Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Simultaneously Infected By CouponDropDown, Kontera and SafeSearch Tool Bar


  • Please log in to reply
43 replies to this topic

#1 mtouss

mtouss

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 19 February 2013 - 09:07 PM

About a week ago I noticed in-text ads appearing on pretty much every website I visited.  When hovered, ads popped up that said they were from Coupon Drop Down.  This ONLY happened in Chrome.  I scoured the internet looking for ways to delete this.  I deleted registry entries related to "1click downloader" and some others that were listed on the various sites offering removal guides.  Nothing worked.  No reltated extensions or programs.

 

When using Internet Explorer, the homepage was changed to Safe Search automatically, and in IE similar in-text ads appeared, but this time indicated they were from Kontera rather than Coupon DropDown.  I also spent hours researching how to get rid of these, performing scans and regisry deletes, but nothing worked.

 

Now I am here!

 

Running Windows 7, HP Pavilion DM4.

 

Thanks for the help!



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 19 February 2013 - 09:10 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 20 February 2013 - 02:10 AM

TDSS is too long for the post, so I broke it up...

 

18:43:31.0603 4212  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:43:32.0445 4212  ============================================================
18:43:32.0445 4212  Current date / time: 2013/02/19 18:43:32.0445
18:43:32.0445 4212  SystemInfo:
18:43:32.0445 4212 
18:43:32.0445 4212  OS Version: 6.1.7601 ServicePack: 1.0
18:43:32.0445 4212  Product type: Workstation
18:43:32.0445 4212  ComputerName: OWNER-HP
18:43:32.0445 4212  UserName: Owner
18:43:32.0445 4212  Windows directory: C:\Windows
18:43:32.0445 4212  System windows directory: C:\Windows
18:43:32.0445 4212  Running under WOW64
18:43:32.0445 4212  Processor architecture: Intel x64
18:43:32.0445 4212  Number of processors: 4
18:43:32.0445 4212  Page size: 0x1000
18:43:32.0445 4212  Boot type: Normal boot
18:43:32.0445 4212  ============================================================
18:43:32.0929 4212  BG loaded
18:43:33.0381 4212  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:43:33.0459 4212  ============================================================
18:43:33.0459 4212  \Device\Harddisk0\DR0:
18:43:33.0459 4212  MBR partitions:
18:43:33.0459 4212  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:43:33.0459 4212  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x47E2F000
18:43:33.0459 4212  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x47E93000, BlocksNum 0x21D5000
18:43:33.0459 4212  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A068000, BlocksNum 0x7EF800
18:43:33.0459 4212  ============================================================
18:43:33.0475 4212  C: <-> \Device\Harddisk0\DR0\Partition2
18:43:33.0522 4212  D: <-> \Device\Harddisk0\DR0\Partition3
18:43:33.0537 4212  E: <-> \Device\Harddisk0\DR0\Partition4
18:43:33.0537 4212  ============================================================
18:43:33.0537 4212  Initialize success
18:43:33.0537 4212  ============================================================
18:44:15.0416 3612  ============================================================
18:44:15.0416 3612  Scan started
18:44:15.0416 3612  Mode: Manual;
18:44:15.0416 3612  ============================================================
18:44:16.0648 3612  ================ Scan system memory ========================
18:44:16.0648 3612  System memory - ok
18:44:16.0648 3612  ================ Scan services =============================
18:44:17.0007 3612  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:44:17.0007 3612  1394ohci - ok
18:44:17.0116 3612  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
18:44:17.0116 3612  Accelerometer - ok
18:44:17.0194 3612  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:44:17.0226 3612  ACPI - ok
18:44:17.0288 3612  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:44:17.0288 3612  AcpiPmi - ok
18:44:17.0475 3612  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:44:17.0475 3612  AdobeARMservice - ok
18:44:17.0709 3612  [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:44:17.0709 3612  AdobeFlashPlayerUpdateSvc - ok
18:44:17.0787 3612  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:44:17.0803 3612  adp94xx - ok
18:44:17.0881 3612  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:44:17.0881 3612  adpahci - ok
18:44:18.0006 3612  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:44:18.0006 3612  adpu320 - ok
18:44:18.0084 3612  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:44:18.0084 3612  AeLookupSvc - ok
18:44:18.0162 3612  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
18:44:18.0162 3612  AFD - ok
18:44:18.0224 3612  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:44:18.0224 3612  agp440 - ok
18:44:18.0271 3612  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:44:18.0271 3612  ALG - ok
18:44:18.0333 3612  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:44:18.0333 3612  aliide - ok
18:44:18.0614 3612  ALSysIO - ok
18:44:18.0692 3612  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:44:18.0692 3612  amdide - ok
18:44:18.0739 3612  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:44:18.0739 3612  AmdK8 - ok
18:44:18.0770 3612  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:44:18.0770 3612  AmdPPM - ok
18:44:18.0817 3612  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:44:18.0817 3612  amdsata - ok
18:44:18.0848 3612  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:44:18.0864 3612  amdsbs - ok
18:44:18.0879 3612  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:44:18.0879 3612  amdxata - ok
18:44:18.0942 3612  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:44:18.0942 3612  AppID - ok
18:44:18.0973 3612  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:44:18.0973 3612  AppIDSvc - ok
18:44:19.0004 3612  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
18:44:19.0004 3612  Appinfo - ok
18:44:19.0051 3612  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
18:44:19.0066 3612  arc - ok
18:44:19.0098 3612  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:44:19.0098 3612  arcsas - ok
18:44:19.0332 3612  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:44:19.0363 3612  aspnet_state - ok
18:44:19.0425 3612  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:44:19.0425 3612  AsyncMac - ok
18:44:19.0503 3612  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:44:19.0503 3612  atapi - ok
18:44:19.0612 3612  [ 0C9039EC45E6C4631BE31DDEC370D341 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
18:44:19.0628 3612  ATSwpWDF - ok
18:44:19.0722 3612  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:44:19.0722 3612  AudioEndpointBuilder - ok
18:44:19.0753 3612  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:44:19.0753 3612  AudioSrv - ok
18:44:19.0831 3612  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:44:19.0831 3612  AxInstSV - ok
18:44:19.0909 3612  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:44:19.0924 3612  b06bdrv - ok
18:44:19.0987 3612  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:44:19.0987 3612  b57nd60a - ok
18:44:20.0096 3612  [ 09A19C806110CE839111850EC27E65F5 ] bcbtums         C:\Windows\system32\drivers\bcbtums.sys
18:44:20.0096 3612  bcbtums - ok
18:44:20.0158 3612  [ 795447BC205E6417FC516F2E39E5E9AB ] bckd            C:\Windows\system32\drivers\bckd.sys
18:44:20.0190 3612  bckd - ok
18:44:20.0424 3612  [ 8EAEDC04E03DB8D1265A29FA8D7D9872 ] bckwfs          C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
18:44:20.0642 3612  bckwfs - ok
18:44:20.0798 3612  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
18:44:20.0814 3612  BCM43XX - ok
18:44:20.0938 3612  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:44:20.0938 3612  BDESVC - ok
18:44:21.0001 3612  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:44:21.0001 3612  Beep - ok
18:44:21.0094 3612  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
18:44:21.0110 3612  BFE - ok
18:44:21.0188 3612  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:44:21.0204 3612  BITS - ok
18:44:21.0266 3612  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
18:44:21.0266 3612  blbdrive - ok
18:44:21.0313 3612  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:44:21.0313 3612  bowser - ok
18:44:21.0375 3612  [ 56E4345F392F17D66683225E214840CB ] bpenum          C:\Windows\system32\DRIVERS\bpenum.sys
18:44:21.0375 3612  bpenum - ok
18:44:21.0406 3612  [ D50B07C4D7AFEC4CA6AC8FCB72583C5B ] bpmp            C:\Windows\system32\DRIVERS\bpmp.sys
18:44:21.0406 3612  bpmp - ok
18:44:21.0500 3612  [ A85BA55E4FE9CB2F342F281AAF7DE810 ] bpusb           C:\Windows\system32\Drivers\bpusb.sys
18:44:21.0500 3612  bpusb - ok
18:44:21.0562 3612  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:44:21.0562 3612  BrFiltLo - ok
18:44:21.0594 3612  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:44:21.0594 3612  BrFiltUp - ok
18:44:21.0625 3612  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:44:21.0640 3612  Browser - ok
18:44:21.0687 3612  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:44:21.0703 3612  Brserid - ok
18:44:21.0718 3612  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:44:21.0734 3612  BrSerWdm - ok
18:44:21.0781 3612  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:44:21.0781 3612  BrUsbMdm - ok
18:44:21.0828 3612  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:44:21.0828 3612  BrUsbSer - ok
18:44:21.0890 3612  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
18:44:21.0890 3612  BthEnum - ok
18:44:21.0952 3612  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:44:21.0952 3612  BTHMODEM - ok
18:44:21.0984 3612  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
18:44:21.0999 3612  BthPan - ok
18:44:22.0077 3612  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
18:44:22.0093 3612  BTHPORT - ok
18:44:22.0155 3612  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:44:22.0155 3612  bthserv - ok
18:44:22.0186 3612  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
18:44:22.0186 3612  BTHUSB - ok
18:44:22.0280 3612  [ 4E4F563F17A6D75D4CBD677470DAFAEE ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
18:44:22.0296 3612  btwampfl - ok
18:44:22.0327 3612  [ 409C4117E6027672EF41E68ACE1468AD ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
18:44:22.0327 3612  btwaudio - ok
18:44:22.0389 3612  [ 8CA7CABD13316ABACE386D9F380B4CF3 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
18:44:22.0405 3612  btwavdt - ok
18:44:22.0561 3612  [ 8DD1CA4FCF8B875725FE049ACD3800E4 ] btwdins         c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
18:44:22.0576 3612  btwdins - ok
18:44:22.0670 3612  [ 41933521A618475644B6E8D8487AF326 ] BTWDPAN         C:\Windows\system32\DRIVERS\btwdpan.sys
18:44:22.0670 3612  BTWDPAN - ok
18:44:22.0717 3612  [ B9354F9F111C64F2495B60F1E24CB453 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
18:44:22.0717 3612  btwl2cap - ok
18:44:22.0779 3612  [ 71A04F2D9DEB21B162561EB574D7D629 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
18:44:22.0779 3612  btwrchid - ok
18:44:22.0826 3612  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:44:22.0826 3612  cdfs - ok
18:44:22.0888 3612  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:44:22.0904 3612  cdrom - ok
18:44:22.0998 3612  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:44:22.0998 3612  CertPropSvc - ok
18:44:23.0060 3612  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
18:44:23.0060 3612  circlass - ok
18:44:23.0091 3612  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:44:23.0091 3612  CLFS - ok
18:44:23.0200 3612  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:44:23.0200 3612  clr_optimization_v2.0.50727_32 - ok
18:44:23.0294 3612  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:44:23.0325 3612  clr_optimization_v2.0.50727_64 - ok
18:44:23.0450 3612  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:44:23.0590 3612  clr_optimization_v4.0.30319_32 - ok
18:44:23.0637 3612  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:44:23.0668 3612  clr_optimization_v4.0.30319_64 - ok
18:44:23.0746 3612  [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
18:44:23.0746 3612  clwvd - ok
18:44:23.0809 3612  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
18:44:23.0809 3612  CmBatt - ok
18:44:23.0824 3612  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:44:23.0824 3612  cmdide - ok
18:44:23.0887 3612  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
18:44:23.0887 3612  CNG - ok
18:44:23.0949 3612  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
18:44:23.0949 3612  Compbatt - ok
18:44:23.0996 3612  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
18:44:23.0996 3612  CompositeBus - ok
18:44:24.0027 3612  COMSysApp - ok
18:44:24.0074 3612  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:44:24.0074 3612  crcdisk - ok
18:44:24.0121 3612  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:44:24.0121 3612  CryptSvc - ok
18:44:24.0168 3612  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:44:24.0183 3612  DcomLaunch - ok
18:44:24.0261 3612  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:44:24.0261 3612  defragsvc - ok
18:44:24.0308 3612  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:44:24.0308 3612  DfsC - ok
18:44:24.0370 3612  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:44:24.0370 3612  Dhcp - ok
18:44:24.0417 3612  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:44:24.0417 3612  discache - ok
18:44:24.0464 3612  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
18:44:24.0464 3612  Disk - ok
18:44:24.0573 3612  [ E7B489FA5B15D2FEC3E52066E015B788 ] DMAgent         C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
18:44:24.0714 3612  DMAgent - ok
18:44:24.0760 3612  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:44:24.0760 3612  Dnscache - ok
18:44:24.0776 3612  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:44:24.0792 3612  dot3svc - ok
18:44:24.0838 3612  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:44:24.0838 3612  DPS - ok
18:44:24.0885 3612  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:44:24.0901 3612  drmkaud - ok
18:44:24.0979 3612  [ A4F408AD1065C7AD2ED332C68025B435 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:44:24.0994 3612  DXGKrnl - ok
18:44:25.0057 3612  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:44:25.0057 3612  EapHost - ok
18:44:25.0260 3612  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:44:25.0338 3612  ebdrv - ok
18:44:25.0369 3612  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
18:44:25.0369 3612  EFS - ok
18:44:25.0540 3612  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:44:25.0556 3612  ehRecvr - ok
18:44:25.0587 3612  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:44:25.0587 3612  ehSched - ok
18:44:25.0681 3612  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:44:25.0696 3612  elxstor - ok
18:44:25.0806 3612  [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
18:44:25.0884 3612  EPSON_EB_RPCV4_01 - ok
18:44:25.0930 3612  [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
18:44:26.0008 3612  EPSON_PM_RPCV4_01 - ok
18:44:26.0040 3612  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:44:26.0040 3612  ErrDev - ok
18:44:26.0133 3612  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:44:26.0133 3612  EventSystem - ok
18:44:26.0289 3612  [ E3A96D5AE6E5C7B5472011BA77353368 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:44:26.0320 3612  EvtEng - ok
18:44:26.0414 3612  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:44:26.0414 3612  exfat - ok
18:44:26.0430 3612  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:44:26.0445 3612  fastfat - ok
18:44:26.0508 3612  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:44:26.0508 3612  Fax - ok
18:44:26.0570 3612  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
18:44:26.0570 3612  fdc - ok
18:44:26.0601 3612  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:44:26.0601 3612  fdPHost - ok
18:44:26.0648 3612  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:44:26.0648 3612  FDResPub - ok
18:44:26.0679 3612  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:44:26.0679 3612  FileInfo - ok
18:44:26.0695 3612  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:44:26.0695 3612  Filetrace - ok
18:44:26.0726 3612  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:44:26.0726 3612  flpydisk - ok
18:44:26.0757 3612  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:44:26.0757 3612  FltMgr - ok
18:44:26.0882 3612  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
18:44:26.0913 3612  FontCache - ok
18:44:26.0944 3612  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:44:26.0960 3612  FontCache3.0.0.0 - ok
18:44:27.0085 3612  [ F80BDC0D9E7B9595E74B434446AD3781 ] FPLService      C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
18:44:27.0085 3612  FPLService - ok
18:44:27.0116 3612  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:44:27.0116 3612  FsDepends - ok
18:44:27.0178 3612  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:44:27.0178 3612  Fs_Rec - ok
18:44:27.0225 3612  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:44:27.0225 3612  fvevol - ok
18:44:27.0272 3612  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:44:27.0288 3612  gagp30kx - ok
18:44:27.0397 3612  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:44:27.0397 3612  GamesAppService - ok
18:44:27.0459 3612  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:44:27.0459 3612  gpsvc - ok
18:44:27.0584 3612  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:44:27.0584 3612  gupdate - ok
18:44:27.0615 3612  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:44:27.0615 3612  gupdatem - ok
18:44:27.0662 3612  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:44:27.0662 3612  hcw85cir - ok
18:44:27.0724 3612  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:44:27.0740 3612  HdAudAddService - ok
18:44:27.0802 3612  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
18:44:27.0802 3612  HDAudBus - ok
18:44:27.0818 3612  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:44:27.0834 3612  HidBatt - ok
18:44:27.0865 3612  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:44:27.0865 3612  HidBth - ok
18:44:28.0099 3612  [ B7454E775EC359B928795C46DD96C046 ] HideMyIpSRV     C:\Program Files (x86)\Hide My IP 2009\HideMyIpSrv.exe
18:44:28.0114 3612  HideMyIpSRV - ok
18:44:28.0146 3612  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:44:28.0161 3612  HidIr - ok
18:44:28.0208 3612  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
18:44:28.0208 3612  hidserv - ok
18:44:28.0302 3612  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:44:28.0302 3612  HidUsb - ok
18:44:28.0333 3612  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:44:28.0348 3612  hkmsvc - ok
18:44:28.0380 3612  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:44:28.0380 3612  HomeGroupListener - ok
18:44:28.0426 3612  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:44:28.0426 3612  HomeGroupProvider - ok
18:44:28.0692 3612  [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
18:44:28.0707 3612  HP Support Assistant Service - ok
18:44:28.0926 3612  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
18:44:28.0941 3612  HPClientSvc - ok
18:44:29.0472 3612  [ 7E8DE1568CE329DEEAB294C3F78DE54D ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:44:29.0487 3612  HPDrvMntSvc.exe - ok
18:44:29.0550 3612  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
18:44:29.0550 3612  hpdskflt - ok
18:44:29.0643 3612  [ BEA91412B280171463864F682A1DB46E ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:44:29.0659 3612  hpqwmiex - ok
18:44:29.0706 3612  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:44:29.0706 3612  HpSAMD - ok
18:44:29.0737 3612  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\Windows\system32\Hpservice.exe
18:44:29.0737 3612  hpsrv - ok
18:44:29.0815 3612  [ 491CE9B6321FB74E4B37AF2C47F98434 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
18:44:29.0815 3612  HPWMISVC - ok
18:44:30.0002 3612  [ 945B827B4D7238FB1E18D574231765DB ] hshld           C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe
18:44:30.0002 3612  hshld - ok
18:44:30.0064 3612  [ 7C10E21AE8AF5D5547150F4E762C4E7E ] HssDRV6         C:\Windows\system32\DRIVERS\hssdrv6.sys
18:44:30.0064 3612  HssDRV6 - ok
18:44:30.0189 3612  [ 509B8010AE0464FB2F69CADFBB26E8DA ] HssSrv          C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
18:44:30.0205 3612  HssSrv - ok
18:44:30.0252 3612  [ 9D280EE83E657889BA5F112E4CF6F520 ] HssTrayService  C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
18:44:30.0330 3612  HssTrayService - ok
18:44:30.0376 3612  [ 65603557909D7E9AC21153455A2BA92A ] HssWd           C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
18:44:30.0376 3612  HssWd - ok
18:44:30.0439 3612  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:44:30.0439 3612  HTTP - ok
18:44:30.0501 3612  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:44:30.0501 3612  hwpolicy - ok
18:44:30.0564 3612  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:44:30.0579 3612  i8042prt - ok
18:44:30.0657 3612  [ F981817D0BD03EAC4FA60D0B2551A310 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
18:44:30.0657 3612  iaStor - ok
18:44:30.0766 3612  [ B1CC71046A714E6A6AF0A09EB7E05299 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
18:44:30.0782 3612  IAStorDataMgrSvc - ok
18:44:30.0829 3612  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:44:30.0844 3612  iaStorV - ok
18:44:31.0078 3612  [ 3A0FF117B4ADC5ABE4D968E26A337158 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
18:44:31.0125 3612  IconMan_R - ok
18:44:31.0188 3612  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:44:31.0203 3612  idsvc - ok
18:44:32.0030 3612  [ 10BB0DC3361C9420CC1B0B2128BB89DB ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:44:32.0092 3612  igfx - ok
18:44:32.0139 3612  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:44:32.0155 3612  iirsp - ok
18:44:32.0202 3612  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:44:32.0202 3612  IKEEXT - ok
18:44:32.0264 3612  [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
18:44:32.0264 3612  intaud_WaveExtensible - ok
18:44:32.0342 3612  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
18:44:32.0342 3612  IntcDAud - ok
18:44:32.0358 3612  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:44:32.0358 3612  intelide - ok
18:44:32.0420 3612  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:44:32.0420 3612  intelppm - ok
18:44:32.0482 3612  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:44:32.0482 3612  IPBusEnum - ok
18:44:32.0498 3612  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:44:32.0498 3612  IpFilterDriver - ok
18:44:32.0560 3612  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:44:32.0560 3612  iphlpsvc - ok
18:44:32.0592 3612  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:44:32.0592 3612  IPMIDRV - ok
18:44:32.0654 3612  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:44:32.0654 3612  IPNAT - ok
18:44:32.0701 3612  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:44:32.0716 3612  IRENUM - ok
18:44:32.0763 3612  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:44:32.0763 3612  isapnp - ok
18:44:32.0810 3612  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:44:32.0810 3612  iScsiPrt - ok
18:44:32.0872 3612  [ 970995B7C36F4408ED31C3BF204FE1F5 ] ISCT            C:\Windows\system32\DRIVERS\ISCTD64.sys
18:44:32.0872 3612  ISCT - ok
18:44:32.0935 3612  [ 24D261738C2AFB8A8D10821440C49EAA ] ISCTAgent       C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
18:44:32.0935 3612  ISCTAgent - ok
18:44:32.0997 3612  [ 716F66336F10885D935B08174DC54242 ] iwdbus          C:\Windows\system32\DRIVERS\iwdbus.sys
18:44:32.0997 3612  iwdbus - ok
18:44:33.0028 3612  [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service     C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
18:44:33.0028 3612  jhi_service - ok
18:44:33.0106 3612  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:44:33.0106 3612  kbdclass - ok
18:44:33.0169 3612  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:44:33.0169 3612  kbdhid - ok
18:44:33.0216 3612  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
18:44:33.0216 3612  KeyIso - ok
18:44:33.0247 3612  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:44:33.0247 3612  KSecDD - ok
18:44:33.0278 3612  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:44:33.0278 3612  KSecPkg - ok
18:44:33.0325 3612  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:44:33.0325 3612  ksthunk - ok
18:44:33.0340 3612  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:44:33.0356 3612  KtmRm - ok
18:44:33.0434 3612  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:44:33.0434 3612  LanmanServer - ok
18:44:33.0465 3612  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:44:33.0481 3612  LanmanWorkstation - ok
18:44:33.0590 3612  [ 88E52495B47C67126B510AF53FDB0BC7 ] LBTServ         C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
18:44:33.0590 3612  LBTServ - ok
18:44:33.0668 3612  [ BECBD7CD46776B8739EE18061F45A581 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
18:44:33.0668 3612  LEqdUsb - ok
18:44:33.0699 3612  [ 21D6BD7D62C270059EB8E2B1D4095880 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
18:44:33.0699 3612  LHidEqd - ok
18:44:33.0793 3612  [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:44:33.0793 3612  LHidFilt - ok
18:44:33.0840 3612  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:44:33.0840 3612  lltdio - ok
18:44:33.0886 3612  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:44:33.0902 3612  lltdsvc - ok
18:44:33.0933 3612  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:44:33.0933 3612  lmhosts - ok
18:44:33.0996 3612  [ 50C7CE53EF461870410355F1F2E7D515 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:44:33.0996 3612  LMS - ok
18:44:34.0074 3612  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:44:34.0074 3612  LSI_FC - ok
18:44:34.0120 3612  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:44:34.0120 3612  LSI_SAS - ok
18:44:34.0152 3612  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:44:34.0198 3612  LSI_SAS2 - ok
18:44:34.0230 3612  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:44:34.0230 3612  LSI_SCSI - ok
18:44:34.0276 3612  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:44:34.0276 3612  luafv - ok
18:44:34.0339 3612  [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:44:34.0339 3612  MBAMProtector - ok
18:44:34.0432 3612  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:44:34.0432 3612  MBAMScheduler - ok
18:44:34.0495 3612  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:44:34.0510 3612  MBAMService - ok
18:44:34.0542 3612  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:44:34.0542 3612  Mcx2Svc - ok
18:44:34.0573 3612  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:44:34.0573 3612  megasas - ok
18:44:34.0620 3612  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:44:34.0620 3612  MegaSR - ok
18:44:34.0698 3612  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
18:44:34.0698 3612  MEIx64 - ok
18:44:34.0807 3612  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
18:44:34.0807 3612  Microsoft Office Groove Audit Service - ok
18:44:34.0854 3612  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:44:34.0854 3612  MMCSS - ok
18:44:34.0916 3612  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:44:34.0916 3612  Modem - ok
18:44:34.0947 3612  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:44:34.0947 3612  monitor - ok
18:44:35.0025 3612  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:44:35.0025 3612  mouclass - ok
18:44:35.0088 3612  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:44:35.0088 3612  mouhid - ok
18:44:35.0134 3612  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:44:35.0134 3612  mountmgr - ok
18:44:35.0228 3612  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
18:44:35.0228 3612  MpFilter - ok
18:44:35.0275 3612  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:44:35.0275 3612  mpio - ok
18:44:35.0306 3612  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:44:35.0306 3612  mpsdrv - ok
18:44:35.0353 3612  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:44:35.0368 3612  MpsSvc - ok
18:44:35.0400 3612  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:44:35.0400 3612  MRxDAV - ok
18:44:35.0431 3612  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:44:35.0431 3612  mrxsmb - ok
18:44:35.0493 3612  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:44:35.0493 3612  mrxsmb10 - ok
18:44:35.0524 3612  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:44:35.0524 3612  mrxsmb20 - ok
18:44:35.0602 3612  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:44:35.0602 3612  msahci - ok
18:44:35.0634 3612  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:44:35.0634 3612  msdsm - ok
18:44:35.0665 3612  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:44:35.0665 3612  MSDTC - ok
18:44:35.0696 3612  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:44:35.0696 3612  Msfs - ok
18:44:35.0743 3612  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:44:35.0758 3612  mshidkmdf - ok
18:44:35.0805 3612  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:44:35.0805 3612  msisadrv - ok
18:44:35.0868 3612  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:44:35.0868 3612  MSiSCSI - ok
18:44:35.0868 3612  msiserver - ok
18:44:36.0024 3612  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:44:36.0024 3612  MSKSSRV - ok
18:44:36.0102 3612  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:44:36.0102 3612  MsMpSvc - ok
18:44:36.0164 3612  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:44:36.0164 3612  MSPCLOCK - ok
18:44:36.0164 3612  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:44:36.0164 3612  MSPQM - ok
18:44:36.0195 3612  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:44:36.0211 3612  MsRPC - ok
18:44:36.0258 3612  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
18:44:36.0258 3612  mssmbios - ok
18:44:36.0336 3612  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:44:36.0336 3612  MSTEE - ok
18:44:36.0351 3612  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:44:36.0351 3612  MTConfig - ok
18:44:36.0382 3612  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:44:36.0382 3612  Mup - ok
18:44:36.0460 3612  [ 8F57DB74BF5407A4CDA6C8B005DC8DD0 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:44:36.0460 3612  MyWiFiDHCPDNS - ok
18:44:36.0507 3612  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:44:36.0507 3612  napagent - ok
18:44:36.0570 3612  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:44:36.0570 3612  NativeWifiP - ok
18:44:36.0663 3612  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:44:36.0679 3612  NDIS - ok
18:44:36.0741 3612  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:44:36.0741 3612  NdisCap - ok
18:44:36.0788 3612  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:44:36.0788 3612  NdisTapi - ok
18:44:36.0804 3612  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:44:36.0804 3612  Ndisuio - ok
18:44:36.0835 3612  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:44:36.0835 3612  NdisWan - ok
18:44:36.0850 3612  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:44:36.0850 3612  NDProxy - ok
18:44:36.0913 3612  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:44:36.0913 3612  NetBIOS - ok
18:44:36.0944 3612  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:44:36.0944 3612  NetBT - ok
18:44:37.0006 3612  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
18:44:37.0006 3612  Netlogon - ok
18:44:37.0053 3612  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:44:37.0053 3612  Netman - ok
18:44:37.0131 3612  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:44:37.0147 3612  NetMsmqActivator - ok
18:44:37.0178 3612  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:44:37.0178 3612  NetPipeActivator - ok
18:44:37.0240 3612  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:44:37.0240 3612  netprofm - ok
18:44:37.0303 3612  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:44:37.0303 3612  NetTcpActivator - ok
18:44:37.0318 3612  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:44:37.0318 3612  NetTcpPortSharing - ok
18:44:37.0802 3612  [ 50AD7F7040C22BB7CAA59A0880875A21 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
18:44:37.0849 3612  NETwNs64 - ok
18:44:37.0896 3612  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:44:37.0896 3612  nfrd960 - ok
18:44:37.0974 3612  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:44:37.0974 3612  NisDrv - ok
18:44:38.0052 3612  [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
18:44:38.0052 3612  NisSrv - ok
18:44:38.0114 3612  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:44:38.0130 3612  NlaSvc - ok
18:44:38.0161 3612  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:44:38.0161 3612  Npfs - ok
18:44:38.0192 3612  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:44:38.0192 3612  nsi - ok
18:44:38.0223 3612  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:44:38.0223 3612  nsiproxy - ok
18:44:38.0488 3612  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:44:38.0535 3612  Ntfs - ok
18:44:38.0582 3612  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:44:38.0582 3612  Null - ok
18:44:38.0644 3612  [ 9A33100AC62A0463C49E47EE8E77083A ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
18:44:38.0644 3612  nusb3hub - ok
18:44:38.0707 3612  [ 87C321F7BEE646B7EC6EEDD6EB725741 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:44:38.0707 3612  nusb3xhc - ok
18:44:38.0738 3612  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
18:44:38.0738 3612  NVENETFD - ok
18:44:38.0785 3612  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:44:38.0800 3612  nvraid - ok
18:44:38.0847 3612  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:44:38.0847 3612  nvstor - ok
18:44:38.0910 3612  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:44:38.0910 3612  nv_agp - ok
18:44:39.0050 3612  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:44:39.0066 3612  odserv - ok
18:44:39.0081 3612  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:44:39.0097 3612  ohci1394 - ok
18:44:39.0144 3612  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:44:39.0144 3612  ose - ok
18:44:39.0190 3612  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:44:39.0190 3612  p2pimsvc - ok
18:44:39.0268 3612  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:44:39.0284 3612  p2psvc - ok
18:44:39.0393 3612  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
18:44:39.0393 3612  Parport - ok
18:44:39.0409 3612  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:44:39.0409 3612  partmgr - ok
18:44:39.0456 3612  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:44:39.0456 3612  PcaSvc - ok
18:44:39.0502 3612  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:44:39.0502 3612  pci - ok
18:44:39.0518 3612  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:44:39.0534 3612  pciide - ok
18:44:39.0565 3612  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:44:39.0580 3612  pcmcia - ok
18:44:39.0596 3612  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:44:39.0596 3612  pcw - ok
18:44:39.0627 3612  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:44:39.0643 3612  PEAUTH - ok
18:44:39.0799 3612  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:44:39.0799 3612  PerfHost - ok
18:44:39.0877 3612  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:44:39.0908 3612  pla - ok
18:44:40.0002 3612  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:44:40.0002 3612  PlugPlay - ok
18:44:40.0064 3612  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:44:40.0064 3612  PNRPAutoReg - ok
18:44:40.0095 3612  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:44:40.0111 3612  PNRPsvc - ok
18:44:40.0189 3612  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:44:40.0189 3612  PolicyAgent - ok
18:44:40.0236 3612  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:44:40.0251 3612  Power - ok
18:44:40.0314 3612  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:44:40.0314 3612  PptpMiniport - ok
18:44:40.0360 3612  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
18:44:40.0360 3612  Processor - ok
18:44:40.0423 3612  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:44:40.0438 3612  ProfSvc - ok
18:44:40.0470 3612  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:44:40.0470 3612  ProtectedStorage - ok
18:44:40.0532 3612  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:44:40.0532 3612  Psched - ok
18:44:40.0641 3612  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:44:40.0672 3612  ql2300 - ok
18:44:40.0688 3612  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:44:40.0688 3612  ql40xx - ok
18:44:40.0782 3612  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:44:40.0782 3612  QWAVE - ok
18:44:40.0813 3612  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:44:40.0828 3612  QWAVEdrv - ok
18:44:40.0844 3612  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:44:40.0844 3612  RasAcd - ok
18:44:40.0891 3612  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:44:40.0891 3612  RasAgileVpn - ok
18:44:40.0922 3612  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:44:40.0922 3612  RasAuto - ok
18:44:40.0938 3612  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:44:40.0938 3612  Rasl2tp - ok
18:44:40.0984 3612  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:44:41.0000 3612  RasMan - ok
18:44:41.0047 3612  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:44:41.0047 3612  RasPppoe - ok
18:44:41.0094 3612  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:44:41.0094 3612  RasSstp - ok
18:44:41.0125 3612  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:44:41.0125 3612  rdbss - ok
18:44:41.0156 3612  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
18:44:41.0156 3612  rdpbus - ok
18:44:41.0172 3612  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:44:41.0172 3612  RDPCDD - ok
18:44:41.0234 3612  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:44:41.0234 3612  RDPENCDD - ok
18:44:41.0265 3612  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:44:41.0265 3612  RDPREFMP - ok
18:44:41.0328 3612  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:44:41.0343 3612  RDPWD - ok
18:44:41.0390 3612  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:44:41.0390 3612  rdyboost - ok
18:44:41.0484 3612  [ FD11C1287D38A46FB72353E14D50089C ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:44:41.0499 3612  RegSrvc - ok
18:44:41.0530 3612  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:44:41.0546 3612  RemoteAccess - ok
18:44:41.0577 3612  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:44:41.0593 3612  RemoteRegistry - ok
18:44:41.0655 3612  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
18:44:41.0655 3612  RFCOMM - ok
18:44:41.0671 3612  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:44:41.0686 3612  RpcEptMapper - ok
18:44:41.0718 3612  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:44:41.0718 3612  RpcLocator - ok
18:44:41.0749 3612  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
18:44:41.0764 3612  RpcSs - ok
18:44:41.0796 3612  [ 1F5E7AF59B390261A85F5BEDB1BB88B3 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
18:44:41.0811 3612  RSPCIESTOR - ok
18:44:41.0874 3612  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:44:41.0874 3612  rspndr - ok
18:44:41.0936 3612  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:44:41.0952 3612  RTL8167 - ok
18:44:41.0952 3612  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
18:44:41.0952 3612  SamSs - ok
18:44:41.0967 3612  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:44:41.0983 3612  sbp2port - ok
18:44:42.0014 3612  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:44:42.0014 3612  SCardSvr - ok
18:44:42.0030 3612  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:44:42.0045 3612  scfilter - ok
18:44:42.0076 3612  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:44:42.0108 3612  Schedule - ok
18:44:42.0123 3612  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:44:42.0123 3612  SCPolicySvc - ok
18:44:42.0170 3612  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
18:44:42.0186 3612  sdbus - ok
18:44:42.0217 3612  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:44:42.0232 3612  SDRSVC - ok
18:44:42.0295 3612  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:44:42.0295 3612  secdrv - ok
18:44:42.0326 3612  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:44:42.0326 3612  seclogon - ok
18:44:42.0357 3612  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
18:44:42.0357 3612  SENS - ok
18:44:42.0420 3612  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:44:42.0420 3612  SensrSvc - ok
18:44:42.0435 3612  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
18:44:42.0435 3612  Serenum - ok
18:44:42.0498 3612  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
18:44:42.0513 3612  Serial - ok
18:44:42.0560 3612  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:44:42.0560 3612  sermouse - ok
18:44:42.0607 3612  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:44:42.0607 3612  SessionEnv - ok
18:44:42.0622 3612  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:44:42.0638 3612  sffdisk - ok
18:44:42.0654 3612  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:44:42.0654 3612  sffp_mmc - ok
18:44:42.0669 3612  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:44:42.0669 3612  sffp_sd - ok
18:44:42.0700 3612  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:44:42.0700 3612  sfloppy - ok
18:44:42.0732 3612  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:44:42.0747 3612  SharedAccess - ok
18:44:42.0778 3612  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:44:42.0794 3612  ShellHWDetection - ok
18:44:42.0841 3612  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:44:42.0841 3612  SiSRaid2 - ok
18:44:42.0856 3612  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:44:42.0872 3612  SiSRaid4 - ok
18:44:42.0950 3612  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:44:42.0966 3612  SkypeUpdate - ok
18:44:43.0012 3612  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:44:43.0012 3612  Smb - ok
18:44:43.0090 3612  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:44:43.0090 3612  SNMPTRAP - ok
18:44:43.0106 3612  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:44:43.0106 3612  spldr - ok
18:44:43.0153 3612  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:44:43.0168 3612  Spooler - ok
18:44:43.0278 3612  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:44:43.0309 3612  sppsvc - ok
18:44:43.0324 3612  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:44:43.0324 3612  sppuinotify - ok
18:44:43.0371 3612  [ D519AD2DE7968CD2B47FEA807C5B29B2 ] sptd            C:\Windows\System32\Drivers\sptd.sys
18:44:43.0371 3612  Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: D519AD2DE7968CD2B47FEA807C5B29B2
18:44:43.0371 3612  sptd ( LockedFile.Multi.Generic ) - warning
18:44:43.0371 3612  sptd - detected LockedFile.Multi.Generic (1)
18:44:43.0402 3612  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:44:43.0418 3612  srv - ok
18:44:43.0465 3612  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:44:43.0465 3612  srv2 - ok
18:44:43.0496 3612  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:44:43.0496 3612  SrvHsfHDA - ok
18:44:43.0558 3612  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:44:43.0590 3612  SrvHsfV92 - ok
18:44:43.0621 3612  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:44:43.0636 3612  SrvHsfWinac - ok
18:44:43.0668 3612  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:44:43.0668 3612  srvnet - ok
18:44:43.0699 3612  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:44:43.0714 3612  SSDPSRV - ok
18:44:43.0730 3612  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:44:43.0746 3612  SstpSvc - ok
18:44:43.0761 3612  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:44:43.0761 3612  stexstor - ok
18:44:43.0855 3612  [ B842246B3DB41F3F061FFB979ABF5525 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
18:44:43.0855 3612  STHDA - ok
18:44:43.0933 3612  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:44:43.0933 3612  stisvc - ok
18:44:43.0964 3612  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
18:44:43.0964 3612  swenum - ok
18:44:44.0011 3612  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:44:44.0026 3612  swprv - ok
18:44:44.0089 3612  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
18:44:44.0104 3612  SynTP - ok
18:44:44.0167 3612  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:44:44.0182 3612  SysMain - ok
18:44:44.0214 3612  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:44:44.0214 3612  TabletInputService - ok
18:44:44.0260 3612  [ A3F7EAB3947ADA804D60168119306D43 ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
18:44:44.0276 3612  taphss6 - ok
18:44:44.0307 3612  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:44:44.0307 3612  TapiSrv - ok
18:44:44.0323 3612  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:44:44.0338 3612  TBS - ok
18:44:44.0448 3612  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:44:44.0526 3612  Tcpip - ok
18:44:44.0588 3612  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:44:44.0604 3612  TCPIP6 - ok
18:44:44.0650 3612  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:44:44.0650 3612  tcpipreg - ok
18:44:44.0666 3612  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:44:44.0666 3612  TDPIPE - ok
18:44:44.0697 3612  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:44:44.0697 3612  TDTCP - ok
18:44:44.0728 3612  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:44:44.0728 3612  tdx - ok
18:44:44.0744 3612  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
18:44:44.0760 3612  TermDD - ok
18:44:44.0791 3612  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:44:44.0806 3612  TermService - ok
18:44:44.0822 3612  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:44:44.0838 3612  Themes - ok
18:44:44.0869 3612  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:44:44.0869 3612  THREADORDER - ok
18:44:44.0884 3612  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:44:44.0900 3612  TrkWks - ok
18:44:44.0947 3612  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:44:44.0962 3612  TrustedInstaller - ok
18:44:44.0978 3612  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:44:44.0994 3612  tssecsrv - ok
18:44:45.0040 3612  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:44:45.0056 3612  TsUsbFlt - ok
18:44:45.0072 3612  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:44:45.0072 3612  TsUsbGD - ok
18:44:45.0118 3612  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:44:45.0134 3612  tunnel - ok
18:44:45.0150 3612  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:44:45.0150 3612  uagp35 - ok
18:44:45.0181 3612  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:44:45.0181 3612  udfs - ok
18:44:45.0228 3612  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:44:45.0243 3612  UI0Detect - ok
18:44:45.0274 3612  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:44:45.0290 3612  uliagpkx - ok
18:44:45.0352 3612  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:44:45.0352 3612  umbus - ok
18:44:45.0415 3612  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
18:44:45.0415 3612  UmPass - ok
18:44:45.0571 3612  [ 374EBDA379A8F38E0CFC2211611E7167 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:44:45.0649 3612  UNS - ok
18:44:45.0680 3612  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:44:45.0696 3612  upnphost - ok
18:44:45.0711 3612  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:44:45.0727 3612  usbccgp - ok
18:44:45.0789 3612  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:44:45.0789 3612  usbcir - ok
18:44:45.0805 3612  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:44:45.0805 3612  usbehci - ok
18:44:45.0836 3612  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
18:44:45.0836 3612  usbhub - ok
18:44:45.0867 3612  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:44:45.0867 3612  usbohci - ok
18:44:45.0914 3612  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:44:45.0930 3612  usbprint - ok
18:44:45.0961 3612  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
18:44:45.0961 3612  usbscan - ok
18:44:45.0976 3612  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:44:45.0976 3612  USBSTOR - ok
18:44:46.0008 3612  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:44:46.0008 3612  usbuhci - ok
18:44:46.0070 3612  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
18:44:46.0070 3612  usbvideo - ok
18:44:46.0101 3612  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:44:46.0117 3612  UxSms - ok
18:44:46.0117 3612  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
18:44:46.0132 3612  VaultSvc - ok
18:44:46.0210 3612  [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
18:44:46.0210 3612  VClone - ok
18:44:46.0226 3612  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:44:46.0226 3612  vdrvroot - ok
18:44:46.0257 3612  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:44:46.0257 3612  vds - ok
18:44:46.0288 3612  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:44:46.0288 3612  vga - ok
18:44:46.0304 3612  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:44:46.0304 3612  VgaSave - ok
18:44:46.0335 3612  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:44:46.0335 3612  vhdmp - ok
18:44:46.0351 3612  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:44:46.0351 3612  viaide - ok
18:44:46.0366 3612  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:44:46.0366 3612  volmgr - ok
18:44:46.0382 3612  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:44:46.0398 3612  volmgrx - ok
18:44:46.0413 3612  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:44:46.0413 3612  volsnap - ok
18:44:46.0460 3612  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:44:46.0460 3612  vsmraid - ok
18:44:46.0522 3612  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:44:46.0538 3612  VSS - ok
18:44:46.0554 3612  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:44:46.0554 3612  vwifibus - ok
18:44:46.0600 3612  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:44:46.0600 3612  vwififlt - ok
18:44:46.0647 3612  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:44:46.0663 3612  vwifimp - ok
18:44:46.0678 3612  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:44:46.0678 3612  W32Time - ok
18:44:46.0725 3612  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:44:46.0725 3612  WacomPen - ok
18:44:46.0788 3612  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:44:46.0788 3612  WANARP - ok
18:44:46.0788 3612  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:44:46.0803 3612  Wanarpv6 - ok
18:44:46.0897 3612  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:44:46.0912 3612  WatAdminSvc - ok
18:44:46.0975 3612  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:44:47.0006 3612  wbengine - ok
18:44:47.0053 3612  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:44:47.0068 3612  WbioSrvc - ok
18:44:47.0100 3612  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:44:47.0100 3612  wcncsvc - ok
18:44:47.0131 3612  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:44:47.0146 3612  WcsPlugInService - ok
18:44:47.0178 3612  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
18:44:47.0178 3612  Wd - ok
18:44:47.0224 3612  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
18:44:47.0224 3612  WDC_SAM - ok
18:44:47.0271 3612  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:44:47.0287 3612  Wdf01000 - ok
18:44:47.0318 3612  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:44:47.0318 3612  WdiServiceHost - ok
18:44:47.0334 3612  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:44:47.0334 3612  WdiSystemHost - ok
18:44:47.0380 3612  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
18:44:47.0396 3612  WebClient - ok
18:44:47.0412 3612  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:44:47.0412 3612  Wecsvc - ok
18:44:47.0427 3612  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:44:47.0427 3612  wercplsupport - ok
18:44:47.0490 3612  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:44:47.0490 3612  WerSvc - ok
18:44:47.0552 3612  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:44:47.0552 3612  WfpLwf - ok
18:44:47.0661 3612  [ 245EA6A2CFAE7B183EE9A14A4673B1F1 ] WiMAXAppSrv     C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
18:44:47.0755 3612  WiMAXAppSrv - ok
18:44:47.0770 3612  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:44:47.0770 3612  WIMMount - ok
18:44:47.0802 3612  WinDefend - ok
18:44:47.0848 3612  WinHttpAutoProxySvc - ok
18:44:47.0911 3612  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:44:47.0926 3612  Winmgmt - ok
18:44:48.0004 3612  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:44:48.0036 3612  WinRM - ok
18:44:48.0098 3612  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
18:44:48.0114 3612  WinUsb - ok
18:44:48.0160 3612  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:44:48.0176 3612  Wlansvc - ok
18:44:48.0223 3612  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:44:48.0223 3612  wlcrasvc - ok
18:44:48.0363 3612  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:44:48.0379 3612  wlidsvc - ok
18:44:48.0410 3612  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:44:48.0410 3612  WmiAcpi - ok
18:44:48.0441 3612  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:44:48.0441 3612  wmiApSrv - ok
18:44:48.0519 3612  WMPNetworkSvc - ok
18:44:48.0535 3612  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:44:48.0550 3612  WPCSvc - ok
18:44:48.0566 3612  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:44:48.0566 3612  WPDBusEnum - ok
18:44:48.0582 3612  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:44:48.0597 3612  ws2ifsl - ok
18:44:48.0597 3612  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
18:44:48.0613 3612  wscsvc - ok
18:44:48.0613 3612  WSearch - ok
18:44:48.0706 3612  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:44:48.0769 3612  wuauserv - ok
18:44:48.0784 3612  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:44:48.0800 3612  WudfPf - ok
18:44:48.0847 3612  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:44:48.0862 3612  WUDFRd - ok
18:44:48.0894 3612  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:44:48.0894 3612  wudfsvc - ok
18:44:48.0925 3612  [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:44:48.0940 3612  WwanSvc - ok



#4 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 20 February 2013 - 02:13 AM

More TDSS....

 

 

 

 

18:44:49.0050 3612  ================ Scan global ===============================
18:44:49.0081 3612  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:44:49.0112 3612  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
18:44:49.0174 3612  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
18:44:49.0237 3612  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:44:49.0252 3612  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:44:49.0268 3612  [Global] - ok
18:44:49.0268 3612  ================ Scan MBR ==================================
18:44:49.0284 3612  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:44:49.0518 3612  \Device\Harddisk0\DR0 - ok
18:44:49.0518 3612  ================ Scan VBR ==================================
18:44:49.0518 3612  [ 2A289A9CB1AA1406EF721ED7EBC7BE96 ] \Device\Harddisk0\DR0\Partition1
18:44:49.0533 3612  \Device\Harddisk0\DR0\Partition1 - ok
18:44:49.0549 3612  [ FC61025E10E84FB33CE236D9C25F70CB ] \Device\Harddisk0\DR0\Partition2
18:44:49.0549 3612  \Device\Harddisk0\DR0\Partition2 - ok
18:44:49.0580 3612  [ 40EE97CAE68BA1C7353706AED48DBEB0 ] \Device\Harddisk0\DR0\Partition3
18:44:49.0580 3612  \Device\Harddisk0\DR0\Partition3 - ok
18:44:49.0596 3612  [ 31BD44022BE0BD2F8080438C1A9285E4 ] \Device\Harddisk0\DR0\Partition4
18:44:49.0611 3612  \Device\Harddisk0\DR0\Partition4 - ok
18:44:49.0611 3612  ================ Scan active images ========================
18:44:49.0611 3612  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
18:44:49.0611 3612  C:\Windows\System32\drivers\crashdmp.sys - ok
18:44:49.0611 3612  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
18:44:49.0611 3612  C:\Windows\System32\drivers\dumpfve.sys - ok
18:44:49.0627 3612  [ F981817D0BD03EAC4FA60D0B2551A310 ] C:\Windows\System32\drivers\iaStor.sys
18:44:49.0627 3612  C:\Windows\System32\drivers\iaStor.sys - ok
18:44:49.0627 3612  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
18:44:49.0627 3612  C:\Windows\System32\drivers\beep.sys - ok
18:44:49.0642 3612  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
18:44:49.0642 3612  C:\Windows\System32\drivers\cdrom.sys - ok
18:44:49.0642 3612  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
18:44:49.0642 3612  C:\Windows\System32\drivers\null.sys - ok
18:44:49.0642 3612  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
18:44:49.0642 3612  C:\Windows\System32\drivers\vga.sys - ok
18:44:49.0658 3612  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
18:44:49.0658 3612  C:\Windows\System32\drivers\videoprt.sys - ok
18:44:49.0658 3612  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
18:44:49.0658 3612  C:\Windows\System32\drivers\watchdog.sys - ok
18:44:49.0658 3612  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
18:44:49.0658 3612  C:\Windows\System32\drivers\RDPCDD.sys - ok
18:44:49.0674 3612  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
18:44:49.0674 3612  C:\Windows\System32\drivers\RDPENCDD.sys - ok
18:44:49.0674 3612  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
18:44:49.0674 3612  C:\Windows\System32\drivers\msfs.sys - ok
18:44:49.0674 3612  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
18:44:49.0674 3612  C:\Windows\System32\drivers\RDPREFMP.sys - ok
18:44:49.0674 3612  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
18:44:49.0674 3612  C:\Windows\System32\drivers\npfs.sys - ok
18:44:49.0674 3612  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
18:44:49.0674 3612  C:\Windows\System32\drivers\tdi.sys - ok
18:44:49.0689 3612  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
18:44:49.0689 3612  C:\Windows\System32\drivers\tdx.sys - ok
18:44:49.0689 3612  [ 795447BC205E6417FC516F2E39E5E9AB ] C:\Windows\System32\drivers\bckd.sys
18:44:49.0689 3612  C:\Windows\System32\drivers\bckd.sys - ok
18:44:49.0689 3612  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
18:44:49.0689 3612  C:\Windows\System32\drivers\afd.sys - ok
18:44:49.0689 3612  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
18:44:49.0689 3612  C:\Windows\System32\drivers\netbt.sys - ok
18:44:49.0689 3612  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
18:44:49.0689 3612  C:\Windows\System32\drivers\wfplwf.sys - ok
18:44:49.0689 3612  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
18:44:49.0689 3612  C:\Windows\System32\drivers\ws2ifsl.sys - ok
18:44:49.0705 3612  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
18:44:49.0705 3612  C:\Windows\System32\drivers\pacer.sys - ok
18:44:49.0705 3612  [ 7C10E21AE8AF5D5547150F4E762C4E7E ] C:\Windows\System32\drivers\hssdrv6.sys
18:44:49.0705 3612  C:\Windows\System32\drivers\hssdrv6.sys - ok
18:44:49.0705 3612  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
18:44:49.0705 3612  C:\Windows\System32\drivers\vwififlt.sys - ok
18:44:49.0705 3612  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
18:44:49.0705 3612  C:\Windows\System32\drivers\netbios.sys - ok
18:44:49.0705 3612  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
18:44:49.0705 3612  C:\Windows\System32\drivers\termdd.sys - ok
18:44:49.0720 3612  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
18:44:49.0720 3612  C:\Windows\System32\drivers\wanarp.sys - ok
18:44:49.0720 3612  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
18:44:49.0720 3612  C:\Windows\System32\drivers\blbdrive.sys - ok
18:44:49.0720 3612  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
18:44:49.0720 3612  C:\Windows\System32\drivers\dfsc.sys - ok
18:44:49.0720 3612  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
18:44:49.0720 3612  C:\Windows\System32\drivers\discache.sys - ok
18:44:49.0720 3612  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
18:44:49.0720 3612  C:\Windows\System32\drivers\mssmbios.sys - ok
18:44:49.0720 3612  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
18:44:49.0720 3612  C:\Windows\System32\drivers\nsiproxy.sys - ok
18:44:49.0736 3612  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
18:44:49.0736 3612  C:\Windows\System32\drivers\rdbss.sys - ok
18:44:49.0736 3612  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
18:44:49.0736 3612  C:\Windows\System32\drivers\tunnel.sys - ok
18:44:49.0736 3612  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
18:44:49.0736 3612  C:\Windows\System32\smss.exe - ok
18:44:49.0736 3612  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
18:44:49.0736 3612  C:\Windows\System32\ntdll.dll - ok
18:44:49.0736 3612  [ 10BB0DC3361C9420CC1B0B2128BB89DB ] C:\Windows\System32\drivers\igdkmd64.sys
18:44:49.0736 3612  C:\Windows\System32\drivers\igdkmd64.sys - ok
18:44:49.0736 3612  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
18:44:49.0736 3612  C:\Windows\System32\autochk.exe - ok
18:44:49.0752 3612  [ A4F408AD1065C7AD2ED332C68025B435 ] C:\Windows\System32\drivers\dxgkrnl.sys
18:44:49.0752 3612  C:\Windows\System32\drivers\dxgkrnl.sys - ok
18:44:49.0752 3612  [ 0F3183516A59B070ABB9B1629B0571CF ] C:\Windows\System32\drivers\dxgmms1.sys
18:44:49.0752 3612  C:\Windows\System32\drivers\dxgmms1.sys - ok
18:44:49.0752 3612  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
18:44:49.0752 3612  C:\Windows\System32\drivers\fastfat.sys - ok
18:44:49.0752 3612  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
18:44:49.0752 3612  C:\Windows\System32\drivers\HECIx64.sys - ok
18:44:49.0752 3612  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
18:44:49.0752 3612  C:\Windows\System32\drivers\hdaudbus.sys - ok
18:44:49.0752 3612  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
18:44:49.0752 3612  C:\Windows\System32\drivers\usbehci.sys - ok
18:44:49.0767 3612  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
18:44:49.0767 3612  C:\Windows\System32\drivers\usbport.sys - ok
18:44:49.0767 3612  [ 50AD7F7040C22BB7CAA59A0880875A21 ] C:\Windows\System32\drivers\NETwNs64.sys
18:44:49.0767 3612  C:\Windows\System32\drivers\NETwNs64.sys - ok
18:44:49.0767 3612  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
18:44:49.0767 3612  C:\Windows\System32\drivers\vwifibus.sys - ok
18:44:49.0767 3612  [ 1F5E7AF59B390261A85F5BEDB1BB88B3 ] C:\Windows\System32\drivers\RtsPStor.sys
18:44:49.0767 3612  C:\Windows\System32\drivers\RtsPStor.sys - ok
18:44:49.0767 3612  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
18:44:49.0767 3612  C:\Windows\System32\drivers\CmBatt.sys - ok
18:44:49.0783 3612  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
18:44:49.0783 3612  C:\Windows\System32\drivers\i8042prt.sys - ok
18:44:49.0783 3612  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
18:44:49.0783 3612  C:\Windows\System32\drivers\kbdclass.sys - ok
18:44:49.0783 3612  [ 87C321F7BEE646B7EC6EEDD6EB725741 ] C:\Windows\System32\drivers\nusb3xhc.sys
18:44:49.0783 3612  C:\Windows\System32\drivers\nusb3xhc.sys - ok
18:44:49.0783 3612  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] C:\Windows\System32\drivers\Rt64win7.sys
18:44:49.0783 3612  C:\Windows\System32\drivers\Rt64win7.sys - ok
18:44:49.0783 3612  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
18:44:49.0783 3612  C:\Windows\System32\drivers\usbd.sys - ok
18:44:49.0783 3612  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
18:44:49.0783 3612  C:\Windows\System32\drivers\intelppm.sys - ok
18:44:49.0798 3612  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
18:44:49.0798 3612  C:\Windows\System32\drivers\mouclass.sys - ok
18:44:49.0798 3612  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] C:\Windows\System32\drivers\SynTP.sys
18:44:49.0798 3612  C:\Windows\System32\drivers\SynTP.sys - ok
18:44:49.0798 3612  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] C:\Windows\System32\drivers\Accelerometer.sys
18:44:49.0798 3612  C:\Windows\System32\drivers\Accelerometer.sys - ok
18:44:49.0798 3612  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
18:44:49.0798 3612  C:\Windows\System32\drivers\agilevpn.sys - ok
18:44:49.0798 3612  [ 50F92C943F18B070F166D019DFAB3D9A ] C:\Windows\System32\drivers\clwvd.sys
18:44:49.0798 3612  C:\Windows\System32\drivers\clwvd.sys - ok
18:44:49.0798 3612  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
18:44:49.0798 3612  C:\Windows\System32\drivers\CompositeBus.sys - ok
18:44:49.0814 3612  [ 970995B7C36F4408ED31C3BF204FE1F5 ] C:\Windows\System32\drivers\ISCTD64.sys
18:44:49.0814 3612  C:\Windows\System32\drivers\ISCTD64.sys - ok
18:44:49.0814 3612  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
18:44:49.0814 3612  C:\Windows\System32\drivers\ks.sys - ok
18:44:49.0814 3612  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
18:44:49.0814 3612  C:\Windows\System32\drivers\ksthunk.sys - ok
18:44:49.0814 3612  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
18:44:49.0814 3612  C:\Windows\System32\drivers\wmiacpi.sys - ok
18:44:49.0814 3612  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
18:44:49.0814 3612  C:\Windows\System32\drivers\ndistapi.sys - ok
18:44:49.0814 3612  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
18:44:49.0814 3612  C:\Windows\System32\drivers\ndiswan.sys - ok
18:44:49.0830 3612  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
18:44:49.0830 3612  C:\Windows\System32\drivers\rasl2tp.sys - ok
18:44:49.0830 3612  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
18:44:49.0830 3612  C:\Windows\System32\drivers\raspppoe.sys - ok
18:44:49.0830 3612  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
18:44:49.0830 3612  C:\Windows\System32\drivers\raspptp.sys - ok
18:44:49.0830 3612  [ 56E4345F392F17D66683225E214840CB ] C:\Windows\System32\drivers\bpenum.sys
18:44:49.0830 3612  C:\Windows\System32\drivers\bpenum.sys - ok
18:44:49.0830 3612  [ 716F66336F10885D935B08174DC54242 ] C:\Windows\System32\drivers\iwdbus.sys
18:44:49.0830 3612  C:\Windows\System32\drivers\iwdbus.sys - ok
18:44:49.0830 3612  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
18:44:49.0830 3612  C:\Windows\System32\drivers\rassstp.sys - ok
18:44:49.0845 3612  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
18:44:49.0845 3612  C:\Windows\System32\drivers\swenum.sys - ok
18:44:49.0845 3612  [ A3F7EAB3947ADA804D60168119306D43 ] C:\Windows\System32\drivers\taphss6.sys
18:44:49.0845 3612  C:\Windows\System32\drivers\taphss6.sys - ok
18:44:49.0845 3612  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
18:44:49.0845 3612  C:\Windows\System32\drivers\umbus.sys - ok
18:44:49.0845 3612  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
18:44:49.0845 3612  C:\Windows\System32\Wldap32.dll - ok
18:44:49.0845 3612  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
18:44:49.0845 3612  C:\Windows\System32\drivers\usbhub.sys - ok
18:44:49.0845 3612  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
18:44:49.0845 3612  C:\Windows\System32\clbcatq.dll - ok
18:44:49.0861 3612  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
18:44:49.0861 3612  C:\Windows\System32\drivers\ndproxy.sys - ok
18:44:49.0861 3612  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
18:44:49.0861 3612  C:\Windows\System32\imm32.dll - ok
18:44:49.0861 3612  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
18:44:49.0861 3612  C:\Windows\System32\usp10.dll - ok
18:44:49.0861 3612  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
18:44:49.0861 3612  C:\Windows\System32\drivers\drmk.sys - ok
18:44:49.0861 3612  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
18:44:49.0861 3612  C:\Windows\System32\drivers\portcls.sys - ok
18:44:49.0876 3612  [ B842246B3DB41F3F061FFB979ABF5525 ] C:\Windows\System32\drivers\stwrt64.sys
18:44:49.0876 3612  C:\Windows\System32\drivers\stwrt64.sys - ok
18:44:49.0876 3612  [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
18:44:49.0876 3612  C:\Windows\System32\drivers\IntcDAud.sys - ok
18:44:49.0876 3612  [ 9A33100AC62A0463C49E47EE8E77083A ] C:\Windows\System32\drivers\nusb3hub.sys
18:44:49.0876 3612  C:\Windows\System32\drivers\nusb3hub.sys - ok
18:44:49.0876 3612  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
18:44:49.0876 3612  C:\Windows\System32\drivers\usbccgp.sys - ok
18:44:49.0876 3612  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
18:44:49.0876 3612  C:\Windows\System32\drivers\hidclass.sys - ok
18:44:49.0876 3612  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
18:44:49.0876 3612  C:\Windows\System32\drivers\hidparse.sys - ok
18:44:49.0892 3612  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
18:44:49.0892 3612  C:\Windows\System32\drivers\hidusb.sys - ok
18:44:49.0892 3612  [ BECBD7CD46776B8739EE18061F45A581 ] C:\Windows\System32\drivers\LEqdUsb.sys
18:44:49.0892 3612  C:\Windows\System32\drivers\LEqdUsb.sys - ok
18:44:49.0892 3612  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
18:44:49.0892 3612  C:\Windows\System32\drivers\kbdhid.sys - ok
18:44:49.0892 3612  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
18:44:49.0892 3612  C:\Windows\System32\drivers\mouhid.sys - ok
18:44:49.0892 3612  [ 21D6BD7D62C270059EB8E2B1D4095880 ] C:\Windows\System32\drivers\LHidEqd.sys
18:44:49.0892 3612  C:\Windows\System32\drivers\LHidEqd.sys - ok
18:44:49.0892 3612  [ B6552D382FF070B4ED34CBD6737277C0 ] C:\Windows\System32\drivers\LHidFilt.Sys
18:44:49.0892 3612  C:\Windows\System32\drivers\LHidFilt.Sys - ok
18:44:49.0908 3612  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
18:44:49.0908 3612  C:\Windows\System32\normaliz.dll - ok
18:44:49.0908 3612  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
18:44:49.0908 3612  C:\Windows\System32\user32.dll - ok
18:44:49.0908 3612  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
18:44:49.0908 3612  C:\Windows\System32\difxapi.dll - ok
18:44:49.0908 3612  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
18:44:49.0908 3612  C:\Windows\System32\comdlg32.dll - ok
18:44:49.0908 3612  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
18:44:49.0908 3612  C:\Windows\System32\psapi.dll - ok
18:44:49.0908 3612  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
18:44:49.0908 3612  C:\Windows\System32\gdi32.dll - ok
18:44:49.0923 3612  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
18:44:49.0923 3612  C:\Windows\System32\advapi32.dll - ok
18:44:49.0923 3612  [ 0C9039EC45E6C4631BE31DDEC370D341 ] C:\Windows\System32\drivers\ATSwpWDF.sys
18:44:49.0923 3612  C:\Windows\System32\drivers\ATSwpWDF.sys - ok
18:44:49.0923 3612  [ A85BA55E4FE9CB2F342F281AAF7DE810 ] C:\Windows\System32\drivers\bpusb.sys
18:44:49.0923 3612  C:\Windows\System32\drivers\bpusb.sys - ok
18:44:49.0923 3612  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
18:44:49.0923 3612  C:\Windows\System32\drivers\usbvideo.sys - ok
18:44:49.0923 3612  [ D50B07C4D7AFEC4CA6AC8FCB72583C5B ] C:\Windows\System32\drivers\bpmp.sys
18:44:49.0923 3612  C:\Windows\System32\drivers\bpmp.sys - ok
18:44:49.0923 3612  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
18:44:49.0923 3612  C:\Windows\System32\kernel32.dll - ok
18:44:49.0939 3612  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
18:44:49.0939 3612  C:\Windows\System32\sechost.dll - ok
18:44:49.0939 3612  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
18:44:49.0939 3612  C:\Windows\System32\msvcrt.dll - ok
18:44:49.0939 3612  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
18:44:49.0939 3612  C:\Windows\System32\ole32.dll - ok
18:44:49.0939 3612  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
18:44:49.0939 3612  C:\Windows\System32\rpcrt4.dll - ok
18:44:49.0939 3612  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
18:44:49.0939 3612  C:\Windows\System32\nsi.dll - ok
18:44:49.0939 3612  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
18:44:49.0939 3612  C:\Windows\System32\setupapi.dll - ok
18:44:49.0954 3612  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
18:44:49.0954 3612  C:\Windows\System32\ws2_32.dll - ok
18:44:49.0954 3612  [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
18:44:49.0954 3612  C:\Windows\System32\iertutil.dll - ok
18:44:49.0954 3612  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
18:44:49.0954 3612  C:\Windows\System32\oleaut32.dll - ok
18:44:49.0954 3612  [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
18:44:49.0954 3612  C:\Windows\System32\urlmon.dll - ok
18:44:49.0954 3612  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
18:44:49.0954 3612  C:\Windows\System32\shlwapi.dll - ok
18:44:49.0954 3612  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
18:44:49.0954 3612  C:\Windows\System32\lpk.dll - ok
18:44:49.0970 3612  [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
18:44:49.0970 3612  C:\Windows\System32\wininet.dll - ok
18:44:49.0970 3612  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
18:44:49.0970 3612  C:\Windows\System32\msctf.dll - ok
18:44:49.0970 3612  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
18:44:49.0970 3612  C:\Windows\System32\shell32.dll - ok
18:44:49.0970 3612  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
18:44:49.0970 3612  C:\Windows\System32\crypt32.dll - ok
18:44:49.0970 3612  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
18:44:49.0970 3612  C:\Windows\System32\imagehlp.dll - ok
18:44:49.0970 3612  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
18:44:49.0970 3612  C:\Windows\System32\cfgmgr32.dll - ok
18:44:49.0986 3612  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
18:44:49.0986 3612  C:\Windows\System32\KernelBase.dll - ok
18:44:49.0986 3612  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
18:44:49.0986 3612  C:\Windows\System32\wintrust.dll - ok
18:44:49.0986 3612  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
18:44:49.0986 3612  C:\Windows\System32\comctl32.dll - ok
18:44:49.0986 3612  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
18:44:49.0986 3612  C:\Windows\System32\devobj.dll - ok
18:44:49.0986 3612  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
18:44:49.0986 3612  C:\Windows\System32\msasn1.dll - ok
18:44:49.0986 3612  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
18:44:49.0986 3612  C:\Windows\SysWOW64\normaliz.dll - ok
18:44:50.0001 3612  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
18:44:50.0001 3612  C:\Windows\System32\drivers\dxapi.sys - ok
18:44:50.0001 3612  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
18:44:50.0001 3612  C:\Windows\System32\win32k.sys - ok
18:44:50.0001 3612  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
18:44:50.0001 3612  C:\Windows\System32\csrsrv.dll - ok
18:44:50.0001 3612  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
18:44:50.0001 3612  C:\Windows\System32\csrss.exe - ok
18:44:50.0001 3612  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
18:44:50.0001 3612  C:\Windows\System32\basesrv.dll - ok
18:44:50.0001 3612  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\System32\winsrv.dll
18:44:50.0001 3612  C:\Windows\System32\winsrv.dll - ok
18:44:50.0017 3612  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
18:44:50.0017 3612  C:\Windows\System32\drivers\monitor.sys - ok
18:44:50.0017 3612  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
18:44:50.0017 3612  C:\Windows\System32\tsddd.dll - ok
18:44:50.0017 3612  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
18:44:50.0017 3612  C:\Windows\System32\sxssrv.dll - ok
18:44:50.0017 3612  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
18:44:50.0017 3612  C:\Windows\System32\wininit.exe - ok
18:44:50.0017 3612  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
18:44:50.0017 3612  C:\Windows\System32\KBDUS.DLL - ok
18:44:50.0017 3612  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
18:44:50.0017 3612  C:\Windows\System32\profapi.dll - ok
18:44:50.0032 3612  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
18:44:50.0032 3612  C:\Windows\System32\RpcRtRemote.dll - ok
18:44:50.0032 3612  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
18:44:50.0032 3612  C:\Windows\System32\cdd.dll - ok
18:44:50.0032 3612  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
18:44:50.0032 3612  C:\Windows\System32\WlS0WndH.dll - ok
18:44:50.0032 3612  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
18:44:50.0032 3612  C:\Windows\System32\apphelp.dll - ok
18:44:50.0032 3612  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
18:44:50.0032 3612  C:\Windows\System32\services.exe - ok
18:44:50.0032 3612  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
18:44:50.0032 3612  C:\Windows\System32\sxs.dll - ok
18:44:50.0048 3612  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
18:44:50.0048 3612  C:\Windows\System32\cryptbase.dll - ok
18:44:50.0048 3612  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
18:44:50.0048 3612  C:\Windows\System32\lsasrv.dll - ok
18:44:50.0048 3612  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
18:44:50.0048 3612  C:\Windows\System32\lsass.exe - ok
18:44:50.0048 3612  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
18:44:50.0048 3612  C:\Windows\System32\lsm.exe - ok
18:44:50.0048 3612  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
18:44:50.0048 3612  C:\Windows\System32\sspicli.dll - ok
18:44:50.0048 3612  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
18:44:50.0048 3612  C:\Windows\System32\sspisrv.dll - ok
18:44:50.0064 3612  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
18:44:50.0064 3612  C:\Windows\System32\scesrv.dll - ok
18:44:50.0064 3612  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
18:44:50.0064 3612  C:\Windows\System32\scext.dll - ok
18:44:50.0064 3612  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
18:44:50.0064 3612  C:\Windows\System32\secur32.dll - ok
18:44:50.0064 3612  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
18:44:50.0064 3612  C:\Windows\System32\srvcli.dll - ok
18:44:50.0064 3612  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
18:44:50.0064 3612  C:\Windows\System32\samsrv.dll - ok
18:44:50.0064 3612  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
18:44:50.0064 3612  C:\Windows\System32\sysntfy.dll - ok
18:44:50.0079 3612  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
18:44:50.0079 3612  C:\Windows\System32\wmsgapi.dll - ok
18:44:50.0079 3612  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
18:44:50.0079 3612  C:\Windows\System32\cryptdll.dll - ok
18:44:50.0079 3612  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
18:44:50.0079 3612  C:\Windows\System32\wevtapi.dll - ok
18:44:50.0079 3612  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
18:44:50.0079 3612  C:\Windows\System32\authz.dll - ok
18:44:50.0079 3612  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
18:44:50.0079 3612  C:\Windows\System32\cngaudit.dll - ok
18:44:50.0079 3612  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
18:44:50.0079 3612  C:\Windows\System32\ncrypt.dll - ok
18:44:50.0095 3612  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
18:44:50.0095 3612  C:\Windows\System32\bcrypt.dll - ok
18:44:50.0095 3612  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
18:44:50.0095 3612  C:\Windows\System32\msprivs.dll - ok
18:44:50.0095 3612  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
18:44:50.0095 3612  C:\Windows\System32\netjoin.dll - ok
18:44:50.0095 3612  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
18:44:50.0095 3612  C:\Windows\System32\negoexts.dll - ok
18:44:50.0095 3612  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
18:44:50.0095 3612  C:\Windows\System32\kerberos.dll - ok
18:44:50.0095 3612  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
18:44:50.0095 3612  C:\Windows\System32\cryptsp.dll - ok
18:44:50.0110 3612  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
18:44:50.0110 3612  C:\Windows\System32\mswsock.dll - ok
18:44:50.0110 3612  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
18:44:50.0110 3612  C:\Windows\System32\msv1_0.dll - ok
18:44:50.0110 3612  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
18:44:50.0110 3612  C:\Windows\System32\wship6.dll - ok
18:44:50.0110 3612  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
18:44:50.0110 3612  C:\Windows\System32\netlogon.dll - ok
18:44:50.0110 3612  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
18:44:50.0110 3612  C:\Windows\System32\dnsapi.dll - ok
18:44:50.0110 3612  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
18:44:50.0110 3612  C:\Windows\System32\logoncli.dll - ok
18:44:50.0126 3612  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
18:44:50.0126 3612  C:\Windows\System32\schannel.dll - ok
18:44:50.0126 3612  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
18:44:50.0126 3612  C:\Windows\System32\wdigest.dll - ok
18:44:50.0126 3612  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
18:44:50.0126 3612  C:\Windows\System32\rsaenh.dll - ok
18:44:50.0126 3612  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
18:44:50.0126 3612  C:\Windows\System32\TSpkg.dll - ok
18:44:50.0126 3612  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
18:44:50.0126 3612  C:\Windows\System32\winlogon.exe - ok
18:44:50.0126 3612  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
18:44:50.0126 3612  C:\Windows\System32\pku2u.dll - ok
18:44:50.0142 3612  [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
18:44:50.0142 3612  C:\Windows\System32\LIVESSP.DLL - ok
18:44:50.0142 3612  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
18:44:50.0142 3612  C:\Windows\System32\winsta.dll - ok
18:44:50.0142 3612  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
18:44:50.0142 3612  C:\Windows\System32\bcryptprimitives.dll - ok
18:44:50.0142 3612  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
18:44:50.0142 3612  C:\Windows\System32\credssp.dll - ok
18:44:50.0142 3612  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
18:44:50.0142 3612  C:\Windows\System32\efslsaext.dll - ok
18:44:50.0157 3612  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
18:44:50.0157 3612  C:\Windows\System32\scecli.dll - ok
18:44:50.0157 3612  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
18:44:50.0157 3612  C:\Windows\System32\ubpm.dll - ok
18:44:50.0157 3612  [ 9594C7FE586907DCEF7F7A8313AFC276 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
18:44:50.0157 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll - ok
18:44:50.0157 3612  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
18:44:50.0157 3612  C:\Windows\System32\credui.dll - ok
18:44:50.0157 3612  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
18:44:50.0157 3612  C:\Windows\System32\wtsapi32.dll - ok
18:44:50.0157 3612  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
18:44:50.0157 3612  C:\Windows\System32\bthprops.cpl - ok
18:44:50.0157 3612  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
18:44:50.0157 3612  C:\Windows\System32\msimg32.dll - ok
18:44:50.0173 3612  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
18:44:50.0173 3612  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
18:44:50.0173 3612  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
18:44:50.0173 3612  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
18:44:50.0173 3612  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
18:44:50.0173 3612  C:\Windows\System32\svchost.exe - ok
18:44:50.0173 3612  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
18:44:50.0173 3612  C:\Windows\System32\umpnpmgr.dll - ok
18:44:50.0173 3612  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
18:44:50.0173 3612  C:\Windows\System32\SPInf.dll - ok
18:44:50.0188 3612  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
18:44:50.0188 3612  C:\Windows\System32\devrtl.dll - ok
18:44:50.0188 3612  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
18:44:50.0188 3612  C:\Windows\System32\userenv.dll - ok
18:44:50.0188 3612  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
18:44:50.0188 3612  C:\Windows\System32\gpapi.dll - ok
18:44:50.0188 3612  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
18:44:50.0188 3612  C:\Windows\System32\umpo.dll - ok
18:44:50.0188 3612  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
18:44:50.0188 3612  C:\Windows\System32\pcwum.dll - ok
18:44:50.0188 3612  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
18:44:50.0188 3612  C:\Windows\System32\powrprof.dll - ok
18:44:50.0204 3612  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
18:44:50.0204 3612  C:\Windows\System32\drivers\luafv.sys - ok
18:44:50.0204 3612  [ 92EB844D90615CB266F84C3202B8786E ] C:\Windows\System32\drivers\mbam.sys
18:44:50.0204 3612  C:\Windows\System32\drivers\mbam.sys - ok
18:44:50.0204 3612  [ F80BDC0D9E7B9595E74B434446AD3781 ] C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
18:44:50.0204 3612  C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe - ok
18:44:50.0204 3612  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
18:44:50.0204 3612  C:\Windows\SysWOW64\ntdll.dll - ok
18:44:50.0204 3612  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
18:44:50.0204 3612  C:\Windows\System32\wow64.dll - ok
18:44:50.0204 3612  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
18:44:50.0204 3612  C:\Windows\System32\wow64cpu.dll - ok
18:44:50.0220 3612  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
18:44:50.0220 3612  C:\Windows\System32\wow64win.dll - ok
18:44:50.0220 3612  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
18:44:50.0220 3612  C:\Windows\SysWOW64\kernel32.dll - ok
18:44:50.0220 3612  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
18:44:50.0220 3612  C:\Windows\SysWOW64\KernelBase.dll - ok
18:44:50.0220 3612  [ 529F85BC70CC73A7B3E99953AB711197 ] C:\Program Files (x86)\HP SimplePass 2012\TSLog.dll
18:44:50.0220 3612  C:\Program Files (x86)\HP SimplePass 2012\TSLog.dll - ok
18:44:50.0220 3612  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
18:44:50.0220 3612  C:\Windows\SysWOW64\cryptbase.dll - ok
18:44:50.0220 3612  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
18:44:50.0220 3612  C:\Windows\SysWOW64\msvcrt.dll - ok
18:44:50.0235 3612  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
18:44:50.0235 3612  C:\Windows\SysWOW64\profapi.dll - ok
18:44:50.0235 3612  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
18:44:50.0235 3612  C:\Windows\SysWOW64\rpcrt4.dll - ok
18:44:50.0235 3612  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
18:44:50.0235 3612  C:\Windows\SysWOW64\sechost.dll - ok
18:44:50.0235 3612  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
18:44:50.0235 3612  C:\Windows\SysWOW64\sspicli.dll - ok
18:44:50.0235 3612  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
18:44:50.0235 3612  C:\Windows\SysWOW64\userenv.dll - ok
18:44:50.0235 3612  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
18:44:50.0235 3612  C:\Windows\SysWOW64\wtsapi32.dll - ok
18:44:50.0251 3612  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
18:44:50.0251 3612  C:\Windows\SysWOW64\gdi32.dll - ok
18:44:50.0251 3612  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
18:44:50.0251 3612  C:\Windows\SysWOW64\lpk.dll - ok
18:44:50.0251 3612  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
18:44:50.0251 3612  C:\Windows\SysWOW64\user32.dll - ok
18:44:50.0251 3612  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
18:44:50.0251 3612  C:\Windows\SysWOW64\usp10.dll - ok
18:44:50.0251 3612  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
18:44:50.0251 3612  C:\Windows\SysWOW64\advapi32.dll - ok
18:44:50.0251 3612  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
18:44:50.0251 3612  C:\Windows\SysWOW64\shell32.dll - ok
18:44:50.0266 3612  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
18:44:50.0266 3612  C:\Windows\SysWOW64\ole32.dll - ok
18:44:50.0266 3612  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
18:44:50.0266 3612  C:\Windows\SysWOW64\shlwapi.dll - ok
18:44:50.0266 3612  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
18:44:50.0266 3612  C:\Windows\SysWOW64\winspool.drv - ok
18:44:50.0266 3612  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
18:44:50.0266 3612  C:\Windows\SysWOW64\imm32.dll - ok
18:44:50.0266 3612  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
18:44:50.0266 3612  C:\Windows\SysWOW64\oleacc.dll - ok
18:44:50.0266 3612  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
18:44:50.0266 3612  C:\Windows\SysWOW64\oleaut32.dll - ok
18:44:50.0282 3612  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
18:44:50.0282 3612  C:\Windows\System32\drivers\WUDFPf.sys - ok
18:44:50.0282 3612  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
18:44:50.0282 3612  C:\Windows\System32\rpcss.dll - ok
18:44:50.0282 3612  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
18:44:50.0282 3612  C:\Windows\SysWOW64\msctf.dll - ok
18:44:50.0282 3612  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
18:44:50.0282 3612  C:\Windows\SysWOW64\ntmarta.dll - ok
18:44:50.0282 3612  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
18:44:50.0282 3612  C:\Windows\SysWOW64\winsta.dll - ok
18:44:50.0282 3612  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
18:44:50.0282 3612  C:\Windows\SysWOW64\Wldap32.dll - ok
18:44:50.0298 3612  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
18:44:50.0298 3612  C:\Windows\System32\RpcEpMap.dll - ok
18:44:50.0298 3612  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
18:44:50.0298 3612  C:\Windows\System32\wshqos.dll - ok
18:44:50.0298 3612  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
18:44:50.0298 3612  C:\Windows\System32\WSHTCPIP.DLL - ok
18:44:50.0298 3612  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
18:44:50.0298 3612  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
18:44:50.0298 3612  [ DC5B5D3A1BF59A74ECA9C2EBB34574BE ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
18:44:50.0298 3612  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
18:44:50.0313 3612  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
18:44:50.0313 3612  C:\Windows\System32\FirewallAPI.dll - ok
18:44:50.0313 3612  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
18:44:50.0313 3612  C:\Windows\System32\LogonUI.exe - ok
18:44:50.0313 3612  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
18:44:50.0313 3612  C:\Windows\System32\authui.dll - ok
18:44:50.0313 3612  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
18:44:50.0313 3612  C:\Windows\System32\version.dll - ok
18:44:50.0313 3612  [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
18:44:50.0313 3612  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
18:44:50.0313 3612  [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
18:44:50.0313 3612  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
18:44:50.0329 3612  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
18:44:50.0329 3612  C:\Windows\System32\ntmarta.dll - ok
18:44:50.0329 3612  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
18:44:50.0329 3612  C:\Windows\System32\cryptui.dll - ok
18:44:50.0329 3612  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
18:44:50.0329 3612  C:\Windows\System32\shacct.dll - ok
18:44:50.0329 3612  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
18:44:50.0329 3612  C:\Windows\System32\samlib.dll - ok
18:44:50.0329 3612  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
18:44:50.0329 3612  C:\Windows\System32\propsys.dll - ok
18:44:50.0344 3612  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
18:44:50.0344 3612  C:\Windows\System32\uxtheme.dll - ok
18:44:50.0344 3612  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
18:44:50.0344 3612  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
18:44:50.0344 3612  [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
18:44:50.0344 3612  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
18:44:50.0344 3612  [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
18:44:50.0344 3612  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
18:44:50.0344 3612  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
18:44:50.0344 3612  C:\Windows\System32\dui70.dll - ok
18:44:50.0360 3612  [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
18:44:50.0360 3612  C:\Windows\System32\fltLib.dll - ok
18:44:50.0360 3612  [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
18:44:50.0360 3612  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
18:44:50.0360 3612  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
18:44:50.0360 3612  C:\Windows\System32\drivers\MpFilter.sys - ok
18:44:50.0360 3612  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
18:44:50.0360 3612  C:\Windows\System32\duser.dll - ok
18:44:50.0360 3612  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
18:44:50.0360 3612  C:\Windows\System32\wevtsvc.dll - ok
18:44:50.0360 3612  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
18:44:50.0360 3612  C:\Windows\System32\SndVolSSO.dll - ok
18:44:50.0376 3612  [ 12FD09889C8A6141C8D10F7AE48BBAC8 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
18:44:50.0376 3612  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
18:44:50.0376 3612  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
18:44:50.0376 3612  C:\Windows\System32\dwmapi.dll - ok
18:44:50.0376 3612  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
18:44:50.0376 3612  C:\Windows\System32\hid.dll - ok
18:44:50.0376 3612  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
18:44:50.0376 3612  C:\Windows\System32\MMDevAPI.dll - ok
18:44:50.0376 3612  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
18:44:50.0376 3612  C:\Windows\System32\xmllite.dll - ok
18:44:50.0376 3612  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
18:44:50.0376 3612  C:\Windows\System32\WindowsCodecs.dll - ok
18:44:50.0391 3612  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
18:44:50.0391 3612  C:\Windows\System32\adtschema.dll - ok
18:44:50.0391 3612  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
18:44:50.0391 3612  C:\Windows\System32\audiosrv.dll - ok
18:44:50.0391 3612  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
18:44:50.0391 3612  C:\Windows\System32\avrt.dll - ok
18:44:50.0391 3612  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
18:44:50.0391 3612  C:\Windows\System32\mmcss.dll - ok
18:44:50.0391 3612  [ 30042487E83BF3B518DD9B92A2F52F42 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B76FBB69-2B2D-428E-B6B3-5FBCC9D8C5E7}\mpengine.dll
18:44:50.0391 3612  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B76FBB69-2B2D-428E-B6B3-5FBCC9D8C5E7}\mpengine.dll - ok
18:44:50.0407 3612  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
18:44:50.0407 3612  C:\Windows\System32\winbrand.dll - ok
18:44:50.0407 3612  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
18:44:50.0407 3612  C:\Windows\System32\VaultCredProvider.dll - ok
18:44:50.0407 3612  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
18:44:50.0407 3612  C:\Windows\System32\profsvc.dll - ok
18:44:50.0407 3612  [ A4B101E52DDB9670FACDB2B87504C617 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
18:44:50.0407 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
18:44:50.0407 3612  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
18:44:50.0407 3612  C:\Windows\System32\radardt.dll - ok
18:44:50.0407 3612  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
18:44:50.0407 3612  C:\Windows\System32\netprofm.dll - ok
18:44:50.0422 3612  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
18:44:50.0422 3612  C:\Windows\System32\winspool.drv - ok
18:44:50.0422 3612  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:44:50.0422 3612  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:44:50.0422 3612  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
18:44:50.0422 3612  C:\Windows\System32\audiodg.exe - ok
18:44:50.0422 3612  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
18:44:50.0422 3612  C:\Windows\System32\wlansvc.dll - ok
18:44:50.0422 3612  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
18:44:50.0422 3612  C:\Windows\System32\BioCredProv.dll - ok
18:44:50.0422 3612  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
18:44:50.0422 3612  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
18:44:50.0438 3612  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
18:44:50.0438 3612  C:\Windows\System32\drivers\fltMgr.sys - ok
18:44:50.0438 3612  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
18:44:50.0438 3612  C:\Windows\System32\netapi32.dll - ok
18:44:50.0438 3612  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
18:44:50.0438 3612  C:\Windows\System32\netutils.dll - ok
18:44:50.0438 3612  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
18:44:50.0438 3612  C:\Windows\System32\PSHED.DLL - ok
18:44:50.0438 3612  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
18:44:50.0438 3612  C:\Windows\System32\vaultcli.dll - ok
18:44:50.0438 3612  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
18:44:50.0438 3612  C:\Windows\System32\winbio.dll - ok
18:44:50.0454 3612  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
18:44:50.0454 3612  C:\Windows\System32\wkscli.dll - ok
18:44:50.0454 3612  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
18:44:50.0454 3612  C:\Windows\System32\gpsvc.dll - ok
18:44:50.0454 3612  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
18:44:50.0454 3612  C:\Windows\System32\MPSSVC.dll - ok
18:44:50.0454 3612  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
18:44:50.0454 3612  C:\Windows\System32\samcli.dll - ok
18:44:50.0454 3612  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
18:44:50.0454 3612  C:\Windows\System32\winmm.dll - ok
18:44:50.0454 3612  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
18:44:50.0454 3612  C:\Windows\System32\atl.dll - ok
18:44:50.0469 3612  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
18:44:50.0469 3612  C:\Windows\System32\nlaapi.dll - ok
18:44:50.0469 3612  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
18:44:50.0469 3612  C:\Windows\System32\themeservice.dll - ok
18:44:50.0469 3612  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
18:44:50.0469 3612  C:\Windows\System32\certCredProvider.dll - ok
18:44:50.0469 3612  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
18:44:50.0469 3612  C:\Windows\System32\dsrole.dll - ok
18:44:50.0469 3612  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
18:44:50.0469 3612  C:\Windows\System32\es.dll - ok
18:44:50.0469 3612  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
18:44:50.0469 3612  C:\Windows\System32\slc.dll - ok
18:44:50.0485 3612  [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
18:44:50.0485 3612  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
18:44:50.0485 3612  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
18:44:50.0485 3612  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
18:44:50.0485 3612  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
18:44:50.0485 3612  C:\Windows\System32\rasplap.dll - ok
18:44:50.0485 3612  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
18:44:50.0485 3612  C:\Windows\System32\comres.dll - ok
18:44:50.0485 3612  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] C:\Windows\System32\hpservice.exe
18:44:50.0485 3612  C:\Windows\System32\hpservice.exe - ok
18:44:50.0485 3612  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
18:44:50.0485 3612  C:\Windows\System32\Sens.dll - ok
18:44:50.0500 3612  [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
18:44:50.0500 3612  C:\Windows\System32\mfc42u.dll - ok
18:44:50.0500 3612  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
18:44:50.0500 3612  C:\Windows\System32\rasapi32.dll - ok
18:44:50.0500 3612  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
18:44:50.0500 3612  C:\Windows\System32\rasman.dll - ok
18:44:50.0500 3612  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
18:44:50.0500 3612  C:\Windows\System32\rtutils.dll - ok
18:44:50.0500 3612  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
18:44:50.0500 3612  C:\Windows\System32\wdmaud.drv - ok
18:44:50.0500 3612  [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
18:44:50.0500 3612  C:\Windows\System32\odbc32.dll - ok
18:44:50.0516 3612  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
18:44:50.0516 3612  C:\Windows\System32\ksuser.dll - ok
18:44:50.0516 3612  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
18:44:50.0516 3612  C:\Windows\System32\UXInit.dll - ok
18:44:50.0516 3612  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
18:44:50.0516 3612  C:\Windows\System32\oleacc.dll - ok
18:44:50.0516 3612  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
18:44:50.0516 3612  C:\Windows\System32\UIAutomationCore.dll - ok
18:44:50.0516 3612  [ E83C1989A52459D6D8E143AC9F23C93D ] C:\Windows\System32\accelerometerdll.DLL
18:44:50.0516 3612  C:\Windows\System32\accelerometerdll.DLL - ok
18:44:50.0516 3612  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
18:44:50.0516 3612  C:\Windows\System32\odbcint.dll - ok
18:44:50.0532 3612  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
18:44:50.0532 3612  C:\Windows\System32\uxsms.dll - ok
18:44:50.0532 3612  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
18:44:50.0532 3612  C:\Windows\System32\WUDFPlatform.dll - ok
18:44:50.0532 3612  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
18:44:50.0532 3612  C:\Windows\System32\WUDFSvc.dll - ok
18:44:50.0532 3612  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
18:44:50.0532 3612  C:\Windows\System32\drivers\lltdio.sys - ok
18:44:50.0532 3612  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
18:44:50.0532 3612  C:\Windows\System32\drivers\ndisuio.sys - ok
18:44:50.0532 3612  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
18:44:50.0532 3612  C:\Windows\System32\drivers\nwifi.sys - ok
18:44:50.0547 3612  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
18:44:50.0547 3612  C:\Windows\System32\drivers\rspndr.sys - ok
18:44:50.0547 3612  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
18:44:50.0547 3612  C:\Windows\System32\IPHLPAPI.DLL - ok
18:44:50.0547 3612  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
18:44:50.0547 3612  C:\Windows\System32\lmhsvc.dll - ok
18:44:50.0547 3612  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
18:44:50.0547 3612  C:\Windows\System32\nsisvc.dll - ok
18:44:50.0547 3612  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
18:44:50.0547 3612  C:\Windows\System32\AudioSes.dll - ok
18:44:50.0547 3612  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
18:44:50.0547 3612  C:\Windows\System32\dhcpcore.dll - ok
18:44:50.0563 3612  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
18:44:50.0563 3612  C:\Windows\System32\dnsrslvr.dll - ok
18:44:50.0563 3612  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
18:44:50.0563 3612  C:\Windows\System32\keyiso.dll - ok
18:44:50.0563 3612  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
18:44:50.0563 3612  C:\Windows\System32\nrpsrv.dll - ok
18:44:50.0563 3612  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
18:44:50.0563 3612  C:\Windows\System32\winnsi.dll - ok
18:44:50.0563 3612  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
18:44:50.0563 3612  C:\Windows\System32\dhcpcore6.dll - ok
18:44:50.0578 3612  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
18:44:50.0578 3612  C:\Windows\System32\eapphost.dll - ok
18:44:50.0578 3612  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
18:44:50.0578 3612  C:\Windows\System32\eapsvc.dll - ok
18:44:50.0578 3612  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
18:44:50.0578 3612  C:\Windows\System32\midimap.dll - ok
18:44:50.0578 3612  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
18:44:50.0578 3612  C:\Windows\System32\msacm32.dll - ok
18:44:50.0578 3612  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
18:44:50.0578 3612  C:\Windows\System32\msacm32.drv - ok
18:44:50.0578 3612  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
18:44:50.0594 3612  C:\Windows\System32\umb.dll - ok
18:44:50.0594 3612  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
18:44:50.0594 3612  C:\Windows\System32\wlanmsm.dll - ok
18:44:50.0594 3612  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
18:44:50.0594 3612  C:\Windows\System32\AudioEng.dll - ok
18:44:50.0594 3612  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
18:44:50.0594 3612  C:\Windows\System32\imageres.dll - ok
18:44:50.0594 3612  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
18:44:50.0594 3612  C:\Windows\System32\FWPUCLNT.DLL - ok
18:44:50.0594 3612  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
18:44:50.0594 3612  C:\Windows\System32\wlansec.dll - ok
18:44:50.0594 3612  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
18:44:50.0594 3612  C:\Windows\System32\AUDIOKSE.dll - ok
18:44:50.0610 3612  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
18:44:50.0610 3612  C:\Windows\System32\dnsext.dll - ok
18:44:50.0610 3612  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
18:44:50.0610 3612  C:\Windows\System32\dhcpcsvc.dll - ok
18:44:50.0610 3612  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
18:44:50.0610 3612  C:\Windows\System32\eappprxy.dll - ok
18:44:50.0610 3612  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
18:44:50.0610 3612  C:\Windows\System32\onex.dll - ok
18:44:50.0610 3612  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
18:44:50.0610 3612  C:\Windows\System32\eappcfg.dll - ok
18:44:50.0625 3612  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
18:44:50.0625 3612  C:\Windows\System32\dhcpcsvc6.dll - ok
18:44:50.0625 3612  [ 3A23FEBAFB6A2B82621F3309DA158EC1 ] C:\Windows\System32\stapo64.dll
18:44:50.0625 3612  C:\Windows\System32\stapo64.dll - ok
18:44:50.0625 3612  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
18:44:50.0625 3612  C:\Windows\System32\l2gpstore.dll - ok
18:44:50.0625 3612  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
18:44:50.0625 3612  C:\Windows\System32\WinSCard.dll - ok
18:44:50.0625 3612  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
18:44:50.0625 3612  C:\Windows\System32\wlanutil.dll - ok
18:44:50.0625 3612  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
18:44:50.0625 3612  C:\Windows\System32\wlgpclnt.dll - ok
18:44:50.0641 3612  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
18:44:50.0641 3612  C:\Windows\System32\msxml6.dll - ok
18:44:50.0641 3612  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
18:44:50.0641 3612  C:\Windows\System32\shsvcs.dll - ok
18:44:50.0641 3612  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
18:44:50.0641 3612  C:\Windows\System32\wlanext.exe - ok
18:44:50.0641 3612  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
18:44:50.0641 3612  C:\Windows\System32\conhost.exe - ok
18:44:50.0641 3612  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
18:44:50.0641 3612  C:\Windows\System32\schedsvc.dll - ok
18:44:50.0641 3612  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
18:44:50.0641 3612  C:\Windows\System32\ktmw32.dll - ok
18:44:50.0656 3612  [ 00C638CD8EDD5E9507720D6FC7A420CB ] C:\Windows\System32\iwmssvc.dll
18:44:50.0656 3612  C:\Windows\System32\iwmssvc.dll - ok
18:44:50.0656 3612  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
18:44:50.0656 3612  C:\Windows\System32\fveapi.dll - ok
18:44:50.0656 3612  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
18:44:50.0656 3612  C:\Windows\System32\fvecerts.dll - ok
18:44:50.0656 3612  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
18:44:50.0656 3612  C:\Windows\System32\taskcomp.dll - ok
18:44:50.0656 3612  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
18:44:50.0656 3612  C:\Windows\System32\tbs.dll - ok
18:44:50.0656 3612  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
18:44:50.0656 3612  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
18:44:50.0672 3612  [ D844B11545F53AA0C10F78763381D9EC ] C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll
18:44:50.0672 3612  C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll - ok
18:44:50.0672 3612  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
18:44:50.0672 3612  C:\Windows\System32\wlanapi.dll - ok
18:44:50.0672 3612  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
18:44:50.0672 3612  C:\Windows\System32\drivers\http.sys - ok
18:44:50.0672 3612  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
18:44:50.0672 3612  C:\Windows\System32\spoolsv.exe - ok
18:44:50.0672 3612  [ 3D6E663B8E44885A7D5B414EB463432E ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
18:44:50.0672 3612  C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
18:44:50.0672 3612  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
18:44:50.0672 3612  C:\Windows\System32\wsock32.dll - ok
18:44:50.0688 3612  [ 5106691D3EC4B4461A87DC2C7E4552FB ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll
18:44:50.0688 3612  C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll - ok
18:44:50.0688 3612  [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
18:44:50.0688 3612  C:\Windows\System32\vaultsvc.dll - ok
18:44:50.0688 3612  [ F10FA173FC753F2D4FD097925F19AC79 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
18:44:50.0688 3612  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
18:44:50.0688 3612  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
18:44:50.0688 3612  C:\Windows\System32\wiarpc.dll - ok
18:44:50.0688 3612  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
18:44:50.0688 3612  C:\Windows\System32\wbiosrvc.dll - ok
18:44:50.0688 3612  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
18:44:50.0688 3612  C:\Windows\System32\BFE.DLL - ok
18:44:50.0703 3612  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
18:44:50.0703 3612  C:\Windows\System32\drivers\bowser.sys - ok
18:44:50.0703 3612  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
18:44:50.0703 3612  C:\Windows\System32\drivers\mpsdrv.sys - ok
18:44:50.0703 3612  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
18:44:50.0703 3612  C:\Windows\System32\drivers\mrxsmb.sys - ok
18:44:50.0703 3612  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
18:44:50.0703 3612  C:\Windows\System32\drivers\mrxsmb10.sys - ok
18:44:50.0703 3612  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
18:44:50.0703 3612  C:\Windows\System32\drivers\mrxsmb20.sys - ok
18:44:50.0703 3612  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
18:44:50.0703 3612  C:\Windows\System32\wkssvc.dll - ok
18:44:50.0719 3612  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
18:44:50.0719 3612  C:\Windows\System32\wfapigp.dll - ok
18:44:50.0719 3612  [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:44:50.0719 3612  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
18:44:50.0719 3612  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
18:44:50.0719 3612  C:\Windows\SysWOW64\crypt32.dll - ok
18:44:50.0719 3612  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
18:44:50.0719 3612  C:\Windows\System32\mscms.dll - ok
18:44:50.0719 3612  [ 9108224CD582C0B2699A6EEDC6757A1F ] C:\Windows\System32\WinBioPlugIns\ATSensorAdapter.dll
18:44:50.0719 3612  C:\Windows\System32\WinBioPlugIns\ATSensorAdapter.dll - ok
18:44:50.0719 3612  [ 217E898AF907643B43346691D981360F ] C:\Windows\System32\WinBioPlugIns\ATEngineAdapter.dll
18:44:50.0719 3612  C:\Windows\System32\WinBioPlugIns\ATEngineAdapter.dll - ok
18:44:50.0734 3612  [ 056D5D304B880AD099DA6D0E7A0C138D ] C:\Windows\System32\WinBioPlugIns\winbiosensoradapter.dll
18:44:50.0734 3612  C:\Windows\System32\WinBioPlugIns\winbiosensoradapter.dll - ok
18:44:50.0734 3612  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
18:44:50.0734 3612  C:\Windows\SysWOW64\msasn1.dll - ok
18:44:50.0734 3612  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
18:44:50.0734 3612  C:\Windows\SysWOW64\wintrust.dll - ok
18:44:50.0734 3612  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
18:44:50.0734 3612  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
18:44:50.0734 3612  [ 8EAEDC04E03DB8D1265A29FA8D7D9872 ] C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
18:44:50.0734 3612  C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe - ok
18:44:50.0750 3612  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
18:44:50.0750 3612  C:\Windows\System32\pcasvc.dll - ok
18:44:50.0750 3612  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
18:44:50.0750 3612  C:\Windows\System32\snmptrap.exe - ok
18:44:50.0750 3612  [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
18:44:50.0750 3612  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
18:44:50.0750 3612  [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
18:44:50.0750 3612  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
18:44:50.0750 3612  [ D41526C0E9214BD8AB239B2C02541B18 ] C:\Windows\System32\WinBioPlugIns\winbiostorageadapter.dll
18:44:50.0750 3612  C:\Windows\System32\WinBioPlugIns\winbiostorageadapter.dll - ok
18:44:50.0750 3612  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
18:44:50.0750 3612  C:\Windows\System32\sstpsvc.dll - ok
18:44:50.0766 3612  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
18:44:50.0766 3612  C:\Windows\System32\provsvc.dll - ok
18:44:50.0766 3612  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
18:44:50.0766 3612  C:\Windows\System32\winhttp.dll - ok
18:44:50.0766 3612  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
18:44:50.0766 3612  C:\Windows\System32\webio.dll - ok
18:44:50.0766 3612  [ 8DD1CA4FCF8B875725FE049ACD3800E4 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
18:44:50.0766 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
18:44:50.0766 3612  [ BB8796E2D68D0AECDD054151BCD2F6AA ] C:\Program Files\WIDCOMM\Bluetooth Software\btwlelib.dll
18:44:50.0766 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btwlelib.dll - ok
18:44:50.0766 3612  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
18:44:50.0766 3612  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
18:44:50.0781 3612  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
18:44:50.0781 3612  C:\Windows\System32\cryptsvc.dll - ok
18:44:50.0781 3612  [ B5581646636759D0DAFA8B008881C079 ] C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
18:44:50.0781 3612  C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE - ok
18:44:50.0781 3612  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
18:44:50.0781 3612  C:\Windows\System32\dps.dll - ok
18:44:50.0781 3612  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
18:44:50.0781 3612  C:\Windows\System32\cryptnet.dll - ok
18:44:50.0781 3612  [ D222579C912E5871100838F5A4FCCA77 ] C:\Windows\System32\RpcNs4.dll
18:44:50.0781 3612  C:\Windows\System32\RpcNs4.dll - ok
18:44:50.0781 3612  [ 34B23888E9F0CF99844C334A118ADD4E ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
18:44:50.0781 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
18:44:50.0797 3612  [ 1E345F2A2D95DA3190596E691CDE9342 ] C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
18:44:50.0797 3612  C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE - ok
18:44:50.0797 3612  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
18:44:50.0797 3612  C:\Windows\System32\vssapi.dll - ok
18:44:50.0797 3612  [ E3A96D5AE6E5C7B5472011BA77353368 ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:44:50.0797 3612  C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok
18:44:50.0797 3612  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
18:44:50.0797 3612  C:\Windows\System32\taskschd.dll - ok
18:44:50.0797 3612  [ 9D7A0D57CE2B7E2DB55319350143B91C ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
18:44:50.0797 3612  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
18:44:50.0797 3612  [ 3A015839ECB711C48B5EFE1935EC5E2B ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
18:44:50.0812 3612  C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok
18:44:50.0812 3612  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
18:44:50.0812 3612  C:\Windows\System32\msi.dll - ok
18:44:50.0812 3612  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
18:44:50.0812 3612  C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe - ok
18:44:50.0812 3612  [ D2F49F016386610E204133854D5A9141 ] C:\Program Files\Intel\WiFi\bin\iWrap.exe
18:44:50.0812 3612  C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok
18:44:50.0812 3612  [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
18:44:50.0812 3612  C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
18:44:50.0812 3612  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
18:44:50.0812 3612  C:\Windows\System32\vsstrace.dll - ok
18:44:50.0828 3612  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
18:44:50.0828 3612  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
18:44:50.0828 3612  [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
18:44:50.0828 3612  C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
18:44:50.0828 3612  [ 7E8DE1568CE329DEEAB294C3F78DE54D ] C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:44:50.0828 3612  C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - ok
18:44:50.0828 3612  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
18:44:50.0828 3612  C:\Windows\System32\oledlg.dll - ok
18:44:50.0828 3612  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
18:44:50.0828 3612  C:\Windows\SysWOW64\version.dll - ok
18:44:50.0828 3612  [ 491CE9B6321FB74E4B37AF2C47F98434 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
18:44:50.0828 3612  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - ok
18:44:50.0844 3612  [ B3650DBA450085865324AE4C355DF875 ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
18:44:50.0844 3612  C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
18:44:50.0844 3612  [ FB24438F64BAF5198EE7648B51FD3AB0 ] C:\Windows\System32\cacls.exe
18:44:50.0844 3612  C:\Windows\System32\cacls.exe - ok
18:44:50.0844 3612  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\msvcr100.dll
18:44:50.0844 3612  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\msvcr100.dll - ok
18:44:50.0844 3612  [ 945B827B4D7238FB1E18D574231765DB ] C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe
18:44:50.0844 3612  C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe - ok
18:44:50.0844 3612  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:44:50.0844 3612  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:44:50.0844 3612  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
18:44:50.0844 3612  C:\Windows\SysWOW64\nsi.dll - ok
18:44:50.0859 3612  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
18:44:50.0859 3612  C:\Windows\SysWOW64\ws2_32.dll - ok
18:44:50.0859 3612  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
18:44:50.0859 3612  C:\Windows\SysWOW64\winnsi.dll - ok
18:44:50.0859 3612  [ E2CB7462571223800606794684B293E4 ] C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
18:44:50.0859 3612  C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll - ok
18:44:50.0859 3612  [ C7D4D685A0AF2A09CBC21CB474358595 ] C:\Program Files (x86)\Hotspot Shield\bin\zlib1.dll
18:44:50.0859 3612  C:\Program Files (x86)\Hotspot Shield\bin\zlib1.dll - ok
18:44:50.0859 3612  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
18:44:50.0859 3612  C:\Windows\SysWOW64\mswsock.dll - ok
18:44:50.0859 3612  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
18:44:50.0875 3612  C:\Windows\SysWOW64\winmm.dll - ok
18:44:50.0875 3612  [ 509B8010AE0464FB2F69CADFBB26E8DA ] C:\Program Files (x86)\Hotspot Shield\HssWPR\HssSrv.exe
18:44:50.0875 3612  C:\Program Files (x86)\Hotspot Shield\HssWPR\HssSrv.exe - ok
18:44:50.0875 3612  [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
18:44:50.0875 3612  C:\Windows\SysWOW64\wininet.dll - ok
18:44:50.0875 3612  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
18:44:50.0875 3612  C:\Windows\SysWOW64\wsock32.dll - ok
18:44:50.0875 3612  [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
18:44:50.0875 3612  C:\Windows\SysWOW64\iertutil.dll - ok
18:44:50.0875 3612  [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
18:44:50.0875 3612  C:\Windows\SysWOW64\urlmon.dll - ok
18:44:50.0875 3612  [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
18:44:50.0890 3612  C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
18:44:50.0890 3612  [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
18:44:50.0890 3612  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
18:44:50.0890 3612  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
18:44:50.0890 3612  C:\Windows\System32\cabinet.dll - ok
18:44:50.0890 3612  [ F3ECFED48C347FC08FEA73CBC65426C8 ] C:\Windows\SysWOW64\HMIPCore.dll
18:44:50.0890 3612  C:\Windows\SysWOW64\HMIPCore.dll - ok
18:44:50.0890 3612  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
18:44:50.0890 3612  C:\Windows\SysWOW64\wship6.dll - ok
18:44:50.0890 3612  [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
18:44:50.0890 3612  C:\Windows\SysWOW64\wshqos.dll - ok
18:44:50.0906 3612  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
18:44:50.0906 3612  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
18:44:50.0906 3612  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
18:44:50.0906 3612  C:\Windows\System32\wscapi.dll - ok
18:44:50.0906 3612  [ 65603557909D7E9AC21153455A2BA92A ] C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
18:44:50.0906 3612  C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe - ok
18:44:50.0906 3612  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
18:44:50.0906 3612  C:\Windows\SysWOW64\psapi.dll - ok
18:44:50.0906 3612  [ BB5A60255C48FF7010C616A91313AAFB ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
18:44:50.0906 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
18:44:50.0906 3612  [ 57280EA7B6F0BBC90B56985ECFC08E49 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll
18:44:50.0906 3612  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok
18:44:50.0922 3612  [ 01253E13A9F653E22CF81ABF805A436C ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
18:44:50.0922 3612  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
18:44:50.0922 3612  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
18:44:50.0922 3612  C:\Windows\System32\p2pcollab.dll - ok
18:44:50.0922 3612  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
18:44:50.0922 3612  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
18:44:50.0922 3612  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
18:44:50.0922 3612  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
18:44:50.0922 3612  [ 36D3956D08D2735A50DBC56026D2629D ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
18:44:50.0922 3612  C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok
18:44:50.0922 3612  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
18:44:50.0922 3612  C:\Windows\System32\netcfgx.dll - ok
18:44:50.0937 3612  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
18:44:50.0937 3612  C:\Windows\SysWOW64\dnsapi.dll - ok
18:44:50.0937 3612  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
18:44:50.0937 3612  C:\Windows\SysWOW64\NapiNSP.dll - ok
18:44:50.0937 3612  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
18:44:50.0937 3612  C:\Windows\SysWOW64\nlaapi.dll - ok
18:44:50.0937 3612  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
18:44:50.0937 3612  C:\Windows\SysWOW64\pnrpnsp.dll - ok
18:44:50.0937 3612  [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
18:44:50.0937 3612  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
18:44:50.0937 3612  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
18:44:50.0937 3612  C:\Windows\SysWOW64\secur32.dll - ok
18:44:50.0953 3612  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
18:44:50.0953 3612  C:\Windows\SysWOW64\winrnr.dll - ok
18:44:50.0953 3612  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
18:44:50.0953 3612  C:\Windows\SysWOW64\wshbth.dll - ok
18:44:50.0953 3612  [ 3A0FF117B4ADC5ABE4D968E26A337158 ] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
18:44:50.0953 3612  C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe - ok
18:44:50.0953 3612  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
18:44:50.0953 3612  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
18:44:50.0953 3612  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
18:44:50.0953 3612  C:\Windows\System32\QAGENTRT.DLL - ok
18:44:50.0953 3612  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
18:44:50.0953 3612  C:\Windows\System32\IKEEXT.DLL - ok
18:44:50.0968 3612  [ 24D261738C2AFB8A8D10821440C49EAA ] C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
18:44:50.0968 3612  C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe - ok
18:44:50.0968 3612  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
18:44:50.0968 3612  C:\Windows\System32\fveui.dll - ok
18:44:50.0968 3612  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
18:44:50.0968 3612  C:\Windows\SysWOW64\powrprof.dll - ok
18:44:50.0968 3612  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
18:44:50.0968 3612  C:\Windows\SysWOW64\setupapi.dll - ok
18:44:50.0968 3612  [ 8D99ACD0AC1750E98AAA41E5DCB83E10 ] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll
18:44:50.0968 3612  C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll - ok
18:44:50.0968 3612  [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
18:44:50.0968 3612  C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
18:44:50.0984 3612  [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
18:44:50.0984 3612  C:\Windows\System32\slwga.dll - ok
18:44:50.0984 3612  [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
18:44:50.0984 3612  C:\Windows\System32\sppc.dll - ok
18:44:50.0984 3612  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
18:44:50.0984 3612  C:\Windows\System32\vpnikeapi.dll - ok
18:44:50.0984 3612  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
18:44:50.0984 3612  C:\Windows\SysWOW64\rasapi32.dll - ok
18:44:50.0984 3612  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
18:44:50.0984 3612  C:\Windows\SysWOW64\rasman.dll - ok
18:44:50.0984 3612  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
18:44:50.0984 3612  C:\Windows\SysWOW64\rtutils.dll - ok
18:44:51.0000 3612  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
18:44:51.0000 3612  C:\Windows\SysWOW64\SensApi.dll - ok
18:44:51.0000 3612  [ F18F1A46A0A30A33295DBE545C25E6D6 ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
18:44:51.0000 3612  C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok
18:44:51.0000 3612  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
18:44:51.0000 3612  C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:44:51.0000 3612  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
18:44:51.0000 3612  C:\Windows\SysWOW64\devobj.dll - ok
18:44:51.0000 3612  [ 6CD965E91D3A603682C15B5C263EBA9B ] C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
18:44:51.0000 3612  C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll - ok
18:44:51.0015 3612  [ DAF59C8141B26B4127E009BD72E63352 ] C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\wpcap.dll
18:44:51.0015 3612  C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\wpcap.dll - ok
18:44:51.0015 3612  [ 122F8FA4CFBD7761EB75C1D2AD0CB868 ] C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\Packet.dll
18:44:51.0015 3612  C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\Packet.dll - ok
18:44:51.0015 3612  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
18:44:51.0015 3612  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
18:44:51.0015 3612  [ 6C85719A21B3F62C2C76280F4BD36C7B ] C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
18:44:51.0015 3612  C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe - ok
18:44:51.0015 3612  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:44:51.0015 3612  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
18:44:51.0015 3612  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
18:44:51.0015 3612  C:\Windows\SysWOW64\clbcatq.dll - ok
18:44:51.0031 3612  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
18:44:51.0031 3612  C:\Windows\SysWOW64\cryptsp.dll - ok
18:44:51.0031 3612  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
18:44:51.0031 3612  C:\Windows\System32\wbemcomn.dll - ok
18:44:51.0031 3612  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
18:44:51.0031 3612  C:\Windows\System32\wbem\wbemprox.dll - ok
18:44:51.0031 3612  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
18:44:51.0031 3612  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
18:44:51.0046 3612  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
18:44:51.0046 3612  C:\Windows\SysWOW64\rsaenh.dll - ok
18:44:51.0046 3612  [ 8624E0E2418413614EE1FECDB7B76B88 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
18:44:51.0046 3612  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
18:44:51.0046 3612  [ D4467A285C91752018F67CDBA8680BAB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
18:44:51.0046 3612  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
18:44:51.0046 3612  [ D3AEDE465A72CF6F777413F04DF7F7D2 ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
18:44:51.0046 3612  C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
18:44:51.0046 3612  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
18:44:51.0046 3612  C:\Windows\System32\dllhost.exe - ok
18:44:51.0046 3612  [ AE97813FF1182B2B7B853E27FA2AF071 ] C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\iSCTHIDMonitor.exe
18:44:51.0046 3612  C:\Program Files (x86)\Intel\Intel® Smart Connect Technology Agent\iSCTHIDMonitor.exe - ok
18:44:51.0062 3612  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
18:44:51.0062 3612  C:\Windows\SysWOW64\apphelp.dll - ok
18:44:51.0062 3612  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:44:51.0062 3612  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
18:44:51.0062 3612  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
18:44:51.0062 3612  C:\Windows\System32\IDStore.dll - ok
18:44:51.0062 3612  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
18:44:51.0062 3612  C:\Windows\System32\taskhost.exe - ok
18:44:51.0062 3612  [ EE6269B47E49DAA450B11A12C9A25FD5 ] C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe
18:44:51.0062 3612  C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe - ok
18:44:51.0062 3612  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
18:44:51.0062 3612  C:\Windows\SysWOW64\propsys.dll - ok
18:44:51.0078 3612  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
18:44:51.0078 3612  C:\Windows\System32\AtBroker.exe - ok
18:44:51.0078 3612  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
18:44:51.0078 3612  C:\Windows\System32\taskeng.exe - ok
18:44:51.0078 3612  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
18:44:51.0078 3612  C:\Windows\System32\drivers\vwifimp.sys - ok
18:44:51.0078 3612  [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
18:44:51.0078 3612  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
18:44:51.0078 3612  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
18:44:51.0078 3612  C:\Windows\System32\rasadhlp.dll - ok
18:44:51.0093 3612  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
18:44:51.0093 3612  C:\Windows\System32\localspl.dll - ok
18:44:51.0093 3612  [ C5CE5CE799387E82B7698A0EE5544A6D ] C:\Windows\System32\slui.exe
18:44:51.0093 3612  C:\Windows\System32\slui.exe - ok
18:44:51.0093 3612  [ 2CA49731C5CCB033288B78A2592DE27F ] C:\Windows\System32\sppcommdlg.dll
18:44:51.0093 3612  C:\Windows\System32\sppcommdlg.dll - ok
18:44:51.0093 3612  [ 067FA52BFB59A56110A12312EF9AF243 ] C:\Windows\System32\sppcomapi.dll
18:44:51.0093 3612  C:\Windows\System32\sppcomapi.dll - ok
18:44:51.0093 3612  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
18:44:51.0093 3612  C:\Windows\System32\spoolss.dll - ok
18:44:51.0093 3612  [ DDCAC2477FF82BCDD8782C3982B5BA06 ] C:\Windows\System32\E_ILMFCA.DLL
18:44:51.0093 3612  C:\Windows\System32\E_ILMFCA.DLL - ok
18:44:51.0093 3612  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
18:44:51.0093 3612  C:\Windows\System32\FXSMON.dll - ok
18:44:51.0109 3612  [ C5E82BCFD577AF98F3A7937A69A338B9 ] C:\Windows\System32\HPZ3LWN7.DLL
18:44:51.0109 3612  C:\Windows\System32\HPZ3LWN7.DLL - ok
18:44:51.0109 3612  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
18:44:51.0109 3612  C:\Windows\System32\PrintIsolationProxy.dll - ok
18:44:51.0109 3612  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
18:44:51.0109 3612  C:\Windows\System32\PlaySndSrv.dll - ok
18:44:51.0109 3612  [ 6490E8960C28412EDE6A3A8D7A030946 ] C:\Windows\System32\ssp4ml6.dll
18:44:51.0109 3612  C:\Windows\System32\ssp4ml6.dll - ok
18:44:51.0109 3612  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
18:44:51.0109 3612  C:\Windows\System32\tcpmon.dll - ok
18:44:51.0124 3612  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
18:44:51.0124 3612  C:\Windows\System32\snmpapi.dll - ok
18:44:51.0124 3612  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
18:44:51.0124 3612  C:\Windows\System32\wsnmp32.dll - ok
18:44:51.0124 3612  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
18:44:51.0124 3612  C:\Windows\System32\usbmon.dll - ok
18:44:51.0124 3612  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
18:44:51.0124 3612  C:\Windows\System32\WSDMon.dll - ok
18:44:51.0124 3612  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
18:44:51.0124 3612  C:\Windows\System32\MsCtfMonitor.dll - ok
18:44:51.0124 3612  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
18:44:51.0124 3612  C:\Windows\System32\msutb.dll - ok
18:44:51.0140 3612  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
18:44:51.0140 3612  C:\Windows\System32\HotStartUserAgent.dll - ok
18:44:51.0140 3612  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
18:44:51.0140 3612  C:\Windows\System32\WSDApi.dll - ok
18:44:51.0140 3612  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
18:44:51.0140 3612  C:\Windows\System32\webservices.dll - ok
18:44:51.0140 3612  [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll
18:44:51.0140 3612  C:\Windows\System32\sppcext.dll - ok
18:44:51.0140 3612  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
18:44:51.0140 3612  C:\Windows\SysWOW64\comdlg32.dll - ok
18:44:51.0140 3612  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
18:44:51.0140 3612  C:\Windows\SysWOW64\msimg32.dll - ok
18:44:51.0156 3612  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
18:44:51.0156 3612  C:\Windows\SysWOW64\oledlg.dll - ok
18:44:51.0156 3612  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
18:44:51.0156 3612  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
18:44:51.0156 3612  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
18:44:51.0156 3612  C:\Windows\System32\fundisc.dll - ok
18:44:51.0156 3612  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
18:44:51.0156 3612  C:\Windows\System32\fdPnp.dll - ok
18:44:51.0156 3612  [ 377DCECB137F43E29505A8A259ABBEC3 ] C:\Program Files (x86)\HP SimplePass 2012\BioLayer.dll
18:44:51.0156 3612  C:\Program Files (x86)\HP SimplePass 2012\BioLayer.dll - ok
18:44:51.0171 3612  [ 8F1C949FD695C83C4E30C3BFC004C81F ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
18:44:51.0265 3612  C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
18:44:51.0265 3612  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:44:51.0265 3612  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:44:51.0265 3612  [ 3C63D52B521553E8CE9E67474FB1F528 ] C:\Program Files (x86)\HP SimplePass 2012\TokenMachine.dll
18:44:51.0265 3612  C:\Program Files (x86)\HP SimplePass 2012\TokenMachine.dll - ok
18:44:51.0265 3612  [ A0C8FD908EAEA5D1F83D9C50DCBBF6E8 ] C:\Program Files (x86)\HP SimplePass 2012\TrueSuite.AutoSoftwareUpdate.dll
18:44:51.0265 3612  C:\Program Files (x86)\HP SimplePass 2012\TrueSuite.AutoSoftwareUpdate.dll - ok
18:44:51.0265 3612  [ 8564D9B4794E0E28312601091237ED18 ] C:\Windows\System32\spool\prtprocs\x64\ssp4mpc.dll
18:44:51.0265 3612  C:\Windows\System32\spool\prtprocs\x64\ssp4mpc.dll - ok
18:44:51.0265 3612  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
18:44:51.0265 3612  C:\Windows\System32\win32spl.dll - ok
18:44:51.0280 3612  [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
18:44:51.0280 3612  C:\Windows\SysWOW64\credui.dll - ok
18:44:51.0280 3612  [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\SysWOW64\winbio.dll
18:44:51.0280 3612  C:\Windows\SysWOW64\winbio.dll - ok
18:44:51.0280 3612  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
18:44:51.0280 3612  C:\Windows\SysWOW64\winhttp.dll - ok
18:44:51.0280 3612  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
18:44:51.0280 3612  C:\Windows\SysWOW64\webio.dll - ok
18:44:51.0280 3612  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
18:44:51.0280 3612  C:\Windows\System32\TSChannel.dll - ok
18:44:51.0280 3612  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:44:51.0280 3612  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
18:44:51.0296 3612  [ 4DD0E131B84623C0955925C9B798FFA8 ] C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe
18:44:51.0296 3612  C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe - ok
18:44:51.0296 3612  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
18:44:51.0296 3612  C:\Windows\SysWOW64\sxs.dll - ok
18:44:51.0296 3612  [ 0779A28E3470004026358D37C6EE120E ] C:\Program Files (x86)\Common Files\AuthenTec\TrueAPI.dll
18:44:51.0296 3612  C:\Program Files (x86)\Common Files\AuthenTec\TrueAPI.dll - ok
18:44:51.0296 3612  [ FEE8B315148155CEF188010C7EF25D6E ] C:\Program Files (x86)\HP SimplePass 2012\DataManager.dll
18:44:51.0296 3612  C:\Program Files (x86)\HP SimplePass 2012\DataManager.dll - ok
18:44:51.0296 3612  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
18:44:51.0296 3612  C:\Windows\System32\inetpp.dll - ok
18:44:51.0296 3612  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
18:44:51.0296 3612  C:\Windows\System32\cscapi.dll - ok
18:44:51.0312 3612  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
18:44:51.0312 3612  C:\Windows\System32\tapi32.dll - ok
18:44:51.0312 3612  [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
18:44:51.0312 3612  C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
18:44:51.0312 3612  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
18:44:51.0312 3612  C:\Windows\System32\netshell.dll - ok
18:44:51.0312 3612  [ 351F0410C62DE3714DEA15CEDD866BE0 ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
18:44:51.0312 3612  C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok
18:44:51.0312 3612  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
18:44:51.0312 3612  C:\Windows\SysWOW64\netapi32.dll - ok
18:44:51.0312 3612  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
18:44:51.0312 3612  C:\Windows\SysWOW64\netutils.dll - ok
18:44:51.0327 3612  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
18:44:51.0327 3612  C:\Windows\SysWOW64\imagehlp.dll - ok
18:44:51.0327 3612  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
18:44:51.0327 3612  C:\Windows\SysWOW64\msi.dll - ok
18:44:51.0327 3612  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
18:44:51.0327 3612  C:\Windows\SysWOW64\srvcli.dll - ok
18:44:51.0327 3612  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
18:44:51.0327 3612  C:\Windows\SysWOW64\wkscli.dll - ok
18:44:51.0327 3612  [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
18:44:51.0327 3612  C:\Windows\System32\ntprint.dll - ok
18:44:51.0327 3612  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
18:44:51.0327 3612  C:\Windows\SysWOW64\cscapi.dll - ok
18:44:51.0343 3612  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
18:44:51.0343 3612  C:\Windows\SysWOW64\dbghelp.dll - ok
18:44:51.0343 3612  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
18:44:51.0343 3612  C:\Windows\SysWOW64\bcrypt.dll - ok
18:44:51.0343 3612  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:44:51.0343 3612  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:44:51.0343 3612  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
18:44:51.0343 3612  C:\Windows\SysWOW64\ncrypt.dll - ok
18:44:51.0343 3612  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
18:44:51.0343 3612  C:\Windows\SysWOW64\gpapi.dll - ok
18:44:51.0358 3612  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
18:44:51.0358 3612  C:\Windows\SysWOW64\cryptnet.dll - ok
18:44:51.0358 3612  [ 4BE1DCAD76BE96D1EC887A41E570C404 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
18:44:51.0358 3612  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
18:44:51.0358 3612  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] C:\Windows\System32\drivers\NisDrvWFP.sys
18:44:51.0358 3612  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
18:44:51.0358 3612  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
18:44:51.0358 3612  C:\Windows\System32\nlasvc.dll - ok
18:44:51.0358 3612  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
18:44:51.0358 3612  C:\Windows\SysWOW64\mpr.dll - ok
18:44:51.0358 3612  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
18:44:51.0358 3612  C:\Windows\System32\aepic.dll - ok
18:44:51.0374 3612  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
18:44:51.0374 3612  C:\Windows\System32\drivers\PEAuth.sys - ok
18:44:51.0374 3612  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
18:44:51.0374 3612  C:\Windows\System32\sfc.dll - ok
18:44:51.0374 3612  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
18:44:51.0374 3612  C:\Windows\System32\sfc_os.dll - ok
18:44:51.0374 3612  [ FD11C1287D38A46FB72353E14D50089C ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:44:51.0374 3612  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok
18:44:51.0374 3612  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
18:44:51.0374 3612  C:\Windows\System32\ncsi.dll - ok
18:44:51.0374 3612  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
18:44:51.0374 3612  C:\Windows\System32\ssdpapi.dll - ok
18:44:51.0390 3612  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
18:44:51.0390 3612  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
18:44:51.0390 3612  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
18:44:51.0390 3612  C:\Windows\System32\drivers\secdrv.sys - ok
18:44:51.0390 3612  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
18:44:51.0390 3612  C:\Windows\SysWOW64\ieframe.dll - ok
18:44:51.0390 3612  [ 7853D2AB445C10F97610B2B05FA4CF0A ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
18:44:51.0390 3612  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
18:44:51.0390 3612  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
18:44:51.0390 3612  C:\Windows\System32\drivers\srvnet.sys - ok
18:44:51.0390 3612  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
18:44:51.0390 3612  C:\Windows\System32\drivers\tcpipreg.sys - ok
18:44:51.0405 3612  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
18:44:51.0405 3612  C:\Windows\System32\sysmain.dll - ok
18:44:51.0405 3612  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
18:44:51.0405 3612  C:\Windows\System32\wiaservc.dll - ok
18:44:51.0405 3612  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
18:44:51.0405 3612  C:\Windows\System32\wiatrace.dll - ok
18:44:51.0405 3612  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
18:44:51.0405 3612  C:\Windows\SysWOW64\uxtheme.dll - ok
18:44:51.0405 3612  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
18:44:51.0405 3612  C:\Windows\System32\trkwks.dll - ok
18:44:51.0421 3612  [ 245EA6A2CFAE7B183EE9A14A4673B1F1 ] C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
18:44:51.0421 3612  C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe - ok
18:44:51.0421 3612  [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:44:51.0421 3612  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
18:44:51.0421 3612  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
18:44:51.0421 3612  C:\Windows\System32\dbghelp.dll - ok
18:44:51.0421 3612  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
18:44:51.0421 3612  C:\Windows\System32\wbem\WMIsvc.dll - ok
18:44:51.0421 3612  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
18:44:51.0421 3612  C:\Windows\System32\SensApi.dll - ok
18:44:51.0421 3612  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
18:44:51.0421 3612  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
18:44:51.0436 3612  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
18:44:51.0436 3612  C:\Windows\System32\wer.dll - ok
18:44:51.0436 3612  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
18:44:51.0436 3612  C:\Windows\System32\wbem\fastprox.dll - ok
18:44:51.0436 3612  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
18:44:51.0436 3612  C:\Windows\System32\wbem\WinMgmtR.dll - ok
18:44:51.0436 3612  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
18:44:51.0436 3612  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
18:44:51.0436 3612  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
18:44:51.0436 3612  C:\Windows\System32\ntdsapi.dll - ok
18:44:51.0436 3612  [ E7B489FA5B15D2FEC3E52066E015B788 ] C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
18:44:51.0436 3612  C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe - ok
18:44:51.0452 3612  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
18:44:51.0452 3612  C:\Windows\System32\wbem\esscli.dll - ok
18:44:51.0452 3612  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
18:44:51.0452 3612  C:\Windows\System32\wbem\wbemcore.dll - ok
18:44:51.0452 3612  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
18:44:51.0452 3612  C:\Windows\System32\wbem\wbemsvc.dll - ok
18:44:51.0452 3612  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
18:44:51.0452 3612  C:\Windows\System32\wbem\wmiutils.dll - ok
18:44:51.0452 3612  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
18:44:51.0452 3612  C:\Windows\System32\wbem\repdrvfs.dll - ok
18:44:51.0452 3612  [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
18:44:51.0468 3612  C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
18:44:51.0468 3612  [ 079FD1D59EAD19270C979AF174D881A3 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
18:44:51.0468 3612  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
18:44:51.0468 3612  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
18:44:51.0468 3612  C:\Windows\System32\msxml3.dll - ok
18:44:51.0468 3612  [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
18:44:51.0468 3612  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
18:44:51.0468 3612  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
18:44:51.0468 3612  C:\Windows\System32\drivers\srv2.sys - ok
18:44:51.0468 3612  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
18:44:51.0468 3612  C:\Windows\System32\iphlpsvc.dll - ok
18:44:51.0483 3612  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
18:44:51.0483 3612  C:\Windows\System32\drivers\srv.sys - ok
18:44:51.0483 3612  [ 36DB2F500345D4BD599B56F14FFFDCE2 ] C:\Program Files\Intel\WiMAX\Bin\wimaxMO.dll
18:44:51.0483 3612  C:\Program Files\Intel\WiMAX\Bin\wimaxMO.dll - ok
18:44:51.0483 3612  [ 8672D1FBB5420FB0A4366FB9186CF592 ] C:\Windows\System32\iWmxSDK.dll
18:44:51.0483 3612  C:\Windows\System32\iWmxSDK.dll - ok
18:44:51.0483 3612  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
18:44:51.0483 3612  C:\Windows\System32\browser.dll - ok
18:44:51.0483 3612  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
18:44:51.0483 3612  C:\Windows\System32\hnetcfg.dll - ok
18:44:51.0483 3612  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
18:44:51.0483 3612  C:\Windows\System32\sqmapi.dll - ok
18:44:51.0483 3612  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
18:44:51.0483 3612  C:\Windows\System32\srvsvc.dll - ok
18:44:51.0499 3612  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
18:44:51.0499 3612  C:\Windows\System32\wdscore.dll - ok
18:44:51.0499 3612  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
18:44:51.0499 3612  C:\Windows\System32\clusapi.dll - ok
18:44:51.0499 3612  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
18:44:51.0499 3612  C:\Windows\System32\nci.dll - ok
18:44:51.0499 3612  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
18:44:51.0499 3612  C:\Windows\System32\netmsg.dll - ok
18:44:51.0499 3612  [ DE230CD4F6B0832084DFB39424F7AB74 ] C:\Windows\System32\PipeHandler.dll
18:44:51.0499 3612  C:\Windows\System32\PipeHandler.dll - ok
18:44:51.0499 3612  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
18:44:51.0499 3612  C:\Windows\System32\resutils.dll - ok
18:44:51.0514 3612  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
18:44:51.0514 3612  C:\Windows\System32\sscore.dll - ok
18:44:51.0514 3612  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
18:44:51.0514 3612  C:\Windows\System32\dssenh.dll - ok
18:44:51.0514 3612  [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
18:44:51.0514 3612  C:\Windows\System32\sppsvc.exe - ok
18:44:51.0514 3612  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:44:51.0514 3612  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:44:51.0514 3612  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
18:44:51.0514 3612  C:\Windows\System32\ncobjapi.dll - ok
18:44:51.0530 3612  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
18:44:51.0530 3612  C:\Windows\System32\wbem\wbemess.dll - ok
18:44:51.0530 3612  [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
18:44:51.0530 3612  C:\Windows\System32\wbem\unsecapp.exe - ok
18:44:51.0530 3612  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
18:44:51.0530 3612  C:\Windows\System32\wbem\NCProv.dll - ok
18:44:51.0530 3612  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:44:51.0530 3612  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:44:51.0530 3612  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
18:44:51.0530 3612  C:\Windows\System32\aeevts.dll - ok
18:44:51.0530 3612  [ 132045285DCC8654C14F1CFB4A8DCDA1 ] C:\Program Files\Microsoft Security Client\NisLog.dll
18:44:51.0530 3612  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
18:44:51.0546 3612  [ 79E80B10FE8F6662E0C9162A68C43444 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
18:44:51.0546 3612  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
18:44:51.0546 3612  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
18:44:51.0546 3612  C:\Windows\System32\NapiNSP.dll - ok
18:44:51.0546 3612  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
18:44:51.0546 3612  C:\Windows\System32\npmproxy.dll - ok
18:44:51.0546 3612  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
18:44:51.0546 3612  C:\Windows\System32\aelupsvc.dll - ok
18:44:51.0546 3612  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
18:44:51.0546 3612  C:\Windows\System32\hidserv.dll - ok
18:44:51.0546 3612  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
18:44:51.0546 3612  C:\Windows\System32\pnrpnsp.dll - ok
18:44:51.0561 3612  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
18:44:51.0561 3612  C:\Windows\System32\wdi.dll - ok
18:44:51.0561 3612  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
18:44:51.0561 3612  C:\Windows\System32\wpdbusenum.dll - ok
18:44:51.0561 3612  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
18:44:51.0561 3612  C:\Windows\System32\winrnr.dll - ok
18:44:51.0561 3612  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
18:44:51.0561 3612  C:\Windows\System32\diagperf.dll - ok
18:44:51.0561 3612  [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
18:44:51.0561 3612  C:\Windows\System32\wshbth.dll - ok
18:44:51.0561 3612  [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
18:44:51.0561 3612  C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
18:44:51.0577 3612  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
 



#5 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 20 February 2013 - 02:16 AM

The rest of the TDSS, plus the other scans.

 

Also want to note that I had a system error upon restart, and in the corner of my desktop there is text saying "Windows 7   Build 7601  This copy of Windows is not genuin"


Could be from the registry files I deleted earlier today..

 

 

18:44:51.0577 3612  C:\Windows\SysWOW64\mstask.dll - ok
18:44:51.0577 3612  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
18:44:51.0577 3612  C:\Windows\System32\mprapi.dll - ok
18:44:51.0577 3612  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
18:44:51.0577 3612  C:\Windows\System32\ndiscapCfg.dll - ok
18:44:51.0577 3612  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
18:44:51.0577 3612  C:\Windows\System32\rascfg.dll - ok
18:44:51.0577 3612  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
18:44:51.0577 3612  C:\Windows\System32\mprmsg.dll - ok
18:44:51.0592 3612  [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
18:44:51.0592 3612  C:\Windows\System32\drivers\spsys.sys - ok
18:44:51.0592 3612  [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
18:44:51.0592 3612  C:\Windows\System32\tcpipcfg.dll - ok
18:44:51.0592 3612  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
18:44:51.0592 3612  C:\Windows\System32\wbem\wmiprov.dll - ok
18:44:51.0592 3612  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
18:44:51.0592 3612  C:\Windows\System32\perftrack.dll - ok
18:44:51.0592 3612  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
18:44:51.0592 3612  C:\Windows\System32\PortableDeviceApi.dll - ok
18:44:51.0592 3612  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
18:44:51.0592 3612  C:\Windows\System32\IPSECSVC.DLL - ok
18:44:51.0608 3612  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
18:44:51.0608 3612  C:\Windows\System32\pnpts.dll - ok
18:44:51.0608 3612  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
18:44:51.0608 3612  C:\Windows\System32\wdiasqmmodule.dll - ok
18:44:51.0608 3612  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
18:44:51.0608 3612  C:\Windows\System32\FwRemoteSvr.dll - ok
18:44:51.0608 3612  [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
18:44:51.0608 3612  C:\Windows\System32\sppwinob.dll - ok
18:44:51.0608 3612  [ 20C7F2ADAE249D6708941BC8CDD9735F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C24595B-BBFE-41E7-9F65-EB36AD5803CB}\gapaengine.dll
18:44:51.0608 3612  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C24595B-BBFE-41E7-9F65-EB36AD5803CB}\gapaengine.dll - ok
18:44:51.0608 3612  [ D729084195C952B7ED14AA6DA4B44DCA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C24595B-BBFE-41E7-9F65-EB36AD5803CB}\nisfull.vdm
18:44:51.0608 3612  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C24595B-BBFE-41E7-9F65-EB36AD5803CB}\nisfull.vdm - ok
18:44:51.0624 3612  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
18:44:51.0624 3612  C:\Windows\System32\Apphlpdm.dll - ok
18:44:51.0624 3612  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:44:51.0624 3612  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:44:51.0624 3612  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
18:44:51.0624 3612  C:\Windows\System32\dimsjob.dll - ok
18:44:51.0624 3612  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
18:44:51.0624 3612  C:\Windows\SysWOW64\rasadhlp.dll - ok
18:44:51.0624 3612  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
18:44:51.0624 3612  C:\Windows\System32\pautoenr.dll - ok
18:44:51.0624 3612  [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
18:44:51.0624 3612  C:\Program Files\Windows Defender\MpClient.dll - ok
18:44:51.0639 3612  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
18:44:51.0639 3612  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
18:44:51.0639 3612  [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
18:44:51.0639 3612  C:\Windows\System32\wlaninst.dll - ok
18:44:51.0639 3612  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
18:44:51.0639 3612  C:\Windows\System32\wwaninst.dll - ok
18:44:51.0639 3612  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
18:44:51.0639 3612  C:\Windows\System32\rundll32.exe - ok
18:44:51.0639 3612  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
18:44:51.0639 3612  C:\Windows\System32\certcli.dll - ok
18:44:51.0639 3612  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
18:44:51.0639 3612  C:\Windows\System32\CertEnroll.dll - ok
18:44:51.0655 3612  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
18:44:51.0655 3612  C:\Windows\System32\actxprxy.dll - ok
18:44:51.0655 3612  [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
18:44:51.0655 3612  C:\Windows\System32\sppobjs.dll - ok
18:44:51.0655 3612  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
18:44:51.0655 3612  C:\Windows\SysWOW64\wbemcomn.dll - ok
18:44:51.0655 3612  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
18:44:51.0655 3612  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
18:44:51.0655 3612  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
18:44:51.0655 3612  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
18:44:51.0670 3612  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
18:44:51.0670 3612  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
18:44:51.0670 3612  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
18:44:51.0670 3612  C:\Windows\SysWOW64\ntdsapi.dll - ok
18:44:51.0670 3612  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
18:44:51.0670 3612  C:\Windows\System32\IconCodecService.dll - ok
18:44:51.0670 3612  [ 82FEF5B77E1EE0ED959A876DFF6A4890 ] C:\Program Files (x86)\Common Files\AuthenTec\TrueOTPAuthenTec.dll
18:44:51.0670 3612  C:\Program Files (x86)\Common Files\AuthenTec\TrueOTPAuthenTec.dll - ok
18:44:51.0670 3612  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
18:44:51.0670 3612  C:\Windows\SysWOW64\credssp.dll - ok
18:44:51.0670 3612  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
18:44:51.0670 3612  C:\Windows\SysWOW64\xmllite.dll - ok
18:44:51.0686 3612  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
18:44:51.0686 3612  C:\Windows\System32\mpr.dll - ok
18:44:51.0686 3612  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
18:44:51.0686 3612  C:\Windows\System32\userinit.exe - ok
18:44:51.0686 3612  [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\SysWOW64\userinit.exe
18:44:51.0686 3612  C:\Windows\SysWOW64\userinit.exe - ok
18:44:51.0686 3612  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
18:44:51.0686 3612  C:\Windows\SysWOW64\dwmapi.dll - ok
18:44:51.0686 3612  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
18:44:51.0686 3612  C:\Windows\System32\dwm.exe - ok
18:44:51.0686 3612  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
18:44:51.0686 3612  C:\Windows\System32\dwmredir.dll - ok
18:44:51.0702 3612  [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\SysWOW64\dwmcore.dll
18:44:51.0702 3612  C:\Windows\SysWOW64\dwmcore.dll - ok
18:44:51.0702 3612  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
18:44:51.0702 3612  C:\Windows\System32\dwmcore.dll - ok
18:44:51.0702 3612  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:44:51.0702 3612  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:44:51.0702 3612  [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
18:44:51.0702 3612  C:\Windows\SysWOW64\d3d10_1.dll - ok
18:44:51.0702 3612  [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
18:44:51.0702 3612  C:\Windows\System32\d3d10_1.dll - ok
18:44:51.0702 3612  [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
18:44:51.0702 3612  C:\Windows\SysWOW64\d3d10_1core.dll - ok
18:44:51.0717 3612  [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
18:44:51.0717 3612  C:\Windows\System32\d3d10_1core.dll - ok
18:44:51.0717 3612  [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
18:44:51.0717 3612  C:\Windows\SysWOW64\dxgi.dll - ok
18:44:51.0717 3612  [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
18:44:51.0717 3612  C:\Windows\System32\dxgi.dll - ok
18:44:51.0717 3612  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
18:44:51.0717 3612  C:\Windows\explorer.exe - ok
18:44:51.0717 3612  [ 2750EB2605F2538ADC0D52EFDC5E4748 ] C:\Windows\System32\igd10umd64.dll
18:44:51.0717 3612  C:\Windows\System32\igd10umd64.dll - ok
18:44:51.0717 3612  [ 2F03490092C032392FB6FF635222B9B2 ] C:\Windows\SysWOW64\apisetschema.dll
18:44:51.0717 3612  C:\Windows\SysWOW64\apisetschema.dll - ok
18:44:51.0733 3612  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:44:51.0733 3612  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:44:51.0733 3612  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
18:44:51.0733 3612  C:\Windows\SysWOW64\dui70.dll - ok
18:44:51.0733 3612  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
18:44:51.0733 3612  C:\Windows\SysWOW64\duser.dll - ok
18:44:51.0733 3612  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
18:44:51.0733 3612  C:\Windows\SysWOW64\slc.dll - ok
18:44:51.0733 3612  [ 1106555B34ECE6BBCA5DFAAD04E50C61 ] C:\Program Files\Logitech\SetPoint\lgscroll.dll
18:44:51.0733 3612  C:\Program Files\Logitech\SetPoint\lgscroll.dll - ok
18:44:51.0733 3612  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
18:44:51.0733 3612  C:\Windows\SysWOW64\actxprxy.dll - ok
18:44:51.0748 3612  [ 4B87EEFDC8E253F846A7DFB49A8E6C70 ] C:\Windows\en-US\explorer.exe.mui
18:44:51.0748 3612  C:\Windows\en-US\explorer.exe.mui - ok
18:44:51.0748 3612  [ 3BFAA4560430DC2B1B86E7EAD4A63F91 ] C:\Windows\SysWOW64\en-US\setupapi.dll.mui
18:44:51.0748 3612  C:\Windows\SysWOW64\en-US\setupapi.dll.mui - ok
18:44:51.0748 3612  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
18:44:51.0748 3612  C:\Windows\System32\ExplorerFrame.dll - ok
18:44:51.0748 3612  [ 5877A3341AA7DF58789294CEBA38AE2B ] C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
18:44:51.0748 3612  C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll - ok
18:44:51.0748 3612  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
18:44:51.0748 3612  C:\Windows\SysWOW64\EhStorShell.dll - ok
18:44:51.0748 3612  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
18:44:51.0748 3612  C:\Windows\System32\EhStorShell.dll - ok
18:44:51.0764 3612  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
18:44:51.0764 3612  C:\Windows\SysWOW64\ntshrui.dll - ok
18:44:51.0764 3612  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
18:44:51.0764 3612  C:\Windows\System32\ntshrui.dll - ok
18:44:51.0764 3612  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
18:44:51.0764 3612  C:\Windows\SysWOW64\IconCodecService.dll - ok
18:44:51.0764 3612  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
18:44:51.0764 3612  C:\Windows\System32\appinfo.dll - ok
18:44:51.0764 3612  [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
18:44:51.0764 3612  C:\Windows\SysWOW64\dllhost.exe - ok
18:44:51.0764 3612  [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\SysWOW64\shacct.dll
18:44:51.0764 3612  C:\Windows\SysWOW64\shacct.dll - ok
18:44:51.0780 3612  [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\SysWOW64\IDStore.dll
18:44:51.0780 3612  C:\Windows\SysWOW64\IDStore.dll - ok
18:44:51.0780 3612  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
18:44:51.0780 3612  C:\Windows\SysWOW64\runonce.exe - ok
18:44:51.0780 3612  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
18:44:51.0780 3612  C:\Windows\System32\runonce.exe - ok
18:44:51.0780 3612  [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
18:44:51.0780 3612  C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
18:44:51.0780 3612  [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
18:44:51.0780 3612  C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
18:44:51.0780 3612  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
18:44:51.0780 3612  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
18:44:51.0795 3612  [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
18:44:51.0795 3612  C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
18:44:51.0795 3612  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
18:44:51.0795 3612  C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
18:44:51.0795 3612  [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
18:44:51.0795 3612  C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
18:44:51.0795 3612  [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
18:44:51.0795 3612  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
18:44:51.0795 3612  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
18:44:51.0795 3612  C:\Windows\SysWOW64\msxml3.dll - ok
18:44:51.0811 3612  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
18:44:51.0811 3612  C:\Windows\SysWOW64\cmd.exe - ok
18:44:51.0811 3612  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
18:44:51.0811 3612  C:\Windows\SysWOW64\winbrand.dll - ok
18:44:51.0811 3612  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
18:44:51.0811 3612  C:\Windows\SysWOW64\shdocvw.dll - ok
18:44:51.0811 3612  [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
18:44:51.0811 3612  C:\Windows\SysWOW64\schannel.dll - ok
18:44:51.0811 3612  [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\SysWOW64\dssenh.dll
18:44:51.0811 3612  C:\Windows\SysWOW64\dssenh.dll - ok
18:44:51.0811 3612  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Owner\AppData\Local\Temp\4B196764-F804-4936-BE48-41C75BA975C3.exe
18:44:51.0811 3612  C:\Users\Owner\AppData\Local\Temp\4B196764-F804-4936-BE48-41C75BA975C3.exe - ok
18:44:51.0826 3612  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
18:44:51.0826 3612  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
18:44:51.0826 3612  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
18:44:51.0826 3612  C:\Windows\SysWOW64\imageres.dll - ok
18:44:51.0826 3612  [ 4F2659160AFCCA990305816946F69407 ] C:\Windows\SysWOW64\taskeng.exe
18:44:51.0826 3612  C:\Windows\SysWOW64\taskeng.exe - ok
18:44:51.0826 3612  [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
18:44:51.0826 3612  C:\Windows\SysWOW64\ktmw32.dll - ok
18:44:51.0826 3612  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
18:44:51.0826 3612  C:\Windows\SysWOW64\wevtapi.dll - ok
18:44:51.0826 3612  [ 35EB874E9319D57CCFF4BB8BE55F4DE5 ] C:\Windows\SysWOW64\en-US\TaskEng.exe.mui
18:44:51.0826 3612  C:\Windows\SysWOW64\en-US\TaskEng.exe.mui - ok
18:44:51.0842 3612  [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\SysWOW64\TSChannel.dll
18:44:51.0842 3612  C:\Windows\SysWOW64\TSChannel.dll - ok
18:44:51.0842 3612  [ B7F55E2AE978D3D34F7876EE5D689AAE ] C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
18:44:51.0842 3612  C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe - ok
18:44:51.0842 3612  [ 1DB8C2220EFDBA97F671F46F6A8DE51E ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe
18:44:51.0842 3612  C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe - ok
18:44:51.0842 3612  [ EC807244904FA170C299AB06D87FBDBE ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:44:51.0842 3612  C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
18:44:51.0842 3612  [ 3EA98EF084CB360121A6D7BA2B47E655 ] C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe
18:44:51.0842 3612  C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe - ok
18:44:51.0842 3612  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
18:44:51.0842 3612  C:\Windows\SysWOW64\devenum.dll - ok
18:44:51.0858 3612  [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
18:44:51.0858 3612  C:\Windows\SysWOW64\msdmo.dll - ok
18:44:51.0858 3612  [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
18:44:51.0858 3612  C:\Windows\SysWOW64\avicap32.dll - ok
18:44:51.0858 3612  [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
18:44:51.0858 3612  C:\Windows\SysWOW64\msvfw32.dll - ok
18:44:51.0858 3612  [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
18:44:51.0858 3612  C:\Windows\SysWOW64\vfwwdm32.dll - ok
18:44:51.0858 3612  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
18:44:51.0858 3612  C:\Windows\SysWOW64\sfc.dll - ok
18:44:51.0858 3612  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
18:44:51.0858 3612  C:\Windows\SysWOW64\sfc_os.dll - ok
18:44:51.0873 3612  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
18:44:51.0873 3612  C:\Windows\SysWOW64\devrtl.dll - ok
18:44:51.0873 3612  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
18:44:51.0873 3612  C:\Windows\System32\ie4uinit.exe - ok
18:44:51.0873 3612  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
18:44:51.0873 3612  C:\Windows\System32\iedkcs32.dll - ok
18:44:51.0873 3612  [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\SysWOW64\SndVolSSO.dll
18:44:51.0873 3612  C:\Windows\SysWOW64\SndVolSSO.dll - ok
18:44:51.0873 3612  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
18:44:51.0873 3612  C:\Windows\SysWOW64\hid.dll - ok
18:44:51.0873 3612  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
18:44:51.0873 3612  C:\Windows\SysWOW64\MMDevAPI.dll - ok
18:44:51.0889 3612  [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\SysWOW64\timedate.cpl
18:44:51.0889 3612  C:\Windows\SysWOW64\timedate.cpl - ok
18:44:51.0889 3612  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
18:44:51.0889 3612  C:\Windows\System32\timedate.cpl - ok
18:44:51.0889 3612  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
18:44:51.0889 3612  C:\Windows\SysWOW64\atl.dll - ok
18:44:51.0889 3612  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
18:44:51.0889 3612  C:\Windows\System32\shdocvw.dll - ok
18:44:51.0889 3612  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
18:44:51.0889 3612  C:\Windows\SysWOW64\linkinfo.dll - ok
18:44:51.0889 3612  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
18:44:51.0889 3612  C:\Windows\System32\linkinfo.dll - ok
18:44:51.0904 3612  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
18:44:51.0904 3612  C:\Windows\SysWOW64\msiltcfg.dll - ok
18:44:51.0904 3612  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
18:44:51.0904 3612  C:\Windows\System32\msiltcfg.dll - ok
18:44:51.0904 3612  [ B7454E775EC359B928795C46DD96C046 ] C:\Program Files (x86)\Hide My IP 2009\HideMyIpSrv.exe
18:44:51.0904 3612  C:\Program Files (x86)\Hide My IP 2009\HideMyIpSrv.exe - ok
18:44:51.0904 3612  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
18:44:51.0904 3612  C:\Windows\SysWOW64\samlib.dll - ok
18:44:51.0904 3612  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\SysWOW64\msftedit.dll
18:44:51.0904 3612  C:\Windows\SysWOW64\msftedit.dll - ok
18:44:51.0904 3612  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
18:44:51.0904 3612  C:\Windows\System32\msftedit.dll - ok
18:44:51.0920 3612  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
18:44:51.0920 3612  C:\Windows\System32\msls31.dll - ok
18:44:51.0920 3612  [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
18:44:51.0920 3612  C:\Windows\SysWOW64\msls31.dll - ok
18:44:51.0920 3612  [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\SysWOW64\gameux.dll
18:44:51.0920 3612  C:\Windows\SysWOW64\gameux.dll - ok
18:44:51.0920 3612  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
18:44:51.0920 3612  C:\Windows\System32\gameux.dll - ok
18:44:51.0920 3612  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
18:44:51.0920 3612  C:\Windows\SysWOW64\wer.dll - ok
18:44:51.0920 3612  [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\SysWOW64\authui.dll
18:44:51.0920 3612  C:\Windows\SysWOW64\authui.dll - ok
18:44:51.0936 3612  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
18:44:51.0936 3612  C:\Windows\SysWOW64\cryptui.dll - ok
18:44:51.0936 3612  [ 4076E418CD3EB0E09FFBCD828C35CE26 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
18:44:51.0936 3612  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
18:44:51.0936 3612  [ 1D0F1F7A17293ED2AC88FC356EA4FDB4 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
18:44:51.0936 3612  C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe - ok
18:44:51.0936 3612  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
18:44:51.0936 3612  C:\Windows\System32\DeviceCenter.dll - ok
18:44:51.0936 3612  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\66046017.sys
18:44:51.0936 3612  C:\Windows\System32\drivers\66046017.sys - ok
18:44:51.0951 3612  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
18:44:51.0951 3612  C:\Windows\SysWOW64\samcli.dll - ok
18:44:51.0951 3612  [ 6581B52E133CC6D00661C58968C7E212 ] C:\Windows\SysWOW64\SearchFolder.dll
18:44:51.0951 3612  C:\Windows\SysWOW64\SearchFolder.dll - ok
18:44:51.0951 3612  [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
18:44:51.0951 3612  C:\Windows\System32\SearchFolder.dll - ok
18:44:51.0951 3612  [ DF48408BD8A76BC35FCC8514A89B55A9 ] C:\Windows\System32\SynCOM.dll
18:44:51.0951 3612  C:\Windows\System32\SynCOM.dll - ok
18:44:51.0951 3612  [ CA2736270DE7AA714C22F916834C9B45 ] C:\Windows\SysWOW64\SynCOM.dll
18:44:51.0951 3612  C:\Windows\SysWOW64\SynCOM.dll - ok
18:44:51.0951 3612  [ 841287B41E344239377E11AD9E605B30 ] C:\Windows\System32\igfxtray.exe
18:44:51.0951 3612  C:\Windows\System32\igfxtray.exe - ok
18:44:51.0967 3612  [ 773D7DC2BABC0C3DEFE910C44637F573 ] C:\Windows\System32\SynTPAPI.dll
18:44:51.0967 3612  C:\Windows\System32\SynTPAPI.dll - ok
18:44:51.0967 3612  [ 46D2E84814234C85F277CDD96C8FCF42 ] C:\Windows\System32\hkcmd.exe
18:44:51.0967 3612  C:\Windows\System32\hkcmd.exe - ok
18:44:51.0967 3612  [ D1E9B7CA62EC8A154724569A2DA52531 ] C:\Windows\System32\hccutils.dll
18:44:51.0967 3612  C:\Windows\System32\hccutils.dll - ok
18:44:51.0967 3612  [ 6397AC6E0D8763317B52FDB08F97E8BF ] C:\Windows\System32\igfxpers.exe
18:44:51.0967 3612  C:\Windows\System32\igfxpers.exe - ok
18:44:51.0967 3612  [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\SysWOW64\thumbcache.dll
18:44:51.0967 3612  C:\Windows\SysWOW64\thumbcache.dll - ok
18:44:51.0967 3612  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
18:44:51.0967 3612  C:\Windows\System32\thumbcache.dll - ok
18:44:51.0982 3612  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
18:44:51.0982 3612  C:\Windows\SysWOW64\AudioSes.dll - ok
18:44:51.0982 3612  [ 1562933015CD8A731986E5EBBF7CF6B1 ] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
18:44:51.0982 3612  C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe - ok
18:44:51.0982 3612  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\SysWOW64\networkexplorer.dll
18:44:51.0982 3612  C:\Windows\SysWOW64\networkexplorer.dll - ok
18:44:51.0982 3612  [ A8639661416436592F4B9DEC28F7DF95 ] C:\Windows\System32\igfxsrvc.exe
18:44:51.0982 3612  C:\Windows\System32\igfxsrvc.exe - ok
18:44:51.0982 3612  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
18:44:51.0982 3612  C:\Windows\System32\networkexplorer.dll - ok
18:44:51.0982 3612  [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
18:44:51.0982 3612  C:\Windows\SysWOW64\rundll32.exe - ok
18:44:51.0998 3612  [ 32E390954B2C6B1583A969ED0E7C8A9D ] C:\Windows\SysWOW64\msvcp100.dll
18:44:51.0998 3612  C:\Windows\SysWOW64\msvcp100.dll - ok
18:44:51.0998 3612  [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
18:44:51.0998 3612  C:\Windows\System32\msvcp100.dll - ok
18:44:51.0998 3612  [ AA63649989BD1FDE90FF0F707CB05E58 ] C:\Program Files\IDT\WDM\sttray64.exe
18:44:51.0998 3612  C:\Program Files\IDT\WDM\sttray64.exe - ok
18:44:51.0998 3612  [ 2B92A88E329F4845D31941967A3BAA90 ] C:\Windows\SysWOW64\msvcr100.dll
18:44:51.0998 3612  C:\Windows\SysWOW64\msvcr100.dll - ok
18:44:51.0998 3612  [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
18:44:51.0998 3612  C:\Windows\System32\msvcr100.dll - ok
18:44:51.0998 3612  [ C1A27CD11E7559F951130528962306D8 ] C:\Windows\System32\igfxsrvc.dll
18:44:51.0998 3612  C:\Windows\System32\igfxsrvc.dll - ok
18:44:52.0014 3612  [ 8B722DA6944817B99D2E73C2869D63E3 ] C:\Windows\System32\igfxdev.dll
18:44:52.0014 3612  C:\Windows\System32\igfxdev.dll - ok
18:44:52.0014 3612  [ 14EAAD6A782FF16B05AADACFE05C8D2A ] C:\Windows\System32\LogiLDA.DLL
18:44:52.0014 3612  C:\Windows\System32\LogiLDA.DLL - ok
18:44:52.0014 3612  [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
18:44:52.0014 3612  C:\Windows\SysWOW64\wdmaud.drv - ok
18:44:52.0014 3612  [ 24CAEDCD73B5B0E22226283B7B2468C7 ] C:\Windows\SysWOW64\mfc42u.dll
18:44:52.0014 3612  C:\Windows\SysWOW64\mfc42u.dll - ok
18:44:52.0014 3612  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
18:44:52.0014 3612  C:\Windows\SysWOW64\ksuser.dll - ok
18:44:52.0014 3612  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
18:44:52.0014 3612  C:\Windows\SysWOW64\avrt.dll - ok
18:44:52.0014 3612  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
18:44:52.0014 3612  C:\Windows\SysWOW64\odbc32.dll - ok
18:44:52.0029 3612  [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
18:44:52.0029 3612  C:\Program Files\Microsoft Security Client\msseces.exe - ok
18:44:52.0029 3612  [ 7F2D96D28D47ED3E0974B72580FE965F ] C:\Program Files\Synaptics\SynTP\SynTPRes.dll
18:44:52.0029 3612  C:\Program Files\Synaptics\SynTP\SynTPRes.dll - ok
18:44:52.0029 3612  [ CE8D600C5CE6090723F6CDC4B585FA61 ] C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll
18:44:52.0029 3612  C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll - ok
18:44:52.0029 3612  [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe
18:44:52.0029 3612  C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe - ok
18:44:52.0029 3612  [ CD5CC32F7B0998F0B8FE939E33364F8A ] C:\Program Files\IDT\WDM\stlang64.dll
18:44:52.0029 3612  C:\Program Files\IDT\WDM\stlang64.dll - ok
18:44:52.0045 3612  [ 56CEED370508F69A1BA04939BD1BADDA ] C:\Windows\SysWOW64\msutb.dll
18:44:52.0045 3612  C:\Windows\SysWOW64\msutb.dll - ok
18:44:52.0045 3612  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
18:44:52.0045 3612  C:\Windows\SysWOW64\riched20.dll - ok
18:44:52.0045 3612  [ 1A6F3EEB35F06CFB2FD8E1D4FE81DFC2 ] C:\Windows\System32\spool\drivers\x64\3\E_IATIFCA.EXE
18:44:52.0045 3612  C:\Windows\System32\spool\drivers\x64\3\E_IATIFCA.EXE - ok
18:44:52.0045 3612  [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
18:44:52.0045 3612  C:\Windows\SysWOW64\msacm32.drv - ok
18:44:52.0045 3612  [ 28D49DB5E12E502E3D9B94388E811ACC ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
18:44:52.0045 3612  C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll - ok
18:44:52.0045 3612  [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\SysWOW64\esent.dll
18:44:52.0045 3612  C:\Windows\SysWOW64\esent.dll - ok
18:44:52.0060 3612  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
18:44:52.0060 3612  C:\Windows\SysWOW64\msacm32.dll - ok
18:44:52.0060 3612  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
18:44:52.0060 3612  C:\Windows\System32\esent.dll - ok
18:44:52.0060 3612  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
18:44:52.0060 3612  C:\Windows\SysWOW64\odbcint.dll - ok
18:44:52.0060 3612  [ 0AD003B65A362231102A591EAE887C83 ] C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
18:44:52.0060 3612  C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe - ok
18:44:52.0060 3612  [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
18:44:52.0060 3612  C:\Windows\SysWOW64\midimap.dll - ok
18:44:52.0060 3612  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
18:44:52.0060 3612  C:\Windows\SysWOW64\wlanapi.dll - ok
18:44:52.0076 3612  [ 3367A9E7F0F31BA305D7FF2E30F0BA86 ] C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
18:44:52.0076 3612  C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe - ok
18:44:52.0076 3612  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
18:44:52.0076 3612  C:\Windows\SysWOW64\wlanutil.dll - ok
18:44:52.0076 3612  [ 55558E9654E5A7224A4DCB3284A894B9 ] C:\Windows\System32\stapi64.dll
18:44:52.0076 3612  C:\Windows\System32\stapi64.dll - ok
18:44:52.0076 3612  [ 0A8DCE9C7846783625D69D34DDFBFD46 ] C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe
18:44:52.0076 3612  C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe - ok
18:44:52.0076 3612  [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\SysWOW64\AudioEng.dll
18:44:52.0076 3612  C:\Windows\SysWOW64\AudioEng.dll - ok
18:44:52.0076 3612  [ F87F019EA29D331FBA7DE0DB56069067 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
18:44:52.0076 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
18:44:52.0092 3612  [ C2A12B061F591E093E3FD99D75811398 ] C:\Windows\SysWOW64\imaadp32.acm
18:44:52.0092 3612  C:\Windows\SysWOW64\imaadp32.acm - ok
18:44:52.0092 3612  [ BD0EA5C8A4EF518C46E05F99908A56CE ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
18:44:52.0092 3612  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
18:44:52.0092 3612  [ BE263246AA05B9CD43D32CA615E027D5 ] C:\Windows\System32\igfxrenu.lrc
18:44:52.0092 3612  C:\Windows\System32\igfxrenu.lrc - ok
18:44:52.0092 3612  [ DA6C4B5FEEEA4DC7162B5D0C055EB967 ] C:\Windows\System32\imaadp32.acm
18:44:52.0092 3612  C:\Windows\System32\imaadp32.acm - ok
18:44:52.0092 3612  [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
18:44:52.0092 3612  C:\Windows\System32\IccLibDll_x64.dll - ok
18:44:52.0092 3612  [ 1C81E1BEA4847F406BBDB74D19721CE6 ] C:\Windows\System32\msg711.acm
18:44:52.0092 3612  C:\Windows\System32\msg711.acm - ok
18:44:52.0107 3612  [ BF3D6F7D929E018703BE2D4556DD679A ] C:\Windows\SysWOW64\msg711.acm
18:44:52.0107 3612  C:\Windows\SysWOW64\msg711.acm - ok
18:44:52.0107 3612  [ E5B9A2FA94D21C44DA2B898DC326B0C2 ] C:\Windows\System32\msgsm32.acm
18:44:52.0107 3612  C:\Windows\System32\msgsm32.acm - ok
18:44:52.0107 3612  [ AE796D3FD1C69CE62BB6AFACDFB950AA ] C:\Windows\SysWOW64\msgsm32.acm
18:44:52.0107 3612  C:\Windows\SysWOW64\msgsm32.acm - ok
18:44:52.0107 3612  [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
18:44:52.0107 3612  C:\Windows\System32\consent.exe - ok
18:44:52.0107 3612  [ 75181032B9A519A5FD8E08F824951EBD ] C:\Windows\System32\spool\drivers\x64\3\E_IAUDFCA.DLL
18:44:52.0107 3612  C:\Windows\System32\spool\drivers\x64\3\E_IAUDFCA.DLL - ok
18:44:52.0107 3612  [ AB4502F1EC04C8BBC52AD2E72FD33C8A ] C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL
18:44:52.0107 3612  C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL - ok
18:44:52.0123 3612  [ 970E191FA2BA21844D7103792B6885F6 ] C:\Program Files\Logitech\SetPoint\SetPoint.exe
18:44:52.0123 3612  C:\Program Files\Logitech\SetPoint\SetPoint.exe - ok
18:44:52.0123 3612  [ 8EE566982477BC5886FE622CEBEE9C86 ] C:\Windows\SysWOW64\msadp32.acm
18:44:52.0123 3612  C:\Windows\SysWOW64\msadp32.acm - ok
18:44:52.0123 3612  [ 329FEB3452982A377726DEDAFE9BBDF0 ] C:\Windows\System32\msadp32.acm
18:44:52.0123 3612  C:\Windows\System32\msadp32.acm - ok
18:44:52.0123 3612  [ 6B2B3C893554386110C2ED0BB637DA6C ] C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll
18:44:52.0123 3612  C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll - ok
18:44:52.0123 3612  [ 1C7F1C3EA5894995E6C563E9AE9F029F ] C:\Windows\SysWOW64\l3codeca.acm
18:44:52.0123 3612  C:\Windows\SysWOW64\l3codeca.acm - ok
18:44:52.0123 3612  [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
18:44:52.0138 3612  C:\Windows\System32\l3codeca.acm - ok
18:44:52.0138 3612  [ 6061114558D3D1CBE66F2EF2AF148966 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80.dll
18:44:52.0138 3612  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80.dll - ok
18:44:52.0138 3612  [ 88812B380461CF9C48F6103BDB6754A6 ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
18:44:52.0138 3612  C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok
18:44:52.0138 3612  [ AF6FDBCD99C7EB18B052CEAA9223B401 ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
18:44:52.0138 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll - ok
18:44:52.0138 3612  [ C259EF2AD7D254BED18B0A9FCE3417A3 ] C:\Windows\System32\spool\drivers\x64\3\E_ILMWFCA.DLL
18:44:52.0138 3612  C:\Windows\System32\spool\drivers\x64\3\E_ILMWFCA.DLL - ok
18:44:52.0138 3612  [ 2C5BA148BA7936D9BB6BB1F4945BA469 ] C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox.exe
18:44:52.0138 3612  C:\Users\Owner\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
18:44:52.0154 3612  [ D6C3C4DF303E6DD84D48183208AE73CC ] C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll
18:44:52.0154 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll - ok
18:44:52.0154 3612  [ 9780D29688572049950BFE15CCD87D91 ] C:\Windows\System32\spool\drivers\x64\3\E_IASRFCA.DLL
18:44:52.0154 3612  C:\Windows\System32\spool\drivers\x64\3\E_IASRFCA.DLL - ok
18:44:52.0154 3612  [ 89380A510B6019E1F1FA0D42AF591AF7 ] C:\Windows\System32\KemXML.dll
18:44:52.0154 3612  C:\Windows\System32\KemXML.dll - ok
18:44:52.0154 3612  [ A69E54FF86935C2EBB45F312133CE032 ] C:\Windows\System32\spool\drivers\x64\3\E_IABRFCA.DLL
18:44:52.0154 3612  C:\Windows\System32\spool\drivers\x64\3\E_IABRFCA.DLL - ok
18:44:52.0154 3612  [ B1FDCFFF7609E121C10751A669AB1611 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80u.dll
18:44:52.0154 3612  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80u.dll - ok
18:44:52.0154 3612  [ A64E1F87CBA9F8798F4616A19224EC35 ] C:\Windows\System32\kemutb.dll
18:44:52.0154 3612  C:\Windows\System32\kemutb.dll - ok
18:44:52.0170 3612  [ BC5525C19F79B6099B085D0C00C4EF46 ] C:\Windows\SysWOW64\irprops.cpl
18:44:52.0170 3612  C:\Windows\SysWOW64\irprops.cpl - ok
18:44:52.0170 3612  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
18:44:52.0170 3612  C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
18:44:52.0170 3612  [ 11BE2933DA0600DE6A644C3A492675F4 ] C:\Windows\System32\irprops.cpl
18:44:52.0170 3612  C:\Windows\System32\irprops.cpl - ok
18:44:52.0170 3612  [ DBD02768B49B4EA7C1C57616808F307F ] C:\Windows\System32\KemUtil.dll
18:44:52.0170 3612  C:\Windows\System32\KemUtil.dll - ok
18:44:52.0170 3612  [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\SysWOW64\wmsgapi.dll
18:44:52.0170 3612  C:\Windows\SysWOW64\wmsgapi.dll - ok
18:44:52.0170 3612  [ 67E04E76D675E4CEBC1CA2ADA871B18E ] C:\Windows\System32\spool\drivers\x64\3\E_IASOFCA.DLL
18:44:52.0170 3612  C:\Windows\System32\spool\drivers\x64\3\E_IASOFCA.DLL - ok
18:44:52.0185 3612  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
18:44:52.0185 3612  C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\goopdate.dll - ok
18:44:52.0185 3612  [ 3E71B59F9D3618F2F529451A2AD56790 ] C:\Program Files\Intel\WiFi\bin\PanApi.dll
18:44:52.0185 3612  C:\Program Files\Intel\WiFi\bin\PanApi.dll - ok
18:44:52.0185 3612  [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
18:44:52.0185 3612  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
18:44:52.0185 3612  [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\SysWOW64\stobject.dll
18:44:52.0185 3612  C:\Windows\SysWOW64\stobject.dll - ok
18:44:52.0185 3612  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
18:44:52.0185 3612  C:\Windows\System32\stobject.dll - ok
18:44:52.0185 3612  [ 74F271478C8F271E58716476D2182C36 ] C:\Windows\System32\KemWnd.dll
18:44:52.0201 3612  C:\Windows\System32\KemWnd.dll - ok
18:44:52.0201 3612  [ 5125AB3C967FE449754D9989058CE127 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll
18:44:52.0201 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok
18:44:52.0201 3612  [ E2A770F7B1D877F51D05B8AEA68EC240 ] C:\Windows\System32\spool\drivers\x64\3\E_IASKFCA.DLL
18:44:52.0201 3612  C:\Windows\System32\spool\drivers\x64\3\E_IASKFCA.DLL - ok
18:44:52.0201 3612  [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\SysWOW64\batmeter.dll
18:44:52.0201 3612  C:\Windows\SysWOW64\batmeter.dll - ok
18:44:52.0201 3612  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
18:44:52.0201 3612  C:\Windows\System32\batmeter.dll - ok
18:44:52.0201 3612  [ 98EE5ED074CF9E6CBC81A2CCB4ECCD25 ] C:\Windows\System32\spool\drivers\x64\3\E_IAPRFCA.DLL
18:44:52.0201 3612  C:\Windows\System32\spool\drivers\x64\3\E_IAPRFCA.DLL - ok
18:44:52.0216 3612  [ FD4FCBEAECFFBEB2B65D67DF646BA124 ] C:\Program Files\Logitech\SetPoint\SetPointCOM.dll
18:44:52.0216 3612  C:\Program Files\Logitech\SetPoint\SetPointCOM.dll - ok
18:44:52.0216 3612  [ 442235AC4F20B195F932990CAE47408E ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll
18:44:52.0216 3612  C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll - ok
18:44:52.0216 3612  [ A15BA1D8B2ADD6C2BAB53BA6231366B1 ] C:\Program Files\Logitech\SetPoint\khalwrapper.dll
18:44:52.0216 3612  C:\Program Files\Logitech\SetPoint\khalwrapper.dll - ok
18:44:52.0216 3612  [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\SysWOW64\MsCtfMonitor.dll
18:44:52.0216 3612  C:\Windows\SysWOW64\MsCtfMonitor.dll - ok
18:44:52.0216 3612  [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\SysWOW64\bthprops.cpl
18:44:52.0216 3612  C:\Windows\SysWOW64\bthprops.cpl - ok
18:44:52.0216 3612  [ 34C4401D34634502DD054360C73C39CB ] C:\Windows\System32\spool\drivers\x64\3\E_FBA6FCA.DLL
18:44:52.0216 3612  C:\Windows\System32\spool\drivers\x64\3\E_FBA6FCA.DLL - ok
18:44:52.0232 3612  [ 5B37829B6FD08C4357CA0D3B05604099 ] C:\Program Files\Intel\WiFi\bin\DbEngine.dll
18:44:52.0232 3612  C:\Program Files\Intel\WiFi\bin\DbEngine.dll - ok
18:44:52.0232 3612  [ 820E2D452BF02130679F6F1ED286664E ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
18:44:52.0232 3612  C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
18:44:52.0232 3612  [ AE797B72D85E87D403FC11135507922C ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
18:44:52.0232 3612  C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe - ok
18:44:52.0232 3612  [ 8449E3FE174E49A323FEE701A2A17986 ] C:\Windows\System32\spool\drivers\x64\3\E_FBL6FCA.DLL
18:44:52.0232 3612  C:\Windows\System32\spool\drivers\x64\3\E_FBL6FCA.DLL - ok
18:44:52.0232 3612  [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\SysWOW64\eappcfg.dll
18:44:52.0232 3612  C:\Windows\SysWOW64\eappcfg.dll - ok
18:44:52.0232 3612  [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\SysWOW64\eappprxy.dll
18:44:52.0232 3612  C:\Windows\SysWOW64\eappprxy.dll - ok
18:44:52.0248 3612  [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
18:44:52.0248 3612  C:\Windows\SysWOW64\es.dll - ok
18:44:52.0248 3612  [ 4237D83C5F6BC053FB26A6FAEB3ADA31 ] C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
18:44:52.0248 3612  C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe - ok
18:44:52.0248 3612  [ A7934B26A096F39B15960E0A56C1C8C4 ] C:\Windows\SysWOW64\bidispl.dll
18:44:52.0248 3612  C:\Windows\SysWOW64\bidispl.dll - ok
18:44:52.0248 3612  [ 9FA56171C452530E2F51E3238B52140B ] C:\Windows\System32\bidispl.dll
18:44:52.0248 3612  C:\Windows\System32\bidispl.dll - ok
18:44:52.0248 3612  [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\SysWOW64\prnfldr.dll
18:44:52.0248 3612  C:\Windows\SysWOW64\prnfldr.dll - ok
18:44:52.0248 3612  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
18:44:52.0248 3612  C:\Windows\SysWOW64\msxml6.dll - ok
18:44:52.0263 3612  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
18:44:52.0263 3612  C:\Windows\System32\prnfldr.dll - ok
18:44:52.0263 3612  [ BC6390A6736A5F4A048AC75168DD7869 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
18:44:52.0263 3612  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe - ok
18:44:52.0263 3612  [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
18:44:52.0263 3612  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
18:44:52.0263 3612  [ 8A3B69683E63808719D24E1C68C21CC7 ] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
18:44:52.0263 3612  C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe - ok
18:44:52.0263 3612  [ 41C302A6680881F47820524CEA8C676E ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
18:44:52.0263 3612  C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll - ok
18:44:52.0279 3612  [ 1A2B1111BD201D7FB6DB98FCBB97DA63 ] C:\Windows\SysWOW64\input.dll
18:44:52.0279 3612  C:\Windows\SysWOW64\input.dll - ok
18:44:52.0279 3612  [ 9F3655267BA37004F519ABDDB3AEE244 ] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
18:44:52.0279 3612  C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe - ok
18:44:52.0279 3612  [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
18:44:52.0279 3612  C:\Windows\SysWOW64\wpdshext.dll - ok
18:44:52.0279 3612  [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
18:44:52.0279 3612  C:\Windows\SysWOW64\security.dll - ok
18:44:52.0279 3612  [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll
18:44:52.0279 3612  C:\Windows\System32\wpdshext.dll - ok
18:44:52.0279 3612  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
18:44:52.0279 3612  C:\Windows\System32\DXP.dll - ok
18:44:52.0294 3612  [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
18:44:52.0294 3612  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
18:44:52.0294 3612  [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
18:44:52.0294 3612  C:\Windows\SysWOW64\d2d1.dll - ok
18:44:52.0294 3612  [ 4D0307C0E3AC2A37441C1C2C5DADE063 ] C:\Program Files\Intel\WiFi\bin\LangResources\enu\PanTrENU.DLL
18:44:52.0294 3612  C:\Program Files\Intel\WiFi\bin\LangResources\enu\PanTrENU.DLL - ok
18:44:52.0294 3612  [ D629F73E88B2DA7F5BDA2C06466DCCC4 ] C:\Windows\IME\SPTIP.DLL
18:44:52.0294 3612  C:\Windows\IME\SPTIP.DLL - ok
18:44:52.0294 3612  [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
18:44:52.0294 3612  C:\Windows\SysWOW64\logoncli.dll - ok
18:44:52.0294 3612  [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\SysWOW64\Syncreg.dll
18:44:52.0294 3612  C:\Windows\SysWOW64\Syncreg.dll - ok
18:44:52.0310 3612  [ F7DD2D785280DB73DC9060F80361BEFB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
18:44:52.0310 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
18:44:52.0310 3612  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
18:44:52.0310 3612  C:\Windows\System32\Syncreg.dll - ok
18:44:52.0310 3612  [ 3EE10E01F87C77690AAE39DA7B8FDC2D ] C:\Program Files\Windows NT\TableTextService\TableTextService.dll
18:44:52.0310 3612  C:\Program Files\Windows NT\TableTextService\TableTextService.dll - ok
18:44:52.0310 3612  [ AF43C4F7F3C8BC95DAD95024F96CDC4A ] C:\Program Files (x86)\QuickTime\QTTask.exe
18:44:52.0310 3612  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
18:44:52.0310 3612  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
18:44:52.0310 3612  C:\Windows\ehome\ehSSO.dll - ok
18:44:52.0310 3612  [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
18:44:52.0310 3612  C:\Windows\SysWOW64\netshell.dll - ok
18:44:52.0326 3612  [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\goopdateres_en.dll
18:44:52.0326 3612  C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\goopdateres_en.dll - ok
18:44:52.0326 3612  [ 5AA4DF6CD3C96086955064BEC1CD0C9B ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
18:44:52.0326 3612  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
18:44:52.0326 3612  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
18:44:52.0326 3612  C:\Windows\System32\ieframe.dll - ok
18:44:52.0326 3612  [ CE7803953FE7314061B3F9188D310EB2 ] C:\Windows\SysWOW64\en-US\KernelBase.dll.mui
18:44:52.0326 3612  C:\Windows\SysWOW64\en-US\KernelBase.dll.mui - ok
18:44:52.0326 3612  [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\SysWOW64\AltTab.dll
18:44:52.0326 3612  C:\Windows\SysWOW64\AltTab.dll - ok
18:44:52.0326 3612  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
18:44:52.0326 3612  C:\Windows\System32\AltTab.dll - ok
18:44:52.0341 3612  [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\Windows\SysWOW64\pnidui.dll
18:44:52.0341 3612  C:\Windows\SysWOW64\pnidui.dll - ok
18:44:52.0341 3612  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
18:44:52.0341 3612  C:\Windows\System32\pnidui.dll - ok
18:44:52.0341 3612  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
18:44:52.0341 3612  C:\Windows\SysWOW64\mscoree.dll - ok
18:44:52.0341 3612  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
18:44:52.0341 3612  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
18:44:52.0341 3612  [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
18:44:52.0341 3612  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
18:44:52.0357 3612  [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\SysWOW64\hnetcfg.dll
18:44:52.0357 3612  C:\Windows\SysWOW64\hnetcfg.dll - ok
18:44:52.0357 3612  [ BD626EF05967D14C772B8096292731A3 ] C:\Windows\SysWOW64\QUTIL.DLL
18:44:52.0357 3612  C:\Windows\SysWOW64\QUTIL.DLL - ok
18:44:52.0357 3612  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
18:44:52.0357 3612  C:\Windows\System32\QUTIL.DLL - ok
18:44:52.0357 3612  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
18:44:52.0357 3612  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
18:44:52.0357 3612  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
18:44:52.0357 3612  C:\Windows\System32\netman.dll - ok
18:44:52.0357 3612  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
18:44:52.0357 3612  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
18:44:52.0372 3612  [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
18:44:52.0372 3612  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
18:44:52.0372 3612  [ 054B87C872292A960B9B8A834B34DFA7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
18:44:52.0372 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
18:44:52.0372 3612  [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\Windows\SysWOW64\WPDShServiceObj.dll
18:44:52.0372 3612  C:\Windows\SysWOW64\WPDShServiceObj.dll - ok
18:44:52.0372 3612  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
18:44:52.0372 3612  C:\Windows\System32\WPDShServiceObj.dll - ok
18:44:52.0372 3612  [ 04B88428A872390D235BE52D38A9D4EF ] C:\Windows\SysWOW64\dot3api.dll
18:44:52.0372 3612  C:\Windows\SysWOW64\dot3api.dll - ok
18:44:52.0372 3612  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
18:44:52.0372 3612  C:\Windows\System32\dot3api.dll - ok
18:44:52.0388 3612  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe
18:44:52.0388 3612  C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
18:44:52.0388 3612  [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\SysWOW64\PortableDeviceTypes.dll
18:44:52.0388 3612  C:\Windows\SysWOW64\PortableDeviceTypes.dll - ok
18:44:52.0388 3612  [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\SysWOW64\wlanhlp.dll
18:44:52.0388 3612  C:\Windows\SysWOW64\wlanhlp.dll - ok
18:44:52.0388 3612  [ 25E06481510846A7B0447FE8C051DC8F ] C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll
18:44:52.0388 3612  C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll - ok
18:44:52.0388 3612  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
18:44:52.0388 3612  C:\Windows\System32\PortableDeviceTypes.dll - ok
18:44:52.0388 3612  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
18:44:52.0388 3612  C:\Windows\System32\wlanhlp.dll - ok
18:44:52.0404 3612  [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\Windows\SysWOW64\ActionCenter.dll
18:44:52.0404 3612  C:\Windows\SysWOW64\ActionCenter.dll - ok
18:44:52.0404 3612  [ C316AFAE719B1C1CE1B903673BC6A641 ] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
18:44:52.0404 3612  C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe - ok
18:44:52.0404 3612  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
18:44:52.0404 3612  C:\Windows\System32\ActionCenter.dll - ok
18:44:52.0404 3612  [ B39B8CC163C41B12FE83E777199F3378 ] C:\Windows\SysWOW64\tzres.dll
18:44:52.0404 3612  C:\Windows\SysWOW64\tzres.dll - ok
18:44:52.0404 3612  [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\SysWOW64\ncobjapi.dll
18:44:52.0404 3612  C:\Windows\SysWOW64\ncobjapi.dll - ok
18:44:52.0404 3612  [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
18:44:52.0404 3612  C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
18:44:52.0419 3612  [ 477B7037F11517494EA9A4CD6171018F ] C:\Program Files (x86)\Hewlett-Packard\Shared\hputils.dll
18:44:52.0419 3612  C:\Program Files (x86)\Hewlett-Packard\Shared\hputils.dll - ok
18:44:52.0419 3612  [ B18B6ACD4793205929E41C3AE00B689A ] C:\Windows\SysWOW64\en-US\tzres.dll.mui
18:44:52.0419 3612  C:\Windows\SysWOW64\en-US\tzres.dll.mui - ok
18:44:52.0419 3612  [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
18:44:52.0419 3612  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
18:44:52.0419 3612  [ 140D9F911182357626165EA0BEB98C4F ] C:\Windows\SysWOW64\ncsi.dll
18:44:52.0419 3612  C:\Windows\SysWOW64\ncsi.dll - ok
18:44:52.0419 3612  [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
18:44:52.0419 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
18:44:52.0435 3612  [ 8B22CF51B907E3A221267CF1E502993A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
18:44:52.0435 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
18:44:52.0435 3612  [ 6B63EA7979F501C37FC55A26CA162ACD ] C:\Windows\SysWOW64\en-US\user32.dll.mui
18:44:52.0435 3612  C:\Windows\SysWOW64\en-US\user32.dll.mui - ok
18:44:52.0435 3612  [ 1A699A8E6CC8123B921AF8FF921B4F5B ] C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\HPSWManagedDLL.dll
18:44:52.0435 3612  C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\HPSWManagedDLL.dll - ok
18:44:52.0435 3612  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
18:44:52.0435 3612  C:\Users\Owner\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
18:44:52.0435 3612  [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
18:44:52.0435 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
18:44:52.0450 3612  [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\Windows\SysWOW64\srchadmin.dll
18:44:52.0450 3612  C:\Windows\SysWOW64\srchadmin.dll - ok
18:44:52.0450 3612  [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
18:44:52.0450 3612  C:\Windows\SysWOW64\oleaccrc.dll - ok
18:44:52.0450 3612  [ BEA91412B280171463864F682A1DB46E ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:44:52.0450 3612  C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
18:44:52.0450 3612  [ 794950DB77AA590C2964ECA0A5874A09 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
18:44:52.0450 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
18:44:52.0450 3612  [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
18:44:52.0450 3612  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
18:44:52.0450 3612  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
18:44:52.0450 3612  C:\Windows\System32\srchadmin.dll - ok
18:44:52.0466 3612  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
18:44:52.0466 3612  C:\Windows\System32\wbem\cimwin32.dll - ok
18:44:52.0466 3612  [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
18:44:52.0466 3612  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
18:44:52.0466 3612  [ 250BF888DDBE88D61EB19A9D4957C794 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
18:44:52.0466 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
18:44:52.0466 3612  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
18:44:52.0466 3612  C:\Windows\SysWOW64\npmproxy.dll - ok
18:44:52.0466 3612  [ 0EE196320B62421773B4045CCA5E66A8 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
18:44:52.0466 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
18:44:52.0466 3612  [ 858B5DFF1516D0DEEAE8A129B9EEB005 ] C:\Program Files\Logitech\SetPoint\x86\GameHook.dll
18:44:52.0466 3612  C:\Program Files\Logitech\SetPoint\x86\GameHook.dll - ok
18:44:52.0482 3612  [ D0481FB85BEEDD30A0884BE327880F80 ] C:\Windows\SysWOW64\framedynos.dll
18:44:52.0482 3612  C:\Windows\SysWOW64\framedynos.dll - ok
18:44:52.0482 3612  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
18:44:52.0482 3612  C:\Windows\System32\FXSST.dll - ok
18:44:52.0482 3612  [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
18:44:52.0482 3612  C:\Windows\SysWOW64\FirewallAPI.dll - ok
18:44:52.0482 3612  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
18:44:52.0482 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
18:44:52.0482 3612  [ 9C13B38B77B89283238F79B960E72FFF ] C:\Program Files\Logitech\SetPoint\x86\IMHook.dll
18:44:52.0482 3612  C:\Program Files\Logitech\SetPoint\x86\IMHook.dll - ok
18:44:52.0497 3612  [ 907281ED4AD35D41B29FFDC211EBAD80 ] C:\Windows\SysWOW64\wmi.dll
18:44:52.0497 3612  C:\Windows\SysWOW64\wmi.dll - ok
18:44:52.0497 3612  [ DCDAA5AD16AE0FD9A71ED7347AB2C236 ] C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll
18:44:52.0497 3612  C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll - ok
18:44:52.0497 3612  [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\SysWOW64\FXSAPI.dll
18:44:52.0497 3612  C:\Windows\SysWOW64\FXSAPI.dll - ok
18:44:52.0497 3612  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
18:44:52.0497 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
18:44:52.0497 3612  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
18:44:52.0497 3612  C:\Windows\System32\FXSAPI.dll - ok
18:44:52.0497 3612  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
18:44:52.0497 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
18:44:52.0513 3612  [ E23D6338E27442A11578DD284EA4D08C ] C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll
18:44:52.0513 3612  C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll - ok
18:44:52.0513 3612  [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\SysWOW64\rasdlg.dll
18:44:52.0513 3612  C:\Windows\SysWOW64\rasdlg.dll - ok
18:44:52.0513 3612  [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
18:44:52.0513 3612  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
18:44:52.0513 3612  [ 1838D3ECDDD78BCAFB092FA31C7AFD2D ] C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hp.mobile.shared.dll
18:44:52.0513 3612  C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hp.mobile.shared.dll - ok
18:44:52.0513 3612  [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\SysWOW64\FXSRESM.dll
18:44:52.0513 3612  C:\Windows\SysWOW64\FXSRESM.dll - ok
18:44:52.0513 3612  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
18:44:52.0513 3612  C:\Windows\System32\rasdlg.dll - ok
18:44:52.0528 3612  [ 55709A4DAF50EAF99C38AA09E758DECD ] C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll
18:44:52.0528 3612  C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll - ok
18:44:52.0528 3612  [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\SysWOW64\browcli.dll
18:44:52.0528 3612  C:\Windows\SysWOW64\browcli.dll - ok
18:44:52.0528 3612  [ 37CF2461CB5E40C4CFAB82C8FC79A2BC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
18:44:52.0528 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
18:44:52.0528 3612  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
18:44:52.0528 3612  C:\Windows\System32\FXSRESM.dll - ok
18:44:52.0528 3612  [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\SysWOW64\mprapi.dll
18:44:52.0528 3612  C:\Windows\SysWOW64\mprapi.dll - ok
18:44:52.0528 3612  [ 697743E98DFE021850BD28C4AAE990CD ] C:\Program Files\Logitech\SetPoint\x86\HookDll.dll
18:44:52.0528 3612  C:\Program Files\Logitech\SetPoint\x86\HookDll.dll - ok
18:44:52.0544 3612  [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\SysWOW64\SearchIndexer.exe
18:44:52.0544 3612  C:\Windows\SysWOW64\SearchIndexer.exe - ok
18:44:52.0544 3612  [ 913AAFED831387D0011CA9D2CDA8A087 ] C:\Windows\assembly\GAC_MSIL\HP.SupportFramework\1.0.0.0__2a4860322af7ba08\HP.SupportFramework.dll
18:44:52.0544 3612  C:\Windows\assembly\GAC_MSIL\HP.SupportFramework\1.0.0.0__2a4860322af7ba08\HP.SupportFramework.dll - ok
18:44:52.0544 3612  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
18:44:52.0544 3612  C:\Windows\System32\FXSSVC.exe - ok
18:44:52.0544 3612  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
18:44:52.0544 3612  C:\Windows\System32\SearchIndexer.exe - ok
18:44:52.0544 3612  [ 79178C7FE202458C06626991EB7F15E7 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll
18:44:52.0544 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll - ok
18:44:52.0544 3612  [ 29BB5AE1F5535B909CEEE43F21A7EE0D ] C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll
18:44:52.0544 3612  C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll - ok
18:44:52.0560 3612  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
18:44:52.0560 3612  C:\Windows\System32\framedynos.dll - ok
18:44:52.0560 3612  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
18:44:52.0560 3612  C:\Windows\System32\wmi.dll - ok
18:44:52.0560 3612  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
18:44:52.0560 3612  C:\Windows\System32\browcli.dll - ok
18:44:52.0560 3612  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
18:44:52.0560 3612  C:\Windows\SysWOW64\taskschd.dll - ok
18:44:52.0560 3612  [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\SysWOW64\tquery.dll
18:44:52.0560 3612  C:\Windows\SysWOW64\tquery.dll - ok
18:44:52.0560 3612  [ E75963624A3F55C90AC8A7C2E65072FF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
18:44:52.0575 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
18:44:52.0575 3612  [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\SysWOW64\schedcli.dll
18:44:52.0575 3612  C:\Windows\SysWOW64\schedcli.dll - ok
18:44:52.0575 3612  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
18:44:52.0575 3612  C:\Windows\System32\tquery.dll - ok
18:44:52.0575 3612  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
18:44:52.0575 3612  C:\Windows\System32\schedcli.dll - ok
18:44:52.0575 3612  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
18:44:52.0575 3612  C:\Windows\SysWOW64\dsrole.dll - ok
18:44:52.0575 3612  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
18:44:52.0575 3612  C:\Windows\SysWOW64\shfolder.dll - ok
18:44:52.0591 3612  [ 37C0848178C36055FCEAB27AE492E663 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll
18:44:52.0591 3612  C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll - ok
18:44:52.0591 3612  [ 0241CB16136B9A4939CA0395768AE286 ] C:\Windows\SysWOW64\mssrch.dll
18:44:52.0591 3612  C:\Windows\SysWOW64\mssrch.dll - ok
18:44:52.0591 3612  [ FC33CBBB9CADCEC307DA010FE763D04C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
18:44:52.0591 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
18:44:52.0591 3612  [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
18:44:52.0591 3612  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
18:44:52.0591 3612  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
18:44:52.0591 3612  C:\Windows\System32\mssrch.dll - ok
18:44:52.0591 3612  [ C005675C71403929B2C3AED7ACE0811B ] C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll
18:44:52.0591 3612  C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll - ok
18:44:52.0606 3612  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
18:44:52.0606 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
18:44:52.0606 3612  [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
18:44:52.0606 3612  C:\Windows\SysWOW64\d3d10warp.dll - ok
18:44:52.0606 3612  [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
18:44:52.0606 3612  C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
18:44:52.0606 3612  [ 51D2F66C0C55419CA4A797C8D1B0AD8D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
18:44:52.0606 3612  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll - ok
18:44:52.0606 3612  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
18:44:52.0606 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
18:44:52.0622 3612  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
18:44:52.0622 3612  C:\Windows\AppPatch\AcLayers.dll - ok
18:44:52.0622 3612  [ 432BE6CF7311062633459EEF6B242FB5 ] C:\Windows\SysWOW64\regsvr32.exe
18:44:52.0622 3612  C:\Windows\SysWOW64\regsvr32.exe - ok
18:44:52.0622 3612  [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
18:44:52.0622 3612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
18:44:52.0622 3612  [ B50CD4373CFA82779E14F28232A808C6 ] C:\Program Files\Logitech\SetPoint\IMHook.dll
18:44:52.0622 3612  C:\Program Files\Logitech\SetPoint\IMHook.dll - ok
18:44:52.0622 3612  [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\SysWOW64\msidle.dll
18:44:52.0622 3612  C:\Windows\SysWOW64\msidle.dll - ok
18:44:52.0622 3612  [ 118FDDCCDCE979CBBC3E6DB85077F28C ] C:\Program Files\Logitech\SetPoint\WebBrowserSupport.dll
18:44:52.0622 3612  C:\Program Files\Logitech\SetPoint\WebBrowserSupport.dll - ok
18:44:52.0638 3612  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
18:44:52.0638 3612  C:\Windows\System32\msidle.dll - ok
18:44:52.0638 3612  [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
18:44:52.0638 3612  C:\Windows\SysWOW64\KBDUS.DLL - ok
18:44:52.0638 3612  [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
18:44:52.0638 3612  C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
18:44:52.0638 3612  [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
18:44:52.0638 3612  C:\Windows\AppPatch\acwow64.dll - ok
18:44:52.0638 3612  [ B95F748C4F100DD0F6E8115CC0968670 ] C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll
18:44:52.0638 3612  C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll - ok
18:44:52.0638 3612  [ B66F929DFFFCE5676A773EF897B8E168 ] C:\Program Files\WIDCOMM\Bluetooth Software\syswow64\BtMmHook.dll
18:44:52.0638 3612  C:\Program Files\WIDCOMM\Bluetooth Software\syswow64\BtMmHook.dll - ok
18:44:52.0653 3612  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
18:44:52.0653 3612  C:\Windows\SysWOW64\mssprxy.dll - ok
18:44:52.0653 3612  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
18:44:52.0653 3612  C:\Windows\System32\mssprxy.dll - ok
18:44:52.0653 3612  [ 39529718A3C1C3F197E63DDABEE758F8 ] C:\Program Files\Logitech\SetPoint\Macros\MacroAppSwitch.dll
18:44:52.0653 3612  C:\Program Files\Logitech\SetPoint\Macros\MacroAppSwitch.dll - ok
18:44:52.0653 3612  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
18:44:52.0653 3612  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
18:44:52.0653 3612  [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
18:44:52.0653 3612  C:\Windows\AppPatch\AcGenral.dll - ok
18:44:52.0653 3612  [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\SysWOW64\WWanAPI.dll
18:44:52.0653 3612  C:\Windows\SysWOW64\WWanAPI.dll - ok
18:44:52.0669 3612  [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\SysWOW64\en-US\tquery.dll.mui
18:44:52.0669 3612  C:\Windows\SysWOW64\en-US\tquery.dll.mui - ok
18:44:52.0669 3612  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
18:44:52.0669 3612  C:\Windows\System32\WWanAPI.dll - ok
18:44:52.0669 3612  [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\SysWOW64\wwapi.dll
18:44:52.0669 3612  C:\Windows\SysWOW64\wwapi.dll - ok
18:44:52.0669 3612  [ F2CEE06FD2BDEAAD1792B24FDB3B442B ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.dll
18:44:52.0669 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.dll - ok
18:44:52.0669 3612  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
18:44:52.0669 3612  C:\Windows\System32\en-US\tquery.dll.mui - ok
18:44:52.0684 3612  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
18:44:52.0684 3612  C:\Windows\System32\wwapi.dll - ok
18:44:52.0684 3612  [ 088DE34E42AEEA124D3B468565B06483 ] C:\Windows\SysWOW64\wbem\vdswmi.dll
18:44:52.0684 3612  C:\Windows\SysWOW64\wbem\vdswmi.dll - ok
18:44:52.0684 3612  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
18:44:52.0684 3612  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
18:44:52.0684 3612  [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\Windows\SysWOW64\QAGENT.DLL
18:44:52.0684 3612  C:\Windows\SysWOW64\QAGENT.DLL - ok
18:44:52.0684 3612  [ 06F8D094F516B21A698AB562198EEF7E ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
18:44:52.0684 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe - ok
18:44:52.0684 3612  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
18:44:52.0684 3612  C:\Windows\System32\QAGENT.DLL - ok
18:44:52.0700 3612  [ 7E5EEECD068A1508C3CE5D83BF5C50E0 ] C:\Windows\SysWOW64\dskquota.dll
18:44:52.0700 3612  C:\Windows\SysWOW64\dskquota.dll - ok
18:44:52.0700 3612  [ 59BCE9F07985F8A4204F4D6554CFF708 ] C:\Windows\System32\regsvr32.exe
18:44:52.0700 3612  C:\Windows\System32\regsvr32.exe - ok
18:44:52.0700 3612  [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\SysWOW64\wmp.dll
18:44:52.0700 3612  C:\Windows\SysWOW64\wmp.dll - ok
18:44:52.0700 3612  [ 68573208DF10FE853C36922F519F593B ] C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.dll
18:44:52.0700 3612  C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.dll - ok
18:44:52.0700 3612  [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\SysWOW64\wmploc.DLL
18:44:52.0700 3612  C:\Windows\SysWOW64\wmploc.DLL - ok
18:44:52.0700 3612  [ 92B3C209A05CF5B61D38B6EF019006F4 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.dll
18:44:52.0700 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.dll - ok
18:44:52.0716 3612  [ FC840462654DC8BCC709FBE6476AF8CD ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFVersion.dll
18:44:52.0716 3612  C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFVersion.dll - ok
18:44:52.0716 3612  [ 7C9BF77ADAA12FBCD291F6407D4447FC ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.dll
18:44:52.0716 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.dll - ok
18:44:52.0716 3612  [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
18:44:52.0716 3612  C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
18:44:52.0716 3612  [ F7408349454FA56667DFD48226E5574C ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.dll
18:44:52.0716 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.dll - ok
18:44:52.0716 3612  [ 21C7717DED4542AE820C1B96F1FD2FEA ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.dll
18:44:52.0716 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.dll - ok
18:44:52.0716 3612  [ 2B67DDE53E008846B26B8473300D1B78 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.dll
18:44:52.0716 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.dll - ok
18:44:52.0731 3612  [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\SysWOW64\pcwum.dll
18:44:52.0731 3612  C:\Windows\SysWOW64\pcwum.dll - ok
18:44:52.0731 3612  [ 17E2D902AAD5DA15A8178334C2B1D995 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.dll
18:44:52.0731 3612  C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.dll - ok
18:44:52.0731 3612  [ EC68CF6911A25B45E752C457B84A21EE ] C:\Program Files\Logitech\SetPoint\KGame.dll
18:44:52.0731 3612  C:\Program Files\Logitech\SetPoint\KGame.dll - ok
18:44:52.0731 3612  [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
18:44:52.0731 3612  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
18:44:52.0731 3612  [ 13F51E8B6F47AEA6761F1C86374E466B ] C:\Program Files\Logitech\SetPoint\GameHook.dll
18:44:52.0731 3612  C:\Program Files\Logitech\SetPoint\GameHook.dll - ok
18:44:52.0747 3612  [ B0AC88C4E3B63EC8B67768301D10E652 ] C:\Program Files\Logitech\SetPoint\SetPointCOMWMP9.dll
18:44:52.0747 3612  C:\Program Files\Logitech\SetPoint\SetPointCOMWMP9.dll - ok
18:44:52.0747 3612  [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\Windows\SysWOW64\wmdrmdev.dll
18:44:52.0747 3612  C:\Windows\SysWOW64\wmdrmdev.dll - ok
18:44:52.0747 3612  [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\SysWOW64\drmv2clt.dll
18:44:52.0747 3612  C:\Windows\SysWOW64\drmv2clt.dll - ok
18:44:52.0747 3612  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
18:44:52.0747 3612  C:\Windows\SysWOW64\mfplat.dll - ok
18:44:52.0747 3612  [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\SysWOW64\vssapi.dll
18:44:52.0747 3612  C:\Windows\SysWOW64\vssapi.dll - ok
18:44:52.0747 3612  [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\SysWOW64\vsstrace.dll
18:44:52.0747 3612  C:\Windows\SysWOW64\vsstrace.dll - ok
18:44:52.0762 3612  [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\SysWOW64\webcheck.dll
18:44:52.0762 3612  C:\Windows\SysWOW64\webcheck.dll - ok
18:44:52.0762 3612  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
18:44:52.0762 3612  C:\Windows\System32\webcheck.dll - ok
18:44:52.0762 3612  [ 07E9F8CC9E42D3EE5FAAE844B655BB42 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
18:44:52.0762 3612  C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
18:44:52.0762 3612  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
18:44:52.0762 3612  C:\Windows\SysWOW64\mlang.dll - ok
18:44:52.0762 3612  [ E1AC89F6C5252057E6062843E36A6701 ] C:\Windows\SysWOW64\SearchProtocolHost.exe
18:44:52.0762 3612  C:\Windows\SysWOW64\SearchProtocolHost.exe - ok
18:44:52.0762 3612  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
18:44:52.0762 3612  C:\Windows\System32\mlang.dll - ok
18:44:52.0778 3612  [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
18:44:52.0778 3612  C:\Windows\System32\SearchProtocolHost.exe - ok
18:44:52.0778 3612  [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\Windows\SysWOW64\SyncCenter.dll
18:44:52.0778 3612  C:\Windows\SysWOW64\SyncCenter.dll - ok
18:44:52.0778 3612  [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\SysWOW64\upnp.dll
18:44:52.0778 3612  C:\Windows\SysWOW64\upnp.dll - ok
18:44:52.0778 3612  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
18:44:52.0778 3612  C:\Windows\System32\SyncCenter.dll - ok
18:44:52.0778 3612  [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\SysWOW64\msshooks.dll
18:44:52.0778 3612  C:\Windows\SysWOW64\msshooks.dll - ok
18:44:52.0778 3612  [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\SysWOW64\ssdpapi.dll
18:44:52.0778 3612  C:\Windows\SysWOW64\ssdpapi.dll - ok
18:44:52.0794 3612  [ 89F4D0DD6606A2FE15931E6888DBBC8D ] C:\Windows\SysWOW64\stdole2.tlb
18:44:52.0794 3612  C:\Windows\SysWOW64\stdole2.tlb - ok
18:44:52.0794 3612  [ B292E60B5334E6763BA365D8FD96D3B7 ] C:\Program Files\Logitech\SetPoint\SetPointCOMMM9.dll
18:44:52.0794 3612  C:\Program Files\Logitech\SetPoint\SetPointCOMMM9.dll - ok
18:44:52.0794 3612  [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\Windows\SysWOW64\imapi2.dll
18:44:52.0794 3612  C:\Windows\SysWOW64\imapi2.dll - ok
18:44:52.0794 3612  [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
18:44:52.0794 3612  C:\Program Files\Internet Explorer\ieproxy.dll - ok
18:44:52.0794 3612  [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
18:44:52.0794 3612  C:\Windows\System32\msshooks.dll - ok
18:44:52.0794 3612  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\Windows\SysWOW64\provsvc.dll
18:44:52.0794 3612  C:\Windows\SysWOW64\provsvc.dll - ok
18:44:52.0809 3612  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
18:44:52.0809 3612  C:\Windows\System32\imapi2.dll - ok
18:44:52.0809 3612  [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\Windows\SysWOW64\SearchFilterHost.exe
18:44:52.0809 3612  C:\Windows\SysWOW64\SearchFilterHost.exe - ok
18:44:52.0809 3612  [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\SysWOW64\wmpps.dll
18:44:52.0809 3612  C:\Windows\SysWOW64\wmpps.dll - ok
18:44:52.0809 3612  [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
18:44:52.0809 3612  C:\Windows\System32\SearchFilterHost.exe - ok
18:44:52.0809 3612  [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\Windows\SysWOW64\wmpmde.dll
18:44:52.0809 3612  C:\Windows\SysWOW64\wmpmde.dll - ok
18:44:52.0809 3612  [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\Windows\SysWOW64\httpapi.dll
18:44:52.0809 3612  C:\Windows\SysWOW64\httpapi.dll - ok
18:44:52.0825 3612  [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\SysWOW64\WinSATAPI.dll
18:44:52.0825 3612  C:\Windows\SysWOW64\WinSATAPI.dll - ok
18:44:52.0825 3612  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
18:44:52.0825 3612  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
18:44:52.0825 3612  [ A7003E6E6EBADA7DEB9840BCB9C539B7 ] C:\Program Files\Logitech\SetPoint\LCabHandler.dll
18:44:52.0825 3612  C:\Program Files\Logitech\SetPoint\LCabHandler.dll - ok
18:44:52.0825 3612  [ 469F2841AB3C27A88C37CA7681D9CA28 ] C:\Program Files\Logitech\SetPoint\LU\LuLnchr.exe
18:44:52.0825 3612  C:\Program Files\Logitech\SetPoint\LU\LuLnchr.exe - ok
18:44:52.0825 3612  [ C2A9093E56551AACD417926F14F848E8 ] C:\Windows\SysWOW64\msxml6r.dll
18:44:52.0825 3612  C:\Windows\SysWOW64\msxml6r.dll - ok
18:44:52.0825 3612  [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
18:44:52.0825 3612  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
18:44:52.0840 3612  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
18:44:52.0840 3612  C:\Windows\System32\mscoree.dll - ok
18:44:52.0840 3612  [ 330A6E9A4A6FA657EBB094FCD82EFA9D ] C:\Windows\SysWOW64\en-US\WinSATAPI.dll.mui
18:44:52.0840 3612  C:\Windows\SysWOW64\en-US\WinSATAPI.dll.mui - ok
18:44:52.0840 3612  [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\Windows\SysWOW64\MSMPEG2ENC.DLL
18:44:52.0840 3612  C:\Windows\SysWOW64\MSMPEG2ENC.DLL - ok
18:44:52.0840 3612  [ 14CE9290E9549F6644B6E4D86A3CA509 ] C:\Program Files\Logitech\SetPoint\Macros\MacroEmail.dll
18:44:52.0840 3612  C:\Program Files\Logitech\SetPoint\Macros\MacroEmail.dll - ok
18:44:52.0840 3612  [ 993C49D91C7DEB6FC92F1BD7DB5FA84F ] C:\Program Files\Logitech\SetPoint\KEMHook.dll
18:44:52.0840 3612  C:\Program Files\Logitech\SetPoint\KEMHook.dll - ok
18:44:52.0840 3612  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
18:44:52.0840 3612  C:\Windows\SysWOW64\netprofm.dll - ok
18:44:52.0856 3612  [ 68BC2074A748B07B73A63087BFC1B67D ] C:\Program Files\Logitech\SetPoint\Macros\MacroMedia.dll
18:44:52.0856 3612  C:\Program Files\Logitech\SetPoint\Macros\MacroMedia.dll - ok
18:44:52.0856 3612  [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\SysWOW64\upnphost.dll
18:44:52.0856 3612  C:\Windows\SysWOW64\upnphost.dll - ok
18:44:52.0856 3612  [ DB67C7C62038BDE813CB6486581A7611 ] C:\Windows\SysWOW64\mssph.dll
18:44:52.0856 3612  C:\Windows\SysWOW64\mssph.dll - ok
18:44:52.0856 3612  [ 03AA82C3772DE28C96E4C83A4A07AF61 ] C:\Windows\SysWOW64\en-US\FirewallAPI.dll.mui
18:44:52.0856 3612  C:\Windows\SysWOW64\en-US\FirewallAPI.dll.mui - ok
18:44:52.0856 3612  [ C6711C2226AC422D8AE2AC6F18D07D60 ] C:\Windows\SysWOW64\en-US\propsys.dll.mui
18:44:52.0856 3612  C:\Windows\SysWOW64\en-US\propsys.dll.mui - ok
18:44:52.0872 3612  [ A45CB10FC8C4DCA23F96FE4D334F64FE ] C:\Windows\SysWOW64\msxml3r.dll
18:44:52.0872 3612  C:\Windows\SysWOW64\msxml3r.dll - ok
18:44:52.0872 3612  [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
18:44:52.0872 3612  C:\Windows\System32\mssph.dll - ok
18:44:52.0872 3612  [ D4A8714E8A999DB88A497DB4B33CAD30 ] C:\Program Files\Logitech\SetPoint\LU\LogitechUpdate.exe
18:44:52.0872 3612  C:\Program Files\Logitech\SetPoint\LU\LogitechUpdate.exe - ok
18:44:52.0872 3612  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
18:44:52.0872 3612  C:\Windows\SysWOW64\mapi32.dll - ok
18:44:52.0872 3612  [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
18:44:52.0872 3612  C:\Windows\System32\mapi32.dll - ok
18:44:52.0872 3612  [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
18:44:52.0872 3612  C:\Windows\System32\wmdrmdev.dll - ok
18:44:52.0887 3612  [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\SysWOW64\authz.dll
18:44:52.0887 3612  C:\Windows\SysWOW64\authz.dll - ok
18:44:52.0887 3612  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
18:44:52.0887 3612  C:\Windows\System32\drmv2clt.dll - ok
18:44:52.0887 3612  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
18:44:52.0887 3612  C:\Windows\System32\mfplat.dll - ok
18:44:52.0887 3612  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
18:44:52.0887 3612  C:\Windows\System32\upnp.dll - ok
18:44:52.0887 3612  [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
18:44:52.0887 3612  C:\Windows\SysWOW64\svchost.exe - ok
18:44:52.0887 3612  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
18:44:52.0887 3612  C:\Windows\System32\ssdpsrv.dll - ok
18:44:52.0903 3612  [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
18:44:52.0903 3612  C:\Windows\System32\wmp.dll - ok
18:44:52.0903 3612  [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
18:44:52.0903 3612  C:\Windows\System32\wmploc.DLL - ok
18:44:52.0903 3612  [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
18:44:52.0903 3612  C:\Windows\System32\wmpps.dll - ok
18:44:52.0903 3612  [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
18:44:52.0903 3612  C:\Windows\System32\wmpmde.dll - ok
18:44:52.0903 3612  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
18:44:52.0903 3612  C:\Windows\System32\httpapi.dll - ok
18:44:52.0903 3612  [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
18:44:52.0903 3612  C:\Windows\System32\WinSATAPI.dll - ok
18:44:52.0918 3612  [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
18:44:52.0918 3612  C:\Windows\System32\MSMPEG2ENC.DLL - ok
18:44:52.0918 3612  [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
18:44:52.0918 3612  C:\Windows\System32\devenum.dll - ok
18:44:52.0918 3612  [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
18:44:52.0918 3612  C:\Windows\System32\msdmo.dll - ok
18:44:52.0918 3612  [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
18:44:52.0918 3612  C:\Windows\System32\upnphost.dll - ok
18:44:52.0918 3612  [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\Windows\SysWOW64\udhisapi.dll
18:44:52.0918 3612  C:\Windows\SysWOW64\udhisapi.dll - ok
18:44:52.0918 3612  [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
18:44:52.0918 3612  C:\Windows\System32\udhisapi.dll - ok
18:44:52.0934 3612  [ C7952D0A4C43A965A1741916BB134751 ] C:\Windows\SysWOW64\hgcpl.dll
18:44:52.0934 3612  C:\Windows\SysWOW64\hgcpl.dll - ok
18:44:52.0934 3612  [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
18:44:52.0934 3612  C:\Windows\SysWOW64\drprov.dll - ok
18:44:52.0934 3612  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
18:44:52.0934 3612  C:\Windows\System32\drprov.dll - ok
18:44:52.0934 3612  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
18:44:52.0934 3612  C:\Windows\System32\hgcpl.dll - ok
18:44:52.0934 3612  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
18:44:52.0934 3612  C:\Windows\System32\FDResPub.dll - ok
18:44:52.0934 3612  [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
18:44:52.0934 3612  C:\Windows\SysWOW64\ntlanman.dll - ok
18:44:52.0950 3612  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
18:44:52.0950 3612  C:\Windows\System32\fdPHost.dll - ok
18:44:52.0950 3612  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
18:44:52.0950 3612  C:\Windows\System32\ntlanman.dll - ok
18:44:52.0950 3612  [ DE6F4B7E62FDE776F3DE8E5FB5A05C48 ] C:\Windows\SysWOW64\fdWSD.dll
18:44:52.0950 3612  C:\Windows\SysWOW64\fdWSD.dll - ok
18:44:52.0950 3612  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
18:44:52.0950 3612  C:\Windows\System32\fdWSD.dll - ok
18:44:52.0950 3612  [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
18:44:52.0950 3612  C:\Windows\SysWOW64\davclnt.dll - ok
18:44:52.0950 3612  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
18:44:52.0950 3612  C:\Windows\System32\davclnt.dll - ok
18:44:52.0965 3612  [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\SysWOW64\WSDApi.dll
18:44:52.0965 3612  C:\Windows\SysWOW64\WSDApi.dll - ok
18:44:52.0965 3612  [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
18:44:52.0965 3612  C:\Windows\SysWOW64\davhlpr.dll - ok
18:44:52.0965 3612  [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\SysWOW64\webservices.dll
18:44:52.0965 3612  C:\Windows\SysWOW64\webservices.dll - ok
18:44:52.0965 3612  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
18:44:52.0965 3612  C:\Windows\System32\davhlpr.dll - ok
18:44:52.0965 3612  [ 674611721264013DB169EC12AFC9C3B6 ] C:\Windows\SysWOW64\fdSSDP.dll
18:44:52.0965 3612  C:\Windows\SysWOW64\fdSSDP.dll - ok
18:44:52.0965 3612  [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\SysWOW64\fundisc.dll
18:44:52.0965 3612  C:\Windows\SysWOW64\fundisc.dll - ok
18:44:52.0981 3612  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
18:44:52.0981 3612  C:\Windows\System32\fdSSDP.dll - ok
18:44:52.0981 3612  [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\SysWOW64\fdProxy.dll
18:44:52.0981 3612  C:\Windows\SysWOW64\fdProxy.dll - ok
18:44:52.0981 3612  [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
18:44:52.0981 3612  C:\Windows\System32\fdProxy.dll - ok
18:44:52.0981 3612  [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
18:44:52.0981 3612  C:\Windows\System32\ListSvc.dll - ok
18:44:52.0981 3612  [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\SysWOW64\P2P.dll
18:44:52.0981 3612  C:\Windows\SysWOW64\P2P.dll - ok
18:44:52.0981 3612  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
18:44:52.0981 3612  C:\Windows\System32\IdListen.dll - ok
18:44:52.0996 3612  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
18:44:52.0996 3612  C:\Windows\System32\P2P.dll - ok
18:44:52.0996 3612  [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
18:44:52.0996 3612  C:\Windows\System32\hgprint.dll - ok
18:44:52.0996 3612  [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
18:44:52.0996 3612  C:\Windows\SysWOW64\p2pcollab.dll - ok
18:44:52.0996 3612  [ 1372E8E8FD066002131E3D509275E697 ] C:\Windows\SysWOW64\P2PGraph.dll
18:44:52.0996 3612  C:\Windows\SysWOW64\P2PGraph.dll - ok
18:44:52.0996 3612  [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
18:44:52.0996 3612  C:\Windows\System32\pnrpsvc.dll - ok
18:44:52.0996 3612  [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\SysWOW64\sqmapi.dll
18:44:52.0996 3612  C:\Windows\SysWOW64\sqmapi.dll - ok
18:44:53.0012 3612  [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
18:44:53.0012 3612  C:\Windows\System32\p2psvc.dll - ok
18:44:53.0012 3612  [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
18:44:53.0012 3612  C:\Windows\System32\P2PGraph.dll - ok
18:44:53.0012 3612  [ 347AAE83C7C7B787CED89544532AA47D ] C:\Windows\SysWOW64\PhotoMetadataHandler.dll
18:44:53.0012 3612  C:\Windows\SysWOW64\PhotoMetadataHandler.dll - ok
18:44:53.0012 3612  [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
18:44:53.0012 3612  C:\Windows\System32\PhotoMetadataHandler.dll - ok
18:44:53.0012 3612  ============================================================
18:44:53.0012 3612  Scan finished
18:44:53.0012 3612  ============================================================
18:44:53.0028 3608  Detected object count: 1
18:44:53.0028 3608  Actual detected object count: 1
18:45:22.0917 3608  sptd ( LockedFile.Multi.Generic ) - skipped by user
18:45:22.0917 3608  sptd ( LockedFile.Multi.Generic ) - User select action: Skip
18:46:14.0834 2936  Deinitialize success

 

 

 

*************************

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-19 18:50:42
-----------------------------
18:50:42.657    OS Version: Windows x64 6.1.7601 Service Pack 1
18:50:42.657    Number of processors: 4 586 0x2A07
18:50:42.657    ComputerName: OWNER-HP  UserName: Owner
18:50:46.214    Initialize success
18:53:28.919    AVAST engine defs: 13021902
18:53:56.562    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:53:56.562    Disk 0 Vendor: TOSHIBA_ GS00 Size: 610480MB BusType: 8
18:53:56.577    Disk 0 MBR read successfully
18:53:56.577    Disk 0 MBR scan
18:53:56.593    Disk 0 Windows 7 default MBR code
18:53:56.609    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          199 MB offset 2048
18:53:56.624    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       588894 MB offset 409600
18:53:56.671    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        17322 MB offset 1206464512
18:53:56.687    Disk 0 Partition 4 00     0C    FAT32 LBA MSDOS5.0     4063 MB offset 1241939968
18:53:56.733    Disk 0 scanning C:\Windows\system32\drivers
18:54:16.233    Service scanning
18:55:24.796    Modules scanning
18:55:24.796    Disk 0 trace - called modules:
18:55:24.842    ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys sptd.sys hal.dll
18:55:24.858    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008109060]
18:55:24.874    3 CLASSPNP.SYS[fffff880017c943f] -> nt!IofCallDriver -> [0xfffffa8007f5d960]
18:55:24.874    5 hpdskflt.sys[fffff88001aa0189] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007e27050]
18:55:28.789    AVAST engine scan C:\Windows
18:55:44.358    AVAST engine scan C:\Windows\system32
18:59:58.404    AVAST engine scan C:\Windows\system32\drivers
19:00:14.145    AVAST engine scan C:\Users\Owner
19:01:46.091    Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
19:01:46.107    The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-19 18:50:42
-----------------------------
18:50:42.657    OS Version: Windows x64 6.1.7601 Service Pack 1
18:50:42.657    Number of processors: 4 586 0x2A07
18:50:42.657    ComputerName: OWNER-HP  UserName: Owner
18:50:46.214    Initialize success
18:53:28.919    AVAST engine defs: 13021902
18:53:56.562    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:53:56.562    Disk 0 Vendor: TOSHIBA_ GS00 Size: 610480MB BusType: 8
18:53:56.577    Disk 0 MBR read successfully
18:53:56.577    Disk 0 MBR scan
18:53:56.593    Disk 0 Windows 7 default MBR code
18:53:56.609    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          199 MB offset 2048
18:53:56.624    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       588894 MB offset 409600
18:53:56.671    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        17322 MB offset 1206464512
18:53:56.687    Disk 0 Partition 4 00     0C    FAT32 LBA MSDOS5.0     4063 MB offset 1241939968
18:53:56.733    Disk 0 scanning C:\Windows\system32\drivers
18:54:16.233    Service scanning
18:55:24.796    Modules scanning
18:55:24.796    Disk 0 trace - called modules:
18:55:24.842    ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys sptd.sys hal.dll
18:55:24.858    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008109060]
18:55:24.874    3 CLASSPNP.SYS[fffff880017c943f] -> nt!IofCallDriver -> [0xfffffa8007f5d960]
18:55:24.874    5 hpdskflt.sys[fffff88001aa0189] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007e27050]
18:55:28.789    AVAST engine scan C:\Windows
18:55:44.358    AVAST engine scan C:\Windows\system32
18:59:58.404    AVAST engine scan C:\Windows\system32\drivers
19:00:14.145    AVAST engine scan C:\Users\Owner
19:01:46.091    Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
19:01:46.107    The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"
19:02:51.176    File: C:\Users\Owner\Documents\Astrology\Solar Fire Gold 7\Solar Fire Gold 7--reinstall\SF706 update\Designer.exe  **INFECTED** Win32:Malware-gen
19:05:28.595    AVAST engine scan C:\ProgramData
19:06:49.393    Scan finished successfully
19:07:16.147    Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
19:07:16.147    The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"


 

 

**********************

 

C:\Documents and Settings\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application 
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application 
C:\Users\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application 
C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application 
C:\Users\Owner\AppData\Local\Temp\YontooSetup-S.exe multiple threats 
C:\Users\Owner\Downloads\cbsidlm-tr1_5-PDF_Combine-10429191.exe multiple threats 
C:\Documents and Settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Documents and Settings\Owner\AppData\Local\Temp\YontooSetup-S.exe multiple threats cleaned by deleting - quarantined
C:\Documents and Settings\Owner\Downloads\cbsidlm-tr1_5-PDF_Combine-10429191.exe multiple threats cleaned by deleting - quarantined
C:\Program Files (x86)\Yontoo\YontooIEClient.dll a variant of Win32/Adware.Yontoo.A application cleaned by deleting - quarantined
 



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 20 February 2013 - 02:21 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log


 



#7 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 20 February 2013 - 12:48 PM

Here you go:

 

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.20.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Owner :: OWNER-HP [administrator]

Protection: Disabled

2/20/2013 8:54:04 AM
mbam-log-2013-02-20 (08-54-04).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 206111
Time elapsed: 3 minute(s), 8 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

 

**************************

 

MiniToolBox by Farbar  Version:10-01-2013
Ran by Owner (administrator) on 20-02-2013 at 09:01:05
Running from "C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B9CNF2CM"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 6150 = Wireless Network Connection (Connected)
Intel® Centrino® WiMAX 6150 = Local Area Connection 4 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set subinterface interface=?+ subinterface=ethernet_6 mtu=1477
set subinterface interface=?+ subinterface=ethernet_7 mtu=1477
set subinterface interface=?+ subinterface=ethernet_15 mtu=1477
set subinterface interface=?+ subinterface=ethernet_14 mtu=1477
set subinterface interface=?+ subinterface=ethernet_17 mtu=1477
set subinterface interface=?+ subinterface=ethernet_11 mtu=1477


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Owner-HP
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection* 13:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Anchorfree HSS VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-EB-94-B8-B6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 40-25-C2-8C-81-3D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 40-25-C2-8C-81-3D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 6150
   Physical Address. . . . . . . . . : 40-25-C2-8C-81-3C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::ec28:7146:73e6:bfdf%24(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, February 20, 2013 8:49:57 AM
   Lease Expires . . . . . . . . . . : Wednesday, February 20, 2013 9:49:56 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 490743234
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-B7-AA-20-10-1F-74-68-FF-B9
   DNS Servers . . . . . . . . . . . : 71.9.127.107
                                       68.190.192.35
                                       24.205.224.36
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection 4:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Centrino® WiMAX 6150
   Physical Address. . . . . . . . . : 64-D4-DA-66-27-66
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 10-1F-74-68-FF-B9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{EB94B8B6-6D0E-4023-8DBE-586CC938EEAB}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:d2:2bec:b8ab:942(Preferred)
   Link-local IPv6 Address . . . . . : fe80::d2:2bec:b8ab:942%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{140D9B26-A36A-4F90-AF1D-038AB4FB74AB}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BC72183D-F6A4-4F50-9A78-A3BBE9E9CBC8}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{20021AE8-2043-4692-B4ED-99A91C11AB82}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{31E9CFB5-77DB-4611-ACDE-975DE5865CD4}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{FC456A06-4820-4922-9E4C-BDF910318771}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  vip01mtpkca.mtpk.ca.charter.com
Address:  71.9.127.107

Name:    google.com
Addresses:  2607:f8b0:4007:801::100e
   74.125.239.0
   74.125.239.5
   74.125.239.3
   74.125.239.4
   74.125.239.1
   74.125.239.9
   74.125.239.14
   74.125.239.2
   74.125.239.8
   74.125.239.7
   74.125.239.6


Pinging google.com [74.125.224.166] with 32 bytes of data:
Reply from 74.125.224.166: bytes=32 time=20ms TTL=53
Reply from 74.125.224.166: bytes=32 time=19ms TTL=53

Ping statistics for 74.125.224.166:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 19ms, Maximum = 20ms, Average = 19ms
Server:  vip01mtpkca.mtpk.ca.charter.com
Address:  71.9.127.107

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=658ms TTL=49
Reply from 206.190.36.45: bytes=32 time=682ms TTL=49

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 658ms, Maximum = 682ms, Average = 670ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 32...00 ff eb 94 b8 b6 ......Anchorfree HSS VPN Adapter
 26...40 25 c2 8c 81 3d ......Microsoft Virtual WiFi Miniport Adapter #2
 25...40 25 c2 8c 81 3d ......Microsoft Virtual WiFi Miniport Adapter
 24...40 25 c2 8c 81 3c ......Intel® Centrino® Wireless-N 6150
 23...64 d4 da 66 27 66 ......Intel® Centrino® WiMAX 6150
 20...10 1f 74 68 ff b9 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 39...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 40...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 41...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 33...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.3    281
      192.168.0.3  255.255.255.255         On-link       192.168.0.3    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.3    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:4137:9e76:d2:2bec:b8ab:942/128
                                    On-link
 24    281 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::d2:2bec:b8ab:942/128
                                    On-link
 24    281 fe80::ec28:7146:73e6:bfdf/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 24    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\HMIPCore.dll [200704] (My Privacy Tools, Inc.)
Catalog9 02 C:\Windows\SysWOW64\HMIPCore.dll [200704] (My Privacy Tools, Inc.)
Catalog9 03 C:\Windows\SysWOW64\HMIPCore.dll [200704] (My Privacy Tools, Inc.)
Catalog9 04 C:\Windows\SysWOW64\HMIPCore.dll [200704] (My Privacy Tools, Inc.)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\HMIPCore.dll [200704] (My Privacy Tools, Inc.)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/19/2013 06:43:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/19/2013 06:42:59 PM) (Source: ISCT Agent) (User: )
Description: CIRSTDriverApi::CreateInstance   *****Unable to open the IRST device driver

Error: (02/19/2013 06:42:59 PM) (Source: ISCT Agent) (User: )
Description: CDriverApi::GetInterfaceAlias   *****Unable to enumerate device interfaces, error=0x103

Error: (02/19/2013 06:42:37 PM) (Source: hshld) (User: )
Description: hshld error: 0OPENVPNAS: Invalid configuration file

Error: (02/19/2013 06:42:37 PM) (Source: hshld) (User: )
Description: hshld error: 0OPENVPNAS: Cannot Open Service Log File: C:\Program Files (x86)\Hotspot Shield\log\oas.log

Error: (02/19/2013 06:36:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/19/2013 06:36:15 PM) (Source: ISCT Agent) (User: )
Description: CIRSTDriverApi::CreateInstance   *****Unable to open the IRST device driver

Error: (02/19/2013 06:36:15 PM) (Source: ISCT Agent) (User: )
Description: CDriverApi::GetInterfaceAlias   *****Unable to enumerate device interfaces, error=0x103

Error: (02/19/2013 06:36:15 PM) (Source: hshld) (User: )
Description: hshld error: 0OPENVPNAS: Invalid configuration file

Error: (02/19/2013 06:36:15 PM) (Source: hshld) (User: )
Description: hshld error: 0OPENVPNAS: Cannot Open Service Log File: C:\Program Files (x86)\Hotspot Shield\log\oas.log


System errors:
=============
Error: (02/19/2013 06:36:01 PM) (Source: Microsoft Antimalware) (User: )
Description: %60 has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.

 Signatures Attempted: %24

 Error Code: 0x80070002

 Error description: The system cannot find the file specified.

 Signature version: 1.143.2502.0;1.143.2502.0

 Engine version: %600

Error: (02/19/2013 03:48:55 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Monitoring Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (02/19/2013 03:48:49 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Routing Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (02/19/2013 03:27:07 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the HPWMISVC service.

Error: (02/19/2013 03:22:13 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/19/2013 03:22:13 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/19/2013 03:22:13 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/19/2013 03:22:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/19/2013 03:22:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/19/2013 03:22:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (10/30/2012 02:34:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 127 seconds with 60 seconds of active time.  This session ended with a crash.

Error: (10/30/2012 02:32:13 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 7900 seconds with 600 seconds of active time.  This session ended with a crash.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.2)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
Adobe Reader X (10.1.5) MUI (Version: 10.1.5)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
Amazon Kindle
Apple Application Support (Version: 2.1.5)
Apple Software Update (Version: 2.1.3.127)
AuthenTec TrueAPI (Version: 1.3.0.144)
AuthenTec WinBio FingerPrint Software (Version: 3.2.2.1072)
Bejeweled 3 (Version: 2.2.0.97)
Best Buy Connect (Version: 3.00.68)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.97)
Blio (Version: 2.2.7922)
Blue Coat K9 Web Protection 4.2.123 (Version: 4.2.123)
Bounce Symphony (Version: 2.2.0.97)
Broadcom Bluetooth Software (Version: 6.5.0.2100)
Broadcom InConcert Maestro (Version: 1.0.1.2100)
Cake Mania (Version: 2.2.0.95)
CCleaner (Version: 3.23)
CDDRV_Installer (Version: 4.60)
Chronicles of Albian (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Cool Edit Pro 2.1
Cradle of Rome 2 (Version: 2.2.0.95)
CyberLink YouCam (Version: 3.5.0.4422)
D3DX10 (Version: 15.4.2368.0902)
Dropbox (Version: 1.6.16)
EPSON NX410 Series Printer Uninstall
EPSON Scan
erLT (Version: 1.20.0137)
ESET Online Scanner v3
ESU for Microsoft Windows 7 SP1 (Version: 2.1.1)
Evernote v. 4.2.3 (Version: 4.2.3.22)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.97)
FTDownloader (Version: 2.1 Build 26473)
Google Chrome (Version: 24.0.1312.57)
Google Update Helper (Version: 1.3.21.135)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
Hide My IP 2009
Hotspot Shield 2.83 (Version: 2.83)
HP 3D DriveGuard (Version: 4.1.9.1)
HP Application Assistant (Version: 1.0.387.3865)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP CoolSense (Version: 2.10.3)
HP Customer Experience Enhancements (Version: 6.0.1.8)
HP Documentation (Version: 1.1.1.0)
HP Games (Version: 1.0.2.5)
HP Launch Box (Version: 1.0.11)
HP MovieStore (Version: 2.1.091)
HP MovieStore (Version: 2.1.21091.0)
HP On Screen Display (Version: 1.3.5)
HP Power Manager (Version: 1.4.4)
HP Product Detection (Version: 11.14.0001)
HP Quick Launch (Version: 2.5.2)
HP QuickWeb (Version: 3.1.1.10066)
HP Recovery Manager (Version: 2.0.0)
HP Security Assistant (Version: 1.0.10)
HP Setup (Version: 8.7.4751.3798)
HP Setup Manager (Version: 1.1.13476.3753)
HP SimplePass 2012 (Version: 5.3.1.7)
HP Software Framework (Version: 4.1.12.1)
HP Support Assistant (Version: 6.1.12.1)
IDT Audio (Version: 1.0.6359.0)
Intel PROSet Wireless
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2462)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.0000)
Intel® Rapid Storage Technology (Version: 10.6.2.1001)
Intel® Smart Connect Technology 1.0 (Version: 1.0.698.0)
Intel® WiDi (Version: 2.1.42.0)
Intel® Wireless Display
Intel® PROSet/Wireless WiMAX Software (Version: 6.05.0000)
Java™ 6 Update 5 (Version: 1.6.0.50)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
KhalInstallWrapper (Version: 2.00.0000)
Logitech SetPoint (Version: 4.80)
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery of Mortlake Mansion (Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (Version: 2.2.0.95)
PDF Combine (Version: 2.5)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.95)
QuickTime (Version: 7.71.80.42)
Realtek Ethernet Controller Driver (Version: 7.46.610.2011)
Realtek PCIE Card Reader (Version: 6.1.7601.83)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.19.0)
SafeSearch (Version: 0.9.2.0)
Skype™ 6.0 (Version: 6.0.126)
Slingo Supreme (Version: 2.2.0.97)
Solar Fire Gold Demo (Version: 7.0.1)
swMSM (Version: 12.0.0.1)
Synaptics TouchPad Driver (Version: 15.3.29.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2767848) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)
VIP Access SDK (1.0.1.2)  (Version: 1.0.1.2)
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
VLC media player 2.0.5 (Version: 2.0.5)
WildTangent Games App (HP Games) (Version: 4.0.5.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Yontoo 1.10.03 (Version: 1.10.03)
Zuma Deluxe (Version: 2.2.0.95)

========================= Devices: ================================

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: Windows Firewall Authorization Driver
Description: Windows Firewall Authorization Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mpsdrv

Name: LDDM Graphics Subsystem
Description: LDDM Graphics Subsystem
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: DXGKrnl

Name: TCP/IP Registry Compatibility
Description: TCP/IP Registry Compatibility
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tcpipreg

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Microsoft ISATAP Adapter #5
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: USB Input Device
Description: USB Input Device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: QoS Packet Scheduler
Description: QoS Packet Scheduler
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Psched

Name: Microsoft ACPI-Compliant Control Method Battery
Description: Microsoft ACPI-Compliant Control Method Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: Logitech HID-compliant Unifying device
Description: Logitech HID-compliant Unifying device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Logitech
Service: LHidEqd

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: UMBus Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: NetIO Legacy TDI Support Driver
Description: NetIO Legacy TDI Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tdx

Name: Microsoft ISATAP Adapter #6
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: HID-compliant mouse
Description: HID-compliant mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid

Name: ACPI Lid
Description: ACPI Lid
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Centrino® Wireless-N 6150
Description: Intel® Centrino® Wireless-N 6150
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: NETwNs64

Name: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
Description: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp

Name: Intel® Centrino® WiMAX 6150 Function Driver
Description: Intel® Centrino® WiMAX 6150 Function Driver
Class Guid: {027a838e-7356-4a2f-a5bf-25a2a2c33fcc}
Manufacturer: Intel Corporation
Service: bpusb

Name: Microsoft Windows Management Interface for ACPI
Description: Microsoft Windows Management Interface for ACPI
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: WmiAcpi

Name: Logitech HID-compliant Unifying keyboard
Description: Logitech HID-compliant Unifying keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: Logitech
Service: kbdhid

Name: RDPCDD
Description: RDPCDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPCDD

Name: Renesas Electronics USB 3.0 Root Hub
Description: Renesas Electronics USB 3.0 Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Renesas Electronics
Service: nusb3hub

Name: Logitech Driver Interface
Description: Logitech Driver Interface
Class Guid: {d41dd63a-1395-4419-ae14-a534f5f2ad29}
Manufacturer: Logitech
Service:

Name: ACPI x64-based PC
Description: ACPI x64-based PC
Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard computers)
Service: \Driver\ACPI_HAL

Name: Synaptics PS/2 Port ClickPad
Description: Synaptics PS/2 Port ClickPad
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Synaptics
Service: i8042prt

Name: VgaSave
Description: VgaSave
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VgaSave

Name: HP Mobile Data Protection Sensor
Description: HP Mobile Data Protection Sensor
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service: Accelerometer

Name: IDT High Definition Audio CODEC
Description: IDT High Definition Audio CODEC
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: IDT
Service: STHDA

Name: Anchorfree HSS VPN Adapter
Description: Anchorfree HSS VPN Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Anchorfree HSS VPN Adapter
Service: taphss6

Name: RDP Encoder Mirror Driver
Description: RDP Encoder Mirror Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPENCDD

Name: File as Volume Driver
Description: File as Volume Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: blbdrive

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: HID Keyboard Device
Description: HID Keyboard Device
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: kbdhid

Name: Terminal Server Keyboard Driver
Description: Terminal Server Keyboard Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Renesas Electronics USB 3.0 Host Controller
Description: Renesas Electronics USB 3.0 Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Renesas Electronics
Service: nusb3xhc

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Logitech Unifying USB receiver
Description: Logitech Unifying USB receiver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Logitech
Service: LEqdUsb

Name: Dynamic Volume Manager
Description: Dynamic Volume Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volmgrx

Name: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
Description: Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: Intel® 82802 Firmware Hub Device
Description: Intel® 82802 Firmware Hub Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Logitech HID-compliant Unifying device
Description: Logitech HID-compliant Unifying device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Logitech
Service: LHidEqd

Name: Composite Bus Enumerator
Description: Composite Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: CompositeBus

Name: Terminal Server Mouse Driver
Description: Terminal Server Mouse Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Reflector Display Driver used to gain access to graphics data
Description: Reflector Display Driver used to gain access to graphics data
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPREFMP

Name: AuthenTec Inc. AES2665
Description: AuthenTec Inc. AES2665
Class Guid: {53d29ef7-377c-4d14-864b-eb3a85769359}
Manufacturer: AuthenTec
Service: ATSwpWDF

Name: Microsoft AC Adapter
Description: Microsoft AC Adapter
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: msisadrv
Description: msisadrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: msisadrv

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Bitlocker Drive Encryption Filter Driver
Description: Bitlocker Drive Encryption Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: fvevol

Name: Storage volumes
Description: Storage volumes
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volsnap

Name: Intel® Smart Connect Technology Device
Description: Intel® Smart Connect Technology Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: ISCT

Name: Plug and Play Software Device Enumerator
Description: Plug and Play Software Device Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: swenum

Name: Microsoft Composite Battery
Description: Microsoft Composite Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: Compbatt

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: HID-compliant mouse
Description: HID-compliant mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid

Name: Link-Layer Topology Discovery Responder
Description: Link-Layer Topology Discovery Responder
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: rspndr

Name: ACPI Fixed Feature Button
Description: ACPI Fixed Feature Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft ACPI-Compliant System
Description: Microsoft ACPI-Compliant System
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: ACPI

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: IWD Bus Enumerator
Description: IWD Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: iwdbus

Name: Hotspot Shield Routing Driver 6
Description: Hotspot Shield Routing Driver 6
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HssDRV6

Name: Intel® Display Audio
Description: Intel® Display Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel® Corporation
Service: IntcDAud

Name: Virtual WiFi Filter Driver
Description: Virtual WiFi Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: vwififlt

Name: Realtek PCIE CardReader
Description: Realtek PCIE CardReader
Class Guid: {4d36e970-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek Semiconduct Corp.
Service: RSPCIESTOR

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 2 - 1C12
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 2 - 1C12
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® Management Engine Interface
Description: Intel® Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64

Name: Security Driver
Description: Security Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: secdrv

Name: Microsoft Watchdog Timer
Description: Microsoft Watchdog Timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Wd

Name: UMBus Root Bus Enumerator
Description: UMBus Root Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: NativeWiFi Filter
Description: NativeWiFi Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NativeWifiP

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: HTTP
Description: HTTP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HTTP

Name: Remote Access IPv6 ARP Driver
Description: Remote Access IPv6 ARP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wanarpv6

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Microsoft Virtual Drive Enumerator Driver
Description: Microsoft Virtual Drive Enumerator Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: vdrvroot

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp

Name: Programmable interrupt controller
Description: Programmable interrupt controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Hardware Policy Driver
Description: Hardware Policy Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: hwpolicy

Name: NDIS System Driver
Description: NDIS System Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDIS

Name: HID-compliant consumer control device
Description: HID-compliant consumer control device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:

Name: Volume Manager
Description: Volume Manager
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: volmgr

Name: Kernel Mode Driver Frameworks service
Description: Kernel Mode Driver Frameworks service
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wdf01000

Name: Ancillary Function Driver for Winsock
Description: Ancillary Function Driver for Winsock
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AFD

Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 3 - 1C14
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 3 - 1C14
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® HM67 Express Chipset Family LPC Interface Controller - 1C4B
Description: Intel® HM67 Express Chipset Family LPC Interface Controller - 1C4B
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: msisadrv

Name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Ndisuio

Name: System timer
Description: System timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Centrino® WiMAX Enumerator
Description: Intel® Centrino® WiMAX Enumerator
Class Guid: {027a838e-7356-4a2f-a5bf-25a2a2c33fcc}
Manufacturer: Intel Corporation
Service: bpenum

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WFP Lightweight Filter
Description: WFP Lightweight Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WfpLwf

Name: ALSysIO
Description: ALSysIO
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ALSysIO

Name: HID-compliant consumer control device
Description: HID-compliant consumer control device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:

Name: NDProxy
Description: NDProxy
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDProxy

Name: High precision event timer
Description: High precision event timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp

Name: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Description: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ws2ifsl

Name: bckd
Description: bckd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: bckd

Name: Dell E198WFP(Analog)
Description: Dell E198WFP(Analog)
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: Dell Inc.
Service: monitor

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:

Name: Direct memory access controller
Description: Direct memory access controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: 2nd generation Intel® Core™ processor family PCI Express Controller - 0101
Description: 2nd generation Intel® Core™ processor family PCI Express Controller - 0101
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 4 - 1C16
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 4 - 1C16
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® Mobile Express Chipset SATA RAID Controller
Description: Intel® Mobile Express Chipset SATA RAID Controller
Class Guid: {4d36e97b-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: iaStor

Name: User Mode Driver Frameworks Platform Driver
Description: User Mode Driver Frameworks Platform Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WudfPf

Name: Beep
Description: Beep
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Beep

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr

Name: KSecDD
Description: KSecDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecDD

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt

Name: NETBT
Description: NETBT
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NetBT

Name: CyberLink WebCam Virtual Driver
Description: CyberLink WebCam Virtual Driver
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: CyberLink
Service: clwvd

Name: sptd
Description: sptd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: sptd

Name: USB Composite Device
Description: USB Composite Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbccgp

Name: KSecPkg
Description: KSecPkg
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecPkg

Name: Extended IO Bus
Description: Extended IO Bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Microsoft System Management BIOS Driver
Description: Microsoft System Management BIOS Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: mssmbios

Name: Microsoft Network Inspection System
Description: Microsoft Network Inspection System
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NisDrv

Name: hp CDDVDW TS-U633J
Description: CD-ROM Drive
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: Broadcom 20702 Bluetooth 4.0 Adapter
Description: Broadcom 20702 Bluetooth 4.0 Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: 2nd generation Intel® Core™ processor family DRAM Controller - 0104
Description: 2nd generation Intel® Core™ processor family DRAM Controller - 0104
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:

Name: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
Description: Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Link-Layer Topology Discovery Mapper I/O Driver
Description: Link-Layer Topology Discovery Mapper I/O Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: lltdio

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn

Name: PCI bus
Description: PCI bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:

Name: Common Log (CLFS)
Description: Common Log (CLFS)
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CLFS

Name: USB Composite Device
Description: USB Composite Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbccgp

Name: System CMOS/real time clock
Description: System CMOS/real time clock
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: NSI proxy service driver.
Description: NSI proxy service driver.
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: nsiproxy

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: CNG
Description: CNG
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CNG

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:

Name: System board
Description: System board
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic PnP Monitor
Description: Generic PnP Monitor
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard monitor types)
Service: monitor

Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: 2nd generation Intel® Core™ processor family PCI Express Controller - 0105
Description: 2nd generation Intel® Core™ processor family PCI Express Controller - 0105
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Logitech HID-compliant Unifying device
Description: Logitech HID-compliant Unifying device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Logitech
Service: LHidEqd

Name: USB Input Device
Description: USB Input Device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: TOSHIBA MK6476GSX
Description: Disk drive
Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: HP TrueVision HD
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Null
Description: Null
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Null

Name: System Attribute Cache
Description: System Attribute Cache
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: discache

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Mount Point Manager
Description: Mount Point Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mountmgr

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:

Name: Numeric data processor
Description: Numeric data processor
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Performance Counters for Windows Driver
Description: Performance Counters for Windows Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: pcw

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Microsoft ISATAP Adapter #3
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Intel® HD Graphics Family
Description: Intel® HD Graphics Family
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx

Name: TCP/IP Protocol Driver
Description: TCP/IP Protocol Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Tcpip

Name: Intel® Core™ i5-2430M CPU @ 2.40GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: Intel® 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
Description: Intel® 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: IPBusEnum Root Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: Microsoft ACPI-Compliant Embedded Controller
Description: Microsoft ACPI-Compliant Embedded Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: PEAUTH
Description: PEAUTH
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: PEAUTH

Name: Intel® Centrino® WiMAX 6150
Description: Intel® Centrino® WiMAX 6150
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: bpmp

Name: Microsoft ISATAP Adapter #4
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel


========================= Memory info: ===================================

Percentage of memory in use: 26%
Total physical RAM: 8139.81 MB
Available physical RAM: 5990.43 MB
Total Pagefile: 16277.81 MB
Available Pagefile: 13571.5 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.7 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:575.09 GB) (Free:260.36 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:16.92 GB) (Free:1.86 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.1 GB) FAT32

========================= Users: ========================================

User accounts for \\OWNER-HP

Administrator            Guest                    Owner                   


**** End of log ****

 

 

 

*********************************

 

 

 

Farbar Service Scanner Version: 20-02-2013
Ran by Owner (administrator) on 20-02-2013 at 09:05:35
Running from "C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G8DA8V8T"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

 

 

 

**********************

 

 

# AdwCleaner v2.112 - Logfile created 02/20/2013 at 09:22:06
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Owner - OWNER-HP
# Boot Mode : Normal
# Running from : C:\Users\Owner\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [658 octets] - [20/02/2013 09:22:06]

########## EOF - C:\AdwCleaner[R1].txt - [717 octets] ##########

 

 

 

 

**************************

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Windows 7 Home Premium x64
Ran by Owner on Wed 02/20/2013 at  9:31:55.76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\sweetim
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{0055c089-8582-441b-a0bf-17b458c2a3a8}
Successfully deleted: [Registry Key] hkey_classes_root\wow6432node\clsid\{0055c089-8582-441b-a0bf-17b458c2a3a8}
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
Successfully deleted: [Registry Key] hkey_local_machine\software\wow6432node\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 02/20/2013 at  9:33:32.54
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

*******************

 

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/20/2013 09:38:34 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\Owner\Desktop\rkill\rkill-02-20-2013-09-38-37.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 02/20/2013 09:38:49 AM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)

 

**********************

 

 

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "IntelPAN" "Intel® PROSet/Wireless Framework" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"
+ "Logitech Download Assistant" "Logitech Download Assistant" "Logitech, Inc." "c:\windows\system32\logilda.dll"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "SetDefault" "SetDefault" "Hewlett-Packard Development Company, L.P." "c:\program files\hewlett-packard\hp launchbox\setdefault.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\groovemonitor.exe"
+ "HP CoolSense" "HP CoolSense" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp coolsense\coolsense.exe"
+ "HP Quick Launch" "HP Message Service" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp quick launch\hpmsgsvc.exe"
+ "HPOSD" "HP On Screen Display" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp on screen display\hposd.exe"
+ "HPQuickWebProxy" "HP QuickWeb Utilities" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp quickweb\hpqwutils.exe"
+ "NUSB3MON" "USB 3.0 Monitor" "Renesas Electronics Corporation" "c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Bluetooth.lnk" "Bluetooth Tray Application" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\bttray.exe"
+ "Logitech SetPoint.lnk" "Logitech SetPoint Event Manager (UNICODE)" "Logitech, Inc." "c:\program files\logitech\setpoint\setpoint.exe"
"C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\24.0.1312.57\installer\chrmstp.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "EPSON NX410 Series" "EPSON Status Monitor 3" "SEIKO EPSON CORPORATION" "c:\windows\system32\spool\drivers\x64\3\e_iatifca.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\owner\appdata\local\google\update\googleupdate.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "Monitor" "BTNCopy Module" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btncopy.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\owner\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "SafeSearch" "" "" "c:\program files\safesearch\ie\adxloader64.dll"
+ "TrueSuite Website Log On" "Website Log On" "HP" "c:\program files (x86)\hp simplepass 2012\x64\iebho.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveshellextensions.dll"
+ "SafeSearch" "" "" "c:\program files\safesearch\ie\adxloader.dll"
+ "SSVHelper Class" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre1.6.0_05\bin\ssv.dll"
+ "TrueSuite Website Log On" "Website Log On" "HP" "c:\program files (x86)\hp simplepass 2012\iebho.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "SafeSearch.IEModule" "" "" "c:\program files\safesearch\ie\adxloader64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "SafeSearch.IEModule" "" "" "c:\program files\safesearch\ie\adxloader.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Send to &Bluetooth Device..." "" "" "c:\program files\widcomm\bluetooth software\btsendto_ie.htm"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Add to Evernote 4" "" "" "File not found: C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Send to &Bluetooth Device..." "" "" "c:\program files\widcomm\bluetooth software\btsendto_ie.htm"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.5 r502" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2187807513-3638854778-389624601-1000Core" "Google Installer" "Google Inc." "c:\users\owner\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2187807513-3638854778-389624601-1000UA" "Google Installer" "Google Inc." "c:\users\owner\appdata\local\google\update\googleupdate.exe"
+ "\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpsfmessenger\hpsfmsgr.exe"
+ "\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up" "HPTuneUp" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hptuneup.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Health Analysis" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Tuneup" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\Update Check" "HP Support Assistant Updater" "Hewlett-Packard" "c:\programdata\hewlett-packard\hp support framework\resources\updater\hpsfupdater.exe"
+ "\HPCeeScheduleForOwner" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\MirageAgent" "YouCam Mirage" "CyberLink" "c:\program files (x86)\cyberlink\youcam\ycmmirage.exe"
+ "\Registration" "ESAdvRemIntegrator" "" "c:\program files (x86)\hewlett-packard\hp setup\remengine.exe"
+ "\SSVerify" "" "" "c:\program files\safesearch\se.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "bckwfs" "Provides Internet filtering services for your PC" "Blue Coat Systems, Inc." "c:\program files\blue coat k9 web protection\k9filter.exe"
+ "btwdins" "Handles installation and removal of Bluetooth devices." "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwdins.exe"
+ "DMAgent" "Red Bend Device Management Service for Intel® PROSet/Wireless WiMAX Software." "Red Bend Ltd." "c:\program files\intel\wimax\bin\dmagent.exe"
+ "EPSON_EB_RPCV4_01" "EPSON Status Monitor 3" "SEIKO EPSON CORPORATION" "c:\programdata\epson\epw!3 ssrp\e_s40stb.exe"
+ "EPSON_PM_RPCV4_01" "EPSON Status Monitor 3" "SEIKO EPSON CORPORATION" "c:\programdata\epson\epw!3 ssrp\e_s40rpb.exe"
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\evteng.exe"
+ "FPLService" "Provides convenient and secure fingerprint authentication and identity management." "HP" "c:\program files (x86)\hp simplepass 2012\truesuiteservice.exe"
+ "GamesAppService" "WT Games App Services" "WildTangent, Inc." "c:\program files (x86)\wildtangent games\app\gamesappservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "HideMyIpSRV" "" "" "c:\program files (x86)\hide my ip 2009\hidemyipsrv.exe"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe"
+ "HPClientSvc" "HP Client Services" "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp client services\hpclientservices.exe"
+ "HPDrvMntSvc.exe" "HP Quick Synchronization Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe"
+ "hpqwmiex" "HP Software Framework WMI Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "hpsrv" "HpService" "Hewlett-Packard Company" "c:\windows\system32\hpservice.exe"
+ "HPWMISVC" "HP Quick Launch WMI Service" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp quick launch\hpwmisvc.exe"
+ "hshld" "" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\bin\openvpnas.exe"
+ "HssSrv" "" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\hsswpr\hsssrv.exe"
+ "HssTrayService" "" "" "c:\program files (x86)\hotspot shield\bin\hsstrayservice.exe"
+ "HssWd" "" "" "c:\program files (x86)\hotspot shield\bin\hsswd.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "IconMan_R" "Realtek Card Reader Icon Tool." "Realsil Microelectronics Inc." "c:\program files (x86)\realtek\realtek pcie card reader\riconman.exe"
+ "ISCTAgent" "ISCT Agent Application" "" "c:\program files (x86)\intel\intel® smart connect technology agent\isctagent.exe"
+ "jhi_service" "Intel® Identity Protection Technology Host Interface Service - Allows applications to access the local Intel Identity Protection Technology" "Intel Corporation" "c:\program files (x86)\intel\services\ipt\jhi_service.exe"
+ "LBTServ" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\grooveauditservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "MyWiFiDHCPDNS" "Wireless PAN DHCP and DNS Server" "" "c:\program files\intel\wifi\bin\pandhcpdns.exe"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WiMAXAppSrv" "WiMAX SDK Service for Intel® PROSet/Wireless WiMAX Software" "Intel® Corporation" "c:\program files\intel\wimax\bin\appsrv.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Accelerometer" "HP Accelerometer" "Hewlett-Packard Company" "c:\windows\system32\drivers\accelerometer.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "ALSysIO" "" "" "File not found: C:\Users\Owner\AppData\Local\Temp\ALSysIO64.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ATSwpWDF" " AuthenTec Fingerprint Sensor WBF Driver" "AuthenTec, Inc." "c:\windows\system32\drivers\atswpwdf.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "bcbtums" "Broadcom Bluetooth Firmware Download Filter" "Broadcom Corporation." "c:\windows\system32\drivers\bcbtums.sys"
+ "bckd" "K9 Web Protection Driver" "Blue Coat Systems, Inc." "c:\windows\system32\drivers\bckd.sys"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys"
+ "bpenum" "Intel® WiMax Link 5050 Series Enumerator" "Intel Corporation" "c:\windows\system32\drivers\bpenum.sys"
+ "bpmp" "Intel® WiMax Link 5050 Series Driver" "Intel Corporation" "c:\windows\system32\drivers\bpmp.sys"
+ "bpusb" "Intel® WiMax Link 5050 Series Function Driver" "Intel Corporation" "c:\windows\system32\drivers\bpusb.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "btwampfl" "Broadcom Bluetooth USB AMP Filter for Windows Vista" "Broadcom Corporation." "c:\windows\system32\drivers\btwampfl.sys"
+ "btwaudio" "Bluetooth Audio Device" "Broadcom Corporation." "c:\windows\system32\drivers\btwaudio.sys"
+ "btwavdt" "Broadcom Bluetooth AVDT Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwavdt.sys"
+ "BTWDPAN" "Bluetooth Personal Area Network" "Broadcom Corporation." "c:\windows\system32\drivers\btwdpan.sys"
+ "btwl2cap" "Broadcom Bluetooth L2CAP Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwl2cap.sys"
+ "btwrchid" "Bluetooth Remote Control HID Minidriver" "Broadcom Corporation." "c:\windows\system32\drivers\btwrchid.sys"
+ "clwvd" "CyberLink WebCam Virtual Driver" "CyberLink Corporation" "c:\windows\system32\drivers\clwvd.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "hpdskflt" "HP Disk Filter - SATA/RAID" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpdskflt.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "HssDRV6" "Hotspot Shield Routing Driver 6" "AnchorFree Inc." "c:\windows\system32\drivers\hssdrv6.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "intaud_WaveExtensible" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\intelaud.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "ISCT" "ISCT and IFFS Driver" "" "c:\windows\system32\drivers\isctd64.sys"
+ "iwdbus" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\iwdbus.sys"
+ "LEqdUsb" "Logitech Equad USB Driver." "Logitech, Inc." "c:\windows\system32\drivers\leqdusb.sys"
+ "LHidEqd" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhideqd.sys"
+ "LHidFilt" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhidfilt.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "NETwNs64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "NVENETFD" "NVIDIA MCP Networking Function Driver." "NVIDIA Corporation" "c:\windows\system32\drivers\nvm62x64.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSPCIESTOR" "Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtspstor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Serial" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "sptd" "" "" "c:\windows\system32\drivers\sptd.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "taphss6" "Anchorfree HSS VPN Adapter" "Anchorfree Inc." "c:\windows\system32\drivers\taphss6.sys"
+ "VClone" "VirtualCloneCD Driver" "Elaborate Bytes AG" "c:\windows\system32\drivers\vclone.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DS Video Buffer Filter" "WiDiAgent.dll COM object." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\dsbuffer_video.ax"
+ "Intel® Mux Renderer" "Intel® TS Mux / Network Renderer" "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\intelmux.dll"
+ "Intel®WiDi H264 encoder" "" "" "c:\program files (x86)\common files\intel corporation\widiagent\h264_enc_filter.dll"
+ "MainConcept AAC Encoder" "AAC audio encoder filter" "MainConcept GmbH" "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_enc_aac_ds.ax"
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files (x86)\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files (x86)\playready\prdmowrapper.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WD Audio Filter" "WiDi Audio Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdaudiofilter.dll"
+ "WD Secure Source Filter" "Intel® WiDi Secure Video Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdsecuresourcefilter.dll"
+ "WDSource Filter" "WiDi Video Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdsourcefilter.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "BtwCredentialProvider" "BtwCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwcp.dll"
+ "BtwProximityCredentialProvider" "BtwProximityCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwproximitycp.dll"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
+ "LBTWlgn" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtwlgn.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries" "" "" ""
+ "My Privacy Tools - LSP" "" "" "File not found: C:\Windows\system32\HMIPCore.dll"
+ "My Privacy Tools - LSP over [MSAFD Tcpip [TCP/IP]]" "" "" "File not found: C:\Windows\system32\HMIPCore.dll"
+ "My Privacy Tools - LSP over [MSAFD Tcpip [TCP/IPv6]]" "" "" "File not found: C:\Windows\system32\HMIPCore.dll"
+ "My Privacy Tools - LSP over [MSAFD Tcpip [UDP/IP]]" "" "" "File not found: C:\Windows\system32\HMIPCore.dll"
+ "My Privacy Tools - LSP over [MSAFD Tcpip [UDP/IPv6]]" "" "" "File not found: C:\Windows\system32\HMIPCore.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "EPSON NX410 Series 64MonitorBA" "EPSON Bi-directional Monitor AMD64" "SEIKO EPSON CORPORATION" "c:\windows\system32\e_ilmfca.dll"
+ "PCL hpz3lwn7" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3lwn7.dll"
+ "SSP4M Langmon" "Language Monitor for Status Monitor" "" "c:\windows\system32\ssp4ml6.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages" "" "" ""
+ "c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll" "BtwProximityCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwproximitycp.dll"
 


Edited by mtouss, 20 February 2013 - 01:09 PM.


#8 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 20 February 2013 - 01:11 PM

The text doesn't appear to be showing up here the way I am posting it... If there is anything missing, let me know.  Thank you.


Edited by mtouss, 20 February 2013 - 01:14 PM.


#9 Kontera

Kontera

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:02 PM

Posted 20 February 2013 - 02:20 PM

Hi, 

 

This is Jonathan from Kontera. Our ads only appear on websites where the publisher place our ads there, the same as say AdSense. If you don't want to see our ads, the easiest thing to do is just opt out. What you can do is either type "Google Ad Choices" into search or click on the "Ad Choices" button in the upper right hand corner, directly in the Kontera layer. This will lead you to a page where you can opt out of seeing Kontera ads.

 

The only thing to keep in mind is if you clean your cache on your browser, we'll have no way to know you opted out, so in that case you'd need to opt out again.  



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 22 February 2013 - 02:37 PM

I'm still waiting for Adware cleaner,Junkware logs



#11 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 22 February 2013 - 02:41 PM

Adware cleaner:

 

 

# AdwCleaner v2.112 - Logfile created 02/20/2013 at 09:22:06
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Owner - OWNER-HP
# Boot Mode : Normal
# Running from : C:\Users\Owner\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [658 octets] - [20/02/2013 09:22:06]

########## EOF - C:\AdwCleaner[R1].txt - [717 octets] ##########



Junkware:

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Windows 7 Home Premium x64
Ran by Owner on Wed 02/20/2013 at  9:31:55.76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\sweetim
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{0055c089-8582-441b-a0bf-17b458c2a3a8}
Successfully deleted: [Registry Key] hkey_classes_root\wow6432node\clsid\{0055c089-8582-441b-a0bf-17b458c2a3a8}
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
Successfully deleted: [Registry Key] hkey_local_machine\software\wow6432node\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 02/20/2013 at  9:33:32.54
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 22 February 2013 - 02:42 PM

Current issues?



#13 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 22 February 2013 - 02:44 PM

I still have "Build 7601 This copy of Windows is not genuine" notification on my desktop.

 

The ads were principally in Chrome, which I deleted before starting this thread.  Should I download it again and see what happens?  I had previously deleted and reinstalled Chrome several times, and it was continually infected.  So perhaps I can try again?



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 22 February 2013 - 02:51 PM

You never said about genuine issue before

 

Download

 

http://go.microsoft.com/fwlink/?linkid=52012

 

Double click on MGADiag.exe to run it.Click Run when you recieve the Security Warning.Click Continue.

 

The program will now run. The diagnosis may take a several seconds, so please be patient.

  • Once it's complete, click on Copy button near the bottom.
  • Open Notepad. To do this go to Start>>Run>>In the Open field type in: Notepad
  • Click Ok and Notepad shall appear
  • Paste the contents in. To do this right-click and select Paste or Press Ctrl + V
  • Save this file as Validation.txt on your desktop.
  • Please post the contents of Validation.txt in your next reply.


#15 mtouss

mtouss
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 22 February 2013 - 02:55 PM

Thank you.  Here it is:

 

 

 

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 50
Cached Online Validation Code: N/A, hr = 0xc004f012
Windows Product Key: *****-*****-73CQT-WMF7J-3Q6C9
Windows Product Key Hash: KaFG+RmurcM3ZxzWyfEP9WtPUJw=
Windows Product ID: 00359-OEM-8992687-00010
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.003
ID: {CDBBBFC8-5918-486E-8098-B6D9D486FDF3}(1)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Premium
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.130104-1431
TTS Error:
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 100 Genuine
Microsoft Office Enterprise 2007 - 100 Genuine
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{CDBBBFC8-5918-486E-8098-B6D9D486FDF3}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.003</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-3Q6C9</PKey><PID>00359-OEM-8992687-00010</PID><PIDType>2</PIDType><SID>S-1-5-21-2187807513-3638854778-389624601</SID><SYSTEM><Manufacturer>Hewlett-Packard</Manufacturer><Model>HP Pavilion dm4 Notebook PC</Model></SYSTEM><BIOS><Manufacturer>Hewlett-Packard</Manufacturer><Version>F.05</Version><SMBIOSVersion major="2" minor="7"/><Date>20111110000000.000000+000</Date></BIOS><HWID>A2363407018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Pacific Standard Time(GMT-08:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>HPQOEM</OEMID><OEMTableID>SLIC-MPC</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>64BC76978749586</Val><Hash>GW6PzcEVEDTVKeO5Ym5UUm41dBk=</Hash><Pid>89388-707-0441865-65641</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="100"/><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="19" Version="12" Result="100"/><App Id="1A" Version="12" Result="100"/><App Id="1B" Version="12" Result="100"/><App Id="44" Version="12" Result="100"/><App Id="A1" Version="12" Result="100"/><App Id="BA" Version="12" Result="100"/></Applications></Office></Software></GenuineResults> 

Spsys.log Content: 0x80070002

Licensing Data-->
Software licensing service version: 6.1.7601.17514
Error: product key not found.

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: N/A
HealthStatus: 0x0000000000000000
Event Time Stamp: N/A
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:


HWID Data-->
HWID Hash Current: MgAAAAEAAAABAAEAAQABAAAABQABAAEAln12jiLwmmMOovBd5K2MAW7nBm79Lv7oLnM=

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information:
  ACPI Table Name OEMID Value OEMTableID Value
  APIC   HP      INSYDE 
  FACP   HPQOEM  SLIC-MPC
  HPET   HP      INSYDE 
  BOOT   HP      INSYDE 
  MCFG   HP      INSYDE 
  WDAT   HP      INSYDE 
  ASF!   HP      INSYDE 
  SLIC   HPQOEM  SLIC-MPC
  MSDM   HPQOEM  SLIC-MPC
  SSDT   HP      INSYDE 
  ASPT   HP      INSYDE 
  SSDT   HP      INSYDE 
  SSDT   HP      INSYDE 


 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users