11:13:09.0473 3024 [ E79FDA8D320147FDC347C504B3487F87 ] C:\Windows\System32\spoolss.dll
11:13:09.0473 3024 C:\Windows\System32\spoolss.dll - ok
11:13:09.0479 3024 [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys
11:13:09.0479 3024 C:\Windows\System32\drivers\srvnet.sys - ok
11:13:09.0485 3024 [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL
11:13:09.0485 3024 C:\Windows\System32\FWPUCLNT.DLL - ok
11:13:09.0490 3024 [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys
11:13:09.0490 3024 C:\Windows\System32\drivers\bowser.sys - ok
11:13:09.0496 3024 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys
11:13:09.0496 3024 C:\Windows\System32\drivers\mpsdrv.sys - ok
11:13:09.0502 3024 [ 82CEA0395524AACFEB58BA1448E8325C ] C:\Windows\System32\drivers\mrxdav.sys
11:13:09.0502 3024 C:\Windows\System32\drivers\mrxdav.sys - ok
11:13:09.0507 3024 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys
11:13:09.0507 3024 C:\Windows\System32\drivers\mrxsmb.sys - ok
11:13:09.0512 3024 [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll
11:13:09.0512 3024 C:\Windows\System32\MPSSVC.dll - ok
11:13:09.0516 3024 [ D4A3C7C580C4CCB5C06F2ADA933AD507 ] C:\Windows\System32\drivers\mrxsmb10.sys
11:13:09.0516 3024 C:\Windows\System32\drivers\mrxsmb10.sys - ok
11:13:09.0520 3024 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys
11:13:09.0520 3024 C:\Windows\System32\drivers\mrxsmb20.sys - ok
11:13:09.0524 3024 [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys
11:13:09.0524 3024 C:\Windows\System32\drivers\srv2.sys - ok
11:13:09.0529 3024 [ E20642488B6534C05C7036CF928EF753 ] C:\Program Files\AVAST Software\Avast\defs\13012200\algo.dll
11:13:09.0529 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\algo.dll - ok
11:13:09.0533 3024 [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll
11:13:09.0533 3024 C:\Windows\System32\wiarpc.dll - ok
11:13:09.0537 3024 [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys
11:13:09.0537 3024 C:\Windows\System32\drivers\srv.sys - ok
11:13:09.0544 3024 [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll
11:13:09.0544 3024 C:\Windows\System32\netmsg.dll - ok
11:13:09.0547 3024 [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll
11:13:09.0547 3024 C:\Windows\System32\sscore.dll - ok
11:13:09.0551 3024 [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll
11:13:09.0551 3024 C:\Windows\System32\clusapi.dll - ok
11:13:09.0557 3024 [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll
11:13:09.0557 3024 C:\Windows\System32\wfapigp.dll - ok
11:13:09.0560 3024 [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll
11:13:09.0560 3024 C:\Windows\System32\activeds.dll - ok
11:13:09.0565 3024 [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
11:13:09.0565 3024 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
11:13:09.0570 3024 [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll
11:13:09.0570 3024 C:\Windows\System32\adsldpc.dll - ok
11:13:09.0575 3024 [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll
11:13:09.0575 3024 C:\Windows\System32\credui.dll - ok
11:13:09.0580 3024 [ E223D2851906B84F52E1B75EA16198F9 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
11:13:09.0580 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
11:13:09.0585 3024 [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll
11:13:09.0585 3024 C:\Windows\System32\resutils.dll - ok
11:13:09.0590 3024 [ 1311171CF8F6D2954441EF2A42693035 ] C:\Windows\System32\WsmRes.dll
11:13:09.0590 3024 C:\Windows\System32\WsmRes.dll - ok
11:13:09.0595 3024 [ E230F3776F373F4C5E788794B53101E4 ] C:\Windows\System32\plasrv.exe
11:13:09.0596 3024 C:\Windows\System32\plasrv.exe - ok
11:13:09.0601 3024 [ EFA80360111D8D179E39E314A49C9ED4 ] C:\Windows\System32\wshbth.dll
11:13:09.0601 3024 C:\Windows\System32\wshbth.dll - ok
11:13:09.0606 3024 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll
11:13:09.0606 3024 C:\Windows\System32\winrnr.dll - ok
11:13:09.0611 3024 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
11:13:09.0611 3024 C:\Program Files\Bonjour\mdnsNSP.dll - ok
11:13:09.0616 3024 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll
11:13:09.0616 3024 C:\Windows\System32\rasadhlp.dll - ok
11:13:09.0621 3024 [ 3F5F5A4D358126FA69C79FB15A4878B8 ] C:\Windows\System32\localspl.dll
11:13:09.0621 3024 C:\Windows\System32\localspl.dll - ok
11:13:09.0626 3024 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll
11:13:09.0626 3024 C:\Windows\System32\sfc.dll - ok
11:13:09.0631 3024 [ 79B0CABE6574023CBEF7317BD71AE48C ] C:\Windows\System32\dopdfmn7.dll
11:13:09.0631 3024 C:\Windows\System32\dopdfmn7.dll - ok
11:13:09.0635 3024 [ 4AB80A11CFB0FEEFAACFDB71B1DFEFE8 ] C:\Windows\System32\EP0SLM00.DLL
11:13:09.0635 3024 C:\Windows\System32\EP0SLM00.DLL - ok
11:13:09.0640 3024 [ 1782DCA34BF541B7371E6D1F1BF61BCB ] C:\Windows\System32\hpzll4v2.dll
11:13:09.0640 3024 C:\Windows\System32\hpzll4v2.dll - ok
11:13:09.0644 3024 [ 3183BFA7BDF50662F9094BC720EB7AF9 ] C:\Windows\System32\hpzll5ha.dll
11:13:09.0644 3024 C:\Windows\System32\hpzll5ha.dll - ok
11:13:09.0648 3024 [ AC7F2490933C68A5A72CF1A72F576DE6 ] C:\Windows\System32\hpzll64X.dll
11:13:09.0648 3024 C:\Windows\System32\hpzll64X.dll - ok
11:13:09.0653 3024 [ 8A55C033F2D2C9318AA8F85F80117BA8 ] C:\Windows\System32\msonpmon.dll
11:13:09.0653 3024 C:\Windows\System32\msonpmon.dll - ok
11:13:09.0659 3024 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll
11:13:09.0659 3024 C:\Windows\System32\msi.dll - ok
11:13:09.0662 3024 [ BB0EB921877A1A7EF15AE2D97A71CBA9 ] C:\Windows\System32\tcpmon.dll
11:13:09.0662 3024 C:\Windows\System32\tcpmon.dll - ok
11:13:09.0666 3024 [ AF24A9DF84637BF9858EC6FB88EBA7B2 ] C:\Windows\System32\snmpapi.dll
11:13:09.0666 3024 C:\Windows\System32\snmpapi.dll - ok
11:13:09.0673 3024 [ 1EDE113859276E4B0F19B80F39E2CC95 ] C:\Windows\System32\wsnmp32.dll
11:13:09.0673 3024 C:\Windows\System32\wsnmp32.dll - ok
11:13:09.0675 3024 [ A9542FF2E9A82CF100E5729EC79068F0 ] C:\Windows\System32\fltLib.dll
11:13:09.0675 3024 C:\Windows\System32\fltLib.dll - ok
11:13:09.0679 3024 [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
11:13:09.0680 3024 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
11:13:09.0684 3024 [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
11:13:09.0684 3024 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
11:13:09.0691 3024 [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
11:13:09.0691 3024 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
11:13:09.0693 3024 [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
11:13:09.0693 3024 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
11:13:09.0697 3024 [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
11:13:09.0697 3024 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
11:13:09.0702 3024 [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
11:13:09.0702 3024 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
11:13:09.0706 3024 [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
11:13:09.0706 3024 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
11:13:09.0713 3024 [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
11:13:09.0713 3024 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
11:13:09.0716 3024 [ EFC03638BF395CE1903FE6414296D95D ] C:\Program Files\AVAST Software\Avast\defs\13012200\ArPot.dll
11:13:09.0716 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\ArPot.dll - ok
11:13:09.0720 3024 [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
11:13:09.0720 3024 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
11:13:09.0725 3024 [ 6CF93FC44E346AE4D117C7A1F340BE2F ] C:\Program Files\AVAST Software\Avast\defs\13012200\exts.dll
11:13:09.0726 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\exts.dll - ok
11:13:09.0731 3024 [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
11:13:09.0731 3024 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
11:13:09.0736 3024 [ 0A990AFB9F2726323D61C8ECB8B70B17 ] C:\Windows\System32\security.dll
11:13:09.0736 3024 C:\Windows\System32\security.dll - ok
11:13:09.0741 3024 [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
11:13:09.0741 3024 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
11:13:09.0746 3024 [ 5091452DC719281CF1DD69367E13B494 ] C:\Windows\System32\tcpmib.dll
11:13:09.0746 3024 C:\Windows\System32\tcpmib.dll - ok
11:13:09.0751 3024 [ B4F5DE3DAD8E6B97272F45DB97674878 ] C:\Windows\System32\mgmtapi.dll
11:13:09.0751 3024 C:\Windows\System32\mgmtapi.dll - ok
11:13:09.0756 3024 [ 0BF0BB276F17B6AD61A8694D2551EC28 ] C:\Windows\System32\usbmon.dll
11:13:09.0756 3024 C:\Windows\System32\usbmon.dll - ok
11:13:09.0761 3024 [ 0EB1CC5EBFCAAB7DBAEE881E2887F7F9 ] C:\Windows\System32\WSDMon.dll
11:13:09.0761 3024 C:\Windows\System32\WSDMon.dll - ok
11:13:09.0766 3024 [ AD48183027CAFCEBC322CB9CAC60F9B8 ] C:\Windows\System32\WSDApi.dll
11:13:09.0766 3024 C:\Windows\System32\WSDApi.dll - ok
11:13:09.0771 3024 [ F86293D93760C70ADF4F19E66E3FA5E8 ] C:\Windows\System32\httpapi.dll
11:13:09.0771 3024 C:\Windows\System32\httpapi.dll - ok
11:13:09.0776 3024 [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll
11:13:09.0776 3024 C:\Windows\System32\cfgmgr32.dll - ok
11:13:09.0781 3024 [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll
11:13:09.0781 3024 C:\Windows\System32\fundisc.dll - ok
11:13:09.0786 3024 [ 2B338AB80CF27D14CB75D94E294A1AB8 ] C:\Windows\System32\msxml3.dll
11:13:09.0786 3024 C:\Windows\System32\msxml3.dll - ok
11:13:09.0790 3024 [ 1683774D357D5CFFCDC871493E19F58F ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswAR.dll
11:13:09.0791 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswAR.dll - ok
11:13:09.0795 3024 [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
11:13:09.0796 3024 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
11:13:09.0800 3024 [ BFBFAFFC60EBB5754F37868CAA876BF1 ] C:\Program Files\AVAST Software\Avast\defs\13012200\aswRawFS.dll
11:13:09.0800 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aswRawFS.dll - ok
11:13:09.0805 3024 [ 80BD4B26E2CBC0D65445D0463DFF6FC2 ] C:\Windows\System32\oledlg.dll
11:13:09.0805 3024 C:\Windows\System32\oledlg.dll - ok
11:13:09.0810 3024 [ FD647CA82ACF232DBE5F20345647B948 ] C:\Windows\AppPatch\AcGenral.dll
11:13:09.0810 3024 C:\Windows\AppPatch\AcGenral.dll - ok
11:13:09.0815 3024 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll
11:13:09.0815 3024 C:\Windows\System32\sfc_os.dll - ok
11:13:09.0822 3024 [ 1A2CB2A86A6C3F0571394A9BBC0FB805 ] C:\Windows\System32\spool\prtprocs\w32x86\EP0NPP01.DLL
11:13:09.0822 3024 C:\Windows\System32\spool\prtprocs\w32x86\EP0NPP01.DLL - ok
11:13:09.0827 3024 [ AC590255B6AEF7847AB6DC91DE2673A0 ] C:\Windows\System32\spool\prtprocs\w32x86\hpzpp4v2.dll
11:13:09.0827 3024 C:\Windows\System32\spool\prtprocs\w32x86\hpzpp4v2.dll - ok
11:13:09.0832 3024 [ D0E39177C896D2F8191A9C96636276DF ] C:\Windows\System32\spool\prtprocs\w32x86\hpzpp5ha.dll
11:13:09.0832 3024 C:\Windows\System32\spool\prtprocs\w32x86\hpzpp5ha.dll - ok
11:13:09.0837 3024 [ FDD21A77059D2FA284410F9657FD6FC2 ] C:\Windows\System32\spool\prtprocs\w32x86\hpzpp64X.dll
11:13:09.0837 3024 C:\Windows\System32\spool\prtprocs\w32x86\hpzpp64X.dll - ok
11:13:09.0842 3024 [ 063457262374B224226710D8DB74C37C ] C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll
11:13:09.0842 3024 C:\Windows\System32\spool\prtprocs\w32x86\mdippr.dll - ok
11:13:09.0846 3024 [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
11:13:09.0846 3024 C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
11:13:09.0851 3024 [ C90B296C43EDD9DD1751AD3B590ACDE6 ] C:\Windows\System32\win32spl.dll
11:13:09.0851 3024 C:\Windows\System32\win32spl.dll - ok
11:13:09.0858 3024 [ 4BF053944E973C073339BE841C9ECF28 ] C:\Windows\System32\netrap.dll
11:13:09.0858 3024 C:\Windows\System32\netrap.dll - ok
11:13:09.0862 3024 [ E340845C8E96D107C36420065D7A5733 ] C:\Windows\System32\printcom.dll
11:13:09.0862 3024 C:\Windows\System32\printcom.dll - ok
11:13:09.0867 3024 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll
11:13:09.0868 3024 C:\Windows\System32\SensApi.dll - ok
11:13:09.0872 3024 [ 2E8E30F3B318A9FDA5A2485723F4C2B3 ] C:\Windows\System32\inetpp.dll
11:13:09.0872 3024 C:\Windows\System32\inetpp.dll - ok
11:13:09.0877 3024 [ 4C52847B1D3C4B9A9DE31C899841BA91 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL
11:13:09.0877 3024 C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL - ok
11:13:09.0885 3024 [ 67C0E492398162D8BE1618AC6CD80DCE ] C:\Windows\System32\vfprint.dll
11:13:09.0885 3024 C:\Windows\System32\vfprint.dll - ok
11:13:09.0890 3024 [ 8598D8AF83E7F14AA3967AAA7180FFA7 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRVUI.DLL
11:13:09.0890 3024 C:\Windows\System32\spool\drivers\w32x86\3\UNIDRVUI.DLL - ok
11:13:09.0896 3024 [ 2CDFB0BAD41DBC48E07474093229CAC6 ] C:\Windows\System32\spool\drivers\w32x86\3\EP0NUI60.DLL
11:13:09.0896 3024 C:\Windows\System32\spool\drivers\w32x86\3\EP0NUI60.DLL - ok
11:13:09.0904 3024 [ D1B122303B5641136C39D5E22CFED886 ] C:\Windows\System32\spool\drivers\w32x86\3\EP0NGR00.DLL
11:13:09.0904 3024 C:\Windows\System32\spool\drivers\w32x86\3\EP0NGR00.DLL - ok
11:13:09.0909 3024 [ B1EA9681502EE57F87DB71D726288A5B ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:13:09.0909 3024 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
11:13:09.0914 3024 [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
11:13:09.0914 3024 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
11:13:09.0917 3024 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:13:09.0917 3024 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
11:13:09.0922 3024 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
11:13:09.0922 3024 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
11:13:09.0927 3024 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
11:13:09.0928 3024 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
11:13:09.0933 3024 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
11:13:09.0933 3024 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
11:13:09.0939 3024 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
11:13:09.0939 3024 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
11:13:09.0944 3024 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
11:13:09.0944 3024 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
11:13:09.0950 3024 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
11:13:09.0950 3024 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
11:13:09.0955 3024 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
11:13:09.0955 3024 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
11:13:09.0961 3024 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
11:13:09.0961 3024 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
11:13:09.0966 3024 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
11:13:09.0966 3024 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
11:13:09.0971 3024 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
11:13:09.0971 3024 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
11:13:09.0975 3024 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
11:13:09.0975 3024 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
11:13:09.0980 3024 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
11:13:09.0980 3024 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
11:13:09.0984 3024 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll
11:13:09.0984 3024 C:\Windows\System32\dnssd.dll - ok
11:13:09.0991 3024 [ C295EF49BE39C1170D44F90E740C5D61 ] C:\Program Files\CrashPlan\CrashPlanService.exe
11:13:10.0034 3024 C:\Program Files\CrashPlan\CrashPlanService.exe - ok
11:13:10.0039 3024 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
11:13:10.0039 3024 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
11:13:10.0044 3024 [ BD3C0ABD9EE3562A49F458D9FB491C6D ] C:\Program Files\CrashPlan\jre\bin\client\jvm.dll
11:13:10.0044 3024 C:\Program Files\CrashPlan\jre\bin\client\jvm.dll - ok
11:13:10.0047 3024 [ 3C8B6609712F4FF78E521F6DCFC4032B ] C:\Windows\System32\CTSVCCDA.EXE
11:13:10.0047 3024 C:\Windows\System32\CTSVCCDA.EXE - ok
11:13:10.0052 3024 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
11:13:10.0052 3024 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
11:13:10.0057 3024 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
11:13:10.0057 3024 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
11:13:10.0062 3024 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\System32\msvcr71.dll
11:13:10.0062 3024 C:\Windows\System32\msvcr71.dll - ok
11:13:10.0067 3024 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] C:\Windows\System32\drivers\mdmxsdk.sys
11:13:10.0067 3024 C:\Windows\System32\drivers\mdmxsdk.sys - ok
11:13:10.0071 3024 [ 641199534871783DD74138FE0BCFDAE7 ] C:\Program Files\Microsoft LifeCam\MSCamS32.exe
11:13:10.0071 3024 C:\Program Files\Microsoft LifeCam\MSCamS32.exe - ok
11:13:10.0078 3024 [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll
11:13:10.0078 3024 C:\Windows\System32\vssapi.dll - ok
11:13:10.0083 3024 [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll
11:13:10.0083 3024 C:\Windows\System32\wdscore.dll - ok
11:13:10.0088 3024 [ 78E824973A67192DD52A720083B0318D ] C:\Program Files\CrashPlan\jre\bin\verify.dll
11:13:10.0088 3024 C:\Program Files\CrashPlan\jre\bin\verify.dll - ok
11:13:10.0092 3024 [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll
11:13:10.0092 3024 C:\Windows\System32\taskschd.dll - ok
11:13:10.0097 3024 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
11:13:10.0097 3024 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
11:13:10.0102 3024 [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll
11:13:10.0102 3024 C:\Windows\System32\vsstrace.dll - ok
11:13:10.0107 3024 [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys
11:13:10.0107 3024 C:\Windows\System32\drivers\PEAuth.sys - ok
11:13:10.0111 3024 [ EFBBE3005DFBC4B740804B2DE2118B17 ] C:\Program Files\CrashPlan\jre\bin\java.dll
11:13:10.0111 3024 C:\Program Files\CrashPlan\jre\bin\java.dll - ok
11:13:10.0116 3024 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
11:13:10.0116 3024 C:\Windows\System32\drivers\secdrv.sys - ok
11:13:10.0121 3024 [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll
11:13:10.0121 3024 C:\Windows\System32\ncsi.dll - ok
11:13:10.0125 3024 [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL
11:13:10.0125 3024 C:\Windows\System32\IPSECSVC.DLL - ok
11:13:10.0130 3024 [ B63B4053B8F025D290326A49784F0BA9 ] C:\Program Files\CrashPlan\jre\bin\zip.dll
11:13:10.0130 3024 C:\Program Files\CrashPlan\jre\bin\zip.dll - ok
11:13:10.0134 3024 [ 183F04C6742902F33039913A96F5B574 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:13:10.0134 3024 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
11:13:10.0141 3024 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files\Skype\Updater\Updater.exe
11:13:10.0141 3024 C:\Program Files\Skype\Updater\Updater.exe - ok
11:13:10.0144 3024 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
11:13:10.0144 3024 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
11:13:10.0148 3024 [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll
11:13:10.0148 3024 C:\Windows\System32\esent.dll - ok
11:13:10.0152 3024 [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll
11:13:10.0152 3024 C:\Windows\System32\FwRemoteSvr.dll - ok
11:13:10.0156 3024 [ C4710D7911A20F70D126DB7571C3004A ] C:\Program Files\Soluto\SolutoLauncherService.exe
11:13:10.0156 3024 C:\Program Files\Soluto\SolutoLauncherService.exe - ok
11:13:10.0160 3024 [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll
11:13:10.0160 3024 C:\Windows\System32\ssdpapi.dll - ok
11:13:10.0165 3024 [ 7BEDD051B53821B040EAD42DB0724848 ] C:\Windows\System32\WerFault.exe
11:13:10.0165 3024 C:\Windows\System32\WerFault.exe - ok
11:13:10.0168 3024 [ 59B5902DE78621E7ED90C89579024974 ] C:\Program Files\CrashPlan\jre\bin\net.dll
11:13:10.0168 3024 C:\Program Files\CrashPlan\jre\bin\net.dll - ok
11:13:10.0172 3024 [ E2774CDAC3BDCDC188891236F64594DC ] C:\Program Files\Soluto\SolutoService.exe
11:13:10.0172 3024 C:\Program Files\Soluto\SolutoService.exe - ok
11:13:10.0176 3024 [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\System32\wer.dll
11:13:10.0176 3024 C:\Windows\System32\wer.dll - ok
11:13:10.0181 3024 [ 77784A2BD5912A4EC6284255865526BC ] C:\Windows\System32\Faultrep.dll
11:13:10.0181 3024 C:\Windows\System32\Faultrep.dll - ok
11:13:10.0185 3024 [ A6FA5D45ACF2E855F890FAC505EFEDB2 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
11:13:10.0185 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
11:13:10.0191 3024 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll
11:13:10.0191 3024 C:\Windows\System32\riched20.dll - ok
11:13:10.0196 3024 [ 447983959A8CF49C4CC3B65DED69AF28 ] C:\Windows\System32\dbgeng.dll
11:13:10.0196 3024 C:\Windows\System32\dbgeng.dll - ok
11:13:10.0199 3024 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll
11:13:10.0199 3024 C:\Windows\System32\p2pcollab.dll - ok
11:13:10.0203 3024 [ B458C7EEF67258198A4B92ADE3974A65 ] C:\Program Files\CrashPlan\jniwrap.dll
11:13:10.0203 3024 C:\Program Files\CrashPlan\jniwrap.dll - ok
11:13:10.0207 3024 [ FC4954D8CCDBE5C469F7737525B3300E ] C:\Windows\System32\cryptnet.dll
11:13:10.0207 3024 C:\Windows\System32\cryptnet.dll - ok
11:13:10.0211 3024 [ 2310A32BB0164552A311BFA02102A3D6 ] C:\Windows\System32\msvcp60.dll
11:13:10.0211 3024 C:\Windows\System32\msvcp60.dll - ok
11:13:10.0217 3024 [ 5654095C606D63E6B2F6D9667C461C0D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3d898b1a36aa22551eb0fd3ebe9bfc11\System.Core.ni.dll
11:13:10.0217 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3d898b1a36aa22551eb0fd3ebe9bfc11\System.Core.ni.dll - ok
11:13:10.0220 3024 [ 7554EC5FDCBA1A45C7587FEB91F11E64 ] C:\Program Files\Soluto\SolutoCleanup.exe
11:13:10.0220 3024 C:\Program Files\Soluto\SolutoCleanup.exe - ok
11:13:10.0224 3024 [ E3ED32B4966DE055DC0819A2FAE21FB8 ] C:\Program Files\Soluto\PCGCatalogItemFootprint.dll
11:13:10.0224 3024 C:\Program Files\Soluto\PCGCatalogItemFootprint.dll - ok
11:13:10.0229 3024 [ 46170E722252927C58E41F1EE94F6BB3 ] C:\Program Files\Soluto\PCGEntities.dll
11:13:10.0229 3024 C:\Program Files\Soluto\PCGEntities.dll - ok
11:13:10.0233 3024 [ C83F1201B967A3E6A7B891ED4574B7E5 ] C:\Program Files\Soluto\PCGDataAggregation.dll
11:13:10.0233 3024 C:\Program Files\Soluto\PCGDataAggregation.dll - ok
11:13:10.0237 3024 [ FFB3E32B9B69EFEF5AFA96DAA023AADA ] C:\Program Files\Soluto\System.Data.SqlServerCe.dll
11:13:10.0237 3024 C:\Program Files\Soluto\System.Data.SqlServerCe.dll - ok
11:13:10.0241 3024 [ 678977D12C8E130A4F7A5B75FA37660E ] C:\Program Files\Soluto\PCGBootVisualizingCore.dll
11:13:10.0241 3024 C:\Program Files\Soluto\PCGBootVisualizingCore.dll - ok
11:13:10.0248 3024 [ 5E7C2EE3A5972D1D418AA8EA2EC79AC8 ] C:\Program Files\Soluto\PCGSAProbe.dll
11:13:10.0248 3024 C:\Program Files\Soluto\PCGSAProbe.dll - ok
11:13:10.0253 3024 [ 7346304D3A377114C9FD2A5E4A7952AC ] C:\Program Files\Soluto\Interop.NetFwTypeLib.dll
11:13:10.0253 3024 C:\Program Files\Soluto\Interop.NetFwTypeLib.dll - ok
11:13:10.0258 3024 [ A21FB1C7BB91B70C6C560B0BE9879762 ] C:\Program Files\Soluto\PCGBrowsersProbe.dll
11:13:10.0258 3024 C:\Program Files\Soluto\PCGBrowsersProbe.dll - ok
11:13:10.0262 3024 [ 487C45DBC72C220FF8CE7E5E5B3CB30D ] C:\Program Files\CrashPlan\md5.dll
11:13:10.0262 3024 C:\Program Files\CrashPlan\md5.dll - ok
11:13:10.0266 3024 [ 080893A2996E13C889EF19CE3EC886C2 ] C:\Program Files\Soluto\PCGCatalogItemCache.dll
11:13:10.0266 3024 C:\Program Files\Soluto\PCGCatalogItemCache.dll - ok
11:13:10.0271 3024 [ 53C2B4584A481CE44EDF82071844462D ] C:\Program Files\Soluto\PCGClientCommunication.dll
11:13:10.0271 3024 C:\Program Files\Soluto\PCGClientCommunication.dll - ok
11:13:10.0276 3024 [ 6C2FB281EB0FD765383447608EC85AA7 ] C:\Program Files\Soluto\PCGUpgrader.dll
11:13:10.0276 3024 C:\Program Files\Soluto\PCGUpgrader.dll - ok
11:13:10.0280 3024 [ A3BED6A00AC6A26A0FED827C3D5A5B5E ] C:\Program Files\Soluto\Community.CsharpSqlite.dll
11:13:10.0280 3024 C:\Program Files\Soluto\Community.CsharpSqlite.dll - ok
11:13:10.0287 3024 [ CFD2BF644B1074AEB2CB1088FDE01F29 ] C:\Program Files\Soluto\PCGDriverProbe.dll
11:13:10.0287 3024 C:\Program Files\Soluto\PCGDriverProbe.dll - ok
11:13:10.0289 3024 [ 7F59F405E8965D9198146FC216FCD0AA ] C:\Program Files\Soluto\Interop.IWshRuntimeLibrary.dll
11:13:10.0289 3024 C:\Program Files\Soluto\Interop.IWshRuntimeLibrary.dll - ok
11:13:10.0294 3024 [ D1209AA88045B0A10CA46C1F64B471CE ] C:\Program Files\Soluto\PCGWuInfo.dll
11:13:10.0294 3024 C:\Program Files\Soluto\PCGWuInfo.dll - ok
11:13:10.0298 3024 [ 7B78683D4F616094F55D326FF6354C01 ] C:\Program Files\Soluto\PCGAppControlPluginLoader.exe
11:13:10.0298 3024 C:\Program Files\Soluto\PCGAppControlPluginLoader.exe - ok
11:13:10.0302 3024 [ 8914B5D22A3533AAC60A9286FB3AA670 ] C:\Program Files\Soluto\PCGUsersCenter.dll
11:13:10.0302 3024 C:\Program Files\Soluto\PCGUsersCenter.dll - ok
11:13:10.0308 3024 [ EEB41F454945D8E26EDFBC4C17519034 ] C:\Program Files\Soluto\PCGClientCommon.dll
11:13:10.0308 3024 C:\Program Files\Soluto\PCGClientCommon.dll - ok
11:13:10.0311 3024 [ 09775EACA6F40FEB8C1B65C724491792 ] C:\Program Files\Soluto\PCGConfiguration.dll
11:13:10.0311 3024 C:\Program Files\Soluto\PCGConfiguration.dll - ok
11:13:10.0318 3024 [ 56810CE3B097DFB3495298CFBC682865 ] C:\Program Files\Soluto\PCGDatabase.dll
11:13:10.0318 3024 C:\Program Files\Soluto\PCGDatabase.dll - ok
11:13:10.0324 3024 [ B05FA4F5C50C521D5621BEC327F70EF2 ] C:\Program Files\Soluto\PCGCommunication.dll
11:13:10.0324 3024 C:\Program Files\Soluto\PCGCommunication.dll - ok
11:13:10.0329 3024 [ 52B4441C765F4AA0B6D5BA32DDDE3FB2 ] C:\Program Files\Soluto\PCGAzureEntityFramework.dll
11:13:10.0329 3024 C:\Program Files\Soluto\PCGAzureEntityFramework.dll - ok
11:13:10.0334 3024 [ 23215E9A3DD16388D4EE45C79F444C41 ] C:\Program Files\Soluto\PCGAzureShared.dll
11:13:10.0334 3024 C:\Program Files\Soluto\PCGAzureShared.dll - ok
11:13:10.0337 3024 [ 41FA458EF05CC64ADF23B1A46081315C ] C:\Program Files\Soluto\PCGPreCompiled.dll
11:13:10.0337 3024 C:\Program Files\Soluto\PCGPreCompiled.dll - ok
11:13:10.0342 3024 [ 39C673D0F565E3249F29EEBD9CDE92FA ] C:\Program Files\Soluto\PCGPrestoSerializer.dll
11:13:10.0342 3024 C:\Program Files\Soluto\PCGPrestoSerializer.dll - ok
11:13:10.0347 3024 [ 3F4E51A7E07E9750000CA334FCC9D7EC ] C:\Program Files\Soluto\Ionic.Zip.Reduced.dll
11:13:10.0347 3024 C:\Program Files\Soluto\Ionic.Zip.Reduced.dll - ok
11:13:10.0351 3024 [ C9ED00129C7528E4F666807899985A26 ] C:\Program Files\Soluto\Newtonsoft.Json.Net35.dll
11:13:10.0351 3024 C:\Program Files\Soluto\Newtonsoft.Json.Net35.dll - ok
11:13:10.0355 3024 [ 7BECD62D950174417987353869FFD1F8 ] C:\Program Files\CrashPlan\jre\bin\nio.dll
11:13:10.0355 3024 C:\Program Files\CrashPlan\jre\bin\nio.dll - ok
11:13:10.0359 3024 [ 73984E68023809E11C6101D7C9B9D5A1 ] C:\Program Files\Soluto\PCGFramework.dll
11:13:10.0359 3024 C:\Program Files\Soluto\PCGFramework.dll - ok
11:13:10.0364 3024 [ 00B6C734D3CBEDF8039A09FC5BA6D51E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoService\aeac587f32ed36eabe600e2461b66435\SolutoService.ni.exe
11:13:10.0364 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoService\aeac587f32ed36eabe600e2461b66435\SolutoService.ni.exe - ok
11:13:10.0371 3024 [ 347F21144FC4C98F2CF0A1C316349829 ] C:\Program Files\Soluto\Microsoft.ServiceHosting.ServiceRuntime.dll
11:13:10.0371 3024 C:\Program Files\Soluto\Microsoft.ServiceHosting.ServiceRuntime.dll - ok
11:13:10.0373 3024 [ 39084BA2B45458C26A45B8AF906ED535 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGFramework\5694a6620b43997e65b2fab673417898\PCGFramework.ni.dll
11:13:10.0373 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGFramework\5694a6620b43997e65b2fab673417898\PCGFramework.ni.dll - ok
11:13:10.0378 3024 [ 9D5189003F03369699BA17E8E0148569 ] C:\Program Files\CrashPlan\jre\bin\management.dll
11:13:10.0378 3024 C:\Program Files\CrashPlan\jre\bin\management.dll - ok
11:13:10.0382 3024 [ D4F004BBE4875D320F84E1BE1826D998 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\6959d34ab1890b008d20dd7e7476ea09\Newtonsoft.Json.Net35.ni.dll
11:13:10.0382 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\6959d34ab1890b008d20dd7e7476ea09\Newtonsoft.Json.Net35.ni.dll - ok
11:13:10.0388 3024 [ A6910B3BC8FBE23EF08166E35ECEAAEA ] C:\Program Files\CrashPlan\jre\bin\sunmscapi.dll
11:13:10.0388 3024 C:\Program Files\CrashPlan\jre\bin\sunmscapi.dll - ok
11:13:10.0393 3024 [ A4709E2986CE3916461E991985635A06 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Ionic.Zip.Reduced\c79f9143203f2a6d56428c6270526888\Ionic.Zip.Reduced.ni.dll
11:13:10.0394 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Ionic.Zip.Reduced\c79f9143203f2a6d56428c6270526888\Ionic.Zip.Reduced.ni.dll - ok
11:13:10.0403 3024 [ B8698D1C33FDAF1E133480D24E57F85B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPrestoSerializer\b34ad9f48ad4abb86be7af0d80ee449a\PCGPrestoSerializer.ni.dll
11:13:10.0403 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPrestoSerializer\b34ad9f48ad4abb86be7af0d80ee449a\PCGPrestoSerializer.ni.dll - ok
11:13:10.0406 3024 [ 8C34130F535A34B47265236C76293B57 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\a03d846e0d57366d17fedb2bddffd27f\PCGPreCompiled.ni.dll
11:13:10.0406 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\a03d846e0d57366d17fedb2bddffd27f\PCGPreCompiled.ni.dll - ok
11:13:10.0413 3024 [ 97A88CC4C4BD72641868822BEA47A5F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\a97e763917a6812c6711833188e35a6c\PCGAzureShared.ni.dll
11:13:10.0413 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\a97e763917a6812c6711833188e35a6c\PCGAzureShared.ni.dll - ok
11:13:10.0416 3024 [ 8E6BF6964F1DD1ACF1C2C700B6C0BAAB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\f59592b2055c0dcaf0a23ee7f78cc009\PCGAzureEntityFramework.ni.dll
11:13:10.0416 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\f59592b2055c0dcaf0a23ee7f78cc009\PCGAzureEntityFramework.ni.dll - ok
11:13:10.0421 3024 [ 56650830FCB22105D4F8B51A1D77C9FB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCommunication\9633227b13ab8f6db265b60b9f5b98d9\PCGCommunication.ni.dll
11:13:10.0422 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCommunication\9633227b13ab8f6db265b60b9f5b98d9\PCGCommunication.ni.dll - ok
11:13:10.0426 3024 [ 0F146E9AE83D414B95BA8A6562B4116B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDatabase\f04113c20a979f638a2a5c345f1f071f\PCGDatabase.ni.dll
11:13:10.0426 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDatabase\f04113c20a979f638a2a5c345f1f071f\PCGDatabase.ni.dll - ok
11:13:10.0431 3024 [ 6281328459BFBA4548CC58B370A0B0CA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\66a3e68892eb3efa7c42a9ed0551f72a\PCGConfiguration.ni.dll
11:13:10.0431 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\66a3e68892eb3efa7c42a9ed0551f72a\PCGConfiguration.ni.dll - ok
11:13:10.0436 3024 [ FFCF71162B6DEDE3CC1A46B926DFDB4E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\8d789a18b8bce548d92381a682885b4e\PCGClientCommon.ni.dll
11:13:10.0436 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\8d789a18b8bce548d92381a682885b4e\PCGClientCommon.ni.dll - ok
11:13:10.0440 3024 [ B0D4EBC1ED67C5E6022ECF8AC6CA3400 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAppControlPlugin#\6f9b51083d2780684a61cdf3fb173191\PCGAppControlPluginLoader.ni.dll
11:13:10.0440 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAppControlPlugin#\6f9b51083d2780684a61cdf3fb173191\PCGAppControlPluginLoader.ni.dll - ok
11:13:10.0445 3024 [ 36F537E05E3173013F628C8DD851ADAF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\eecb66aac5fba7779f7f608fbfbb5b09\PCGUsersCenter.ni.dll
11:13:10.0445 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\eecb66aac5fba7779f7f608fbfbb5b09\PCGUsersCenter.ni.dll - ok
11:13:10.0452 3024 [ 22AD8C449B9DB181DD1258F1AE46259F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\ff75ab2adcc25e29f6a488660cedd62e\Interop.IWshRuntimeLibrary.ni.dll
11:13:10.0452 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\ff75ab2adcc25e29f6a488660cedd62e\Interop.IWshRuntimeLibrary.ni.dll - ok
11:13:10.0455 3024 [ 1E99E5F71715D17216A7888D5C8DC65C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGWuInfo\07601c79dd1faa3520cdbf2b67164f99\PCGWuInfo.ni.dll
11:13:10.0455 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGWuInfo\07601c79dd1faa3520cdbf2b67164f99\PCGWuInfo.ni.dll - ok
11:13:10.0462 3024 [ 21A1F5CFE3EED011417FE61CF8335820 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\bdfc935a3d63e096cdc64feaab9b50bf\Community.CsharpSqlite.ni.dll
11:13:10.0462 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\bdfc935a3d63e096cdc64feaab9b50bf\Community.CsharpSqlite.ni.dll - ok
11:13:10.0465 3024 [ CD39E275A43AB781600DE0BC43FE7158 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\4cac955e4f34018025a2b9b2ea5a057f\PCGDriverProbe.ni.dll
11:13:10.0466 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\4cac955e4f34018025a2b9b2ea5a057f\PCGDriverProbe.ni.dll - ok
11:13:10.0471 3024 [ 9E91DF38072DE210AD52981371C35989 ] C:\Program Files\Soluto\SolutoUpdateService.exe
11:13:10.0471 3024 C:\Program Files\Soluto\SolutoUpdateService.exe - ok
11:13:10.0475 3024 [ 7B23B7DD87EF5ECDD34D5C429DDA7D9E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGUpgrader\0adf984e1339a06070bf1b43b2cb1e35\PCGUpgrader.ni.dll
11:13:10.0475 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGUpgrader\0adf984e1339a06070bf1b43b2cb1e35\PCGUpgrader.ni.dll - ok
11:13:10.0480 3024 [ 1C2096EF8A1E614208F6D3671F93496A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommunicat#\d2c7706d57798a018b9f971de9318980\PCGClientCommunication.ni.dll
11:13:10.0480 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommunicat#\d2c7706d57798a018b9f971de9318980\PCGClientCommunication.ni.dll - ok
11:13:10.0485 3024 [ DF8C7786AF1F1A4FC5B918239A619486 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemCache\4f7a10ca4dc3f2ce5f55c78677efec7e\PCGCatalogItemCache.ni.dll
11:13:10.0485 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemCache\4f7a10ca4dc3f2ce5f55c78677efec7e\PCGCatalogItemCache.ni.dll - ok
11:13:10.0491 3024 [ B82EF385D2CBD6702D4921DC282CB2D1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBrowsersProbe\1cb1ca7c706783721fab84ccebc7c250\PCGBrowsersProbe.ni.dll
11:13:10.0491 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBrowsersProbe\1cb1ca7c706783721fab84ccebc7c250\PCGBrowsersProbe.ni.dll - ok
11:13:10.0495 3024 [ E6CF5DDF47F4ED8F8CE0297C1FCA1E19 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.NetFwTypeLib\3f13a2f88a35ca93c4b73d3dbe7df758\Interop.NetFwTypeLib.ni.dll
11:13:10.0495 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.NetFwTypeLib\3f13a2f88a35ca93c4b73d3dbe7df758\Interop.NetFwTypeLib.ni.dll - ok
11:13:10.0500 3024 [ E5211AEBBB6D9E526DF73ADBC74A90B5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGSAProbe\a8c0fa1a3dd28aead1cd3f8d962d8a17\PCGSAProbe.ni.dll
11:13:10.0500 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGSAProbe\a8c0fa1a3dd28aead1cd3f8d962d8a17\PCGSAProbe.ni.dll - ok
11:13:10.0504 3024 [ AC45BDEAA1BF586D95972700EEE158FB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\9084c4bb4b879879194a590a26fa1f5d\PCGBootVisualizingCore.ni.dll
11:13:10.0504 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\9084c4bb4b879879194a590a26fa1f5d\PCGBootVisualizingCore.ni.dll - ok
11:13:10.0509 3024 [ 5BCFEBF89B1A468651197A25F7EE33C1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDataAggregation\09ea838292f7a86f09a6a735a8e5011d\PCGDataAggregation.ni.dll
11:13:10.0509 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDataAggregation\09ea838292f7a86f09a6a735a8e5011d\PCGDataAggregation.ni.dll - ok
11:13:10.0514 3024 [ 22A3D905E25F8E9A32E1409BA08ACEC2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemFootp#\42569ce579173a62ef56ff2d52963153\PCGCatalogItemFootprint.ni.dll
11:13:10.0514 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemFootp#\42569ce579173a62ef56ff2d52963153\PCGCatalogItemFootprint.ni.dll - ok
11:13:10.0526 3024 [ 5C96E9F85F09B51F664EB237D81A62E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGEntities\d72a5981e4844624d5d9140dde62c4bd\PCGEntities.ni.dll
11:13:10.0526 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGEntities\d72a5981e4844624d5d9140dde62c4bd\PCGEntities.ni.dll - ok
11:13:10.0531 3024 [ 28E4D67DB8F5A83A47CA92F931D7D5EB ] C:\Windows\Temp\jna1148110855410630285.dll
11:13:10.0531 3024 C:\Windows\Temp\jna1148110855410630285.dll - ok
11:13:10.0537 3024 [ F2F8181A2F06D5AFF1AE2AADF0815724 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\2ab695080d435379d111ff02ccdc845b\SolutoCleanup.ni.dll
11:13:10.0537 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\2ab695080d435379d111ff02ccdc845b\SolutoCleanup.ni.dll - ok
11:13:10.0539 3024 [ 41E4E09550D7CBD33128277CF6B526EB ] C:\Program Files\CrashPlan\cpnative.dll
11:13:10.0540 3024 C:\Program Files\CrashPlan\cpnative.dll - ok
11:13:10.0544 3024 [ 6BE3F684C95A90DA676F285322E84827 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
11:13:10.0544 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
11:13:10.0548 3024 [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll
11:13:10.0548 3024 C:\Windows\System32\wiatrace.dll - ok
11:13:10.0552 3024 [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll
11:13:10.0553 3024 C:\Windows\System32\wsdchngr.dll - ok
11:13:10.0557 3024 [ 608C345A255D82A6289C2D468EB41FD7 ] C:\Windows\System32\drivers\tcpipreg.sys
11:13:10.0557 3024 C:\Windows\System32\drivers\tcpipreg.sys - ok
11:13:10.0564 3024 [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll
11:13:10.0564 3024 C:\Windows\System32\swprv.dll - ok
11:13:10.0568 3024 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
11:13:10.0568 3024 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok
11:13:10.0572 3024 [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll
11:13:10.0572 3024 C:\Windows\System32\wbemcomn.dll - ok
11:13:10.0576 3024 [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll
11:13:10.0576 3024 C:\Windows\System32\wbem\WinMgmtR.dll - ok
11:13:10.0583 3024 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL
11:13:10.0583 3024 C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok
11:13:10.0590 3024 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll
11:13:10.0590 3024 C:\Windows\System32\PortableDeviceApi.dll - ok
11:13:10.0593 3024 [ B53BD9E63867CD9FD853F666CA172713 ] C:\Windows\System32\PortableDeviceConnectApi.dll
11:13:10.0593 3024 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
11:13:10.0598 3024 [ 13B5F255E90624A5BA0441D39CFB6BE2 ] C:\Windows\System32\drivers\WUDFPf.sys
11:13:10.0598 3024 C:\Windows\System32\drivers\WUDFPf.sys - ok
11:13:10.0602 3024 [ C649F293B8B047A2694F3C615D09BF17 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
11:13:10.0602 3024 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok
11:13:10.0606 3024 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] C:\Windows\System32\drivers\WUDFRd.sys
11:13:10.0606 3024 C:\Windows\System32\drivers\WUDFRd.sys - ok
11:13:10.0611 3024 [ DEB9D08750423069647C3A066CEC7A1B ] C:\Windows\System32\tquery.dll
11:13:10.0611 3024 C:\Windows\System32\tquery.dll - ok
11:13:10.0615 3024 [ 09C7859269563C240AB2AAAB574483DD ] C:\Windows\System32\WUDFHost.exe
11:13:10.0615 3024 C:\Windows\System32\WUDFHost.exe - ok
11:13:10.0619 3024 [ 218B73EA8341EA9FDF018D43052E790A ] C:\Windows\System32\mssrch.dll
11:13:10.0619 3024 C:\Windows\System32\mssrch.dll - ok
11:13:10.0623 3024 [ 4B72B5B342ADA4DE8DEEA39CCE465B58 ] C:\Windows\System32\WUDFx.dll
11:13:10.0623 3024 C:\Windows\System32\WUDFx.dll - ok
11:13:10.0627 3024 [ 119A487B94FCB54D5154EBFBFA124755 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
11:13:10.0627 3024 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
11:13:10.0631 3024 [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll
11:13:10.0631 3024 C:\Windows\System32\wlanapi.dll - ok
11:13:10.0635 3024 [ BFCC507ECA58F11C5FED96E192B878CB ] C:\Windows\System32\drivers\XAudio.sys
11:13:10.0635 3024 C:\Windows\System32\drivers\XAudio.sys - ok
11:13:10.0642 3024 [ AAB5FEAABF4CB6F76D794203831C8D94 ] C:\Windows\System32\msidle.dll
11:13:10.0642 3024 C:\Windows\System32\msidle.dll - ok
11:13:10.0646 3024 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll
11:13:10.0646 3024 C:\Windows\System32\netprofm.dll - ok
11:13:10.0650 3024 [ B458B58F7BB97C48D01AC3CF5805AAAC ] C:\Windows\System32\Query.dll
11:13:10.0650 3024 C:\Windows\System32\Query.dll - ok
11:13:10.0656 3024 [ BF7E4D6F60A6D9E866432855C6F8C262 ] C:\Windows\System32\sqmapi.dll
11:13:10.0656 3024 C:\Windows\System32\sqmapi.dll - ok
11:13:10.0661 3024 [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\System32\WMVCORE.DLL
11:13:10.0661 3024 C:\Windows\System32\WMVCORE.DLL - ok
11:13:10.0664 3024 [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\System32\WMASF.DLL
11:13:10.0664 3024 C:\Windows\System32\WMASF.DLL - ok
11:13:10.0666 3024 [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll
11:13:10.0667 3024 C:\Windows\System32\netcfgx.dll - ok
11:13:10.0672 3024 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll
11:13:10.0672 3024 C:\Windows\System32\npmproxy.dll - ok
11:13:10.0678 3024 [ B2B117BD8D1EA80536CDD91797EF4A0A ] C:\Windows\System32\PortableDeviceClassExtension.dll
11:13:10.0678 3024 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
11:13:10.0685 3024 [ F0062778F50838145AC46B384FFB4FA3 ] C:\Windows\System32\pcadm.dll
11:13:10.0685 3024 C:\Windows\System32\pcadm.dll - ok
11:13:10.0687 3024 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll
11:13:10.0687 3024 C:\Windows\System32\PortableDeviceTypes.dll - ok
11:13:10.0693 3024 [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll
11:13:10.0693 3024 C:\Windows\System32\diagperf.dll - ok
11:13:10.0698 3024 [ F21F255B91CA4F04E4250DECD2067CBB ] C:\Windows\System32\bitsperf.dll
11:13:10.0698 3024 C:\Windows\System32\bitsperf.dll - ok
11:13:10.0701 3024 [ A952D0DED445F26AEFCF593A935AB300 ] C:\Windows\System32\hnetcfg.dll
11:13:10.0701 3024 C:\Windows\System32\hnetcfg.dll - ok
11:13:10.0705 3024 [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll
11:13:10.0705 3024 C:\Windows\System32\wbem\wbemprox.dll - ok
11:13:10.0709 3024 [ FEA6D21F78922D641A0C9346D885133B ] C:\Windows\System32\mssprxy.dll
11:13:10.0709 3024 C:\Windows\System32\mssprxy.dll - ok
11:13:10.0716 3024 [ 632557F2495931D952161465AA177B3B ] C:\Windows\System32\bitsigd.dll
11:13:10.0716 3024 C:\Windows\System32\bitsigd.dll - ok
11:13:10.0720 3024 [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll
11:13:10.0720 3024 C:\Windows\System32\upnp.dll - ok
11:13:10.0724 3024 [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll
11:13:10.0724 3024 C:\Windows\System32\pnpts.dll - ok
11:13:10.0730 3024 [ 83C2F5076E1B4A63C04F2B14EE7CAD47 ] C:\Windows\System32\wbem\wbemdisp.dll
11:13:10.0730 3024 C:\Windows\System32\wbem\wbemdisp.dll - ok
11:13:10.0734 3024 [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll
11:13:10.0734 3024 C:\Windows\System32\wbem\wmiutils.dll - ok
11:13:10.0738 3024 [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll
11:13:10.0738 3024 C:\Windows\System32\wbem\wbemcore.dll - ok
11:13:10.0743 3024 [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll
11:13:10.0743 3024 C:\Windows\System32\wbem\esscli.dll - ok
11:13:10.0749 3024 [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll
11:13:10.0750 3024 C:\Windows\System32\wbem\fastprox.dll - ok
11:13:10.0752 3024 [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll
11:13:10.0752 3024 C:\Windows\System32\wbem\wbemsvc.dll - ok
11:13:10.0756 3024 [ B8A21907FE2F1A113F3487D9AB60BEF9 ] C:\Windows\System32\en-US\tquery.dll.mui
11:13:10.0756 3024 C:\Windows\System32\en-US\tquery.dll.mui - ok
11:13:10.0761 3024 [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll
11:13:10.0761 3024 C:\Windows\System32\wbem\repdrvfs.dll - ok
11:13:10.0765 3024 [ F85134BF76CB335A39F8D7BC4173D4FB ] C:\Windows\System32\msscb.dll
11:13:10.0765 3024 C:\Windows\System32\msscb.dll - ok
11:13:10.0771 3024 [ B288FF7C1987A736726E87C79148C360 ] C:\Windows\System32\PortableDeviceWiaCompat.dll
11:13:10.0771 3024 C:\Windows\System32\PortableDeviceWiaCompat.dll - ok
11:13:10.0774 3024 [ 10F13FFF542FEC4A2C4FA734EEBE56B9 ] C:\Windows\System32\qmgrprxy.dll
11:13:10.0774 3024 C:\Windows\System32\qmgrprxy.dll - ok
11:13:10.0778 3024 [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll
11:13:10.0778 3024 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
11:13:10.0787 3024 [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll
11:13:10.0787 3024 C:\Windows\System32\wbem\wbemess.dll - ok
11:13:10.0792 3024 [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe
11:13:10.0793 3024 C:\Windows\System32\dllhost.exe - ok
11:13:10.0797 3024 [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll
11:13:10.0797 3024 C:\Windows\System32\wbem\NCProv.dll - ok
11:13:10.0801 3024 [ 9495FCC01D7AB7B60E5B8BA7AEFE9E3D ] C:\Windows\System32\wbem\WmiPrvSE.exe
11:13:10.0801 3024 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
11:13:10.0805 3024 [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll
11:13:10.0805 3024 C:\Windows\System32\wbem\wbemcons.dll - ok
11:13:10.0809 3024 [ ED7AC49AE54279C36101712E64044138 ] C:\Windows\System32\wbem\vsswmi.dll
11:13:10.0809 3024 C:\Windows\System32\wbem\vsswmi.dll - ok
11:13:10.0813 3024 [ 67BB7141F7F5F37411F796943B3418B6 ] C:\Windows\System32\framedynos.dll
11:13:10.0813 3024 C:\Windows\System32\framedynos.dll - ok
11:13:10.0817 3024 [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe
11:13:10.0817 3024 C:\Windows\System32\userinit.exe - ok
11:13:10.0822 3024 [ 13953F10D729BB6528EA5C13202CD30D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\e1053db6ce65cc97268fc79cc380f0c1\System.Data.ni.dll
11:13:10.0822 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\e1053db6ce65cc97268fc79cc380f0c1\System.Data.ni.dll - ok
11:13:10.0828 3024 [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe
11:13:10.0828 3024 C:\Windows\System32\taskeng.exe - ok
11:13:10.0834 3024 [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe
11:13:10.0834 3024 C:\Windows\explorer.exe - ok
11:13:10.0836 3024 [ F8DE6670A5F7A1676C640925A1112B1E ] C:\Windows\System32\xolehlp.dll
11:13:10.0836 3024 C:\Windows\System32\xolehlp.dll - ok
11:13:10.0840 3024 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll
11:13:10.0840 3024 C:\Windows\System32\dssenh.dll - ok
11:13:10.0844 3024 [ D80C6539C00CB4F5D59066865479C308 ] C:\Windows\System32\dwmredir.dll
11:13:10.0844 3024 C:\Windows\System32\dwmredir.dll - ok
11:13:10.0848 3024 [ C99403A5B641520DAED0021DDA06F272 ] C:\Windows\System32\milcore.dll
11:13:10.0848 3024 C:\Windows\System32\milcore.dll - ok
11:13:10.0853 3024 [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll
11:13:10.0853 3024 C:\Windows\System32\TSChannel.dll - ok
11:13:10.0857 3024 [ AF25ECAA3D7F85DC13E348A6F79AD40D ] C:\Windows\System32\vss_ps.dll
11:13:10.0857 3024 C:\Windows\System32\vss_ps.dll - ok
11:13:10.0861 3024 [ A36E1A0CB17DDDF6E0BF3CEA4E7A52EC ] C:\Windows\System32\catsrvut.dll
11:13:10.0861 3024 C:\Windows\System32\catsrvut.dll - ok
11:13:10.0868 3024 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files\Google\Update\GoogleUpdate.exe
11:13:10.0868 3024 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
11:13:10.0873 3024 [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll
11:13:10.0873 3024 C:\Windows\System32\HotStartUserAgent.dll - ok
11:13:10.0876 3024 [ DE3021B382D37122850280B6392397CD ] C:\Windows\System32\mfcsubs.dll
11:13:10.0876 3024 C:\Windows\System32\mfcsubs.dll - ok
11:13:10.0881 3024 [ 169F4763D943FB712948292066318635 ] C:\Windows\System32\catsrv.dll
11:13:10.0881 3024 C:\Windows\System32\catsrv.dll - ok
11:13:10.0886 3024 [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll
11:13:10.0886 3024 C:\Windows\System32\PlaySndSrv.dll - ok
11:13:10.0891 3024 [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll
11:13:10.0891 3024 C:\Windows\System32\TMM.dll - ok
11:13:10.0896 3024 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\goopdate.dll
11:13:10.0896 3024 C:\Program Files\Google\Update\1.3.21.123\goopdate.dll - ok
11:13:10.0903 3024 [ 95A5497D129D95D12A46F7848AFFE1DB ] C:\Windows\System32\comsvcs.dll
11:13:10.0903 3024 C:\Windows\System32\comsvcs.dll - ok
11:13:10.0909 3024 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll
11:13:10.0909 3024 C:\Windows\System32\d3d9.dll - ok
11:13:10.0915 3024 [ 506B6592BF6116521F152DCCB39A6143 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
11:13:10.0915 3024 C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
11:13:10.0918 3024 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll
11:13:10.0918 3024 C:\Windows\System32\d3d8thk.dll - ok
11:13:10.0926 3024 [ D598DDFDF2D30A0C03F95DCEC236A76E ] C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
11:13:10.0926 3024 C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe - ok
11:13:10.0935 3024 [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll
11:13:10.0935 3024 C:\Windows\System32\MsCtfMonitor.dll - ok
11:13:10.0939 3024 [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll
11:13:10.0939 3024 C:\Windows\System32\msutb.dll - ok
11:13:10.0942 3024 [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL
11:13:10.0942 3024 C:\Windows\System32\QAGENT.DLL - ok
11:13:10.0946 3024 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll
11:13:10.0946 3024 C:\Windows\System32\shdocvw.dll - ok
11:13:10.0951 3024 [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll
11:13:10.0951 3024 C:\Windows\System32\browseui.dll - ok
11:13:10.0956 3024 [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL
11:13:10.0956 3024 C:\Windows\System32\QUTIL.DLL - ok
11:13:10.0961 3024 [ 4D153BDE01AA3FD33414199052051549 ] C:\Program Files\AVAST Software\Avast\ashShell.dll
11:13:10.0961 3024 C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
11:13:10.0965 3024 [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
11:13:10.0965 3024 C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
11:13:10.0970 3024 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll
11:13:11.0082 3024 C:\Windows\System32\EhStorShell.dll - ok
11:13:11.0085 3024 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll
11:13:11.0085 3024 C:\Windows\System32\imageres.dll - ok
11:13:11.0089 3024 [ 01996DB308521C0725FB0C2F6DE05770 ] C:\Windows\System32\nvd3dum.dll
11:13:11.0089 3024 C:\Windows\System32\nvd3dum.dll - ok
11:13:11.0094 3024 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
11:13:11.0094 3024 C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
11:13:11.0098 3024 [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll
11:13:11.0099 3024 C:\Windows\System32\IconCodecService.dll - ok
11:13:11.0103 3024 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe
11:13:11.0103 3024 C:\Windows\System32\runonce.exe - ok
11:13:11.0109 3024 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe
11:13:11.0109 3024 C:\Windows\System32\cmd.exe - ok
11:13:11.0112 3024 [ 8DD29072E90E9EAB909D388D629248AA ] C:\Windows\System32\ieframe.dll
11:13:11.0112 3024 C:\Windows\System32\ieframe.dll - ok
11:13:11.0118 3024 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Owner\AppData\Local\Temp\55998840-E912-4B0D-84A0-F5EB409D899C.exe
11:13:11.0118 3024 C:\Users\Owner\AppData\Local\Temp\55998840-E912-4B0D-84A0-F5EB409D899C.exe - ok
11:13:11.0121 3024 [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\System32\mstask.dll
11:13:11.0121 3024 C:\Windows\System32\mstask.dll - ok
11:13:11.0128 3024 [ CBD50857A564603D38B5A049B4DAFA34 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
11:13:11.0128 3024 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
11:13:11.0131 3024 [ 150B47A4B633D97C497292A2BDC27C48 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
11:13:11.0131 3024 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
11:13:11.0138 3024 [ D6346D6DACAF578CA7D85EE564698E5A ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll
11:13:11.0138 3024 C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll - ok
11:13:11.0141 3024 [ 4E5835504DD31FC688EE304CFEA5BC9A ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
11:13:11.0141 3024 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
11:13:11.0145 3024 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
11:13:11.0145 3024 C:\Windows\System32\ie4uinit.exe - ok
11:13:11.0152 3024 [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl
11:13:11.0152 3024 C:\Windows\System32\timedate.cpl - ok
11:13:11.0158 3024 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll
11:13:11.0158 3024 C:\Windows\System32\actxprxy.dll - ok
11:13:11.0161 3024 [ FF41E1AC301F51E16F61AD7C0F45467C ] C:\Windows\System32\msshsq.dll
11:13:11.0161 3024 C:\Windows\System32\msshsq.dll - ok
11:13:11.0165 3024 [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll
11:13:11.0165 3024 C:\Windows\System32\NaturalLanguage6.dll - ok
11:13:11.0169 3024 [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll
11:13:11.0169 3024 C:\Windows\System32\NlsData0009.dll - ok
11:13:11.0175 3024 [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll
11:13:11.0175 3024 C:\Windows\System32\NlsLexicons0009.dll - ok
11:13:11.0178 3024 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\38853322.sys
11:13:11.0178 3024 C:\Windows\System32\drivers\38853322.sys - ok
11:13:11.0182 3024 [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\System32\linkinfo.dll
11:13:11.0182 3024 C:\Windows\System32\linkinfo.dll - ok
11:13:11.0187 3024 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll
11:13:11.0187 3024 C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll - ok
11:13:11.0191 3024 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll
11:13:11.0191 3024 C:\Windows\System32\ntshrui.dll - ok
11:13:11.0195 3024 [ 04044BF8E6989BE45FA718C24407CA28 ] C:\Windows\System32\networkexplorer.dll
11:13:11.0196 3024 C:\Windows\System32\networkexplorer.dll - ok
11:13:11.0200 3024 [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\System32\mlang.dll
11:13:11.0200 3024 C:\Windows\System32\mlang.dll - ok
11:13:11.0203 3024 [ 7088B136BB58A5F95CF0DE8386CA6C0F ] C:\hp\KBD\KbdStub.exe
11:13:11.0203 3024 C:\hp\KBD\KbdStub.exe - ok
11:13:11.0211 3024 [ 61216539E55DDF2F78E421E7EF140650 ] C:\Windows\System32\ExplorerFrame.dll
11:13:11.0211 3024 C:\Windows\System32\ExplorerFrame.dll - ok
11:13:11.0214 3024 [ B5950DF243837D8217F4E597919B224A ] C:\Windows\System32\stobject.dll
11:13:11.0214 3024 C:\Windows\System32\stobject.dll - ok
11:13:11.0218 3024 [ EC69B16644C613F41A57169F8D068F1D ] C:\Windows\System32\batmeter.dll
11:13:11.0218 3024 C:\Windows\System32\batmeter.dll - ok
11:13:11.0222 3024 [ 85B8925F1A477DF7AEC93CABBEB04F1F ] C:\hp\support\hpsysdrv.exe
11:13:11.0222 3024 C:\hp\support\hpsysdrv.exe - ok
11:13:11.0227 3024 [ AB33D2190568952F7F30BE4C5C3D9231 ] C:\Program Files\ABBYY FineReader 5.0 Sprint\Sprint.exe
11:13:11.0227 3024 C:\Program Files\ABBYY FineReader 5.0 Sprint\Sprint.exe - ok
11:13:11.0232 3024 [ F8B91C91225E5CAA2B2F0370201021C0 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
11:13:11.0232 3024 C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe - ok
11:13:11.0239 3024 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
11:13:11.0239 3024 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
11:13:11.0244 3024 [ DE7F813217EC88C0A6D4D8F2F39D7949 ] C:\Windows\System32\msiltcfg.dll
11:13:11.0244 3024 C:\Windows\System32\msiltcfg.dll - ok
11:13:11.0248 3024 [ A2418D3C557C0A0C634DA713A8AC3789 ] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
11:13:11.0248 3024 C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe - ok
11:13:11.0253 3024 [ AF48375E85F787249717C183AC51FEFE ] C:\Program Files\Adobe\Adobe Audition 2.0\Audition.exe
11:13:11.0253 3024 C:\Program Files\Adobe\Adobe Audition 2.0\Audition.exe - ok
11:13:11.0258 3024 [ A387D093B66727BF3EDF517E2F4D87C5 ] C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe
11:13:11.0258 3024 C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe - ok
11:13:11.0263 3024 [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files\QuickTime\QTTask.exe
11:13:11.0263 3024 C:\Program Files\QuickTime\QTTask.exe - ok
11:13:11.0268 3024 [ C1522A3E4D885ED0D97968F1CE7BA1CB ] C:\Program Files\Adobe\Adobe Bridge\Bridge.exe
11:13:11.0268 3024 C:\Program Files\Adobe\Adobe Bridge\Bridge.exe - ok
11:13:11.0272 3024 [ 09A63A79A74B426DD695B83AE52A04D5 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll
11:13:11.0272 3024 C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll - ok
11:13:11.0277 3024 [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
11:13:11.0277 3024 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
11:13:11.0284 3024 [ 363C29784A259D60B44596CD5B0091D7 ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
11:13:11.0284 3024 C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe - ok
11:13:11.0290 3024 [ B2B5BC59367AF587CC5808BE3B7D587E ] C:\Program Files\Adobe\Adobe Encore DVD 2.0\Adobe Encore DVD.exe
11:13:11.0290 3024 C:\Program Files\Adobe\Adobe Encore DVD 2.0\Adobe Encore DVD.exe - ok
11:13:11.0295 3024 [ 24081AE1E47A890025A91A25D79EC9B0 ] C:\Program Files\Logitech\LWS\Webcam Software\QTCore4.dll
11:13:11.0295 3024 C:\Program Files\Logitech\LWS\Webcam Software\QTCore4.dll - ok
11:13:11.0299 3024 [ F773D2886EDF879860F220EB59C4552B ] C:\Program Files\DivX\DivX Update\DivXUpdate.exe
11:13:11.0299 3024 C:\Program Files\DivX\DivX Update\DivXUpdate.exe - ok
11:13:11.0303 3024 [ F7BFCBB5791E01368907BAE6FB324F2E ] C:\Program Files\Adobe\Adobe Help Center\ahc.exe
11:13:11.0303 3024 C:\Program Files\Adobe\Adobe Help Center\ahc.exe - ok
11:13:11.0307 3024 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
11:13:11.0307 3024 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
11:13:11.0312 3024 [ 5768F2675ED4389DBEF2736316523C76 ] C:\Program Files\Microsoft Windows Performance Toolkit\GPUView\GPUView.exe
11:13:11.0312 3024 C:\Program Files\Microsoft Windows Performance Toolkit\GPUView\GPUView.exe - ok
11:13:11.0316 3024 [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files\iTunes\iTunesHelper.exe
11:13:11.0316 3024 C:\Program Files\iTunes\iTunesHelper.exe - ok
11:13:11.0320 3024 [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
11:13:11.0320 3024 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
11:13:11.0324 3024 [ 30F02D9C55053367E26A11482F51E255 ] C:\Windows\System32\SndVolSSO.dll
11:13:11.0325 3024 C:\Windows\System32\SndVolSSO.dll - ok
11:13:11.0331 3024 [ 624B6DA379D80BDE0708F9CE00F5256D ] C:\Program Files\Soluto\Soluto.exe
11:13:11.0331 3024 C:\Program Files\Soluto\Soluto.exe - ok
11:13:11.0336 3024 [ 313B30189557A2E2793F845DE0F0A4D5 ] C:\Windows\ehome\ehSSO.dll
11:13:11.0336 3024 C:\Windows\ehome\ehSSO.dll - ok
11:13:11.0339 3024 [ 0F1DFFD4332D2BE588B66964EF029A4E ] C:\Program Files\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\Illustrator.exe
11:13:11.0339 3024 C:\Program Files\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\Illustrator.exe - ok
11:13:11.0343 3024 [ B7D732BA71137EFE3A36CEF5E2E5C0E4 ] C:\BSAPRINT\Bsaprint.exe
11:13:11.0343 3024 C:\BSAPRINT\Bsaprint.exe - ok
11:13:11.0348 3024 [ BA7D96395C57AAC5566FCA0C8D8EE596 ] C:\Program Files\Calibrize\CalibrizeLoader.exe
11:13:11.0348 3024 C:\Program Files\Calibrize\CalibrizeLoader.exe - ok
11:13:11.0352 3024 [ E98E402067978DB38282158F9E8609CA ] C:\Windows\System32\netshell.dll
11:13:11.0352 3024 C:\Windows\System32\netshell.dll - ok
11:13:11.0356 3024 [ E7E435A8E358B1FCF1788B76A8227C98 ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.dll
11:13:11.0356 3024 C:\Program Files\DivX\DivX Media Server\DivXMediaServer.dll - ok
11:13:11.0360 3024 [ 9BE95786D648A9D0D31CAF5D98DBE3A2 ] C:\Program Files\Logitech\LWS\Webcam Software\QTGui4.dll
11:13:11.0361 3024 C:\Program Files\Logitech\LWS\Webcam Software\QTGui4.dll - ok
11:13:11.0365 3024 [ 75AD59B9B12EB194486BE8D97B062994 ] C:\Windows\System32\pnidui.dll
11:13:11.0365 3024 C:\Windows\System32\pnidui.dll - ok
11:13:11.0369 3024 [ 8A85C434926A3BE1663205CD9C9E57D5 ] C:\Program Files\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\AdobeUpdater.dll
11:13:11.0369 3024 C:\Program Files\Adobe\Adobe Illustrator CS2\Support Files\Contents\Windows\AdobeUpdater.dll - ok
11:13:11.0373 3024 [ AF20C1D0F8BE93925E485055C01F8CED ] C:\BSAPRINT\Bsamsgr.exe
11:13:11.0373 3024 C:\BSAPRINT\Bsamsgr.exe - ok
11:13:11.0378 3024 [ 1E469063A28AFA778999B98722F48513 ] C:\Program Files\Calibrize\CalibrizeResume.exe
11:13:11.0378 3024 C:\Program Files\Calibrize\CalibrizeResume.exe - ok
11:13:11.0385 3024 [ 339D9FFAC1B74C1F244D5D05310AC9D2 ] C:\Program Files\Adobe\Adobe Photoshop CS2\ImageReady.exe
11:13:11.0385 3024 C:\Program Files\Adobe\Adobe Photoshop CS2\ImageReady.exe - ok
11:13:11.0388 3024 [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll
11:13:11.0388 3024 C:\Windows\System32\rasdlg.dll - ok
11:13:11.0393 3024 [ E7FC2CFE8953E69D665A4A798F4D69D4 ] C:\Program Files\Logitech\LWS\Webcam Software\QTXml4.dll
11:13:11.0393 3024 C:\Program Files\Logitech\LWS\Webcam Software\QTXml4.dll - ok
11:13:11.0397 3024 [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll
11:13:11.0397 3024 C:\Windows\System32\mprapi.dll - ok
11:13:11.0401 3024 [ 2C6B13609A14AEAD0E7D5B181FD726E4 ] C:\Program Files\Polkast\PolkastLibrary.exe
11:13:11.0401 3024 C:\Program Files\Polkast\PolkastLibrary.exe - ok
11:13:11.0409 3024 [ C5DD2923197C2107969B5380C076A296 ] C:\Program Files\Adobe\Adobe OnLocation CS3\Adobe OnLocation.exe
11:13:11.0409 3024 C:\Program Files\Adobe\Adobe OnLocation CS3\Adobe OnLocation.exe - ok
11:13:11.0411 3024 [ 8A86F329C559748E66A8CF80ADBF1765 ] C:\Program Files\Polkast\PolkastServiceApp.exe
11:13:11.0411 3024 C:\Program Files\Polkast\PolkastServiceApp.exe - ok
11:13:11.0418 3024 [ 2C6DFC761F1DAE61940C7EAE97EBDB19 ] C:\Program Files\Skype\Phone\Skype.exe
11:13:11.0419 3024 C:\Program Files\Skype\Phone\Skype.exe - ok
11:13:11.0421 3024 [ 4A839160ED1963F9A1526DDA2D1233B2 ] C:\Windows\System32\AltTab.dll
11:13:11.0421 3024 C:\Windows\System32\AltTab.dll - ok
11:13:11.0425 3024 [ F4FA892D15433F82098A640637C3315A ] C:\Program Files\Adobe\Adobe Photoshop CS2\Photoshop.exe
11:13:11.0425 3024 C:\Program Files\Adobe\Adobe Photoshop CS2\Photoshop.exe - ok
11:13:11.0433 3024 [ C2FB797884D9CC30AC0B5FB28146FE7A ] C:\Program Files\Windows Live\Messenger\uccapi.dll
11:13:11.0433 3024 C:\Program Files\Windows Live\Messenger\uccapi.dll - ok
11:13:11.0436 3024 [ 6C64B7C3D109169BF6007B90D41DAA2E ] C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
11:13:11.0436 3024 C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll - ok
11:13:11.0441 3024 [ 39D8EAA29CC2CC144E2B1214FA774F6A ] C:\Program Files\Windows Live\Messenger\vvpltfrm.dll
11:13:11.0441 3024 C:\Program Files\Windows Live\Messenger\vvpltfrm.dll - ok
11:13:11.0445 3024 [ 8EB5E95365AC5796E0C8175267D50744 ] C:\Program Files\Windows Live\Messenger\shareanything.dll
11:13:11.0445 3024 C:\Program Files\Windows Live\Messenger\shareanything.dll - ok
11:13:11.0450 3024 [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files\iTunes\iTunesHelper.dll
11:13:11.0450 3024 C:\Program Files\iTunes\iTunesHelper.dll - ok
11:13:11.0454 3024 [ 6B5C53E0932C510606D700B7A896EF73 ] C:\Windows\System32\WPDShServiceObj.dll
11:13:11.0454 3024 C:\Windows\System32\WPDShServiceObj.dll - ok
11:13:11.0458 3024 [ 24B1666FD14CC71C7B0679AC61625B90 ] C:\Program Files\Windows Live\Messenger\msnmsgr.exe
11:13:11.0458 3024 C:\Program Files\Windows Live\Messenger\msnmsgr.exe - ok
11:13:11.0462 3024 [ 5444A65E138A16284C126B54DA7E6B8B ] C:\Program Files\Debugging Tools for Windows (x86)\gflags.exe
11:13:11.0462 3024 C:\Program Files\Debugging Tools for Windows (x86)\gflags.exe - ok
11:13:11.0468 3024 [ CC19B60A901A415624F5771F1F0A6060 ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
11:13:11.0468 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe - ok
11:13:11.0473 3024 [ 1D0E69AA5BD5C76E443B5B189ADD049A ] C:\Program Files\CrashPlan\CrashPlanTray.exe
11:13:11.0473 3024 C:\Program Files\CrashPlan\CrashPlanTray.exe - ok
11:13:11.0477 3024 [ 744F08CF9ACFFB1C715191D04DEEE907 ] C:\Windows\System32\srchadmin.dll
11:13:11.0477 3024 C:\Windows\System32\srchadmin.dll - ok
11:13:11.0484 3024 [ C40C01A960007E2E46E4E6384292F7A4 ] C:\Program Files\Adobe\Adobe Premiere Pro 2.0\Adobe Premiere Pro.exe
11:13:11.0484 3024 C:\Program Files\Adobe\Adobe Premiere Pro 2.0\Adobe Premiere Pro.exe - ok
11:13:11.0489 3024 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll
11:13:11.0489 3024 C:\Windows\System32\webcheck.dll - ok
11:13:11.0495 3024 [ 4ACEA0C4BB15ACE55E3AE5EC4E88DD55 ] C:\Windows\System32\SyncCenter.dll
11:13:11.0495 3024 C:\Windows\System32\SyncCenter.dll - ok
11:13:11.0500 3024 [ 364B684A9F64C89C817D5763F5A7D836 ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\chrome.dll
11:13:11.0500 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\chrome.dll - ok
11:13:11.0506 3024 [ 124715CD10C62A78404F1A3B1048D062 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
11:13:11.0506 3024 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
11:13:11.0511 3024 [ 0B5AC46982E77CAF3EC1D55C9AC6AB56 ] C:\Windows\System32\wscntfy.dll
11:13:11.0512 3024 C:\Windows\System32\wscntfy.dll - ok
11:13:11.0514 3024 [ 9ABFDABADA3F1A5F83590F336F40C941 ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\icudt.dll
11:13:11.0514 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\icudt.dll - ok
11:13:11.0519 3024 [ 5298ED7C7C56A683EDCC2A8AA1A4C475 ] C:\Program Files\Common Files\DivX Shared\Qt4.5\QtCore4.dll
11:13:11.0519 3024 C:\Program Files\Common Files\DivX Shared\Qt4.5\QtCore4.dll - ok
11:13:11.0524 3024 [ CF03C8F6F6B0D71F6E5BCE167FCF7CA6 ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
11:13:11.0524 3024 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe - ok
11:13:11.0529 3024 [ 9B0726A03B790E5B82BED44D24009BEF ] C:\Windows\System32\imapi2.dll
11:13:11.0529 3024 C:\Windows\System32\imapi2.dll - ok
11:13:11.0534 3024 [ 1D6B95871DC006190964B04E5657E35F ] C:\Windows\System32\rastapi.dll
11:13:11.0534 3024 C:\Windows\System32\rastapi.dll - ok
11:13:11.0539 3024 [ C0ABD66F31C0B84CD944802E6D3D02C2 ] C:\Windows\System32\bthprops.cpl
11:13:11.0539 3024 C:\Windows\System32\bthprops.cpl - ok
11:13:11.0543 3024 [ 027E5E14C9CFF810377701BDEAD8210F ] C:\Windows\System32\control.exe
11:13:11.0544 3024 C:\Windows\System32\control.exe - ok
11:13:11.0548 3024 [ B96B60EC821F86D445C9739A0F3DED59 ] C:\Windows\System32\unimdm.tsp
11:13:11.0548 3024 C:\Windows\System32\unimdm.tsp - ok
11:13:11.0553 3024 [ 4BC63466E104393AE3A4729B8122D299 ] C:\Program Files\Common Files\LogiShrd\LWSPlugins\LWS\Applets\HelpMain\Main_help.dll
11:13:11.0553 3024 C:\Program Files\Common Files\LogiShrd\LWSPlugins\LWS\Applets\HelpMain\Main_help.dll - ok
11:13:11.0558 3024 [ ED377B3C83FDEA8D906109A085D219BA ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
11:13:11.0558 3024 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
11:13:11.0562 3024 [ DFBAADF1B624DC71E88D34D86B3595BE ] C:\Windows\System32\uniplat.dll
11:13:11.0562 3024 C:\Windows\System32\uniplat.dll - ok
11:13:11.0567 3024 [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
11:13:11.0567 3024 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
11:13:11.0573 3024 [ 2E837F3D406224DF131C34BC8F71621E ] C:\Windows\System32\modemui.dll
11:13:11.0573 3024 C:\Windows\System32\modemui.dll - ok
11:13:11.0576 3024 [ 0B71899E60D1265229BF3D080EAB573D ] C:\Windows\System32\unimdmat.dll
11:13:11.0576 3024 C:\Windows\System32\unimdmat.dll - ok
11:13:11.0581 3024 [ 009811BD21D0BD7BA5C7765565505764 ] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
11:13:11.0581 3024 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe - ok
11:13:11.0588 3024 [ 8274C87726D4561EE8750D883764ACC1 ] C:\Windows\System32\wbem\unsecapp.exe
11:13:11.0588 3024 C:\Windows\System32\wbem\unsecapp.exe - ok
11:13:11.0594 3024 [ 45406FFD87F6BA4345B018E303A64FF1 ] C:\Program Files\Common Files\microsoft shared\Windows Live\wlidcli.dll
11:13:11.0594 3024 C:\Program Files\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
11:13:11.0599 3024 [ 953193A9DEA40348C1086D171F6440AE ] C:\Windows\System32\kmddsp.tsp
11:13:11.0599 3024 C:\Windows\System32\kmddsp.tsp - ok
11:13:11.0602 3024 [ 2F6776ACEFE41EE889C464EA407918F2 ] C:\Windows\System32\ndptsp.tsp
11:13:11.0602 3024 C:\Windows\System32\ndptsp.tsp - ok
11:13:11.0606 3024 [ B4B59AC042EE3733A862F26CBC0B17FC ] C:\Windows\System32\hidphone.tsp
11:13:11.0606 3024 C:\Windows\System32\hidphone.tsp - ok
11:13:11.0611 3024 [ 8B645890A93F1FBBC7DA3E07CC72D762 ] C:\Windows\System32\rasppp.dll
11:13:11.0611 3024 C:\Windows\System32\rasppp.dll - ok
11:13:11.0616 3024 [ 778D6ADBA6D49578EA45F600DAF4687B ] C:\Program Files\Common Files\DivX Shared\Qt4.5\QtGui4.dll
11:13:11.0616 3024 C:\Program Files\Common Files\DivX Shared\Qt4.5\QtGui4.dll - ok
11:13:11.0620 3024 [ 88225070DD2F7B0B2ED51E7935078641 ] C:\Windows\System32\rasqec.dll
11:13:11.0620 3024 C:\Windows\System32\rasqec.dll - ok
11:13:11.0624 3024 [ 21221CD7C7C844F6F0E0B7BC69CBA36B ] C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE
11:13:11.0624 3024 C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE - ok
11:13:11.0629 3024 [ 248A1F31ABB58DDDDC01490EF0BDC777 ] C:\Windows\System32\cryptui.dll
11:13:11.0629 3024 C:\Windows\System32\cryptui.dll - ok
11:13:11.0633 3024 [ 26DE50A7F668F541B8130A0E26EFF3D8 ] C:\Program Files\Microsoft Works\MSWorks.exe
11:13:11.0633 3024 C:\Program Files\Microsoft Works\MSWorks.exe - ok
11:13:11.0637 3024 [ C37571F7C79C3972D641804F1DF7C0F5 ] C:\Program Files\Microsoft Works\wksdb.exe
11:13:11.0637 3024 C:\Program Files\Microsoft Works\wksdb.exe - ok
11:13:11.0642 3024 [ 790222D6CCFC576F0D07D418E6115D85 ] C:\Program Files\Windows Calendar\WinCal.exe
11:13:11.0642 3024 C:\Program Files\Windows Calendar\WinCal.exe - ok
11:13:11.0646 3024 [ A9662BCF218BC76869A8D91635D5F93A ] C:\Windows\System32\Wpc.dll
11:13:11.0646 3024 C:\Windows\System32\Wpc.dll - ok
11:13:11.0650 3024 [ 06164026C38AA5366E4D127E2E36FDE8 ] C:\Program Files\Windows Mail\wab.exe
11:13:11.0650 3024 C:\Program Files\Windows Mail\wab.exe - ok
11:13:11.0654 3024 [ 3A72AB0BAF2DC1AE0BA6E1EE28FFCC0B ] C:\Windows\System32\msftedit.dll
11:13:11.0654 3024 C:\Windows\System32\msftedit.dll - ok
11:13:11.0659 3024 [ 395335431AD55C167CFDBBAB8420DA73 ] C:\Program Files\Movie Maker\DVDMaker.exe
11:13:11.0659 3024 C:\Program Files\Movie Maker\DVDMaker.exe - ok
11:13:11.0663 3024 [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Windows\System32\D3DCompiler_43.dll
11:13:11.0663 3024 C:\Windows\System32\D3DCompiler_43.dll - ok
11:13:11.0668 3024 [ EB5364944E67E9D88BD02958F40E14CD ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll
11:13:11.0668 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll - ok
11:13:11.0672 3024 [ F0BE01DC3881C402B0DE6B9C918347DA ] C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll
11:13:11.0673 3024 C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll - ok
11:13:11.0675 3024 [ B7ED332A57FC78CA29E40D3619550225 ] C:\Windows\ehome\ehshell.exe
11:13:11.0675 3024 C:\Windows\ehome\ehshell.exe - ok
11:13:11.0682 3024 [ A944A73CEC5921B871542FE5CC5E03E4 ] C:\Windows\System32\olepro32.dll
11:13:11.0682 3024 C:\Windows\System32\olepro32.dll - ok
11:13:11.0684 3024 [ 86E39E9161C3D930D93822F1563C280D ] C:\Windows\System32\D3DX9_43.dll
11:13:11.0684 3024 C:\Windows\System32\D3DX9_43.dll - ok
11:13:11.0688 3024 [ 52BC119E49F88F2A5D1466230B1275C7 ] C:\Program Files\Windows Collaboration\WinCollab.exe
11:13:11.0688 3024 C:\Program Files\Windows Collaboration\WinCollab.exe - ok
11:13:11.0696 3024 [ 10DE220BDFE330073762F89974DB8403 ] C:\Windows\System32\wbem\wmiprov.dll
11:13:11.0696 3024 C:\Windows\System32\wbem\wmiprov.dll - ok
11:13:11.0702 3024 [ C4AB08459CD7B59B410ACFC04D90E87B ] C:\Program Files\Movie Maker\MOVIEMK.exe
11:13:11.0702 3024 C:\Program Files\Movie Maker\MOVIEMK.exe - ok
11:13:11.0704 3024 [ BFE74095684093F14D24801C8C0D16E3 ] C:\Windows\System32\wmi.dll
11:13:11.0704 3024 C:\Windows\System32\wmi.dll - ok
11:13:11.0711 3024 [ C03AC1FBCD625F93D2C245D97E06F270 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe
11:13:11.0711 3024 C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok
11:13:11.0714 3024 [ 2CC285229D62D29E050ECC7AF834C31A ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll
11:13:11.0714 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll - ok
11:13:11.0718 3024 [ C352CA707E473F85E9C8AF38CF419AFA ] C:\Program Files\Soluto\PCGPostBootResources.dll
11:13:11.0719 3024 C:\Program Files\Soluto\PCGPostBootResources.dll - ok
11:13:11.0725 3024 [ 8870208FCB90E11960D45ECC994D268F ] C:\Windows\System32\wuapp.exe
11:13:11.0725 3024 C:\Windows\System32\wuapp.exe - ok
11:13:11.0728 3024 [ 3D66F83C21F7C73594B258139DAEF74D ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\libglesv2.dll
11:13:11.0728 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\libglesv2.dll - ok
11:13:11.0736 3024 [ 9FE37D8C04C0F449714B19B03708B93D ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll
11:13:11.0736 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll - ok
11:13:11.0739 3024 [ D117EA73EB95604ECA34F87B7C7526FC ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\libegl.dll
11:13:11.0739 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\libegl.dll - ok
11:13:11.0744 3024 [ 2F72347A477A4A2F783A6AFF58AAD750 ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
11:13:11.0744 3024 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc - ok
11:13:11.0751 3024 [ EFD278F8129EE12F1D4AE0250494B791 ] C:\Windows\System32\dxva2.dll
11:13:11.0751 3024 C:\Windows\System32\dxva2.dll - ok
11:13:11.0756 3024 [ 9D18C01DB929E266BEF674BAF05327F7 ] C:\Program Files\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll
11:13:11.0756 3024 C:\Program Files\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll - ok
11:13:11.0760 3024 [ 67D16247C56C26A4F0D79D1A7F272B8F ] C:\Windows\System32\mf.dll
11:13:11.0760 3024 C:\Windows\System32\mf.dll - ok
11:13:11.0764 3024 [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll
11:13:11.0764 3024 C:\Windows\System32\mfplat.dll - ok
11:13:11.0768 3024 [ 2495C4204C63678F8FD5D488CA7DAD26 ] C:\Windows\System32\evr.dll
11:13:11.0768 3024 C:\Windows\System32\evr.dll - ok
11:13:11.0772 3024 [ 8FAD04A00BFE6977AA4743C067364B5F ] C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
11:13:11.0772 3024 C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll - ok
11:13:11.0780 3024 [ 9D1EE179965F9DDF964A9EA99D1D70A1 ] C:\Windows\System32\MSMPEG2VDEC.DLL
11:13:11.0780 3024 C:\Windows\System32\MSMPEG2VDEC.DLL - ok
11:13:11.0785 3024 [ FA2A3AFADC4FB47DBC234A4E57F92CDB ] C:\Windows\System32\ddraw.dll
11:13:11.0785 3024 C:\Windows\System32\ddraw.dll - ok
11:13:11.0789 3024 [ EF764E33878B3A4A9E5A2FB5D0D031D0 ] C:\Windows\System32\dciman32.dll
11:13:11.0789 3024 C:\Windows\System32\dciman32.dll - ok
11:13:11.0793 3024 [ D25C90F166CB25DCB85755F3DAA984B3 ] C:\Program Files\Windows Live\Shared\wldlog.dll
11:13:11.0793 3024 C:\Program Files\Windows Live\Shared\wldlog.dll - ok
11:13:11.0797 3024 [ 048EE50BB0BFEFAAE690FA3ABC82E9C7 ] C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll
11:13:11.0797 3024 C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll - ok
11:13:11.0801 3024 [ 98C77FD99F3DB37B2C03F32B8F837B65 ] C:\Windows\System32\mapi32.dll
11:13:11.0801 3024 C:\Windows\System32\mapi32.dll - ok
11:13:11.0805 3024 [ 932AB689DEC89CDC52706E49FEB96443 ] C:\Program Files\DivX\DivX Media Server\mc_net_tools.dll
11:13:11.0805 3024 C:\Program Files\DivX\DivX Media Server\mc_net_tools.dll - ok
11:13:11.0811 3024 [ 2C7B4E944A48B9A07B7BF2AB262F197E ] C:\Windows\System32\icm32.dll
11:13:11.0811 3024 C:\Windows\System32\icm32.dll - ok
11:13:11.0815 3024 [ B695D2F73404ACFA872E92199389842E ] C:\Program Files\DivX\DivX Media Server\mc_upnp_dlna_stack.dll
11:13:11.0815 3024 C:\Program Files\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok
11:13:11.0821 3024 [ 8C7591E03B68EC263D628487575B2355 ] C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll
11:13:11.0822 3024 C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll - ok
11:13:11.0827 3024 [ CEF58ABD7D7CC34431C9AD79D123F37D ] C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
11:13:11.0827 3024 C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll - ok
11:13:11.0829 3024 [ 3A2EEE8444A8E5C1A454C57B2198F5FC ] C:\Windows\System32\ntlanman.dll
11:13:11.0829 3024 C:\Windows\System32\ntlanman.dll - ok
11:13:11.0833 3024 [ CE03EF4DB5D310749ECF4E1C00964A0F ] C:\Program Files\Soluto\PCGRSPProbe.dll
11:13:11.0834 3024 C:\Program Files\Soluto\PCGRSPProbe.dll - ok
11:13:11.0841 3024 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
11:13:11.0841 3024 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
11:13:11.0846 3024 [ 1A11A757D613F8A815B8E30025522628 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
11:13:11.0846 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
11:13:11.0852 3024 [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
11:13:11.0852 3024 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
11:13:11.0857 3024 [ ACEB5E6F416223806421D8864FC0EEB4 ] C:\Program Files\Windows Live\Shared\uxcore.dll
11:13:11.0857 3024 C:\Program Files\Windows Live\Shared\uxcore.dll - ok
11:13:11.0860 3024 [ F01AB1156CA52B5D974411E9A31C9D1C ] C:\Program Files\Soluto\PCGHIDProbe.dll
11:13:11.0860 3024 C:\Program Files\Soluto\PCGHIDProbe.dll - ok
11:13:11.0866 3024 [ 582EFE56FC0858E58A6CEBA2A64B02C7 ] C:\Windows\System32\drprov.dll
11:13:11.0866 3024 C:\Windows\System32\drprov.dll - ok
11:13:11.0872 3024 [ 7F19838AC317C34FCED020BE529AF71E ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
11:13:11.0872 3024 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
11:13:11.0877 3024 [ CFBD2E1FE18B50748A76703A2DC6D4E3 ] C:\Windows\System32\davclnt.dll
11:13:11.0877 3024 C:\Windows\System32\davclnt.dll - ok
11:13:11.0882 3024 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll
11:13:11.0882 3024 C:\Windows\System32\msvcr100_clr0400.dll - ok
11:13:11.0888 3024 [ 17F4E3590CC481B70A1FEFD919B18CD5 ] C:\Program Files\Soluto\PCGBootVisualizingCommon.dll
11:13:11.0888 3024 C:\Program Files\Soluto\PCGBootVisualizingCommon.dll - ok
11:13:11.0893 3024 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:13:11.0893 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
11:13:11.0895 3024 [ 3DFEEC45E5F22993216083FB777719D5 ] C:\Windows\System32\d2d1.dll
11:13:11.0895 3024 C:\Windows\System32\d2d1.dll - ok
11:13:11.0900 3024 [ 29E4EA31C6DEBE5EFB384EEFA4F1EF63 ] C:\Windows\System32\d3d10_1.dll
11:13:11.0900 3024 C:\Windows\System32\d3d10_1.dll - ok
11:13:11.0904 3024 [ E18FE2168C8712EF4FF2191059158FAB ] C:\Windows\ehome\ehrec.exe
11:13:11.0904 3024 C:\Windows\ehome\ehrec.exe - ok
11:13:11.0910 3024 [ 556F1CBE9BA19E2CCD6F8D9AF71AF5C7 ] C:\Windows\System32\d3d10_1core.dll
11:13:11.0910 3024 C:\Windows\System32\d3d10_1core.dll - ok
11:13:11.0913 3024 [ 4DF10CE50010D70152944B51E03588B0 ] C:\Windows\System32\wmdrmsdk.dll
11:13:11.0913 3024 C:\Windows\System32\wmdrmsdk.dll - ok
11:13:11.0918 3024 [ E12C3BD1AFBB25B20880DD1419206300 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\ehCIR\132dbf60d2f21f1167c6a813f8554528\ehCIR.ni.dll
11:13:11.0918 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\ehCIR\132dbf60d2f21f1167c6a813f8554528\ehCIR.ni.dll - ok
11:13:11.0923 3024 [ 8590BDF8F3B5EACAEEA5559CEC9647BF ] C:\Windows\ehome\ehtrace.dll
11:13:11.0923 3024 C:\Windows\ehome\ehtrace.dll - ok
11:13:11.0928 3024 [ DC557BBED42FCD9DBF006EDD40DFD3B8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\ehRecObj\e3b8b1f9086eec53ce5ce3c8248d5eb8\ehRecObj.ni.dll
11:13:11.0928 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\ehRecObj\e3b8b1f9086eec53ce5ce3c8248d5eb8\ehRecObj.ni.dll - ok
11:13:11.0933 3024 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
11:13:11.0933 3024 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
11:13:11.0938 3024 [ 49B20B8C1DC30FE07AFA2EBE36FF519B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\ehiProxy\85abda61ca30bc64d389894290e05309\ehiProxy.ni.dll
11:13:11.0938 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\ehiProxy\85abda61ca30bc64d389894290e05309\ehiProxy.ni.dll - ok
11:13:11.0942 3024 [ 49237BBB2B2FF5A84415A9E13616E4C3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Soluto\3299a482f79f56f3ac312a3ee52f9d92\Soluto.ni.exe
11:13:11.0942 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Soluto\3299a482f79f56f3ac312a3ee52f9d92\Soluto.ni.exe - ok
11:13:11.0950 3024 [ 04F67570891E3F064408E7D1A9F85687 ] C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
11:13:11.0950 3024 C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll - ok
11:13:11.0955 3024 [ 03E4B874930E0A85DED07613F78CD1C1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\ehepg\34158e4911660c225dbeffe3a2146763\ehepg.ni.dll
11:13:11.0955 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\ehepg\34158e4911660c225dbeffe3a2146763\ehepg.ni.dll - ok
11:13:11.0958 3024 [ 2B2A482997023F822E1DF501E8B6BC06 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\a4281204fa976d5dcb75f4bd6eb9a327\PCGBootVisualizingCommon.ni.dll
11:13:11.0958 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\a4281204fa976d5dcb75f4bd6eb9a327\PCGBootVisualizingCommon.ni.dll - ok
11:13:11.0963 3024 [ B1D5894ADD067D1CA93E3A60DEC05958 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGHIDProbe\b012384e1b9b872765b5ef630467927c\PCGHIDProbe.ni.dll
11:13:11.0963 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGHIDProbe\b012384e1b9b872765b5ef630467927c\PCGHIDProbe.ni.dll - ok
11:13:11.0967 3024 [ AAC08AC543C2E47952467407E1318A52 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGRSPProbe\a02d41620719c44339bb3cb4055e140c\PCGRSPProbe.ni.dll
11:13:11.0967 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGRSPProbe\a02d41620719c44339bb3cb4055e140c\PCGRSPProbe.ni.dll - ok
11:13:11.0972 3024 [ FAD619E282FA19FB0C378A22C0105F6A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPostBootResources\2a8081ef6ba224531a2fdd9b603071a2\PCGPostBootResources.ni.dll
11:13:12.0096 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPostBootResources\2a8081ef6ba224531a2fdd9b603071a2\PCGPostBootResources.ni.dll - ok
11:13:12.0099 3024 [ FF3AF316E28C85CCB5FD01CBCE2151EE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\ehepgdat\036699a1de642280a4d43fa18fbbc102\ehepgdat.ni.dll
11:13:12.0099 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\ehepgdat\036699a1de642280a4d43fa18fbbc102\ehepgdat.ni.dll - ok
11:13:12.0104 3024 [ 149236751CDEE7C06DE806CD6BE11586 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.MediaCent#\83cd6f48442d319627dfd2035ab73215\Microsoft.MediaCenter.UI.ni.dll
11:13:12.0104 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.MediaCent#\83cd6f48442d319627dfd2035ab73215\Microsoft.MediaCenter.UI.ni.dll - ok
11:13:12.0110 3024 [ 2770322FBEF72E3F9269EF60297463B9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d5100c24f083084e1d2556839904e987\System.Drawing.ni.dll
11:13:12.0110 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d5100c24f083084e1d2556839904e987\System.Drawing.ni.dll - ok
11:13:12.0116 3024 [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
11:13:12.0116 3024 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
11:13:12.0120 3024 [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
11:13:12.0120 3024 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
11:13:12.0124 3024 [ 14E9E1A4472C7D0BB7A2A7A26D60CB35 ] C:\Windows\System32\sbe.dll
11:13:12.0124 3024 C:\Windows\System32\sbe.dll - ok
11:13:12.0128 3024 [ AB6E3DF509C6BD59062F685A40395C23 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
11:13:12.0128 3024 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
11:13:12.0134 3024 [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
11:13:12.0134 3024 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
11:13:12.0140 3024 [ AAAE543C535ED596ECAD2AB8761C2C6F ] C:\Windows\System32\dxgi.dll
11:13:12.0140 3024 C:\Windows\System32\dxgi.dll - ok
11:13:12.0146 3024 [ 73F97C8899429EFAEE8C8944DCC08C2E ] C:\Windows\System32\MSVidCtl.dll
11:13:12.0146 3024 C:\Windows\System32\MSVidCtl.dll - ok
11:13:12.0151 3024 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
11:13:12.0151 3024 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
11:13:12.0154 3024 [ ADBEBAD7AF0C101898F3F59CB8AA9C06 ] C:\Program Files\HP\Digital Imaging\bin\hphtra09.dll
11:13:12.0154 3024 C:\Program Files\HP\Digital Imaging\bin\hphtra09.dll - ok
11:13:12.0158 3024 [ 2CE97833BA80E7C319390C4B071BDA00 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\74353039393f68f4c068cc37f759e5be\mscorlib.ni.dll
11:13:12.0158 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\74353039393f68f4c068cc37f759e5be\mscorlib.ni.dll - ok
11:13:12.0163 3024 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
11:13:12.0163 3024 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
11:13:12.0167 3024 [ 1AA571774936717EE776DBED51E9EDF4 ] C:\Windows\System32\d3dx10_41.dll
11:13:12.0167 3024 C:\Windows\System32\d3dx10_41.dll - ok
11:13:12.0172 3024 [ B5EF1DA337DB9859709A387638AC5E07 ] C:\Windows\System32\SearchProtocolHost.exe
11:13:12.0172 3024 C:\Windows\System32\SearchProtocolHost.exe - ok
11:13:12.0174 3024 [ 21FF3F07336CE4F8DF6AF1746BC26AAB ] C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
11:13:12.0174 3024 C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll - ok
11:13:12.0181 3024 [ 605FD56453F18850D535126FB1773199 ] C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll
11:13:12.0181 3024 C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll - ok
11:13:12.0183 3024 [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files\QuickTime\Plugins\npqtplugin.dll
11:13:12.0183 3024 C:\Program Files\QuickTime\Plugins\npqtplugin.dll - ok
11:13:12.0188 3024 [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files\QuickTime\Plugins\npqtplugin2.dll
11:13:12.0188 3024 C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - ok
11:13:12.0192 3024 [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files\QuickTime\Plugins\npqtplugin3.dll
11:13:12.0192 3024 C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - ok
11:13:12.0196 3024 [ 6843926AFF733D46A04F9D4E1C1A6B14 ] C:\Windows\System32\DWrite.dll
11:13:12.0196 3024 C:\Windows\System32\DWrite.dll - ok
11:13:12.0203 3024 [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files\QuickTime\Plugins\npqtplugin4.dll
11:13:12.0203 3024 C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - ok
11:13:12.0205 3024 [ 84201A7FE43A45DC9559BA107634217B ] C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
11:13:12.0205 3024 C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll - ok
11:13:12.0210 3024 [ 582BE479E7E286BB3B31C5A4C3DC3987 ] C:\Windows\System32\msshooks.dll
11:13:12.0210 3024 C:\Windows\System32\msshooks.dll - ok
11:13:12.0214 3024 [ 771AF583BC58373A84496CCD52C36E33 ] C:\Windows\System32\mssvp.dll
11:13:12.0214 3024 C:\Windows\System32\mssvp.dll - ok
11:13:12.0218 3024 [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files\QuickTime\Plugins\npqtplugin5.dll
11:13:12.0218 3024 C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - ok
11:13:12.0222 3024 [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files\QuickTime\Plugins\npqtplugin6.dll
11:13:12.0222 3024 C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - ok
11:13:12.0229 3024 [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files\QuickTime\Plugins\npqtplugin7.dll
11:13:12.0229 3024 C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - ok
11:13:12.0236 3024 [ E0BCE90537E4A41AF36D5BDD5963A09D ] C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
11:13:12.0236 3024 C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - ok
11:13:12.0238 3024 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll
11:13:12.0238 3024 C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll - ok
11:13:12.0243 3024 [ E1D2384534D888108DB316DFC7D417E1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\2bc8bc432d91919ea0bbb2b803a4b6af\System.Windows.Forms.ni.dll
11:13:12.0243 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\2bc8bc432d91919ea0bbb2b803a4b6af\System.Windows.Forms.ni.dll - ok
11:13:12.0247 3024 [ 351319EF11C263C95FB721AC76F436D6 ] C:\Windows\System32\mssph.dll
11:13:12.0247 3024 C:\Windows\System32\mssph.dll - ok
11:13:12.0251 3024 [ EDA91FB72ED5F9B16B8AF72C2E68583C ] C:\Windows\System32\quartz.dll
11:13:12.0251 3024 C:\Windows\System32\quartz.dll - ok
11:13:12.0255 3024 [ 6950BBCEB21F9C3CB3B52E90960109C3 ] C:\Windows\System32\devenum.dll
11:13:12.0255 3024 C:\Windows\System32\devenum.dll - ok
11:13:12.0260 3024 [ 8DE1B0441B8445508A917594BC847976 ] C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10171.dll
11:13:12.0260 3024 C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10171.dll - ok
11:13:12.0264 3024 [ B8AEFF80ABD57E6ABC6A46EAC7F4515F ] C:\Windows\System32\msdmo.dll
11:13:12.0264 3024 C:\Windows\System32\msdmo.dll - ok
11:13:12.0268 3024 [ 9DBD149CAF43D2E7C874C5F40600825C ] C:\Program Files\Windows Live\Shared\wldcore.dll
11:13:12.0268 3024 C:\Program Files\Windows Live\Shared\wldcore.dll - ok
11:13:12.0275 3024 [ 7940C04CE581288A3498D57EC4EE47D2 ] C:\Windows\System32\msfeeds.dll
11:13:12.0275 3024 C:\Windows\System32\msfeeds.dll - ok
11:13:12.0277 3024 [ 51AE7FB541762F4E66303146E03AD15C ] C:\Program Files\Windows Live\Shared\uxctl.dll
11:13:12.0277 3024 C:\Program Files\Windows Live\Shared\uxctl.dll - ok
11:13:12.0281 3024 [ 44B9C62C32CDA7A62BCFE65DDF4D92C4 ] C:\Windows\System32\msdri.dll
11:13:12.0281 3024 C:\Windows\System32\msdri.dll - ok
11:13:12.0286 3024 [ E09A927C81D6957F3A65B4ACE03C1290 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\886c8bd1f835e78b659b71aeed3ed15a\System.Configuration.ni.dll
11:13:12.0286 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\886c8bd1f835e78b659b71aeed3ed15a\System.Configuration.ni.dll - ok
11:13:12.0291 3024 [ A9D204171C1C8478C8C202D945598741 ] C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
11:13:12.0291 3024 C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll - ok
11:13:12.0295 3024 [ E8A39D41474BE42FD8830CED32932D6C ] C:\Program Files\iPod\bin\iPodService.exe
11:13:12.0295 3024 C:\Program Files\iPod\bin\iPodService.exe - ok
11:13:12.0302 3024 [ 8078F8F8F7A79E2E6B494523A828C585 ] C:\Windows\System32\msdtckrm.dll
11:13:12.0302 3024 C:\Windows\System32\msdtckrm.dll - ok
11:13:12.0307 3024 [ A1CD5CE96F0A5426DB9A2F793854D1B8 ] C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL
11:13:12.0308 3024 C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL - ok
11:13:12.0313 3024 [ B938C1AE3ADCE166190895685B0BEB0D ] C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
11:13:12.0313 3024 C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll - ok
11:13:12.0319 3024 [ 280013E1CA1A648A6B896D884CC46601 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
11:13:12.0319 3024 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
11:13:12.0324 3024 [ 7DF0DECD3006B8BA450AEC714086FF3C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
11:13:12.0324 3024 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
11:13:12.0330 3024 [ A66A630E101E7B5CF0946F34935660CC ] C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
11:13:12.0330 3024 C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll - ok
11:13:12.0332 3024 [ 18C49CF5352BF8DE47BD2B1E5A912886 ] C:\Program Files\Windows Live\Shared\uxcontacts.dll
11:13:12.0332 3024 C:\Program Files\Windows Live\Shared\uxcontacts.dll - ok
11:13:12.0337 3024 [ D779D935A3109B2D20FD84EA097E3E4A ] C:\Program Files\Windows Live\Shared\uxcalendar.dll
11:13:12.0337 3024 C:\Program Files\Windows Live\Shared\uxcalendar.dll - ok
11:13:12.0341 3024 [ C9EE7FF225EAC1CB9C78C413667CDB80 ] C:\Windows\System32\SearchFilterHost.exe
11:13:12.0341 3024 C:\Windows\System32\SearchFilterHost.exe - ok
11:13:12.0345 3024 [ 1986443C2F2C0E2A18E908DD241BF84D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
11:13:12.0345 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll - ok
11:13:12.0349 3024 [ 3B1AEFEFF02479F5A5D772494AFA5DFF ] C:\Windows\ehome\ehprivjob.exe
11:13:12.0349 3024 C:\Windows\ehome\ehprivjob.exe - ok
11:13:12.0356 3024 [ EB24684437EC448D680A7CACBDE94C94 ] C:\Program Files\Windows Live\Shared\wlidux.dll
11:13:12.0356 3024 C:\Program Files\Windows Live\Shared\wlidux.dll - ok
11:13:12.0359 3024 [ F711C8D93A8E4410C284D177B76C7F2B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
11:13:12.0359 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
11:13:12.0364 3024 [ 50EFCC15B3F1D7EDE3ED9ADAB02585A7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\653b1be0c33cfade02fb0a61f135e488\System.Xml.ni.dll
11:13:12.0364 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\653b1be0c33cfade02fb0a61f135e488\System.Xml.ni.dll - ok
11:13:12.0369 3024 [ FE3702015BE4D214808A2FBC07B8E5FF ] C:\Windows\System32\wscproxystub.dll
11:13:12.0369 3024 C:\Windows\System32\wscproxystub.dll - ok
11:13:12.0374 3024 [ FE181F58353FBE4D6D96276CE523D2CB ] C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll
11:13:12.0374 3024 C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll - ok
11:13:12.0378 3024 [ 25DEF2EF843275862FFBF55487CEFDDD ] C:\Windows\System32\Macromed\Flash\Flash32_11_5_502_135.ocx
11:13:12.0378 3024 C:\Windows\System32\Macromed\Flash\Flash32_11_5_502_135.ocx - ok
11:13:12.0382 3024 [ 15EED25CD325F6209BB109C1CE88576E ] C:\Program Files\HP\Digital Imaging\bin\hpqddusr.dll
11:13:12.0383 3024 C:\Program Files\HP\Digital Imaging\bin\hpqddusr.dll - ok
11:13:12.0387 3024 [ 68F2E9E1EE53B6AA03AB6EC62C43F145 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\5a8bf6ab1a6ba60e7355fa4cc61fd0c5\System.ni.dll
11:13:12.0387 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\5a8bf6ab1a6ba60e7355fa4cc61fd0c5\System.ni.dll - ok
11:13:12.0392 3024 [ CFB58C9A53B56892817C3519E32C4502 ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
11:13:12.0392 3024 C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
11:13:12.0396 3024 [ 57CDA476A7C6387854FA38682B2A408F ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
11:13:12.0396 3024 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
11:13:12.0401 3024 [ EE4C7A4CF2316701FFDE90F404520265 ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
11:13:12.0401 3024 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
11:13:12.0405 3024 [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\System32\dsound.dll
11:13:12.0405 3024 C:\Windows\System32\dsound.dll - ok
11:13:12.0409 3024 [ 8FFDEB99EAC611D617016F2174D48FC6 ] C:\Windows\System32\inetcomm.dll
11:13:12.0409 3024 C:\Windows\System32\inetcomm.dll - ok
11:13:12.0416 3024 [ 214460565D2AC0BC124D14B785ADAE06 ] C:\Windows\System32\msoert2.dll
11:13:12.0416 3024 C:\Windows\System32\msoert2.dll - ok
11:13:12.0419 3024 [ 64B0D18454E65B61B39D3704A9C8EA4D ] C:\Windows\System32\INETRES.dll
11:13:12.0419 3024 C:\Windows\System32\INETRES.dll - ok
11:13:12.0423 3024 [ AFF3C845926422E135A08AE474DE27EA ] C:\Program Files\Windows Live\Messenger\msgrvsta.thm
11:13:12.0423 3024 C:\Program Files\Windows Live\Messenger\msgrvsta.thm - ok
11:13:12.0426 3024 [ 209FE38A622E3A30CE01B5D95E1D6241 ] C:\Program Files\Garmin GPS Plugin\npGarmin.dll
11:13:12.0426 3024 C:\Program Files\Garmin GPS Plugin\npGarmin.dll - ok
11:13:12.0431 3024 [ EB7368D501B9D22E777F6011F72F60FE ] C:\Program Files\Windows Live\Messenger\en\msgslang.dll.mui
11:13:12.0431 3024 C:\Program Files\Windows Live\Messenger\en\msgslang.dll.mui - ok
11:13:12.0439 3024 [ 6298277B73C77FA99106B271A7525163 ] C:\Windows\System32\wuaueng.dll
11:13:12.0439 3024 C:\Windows\System32\wuaueng.dll - ok
11:13:12.0445 3024 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files\Windows Live\Messenger\msgsres.dll
11:13:12.0446 3024 C:\Program Files\Windows Live\Messenger\msgsres.dll - ok
11:13:12.0451 3024 [ 0691B1AD2E55BAA71B14E13439D55E2E ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfcm90u.dll
11:13:12.0451 3024 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfcm90u.dll - ok
11:13:12.0456 3024 [ 35A75C922D5827944CBD0F013186F0EF ] C:\Program Files\AVAST Software\Avast\defs\13012200\uiext.dll
11:13:12.0456 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\uiext.dll - ok
11:13:12.0461 3024 [ 8007E7DA344BAD40724072A5DCCB9143 ] C:\Windows\ehome\ehepgres.dll
11:13:12.0461 3024 C:\Windows\ehome\ehepgres.dll - ok
11:13:12.0464 3024 [ 4A938E44BEB41641B70175DACAB1BBB0 ] C:\Windows\ehome\ehProxy.dll
11:13:12.0464 3024 C:\Windows\ehome\ehProxy.dll - ok
11:13:12.0470 3024 [ 80B8AE8E18FF57BE13FF4A5959DB0EC1 ] C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
11:13:12.0470 3024 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe - ok
11:13:12.0474 3024 [ 0518C7E0FF61F01D3A73D87728A14D46 ] C:\Windows\ehome\ehui.dll
11:13:12.0474 3024 C:\Windows\ehome\ehui.dll - ok
11:13:12.0480 3024 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
11:13:12.0480 3024 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
11:13:12.0485 3024 [ 219AF0F9A54EBEEB3E7E20025D801034 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
11:13:12.0485 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
11:13:12.0490 3024 [ 2062FABCC7D3DD90BD4EAA1F314551B0 ] C:\Windows\ehome\ehRecObj.dll
11:13:12.0490 3024 C:\Windows\ehome\ehRecObj.dll - ok
11:13:12.0493 3024 [ 05C245593DCB591A6B38A796D0C1975E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
11:13:12.0493 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
11:13:12.0497 3024 [ 740E7274A67D4D2C2A528A658A7E4B13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\34c839b0fd9f085105dc2c0a1219d02d\System.EnterpriseServices.ni.dll
11:13:12.0497 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\34c839b0fd9f085105dc2c0a1219d02d\System.EnterpriseServices.ni.dll - ok
11:13:12.0502 3024 [ F0898E9BD7C914FB7389F393D189B32F ] C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
11:13:12.0502 3024 C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe - ok
11:13:12.0507 3024 [ 3E00D032E2BEB9FB5439ABED0DD30A7B ] C:\Windows\System32\sqlceoledb30.dll
11:13:12.0507 3024 C:\Windows\System32\sqlceoledb30.dll - ok
11:13:12.0512 3024 [ 14B1AF40195CF5DB586F39387A77AFB6 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
11:13:12.0512 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
11:13:12.0517 3024 [ F0F5C6F147E1224CA4038D9C22147A5B ] C:\Windows\System32\sqlcese30.dll
11:13:12.0517 3024 C:\Windows\System32\sqlcese30.dll - ok
11:13:12.0522 3024 [ FDBB505E8BC3AD22CDD337C60DBFF93C ] C:\Program Files\HP\Digital Imaging\bin\hpqwso08.dll
11:13:12.0522 3024 C:\Program Files\HP\Digital Imaging\bin\hpqwso08.dll - ok
11:13:12.0527 3024 [ 1D40A5268C1517BC445BA0053584C4AA ] C:\Windows\System32\SLCExt.dll
11:13:12.0527 3024 C:\Windows\System32\SLCExt.dll - ok
11:13:12.0531 3024 [ E565C65391CDABF0870E9640815C03FF ] C:\Windows\System32\sqlceqp30.dll
11:13:12.0531 3024 C:\Windows\System32\sqlceqp30.dll - ok
11:13:12.0536 3024 [ C81BE1B951C36E97D3DA90DA745DA5F7 ] C:\hp\KBD\kbd.exe
11:13:12.0536 3024 C:\hp\KBD\kbd.exe - ok
11:13:12.0541 3024 [ CC16B7C2367F8C4762BF770286B0A0B1 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\3154b66d01dcd674b256e03d5f359fac\WindowsBase.ni.dll
11:13:12.0541 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\3154b66d01dcd674b256e03d5f359fac\WindowsBase.ni.dll - ok
11:13:12.0545 3024 [ F68A3F0D63BE926ED65ED1C8C5B03A3D ] C:\hp\KBD\led.dll
11:13:12.0545 3024 C:\hp\KBD\led.dll - ok
11:13:12.0549 3024 [ F21E49604278F016CEDBD03DCD182111 ] C:\hp\KBD\usb.dll
11:13:12.0549 3024 C:\hp\KBD\usb.dll - ok
11:13:12.0555 3024 [ 1F847CEB90DF6BF6E0EDAED904B1E7C8 ] C:\hp\KBD\PS2.dll
11:13:12.0555 3024 C:\hp\KBD\PS2.dll - ok
11:13:12.0560 3024 [ B78A418B41EBC30B060A202BA27F687F ] C:\hp\KBD\msg.dll
11:13:12.0560 3024 C:\hp\KBD\msg.dll - ok
11:13:12.0563 3024 [ 7A9DE8B16CF183D1038E49C9613275B7 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
11:13:12.0563 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
11:13:12.0568 3024 [ FB875FBE3BD042F6A69A4406178C561B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
11:13:12.0568 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
11:13:12.0572 3024 [ 5E41139EC6EFBCAFFD96D46925E544AB ] C:\Windows\System32\mspatcha.dll
11:13:12.0573 3024 C:\Windows\System32\mspatcha.dll - ok
11:13:12.0577 3024 [ 304503DEE4D3F7989B8660C62CAFAE28 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
11:13:12.0577 3024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
11:13:12.0581 3024 [ FF2F8E5EEC852FD760F167CBDB592D5F ] C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll
11:13:12.0581 3024 C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll - ok
11:13:12.0585 3024 [ 56AA2F99855AB9FB4E7600030E36858A ] C:\hp\KBD\OSD.DLL
11:13:12.0585 3024 C:\hp\KBD\OSD.DLL - ok
11:13:12.0589 3024 [ 17F1CFF37CB423EA05264F7174D84D60 ] C:\hp\KBD\sct.dll
11:13:12.0589 3024 C:\hp\KBD\sct.dll - ok
11:13:12.0593 3024 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Windows Live\Shared\sqmapi.dll
11:13:12.0593 3024 C:\Program Files\Windows Live\Shared\sqmapi.dll - ok
11:13:12.0601 3024 [ 009758CC06B7F55B4A4D16A66E243C24 ] C:\Windows\System32\wuapi.dll
11:13:12.0601 3024 C:\Windows\System32\wuapi.dll - ok
11:13:12.0605 3024 [ 8D943E8946E1336A63490CD1F2EFE5A1 ] C:\hp\KBD\Onl.dll
11:13:12.0605 3024 C:\hp\KBD\Onl.dll - ok
11:13:12.0608 3024 [ 8D97E7FFB89B4824C732DBDD3A39C5B2 ] C:\hp\KBD\aol.dll
11:13:12.0608 3024 C:\hp\KBD\aol.dll - ok
11:13:12.0612 3024 [ 179D348C1BF81399F0D1D8C155338004 ] C:\hp\KBD\url.dll
11:13:12.0612 3024 C:\hp\KBD\url.dll - ok
11:13:12.0616 3024 [ BA5B8BC4A16AFE3FEB911F01D40DEE35 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\8b0dea49aab560f2784e3efcafebb674\System.Data.Linq.ni.dll
11:13:12.0616 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\8b0dea49aab560f2784e3efcafebb674\System.Data.Linq.ni.dll - ok
11:13:12.0623 3024 [ BFD17358837F27235BFC1640905C683C ] C:\Program Files\Windows Live\Contacts\PresenceIM.dll
11:13:12.0623 3024 C:\Program Files\Windows Live\Contacts\PresenceIM.dll - ok
11:13:12.0626 3024 [ 6CF34B0F4DFBF541DB299CCFAC445A04 ] C:\hp\KBD\cfg.dll
11:13:12.0626 3024 C:\hp\KBD\cfg.dll - ok
11:13:12.0631 3024 [ 1D326842006C4BE77ECD848CF89F01AB ] C:\Windows\System32\wups.dll
11:13:12.0631 3024 C:\Windows\System32\wups.dll - ok
11:13:12.0636 3024 [ 57D46FEDF6BF2DDE8CD4746F0684BE58 ] C:\hp\KBD\msikbdif.dll
11:13:12.0636 3024 C:\hp\KBD\msikbdif.dll - ok
11:13:12.0641 3024 [ 3F25F84CB7F65A2A12C699825D6CCA99 ] C:\Program Files\HP\Digital Imaging\bin\hpqstv08.dll
11:13:12.0641 3024 C:\Program Files\HP\Digital Imaging\bin\hpqstv08.dll - ok
11:13:12.0646 3024 [ D23709C3D14EF013D3290265B0D04283 ] C:\Program Files\HP\Digital Imaging\bin\hpqstv08.rsc
11:13:12.0646 3024 C:\Program Files\HP\Digital Imaging\bin\hpqstv08.rsc - ok
11:13:12.0652 3024 [ 2D7617D3143493EB8BD38290E9D2E51A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\ca8307311e87b234b2faa5ee08332722\PresentationCore.ni.dll
11:13:12.0652 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\ca8307311e87b234b2faa5ee08332722\PresentationCore.ni.dll - ok
11:13:12.0657 3024 [ 67DC3019494B74E5206428714AB91DC0 ] C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc
11:13:12.0657 3024 C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc - ok
11:13:12.0662 3024 [ B8956806B33366E28C08C261E746B0B8 ] C:\Program Files\Windows Live\Contacts\livetransport.dll
11:13:12.0662 3024 C:\Program Files\Windows Live\Contacts\livetransport.dll - ok
11:13:12.0667 3024 [ E301F09BEB39DAF997D6609C5913599F ] C:\Program Files\Windows Live\Contacts\liveNatTrav.dll
11:13:12.0667 3024 C:\Program Files\Windows Live\Contacts\liveNatTrav.dll - ok
11:13:12.0672 3024 [ 586FDC4E02623EE228EC35B9604AE5F2 ] C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
11:13:12.0673 3024 C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll - ok
11:13:12.0678 3024 [ 531E3414858A817152EDEDE9C1BF9DE3 ] C:\Program Files\Windows Live\Contacts\ObjectStore.dll
11:13:12.0678 3024 C:\Program Files\Windows Live\Contacts\ObjectStore.dll - ok
11:13:12.0681 3024 [ D8C761A529FB6421B3060AEE808CCF4A ] C:\Program Files\Soluto\PCGDllExportInspector.dll
11:13:12.0681 3024 C:\Program Files\Soluto\PCGDllExportInspector.dll - ok
11:13:12.0686 3024 [ 8992F45DED6B63B919BDEB6D270FF9C8 ] C:\Windows\System32\wshom.ocx
11:13:12.0686 3024 C:\Windows\System32\wshom.ocx - ok
11:13:12.0690 3024 [ 9013599B12923A45C029C34E8D2211AC ] C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
11:13:12.0690 3024 C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll - ok
11:13:12.0694 3024 [ 3DB1530CDD7AEF2BCFA6FB77D097CDDA ] C:\Windows\System32\scrrun.dll
11:13:12.0694 3024 C:\Windows\System32\scrrun.dll - ok
11:13:12.0698 3024 [ 24E990B1E6D55428001843CF7217DD81 ] C:\Program Files\Microsoft\Office Live\npOLW.dll
11:13:12.0698 3024 C:\Program Files\Microsoft\Office Live\npOLW.dll - ok
11:13:12.0706 3024 [ DEAA2ABDFC19F1DADBB6702108691C4D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\BDATunePIA\59e4856df702c30568601a542bf535e7\BDATunePIA.ni.dll
11:13:12.0706 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\BDATunePIA\59e4856df702c30568601a542bf535e7\BDATunePIA.ni.dll - ok
11:13:12.0709 3024 [ 18C6A57B569F088C2BD7B828A211AC06 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
11:13:12.0709 3024 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll - ok
11:13:12.0716 3024 [ 94DFB62F51D7BCB03F80F9D33BB7F54F ] C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
11:13:12.0716 3024 C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll - ok
11:13:12.0719 3024 [ 985EFF8B21F8F825AA156B2BD268F2B9 ] C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
11:13:12.0719 3024 C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll - ok
11:13:12.0723 3024 [ 30257426F6DA31808C6698EC01DE2D97 ] C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
11:13:12.0723 3024 C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll - ok
11:13:12.0728 3024 [ 4356F21FB6D547F22BFBC91164A597A6 ] C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll
11:13:12.0728 3024 C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll - ok
11:13:12.0732 3024 [ F2DED1ED348E6C2397A14BCAB7E3CD7D ] C:\Windows\assembly\GAC_32\BDATunePIA\6.0.6000.0__31bf3856ad364e35\BDATunePIA.dll
11:13:12.0732 3024 C:\Windows\assembly\GAC_32\BDATunePIA\6.0.6000.0__31bf3856ad364e35\BDATunePIA.dll - ok
11:13:12.0738 3024 [ B49A14EB7FDD597DC4CF8160BA4BE245 ] C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
11:13:12.0738 3024 C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll - ok
11:13:12.0746 3024 [ 04802864F51046E93471083A24469ACE ] C:\Windows\System32\d3d10level9.dll
11:13:12.0746 3024 C:\Windows\System32\d3d10level9.dll - ok
11:13:12.0753 3024 [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
11:13:12.0753 3024 C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - ok
11:13:12.0758 3024 [ 3FCF47BD73094FA62D81373515F46110 ] C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
11:13:12.0758 3024 C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - ok
11:13:12.0762 3024 [ 586FDC4E02623EE228EC35B9604AE5F2 ] C:\Users\Owner\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
11:13:12.0762 3024 C:\Users\Owner\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll - ok
11:13:12.0766 3024 [ 5DB64F0ADBAD651B1CD099A79ECAAB2B ] C:\Program Files\Windows Live\Messenger\rtmpltfm.dll
11:13:12.0767 3024 C:\Program Files\Windows Live\Messenger\rtmpltfm.dll - ok
11:13:12.0776 3024 [ A609FFB736FED7CBC984B5A805CBE90F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\61a3ac762933ee76fb306a892fd1ad60\System.DirectoryServices.AccountManagement.ni.dll
11:13:12.0776 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\61a3ac762933ee76fb306a892fd1ad60\System.DirectoryServices.AccountManagement.ni.dll - ok
11:13:12.0778 3024 [ 4DEF8126CABAA6CDC12103CD74C6A919 ] C:\Windows\System32\mshtml.dll
11:13:12.0778 3024 C:\Windows\System32\mshtml.dll - ok
11:13:12.0783 3024 [ 034D377A3AEECCB397C68905EC99CCC3 ] C:\Users\Owner\AppData\Local\RunRev\Components\LiveCodePlayer\9\nplcplugin.dll
11:13:12.0783 3024 C:\Users\Owner\AppData\Local\RunRev\Components\LiveCodePlayer\9\nplcplugin.dll - ok
11:13:12.0787 3024 [ F6799F987B9687487B274A67879F0536 ] C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll
11:13:12.0787 3024 C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll - ok
11:13:12.0792 3024 [ ED51CA800645080BBFDDA92C1B172742 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\2250ddb1626087da27fb00f46a679ff5\PresentationFramework.ni.dll
11:13:12.0792 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\2250ddb1626087da27fb00f46a679ff5\PresentationFramework.ni.dll - ok
11:13:12.0796 3024 [ 0BB95CBA0D71ACEBE9D51C68C40BF080 ] C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll
11:13:12.0796 3024 C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll - ok
11:13:12.0802 3024 [ 7C7C620860819A62F926D7EC0B72C50B ] C:\Windows\System32\drmv2clt.dll
11:13:12.0802 3024 C:\Windows\System32\drmv2clt.dll - ok
11:13:12.0806 3024 [ 83C98C1CF71E7CAC83EEDA221E828DD4 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\ehiPlay\a1d42b32594f0e6f8f4ecfeb94d86b74\ehiPlay.ni.dll
11:13:12.0806 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\ehiPlay\a1d42b32594f0e6f8f4ecfeb94d86b74\ehiPlay.ni.dll - ok
11:13:12.0811 3024 [ 9D42BD101DC29AF439A15FDF525DE81B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\2e0959aca71bd161b5834cfbdbc8a3c7\System.DirectoryServices.ni.dll
11:13:12.0811 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\2e0959aca71bd161b5834cfbdbc8a3c7\System.DirectoryServices.ni.dll - ok
11:13:12.0816 3024 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
11:13:12.0816 3024 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
11:13:12.0821 3024 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
11:13:12.0821 3024 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
11:13:12.0825 3024 [ 8ADBA806F80A187F8A073711C9FB52F1 ] C:\Program Files\HP\Digital Imaging\bin\hpqstd08.dll
11:13:12.0825 3024 C:\Program Files\HP\Digital Imaging\bin\hpqstd08.dll - ok
11:13:12.0830 3024 [ 421613767407C639E9E115B092A0EE3B ] C:\Windows\System32\sbeio.dll
11:13:12.0830 3024 C:\Windows\System32\sbeio.dll - ok
11:13:12.0834 3024 [ 8DEDF91DD8C3C0FF3D3379A641B821C7 ] C:\Program Files\HP\Digital Imaging\bin\hpqmfc10.dll
11:13:12.0834 3024 C:\Program Files\HP\Digital Imaging\bin\hpqmfc10.dll - ok
11:13:12.0840 3024 [ EACACA0F2FF4CC54A909E3C5721FCDE8 ] C:\Windows\System32\msvfw32.dll
11:13:12.0840 3024 C:\Windows\System32\msvfw32.dll - ok
11:13:12.0843 3024 [ 9E78ECC18D24F558C62698702E5FA4BC ] C:\Program Files\HP\Digital Imaging\bin\hpqstd08.rsc
11:13:12.0843 3024 C:\Program Files\HP\Digital Imaging\bin\hpqstd08.rsc - ok
11:13:12.0850 3024 [ FE830990F5FB4171C0DA7683B036C650 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b49ce1a910673d3e96965817e5c0535c\System.Web.ni.dll
11:13:12.0850 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b49ce1a910673d3e96965817e5c0535c\System.Web.ni.dll - ok
11:13:12.0853 3024 [ 928C90E02E05244D2290C1551DF732C8 ] C:\Windows\System32\avicap32.dll
11:13:12.0853 3024 C:\Windows\System32\avicap32.dll - ok
11:13:12.0857 3024 [ 65C092EF598DCCA1D665D52F06829512 ] C:\Windows\System32\vfwwdm32.dll
11:13:12.0857 3024 C:\Windows\System32\vfwwdm32.dll - ok
11:13:12.0861 3024 [ 904E13BA41AF2E353A32CF351CA53639 ] C:\Program Files\Internet Explorer\iexplore.exe
11:13:12.0861 3024 C:\Program Files\Internet Explorer\iexplore.exe - ok
11:13:12.0865 3024 [ 5BD1234E11B39C63BBA87022AF6D43C2 ] C:\Windows\System32\wups2.dll
11:13:12.0865 3024 C:\Windows\System32\wups2.dll - ok
11:13:12.0872 3024 [ AC6B8F8058EE27932F9AF8A2D959D201 ] C:\Windows\System32\msimtf.dll
11:13:12.0872 3024 C:\Windows\System32\msimtf.dll - ok
11:13:12.0878 3024 [ 3FCB7347D2DE38488C85A31EA7838A3C ] C:\Windows\System32\WinSATAPI.dll
11:13:12.0878 3024 C:\Windows\System32\WinSATAPI.dll - ok
11:13:12.0880 3024 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll
11:13:12.0880 3024 C:\Windows\System32\msls31.dll - ok
11:13:12.0885 3024 [ 40F9FC39CCF5445F3075083380BD5421 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
11:13:12.0885 3024 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
11:13:12.0889 3024 [ 2BC43A2C4B0B3BC7863FEDE5031A9037 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\19f85a4f6faaeb87a9055ccf23a9f8b7\System.Xaml.ni.dll
11:13:12.0889 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\19f85a4f6faaeb87a9055ccf23a9f8b7\System.Xaml.ni.dll - ok
11:13:12.0898 3024 [ 6A318955EEC8BD1D4AF9FAA1F6E1CA47 ] C:\Program Files\Polkast\Polkast.Providers.dll
11:13:12.0898 3024 C:\Program Files\Polkast\Polkast.Providers.dll - ok
11:13:12.0901 3024 [ 0F6652951129F283C72E1A5A951FF948 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
11:13:12.0901 3024 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
11:13:12.0908 3024 [ F7D4A7047BCB7D3CC70B0DC23E928022 ] C:\Program Files\AVAST Software\Avast\AhAScr.dll
11:13:12.0908 3024 C:\Program Files\AVAST Software\Avast\AhAScr.dll - ok
11:13:12.0911 3024 [ 77A00A40A93894DFE90B910040A8D06A ] C:\Windows\System32\jscript.dll
11:13:12.0911 3024 C:\Windows\System32\jscript.dll - ok
11:13:12.0916 3024 [ 5CD80B8E17BE0ED9DC20EABE98389DA6 ] C:\Program Files\Polkast\Polkast.DataAccess.dll
11:13:12.0916 3024 C:\Program Files\Polkast\Polkast.DataAccess.dll - ok
11:13:12.0921 3024 [ EBC6332093AEC6A4FBF2C3919D03877A ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpftxt_v0400.dll
11:13:12.0921 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpftxt_v0400.dll - ok
11:13:12.0926 3024 [ 1BE4D00995FDD31B5B65E5D1CF0C5FE9 ] C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
11:13:12.0926 3024 C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll - ok
11:13:12.0929 3024 [ F61FAA6504EF9939867BC4CA5F50F2C0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\0d4cdd1b911d6e28b4fd5c43ab39f7ea\System.Core.ni.dll
11:13:12.0929 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\0d4cdd1b911d6e28b4fd5c43ab39f7ea\System.Core.ni.dll - ok
11:13:12.0935 3024 [ 33EBF5DCD45F878B3622AD82AB37AF3A ] C:\Windows\System32\d3d10warp.dll
11:13:12.0935 3024 C:\Windows\System32\d3d10warp.dll - ok
11:13:12.0940 3024 [ 58A37BF99E0C7757082C8CCCA64FF6F2 ] C:\Program Files\HP\Digital Imaging\bin\hpqsoa08.dll
11:13:12.0940 3024 C:\Program Files\HP\Digital Imaging\bin\hpqsoa08.dll - ok
11:13:12.0944 3024 [ 56D16A44691C0337DD0EF3F3008A9977 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
11:13:12.0944 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
11:13:12.0948 3024 [ 3DB66361DDBB1A017EDE92A68F940DCB ] C:\Windows\System32\adsnt.dll
11:13:12.0948 3024 C:\Windows\System32\adsnt.dll - ok
11:13:12.0952 3024 [ 56230760954DB0FAD383DC73EC42515C ] C:\Program Files\Windows Live\Shared\wlbici.dll
11:13:12.0952 3024 C:\Program Files\Windows Live\Shared\wlbici.dll - ok
11:13:12.0957 3024 [ C45DF7436E84C1AFF4E85E828F69B849 ] C:\Windows\System32\jscript9.dll
11:13:12.0957 3024 C:\Windows\System32\jscript9.dll - ok
11:13:12.0961 3024 [ A28574E9659180AF96C8178FC1D722D8 ] C:\Program Files\Windows Live\Contacts\wlcomm.exe
11:13:12.0961 3024 C:\Program Files\Windows Live\Contacts\wlcomm.exe - ok
11:13:12.0965 3024 [ A6950BA89334D51EC281904781B89BD2 ] C:\Windows\System32\asycfilt.dll
11:13:12.0965 3024 C:\Windows\System32\asycfilt.dll - ok
11:13:12.0970 3024 [ 84E061BB8A464D28DDE102E1BD3CCD8C ] C:\Program Files\Windows Live\Contacts\condb.dll
11:13:13.0077 3024 C:\Program Files\Windows Live\Contacts\condb.dll - ok
11:13:13.0085 3024 [ F61D535F267550DFFD0D66C39C579512 ] C:\Program Files\Windows Live\Contacts\lmcdata.dll
11:13:13.0085 3024 C:\Program Files\Windows Live\Contacts\lmcdata.dll - ok
11:13:13.0088 3024 [ 9383D302F0D95DB0802308CF250727F3 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
11:13:13.0088 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
11:13:13.0096 3024 [ AB87EEFFD18F2BAAFC274E7075EA6C67 ] C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
11:13:13.0096 3024 C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - ok
11:13:13.0100 3024 [ 7B1028A754BB63BBFC75B6A94C3F47E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
11:13:13.0100 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
11:13:13.0107 3024 [ 2134E14DFB56952F548487898AE63A89 ] C:\Windows\System32\Adobe\Director\np32dsw.dll
11:13:13.0107 3024 C:\Windows\System32\Adobe\Director\np32dsw.dll - ok
11:13:13.0110 3024 [ 8B02D2ECC7EF6E1F6AF08459E3F741F6 ] C:\Windows\System32\d3d10.dll
11:13:13.0110 3024 C:\Windows\System32\d3d10.dll - ok
11:13:13.0115 3024 [ B6884AE857E0C2106FA718A6C688CD7C ] C:\Program Files\Windows Live\Shared\en\wliduxloc.dll.mui
11:13:13.0115 3024 C:\Program Files\Windows Live\Shared\en\wliduxloc.dll.mui - ok
11:13:13.0121 3024 [ 9C7094F537782A82B6A29B4A7172E180 ] C:\Windows\System32\d3d10core.dll
11:13:13.0121 3024 C:\Windows\System32\d3d10core.dll - ok
11:13:13.0128 3024 [ CA4FA9CA6F1225FBD9D14024E37F18F0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\42ee047cbb259c7f6d93ff1e1c7bdd08\System.Runtime.Remoting.ni.dll
11:13:13.0128 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\42ee047cbb259c7f6d93ff1e1c7bdd08\System.Runtime.Remoting.ni.dll - ok
11:13:13.0134 3024 [ AFBF51D42CD3DE162FA1F53A8C15DA12 ] C:\Program Files\Windows Live\Contacts\conproxy.dll
11:13:13.0134 3024 C:\Program Files\Windows Live\Contacts\conproxy.dll - ok
11:13:13.0140 3024 [ BCF154988D6C2F18109D6C32EBF6BCE2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5e4551c1842d1006848b51cf72272795\CustomMarshalers.ni.dll
11:13:13.0140 3024 C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5e4551c1842d1006848b51cf72272795\CustomMarshalers.ni.dll - ok
11:13:13.0143 3024 [ 6C4366921C0B35BCCE022D033EF54019 ] C:\Program Files\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll
11:13:13.0143 3024 C:\Program Files\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll - ok
11:13:13.0148 3024 [ 8607A3AE9C287A8E3CDF6E410A1426A7 ] C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
11:13:13.0148 3024 C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
11:13:13.0153 3024 [ 647C58AA860262AB06C75FEC8E3DE286 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\76d7e84f5dca7908b45edba58bd12f48\System.Management.ni.dll
11:13:13.0153 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\76d7e84f5dca7908b45edba58bd12f48\System.Management.ni.dll - ok
11:13:13.0159 3024 [ 6CFB78834446F4C71BEF2BC6D5A2160D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7da6438d5b963b85283a2b793e60aadf\PresentationFramework.Classic.ni.dll
11:13:13.0159 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7da6438d5b963b85283a2b793e60aadf\PresentationFramework.Classic.ni.dll - ok
11:13:13.0164 3024 [ 98D96B841D713F3002921CD8605CB837 ] C:\Program Files\Polkast\Polkast.Resources.dll
11:13:13.0164 3024 C:\Program Files\Polkast\Polkast.Resources.dll - ok
11:13:13.0169 3024 [ 43C789667DDD71C2FA094BBEEDAFBB7A ] C:\Program Files\Polkast\Polkast.ClientUI.dll
11:13:13.0169 3024 C:\Program Files\Polkast\Polkast.ClientUI.dll - ok
11:13:13.0174 3024 [ F6B669A844E912ECC1A961EFB8267F3B ] C:\Program Files\Polkast\Polkast.Configuration.dll
11:13:13.0174 3024 C:\Program Files\Polkast\Polkast.Configuration.dll - ok
11:13:13.0179 3024 [ 2955A48BE10FD1F7A112B0A890A6271D ] C:\Windows\System32\msisip.dll
11:13:13.0179 3024 C:\Windows\System32\msisip.dll - ok
11:13:13.0182 3024 [ 9AC863FD5976316C29D4CB5E4C9EFD9C ] C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_146.dll
11:13:13.0182 3024 C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_146.dll - ok
11:13:13.0189 3024 [ 9C50130E941A24805A608E6F3D2A3C8F ] C:\Windows\System32\wshext.dll
11:13:13.0189 3024 C:\Windows\System32\wshext.dll - ok
11:13:13.0193 3024 [ 7943A80F1A6FD37969AACD411B511F91 ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
11:13:13.0193 3024 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll - ok
11:13:13.0198 3024 [ 559D9CBFC29DEE2773B28D38851683BA ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
11:13:13.0199 3024 C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
11:13:13.0206 3024 [ C1FA0945732C9B45C937D2BA15C724EA ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\618e6d3cd8824d6d72ae1767acaa1078\System.Configuration.ni.dll
11:13:13.0206 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\618e6d3cd8824d6d72ae1767acaa1078\System.Configuration.ni.dll - ok
11:13:13.0209 3024 [ 6AC72593C1244399816BB40F21B41AF6 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7cc17b90932adaad5651ceb526cade44\System.Xml.ni.dll
11:13:13.0209 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7cc17b90932adaad5651ceb526cade44\System.Xml.ni.dll - ok
11:13:13.0214 3024 [ DF23B98FA41224DE5B2D537CE890A7D8 ] C:\Program Files\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll
11:13:13.0214 3024 C:\Program Files\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll - ok
11:13:13.0222 3024 [ E33D119196EF75390A6D00393F606DCB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\ff20e15edfa14ce628b0502173347062\System.Xml.Linq.ni.dll
11:13:13.0222 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\ff20e15edfa14ce628b0502173347062\System.Xml.Linq.ni.dll - ok
11:13:13.0228 3024 [ BCED95C3424E3316D455E19B671ACEEC ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll
11:13:13.0228 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll - ok
11:13:13.0233 3024 [ FFB3E32B9B69EFEF5AFA96DAA023AADA ] C:\Program Files\Polkast\System.Data.SqlServerCe.dll
11:13:13.0233 3024 C:\Program Files\Polkast\System.Data.SqlServerCe.dll - ok
11:13:13.0239 3024 [ 3245DBD0D5A891E8B37846C8220B182F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\cbb93497a3dddc9ab32316cc54dfb16a\System.Security.ni.dll
11:13:13.0239 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\cbb93497a3dddc9ab32316cc54dfb16a\System.Security.ni.dll - ok
11:13:13.0242 3024 [ F723422A11CD6FA13036746272200993 ] C:\Windows\System32\wbem\cimwin32.dll
11:13:13.0243 3024 C:\Windows\System32\wbem\cimwin32.dll - ok
11:13:13.0248 3024 [ 4FF791D88FCF325D6EF47B696A4212A0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6e6f321459aa81611031cfb582e77cc6\System.Data.ni.dll
11:13:13.0248 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6e6f321459aa81611031cfb582e77cc6\System.Data.ni.dll - ok
11:13:13.0252 3024 [ 621B8A1AA85635B59837F44D853B5859 ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
11:13:13.0252 3024 C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll - ok
11:13:13.0257 3024 [ 63C13A88FB0520A8E2D46FD529680F16 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\53591520988a6ee49924e1efc911df30\System.Drawing.ni.dll
11:13:13.0257 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\53591520988a6ee49924e1efc911df30\System.Drawing.ni.dll - ok
11:13:13.0261 3024 [ 068CA24E24E970F275B1AD26E423AE74 ] C:\Program Files\Windows Live\Contacts\consync.dll
11:13:13.0261 3024 C:\Program Files\Windows Live\Contacts\consync.dll - ok
11:13:13.0265 3024 [ 3A927A1ABED9152B5A3CBDB65CCD0B17 ] C:\Program Files\Windows Live\Contacts\LivePlatform.dll
11:13:13.0266 3024 C:\Program Files\Windows Live\Contacts\LivePlatform.dll - ok
11:13:13.0273 3024 [ B4F859EAB702B87D909DB3CECF656174 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\0df91adfb9c0e51b7b967d61e8151b78\System.Transactions.ni.dll
11:13:13.0273 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\0df91adfb9c0e51b7b967d61e8151b78\System.Transactions.ni.dll - ok
11:13:13.0276 3024 [ 41962D5E18E9874390BC1F074571A6BB ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
11:13:13.0276 3024 C:\Windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
11:13:13.0280 3024 [ 33101AAEFF4E876D07F7ECB3616E68DB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f3e016a2e799cfe233b13d88e90c0e0b\System.Windows.Forms.ni.dll
11:13:13.0280 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f3e016a2e799cfe233b13d88e90c0e0b\System.Windows.Forms.ni.dll - ok
11:13:13.0285 3024 [ 2898035F522BA2989BBA8B9CFB020FD2 ] C:\Program Files\AVAST Software\Avast\defs\13012200\aspColl.dll
11:13:13.0285 3024 C:\Program Files\AVAST Software\Avast\defs\13012200\aspColl.dll - ok
11:13:13.0293 3024 [ 901D897E9C6E6337D7DF3558BF794A43 ] C:\Program Files\Polkast\Microsoft.WindowsAPICodePack.Shell.dll
11:13:13.0293 3024 C:\Program Files\Polkast\Microsoft.WindowsAPICodePack.Shell.dll - ok
11:13:13.0296 3024 [ D6BACADF83661F08F9E1515AAE74B03E ] C:\Windows\System32\UIAnimation.dll
11:13:13.0296 3024 C:\Windows\System32\UIAnimation.dll - ok
11:13:13.0301 3024 [ AD1F464AB6B7ACD7026D5B7898C1E6FE ] C:\Program Files\Polkast\Polkast.Interop.dll
11:13:13.0301 3024 C:\Program Files\Polkast\Polkast.Interop.dll - ok
11:13:13.0306 3024 [ 721BAA64EF443D9033F2330F0FF8C70B ] C:\Windows\System32\dskquota.dll
11:13:13.0306 3024 C:\Windows\System32\dskquota.dll - ok
11:13:13.0311 3024 [ 1AC99F626C7B67616123887EABA4780C ] C:\Program Files\Polkast\x86\sqlceme35.dll
11:13:13.0311 3024 C:\Program Files\Polkast\x86\sqlceme35.dll - ok
11:13:13.0316 3024 [ 88E69D845B1513634AF2FD0E725F9A29 ] C:\Program Files\Polkast\x86\sqlceer35EN.dll
11:13:13.0316 3024 C:\Program Files\Polkast\x86\sqlceer35EN.dll - ok
11:13:13.0320 3024 [ 958582542E5827C3B1B191F1C6C123F4 ] C:\Program Files\Polkast\x86\sqlcese35.dll
11:13:13.0320 3024 C:\Program Files\Polkast\x86\sqlcese35.dll - ok
11:13:13.0325 3024 [ 36CCD0CFE3FC326260BAA7425BDE5C9A ] C:\Program Files\Polkast\x86\sqlceqp35.dll
11:13:13.0325 3024 C:\Program Files\Polkast\x86\sqlceqp35.dll - ok
11:13:13.0330 3024 [ A32C3386D51E0B8C5B115C846D39E425 ] C:\Program Files\Polkast\Newtonsoft.Json.dll
11:13:13.0330 3024 C:\Program Files\Polkast\Newtonsoft.Json.dll - ok
11:13:13.0335 3024 [ 4C5EBD85542AFA74637089671A94A740 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\401ca9defa4213be5372532a2754d50d\System.EnterpriseServices.ni.dll
11:13:13.0335 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\401ca9defa4213be5372532a2754d50d\System.EnterpriseServices.ni.dll - ok
11:13:13.0341 3024 [ 63ABF2C188BE69A810E57A0E5EC1A28C ] C:\Program Files\Polkast\Polkast.Models.dll
11:13:13.0341 3024 C:\Program Files\Polkast\Polkast.Models.dll - ok
11:13:13.0344 3024 [ CA6278FD59049DDCFF323BE9E00E6212 ] C:\Program Files\Polkast\Polkast.Registration.dll
11:13:13.0344 3024 C:\Program Files\Polkast\Polkast.Registration.dll - ok
11:13:13.0348 3024 [ F8D8BB3F6173FFF00128612F33D3197A ] C:\Windows\System32\wbem\WMIADAP.exe
11:13:13.0348 3024 C:\Windows\System32\wbem\WMIADAP.exe - ok
11:13:13.0353 3024 [ C755E17BAC396F9A9F468320B3F6CF46 ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
11:13:13.0353 3024 C:\Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll - ok
11:13:13.0357 3024 [ A3688FF18AE628D45967046C97F7DAA3 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\4ce4ff836715d7e822200dd340ce8c32\System.ComponentModel.DataAnnotations.ni.dll
11:13:13.0357 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\4ce4ff836715d7e822200dd340ce8c32\System.ComponentModel.DataAnnotations.ni.dll - ok
11:13:13.0362 3024 [ 8D1176CB888CDAF443074D6F30E2FE96 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\401ca9defa4213be5372532a2754d50d\System.EnterpriseServices.Wrapper.dll
11:13:13.0362 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\401ca9defa4213be5372532a2754d50d\System.EnterpriseServices.Wrapper.dll - ok
11:13:13.0366 3024 [ 015E99A7634B93E8BB0380C70F3D2CC3 ] C:\Windows\System32\wmp.dll
11:13:13.0366 3024 C:\Windows\System32\wmp.dll - ok
11:13:13.0371 3024 [ 051399952F8F2D91E8172C9A022F6714 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ce480f313eb8be9a3a4dd6d7902325\System.Runtime.Serialization.ni.dll
11:13:13.0371 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ce480f313eb8be9a3a4dd6d7902325\System.Runtime.Serialization.ni.dll - ok
11:13:13.0377 3024 [ 27FF9680FD2FBE75330997DDC3AE0584 ] C:\Program Files\Windows Live\Contacts\abssm.dll
11:13:13.0377 3024 C:\Program Files\Windows Live\Contacts\abssm.dll - ok
11:13:13.0381 3024 [ 9441A231C0AA0712F7CF3B10D9CFCF76 ] C:\Windows\System32\wmploc.DLL
11:13:13.0381 3024 C:\Windows\System32\wmploc.DLL - ok
11:13:13.0385 3024 [ 012A965F34414458075EF4F0EDC11536 ] C:\Windows\System32\WindowsCodecsExt.dll
11:13:13.0385 3024 C:\Windows\System32\WindowsCodecsExt.dll - ok
11:13:13.0389 3024 [ AD54ABC9AA4EEDA918F75F3A9A86C1D8 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsFormsIntegra#\97a1f8a5a83114e0cea11549602e8e72\WindowsFormsIntegration.ni.dll
11:13:13.0389 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsFormsIntegra#\97a1f8a5a83114e0cea11549602e8e72\WindowsFormsIntegration.ni.dll - ok
11:13:13.0394 3024 [ 46ADEDABF9B7A0EE36BF8D04C57E5E2D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web\38fe604ba07ba90ecc3e7e6ab8fecc46\System.Web.ni.dll
11:13:13.0394 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web\38fe604ba07ba90ecc3e7e6ab8fecc46\System.Web.ni.dll - ok
11:13:13.0400 3024 [ 5331DC9D1C88840326F68C2C531A82A7 ] C:\Users\Owner\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LULnchr.exe
11:13:13.0400 3024 C:\Users\Owner\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LULnchr.exe - ok
11:13:13.0405 3024 [ B5FF5CA778284CDC758502282D7EACF3 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\webengine4.dll
11:13:13.0405 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\webengine4.dll - ok
11:13:13.0410 3024 [ 7570C39D5CA95CFF5E3D49789A347542 ] C:\Windows\System32\msctfui.dll
11:13:13.0411 3024 C:\Windows\System32\msctfui.dll - ok
11:13:13.0415 3024 [ 55C07C20B9F073E3C7E20510C2BE5653 ] C:\Program Files\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll
11:13:13.0415 3024 C:\Program Files\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll - ok
11:13:13.0420 3024 [ BC481D9872033EEBCA798245B712CEC0 ] C:\Program Files\Polkast\TCMPortMapper.dll
11:13:13.0420 3024 C:\Program Files\Polkast\TCMPortMapper.dll - ok
11:13:13.0424 3024 [ 8B2D61CA83825CEAD423228ACD40CFBC ] C:\Windows\System32\loadperf.dll
11:13:13.0424 3024 C:\Windows\System32\loadperf.dll - ok
11:13:13.0429 3024 [ 235D42833F2F89083FA70B9787899846 ] C:\Users\Owner\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LogitechUpdate.exe
11:13:13.0429 3024 C:\Users\Owner\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LogitechUpdate.exe - ok
11:13:13.0432 3024 [ 16BE941AACBF6C44C90F55D3AB4EFE96 ] C:\Program Files\Polkast\taglib-sharp.dll
11:13:13.0432 3024 C:\Program Files\Polkast\taglib-sharp.dll - ok
11:13:13.0439 3024 [ 1DE6B63C5F8090BD06E13C9DA2BB24A4 ] C:\Program Files\Polkast\ShellThumbnail.Sample.dll
11:13:13.0439 3024 C:\Program Files\Polkast\ShellThumbnail.Sample.dll - ok
11:13:13.0441 3024 [ 58C240C884A3795E013F3459168D5093 ] C:\Program Files\Polkast\EXIFextractor.dll
11:13:13.0441 3024 C:\Program Files\Polkast\EXIFextractor.dll - ok
11:13:13.0446 3024 [ FD435DF8C9CA7A49CCBF7CD2F7627739 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll
11:13:13.0446 3024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll - ok
11:13:13.0451 3024 [ B7A0399D36FE92371CD95E5DC8A80D05 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Extensio#\dfc3451ab2170c4a52cae7e91204dd60\System.Web.Extensions.ni.dll
11:13:13.0451 3024 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Extensio#\dfc3451ab2170c4a52cae7e91204dd60\System.Web.Extensions.ni.dll - ok
11:13:13.0455 3024 [ 5FA382106B145A920E2A4F7087AF1B90 ] C:\Windows\System32\wbem\wmipcima.dll
11:13:13.0455 3024 C:\Windows\System32\wbem\wmipcima.dll - ok
11:13:13.0458 3024 ============================================================
11:13:13.0458 3024 Scan finished
11:13:13.0458 3024 ============================================================
11:13:13.0468 5128 Detected object count: 0
11:13:13.0468 5128 Actual detected object count: 0
11:13:58.0092 3940 Deinitialize success
-Nate

"Lots of planets have a north."

#10 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 05:04 PM

There were 3 reports on the BSODviewer so I selected all and copied them all to a .txt:

==================================================
Dump File : Mini012213-02.dmp
Crash Time : 1/22/2013 12:48:03 PM
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0x80000003
Parameter 2 : 0xae135b18
Parameter 3 : 0x805f0d90
Parameter 4 : 0x00000000
Caused By Driver : aswMBR.sys
Caused By Address : aswMBR.sys+4b19
File Description :
Product Name :
Company :
File Version :
Processor : 32-bit
Crash Address : aswMBR.sys+4b19
Stack Address 1 : ntkrnlpa.exe+2e3d4d
Stack Address 2 : ntkrnlpa.exe+a721b
Stack Address 3 : ntkrnlpa.exe+2e3b95
Computer Name :
Full Path : C:\Windows\Minidump\Mini012213-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 150,504
==================================================

==================================================
Dump File : Mini012213-01.dmp
Crash Time : 1/22/2013 11:20:26 AM
Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x000000d1
Parameter 1 : 0x0063009d
Parameter 2 : 0x00000002
Parameter 3 : 0x00000000
Parameter 4 : 0x8412c8c4
Caused By Driver : storport.sys
Caused By Address : storport.sys+18c4
File Description : Microsoft Storage Port Driver
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+4dfd9
Stack Address 1 : storport.sys+18c4
Stack Address 2 : storport.sys+13c5
Stack Address 3 : nvstor32.sys+345e
Computer Name :
Full Path : C:\Windows\Minidump\Mini012213-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 163,792
==================================================

==================================================
Dump File : Mini012013-01.dmp
Crash Time : 1/20/2013 8:58:41 AM
Bug Check String : DRIVER_CORRUPTED_EXPOOL
Bug Check Code : 0x000000c5
Parameter 1 : 0x8d03db90
Parameter 2 : 0x00000002
Parameter 3 : 0x00000000
Parameter 4 : 0x836f3092
Caused By Driver : hal.dll
Caused By Address : hal.dll+7838
File Description : Hardware Abstraction Layer DLL
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+4dfd9
Stack Address 1 : ntkrnlpa.exe+ee092
Stack Address 2 : ntkrnlpa.exe+83132
Stack Address 3 : ntkrnlpa.exe+82baf
Computer Name :
Full Path : C:\Windows\Minidump\Mini012013-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 148,952
==================================================
-Nate

"Lots of planets have a north."

#11 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:08 AM

Posted 22 January 2013 - 05:13 PM

Excellent,

Can you tell me if you ran Combofix on 1-6-13?
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#12 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 05:16 PM

I believe I did
-Nate

"Lots of planets have a north."

#13 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,670 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:08 AM

Posted 22 January 2013 - 05:28 PM

OK, the reason why I ask is because if that is the case and Combofix deleted the files it normally would have, then there appears to be evidence your computer is being reinfected upon reboot. That is a sign of a deeper problem. Rather than post the previous results we are going to start from the beginning.

Please do this for me.


===================================================


Re-installing and Running ComboFix

--------------------

I would like you to delete Combofix and then re-install it. We will then run the program again with the new copy.

  • Right click on the ComboFix Icon Posted Image on your desktop and select Delete.
  • Please download ComboFix from one of these locations and save it to your desktop:

    Bleepingcomputer

    ForoSpyware

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Double click on Combofix.exe.
  • When finished, it will produce a log. Please include the C:\Combofix.txt log in your next reply.
  • If your computer does not reboot automatically please do so before the next step

===================================================


OTL

--------------------

  • Please download OTL and save it to your desktop
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Copy and paste the two reports in your next reply.

  • OTL.txt <-- Will be opened
  • Extra.txt <-- Will be minimized

===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Combofix log
  • OTL log
  • Extra log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#14 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 09:06 PM

ComboFix 13-01-22.01 - Owner 01/22/2013 16:42:48.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3454.1593 [GMT -6:00]
Running from: c:\users\Owner\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\lsprst7.dll
c:\windows\system32\ssprs.dll
c:\windows\system32\tmpPrst.dll
c:\windows\TEMP\jna5876459566567046580.dll
.
.
((((((((((((((((((((((((( Files Created from 2012-12-23 to 2013-01-23 )))))))))))))))))))))))))))))))
.
.
2013-01-23 00:10 . 2013-01-23 00:10 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-01-23 00:10 . 2013-01-23 00:10 -------- d-----w- c:\users\Sarah\AppData\Local\temp
2013-01-23 00:10 . 2013-01-23 00:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-22 22:02 . 2013-01-22 22:02 -------- d-----w- c:\program files\NirSoft
2013-01-15 22:29 . 2013-01-22 22:36 -------- d-----w- c:\users\Owner\AppData\Roaming\XYplorer
2013-01-15 22:29 . 2013-01-15 22:29 -------- d-----w- c:\program files\XYplorer
2013-01-14 17:45 . 2013-01-12 09:30 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-01-06 21:55 . 2012-10-30 23:51 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-06 21:55 . 2012-10-30 23:51 361032 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-06 21:55 . 2012-10-30 23:51 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-01-06 21:55 . 2012-10-30 23:51 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-06 21:55 . 2012-10-30 23:51 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-06 21:55 . 2012-10-30 23:51 58680 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-06 21:55 . 2012-10-30 23:51 41224 ----a-w- c:\windows\avastSS.scr
2013-01-06 21:55 . 2012-10-30 23:50 227648 ----a-w- c:\windows\system32\aswBoot.exe
2013-01-06 21:54 . 2013-01-06 21:54 -------- d-----w- c:\programdata\AVAST Software
2013-01-06 21:54 . 2013-01-06 21:54 -------- d-----w- c:\program files\AVAST Software
2013-01-06 00:15 . 2013-01-06 00:15 -------- d-----w- c:\users\Owner\AppData\Local\ElevatedDiagnostics
2013-01-06 00:13 . 2013-01-06 00:13 -------- d-----w- c:\programdata\Sophos
2013-01-06 00:13 . 2013-01-06 00:13 73728 ----a-r- c:\users\Owner\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-01-06 00:13 . 2013-01-06 00:13 73728 ----a-r- c:\users\Owner\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-01-06 00:13 . 2013-01-06 00:13 73728 ----a-r- c:\users\Owner\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\ARPPRODUCTICON.exe
2013-01-06 00:12 . 2013-01-06 00:12 -------- d-----w- c:\program files\Sophos
2013-01-05 23:36 . 2013-01-05 23:41 -------- d-----w- C:\WINSSLog
2013-01-05 22:30 . 2013-01-05 22:30 -------- d-----w- c:\program files\Polkast
2013-01-03 21:22 . 2013-01-03 21:22 -------- d-----w- c:\program files\Dropbox
2013-01-02 16:18 . 2012-12-31 23:28 51144 ----a-w- c:\windows\system32\drivers\Soluto.sys
2013-01-02 16:17 . 2013-01-02 16:18 -------- d-----w- c:\program files\Soluto
2012-12-26 21:20 . 2012-12-26 21:20 -------- d-----w- c:\program files\Garmin GPS Plugin
2012-12-26 21:19 . 2012-12-26 21:19 -------- d-----w- c:\program files\Garmin
2012-12-26 18:31 . 2012-12-27 22:58 -------- d-----w- c:\users\Owner\AppData\Roaming\Garmin
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-15 15:16 . 2012-04-04 13:01 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-15 15:16 . 2011-05-18 16:02 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-12-14 22:49 . 2011-09-08 22:11 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-11-13 20:29 . 2012-11-13 20:29 354216 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl
2012-10-25 09:12 . 2012-10-25 09:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 09:12 . 2012-10-25 09:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
Cryptography Services Error !!
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 23:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32 129272 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CGFLoader"="c:\program files\Calibrize\CalibrizeLoader.exe" [2007-11-26 1961984]
"CalibrizeResume"="c:\program files\Calibrize\CalibrizeResume.exe" [2007-11-26 413696]
"PolkastLibrary"="c:\program files\Polkast\PolkastLibrary.exe" [2013-01-05 3247008]
"PolkastServiceApp"="c:\program files\Polkast\PolkastServiceApp.exe" [2013-01-05 42400]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-11-09 17877168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2006-09-28 65536]
"Microsoft Default Manager"="c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"LWS"="c:\program files\Logitech\LWS\Webcam Software\LWS.exe" [2011-11-11 205336]
"Garmin Lifetime Updater"="c:\program files\Garmin\Lifetime Updater\GarminLifetime.exe" [2012-06-04 1466760]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-10-25 421888]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"DivXMediaServer"="c:\program files\DivX\DivX Media Server\DivXMediaServer.exe" [2012-11-13 450560]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2012-11-30 1263512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-12-12 152544]
"Soluto"="c:\program files\soluto\soluto.exe" [2012-12-31 1229448]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
CrashPlan Tray.lnk - c:\program files\CrashPlan\CrashPlanTray.exe [2012-8-16 217088]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-08-04 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BSA Print.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\BSA Print.lnk
backup=c:\windows\pss\BSA Print.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech Desktop Messenger.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Logitech Desktop Messenger.lnk
backup=c:\windows\pss\Logitech Desktop Messenger.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Owner^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^StartUp^OneNote 2007 Screen Clipper and Launcher.lnk]
path=c:\users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\OneNote 2007 Screen Clipper and Launcher.lnk
backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe]
2007-03-07 22:47 843776 ------w- c:\program files\Creative\Sync Manager Unicode\CTSyncU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-12-12 19:57 152544 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2010-07-21 17:22 2736128 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OsdMaestro]
2007-02-15 10:59 118784 ----a-w- c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
R4 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
bthsvcs REG_MULTI_SZ BthServ
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2013-01-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 15:16]
.
2013-01-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-28 14:19]
.
2013-01-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-28 14:19]
.
2013-01-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-839246837-1924086884-2734542397-1000Core.job
- c:\users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-13 11:13]
.
2013-01-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-839246837-1924086884-2734542397-1000UA.job
- c:\users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-13 11:13]
.
2013-01-05 c:\windows\Tasks\HPCeeScheduleForOwner.job
- c:\program files\Hewlett-Packard\SDP\Ceement\HPCEE.exe [2012-06-21 18:56]
.
2013-01-23 c:\windows\Tasks\ParetoLogic Update Version3 Startup Task.job
- c:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2012-06-27 21:06]
.
2013-01-04 c:\windows\Tasks\ParetoLogic Update Version3.job
- c:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2012-06-27 21:06]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
Trusted Zone: mybsa.org
Trusted Zone: netbsa.org
Trusted Zone: scouting.org
TCP: DhcpNameServer = 192.168.1.1
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
DPF: {689ff870-2ac0-11d5-b634-00c04faedb18}
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-44123539.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-01-22 19:56
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
€ [-8] 0x00020000
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-839246837-1924086884-2734542397-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-839246837-1924086884-2734542397-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\system\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(5516)
c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\CrashPlan\CrashPlanService.exe
c:\windows\system32\CTsvcCDA.exe
c:\program files\Microsoft LifeCam\MSCamS32.exe
c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe
c:\program files\Soluto\SolutoLauncherService.exe
c:\program files\Soluto\SolutoService.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\WUDFHost.exe
c:\windows\ehome\ehsched.exe
c:\windows\ehome\ehRecvr.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\HP\Digital Imaging\bin\hpqbam08.exe
.
**************************************************************************
.
Completion time: 2013-01-22 20:04:41 - machine was rebooted
ComboFix-quarantined-files.txt 2013-01-23 02:04
ComboFix2.txt 2013-01-06 16:49
.
Pre-Run: 24,528,490,496 bytes free
Post-Run: 27,279,294,464 bytes free
.
- - End Of File - - C993EC894864BBF8B301A42AEFA4B909
-Nate

"Lots of planets have a north."

#15 narcher007

narcher007
  • Topic Starter

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:10:08 AM

Posted 22 January 2013 - 10:00 PM

OTL logfile created on: 1/22/2013 8:06:58 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Owner\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.37 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 46.79% Memory free
7.03 Gb Paging File | 5.03 Gb Available in Paging File | 71.52% Paging File free
Paging file location(s): c:\pagefile.sys 3753 5179 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 456.91 Gb Total Space | 25.47 Gb Free Space | 5.58% Space Free | Partition Type: NTFS
Drive D: | 8.85 Gb Total Space | 1.05 Gb Free Space | 11.83% Space Free | Partition Type: NTFS
Drive K: | 1863.01 Gb Total Space | 955.93 Gb Free Space | 51.31% Space Free | Partition Type: NTFS

Computer Name: HAL2007 | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/22 20:06:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Downloads\OTL.exe
PRC - [2013/01/04 18:13:32 | 000,042,400 | ---- | M] (Polkast LLC) -- C:\Program Files\Polkast\PolkastServiceApp.exe
PRC - [2012/12/31 17:38:24 | 000,542,344 | ---- | M] (Soluto) -- C:\Program Files\Soluto\SolutoService.exe
PRC - [2012/12/31 17:38:24 | 000,167,048 | ---- | M] (Soluto) -- C:\Program Files\Soluto\SolutoLauncherService.exe
PRC - [2012/12/31 17:38:22 | 001,229,448 | ---- | M] (Soluto) -- C:\Program Files\Soluto\Soluto.exe
PRC - [2012/12/13 14:26:20 | 003,290,896 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012/11/29 20:06:58 | 001,263,512 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2012/10/30 17:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/30 17:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/09/23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/08/16 09:21:56 | 000,152,576 | ---- | M] (CrashPlan) -- C:\Program Files\CrashPlan\CrashPlanService.exe
PRC - [2012/08/16 09:21:34 | 000,217,088 | ---- | M] (Code 42 Software, Inc.) -- C:\Program Files\CrashPlan\CrashPlanTray.exe
PRC - [2012/06/04 09:31:40 | 001,466,760 | ---- | M] (Garmin) -- C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe
PRC - [2012/02/29 14:58:46 | 000,857,408 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2012/02/29 14:58:36 | 001,820,480 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011/11/11 14:08:06 | 000,205,336 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2009/04/11 00:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007/05/17 13:45:34 | 000,271,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2006/12/08 10:16:56 | 000,065,536 | ---- | M] () -- C:\hp\KBD\KbdStub.exe
PRC - [2006/09/28 07:42:24 | 000,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\hp\support\hpsysdrv.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/07 18:06:22 | 000,460,392 | ---- | M] () -- C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
MOD - [2013/01/07 18:06:19 | 004,012,648 | ---- | M] () -- C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll
MOD - [2013/01/07 18:05:29 | 000,598,120 | ---- | M] () -- C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\libglesv2.dll
MOD - [2013/01/07 18:05:28 | 000,124,520 | ---- | M] () -- C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\libegl.dll
MOD - [2013/01/07 18:05:25 | 001,553,000 | ---- | M] () -- C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll
MOD - [2013/01/02 10:22:44 | 000,656,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPostBootResources\2a8081ef6ba224531a2fdd9b603071a2\PCGPostBootResources.ni.dll
MOD - [2013/01/02 10:22:43 | 000,052,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGHIDProbe\b012384e1b9b872765b5ef630467927c\PCGHIDProbe.ni.dll
MOD - [2013/01/02 10:22:39 | 000,039,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGRSPProbe\a02d41620719c44339bb3cb4055e140c\PCGRSPProbe.ni.dll
MOD - [2013/01/02 10:22:38 | 002,327,552 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\bdfc935a3d63e096cdc64feaab9b50bf\Community.CsharpSqlite.ni.dll
MOD - [2013/01/02 10:22:34 | 000,202,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGWuInfo\07601c79dd1faa3520cdbf2b67164f99\PCGWuInfo.ni.dll
MOD - [2013/01/02 10:22:33 | 000,100,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\ff75ab2adcc25e29f6a488660cedd62e\Interop.IWshRuntimeLibrary.ni.dll
MOD - [2013/01/02 10:22:31 | 000,055,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\eecb66aac5fba7779f7f608fbfbb5b09\PCGUsersCenter.ni.dll
MOD - [2013/01/02 10:22:30 | 000,156,160 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAppControlPlugin#\6f9b51083d2780684a61cdf3fb173191\PCGAppControlPluginLoader.ni.dll
MOD - [2013/01/02 10:22:27 | 003,521,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\8d789a18b8bce548d92381a682885b4e\PCGClientCommon.ni.dll
MOD - [2013/01/02 10:22:20 | 000,157,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\a4281204fa976d5dcb75f4bd6eb9a327\PCGBootVisualizingCommon.ni.dll
MOD - [2013/01/02 10:22:17 | 000,222,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\4cac955e4f34018025a2b9b2ea5a057f\PCGDriverProbe.ni.dll
MOD - [2013/01/02 10:22:11 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\66a3e68892eb3efa7c42a9ed0551f72a\PCGConfiguration.ni.dll
MOD - [2013/01/02 10:22:08 | 002,617,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGDatabase\f04113c20a979f638a2a5c345f1f071f\PCGDatabase.ni.dll
MOD - [2013/01/02 10:22:01 | 000,048,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\f59592b2055c0dcaf0a23ee7f78cc009\PCGAzureEntityFramework.ni.dll
MOD - [2013/01/02 10:21:58 | 001,531,392 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\a97e763917a6812c6711833188e35a6c\PCGAzureShared.ni.dll
MOD - [2013/01/02 10:21:51 | 001,195,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGCommunication\9633227b13ab8f6db265b60b9f5b98d9\PCGCommunication.ni.dll
MOD - [2013/01/02 10:21:44 | 001,707,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\a03d846e0d57366d17fedb2bddffd27f\PCGPreCompiled.ni.dll
MOD - [2013/01/02 10:21:38 | 000,188,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGPrestoSerializer\b34ad9f48ad4abb86be7af0d80ee449a\PCGPrestoSerializer.ni.dll
MOD - [2013/01/02 10:21:36 | 000,596,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Ionic.Zip.Reduced\c79f9143203f2a6d56428c6270526888\Ionic.Zip.Reduced.ni.dll
MOD - [2013/01/02 10:21:33 | 002,128,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\6959d34ab1890b008d20dd7e7476ea09\Newtonsoft.Json.Net35.ni.dll
MOD - [2013/01/02 10:21:29 | 002,721,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PCGFramework\5694a6620b43997e65b2fab673417898\PCGFramework.ni.dll
MOD - [2013/01/02 10:21:14 | 001,622,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Soluto\3299a482f79f56f3ac312a3ee52f9d92\Soluto.ni.exe
MOD - [2012/12/31 17:28:40 | 000,077,880 | ---- | M] () -- C:\Program Files\Soluto\PCGDllExportInspector.dll
MOD - [2012/11/29 20:07:48 | 000,100,248 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2012/11/29 20:06:58 | 001,263,512 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2012/10/24 09:23:43 | 000,770,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\42ee047cbb259c7f6d93ff1e1c7bdd08\System.Runtime.Remoting.ni.dll
MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/06/22 11:49:46 | 001,218,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\76d7e84f5dca7908b45edba58bd12f48\System.Management.ni.dll
MOD - [2011/06/22 11:47:59 | 000,194,048 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\4ce4ff836715d7e822200dd340ce8c32\System.ComponentModel.DataAnnotations.ni.dll
MOD - [2011/06/22 11:47:19 | 000,786,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\401ca9defa4213be5372532a2754d50d\System.EnterpriseServices.ni.dll
MOD - [2011/06/22 11:47:19 | 000,236,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\401ca9defa4213be5372532a2754d50d\System.EnterpriseServices.Wrapper.dll
MOD - [2011/06/22 11:47:17 | 000,646,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\0df91adfb9c0e51b7b967d61e8151b78\System.Transactions.ni.dll
MOD - [2011/06/22 11:47:13 | 002,637,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ce480f313eb8be9a3a4dd6d7902325\System.Runtime.Serialization.ni.dll
MOD - [2011/06/22 11:47:10 | 000,391,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\ff20e15edfa14ce628b0502173347062\System.Xml.Linq.ni.dll
MOD - [2011/06/22 11:47:09 | 001,781,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\19f85a4f6faaeb87a9055ccf23a9f8b7\System.Xaml.ni.dll
MOD - [2011/06/22 10:30:44 | 006,798,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6e6f321459aa81611031cfb582e77cc6\System.Data.ni.dll
MOD - [2011/06/22 10:30:01 | 017,671,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\2250ddb1626087da27fb00f46a679ff5\PresentationFramework.ni.dll
MOD - [2011/06/22 10:27:42 | 000,729,088 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\cbb93497a3dddc9ab32316cc54dfb16a\System.Security.ni.dll
MOD - [2011/06/22 10:26:47 | 005,618,176 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7cc17b90932adaad5651ceb526cade44\System.Xml.ni.dll
MOD - [2011/06/22 10:26:27 | 000,980,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\618e6d3cd8824d6d72ae1767acaa1078\System.Configuration.ni.dll
MOD - [2011/06/22 10:26:22 | 011,106,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\ca8307311e87b234b2faa5ee08332722\PresentationCore.ni.dll
MOD - [2011/06/22 10:25:38 | 013,137,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f3e016a2e799cfe233b13d88e90c0e0b\System.Windows.Forms.ni.dll
MOD - [2011/06/22 10:25:36 | 003,798,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\3154b66d01dcd674b256e03d5f359fac\WindowsBase.ni.dll
MOD - [2011/06/22 10:24:17 | 001,652,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\53591520988a6ee49924e1efc911df30\System.Drawing.ni.dll
MOD - [2011/06/22 10:24:11 | 007,054,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\0d4cdd1b911d6e28b4fd5c43ab39f7ea\System.Core.ni.dll
MOD - [2011/06/22 10:24:05 | 000,284,160 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7da6438d5b963b85283a2b793e60aadf\PresentationFramework.Classic.ni.dll
MOD - [2011/06/22 10:23:56 | 009,085,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\5a8bf6ab1a6ba60e7355fa4cc61fd0c5\System.ni.dll
MOD - [2011/06/22 10:11:30 | 014,407,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\74353039393f68f4c068cc37f759e5be\mscorlib.ni.dll
MOD - [2011/04/14 13:47:24 | 000,881,152 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\61a3ac762933ee76fb306a892fd1ad60\System.DirectoryServices.AccountManagement.ni.dll
MOD - [2011/04/12 23:57:04 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5e4551c1842d1006848b51cf72272795\CustomMarshalers.ni.dll
MOD - [2011/04/12 23:49:14 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ce73262a893af528ab9fde7b033f6da2\System.ServiceProcess.ni.dll
MOD - [2011/04/12 23:49:07 | 001,116,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\2e0959aca71bd161b5834cfbdbc8a3c7\System.DirectoryServices.ni.dll
MOD - [2011/04/12 23:49:00 | 011,804,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b49ce1a910673d3e96965817e5c0535c\System.Web.ni.dll
MOD - [2011/04/12 23:48:26 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\886c8bd1f835e78b659b71aeed3ed15a\System.Configuration.ni.dll
MOD - [2011/04/12 23:46:52 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\653b1be0c33cfade02fb0a61f135e488\System.Xml.ni.dll
MOD - [2011/04/12 23:46:31 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\2bc8bc432d91919ea0bbb2b803a4b6af\System.Windows.Forms.ni.dll
MOD - [2011/04/12 23:46:21 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d5100c24f083084e1d2556839904e987\System.Drawing.ni.dll
MOD - [2011/04/12 23:45:58 | 002,516,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\8b0dea49aab560f2784e3efcafebb674\System.Data.Linq.ni.dll
MOD - [2011/04/12 23:45:44 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3d898b1a36aa22551eb0fd3ebe9bfc11\System.Core.ni.dll
MOD - [2011/04/12 23:44:53 | 007,949,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\45f10e36f25d92dd808caab75e45b8ae\System.ni.dll
MOD - [2011/04/12 23:44:42 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b2a5854682691830b9f62ec351c8b54e\mscorlib.ni.dll
MOD - [2010/05/07 17:37:40 | 000,126,808 | ---- | M] () -- C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
MOD - [2010/05/07 17:37:40 | 000,027,480 | ---- | M] () -- C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
MOD - [2010/05/07 17:36:54 | 000,340,824 | ---- | M] () -- C:\Program Files\Logitech\LWS\Webcam Software\QTXml4.dll
MOD - [2010/05/07 17:35:56 | 007,954,776 | ---- | M] () -- C:\Program Files\Logitech\LWS\Webcam Software\QTGui4.dll
MOD - [2010/05/07 17:35:44 | 002,143,576 | ---- | M] () -- C:\Program Files\Logitech\LWS\Webcam Software\QTCore4.dll
MOD - [2009/03/29 22:42:11 | 000,069,120 | ---- | M] () -- C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
MOD - [2006/12/08 10:16:56 | 000,065,536 | ---- | M] () -- C:\hp\KBD\KbdStub.exe


========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2013/01/20 09:10:24 | 000,541,608 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/01/15 09:16:13 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/31 17:38:24 | 000,542,344 | ---- | M] (Soluto) [Auto | Running] -- C:\Program Files\Soluto\SolutoService.exe -- (SolutoService)
SRV - [2012/12/31 17:38:24 | 000,167,048 | ---- | M] (Soluto) [Auto | Running] -- C:\Program Files\Soluto\SolutoLauncherService.exe -- (SolutoLauncherService)
SRV - [2012/12/31 17:28:40 | 001,239,552 | ---- | M] (Soluto) [On_Demand | Stopped] -- C:\Program Files\Soluto\SolutoRemoteService.exe -- (SolutoRemoteService)
SRV - [2012/12/13 14:26:20 | 003,290,896 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012/11/09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/10/30 17:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012/09/23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/08/16 09:21:56 | 000,152,576 | ---- | M] (CrashPlan) [Auto | Running] -- C:\Program Files\CrashPlan\CrashPlanService.exe -- (CrashPlanService)
SRV - [2012/06/26 14:35:20 | 000,008,704 | ---- | M] (Hi-Rez Studios) [Disabled | Stopped] -- C:\Program Files\Hi-Rez Studios\HiPatchService.exe -- (HiPatchService)
SRV - [2012/02/29 17:59:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2011/08/19 17:38:48 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Disabled | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2011/04/01 04:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2009/09/18 12:42:04 | 004,048,240 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Disabled | Stopped] -- C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe -- (WebrootSpySweeperService)
SRV - [2009/06/23 15:10:04 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008/01/19 01:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/05/17 13:45:34 | 000,271,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2007/01/04 15:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Disabled | Stopped] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\wdcsam.sys -- (WDC_SAM)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\Drivers\PROCEXP151.SYS -- (PROCEXP151)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\Owner\AppData\Local\Temp\mbr.sys -- (mbr)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys -- (Lavasoft Kernexplorer)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\iviaspi.sys -- (Iviaspi)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Running] -- C:\Windows\TEMP\cpuz136\cpuz136_x32.sys -- (cpuz136)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\TEMP\cpuz135\cpuz135_x32.sys -- (cpuz135)
DRV - File not found [Kernel | On_Demand | Running] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2012/12/31 17:28:24 | 000,051,144 | ---- | M] (Soluto LTD.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\Soluto.sys -- (Soluto)
DRV - [2012/10/30 17:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012/10/30 17:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012/10/30 17:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012/10/30 17:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2012/10/30 17:51:57 | 000,058,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012/10/30 17:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012/02/29 17:59:00 | 010,819,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/11/16 22:31:09 | 000,239,168 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/08/03 21:04:47 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/08/03 21:04:47 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -- (SASDIFSV)
DRV - [2011/04/30 06:00:20 | 000,030,360 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2011/04/30 06:00:18 | 000,039,064 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2011/04/30 06:00:06 | 000,041,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2011/04/01 04:11:10 | 004,333,280 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC)
DRV - [2011/04/01 04:09:48 | 000,291,424 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/07/15 08:44:20 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2010/07/15 08:44:20 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2010/05/07 17:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2010/03/19 12:23:54 | 000,023,096 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TucbAudio.sys -- (TucbAudio)
DRV - [2010/02/23 09:51:48 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys -- (WsAudio_DeviceS(5)
DRV - [2010/02/23 09:51:48 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)
DRV - [2010/02/23 09:51:48 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)
DRV - [2010/02/23 09:51:48 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)
DRV - [2010/02/23 09:51:48 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)
DRV - [2009/12/30 11:21:18 | 000,027,192 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/09/18 12:42:18 | 000,176,752 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ssidrv.sys -- (SSIDRV)
DRV - [2009/09/18 12:42:16 | 000,029,808 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ssfs0bbc.sys -- (ssfs0bbc)
DRV - [2009/09/18 12:42:16 | 000,023,152 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sshrmd.sys -- (SSHRMD)
DRV - [2009/05/07 01:09:27 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/03/19 20:50:50 | 000,391,168 | ---- | M] (Hauppauge Computer Works, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hcw18bda.sys -- (hcw18bda)
DRV - [2009/02/03 14:25:52 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\System32\drivers\Lbd.sys -- (Lbd)
DRV - [2008/11/27 15:10:34 | 000,013,312 | ---- | M] (TunePat.com) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tpcdrdrv.sys -- (tpcdrdrv)
DRV - [2008/09/10 03:48:20 | 000,266,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2008/09/10 03:46:22 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DP.sys -- (HSF_DP)
DRV - [2008/09/04 02:34:34 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2008/08/01 18:51:14 | 001,052,704 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2008/07/26 14:26:22 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008/06/18 09:49:16 | 000,049,904 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2008/01/04 20:34:36 | 000,023,920 | ---- | M] (Webroot Software Inc (www.webroot.com)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sskbfd.sys -- (SSKBFD)
DRV - [2007/11/12 09:03:08 | 000,468,480 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netr73.sys -- (netr73)
DRV - [2007/10/26 18:51:24 | 000,110,624 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/10/11 19:59:12 | 001,920,920 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2007/04/10 13:46:44 | 002,385,896 | ---- | M] (Microsoft Corporation
) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VX6000Xp.sys -- (VX6000)
DRV - [2007/02/06 14:01:48 | 000,016,512 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\Windows\System32\drivers\aspi32.sys -- (ASPI32)
DRV - [2006/03/22 12:37:50 | 000,017,408 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdfwhid.sys -- (WD_FireWire_HID)
DRV - [2005/12/12 11:27:00 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PS2.sys -- (Ps2)
DRV - [2005/11/02 17:47:26 | 000,010,368 | R--- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\pfc.sys -- (pfc)
DRV - [2005/08/17 06:47:48 | 000,073,696 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdserd.sys -- (sscdserd)
DRV - [2005/08/17 06:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 06:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 06:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus)
DRV - [2003/04/03 13:00:30 | 000,995,456 | ---- | M] (Pinnacle Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PcleMBox.sys -- (PinnacleMovieBox)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {FE589091-F1AB-4A07-B787-92B6AB6AE846}
IE - HKLM\..\SearchScopes\{2B281BE8-23A6-4ABC-9192-3A2EDC51D23C}: "URL" = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpd
IE - HKLM\..\SearchScopes\{D7327D15-F4E8-451B-84F6-C225D1B1716F}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&amp;entrypoint={referrer:source?}&amp;FORM=HVDUS7
IE - HKLM\..\SearchScopes\{FE589091-F1AB-4A07-B787-92B6AB6AE846}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=hp-pvdt


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = www.bing.com [binary data]
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 2E F6 06 89 35 D5 CA 01 [binary data]
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=112542&tt=3012_8&babsrc=SP_ss&mntrId=44494810000000000000001bb984f4b4
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..\SearchScopes\{16151E86-0734-434A-AF9D-2B64C990D431}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..\SearchScopes\{CE3A3FD1-0A27-07DC-3FED-9D0FBEBC1CD0}: "URL" = http://www.bing.com/search?q={searchTerms}&pc=Z131&form=ZGAIDF&install_date=20111116&iesrc={referrer:source}
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2629: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.1: C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll ( )
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF - HKCU\Software\MozillaPlugins\@livecode.runrev.com/LiveCode Player;version=1: C:\Users\Owner\AppData\Local\RunRev\Components\LiveCodePlayer\9\nplcplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=2: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Owner\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Owner\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10171.dll (Amazon.com, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/08/10 17:56:47 | 000,000,000 | ---D | M]

[2012/12/23 16:08:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Owner\AppData\Roaming\mozilla\Extensions
[2011/05/11 08:18:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Owner\AppData\Roaming\mozilla\Extensions\celtx@celtx.com
[2012/12/23 16:08:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/12/20 02:56:53 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/07/28 11:08:10 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2007/04/16 11:07:12 | 000,180,293 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npViewpoint.dll
[2012/07/26 11:32:58 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml

========== Chrome ==========

CHR - homepage: http://search.babylon.com/?affID=112542&tt=3012_8&babsrc=HP_ss&mntrId=44494810000000000000001bb984f4b4
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://search.babylon.com/?affID=112542&tt=3012_8&babsrc=HP_ss&mntrId=44494810000000000000001bb984f4b4
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Owner\AppData\Local\Google\Chrome\Application\24.0.1312.52\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npViewpoint.dll
CHR - plugin: AmazonMP3DownloaderPlugin (Enabled) = C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\\npsitesafety.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: RealJukebox NS Plugin (Disabled) = C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: RealNetworks Rhapsody Player Engine (Disabled) = C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Disabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Owner\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: LiveCode Player Browser Plugin (Enabled) = C:\Users\Owner\AppData\Local\RunRev\Components\LiveCodePlayer\9\nplcplugin.dll
CHR - plugin: Facebook Plugin (Disabled) = C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll
CHR - plugin: Facebook Plugin (Disabled) = C:\Users\Owner\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: Netflix [ANTP] = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aanihmdmcbcnclmpconplgpgphfmmdld\1.0_0\
CHR - Extension: YouTube = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Slinky Elegant = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0\
CHR - Extension: Hide My Ass! Web Proxy = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmgnmcnlncejehjlnhaglpnoolgbflbd\1.2.5_0\
CHR - Extension: Google Search = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: AdBlock = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.55_0\
CHR - Extension: avast! WebRep = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: Clear = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieejalgokdfjoadngloogmjalacidgen\1.1_0\
CHR - Extension: Dropbox = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.2_0\
CHR - Extension: Awesome Dictionary Widget [ANTP] = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdigjjbkpjljoknifbgaijaemafihhga\3.4_0\
CHR - Extension: Awesome New Tab Page = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgmiemnjjchgkmgbeljfocdjjnpjnmcg\2013.103.6.0_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Wikipedia [ANTP] = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaibilkkobkbfklppblhbglnfdebpip\1.0_0\
CHR - Extension: Amazon Deals Widget [ANTP] = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nolglhjgpggnfpmeapcdnnnpmdijegma\1.1.7.2_0\
CHR - Extension: Print Friendly & PDF = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlencieiipommannpdfcmfdpjjmeolj\2.2_0\
CHR - Extension: Evernote Web Clipper = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\5.9.5_0\
CHR - Extension: Gmail = \Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/01/22 19:56:12 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found.
O3 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe ()
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Garmin Lifetime Updater] C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe (Garmin)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [KBD] C:\HP\KBD\KbdStub.EXE ()
O4 - HKLM..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [Soluto] c:\program files\soluto\soluto.exe (Soluto)
O4 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000..\Run: [CalibrizeResume] C:\Program Files\Calibrize\CalibrizeResume.exe (Eberhard Werle)
O4 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000..\Run: [CGFLoader] C:\Program Files\Calibrize\CalibrizeLoader.exe (Colorjinn)
O4 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000..\Run: [PolkastLibrary] C:\Program Files\Polkast\PolkastLibrary.exe (Polkast LLC)
O4 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000..\Run: [PolkastServiceApp] C:\Program Files\Polkast\PolkastServiceApp.exe (Polkast LLC)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O7 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..Trusted Domains: mybsa.org ([]* in Trusted sites)
O15 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..Trusted Domains: netbsa.org ([]* in Trusted sites)
O15 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..Trusted Domains: scouting.org ([]* in Trusted sites)
O15 - HKU\S-1-5-21-839246837-1924086884-2734542397-1000\..Trusted Ranges: Range1 ([*] in Trusted sites)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} http://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab (Reg Error: Key error.)
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} https://wimpro2.cce.hp.com/ChatEntry/downloads/sysinfo.cab (SysData Class)
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} http://upload.facebook.com/controls/FacebookPhotoUploader3.cab (Facebook Photo Uploader 4 Control)
O16 - DPF: {689ff870-2ac0-11d5-b634-00c04faedb18} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} http://mediaplayer.walmart.com/installer/install.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-us.cab (Windows Live Hotmail Photo Upload Tool)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://secure.mybsa.org/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2F29242B-E267-4293-88A6-9A3B2C91547F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{56D9CC25-1AE1-486A-9FBA-F3D600073E2B}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BE1BF9A7-4BA8-4713-9C14-0DEE88ECAE70}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0C050B0-2AB4-4E12-BD06-8B0805F5106B}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img31.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img31.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/06/21 08:19:32 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/07/09 19:17:29 | 000,000,000 | R--D | M] - K:\autorun -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/22 19:56:15 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2013/01/22 19:56:15 | 000,000,000 | ---D | C] -- \$RECYCLE.BIN
[2013/01/22 16:02:10 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
[2013/01/22 16:02:10 | 000,000,000 | ---D | C] -- C:\Program Files\NirSoft
[2013/01/15 16:29:35 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\XYplorer
[2013/01/15 16:29:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XYplorer
[2013/01/15 16:29:26 | 000,000,000 | ---D | C] -- C:\Program Files\XYplorer
[2013/01/14 21:37:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013/01/14 11:45:47 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/01/14 11:45:47 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/01/14 11:45:47 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/01/06 15:55:46 | 000,361,032 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2013/01/06 15:55:46 | 000,054,232 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2013/01/06 15:55:46 | 000,035,928 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2013/01/06 15:55:46 | 000,021,256 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2013/01/06 15:55:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013/01/06 15:55:44 | 000,738,504 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2013/01/06 15:55:43 | 000,058,680 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2013/01/06 15:55:12 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/01/06 15:55:11 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2013/01/06 15:54:07 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013/01/06 15:54:07 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013/01/06 12:07:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Windows Genuine Advantage
[2013/01/06 02:18:26 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/01/06 02:18:26 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/01/06 02:18:26 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/01/06 02:18:12 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/01/06 02:18:12 | 000,000,000 | ---D | C] -- \Qoobox
[2013/01/06 02:17:41 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/01/05 18:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2013/01/05 18:13:00 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
[2013/01/05 18:12:51 | 000,000,000 | ---D | C] -- C:\Program Files\Sophos
[2013/01/05 17:36:54 | 000,000,000 | ---D | C] -- C:\WINSSLog
[2013/01/05 17:36:54 | 000,000,000 | ---D | C] -- \WINSSLog
[2013/01/05 16:30:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polkast
[2013/01/05 16:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\Polkast
[2013/01/03 15:22:41 | 000,000,000 | ---D | C] -- C:\Program Files\Dropbox
[2013/01/02 10:18:04 | 000,051,144 | ---- | C] (Soluto LTD.) -- C:\Windows\System32\drivers\Soluto.sys
[2013/01/02 10:17:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soluto
[2013/01/02 10:17:55 | 000,000,000 | ---D | C] -- C:\Program Files\Soluto
[2012/12/26 15:20:10 | 000,000,000 | ---D | C] -- C:\Program Files\Garmin GPS Plugin
[2012/12/26 15:19:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
[2012/12/26 15:19:40 | 000,000,000 | ---D | C] -- C:\Program Files\Garmin
[2012/12/26 12:31:12 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Garmin
[2008/07/24 16:19:07 | 002,723,264 | ---- | C] (Microsoft Corporation) -- C:\ProgramData\vcredist_x86.exe
[2008/04/22 18:58:37 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Owner\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2013/01/22 20:31:02 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/22 20:28:04 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-839246837-1924086884-2734542397-1000UA.job
[2013/01/22 19:56:12 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013/01/22 19:56:02 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/22 19:56:02 | 000,000,470 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job
[2013/01/22 19:48:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/22 18:13:58 | 000,005,120 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/22 18:13:58 | 000,005,120 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/22 18:13:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/22 18:13:05 | 3622,264,832 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/22 18:11:30 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013/01/22 12:47:32 | 422,525,509 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/01/22 10:50:33 | 000,651,316 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/01/22 10:50:33 | 000,121,908 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/01/15 09:16:12 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/01/15 09:16:12 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/01/15 09:13:36 | 000,001,894 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/01/14 21:37:52 | 000,000,861 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2013/01/12 03:30:20 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/01/12 03:26:16 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/01/12 03:24:49 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/01/10 10:25:34 | 000,024,068 | ---- | M] () -- C:\Users\Owner\Documents\Sarah Cooper Resume.pdf
[2013/01/10 05:28:01 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-839246837-1924086884-2734542397-1000Core.job
[2013/01/08 16:15:17 | 000,000,219 | ---- | M] () -- C:\Windows\System32\lsprst7.tgz
[2013/01/08 16:15:17 | 000,000,087 | ---- | M] () -- C:\Windows\System32\ssprs.tgz
[2013/01/08 13:43:02 | 000,000,014 | ---- | M] () -- C:\Windows\System32\tmpPrst.tgz
[2013/01/06 15:55:47 | 000,001,831 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/01/06 15:55:43 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2013/01/06 15:51:00 | 000,002,052 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/01/06 13:44:31 | 000,002,523 | ---- | M] () -- C:\Users\Owner\Desktop\HiJackThis.lnk
[2013/01/06 13:29:11 | 000,000,932 | ---- | M] () -- C:\Users\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2013/01/06 13:29:11 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/05 18:13:00 | 000,002,038 | ---- | M] () -- C:\Users\Owner\Desktop\Sophos Virus Removal Tool.lnk
[2013/01/05 17:30:03 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForOwner.job
[2013/01/05 17:00:21 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2013/01/05 16:30:15 | 000,001,505 | ---- | M] () -- C:\Users\Public\Desktop\Polkast.lnk
[2013/01/05 16:17:07 | 017,256,448 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\_Polkast.sdf
[2013/01/04 16:52:29 | 000,000,418 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Update Version3.job
[2013/01/03 15:37:38 | 000,020,737 | ---- | M] () -- C:\Users\Owner\Documents\Nate Phillipps CV.pdf
[2013/01/03 15:22:29 | 000,000,921 | ---- | M] () -- C:\Users\Owner\Desktop\Dropbox.lnk
[2012/12/31 17:28:24 | 000,051,144 | ---- | M] (Soluto LTD.) -- C:\Windows\System32\drivers\Soluto.sys
[2012/12/26 15:19:45 | 000,001,851 | ---- | M] () -- C:\Users\Public\Desktop\Garmin Lifetime Updater.lnk
[2012/12/24 06:20:07 | 001,792,264 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2013/01/22 14:18:35 | 3622,264,832 | -HS- | C] () -- C:\hiberfil.sys
[2013/01/22 14:18:35 | 3622,264,832 | -HS- | C] () -- \hiberfil.sys
[2013/01/20 08:57:42 | 422,525,509 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013/01/15 09:13:36 | 000,001,894 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/01/15 09:13:36 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013/01/14 21:37:52 | 000,000,861 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2013/01/10 10:18:52 | 000,024,068 | ---- | C] () -- C:\Users\Owner\Documents\Sarah Cooper Resume.pdf
[2013/01/08 13:43:02 | 000,000,014 | ---- | C] () -- C:\Windows\System32\tmpPrst.tgz
[2013/01/06 15:55:47 | 000,001,831 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/01/06 13:29:11 | 000,000,932 | ---- | C] () -- C:\Users\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2013/01/06 02:18:26 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/01/06 02:18:26 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/01/06 02:18:26 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/01/06 02:18:26 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/01/06 02:18:26 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/01/05 18:13:00 | 000,002,038 | ---- | C] () -- C:\Users\Owner\Desktop\Sophos Virus Removal Tool.lnk
[2013/01/05 16:56:15 | 000,000,322 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForOwner.job
[2013/01/05 16:30:15 | 000,001,505 | ---- | C] () -- C:\Users\Public\Desktop\Polkast.lnk
[2013/01/03 15:37:38 | 000,020,737 | ---- | C] () -- C:\Users\Owner\Documents\Nate Phillipps CV.pdf
[2012/12/26 15:19:45 | 000,001,851 | ---- | C] () -- C:\Users\Public\Desktop\Garmin Lifetime Updater.lnk
[2012/12/24 06:43:37 | 017,256,448 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\_Polkast.sdf
[2012/07/26 11:33:17 | 000,000,304 | ---- | C] () -- \user.js
[2012/07/05 15:33:19 | 000,032,256 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll
[2012/06/21 08:28:41 | 000,333,257 | RHS- | C] () -- \bootmgr
[2012/06/21 07:56:00 | 000,066,048 | ---- | C] () -- C:\Windows\System32\hcwxds.dll
[2012/06/21 07:44:23 | 000,061,440 | ---- | C] () -- C:\Windows\System32\OsdRemove.exe
[2012/06/21 07:41:01 | 000,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2012/06/21 07:41:01 | 000,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2012/05/30 06:39:39 | 000,000,390 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2011/11/17 06:16:37 | 000,000,075 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\default.pls
[2011/10/05 20:47:21 | 000,002,048 | ---- | C] () -- C:\Windows\System32\sysprs7.dll
[2011/10/05 20:47:21 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth2.dll
[2011/10/05 20:47:21 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth1.dll
[2011/09/28 16:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011/09/25 15:57:40 | 000,209,208 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/09/05 14:21:59 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/08/12 12:20:14 | 000,015,896 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2011/05/20 21:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011/04/24 16:43:55 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/04/24 16:43:55 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/04/01 04:07:02 | 010,877,272 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2011/04/01 04:07:02 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2011/04/01 04:06:56 | 000,331,608 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2011/04/01 03:56:00 | 000,027,872 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2011/01/29 16:44:53 | 000,000,310 | ---- | C] () -- C:\Users\Owner\cvdm.dat
[2010/06/17 07:27:13 | 000,000,080 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010/03/31 16:20:13 | 000,005,186 | ---- | C] () -- C:\Users\Owner\cvdm.err
[2010/03/10 17:27:36 | 000,000,000 | ---- | C] () -- C:\Users\Owner\cvdm.pid
[2009/06/02 14:48:26 | 000,000,018 | ---- | C] () -- \pending.un
[2009/05/07 01:09:50 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2008/04/22 18:58:37 | 000,081,920 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\ezpinst.exe
[2008/04/22 18:58:37 | 000,007,887 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\pcouffin.cat
[2008/04/22 18:58:37 | 000,001,144 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\pcouffin.inf
[2008/04/21 22:13:28 | 000,000,584 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\AutoGK.ini
[2008/03/30 14:02:38 | 000,001,024 | ---- | C] () -- C:\Users\Owner\.rnd
[2008/02/23 17:55:08 | 000,000,076 | ---- | C] () -- C:\Program Files\www.9down.com.url
[2008/02/12 09:46:03 | 000,000,013 | -H-- | C] () -- C:\ProgramData\˜113.›sys
[2007/12/01 17:19:06 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2007/10/21 01:17:59 | 000,000,164 | ---- | C] () -- \install.dat
[2007/09/09 15:19:14 | 000,000,000 | RHS- | C] () -- \MSDOS.SYS
[2007/09/09 15:19:14 | 000,000,000 | RHS- | C] () -- \IO.SYS
[2007/09/09 13:12:43 | 000,000,028 | ---- | C] () -- C:\Users\Owner\Adobe Encore DVD_VUI.pref
[2007/09/09 12:13:04 | 000,008,192 | R-S- | C] () -- \BOOTSECT.BAK
[2007/09/08 23:46:12 | 000,001,658 | -H-- | C] () -- \IPH.PH
[2006/11/02 04:23:09 | 000,000,074 | ---- | C] () -- \autoexec.bat
[2006/11/02 00:25:08 | 000,000,010 | ---- | C] () -- \config.sys

========== ZeroAccess Check ==========

[2006/11/02 06:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2011/01/21 10:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 00:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 00:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:C8B8CEBD
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:242231A9
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:07BF512B
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:D1B5B4F1
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:0B9D8E22

< End of report >

OTL Extras logfile created on: 1/22/2013 8:06:59 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Owner\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.37 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 46.79% Memory free
7.03 Gb Paging File | 5.03 Gb Available in Paging File | 71.52% Paging File free
Paging file location(s): c:\pagefile.sys 3753 5179 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 456.91 Gb Total Space | 25.47 Gb Free Space | 5.58% Space Free | Partition Type: NTFS
Drive D: | 8.85 Gb Total Space | 1.05 Gb Free Space | 11.83% Space Free | Partition Type: NTFS
Drive K: | 1863.01 Gb Total Space | 955.93 Gb Free Space | 51.31% Space Free | Partition Type: NTFS

Computer Name: HAL2007 | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{13B334E3-1F73-4F14-97C4-D15524977F32}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{148ADCD2-FBBA-4024-BF13-1749424B6F9B}" = rport=3702 | protocol=17 | dir=out | app=%systemroot%\system32\netproj.exe |
"{1DD99C5D-D96A-4F62-8859-4B4836503B7F}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{1DF4E501-2052-478B-A983-3AC23C62A11F}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{243F47D4-C1D6-46C8-9608-A08C3622CEB4}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{2B7FC29A-3A52-403A-AED0-D74766D6DB3F}" = rport=10243 | protocol=6 | dir=out | app=system |
"{341BBD1E-67B8-4EC3-9C62-A7A4E9E9B9BD}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{4262F8E3-2027-405C-A8A0-BBD90CA5B9FC}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{443116CB-CDC5-475F-9AF4-3F9157E2E62C}" = lport=445 | protocol=6 | dir=in | app=system |
"{5A2F859F-6CC2-4A88-B874-30CE5CD66552}" = lport=139 | protocol=6 | dir=in | app=system |
"{5CBF18F8-DF71-4946-89AD-395063CA6779}" = rport=139 | protocol=6 | dir=out | app=system |
"{5CDBE069-51BF-4A6E-A3B8-2A7B6FBE2A74}" = lport=10243 | protocol=6 | dir=in | app=system |
"{5E1183CD-9CE1-4CFB-920B-46419FC8B1CC}" = lport=2869 | protocol=6 | dir=in | app=system |
"{60821CAA-C361-42DC-A76C-B73086343F28}" = lport=3390 | protocol=6 | dir=in | app=system |
"{60C39084-1A0C-4813-A251-3847186C5BD9}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{62D93CAE-5614-4FF3-B736-1D8F6EE2A1E2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{65610F81-082E-4A4A-BD74-486E6101DA97}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\netproj.exe |
"{681C20C2-9ED5-410C-A2C2-682D2AA8748E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{72F552D1-436A-44CB-B4EC-569E91F5F31E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{87B6E478-03AF-46A7-B290-F13BD9754981}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{89B99E86-D68E-494D-A93D-F2230E271326}" = rport=10244 | protocol=6 | dir=out | app=system |
"{8A346C15-63B1-466E-8E06-9C47BFFEF853}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{8BFB9A44-042D-4663-A075-D29C2BBF98CC}" = rport=137 | protocol=17 | dir=out | app=system |
"{8DE157B6-26DE-4F1F-89BE-810298903C06}" = rport=5358 | protocol=6 | dir=out | app=system |
"{94EAC0F3-880A-4A05-9541-2E69BFABC854}" = rport=5357 | protocol=6 | dir=out | app=system |
"{95B930EB-C2B8-49AC-8290-69087AD7D1E8}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{96D71F49-DE23-4E74-BFC7-025383A41F34}" = rport=138 | protocol=17 | dir=out | app=system |
"{98A32905-BF51-416B-AF53-3F0994B57187}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{9B770E16-6A23-4692-A282-DBBE54678412}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{A1ABAE11-3620-424E-B57F-4F4F328EF808}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B3A0F280-412B-4891-BC0E-D1F8E0CC6A4D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{C0C4709F-D532-4B4A-BA45-CC9B7E9A2140}" = lport=137 | protocol=17 | dir=in | app=system |
"{C7D76F7C-EC1F-4E99-AA0D-E2CE32C458FC}" = rport=445 | protocol=6 | dir=out | app=system |
"{CA04D789-29BC-42C7-A9B5-9D3177C93457}" = lport=5357 | protocol=6 | dir=in | app=system |
"{CA4A4F57-08C9-4CD4-89B8-226D4D7704A2}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{D2E0B757-DB9F-415F-BCA1-9ACD74E63190}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{DC95C76B-33B4-4CEC-B6A7-895BBCC52E45}" = lport=10244 | protocol=6 | dir=in | app=system |
"{E0581AF2-27E2-4936-A8E4-DCC291653E2D}" = lport=5358 | protocol=6 | dir=in | app=system |
"{E35F56D1-E98C-48B7-BB28-FED05C980A61}" = lport=138 | protocol=17 | dir=in | app=system |
"{E9E6E482-3005-4B66-AA2D-70675D60EC97}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{EAA60E26-879E-4849-8175-62AA870DE815}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{FB151FA9-2EF8-4047-8B54-0C884558B71D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0012D9AA-82EF-4E45-BD64-C5B551498200}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yserver.exe |
"{02924294-7938-40F4-8BAA-4F9531ECBDF4}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{043561A0-C4E4-4FF3-8B01-ADC4A6FADD9E}" = protocol=6 | dir=out | app=%systemroot%\system32\netproj.exe |
"{04DE1E41-A2CB-4A63-AF16-4000E18328CF}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{09A9F2B1-D8E5-43AE-8E94-51EF4D18D3C3}" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"{0D3E7083-CB2C-4DEE-A378-096DEDE405B8}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe |
"{0D4DAFA9-65EF-4DC1-80A1-EBC6039110A7}" = protocol=17 | dir=in | app=c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe |
"{0D9B7110-AD61-4D2B-B114-28C7E667862E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{0E0A3A44-C4D2-49D2-9786-1AA9562A5A3E}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{1017CFD3-B38D-4AE8-BBA5-363DAA8CEAFB}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{11140E9B-047F-49F1-B39C-69B87F4FF9F9}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{1131CADA-EBBF-41D8-8A9E-EB1D3D9F2E35}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{114378D6-F53F-4696-8221-4FD6BFA03C02}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{12658BDF-ED4B-4296-8D9D-C6EECAB1F8F4}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{151C9C3A-D1D1-4CA1-B686-EA9411726093}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\magic the gathering dotp 2012\magic_2012.exe |
"{17071A44-757D-4498-9074-55EDE093CE3F}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{190CF701-C815-48FE-8D34-E6B16226657A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1914B8E2-83E5-43A1-8313-FA4CA57075AD}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{19682256-695D-4615-BFCE-70CF8858A061}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{1ABDDAE0-154B-436C-85FF-8CAF55CF3D0C}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{1E807A3F-B126-42F2-BF91-DFB4A3ADFFF3}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{1F899E4F-553B-4BAB-AD8F-FED80F92087D}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{20402BAA-3DF9-4993-B3EF-3772D4583C2A}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmpnetwk.exe |
"{25642D92-22FF-4C5F-A1A7-99A81BA0CEE2}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{26B4E316-8BE3-408E-9F82-F365765FF295}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{2A44AECB-BE5D-46F5-8077-BD323724C26F}" = protocol=6 | dir=in | app=c:\program files\crashplan\crashplanservice.exe |
"{2D7845CA-7265-42C9-B76D-BEB4A7850680}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{3155C202-22CB-4BBF-9CF8-4014195245B7}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\tribes\binaries\win32\hirezbridge.exe |
"{3F69A6DE-7ABA-4B8B-AF7F-1D83ED460698}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\sanctum\binaries\win32\sanctumgame-win32-shipping.exe |
"{4148E9F8-E197-4D90-BBD5-F8378C401A9F}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmpnetwk.exe |
"{44614B5B-C469-42D8-8956-9C3DA820113C}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{4B53A951-C8A6-4160-B434-C027E2D3D4BF}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\sanctum\binaries\win32\sanctumgame-win32-shipping.exe |
"{4CB2CCE8-0D46-4A81-823B-D14589155606}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{4E420ED9-9573-44AD-B0CA-22F332DC073D}" = protocol=17 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{4F07291B-E865-4BEF-8D9A-524C0E4EF793}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{4F5571C3-0B67-402B-96AD-C2F08E56836D}" = protocol=6 | dir=in | app=c:\windows\system32\wbem\unsecapp.exe |
"{5187AE86-D3CE-45AF-ADEC-4B532AD7B46A}" = protocol=6 | dir=out | svc=winmgmt | app=c:\windows\system32\svchost.exe |
"{56301D1F-7246-433C-A6F0-6BD2BD9DD77B}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\age of empires online\aoeonline.exe |
"{576E6483-9C04-4EB9-99C5-902B5E12354B}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{5956DECE-ACBD-436E-9F2B-4E588A5E8AAB}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{5C398203-0A20-4F8E-8136-5981B39751D1}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe |
"{5DA390FD-EFD2-4DB4-B4F6-9F92EA7C0809}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{60F81726-D2F4-426C-A6DF-9B35A8B05DA4}" = protocol=6 | dir=in | svc=winmgmt | app=c:\windows\system32\svchost.exe |
"{632F5914-3F65-43A7-AA1D-DED0E502560C}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\tribes\binaries\win32\hirezbridge.exe |
"{64BBFFB5-0816-407E-BB2A-0BD5A501A4D4}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{657B929E-AD16-4AC3-AF8A-C5D74F08E0F1}" = protocol=6 | dir=in | app=c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe |
"{69F5B6D5-9845-4DCF-BC70-092EB6793B0E}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{6CC49B9B-2ADD-4081-9685-92C5FF42919A}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoupdateservice.exe |
"{6E74A46D-D718-4315-ACE7-0389BCBA0867}" = protocol=17 | dir=in | app=c:\program files\soluto\soluto.exe |
"{7336214F-4FC8-42E4-B016-E4D02A135F96}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{734C87A3-766D-4A72-915D-E950712F8051}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{73F681FF-D46E-49AB-AC23-C98C0BBE51B9}" = protocol=17 | dir=in | app=c:\program files\crashplan\crashplanservice.exe |
"{75A92407-6374-450F-8B6F-E94910518B5C}" = protocol=6 | dir=in | app=c:\users\owner\appdata\roaming\spotify\spotify.exe |
"{780828D6-09BF-41F8-8B8C-47B4895AE26B}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{78D89FB6-EC7D-4645-A044-49232945CE3C}" = protocol=6 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{7C6B995E-A519-4BA3-A741-6654277F64D2}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{80C46D73-FABB-4EDD-97BE-966166502A7C}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{852F36BC-5D77-47B4-AFD4-9DA305989F92}" = protocol=6 | dir=in | app=c:\program files\soluto\soluto.exe |
"{88D49597-427D-4117-81BF-897820111E85}" = protocol=17 | dir=in | app=c:\users\owner\appdata\local\microsoft\windows\temporary internet files\content.ie5\wmvinhs5\solutoinstaller-xf79rmjo0t.exe |
"{8903E7ED-D6D4-44B9-AFDF-F44D23175981}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{94FEBAB1-6D10-444B-9CE7-C2276EBB4201}" = protocol=6 | dir=in | app=c:\program files\soluto\soluto.exe |
"{956A0582-3F19-4B60-9154-7769DC7786B3}" = protocol=6 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{9957A199-9FBF-478F-99A6-70B60F759B8F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{9AFF0DB5-9C50-496E-96A7-2D2C0F094921}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9CDDF5D6-192E-4864-96E5-CB95EC522A9E}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe |
"{9D1D63CD-2FAF-43B7-A747-7B959F706083}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A0974F93-0ECC-4684-954E-6A488C612DC0}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{A122C14B-8EC1-4671-8302-917ACAE8AECE}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yserver.exe |
"{A3423EB9-82CC-47D2-B103-FE070A8F898D}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{A85555C5-4FD7-42CA-AE2A-C374FF3BDF05}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{AAC3C5D8-03A0-46E4-B0B6-A21B9DC0A2D3}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe |
"{AD70870E-AA79-49F6-BE35-9A386E8BA9D7}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmpnetwk.exe |
"{AED83B4E-10DC-475D-9AD4-8B6492C86702}" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"{AF15031D-EA54-47FC-9C9E-E966456566B7}" = protocol=6 | dir=in | app=c:\users\owner\appdata\local\microsoft\windows\temporary internet files\content.ie5\wmvinhs5\solutoinstaller-xf79rmjo0t.exe |
"{B021802B-1A06-49A2-8A55-618574EB05D3}" = protocol=6 | dir=in | app=%systemroot%\system32\netproj.exe |
"{B184B5DD-3559-4C50-88B1-06634B0A7900}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoservice.exe |
"{B682EBA0-DD4C-488D-B70F-6501263CE9E5}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{BCFBCA4B-19F8-443C-ABF9-61EDF04AB142}" = protocol=6 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{BE73162B-4BD8-4AE6-9AB2-D7537B6A1E25}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{C2CD9538-80CF-4CA3-AE9D-1F6A335D61C4}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{C37DE6A0-6718-4781-8C82-668377513A37}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C62B1AC8-C656-41BF-A721-6839938CE1E1}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{C666596E-7B51-410B-8612-A8DBBF4DFCBC}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\age of empires online\aoeonline.exe |
"{C8CAEE54-1456-4122-A49B-F6328945DB1D}" = protocol=6 | dir=out | app=system |
"{CA50C01B-D55D-410E-80D1-26ACF4A6C189}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{CB91ACB8-6427-40A8-8C1D-D1A67B645369}" = protocol=17 | dir=in | app=c:\program files\soluto\soluto.exe |
"{CF910758-6372-4B43-9984-A530433CBEAF}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{D0585B83-C418-4CB0-896C-02F4140A24FD}" = protocol=17 | dir=in | app=c:\users\owner\appdata\roaming\spotify\spotify.exe |
"{D23B0476-F7A2-45F2-9E67-91CA791F760B}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{E3B73F77-3B3C-48D6-B91E-72481109EC73}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\star trek online\star trek online.exe |
"{E917BC4F-6164-48D5-BD73-885B3ED83FC2}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\star trek online\star trek online.exe |
"{E9D94884-07FA-458E-8154-9B722A514709}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\magic the gathering dotp 2012\magic_2012.exe |
"{EA6434E8-6F69-4857-97EC-EE2A778AEAB2}" = protocol=17 | dir=in | app=c:\program files\soluto\solutocleanup.exe |
"{ED094D11-AA53-412E-B57B-0A9AE3DC12FE}" = protocol=17 | dir=in | app=c:\program files\soluto\solutoconsole.exe |
"{F23FD58E-97A1-42C8-B7D6-44754189B174}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{F47FBBC3-01F4-449D-BC46-4D6ADE8F2417}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{F5E43300-2A0D-4C68-9C1D-F22087C6A78E}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{F73F68EE-E909-416B-8C52-2CCC26D2A395}" = protocol=6 | dir=in | app=c:\program files\windows media player\wmpnetwk.exe |
"{F8A08AEE-4E85-445B-90E3-4B8225CA5C09}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{FAA81C34-F8E9-4EB4-87B3-F4BCA273446F}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{FBD425AF-BDFD-4733-9C5E-0047C48B06BD}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"TCP Query User{017CB87D-DABD-4BA6-96B0-B72A1584286E}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{0B7EB5BD-8D51-45D9-BC75-72FEE869C9F8}C:\program files\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe |
"TCP Query User{0D3FC07F-FA0C-4B45-877B-1FEB68216E9E}C:\program files\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe |
"TCP Query User{0F2E3A0D-D843-430C-9A69-DF522124F8CF}C:\program files\common files\nero\nero web\setupx.exe" = protocol=6 | dir=in | app=c:\program files\common files\nero\nero web\setupx.exe |
"TCP Query User{10063CE4-7498-414C-BC80-7A98560F1C86}C:\program files\aim6\aim6.exe" = protocol=6 | dir=in | app=c:\program files\aim6\aim6.exe |
"TCP Query User{1308E4D3-09BC-4AC2-81B2-7DA418A3DDA5}C:\program files\aim6\aim6.exe" = protocol=6 | dir=in | app=c:\program files\aim6\aim6.exe |
"TCP Query User{1D3F0DE0-F161-4A41-A445-354113688795}C:\program files\polkast\polkastlibrary.exe" = protocol=6 | dir=in | app=c:\program files\polkast\polkastlibrary.exe |
"TCP Query User{2D37464A-B614-4CC5-957E-1B9B0B6DD192}C:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"TCP Query User{59BE8E0E-16C5-47A3-9EC2-3C97352F42BE}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{5C2F00E9-CA37-4B20-A6EA-2070B66F5DCD}C:\program files\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=c:\program files\orbitdownloader\orbitnet.exe |
"TCP Query User{618F60F3-E63D-4947-8CB0-3D5DABEB96B9}C:\users\owner\appdata\local\temp\onlineupdate8\setupxu.exe" = protocol=6 | dir=in | app=c:\users\owner\appdata\local\temp\onlineupdate8\setupxu.exe |
"TCP Query User{6A4E9C39-2F30-4CBE-A8DC-E4F32BFDD90C}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{6DD16F61-4606-4D17-81D1-2169D77F0D6C}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{7807D604-DDF9-42CF-89E3-6B4B4FCD9992}C:\program files\nero\nero8\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero8\nero home\nerohome.exe |
"TCP Query User{7DC78153-0009-4FB0-B8DC-66AF9D68CB92}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{B0596E75-089D-49FC-8925-5CA34FB209C8}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{B457ECF7-413A-40DD-97B6-3A37B11AC525}C:\program files\steam\steamapps\common\age of empires online\spartan.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\age of empires online\spartan.exe |
"TCP Query User{D18C706B-7364-43CE-89BF-23DB850DAA8D}C:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{D24C5B2F-F376-4088-AB5B-9FFCCEE15639}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{D34AB2B2-9F3B-44CE-B6C0-4CB11F03CAA9}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{D5930D6E-54AE-42E4-8260-B11F68878B79}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{E7A5B5E2-31F7-44EC-A596-05AD01CDC8F6}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{F4757712-2EBE-48EF-8EE2-ECF5DD0BA838}C:\program files\polkast\polkastlibrary.exe" = protocol=6 | dir=in | app=c:\program files\polkast\polkastlibrary.exe |
"TCP Query User{F71ACE57-61EC-4802-84D5-3844626DD4A3}C:\bsaprint\bsaprint.exe" = protocol=6 | dir=in | app=c:\bsaprint\bsaprint.exe |
"UDP Query User{07C8B2A2-7869-404C-94D9-9C6B33AD24BA}C:\program files\polkast\polkastlibrary.exe" = protocol=17 | dir=in | app=c:\program files\polkast\polkastlibrary.exe |
"UDP Query User{117EEA03-FE88-41A1-81DD-B69414E1DB36}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{183BA461-CB98-488A-91BA-A3A84A823B0E}C:\program files\common files\nero\nero web\setupx.exe" = protocol=17 | dir=in | app=c:\program files\common files\nero\nero web\setupx.exe |
"UDP Query User{2B65D3FD-D538-4F32-B5D5-567B22CC0276}C:\program files\aim6\aim6.exe" = protocol=17 | dir=in | app=c:\program files\aim6\aim6.exe |
"UDP Query User{43704F20-1111-49C3-9B29-C46381661B9B}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{480E6116-9A65-484F-A3E1-716B859751F8}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{4A74A673-0422-4E22-BA50-2EBB3C80E0DA}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{4B8C88A4-03E5-4150-8251-8243C6ACDC7E}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{4C83503D-C69E-4DDE-B813-499C8EFEE510}C:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{50C74A30-1F70-41B1-AB9A-6C810959E875}C:\program files\nero\nero8\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero8\nero home\nerohome.exe |
"UDP Query User{552DDC97-43DE-4169-B3CB-5C4058778F2D}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{57C16ED7-8D84-4CF6-90A4-2BC6C891B0A7}C:\program files\aim6\aim6.exe" = protocol=17 | dir=in | app=c:\program files\aim6\aim6.exe |
"UDP Query User{60B7B367-7250-4553-8020-4863798AB966}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{6F657D5E-C43A-41F7-A859-332A94867228}C:\program files\polkast\polkastlibrary.exe" = protocol=17 | dir=in | app=c:\program files\polkast\polkastlibrary.exe |
"UDP Query User{7091721A-B9D7-411C-B7EF-595A6195C496}C:\program files\steam\steamapps\common\age of empires online\spartan.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\age of empires online\spartan.exe |
"UDP Query User{844B69E9-8602-4305-9046-3D0686A76924}C:\users\owner\appdata\local\temp\onlineupdate8\setupxu.exe" = protocol=17 | dir=in | app=c:\users\owner\appdata\local\temp\onlineupdate8\setupxu.exe |
"UDP Query User{914081A0-A305-4446-BEA1-BDF8A1CB6B1E}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{AB8F3B36-5CB0-4B8F-B576-FD6190D157FB}C:\program files\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe |
"UDP Query User{B6300149-522A-4C01-8DAF-F7706830F33D}C:\program files\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=c:\program files\orbitdownloader\orbitnet.exe |
"UDP Query User{C6524429-7938-4CFC-A035-CB4704FB0608}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{E8BE91A8-F3C1-46E1-BA5C-02F41BE445C3}C:\bsaprint\bsaprint.exe" = protocol=17 | dir=in | app=c:\bsaprint\bsaprint.exe |
"UDP Query User{F2001DAA-AA61-47A1-BA9A-988DA82FBC8B}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{F7823AC8-3592-4241-8868-F1B06B1E4541}C:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"UDP Query User{F8888835-9E5A-4BEB-B35B-EDD6D3BDBAE1}C:\program files\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0153FB91-BFF6-4437-92CD-64017BF38BD3}" = CrashPlan
"{01CEC7E5-70FD-4D06-8FAD-BF21DF0CC6DC}" = Adobe Audition 2.0
"{0224CACC-994D-45F8-B973-D65056EA9C2F}" = Adobe XMP DVA Panels CS3
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CFD3BAF-9F4D-4D70-BD0B-638EA2504C25}" = PSSWCORE
"{0E6EC2D7-5C9B-28B7-C848-171EDACB9625}" = Warner Bros. Digital Copy Manager
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{13A5E785-5197-4EAD-8EE3-D660271E49BC}" = Feedback Tool
"{13F054F3-0B07-4D15-9E80-C55B496AB557}" = Garmin Communicator Plugin
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{190C7419-C254-408e-81F8-BE11FCD72A1F}" = dj_sf_software
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{2274624C-5B38-41AD-AD27-CEC0924EB628}" = Adobe Setup
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{2656D0AB-9EA4-4C58-A117-635F3CED8B93}" = Microsoft UI Engine
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 11
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2A780209-2A41-4C75-932A-F6F0390D430A}" = Adobe Photoshop CS2 Functional Content
"{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}" = Rhapsody Player Engine
"{2EA870FA-585F-4187-903D-CB9FFD21E2E0}" = DHTML Editing Component
"{2ECE7ECE-D15B-4999-8B8D-01C998F489D5}" = Adobe Encore DVD 2.0
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{31C44235-A613-4E95-B297-207BF6C6A8C1}" = Creative ZEN Vision M Series
"{32343DB6-9A52-40C9-87E4-5E7C79791C87}" = MSXML 4.0 SP2 and SOAP Toolkit 3.0
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Roxio Activation Module
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39556553-8C77-4C5E-8F30-4083274948A2}" = Application Verifier
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}" = Hi-Rez Studios Authenticate and Update Service
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3F5B6210-0903-4DC6-8034-8F488AA3A782}" = Spy Sweeper Core
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40F7AED3-0C7D-4582-99F6-484A515C73F2}" = HP Easy Setup - Frontend
"{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5
"{44F7299C-5077-4EAC-BD14-575FD4DB6C8D}" = Polkast
"{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{485ACF57-F364-440A-8496-E1E81C8FA1AA}" = Adobe Premiere Pro CS3 Third Party Content
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4ED7D297-58F7-45C3-A9BA-A7CD6FA0D373}_is1" = SureThing CD Labeler Deluxe 5
"{4F30BC2B-5441-3149-91D7-FAA2332E2F5F}" = Microsoft Windows SDK for Windows 7 Headers and Libraries (30514)
"{5067397A-2935-4290-AE14-1BE2863B00A3}_is1" = Convert MP4 to MP3 1.5
"{50F102CA-4BE2-41A9-9810-5BB05EB91B9A}" = Adobe Premiere Pro CS3 Functional Content
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{54B2EAD9-A110-43F7-B010-2859A1BD2AFE}" = Adobe Encore CS3
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57922B53-02D4-4DFC-AC24-A3519DC1F49A}" = Adobe Premiere Pro FC
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{58535A90-1788-44f5-80BB-CFF62D9CE6D5}" = HP Deskjet 8.0 Software
"{58DCEEE5-532E-44F4-B1D7-A146EF9E9FDA}" = Adobe Premiere Pro CS3
"{5D8A40E9-8E59-3761-98DE-2C9F7303FA17}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Windows Debugging Tools (30514)
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{5FE0C13A-63F1-4394-88A8-2D8722A75FE0}_is1" = Convert VOB to AVI
"{60F063BE-732B-3E02-9574-63F81F057A8B}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Application Verifier (30514)
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{61BEA823-ECAF-49F1-8378-A59B3B8AD247}" = Microsoft Default Manager
"{63AFACBC-4795-4A1B-8037-5085DC03FC54}" = Microsoft LifeCam
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.9
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}" = HPProductAssistant
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{699C970F-1E17-3CD8-A2EA-87AB9EDEDFF4}" = Microsoft Windows SDK for Windows 7 Samples (30514)
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7066F2DB-5032-4B6F-A8E7-A6F946043438}" = Adobe Setup
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
"{73A43E42-3658-4DD9-8551-FACDA3632538}" = HP Advisor
"{75C22B40-6D12-4439-80DC-CAB3313EADA5}" = dj_sf_software_req
"{75E71ADD-042C-4F30-BFAC-A9EC42351313}" = Python 2.4.3
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77D2A9D3-5800-43E3-B274-87841BC87DB2}" = Adobe ExtendScript Toolkit 2
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7AFFE35D-047A-3D27-B204-1CD849933C02}" = Microsoft Windows SDK for Windows 7 Common Utilities (30514)
"{831814CD-389C-4A1A-B8CA-67678DB2DA5B}" = CreativeWizard
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{83AA2913-C123-4146-85BD-AD8F93971D39}" = BabylonObjectInstaller
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{85C977FB-2A5B-3223-8AC5-828558EAF7D9}" = Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (30514)
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AE03988-8C8C-40EE-BDC7-76781BEF1B1D}" = Adobe Setup
"{8CEA85DE-955B-4BF4-87F2-0BAA62821633}" = HP Photosmart Essential2.5
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8EC6EBB4-D899-4C6B-BA17-C21B78988F23}_is1" = Movie Collector
"{8EDBA74D-0686-4C99-BFDD-F894678E5102}" = Adobe Common File Installer
"{8FFC924C-ED06-44CB-8867-3CA778ECE903}" = Adobe Help Center 2.0
"{90024193-9F13-4877-89D5-A1CDF0CBBF28}" = Feedback Tool
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{928D2FB1-291A-362B-89A4-7075A9D904A4}" = Microsoft Windows SDK for Windows 7 (7.1)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9922FE96-6803-498D-A6AD-4EB5A3B956A5}" = Belkin Wireless G Plus MIMO USB Network Adapter
"{998AD896-5B25-466D-8D56-CC0CC9228A68}" = Adobe Audition 2.0 Loopology Content
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}" = Garmin Lifetime Updater
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}" = SolutionCenter
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAB061B3-99A6-4EE5-93F4-6EB1F60295C4}" = Adobe Production Studio
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}" = Adobe Bridge 1.0
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B0261E53-B6F1-474A-864B-E7C3CBF468E0}" = iTunes
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}" = Adobe Illustrator CS2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.7.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3B7836C-A1AD-4A56-811C-C18ABDE5EAAD}" = Adobe Video Suite Extras
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B74D4E10-0000-0000-0000-EDED00000102}" = Adobe ExtendScript Toolkit 1.0
"{B829E117-D072-41EA-9606-9826A38D34C1}" = Sophos Virus Removal Tool
"{B8B7A4D8-80E1-4DAE-BD33-7FD535BA3931}" = Adobe Encore CS3 Codecs
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BB81360F-041C-4CF7-B15E-71380D154244}" = Adobe Setup
"{BCE72AED-3332-4863-9567-C5DCB9052CA2}" = Netflix Movie Viewer
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{C7E154EF-D5EC-4da4-9D00-43B85967B120}" = dj_sf_ProductContext
"{C8F7C1E5-0150-11D6-A96C-00D05908F85D}" = USB Driver
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Apple Application Support
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2A7D92-D766-30A9-B195-C4772EE2695F}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Common Tools (30514)
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D09605BE-5587-4B0C-86C8-69B5092CB80F}" = Debugging Tools for Windows (x86)
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1696920-9794-4BBC-8A30-7A88763DE5A2}" = ABBYY FineReader 5.0 Sprint Plus
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D5A31AB1-345D-47C7-A87B-036A669F6DF1}" = Adobe XMP Panels CS3
"{DD362256-A7A2-4524-9457-213DDC2AFC2A}" = Adobe After Effects 7.0
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E0C18BB0-32CA-4679-B422-9B9FA825378F}" = HP Deskjet Printer Driver Software 9.0
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E7F9E526-2324-437B-A609-E8C5309465CB}" = Microsoft Windows Performance Toolkit
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EC1963C6-8EA9-40DF-8CD7-F63E174FCAEC}" = Adobe After Effects 7.0 Functional Content
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F9BC6655-79F8-4632-A343-E8F2CD70551A}" = Soluto
"{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1" = StreamTransport version: 1.0.2.2171
"{FA17A726-B229-4116-B793-A2AB1A4EAE2E}" = Adobe Premiere Pro 2.0
"{FD6C6B7F-5696-48C5-A601-2EE9E50C3D46}" = WD Firewire HID Driver
"{FD71E2F7-B9FC-4072-88DB-AC19E2464D82}" = LightScribe System Software
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"{FFB278E6-2945-4FF0-8F3F-268CDD09FCF6}" = Adobe OnLocation CS3
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Adobe_32fdd767b4383606e8168e834af5d90" = Adobe Premiere Pro CS3
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"Adobe_85df662426fa6bb25f7d596f4d1b2a2" = Adobe Encore CS3
"Adobe_cbb2ea61da9c780bd7e47a5230a9ed7" = Adobe Stock Photos CS3
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.17
"Any Video Converter_is1" = Any Video Converter 3.5.3
"Audacity_is1" = Audacity 2.0.2
"avast" = avast! Free Antivirus
"Blender" = Blender (remove only)
"BSAPrint with Preview 1.48.44.01.04" = BSAPrint with Preview 1.48.44.01.04
"Calibrize_is1" = Calibrize 2.0
"CamStudio Lossless Codec_is1" = CamStudio Lossless Codec v1.4
"Canon RAW Codec" = Canon RAW Codec
"Celtx (2.9.1)" = Celtx (2.9.1)
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"Collectorz.com Movie Collector" = Collectorz.com Movie Collector
"Composite Suite for Adobe After Effects" = Composite Suite for Adobe After Effects
"Creative Removable Disk Manager" = Creative Removable Disk Manager
"DAEMON Tools Lite" = DAEMON Tools Lite
"dcmsvc_is1" = dcmsvc 1.0
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup" = DivX Setup
"doPDF 7 printer_is1" = doPDF 7.1 printer
"DVD43_is1" = DVD43 v4.6.0
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 6.5.2 Home Edition
"EPSON Scanner" = EPSON Scan
"ffdshow_is1" = ffdshow [rev 1946] [2008-04-21]
"Free M4a to MP3 Converter_is1" = Free M4a to MP3 Converter 6.1
"HandBrake" = HandBrake 0.9.6
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 8.0
"HP Photosmart Essential" = HP Photosmart Essential 2.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 8.0
"ImgBurn" = ImgBurn
"InstallShield_{FFB278E6-2945-4FF0-8F3F-268CDD09FCF6}" = Adobe OnLocation CS3
"lvdrivers_11.50" = Logitech QuickCam Driver Package
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Monitor Calibration Wizard" = Monitor Calibration Wizard 1.0
"Mpeg2Decoder_is1" = Mpeg2Decoder 1.3
"MSN Music Assistant" = MSN Music Assistant
"Neat Video for Premiere_is1" = Neat Video v3.1.0 Demo plug-in for Premiere
"NirSoft BlueScreenView" = NirSoft BlueScreenView
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"OsdMaestro" = HP On-Screen Cap/Num/Scroll Lock Indicator
"Premiere AVS Plugin" = PremiereAVSPlugin 1.9
"RealPlayer 6.0" = RealPlayer
"Recuva" = Recuva
"SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1)
"Shop for HP Supplies" = Shop for HP Supplies
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"Steam App 105430" = Age of Empires Online
"Steam App 17080" = Tribes: Ascend
"Steam App 49470" = Magic: The Gathering — Duels of the Planeswalkers 2012
"Steam App 91600" = Sanctum
"Steam App 9900" = Star Trek Online
"SysInfo" = Creative System Information
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"uTorrent" = µTorrent
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VLC media player 2.0.5
"VobSub" = VobSub v2.23 (Remove Only)
"Walmart MP3 Music Downloads" = Walmart MP3 Music Downloads
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"XviD MPEG4 Video Codec" = XviD MPEG4 Video Codec (remove only)
"XYplorer" = XYplorer 11.90
"ZEN Vision:M Series Media Explorer" = ZEN Vision:M Series Media Explorer
"ZENcast Organizer" = ZENcast Organizer

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-839246837-1924086884-2734542397-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Facebook Plug-In" = Facebook Plug-In
"Google Chrome" = Google Chrome
"LiveCode Player" = RunRev LiveCode Player Browser Plugin
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1/22/2013 10:34:39 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:34:55 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:37:39 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:37:39 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:37:40 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:40:36 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:44:57 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:44:57 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:44:57 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

Error - 1/22/2013 10:45:22 PM | Computer Name = Hal2007 | Source = VSS | ID = 12294
Description =

[ Media Center Events ]
Error - 7/28/2008 12:58:55 AM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 07/27/2008 23:58:54. You may need to reschedule your recordings.

Error - 7/28/2008 12:58:55 AM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 07/27/2008 23:58:55. You may need to reschedule your recordings.

Error - 3/2/2009 1:17:56 AM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 03/01/2009 23:17:56. You may need to reschedule your recordings.

Error - 3/6/2009 12:29:41 AM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 03/05/2009 22:29:41. You may need to reschedule your recordings.

Error - 3/19/2009 3:20:41 PM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 03/19/2009 14:20:41. You may need to reschedule your recordings.

Error - 7/17/2009 3:33:57 PM | Computer Name = Hal2007 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 4/24/2011 7:08:12 PM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 04/24/2011 18:08:12. You may need to reschedule your recordings.

Error - 7/1/2011 2:30:32 PM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 07/01/2011 13:30:31. You may need to reschedule your recordings.

Error - 7/3/2011 10:47:30 AM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 07/03/2011 09:47:30. You may need to reschedule your recordings.

Error - 7/12/2011 10:06:07 AM | Computer Name = Hal2007 | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 07/12/2011 09:06:07. You may need to reschedule your recordings.

[ OSession Events ]
Error - 7/7/2008 5:49:17 PM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session
lasted 31 seconds with 0 seconds of active time. This session ended with a crash.

Error - 7/30/2008 6:23:40 PM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session
lasted 34 seconds with 0 seconds of active time. This session ended with a crash.

Error - 7/31/2008 5:53:11 PM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session
lasted 653 seconds with 240 seconds of active time. This session ended with a crash.

Error - 12/1/2008 10:11:58 PM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 5320
seconds with 480 seconds of active time. This session ended with a crash.

Error - 3/11/2009 1:36:53 PM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 2430
seconds with 1680 seconds of active time. This session ended with a crash.

Error - 6/3/2010 5:34:43 PM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6524.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 3
seconds with 0 seconds of active time. This session ended with a crash.

Error - 3/11/2011 1:04:33 AM | Computer Name = Hal2007 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5
seconds with 0 seconds of active time. This session ended with a crash.


Error encountered while reading event logs.

< End of report >
-Nate

"Lots of planets have a north."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users