Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.FakeMS infection


  • Please log in to reply
17 replies to this topic

#1 zimmer46

zimmer46

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 04 March 2013 - 03:34 AM

Hi there.  I am afraid I have need of the help from Bleeping Computer again.

 

Was browsing ( IE ) looking for a code to reprogram my satellite / TV remote and up popped a page claiming to have locked my PC.  A quick Google on another machine confirmed it was a scam and just malware.  I restored the PC to the day before and got it started and then ran MalwareBytes and it detected and removed a number of entries called Trojan.FakeMS from my System User\AppData\Roaming\ directory.   PC seems OK now, but concerned that this infection seems to have just walked past my McAfee AV.

 

Would appreciate assistance to verify the PC is again clean.

 

PC runs Windows 7 64 bit with all updates applied.

 

Thanks

 

 

Andrew



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:08 PM

Posted 04 March 2013 - 09:08 AM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 



#3 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 03:36 AM

Thanks for the help.  I am getting an error that the post is too long when I paste everything.  Seems to be the TDSSKiller log, so will split as necessary into a number of posts.  Hope that is OK.

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-04 14:32:47
-----------------------------
14:32:47.488 OS Version: Windows x64 6.1.7601 Service Pack 1
14:32:47.488 Number of processors: 4 586 0x1E05
14:32:47.488 ComputerName: DESKTOP-PC UserName:
14:32:50.343 Initialize success
14:33:53.841 AVAST engine defs: 13030400
14:34:01.079 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
14:34:01.079 Disk 0 Vendor: ST31000528AS CC38 Size: 953869MB BusType: 3
14:34:01.126 Disk 0 MBR read successfully
14:34:01.126 Disk 0 MBR scan
14:34:01.157 Disk 0 Windows 7 default MBR code
14:34:01.157 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 612 MB offset 2048
14:34:01.173 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476628 MB offset 1255424
14:34:01.204 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 476626 MB offset 977391616
14:34:01.298 Disk 0 scanning C:\Windows\system32\drivers
14:34:14.308 Service scanning
14:34:40.017 Modules scanning
14:34:40.017 Disk 0 trace - called modules:
14:34:40.048 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
14:34:40.048 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007bc7060]
14:34:40.048 3 CLASSPNP.SYS[fffff88001ac643f] -> nt!IofCallDriver -> [0xfffffa80078e6520]
14:34:40.048 5 ACPI.sys[fffff88000f697a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa80078ce680]
14:34:47.911 AVAST engine scan C:\Windows
14:34:50.531 AVAST engine scan C:\Windows\system32
14:37:48.372 AVAST engine scan C:\Windows\system32\drivers
14:38:06.733 AVAST engine scan C:\Users\System User
15:03:58.933 AVAST engine scan C:\ProgramData
15:06:43.442 Scan finished successfully
15:12:08.648 Disk 0 MBR has been saved successfully to "C:\Users\System User\Desktop\MBR.dat"
15:12:08.695 The log file has been saved successfully to "C:\Users\System User\Desktop\aswMBR.txt"

 

============================================

ESET log - I stopped this scan as it had been at 99% for over 12 hours. It was scanning an external back up drive at the time.

 

C:\Users\System User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\fa191bd-1a4710a5 multiple threats
C:\Users\System User\AppData\Roaming\Asterisks Password Viewer\install\2.96.89\F61FD5A\KLAstrPwdMon.dll a variant of Win32/PSWTool.IEPasswordsRevealer.A application
C:\Users\System User\Application Data\Asterisks Password Viewer\install\2.96.89\F61FD5A\KLAstrPwdMon.dll a variant of Win32/PSWTool.IEPasswordsRevealer.A application
C:\Users\System User\Downloads\PC Support Tools\Hirens.BootCD.15.1.zip Win32/PSWTool.KonBoot.A application
C:\Users\System User\Downloads\PC Support Tools\CPUID\cpu-z_1.59-setup-en.exe a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\System User\Downloads\PC Support Tools\CPUID\hwmonitor_1.19-setup.exe a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\System User\Downloads\PC Support Tools\CPUID\pc-wizard_2010.1.961-setup.exe multiple threats
C:\Users\System User\Downloads\PC Support Tools\Hirens.BootCD.15.1\Hiren's.BootCD.15.1.iso Win32/PSWTool.KonBoot.A application
F:\DESKTOP-PC\Backup Set 2012-11-19 180001\Backup Files 2012-11-19 180001\Backup files 2.zip a variant of Win32/PSWTool.IEPasswordsRevealer.A application
F:\DESKTOP-PC\Backup Set 2012-11-19 180001\Backup Files 2012-11-20 180002\Backup files 13.zip multiple threats



#4 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 03:38 AM

TDSSKiller logs pt 1

14:22:20.0814 4508 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:22:21.0173 4508 ============================================================
14:22:21.0173 4508 Current date / time: 2013/03/04 14:22:21.0173
14:22:21.0173 4508 SystemInfo:
14:22:21.0173 4508
14:22:21.0173 4508 OS Version: 6.1.7601 ServicePack: 1.0
14:22:21.0173 4508 Product type: Workstation
14:22:21.0173 4508 ComputerName: DESKTOP-PC
14:22:21.0173 4508 UserName: System User
14:22:21.0173 4508 Windows directory: C:\Windows
14:22:21.0173 4508 System windows directory: C:\Windows
14:22:21.0173 4508 Running under WOW64
14:22:21.0173 4508 Processor architecture: Intel x64
14:22:21.0173 4508 Number of processors: 4
14:22:21.0173 4508 Page size: 0x1000
14:22:21.0173 4508 Boot type: Normal boot
14:22:21.0173 4508 ============================================================
14:22:22.0514 4508 BG loaded
14:22:23.0341 4508 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:22:23.0372 4508 Drive \Device\Harddisk3\DR3 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:22:23.0388 4508 ============================================================
14:22:23.0388 4508 \Device\Harddisk0\DR0:
14:22:23.0388 4508 MBR partitions:
14:22:23.0388 4508 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x132000
14:22:23.0388 4508 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x132800, BlocksNum 0x3A2EA5B0
14:22:23.0388 4508 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3A41D000, BlocksNum 0x3A2E9000
14:22:23.0388 4508 \Device\Harddisk3\DR3:
14:22:23.0388 4508 MBR partitions:
14:22:23.0388 4508 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
14:22:23.0388 4508 ============================================================
14:22:23.0497 4508 C: <-> \Device\Harddisk0\DR0\Partition2
14:22:23.0606 4508 D: <-> \Device\Harddisk0\DR0\Partition3
14:22:23.0637 4508 F: <-> \Device\Harddisk3\DR3\Partition1
14:22:23.0637 4508 ============================================================
14:22:23.0637 4508 Initialize success
14:22:23.0637 4508 ============================================================
14:23:45.0746 5968 ============================================================
14:23:45.0746 5968 Scan started
14:23:45.0746 5968 Mode: Manual; TDLFS;
14:23:45.0746 5968 ============================================================
14:23:46.0714 5968 ================ Scan system memory ========================
14:23:46.0714 5968 System memory - ok
14:23:46.0714 5968 ================ Scan services =============================
14:23:46.0823 5968 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:23:46.0838 5968 1394ohci - ok
14:23:46.0870 5968 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:23:46.0885 5968 ACPI - ok
14:23:46.0901 5968 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:23:46.0901 5968 AcpiPmi - ok
14:23:46.0979 5968 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:23:46.0979 5968 AdobeARMservice - ok
14:23:47.0088 5968 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:23:47.0088 5968 AdobeFlashPlayerUpdateSvc - ok
14:23:47.0135 5968 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:23:47.0150 5968 adp94xx - ok
14:23:47.0166 5968 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:23:47.0182 5968 adpahci - ok
14:23:47.0182 5968 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:23:47.0197 5968 adpu320 - ok
14:23:47.0228 5968 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:23:47.0228 5968 AeLookupSvc - ok
14:23:47.0275 5968 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:23:47.0291 5968 AFD - ok
14:23:47.0306 5968 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:23:47.0306 5968 agp440 - ok
14:23:47.0322 5968 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:23:47.0322 5968 ALG - ok
14:23:47.0338 5968 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:23:47.0353 5968 aliide - ok
14:23:47.0353 5968 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:23:47.0369 5968 amdide - ok
14:23:47.0384 5968 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:23:47.0384 5968 AmdK8 - ok
14:23:47.0400 5968 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:23:47.0400 5968 AmdPPM - ok
14:23:47.0416 5968 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:23:47.0416 5968 amdsata - ok
14:23:47.0431 5968 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:23:47.0447 5968 amdsbs - ok
14:23:47.0462 5968 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:23:47.0462 5968 amdxata - ok
14:23:47.0509 5968 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:23:47.0525 5968 AppID - ok
14:23:47.0525 5968 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:23:47.0525 5968 AppIDSvc - ok
14:23:47.0556 5968 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:23:47.0556 5968 Appinfo - ok
14:23:47.0618 5968 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:23:47.0634 5968 Apple Mobile Device - ok
14:23:47.0665 5968 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:23:47.0665 5968 arc - ok
14:23:47.0681 5968 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:23:47.0696 5968 arcsas - ok
14:23:47.0743 5968 [ F6BDA026E4157DC4E321CA391E9D9BC6 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
14:23:47.0743 5968 AsIO - ok
14:23:47.0821 5968 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:23:47.0899 5968 aspnet_state - ok
14:23:47.0946 5968 [ 798A87B2D7AD73B16B7CD968C5D1F18F ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
14:23:47.0946 5968 AsSysCtrlService - ok
14:23:47.0993 5968 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:23:47.0993 5968 AsyncMac - ok
14:23:48.0008 5968 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:23:48.0008 5968 atapi - ok
14:23:48.0040 5968 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:23:48.0040 5968 AudioEndpointBuilder - ok
14:23:48.0040 5968 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:23:48.0040 5968 AudioSrv - ok
14:23:48.0055 5968 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:23:48.0055 5968 AxInstSV - ok
14:23:48.0071 5968 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:23:48.0086 5968 b06bdrv - ok
14:23:48.0118 5968 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:23:48.0133 5968 b57nd60a - ok
14:23:48.0149 5968 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:23:48.0149 5968 BDESVC - ok
14:23:48.0164 5968 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:23:48.0164 5968 Beep - ok
14:23:48.0211 5968 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:23:48.0211 5968 BFE - ok
14:23:48.0242 5968 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:23:48.0258 5968 BITS - ok
14:23:48.0274 5968 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:23:48.0274 5968 blbdrive - ok
14:23:48.0383 5968 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:23:48.0398 5968 Bonjour Service - ok
14:23:48.0398 5968 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:23:48.0414 5968 bowser - ok
14:23:48.0445 5968 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:23:48.0476 5968 BrFiltLo - ok
14:23:48.0476 5968 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:23:48.0492 5968 BrFiltUp - ok
14:23:48.0508 5968 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
14:23:48.0508 5968 Browser - ok
14:23:48.0523 5968 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:23:48.0523 5968 Brserid - ok
14:23:48.0539 5968 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:23:48.0554 5968 BrSerWdm - ok
14:23:48.0554 5968 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:23:48.0570 5968 BrUsbMdm - ok
14:23:48.0570 5968 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:23:48.0586 5968 BrUsbSer - ok
14:23:48.0632 5968 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
14:23:48.0632 5968 BthEnum - ok
14:23:48.0648 5968 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:23:48.0648 5968 BTHMODEM - ok
14:23:48.0695 5968 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
14:23:48.0695 5968 BthPan - ok
14:23:48.0726 5968 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
14:23:48.0726 5968 BTHPORT - ok
14:23:48.0757 5968 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:23:48.0757 5968 bthserv - ok
14:23:48.0804 5968 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
14:23:48.0820 5968 BTHUSB - ok
14:23:48.0835 5968 Bulk1528 - ok
14:23:48.0835 5968 Ca1528av - ok
14:23:48.0851 5968 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:23:48.0866 5968 cdfs - ok
14:23:48.0898 5968 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:23:48.0913 5968 cdrom - ok
14:23:48.0944 5968 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:23:48.0944 5968 CertPropSvc - ok
14:23:48.0991 5968 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\Windows\system32\drivers\cfwids.sys
14:23:48.0991 5968 cfwids - ok
14:23:49.0038 5968 [ 8504F0AA0B81789DA9A5CAB08CBACD51 ] chdrvr01 C:\Windows\system32\DRIVERS\chdrvr01.sys
14:23:49.0038 5968 chdrvr01 - ok
14:23:49.0054 5968 [ 38B5C53EB02E8DF28923D5917FBD9F1F ] chdrvr02 C:\Windows\system32\DRIVERS\chdrvr02.sys
14:23:49.0069 5968 chdrvr02 - ok
14:23:49.0085 5968 [ 7B42079E66BFDF958FBD9FE67797D6D3 ] chdrvr03 C:\Windows\system32\DRIVERS\chdrvr03.sys
14:23:49.0100 5968 chdrvr03 - ok
14:23:49.0132 5968 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:23:49.0147 5968 circlass - ok
14:23:49.0178 5968 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:23:49.0178 5968 CLFS - ok
14:23:49.0210 5968 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:23:49.0225 5968 clr_optimization_v2.0.50727_32 - ok
14:23:49.0256 5968 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:23:49.0256 5968 clr_optimization_v2.0.50727_64 - ok
14:23:49.0303 5968 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:23:49.0381 5968 clr_optimization_v4.0.30319_32 - ok
14:23:49.0397 5968 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:23:49.0428 5968 clr_optimization_v4.0.30319_64 - ok
14:23:49.0475 5968 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:23:49.0475 5968 CmBatt - ok
14:23:49.0506 5968 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:23:49.0522 5968 cmdide - ok
14:23:49.0537 5968 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
14:23:49.0553 5968 CNG - ok
14:23:49.0553 5968 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:23:49.0568 5968 Compbatt - ok
14:23:49.0600 5968 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:23:49.0600 5968 CompositeBus - ok
14:23:49.0615 5968 COMSysApp - ok
14:23:49.0693 5968 [ 17719A7F571D4CD08223F0B30F71B8B8 ] cpuz134 C:\Program Files (x86)\CPUID\PC Wizard 2010\pcwiz_x64.sys
14:23:49.0693 5968 cpuz134 - ok
14:23:49.0756 5968 [ 262969A3FAB32B9E17E63E2D17A57744 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
14:23:49.0756 5968 cpuz135 - ok
14:23:49.0771 5968 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:23:49.0771 5968 crcdisk - ok
14:23:49.0787 5968 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:23:49.0787 5968 CryptSvc - ok
14:23:49.0834 5968 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
14:23:49.0849 5968 dc3d - ok
14:23:49.0880 5968 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:23:49.0880 5968 DcomLaunch - ok
14:23:49.0927 5968 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:23:49.0943 5968 defragsvc - ok
14:23:49.0943 5968 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:23:49.0958 5968 DfsC - ok
14:23:49.0958 5968 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:23:49.0958 5968 Dhcp - ok
14:23:49.0974 5968 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:23:49.0974 5968 discache - ok
14:23:50.0021 5968 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:23:50.0036 5968 Disk - ok
14:23:50.0068 5968 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:23:50.0068 5968 Dnscache - ok
14:23:50.0068 5968 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:23:50.0083 5968 dot3svc - ok
14:23:50.0114 5968 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
14:23:50.0130 5968 Dot4 - ok
14:23:50.0146 5968 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:23:50.0146 5968 Dot4Print - ok
14:23:50.0161 5968 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
14:23:50.0161 5968 dot4usb - ok
14:23:50.0177 5968 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:23:50.0177 5968 DPS - ok
14:23:50.0224 5968 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:23:50.0224 5968 drmkaud - ok
14:23:50.0255 5968 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:23:50.0255 5968 DXGKrnl - ok
14:23:50.0286 5968 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:23:50.0286 5968 EapHost - ok
14:23:50.0333 5968 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:23:50.0395 5968 ebdrv - ok
14:23:50.0426 5968 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:23:50.0426 5968 EFS - ok
14:23:50.0458 5968 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:23:50.0458 5968 ehRecvr - ok
14:23:50.0473 5968 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:23:50.0489 5968 ehSched - ok
14:23:50.0489 5968 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:23:50.0504 5968 elxstor - ok
14:23:50.0520 5968 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:23:50.0536 5968 ErrDev - ok
14:23:50.0567 5968 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:23:50.0567 5968 EventSystem - ok
14:23:50.0582 5968 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:23:50.0598 5968 exfat - ok
14:23:50.0598 5968 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:23:50.0614 5968 fastfat - ok
14:23:50.0629 5968 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:23:50.0629 5968 Fax - ok
14:23:50.0645 5968 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:23:50.0660 5968 fdc - ok
14:23:50.0692 5968 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:23:50.0692 5968 fdPHost - ok
14:23:50.0692 5968 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:23:50.0692 5968 FDResPub - ok
14:23:50.0707 5968 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:23:50.0707 5968 FileInfo - ok
14:23:50.0707 5968 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:23:50.0723 5968 Filetrace - ok
14:23:50.0738 5968 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:23:50.0754 5968 flpydisk - ok
14:23:50.0754 5968 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:23:50.0754 5968 FltMgr - ok
14:23:50.0816 5968 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
14:23:50.0816 5968 FontCache - ok
14:23:50.0848 5968 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:23:50.0848 5968 FontCache3.0.0.0 - ok
14:23:50.0863 5968 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:23:50.0863 5968 FsDepends - ok
14:23:50.0879 5968 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:23:50.0894 5968 Fs_Rec - ok
14:23:50.0941 5968 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:23:50.0941 5968 fvevol - ok
14:23:50.0972 5968 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:23:50.0972 5968 gagp30kx - ok
14:23:51.0004 5968 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:23:51.0004 5968 GEARAspiWDM - ok
14:23:51.0035 5968 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:23:51.0050 5968 gpsvc - ok
14:23:51.0128 5968 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:51.0144 5968 gupdate - ok
14:23:51.0160 5968 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:23:51.0160 5968 gupdatem - ok
14:23:51.0191 5968 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:23:51.0206 5968 gusvc - ok
14:23:51.0222 5968 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:23:51.0222 5968 hcw85cir - ok
14:23:51.0269 5968 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:23:51.0284 5968 HdAudAddService - ok
14:23:51.0316 5968 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:23:51.0316 5968 HDAudBus - ok
14:23:51.0331 5968 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:23:51.0331 5968 HidBatt - ok
14:23:51.0347 5968 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:23:51.0347 5968 HidBth - ok
14:23:51.0362 5968 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:23:51.0362 5968 HidIr - ok
14:23:51.0378 5968 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:23:51.0378 5968 hidserv - ok
14:23:51.0425 5968 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:23:51.0425 5968 HidUsb - ok
14:23:51.0487 5968 [ 852681A14AFEE00C0C3179429A08C868 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
14:23:51.0487 5968 HipShieldK - ok
14:23:51.0503 5968 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:23:51.0503 5968 hkmsvc - ok
14:23:51.0550 5968 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:23:51.0550 5968 HomeGroupListener - ok
14:23:51.0565 5968 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:23:51.0565 5968 HomeGroupProvider - ok
14:23:51.0674 5968 [ 389BC447DF363450A78845D35DBA0047 ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:23:51.0674 5968 HomeNetSvc - ok
14:23:51.0768 5968 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:23:51.0768 5968 hpqcxs08 - ok
14:23:51.0784 5968 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:23:51.0784 5968 hpqddsvc - ok
14:23:51.0815 5968 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:23:51.0815 5968 HpSAMD - ok
14:23:51.0830 5968 [ 5ECEC779312AD35B1B19951A4B53FAC1 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
14:23:51.0830 5968 HPSLPSVC - ok
14:23:51.0862 5968 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:23:51.0877 5968 HTTP - ok
14:23:51.0893 5968 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:23:51.0893 5968 hwpolicy - ok
14:23:51.0955 5968 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:23:51.0971 5968 i8042prt - ok
14:23:52.0002 5968 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:23:52.0018 5968 iaStorV - ok
14:23:52.0080 5968 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:23:52.0096 5968 IDriverT - ok
14:23:52.0142 5968 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:23:52.0158 5968 idsvc - ok
14:23:52.0158 5968 [ 704C3164CF06A67886C305EA3677510B ] IDVistaService C:\Program Files (x86)\Input Director\IDVistaService.exe
14:23:52.0174 5968 IDVistaService - ok
14:23:52.0189 5968 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:23:52.0189 5968 iirsp - ok
14:23:52.0205 5968 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:23:52.0205 5968 IKEEXT - ok
14:23:52.0252 5968 [ 494CACABC025D07498FFE638C9C0A172 ] InputDirector C:\Program Files (x86)\Input Director\IDWinService.exe
14:23:52.0252 5968 InputDirector - ok
14:23:52.0267 5968 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:23:52.0267 5968 intelide - ok
14:23:52.0283 5968 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:23:52.0283 5968 intelppm - ok
14:23:52.0298 5968 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:23:52.0314 5968 IPBusEnum - ok
14:23:52.0345 5968 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:23:52.0345 5968 IpFilterDriver - ok
14:23:52.0392 5968 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:23:52.0408 5968 iphlpsvc - ok
14:23:52.0423 5968 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:23:52.0423 5968 IPMIDRV - ok
14:23:52.0439 5968 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:23:52.0439 5968 IPNAT - ok
14:23:52.0517 5968 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:23:52.0517 5968 iPod Service - ok
14:23:52.0517 5968 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:23:52.0517 5968 IRENUM - ok
14:23:52.0532 5968 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:23:52.0548 5968 isapnp - ok
14:23:52.0564 5968 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:23:52.0564 5968 iScsiPrt - ok
14:23:52.0579 5968 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:23:52.0595 5968 kbdclass - ok
14:23:52.0595 5968 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:23:52.0595 5968 kbdhid - ok
14:23:52.0610 5968 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:23:52.0610 5968 KeyIso - ok
14:23:52.0642 5968 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:23:52.0642 5968 KSecDD - ok
14:23:52.0657 5968 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:23:52.0657 5968 KSecPkg - ok
14:23:52.0673 5968 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:23:52.0673 5968 ksthunk - ok
14:23:52.0704 5968 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:23:52.0720 5968 KtmRm - ok
14:23:52.0735 5968 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:23:52.0735 5968 LanmanServer - ok
14:23:52.0751 5968 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:23:52.0751 5968 LanmanWorkstation - ok
14:23:52.0782 5968 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:23:52.0782 5968 lltdio - ok
14:23:52.0798 5968 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:23:52.0798 5968 lltdsvc - ok
14:23:52.0829 5968 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:23:52.0829 5968 lmhosts - ok
14:23:52.0844 5968 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:23:52.0860 5968 LSI_FC - ok
14:23:52.0876 5968 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:23:52.0891 5968 LSI_SAS - ok
14:23:52.0891 5968 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:23:52.0907 5968 LSI_SAS2 - ok
14:23:52.0907 5968 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:23:52.0922 5968 LSI_SCSI - ok
14:23:52.0922 5968 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:23:52.0938 5968 luafv - ok
14:23:53.0032 5968 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:23:53.0032 5968 McAfee SiteAdvisor Service - ok
14:23:53.0078 5968 [ 389BC447DF363450A78845D35DBA0047 ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:23:53.0078 5968 McMPFSvc - ok
14:23:53.0094 5968 [ 389BC447DF363450A78845D35DBA0047 ] McNaiAnn C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:23:53.0094 5968 McNaiAnn - ok
14:23:53.0203 5968 [ 93432FAEA699F7A2B4F4AC5949D0B6AB ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
14:23:53.0219 5968 McODS - ok
14:23:53.0250 5968 [ 389BC447DF363450A78845D35DBA0047 ] mcpltsvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:23:53.0250 5968 mcpltsvc - ok
14:23:53.0266 5968 [ 389BC447DF363450A78845D35DBA0047 ] McProxy C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:23:53.0266 5968 McProxy - ok
14:23:53.0297 5968 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:23:53.0297 5968 Mcx2Svc - ok
14:23:53.0312 5968 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:23:53.0328 5968 megasas - ok
14:23:53.0344 5968 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:23:53.0344 5968 MegaSR - ok
14:23:53.0390 5968 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
14:23:53.0390 5968 mfeapfk - ok
14:23:53.0437 5968 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
14:23:53.0437 5968 mfeavfk - ok
14:23:53.0468 5968 mfeavfk01 - ok
14:23:53.0500 5968 [ 38D1F23EE031B615A8CA51DD1E523579 ] mfecore C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
14:23:53.0515 5968 mfecore - ok
14:23:53.0593 5968 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
14:23:53.0609 5968 mfefire - ok
14:23:53.0640 5968 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
14:23:53.0640 5968 mfefirek - ok
14:23:53.0702 5968 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
14:23:53.0718 5968 mfehidk - ok
14:23:53.0765 5968 [ 9C9FC3770BD600B2D761D666234C244D ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
14:23:53.0765 5968 mfencbdc - ok
14:23:53.0780 5968 [ 93241CC8509B622B47EEA1B8505CF511 ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
14:23:53.0796 5968 mfencrk - ok
14:23:53.0812 5968 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\Windows\system32\mfevtps.exe
14:23:53.0827 5968 mfevtp - ok
14:23:53.0843 5968 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
14:23:53.0858 5968 mfewfpk - ok
14:23:53.0905 5968 Microsoft SharePoint Workspace Audit Service - ok
14:23:53.0921 5968 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:23:53.0921 5968 MMCSS - ok
14:23:54.0030 5968 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
14:23:54.0061 5968 MOBKbackup - ok
14:23:54.0077 5968 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
14:23:54.0092 5968 MOBKFilter - ok
14:23:54.0155 5968 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:23:54.0170 5968 Modem - ok
14:23:54.0295 5968 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:23:54.0311 5968 monitor - ok
14:23:54.0404 5968 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:23:54.0420 5968 mouclass - ok
14:23:54.0482 5968 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:23:54.0498 5968 mouhid - ok
14:23:54.0576 5968 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:23:54.0592 5968 mountmgr - ok
14:23:54.0607 5968 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:23:54.0607 5968 mpio - ok
14:23:54.0623 5968 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:23:54.0623 5968 mpsdrv - ok
14:23:54.0654 5968 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:23:54.0654 5968 MpsSvc - ok
14:23:54.0701 5968 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:23:54.0701 5968 MRxDAV - ok
14:23:54.0716 5968 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:23:54.0716 5968 mrxsmb - ok
14:23:54.0748 5968 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:23:54.0748 5968 mrxsmb10 - ok
14:23:54.0748 5968 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:23:54.0748 5968 mrxsmb20 - ok
14:23:54.0763 5968 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:23:54.0779 5968 msahci - ok
14:23:54.0794 5968 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:24:09.0958 5968 msdsm - ok
14:24:09.0989 5968 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:24:10.0004 5968 MSDTC - ok
14:24:10.0020 5968 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:24:10.0020 5968 Msfs - ok
14:24:10.0051 5968 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:24:10.0051 5968 mshidkmdf - ok
14:24:10.0051 5968 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:24:10.0067 5968 msisadrv - ok
14:24:10.0114 5968 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:24:10.0129 5968 MSiSCSI - ok
14:24:10.0129 5968 msiserver - ok
14:24:10.0238 5968 [ 389BC447DF363450A78845D35DBA0047 ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:24:10.0238 5968 MSK80Service - ok
14:24:10.0301 5968 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:24:10.0332 5968 MSKSSRV - ok
14:24:10.0394 5968 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:24:10.0410 5968 MSPCLOCK - ok
14:24:10.0426 5968 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:24:10.0441 5968 MSPQM - ok
14:24:10.0504 5968 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:24:10.0535 5968 MsRPC - ok
14:24:10.0566 5968 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:24:10.0566 5968 mssmbios - ok
14:24:10.0582 5968 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:24:10.0597 5968 MSTEE - ok
14:24:10.0613 5968 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:24:10.0644 5968 MTConfig - ok
14:24:10.0722 5968 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
14:24:10.0738 5968 MTsensor - ok
14:24:10.0784 5968 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:24:10.0784 5968 Mup - ok
14:24:10.0878 5968 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:24:10.0878 5968 napagent - ok
14:24:10.0987 5968 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:24:11.0018 5968 NativeWifiP - ok
14:24:11.0159 5968 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:24:11.0159 5968 NDIS - ok
14:24:11.0206 5968 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:24:11.0237 5968 NdisCap - ok
14:24:11.0252 5968 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:24:11.0252 5968 NdisTapi - ok
14:24:11.0315 5968 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:24:11.0330 5968 Ndisuio - ok
14:24:11.0346 5968 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:24:11.0346 5968 NdisWan - ok
14:24:11.0393 5968 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:24:11.0393 5968 NDProxy - ok
14:24:11.0580 5968 [ 78073F606AE3B24F6C1F555759AA8511 ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
14:24:11.0674 5968 Nero BackItUp Scheduler 3 - ok
14:24:11.0705 5968 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:24:11.0720 5968 Net Driver HPZ12 - ok
14:24:11.0752 5968 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:24:11.0767 5968 NetBIOS - ok
14:24:11.0814 5968 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:24:11.0814 5968 NetBT - ok
14:24:11.0845 5968 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:24:11.0845 5968 Netlogon - ok
14:24:11.0908 5968 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:24:11.0908 5968 Netman - ok
14:24:12.0079 5968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:24:12.0142 5968 NetMsmqActivator - ok
14:24:12.0204 5968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:24:12.0204 5968 NetPipeActivator - ok
14:24:12.0220 5968 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:24:12.0235 5968 netprofm - ok
14:24:12.0251 5968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:24:12.0266 5968 NetTcpActivator - ok
14:24:12.0266 5968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:24:12.0266 5968 NetTcpPortSharing - ok
14:24:12.0313 5968 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:24:12.0329 5968 nfrd960 - ok
14:24:12.0407 5968 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:24:12.0422 5968 NlaSvc - ok
14:24:12.0641 5968 [ 37A39E3271842BAE754540FE004D9CB5 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
14:24:12.0688 5968 NMIndexingService - ok
14:24:12.0766 5968 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
14:24:12.0781 5968 nmwcd - ok
14:24:12.0875 5968 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
14:24:12.0890 5968 nmwcdc - ok
14:24:12.0937 5968 [ F59F8CF59F7905622686637177E2A828 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
14:24:12.0953 5968 nmwcdnsucx64 - ok
14:24:13.0000 5968 [ A0E7F80157AF77B1CEAA8ADD3A3E7D85 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
14:24:13.0015 5968 nmwcdnsux64 - ok
14:24:13.0046 5968 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
14:24:13.0062 5968 NPF - ok
14:24:13.0078 5968 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:24:13.0078 5968 Npfs - ok
14:24:13.0156 5968 [ 95A2AB418251A3B2A2571CDE880B80D0 ] npusbio C:\Windows\system32\Drivers\npusbio_x64.sys
14:24:13.0202 5968 npusbio - ok
14:24:13.0280 5968 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:24:13.0296 5968 nsi - ok
14:24:13.0312 5968 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:24:13.0312 5968 nsiproxy - ok
14:24:13.0405 5968 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:24:13.0452 5968 Ntfs - ok
14:24:13.0561 5968 nTuneService - ok
14:24:13.0561 5968 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:24:13.0577 5968 Null - ok
14:24:13.0655 5968 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
14:24:13.0670 5968 NVHDA - ok
14:24:14.0154 5968 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:24:14.0201 5968 nvlddmkm - ok
14:24:14.0279 5968 [ 8C1D181480796D7D3366A9381FD7782D ] nvoclk64 C:\Windows\system32\DRIVERS\nvoclk64.sys
14:24:14.0294 5968 nvoclk64 - ok
14:24:14.0372 5968 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:24:14.0372 5968 nvraid - ok
14:24:14.0435 5968 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:24:29.0785 5968 nvstor - ok
14:24:30.0004 5968 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
14:24:30.0035 5968 nvsvc - ok
14:24:30.0253 5968 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
14:24:35.0152 5968 nvUpdatusService - ok
14:24:35.0230 5968 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:24:35.0261 5968 nv_agp - ok
14:24:35.0276 5968 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:24:35.0308 5968 ohci1394 - ok
14:24:36.0166 5968 [ ADF2C72E6483D84C89DEC816EFABC01A ] OODefragAgent C:\Program Files\OO Software\Defrag\oodag.exe
14:24:36.0181 5968 OODefragAgent - ok
14:24:36.0306 5968 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:24:36.0353 5968 ose - ok
14:24:37.0180 5968 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:24:37.0273 5968 osppsvc - ok
14:24:37.0351 5968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:24:37.0351 5968 p2pimsvc - ok
14:24:37.0429 5968 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:24:37.0460 5968 p2psvc - ok
14:24:37.0538 5968 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:24:37.0616 5968 Parport - ok
14:24:37.0679 5968 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:24:37.0710 5968 partmgr - ok
14:24:37.0741 5968 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:24:37.0741 5968 PcaSvc - ok
14:24:37.0913 5968 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
14:24:37.0944 5968 pccsmcfd - ok
14:24:37.0975 5968 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:24:37.0991 5968 pci - ok
14:24:38.0022 5968 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:24:38.0053 5968 pciide - ok
14:24:38.0116 5968 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:24:38.0162 5968 pcmcia - ok
14:24:38.0178 5968 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:24:38.0194 5968 pcw - ok
14:24:38.0240 5968 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:24:38.0256 5968 PEAUTH - ok
14:24:39.0161 5968 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:24:39.0161 5968 PerfHost - ok
14:24:39.0457 5968 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:24:39.0504 5968 pla - ok
14:24:39.0551 5968 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\SysWOW64\IoctlSvc.exe
14:24:39.0582 5968 PLFlash DeviceIoControl Service - ok
14:24:39.0691 5968 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:24:39.0691 5968 PlugPlay - ok
14:24:39.0785 5968 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:24:39.0785 5968 Pml Driver HPZ12 - ok
14:24:39.0800 5968 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:24:39.0816 5968 PNRPAutoReg - ok
14:24:39.0894 5968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:24:39.0894 5968 PNRPsvc - ok
14:24:39.0972 5968 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
14:24:39.0972 5968 Point64 - ok
14:24:40.0066 5968 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:24:40.0066 5968 PolicyAgent - ok
14:24:40.0112 5968 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:24:40.0112 5968 Power - ok
14:24:40.0175 5968 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:24:40.0175 5968 PptpMiniport - ok
14:24:40.0222 5968 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:24:40.0253 5968 Processor - ok
14:24:40.0378 5968 PROCEXP151 - ok
14:24:40.0456 5968 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:24:40.0456 5968 ProfSvc - ok
14:24:40.0487 5968 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:24:40.0487 5968 ProtectedStorage - ok
14:24:40.0596 5968 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:24:40.0596 5968 Psched - ok
14:24:40.0721 5968 [ CD33CB6FECF65520466F95AB89CC4AF5 ] PSSDK42 C:\Windows\system32\Drivers\pssdk42.sys
14:24:40.0752 5968 PSSDK42 - ok
14:24:40.0799 5968 [ 07A3500CF1C3325568D1B85683CE4517 ] PSSDKLBF C:\Windows\system32\Drivers\pssdklbf.sys
14:24:40.0814 5968 PSSDKLBF - ok
14:24:40.0939 5968 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:24:41.0002 5968 ql2300 - ok
14:24:41.0048 5968 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:24:41.0064 5968 ql40xx - ok
14:24:41.0111 5968 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:24:41.0126 5968 QWAVE - ok
14:24:41.0142 5968 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:24:41.0158 5968 QWAVEdrv - ok
14:24:41.0641 5968 [ E3AE78C0F00A5E3792A1A3BCA33B6DF3 ] RapportCerberus_50414 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys
14:24:41.0657 5968 RapportCerberus_50414 - ok
14:24:41.0828 5968 [ 5D64E78BC24FF8ADCD1647612B5A0CDF ] RapportEI64 C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys
14:24:41.0828 5968 RapportEI64 - ok
14:24:42.0000 5968 [ EE86BA861726741F03A786EEC847A0F7 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys
14:24:42.0000 5968 RapportIaso - ok
14:24:42.0094 5968 [ D0355D7FFC314A268B7441065F0F1575 ] RapportKE64 C:\Windows\system32\Drivers\RapportKE64.sys
14:24:42.0109 5968 RapportKE64 - ok
14:24:42.0281 5968 [ 9B0E9AF5C264521C635A3C3CB966AF85 ] RapportMgmtService C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
14:24:42.0296 5968 RapportMgmtService - ok
14:24:42.0421 5968 [ 1A954C2633BCCA3F48F85D57E5CA3561 ] RapportPG64 C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys
14:24:42.0421 5968 RapportPG64 - ok
14:24:42.0437 5968 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:24:42.0452 5968 RasAcd - ok
14:24:42.0530 5968 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:24:42.0530 5968 RasAgileVpn - ok
14:24:42.0577 5968 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:24:42.0593 5968 RasAuto - ok
14:24:42.0624 5968 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:24:42.0624 5968 Rasl2tp - ok
14:24:42.0671 5968 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:24:42.0702 5968 RasMan - ok
14:24:42.0749 5968 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:24:42.0749 5968 RasPppoe - ok
14:24:42.0811 5968 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:24:42.0811 5968 RasSstp - ok
14:24:42.0858 5968 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:24:42.0874 5968 rdbss - ok
14:24:42.0889 5968 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:24:42.0905 5968 rdpbus - ok
14:24:42.0936 5968 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:24:42.0952 5968 RDPCDD - ok
14:24:42.0998 5968 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:24:42.0998 5968 RDPENCDD - ok
14:24:43.0014 5968 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:24:43.0014 5968 RDPREFMP - ok
14:24:43.0045 5968 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:24:43.0061 5968 RDPWD - ok
14:24:43.0108 5968 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:24:43.0139 5968 rdyboost - ok
14:24:43.0186 5968 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:24:43.0201 5968 RemoteAccess - ok
14:24:43.0279 5968 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:24:43.0310 5968 RemoteRegistry - ok
14:24:43.0388 5968 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
14:24:43.0404 5968 RFCOMM - ok
14:24:43.0591 5968 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
14:24:43.0622 5968 rpcapd - ok
14:24:43.0654 5968 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:24:43.0654 5968 RpcEptMapper - ok
14:24:43.0654 5968 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:24:43.0685 5968 RpcLocator - ok
14:24:43.0747 5968 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:24:43.0747 5968 RpcSs - ok
14:24:43.0825 5968 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:24:43.0825 5968 rspndr - ok
14:24:43.0997 5968 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
14:24:43.0997 5968 RTL8167 - ok
14:24:44.0012 5968 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:24:44.0012 5968 SamSs - ok
14:24:44.0090 5968 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:24:44.0106 5968 sbp2port - ok
14:24:44.0434 5968 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
14:24:44.0434 5968 SBSDWSCService - ok
14:24:44.0512 5968 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:24:44.0543 5968 SCardSvr - ok
14:24:44.0683 5968 [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
14:24:44.0699 5968 SCDEmu - ok
14:24:44.0730 5968 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:24:44.0761 5968 scfilter - ok
14:24:44.0933 5968 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:24:44.0949 5968 Schedule - ok
14:24:44.0995 5968 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:24:45.0011 5968 SCPolicySvc - ok
14:24:45.0058 5968 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:24:45.0058 5968 SDRSVC - ok
14:24:45.0136 5968 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:24:45.0136 5968 secdrv - ok
14:24:45.0198 5968 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:24:45.0214 5968 seclogon - ok
14:24:45.0245 5968 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:24:45.0261 5968 SENS - ok
14:24:45.0307 5968 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:24:45.0370 5968 SensrSvc - ok
14:24:45.0432 5968 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:24:45.0432 5968 Serenum - ok
14:24:45.0510 5968 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:24:45.0510 5968 Serial - ok
14:24:45.0604 5968 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:24:45.0619 5968 sermouse - ok
14:24:45.0994 5968 [ 9BDE8F1F5D060E912FCF9FB58B71CBC1 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
14:24:46.0056 5968 ServiceLayer - ok
14:24:46.0087 5968 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:24:46.0103 5968 SessionEnv - ok
14:24:46.0134 5968 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:24:46.0165 5968 sffdisk - ok
14:24:46.0197 5968 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:24:46.0212 5968 sffp_mmc - ok
14:24:46.0228 5968 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:24:46.0275 5968 sffp_sd - ok
14:24:46.0306 5968 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:24:46.0353 5968 sfloppy - ok
14:24:46.0415 5968 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:24:46.0431 5968 SharedAccess - ok
14:24:46.0477 5968 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:24:46.0477 5968 ShellHWDetection - ok
14:24:46.0524 5968 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:24:46.0555 5968 SiSRaid2 - ok
14:24:46.0571 5968 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:24:46.0587 5968 SiSRaid4 - ok
14:24:46.0665 5968 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:24:46.0680 5968 Smb - ok
14:24:46.0774 5968 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:24:46.0774 5968 SNMPTRAP - ok
14:24:46.0805 5968 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:24:46.0805 5968 spldr - ok
14:24:46.0883 5968 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
14:24:46.0899 5968 Spooler - ok
14:24:47.0226 5968 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:24:47.0242 5968 sppsvc - ok
14:24:47.0257 5968 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:24:47.0273 5968 sppuinotify - ok
14:24:47.0351 5968 [ 76C4B0E95D6EFBA7A48E24038691286A ] SQTECH900C C:\Windows\system32\Drivers\Capt900C.sys
14:24:47.0398 5968 SQTECH900C - ok
14:24:47.0476 5968 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:24:47.0476 5968 srv - ok
14:24:47.0569 5968 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:24:47.0569 5968 srv2 - ok
14:24:47.0601 5968 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:24:47.0601 5968 srvnet - ok
14:24:47.0616 5968 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:24:47.0632 5968 SSDPSRV - ok
14:24:47.0663 5968 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:24:47.0663 5968 SstpSvc - ok
14:24:47.0819 5968 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:24:47.0819 5968 Stereo Service - ok
14:24:47.0850 5968 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:24:47.0866 5968 stexstor - ok
14:24:47.0928 5968 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
14:24:47.0959 5968 StillCam - ok
14:24:48.0162 5968 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:24:48.0162 5968 stisvc - ok
14:24:48.0225 5968 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:24:48.0240 5968 swenum - ok
14:24:48.0349 5968 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:24:48.0349 5968 swprv - ok
14:24:48.0537 5968 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:24:48.0552 5968 SysMain - ok
14:24:48.0568 5968 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:24:48.0583 5968 TabletInputService - ok
14:24:48.0615 5968 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:24:48.0661 5968 TapiSrv - ok
14:24:48.0786 5968 [ 03B730CBFBBE39BFF27E8DE56F33AE02 ] tbbLoaderService C:\Program Files (x86)\thinkbroadband.com\tbbMeter\tbbLoaderService.exe
14:24:48.0817 5968 tbbLoaderService - ok
14:24:48.0833 5968 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:24:48.0833 5968 TBS - ok
14:24:49.0051 5968 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:24:49.0192 5968 Tcpip - ok
14:24:49.0379 5968 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:24:49.0395 5968 TCPIP6 - ok
14:24:49.0426 5968 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:24:49.0426 5968 tcpipreg - ok
14:24:49.0504 5968 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:24:49.0519 5968 TDPIPE - ok
14:24:49.0551 5968 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:24:49.0566 5968 TDTCP - ok
14:24:49.0613 5968 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:24:49.0629 5968 tdx - ok
14:24:50.0175 5968 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
14:24:50.0175 5968 TeamViewer7 - ok
14:24:50.0206 5968 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:24:50.0206 5968 TermDD - ok
14:24:50.0315 5968 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:24:50.0362 5968 TermService - ok
14:24:50.0377 5968 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:24:50.0377 5968 Themes - ok
14:24:50.0440 5968 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:24:50.0440 5968 THREADORDER - ok
14:24:50.0471 5968 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:24:50.0471 5968 TrkWks - ok
14:24:50.0533 5968 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:24:50.0549 5968 TrustedInstaller - ok
14:24:50.0580 5968 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:24:50.0596 5968 tssecsrv - ok
14:24:50.0643 5968 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:24:50.0658 5968 TsUsbFlt - ok
14:24:50.0736 5968 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:24:50.0736 5968 tunnel - ok
14:24:50.0767 5968 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:24:50.0783 5968 uagp35 - ok
14:24:50.0845 5968 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:24:50.0908 5968 udfs - ok
14:24:50.0939 5968 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:24:50.0955 5968 UI0Detect - ok
14:24:50.0986 5968 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:24:51.0001 5968 uliagpkx - ok
14:24:51.0048 5968 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
14:24:51.0048 5968 umbus - ok
14:24:51.0157 5968 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:24:51.0204 5968 UmPass - ok
14:24:51.0345 5968 UpdateCenterService - ok
14:24:51.0391 5968 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:24:51.0407 5968 upnphost - ok
14:24:51.0532 5968 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
14:24:51.0563 5968 upperdev - ok
14:24:51.0610 5968 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:24:51.0641 5968 USBAAPL64 - ok
14:24:51.0703 5968 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
14:24:51.0719 5968 usbaudio - ok
14:24:51.0781 5968 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:24:51.0797 5968 usbccgp - ok
14:24:51.0844 5968 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:24:51.0875 5968 usbcir - ok
14:24:51.0922 5968 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:24:51.0922 5968 usbehci - ok
14:24:52.0031 5968 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:24:52.0031 5968 usbhub - ok
14:24:52.0062 5968 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:24:52.0093 5968 usbohci - ok
14:24:52.0140 5968 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:24:52.0140 5968 usbprint - ok
14:24:52.0187 5968 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:24:52.0203 5968 usbscan - ok
14:24:52.0312 5968 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\drivers\usbser.sys
14:24:52.0343 5968 usbser - ok
14:24:52.0546 5968 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
14:24:52.0561 5968 UsbserFilt - ok
14:24:52.0593 5968 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:24:52.0593 5968 USBSTOR - ok
14:24:52.0655 5968 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:24:52.0686 5968 usbuhci - ok
14:24:52.0717 5968 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:24:52.0717 5968 UxSms - ok
14:24:52.0733 5968 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:24:52.0733 5968 VaultSvc - ok
14:24:52.0780 5968 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:24:52.0795 5968 vdrvroot - ok
14:24:52.0920 5968 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:24:52.0936 5968 vds - ok
14:24:52.0983 5968 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:24:52.0983 5968 vga - ok
14:24:53.0045 5968 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:24:53.0045 5968 VgaSave - ok
14:24:53.0092 5968 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:24:53.0123 5968 vhdmp - ok
14:24:53.0295 5968 [ 627270F2103D41086BAB9675A3315DAB ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
14:24:53.0310 5968 VIAHdAudAddService - ok
14:24:53.0341 5968 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:24:53.0357 5968 viaide - ok
14:24:53.0373 5968 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:24:53.0388 5968 volmgr - ok
14:24:53.0451 5968 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:24:53.0466 5968 volmgrx - ok
14:24:53.0513 5968 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:24:53.0544 5968 volsnap - ok
14:24:53.0638 5968 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:24:53.0685 5968 vsmraid - ok
14:24:53.0997 5968 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:24:54.0012 5968 VSS - ok
14:24:54.0028 5968 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
14:24:54.0043 5968 vwifibus - ok
14:24:54.0121 5968 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:24:54.0137 5968 W32Time - ok
14:24:54.0168 5968 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:24:54.0215 5968 WacomPen - ok
14:24:54.0324 5968 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:24:54.0324 5968 WANARP - ok
14:24:54.0340 5968 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:24:54.0340 5968 Wanarpv6 - ok
14:24:54.0543 5968 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:24:54.0621 5968 WatAdminSvc - ok
14:24:54.0808 5968 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:24:54.0901 5968 wbengine - ok
14:24:54.0995 5968 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:24:55.0026 5968 WbioSrvc - ok
14:24:55.0073 5968 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:24:55.0089 5968 wcncsvc - ok
14:24:55.0104 5968 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:24:55.0151 5968 WcsPlugInService - ok
14:24:55.0182 5968 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:24:55.0198 5968 Wd - ok
14:24:55.0291 5968 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:24:55.0338 5968 Wdf01000 - ok
14:24:55.0338 5968 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:24:55.0338 5968 WdiServiceHost - ok
14:24:55.0354 5968 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:24:55.0354 5968 WdiSystemHost - ok
14:24:55.0447 5968 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:24:55.0447 5968 WebClient - ok
14:24:55.0463 5968 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:24:55.0494 5968 Wecsvc - ok
14:24:55.0525 5968 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:24:55.0525 5968 wercplsupport - ok
14:24:55.0572 5968 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:24:55.0572 5968 WerSvc - ok
14:24:55.0681 5968 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:24:55.0681 5968 WfpLwf - ok
14:24:55.0728 5968 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:24:55.0744 5968 WIMMount - ok
14:24:55.0775 5968 WinDefend - ok
14:24:55.0775 5968 WinHttpAutoProxySvc - ok
14:24:56.0103 5968 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:24:56.0103 5968 Winmgmt - ok
14:24:56.0321 5968 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:24:56.0446 5968 WinRM - ok
14:24:56.0571 5968 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:24:56.0602 5968 WinUsb - ok
14:24:56.0758 5968 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:24:56.0789 5968 Wlansvc - ok
14:24:57.0366 5968 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:24:57.0382 5968 wlidsvc - ok
14:24:57.0444 5968 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:24:57.0444 5968 WmiAcpi - ok
14:24:57.0600 5968 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:24:57.0631 5968 wmiApSrv - ok
14:24:57.0694 5968 WMPNetworkSvc - ok
14:24:57.0756 5968 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:24:57.0787 5968 WPCSvc - ok
14:24:57.0834 5968 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:24:57.0834 5968 WPDBusEnum - ok
14:24:57.0865 5968 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:24:57.0865 5968 ws2ifsl - ok
14:24:57.0912 5968 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
14:24:57.0912 5968 wscsvc - ok
14:24:57.0975 5968 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
14:24:58.0006 5968 WSDPrintDevice - ok
14:24:58.0006 5968 WSearch - ok
14:24:58.0380 5968 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
14:24:58.0396 5968 wuauserv - ok
14:24:58.0443 5968 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:24:58.0443 5968 WudfPf - ok
14:24:58.0536 5968 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:24:58.0536 5968 WUDFRd - ok
14:24:58.0583 5968 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:24:58.0583 5968 wudfsvc - ok
14:24:58.0661 5968 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:24:58.0677 5968 WwanSvc - ok
14:24:58.0723 5968 ================ Scan global ===============================
14:24:58.0770 5968 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:24:58.0833 5968 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
14:24:58.0864 5968 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
14:24:58.0879 5968 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:24:58.0942 5968 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:24:58.0942 5968 [Global] - ok
14:24:58.0942 5968 ================ Scan MBR ==================================
14:24:58.0973 5968 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:25:02.0530 5968 \Device\Harddisk0\DR0 - ok
14:25:02.0530 5968 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
14:25:02.0655 5968 \Device\Harddisk3\DR3 - ok
14:25:02.0655 5968 ================ Scan VBR ==================================
14:25:02.0670 5968 [ 0727EFDBF381F16D62499CDE60A328B4 ] \Device\Harddisk0\DR0\Partition1
14:25:02.0670 5968 \Device\Harddisk0\DR0\Partition1 - ok
14:25:02.0686 5968 [ CF7361011CE0AA26316CD8DAB52AD98B ] \Device\Harddisk0\DR0\Partition2
14:25:02.0686 5968 \Device\Harddisk0\DR0\Partition2 - ok
14:25:02.0701 5968 [ 0304726ED74C5979FD0A9D0CE353A337 ] \Device\Harddisk0\DR0\Partition3
14:25:02.0701 5968 \Device\Harddisk0\DR0\Partition3 - ok
14:25:02.0701 5968 [ F2AE1BB1360C44A9EAF36958D0F15E4D ] \Device\Harddisk3\DR3\Partition1
14:25:02.0701 5968 \Device\Harddisk3\DR3\Partition1 - ok
14:25:02.0701 5968 ================ Scan active images ========================
14:25:02.0717 5968 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
14:25:02.0717 5968 C:\Windows\System32\drivers\atapi.sys - ok
14:25:02.0717 5968 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
14:25:02.0717 5968 C:\Windows\System32\drivers\crashdmp.sys - ok
14:25:02.0717 5968 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
14:25:02.0717 5968 C:\Windows\System32\drivers\Dumpata.sys - ok
14:25:02.0717 5968 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
14:25:02.0717 5968 C:\Windows\System32\drivers\dumpfve.sys - ok
14:25:02.0717 5968 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
14:25:02.0717 5968 C:\Windows\System32\drivers\cdrom.sys - ok
14:25:02.0717 5968 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] C:\Windows\System32\drivers\MOBK.sys
14:25:02.0717 5968 C:\Windows\System32\drivers\MOBK.sys - ok
14:25:02.0717 5968 [ E3AE78C0F00A5E3792A1A3BCA33B6DF3 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys
14:25:02.0717 5968 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_50414.sys - ok
14:25:02.0733 5968 [ 1A954C2633BCCA3F48F85D57E5CA3561 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys
14:25:02.0733 5968 C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys - ok
14:25:02.0733 5968 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
14:25:02.0733 5968 C:\Windows\System32\drivers\beep.sys - ok
14:25:02.0733 5968 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
14:25:02.0733 5968 C:\Windows\System32\drivers\null.sys - ok
14:25:02.0733 5968 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
14:25:02.0733 5968 C:\Windows\System32\drivers\watchdog.sys - ok
14:25:02.0733 5968 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
14:25:02.0733 5968 C:\Windows\System32\drivers\RDPCDD.sys - ok
14:25:02.0733 5968 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
14:25:02.0733 5968 C:\Windows\System32\drivers\RDPENCDD.sys - ok
14:25:02.0748 5968 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\RDPREFMP.sys - ok
14:25:02.0748 5968 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\vga.sys - ok
14:25:02.0748 5968 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\videoprt.sys - ok
14:25:02.0748 5968 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\msfs.sys - ok
14:25:02.0748 5968 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\npfs.sys - ok
14:25:02.0748 5968 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\tdi.sys - ok
14:25:02.0748 5968 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
14:25:02.0748 5968 C:\Windows\System32\drivers\tdx.sys - ok
14:25:02.0764 5968 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\afd.sys - ok
14:25:02.0764 5968 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\netbt.sys - ok
14:25:02.0764 5968 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\wfplwf.sys - ok
14:25:02.0764 5968 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\netbios.sys - ok
14:25:02.0764 5968 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\pacer.sys - ok
14:25:02.0764 5968 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\serial.sys - ok
14:25:02.0764 5968 [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D ] C:\Windows\System32\drivers\scdemu.sys
14:25:02.0764 5968 C:\Windows\System32\drivers\scdemu.sys - ok
14:25:02.0779 5968 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
14:25:02.0779 5968 C:\Windows\System32\drivers\termdd.sys - ok
14:25:02.0779 5968 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
14:25:02.0779 5968 C:\Windows\System32\drivers\wanarp.sys - ok
14:25:02.0779 5968 [ 5D64E78BC24FF8ADCD1647612B5A0CDF ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys
14:25:02.0779 5968 C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys - ok
14:25:02.0779 5968 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
14:25:02.0779 5968 C:\Windows\System32\drivers\rdbss.sys - ok
14:25:02.0779 5968 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
14:25:02.0779 5968 C:\Windows\System32\drivers\discache.sys - ok
14:25:02.0779 5968 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
14:25:02.0779 5968 C:\Windows\System32\drivers\mssmbios.sys - ok
14:25:02.0795 5968 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
14:25:02.0795 5968 C:\Windows\System32\drivers\nsiproxy.sys - ok
14:25:02.0795 5968 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
14:25:02.0795 5968 C:\Windows\System32\drivers\blbdrive.sys - ok
14:25:02.0795 5968 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
14:25:02.0795 5968 C:\Windows\System32\drivers\dfsc.sys - ok
14:25:02.0795 5968 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
14:25:02.0795 5968 C:\Windows\System32\drivers\tunnel.sys - ok
14:25:02.0795 5968 [ F6BDA026E4157DC4E321CA391E9D9BC6 ] C:\Windows\SysWOW64\drivers\AsIO.sys
14:25:02.0795 5968 C:\Windows\SysWOW64\drivers\AsIO.sys - ok
14:25:02.0795 5968 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
14:25:02.0795 5968 C:\Windows\System32\drivers\intelppm.sys - ok
14:25:02.0795 5968 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
14:25:02.0795 5968 C:\Windows\System32\ntdll.dll - ok
14:25:02.0811 5968 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
14:25:02.0811 5968 C:\Windows\System32\smss.exe - ok
14:25:02.0811 5968 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] C:\Windows\System32\drivers\nvlddmkm.sys
14:25:02.0811 5968 C:\Windows\System32\drivers\nvlddmkm.sys - ok
14:25:02.0811 5968 [ 115BE147638F62321DFE754D3193099C ] C:\Windows\System32\drivers\nvBridge.kmd
14:25:02.0811 5968 C:\Windows\System32\drivers\nvBridge.kmd - ok
14:25:02.0811 5968 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
14:25:02.0811 5968 C:\Windows\System32\drivers\dxgkrnl.sys - ok
14:25:02.0811 5968 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
14:25:02.0811 5968 C:\Windows\System32\drivers\dxgmms1.sys - ok
14:25:02.0811 5968 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
14:25:02.0811 5968 C:\Windows\System32\drivers\hdaudbus.sys - ok
14:25:02.0811 5968 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
14:25:02.0811 5968 C:\Windows\System32\drivers\usbehci.sys - ok
14:25:02.0826 5968 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\usbport.sys - ok
14:25:02.0826 5968 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\1394ohci.sys - ok
14:25:02.0826 5968 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] C:\Windows\System32\drivers\Rt64win7.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\Rt64win7.sys - ok
14:25:02.0826 5968 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\agilevpn.sys - ok
14:25:02.0826 5968 [ 19B006B181E3875FD254F7B67ACF1E7C ] C:\Windows\System32\drivers\ASACPI.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\ASACPI.sys - ok
14:25:02.0826 5968 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\CompositeBus.sys - ok
14:25:02.0826 5968 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
14:25:02.0826 5968 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
14:25:02.0842 5968 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\rasl2tp.sys - ok
14:25:02.0842 5968 [ CB624C0035412AF0DEBEC78C41F5CA1B ] C:\Windows\System32\drivers\serenum.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\serenum.sys - ok
14:25:02.0842 5968 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\ndistapi.sys - ok
14:25:02.0842 5968 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\ndiswan.sys - ok
14:25:02.0842 5968 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\raspppoe.sys - ok
14:25:02.0842 5968 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\raspptp.sys - ok
14:25:02.0842 5968 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
14:25:02.0842 5968 C:\Windows\System32\drivers\kbdclass.sys - ok
14:25:02.0857 5968 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
14:25:02.0857 5968 C:\Windows\System32\drivers\ks.sys - ok
14:25:02.0857 5968 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
14:25:02.0857 5968 C:\Windows\System32\drivers\mouclass.sys - ok
14:25:02.0857 5968 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
14:25:02.0857 5968 C:\Windows\System32\drivers\rassstp.sys - ok

#5 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 03:39 AM

TDSSKiller pt 2

 

14:25:02.0857 5968  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
14:25:02.0857 5968  C:\Windows\System32\drivers\swenum.sys - ok
14:25:02.0857 5968  [ 7B42079E66BFDF958FBD9FE67797D6D3 ] C:\Windows\System32\drivers\chdrvr03.sys
14:25:02.0857 5968  C:\Windows\System32\drivers\chdrvr03.sys - ok
14:25:02.0857 5968  [ 8C1D181480796D7D3366A9381FD7782D ] C:\Windows\System32\drivers\nvoclk64.sys
14:25:02.0857 5968  C:\Windows\System32\drivers\nvoclk64.sys - ok
14:25:02.0873 5968  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
14:25:02.0873 5968  C:\Windows\System32\drivers\umbus.sys - ok
14:25:02.0873 5968  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
14:25:02.0873 5968  C:\Windows\System32\drivers\usbhub.sys - ok
14:25:02.0873 5968  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
14:25:02.0873 5968  C:\Windows\System32\drivers\ndproxy.sys - ok
14:25:02.0873 5968  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
14:25:02.0873 5968  C:\Windows\System32\oleaut32.dll - ok
14:25:02.0873 5968  [ 8504F0AA0B81789DA9A5CAB08CBACD51 ] C:\Windows\System32\drivers\chdrvr01.sys
14:25:02.0873 5968  C:\Windows\System32\drivers\chdrvr01.sys - ok
14:25:02.0873 5968  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
14:25:02.0873 5968  C:\Windows\System32\drivers\usbd.sys - ok
14:25:02.0873 5968  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
14:25:02.0873 5968  C:\Windows\System32\drivers\drmk.sys - ok
14:25:02.0889 5968  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
14:25:02.0889 5968  C:\Windows\System32\drivers\ksthunk.sys - ok
14:25:02.0889 5968  [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] C:\Windows\System32\drivers\nvhda64v.sys
14:25:02.0889 5968  C:\Windows\System32\drivers\nvhda64v.sys - ok
14:25:02.0889 5968  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
14:25:02.0889 5968  C:\Windows\System32\drivers\portcls.sys - ok
14:25:02.0889 5968  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
14:25:02.0889 5968  C:\Windows\System32\msvcrt.dll - ok
14:25:02.0889 5968  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
14:25:02.0889 5968  C:\Windows\System32\normaliz.dll - ok
14:25:02.0889 5968  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
14:25:02.0889 5968  C:\Windows\System32\rpcrt4.dll - ok
14:25:02.0889 5968  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
14:25:02.0889 5968  C:\Windows\System32\sechost.dll - ok
14:25:02.0904 5968  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
14:25:02.0904 5968  C:\Windows\System32\advapi32.dll - ok
14:25:02.0904 5968  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
14:25:02.0904 5968  C:\Windows\System32\Wldap32.dll - ok
14:25:02.0904 5968  [ 627270F2103D41086BAB9675A3315DAB ] C:\Windows\System32\drivers\viahduaa.sys
14:25:02.0904 5968  C:\Windows\System32\drivers\viahduaa.sys - ok
14:25:02.0904 5968  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
14:25:02.0904 5968  C:\Windows\System32\shell32.dll - ok
14:25:02.0904 5968  [ 38B5C53EB02E8DF28923D5917FBD9F1F ] C:\Windows\System32\drivers\chdrvr02.sys
14:25:02.0904 5968  C:\Windows\System32\drivers\chdrvr02.sys - ok
14:25:02.0904 5968  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
14:25:02.0904 5968  C:\Windows\System32\drivers\hidclass.sys - ok
14:25:02.0904 5968  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
14:25:02.0904 5968  C:\Windows\System32\drivers\hidparse.sys - ok
14:25:02.0920 5968  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
14:25:02.0920 5968  C:\Windows\System32\kernel32.dll - ok
14:25:02.0920 5968  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
14:25:02.0920 5968  C:\Windows\System32\nsi.dll - ok
14:25:02.0920 5968  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
14:25:02.0920 5968  C:\Windows\System32\usp10.dll - ok
14:25:02.0920 5968  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
14:25:02.0920 5968  C:\Windows\System32\iertutil.dll - ok
14:25:02.0920 5968  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
14:25:02.0920 5968  C:\Windows\System32\clbcatq.dll - ok
14:25:02.0920 5968  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
14:25:02.0920 5968  C:\Windows\System32\setupapi.dll - ok
14:25:02.0920 5968  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
14:25:02.0920 5968  C:\Windows\System32\imm32.dll - ok
14:25:02.0935 5968  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
14:25:02.0935 5968  C:\Windows\System32\lpk.dll - ok
14:25:02.0935 5968  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
14:25:02.0935 5968  C:\Windows\System32\ole32.dll - ok
14:25:02.0935 5968  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
14:25:02.0935 5968  C:\Windows\System32\comdlg32.dll - ok
14:25:02.0935 5968  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
14:25:02.0935 5968  C:\Windows\System32\wininet.dll - ok
14:25:02.0935 5968  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
14:25:02.0935 5968  C:\Windows\System32\gdi32.dll - ok
14:25:02.0935 5968  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
14:25:02.0935 5968  C:\Windows\System32\imagehlp.dll - ok
14:25:02.0935 5968  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
14:25:02.0935 5968  C:\Windows\System32\shlwapi.dll - ok
14:25:02.0935 5968  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
14:25:02.0935 5968  C:\Windows\System32\user32.dll - ok
14:25:02.0951 5968  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
14:25:02.0951 5968  C:\Windows\System32\ws2_32.dll - ok
14:25:02.0951 5968  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
14:25:02.0951 5968  C:\Windows\System32\difxapi.dll - ok
14:25:02.0951 5968  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
14:25:02.0951 5968  C:\Windows\System32\psapi.dll - ok
14:25:02.0951 5968  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
14:25:02.0951 5968  C:\Windows\System32\msctf.dll - ok
14:25:02.0951 5968  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
14:25:02.0951 5968  C:\Windows\System32\urlmon.dll - ok
14:25:02.0951 5968  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
14:25:02.0951 5968  C:\Windows\System32\cfgmgr32.dll - ok
14:25:02.0951 5968  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
14:25:02.0951 5968  C:\Windows\System32\crypt32.dll - ok
14:25:02.0967 5968  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
14:25:02.0967 5968  C:\Windows\System32\comctl32.dll - ok
14:25:02.0967 5968  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
14:25:02.0967 5968  C:\Windows\System32\devobj.dll - ok
14:25:02.0967 5968  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
14:25:02.0967 5968  C:\Windows\System32\KernelBase.dll - ok
14:25:02.0967 5968  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
14:25:02.0967 5968  C:\Windows\System32\msasn1.dll - ok
14:25:02.0967 5968  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
14:25:02.0967 5968  C:\Windows\System32\wintrust.dll - ok
14:25:02.0967 5968  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
14:25:02.0967 5968  C:\Windows\SysWOW64\normaliz.dll - ok
14:25:02.0967 5968  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
14:25:02.0967 5968  C:\Windows\System32\drivers\kbdhid.sys - ok
14:25:02.0982 5968  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
14:25:02.0982 5968  C:\Windows\System32\drivers\mouhid.sys - ok
14:25:02.0982 5968  [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] C:\Windows\System32\drivers\dc3d.sys
14:25:02.0982 5968  C:\Windows\System32\drivers\dc3d.sys - ok
14:25:02.0982 5968  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
14:25:02.0982 5968  C:\Windows\System32\drivers\usbccgp.sys - ok
14:25:02.0982 5968  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
14:25:02.0982 5968  C:\Windows\System32\drivers\hidusb.sys - ok
14:25:02.0982 5968  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] C:\Windows\System32\drivers\point64.sys
14:25:02.0982 5968  C:\Windows\System32\drivers\point64.sys - ok
14:25:02.0982 5968  [ C0EAF4F2367C44157E1DE4817238FEC2 ] C:\Windows\System32\drivers\mfeavfk.sys
14:25:02.0982 5968  C:\Windows\System32\drivers\mfeavfk.sys - ok
14:25:02.0998 5968  [ 6856931F9F5B757E9D09369CC35096B9 ] C:\Windows\System32\drivers\mfefirek.sys
14:25:02.0998 5968  C:\Windows\System32\drivers\mfefirek.sys - ok
14:25:02.0998 5968  [ 9C9FC3770BD600B2D761D666234C244D ] C:\Windows\System32\drivers\mfencbdc.sys
14:25:02.0998 5968  C:\Windows\System32\drivers\mfencbdc.sys - ok
14:25:02.0998 5968  [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
14:25:02.0998 5968  C:\Windows\System32\drivers\USBSTOR.SYS - ok
14:25:02.0998 5968  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
14:25:02.0998 5968  C:\Windows\System32\drivers\dxapi.sys - ok
14:25:02.0998 5968  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
14:25:02.0998 5968  C:\Windows\System32\win32k.sys - ok
14:25:02.0998 5968  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
14:25:02.0998 5968  C:\Windows\System32\csrsrv.dll - ok
14:25:02.0998 5968  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
14:25:02.0998 5968  C:\Windows\System32\csrss.exe - ok
14:25:03.0013 5968  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
14:25:03.0013 5968  C:\Windows\System32\basesrv.dll - ok
14:25:03.0013 5968  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
14:25:03.0013 5968  C:\Windows\System32\winsrv.dll - ok
14:25:03.0013 5968  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
14:25:03.0013 5968  C:\Windows\System32\drivers\monitor.sys - ok
14:25:03.0013 5968  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys
14:25:03.0013 5968  C:\Windows\System32\drivers\usbscan.sys - ok
14:25:03.0013 5968  [ B42ED0320C6E41102FDE0005154849BB ] C:\Windows\System32\drivers\Dot4.sys
14:25:03.0013 5968  C:\Windows\System32\drivers\Dot4.sys - ok
14:25:03.0013 5968  [ FD05A02B0370BC3000F402E543CA5814 ] C:\Windows\System32\drivers\Dot4usb.sys
14:25:03.0013 5968  C:\Windows\System32\drivers\Dot4usb.sys - ok
14:25:03.0013 5968  [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
14:25:03.0013 5968  C:\Windows\System32\drivers\usbprint.sys - ok
14:25:03.0029 5968  [ E9F5969233C5D89F3C35E3A66A52A361 ] C:\Windows\System32\drivers\Dot4Prt.sys
14:25:03.0029 5968  C:\Windows\System32\drivers\Dot4Prt.sys - ok
14:25:03.0029 5968  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
14:25:03.0029 5968  C:\Windows\System32\tsddd.dll - ok
14:25:03.0029 5968  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
14:25:03.0029 5968  C:\Windows\System32\profapi.dll - ok
14:25:03.0029 5968  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
14:25:03.0029 5968  C:\Windows\System32\RpcRtRemote.dll - ok
14:25:03.0029 5968  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
14:25:03.0029 5968  C:\Windows\System32\sxssrv.dll - ok
14:25:03.0029 5968  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
14:25:03.0029 5968  C:\Windows\System32\wininit.exe - ok
14:25:03.0029 5968  [ 1A83FACA2135AF076E8EA73A30B3B26C ] C:\Windows\System32\KBDUK.DLL
14:25:03.0029 5968  C:\Windows\System32\KBDUK.DLL - ok
14:25:03.0045 5968  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
14:25:03.0045 5968  C:\Windows\System32\cdd.dll - ok
14:25:03.0045 5968  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
14:25:03.0045 5968  C:\Windows\System32\sxs.dll - ok
14:25:03.0045 5968  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
14:25:03.0045 5968  C:\Windows\System32\WlS0WndH.dll - ok
14:25:03.0045 5968  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
14:25:03.0045 5968  C:\Windows\System32\cryptbase.dll - ok
14:25:03.0045 5968  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
14:25:03.0045 5968  C:\Windows\System32\apphelp.dll - ok
14:25:03.0045 5968  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
14:25:03.0045 5968  C:\Windows\System32\lsass.exe - ok
14:25:03.0045 5968  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
14:25:03.0045 5968  C:\Windows\System32\lsm.exe - ok
14:25:03.0060 5968  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
14:25:03.0060 5968  C:\Windows\System32\services.exe - ok
14:25:03.0060 5968  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
14:25:03.0060 5968  C:\Windows\System32\lsasrv.dll - ok
14:25:03.0060 5968  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
14:25:03.0060 5968  C:\Windows\System32\scesrv.dll - ok
14:25:03.0060 5968  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
14:25:03.0060 5968  C:\Windows\System32\scext.dll - ok
14:25:03.0060 5968  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
14:25:03.0060 5968  C:\Windows\System32\secur32.dll - ok
14:25:03.0060 5968  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
14:25:03.0060 5968  C:\Windows\System32\sspicli.dll - ok
14:25:03.0060 5968  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
14:25:03.0060 5968  C:\Windows\System32\sspisrv.dll - ok
14:25:03.0076 5968  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
14:25:03.0076 5968  C:\Windows\System32\sysntfy.dll - ok
14:25:03.0076 5968  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
14:25:03.0076 5968  C:\Windows\System32\wmsgapi.dll - ok
14:25:03.0076 5968  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
14:25:03.0076 5968  C:\Windows\System32\samsrv.dll - ok
14:25:03.0076 5968  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
14:25:03.0076 5968  C:\Windows\System32\srvcli.dll - ok
14:25:03.0076 5968  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
14:25:03.0076 5968  C:\Windows\System32\authz.dll - ok
14:25:03.0076 5968  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
14:25:03.0076 5968  C:\Windows\System32\cngaudit.dll - ok
14:25:03.0076 5968  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
14:25:03.0076 5968  C:\Windows\System32\cryptdll.dll - ok
14:25:03.0091 5968  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
14:25:03.0091 5968  C:\Windows\System32\ncrypt.dll - ok
14:25:03.0091 5968  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
14:25:03.0091 5968  C:\Windows\System32\wevtapi.dll - ok
14:25:03.0091 5968  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
14:25:03.0091 5968  C:\Windows\System32\bcrypt.dll - ok
14:25:03.0091 5968  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
14:25:03.0091 5968  C:\Windows\System32\kerberos.dll - ok
14:25:03.0091 5968  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
14:25:03.0091 5968  C:\Windows\System32\msprivs.dll - ok
14:25:03.0091 5968  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
14:25:03.0091 5968  C:\Windows\System32\negoexts.dll - ok
14:25:03.0091 5968  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
14:25:03.0091 5968  C:\Windows\System32\netjoin.dll - ok
14:25:03.0107 5968  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
14:25:03.0107 5968  C:\Windows\System32\cryptsp.dll - ok
14:25:03.0107 5968  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
14:25:03.0107 5968  C:\Windows\System32\mswsock.dll - ok
14:25:03.0107 5968  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
14:25:03.0107 5968  C:\Windows\System32\msv1_0.dll - ok
14:25:03.0107 5968  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
14:25:03.0107 5968  C:\Windows\System32\wship6.dll - ok
14:25:03.0107 5968  [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
14:25:03.0107 5968  C:\Windows\System32\atmfd.dll - ok
14:25:03.0107 5968  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
14:25:03.0107 5968  C:\Windows\System32\dnsapi.dll - ok
14:25:03.0107 5968  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
14:25:03.0107 5968  C:\Windows\System32\logoncli.dll - ok
14:25:03.0123 5968  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
14:25:03.0123 5968  C:\Windows\System32\netlogon.dll - ok
14:25:03.0123 5968  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
14:25:03.0123 5968  C:\Windows\System32\pku2u.dll - ok
14:25:03.0123 5968  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
14:25:03.0123 5968  C:\Windows\System32\rsaenh.dll - ok
14:25:03.0123 5968  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
14:25:03.0123 5968  C:\Windows\System32\schannel.dll - ok
14:25:03.0123 5968  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
14:25:03.0123 5968  C:\Windows\System32\TSpkg.dll - ok
14:25:03.0123 5968  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
14:25:03.0123 5968  C:\Windows\System32\wdigest.dll - ok
14:25:03.0123 5968  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
14:25:03.0123 5968  C:\Windows\System32\bcryptprimitives.dll - ok
14:25:03.0138 5968  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
14:25:03.0138 5968  C:\Windows\System32\credssp.dll - ok
14:25:03.0138 5968  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
14:25:03.0138 5968  C:\Windows\System32\efslsaext.dll - ok
14:25:03.0138 5968  [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
14:25:03.0138 5968  C:\Windows\System32\LIVESSP.DLL - ok
14:25:03.0138 5968  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
14:25:03.0138 5968  C:\Windows\System32\scecli.dll - ok
14:25:03.0138 5968  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
14:25:03.0138 5968  C:\Windows\System32\winlogon.exe - ok
14:25:03.0138 5968  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
14:25:03.0138 5968  C:\Windows\System32\winsta.dll - ok
14:25:03.0138 5968  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
14:25:03.0138 5968  C:\Windows\System32\ubpm.dll - ok
14:25:03.0154 5968  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
14:25:03.0154 5968  C:\Windows\System32\svchost.exe - ok
14:25:03.0154 5968  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
14:25:03.0154 5968  C:\Windows\System32\SPInf.dll - ok
14:25:03.0154 5968  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
14:25:03.0154 5968  C:\Windows\System32\umpnpmgr.dll - ok
14:25:03.0154 5968  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
14:25:03.0154 5968  C:\Windows\System32\devrtl.dll - ok
14:25:03.0154 5968  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
14:25:03.0154 5968  C:\Windows\System32\gpapi.dll - ok
14:25:03.0154 5968  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
14:25:03.0154 5968  C:\Windows\System32\userenv.dll - ok
14:25:03.0154 5968  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
14:25:03.0154 5968  C:\Windows\System32\umpo.dll - ok
14:25:03.0169 5968  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
14:25:03.0169 5968  C:\Windows\System32\pcwum.dll - ok
14:25:03.0169 5968  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
14:25:03.0169 5968  C:\Windows\System32\powrprof.dll - ok
14:25:03.0169 5968  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
14:25:03.0169 5968  C:\Windows\System32\drivers\luafv.sys - ok
14:25:03.0169 5968  [ DDFAFCE89A5C93D04712B86F94E9FCBA ] C:\Windows\System32\nvvsvc.exe
14:25:03.0169 5968  C:\Windows\System32\nvvsvc.exe - ok
14:25:03.0169 5968  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
14:25:03.0169 5968  C:\Windows\System32\wtsapi32.dll - ok
14:25:03.0169 5968  [ F0359F7CE712D69ACEF0886BDB4792ED ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:25:03.0169 5968  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok
14:25:03.0169 5968  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
14:25:03.0169 5968  C:\Windows\SysWOW64\ntdll.dll - ok
14:25:03.0185 5968  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
14:25:03.0185 5968  C:\Windows\System32\wow64.dll - ok
14:25:03.0185 5968  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
14:25:03.0185 5968  C:\Windows\System32\wow64win.dll - ok
14:25:03.0185 5968  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
14:25:03.0185 5968  C:\Windows\System32\wow64cpu.dll - ok
14:25:03.0185 5968  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
14:25:03.0185 5968  C:\Windows\SysWOW64\kernel32.dll - ok
14:25:03.0185 5968  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
14:25:03.0185 5968  C:\Windows\SysWOW64\KernelBase.dll - ok
14:25:03.0185 5968  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
14:25:03.0185 5968  C:\Windows\SysWOW64\msvcrt.dll - ok
14:25:03.0185 5968  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
14:25:03.0185 5968  C:\Windows\SysWOW64\version.dll - ok
14:25:03.0185 5968  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\setupapi.dll - ok
14:25:03.0201 5968  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\cfgmgr32.dll - ok
14:25:03.0201 5968  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\rpcrt4.dll - ok
14:25:03.0201 5968  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\advapi32.dll - ok
14:25:03.0201 5968  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\cryptbase.dll - ok
14:25:03.0201 5968  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\sechost.dll - ok
14:25:03.0201 5968  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
14:25:03.0201 5968  C:\Windows\SysWOW64\sspicli.dll - ok
14:25:03.0216 5968  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\gdi32.dll - ok
14:25:03.0216 5968  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\user32.dll - ok
14:25:03.0216 5968  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\lpk.dll - ok
14:25:03.0216 5968  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\usp10.dll - ok
14:25:03.0216 5968  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\oleaut32.dll - ok
14:25:03.0216 5968  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\ole32.dll - ok
14:25:03.0216 5968  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
14:25:03.0216 5968  C:\Windows\SysWOW64\devobj.dll - ok
14:25:03.0216 5968  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
14:25:03.0216 5968  C:\Windows\SysWOW64\winspool.drv - ok
14:25:03.0232 5968  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
14:25:03.0232 5968  C:\Windows\SysWOW64\imm32.dll - ok
14:25:03.0232 5968  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
14:25:03.0232 5968  C:\Windows\SysWOW64\msctf.dll - ok
14:25:03.0232 5968  [ 145E7826A07D98628924A9B06F6273AB ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll
14:25:03.0232 5968  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll - ok
14:25:03.0232 5968  [ 7AD857422AFA068A39A4B4BBF7FCC49C ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll
14:25:03.0232 5968  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll - ok
14:25:03.0232 5968  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
14:25:03.0232 5968  C:\Windows\SysWOW64\wintrust.dll - ok
14:25:03.0232 5968  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
14:25:03.0232 5968  C:\Windows\System32\rpcss.dll - ok
14:25:03.0247 5968  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
14:25:03.0247 5968  C:\Windows\SysWOW64\crypt32.dll - ok
14:25:03.0247 5968  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
14:25:03.0247 5968  C:\Windows\System32\RpcEpMap.dll - ok
14:25:03.0247 5968  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
14:25:03.0247 5968  C:\Windows\SysWOW64\msasn1.dll - ok
14:25:03.0247 5968  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
14:25:03.0247 5968  C:\Windows\SysWOW64\ntmarta.dll - ok
14:25:03.0247 5968  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
14:25:03.0247 5968  C:\Windows\SysWOW64\Wldap32.dll - ok
14:25:03.0247 5968  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
14:25:03.0247 5968  C:\Windows\System32\wshqos.dll - ok
14:25:03.0247 5968  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
14:25:03.0247 5968  C:\Windows\System32\WSHTCPIP.DLL - ok
14:25:03.0263 5968  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
14:25:03.0263 5968  C:\Windows\SysWOW64\devrtl.dll - ok
14:25:03.0263 5968  [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
14:25:03.0263 5968  C:\Windows\SysWOW64\SPInf.dll - ok
14:25:03.0263 5968  [ 9B0E9AF5C264521C635A3C3CB966AF85 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
14:25:03.0263 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe - ok
14:25:03.0263 5968  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
14:25:03.0263 5968  C:\Windows\System32\FirewallAPI.dll - ok
14:25:03.0263 5968  [ 364085236F92797991EDF5AC17E59CC2 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportUtil.dll
14:25:03.0263 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportUtil.dll - ok
14:25:03.0263 5968  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
14:25:03.0263 5968  C:\Windows\System32\LogonUI.exe - ok
14:25:03.0263 5968  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
14:25:03.0263 5968  C:\Windows\System32\authui.dll - ok
14:25:03.0279 5968  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
14:25:03.0279 5968  C:\Windows\System32\version.dll - ok
14:25:03.0279 5968  [ FEFE5FEEC3916592323B657CC0CDFD54 ] C:\Program Files (x86)\Trusteer\Rapport\bin\TRF.dll
14:25:03.0279 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\TRF.dll - ok
14:25:03.0279 5968  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
14:25:03.0279 5968  C:\Windows\System32\cryptui.dll - ok
14:25:03.0279 5968  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
14:25:03.0279 5968  C:\Windows\SysWOW64\psapi.dll - ok
14:25:03.0279 5968  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
14:25:03.0279 5968  C:\Windows\SysWOW64\shell32.dll - ok
14:25:03.0279 5968  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
14:25:03.0279 5968  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
14:25:03.0279 5968  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
14:25:03.0279 5968  C:\Windows\System32\propsys.dll - ok
14:25:03.0294 5968  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
14:25:03.0294 5968  C:\Windows\System32\samlib.dll - ok
14:25:03.0294 5968  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
14:25:03.0294 5968  C:\Windows\System32\shacct.dll - ok
14:25:03.0294 5968  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
14:25:03.0294 5968  C:\Windows\System32\uxtheme.dll - ok
14:25:03.0294 5968  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
14:25:03.0294 5968  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
14:25:03.0294 5968  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
14:25:03.0294 5968  C:\Windows\System32\dui70.dll - ok
14:25:03.0294 5968  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
14:25:03.0294 5968  C:\Windows\System32\duser.dll - ok
14:25:03.0294 5968  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
14:25:03.0294 5968  C:\Windows\System32\SndVolSSO.dll - ok
14:25:03.0310 5968  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
14:25:03.0310 5968  C:\Windows\System32\hid.dll - ok
14:25:03.0310 5968  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
14:25:03.0310 5968  C:\Windows\System32\MMDevAPI.dll - ok
14:25:03.0310 5968  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
14:25:03.0310 5968  C:\Windows\System32\dwmapi.dll - ok
14:25:03.0310 5968  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
14:25:03.0310 5968  C:\Windows\System32\xmllite.dll - ok
14:25:03.0310 5968  [ AA4F5091322FE26ABBEBD718A4753BC5 ] C:\Program Files (x86)\Trusteer\Rapport\bin\msvcr80.dll
14:25:03.0310 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\msvcr80.dll - ok
14:25:03.0310 5968  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
14:25:03.0310 5968  C:\Windows\System32\WindowsCodecs.dll - ok
14:25:03.0310 5968  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
14:25:03.0310 5968  C:\Windows\SysWOW64\shlwapi.dll - ok
14:25:03.0325 5968  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
14:25:03.0325 5968  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
14:25:03.0325 5968  [ 577A3F3724C9EFE1D9D76F8EEBC185E7 ] C:\Program Files (x86)\Trusteer\Rapport\bin\msvcp80.dll
14:25:03.0325 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\msvcp80.dll - ok
14:25:03.0325 5968  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
14:25:03.0325 5968  C:\Windows\SysWOW64\nsi.dll - ok
14:25:03.0325 5968  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
14:25:03.0325 5968  C:\Windows\SysWOW64\ws2_32.dll - ok
14:25:03.0325 5968  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
14:25:03.0325 5968  C:\Windows\SysWOW64\wtsapi32.dll - ok
14:25:03.0325 5968  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
14:25:03.0325 5968  C:\Windows\SysWOW64\secur32.dll - ok
14:25:03.0325 5968  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
14:25:03.0341 5968  C:\Windows\SysWOW64\userenv.dll - ok
14:25:03.0341 5968  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
14:25:03.0341 5968  C:\Windows\SysWOW64\profapi.dll - ok
14:25:03.0341 5968  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
14:25:03.0341 5968  C:\Windows\SysWOW64\wininet.dll - ok
14:25:03.0341 5968  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
14:25:03.0341 5968  C:\Windows\SysWOW64\iertutil.dll - ok
14:25:03.0341 5968  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
14:25:03.0341 5968  C:\Windows\SysWOW64\urlmon.dll - ok
14:25:03.0341 5968  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
14:25:03.0341 5968  C:\Windows\System32\VaultCredProvider.dll - ok
14:25:03.0341 5968  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
14:25:03.0341 5968  C:\Windows\System32\winbrand.dll - ok
14:25:03.0357 5968  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
14:25:03.0357 5968  C:\Windows\SysWOW64\wsock32.dll - ok
14:25:03.0357 5968  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
14:25:03.0357 5968  C:\Windows\System32\BioCredProv.dll - ok
14:25:03.0357 5968  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
14:25:03.0357 5968  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
14:25:03.0357 5968  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
14:25:03.0357 5968  C:\Windows\System32\credui.dll - ok
14:25:03.0357 5968  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
14:25:03.0357 5968  C:\Windows\System32\netapi32.dll - ok
14:25:03.0357 5968  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
14:25:03.0357 5968  C:\Windows\System32\netutils.dll - ok
14:25:03.0357 5968  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
14:25:03.0357 5968  C:\Windows\System32\samcli.dll - ok
14:25:03.0372 5968  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
14:25:03.0372 5968  C:\Windows\System32\vaultcli.dll - ok
14:25:03.0372 5968  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
14:25:03.0372 5968  C:\Windows\System32\winbio.dll - ok
14:25:03.0372 5968  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
14:25:03.0372 5968  C:\Windows\System32\wkscli.dll - ok
14:25:03.0372 5968  [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
14:25:03.0372 5968  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
14:25:03.0372 5968  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
14:25:03.0372 5968  C:\Windows\System32\certCredProvider.dll - ok
14:25:03.0372 5968  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
14:25:03.0372 5968  C:\Windows\SysWOW64\msi.dll - ok
14:25:03.0372 5968  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
14:25:03.0372 5968  C:\Windows\System32\rasplap.dll - ok
14:25:03.0388 5968  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
14:25:03.0388 5968  C:\Windows\System32\rasapi32.dll - ok
14:25:03.0388 5968  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
14:25:03.0388 5968  C:\Windows\System32\rasman.dll - ok
14:25:03.0388 5968  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
14:25:03.0388 5968  C:\Windows\System32\rtutils.dll - ok
14:25:03.0388 5968  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
14:25:03.0388 5968  C:\Windows\SysWOW64\cryptsp.dll - ok
14:25:03.0388 5968  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
14:25:03.0388 5968  C:\Windows\System32\oleacc.dll - ok
14:25:03.0388 5968  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
14:25:03.0388 5968  C:\Windows\SysWOW64\rsaenh.dll - ok
14:25:03.0388 5968  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
14:25:03.0388 5968  C:\Windows\SysWOW64\winsta.dll - ok
14:25:03.0403 5968  [ 82FF919E9236B0137B5C7455B0E1418A ] C:\Windows\SysWOW64\ntoskrnl.exe
14:25:03.0403 5968  C:\Windows\SysWOW64\ntoskrnl.exe - ok
14:25:03.0403 5968  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
14:25:03.0403 5968  C:\Windows\SysWOW64\netapi32.dll - ok
14:25:03.0403 5968  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
14:25:03.0403 5968  C:\Windows\SysWOW64\netutils.dll - ok
14:25:03.0403 5968  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
14:25:03.0403 5968  C:\Windows\SysWOW64\srvcli.dll - ok
14:25:03.0403 5968  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
14:25:03.0403 5968  C:\Windows\SysWOW64\wkscli.dll - ok
14:25:03.0403 5968  [ A8D80CABBBD30AB5258FAE5821B5D2EC ] C:\Program Files (x86)\Trusteer\Rapport\bin\rooksbas.dll.data
14:25:03.0403 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\rooksbas.dll.data - ok
14:25:03.0403 5968  [ A8D80CABBBD30AB5258FAE5821B5D2EC ] C:\Program Files (x86)\Trusteer\Rapport\bin\rooksbas.dll
14:25:03.0403 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\rooksbas.dll - ok
14:25:03.0419 5968  [ 34203F2B7B23E189F5ECCF161F752E31 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksbas_x64.dll.data
14:25:03.0419 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksbas_x64.dll.data - ok
14:25:03.0419 5968  [ 34203F2B7B23E189F5ECCF161F752E31 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksbas_x64.dll
14:25:03.0419 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksbas_x64.dll - ok
14:25:03.0419 5968  [ 1991BA7D39DCBC45E5F1A5EB060DD0A2 ] C:\Program Files (x86)\Trusteer\Rapport\bin\rookscom.dll.data
14:25:03.0419 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\rookscom.dll.data - ok
14:25:03.0419 5968  [ 58F6ADAE5E04A178349DC76124269DA2 ] C:\Program Files (x86)\Trusteer\Rapport\bin\rookscom.dll
14:25:03.0419 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\rookscom.dll - ok
14:25:03.0419 5968  [ 910880A1B48F108152C6531BA96B63A4 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rookscom_x64.dll
14:25:03.0419 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rookscom_x64.dll - ok
14:25:03.0419 5968  [ 2C6FD69C2B8704626BA2377436AC3089 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rookscom_x64.dll.data
14:25:03.0419 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rookscom_x64.dll.data - ok
14:25:03.0435 5968  [ 3D9C52F96ABAE8E6E67620FE7DD7DB67 ] C:\Program Files (x86)\Trusteer\Rapport\bin\rooksdol.dll
14:25:03.0435 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\rooksdol.dll - ok
14:25:03.0435 5968  [ 3D9C52F96ABAE8E6E67620FE7DD7DB67 ] C:\Program Files (x86)\Trusteer\Rapport\bin\rooksdol.dll.data
14:25:03.0435 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\rooksdol.dll.data - ok
14:25:03.0435 5968  [ EE55F0156F1EA75A47374F5639983E22 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksdol_x64.dll.data
14:25:03.0435 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksdol_x64.dll.data - ok
14:25:03.0435 5968  [ EE55F0156F1EA75A47374F5639983E22 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksdol_x64.dll
14:25:03.0435 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\rooksdol_x64.dll - ok
14:25:03.0435 5968  [ 355129539881BCA4311EE32E79A99D67 ] C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\KoanLight.dll
14:25:03.0435 5968  C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\KoanLight.dll - ok
14:25:03.0435 5968  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
14:25:03.0435 5968  C:\Windows\SysWOW64\oleacc.dll - ok
14:25:03.0435 5968  [ 577A3F3724C9EFE1D9D76F8EEBC185E7 ] C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\msvcp80.dll
14:25:03.0435 5968  C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\msvcp80.dll - ok
14:25:03.0450 5968  [ AA4F5091322FE26ABBEBD718A4753BC5 ] C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\msvcr80.dll
14:25:03.0450 5968  C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\msvcr80.dll - ok
14:25:03.0450 5968  [ 64BBEFA566A6B862ECE73FB65DFD7DD0 ] C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\atl80.dll
14:25:03.0450 5968  C:\ProgramData\Trusteer\Rapport\store\exts\KoanLight\baseline\atl80.dll - ok
14:25:03.0450 5968  [ B00E9442B0BFE13C5ED2E5A07C20AEEC ] C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\NikkoLight.dll
14:25:03.0450 5968  C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\NikkoLight.dll - ok
14:25:03.0450 5968  [ 577A3F3724C9EFE1D9D76F8EEBC185E7 ] C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\msvcp80.dll
14:25:03.0450 5968  C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\msvcp80.dll - ok
14:25:03.0450 5968  [ AA4F5091322FE26ABBEBD718A4753BC5 ] C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\msvcr80.dll
14:25:03.0450 5968  C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\msvcr80.dll - ok
14:25:03.0450 5968  [ 64BBEFA566A6B862ECE73FB65DFD7DD0 ] C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\atl80.dll
14:25:03.0450 5968  C:\ProgramData\Trusteer\Rapport\store\exts\NikkoLight\baseline\atl80.dll - ok
14:25:03.0466 5968  [ FD1925F2D290E05AF557DFBD2E08ED45 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus.dll
14:25:03.0466 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus.dll - ok
14:25:03.0466 5968  [ 286F4A6E3050A6010B72C4A315FB6236 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportGP\baseline\RapportGP.dll
14:25:03.0466 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportGP\baseline\RapportGP.dll - ok
14:25:03.0466 5968  [ 577A3F3724C9EFE1D9D76F8EEBC185E7 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportGP\baseline\msvcp80.dll
14:25:03.0466 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportGP\baseline\msvcp80.dll - ok
14:25:03.0466 5968  [ AA4F5091322FE26ABBEBD718A4753BC5 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportGP\baseline\msvcr80.dll
14:25:03.0466 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportGP\baseline\msvcr80.dll - ok
14:25:03.0466 5968  [ 8DDCC5CB606133D914430841CAD180FA ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportMS.dll
14:25:03.0466 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportMS.dll - ok
14:25:03.0466 5968  [ B7E3E9D97C0E11EEA30C8B305A38B087 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportVB\baseline\RapportVB.dll
14:25:03.0466 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportVB\baseline\RapportVB.dll - ok
14:25:03.0481 5968  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
14:25:03.0481 5968  C:\Windows\SysWOW64\comdlg32.dll - ok
14:25:03.0481 5968  [ 577A3F3724C9EFE1D9D76F8EEBC185E7 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportVB\baseline\msvcp80.dll
14:25:03.0481 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportVB\baseline\msvcp80.dll - ok
14:25:03.0481 5968  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
14:25:03.0481 5968  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
14:25:03.0481 5968  [ AA4F5091322FE26ABBEBD718A4753BC5 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportVB\baseline\msvcr80.dll
14:25:03.0481 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportVB\baseline\msvcr80.dll - ok
14:25:03.0481 5968  [ B170C933C71C439AE44DD0865B01D04D ] C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\TanzanLight.dll
14:25:03.0481 5968  C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\TanzanLight.dll - ok
14:25:03.0481 5968  [ 577A3F3724C9EFE1D9D76F8EEBC185E7 ] C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\msvcp80.dll
14:25:03.0481 5968  C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\msvcp80.dll - ok
14:25:03.0497 5968  [ AA4F5091322FE26ABBEBD718A4753BC5 ] C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\msvcr80.dll
14:25:03.0497 5968  C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\msvcr80.dll - ok
14:25:03.0497 5968  [ 64BBEFA566A6B862ECE73FB65DFD7DD0 ] C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\atl80.dll
14:25:03.0497 5968  C:\ProgramData\Trusteer\Rapport\store\exts\TanzanLight\baseline\atl80.dll - ok
14:25:03.0497 5968  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
14:25:03.0497 5968  C:\Windows\System32\wevtsvc.dll - ok
14:25:03.0497 5968  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
14:25:03.0497 5968  C:\Windows\System32\ntmarta.dll - ok
14:25:03.0497 5968  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
14:25:03.0497 5968  C:\Windows\System32\audiosrv.dll - ok
14:25:03.0497 5968  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
14:25:03.0497 5968  C:\Windows\System32\avrt.dll - ok
14:25:03.0497 5968  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
14:25:03.0497 5968  C:\Windows\System32\FntCache.dll - ok
14:25:03.0513 5968  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
14:25:03.0513 5968  C:\Windows\System32\adtschema.dll - ok
14:25:03.0513 5968  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
14:25:03.0513 5968  C:\Windows\System32\mmcss.dll - ok
14:25:03.0513 5968  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
14:25:03.0513 5968  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
14:25:03.0513 5968  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
14:25:03.0513 5968  C:\Windows\System32\WUDFPlatform.dll - ok
14:25:03.0513 5968  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
14:25:03.0513 5968  C:\Windows\System32\profsvc.dll - ok
14:25:03.0513 5968  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
14:25:03.0513 5968  C:\Windows\System32\drivers\fltMgr.sys - ok
14:25:03.0513 5968  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
14:25:03.0513 5968  C:\Windows\System32\MPSSVC.dll - ok
14:25:03.0528 5968  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
14:25:03.0528 5968  C:\Windows\System32\audiodg.exe - ok
14:25:03.0528 5968  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
14:25:03.0528 5968  C:\Windows\System32\gpsvc.dll - ok
14:25:03.0528 5968  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
14:25:03.0528 5968  C:\Windows\System32\nlaapi.dll - ok
14:25:03.0528 5968  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
14:25:03.0528 5968  C:\Windows\System32\themeservice.dll - ok
14:25:03.0528 5968  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
14:25:03.0528 5968  C:\Windows\System32\atl.dll - ok
14:25:03.0528 5968  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
14:25:03.0528 5968  C:\Windows\System32\dsrole.dll - ok
14:25:03.0528 5968  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
14:25:03.0528 5968  C:\Windows\System32\es.dll - ok
14:25:03.0544 5968  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
14:25:03.0544 5968  C:\Windows\System32\slc.dll - ok
14:25:03.0544 5968  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
14:25:03.0544 5968  C:\Windows\System32\comres.dll - ok
14:25:03.0544 5968  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
14:25:03.0544 5968  C:\Windows\System32\Sens.dll - ok
14:25:03.0544 5968  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
14:25:03.0544 5968  C:\Windows\System32\drivers\lltdio.sys - ok
14:25:03.0544 5968  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
14:25:03.0544 5968  C:\Windows\System32\drivers\rspndr.sys - ok
14:25:03.0544 5968  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
14:25:03.0544 5968  C:\Windows\System32\uxsms.dll - ok
14:25:03.0544 5968  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
14:25:03.0544 5968  C:\Windows\System32\dhcpcore.dll - ok
14:25:03.0559 5968  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
14:25:03.0559 5968  C:\Windows\System32\IPHLPAPI.DLL - ok
14:25:03.0559 5968  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
14:25:03.0559 5968  C:\Windows\System32\lmhsvc.dll - ok
14:25:03.0559 5968  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
14:25:03.0559 5968  C:\Windows\System32\nrpsrv.dll - ok
14:25:03.0559 5968  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
14:25:03.0559 5968  C:\Windows\System32\nsisvc.dll - ok
14:25:03.0559 5968  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
14:25:03.0559 5968  C:\Windows\System32\winnsi.dll - ok
14:25:03.0559 5968  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
14:25:03.0559 5968  C:\Windows\System32\dhcpcore6.dll - ok
14:25:03.0559 5968  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
14:25:03.0559 5968  C:\Windows\System32\dnsrslvr.dll - ok
14:25:03.0575 5968  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
14:25:03.0575 5968  C:\Windows\System32\dnsext.dll - ok
14:25:03.0575 5968  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
14:25:03.0575 5968  C:\Windows\System32\FWPUCLNT.DLL - ok
14:25:03.0575 5968  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
14:25:03.0575 5968  C:\Windows\System32\dhcpcsvc6.dll - ok
14:25:03.0575 5968  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
14:25:03.0575 5968  C:\Windows\System32\shsvcs.dll - ok
14:25:03.0575 5968  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
14:25:03.0575 5968  C:\Windows\System32\dhcpcsvc.dll - ok
14:25:03.0575 5968  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
14:25:03.0575 5968  C:\Windows\System32\UXInit.dll - ok
14:25:03.0575 5968  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
14:25:03.0575 5968  C:\Windows\System32\schedsvc.dll - ok
14:25:03.0591 5968  [ DF3E3167B03804F32AD274C33F77B308 ] C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
14:25:03.0591 5968  C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe - ok
14:25:03.0591 5968  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
14:25:03.0591 5968  C:\Windows\System32\ktmw32.dll - ok
14:25:03.0591 5968  [ 4CE5C4F80620D6DBBB054003EAD71F95 ] C:\Windows\System32\nvsvc64.dll
14:25:03.0591 5968  C:\Windows\System32\nvsvc64.dll - ok
14:25:03.0591 5968  [ 11205381BBBF98F0CA1C672056808B8F ] C:\Program Files\NVIDIA Corporation\Display\NVXDApiX.dll
14:25:03.0591 5968  C:\Program Files\NVIDIA Corporation\Display\NVXDApiX.dll - ok
14:25:03.0591 5968  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
14:25:03.0591 5968  C:\Windows\System32\taskcomp.dll - ok
14:25:03.0591 5968  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
14:25:03.0591 5968  C:\Windows\System32\imageres.dll - ok
14:25:03.0591 5968  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
14:25:03.0591 5968  C:\Windows\System32\mscms.dll - ok
14:25:03.0606 5968  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
14:25:03.0606 5968  C:\Windows\System32\fveapi.dll - ok
14:25:03.0606 5968  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
14:25:03.0606 5968  C:\Windows\System32\fvecerts.dll - ok
14:25:03.0606 5968  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
14:25:03.0606 5968  C:\Windows\System32\msimg32.dll - ok
14:25:03.0606 5968  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
14:25:03.0606 5968  C:\Windows\System32\tbs.dll - ok
14:25:03.0606 5968  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
14:25:03.0606 5968  C:\Windows\System32\winmm.dll - ok
14:25:03.0606 5968  [ E6E9DC01812ABA16DBAE5EFA4EF63E57 ] C:\Windows\System32\nvapi64.dll
14:25:03.0606 5968  C:\Windows\System32\nvapi64.dll - ok
14:25:03.0606 5968  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
14:25:03.0606 5968  C:\Windows\System32\drivers\http.sys - ok
14:25:03.0622 5968  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
14:25:03.0622 5968  C:\Windows\System32\spoolsv.exe - ok
14:25:03.0622 5968  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
14:25:03.0622 5968  C:\Windows\System32\wiarpc.dll - ok
14:25:03.0622 5968  [ 40965B72A0A33DDB8423B85F93E4C136 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
14:25:03.0622 5968  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
14:25:03.0622 5968  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
14:25:03.0622 5968  C:\Windows\System32\BFE.DLL - ok
14:25:03.0622 5968  [ D7CA52F89A7F4520610FF3682F0E42EE ] C:\Windows\System32\nvsvcr.dll
14:25:03.0622 5968  C:\Windows\System32\nvsvcr.dll - ok
14:25:03.0622 5968  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
14:25:03.0622 5968  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
14:25:03.0622 5968  [ BC2A18841494B3756894627FF279C65E ] C:\Windows\System32\nvcpl.dll
14:25:03.0622 5968  C:\Windows\System32\nvcpl.dll - ok
14:25:03.0637 5968  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
14:25:03.0637 5968  C:\Windows\System32\winspool.drv - ok
14:25:03.0637 5968  [ C946428303FDBD85D6F17C9F104938D7 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
14:25:03.0637 5968  C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
14:25:03.0637 5968  [ 47B8B745BFE0A0CB70120C8D08E2492F ] C:\Windows\System32\nvumdshimx.dll
14:25:03.0637 5968  C:\Windows\System32\nvumdshimx.dll - ok
14:25:03.0637 5968  [ C765A8406048E3094501ED8F17BFA4D6 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
14:25:03.0637 5968  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
14:25:03.0637 5968  [ 3B3DE5C189F896A7961A12BA74851BCB ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
14:25:03.0637 5968  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
14:25:03.0637 5968  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
14:25:03.0637 5968  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
14:25:03.0653 5968  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
14:25:03.0653 5968  C:\Windows\SysWOW64\dnsapi.dll - ok
14:25:03.0653 5968  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
14:25:03.0653 5968  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
14:25:03.0653 5968  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
14:25:03.0653 5968  C:\Windows\SysWOW64\rasapi32.dll - ok
14:25:03.0653 5968  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
14:25:03.0653 5968  C:\Windows\SysWOW64\rasman.dll - ok
14:25:03.0653 5968  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
14:25:03.0653 5968  C:\Windows\SysWOW64\rtutils.dll - ok
14:25:03.0653 5968  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
14:25:03.0653 5968  C:\Windows\SysWOW64\SensApi.dll - ok
14:25:03.0653 5968  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
14:25:03.0653 5968  C:\Windows\SysWOW64\winnsi.dll - ok
14:25:03.0653 5968  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
14:25:03.0653 5968  C:\Windows\System32\PSHED.DLL - ok
14:25:03.0669 5968  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
14:25:03.0669 5968  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
14:25:03.0669 5968  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
14:25:03.0669 5968  C:\Windows\System32\dllhost.exe - ok
14:25:03.0669 5968  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
14:25:03.0669 5968  C:\Windows\System32\IDStore.dll - ok
14:25:03.0669 5968  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
14:25:03.0669 5968  C:\Windows\System32\taskhost.exe - ok
14:25:03.0669 5968  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
14:25:03.0669 5968  C:\Windows\System32\taskeng.exe - ok
14:25:03.0669 5968  [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
14:25:03.0669 5968  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
14:25:03.0684 5968  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
14:25:03.0684 5968  C:\Windows\System32\AtBroker.exe - ok
14:25:03.0684 5968  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
14:25:03.0684 5968  C:\Windows\System32\mpr.dll - ok
14:25:03.0684 5968  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
14:25:03.0684 5968  C:\Windows\System32\userinit.exe - ok
14:25:03.0684 5968  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
14:25:03.0684 5968  C:\Windows\System32\drivers\bowser.sys - ok
14:25:03.0684 5968  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
14:25:03.0684 5968  C:\Windows\System32\drivers\mpsdrv.sys - ok
14:25:03.0684 5968  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
14:25:03.0684 5968  C:\Windows\System32\drivers\mrxsmb.sys - ok
14:25:03.0684 5968  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
14:25:03.0684 5968  C:\Windows\System32\drivers\mrxsmb10.sys - ok
14:25:03.0700 5968  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
14:25:03.0700 5968  C:\Windows\System32\drivers\mrxsmb20.sys - ok
14:25:03.0700 5968  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
14:25:03.0700 5968  C:\Windows\System32\wkssvc.dll - ok
14:25:03.0700 5968  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
14:25:03.0700 5968  C:\Windows\System32\wfapigp.dll - ok
14:25:03.0700 5968  [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:25:03.0700 5968  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
14:25:03.0700 5968  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
14:25:03.0700 5968  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
14:25:03.0700 5968  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
14:25:03.0700 5968  C:\Windows\System32\pcasvc.dll - ok
14:25:03.0700 5968  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:25:03.0700 5968  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
14:25:03.0715 5968  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
14:25:03.0715 5968  C:\Windows\System32\snmptrap.exe - ok
14:25:03.0715 5968  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
14:25:03.0715 5968  C:\Windows\SysWOW64\apphelp.dll - ok
14:25:03.0715 5968  [ FD70E72D190F6BE97472F1E0E4DF7FDC ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
14:25:03.0715 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe - ok
14:25:03.0715 5968  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
14:25:03.0715 5968  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
14:25:03.0715 5968  [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
14:25:03.0715 5968  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
14:25:03.0715 5968  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
14:25:03.0715 5968  C:\Windows\System32\provsvc.dll - ok
14:25:03.0731 5968  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
14:25:03.0731 5968  C:\Windows\System32\sstpsvc.dll - ok
14:25:03.0731 5968  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
14:25:03.0731 5968  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
14:25:03.0731 5968  [ 605C6370240FC79CADBCD34960A741D2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
14:25:03.0731 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
14:25:03.0731 5968  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
14:25:03.0731 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
14:25:03.0731 5968  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
14:25:03.0731 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
14:25:03.0731 5968  [ 2BA3C1B040FA5C83C78D25DB36B57710 ] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
14:25:03.0731 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll - ok
14:25:03.0731 5968  [ 0EEE814627F4384291687671F76419F6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
14:25:03.0731 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
14:25:03.0747 5968  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
14:25:03.0747 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
14:25:03.0747 5968  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
14:25:03.0747 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
14:25:03.0747 5968  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
14:25:03.0747 5968  C:\Windows\SysWOW64\winmm.dll - ok
14:25:03.0747 5968  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
14:25:03.0747 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
14:25:03.0747 5968  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
14:25:03.0747 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
14:25:03.0747 5968  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
14:25:03.0747 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
14:25:03.0762 5968  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
14:25:03.0762 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
14:25:03.0762 5968  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
14:25:03.0762 5968  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
14:25:03.0762 5968  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
14:25:03.0762 5968  C:\Windows\SysWOW64\dnssd.dll - ok
14:25:03.0762 5968  [ 798A87B2D7AD73B16B7CD968C5D1F18F ] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
14:25:03.0762 5968  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe - ok
14:25:03.0762 5968  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
14:25:03.0762 5968  C:\Windows\SysWOW64\mswsock.dll - ok
14:25:03.0762 5968  [ D41D31D5B0C9B0CB2A34B878E84E7B6A ] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsAcpi.dll
14:25:03.0762 5968  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsAcpi.dll - ok
14:25:03.0778 5968  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
14:25:03.0778 5968  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
14:25:03.0778 5968  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
14:25:03.0778 5968  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
14:25:03.0778 5968  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
14:25:03.0778 5968  C:\Windows\System32\cryptsvc.dll - ok
14:25:03.0778 5968  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
14:25:03.0778 5968  C:\Windows\System32\dps.dll - ok
14:25:03.0778 5968  [ 262969A3FAB32B9E17E63E2D17A57744 ] C:\Windows\System32\drivers\cpuz135_x64.sys
14:25:03.0778 5968  C:\Windows\System32\drivers\cpuz135_x64.sys - ok
14:25:03.0778 5968  [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
14:25:03.0778 5968  C:\Windows\System32\efscore.dll - ok
14:25:03.0778 5968  [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
14:25:03.0778 5968  C:\Windows\System32\efssvc.dll - ok
14:25:03.0793 5968  [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
14:25:03.0793 5968  C:\Windows\SysWOW64\svchost.exe - ok
14:25:03.0793 5968  [ 7E53957E73BFB209D49932A9DDEBEDE4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
14:25:03.0793 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
14:25:03.0793 5968  [ F3F72A2A86C22610BCA5439FA789DD52 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:25:03.0793 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
14:25:03.0793 5968  [ 704C3164CF06A67886C305EA3677510B ] C:\Program Files (x86)\Input Director\IDVistaService.exe
14:25:03.0793 5968  C:\Program Files (x86)\Input Director\IDVistaService.exe - ok
14:25:03.0793 5968  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
14:25:03.0793 5968  C:\Windows\System32\cryptnet.dll - ok
14:25:03.0793 5968  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
14:25:03.0793 5968  C:\Windows\System32\vssapi.dll - ok
14:25:03.0793 5968  [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
14:25:03.0793 5968  C:\Windows\System32\efsutil.dll - ok
14:25:03.0809 5968  [ 494CACABC025D07498FFE638C9C0A172 ] C:\Program Files (x86)\Input Director\IDWinService.exe
14:25:03.0809 5968  C:\Program Files (x86)\Input Director\IDWinService.exe - ok
14:25:03.0809 5968  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
14:25:03.0809 5968  C:\Windows\System32\IKEEXT.DLL - ok
14:25:03.0809 5968  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
14:25:03.0809 5968  C:\Windows\System32\taskschd.dll - ok
14:25:03.0809 5968  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
14:25:03.0809 5968  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
14:25:03.0809 5968  [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
14:25:03.0809 5968  C:\Windows\SysWOW64\mfc42.dll - ok
14:25:03.0809 5968  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
14:25:03.0809 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
14:25:03.0809 5968  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
14:25:03.0809 5968  C:\Windows\SysWOW64\clbcatq.dll - ok
14:25:03.0825 5968  [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
14:25:03.0825 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
14:25:03.0825 5968  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
14:25:03.0825 5968  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
14:25:03.0825 5968  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
14:25:03.0825 5968  C:\Windows\SysWOW64\odbc32.dll - ok
14:25:03.0825 5968  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
14:25:03.0825 5968  C:\Windows\System32\vpnikeapi.dll - ok
14:25:03.0825 5968  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
14:25:03.0825 5968  C:\Windows\System32\wdi.dll - ok
14:25:03.0825 5968  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
14:25:03.0825 5968  C:\Windows\System32\vsstrace.dll - ok
14:25:03.0840 5968  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
14:25:03.0840 5968  C:\Windows\SysWOW64\odbcint.dll - ok
14:25:03.0840 5968  [ F928E5E72BBA15DD0CE9A26E0413D236 ] C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:25:03.0840 5968  C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe - ok
14:25:03.0840 5968  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
14:25:03.0840 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
14:25:03.0840 5968  [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Windows\System32\msvcr100.dll
14:25:03.0840 5968  C:\Windows\System32\msvcr100.dll - ok
14:25:03.0840 5968  [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
14:25:03.0840 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
14:25:03.0840 5968  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
14:25:03.0840 5968  C:\Program Files\Bonjour\mdnsNSP.dll - ok
14:25:03.0840 5968  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
14:25:03.0840 5968  C:\Windows\System32\rasadhlp.dll - ok
14:25:03.0856 5968  [ F4AB66EC2FB7D1DF0219D59C7CF38BCC ] C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll
14:25:03.0856 5968  C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll - ok
14:25:03.0856 5968  [ DC5483CAD90D95D65B618E35C66E28DF ] C:\Windows\System32\mfevtps.exe
14:25:03.0856 5968  C:\Windows\System32\mfevtps.exe - ok
14:25:03.0856 5968  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
14:25:03.0856 5968  C:\Windows\System32\sfc.dll - ok
14:25:03.0856 5968  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
14:25:03.0856 5968  C:\Windows\System32\sfc_os.dll - ok
14:25:03.0856 5968  [ ADF2C72E6483D84C89DEC816EFABC01A ] C:\Program Files\OO Software\Defrag\oodag.exe
14:25:03.0856 5968  C:\Program Files\OO Software\Defrag\oodag.exe - ok
14:25:03.0856 5968  [ 351533ACC2A069B94E80BBFC177E8FDF ] C:\Windows\System32\drivers\npf.sys
14:25:03.0856 5968  C:\Windows\System32\drivers\npf.sys - ok
14:25:03.0856 5968  [ DC6530A291D4BDF6DF399F1F128E7F8F ] C:\Windows\System32\HPZinw12.dll
14:25:03.0856 5968  C:\Windows\System32\HPZinw12.dll - ok
14:25:03.0871 5968  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
14:25:03.0871 5968  C:\Windows\System32\nlasvc.dll - ok
14:25:03.0871 5968  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
14:25:03.0871 5968  C:\Windows\System32\wsock32.dll - ok
14:25:03.0871 5968  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
14:25:03.0871 5968  C:\Windows\System32\ncsi.dll - ok
14:25:03.0871 5968  [ 011F0B067E47612F57C4ECE377D9C9DF ] C:\Windows\System32\activeds.dll
14:25:03.0871 5968  C:\Windows\System32\activeds.dll - ok
14:25:03.0871 5968  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
14:25:03.0871 5968  C:\Windows\System32\winhttp.dll - ok
14:25:03.0871 5968  [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4 ] C:\Windows\System32\adsldpc.dll
14:25:03.0871 5968  C:\Windows\System32\adsldpc.dll - ok
14:25:03.0871 5968  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
14:25:03.0871 5968  C:\Windows\System32\webio.dll - ok
14:25:03.0887 5968  [ BC1D34E8C3C32D5AB718763221CAE641 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
14:25:03.0887 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe - ok
14:25:03.0887 5968  [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
14:25:03.0887 5968  C:\Windows\System32\ulib.dll - ok
14:25:03.0887 5968  [ 6A777FC53F51BBC7E8195FBCD20B4E03 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportUtil_x64.dll
14:25:03.0887 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportUtil_x64.dll - ok
14:25:03.0887 5968  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
14:25:03.0887 5968  C:\Windows\System32\ssdpapi.dll - ok
14:25:03.0887 5968  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
14:25:03.0887 5968  C:\Windows\System32\dbghelp.dll - ok
14:25:03.0887 5968  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
14:25:03.0887 5968  C:\Windows\System32\HotStartUserAgent.dll - ok
14:25:03.0903 5968  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
14:25:03.0903 5968  C:\Windows\System32\TSChannel.dll - ok
14:25:03.0903 5968  [ 5CA3AB9C996E925995A81DE9D0CF20A1 ] C:\Program Files\OO Software\Defrag\OODAGRS.DLL
14:25:03.0903 5968  C:\Program Files\OO Software\Defrag\OODAGRS.DLL - ok
14:25:03.0903 5968  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
14:25:03.0903 5968  C:\Windows\System32\aepic.dll - ok
14:25:03.0903 5968  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
14:25:03.0903 5968  C:\Windows\System32\drivers\PEAuth.sys - ok
14:25:03.0903 5968  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
14:25:03.0903 5968  C:\Windows\System32\drivers\secdrv.sys - ok
14:25:03.0903 5968  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
14:25:03.0903 5968  C:\Windows\System32\drivers\srvnet.sys - ok
14:25:03.0903 5968  [ 71F62C51DFDFBC04C83C5C64B2B8058E ] C:\Windows\System32\HPZipm12.dll
14:25:03.0903 5968  C:\Windows\System32\HPZipm12.dll - ok
14:25:03.0918 5968  [ F0C3B543A95006ED2B2D07E1DA426813 ] C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll
14:25:03.0918 5968  C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll - ok
14:25:03.0918 5968  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
14:25:03.0918 5968  C:\Windows\System32\wiaservc.dll - ok
14:25:03.0918 5968  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
14:25:03.0918 5968  C:\Windows\System32\drivers\tcpipreg.sys - ok
14:25:03.0918 5968  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
14:25:03.0918 5968  C:\Windows\System32\sysmain.dll - ok
14:25:03.0918 5968  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
14:25:03.0918 5968  C:\Windows\System32\wiatrace.dll - ok
14:25:03.0918 5968  [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
14:25:03.0918 5968  C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe - ok
14:25:03.0918 5968  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
14:25:03.0918 5968  C:\Windows\System32\rundll32.exe - ok
14:25:03.0934 5968  [ BB1D82C70960FC9F28BAD16A5D7D010D ] C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll
14:25:03.0934 5968  C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll - ok
14:25:03.0934 5968  [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
14:25:03.0934 5968  C:\Windows\SysWOW64\rundll32.exe - ok
14:25:03.0934 5968  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
14:25:03.0934 5968  C:\Windows\SysWOW64\imagehlp.dll - ok
14:25:03.0934 5968  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
14:25:03.0934 5968  C:\Windows\AppPatch\AcLayers.dll - ok
14:25:03.0934 5968  [ 43EF8CA8FA9DC5F998FBC4C12C9556E2 ] C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll
14:25:03.0934 5968  C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll - ok
14:25:03.0934 5968  [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
14:25:03.0934 5968  C:\Windows\AppPatch\acwow64.dll - ok
14:25:03.0934 5968  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
14:25:03.0934 5968  C:\Windows\SysWOW64\mpr.dll - ok
14:25:03.0949 5968  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
14:25:03.0949 5968  C:\Windows\SysWOW64\uxtheme.dll - ok
14:25:03.0949 5968  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
14:25:03.0949 5968  C:\Windows\SysWOW64\dwmapi.dll - ok
14:25:03.0949 5968  [ 1152E5AE100011FD74B3427F7116717C ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\TRF_x64.dll
14:25:03.0949 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\TRF_x64.dll - ok
14:25:03.0949 5968  [ 4D89F6191DB56CFA659388378F3DD688 ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\msvcr80.dll
14:25:03.0949 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\msvcr80.dll - ok
14:25:03.0949 5968  [ C332DB81197E6E5D4A67D3789DBEB02A ] C:\Program Files (x86)\Trusteer\Rapport\bin\x64\msvcp80.dll
14:25:03.0949 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\x64\msvcp80.dll - ok
14:25:03.0949 5968  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
14:25:03.0949 5968  C:\Windows\System32\trkwks.dll - ok
14:25:03.0949 5968  [ 656A661B5CF87EDE56E6A893D39BBB04 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportKoan.dll
14:25:03.0949 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportKoan.dll - ok
14:25:03.0965 5968  [ 64BBEFA566A6B862ECE73FB65DFD7DD0 ] C:\Program Files (x86)\Trusteer\Rapport\bin\atl80.dll
14:25:03.0965 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\atl80.dll - ok
14:25:03.0965 5968  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
14:25:03.0965 5968  C:\Windows\System32\dwm.exe - ok
14:25:03.0965 5968  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
14:25:03.0965 5968  C:\Windows\System32\dwmredir.dll - ok
14:25:03.0965 5968  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
14:25:03.0965 5968  C:\Windows\System32\dwmcore.dll - ok
14:25:03.0965 5968  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
14:25:03.0965 5968  C:\Windows\System32\PlaySndSrv.dll - ok
14:25:03.0965 5968  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
14:25:03.0965 5968  C:\Windows\System32\MsCtfMonitor.dll - ok
14:25:03.0981 5968  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:25:03.0981 5968  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
14:25:03.0981 5968  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
14:25:03.0981 5968  C:\Windows\System32\d3d10_1.dll - ok
14:25:03.0981 5968  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
14:25:03.0981 5968  C:\Windows\System32\d3d10_1core.dll - ok
14:25:03.0981 5968  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
14:25:03.0981 5968  C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
14:25:03.0981 5968  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
14:25:03.0981 5968  C:\Windows\System32\dxgi.dll - ok
14:25:03.0981 5968  [ F86569ABF39828070AE3BD359F6EFEA2 ] C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe
14:25:03.0981 5968  C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe - ok
14:25:03.0981 5968  [ 4747C867058D2E98C1F3487286C07DC3 ] C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
14:25:03.0981 5968  C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe - ok
14:25:03.0996 5968  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
14:25:03.0996 5968  C:\Windows\System32\d3d11.dll - ok
14:25:03.0996 5968  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
14:25:03.0996 5968  C:\Windows\SysWOW64\cscapi.dll - ok
14:25:03.0996 5968  [ 94A5E16F0BCE3ACD018FECF362230B5B ] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
14:25:03.0996 5968  C:\Program Files (x86)\MSI Afterburner\RTMUI.dll - ok
14:25:03.0996 5968  [ 4C65F8FEBCE30E96A90303C69DF33FCC ] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
14:25:03.0996 5968  C:\Program Files (x86)\MSI Afterburner\RTFC.dll - ok
14:25:03.0996 5968  [ AF66F023B361A4FB8BA22DF8B571CF31 ] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
14:25:03.0996 5968  C:\Program Files (x86)\MSI Afterburner\RTCore.dll - ok
14:25:03.0996 5968  [ A5E0BDA7361658FE8306CF938B17591F ] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
14:25:03.0996 5968  C:\Program Files (x86)\MSI Afterburner\RTUI.dll - ok
14:25:03.0996 5968  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
14:25:03.0996 5968  C:\Windows\explorer.exe - ok
14:25:04.0012 5968  [ D96AA036EB1BA4D8D0CE744A6758A609 ] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
14:25:04.0012 5968  C:\Program Files (x86)\MSI Afterburner\RTHAL.dll - ok
14:25:04.0012 5968  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
14:25:04.0012 5968  C:\Windows\System32\ExplorerFrame.dll - ok
14:25:04.0012 5968  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
14:25:04.0012 5968  C:\Windows\System32\msutb.dll - ok
14:25:04.0012 5968  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
14:25:04.0012 5968  C:\Windows\System32\aeevts.dll - ok
14:25:04.0012 5968  [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
14:25:04.0012 5968  C:\Windows\System32\dxva2.dll - ok
14:25:04.0012 5968  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
14:25:04.0012 5968  C:\Windows\System32\localspl.dll - ok
14:25:04.0012 5968  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
14:25:04.0012 5968  C:\Windows\System32\umb.dll - ok
14:25:04.0027 5968  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
14:25:04.0027 5968  C:\Windows\System32\spoolss.dll - ok
14:25:04.0027 5968  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
14:25:04.0027 5968  C:\Windows\System32\PrintIsolationProxy.dll - ok
14:25:04.0027 5968  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
14:25:04.0027 5968  C:\Windows\SysWOW64\dbghelp.dll - ok
14:25:04.0027 5968  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
14:25:04.0027 5968  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
14:25:04.0027 5968  [ 4E005C16B85EB3C71D072BE337C3E59A ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan3.dll
14:25:04.0027 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan3.dll - ok
14:25:04.0027 5968  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
14:25:04.0027 5968  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
14:25:04.0027 5968  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
14:25:04.0027 5968  C:\Windows\SysWOW64\mstask.dll - ok
14:25:04.0043 5968  [ 37D521ED914BC4CB3EFD1ED33E658CA7 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan35.dll
14:25:04.0043 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan35.dll - ok
14:25:04.0043 5968  [ 50AE16A218671CC9DCBC6785928BBC54 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan36.dll
14:25:04.0043 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan36.dll - ok
14:25:04.0043 5968  [ C0C14AAC9678C501ACDF55517C710102 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan9.dll
14:25:04.0043 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan9.dll - ok
14:25:04.0043 5968  [ BE5FEAC020E5FC903BC389151640A008 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan10.dll
14:25:04.0043 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan10.dll - ok
14:25:04.0043 5968  [ 4F1D7D7932F48AB4C2031A38B633B50F ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan11.dll
14:25:04.0043 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan11.dll - ok
14:25:04.0043 5968  [ 0A7934E2BFE776B9AA661BE1A5FB3DE2 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan12.dll
14:25:04.0043 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan12.dll - ok
14:25:04.0059 5968  [ 9612EC7E6EE01D90A308028200D1C719 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan13.dll
14:25:04.0059 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan13.dll - ok
14:25:04.0059 5968  [ 1211758D477CCFB71E79DFE4519BE641 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan14.dll
14:25:04.0059 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan14.dll - ok
14:25:04.0059 5968  [ 3785C8644848EE439551911BC0B0FF46 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan15.dll
14:25:04.0059 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan15.dll - ok
14:25:04.0059 5968  [ CFE23A986B7F3BCF54C679BA2008F4C9 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan16.dll
14:25:04.0059 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan16.dll - ok
14:25:04.0059 5968  [ 9A1C45CA54DF131E62F4ABC72BDE1485 ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan17.dll
14:25:04.0059 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan17.dll - ok
14:25:04.0059 5968  [ DE5C74434AD19E6759E5000B6C815A6C ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan18.dll
14:25:04.0059 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan18.dll - ok
14:25:04.0074 5968  [ 9D82247C045B50E7AE38C5BE978ECF5F ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan19.dll
14:25:04.0074 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportTanzan19.dll - ok
14:25:04.0074 5968  [ FB9EEE406EE56B25435229A6F2F7B00D ] C:\Program Files (x86)\Trusteer\Rapport\bin\RapportNikko.dll
14:25:04.0074 5968  C:\Program Files (x86)\Trusteer\Rapport\bin\RapportNikko.dll - ok
14:25:04.0074 5968  [ 0AA080277A2101D70EC87885EC3CEB52 ] C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHelp.exe
14:25:04.0074 5968  C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHelp.exe - ok
14:25:04.0074 5968  [ 96C716FA972C256C28DFD1E1FA9779A8 ] C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
14:25:04.0074 5968  C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe - ok
14:25:04.0074 5968  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
14:25:04.0074 5968  C:\Windows\SysWOW64\msimg32.dll - ok
14:25:04.0074 5968  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
14:25:04.0074 5968  C:\Windows\SysWOW64\shfolder.dll - ok
14:25:04.0090 5968  [ F3F571288CDE445881102E385BF3471F ] C:\Windows\SysWOW64\Magnification.dll
14:25:04.0090 5968  C:\Windows\SysWOW64\Magnification.dll - ok
14:25:04.0090 5968  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
14:25:04.0090 5968  C:\Windows\SysWOW64\d3d9.dll - ok
14:25:04.0090 5968  [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\SysWOW64\browcli.dll
14:25:04.0090 5968  C:\Windows\SysWOW64\browcli.dll - ok
14:25:04.0090 5968  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
14:25:04.0090 5968  C:\Windows\SysWOW64\d3d8thk.dll - ok
14:25:04.0090 5968  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
14:25:04.0090 5968  C:\Windows\SysWOW64\samcli.dll - ok
14:25:04.0090 5968  [ DC444E51C784DA2942BDE84EC75FD340 ] C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe
14:25:04.0090 5968  C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe - ok
14:25:04.0090 5968  [ CF042EC094FB559E33972FC04BD69800 ] C:\Program Files (x86)\NVIDIA Corporation\System Update\msvcp71.dll
14:25:04.0090 5968  C:\Program Files (x86)\NVIDIA Corporation\System Update\msvcp71.dll - ok
14:25:04.0105 5968  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
14:25:04.0105 5968  C:\Windows\System32\fundisc.dll - ok
14:25:04.0105 5968  [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
14:25:04.0105 5968  C:\Windows\System32\wsdchngr.dll - ok
14:25:04.0105 5968  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
14:25:04.0105 5968  C:\Windows\SysWOW64\NapiNSP.dll - ok
14:25:04.0105 5968  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
14:25:04.0105 5968  C:\Windows\SysWOW64\nlaapi.dll - ok
14:25:04.0105 5968  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
14:25:04.0105 5968  C:\Windows\SysWOW64\pnrpnsp.dll - ok
14:25:04.0105 5968  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
14:25:04.0105 5968  C:\Windows\SysWOW64\wshbth.dll - ok
14:25:04.0105 5968  [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
14:25:04.0105 5968  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
14:25:04.0121 5968  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
14:25:04.0121 5968  C:\Windows\SysWOW64\winrnr.dll - ok
14:25:04.0121 5968  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
14:25:04.0121 5968  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
14:25:04.0121 5968  [ 3AC5F04724D2597E67DC15F1A2987CF5 ] C:\Program Files (x86)\NVIDIA Corporation\System Update\msvcr71.dll
14:25:04.0121 5968  C:\Program Files (x86)\NVIDIA Corporation\System Update\msvcr71.dll - ok
14:25:04.0121 5968  [ 7E1DE956B21BB6AB34F8C1383ABFF4CC ] C:\Program Files (x86)\NVIDIA Corporation\System Update\MFC71.DLL
14:25:04.0121 5968  C:\Program Files (x86)\NVIDIA Corporation\System Update\MFC71.DLL - ok
14:25:04.0121 5968  [ F0C36D3E30E555FBFDCF4CCDCB9D3F21 ] C:\Program Files (x86)\ASUS\TurboV EVO\AsAcpi.dll
14:25:04.0121 5968  C:\Program Files (x86)\ASUS\TurboV EVO\AsAcpi.dll - ok
14:25:04.0121 5968  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
14:25:04.0121 5968  C:\Windows\SysWOW64\ddraw.dll - ok
14:25:04.0121 5968  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
14:25:04.0121 5968  C:\Windows\SysWOW64\dciman32.dll - ok
14:25:04.0137 5968  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
14:25:04.0137 5968  C:\Windows\System32\msxml6.dll - ok
14:25:04.0137 5968  [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
14:25:04.0137 5968  C:\Windows\System32\icm32.dll - ok
14:25:04.0137 5968  [ 46B8E04B3C35CB93F89EF27746D7A908 ] C:\Windows\System32\EP0SLM01.DLL
14:25:04.0137 5968  C:\Windows\System32\EP0SLM01.DLL - ok
14:25:04.0137 5968  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
14:25:04.0137 5968  C:\Windows\System32\FXSMON.dll - ok
14:25:04.0137 5968  [ 50F9F2BCF53491C43755A553D6E39DB6 ] C:\Windows\System32\hpf3l092.dll
14:25:04.0137 5968  C:\Windows\System32\hpf3l092.dll - ok
14:25:04.0137 5968  [ 0436CA4FDD9C776DD9F050E111B85A54 ] C:\Windows\System32\hpf3l101.dll
14:25:04.0137 5968  C:\Windows\System32\hpf3l101.dll - ok
14:25:04.0137 5968  [ B20246D643851ED9DEEBCD80B6E41E2C ] C:\Windows\System32\hpz3l4x6.dll
14:25:04.0137 5968  C:\Windows\System32\hpz3l4x6.dll - ok
14:25:04.0152 5968  [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
14:25:04.0152 5968  C:\Windows\System32\hpz3lw71.dll - ok
14:25:04.0152 5968  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
14:25:04.0152 5968  C:\Windows\System32\tcpmon.dll - ok
14:25:04.0152 5968  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
14:25:04.0152 5968  C:\Windows\System32\snmpapi.dll - ok
14:25:04.0152 5968  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
14:25:04.0152 5968  C:\Windows\System32\wsnmp32.dll - ok
14:25:04.0152 5968  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
14:25:04.0152 5968  C:\Windows\System32\usbmon.dll - ok
14:25:04.0152 5968  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
14:25:04.0152 5968  C:\Windows\System32\WSDMon.dll - ok
14:25:04.0152 5968  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
14:25:04.0152 5968  C:\Windows\System32\WSDApi.dll - ok
14:25:04.0168 5968  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
14:25:04.0168 5968  C:\Windows\System32\webservices.dll - ok
14:25:04.0168 5968  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
14:25:04.0168 5968  C:\Windows\System32\fdPnp.dll - ok
14:25:04.0168 5968  [ DAEEAD506E5B84E177D88C4D7B739401 ] C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL
14:25:04.0168 5968  C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL - ok
 



#6 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 03:47 AM

14:25:04.0168 5968  [ 5208EBD5AB37F0A6AE026DB4F1AEED2A ] C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll
14:25:04.0168 5968  C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll - ok
14:25:04.0168 5968  [ 7A8A8103C3C8BCCA405412AEE3B59B23 ] C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll
14:25:04.0168 5968  C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll - ok
14:25:04.0168 5968  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
14:25:04.0168 5968  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
14:25:04.0183 5968  [ 7C20C3ED10BFD58558C6EBED14C8FFE0 ] C:\Windows\System32\spool\prtprocs\x64\hpzpp4x6.dll
14:25:04.0183 5968  C:\Windows\System32\spool\prtprocs\x64\hpzpp4x6.dll - ok
14:25:04.0183 5968  [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
14:25:04.0183 5968  C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
14:25:04.0183 5968  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
14:25:04.0183 5968  C:\Windows\System32\win32spl.dll - ok
14:25:04.0183 5968  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
14:25:04.0183 5968  C:\Windows\System32\inetpp.dll - ok
14:25:04.0183 5968  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
14:25:04.0183 5968  C:\Windows\System32\cscapi.dll - ok
14:25:04.0183 5968  [ 5877A3341AA7DF58789294CEBA38AE2B ] C:\Users\System User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
14:25:04.0183 5968  C:\Users\System User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll - ok
14:25:04.0183 5968  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
14:25:04.0183 5968  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
14:25:04.0199 5968  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
14:25:04.0199 5968  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
14:25:04.0199 5968  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
14:25:04.0199 5968  C:\Windows\System32\EhStorShell.dll - ok
14:25:04.0199 5968  [ 80ED288D61ABCBB9B2DD3FCDDBB71E1E ] C:\Windows\System32\nvwgf2umx.dll
14:25:04.0199 5968  C:\Windows\System32\nvwgf2umx.dll - ok
14:25:04.0199 5968  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
14:25:04.0199 5968  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
14:25:04.0199 5968  [ 4341CD39634552F291E7FAB44E112AEB ] C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterServiceENU.dll
14:25:04.0199 5968  C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterServiceENU.dll - ok
14:25:04.0199 5968  [ 9C55D87B2F1CB91CA747E1DBB5E2750E ] C:\Windows\System32\hpwwiax9.dll
14:25:04.0199 5968  C:\Windows\System32\hpwwiax9.dll - ok
14:25:04.0215 5968  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
14:25:04.0215 5968  C:\Windows\SysWOW64\rasadhlp.dll - ok
14:25:04.0215 5968  [ 22BD8652E4202EA8F9F54D256244FF5E ] C:\Program Files (x86)\ASUS\TurboV EVO\HookKey32.dll
14:25:04.0215 5968  C:\Program Files (x86)\ASUS\TurboV EVO\HookKey32.dll - ok
14:25:04.0215 5968  [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:25:04.0215 5968  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
14:25:04.0215 5968  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
14:25:04.0215 5968  C:\Windows\System32\wbem\WMIsvc.dll - ok
14:25:04.0215 5968  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
14:25:04.0215 5968  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
14:25:04.0215 5968  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
14:25:04.0215 5968  C:\Windows\System32\SensApi.dll - ok
14:25:04.0215 5968  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
14:25:04.0215 5968  C:\Windows\System32\wer.dll - ok
14:25:04.0230 5968  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
14:25:04.0230 5968  C:\Windows\System32\wbemcomn.dll - ok
14:25:04.0230 5968  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
14:25:04.0230 5968  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
14:25:04.0230 5968  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
14:25:04.0230 5968  C:\Windows\System32\WinSCard.dll - ok
14:25:04.0230 5968  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
14:25:04.0230 5968  C:\Windows\System32\wbem\WinMgmtR.dll - ok
14:25:04.0230 5968  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
14:25:04.0230 5968  C:\Windows\System32\wbem\fastprox.dll - ok
14:25:04.0230 5968  [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
14:25:04.0230 5968  C:\Windows\System32\wscsvc.dll - ok
14:25:04.0230 5968  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
14:25:04.0230 5968  C:\Windows\System32\wbem\wbemprox.dll - ok
14:25:04.0246 5968  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
14:25:04.0246 5968  C:\Windows\System32\wbem\wbemcore.dll - ok
14:25:04.0246 5968  [ 38D1F23EE031B615A8CA51DD1E523579 ] C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
14:25:04.0246 5968  C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe - ok
14:25:04.0246 5968  [ 85C3AB8341F13E94B16FE9A69582A42F ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
14:25:04.0246 5968  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
14:25:04.0246 5968  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
14:25:04.0246 5968  C:\Windows\System32\msxml3.dll - ok
14:25:04.0246 5968  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
14:25:04.0246 5968  C:\Windows\System32\ntdsapi.dll - ok
14:25:04.0246 5968  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
14:25:04.0246 5968  C:\Windows\System32\wbem\esscli.dll - ok
14:25:04.0246 5968  [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
14:25:04.0246 5968  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
14:25:04.0261 5968  [ A35679BDD1687623ECCA8CEA9B2AE6C2 ] C:\Program Files\Common Files\McAfee\AMCore\quarantine.dll
14:25:04.0261 5968  C:\Program Files\Common Files\McAfee\AMCore\quarantine.dll - ok
14:25:04.0261 5968  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
14:25:04.0261 5968  C:\Windows\System32\wbem\wbemsvc.dll - ok
14:25:04.0261 5968  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
14:25:04.0261 5968  C:\Windows\SysWOW64\ncrypt.dll - ok
14:25:04.0261 5968  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
14:25:04.0261 5968  C:\Windows\System32\wbem\wmiutils.dll - ok
14:25:04.0261 5968  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
14:25:04.0261 5968  C:\Windows\SysWOW64\bcrypt.dll - ok
14:25:04.0261 5968  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
14:25:04.0261 5968  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
14:25:04.0261 5968  [ FD89893D9FA82A0EE0E41D79D1F134A3 ] C:\Program Files\Common Files\McAfee\AMCore\mfezip.dll
14:25:04.0261 5968  C:\Program Files\Common Files\McAfee\AMCore\mfezip.dll - ok
14:25:04.0277 5968  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
14:25:04.0277 5968  C:\Windows\SysWOW64\gpapi.dll - ok
14:25:04.0277 5968  [ CFF89FED4516F3850383ED66E0973A0D ] C:\Program Files\Common Files\McAfee\AMCore\mfeunzip.dll
14:25:04.0277 5968  C:\Program Files\Common Files\McAfee\AMCore\mfeunzip.dll - ok
14:25:04.0277 5968  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
14:25:04.0277 5968  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
14:25:04.0277 5968  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
14:25:04.0277 5968  C:\Windows\System32\dssenh.dll - ok
14:25:04.0277 5968  [ 983E4E902E9857CE4E5B876165683686 ] C:\Program Files\Common Files\McAfee\AMCore\MFE_DS.dll
14:25:04.0277 5968  C:\Program Files\Common Files\McAfee\AMCore\MFE_DS.dll - ok
14:25:04.0277 5968  [ 05248F2E6E1AFA6972D058C36199DEB7 ] C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
14:25:04.0277 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe - ok
14:25:04.0293 5968  [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
14:25:04.0293 5968  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe - ok
14:25:04.0293 5968  [ 270DB70DF6289F49A5FC7B462D5F6146 ] C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll
14:25:04.0293 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll - ok
14:25:04.0293 5968  [ 6B8DAB849C74538EEA1EDD34E84E7924 ] C:\Program Files\Common Files\McAfee\AMCore\lua_lib.dll
14:25:04.0293 5968  C:\Program Files\Common Files\McAfee\AMCore\lua_lib.dll - ok
14:25:04.0293 5968  [ 9BAACAAEAD44E4CACEBC960452E628FA ] C:\Program Files\Common Files\McAfee\AMCore\MFE_CS.dll
14:25:04.0293 5968  C:\Program Files\Common Files\McAfee\AMCore\MFE_CS.dll - ok
14:25:04.0293 5968  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
14:25:04.0293 5968  C:\Windows\System32\uDWM.dll - ok
14:25:04.0293 5968  [ A76F263FF0E341213955BCC69A488350 ] C:\Program Files\Common Files\McAfee\AMCore\ncapi.dll
14:25:04.0293 5968  C:\Program Files\Common Files\McAfee\AMCore\ncapi.dll - ok
14:25:04.0293 5968  [ 45AD07D2FCA4F62C37883EED850BB7BB ] C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll
14:25:04.0293 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll - ok
14:25:04.0308 5968  [ 295657F93F6B19DEEA804048E1CB4FF9 ] C:\Windows\System32\lz32.dll
14:25:04.0308 5968  C:\Windows\System32\lz32.dll - ok
14:25:04.0308 5968  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
14:25:04.0308 5968  C:\Windows\SysWOW64\wscapi.dll - ok
14:25:04.0308 5968  [ 6AA0A0A53729FF73A27089F1C956FDC9 ] C:\Program Files\Common Files\McAfee\AMCore\EMMain.dll
14:25:04.0308 5968  C:\Program Files\Common Files\McAfee\AMCore\EMMain.dll - ok
14:25:04.0308 5968  [ 0ABA7E925E54A222331B16BEF25A5958 ] C:\Program Files (x86)\Google\Drive\googledrivesync64.dll
14:25:04.0308 5968  C:\Program Files (x86)\Google\Drive\googledrivesync64.dll - ok
14:25:04.0308 5968  [ B5106A79DD046815332B6E3B6E8D27D1 ] C:\Program Files (x86)\ASUS\TurboV EVO\pngio.dll
14:25:04.0308 5968  C:\Program Files (x86)\ASUS\TurboV EVO\pngio.dll - ok
14:25:04.0308 5968  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
14:25:04.0308 5968  C:\Windows\System32\wbem\repdrvfs.dll - ok
14:25:04.0324 5968  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
14:25:04.0324 5968  C:\Windows\SysWOW64\wship6.dll - ok
14:25:04.0324 5968  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
14:25:04.0324 5968  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
14:25:04.0324 5968  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
14:25:04.0324 5968  C:\Windows\SysWOW64\wbemcomn.dll - ok
14:25:04.0324 5968  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
14:25:04.0324 5968  C:\Windows\SysWOW64\ieframe.dll - ok
14:25:04.0324 5968  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
14:25:04.0324 5968  C:\Windows\System32\netcfgx.dll - ok
14:25:04.0324 5968  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
14:25:04.0324 5968  C:\Windows\SysWOW64\wer.dll - ok
14:25:04.0324 5968  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
14:25:04.0324 5968  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
14:25:04.0339 5968  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
14:25:04.0339 5968  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
14:25:04.0339 5968  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
14:25:04.0339 5968  C:\Windows\SysWOW64\ntdsapi.dll - ok
14:25:04.0339 5968  [ 3E772A65F0098879112EAA5856FFDDC3 ] C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
14:25:04.0339 5968  C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll - ok
14:25:04.0339 5968  [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
14:25:04.0339 5968  C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
14:25:04.0339 5968  [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
14:25:04.0339 5968  C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
14:25:04.0339 5968  [ 1631B83DB38541CAE9F7E206CB91E441 ] C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
14:25:04.0339 5968  C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll - ok
14:25:04.0339 5968  [ 7760899D95C2D1AAC5C1D34AF41A11C7 ] C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\avengine\5500.0000\mscan64a.dat
14:25:04.0339 5968  C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\avengine\5500.0000\mscan64a.dat - ok
14:25:04.0355 5968  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
14:25:04.0355 5968  C:\Windows\SysWOW64\propsys.dll - ok
14:25:04.0355 5968  [ 1B8B6A9B3188C1F51FB2D875965CAD52 ] C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
14:25:04.0355 5968  C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll - ok
14:25:04.0355 5968  [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
14:25:04.0355 5968  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
14:25:04.0355 5968  [ 76B71087B838BFB68F199CB4E194CF64 ] C:\Program Files\Common Files\McAfee\AMContent\content\amcore\normal\123.6\x86_64\MCNormalizer.dat
14:25:04.0355 5968  C:\Program Files\Common Files\McAfee\AMContent\content\amcore\normal\123.6\x86_64\MCNormalizer.dat - ok
14:25:04.0355 5968  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
14:25:04.0355 5968  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
14:25:04.0355 5968  [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
14:25:04.0355 5968  C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
14:25:04.0371 5968  [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
14:25:04.0371 5968  C:\Windows\SysWOW64\Faultrep.dll - ok
14:25:04.0371 5968  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
14:25:04.0371 5968  C:\Windows\System32\ncobjapi.dll - ok
14:25:04.0371 5968  [ 3B97D16EA8916335F3289A1FACB5CAF8 ] C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
14:25:04.0371 5968  C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll - ok
14:25:04.0371 5968  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
14:25:04.0371 5968  C:\Windows\System32\IconCodecService.dll - ok
14:25:04.0371 5968  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
14:25:04.0371 5968  C:\Windows\System32\wbem\wbemess.dll - ok
14:25:04.0371 5968  [ B4B133DE7161E7489DDC73184347FCF0 ] C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll
14:25:04.0371 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll - ok
14:25:04.0371 5968  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
14:25:04.0371 5968  C:\Windows\System32\drivers\srv2.sys - ok
14:25:04.0386 5968  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
14:25:04.0386 5968  C:\Windows\System32\runonce.exe - ok
14:25:04.0386 5968  [ 389BC447DF363450A78845D35DBA0047 ] C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
14:25:04.0386 5968  C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe - ok
14:25:04.0386 5968  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
14:25:04.0386 5968  C:\Windows\System32\wbem\NCProv.dll - ok
14:25:04.0386 5968  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
14:25:04.0386 5968  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
14:25:04.0386 5968  [ 06480AAD7B811DE77FBDEA49579EB76A ] C:\Program Files\Common Files\McAfee\Platform\McSvcHost\LogCntrl.dll
14:25:04.0386 5968  C:\Program Files\Common Files\McAfee\Platform\McSvcHost\LogCntrl.dll - ok
14:25:04.0386 5968  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
14:25:04.0386 5968  C:\Windows\System32\p2pcollab.dll - ok
14:25:04.0402 5968  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
14:25:04.0402 5968  C:\Windows\SysWOW64\runonce.exe - ok
14:25:04.0402 5968  [ 4077AB86BF544BD8AFE95394DC0D06F2 ] C:\PROGRA~1\McAfee\MPF\MpfSvc.dll
14:25:04.0402 5968  C:\PROGRA~1\McAfee\MPF\MpfSvc.dll - ok
14:25:04.0402 5968  [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Windows\System32\atl100.dll
14:25:04.0402 5968  C:\Windows\System32\atl100.dll - ok
14:25:04.0402 5968  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
14:25:04.0402 5968  C:\Windows\System32\drivers\srv.sys - ok
14:25:04.0402 5968  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
14:25:04.0402 5968  C:\Windows\System32\QAGENTRT.DLL - ok
14:25:04.0402 5968  [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Windows\System32\msvcp100.dll
14:25:04.0402 5968  C:\Windows\System32\msvcp100.dll - ok
14:25:04.0402 5968  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
14:25:04.0402 5968  C:\Windows\System32\fveui.dll - ok
14:25:04.0417 5968  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
14:25:04.0417 5968  C:\Windows\System32\wbem\cimwin32.dll - ok
14:25:04.0417 5968  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
14:25:04.0417 5968  C:\Windows\System32\wuapi.dll - ok
14:25:04.0417 5968  [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
14:25:04.0417 5968  C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL - ok
14:25:04.0417 5968  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
14:25:04.0417 5968  C:\Windows\System32\srvsvc.dll - ok
14:25:04.0417 5968  [ 5AA7C15994DA44CFF8D2CDB0E0000188 ] C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll
14:25:04.0417 5968  C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll - ok
14:25:04.0417 5968  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
14:25:04.0417 5968  C:\Windows\System32\browser.dll - ok
14:25:04.0417 5968  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
14:25:04.0417 5968  C:\Windows\System32\cabinet.dll - ok
14:25:04.0433 5968  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
14:25:04.0433 5968  C:\Windows\System32\netmsg.dll - ok
14:25:04.0433 5968  [ 7CA22382E2B042DDF838E8880397BFF1 ] C:\PROGRA~1\McAfee\MSK\msksrvr.dll
14:25:04.0433 5968  C:\PROGRA~1\McAfee\MSK\msksrvr.dll - ok
14:25:04.0433 5968  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
14:25:04.0433 5968  C:\Windows\System32\clusapi.dll - ok
14:25:04.0433 5968  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
14:25:04.0433 5968  C:\Windows\System32\sscore.dll - ok
14:25:04.0433 5968  [ B6663FC132F0262A5EF48DB2D0187DE3 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll
14:25:04.0433 5968  C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok
14:25:04.0433 5968  [ 47CDFF9055CF0A95E01AB60B4A435B4E ] C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll
14:25:04.0433 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll - ok
14:25:04.0433 5968  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
14:25:04.0433 5968  C:\Windows\System32\wups.dll - ok
14:25:04.0449 5968  [ A77BA10A0D610BBB6101AEA1E633ABE1 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
14:25:04.0449 5968  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
14:25:04.0449 5968  [ 47EB9DCD62C9CF3C93A5CE820379BF37 ] C:\Program Files\Common Files\McAfee\Platform\McRTMui.dll
14:25:04.0449 5968  C:\Program Files\Common Files\McAfee\Platform\McRTMui.dll - ok
14:25:04.0449 5968  [ C85841E14D7BD4188BD09A221EA3C7B0 ] C:\Program Files\Common Files\McAfee\Platform\LangSel.dll
14:25:04.0449 5968  C:\Program Files\Common Files\McAfee\Platform\LangSel.dll - ok
14:25:04.0449 5968  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
14:25:04.0449 5968  C:\Windows\System32\resutils.dll - ok
14:25:04.0449 5968  [ D73BA2C3C8F2C356711B6E1F965378EC ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
14:25:04.0449 5968  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
14:25:04.0449 5968  [ 66DDB2D2ECA7674590712CA5A088BBC8 ] C:\PROGRA~1\McAfee\MPS\mps.dll
14:25:04.0449 5968  C:\PROGRA~1\McAfee\MPS\mps.dll - ok
14:25:04.0449 5968  [ 951E1430E222A40D9A72F90403F4BABC ] C:\PROGRA~1\McAfee\MPS\mpscfg.dll
14:25:04.0449 5968  C:\PROGRA~1\McAfee\MPS\mpscfg.dll - ok
14:25:04.0464 5968  [ 14AA26963C00F2B7498661257D276009 ] C:\PROGRA~1\McAfee\MSK\mskengn.dll
14:25:04.0464 5968  C:\PROGRA~1\McAfee\MSK\mskengn.dll - ok
14:25:04.0464 5968  [ FAF9949FE74EFF0C931767C8670E4648 ] C:\PROGRA~1\McAfee\MSK\mskupd.dll
14:25:04.0464 5968  C:\PROGRA~1\McAfee\MSK\mskupd.dll - ok
14:25:04.0464 5968  [ E50929C46B8089A3ED607FE4D42690E3 ] C:\PROGRA~1\McAfee\MSC\mclwapi.dll
14:25:04.0464 5968  C:\PROGRA~1\McAfee\MSC\mclwapi.dll - ok
14:25:04.0464 5968  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
14:25:04.0464 5968  C:\Windows\System32\framedynos.dll - ok
14:25:04.0464 5968  [ E21ACA2F36B26282971FABFC5DA3FED4 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\mcutil.dll
14:25:04.0464 5968  C:\PROGRA~1\COMMON~1\McAfee\Platform\mcutil.dll - ok
14:25:04.0464 5968  [ AA8C627E45F78443A844074E791EB310 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\McEvtBrk.dll
14:25:04.0464 5968  C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\McEvtBrk.dll - ok
14:25:04.0480 5968  [ 787234856EDDA48D5D49B48C2B37B373 ] C:\PROGRA~1\McAfee\MSK\mskwm.dll
14:25:04.0480 5968  C:\PROGRA~1\McAfee\MSK\mskwm.dll - ok
14:25:04.0480 5968  [ FFF2F32E37DB06D2D67E2BC090F86313 ] C:\PROGRA~1\McAfee\MSK\mskxaif.dll
14:25:04.0480 5968  C:\PROGRA~1\McAfee\MSK\mskxaif.dll - ok
14:25:04.0480 5968  [ D3535286093074C91465DADE917905E4 ] C:\PROGRA~1\McAfee\MPS\mpsevh.dll
14:25:04.0480 5968  C:\PROGRA~1\McAfee\MPS\mpsevh.dll - ok
14:25:04.0480 5968  [ 72F79F28538B54BBA0FBE233C7778310 ] C:\PROGRA~1\McAfee\MPS\MPSMisp.dll
14:25:04.0480 5968  C:\PROGRA~1\McAfee\MPS\MPSMisp.dll - ok
14:25:04.0480 5968  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
14:25:04.0480 5968  C:\Windows\System32\wmi.dll - ok
14:25:04.0480 5968  [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
14:25:04.0480 5968  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
14:25:04.0480 5968  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
14:25:04.0480 5968  C:\Windows\System32\browcli.dll - ok
14:25:04.0495 5968  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
14:25:04.0495 5968  C:\Windows\System32\schedcli.dll - ok
14:25:04.0495 5968  [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
14:25:04.0495 5968  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
14:25:04.0495 5968  [ 46343C27DDE447AB34E2187F782DDE47 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll
14:25:04.0495 5968  C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll - ok
14:25:04.0495 5968  [ 72FC3F6DC1A96F13A62BA34B15C532B6 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
14:25:04.0495 5968  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
14:25:04.0495 5968  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
14:25:04.0495 5968  C:\Windows\System32\NapiNSP.dll - ok
14:25:04.0495 5968  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
14:25:04.0495 5968  C:\Windows\System32\pnrpnsp.dll - ok
14:25:04.0495 5968  [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
14:25:04.0495 5968  C:\Windows\System32\wshbth.dll - ok
14:25:04.0511 5968  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
14:25:04.0511 5968  C:\Windows\System32\winrnr.dll - ok
14:25:04.0511 5968  [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
14:25:04.0511 5968  C:\Windows\System32\perfos.dll - ok
14:25:04.0511 5968  [ AD563223033972BF1CFBAA36C8AFCF95 ] C:\Program Files\COMMON~1\McAfee\Platform\PlatformServiceFW.dll
14:25:04.0511 5968  C:\Program Files\COMMON~1\McAfee\Platform\PlatformServiceFW.dll - ok
14:25:04.0511 5968  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
14:25:04.0511 5968  C:\Windows\System32\diagperf.dll - ok
14:25:04.0511 5968  [ 7F7B8CDE26C4943C9465E412ADBB790F ] C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
14:25:04.0511 5968  C:\Program Files (x86)\MSI Afterburner\RTCore64.sys - ok
14:25:04.0511 5968  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
14:25:04.0511 5968  C:\Windows\System32\hidserv.dll - ok
14:25:04.0511 5968  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:25:04.0527 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
14:25:04.0527 5968  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
14:25:04.0527 5968  C:\Windows\System32\perftrack.dll - ok
14:25:04.0527 5968  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
14:25:04.0527 5968  C:\Windows\System32\wpdbusenum.dll - ok
14:25:04.0527 5968  [ 328C62E8462C073AE2E1C6290BA05468 ] C:\PROGRA~1\McAfee\MSC\mcregobj\12_1_2~1\mcregobj.dll
14:25:04.0527 5968  C:\PROGRA~1\McAfee\MSC\mcregobj\12_1_2~1\mcregobj.dll - ok
14:25:04.0527 5968  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
14:25:04.0527 5968  C:\Windows\SysWOW64\sxs.dll - ok
14:25:04.0527 5968  [ 5ECEC779312AD35B1B19951A4B53FAC1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
14:25:04.0527 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
14:25:04.0527 5968  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
14:25:04.0527 5968  C:\Windows\System32\PortableDeviceApi.dll - ok
14:25:04.0542 5968  [ A91A5019E7338A96E08B8CAAA621D936 ] C:\Program Files\McAfee\MSC\McPrtMgrPlugin.dll
14:25:04.0542 5968  C:\Program Files\McAfee\MSC\McPrtMgrPlugin.dll - ok
14:25:04.0542 5968  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
14:25:04.0542 5968  C:\Windows\System32\Apphlpdm.dll - ok
14:25:04.0542 5968  [ B1AD3D10024625372A32828BB86E2F80 ] C:\Program Files\McAfee\MSC\mcoemres.dll
14:25:04.0542 5968  C:\Program Files\McAfee\MSC\mcoemres.dll - ok
14:25:04.0542 5968  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
14:25:04.0542 5968  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
14:25:04.0542 5968  [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
14:25:04.0542 5968  C:\Windows\System32\drivers\WUDFRd.sys - ok
14:25:04.0542 5968  [ 365E96584583C9FAE85953BD1A2D9850 ] C:\Windows\SysWOW64\nvd3dum.dll
14:25:04.0542 5968  C:\Windows\SysWOW64\nvd3dum.dll - ok
14:25:04.0542 5968  [ C1D8836625296DE901938B593842238E ] C:\PROGRA~1\McAfee\MSC\McAPExe.exe
14:25:04.0542 5968  C:\PROGRA~1\McAfee\MSC\McAPExe.exe - ok
14:25:04.0558 5968  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
14:25:04.0558 5968  C:\Windows\System32\pnpts.dll - ok
14:25:04.0558 5968  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
14:25:04.0558 5968  C:\Windows\System32\radardt.dll - ok
14:25:04.0558 5968  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
14:25:04.0558 5968  C:\Windows\System32\dimsjob.dll - ok
14:25:04.0558 5968  [ C2574B38152675D835A27B0D07E2C96F ] C:\Program Files\McAfee\MSC\oemui.dll
14:25:04.0558 5968  C:\Program Files\McAfee\MSC\oemui.dll - ok
14:25:04.0558 5968  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
14:25:04.0558 5968  C:\Windows\System32\wdiasqmmodule.dll - ok
14:25:04.0558 5968  [ 77BEC56CFEC15FF113236A0B9F81C232 ] C:\Program Files\McAfee\MSC\mcprlres.dll
14:25:04.0558 5968  C:\Program Files\McAfee\MSC\mcprlres.dll - ok
14:25:04.0558 5968  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
14:25:04.0558 5968  C:\Windows\System32\netprofm.dll - ok
14:25:04.0573 5968  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
14:25:04.0573 5968  C:\Windows\SysWOW64\cmd.exe - ok
14:25:04.0573 5968  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
14:25:04.0573 5968  C:\Windows\System32\npmproxy.dll - ok
14:25:04.0573 5968  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
14:25:04.0573 5968  C:\Windows\System32\conhost.exe - ok
14:25:04.0573 5968  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
14:25:04.0573 5968  C:\Windows\System32\pautoenr.dll - ok
14:25:04.0573 5968  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
14:25:04.0573 5968  C:\Windows\System32\certcli.dll - ok
14:25:04.0573 5968  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
14:25:04.0573 5968  C:\Windows\System32\FXSRESM.dll - ok
14:25:04.0573 5968  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
14:25:04.0573 5968  C:\Windows\System32\CertEnroll.dll - ok
14:25:04.0589 5968  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
14:25:04.0589 5968  C:\Windows\System32\drivers\WUDFPf.sys - ok
14:25:04.0589 5968  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
14:25:04.0589 5968  C:\Windows\System32\IPSECSVC.DLL - ok
14:25:04.0589 5968  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
14:25:04.0589 5968  C:\Windows\System32\aelupsvc.dll - ok
14:25:04.0589 5968  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
14:25:04.0589 5968  C:\Windows\System32\WUDFSvc.dll - ok
14:25:04.0589 5968  [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
14:25:04.0589 5968  C:\Windows\System32\spp.dll - ok
14:25:04.0589 5968  [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
14:25:04.0589 5968  C:\Windows\System32\srclient.dll - ok
14:25:04.0589 5968  [ E36431CA70B26EE1D3CFEA8C8F7CE307 ] C:\Windows\System32\srwmi.dll
14:25:04.0589 5968  C:\Windows\System32\srwmi.dll - ok
14:25:04.0605 5968  [ D5164131D596A070FF9C82BC4A488F1F ] C:\Windows\System32\srcore.dll
14:25:04.0605 5968  C:\Windows\System32\srcore.dll - ok
14:25:04.0605 5968  [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
14:25:04.0605 5968  C:\Windows\System32\WUDFHost.exe - ok
14:25:04.0605 5968  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
14:25:04.0605 5968  C:\Windows\SysWOW64\winbrand.dll - ok
14:25:04.0605 5968  [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
14:25:04.0605 5968  C:\Windows\System32\WUDFx.dll - ok
14:25:04.0605 5968  [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
14:25:04.0605 5968  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
14:25:04.0605 5968  [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
14:25:04.0605 5968  C:\Windows\System32\WMVCORE.DLL - ok
14:25:04.0605 5968  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
14:25:04.0605 5968  C:\Windows\System32\FwRemoteSvr.dll - ok
14:25:04.0620 5968  [ 55BA6C87FFB2C478E1C9351FA631CC1A ] C:\Windows\System32\sxproxy.dll
14:25:04.0620 5968  C:\Windows\System32\sxproxy.dll - ok
14:25:04.0620 5968  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
14:25:04.0620 5968  C:\Windows\SysWOW64\shdocvw.dll - ok
14:25:04.0620 5968  [ B60BA0BC31B0CB414593E169F6F21CC2 ] C:\Windows\System32\VSSVC.exe
14:25:04.0620 5968  C:\Windows\System32\VSSVC.exe - ok
14:25:04.0620 5968  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\System User\AppData\Local\Temp\9FCB3D5E-BC4C-4C74-B7E9-718EC4540730.exe
14:25:04.0620 5968  C:\Users\System User\AppData\Local\Temp\9FCB3D5E-BC4C-4C74-B7E9-718EC4540730.exe - ok
14:25:04.0620 5968  [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
14:25:04.0620 5968  C:\Windows\System32\fltLib.dll - ok
14:25:04.0620 5968  [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
14:25:04.0620 5968  C:\Windows\System32\virtdisk.dll - ok
14:25:04.0636 5968  [ 14768274399730DC93EB2BA4E51C507D ] C:\Windows\System32\xolehlp.dll
14:25:04.0636 5968  C:\Windows\System32\xolehlp.dll - ok
14:25:04.0636 5968  [ 4D85B1B44DC19C0C46E6DDE35895FD0F ] C:\Windows\System32\vss_ps.dll
14:25:04.0636 5968  C:\Windows\System32\vss_ps.dll - ok
14:25:04.0636 5968  [ C2F327F7881DCD88F2EF926381B35E65 ] C:\Windows\System32\catsrvut.dll
14:25:04.0636 5968  C:\Windows\System32\catsrvut.dll - ok
14:25:04.0636 5968  [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
14:25:04.0636 5968  C:\Windows\System32\swprv.dll - ok
14:25:04.0636 5968  [ AA066E1BE74A2C9DA50092E7245BC33C ] C:\Windows\System32\mfcsubs.dll
14:25:04.0636 5968  C:\Windows\System32\mfcsubs.dll - ok
14:25:04.0636 5968  [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
14:25:04.0636 5968  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
14:25:04.0636 5968  [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
14:25:04.0636 5968  C:\Windows\System32\WMASF.DLL - ok
14:25:04.0651 5968  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
14:25:04.0651 5968  C:\Windows\System32\PortableDeviceTypes.dll - ok
14:25:04.0651 5968  [ E6D5B3D94AE65BBD437C2749701225B5 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\mccoreps.dll
14:25:04.0651 5968  C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\mccoreps.dll - ok
14:25:04.0651 5968  [ F860DD3F552437E37AD35D2AC0258CF0 ] C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll
14:25:04.0651 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll - ok
14:25:04.0651 5968  [ 3C31382EA064F271DB5E9C78DABAEDB1 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\sqlite3.dll
14:25:04.0651 5968  C:\PROGRA~1\COMMON~1\McAfee\Platform\sqlite3.dll - ok
14:25:04.0651 5968  [ 2D53234C24B0103FDE0BE06782AA6F80 ] C:\Windows\System32\drivers\mfeapfk.sys
14:25:04.0651 5968  C:\Windows\System32\drivers\mfeapfk.sys - ok
14:25:04.0651 5968  [ 3FDC5B918B767DAB2963B1AA60ECF1AE ] C:\Windows\SysWOW64\nvapi.dll
14:25:04.0651 5968  C:\Windows\SysWOW64\nvapi.dll - ok
14:25:04.0651 5968  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
14:25:04.0651 5968  C:\Windows\SysWOW64\cryptnet.dll - ok
14:25:04.0667 5968  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
14:25:04.0667 5968  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
14:25:04.0667 5968  [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\System User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
14:25:04.0667 5968  C:\Users\System User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
14:25:04.0667 5968  [ 77E228A96E1D5D99C4E8345EF0031398 ] C:\Program Files (x86)\MSI Afterburner\RTTSH.dll
14:25:04.0667 5968  C:\Program Files (x86)\MSI Afterburner\RTTSH.dll - ok
14:25:04.0667 5968  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
14:25:04.0667 5968  C:\Windows\SysWOW64\taskschd.dll - ok
14:25:04.0667 5968  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
14:25:04.0667 5968  C:\Windows\SysWOW64\EhStorShell.dll - ok
14:25:04.0667 5968  [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MIF5BA~1\Office14\1033\GrooveIntlResource.dll
14:25:04.0667 5968  C:\PROGRA~2\MIF5BA~1\Office14\1033\GrooveIntlResource.dll - ok
14:25:04.0667 5968  [ 71BCE52E3143FA4E12958C897962FB1D ] C:\PROGRA~1\McAfee\MPF\MpfEvt.dll
14:25:04.0667 5968  C:\PROGRA~1\McAfee\MPF\MpfEvt.dll - ok
14:25:04.0683 5968  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
14:25:04.0683 5968  C:\Windows\SysWOW64\ntshrui.dll - ok
14:25:04.0683 5968  [ F74CEEFC48001CBFD086AE5044E5F556 ] C:\PROGRA~1\COMMON~1\McAfee\HACKER~1\HWAPI.dll
14:25:04.0683 5968  C:\PROGRA~1\COMMON~1\McAfee\HACKER~1\HWAPI.dll - ok
14:25:04.0683 5968  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
14:25:04.0683 5968  C:\Windows\SysWOW64\imageres.dll - ok
14:25:04.0683 5968  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
14:25:04.0683 5968  C:\Windows\SysWOW64\slc.dll - ok
14:25:04.0683 5968  [ 161A7C9EC2F7CA0F0AB151E5A133672A ] C:\PROGRA~1\McAfee\MPF\McMPFPPv.dll
14:25:04.0683 5968  C:\PROGRA~1\McAfee\MPF\McMPFPPv.dll - ok
14:25:04.0683 5968  [ 1E773E34A9ACD5CCF82CF6275A5A3865 ] C:\PROGRA~1\McAfee\MPF\MpfApi.dll
14:25:04.0683 5968  C:\PROGRA~1\McAfee\MPF\MpfApi.dll - ok
14:25:04.0683 5968  [ 8A40AF19D06214C410E5ED8E178F66FB ] C:\Program Files\McAfee\MPF\L10N.dll
14:25:04.0683 5968  C:\Program Files\McAfee\MPF\L10N.dll - ok
14:25:04.0698 5968  [ DF8D07059E7237E0BE9C1421EF5F9482 ] C:\Windows\System32\drivers\cfwids.sys
14:25:04.0698 5968  C:\Windows\System32\drivers\cfwids.sys - ok
14:25:04.0698 5968  [ 968176B20CF774C938E4CE320AD33CB5 ] C:\Program Files\McAfee\VirusScan\mcvsocfg.dll
14:25:04.0698 5968  C:\Program Files\McAfee\VirusScan\mcvsocfg.dll - ok
14:25:04.0698 5968  [ 4CC0649A5761CF5DADA9666857E7F851 ] C:\Program Files\McAfee\VirusScan\McVSPP.dll
14:25:04.0698 5968  C:\Program Files\McAfee\VirusScan\McVSPP.dll - ok
14:25:04.0698 5968  [ 6B5BDF5A9119E693AC7EE93FD72E6934 ] C:\PROGRA~1\McAfee\VIRUSS~1\vsann.dll
14:25:04.0698 5968  C:\PROGRA~1\McAfee\VIRUSS~1\vsann.dll - ok
14:25:04.0698 5968  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
14:25:04.0698 5968  C:\Windows\System32\hnetcfg.dll - ok
14:25:04.0698 5968  [ CD0BC0B6B8D219808AEA3ECD4E889B19 ] C:\Windows\System32\raserver.exe
14:25:04.0698 5968  C:\Windows\System32\raserver.exe - ok
14:25:04.0698 5968  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
14:25:04.0698 5968  C:\Windows\SysWOW64\xmllite.dll - ok
14:25:04.0714 5968  [ E79DF53BAD587E24B3CF965A5746C7B6 ] C:\Windows\System32\msra.exe
14:25:04.0714 5968  C:\Windows\System32\msra.exe - ok
14:25:04.0714 5968  [ AD7F44A140909E6F26F681F0BBDE198E ] C:\Program Files\McAfee\VirusScan\mcvsoshl.dll
14:25:04.0714 5968  C:\Program Files\McAfee\VirusScan\mcvsoshl.dll - ok
14:25:04.0714 5968  [ 4977839ED04B02F66A43EA1EBF4B69D5 ] C:\Program Files\Common Files\McAfee\AMCore\McShieldClient.dll
14:25:04.0714 5968  C:\Program Files\Common Files\McAfee\AMCore\McShieldClient.dll - ok
14:25:04.0714 5968  [ 775A019594F4F82467F8388558E2EA0A ] C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll
14:25:04.0714 5968  C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll - ok
14:25:04.0714 5968  [ 0ED5991EC13A811F27C31A98B70715BB ] C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll
14:25:04.0714 5968  C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll - ok
14:25:04.0714 5968  [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
14:25:04.0714 5968  C:\Windows\SysWOW64\cabinet.dll - ok
14:25:04.0729 5968  [ 7D4DC95A1F5E0818E74A399960569EA1 ] C:\Windows\SysWOW64\wuapi.dll
14:25:04.0729 5968  C:\Windows\SysWOW64\wuapi.dll - ok
14:25:04.0729 5968  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
14:25:04.0729 5968  C:\Windows\System32\wuaueng.dll - ok
14:25:04.0729 5968  [ FB633DCC8664E4CCACF562DB5BAE38CF ] C:\Windows\SysWOW64\wups.dll
14:25:04.0729 5968  C:\Windows\SysWOW64\wups.dll - ok
14:25:04.0729 5968  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
14:25:04.0729 5968  C:\Windows\System32\esent.dll - ok
14:25:04.0729 5968  [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
14:25:04.0729 5968  C:\Windows\System32\mspatcha.dll - ok
14:25:04.0729 5968  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
14:25:04.0729 5968  C:\Windows\System32\wups2.dll - ok
14:25:04.0729 5968  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
14:25:04.0729 5968  C:\Windows\System32\security.dll - ok
14:25:04.0745 5968  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
14:25:04.0745 5968  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
14:25:04.0745 5968  [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
14:25:04.0745 5968  C:\Windows\System32\wbem\wmipcima.dll - ok
14:25:04.0745 5968  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
14:25:04.0745 5968  C:\Windows\SysWOW64\sfc.dll - ok
14:25:04.0745 5968  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
14:25:04.0745 5968  C:\Windows\SysWOW64\sfc_os.dll - ok
14:25:04.0745 5968  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
14:25:04.0745 5968  C:\Windows\SysWOW64\winhttp.dll - ok
14:25:04.0745 5968  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
14:25:04.0745 5968  C:\Windows\SysWOW64\webio.dll - ok
14:25:04.0745 5968  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
14:25:04.0745 5968  C:\Windows\System32\ie4uinit.exe - ok
14:25:04.0761 5968  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
14:25:04.0761 5968  C:\Windows\System32\iedkcs32.dll - ok
14:25:04.0761 5968  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
14:25:04.0761 5968  C:\Windows\System32\timedate.cpl - ok
14:25:04.0761 5968  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
14:25:04.0761 5968  C:\Windows\System32\actxprxy.dll - ok
14:25:04.0761 5968  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
14:25:04.0761 5968  C:\Windows\System32\shdocvw.dll - ok
14:25:04.0761 5968  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
14:25:04.0761 5968  C:\Windows\SysWOW64\credssp.dll - ok
14:25:04.0761 5968  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
14:25:04.0761 5968  C:\Windows\System32\linkinfo.dll - ok
14:25:04.0761 5968  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
14:25:04.0761 5968  C:\Windows\System32\msftedit.dll - ok
14:25:04.0776 5968  [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
14:25:04.0776 5968  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
14:25:04.0776 5968  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
14:25:04.0776 5968  C:\Windows\System32\msls31.dll - ok
14:25:04.0776 5968  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
14:25:04.0776 5968  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
14:25:04.0776 5968  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
14:25:04.0776 5968  C:\Windows\System32\DeviceCenter.dll - ok
14:25:04.0776 5968  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\47550268.sys
14:25:04.0776 5968  C:\Windows\System32\drivers\47550268.sys - ok
14:25:04.0776 5968  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
14:25:04.0776 5968  C:\Windows\System32\gameux.dll - ok
14:25:04.0776 5968  [ 88CA0FFA894AF4B0D90B93FAA2A0A0D9 ] C:\Program Files\Microsoft IntelliType Pro\itype.exe
14:25:04.0776 5968  C:\Program Files\Microsoft IntelliType Pro\itype.exe - ok
14:25:04.0792 5968  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
14:25:04.0792 5968  C:\Windows\SysWOW64\riched20.dll - ok
14:25:04.0792 5968  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
14:25:04.0792 5968  C:\Windows\System32\networkexplorer.dll - ok
14:25:04.0792 5968  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
14:25:04.0792 5968  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
14:25:04.0792 5968  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
14:25:04.0792 5968  C:\Windows\System32\drprov.dll - ok
14:25:04.0792 5968  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliType Pro\SQMAPI.dll
14:25:04.0792 5968  C:\Program Files\Microsoft IntelliType Pro\SQMAPI.dll - ok
14:25:04.0792 5968  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
14:25:04.0792 5968  C:\Windows\System32\ntlanman.dll - ok
14:25:04.0792 5968  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
14:25:04.0792 5968  C:\Windows\System32\davclnt.dll - ok
14:25:04.0807 5968  [ 9E465711248B66D72C7E9D3867D5CB19 ] C:\Program Files\Microsoft IntelliType Pro\dpgmkb.dll
14:25:04.0807 5968  C:\Program Files\Microsoft IntelliType Pro\dpgmkb.dll - ok
14:25:04.0807 5968  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
14:25:04.0807 5968  C:\Windows\SysWOW64\duser.dll - ok
14:25:04.0807 5968  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
14:25:04.0807 5968  C:\Windows\System32\davhlpr.dll - ok
14:25:04.0807 5968  [ 5B72629C8144D1A96490D4C090D28DA1 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
14:25:04.0807 5968  C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
14:25:04.0807 5968  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
14:25:04.0807 5968  C:\Windows\SysWOW64\dui70.dll - ok
14:25:04.0807 5968  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
14:25:04.0807 5968  C:\Windows\System32\msi.dll - ok
14:25:04.0807 5968  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
14:25:04.0807 5968  C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
14:25:04.0823 5968  [ 60EA24BA03CCFDD0CB5FBAD4E8FE0C7B ] C:\Program Files\OO Software\Defrag\oodtray.exe
14:25:04.0823 5968  C:\Program Files\OO Software\Defrag\oodtray.exe - ok
14:25:04.0823 5968  [ 59E48622AF1938E4E3EFCE1F70DE60A5 ] C:\Program Files (x86)\Input Director\InputDirector.exe
14:25:04.0823 5968  C:\Program Files (x86)\Input Director\InputDirector.exe - ok
14:25:04.0823 5968  [ 3CDC9975457E78EE6A9D64599DBB76DD ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
14:25:04.0823 5968  C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
14:25:04.0823 5968  [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
14:25:04.0823 5968  C:\Program Files\Windows Sidebar\sidebar.exe - ok
14:25:04.0823 5968  [ 8FEDBE7A5D3E5F91FD4B96DAFA4DD197 ] C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
14:25:04.0823 5968  C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe - ok
14:25:04.0823 5968  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
14:25:04.0823 5968  C:\Windows\System32\thumbcache.dll - ok
14:25:04.0839 5968  [ C7391769FCD6E04196EE8CA831E2C7E8 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
14:25:04.0839 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe - ok
14:25:04.0839 5968  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
14:25:04.0839 5968  C:\Windows\System32\ieframe.dll - ok
14:25:04.0839 5968  [ 19384B2D2976C16971DA567653D5DF95 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
14:25:04.0839 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe - ok
14:25:04.0839 5968  [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\System User\AppData\Local\Google\Update\GoogleUpdate.exe
14:25:04.0839 5968  C:\Users\System User\AppData\Local\Google\Update\GoogleUpdate.exe - ok
14:25:04.0839 5968  [ 19EACF9F606AD724B3D871475714AE3D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices_main.dll
14:25:04.0839 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices_main.dll - ok
14:25:04.0839 5968  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Users\System User\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
14:25:04.0839 5968  C:\Users\System User\AppData\Local\Google\Update\1.3.21.135\goopdate.dll - ok
14:25:04.0839 5968  [ ECF45E3FC8C63E44ED45D38A8672E7F1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
14:25:04.0839 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe - ok
14:25:04.0854 5968  [ 5516C26A6AF8EB4E2CAB48EC98A74398 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
14:25:04.0854 5968  C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
14:25:04.0854 5968  [ 49F66011FC1BC104FCB5DFEB9BD0EFD4 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams_main.dll
14:25:04.0854 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams_main.dll - ok
14:25:04.0854 5968  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
14:25:04.0854 5968  C:\Windows\System32\stobject.dll - ok
14:25:04.0854 5968  [ 15321BEDFDA56B54F14D6DB8BD2D29E8 ] C:\Program Files (x86)\Input Director\InputDirectorClipboardHelper.exe
14:25:04.0854 5968  C:\Program Files (x86)\Input Director\InputDirectorClipboardHelper.exe - ok
14:25:04.0854 5968  [ F6E33B49AAF9E8FEB4E4B07C34F38C4B ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll
14:25:04.0854 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll - ok
14:25:04.0854 5968  [ B26D229AA7B53DCF9BA636BF1DBBA8AA ] C:\Program Files\McAfee.com\Agent\mcagent.exe
14:25:04.0854 5968  C:\Program Files\McAfee.com\Agent\mcagent.exe - ok
14:25:04.0870 5968  [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:25:04.0870 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
14:25:04.0870 5968  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
14:25:04.0870 5968  C:\Windows\System32\msiltcfg.dll - ok
14:25:04.0870 5968  [ CDBDEF73515997355E81A99421C1D721 ] C:\Program Files (x86)\Input Director\libeay32.dll
14:25:04.0870 5968  C:\Program Files (x86)\Input Director\libeay32.dll - ok
14:25:04.0870 5968  [ CA2F560921B7B8BE1CF555A5A18D54C3 ] C:\Program Files (x86)\Input Director\msvcr71.dll
14:25:04.0870 5968  C:\Program Files (x86)\Input Director\msvcr71.dll - ok
14:25:04.0870 5968  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
14:25:04.0870 5968  C:\Windows\System32\batmeter.dll - ok
14:25:04.0870 5968  [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
14:25:04.0870 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
14:25:04.0870 5968  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
14:25:04.0870 5968  C:\Windows\SysWOW64\powrprof.dll - ok
14:25:04.0885 5968  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
14:25:04.0885 5968  C:\Windows\System32\prnfldr.dll - ok
14:25:04.0885 5968  [ 126F34AC5D9E681D06499EEC0DD6679E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll
14:25:04.0885 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll - ok
14:25:04.0885 5968  [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
14:25:04.0885 5968  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
14:25:04.0885 5968  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
14:25:04.0885 5968  C:\Windows\SysWOW64\msiltcfg.dll - ok
14:25:04.0885 5968  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
14:25:04.0885 5968  C:\Windows\System32\DXP.dll - ok
14:25:04.0885 5968  [ 5B87A7DC54059ECD919DB94441318B0B ] C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
14:25:04.0885 5968  C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe - ok
14:25:04.0901 5968  [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
14:25:04.0901 5968  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
14:25:04.0901 5968  [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:25:04.0901 5968  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
14:25:04.0901 5968  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Users\System User\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe
14:25:04.0901 5968  C:\Users\System User\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
14:25:04.0901 5968  [ C0E1D09C01019F27F2B06BBA152CDB07 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll
14:25:04.0901 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll - ok
14:25:04.0901 5968  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
14:25:04.0901 5968  C:\Windows\System32\Syncreg.dll - ok
14:25:04.0901 5968  [ 66A92D04463578457534114E79EE9ABE ] C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe
14:25:04.0901 5968  C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe - ok
14:25:04.0901 5968  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
14:25:04.0901 5968  C:\Windows\ehome\ehSSO.dll - ok
14:25:04.0917 5968  [ 794918BA6D0EEB27C9132F5B90A39C0C ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
14:25:04.0917 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc - ok
14:25:04.0917 5968  [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
14:25:04.0917 5968  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
14:25:04.0917 5968  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
14:25:04.0917 5968  C:\Windows\System32\netshell.dll - ok
14:25:04.0917 5968  [ DD1173E82083162858D1D4EAF43EC69B ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll
14:25:04.0917 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll - ok
14:25:04.0917 5968  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
14:25:04.0917 5968  C:\Windows\System32\oledlg.dll - ok
14:25:04.0917 5968  [ AE2523EB48B0401262BEC0A59C1C19C2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreGraphics.dll
14:25:04.0917 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreGraphics.dll - ok
14:25:04.0932 5968  [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
14:25:04.0932 5968  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
14:25:04.0932 5968  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Users\System User\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
14:25:04.0932 5968  C:\Users\System User\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
14:25:04.0932 5968  [ 61BFFDB777D0711D5634A8978C07C20C ] C:\Program Files\OO Software\Defrag\oodtrrs.dll
14:25:04.0932 5968  C:\Program Files\OO Software\Defrag\oodtrrs.dll - ok
14:25:04.0932 5968  [ EC942385712BF39E1A8D0BB3E57EE754 ] C:\Program Files\Common Files\McAfee\Platform\mcuifw.dll
14:25:04.0932 5968  C:\Program Files\Common Files\McAfee\Platform\mcuifw.dll - ok
14:25:04.0932 5968  [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
14:25:04.0932 5968  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
14:25:04.0932 5968  [ 3687E37869B69040657E0CE3F5DB58AA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll
14:25:04.0932 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll - ok
14:25:04.0932 5968  [ 3181F76ED237CC3D50D10CEA05AF8B60 ] C:\Windows\System32\riched32.dll
14:25:04.0932 5968  C:\Windows\System32\riched32.dll - ok
14:25:04.0948 5968  [ 9F2F087B58318D1744101883EF958677 ] C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
14:25:04.0948 5968  C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
14:25:04.0948 5968  [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
14:25:04.0948 5968  C:\Windows\System32\riched20.dll - ok
14:25:04.0948 5968  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
14:25:04.0948 5968  C:\Windows\System32\ActionCenter.dll - ok
14:25:04.0948 5968  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
14:25:04.0948 5968  C:\Windows\System32\WPDShServiceObj.dll - ok
14:25:04.0948 5968  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
14:25:04.0948 5968  C:\Windows\System32\wdmaud.drv - ok
14:25:04.0948 5968  [ D13DB90DC043200C704DDD513BB6375C ] C:\Program Files (x86)\Common Files\Apple\Internet Services\mmcs.dll
14:25:04.0948 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\mmcs.dll - ok
14:25:04.0963 5968  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
14:25:04.0963 5968  C:\Windows\System32\ksuser.dll - ok
14:25:04.0963 5968  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
14:25:04.0963 5968  C:\Windows\System32\srchadmin.dll - ok
14:25:04.0963 5968  [ 75BAFBA883FAB33EC658E1A0833A8F9C ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ChunkingLibrary.dll
14:25:04.0963 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\ChunkingLibrary.dll - ok
14:25:04.0963 5968  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
14:25:04.0963 5968  C:\Windows\System32\ntshrui.dll - ok
14:25:04.0963 5968  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
14:25:04.0963 5968  C:\Windows\System32\AudioSes.dll - ok
14:25:04.0963 5968  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
14:25:04.0963 5968  C:\Windows\System32\wscapi.dll - ok
 



14:25:04.0963 5968  [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
14:25:04.0963 5968  C:\Windows\System32\wscisvif.dll - ok
14:25:04.0979 5968  [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
14:25:04.0979 5968  C:\Windows\System32\wscproxystub.dll - ok
14:25:04.0979 5968  [ 722909EA9156F50EF1B386D76D4525A5 ] C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
14:25:04.0979 5968  C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe - ok
14:25:04.0979 5968  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
14:25:04.0979 5968  C:\Windows\System32\webcheck.dll - ok
14:25:04.0979 5968  [ 1E70071E1753E43983B1202CE98AEC6F ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
14:25:04.0979 5968  C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
14:25:04.0979 5968  [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
14:25:04.0979 5968  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
14:25:04.0979 5968  [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
14:25:04.0979 5968  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
14:25:04.0995 5968  [ FC581F9CBDDA9F68DFA25FC6AE84D72D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreams.dll
14:25:04.0995 5968  C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreams.dll - ok
14:25:04.0995 5968  [ 3898DDD17D019A40AD432EDABA5E66F7 ] C:\Program Files\Microsoft IntelliType Pro\dpgcmd.dll
14:25:04.0995 5968  C:\Program Files\Microsoft IntelliType Pro\dpgcmd.dll - ok
14:25:04.0995 5968  [ 0F261EC4F514926177C70C1832374231 ] C:\Program Files\iPod\bin\iPodService.exe
14:25:04.0995 5968  C:\Program Files\iPod\bin\iPodService.exe - ok
14:25:04.0995 5968  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
14:25:04.0995 5968  C:\Windows\SysWOW64\actxprxy.dll - ok
14:25:04.0995 5968  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
14:25:04.0995 5968  C:\Windows\System32\mlang.dll - ok
14:25:04.0995 5968  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
14:25:04.0995 5968  C:\Windows\System32\FXSST.dll - ok
14:25:05.0010 5968  [ 5EF8A000C7927E87332D8CB6B7970067 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
14:25:05.0010 5968  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
14:25:05.0010 5968  [ 763E2BBEFCD523AB3B7163A5671BF5EF ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
14:25:05.0010 5968  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
14:25:05.0010 5968  [ FC06A07DC10C3412E2787429A72412CA ] C:\Program Files\Microsoft IntelliType Pro\Components\Commands\DPGHnt\DPGHnt.dll
14:25:05.0010 5968  C:\Program Files\Microsoft IntelliType Pro\Components\Commands\DPGHnt\DPGHnt.dll - ok
14:25:05.0010 5968  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
14:25:05.0010 5968  C:\Windows\System32\FXSAPI.dll - ok
14:25:05.0010 5968  [ AC3C81118A310B2697ABFCE51AE7222B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll
14:25:05.0010 5968  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll - ok
14:25:05.0010 5968  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
14:25:05.0010 5968  C:\Windows\System32\SyncCenter.dll - ok
14:25:05.0010 5968  [ DD49DB959DA2CFE57E536EE19F211630 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll
14:25:05.0010 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll - ok
14:25:05.0026 5968  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
14:25:05.0026 5968  C:\Windows\System32\UIAnimation.dll - ok
14:25:05.0026 5968  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
14:25:05.0026 5968  C:\Windows\SysWOW64\mscms.dll - ok
14:25:05.0026 5968  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
14:25:05.0026 5968  C:\Windows\System32\imapi2.dll - ok
14:25:05.0026 5968  [ 3C154972E00DD010533F78D73733CDD2 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll
14:25:05.0026 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll - ok
14:25:05.0026 5968  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
14:25:05.0026 5968  C:\Windows\SysWOW64\dsound.dll - ok
14:25:05.0026 5968  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
14:25:05.0026 5968  C:\Windows\System32\FXSSVC.exe - ok
14:25:05.0026 5968  [ 9D1F461135F04E901F1884A37CACB526 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc
14:25:05.0026 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc - ok
14:25:05.0041 5968  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
14:25:05.0041 5968  C:\Windows\SysWOW64\netprofm.dll - ok
14:25:05.0041 5968  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
14:25:05.0041 5968  C:\Windows\SysWOW64\mlang.dll - ok
14:25:05.0041 5968  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
14:25:05.0041 5968  C:\Windows\System32\msacm32.drv - ok
14:25:05.0041 5968  [ 3C69CE161C7007E9AD53A325492D446A ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll
14:25:05.0041 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll - ok
14:25:05.0041 5968  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
14:25:05.0041 5968  C:\Windows\SysWOW64\npmproxy.dll - ok
14:25:05.0041 5968  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
14:25:05.0041 5968  C:\Windows\System32\msacm32.dll - ok
14:25:05.0041 5968  [ B0A41262968DD6FCE3933527892D4A24 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
14:25:05.0041 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll - ok
14:25:05.0057 5968  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
14:25:05.0057 5968  C:\Windows\System32\hgcpl.dll - ok
14:25:05.0057 5968  [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
14:25:05.0057 5968  C:\Windows\System32\notepad.exe - ok
14:25:05.0057 5968  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
14:25:05.0057 5968  C:\Windows\System32\midimap.dll - ok
14:25:05.0057 5968  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
14:25:05.0057 5968  C:\Windows\System32\fdPHost.dll - ok
14:25:05.0057 5968  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
14:25:05.0057 5968  C:\Windows\System32\AltTab.dll - ok
14:25:05.0057 5968  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
14:25:05.0057 5968  C:\Windows\System32\AudioEng.dll - ok
14:25:05.0057 5968  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
14:25:05.0057 5968  C:\Windows\System32\FDResPub.dll - ok
14:25:05.0073 5968  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
14:25:05.0073 5968  C:\Windows\System32\fdWSD.dll - ok
14:25:05.0073 5968  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
14:25:05.0073 5968  C:\Windows\System32\pnidui.dll - ok
14:25:05.0073 5968  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
14:25:05.0073 5968  C:\Windows\System32\fdSSDP.dll - ok
14:25:05.0073 5968  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
14:25:05.0073 5968  C:\Windows\System32\httpapi.dll - ok
14:25:05.0073 5968  [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
14:25:05.0073 5968  C:\Windows\System32\fdProxy.dll - ok
14:25:05.0073 5968  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
14:25:05.0073 5968  C:\Windows\System32\AUDIOKSE.dll - ok
14:25:05.0073 5968  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
14:25:05.0073 5968  C:\Windows\SysWOW64\linkinfo.dll - ok
14:25:05.0088 5968  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
14:25:05.0088 5968  C:\Windows\SysWOW64\MMDevAPI.dll - ok
14:25:05.0088 5968  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
14:25:05.0088 5968  C:\Windows\SysWOW64\AudioSes.dll - ok
14:25:05.0088 5968  [ 1BF058433385984C306E56A9FC6EAE68 ] C:\Windows\System32\VIASysFx.dll
14:25:05.0088 5968  C:\Windows\System32\VIASysFx.dll - ok
14:25:05.0088 5968  [ C38B4F658C44BA0F7C738F712AF7CEDC ] C:\Program Files\CPUID\CPU-Z\cpuz.exe
14:25:05.0088 5968  C:\Program Files\CPUID\CPU-Z\cpuz.exe - ok
14:25:05.0088 5968  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
14:25:05.0088 5968  C:\Windows\System32\QUTIL.DLL - ok
14:25:05.0088 5968  [ 5F07E19FF4456E714600A38AA9E553B2 ] C:\Windows\System32\VIAPropPageExt.dll
14:25:05.0088 5968  C:\Windows\System32\VIAPropPageExt.dll - ok
14:25:05.0104 5968  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
14:25:05.0104 5968  C:\Windows\System32\bthprops.cpl - ok
14:25:05.0104 5968  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
14:25:05.0104 5968  C:\Windows\System32\netman.dll - ok
14:25:05.0104 5968  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
14:25:05.0104 5968  C:\Windows\System32\rasdlg.dll - ok
14:25:05.0104 5968  [ 88F78D61961545C68E0466C28E8ADA23 ] C:\Windows\System32\Dts2APO.dll
14:25:05.0104 5968  C:\Windows\System32\Dts2APO.dll - ok
14:25:05.0104 5968  [ 99B2AF832934999A7952E0D3C61E2EDE ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll
14:25:05.0104 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll - ok
14:25:05.0104 5968  [ 7D8D1A1E8E65AF85DB916D866BA907F9 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll
14:25:05.0104 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll - ok
14:25:05.0104 5968  [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
14:25:05.0104 5968  C:\Windows\SysWOW64\schannel.dll - ok
14:25:05.0119 5968  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
14:25:05.0119 5968  C:\Windows\System32\mprapi.dll - ok
14:25:05.0119 5968  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
14:25:05.0119 5968  C:\Windows\System32\dot3api.dll - ok
14:25:05.0119 5968  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
14:25:05.0119 5968  C:\Windows\System32\eappcfg.dll - ok
14:25:05.0119 5968  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
14:25:05.0119 5968  C:\Windows\System32\wlanhlp.dll - ok
14:25:05.0119 5968  [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
14:25:05.0119 5968  C:\Program Files\Internet Explorer\ieproxy.dll - ok
14:25:05.0119 5968  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
14:25:05.0119 5968  C:\Windows\System32\wlanapi.dll - ok
14:25:05.0119 5968  [ 6620B1FCDAB174E048C2FC3BB74CD774 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll
14:25:05.0119 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll - ok
14:25:05.0135 5968  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
14:25:05.0135 5968  C:\Windows\System32\wlanutil.dll - ok
14:25:05.0135 5968  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
14:25:05.0135 5968  C:\Windows\System32\onex.dll - ok
14:25:05.0135 5968  [ 0100BCF23941C83462E4A70F94C3392E ] C:\Program Files\Internet Explorer\iexplore.exe
14:25:05.0135 5968  C:\Program Files\Internet Explorer\iexplore.exe - ok
14:25:05.0135 5968  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
14:25:05.0135 5968  C:\Windows\System32\eappprxy.dll - ok
14:25:05.0135 5968  [ D0D99257DDDCDDBE998AF7CA14E85BD0 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
14:25:05.0135 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe - ok
14:25:05.0135 5968  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
14:25:05.0135 5968  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
14:25:05.0135 5968  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
14:25:05.0135 5968  C:\Windows\System32\WWanAPI.dll - ok
14:25:05.0151 5968  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
14:25:05.0151 5968  C:\Windows\System32\wwapi.dll - ok
14:25:05.0151 5968  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
14:25:05.0151 5968  C:\Windows\System32\QAGENT.DLL - ok
14:25:05.0151 5968  [ 9843F58DF3E2908D1FED4DF4B8747E51 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
14:25:05.0151 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe - ok
14:25:05.0151 5968  [ 7C74C407EEFE30A423B49E2D10850281 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
14:25:05.0151 5968  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll - ok
14:25:05.0151 5968  [ 1E55BE521BA16A5342448016D5D1BA5F ] C:\Windows\SysWOW64\HPZipr12.dll
14:25:05.0151 5968  C:\Windows\SysWOW64\HPZipr12.dll - ok
14:25:05.0151 5968  [ E8797B809706C64101C07F8579C17D87 ] C:\Windows\System32\HPZidr12.dll
14:25:05.0151 5968  C:\Windows\System32\HPZidr12.dll - ok
14:25:05.0151 5968  [ 938944490E43B0FF8F762315EADFD841 ] C:\Program Files\Hugin\bin\hugin.exe
14:25:05.0166 5968  C:\Program Files\Hugin\bin\hugin.exe - ok
14:25:05.0166 5968  [ F0842CF3C0B33C07B2CA1692900F21B4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll
14:25:05.0166 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll - ok
14:25:05.0166 5968  [ CBBAF06C2AC8882D239C8DC5BFA197FD ] C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll
14:25:05.0166 5968  C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll - ok
14:25:05.0166 5968  [ E6BEE998F3555266459ABC69E2DD83DD ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxm08.dll
14:25:05.0166 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxm08.dll - ok
14:25:05.0166 5968  [ 03211597018F96769F7F731039F692E1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll
14:25:05.0166 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll - ok
14:25:05.0166 5968  [ 71F836CC05397F8847E2FEC8D61BD832 ] C:\Program Files\CPUID\HWMonitor\HWMonitor.exe
14:25:05.0166 5968  C:\Program Files\CPUID\HWMonitor\HWMonitor.exe - ok
14:25:05.0166 5968  [ 9F6258F4166AB24B4B681EB1ED44534C ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll
14:25:05.0166 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll - ok
14:25:05.0182 5968  [ 347A39B69AC03B8F56D8807B989F5CA8 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll
14:25:05.0182 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll - ok
14:25:05.0182 5968  [ 1D4E764D325DDE8D3777813941BD3542 ] C:\Program Files\McAfee\MSC\mcuihost.exe
14:25:05.0182 5968  C:\Program Files\McAfee\MSC\mcuihost.exe - ok
14:25:05.0182 5968  [ C173E33FDD8484F68B51605F5CDCCCF7 ] C:\Program Files\McAfee\VirusScan\McVsShld.exe
14:25:05.0182 5968  C:\Program Files\McAfee\VirusScan\McVsShld.exe - ok
14:25:05.0182 5968  [ 883008A9B5BFF94A153D99DBA54CB5C1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
14:25:05.0182 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe - ok
14:25:05.0182 5968  [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
14:25:05.0182 5968  C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
14:25:05.0182 5968  [ 145C03F6CFEB86473BDCAA28FAAFBB13 ] C:\Program Files\McAfee\MPF\MpfAlert.exe
14:25:05.0182 5968  C:\Program Files\McAfee\MPF\MpfAlert.exe - ok
14:25:05.0197 5968  [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
14:25:05.0197 5968  C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
14:25:05.0197 5968  [ 7F227C35547B60EF9A270333B123FF19 ] C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe
14:25:05.0197 5968  C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe - ok
14:25:05.0197 5968  [ 3B4D0AA285F848041DEA8D1B4FF2D132 ] C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe
14:25:05.0197 5968  C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe - ok
14:25:05.0197 5968  [ 0EE03D901B5DCD3941686B95FCC98C89 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll
14:25:05.0197 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll - ok
14:25:05.0197 5968  [ 640FA356E88422165D95C1F94E943745 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc
14:25:05.0197 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc - ok
14:25:05.0197 5968  [ A105FAEE6BC5CB3AF7472B4AFEDEE8D6 ] C:\Program Files (x86)\NVIDIA Corporation\nTune\nvProfile.exe
14:25:05.0197 5968  C:\Program Files (x86)\NVIDIA Corporation\nTune\nvProfile.exe - ok
14:25:05.0197 5968  [ 1B3205EB3311CCC190A9B4CA092B752A ] C:\Program Files\OO Software\Defrag\oodcnt.exe
14:25:05.0197 5968  C:\Program Files\OO Software\Defrag\oodcnt.exe - ok
14:25:05.0213 5968  [ E85BC3FB6E56CCA989D98DD1C8B4D163 ] C:\Users\System User\Downloads\PC Support Tools\p95v277.win64\prime95.exe
14:25:05.0213 5968  C:\Users\System User\Downloads\PC Support Tools\p95v277.win64\prime95.exe - ok
14:25:05.0213 5968  [ B4FEBBAC47297242F04EF7F14FE6DF99 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
14:25:05.0213 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll - ok
14:25:05.0213 5968  [ 9E438543222120696C04A39BFAC56FB6 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqssm08.dll
14:25:05.0213 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqssm08.dll - ok
14:25:05.0213 5968  [ 4AD76DBBE1F1361EBAEC935D9D3F6A79 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc
14:25:05.0213 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc - ok
14:25:05.0213 5968  [ 55CF0A197DC8972AC829B30ACAE00E5E ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSplh08.dll
14:25:05.0213 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSplh08.dll - ok
14:25:05.0213 5968  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
14:25:05.0213 5968  C:\Windows\SysWOW64\msxml3.dll - ok
14:25:05.0229 5968  [ 72031F6486602F057C877B5C17D98403 ] C:\Windows\SysWOW64\HPZidr12.dll
14:25:05.0229 5968  C:\Windows\SysWOW64\HPZidr12.dll - ok
14:25:05.0229 5968  [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
14:25:05.0229 5968  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
14:25:05.0229 5968  [ 2B3258A80A331F45361907FC4913B754 ] C:\Program Files\Hugin\bin\PTBatcherGUI.exe
14:25:05.0229 5968  C:\Program Files\Hugin\bin\PTBatcherGUI.exe - ok
14:25:05.0229 5968  [ CC190B07E357BCD40C2AFB57B9A67B7F ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll
14:25:05.0229 5968  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll - ok
14:25:05.0229 5968  [ 841D3672FA9416A3E050F3A2AB4D58C5 ] C:\Program Files\SyncToy 2.1\SyncToy.exe
14:25:05.0229 5968  C:\Program Files\SyncToy 2.1\SyncToy.exe - ok
14:25:05.0229 5968  [ C7CEB24BD6231F33B2036AAF6F91C9BD ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
14:25:05.0229 5968  C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe - ok
14:25:05.0229 5968  [ 7AE299BC0A183A37A5A2F7FC7AFF083C ] C:\Program Files\Windows Mail\wab.exe
14:25:05.0229 5968  C:\Program Files\Windows Mail\wab.exe - ok
14:25:05.0244 5968  [ FE1897800D8FCA8579CCABC83A0CA181 ] C:\Program Files\WinRAR\WinRAR.exe
14:25:05.0244 5968  C:\Program Files\WinRAR\WinRAR.exe - ok
14:25:05.0244 5968  [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
14:25:05.0244 5968  C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
14:25:05.0244 5968  [ F924D18569D6E32F867C80F217A185E8 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
14:25:05.0244 5968  C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
14:25:05.0244 5968  [ 0FEC5F3C533DAE4B68C57EB8432E7881 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
14:25:05.0244 5968  C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
14:25:05.0244 5968  [ F71829B5FBB262B0641F47A7773EA735 ] C:\Program Files\McAfee\MSK\MskSet64.dll
14:25:05.0244 5968  C:\Program Files\McAfee\MSK\MskSet64.dll - ok
14:25:05.0244 5968  [ EE86BA861726741F03A786EEC847A0F7 ] C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportIaso64.sys
14:25:05.0244 5968  C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportIaso64.sys - ok
14:25:05.0260 5968  ============================================================
14:25:05.0260 5968  Scan finished
14:25:05.0260 5968  ============================================================
14:25:05.0260 5960  Detected object count: 0
14:25:05.0260 5960  Actual detected object count: 0
14:30:04.0016 4480  Deinitialize success
 



#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:08 PM

Posted 05 March 2013 - 06:15 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

 



#8 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 10:14 AM

Latest logs attached.

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.05.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
System User :: DESKTOP-PC [administrator]

05/03/2013 14:26:19
mbam-log-2013-03-05 (14-26-19).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 247151
Time elapsed: 6 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

==============

MiniToolBox by Farbar  Version:01-03-2013
Ran by System User (administrator) on 05-03-2013 at 14:36:54
Running from "C:\Users\System User\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.0.1 publish=Yes
add address name="Local Area Connection" address=192.168.0.32 mask=255.255.255.0


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Desktop-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 48-5B-39-49-5C-FE
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::653a:44b9:d576:6fe1%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.32(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 239622969
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-2C-E2-EF-48-5B-39-49-5C-FE
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{83ECE12A-06F3-4B65-B001-E01528A072B4}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    google.com
Addresses:  2a00:1450:4009:804::1006
   173.194.34.128
   173.194.34.137
   173.194.34.133
   173.194.34.142
   173.194.34.136
   173.194.34.134
   173.194.34.132
   173.194.34.130
   173.194.34.129
   173.194.34.131
   173.194.34.135


Pinging google.com [173.194.34.128] with 32 bytes of data:
Reply from 173.194.34.128: bytes=32 time=66ms TTL=57
Reply from 173.194.34.128: bytes=32 time=30ms TTL=57

Ping statistics for 173.194.34.128:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 30ms, Maximum = 66ms, Average = 48ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    yahoo.com
Addresses:  98.139.183.24
   98.138.253.109
   206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=956ms TTL=50
Reply from 98.139.183.24: bytes=32 time=378ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 378ms, Maximum = 956ms, Average = 667ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...48 5b 39 49 5c fe ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.32    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.32    276
     192.168.0.32  255.255.255.255         On-link      192.168.0.32    276
    192.168.0.255  255.255.255.255         On-link      192.168.0.32    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.32    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.32    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.0.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::653a:44b9:d576:6fe1/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/05/2013 10:14:19 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/04/2013 02:24:35 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {0d4ba22d-ea12-411f-8c4d-993414eaa5cf}

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/04/2013 08:03:58 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {a914c884-c3eb-4757-bd0c-2c1d59816deb}

Error: (03/03/2013 10:13:45 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {489a900b-f886-46a6-8592-e60cf6778121}

Error: (03/03/2013 09:18:41 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {cc0fd57f-920a-477d-81b0-0c9a3b6ed593}

Error: (03/03/2013 09:15:57 PM) (Source: AVLogEvent) (User: NT AUTHORITY)
Description: Content is missing.
Error Code:a7f42014


System errors:
=============
Error: (03/04/2013 10:59:41 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (03/04/2013 02:24:14 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (03/04/2013 02:24:14 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (03/04/2013 02:22:07 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service failed to start due to the following error:
%%1053

Error: (03/04/2013 02:22:07 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the SBSD Security Center Service service to connect.

Error: (03/04/2013 02:21:25 PM) (Source: Service Control Manager) (User: )
Description: The SPCA1528 Video Camera Service service failed to start due to the following error:
%%2

Error: (03/04/2013 08:03:57 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (03/04/2013 08:03:57 AM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (03/04/2013 08:01:29 AM) (Source: Service Control Manager) (User: )
Description: The SPCA1528 Video Camera Service service failed to start due to the following error:
%%2

Error: (03/03/2013 10:13:41 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069


Microsoft Office Sessions:
=========================
Error: (03/05/2013 10:14:19 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe

Error: (03/04/2013 02:24:35 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {0d4ba22d-ea12-411f-8c4d-993414eaa5cf}

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe

Error: (03/04/2013 08:03:58 AM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {a914c884-c3eb-4757-bd0c-2c1d59816deb}

Error: (03/03/2013 10:13:45 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {489a900b-f886-46a6-8592-e60cf6778121}

Error: (03/03/2013 09:18:41 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {cc0fd57f-920a-477d-81b0-0c9a3b6ed593}

Error: (03/03/2013 09:15:57 PM) (Source: AVLogEvent)(User: NT AUTHORITY)
Description: a7f42014


CodeIntegrity Errors:
===================================
  Date: 2013-03-04 09:34:58.040
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-04 09:34:57.947
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-04 09:34:57.931
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-10-11 21:52:31.971
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-10-04 12:18:58.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-10-04 12:18:58.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-10-04 12:18:58.764
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

309
4500_G510nz_Help (Version: 000.0.439.000)
4500G510nz (Version: 000.0.439.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
5700_Help (Version: 1.00.0000)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Accu-Feel
Active Sky 2012 (Version: 13.1.4363.9190)
Actual Window Manager 7.4.1 (Version: 7.4.1)
Adobe AIR (Version: 3.6.0.5970)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Aerosoft - Oslo Gardermoen X (ENGM) (Version: 1)
aerosoft's - Mega Airport Stockholm Arlanda X (Version: 1.00)
AI Suite (Version: 1.06.16)
AivlaSoft EFB (Version: 1.3.6)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.12 (Unicode)
B110 (Version: 140.0.142.000)
Battle of Britain - Hurricane  (Version: 1.00.000)
BBC iPlayer Desktop (Version: 3.2.15)
BFL Acars (Version: 1.0.1012)
Boeing 767-300ER Fuel Planner (Version: 1.0.0.28)
Bonjour (Version: 3.0.0.10)
bpd_scan (Version: 3.00.0000)
BPDSoftware (Version: 130.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 140.0.212.000)
C337H SKYMASTER HD SERIES FSX/P3D (Version: 1.00.00.00)
C90B King Air HD SERIES FSX (Version: 1.00.00.00)
CCleaner (Version: 3.01)
CH Control Manager Software
CPUID CPU-Z 1.56
CPUID HWMonitor 1.18
D3DX10 (Version: 15.4.2368.0902)
DC-3 DCA Type Rating Aircraft
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
Douglas DC-4 for FSX or FS2004 (Version: 2.10.0000)
Dropbox (Version: 1.6.16)
ESET Online Scanner v3
EuroScope 3.1d (Version: 3.1.4)
EVE Online (remove only)
Exact Audio Copy 1.0beta3 (Version: 1.0beta3)
EZ Vinyl/Tape Converter 7.4 by MixMeister
Fax (Version: 130.0.418.000)
FeelThere ERJ v.2
FinlandX
Flight1 Downloader
Fraps
Free FLAC to MP3 Converter 1.0
FSFDT FSCopilot
FSFDT FSInn
FSGenesis World Terrain Mesh for FSX - West
FSopen Server (Version: 0.92.3)
FSXSave (Version: 1.0.5)
Garmin City Navigator Europe v8 (Version: 8.0.0.0)
Garmin MapSource (Version: 6.16.3)
Google Chrome (Version: 25.0.1364.97)
Google Drive (Version: 1.7.4018.3496)
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
GPBaseService2 (Version: 130.0.371.000)
Ground Environment X Europe
HandBrake 0.9.5 (Version: 0.9.5)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510n-z (Version: 13.0)
HP OfficeJet J5700 (Version: 13.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 10.7.8.0)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.002.002.002)
HPAppStudio (Version: 140.0.95.000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
HS Nimrod by Simshed
Hugin 2012.0.0 (Version: 2012.0.0 hg_a6e4184ad538)
Iceland Mesh 1.0
iCloud (Version: 2.1.1.3)
iFly Jets - 737NG for FSX Feature Pack
iFly Jets - The 737NG for FSX
Input Director v1.3 BETA (Version: 1.3)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 11.0.1.12)
J5700 (Version: 130.0.000.000)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 23 (Version: 6.0.230)
Java™ 6 Update 29 (64-bit) (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
Just Flight - 757 Jetliner Freemium (Version: 1.00.000)
Just Flight Flying Club Archer III (FSX) (Version: 1.00.0000)
LAME v3.98.3 for Audacity
Lancaster
Level-D 767-300 for FSX
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MapSource - City Navigator Europe v7 (Version: 7.00)
MarketResearch (Version: 130.0.374.000)
Matrox VFW Software Codecs, build 28
McAfee Internet Security (Version: 12.1.253)
McAfee Online Backup (Version: 1.16.4.0)
McAfee Virtual Technician (Version: 6.5.0.2101)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Camera Codec Pack (Version: 16.4.1734.1104)
Microsoft Flight Simulator SimConnect Client v10.0.60905.0 (Version: 10.0.60905.0)
Microsoft Flight Simulator SimConnect Client v10.0.61242.0 (Version: 10.0.61242.0)
Microsoft Flight Simulator X (Version: 10.0.61355.0)
Microsoft Flight Simulator X SDK (Version: 1.00.0000)
Microsoft Flight Simulator X Service Pack 1 (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 2 (Version: 10.0.61472.0)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (Version: 2.0.1578.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
MobileMe Control Panel (Version: 3.1.8.0)
MSI Afterburner 2.3.0 (Version: 2.3.0)
MSI Kombustor 2.4.2
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Nero 8 Essentials (Version: 8.3.630)
neroxml (Version: 1.0.0)
Network64 (Version: 140.0.212.000)
NirSoft BlueScreenView
NMG Durban International Airport for Flight Simulator X (Version: 1.2)
Nokia Connectivity Cable Driver (Version: 7.1.92.0)
Nokia Suite (Version: 3.6.36.0)
NVIDIA 3D Vision Controller Driver (Version: 280.19)
NVIDIA 3D Vision Controller Driver 306.23 (Version: 306.23)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Drivers (Version: 1.10)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Performance (Version: 6.5)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA System Monitor (Version: 6.5)
NVIDIA System Update (Version: 3.00)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
O&O Defrag Free Edition (Version: 14.1.431)
OCCT 4.3.2 (Version: 4.3.2)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OpenOffice.org 3.2 (Version: 3.2.9502)
ParetoLogic Data Recovery (Version: 1.1.0)
PC Connectivity Solution (Version: 12.0.48.0)
PC Wizard 2010.1.96
Picasa 3 (Version: 3.8)
Platform (Version: 1.34)
PMDG_MD11_FSX (Version: 1.20.0055)
PMDGMD11X_PW_BA (Version: 1.20.0000)
PMDGMD11XF_PW_BAF (Version: 1.10.0000)
PMDGMD11XF_PW_BAF1 (Version: 1.00.0000)
PMDGMD11XF_PW_WOF (Version: 1.00.0000)
PowerISO (Version: 4.7)
ProductContext (Version: 130.0.000.000)
PS_AIO_07_B110_SW_Min (Version: 140.0.142.000)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.70.80.34)
QuickTransfer (Version: 140.0.98.000)
Rapport (Version: 3.5.1205.18)
Rapport (Version: 3.5.1208.24)
Realtek 8136 8168 8169 Ethernet Driver (Version: 1.00.0005)
Remove UK2000 Glasgow Xtreme files
Safari (Version: 5.33.18.5)
Scan (Version: 140.0.77.000)
Shared C Run-time for x64 (Version: 10.0.0)
Shop for HP Supplies (Version: 13.0)
Sky Go Desktop
SkyPlayer for Windows Media Center (Version: 4.4.2.0)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
Sony Image Data Suite (Version: 3.2.00.15160)
Sony RAW Driver (Version: 2.0.00.08130)
SPCA1528 PC Driver (Version: 2.2.2.0)
Spotify (Version: 0.4.10)
Spotify (Version: 0.8.3.222.g317ab79d)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 130.0.373.000)
SyncToy 2.1 (x64) (Version: 2.1.0)
tbbMeter (Version: 1.00.0000)
tbbMeter Loader Service (Version: 1.0.0)
TeamSpeak 2 RC2 (Version: 2.0.32.60)
TeamSpeak 3 Client (Version: 3.0.9.2)
TeamViewer 7 (Version: 7.0.12979)
TechPowerUp GPU-Z
Toolbox (Version: 140.0.424.000)
TrackIR5
TrayApp (Version: 130.0.376.000)
TurboV EVO (Version: 1.01.08)
UK2000 Gatwick Xtreme FSX  (Version: 3.01)
Ultimate Alaska X V1.0
Ultimate Terrain X - Canada
Ultimate Terrain X - Europe
Ultimate Terrain X - USA
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VAT-Spy
VCRedistSetup (Version: 1.0.0)
VIA Platform Device Manager (Version: 1.34)
VLC media player 1.1.11 (Version: 1.1.11)
VRC
WebReg (Version: 140.0.212.017)
Windows Driver Package - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
WinRAR archiver


========================= Devices: ================================

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8190.05 MB
Available physical RAM: 4514.63 MB
Total Pagefile: 11260.24 MB
Available Pagefile: 7644.67 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.78 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.46 GB) (Free:248.72 GB) NTFS
2 Drive d: (Windows 7 data) (Fixed) (Total:465.46 GB) (Free:373.61 GB) NTFS
4 Drive f: (HITACHI) (Fixed) (Total:931.51 GB) (Free:20.67 GB) NTFS

========================= Users: ========================================

User accounts for \\DESKTOP-PC

Administrator            Guest                    System User             
UpdatusUser             


**** End of log ****

=======================

 

Farbar Service Scanner Version: 03-03-2013
Ran by System User (administrator) on 05-03-2013 at 14:40:05
Running from "C:\Users\System User\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

===========================

 

# AdwCleaner v2.114 - Logfile created 03/05/2013 at 14:42:15
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : System User - DESKTOP-PC
# Boot Mode : Normal
# Running from : C:\Users\System User\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnpmlnedpdikbgdghljdepnljfpkhccn_0
File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dnpmlnedpdikbgdghljdepnljfpkhccn_0.localstorage
File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbpcjmidkkgldeplajgnbpjkfpmpeepb_0.localstorage
File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbpcjmidkkgldeplajgnbpjkfpmpeepb_0.localstorage-journal

***** [Registry] *****

Key Deleted : HKCU\Software\ChatZum Toolbar
Key Deleted : HKLM\Software\ChatZum Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v25.0.1364.97

File : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [2271 octets] - [05/03/2013 14:42:15]

########## EOF - C:\AdwCleaner[S2].txt - [2331 octets] ##########

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.8 (03.04.2013:1)
OS: Windows 7 Home Premium x64
Ran by System User on 05/03/2013 at 14:52:02.56
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\DisplayName
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\URL

 

~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\systweak
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Users\System User\AppData\Roaming\systweak"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05/03/2013 at 15:02:34.08
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/05/2013 03:04:19 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

 * FontCache => %SystemRoot%\system32\svchost.exe -k LocalService [Incorrect ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/05/2013 03:05:01 PM
Execution time: 0 hours(s), 0 minute(s), and 41 seconds(s)

 

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "IntelliPoint" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "itype" "IType.exe" "Microsoft Corporation" "c:\program files\microsoft intellitype pro\itype.exe"
+ "OODefragTray" "O&O Defrag Free Edition TrayIcon (x64)" "O&O Software GmbH" "c:\program files\oo software\defrag\oodtray.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "mcpltui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
+ "mcui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "HP Digital Imaging Monitor.lnk" "HP Digital Imaging Monitor" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe"
+ "TotalMedia Backup Monitor.lnk" "" "" "File not found: C:\Program Files (x86)\ArcSoft\TotalMedia Backup\uBBMonitor.exe"
"C:\Users\System User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "BBC iPlayer Desktop.lnk" "" "" "c:\program files (x86)\bbc iplayer desktop\bbc iplayer desktop.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ApplePhotoStreams" "ApplePhotoStreams.exe" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\applephotostreams.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\system user\appdata\local\google\update\googleupdate.exe"
+ "iCloudServices" "iCloud" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\icloudservices.exe"
+ "InputDirector" "Input Director" "Imperative Software Pty Ltd" "c:\program files (x86)\input director\inputdirector.exe"
+ "Sidebar" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\program files (x86)\spotify\data\spotifywebhelper.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "application/x-mfe-ipt" "McAfee MSC IE plugin DLL" "McAfee, Inc." "c:\program files\mcafee\msc\mcsniepl64.dll"
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "dssrequest" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "sacore" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "PhotoStreamsExt" "" "" "c:\program files\common files\apple\internet services\shellstreams64.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Cover Designer" "Cover Designer" "Nero AG" "c:\program files (x86)\nero\nero8\nero coverdesigner\coveredextension.dll"
+ "NBShellHook Class" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero8\nero backitup\nbshell.dll"
+ "PhotoStreamsExt" "ShellStreams.dll" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\shellstreams.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Actual Window Manager" "Actual Window Manager Shell Extension Library" "Actual Tools" "c:\program files (x86)\actual window manager\actualwindowmanagershellextension64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Actual Window Manager" "Actual Window Manager Shell Extension Library" "Actual Tools" "c:\program files (x86)\actual window manager\actualwindowmanagershellextension.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl_x64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "NBShellHook Class" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero8\nero backitup\nbshell.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "NBShellHook" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero8\nero backitup\nbshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "MOBK2" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "MOBK3" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "HP Print Enhancer" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Show or hide HP Smart Web Printing" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\ASUS\ASUS RegRun Loader" "" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\aasp\1.01.02\asloader.exe"
+ "\ASUS\TurboVHelp" "TurboVHelp" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\turbov evo\turbovhelp.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2735075353-2745935475-3570472473-1000Core" "Google Installer" "Google Inc." "c:\users\system user\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2735075353-2745935475-3570472473-1000UA" "Google Installer" "Google Inc." "c:\users\system user\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Microsoft_Hardware_Launch_IPoint_exe" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "\Microsoft_Hardware_Launch_IType_exe" "IType.exe" "Microsoft Corporation" "c:\program files\microsoft intellitype pro\itype.exe"
+ "\MSIAfterburner" "MSIAfterburner" "" "c:\program files (x86)\msi afterburner\msiafterburner.exe"
+ "\ParetoLogic Registration" "ParetoLogic Update Component" "" "c:\program files (x86)\common files\paretologic\uus2\uus.dll"
+ "\ParetoLogic Update Version2" "ParetoLogic Update Application" "" "c:\program files (x86)\common files\paretologic\uus2\pareto_update.exe"
+ "\Scheduled Update for Ask Toolbar" "" "" "File not found: C:\Program Files (x86)\Ask.com\UpdateTask.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\{7A47EA65-671B-4EEE-A77E-1089C4872606}" "Microsoft Flight Simulator®" "Microsoft Corp." "c:\fsx program\fsx.exe"
+ "\{EF80262A-300E-4C93-A7D1-69072DEDBF4D}" "Microsoft Flight Simulator®" "Microsoft Corp." "c:\fsx program\fsx.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AsSysCtrlService" "AsSysCtr Application" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\assysctrlservice\1.00.02\assysctrlservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "HomeNetSvc" "Allows McAfee applications to communicate securely on the local network." "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC" "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "IDVistaService" "Input Director Vista Helper Service" "" "c:\program files (x86)\input director\idvistaservice.exe"
+ "InputDirector" "Input Director Background Process" "" "c:\program files (x86)\input director\idwinservice.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "McAfee SiteAdvisor Service" "McAfee SiteAdvisor Service" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McMPFSvc" "Helps protect your computer from intrusion and let's you manage your computer's trusted programs." "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McNaiAnn" "McAfee VirusScan Announcer" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McODS" "McAfee Scanner" "McAfee, Inc." "c:\program files\mcafee\virusscan\mcods.exe"
+ "mcpltsvc" "McAfee Platform Services" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McProxy" "McAfee Proxy Service" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "mfecore" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\amcore\mcshield.exe"
+ "mfefire" "Provides firewall services to McAfee products" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "MOBKbackup" "Backs up configured files to the McAfee Online Backup servers. Please do not stop or restart this service - it could corrupt your McAfee Online Backup installation." "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkbackup.exe"
+ "MSK80Service" "This service filters e-mail messages on your computer" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "OODefragAgent" "O&O Defrag" "O&O Software GmbH" "c:\program files\oo software\defrag\oodag.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "RapportMgmtService" "Central Rapport Management and Monitoring Service" "Trusteer Ltd." "c:\program files (x86)\trusteer\rapport\bin\rapportmgmtservice.exe"
+ "rpcapd" "Allows to capture traffic on this machine from a remote machine." "CACE Technologies, Inc." "c:\program files (x86)\winpcap\rpcapd.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files (x86)\spybot - search & destroy\sdwinsec.exe"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files (x86)\pc connectivity solution\servicelayer.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "TeamViewer7" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\version7\teamviewer_service.exe"
+ "UpdateCenterService" "Update Center Service" "NVIDIA" "c:\program files (x86)\nvidia corporation\system update\updatecenterservice.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AsIO" "" "" "c:\windows\syswow64\drivers\asio.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "Bulk1528" "" "" "File not found: System32\Drivers\Bulk1528.sys"
+ "Ca1528av" "" "" "File not found: System32\Drivers\Ca1528av.sys"
+ "cfwids" "McAfee Personal Firewall IDS Plugin" "McAfee, Inc." "c:\windows\system32\drivers\cfwids.sys"
+ "chdrvr01" "CH Control Manager Driver 1" "CH Products" "c:\windows\system32\drivers\chdrvr01.sys"
+ "chdrvr02" "CH Control Manager Driver 2" "CH Products" "c:\windows\system32\drivers\chdrvr02.sys"
+ "chdrvr03" "CH Control Manager Driver 3" "CH Products" "c:\windows\system32\drivers\chdrvr03.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpuz134" "CPUID Driver" "Windows ® Win 7 DDK provider" "c:\program files (x86)\cpuid\pc wizard 2010\pcwiz_x64.sys"
+ "cpuz135" "CPUID Driver" "CPUID" "c:\windows\system32\drivers\cpuz135_x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HipShieldK" "McAfee HIP IPS Driver" "McAfee, Inc." "c:\windows\system32\drivers\hipshieldk.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01" "" "" "File not found: C:\Windows\System32\Drivers\mfeavfk01.sys"
+ "mfefirek" "McAfee Core Firewall Engine Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mfencbdc" "McAfee Content driver Copyright © 2010 McAfee, Inc. All Rights Reserved." "McAfee, Inc." "c:\windows\system32\drivers\mfencbdc.sys"
+ "mfencrk" "McAfee Content driver Copyright © 2010 McAfee, Inc. All Rights Reserved." "McAfee, Inc." "c:\windows\system32\drivers\mfencrk.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "MOBKFilter" "McAfee Online Backup Change Monitor" "Mozy, Inc." "c:\windows\system32\drivers\mobk.sys"
+ "MTsensor" "ATK0110 ACPI Utility" "" "c:\windows\system32\drivers\asacpi.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbx64.sys"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbox64.sys"
+ "nmwcdnsucx64" "Nokia USB Phone Generic Client" "Nokia" "c:\windows\system32\drivers\nmwcdnsucx64.sys"
+ "nmwcdnsux64" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\nmwcdnsux64.sys"
+ "NPF" "npf.sys (NT5/6 AMD64) Kernel Driver" "CACE Technologies, Inc." "c:\windows\system32\drivers\npf.sys"
+ "npusbio" "Generic USB Driver" "" "c:\windows\system32\drivers\npusbio_x64.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 306.97 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvoclk64" "NVIDIA System Utility Driver" "NVIDIA Corp." "c:\windows\system32\drivers\nvoclk64.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfdx64.sys"
+ "PROCEXP151" "" "" "File not found: C:\Windows\system32\Drivers\PROCEXP151.SYS"
+ "PSSDK42" "PSSDK Driver Protocol v4.2 64bit" "microOLAP Technologies LTD" "c:\windows\system32\drivers\pssdk42.sys"
+ "PSSDKLBF" "PSSDK Driver LoopBack v4.2 64bit" "microOLAP Technologies LTD" "c:\windows\system32\drivers\pssdklbf.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RapportCerberus_50414" "" "" "c:\programdata\trusteer\rapport\store\exts\rapportcerberus\baseline\rapportcerberus64_50414.sys"
+ "RapportEI64" "RapportEI" "Trusteer Ltd." "c:\program files (x86)\trusteer\rapport\bin\x64\rapportei64.sys"
+ "RapportKE64" "RapportKE" "Trusteer Ltd." "c:\windows\system32\drivers\rapportke64.sys"
+ "RapportPG64" "RapportPG64" "Trusteer Ltd." "c:\program files (x86)\trusteer\rapport\bin\x64\rapportpg64.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys"
+ "SCDEmu" "PowerISO Virtual Drive" "PowerISO Computing, Inc." "c:\windows\system32\drivers\scdemu.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SQTECH900C" "Universal Serial Bus Camera Driver" "Service & Quality Technology." "c:\windows\system32\drivers\capt900c.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltx64.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltjx64.sys"
+ "VIAHdAudAddService" "VIA High Definition Audio Function Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viahduaa.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.dv25" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.dv50" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.dvh1" "Matrox VFW DV100 Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv100.dll"
+ "vidc.dvsd" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\system32\frapsv64.dll"
+ "vidc.M101" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfw.dll"
+ "vidc.M102" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwhd.dll"
+ "vidc.M103" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwyuva.dll"
+ "vidc.M104" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwyuvahd.dll"
+ "vidc.M301" "Matrox VFW RefAVI Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwrefavi.dll"
+ "vidc.M701" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hd.dll"
+ "vidc.M702" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hdoffline.dll"
+ "vidc.M703" "Matrox VFW Mpeg-2 HDV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hdv.dll"
+ "vidc.M704" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2alpha.dll"
+ "vidc.M705" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2alphahd.dll"
+ "vidc.MJPG" "Matrox VFW Mjpeg Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmjpeg.dll"
+ "vidc.MMES" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2.dll"
+ "VIDC.RTV1" "" "" "c:\windows\system32\rtvcvfw64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.dv25" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "vidc.dv50" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "vidc.dvh1" "Matrox VFW DV100 Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv100.dll"
+ "vidc.dvsd" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\syswow64\frapsvid.dll"
+ "vidc.M101" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfw.dll"
+ "vidc.M102" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwhd.dll"
+ "vidc.M103" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwyuva.dll"
+ "vidc.M104" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwyuvahd.dll"
+ "vidc.M301" "Matrox VFW RefAVI Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwrefavi.dll"
+ "vidc.M701" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hd.dll"
+ "vidc.M702" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hdoffline.dll"
+ "vidc.M703" "Matrox VFW Mpeg-2 HDV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hdv.dll"
+ "vidc.M704" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2alpha.dll"
+ "vidc.M705" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2alphahd.dll"
+ "vidc.MJPG" "Matrox VFW Mjpeg Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmjpeg.dll"
+ "vidc.MMES" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2.dll"
+ "VIDC.RTV1" "" "" "c:\windows\syswow64\rtvcvfw32.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DV Scenes" "DV-Timecode based Scenechange Detection" "Nero AG" "c:\program files (x86)\nero\nero8\nero vision\nvdv.dll"
+ "DV Source Filter" "DV-Timecode based Scenechange Detection" "Nero AG" "c:\program files (x86)\nero\nero8\nero vision\nvdv.dll"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzaacdecfilter.dll"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdmp4muxfilter.dll"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp4source.dll"
+ "Emuzed H264 Video Decoder-Filter" "Emuzed H.264 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdh264dectfilter.dll"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp3sourcefilter.dll"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzdecmp4_h263.dll"
+ "NeAudio2" "Nero Audio Decoder 2" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudio2.ax"
+ "NeAudioRender" "Nero Audio Renderer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudiorender.ax"
+ "Nero Audible Decoder" "Nero Audible Decoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudible.ax"
+ "Nero Audio CD Filter" "Nero Audio CD Source Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudcd.ax"
+ "Nero Audio CD Navigator" "Nero Audio CD Source Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudcd.ax"
+ "Nero Audio Transcoder" "Audio Transcoding Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\netranscoder.ax"
+ "Nero AV Synchronizer" "Audio/Video Synchronizer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neavsync.ax"
+ "Nero Colorspace Converter" "Colorspace Converter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\necolorspace.ax"
+ "Nero Deinterlace" "Deinterlacing Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nedeinterlace.ax"
+ "Nero Digital Audio Encoder 8" "AAC LC/HE Audio Encoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendaud.ax"
+ "Nero Digital File Writer 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Muxer 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Null Renderer 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Subpicture Enc 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Video Enc 8" "MPEG4 and H.264 (AVC) Video Encoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendvid.ax"
+ "Nero DV Splitter" "DV Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nedvsplitter.ax"
+ "Nero DVD Decoder" "MPEG-1/2/4 & AVC video decoder w/ DxVA" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideo.ax"
+ "Nero DVD Navigator" "DVD Navigator Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nedvd.ax"
+ "Nero Elementary Stream Parser" "Nero Elementary Stream Parser" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neesparser.ax"
+ "Nero File Source (Async.)" "Nero Home" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nefilesourceasync.ax"
+ "Nero FLV Splitter" "Nero FLV Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neflvsplitter.ax"
+ "Nero Frame Capture" "Direct Show frame grabber filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\necapture.ax"
+ "Nero Framerate Converter" "Framerate Conversion DirectShow Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neframerate.ax"
+ "Nero HD Audio Mixer" "Nero Audio Mixer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nehdaudiomixer.ax"
+ "Nero InteractiveGraphics Decoder" "Graphics Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nebdgraphic.ax"
+ "Nero MP2 Audio Encoder" "MP2 Audio Encoding Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nemp2audioenc.ax"
+ "Nero MP3 Encoder" "MP3 Encoding Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nemp3encoder.ax"
+ "Nero MP4 Splitter" "MP4 Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nemp4splitter.ax"
+ "Nero Mpeg Video Encoder" "NeroMpeg Dynamic Link Library" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nempegvideoenc.ax"
+ "Nero Mpeg2 Encoder" "MPEG 1/2 encoder filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevcr.ax"
+ "Nero Ogg Splitter" "Ogg Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neoggsplitter.ax"
+ "Nero Photo Source" "Nero Home" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nephotosource.ax"
+ "Nero PresentationGraphics Decoder" "Graphics Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nebdgraphic.ax"
+ "Nero PS Muxer" "PS Muxer Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nepsmuxer.ax"
+ "Nero QuickTime™ Audio Decoder" "QuickTime™ Decoder Wrapper" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neqtdec.ax"
+ "Nero QuickTime™ Video Decoder" "QuickTime™ Decoder Wrapper" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neqtdec.ax"
+ "Nero Resize" "Resizing Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neresize.ax"
+ "Nero Scene Change Detector" "Scene Change Detector" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nescenedetector.ax"
+ "Nero Scene Change Detector" "Scene Change Detector" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nescenedetector.ax"
+ "Nero Sound Processor" "Nero Sound Processor" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesoundproc.ax"
+ "Nero Splitter" "Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesplitter.ax"
+ "Nero Stream Buffer Sink" "Nero Stream Buffer Engine" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesbe.ax"
+ "Nero Stream Buffer Source" "Nero Stream Buffer Engine" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesbe.ax"
+ "Nero Subpicture Decoder" "Nero Subpicture Decoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesubpicture.ax"
+ "Nero Subtitle" "Subtitle Renderer & Mixer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesubtitle.ax"
+ "Nero Teletext Decoder" "Teletext Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neteletext.ax"
+ "Nero Thumbnail Decoder" "Thumbnail Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nebdthumbnail.ax"
+ "Nero TS Muxer" "Nero Transport Stream Muxltiplexer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\netsmuxer.ax"
+ "Nero Vcd Navigator" "Nero Vcd Navigator Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevcd.ax"
+ "Nero Video Analyzer" "Nero Video Analyzer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideoanalyzer.ax"
+ "Nero Video Decoder" "MPEG-1/2/4 & AVC video decoder w/ DxVA" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideo.ax"
+ "Nero Video Decoder HD" "Nero HD Video Decoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideohd.ax"
+ "Nero Video Processor" "Resize / Deinterlace / Color Correction / Film Effect / Frame Capture Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nerovideoproc.ax"
+ "Nero Video Renderer" "Nero Video Renderer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideorenderer.ax"
+ "NeroVobuGenerator" "Nero Vobu Generator" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nerovobugenerator.ax"
+ "NeSoundSwitch" "Nero Sound Switcher" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesoundswitch.ax"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiah264hpmpdectfilter.dll"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiadecmp4asp_h263.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\Software\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "Sony Raw File Decoder" "Sony RAW Driver (x64)" "Sony Corporation" "c:\program files (x86)\sony\raw driver\srfcodec.dll"
+ "{42553C8F-FF8C-45C9-A37A-C3939F7C016B}" "Microsoft Raw Codec" "Microsoft Corporation" "c:\program files\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "{42553C8F-FF8C-45C9-A37A-C3939F7C016B}" "Microsoft Raw Codec" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Epson Inbox Language Monitor01" "Epson Printer Driver" "SEIKO EPSON CORPORATION" "c:\windows\system32\ep0slm01.dll"
+ "hpf3l092.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l092.dll"
+ "hpf3l101.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l101.dll"
+ "PCL hpz3l4x6" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3l4x6.dll"
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll"
"C:\Users\System User\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-us\Gadget.xml"
 



#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:08 PM

Posted 05 March 2013 - 10:18 AM

Other logs?



#10 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 10:29 AM

I did paste them all.  Possibly been truncated due to length.  Will repost over a couple of posts.

 

MalwareByte and MiniToolBox logs

 

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.05.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
System User :: DESKTOP-PC [administrator]

05/03/2013 14:26:19
mbam-log-2013-03-05 (14-26-19).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 247151
Time elapsed: 6 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

==================================================

MiniToolBox by Farbar  Version:01-03-2013
Ran by System User (administrator) on 05-03-2013 at 14:36:54
Running from "C:\Users\System User\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.0.1 publish=Yes
add address name="Local Area Connection" address=192.168.0.32 mask=255.255.255.0


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Desktop-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 48-5B-39-49-5C-FE
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::653a:44b9:d576:6fe1%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.32(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 239622969
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-2C-E2-EF-48-5B-39-49-5C-FE
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{83ECE12A-06F3-4B65-B001-E01528A072B4}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    google.com
Addresses:  2a00:1450:4009:804::1006
   173.194.34.128
   173.194.34.137
   173.194.34.133
   173.194.34.142
   173.194.34.136
   173.194.34.134
   173.194.34.132
   173.194.34.130
   173.194.34.129
   173.194.34.131
   173.194.34.135


Pinging google.com [173.194.34.128] with 32 bytes of data:
Reply from 173.194.34.128: bytes=32 time=66ms TTL=57
Reply from 173.194.34.128: bytes=32 time=30ms TTL=57

Ping statistics for 173.194.34.128:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 30ms, Maximum = 66ms, Average = 48ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    yahoo.com
Addresses:  98.139.183.24
   98.138.253.109
   206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=956ms TTL=50
Reply from 98.139.183.24: bytes=32 time=378ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 378ms, Maximum = 956ms, Average = 667ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...48 5b 39 49 5c fe ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.32    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.32    276
     192.168.0.32  255.255.255.255         On-link      192.168.0.32    276
    192.168.0.255  255.255.255.255         On-link      192.168.0.32    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.32    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.32    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.0.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::653a:44b9:d576:6fe1/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/05/2013 10:14:19 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/04/2013 02:24:35 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {0d4ba22d-ea12-411f-8c4d-993414eaa5cf}

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/04/2013 08:03:58 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {a914c884-c3eb-4757-bd0c-2c1d59816deb}

Error: (03/03/2013 10:13:45 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {489a900b-f886-46a6-8592-e60cf6778121}

Error: (03/03/2013 09:18:41 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {cc0fd57f-920a-477d-81b0-0c9a3b6ed593}

Error: (03/03/2013 09:15:57 PM) (Source: AVLogEvent) (User: NT AUTHORITY)
Description: Content is missing.
Error Code:a7f42014


System errors:
=============
Error: (03/04/2013 10:59:41 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (03/04/2013 02:24:14 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (03/04/2013 02:24:14 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (03/04/2013 02:22:07 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service failed to start due to the following error:
%%1053

Error: (03/04/2013 02:22:07 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the SBSD Security Center Service service to connect.

Error: (03/04/2013 02:21:25 PM) (Source: Service Control Manager) (User: )
Description: The SPCA1528 Video Camera Service service failed to start due to the following error:
%%2

Error: (03/04/2013 08:03:57 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (03/04/2013 08:03:57 AM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (03/04/2013 08:01:29 AM) (Source: Service Control Manager) (User: )
Description: The SPCA1528 Video Camera Service service failed to start due to the following error:
%%2

Error: (03/03/2013 10:13:41 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069


Microsoft Office Sessions:
=========================
Error: (03/05/2013 10:14:19 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe

Error: (03/05/2013 10:10:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe

Error: (03/04/2013 02:24:35 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {0d4ba22d-ea12-411f-8c4d-993414eaa5cf}

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe

Error: (03/04/2013 01:01:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe

Error: (03/04/2013 08:03:58 AM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {a914c884-c3eb-4757-bd0c-2c1d59816deb}

Error: (03/03/2013 10:13:45 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {489a900b-f886-46a6-8592-e60cf6778121}

Error: (03/03/2013 09:18:41 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {cc0fd57f-920a-477d-81b0-0c9a3b6ed593}

Error: (03/03/2013 09:15:57 PM) (Source: AVLogEvent)(User: NT AUTHORITY)
Description: a7f42014


CodeIntegrity Errors:
===================================
  Date: 2013-03-04 09:34:58.040
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-04 09:34:57.947
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-04 09:34:57.931
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-10-11 21:52:31.971
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-10-04 12:18:58.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-10-04 12:18:58.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-10-04 12:18:58.764
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

309
4500_G510nz_Help (Version: 000.0.439.000)
4500G510nz (Version: 000.0.439.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
5700_Help (Version: 1.00.0000)
64 Bit HP CIO Components Installer (Version: 6.2.2)
Accu-Feel
Active Sky 2012 (Version: 13.1.4363.9190)
Actual Window Manager 7.4.1 (Version: 7.4.1)
Adobe AIR (Version: 3.6.0.5970)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Aerosoft - Oslo Gardermoen X (ENGM) (Version: 1)
aerosoft's - Mega Airport Stockholm Arlanda X (Version: 1.00)
AI Suite (Version: 1.06.16)
AivlaSoft EFB (Version: 1.3.6)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.12 (Unicode)
B110 (Version: 140.0.142.000)
Battle of Britain - Hurricane  (Version: 1.00.000)
BBC iPlayer Desktop (Version: 3.2.15)
BFL Acars (Version: 1.0.1012)
Boeing 767-300ER Fuel Planner (Version: 1.0.0.28)
Bonjour (Version: 3.0.0.10)
bpd_scan (Version: 3.00.0000)
BPDSoftware (Version: 130.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 140.0.212.000)
C337H SKYMASTER HD SERIES FSX/P3D (Version: 1.00.00.00)
C90B King Air HD SERIES FSX (Version: 1.00.00.00)
CCleaner (Version: 3.01)
CH Control Manager Software
CPUID CPU-Z 1.56
CPUID HWMonitor 1.18
D3DX10 (Version: 15.4.2368.0902)
DC-3 DCA Type Rating Aircraft
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
Douglas DC-4 for FSX or FS2004 (Version: 2.10.0000)
Dropbox (Version: 1.6.16)
ESET Online Scanner v3
EuroScope 3.1d (Version: 3.1.4)
EVE Online (remove only)
Exact Audio Copy 1.0beta3 (Version: 1.0beta3)
EZ Vinyl/Tape Converter 7.4 by MixMeister
Fax (Version: 130.0.418.000)
FeelThere ERJ v.2
FinlandX
Flight1 Downloader
Fraps
Free FLAC to MP3 Converter 1.0
FSFDT FSCopilot
FSFDT FSInn
FSGenesis World Terrain Mesh for FSX - West
FSopen Server (Version: 0.92.3)
FSXSave (Version: 1.0.5)
Garmin City Navigator Europe v8 (Version: 8.0.0.0)
Garmin MapSource (Version: 6.16.3)
Google Chrome (Version: 25.0.1364.97)
Google Drive (Version: 1.7.4018.3496)
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
GPBaseService2 (Version: 130.0.371.000)
Ground Environment X Europe
HandBrake 0.9.5 (Version: 0.9.5)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510n-z (Version: 13.0)
HP OfficeJet J5700 (Version: 13.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 10.7.8.0)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.002.002.002)
HPAppStudio (Version: 140.0.95.000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
HS Nimrod by Simshed
Hugin 2012.0.0 (Version: 2012.0.0 hg_a6e4184ad538)
Iceland Mesh 1.0
iCloud (Version: 2.1.1.3)
iFly Jets - 737NG for FSX Feature Pack
iFly Jets - The 737NG for FSX
Input Director v1.3 BETA (Version: 1.3)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 11.0.1.12)
J5700 (Version: 130.0.000.000)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 23 (Version: 6.0.230)
Java™ 6 Update 29 (64-bit) (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
Just Flight - 757 Jetliner Freemium (Version: 1.00.000)
Just Flight Flying Club Archer III (FSX) (Version: 1.00.0000)
LAME v3.98.3 for Audacity
Lancaster
Level-D 767-300 for FSX
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MapSource - City Navigator Europe v7 (Version: 7.00)
MarketResearch (Version: 130.0.374.000)
Matrox VFW Software Codecs, build 28
McAfee Internet Security (Version: 12.1.253)
McAfee Online Backup (Version: 1.16.4.0)
McAfee Virtual Technician (Version: 6.5.0.2101)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Camera Codec Pack (Version: 16.4.1734.1104)
Microsoft Flight Simulator SimConnect Client v10.0.60905.0 (Version: 10.0.60905.0)
Microsoft Flight Simulator SimConnect Client v10.0.61242.0 (Version: 10.0.61242.0)
Microsoft Flight Simulator X (Version: 10.0.61355.0)
Microsoft Flight Simulator X SDK (Version: 1.00.0000)
Microsoft Flight Simulator X Service Pack 1 (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 2 (Version: 10.0.61472.0)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (Version: 2.0.1578.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
MobileMe Control Panel (Version: 3.1.8.0)
MSI Afterburner 2.3.0 (Version: 2.3.0)
MSI Kombustor 2.4.2
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Nero 8 Essentials (Version: 8.3.630)
neroxml (Version: 1.0.0)
Network64 (Version: 140.0.212.000)
NirSoft BlueScreenView
NMG Durban International Airport for Flight Simulator X (Version: 1.2)
Nokia Connectivity Cable Driver (Version: 7.1.92.0)
Nokia Suite (Version: 3.6.36.0)
NVIDIA 3D Vision Controller Driver (Version: 280.19)
NVIDIA 3D Vision Controller Driver 306.23 (Version: 306.23)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Drivers (Version: 1.10)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Performance (Version: 6.5)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA System Monitor (Version: 6.5)
NVIDIA System Update (Version: 3.00)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
O&O Defrag Free Edition (Version: 14.1.431)
OCCT 4.3.2 (Version: 4.3.2)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OpenOffice.org 3.2 (Version: 3.2.9502)
ParetoLogic Data Recovery (Version: 1.1.0)
PC Connectivity Solution (Version: 12.0.48.0)
PC Wizard 2010.1.96
Picasa 3 (Version: 3.8)
Platform (Version: 1.34)
PMDG_MD11_FSX (Version: 1.20.0055)
PMDGMD11X_PW_BA (Version: 1.20.0000)
PMDGMD11XF_PW_BAF (Version: 1.10.0000)
PMDGMD11XF_PW_BAF1 (Version: 1.00.0000)
PMDGMD11XF_PW_WOF (Version: 1.00.0000)
PowerISO (Version: 4.7)
ProductContext (Version: 130.0.000.000)
PS_AIO_07_B110_SW_Min (Version: 140.0.142.000)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.70.80.34)
QuickTransfer (Version: 140.0.98.000)
Rapport (Version: 3.5.1205.18)
Rapport (Version: 3.5.1208.24)
Realtek 8136 8168 8169 Ethernet Driver (Version: 1.00.0005)
Remove UK2000 Glasgow Xtreme files
Safari (Version: 5.33.18.5)
Scan (Version: 140.0.77.000)
Shared C Run-time for x64 (Version: 10.0.0)
Shop for HP Supplies (Version: 13.0)
Sky Go Desktop
SkyPlayer for Windows Media Center (Version: 4.4.2.0)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
Sony Image Data Suite (Version: 3.2.00.15160)
Sony RAW Driver (Version: 2.0.00.08130)
SPCA1528 PC Driver (Version: 2.2.2.0)
Spotify (Version: 0.4.10)
Spotify (Version: 0.8.3.222.g317ab79d)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 130.0.373.000)
SyncToy 2.1 (x64) (Version: 2.1.0)
tbbMeter (Version: 1.00.0000)
tbbMeter Loader Service (Version: 1.0.0)
TeamSpeak 2 RC2 (Version: 2.0.32.60)
TeamSpeak 3 Client (Version: 3.0.9.2)
TeamViewer 7 (Version: 7.0.12979)
TechPowerUp GPU-Z
Toolbox (Version: 140.0.424.000)
TrackIR5
TrayApp (Version: 130.0.376.000)
TurboV EVO (Version: 1.01.08)
UK2000 Gatwick Xtreme FSX  (Version: 3.01)
Ultimate Alaska X V1.0
Ultimate Terrain X - Canada
Ultimate Terrain X - Europe
Ultimate Terrain X - USA
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VAT-Spy
VCRedistSetup (Version: 1.0.0)
VIA Platform Device Manager (Version: 1.34)
VLC media player 1.1.11 (Version: 1.1.11)
VRC
WebReg (Version: 140.0.212.017)
Windows Driver Package - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
WinRAR archiver


========================= Devices: ================================

Name: Photosmart B110 series
Description: Photosmart B110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8190.05 MB
Available physical RAM: 4514.63 MB
Total Pagefile: 11260.24 MB
Available Pagefile: 7644.67 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.78 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.46 GB) (Free:248.72 GB) NTFS
2 Drive d: (Windows 7 data) (Fixed) (Total:465.46 GB) (Free:373.61 GB) NTFS
4 Drive f: (HITACHI) (Fixed) (Total:931.51 GB) (Free:20.67 GB) NTFS

========================= Users: ========================================

User accounts for \\DESKTOP-PC

Administrator            Guest                    System User             
UpdatusUser             


**** End of log ****

=============================================================



#11 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 10:31 AM

AdwCleaner  RKill and FSS  logs

 

# AdwCleaner v2.114 - Logfile created 03/05/2013 at 14:42:15
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : System User - DESKTOP-PC
# Boot Mode : Normal
# Running from : C:\Users\System User\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnpmlnedpdikbgdghljdepnljfpkhccn_0
File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dnpmlnedpdikbgdghljdepnljfpkhccn_0.localstorage
File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbpcjmidkkgldeplajgnbpjkfpmpeepb_0.localstorage
File Deleted : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbpcjmidkkgldeplajgnbpjkfpmpeepb_0.localstorage-journal

***** [Registry] *****

Key Deleted : HKCU\Software\ChatZum Toolbar
Key Deleted : HKLM\Software\ChatZum Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v25.0.1364.97

File : C:\Users\System User\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [2271 octets] - [05/03/2013 14:42:15]

########## EOF - C:\AdwCleaner[S2].txt - [2331 octets] ##########

 

 

==================================================================

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/05/2013 03:04:19 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

 * FontCache => %SystemRoot%\system32\svchost.exe -k LocalService [Incorrect ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/05/2013 03:05:01 PM
Execution time: 0 hours(s), 0 minute(s), and 41 seconds(s)

 

=====================================================================

 

Farbar Service Scanner Version: 03-03-2013
Ran by System User (administrator) on 05-03-2013 at 14:40:05
Running from "C:\Users\System User\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:08 PM

Posted 05 March 2013 - 10:33 AM

Current issues?



#13 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 10:37 AM

JRT and Autoruns logs

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.8 (03.04.2013:1)
OS: Windows 7 Home Premium x64
Ran by System User on 05/03/2013 at 14:52:02.56
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\DisplayName
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\URL

 

~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\systweak
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Users\System User\AppData\Roaming\systweak"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05/03/2013 at 15:02:34.08
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

======================================================================

Autoruns

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "IntelliPoint" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "itype" "IType.exe" "Microsoft Corporation" "c:\program files\microsoft intellitype pro\itype.exe"
+ "OODefragTray" "O&O Defrag Free Edition TrayIcon (x64)" "O&O Software GmbH" "c:\program files\oo software\defrag\oodtray.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "mcpltui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
+ "mcui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "HP Digital Imaging Monitor.lnk" "HP Digital Imaging Monitor" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe"
+ "TotalMedia Backup Monitor.lnk" "" "" "File not found: C:\Program Files (x86)\ArcSoft\TotalMedia Backup\uBBMonitor.exe"
"C:\Users\System User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "BBC iPlayer Desktop.lnk" "" "" "c:\program files (x86)\bbc iplayer desktop\bbc iplayer desktop.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ApplePhotoStreams" "ApplePhotoStreams.exe" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\applephotostreams.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\system user\appdata\local\google\update\googleupdate.exe"
+ "iCloudServices" "iCloud" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\icloudservices.exe"
+ "InputDirector" "Input Director" "Imperative Software Pty Ltd" "c:\program files (x86)\input director\inputdirector.exe"
+ "Sidebar" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\program files (x86)\spotify\data\spotifywebhelper.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "application/x-mfe-ipt" "McAfee MSC IE plugin DLL" "McAfee, Inc." "c:\program files\mcafee\msc\mcsniepl64.dll"
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "dssrequest" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "sacore" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "PhotoStreamsExt" "" "" "c:\program files\common files\apple\internet services\shellstreams64.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Cover Designer" "Cover Designer" "Nero AG" "c:\program files (x86)\nero\nero8\nero coverdesigner\coveredextension.dll"
+ "NBShellHook Class" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero8\nero backitup\nbshell.dll"
+ "PhotoStreamsExt" "ShellStreams.dll" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\shellstreams.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Actual Window Manager" "Actual Window Manager Shell Extension Library" "Actual Tools" "c:\program files (x86)\actual window manager\actualwindowmanagershellextension64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Actual Window Manager" "Actual Window Manager Shell Extension Library" "Actual Tools" "c:\program files (x86)\actual window manager\actualwindowmanagershellextension.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl_x64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "PowerISO" "PowerISOShell DLL" "PowerISO Computing, Inc." "c:\program files (x86)\poweriso\pwrisosh.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "NBShellHook Class" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero8\nero backitup\nbshell.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "NBShellHook" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero8\nero backitup\nbshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "MOBK" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "MOBK2" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
+ "MOBK3" "McAfee Online Backup Shell Extensions" "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkshell.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\system user\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "HP Print Enhancer" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\ASUS\ASUS RegRun Loader" "" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\aasp\1.01.02\asloader.exe"
+ "\ASUS\TurboVHelp" "TurboVHelp" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\turbov evo\turbovhelp.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2735075353-2745935475-3570472473-1000Core" "Google Installer" "Google Inc." "c:\users\system user\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-2735075353-2745935475-3570472473-1000UA" "Google Installer" "Google Inc." "c:\users\system user\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Microsoft_Hardware_Launch_IPoint_exe" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "\Microsoft_Hardware_Launch_IType_exe" "IType.exe" "Microsoft Corporation" "c:\program files\microsoft intellitype pro\itype.exe"
+ "\MSIAfterburner" "MSIAfterburner" "" "c:\program files (x86)\msi afterburner\msiafterburner.exe"
+ "\ParetoLogic Update Version2" "ParetoLogic Update Application" "" "c:\program files (x86)\common files\paretologic\uus2\pareto_update.exe"
+ "\Scheduled Update for Ask Toolbar" "" "" "File not found: C:\Program Files (x86)\Ask.com\UpdateTask.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\{7A47EA65-671B-4EEE-A77E-1089C4872606}" "Microsoft Flight Simulator®" "Microsoft Corp." "c:\fsx program\fsx.exe"
+ "\{EF80262A-300E-4C93-A7D1-69072DEDBF4D}" "Microsoft Flight Simulator®" "Microsoft Corp." "c:\fsx program\fsx.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AsSysCtrlService" "AsSysCtr Application" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\assysctrlservice\1.00.02\assysctrlservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "HomeNetSvc" "Allows McAfee applications to communicate securely on the local network." "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC" "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "IDVistaService" "Input Director Vista Helper Service" "" "c:\program files (x86)\input director\idvistaservice.exe"
+ "InputDirector" "Input Director Background Process" "" "c:\program files (x86)\input director\idwinservice.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "McAfee SiteAdvisor Service" "McAfee SiteAdvisor Service" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McMPFSvc" "Helps protect your computer from intrusion and let's you manage your computer's trusted programs." "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McNaiAnn" "McAfee VirusScan Announcer" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McODS" "McAfee Scanner" "McAfee, Inc." "c:\program files\mcafee\virusscan\mcods.exe"
+ "mcpltsvc" "McAfee Platform Services" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "McProxy" "McAfee Proxy Service" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "mfecore" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\amcore\mcshield.exe"
+ "mfefire" "Provides firewall services to McAfee products" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "MOBKbackup" "Backs up configured files to the McAfee Online Backup servers. Please do not stop or restart this service - it could corrupt your McAfee Online Backup installation." "McAfee, Inc." "c:\program files (x86)\mcafee online backup\mobkbackup.exe"
+ "MSK80Service" "This service filters e-mail messages on your computer" "McAfee, Inc." "c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "OODefragAgent" "O&O Defrag" "O&O Software GmbH" "c:\program files\oo software\defrag\oodag.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "RapportMgmtService" "Central Rapport Management and Monitoring Service" "Trusteer Ltd." "c:\program files (x86)\trusteer\rapport\bin\rapportmgmtservice.exe"
+ "rpcapd" "Allows to capture traffic on this machine from a remote machine." "CACE Technologies, Inc." "c:\program files (x86)\winpcap\rpcapd.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files (x86)\spybot - search & destroy\sdwinsec.exe"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files (x86)\pc connectivity solution\servicelayer.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "TeamViewer7" "TeamViewer Remote Software" "TeamViewer GmbH" "c:\program files (x86)\teamviewer\version7\teamviewer_service.exe"
+ "UpdateCenterService" "Update Center Service" "NVIDIA" "c:\program files (x86)\nvidia corporation\system update\updatecenterservice.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AsIO" "" "" "c:\windows\syswow64\drivers\asio.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "Bulk1528" "" "" "File not found: System32\Drivers\Bulk1528.sys"
+ "Ca1528av" "" "" "File not found: System32\Drivers\Ca1528av.sys"
+ "cfwids" "McAfee Personal Firewall IDS Plugin" "McAfee, Inc." "c:\windows\system32\drivers\cfwids.sys"
+ "chdrvr01" "CH Control Manager Driver 1" "CH Products" "c:\windows\system32\drivers\chdrvr01.sys"
+ "chdrvr02" "CH Control Manager Driver 2" "CH Products" "c:\windows\system32\drivers\chdrvr02.sys"
+ "chdrvr03" "CH Control Manager Driver 3" "CH Products" "c:\windows\system32\drivers\chdrvr03.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpuz134" "CPUID Driver" "Windows ® Win 7 DDK provider" "c:\program files (x86)\cpuid\pc wizard 2010\pcwiz_x64.sys"
+ "cpuz135" "CPUID Driver" "CPUID" "c:\windows\system32\drivers\cpuz135_x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HipShieldK" "McAfee HIP IPS Driver" "McAfee, Inc." "c:\windows\system32\drivers\hipshieldk.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01" "" "" "File not found: C:\Windows\System32\Drivers\mfeavfk01.sys"
+ "mfefirek" "McAfee Core Firewall Engine Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mfencbdc" "McAfee Content driver Copyright © 2010 McAfee, Inc. All Rights Reserved." "McAfee, Inc." "c:\windows\system32\drivers\mfencbdc.sys"
+ "mfencrk" "McAfee Content driver Copyright © 2010 McAfee, Inc. All Rights Reserved." "McAfee, Inc." "c:\windows\system32\drivers\mfencrk.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "MOBKFilter" "McAfee Online Backup Change Monitor" "Mozy, Inc." "c:\windows\system32\drivers\mobk.sys"
+ "MTsensor" "ATK0110 ACPI Utility" "" "c:\windows\system32\drivers\asacpi.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbx64.sys"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbox64.sys"
+ "nmwcdnsucx64" "Nokia USB Phone Generic Client" "Nokia" "c:\windows\system32\drivers\nmwcdnsucx64.sys"
+ "nmwcdnsux64" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\nmwcdnsux64.sys"
+ "NPF" "npf.sys (NT5/6 AMD64) Kernel Driver" "CACE Technologies, Inc." "c:\windows\system32\drivers\npf.sys"
+ "npusbio" "Generic USB Driver" "" "c:\windows\system32\drivers\npusbio_x64.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 306.97 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvoclk64" "NVIDIA System Utility Driver" "NVIDIA Corp." "c:\windows\system32\drivers\nvoclk64.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfdx64.sys"
+ "PROCEXP151" "" "" "File not found: C:\Windows\system32\Drivers\PROCEXP151.SYS"
+ "PSSDK42" "PSSDK Driver Protocol v4.2 64bit" "microOLAP Technologies LTD" "c:\windows\system32\drivers\pssdk42.sys"
+ "PSSDKLBF" "PSSDK Driver LoopBack v4.2 64bit" "microOLAP Technologies LTD" "c:\windows\system32\drivers\pssdklbf.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RapportCerberus_50414" "" "" "c:\programdata\trusteer\rapport\store\exts\rapportcerberus\baseline\rapportcerberus64_50414.sys"
+ "RapportEI64" "RapportEI" "Trusteer Ltd." "c:\program files (x86)\trusteer\rapport\bin\x64\rapportei64.sys"
+ "RapportKE64" "RapportKE" "Trusteer Ltd." "c:\windows\system32\drivers\rapportke64.sys"
+ "RapportPG64" "RapportPG64" "Trusteer Ltd." "c:\program files (x86)\trusteer\rapport\bin\x64\rapportpg64.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys"
+ "SCDEmu" "PowerISO Virtual Drive" "PowerISO Computing, Inc." "c:\windows\system32\drivers\scdemu.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SQTECH900C" "Universal Serial Bus Camera Driver" "Service & Quality Technology." "c:\windows\system32\drivers\capt900c.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltx64.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltjx64.sys"
+ "VIAHdAudAddService" "VIA High Definition Audio Function Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viahduaa.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.dv25" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.dv50" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "vidc.dvh1" "Matrox VFW DV100 Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv100.dll"
+ "vidc.dvsd" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwdv.dll"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\system32\frapsv64.dll"
+ "vidc.M101" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfw.dll"
+ "vidc.M102" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwhd.dll"
+ "vidc.M103" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwyuva.dll"
+ "vidc.M104" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwyuvahd.dll"
+ "vidc.M301" "Matrox VFW RefAVI Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwrefavi.dll"
+ "vidc.M701" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hd.dll"
+ "vidc.M702" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hdoffline.dll"
+ "vidc.M703" "Matrox VFW Mpeg-2 HDV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2hdv.dll"
+ "vidc.M704" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2alpha.dll"
+ "vidc.M705" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2alphahd.dll"
+ "vidc.MJPG" "Matrox VFW Mjpeg Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmjpeg.dll"
+ "vidc.MMES" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw64\mvcvfwmpeg2.dll"
+ "VIDC.RTV1" "" "" "c:\windows\system32\rtvcvfw64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.dv25" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "vidc.dv50" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "vidc.dvh1" "Matrox VFW DV100 Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv100.dll"
+ "vidc.dvsd" "Matrox VFW DV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwdv.dll"
+ "VIDC.FPS1" "Fraps" "Beepa P/L" "c:\windows\syswow64\frapsvid.dll"
+ "vidc.M101" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfw.dll"
+ "vidc.M102" "Matrox VFW Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwhd.dll"
+ "vidc.M103" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwyuva.dll"
+ "vidc.M104" "Matrox YUVA Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwyuvahd.dll"
+ "vidc.M301" "Matrox VFW RefAVI Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwrefavi.dll"
+ "vidc.M701" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hd.dll"
+ "vidc.M702" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hdoffline.dll"
+ "vidc.M703" "Matrox VFW Mpeg-2 HDV Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2hdv.dll"
+ "vidc.M704" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2alpha.dll"
+ "vidc.M705" "Matrox VfwMpeg2Alpha Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2alphahd.dll"
+ "vidc.MJPG" "Matrox VFW Mjpeg Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmjpeg.dll"
+ "vidc.MMES" "Matrox VFW Mpeg-2 HD Driver" "Matrox Electronic Systems" "c:\program files\matrox vfw software codecs\vfw32\mvcvfwmpeg2.dll"
+ "VIDC.RTV1" "" "" "c:\windows\syswow64\rtvcvfw32.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DV Scenes" "DV-Timecode based Scenechange Detection" "Nero AG" "c:\program files (x86)\nero\nero8\nero vision\nvdv.dll"
+ "DV Source Filter" "DV-Timecode based Scenechange Detection" "Nero AG" "c:\program files (x86)\nero\nero8\nero vision\nvdv.dll"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzaacdecfilter.dll"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdmp4muxfilter.dll"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp4source.dll"
+ "Emuzed H264 Video Decoder-Filter" "Emuzed H.264 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdh264dectfilter.dll"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp3sourcefilter.dll"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzdecmp4_h263.dll"
+ "NeAudio2" "Nero Audio Decoder 2" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudio2.ax"
+ "NeAudioRender" "Nero Audio Renderer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudiorender.ax"
+ "Nero Audible Decoder" "Nero Audible Decoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudible.ax"
+ "Nero Audio CD Filter" "Nero Audio CD Source Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudcd.ax"
+ "Nero Audio CD Navigator" "Nero Audio CD Source Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neaudcd.ax"
+ "Nero Audio Transcoder" "Audio Transcoding Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\netranscoder.ax"
+ "Nero AV Synchronizer" "Audio/Video Synchronizer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neavsync.ax"
+ "Nero Colorspace Converter" "Colorspace Converter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\necolorspace.ax"
+ "Nero Deinterlace" "Deinterlacing Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nedeinterlace.ax"
+ "Nero Digital Audio Encoder 8" "AAC LC/HE Audio Encoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendaud.ax"
+ "Nero Digital File Writer 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Muxer 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Null Renderer 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Subpicture Enc 8" "NeroDigital File Format Muxer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendmux.ax"
+ "Nero Digital Video Enc 8" "MPEG4 and H.264 (AVC) Video Encoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nendvid.ax"
+ "Nero DV Splitter" "DV Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nedvsplitter.ax"
+ "Nero DVD Decoder" "MPEG-1/2/4 & AVC video decoder w/ DxVA" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideo.ax"
+ "Nero DVD Navigator" "DVD Navigator Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nedvd.ax"
+ "Nero Elementary Stream Parser" "Nero Elementary Stream Parser" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neesparser.ax"
+ "Nero File Source (Async.)" "Nero Home" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nefilesourceasync.ax"
+ "Nero FLV Splitter" "Nero FLV Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neflvsplitter.ax"
+ "Nero Frame Capture" "Direct Show frame grabber filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\necapture.ax"
+ "Nero Framerate Converter" "Framerate Conversion DirectShow Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neframerate.ax"
+ "Nero HD Audio Mixer" "Nero Audio Mixer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nehdaudiomixer.ax"
+ "Nero InteractiveGraphics Decoder" "Graphics Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nebdgraphic.ax"
+ "Nero MP2 Audio Encoder" "MP2 Audio Encoding Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nemp2audioenc.ax"
+ "Nero MP3 Encoder" "MP3 Encoding Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nemp3encoder.ax"
+ "Nero MP4 Splitter" "MP4 Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nemp4splitter.ax"
+ "Nero Mpeg Video Encoder" "NeroMpeg Dynamic Link Library" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nempegvideoenc.ax"
+ "Nero Mpeg2 Encoder" "MPEG 1/2 encoder filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevcr.ax"
+ "Nero Ogg Splitter" "Ogg Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neoggsplitter.ax"
+ "Nero Photo Source" "Nero Home" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nephotosource.ax"
+ "Nero PresentationGraphics Decoder" "Graphics Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nebdgraphic.ax"
+ "Nero PS Muxer" "PS Muxer Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nepsmuxer.ax"
+ "Nero QuickTime™ Audio Decoder" "QuickTime™ Decoder Wrapper" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neqtdec.ax"
+ "Nero QuickTime™ Video Decoder" "QuickTime™ Decoder Wrapper" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neqtdec.ax"
+ "Nero Resize" "Resizing Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neresize.ax"
+ "Nero Scene Change Detector" "Scene Change Detector" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nescenedetector.ax"
+ "Nero Scene Change Detector" "Scene Change Detector" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nescenedetector.ax"
+ "Nero Sound Processor" "Nero Sound Processor" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesoundproc.ax"
+ "Nero Splitter" "Splitter Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesplitter.ax"
+ "Nero Stream Buffer Sink" "Nero Stream Buffer Engine" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesbe.ax"
+ "Nero Stream Buffer Source" "Nero Stream Buffer Engine" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesbe.ax"
+ "Nero Subpicture Decoder" "Nero Subpicture Decoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesubpicture.ax"
+ "Nero Subtitle" "Subtitle Renderer & Mixer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesubtitle.ax"
+ "Nero Teletext Decoder" "Teletext Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\neteletext.ax"
+ "Nero Thumbnail Decoder" "Thumbnail Decoder Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nebdthumbnail.ax"
+ "Nero TS Muxer" "Nero Transport Stream Muxltiplexer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\netsmuxer.ax"
+ "Nero Vcd Navigator" "Nero Vcd Navigator Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevcd.ax"
+ "Nero Video Analyzer" "Nero Video Analyzer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideoanalyzer.ax"
+ "Nero Video Decoder" "MPEG-1/2/4 & AVC video decoder w/ DxVA" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideo.ax"
+ "Nero Video Decoder HD" "Nero HD Video Decoder" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideohd.ax"
+ "Nero Video Processor" "Resize / Deinterlace / Color Correction / Film Effect / Frame Capture Filter" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nerovideoproc.ax"
+ "Nero Video Renderer" "Nero Video Renderer" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nevideorenderer.ax"
+ "NeroVobuGenerator" "Nero Vobu Generator" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nerovobugenerator.ax"
+ "NeSoundSwitch" "Nero Sound Switcher" "Nero AG" "c:\program files (x86)\common files\nero\dsfilter\nesoundswitch.ax"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiah264hpmpdectfilter.dll"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiadecmp4asp_h263.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\Software\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "Sony Raw File Decoder" "Sony RAW Driver (x64)" "Sony Corporation" "c:\program files (x86)\sony\raw driver\srfcodec.dll"
+ "{42553C8F-FF8C-45C9-A37A-C3939F7C016B}" "Microsoft Raw Codec" "Microsoft Corporation" "c:\program files\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "{42553C8F-FF8C-45C9-A37A-C3939F7C016B}" "Microsoft Raw Codec" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Epson Inbox Language Monitor01" "Epson Printer Driver" "SEIKO EPSON CORPORATION" "c:\windows\system32\ep0slm01.dll"
+ "hpf3l092.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l092.dll"
+ "hpf3l101.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l101.dll"
+ "PCL hpz3l4x6" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3l4x6.dll"
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll"
"C:\Users\System User\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-us\Gadget.xml"
 



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:08 PM

Posted 05 March 2013 - 10:38 AM

Current issues?



#15 zimmer46

zimmer46
  • Topic Starter

  • Members
  • 166 posts
  • OFFLINE
  •  
  • Local time:12:08 AM

Posted 05 March 2013 - 10:55 AM

No issues since I got rid of the initial infection.  Are you happy with what you see in the logs ?  Any underlying problems ?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users