Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer is still running slow after I tried removing a redirect virus on my own


  • Please log in to reply
15 replies to this topic

#1 skpaul28

skpaul28

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 04 March 2013 - 05:26 PM

Hi,

 

The issue started a few weeks ago, and I think i'm in over my head.  One of my sons picked up what appeared to be a redirect virus.  I came to Bleeping Computer to look for similar situations and found one that looked like mine.  Having had some experience with virus removal before, I felt comfortable running several of the suggested programs, including rkill, Malwarebytes, Esets online scanner.  Of the programs I ran, only Esets detected anything and, removed it, or so I thought.  However the computer is still very sluggish, starting up just fine, but slowing down the longer you use the computer.

 

I'm running Windows 7 Home Premium on an HP DV7.  I'm using Malwarebytes Pro for active protection.

 

I appreciate any help you can give.

 

Thank you

 

Steve



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 AM

Posted 04 March 2013 - 05:37 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 08:00 AM

Hi narenxp,
 
Thank you for your help.  I truly appreciate it.
 
I'm having some difficulties getting the TDSS log to post.  I'm going to start with the aswMBR and Eset reports to see if a smaller post will work instead.
 
Steve
 
aswMBR
 
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-04 19:49:53
-----------------------------
19:49:53.024    OS Version: Windows x64 6.1.7601 Service Pack 1
19:49:53.024    Number of processors: 4 586 0x2505
19:49:53.025    ComputerName: PAVILIONDV7  UserName: Steve
19:49:57.808    Initialize success
19:52:53.732    AVAST engine defs: 13030402
19:53:24.742    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:53:24.747    Disk 0 Vendor: ST964032 0002 Size: 610480MB BusType: 3
19:53:24.772    Disk 0 MBR read successfully
19:53:24.776    Disk 0 MBR scan
19:53:24.783    Disk 0 unknown MBR code
19:53:24.791    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          199 MB offset 2048
19:53:24.806    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       579001 MB offset 409600
19:53:24.843    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        31175 MB offset 1186203648
19:53:24.861    Disk 0 Partition 4 00     0C    FAT32 LBA MSDOS5.0      103 MB offset 1250050048
19:53:24.913    Disk 0 scanning C:\Windows\system32\drivers
19:53:39.702    Service scanning
19:54:21.287    Modules scanning
19:54:21.302    Disk 0 trace - called modules:
19:54:21.655    ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys hal.dll 
19:54:21.664    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006b7f060]
19:54:21.673    3 CLASSPNP.SYS[fffff88001b8843f] -> nt!IofCallDriver -> [0xfffffa80069ea9d0]
19:54:21.682    5 hpdskflt.sys[fffff88001b2f189] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006884050]
19:54:32.881    AVAST engine scan C:\Windows
19:54:36.354    AVAST engine scan C:\Windows\system32
19:58:55.643    AVAST engine scan C:\Windows\system32\drivers
19:59:15.206    AVAST engine scan C:\Users\Steve
20:02:27.498    AVAST engine scan C:\ProgramData
20:07:04.107    Scan finished successfully
20:08:12.859    Disk 0 MBR has been saved successfully to "C:\Users\Steve\Desktop\MBR.dat"
20:08:12.868    The log file has been saved successfully to "C:\Users\Steve\Desktop\aswMBR.txt"
 
Eset
 
C:\$Recycle.Bin\S-1-5-21-3771651234-2725644926-208637320-1001\$RVH4UQF    multiple threats    deleted - quarantined
C:\Users\Steve\Downloads\GraboidVideoSetup-3.1-Complete.exe    Win32/Graboid application    cleaned by deleting - quarantined
C:\Users\Steve\Downloads\iLividSetupV1 (1).exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Users\Steve\Downloads\iLividSetupV1.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Users\Steve\Downloads\PhotoPosPro_SetUp.exe    Win32/Toolbar.Zugo application    cleaned by deleting - quarantined
C:\Users\Steve\Downloads\SweetHome3D-3.7-windows-oc.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
 


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 AM

Posted 05 March 2013 - 08:07 AM

.


Edited by narenxp, 05 March 2013 - 08:13 AM.


#5 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 08:10 AM

Okay...that worked!  :bananas:  I still, however, cannot get the TDSS log up in one post, so I'm going to break it into two....
 
19:37:12.0474 3760  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:37:12.0927 3760  ============================================================
19:37:12.0927 3760  Current date / time: 2013/03/04 19:37:12.0927
19:37:12.0927 3760  SystemInfo:
19:37:12.0927 3760  
19:37:12.0927 3760  OS Version: 6.1.7601 ServicePack: 1.0
19:37:12.0927 3760  Product type: Workstation
19:37:12.0927 3760  ComputerName: PAVILIONDV7
19:37:12.0927 3760  UserName: Steve
19:37:12.0927 3760  Windows directory: C:\Windows
19:37:12.0927 3760  System windows directory: C:\Windows
19:37:12.0927 3760  Running under WOW64
19:37:12.0927 3760  Processor architecture: Intel x64
19:37:12.0927 3760  Number of processors: 4
19:37:12.0927 3760  Page size: 0x1000
19:37:12.0927 3760  Boot type: Normal boot
19:37:12.0927 3760  ============================================================
19:37:15.0860 3760  BG loaded
19:37:16.0468 3760  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:37:16.0484 3760  ============================================================
19:37:16.0484 3760  \Device\Harddisk0\DR0:
19:37:16.0484 3760  MBR partitions:
19:37:16.0484 3760  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
19:37:16.0484 3760  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x46ADC800
19:37:16.0484 3760  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x46B40800, BlocksNum 0x3CE3800
19:37:16.0484 3760  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A824000, BlocksNum 0x33AB0
19:37:16.0484 3760  ============================================================
19:37:16.0562 3760  C: <-> \Device\Harddisk0\DR0\Partition2
19:37:19.0822 3760  D: <-> \Device\Harddisk0\DR0\Partition3
19:37:19.0822 3760  ============================================================
19:37:19.0822 3760  Initialize success
19:37:19.0822 3760  ============================================================
19:39:17.0587 5492  ============================================================
19:39:17.0587 5492  Scan started
19:39:17.0587 5492  Mode: Manual; TDLFS; 
19:39:17.0587 5492  ============================================================
19:39:23.0406 5492  ================ Scan system memory ========================
19:39:23.0406 5492  System memory - ok
19:39:23.0407 5492  ================ Scan services =============================
19:39:25.0255 5492  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:39:25.0259 5492  1394ohci - ok
19:39:25.0453 5492  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
19:39:25.0454 5492  Accelerometer - ok
19:39:25.0689 5492  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:39:25.0698 5492  ACPI - ok
19:39:25.0839 5492  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:39:25.0842 5492  AcpiPmi - ok
19:39:26.0389 5492  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:39:26.0389 5492  AdobeARMservice - ok
19:39:26.0495 5492  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
19:39:26.0505 5492  adp94xx - ok
19:39:26.0571 5492  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
19:39:26.0592 5492  adpahci - ok
19:39:26.0716 5492  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
19:39:26.0721 5492  adpu320 - ok
19:39:26.0794 5492  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:39:26.0795 5492  AeLookupSvc - ok
19:39:26.0989 5492  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
19:39:26.0990 5492  AESTFilters - ok
19:39:27.0343 5492  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
19:39:27.0348 5492  AFD - ok
19:39:27.0395 5492  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:39:27.0399 5492  agp440 - ok
19:39:27.0521 5492  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
19:39:27.0524 5492  ALG - ok
19:39:27.0668 5492  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:39:27.0671 5492  aliide - ok
19:39:27.0888 5492  [ 48619A29F9C9C3CFEB66718DD03D8057 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:39:27.0890 5492  AMD External Events Utility - ok
19:39:27.0946 5492  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
19:39:27.0954 5492  amdide - ok
19:39:28.0051 5492  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
19:39:28.0059 5492  AmdK8 - ok
19:39:29.0623 5492  [ 06BF0785DE714637EBA9BB1084B28626 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
19:39:29.0695 5492  amdkmdag - ok
19:39:29.0754 5492  [ 2DEC3274589FF6889AB05ADCEEB0F642 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
19:39:29.0757 5492  amdkmdap - ok
19:39:29.0969 5492  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
19:39:29.0972 5492  AmdPPM - ok
19:39:30.0272 5492  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:39:30.0281 5492  amdsata - ok
19:39:30.0390 5492  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
19:39:30.0394 5492  amdsbs - ok
19:39:30.0484 5492  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:39:30.0492 5492  amdxata - ok
19:39:30.0722 5492  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
19:39:30.0724 5492  AppID - ok
19:39:30.0790 5492  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:39:30.0792 5492  AppIDSvc - ok
19:39:30.0946 5492  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
19:39:30.0947 5492  Appinfo - ok
19:39:31.0074 5492  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
19:39:31.0077 5492  arc - ok
19:39:31.0216 5492  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
19:39:31.0219 5492  arcsas - ok
19:39:31.0278 5492  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:39:31.0284 5492  AsyncMac - ok
19:39:31.0362 5492  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
19:39:31.0364 5492  atapi - ok
19:39:31.0510 5492  [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
19:39:31.0516 5492  AtiHdmiService - ok
19:39:31.0716 5492  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:39:31.0722 5492  AudioEndpointBuilder - ok
19:39:31.0829 5492  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:39:31.0835 5492  AudioSrv - ok
19:39:32.0184 5492  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:39:32.0187 5492  AxInstSV - ok
19:39:32.0378 5492  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
19:39:32.0399 5492  b06bdrv - ok
19:39:32.0634 5492  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:39:32.0683 5492  b57nd60a - ok
19:39:32.0824 5492  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:39:32.0827 5492  BDESVC - ok
19:39:32.0924 5492  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:39:32.0925 5492  Beep - ok
19:39:33.0225 5492  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
19:39:33.0232 5492  BFE - ok
19:39:33.0355 5492  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
19:39:33.0364 5492  BITS - ok
19:39:33.0554 5492  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:39:33.0555 5492  blbdrive - ok
19:39:33.0596 5492  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:39:33.0598 5492  bowser - ok
19:39:33.0656 5492  [ F46DD257FAD7D2D097EF32E72220A06C ] bpenum          C:\Windows\system32\DRIVERS\bpenum.sys
19:39:33.0657 5492  bpenum - ok
19:39:33.0717 5492  [ E82060AED0F28ED8909F2B07FA276185 ] bpmp            C:\Windows\system32\DRIVERS\bpmp.sys
19:39:33.0719 5492  bpmp - ok
19:39:33.0793 5492  [ FC6313A5A45C1AE53D0491F0057D5A4D ] bpusb           C:\Windows\system32\Drivers\bpusb.sys
19:39:33.0795 5492  bpusb - ok
19:39:33.0917 5492  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:39:33.0926 5492  BrFiltLo - ok
19:39:33.0976 5492  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:39:33.0978 5492  BrFiltUp - ok
19:39:34.0037 5492  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
19:39:34.0039 5492  Browser - ok
19:39:34.0227 5492  [ 6DF544E72FF139E8FBBBA6D0E569BEA5 ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
19:39:34.0231 5492  BrSerIb - ok
19:39:34.0362 5492  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:39:34.0373 5492  Brserid - ok
19:39:34.0390 5492  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:39:34.0396 5492  BrSerWdm - ok
19:39:34.0425 5492  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:39:34.0432 5492  BrUsbMdm - ok
19:39:34.0496 5492  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:39:34.0498 5492  BrUsbSer - ok
19:39:34.0591 5492  [ 80082AD46578F0D3270D2E56D6433082 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
19:39:34.0595 5492  BrUsbSIb - ok
19:39:34.0700 5492  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
19:39:34.0703 5492  BrYNSvc - ok
19:39:34.0785 5492  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:39:34.0788 5492  BTHMODEM - ok
19:39:34.0830 5492  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
19:39:34.0839 5492  bthserv - ok
19:39:34.0915 5492  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:39:34.0919 5492  cdfs - ok
19:39:34.0979 5492  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:39:34.0980 5492  cdrom - ok
19:39:35.0072 5492  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
19:39:35.0082 5492  CertPropSvc - ok
19:39:35.0186 5492  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
19:39:35.0187 5492  circlass - ok
19:39:35.0383 5492  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
19:39:35.0391 5492  CLFS - ok
19:39:35.0526 5492  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:39:35.0530 5492  clr_optimization_v2.0.50727_32 - ok
19:39:35.0675 5492  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:39:35.0679 5492  clr_optimization_v2.0.50727_64 - ok
19:39:36.0061 5492  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:39:36.0188 5492  clr_optimization_v4.0.30319_32 - ok
19:39:36.0518 5492  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:39:36.0520 5492  clr_optimization_v4.0.30319_64 - ok
19:39:36.0620 5492  [ D68D9F4D53010B7E84D4E80A2E485554 ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
19:39:36.0620 5492  clwvd - ok
19:39:36.0767 5492  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:39:36.0767 5492  CmBatt - ok
19:39:36.0800 5492  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:39:36.0806 5492  cmdide - ok
19:39:37.0013 5492  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
19:39:37.0039 5492  CNG - ok
19:39:37.0153 5492  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:39:37.0156 5492  Compbatt - ok
19:39:37.0272 5492  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:39:37.0273 5492  CompositeBus - ok
19:39:37.0293 5492  COMSysApp - ok
19:39:37.0353 5492  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
19:39:37.0358 5492  crcdisk - ok
19:39:37.0470 5492  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:39:37.0473 5492  CryptSvc - ok
19:39:37.0586 5492  [ C7259495924D21F1AFA26467D9F4DAE0 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
19:39:37.0590 5492  dc3d - ok
19:39:37.0894 5492  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:39:37.0901 5492  DcomLaunch - ok
19:39:38.0074 5492  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
19:39:38.0079 5492  defragsvc - ok
19:39:38.0387 5492  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:39:38.0389 5492  DfsC - ok
19:39:38.0515 5492  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:39:38.0519 5492  Dhcp - ok
19:39:38.0575 5492  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
19:39:38.0576 5492  discache - ok
19:39:38.0636 5492  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
19:39:38.0639 5492  Disk - ok
19:39:39.0056 5492  [ 61458C120CDDFE7514E2DB125568CA59 ] DMAgent         C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
19:39:39.0060 5492  DMAgent - ok
19:39:39.0082 5492  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:39:39.0085 5492  Dnscache - ok
19:39:39.0301 5492  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:39:39.0307 5492  dot3svc - ok
19:39:39.0485 5492  [ EAC9D9868D37C8785D12475A9BB65A11 ] DpHost          C:\Program Files\DigitalPersona\Bin\DpHostW.exe
19:39:39.0489 5492  DpHost - ok
19:39:39.0599 5492  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
19:39:39.0601 5492  DPS - ok
19:39:39.0711 5492  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:39:39.0716 5492  drmkaud - ok
19:39:41.0086 5492  [ 1ED08A6264C5C92099D6D1DAE5E8F530 ] DrvAgent64      C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
19:39:41.0089 5492  DrvAgent64 - ok
19:39:41.0310 5492  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:39:41.0320 5492  DXGKrnl - ok
19:39:41.0445 5492  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
19:39:41.0446 5492  EapHost - ok
19:39:41.0853 5492  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
19:39:42.0072 5492  ebdrv - ok
19:39:42.0157 5492  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
19:39:42.0159 5492  EFS - ok
19:39:42.0436 5492  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:39:42.0467 5492  ehRecvr - ok
19:39:42.0534 5492  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
19:39:42.0537 5492  ehSched - ok
19:39:42.0724 5492  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
19:39:42.0815 5492  elxstor - ok
19:39:42.0926 5492  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:39:42.0929 5492  ErrDev - ok
19:39:43.0231 5492  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
19:39:43.0235 5492  EventSystem - ok
19:39:43.0600 5492  [ BDFCB7E8C108D042B213957D2B044E7E ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:39:43.0613 5492  EvtEng - ok
19:39:43.0804 5492  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
19:39:43.0808 5492  exfat - ok
19:39:43.0999 5492  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:39:44.0001 5492  fastfat - ok
19:39:44.0195 5492  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
19:39:44.0202 5492  Fax - ok
19:39:44.0236 5492  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:39:44.0239 5492  fdc - ok
19:39:44.0311 5492  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
19:39:44.0312 5492  fdPHost - ok
19:39:44.0339 5492  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:39:44.0340 5492  FDResPub - ok
19:39:44.0396 5492  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:39:44.0398 5492  FileInfo - ok
19:39:44.0446 5492  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:39:44.0455 5492  Filetrace - ok
19:39:44.0497 5492  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:39:44.0501 5492  flpydisk - ok
19:39:44.0590 5492  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:39:44.0592 5492  FltMgr - ok
19:39:44.0842 5492  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
19:39:44.0854 5492  FontCache - ok
19:39:45.0042 5492  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:39:45.0049 5492  FontCache3.0.0.0 - ok
19:39:45.0124 5492  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:39:45.0126 5492  FsDepends - ok
19:39:45.0172 5492  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:39:45.0183 5492  Fs_Rec - ok
19:39:45.0241 5492  [ 281A153B01D414F894506026C08A6ADB ] FTDIBUS         C:\Windows\system32\drivers\ftdibus.sys
19:39:45.0244 5492  FTDIBUS - ok
19:39:45.0268 5492  [ CC4801E9EEEEFF877229DB0796CDF5A6 ] FTSER2K         C:\Windows\system32\drivers\ftser2k.sys
19:39:45.0272 5492  FTSER2K - ok
19:39:45.0416 5492  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:39:45.0419 5492  fvevol - ok
19:39:45.0502 5492  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
19:39:45.0513 5492  gagp30kx - ok
19:39:45.0699 5492  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
19:39:45.0708 5492  gpsvc - ok
19:39:45.0805 5492  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:39:45.0809 5492  hcw85cir - ok
19:39:46.0053 5492  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:39:46.0268 5492  HdAudAddService - ok
19:39:46.0464 5492  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:39:46.0465 5492  HDAudBus - ok
19:39:46.0544 5492  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
19:39:46.0545 5492  HECIx64 - ok
19:39:46.0625 5492  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
19:39:46.0627 5492  HidBatt - ok
19:39:46.0666 5492  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
19:39:46.0670 5492  HidBth - ok
19:39:46.0700 5492  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
19:39:46.0711 5492  HidIr - ok
19:39:46.0777 5492  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
19:39:46.0779 5492  hidserv - ok
19:39:46.0835 5492  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:39:46.0836 5492  HidUsb - ok
19:39:46.0894 5492  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:39:46.0899 5492  hkmsvc - ok
19:39:46.0997 5492  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:39:47.0002 5492  HomeGroupListener - ok
19:39:47.0040 5492  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:39:47.0043 5492  HomeGroupProvider - ok
19:39:47.0286 5492  [ 45A12CACB97B4F15858FCFD59355A1E9 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
19:39:47.0287 5492  HP Health Check Service - ok
19:39:47.0468 5492  [ C930128C8F8FF03D8F8C42B570920D56 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
19:39:47.0469 5492  HP Wireless Assistant Service - ok
19:39:47.0599 5492  [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
19:39:47.0602 5492  HPClientSvc - ok
19:39:47.0806 5492  [ F55442690A70A0278A7EED4FAAEBF576 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
19:39:47.0807 5492  HPDrvMntSvc.exe - ok
19:39:47.0836 5492  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
19:39:47.0838 5492  hpdskflt - ok
19:39:47.0994 5492  [ 640E51DB253265C3EAC075866B3D2B33 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
19:39:48.0002 5492  hpqwmiex - ok
19:39:48.0123 5492  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:39:48.0129 5492  HpSAMD - ok
19:39:48.0405 5492  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\Windows\system32\Hpservice.exe
19:39:48.0407 5492  hpsrv - ok
19:39:48.0620 5492  [ 854197D1270D20193FE2D4B14784AADE ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
19:39:48.0621 5492  HPWMISVC - ok
19:39:48.0712 5492  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:39:48.0719 5492  HTTP - ok
19:39:48.0759 5492  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:39:48.0759 5492  hwpolicy - ok
19:39:48.0804 5492  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:39:48.0805 5492  i8042prt - ok
19:39:48.0924 5492  [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
19:39:48.0929 5492  iaStor - ok
19:39:49.0123 5492  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:39:49.0142 5492  iaStorV - ok
19:39:49.0429 5492  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:39:49.0576 5492  idsvc - ok
19:39:52.0321 5492  [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:39:52.0631 5492  igfx - ok
19:39:52.0774 5492  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
19:39:52.0777 5492  iirsp - ok
19:39:53.0104 5492  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
19:39:53.0114 5492  IKEEXT - ok
19:39:53.0201 5492  [ 36FDF367A1DABFF903E2214023D71368 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
19:39:53.0203 5492  Impcd - ok
19:39:53.0257 5492  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
19:39:53.0266 5492  intelide - ok
19:39:55.0716 5492  [ 1BE8D9CA4F2363B8E8015621878E0043 ] intelkmd        C:\Windows\system32\DRIVERS\igdpmd64.sys
19:39:55.0815 5492  intelkmd - ok
19:39:55.0895 5492  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:39:55.0896 5492  intelppm - ok
19:39:56.0058 5492  [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
19:39:56.0059 5492  IntuitUpdateServiceV4 - ok
19:39:56.0141 5492  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:39:56.0143 5492  IPBusEnum - ok
19:39:56.0310 5492  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:39:56.0316 5492  IpFilterDriver - ok
19:39:56.0756 5492  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:39:56.0762 5492  iphlpsvc - ok
19:39:57.0082 5492  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:39:57.0100 5492  IPMIDRV - ok
19:39:57.0146 5492  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:39:57.0149 5492  IPNAT - ok
19:39:57.0284 5492  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:39:57.0289 5492  IRENUM - ok
19:39:57.0334 5492  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:39:57.0340 5492  isapnp - ok
19:39:57.0529 5492  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:39:57.0536 5492  iScsiPrt - ok
19:39:57.0618 5492  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:39:57.0618 5492  kbdclass - ok
19:39:57.0813 5492  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
19:39:57.0899 5492  kbdhid - ok
19:39:57.0971 5492  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
19:39:57.0973 5492  KeyIso - ok
19:39:58.0283 5492  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:39:58.0285 5492  KSecDD - ok
19:39:58.0325 5492  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:39:58.0329 5492  KSecPkg - ok
19:39:58.0654 5492  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:39:58.0654 5492  ksthunk - ok
19:39:58.0873 5492  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:39:59.0178 5492  KtmRm - ok
19:39:59.0509 5492  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:39:59.0513 5492  LanmanServer - ok
19:39:59.0789 5492  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:39:59.0793 5492  LanmanWorkstation - ok
19:40:00.0739 5492  [ 7772DFAB22611050B79504E671B06E6E ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
19:40:00.0849 5492  LBTServ - ok
19:40:01.0236 5492  [ 8817ABA3A9180F6C4B8938842925B1E1 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
19:40:01.0258 5492  LEqdUsb - ok
19:40:01.0577 5492  [ 8BCB069C2B6DA65B5F6F561293EE447C ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
19:40:01.0580 5492  LHidEqd - ok
19:40:01.0774 5492  [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
19:40:01.0775 5492  LHidFilt - ok
19:40:02.0073 5492  [ FCBDCC6F1801E32244235608E1277752 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:40:02.0074 5492  LightScribeService - ok
19:40:02.0584 5492  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:40:02.0585 5492  lltdio - ok
19:40:02.0864 5492  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:40:02.0923 5492  lltdsvc - ok
19:40:02.0955 5492  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:40:02.0958 5492  lmhosts - ok
19:40:03.0196 5492  [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
19:40:03.0197 5492  LMouFilt - ok
19:40:03.0867 5492  [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:40:03.0870 5492  LMS - ok
19:40:04.0101 5492  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
19:40:04.0111 5492  LSI_FC - ok
19:40:04.0220 5492  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
19:40:04.0223 5492  LSI_SAS - ok
19:40:04.0259 5492  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:40:04.0268 5492  LSI_SAS2 - ok
19:40:04.0300 5492  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:40:04.0304 5492  LSI_SCSI - ok
19:40:04.0364 5492  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
19:40:04.0365 5492  luafv - ok
19:40:04.0886 5492  [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
19:40:04.0887 5492  MBAMProtector - ok
19:40:05.0321 5492  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:40:05.0325 5492  MBAMScheduler - ok
19:40:05.0569 5492  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:40:05.0575 5492  MBAMService - ok
19:40:05.0816 5492  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:40:05.0821 5492  Mcx2Svc - ok
19:40:05.0862 5492  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
19:40:05.0864 5492  megasas - ok
19:40:06.0107 5492  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
19:40:06.0445 5492  MegaSR - ok
19:40:07.0113 5492  Microsoft SharePoint Workspace Audit Service - ok
19:40:07.0253 5492  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
19:40:07.0255 5492  MMCSS - ok
19:40:07.0277 5492  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
19:40:07.0281 5492  Modem - ok
19:40:07.0298 5492  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:40:07.0299 5492  monitor - ok
19:40:07.0399 5492  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:40:07.0400 5492  mouclass - ok
19:40:07.0564 5492  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:40:07.0565 5492  mouhid - ok
19:40:07.0674 5492  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:40:07.0678 5492  mountmgr - ok
19:40:07.0731 5492  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:40:07.0735 5492  mpio - ok
19:40:07.0872 5492  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:40:07.0873 5492  mpsdrv - ok
19:40:08.0128 5492  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:40:08.0137 5492  MpsSvc - ok
19:40:08.0305 5492  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:40:08.0310 5492  MRxDAV - ok
19:40:08.0426 5492  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:40:08.0427 5492  mrxsmb - ok
19:40:08.0573 5492  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:40:08.0576 5492  mrxsmb10 - ok
19:40:08.0698 5492  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:40:08.0700 5492  mrxsmb20 - ok
19:40:08.0902 5492  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:40:08.0909 5492  msahci - ok
19:40:09.0119 5492  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:40:09.0122 5492  msdsm - ok
19:40:09.0214 5492  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
19:40:09.0219 5492  MSDTC - ok
19:40:09.0435 5492  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:40:09.0435 5492  Msfs - ok
19:40:09.0568 5492  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:40:09.0574 5492  mshidkmdf - ok
19:40:09.0677 5492  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:40:09.0679 5492  msisadrv - ok
19:40:10.0356 5492  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:40:10.0541 5492  MSiSCSI - ok
19:40:10.0547 5492  msiserver - ok
19:40:10.0621 5492  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:40:10.0642 5492  MSKSSRV - ok
19:40:10.0764 5492  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:40:10.0766 5492  MSPCLOCK - ok
19:40:10.0933 5492  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:40:10.0943 5492  MSPQM - ok
19:40:11.0171 5492  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:40:11.0273 5492  MsRPC - ok
19:40:11.0383 5492  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:40:11.0384 5492  mssmbios - ok
19:40:11.0557 5492  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:40:11.0559 5492  MSTEE - ok
19:40:11.0756 5492  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
19:40:11.0763 5492  MTConfig - ok
19:40:11.0830 5492  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:40:11.0832 5492  Mup - ok
19:40:11.0882 5492  [ 93CD1C4ECB8658A35E5E6EBA02D43E4F ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
19:40:11.0894 5492  MyWiFiDHCPDNS - ok
19:40:12.0095 5492  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
19:40:12.0102 5492  napagent - ok
19:40:12.0304 5492  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:40:12.0307 5492  NativeWifiP - ok
19:40:12.0478 5492  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:40:12.0554 5492  NDIS - ok
19:40:12.0600 5492  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:40:12.0660 5492  NdisCap - ok
19:40:12.0694 5492  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:40:12.0695 5492  NdisTapi - ok
19:40:12.0810 5492  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:40:12.0811 5492  Ndisuio - ok
19:40:12.0875 5492  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:40:12.0877 5492  NdisWan - ok
19:40:13.0000 5492  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:40:13.0001 5492  NDProxy - ok
19:40:13.0062 5492  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:40:13.0063 5492  NetBIOS - ok
19:40:13.0250 5492  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:40:13.0253 5492  NetBT - ok
19:40:13.0271 5492  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
19:40:13.0273 5492  Netlogon - ok
19:40:13.0401 5492  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
19:40:13.0406 5492  Netman - ok
19:40:13.0585 5492  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
19:40:13.0591 5492  netprofm - ok
19:40:13.0645 5492  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:40:13.0655 5492  NetTcpPortSharing - ok
19:40:14.0684 5492  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
19:40:14.0892 5492  netw5v64 - ok
19:40:16.0091 5492  [ EB43840BABF5589E33186D094DE7381D ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
19:40:16.0163 5492  NETwNs64 - ok
19:40:16.0251 5492  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
19:40:16.0258 5492  nfrd960 - ok
19:40:16.0360 5492  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:40:16.0364 5492  NlaSvc - ok
19:40:17.0027 5492  [ 5839A8027D6D324A7CD494051A96628C ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
19:40:17.0053 5492  NOBU - ok
19:40:17.0104 5492  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:40:17.0105 5492  Npfs - ok
19:40:17.0162 5492  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
19:40:17.0163 5492  nsi - ok
19:40:17.0179 5492  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:40:17.0179 5492  nsiproxy - ok
19:40:17.0513 5492  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:40:17.0566 5492  Ntfs - ok
19:40:17.0627 5492  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
19:40:17.0627 5492  Null - ok
19:40:17.0711 5492  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:40:17.0719 5492  nvraid - ok
19:40:17.0802 5492  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:40:17.0833 5492  nvstor - ok
19:40:17.0865 5492  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:40:17.0871 5492  nv_agp - ok
19:40:17.0909 5492  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:40:17.0914 5492  ohci1394 - ok
19:40:17.0983 5492  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:40:17.0988 5492  ose - ok
19:40:18.0678 5492  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:40:18.0886 5492  osppsvc - ok
19:40:18.0996 5492  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:40:19.0003 5492  p2pimsvc - ok
19:40:19.0105 5492  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:40:19.0122 5492  p2psvc - ok
19:40:19.0176 5492  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:40:19.0181 5492  Parport - ok
19:40:19.0234 5492  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:40:19.0238 5492  partmgr - ok
19:40:19.0300 5492  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:40:19.0303 5492  PcaSvc - ok
19:40:19.0401 5492  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
19:40:19.0421 5492  pci - ok
19:40:19.0466 5492  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
19:40:19.0469 5492  pciide - ok
19:40:19.0523 5492  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:40:19.0530 5492  pcmcia - ok
19:40:19.0580 5492  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:40:19.0591 5492  pcw - ok
19:40:19.0676 5492  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:40:19.0683 5492  PEAUTH - ok
19:40:20.0627 5492  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:40:20.0630 5492  PerfHost - ok
19:40:20.0951 5492  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
19:40:20.0994 5492  pla - ok
19:40:21.0142 5492  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:40:21.0147 5492  PlugPlay - ok
19:40:21.0211 5492  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:40:21.0218 5492  PNRPAutoReg - ok
19:40:21.0239 5492  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:40:21.0243 5492  PNRPsvc - ok
19:40:21.0341 5492  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
19:40:21.0343 5492  Point64 - ok
19:40:21.0434 5492  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:40:21.0440 5492  PolicyAgent - ok
19:40:21.0478 5492  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
19:40:21.0482 5492  Power - ok
19:40:21.0575 5492  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:40:21.0577 5492  PptpMiniport - ok
19:40:21.0625 5492  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
19:40:21.0629 5492  Processor - ok
19:40:21.0678 5492  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:40:21.0682 5492  ProfSvc - ok
19:40:21.0707 5492  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:40:21.0709 5492  ProtectedStorage - ok
19:40:21.0841 5492  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:40:21.0843 5492  Psched - ok
19:40:21.0906 5492  [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2       c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
19:40:21.0908 5492  PSI_SVC_2 - ok
19:40:22.0114 5492  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
19:40:22.0185 5492  ql2300 - ok
19:40:22.0200 5492  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
19:40:22.0204 5492  ql40xx - ok
19:40:22.0236 5492  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
19:40:22.0241 5492  QWAVE - ok
19:40:22.0263 5492  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:40:22.0264 5492  QWAVEdrv - ok
19:40:22.0284 5492  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:40:22.0291 5492  RasAcd - ok
19:40:22.0360 5492  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:40:22.0361 5492  RasAgileVpn - ok
19:40:22.0418 5492  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
19:40:22.0424 5492  RasAuto - ok
19:40:22.0470 5492  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:40:22.0472 5492  Rasl2tp - ok
19:40:22.0568 5492  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
19:40:22.0620 5492  RasMan - ok
19:40:22.0663 5492  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:40:22.0665 5492  RasPppoe - ok
19:40:22.0712 5492  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:40:22.0714 5492  RasSstp - ok
19:40:22.0796 5492  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:40:22.0799 5492  rdbss - ok
19:40:22.0819 5492  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:40:22.0828 5492  rdpbus - ok
19:40:22.0874 5492  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:40:22.0874 5492  RDPCDD - ok
19:40:22.0968 5492  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:40:22.0969 5492  RDPENCDD - ok
19:40:22.0988 5492  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:40:22.0989 5492  RDPREFMP - ok
19:40:23.0117 5492  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:40:23.0123 5492  RdpVideoMiniport - ok
19:40:23.0166 5492  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:40:23.0171 5492  RDPWD - ok
19:40:23.0247 5492  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:40:23.0252 5492  rdyboost - ok
19:40:23.0436 5492  [ A6BAEA839CC888D4961AB5FE16BB8C4A ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:40:23.0445 5492  RegSrvc - ok
19:40:23.0497 5492  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:40:23.0507 5492  RemoteAccess - ok
19:40:23.0547 5492  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:40:23.0551 5492  RemoteRegistry - ok
19:40:23.0766 5492  [ C1568E17039B2EC2B73A4F880DDD51E5 ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
19:40:23.0770 5492  RoxioNow Service - ok
19:40:23.0814 5492  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:40:23.0817 5492  RpcEptMapper - ok
19:40:23.0898 5492  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
19:40:23.0900 5492  RpcLocator - ok
19:40:24.0020 5492  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
19:40:24.0026 5492  RpcSs - ok
19:40:24.0144 5492  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:40:24.0145 5492  rspndr - ok
19:40:24.0199 5492  [ 907C4464381B5EBDFDC60F6C7D0DEDFC ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
19:40:24.0234 5492  RSUSBSTOR - ok
19:40:24.0324 5492  [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
19:40:24.0328 5492  RTL8167 - ok
19:40:24.0378 5492  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
19:40:24.0380 5492  SamSs - ok
19:40:24.0421 5492  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:40:24.0425 5492  sbp2port - ok
19:40:24.0463 5492  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:40:24.0471 5492  SCardSvr - ok
19:40:24.0523 5492  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:40:24.0527 5492  scfilter - ok
19:40:24.0713 5492  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
19:40:24.0724 5492  Schedule - ok
19:40:24.0783 5492  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:40:24.0785 5492  SCPolicySvc - ok
19:40:24.0839 5492  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
19:40:24.0843 5492  sdbus - ok
19:40:24.0928 5492  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:40:24.0936 5492  SDRSVC - ok
19:40:24.0989 5492  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:40:24.0989 5492  secdrv - ok
19:40:25.0029 5492  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
19:40:25.0036 5492  seclogon - ok
19:40:25.0074 5492  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
19:40:25.0077 5492  SENS - ok
19:40:25.0129 5492  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:40:25.0133 5492  SensrSvc - ok
19:40:25.0162 5492  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:40:25.0165 5492  Serenum - ok
19:40:25.0182 5492  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:40:25.0185 5492  Serial - ok
19:40:25.0246 5492  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
19:40:25.0251 5492  sermouse - ok
19:40:25.0323 5492  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:40:25.0328 5492  SessionEnv - ok
19:40:25.0359 5492  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:40:25.0362 5492  sffdisk - ok
19:40:25.0380 5492  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:40:25.0384 5492  sffp_mmc - ok
19:40:25.0418 5492  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:40:25.0421 5492  sffp_sd - ok
19:40:25.0472 5492  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:40:25.0485 5492  sfloppy - ok
19:40:25.0573 5492  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:40:25.0581 5492  SharedAccess - ok
19:40:25.0674 5492  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:40:25.0680 5492  ShellHWDetection - ok
19:40:25.0779 5492  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:40:25.0786 5492  SiSRaid2 - ok
19:40:25.0812 5492  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
19:40:25.0818 5492  SiSRaid4 - ok
19:40:25.0882 5492  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:40:25.0890 5492  Smb - ok
19:40:26.0001 5492  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:40:26.0003 5492  SNMPTRAP - ok
19:40:26.0020 5492  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:40:26.0024 5492  spldr - ok
19:40:26.0158 5492  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
19:40:26.0165 5492  Spooler - ok
19:40:26.0560 5492  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
19:40:26.0593 5492  sppsvc - ok
19:40:26.0630 5492  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:40:26.0633 5492  sppuinotify - ok
19:40:26.0766 5492  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:40:26.0770 5492  srv - ok
19:40:26.0820 5492  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:40:26.0824 5492  srv2 - ok
19:40:26.0917 5492  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:40:26.0958 5492  SrvHsfHDA - ok
19:40:27.0125 5492  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:40:27.0177 5492  SrvHsfV92 - ok
19:40:27.0271 5492  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:40:27.0323 5492  SrvHsfWinac - ok
19:40:27.0402 5492  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:40:27.0404 5492  srvnet - ok
19:40:27.0525 5492  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:40:27.0529 5492  SSDPSRV - ok
19:40:27.0561 5492  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:40:27.0564 5492  SstpSvc - ok
19:40:27.0794 5492  [ B00068BA94F5F306911B14B425AAEB56 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
19:40:27.0796 5492  STacSV - ok
19:40:27.0809 5492  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
19:40:27.0819 5492  stexstor - ok
19:40:27.0891 5492  [ DA40D9C9CCB9836D6ABD1706935A2277 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
19:40:27.0897 5492  STHDA - ok
19:40:28.0012 5492  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
19:40:28.0013 5492  StillCam - ok
19:40:28.0145 5492  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
19:40:28.0153 5492  stisvc - ok
19:40:28.0196 5492  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:40:28.0196 5492  swenum - ok
19:40:28.0284 5492  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
19:40:28.0313 5492  swprv - ok
19:40:28.0426 5492  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:40:28.0430 5492  SynTP - ok
19:40:28.0622 5492  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
19:40:28.0640 5492  SysMain - ok
19:40:28.0682 5492  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:40:28.0687 5492  TabletInputService - ok
19:40:28.0750 5492  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:40:28.0801 5492  TapiSrv - ok
19:40:28.0834 5492  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
19:40:28.0841 5492  TBS - ok
19:40:29.0095 5492  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:40:29.0148 5492  Tcpip - ok
19:40:29.0292 5492  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:40:29.0310 5492  TCPIP6 - ok
19:40:29.0386 5492  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:40:29.0387 5492  tcpipreg - ok
19:40:29.0452 5492  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:40:29.0459 5492  TDPIPE - ok
19:40:29.0497 5492  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:40:29.0501 5492  TDTCP - ok
19:40:29.0591 5492  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:40:29.0593 5492  tdx - ok
19:40:29.0614 5492  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:40:29.0615 5492  TermDD - ok
19:40:29.0683 5492  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
19:40:29.0715 5492  TermService - ok
19:40:29.0773 5492  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
19:40:29.0776 5492  Themes - ok
19:40:29.0818 5492  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
19:40:29.0820 5492  THREADORDER - ok
19:40:29.0836 5492  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
19:40:29.0839 5492  TrkWks - ok
19:40:29.0935 5492  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:40:29.0939 5492  TrustedInstaller - ok
19:40:29.0993 5492  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:40:29.0999 5492  tssecsrv - ok
19:40:30.0115 5492  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:40:30.0123 5492  TsUsbFlt - ok
19:40:30.0215 5492  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:40:30.0217 5492  tunnel - ok
19:40:30.0253 5492  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
19:40:30.0256 5492  uagp35 - ok
19:40:30.0425 5492  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:40:30.0432 5492  udfs - ok
19:40:30.0488 5492  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:40:30.0491 5492  UI0Detect - ok
19:40:30.0535 5492  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:40:30.0539 5492  uliagpkx - ok
19:40:30.0577 5492  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:40:30.0578 5492  umbus - ok
19:40:30.0601 5492  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
19:40:30.0608 5492  UmPass - ok
19:40:30.0957 5492  [ 0FADD949576A164B4E51E716F46B6C33 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:40:30.0980 5492  UNS - ok
19:40:31.0048 5492  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
19:40:31.0053 5492  upnphost - ok
19:40:31.0109 5492  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:40:31.0111 5492  usbccgp - ok
19:40:31.0146 5492  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:40:31.0149 5492  usbcir - ok
19:40:31.0201 5492  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:40:31.0202 5492  usbehci - ok
19:40:31.0230 5492  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:40:31.0234 5492  usbhub - ok
19:40:31.0268 5492  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:40:31.0276 5492  usbohci - ok
19:40:31.0353 5492  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:40:31.0363 5492  usbprint - ok
19:40:31.0436 5492  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:40:31.0440 5492  usbscan - ok
19:40:31.0473 5492  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:40:31.0480 5492  USBSTOR - ok
19:40:31.0530 5492  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:40:31.0536 5492  usbuhci - ok
19:40:31.0622 5492  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:40:31.0624 5492  usbvideo - ok
19:40:31.0685 5492  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
19:40:31.0687 5492  UxSms - ok
19:40:31.0736 5492  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
19:40:31.0738 5492  VaultSvc - ok
19:40:32.0063 5492  [ 2662F24C7AEE2A32CEBDEC907A5366F1 ] vcsFPService    C:\Windows\system32\vcsFPService.exe
19:40:32.0086 5492  vcsFPService - ok
19:40:32.0149 5492  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:40:32.0154 5492  vdrvroot - ok
19:40:32.0265 5492  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
19:40:32.0340 5492  vds - ok
19:40:32.0399 5492  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:40:32.0407 5492  vga - ok
19:40:32.0436 5492  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:40:32.0437 5492  VgaSave - ok
19:40:32.0493 5492  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:40:32.0503 5492  vhdmp - ok
19:40:32.0524 5492  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:40:32.0529 5492  viaide - ok
19:40:32.0589 5492  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:40:32.0591 5492  volmgr - ok
19:40:32.0672 5492  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:40:32.0690 5492  volmgrx - ok
19:40:32.0724 5492  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:40:32.0730 5492  volsnap - ok
19:40:32.0783 5492  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
19:40:32.0787 5492  vsmraid - ok
19:40:33.0012 5492  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
19:40:33.0064 5492  VSS - ok
19:40:33.0110 5492  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:40:33.0111 5492  vwifibus - ok
19:40:33.0256 5492  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:40:33.0257 5492  vwififlt - ok
19:40:33.0302 5492  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
19:40:33.0303 5492  vwifimp - ok
19:40:33.0364 5492  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
19:40:33.0372 5492  W32Time - ok
19:40:33.0418 5492  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
19:40:33.0421 5492  WacomPen - ok
19:40:33.0678 5492  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:40:33.0679 5492  WANARP - ok
19:40:33.0696 5492  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:40:33.0698 5492  Wanarpv6 - ok
19:40:33.0805 5492  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:40:33.0845 5492  WatAdminSvc - ok
19:40:34.0034 5492  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
19:40:34.0076 5492  wbengine - ok
19:40:34.0156 5492  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:40:34.0160 5492  WbioSrvc - ok
19:40:34.0221 5492  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:40:34.0230 5492  wcncsvc - ok
19:40:34.0248 5492  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:40:34.0254 5492  WcsPlugInService - ok
19:40:34.0279 5492  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
19:40:34.0286 5492  Wd - ok
19:40:34.0354 5492  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:40:34.0385 5492  Wdf01000 - ok
19:40:34.0398 5492  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:40:34.0401 5492  WdiServiceHost - ok
19:40:34.0409 5492  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:40:34.0412 5492  WdiSystemHost - ok
19:40:34.0468 5492  [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] wdkmd           C:\Windows\system32\DRIVERS\WDKMD.sys
19:40:34.0469 5492  wdkmd - ok
19:40:34.0508 5492  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
19:40:34.0515 5492  WebClient - ok
19:40:34.0561 5492  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:40:34.0568 5492  Wecsvc - ok
19:40:34.0589 5492  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:40:34.0591 5492  wercplsupport - ok
19:40:34.0646 5492  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:40:34.0652 5492  WerSvc - ok
19:40:34.0706 5492  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:40:34.0706 5492  WfpLwf - ok
19:40:34.0952 5492  [ 8686E96E13F41AC9806A79CA8004FEEE ] WiMAXAppSrv     C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
19:40:34.0960 5492  WiMAXAppSrv - ok
19:40:34.0972 5492  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:40:34.0983 5492  WIMMount - ok
19:40:34.0999 5492  WinDefend - ok
19:40:35.0007 5492  WinHttpAutoProxySvc - ok
19:40:35.0172 5492  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:40:35.0174 5492  Winmgmt - ok
19:40:35.0432 5492  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
19:40:35.0496 5492  WinRM - ok
19:40:35.0608 5492  [ FE88B288356E7B47B74B13372ADD906D ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
19:40:35.0609 5492  WinUSB - ok
19:40:35.0749 5492  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:40:35.0759 5492  Wlansvc - ok
19:40:35.0969 5492  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:40:35.0991 5492  wlidsvc - ok
19:40:36.0028 5492  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:40:36.0029 5492  WmiAcpi - ok
19:40:36.0090 5492  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:40:36.0096 5492  wmiApSrv - ok
19:40:36.0132 5492  WMPNetworkSvc - ok
19:40:36.0308 5492  [ 83B6CA03C846FCD47F9883D77D1EB27B ] WMZuneComm      c:\Program Files\Zune\WMZuneComm.exe
19:40:36.0317 5492  WMZuneComm - ok
19:40:36.0347 5492  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:40:36.0354 5492  WPCSvc - ok
19:40:36.0377 5492  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:40:36.0381 5492  WPDBusEnum - ok
19:40:36.0416 5492  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:40:36.0419 5492  ws2ifsl - ok
19:40:36.0444 5492  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
19:40:36.0447 5492  wscsvc - ok
19:40:36.0501 5492  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
19:40:36.0502 5492  WSDPrintDevice - ok
19:40:36.0512 5492  WSearch - ok
19:40:36.0812 5492  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:40:36.0834 5492  wuauserv - ok
19:40:36.0870 5492  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:40:36.0871 5492  WudfPf - ok
19:40:36.0928 5492  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:40:36.0932 5492  WUDFRd - ok
19:40:36.0985 5492  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:40:36.0988 5492  wudfsvc - ok
19:40:37.0026 5492  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:40:37.0033 5492  WwanSvc - ok
19:40:37.0114 5492  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
19:40:37.0133 5492  yukonw7 - ok
19:40:38.0022 5492  [ 67B787C34FB2888D01B130AE007042D8 ] ZuneNetworkSvc  c:\Program Files\Zune\ZuneNss.exe
19:40:38.0091 5492  ZuneNetworkSvc - ok
19:40:38.0172 5492  [ 4D89FC1C20CF655739EFAC5DA81A67BC ] ZuneWlanCfgSvc  c:\Program Files\Zune\ZuneWlanCfgSvc.exe
19:40:38.0179 5492  ZuneWlanCfgSvc - ok
19:40:38.0226 5492  ================ Scan global ===============================
19:40:38.0254 5492  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:40:38.0336 5492  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:40:38.0349 5492  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:40:38.0416 5492  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:40:38.0476 5492  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:40:38.0480 5492  [Global] - ok
19:40:38.0482 5492  ================ Scan MBR ==================================
19:40:38.0519 5492  [ 748CB30E25C81206A47F1FEC5759B2D5 ] \Device\Harddisk0\DR0
19:40:40.0974 5492  \Device\Harddisk0\DR0 - ok
19:40:40.0980 5492  ================ Scan VBR ==================================
19:40:40.0995 5492  [ B991A963AB0D9ECBE99E14DB2DE17B04 ] \Device\Harddisk0\DR0\Partition1
19:40:40.0999 5492  \Device\Harddisk0\DR0\Partition1 - ok
19:40:41.0020 5492  [ ECA23F2EF23770A463E950FEE951FFF8 ] \Device\Harddisk0\DR0\Partition2
19:40:41.0023 5492  \Device\Harddisk0\DR0\Partition2 - ok
19:40:41.0058 5492  [ 528CC5FDC0441AF63608D4FBC3BB1EA1 ] \Device\Harddisk0\DR0\Partition3
19:40:41.0064 5492  \Device\Harddisk0\DR0\Partition3 - ok
19:40:41.0106 5492  [ 0A30652E0DEBA0F1BD6283559D09A873 ] \Device\Harddisk0\DR0\Partition4
19:40:41.0115 5492  \Device\Harddisk0\DR0\Partition4 - ok
19:40:41.0121 5492  ================ Scan active images ========================
19:40:41.0122 5492  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
19:40:41.0122 5492  C:\Windows\System32\drivers\crashdmp.sys - ok
19:40:41.0136 5492  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
19:40:41.0137 5492  C:\Windows\System32\drivers\dumpfve.sys - ok
19:40:41.0148 5492  [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] C:\Windows\System32\drivers\iaStor.sys
19:40:41.0148 5492  C:\Windows\System32\drivers\iaStor.sys - ok
19:40:41.0153 5492  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
19:40:41.0153 5492  C:\Windows\System32\drivers\beep.sys - ok
19:40:41.0162 5492  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
19:40:41.0162 5492  C:\Windows\System32\drivers\cdrom.sys - ok
19:40:41.0171 5492  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
19:40:41.0171 5492  C:\Windows\System32\drivers\null.sys - ok
19:40:41.0180 5492  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
19:40:41.0180 5492  C:\Windows\System32\drivers\RDPCDD.sys - ok
19:40:41.0188 5492  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
19:40:41.0188 5492  C:\Windows\System32\drivers\vga.sys - ok
19:40:41.0197 5492  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
19:40:41.0197 5492  C:\Windows\System32\drivers\videoprt.sys - ok
19:40:41.0206 5492  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
19:40:41.0206 5492  C:\Windows\System32\drivers\watchdog.sys - ok
19:40:41.0215 5492  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:40:41.0215 5492  C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:40:41.0224 5492  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
19:40:41.0224 5492  C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:40:41.0233 5492  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
19:40:41.0233 5492  C:\Windows\System32\drivers\msfs.sys - ok
19:40:41.0246 5492  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
19:40:41.0246 5492  C:\Windows\System32\drivers\npfs.sys - ok
19:40:41.0257 5492  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
19:40:41.0257 5492  C:\Windows\System32\drivers\tdi.sys - ok
19:40:41.0266 5492  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
19:40:41.0267 5492  C:\Windows\System32\drivers\tdx.sys - ok
19:40:41.0275 5492  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
19:40:41.0275 5492  C:\Windows\System32\drivers\afd.sys - ok
19:40:41.0284 5492  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
19:40:41.0285 5492  C:\Windows\System32\drivers\netbios.sys - ok
19:40:41.0294 5492  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
19:40:41.0294 5492  C:\Windows\System32\drivers\netbt.sys - ok
19:40:41.0303 5492  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
19:40:41.0303 5492  C:\Windows\System32\drivers\pacer.sys - ok
19:40:41.0312 5492  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
19:40:41.0312 5492  C:\Windows\System32\drivers\termdd.sys - ok
19:40:41.0325 5492  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
19:40:41.0325 5492  C:\Windows\System32\drivers\vwififlt.sys - ok
19:40:41.0335 5492  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
19:40:41.0335 5492  C:\Windows\System32\drivers\wanarp.sys - ok
19:40:41.0343 5492  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
19:40:41.0343 5492  C:\Windows\System32\drivers\wfplwf.sys - ok
19:40:41.0354 5492  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
19:40:41.0354 5492  C:\Windows\System32\drivers\blbdrive.sys - ok
19:40:41.0364 5492  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
19:40:41.0364 5492  C:\Windows\System32\drivers\dfsc.sys - ok
19:40:41.0369 5492  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
19:40:41.0369 5492  C:\Windows\System32\drivers\discache.sys - ok
19:40:41.0379 5492  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
19:40:41.0379 5492  C:\Windows\System32\drivers\mssmbios.sys - ok
19:40:41.0388 5492  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
19:40:41.0388 5492  C:\Windows\System32\drivers\nsiproxy.sys - ok
19:40:41.0397 5492  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
19:40:41.0397 5492  C:\Windows\System32\drivers\rdbss.sys - ok
19:40:41.0406 5492  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
19:40:41.0406 5492  C:\Windows\System32\drivers\tunnel.sys - ok
19:40:41.0414 5492  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
19:40:41.0414 5492  C:\Windows\System32\smss.exe - ok
19:40:41.0423 5492  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
19:40:41.0423 5492  C:\Windows\System32\ntdll.dll - ok
19:40:41.0431 5492  [ 2DEC3274589FF6889AB05ADCEEB0F642 ] C:\Windows\System32\drivers\atikmpag.sys
19:40:41.0431 5492  C:\Windows\System32\drivers\atikmpag.sys - ok
19:40:41.0438 5492  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
19:40:41.0438 5492  C:\Windows\System32\autochk.exe - ok
19:40:41.0448 5492  [ 06BF0785DE714637EBA9BB1084B28626 ] C:\Windows\System32\drivers\atikmdag.sys
19:40:41.0448 5492  C:\Windows\System32\drivers\atikmdag.sys - ok
19:40:41.0456 5492  [ 1BE8D9CA4F2363B8E8015621878E0043 ] C:\Windows\System32\drivers\igdpmd64.sys
19:40:41.0456 5492  C:\Windows\System32\drivers\igdpmd64.sys - ok
19:40:41.0468 5492  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
19:40:41.0468 5492  C:\Windows\System32\drivers\fastfat.sys - ok
19:40:41.0476 5492  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
19:40:41.0476 5492  C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:40:41.0482 5492  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
19:40:41.0482 5492  C:\Windows\System32\drivers\dxgmms1.sys - ok
19:40:41.0490 5492  [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
19:40:41.0490 5492  C:\Windows\System32\drivers\HECIx64.sys - ok
19:40:41.0499 5492  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
19:40:41.0500 5492  C:\Windows\System32\drivers\usbport.sys - ok
19:40:41.0508 5492  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
19:40:41.0508 5492  C:\Windows\System32\drivers\hdaudbus.sys - ok
19:40:41.0513 5492  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
19:40:41.0513 5492  C:\Windows\System32\drivers\usbehci.sys - ok
19:40:41.0521 5492  [ EB43840BABF5589E33186D094DE7381D ] C:\Windows\System32\drivers\NETwNs64.sys
19:40:41.0521 5492  C:\Windows\System32\drivers\NETwNs64.sys - ok
19:40:41.0529 5492  [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] C:\Windows\System32\drivers\Rt64win7.sys
19:40:41.0529 5492  C:\Windows\System32\drivers\Rt64win7.sys - ok
19:40:41.0537 5492  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
19:40:41.0537 5492  C:\Windows\System32\drivers\vwifibus.sys - ok
19:40:41.0546 5492  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
19:40:41.0546 5492  C:\Windows\System32\drivers\i8042prt.sys - ok
19:40:41.0554 5492  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
19:40:41.0554 5492  C:\Windows\System32\drivers\kbdclass.sys - ok
19:40:41.0562 5492  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] C:\Windows\System32\drivers\SynTP.sys
19:40:41.0562 5492  C:\Windows\System32\drivers\SynTP.sys - ok
19:40:41.0571 5492  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
19:40:41.0571 5492  C:\Windows\System32\drivers\usbd.sys - ok
19:40:41.0578 5492  [ 36FDF367A1DABFF903E2214023D71368 ] C:\Windows\System32\drivers\Impcd.sys
19:40:41.0578 5492  C:\Windows\System32\drivers\Impcd.sys - ok
19:40:41.0585 5492  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
19:40:41.0585 5492  C:\Windows\System32\drivers\mouclass.sys - ok
19:40:41.0593 5492  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] C:\Windows\System32\drivers\Accelerometer.sys
19:40:41.0593 5492  C:\Windows\System32\drivers\Accelerometer.sys - ok
19:40:41.0607 5492  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
19:40:41.0607 5492  C:\Windows\System32\drivers\CmBatt.sys - ok
19:40:41.0612 5492  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
19:40:41.0612 5492  C:\Windows\System32\drivers\wmiacpi.sys - ok
19:40:41.0622 5492  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
19:40:41.0622 5492  C:\Windows\System32\drivers\CompositeBus.sys - ok
19:40:41.0630 5492  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
19:40:41.0630 5492  C:\Windows\System32\drivers\intelppm.sys - ok
19:40:41.0637 5492  [ DECACB6921DED1A38642642685D77DAC ] C:\Windows\System32\drivers\serscan.sys
19:40:41.0638 5492  C:\Windows\System32\drivers\serscan.sys - ok
19:40:41.0645 5492  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
19:40:41.0645 5492  C:\Windows\System32\drivers\ks.sys - ok
19:40:41.0654 5492  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
19:40:41.0654 5492  C:\Windows\System32\drivers\ksthunk.sys - ok
19:40:41.0661 5492  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
19:40:41.0661 5492  C:\Windows\System32\drivers\agilevpn.sys - ok
19:40:41.0670 5492  [ D68D9F4D53010B7E84D4E80A2E485554 ] C:\Windows\System32\drivers\clwvd.sys
19:40:41.0670 5492  C:\Windows\System32\drivers\clwvd.sys - ok
19:40:41.0682 5492  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
19:40:41.0682 5492  C:\Windows\System32\drivers\ndistapi.sys - ok
19:40:41.0690 5492  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
19:40:41.0690 5492  C:\Windows\System32\drivers\ndiswan.sys - ok
19:40:41.0696 5492  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
19:40:41.0696 5492  C:\Windows\System32\drivers\rasl2tp.sys - ok
19:40:41.0704 5492  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
19:40:41.0704 5492  C:\Windows\System32\drivers\raspppoe.sys - ok
19:40:41.0712 5492  [ F46DD257FAD7D2D097EF32E72220A06C ] C:\Windows\System32\drivers\bpenum.sys
19:40:41.0712 5492  C:\Windows\System32\drivers\bpenum.sys - ok
19:40:41.0720 5492  [ D7CD5C4E1B71FA62050515314CFB52CF ] C:\Windows\System32\drivers\circlass.sys
19:40:41.0720 5492  C:\Windows\System32\drivers\circlass.sys - ok
19:40:41.0728 5492  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
19:40:41.0728 5492  C:\Windows\System32\drivers\raspptp.sys - ok
19:40:41.0736 5492  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
19:40:41.0736 5492  C:\Windows\System32\drivers\rassstp.sys - ok
19:40:41.0744 5492  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
19:40:41.0744 5492  C:\Windows\System32\drivers\swenum.sys - ok
19:40:41.0751 5492  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
19:40:41.0751 5492  C:\Windows\System32\drivers\umbus.sys - ok
19:40:41.0764 5492  [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] C:\Windows\System32\drivers\WDKMD.sys
19:40:41.0764 5492  C:\Windows\System32\drivers\WDKMD.sys - ok
19:40:41.0772 5492  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
19:40:41.0772 5492  C:\Windows\System32\drivers\usbhub.sys - ok
19:40:41.0785 5492  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
19:40:41.0785 5492  C:\Windows\System32\gdi32.dll - ok
19:40:41.0792 5492  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
19:40:41.0792 5492  C:\Windows\System32\sechost.dll - ok
19:40:41.0804 5492  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
19:40:41.0804 5492  C:\Windows\System32\urlmon.dll - ok
19:40:41.0808 5492  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
19:40:41.0808 5492  C:\Windows\System32\nsi.dll - ok
19:40:41.0816 5492  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
19:40:41.0816 5492  C:\Windows\System32\ws2_32.dll - ok
19:40:41.0828 5492  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
19:40:41.0828 5492  C:\Windows\System32\drivers\ndproxy.sys - ok
19:40:41.0834 5492  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
19:40:41.0834 5492  C:\Windows\System32\drivers\drmk.sys - ok
19:40:41.0842 5492  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
19:40:41.0842 5492  C:\Windows\System32\drivers\portcls.sys - ok
19:40:41.0850 5492  [ DA40D9C9CCB9836D6ABD1706935A2277 ] C:\Windows\System32\drivers\stwrt64.sys
19:40:41.0850 5492  C:\Windows\System32\drivers\stwrt64.sys - ok
19:40:41.0863 5492  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
19:40:41.0863 5492  C:\Windows\System32\shell32.dll - ok
19:40:41.0874 5492  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
19:40:41.0874 5492  C:\Windows\System32\clbcatq.dll - ok
19:40:41.0880 5492  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
19:40:41.0880 5492  C:\Windows\System32\advapi32.dll - ok
19:40:41.0886 5492  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
19:40:41.0886 5492  C:\Windows\System32\msctf.dll - ok
19:40:41.0893 5492  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
19:40:41.0893 5492  C:\Windows\System32\imm32.dll - ok
19:40:41.0901 5492  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
19:40:41.0901 5492  C:\Windows\System32\iertutil.dll - ok
19:40:41.0907 5492  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
19:40:41.0907 5492  C:\Windows\System32\imagehlp.dll - ok
19:40:41.0912 5492  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
19:40:41.0912 5492  C:\Windows\System32\ole32.dll - ok
19:40:41.0919 5492  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
19:40:41.0919 5492  C:\Windows\System32\difxapi.dll - ok
19:40:41.0927 5492  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
19:40:41.0927 5492  C:\Windows\System32\oleaut32.dll - ok
19:40:41.0933 5492  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
19:40:41.0933 5492  C:\Windows\System32\comdlg32.dll - ok
19:40:41.0940 5492  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
19:40:41.0940 5492  C:\Windows\System32\wininet.dll - ok
19:40:41.0945 5492  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
19:40:41.0945 5492  C:\Windows\System32\usp10.dll - ok
19:40:41.0953 5492  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
19:40:41.0953 5492  C:\Windows\System32\kernel32.dll - ok
19:40:41.0960 5492  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
19:40:41.0960 5492  C:\Windows\System32\lpk.dll - ok
19:40:41.0967 5492  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
19:40:41.0967 5492  C:\Windows\System32\shlwapi.dll - ok
19:40:41.0975 5492  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
19:40:41.0975 5492  C:\Windows\System32\setupapi.dll - ok
19:40:41.0980 5492  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
19:40:41.0981 5492  C:\Windows\System32\rpcrt4.dll - ok
19:40:41.0988 5492  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
19:40:41.0988 5492  C:\Windows\System32\Wldap32.dll - ok
19:40:41.0995 5492  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
19:40:41.0995 5492  C:\Windows\System32\msvcrt.dll - ok
19:40:42.0000 5492  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
19:40:42.0000 5492  C:\Windows\System32\normaliz.dll - ok
19:40:42.0008 5492  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
19:40:42.0009 5492  C:\Windows\System32\psapi.dll - ok
19:40:42.0015 5492  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
19:40:42.0015 5492  C:\Windows\System32\user32.dll - ok
19:40:42.0022 5492  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
19:40:42.0022 5492  C:\Windows\System32\KernelBase.dll - ok
19:40:42.0028 5492  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
19:40:42.0028 5492  C:\Windows\System32\crypt32.dll - ok
19:40:42.0036 5492  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
19:40:42.0036 5492  C:\Windows\System32\devobj.dll - ok
19:40:42.0042 5492  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
19:40:42.0042 5492  C:\Windows\System32\wintrust.dll - ok
19:40:42.0050 5492  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
19:40:42.0050 5492  C:\Windows\System32\cfgmgr32.dll - ok
19:40:42.0057 5492  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
19:40:42.0057 5492  C:\Windows\System32\comctl32.dll - ok
19:40:42.0064 5492  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
19:40:42.0064 5492  C:\Windows\System32\msasn1.dll - ok
19:40:42.0072 5492  [ FC6313A5A45C1AE53D0491F0057D5A4D ] C:\Windows\System32\drivers\bpusb.sys
19:40:42.0072 5492  C:\Windows\System32\drivers\bpusb.sys - ok
19:40:42.0079 5492  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
19:40:42.0079 5492  C:\Windows\System32\drivers\usbccgp.sys - ok
19:40:42.0084 5492  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
19:40:42.0084 5492  C:\Windows\System32\drivers\hidparse.sys - ok
19:40:42.0090 5492  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
19:40:42.0091 5492  C:\Windows\SysWOW64\normaliz.dll - ok
19:40:42.0102 5492  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
19:40:42.0102 5492  C:\Windows\System32\drivers\hidclass.sys - ok
19:40:42.0112 5492  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
19:40:42.0112 5492  C:\Windows\System32\drivers\hidusb.sys - ok
19:40:42.0116 5492  [ 241F2648ADF090E2A10095BD6D6F5DCB ] C:\Windows\System32\drivers\LHidFilt.Sys
19:40:42.0116 5492  C:\Windows\System32\drivers\LHidFilt.Sys - ok
19:40:42.0123 5492  [ 342ED5A4B3326014438F36D22D803737 ] C:\Windows\System32\drivers\LMouFilt.Sys
19:40:42.0123 5492  C:\Windows\System32\drivers\LMouFilt.Sys - ok
19:40:42.0130 5492  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
19:40:42.0130 5492  C:\Windows\System32\drivers\mouhid.sys - ok
19:40:42.0136 5492  [ E82060AED0F28ED8909F2B07FA276185 ] C:\Windows\System32\drivers\bpmp.sys
19:40:42.0137 5492  C:\Windows\System32\drivers\bpmp.sys - ok
19:40:42.0144 5492  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
19:40:42.0144 5492  C:\Windows\System32\drivers\dxapi.sys - ok
19:40:42.0151 5492  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
19:40:42.0151 5492  C:\Windows\System32\win32k.sys - ok
19:40:42.0159 5492  [ FE88B288356E7B47B74B13372ADD906D ] C:\Windows\System32\drivers\winusb.sys
19:40:42.0159 5492  C:\Windows\System32\drivers\winusb.sys - ok
19:40:42.0167 5492  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
19:40:42.0167 5492  C:\Windows\System32\csrsrv.dll - ok
19:40:42.0174 5492  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
19:40:42.0174 5492  C:\Windows\System32\csrss.exe - ok
19:40:42.0180 5492  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
19:40:42.0180 5492  C:\Windows\System32\basesrv.dll - ok
19:40:42.0191 5492  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
19:40:42.0191 5492  C:\Windows\System32\winsrv.dll - ok
19:40:42.0200 5492  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
19:40:42.0200 5492  C:\Windows\System32\drivers\usbvideo.sys - ok
19:40:42.0205 5492  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
19:40:42.0205 5492  C:\Windows\System32\drivers\monitor.sys - ok
19:40:42.0212 5492  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
19:40:42.0212 5492  C:\Windows\System32\tsddd.dll - ok
19:40:42.0223 5492  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
19:40:42.0223 5492  C:\Windows\System32\sxssrv.dll - ok
19:40:42.0228 5492  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
19:40:42.0228 5492  C:\Windows\System32\wininit.exe - ok
19:40:42.0235 5492  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
19:40:42.0235 5492  C:\Windows\System32\KBDUS.DLL - ok
19:40:42.0242 5492  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
19:40:42.0243 5492  C:\Windows\System32\profapi.dll - ok
19:40:42.0249 5492  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
19:40:42.0249 5492  C:\Windows\System32\RpcRtRemote.dll - ok
19:40:42.0257 5492  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
19:40:42.0257 5492  C:\Windows\System32\cdd.dll - ok
19:40:42.0268 5492  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
19:40:42.0268 5492  C:\Windows\System32\WlS0WndH.dll - ok
19:40:42.0275 5492  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
19:40:42.0275 5492  C:\Windows\System32\sxs.dll - ok
19:40:42.0283 5492  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
19:40:42.0283 5492  C:\Windows\System32\cryptbase.dll - ok
19:40:42.0291 5492  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
19:40:42.0291 5492  C:\Windows\System32\apphelp.dll - ok
19:40:42.0298 5492  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
19:40:42.0298 5492  C:\Windows\System32\lsass.exe - ok
19:40:42.0304 5492  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
19:40:42.0304 5492  C:\Windows\System32\lsm.exe - ok
19:40:42.0311 5492  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
19:40:42.0311 5492  C:\Windows\System32\services.exe - ok
19:40:42.0319 5492  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
19:40:42.0319 5492  C:\Windows\System32\sspisrv.dll - ok
19:40:42.0326 5492  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
19:40:42.0326 5492  C:\Windows\System32\sspicli.dll - ok
19:40:42.0334 5492  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
19:40:42.0334 5492  C:\Windows\System32\sysntfy.dll - ok
19:40:42.0341 5492  [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
19:40:42.0341 5492  C:\Windows\System32\lsasrv.dll - ok
19:40:42.0349 5492  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
19:40:42.0349 5492  C:\Windows\System32\samsrv.dll - ok
19:40:42.0355 5492  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
19:40:42.0355 5492  C:\Windows\System32\scesrv.dll - ok
19:40:42.0362 5492  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
19:40:42.0362 5492  C:\Windows\System32\scext.dll - ok
19:40:42.0374 5492  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
19:40:42.0374 5492  C:\Windows\System32\secur32.dll - ok
19:40:42.0383 5492  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
19:40:42.0384 5492  C:\Windows\System32\wmsgapi.dll - ok
19:40:42.0390 5492  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
19:40:42.0390 5492  C:\Windows\System32\srvcli.dll - ok
19:40:42.0402 5492  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
19:40:42.0402 5492  C:\Windows\System32\cryptdll.dll - ok
19:40:42.0411 5492  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
19:40:42.0411 5492  C:\Windows\System32\wevtapi.dll - ok
19:40:42.0420 5492  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
19:40:42.0421 5492  C:\Windows\System32\winlogon.exe - ok
19:40:42.0430 5492  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
19:40:42.0430 5492  C:\Windows\System32\winsta.dll - ok
19:40:42.0438 5492  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
19:40:42.0438 5492  C:\Windows\System32\authz.dll - ok
19:40:42.0447 5492  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
19:40:42.0447 5492  C:\Windows\System32\cngaudit.dll - ok
19:40:42.0453 5492  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
19:40:42.0453 5492  C:\Windows\System32\bcrypt.dll - ok
19:40:42.0460 5492  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
19:40:42.0460 5492  C:\Windows\System32\ncrypt.dll - ok
19:40:42.0468 5492  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
19:40:42.0468 5492  C:\Windows\System32\msprivs.dll - ok
19:40:42.0475 5492  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
19:40:42.0475 5492  C:\Windows\System32\negoexts.dll - ok
19:40:42.0483 5492  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
19:40:42.0483 5492  C:\Windows\System32\netjoin.dll - ok
19:40:42.0490 5492  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
19:40:42.0490 5492  C:\Windows\System32\kerberos.dll - ok
19:40:42.0497 5492  [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
19:40:42.0497 5492  C:\Windows\System32\atmfd.dll - ok
19:40:42.0504 5492  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
19:40:42.0504 5492  C:\Windows\System32\cryptsp.dll - ok
19:40:42.0512 5492  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
19:40:42.0512 5492  C:\Windows\System32\mswsock.dll - ok
19:40:42.0520 5492  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
19:40:42.0520 5492  C:\Windows\System32\msv1_0.dll - ok
19:40:42.0527 5492  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
19:40:42.0527 5492  C:\Windows\System32\wship6.dll - ok
19:40:42.0534 5492  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
19:40:42.0534 5492  C:\Windows\System32\netlogon.dll - ok
19:40:42.0541 5492  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
19:40:42.0541 5492  C:\Windows\System32\dnsapi.dll - ok
19:40:42.0548 5492  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
19:40:42.0548 5492  C:\Windows\System32\logoncli.dll - ok
19:40:42.0556 5492  [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
19:40:42.0556 5492  C:\Windows\System32\schannel.dll - ok
19:40:42.0563 5492  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
19:40:42.0563 5492  C:\Windows\System32\wdigest.dll - ok
19:40:42.0570 5492  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
19:40:42.0570 5492  C:\Windows\System32\rsaenh.dll - ok
19:40:42.0578 5492  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
19:40:42.0578 5492  C:\Windows\System32\TSpkg.dll - ok
19:40:42.0588 5492  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
19:40:42.0588 5492  C:\Windows\System32\pku2u.dll - ok
19:40:42.0597 5492  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
19:40:42.0597 5492  C:\Windows\System32\LIVESSP.DLL - ok
19:40:42.0606 5492  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
19:40:42.0606 5492  C:\Windows\System32\bcryptprimitives.dll - ok
19:40:42.0615 5492  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
19:40:42.0615 5492  C:\Windows\System32\credssp.dll - ok
19:40:42.0620 5492  [ 793EE53E901E47688225F1FE8DF519C2 ] C:\Windows\System32\DPPassFilter.dll
19:40:42.0620 5492  C:\Windows\System32\DPPassFilter.dll - ok
19:40:42.0628 5492  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
19:40:42.0628 5492  C:\Windows\System32\efslsaext.dll - ok
19:40:42.0635 5492  [ EC2D61D619DD741905153B0A3BEC0004 ] C:\Windows\System32\DPFPApi.dll
19:40:42.0635 5492  C:\Windows\System32\DPFPApi.dll - ok
19:40:42.0642 5492  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
19:40:42.0642 5492  C:\Windows\System32\ubpm.dll - ok
19:40:42.0649 5492  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
19:40:42.0649 5492  C:\Windows\System32\userenv.dll - ok
19:40:42.0658 5492  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
19:40:42.0658 5492  C:\Windows\System32\netapi32.dll - ok
19:40:42.0665 5492  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
19:40:42.0665 5492  C:\Windows\System32\netutils.dll - ok
19:40:42.0675 5492  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
19:40:42.0675 5492  C:\Windows\System32\wkscli.dll - ok
19:40:42.0683 5492  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
19:40:42.0683 5492  C:\Windows\System32\samcli.dll - ok
19:40:42.0689 5492  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
19:40:42.0689 5492  C:\Windows\System32\scecli.dll - ok
19:40:42.0696 5492  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
19:40:42.0696 5492  C:\Windows\System32\SPInf.dll - ok
19:40:42.0704 5492  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
19:40:42.0704 5492  C:\Windows\System32\svchost.exe - ok
19:40:42.0710 5492  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
19:40:42.0710 5492  C:\Windows\System32\umpnpmgr.dll - ok
19:40:42.0718 5492  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
19:40:42.0718 5492  C:\Windows\System32\devrtl.dll - ok
19:40:42.0724 5492  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
19:40:42.0724 5492  C:\Windows\System32\gpapi.dll - ok
19:40:42.0731 5492  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
19:40:42.0731 5492  C:\Windows\System32\umpo.dll - ok
19:40:42.0738 5492  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
19:40:42.0738 5492  C:\Windows\System32\pcwum.dll - ok
19:40:42.0745 5492  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
19:40:42.0745 5492  C:\Windows\System32\powrprof.dll - ok
19:40:42.0753 5492  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
19:40:42.0753 5492  C:\Windows\System32\drivers\luafv.sys - ok
19:40:42.0759 5492  [ 92EB844D90615CB266F84C3202B8786E ] C:\Windows\System32\drivers\mbam.sys
19:40:42.0759 5492  C:\Windows\System32\drivers\mbam.sys - ok
19:40:42.0764 5492  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
19:40:42.0764 5492  C:\Windows\System32\rpcss.dll - ok
19:40:42.0769 5492  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
19:40:42.0769 5492  C:\Windows\System32\RpcEpMap.dll - ok
19:40:42.0777 5492  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
19:40:42.0777 5492  C:\Windows\System32\wshqos.dll - ok
19:40:42.0784 5492  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
19:40:42.0784 5492  C:\Windows\System32\WSHTCPIP.DLL - ok
19:40:42.0791 5492  [ 48619A29F9C9C3CFEB66718DD03D8057 ] C:\Windows\System32\atiesrxx.exe
19:40:42.0791 5492  C:\Windows\System32\atiesrxx.exe - ok
19:40:42.0798 5492  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
19:40:42.0798 5492  C:\Windows\System32\FirewallAPI.dll - ok
19:40:42.0806 5492  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
19:40:42.0806 5492  C:\Windows\System32\LogonUI.exe - ok
19:40:42.0813 5492  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
19:40:42.0813 5492  C:\Windows\System32\wtsapi32.dll - ok
19:40:42.0821 5492  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
19:40:42.0821 5492  C:\Windows\System32\authui.dll - ok
19:40:42.0828 5492  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
19:40:42.0828 5492  C:\Windows\System32\version.dll - ok
19:40:42.0835 5492  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
19:40:42.0835 5492  C:\Windows\System32\wevtsvc.dll - ok
19:40:42.0842 5492  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
19:40:42.0842 5492  C:\Windows\System32\audiosrv.dll - ok
19:40:42.0850 5492  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
19:40:42.0850 5492  C:\Windows\System32\FntCache.dll - ok
19:40:42.0860 5492  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
19:40:42.0860 5492  C:\Windows\System32\MMDevAPI.dll - ok
19:40:42.0865 5492  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
19:40:42.0865 5492  C:\Windows\System32\avrt.dll - ok
19:40:42.0872 5492  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
19:40:42.0872 5492  C:\Windows\System32\mmcss.dll - ok
19:40:42.0879 5492  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
19:40:42.0879 5492  C:\Windows\System32\propsys.dll - ok
19:40:42.0886 5492  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
19:40:42.0886 5492  C:\Windows\System32\ntmarta.dll - ok
19:40:42.0894 5492  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
19:40:42.0894 5492  C:\Windows\System32\profsvc.dll - ok
19:40:42.0902 5492  [ B00068BA94F5F306911B14B425AAEB56 ] C:\Program Files\IDT\WDM\stacsv64.exe
19:40:42.0902 5492  C:\Program Files\IDT\WDM\stacsv64.exe - ok
19:40:42.0909 5492  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
19:40:42.0909 5492  C:\Windows\System32\dsound.dll - ok
19:40:42.0915 5492  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
19:40:42.0915 5492  C:\Windows\System32\winmm.dll - ok
19:40:42.0922 5492  [ BD37CB67B1BD1312227C8B1438E319B8 ] C:\Windows\System32\stapi64.dll
19:40:42.0922 5492  C:\Windows\System32\stapi64.dll - ok
19:40:42.0929 5492  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
19:40:42.0929 5492  C:\Windows\System32\cryptui.dll - ok
19:40:42.0936 5492  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
19:40:42.0936 5492  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
19:40:42.0944 5492  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
19:40:42.0944 5492  C:\Windows\System32\samlib.dll - ok
19:40:42.0950 5492  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
19:40:42.0951 5492  C:\Windows\System32\shacct.dll - ok
19:40:42.0957 5492  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
19:40:42.0957 5492  C:\Windows\System32\uxtheme.dll - ok
19:40:42.0963 5492  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
19:40:42.0963 5492  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
19:40:42.0970 5492  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
19:40:42.0971 5492  C:\Windows\System32\dui70.dll - ok
19:40:42.0976 5492  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
19:40:42.0976 5492  C:\Windows\System32\duser.dll - ok
19:40:42.0984 5492  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
19:40:42.0984 5492  C:\Windows\System32\SndVolSSO.dll - ok
19:40:42.0991 5492  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
19:40:42.0991 5492  C:\Windows\System32\hid.dll - ok
19:40:42.0998 5492  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
19:40:42.0998 5492  C:\Windows\System32\dwmapi.dll - ok
19:40:43.0004 5492  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
19:40:43.0004 5492  C:\Windows\System32\xmllite.dll - ok
19:40:43.0011 5492  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
19:40:43.0011 5492  C:\Windows\System32\WindowsCodecs.dll - ok
19:40:43.0017 5492  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
19:40:43.0017 5492  C:\Windows\System32\winbrand.dll - ok
19:40:43.0020 5492  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
19:40:43.0020 5492  C:\Windows\System32\audiodg.exe - ok
19:40:43.0026 5492  [ 9D41654CB12EED5EA4562D4C69D737E3 ] C:\Windows\System32\DPCrProv.dll
19:40:43.0026 5492  C:\Windows\System32\DPCrProv.dll - ok
19:40:43.0031 5492  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
19:40:43.0031 5492  C:\Windows\System32\VaultCredProvider.dll - ok
19:40:43.0037 5492  [ 45277FE27AF71140BA44DB4A061EE04B ] C:\Windows\System32\stapo64.dll
19:40:43.0037 5492  C:\Windows\System32\stapo64.dll - ok
19:40:43.0043 5492  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:40:43.0043 5492  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:40:43.0050 5492  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
19:40:43.0050 5492  C:\Windows\System32\wdmaud.drv - ok
19:40:43.0054 5492  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
19:40:43.0054 5492  C:\Windows\System32\ksuser.dll - ok
19:40:43.0059 5492  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
19:40:43.0059 5492  C:\Windows\System32\BioCredProv.dll - ok
19:40:43.0064 5492  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
19:40:43.0064 5492  C:\Windows\System32\credui.dll - ok
19:40:43.0070 5492  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
19:40:43.0070 5492  C:\Windows\System32\winbio.dll - ok
19:40:43.0075 5492  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
19:40:43.0075 5492  C:\Windows\System32\AudioEng.dll - ok
19:40:43.0081 5492  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
19:40:43.0081 5492  C:\Windows\System32\vaultcli.dll - ok
19:40:43.0086 5492  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
19:40:43.0086 5492  C:\Windows\System32\certCredProvider.dll - ok
19:40:43.0092 5492  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
19:40:43.0092 5492  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
19:40:43.0097 5492  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
19:40:43.0097 5492  C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:40:43.0102 5492  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
19:40:43.0102 5492  C:\Windows\System32\mfplat.dll - ok
19:40:43.0107 5492  [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
19:40:43.0107 5492  C:\Windows\System32\AESTAR64.dll - ok
19:40:43.0112 5492  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
19:40:43.0112 5492  C:\Windows\System32\AudioSes.dll - ok
19:40:43.0118 5492  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
19:40:43.0118 5492  C:\Windows\System32\AUDIOKSE.dll - ok
19:40:43.0123 5492  [ 5E65E90DA3A478C377F7332A9386B023 ] C:\Windows\System32\AESTAC64.dll
19:40:43.0123 5492  C:\Windows\System32\AESTAC64.dll - ok
19:40:43.0128 5492  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
19:40:43.0128 5492  C:\Windows\System32\atl.dll - ok
19:40:43.0134 5492  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
19:40:43.0134 5492  C:\Windows\System32\themeservice.dll - ok
19:40:43.0139 5492  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
19:40:43.0139 5492  C:\Windows\System32\adtschema.dll - ok
19:40:43.0144 5492  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
19:40:43.0144 5492  C:\Windows\System32\radardt.dll - ok
19:40:43.0150 5492  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
19:40:43.0150 5492  C:\Windows\System32\es.dll - ok
19:40:43.0155 5492  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
19:40:43.0155 5492  C:\Windows\System32\comres.dll - ok
19:40:43.0160 5492  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
19:40:43.0160 5492  C:\Windows\System32\Sens.dll - ok
19:40:43.0166 5492  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
19:40:43.0166 5492  C:\Windows\System32\rasplap.dll - ok
19:40:43.0171 5492  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
19:40:43.0171 5492  C:\Windows\System32\rasapi32.dll - ok
19:40:43.0176 5492  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
19:40:43.0176 5492  C:\Windows\System32\rasman.dll - ok
19:40:43.0181 5492  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
19:40:43.0182 5492  C:\Windows\System32\rtutils.dll - ok
19:40:43.0187 5492  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
19:40:43.0187 5492  C:\Windows\System32\gpsvc.dll - ok
19:40:43.0192 5492  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
19:40:43.0192 5492  C:\Windows\System32\dsrole.dll - ok
19:40:43.0198 5492  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] C:\Windows\System32\hpservice.exe
19:40:43.0198 5492  C:\Windows\System32\hpservice.exe - ok
19:40:43.0204 5492  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
19:40:43.0204 5492  C:\Windows\System32\nlaapi.dll - ok
19:40:43.0211 5492  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
19:40:43.0211 5492  C:\Windows\System32\slc.dll - ok
19:40:43.0216 5492  [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
19:40:43.0217 5492  C:\Windows\System32\mfc42u.dll - ok
19:40:43.0222 5492  [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
19:40:43.0222 5492  C:\Windows\System32\odbc32.dll - ok
19:40:43.0227 5492  [ E83C1989A52459D6D8E143AC9F23C93D ] C:\Windows\System32\accelerometerdll.DLL
19:40:43.0227 5492  C:\Windows\System32\accelerometerdll.DLL - ok
19:40:43.0233 5492  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
19:40:43.0233 5492  C:\Windows\System32\odbcint.dll - ok
19:40:43.0238 5492  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
19:40:43.0238 5492  C:\Windows\System32\uxsms.dll - ok
19:40:43.0244 5492  [ A90CA3B8D159269A317BFF556CB995F7 ] C:\Windows\System32\atieclxx.exe
19:40:43.0244 5492  C:\Windows\System32\atieclxx.exe - ok
19:40:43.0250 5492  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
19:40:43.0250 5492  C:\Windows\System32\UXInit.dll - ok
19:40:43.0255 5492  [ B09151888F2604D6C074D2B5FA91B56E ] C:\Windows\System32\atiadlxx.dll
19:40:43.0256 5492  C:\Windows\System32\atiadlxx.dll - ok
19:40:43.0261 5492  [ 2662F24C7AEE2A32CEBDEC907A5366F1 ] C:\Windows\System32\vcsFPService.exe
19:40:43.0261 5492  C:\Windows\System32\vcsFPService.exe - ok
19:40:43.0268 5492  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
19:40:43.0268 5492  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
19:40:43.0272 5492  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
19:40:43.0272 5492  C:\Windows\System32\drivers\lltdio.sys - ok
19:40:43.0280 5492  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
19:40:43.0280 5492  C:\Windows\System32\wsock32.dll - ok
19:40:43.0285 5492  [ 5D0F03EEF3205F66ECFBE72A7CBBAD1F ] C:\Windows\System32\winusb.dll
19:40:43.0285 5492  C:\Windows\System32\winusb.dll - ok
19:40:43.0290 5492  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
19:40:43.0290 5492  C:\Windows\System32\msacm32.dll - ok
19:40:43.0297 5492  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
19:40:43.0297 5492  C:\Windows\System32\msacm32.drv - ok
19:40:43.0301 5492  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
19:40:43.0301 5492  C:\Windows\System32\midimap.dll - ok
19:40:43.0306 5492  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
19:40:43.0306 5492  C:\Windows\System32\drivers\ndisuio.sys - ok
19:40:43.0311 5492  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
19:40:43.0311 5492  C:\Windows\System32\drivers\nwifi.sys - ok
19:40:43.0317 5492  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
19:40:43.0317 5492  C:\Windows\System32\oleacc.dll - ok
19:40:43.0322 5492  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
19:40:43.0322 5492  C:\Windows\System32\drivers\rspndr.sys - ok
19:40:43.0327 5492  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
19:40:43.0327 5492  C:\Windows\System32\IPHLPAPI.DLL - ok
19:40:43.0332 5492  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
19:40:43.0332 5492  C:\Windows\System32\lmhsvc.dll - ok
19:40:43.0338 5492  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
19:40:43.0338 5492  C:\Windows\System32\nsisvc.dll - ok
19:40:43.0343 5492  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
19:40:43.0343 5492  C:\Windows\System32\nrpsrv.dll - ok
19:40:43.0349 5492  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
19:40:43.0349 5492  C:\Windows\System32\winnsi.dll - ok
19:40:43.0354 5492  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
19:40:43.0354 5492  C:\Windows\System32\dnsrslvr.dll - ok
19:40:43.0359 5492  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
19:40:43.0360 5492  C:\Windows\System32\eapsvc.dll - ok
19:40:43.0365 5492  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
19:40:43.0365 5492  C:\Windows\System32\keyiso.dll - ok
19:40:43.0371 5492  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
19:40:43.0371 5492  C:\Windows\System32\eapphost.dll - ok
19:40:43.0376 5492  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
19:40:43.0376 5492  C:\Windows\System32\dhcpcore.dll - ok
19:40:43.0382 5492  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
19:40:43.0382 5492  C:\Windows\System32\dhcpcore6.dll - ok
19:40:43.0389 5492  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
19:40:43.0389 5492  C:\Windows\System32\FWPUCLNT.DLL - ok
19:40:43.0395 5492  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
19:40:43.0395 5492  C:\Windows\System32\netprofm.dll - ok
19:40:43.0401 5492  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
19:40:43.0401 5492  C:\Windows\System32\UIAutomationCore.dll - ok
19:40:43.0408 5492  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
19:40:43.0408 5492  C:\Windows\System32\umb.dll - ok
19:40:43.0413 5492  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
19:40:43.0413 5492  C:\Windows\System32\wlansvc.dll - ok
19:40:43.0420 5492  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
19:40:43.0420 5492  C:\Windows\System32\wlanmsm.dll - ok
19:40:43.0425 5492  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
19:40:43.0425 5492  C:\Windows\System32\wlansec.dll - ok
19:40:43.0432 5492  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
19:40:43.0432 5492  C:\Windows\System32\onex.dll - ok
19:40:43.0437 5492  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
19:40:43.0437 5492  C:\Windows\System32\dhcpcsvc.dll - ok
19:40:43.0442 5492  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
19:40:43.0442 5492  C:\Windows\System32\eappprxy.dll - ok
19:40:43.0447 5492  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
19:40:43.0447 5492  C:\Windows\System32\eappcfg.dll - ok
19:40:43.0455 5492  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
19:40:43.0455 5492  C:\Windows\System32\l2gpstore.dll - ok
19:40:43.0461 5492  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
19:40:43.0461 5492  C:\Windows\System32\wlgpclnt.dll - ok
19:40:43.0468 5492  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
19:40:43.0468 5492  C:\Windows\System32\WinSCard.dll - ok
19:40:43.0475 5492  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
19:40:43.0475 5492  C:\Windows\System32\wlanutil.dll - ok
19:40:43.0482 5492  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
19:40:43.0482 5492  C:\Windows\System32\msxml6.dll - ok
19:40:43.0488 5492  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
19:40:43.0488 5492  C:\Windows\System32\dhcpcsvc6.dll - ok
19:40:43.0495 5492  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
19:40:43.0495 5492  C:\Windows\System32\dnsext.dll - ok
19:40:43.0501 5492  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
19:40:43.0501 5492  C:\Windows\System32\shsvcs.dll - ok
19:40:43.0507 5492  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
19:40:43.0507 5492  C:\Windows\System32\wlanext.exe - ok
19:40:43.0515 5492  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
19:40:43.0515 5492  C:\Windows\System32\schedsvc.dll - ok
19:40:43.0521 5492  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
19:40:43.0521 5492  C:\Windows\System32\conhost.exe - ok
19:40:43.0525 5492  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
19:40:43.0526 5492  C:\Windows\System32\ktmw32.dll - ok
19:40:43.0532 5492  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
19:40:43.0532 5492  C:\Windows\System32\imageres.dll - ok
19:40:43.0538 5492  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
19:40:43.0538 5492  C:\Windows\System32\fveapi.dll - ok
19:40:43.0543 5492  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
19:40:43.0543 5492  C:\Windows\System32\tbs.dll - ok
19:40:43.0550 5492  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
19:40:43.0550 5492  C:\Windows\System32\fvecerts.dll - ok
19:40:43.0557 5492  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
19:40:43.0557 5492  C:\Windows\System32\taskcomp.dll - ok
19:40:43.0564 5492  [ 366AC361522AAE4EF3ABFD7E68D4FFB4 ] C:\Windows\System32\iwmssvc.dll
19:40:43.0564 5492  C:\Windows\System32\iwmssvc.dll - ok
19:40:43.0571 5492  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
19:40:43.0571 5492  C:\Windows\System32\drivers\http.sys - ok
19:40:43.0579 5492  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
19:40:43.0579 5492  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 AM

Posted 05 March 2013 - 08:13 AM

.


Edited by narenxp, 05 March 2013 - 08:16 AM.


#7 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 08:14 AM

Apparently this is too long, so this will be in three parts.  Sorry.  

 

TDSS Log Part Two.

 

 

19:40:43.0586 5492  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
19:40:43.0586 5492  C:\Windows\System32\winspool.drv - ok
19:40:43.0591 5492  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
19:40:43.0591 5492  C:\Windows\System32\wlanapi.dll - ok
19:40:43.0596 5492  [ D844B11545F53AA0C10F78763381D9EC ] C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
19:40:43.0596 5492  C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll - ok
19:40:43.0601 5492  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
19:40:43.0601 5492  C:\Windows\System32\wiarpc.dll - ok
19:40:43.0607 5492  [ C1DE9B1E928F844AD7E640CF54F74FDD ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
19:40:43.0607 5492  C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
19:40:43.0614 5492  [ 1F5DA72CD1612DEE384860687D1AD617 ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll
19:40:43.0615 5492  C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll - ok
19:40:43.0622 5492  [ D91D9EA4F71EF04373B6994B4C83278E ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
19:40:43.0622 5492  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
19:40:43.0630 5492  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
19:40:43.0630 5492  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
19:40:43.0635 5492  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
19:40:43.0635 5492  C:\Windows\System32\spoolsv.exe - ok
19:40:43.0641 5492  [ EAC9D9868D37C8785D12475A9BB65A11 ] C:\Program Files\DigitalPersona\Bin\DpHostW.exe
19:40:43.0641 5492  C:\Program Files\DigitalPersona\Bin\DpHostW.exe - ok
19:40:43.0648 5492  [ 1835A383961F7BD8EE098782474C045A ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
19:40:43.0648 5492  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
19:40:43.0654 5492  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
19:40:43.0654 5492  C:\Windows\System32\ntdsapi.dll - ok
19:40:43.0661 5492  [ 23540053862DDED4A2CA328AC3748B61 ] C:\Program Files\DigitalPersona\Bin\DPAthTok.dll
19:40:43.0661 5492  C:\Program Files\DigitalPersona\Bin\DPAthTok.dll - ok
19:40:43.0667 5492  [ EA2F2C5452988EC03E4E6349D7747C4D ] C:\Program Files\DigitalPersona\Bin\DPAuthEn.dll
19:40:43.0667 5492  C:\Program Files\DigitalPersona\Bin\DPAuthEn.dll - ok
19:40:43.0674 5492  [ 764F733096FE8B5F2DB1C220243756D7 ] C:\Program Files\DigitalPersona\Bin\DPCOper2.dll
19:40:43.0674 5492  C:\Program Files\DigitalPersona\Bin\DPCOper2.dll - ok
19:40:43.0681 5492  [ 839A991815CD22DF6F76454B097503EA ] C:\Program Files\DigitalPersona\Bin\DPCrStor.dll
19:40:43.0681 5492  C:\Program Files\DigitalPersona\Bin\DPCrStor.dll - ok
19:40:43.0686 5492  [ AFB6D1F5625531C821A285F5FA987537 ] C:\Program Files\DigitalPersona\Bin\DPDB.dll
19:40:43.0686 5492  C:\Program Files\DigitalPersona\Bin\DPDB.dll - ok
19:40:43.0691 5492  [ 50D90866BF0E2E540634358867923298 ] C:\Program Files\DigitalPersona\Bin\DPDBConv.dll
19:40:43.0691 5492  C:\Program Files\DigitalPersona\Bin\DPDBConv.dll - ok
19:40:43.0696 5492  [ 2699136E517E91A896EF268CB8540D0A ] C:\Program Files\DigitalPersona\Bin\DPDomAcv.dll
19:40:43.0696 5492  C:\Program Files\DigitalPersona\Bin\DPDomAcv.dll - ok
19:40:43.0702 5492  [ 06ACB74235B09D91EBBA17DDCF876165 ] C:\Program Files\DigitalPersona\Bin\DPDomSyn.dll
19:40:43.0702 5492  C:\Program Files\DigitalPersona\Bin\DPDomSyn.dll - ok
19:40:43.0706 5492  [ 074C1A8EBF2EE01CB163D338AAFBB838 ] C:\Program Files\DigitalPersona\Bin\DPILPro.dll
19:40:43.0706 5492  C:\Program Files\DigitalPersona\Bin\DPILPro.dll - ok
19:40:43.0712 5492  [ 43AD0DE2CA2AF4B3F93FBA49AC969F44 ] C:\Program Files\DigitalPersona\Bin\DPMux.dll
19:40:43.0712 5492  C:\Program Files\DigitalPersona\Bin\DPMux.dll - ok
19:40:43.0717 5492  [ 7ECA62E5C282691B4AA34FA70951E8F7 ] C:\Program Files\DigitalPersona\Bin\DPPasswordAuthProvider.dll
19:40:43.0717 5492  C:\Program Files\DigitalPersona\Bin\DPPasswordAuthProvider.dll - ok
19:40:43.0721 5492  [ 3818686F4C7F76654E1843CA331B4F6F ] C:\Program Files\DigitalPersona\Bin\DpSvInfo2.dll
19:40:43.0721 5492  C:\Program Files\DigitalPersona\Bin\DpSvInfo2.dll - ok
19:40:43.0726 5492  [ CDE6E6A99666E52A6C193B7D6DE06F9E ] C:\Windows\System32\DPClback.dll
19:40:43.0726 5492  C:\Windows\System32\DPClback.dll - ok
19:40:43.0731 5492  [ DE043CE411FED36DAE8F2961A6324C4A ] C:\Program Files\DigitalPersona\Bin\DPDevice2.dll
19:40:43.0731 5492  C:\Program Files\DigitalPersona\Bin\DPDevice2.dll - ok
19:40:43.0736 5492  [ 817B8A4264C826682E82855A4F92133A ] C:\Program Files\DigitalPersona\Bin\DPDeviceAfss8.dll
19:40:43.0736 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceAfss8.dll - ok
19:40:43.0741 5492  [ 9AD3F126611CF0AF4B79E6FB0E899DDE ] C:\Program Files\DigitalPersona\Bin\DPDeviceAfss9.dll
19:40:43.0741 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceAfss9.dll - ok
19:40:43.0746 5492  [ AE02AF9D3FAA6930717D803032F320AD ] C:\Program Files\DigitalPersona\Bin\DPDeviceEgistec.dll
19:40:43.0746 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceEgistec.dll - ok
19:40:43.0751 5492  [ EACC7E4D31F966616D1E32F191B075EA ] C:\Program Files\DigitalPersona\Bin\DPDeviceUpekBs.dll
19:40:43.0751 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceUpekBs.dll - ok
19:40:43.0756 5492  [ 909B8558B0EE34F3CB31AA3756679157 ] C:\Program Files\DigitalPersona\Bin\DPDeviceValidity301.dll
19:40:43.0756 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceValidity301.dll - ok
19:40:43.0760 5492  [ A6FEE05AF01E3AE8725B435543FE145C ] C:\Program Files\DigitalPersona\Bin\DPDeviceValidityVcs.dll
19:40:43.0760 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceValidityVcs.dll - ok
19:40:43.0766 5492  [ 4F15060551A6D9D86A698E7C065DA111 ] C:\Program Files\DigitalPersona\Bin\DPDeviceWBF.dll
19:40:43.0766 5492  C:\Program Files\DigitalPersona\Bin\DPDeviceWBF.dll - ok
19:40:43.0771 5492  [ 3178FC8EFD83CEC191179657EB07A0FC ] C:\Windows\System32\vcsFPClient.dll
19:40:43.0771 5492  C:\Windows\System32\vcsFPClient.dll - ok
19:40:43.0776 5492  [ CA49D4F598328CC28987304D23FE76E6 ] C:\Program Files\DigitalPersona\Bin\DPPTEventLog.dll
19:40:43.0776 5492  C:\Program Files\DigitalPersona\Bin\DPPTEventLog.dll - ok
19:40:43.0780 5492  [ 3BC4D972B7846B8355C98BA8CE369529 ] C:\Windows\System32\dpHMatch.dll
19:40:43.0780 5492  C:\Windows\System32\dpHMatch.dll - ok
19:40:43.0785 5492  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
19:40:43.0785 5492  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
19:40:43.0790 5492  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
19:40:43.0790 5492  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
19:40:43.0795 5492  [ 2B42A2665B12ED7465E6DD5017006CEF ] C:\Windows\System32\dpHFtrEx.dll
19:40:43.0795 5492  C:\Windows\System32\dpHFtrEx.dll - ok
19:40:43.0801 5492  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
19:40:43.0801 5492  C:\Windows\System32\BFE.DLL - ok
19:40:43.0806 5492  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
19:40:43.0806 5492  C:\Windows\System32\drivers\bowser.sys - ok
19:40:43.0811 5492  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
19:40:43.0811 5492  C:\Windows\System32\drivers\mpsdrv.sys - ok
19:40:43.0817 5492  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
19:40:43.0818 5492  C:\Windows\System32\drivers\mrxsmb.sys - ok
19:40:43.0823 5492  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
19:40:43.0823 5492  C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:40:43.0827 5492  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
19:40:43.0828 5492  C:\Windows\System32\MPSSVC.dll - ok
19:40:43.0834 5492  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
19:40:43.0834 5492  C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:40:43.0841 5492  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
19:40:43.0841 5492  C:\Windows\System32\wkssvc.dll - ok
19:40:43.0848 5492  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
19:40:43.0848 5492  C:\Windows\System32\wfapigp.dll - ok
19:40:43.0855 5492  [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:40:43.0855 5492  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
19:40:43.0863 5492  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
19:40:43.0863 5492  C:\Windows\SysWOW64\ntdll.dll - ok
19:40:43.0869 5492  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
19:40:43.0869 5492  C:\Windows\System32\mscms.dll - ok
19:40:43.0874 5492  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
19:40:43.0874 5492  C:\Windows\System32\wow64.dll - ok
19:40:43.0882 5492  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
19:40:43.0882 5492  C:\Windows\System32\wow64win.dll - ok
19:40:43.0889 5492  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
19:40:43.0889 5492  C:\Windows\System32\wow64cpu.dll - ok
19:40:43.0895 5492  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
19:40:43.0895 5492  C:\Windows\SysWOW64\kernel32.dll - ok
19:40:43.0902 5492  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
19:40:43.0902 5492  C:\Windows\System32\pcasvc.dll - ok
19:40:43.0907 5492  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
19:40:43.0907 5492  C:\Windows\System32\snmptrap.exe - ok
19:40:43.0914 5492  [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
19:40:43.0914 5492  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
19:40:43.0921 5492  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
19:40:43.0921 5492  C:\Windows\SysWOW64\KernelBase.dll - ok
19:40:43.0928 5492  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
19:40:43.0928 5492  C:\Windows\SysWOW64\user32.dll - ok
19:40:43.0933 5492  [ 2DEDC3CCFB72C054292CD94BA427A237 ] C:\Program Files\Zune\ZuneResources.dll
19:40:43.0933 5492  C:\Program Files\Zune\ZuneResources.dll - ok
19:40:43.0938 5492  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
19:40:43.0938 5492  C:\Windows\SysWOW64\gdi32.dll - ok
19:40:43.0943 5492  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
19:40:43.0943 5492  C:\Windows\SysWOW64\lpk.dll - ok
19:40:43.0948 5492  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
19:40:43.0948 5492  C:\Windows\SysWOW64\usp10.dll - ok
19:40:43.0953 5492  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
19:40:43.0953 5492  C:\Windows\SysWOW64\msvcrt.dll - ok
19:40:43.0958 5492  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
19:40:43.0958 5492  C:\Windows\SysWOW64\advapi32.dll - ok
19:40:43.0964 5492  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
19:40:43.0964 5492  C:\Windows\SysWOW64\rpcrt4.dll - ok
19:40:43.0969 5492  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
19:40:43.0969 5492  C:\Windows\SysWOW64\sechost.dll - ok
19:40:43.0974 5492  [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
19:40:43.0974 5492  C:\Windows\SysWOW64\sspicli.dll - ok
19:40:43.0980 5492  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
19:40:43.0980 5492  C:\Windows\SysWOW64\cryptbase.dll - ok
19:40:43.0986 5492  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
19:40:43.0986 5492  C:\Windows\SysWOW64\shell32.dll - ok
19:40:43.0993 5492  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:40:43.0993 5492  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:40:43.0999 5492  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
19:40:43.0999 5492  C:\Windows\System32\drivers\fltMgr.sys - ok
19:40:44.0003 5492  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
19:40:44.0003 5492  C:\Windows\System32\PSHED.DLL - ok
19:40:44.0009 5492  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:40:44.0009 5492  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:40:44.0016 5492  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
19:40:44.0016 5492  C:\Windows\System32\provsvc.dll - ok
19:40:44.0023 5492  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
19:40:44.0023 5492  C:\Windows\System32\sstpsvc.dll - ok
19:40:44.0031 5492  [ 08B6EE68F5717EC97F66718F8310A0B9 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
19:40:44.0031 5492  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
19:40:44.0036 5492  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
19:40:44.0036 5492  C:\Windows\SysWOW64\ole32.dll - ok
19:40:44.0042 5492  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
19:40:44.0042 5492  C:\Windows\SysWOW64\shlwapi.dll - ok
19:40:44.0049 5492  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
19:40:44.0049 5492  C:\Windows\SysWOW64\oleaut32.dll - ok
19:40:44.0054 5492  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
19:40:44.0054 5492  C:\Windows\SysWOW64\crypt32.dll - ok
19:40:44.0058 5492  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
19:40:44.0058 5492  C:\Windows\SysWOW64\msasn1.dll - ok
19:40:44.0065 5492  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
19:40:44.0065 5492  C:\Windows\SysWOW64\wintrust.dll - ok
19:40:44.0072 5492  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:40:44.0072 5492  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:40:44.0079 5492  [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
19:40:44.0079 5492  C:\Program Files\IDT\WDM\AESTSr64.exe - ok
19:40:44.0084 5492  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
19:40:44.0084 5492  C:\Windows\SysWOW64\imm32.dll - ok
19:40:44.0090 5492  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
19:40:44.0090 5492  C:\Windows\SysWOW64\msctf.dll - ok
19:40:44.0096 5492  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
19:40:44.0096 5492  C:\Windows\System32\cryptsvc.dll - ok
19:40:44.0102 5492  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
19:40:44.0102 5492  C:\Windows\System32\dps.dll - ok
19:40:44.0109 5492  [ 3DC11A802353401332D49C3CBFBBE5FC ] C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
19:40:44.0109 5492  C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe - ok
19:40:44.0116 5492  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
19:40:44.0116 5492  C:\Windows\System32\cryptnet.dll - ok
19:40:44.0122 5492  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
19:40:44.0122 5492  C:\Windows\System32\FDResPub.dll - ok
19:40:44.0126 5492  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
19:40:44.0126 5492  C:\Windows\System32\taskschd.dll - ok
19:40:44.0132 5492  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
19:40:44.0132 5492  C:\Windows\System32\WSDApi.dll - ok
19:40:44.0137 5492  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
19:40:44.0137 5492  C:\Windows\System32\vssapi.dll - ok
19:40:44.0142 5492  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
19:40:44.0142 5492  C:\Windows\System32\winhttp.dll - ok
19:40:44.0147 5492  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
19:40:44.0147 5492  C:\Windows\System32\webio.dll - ok
19:40:44.0151 5492  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
19:40:44.0151 5492  C:\Windows\System32\webservices.dll - ok
19:40:44.0157 5492  [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
19:40:44.0157 5492  C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
19:40:44.0163 5492  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
19:40:44.0163 5492  C:\Windows\System32\fundisc.dll - ok
19:40:44.0169 5492  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
19:40:44.0169 5492  C:\Windows\System32\vsstrace.dll - ok
19:40:44.0174 5492  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
19:40:44.0174 5492  C:\Windows\System32\msimg32.dll - ok
19:40:44.0181 5492  [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
19:40:44.0181 5492  C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
19:40:44.0188 5492  [ F55442690A70A0278A7EED4FAAEBF576 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
19:40:44.0188 5492  C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - ok
19:40:44.0195 5492  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
19:40:44.0195 5492  C:\Windows\System32\httpapi.dll - ok
19:40:44.0202 5492  [ 854197D1270D20193FE2D4B14784AADE ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
19:40:44.0202 5492  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - ok
19:40:44.0207 5492  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\msvcr100.dll
19:40:44.0208 5492  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\msvcr100.dll - ok
19:40:44.0215 5492  [ FCBDCC6F1801E32244235608E1277752 ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:40:44.0215 5492  C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
19:40:44.0220 5492  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
19:40:44.0220 5492  C:\Windows\System32\IKEEXT.DLL - ok
19:40:44.0226 5492  [ A206F9C6A80585F19873FEBE2546AED1 ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
19:40:44.0226 5492  C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
19:40:44.0231 5492  [ F8D349E18AB09B340231CD5689B7C6D3 ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
19:40:44.0231 5492  C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
19:40:44.0235 5492  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
19:40:44.0236 5492  C:\Windows\SysWOW64\psapi.dll - ok
19:40:44.0241 5492  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
19:40:44.0241 5492  C:\Windows\System32\vpnikeapi.dll - ok
19:40:44.0246 5492  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
19:40:44.0247 5492  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
19:40:44.0252 5492  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
19:40:44.0252 5492  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
19:40:44.0257 5492  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:40:44.0257 5492  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
19:40:44.0264 5492  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
19:40:44.0264 5492  C:\Windows\SysWOW64\profapi.dll - ok
19:40:44.0269 5492  [ 8624E0E2418413614EE1FECDB7B76B88 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
19:40:44.0269 5492  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
19:40:44.0275 5492  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
19:40:44.0275 5492  C:\Windows\SysWOW64\version.dll - ok
19:40:44.0279 5492  [ D4467A285C91752018F67CDBA8680BAB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
19:40:44.0279 5492  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
19:40:44.0285 5492  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
19:40:44.0285 5492  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
19:40:44.0290 5492  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
19:40:44.0290 5492  C:\Windows\SysWOW64\nsi.dll - ok
19:40:44.0295 5492  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
19:40:44.0295 5492  C:\Windows\SysWOW64\userenv.dll - ok
19:40:44.0299 5492  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
19:40:44.0300 5492  C:\Windows\SysWOW64\winnsi.dll - ok
19:40:44.0305 5492  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
19:40:44.0305 5492  C:\Windows\SysWOW64\ws2_32.dll - ok
19:40:44.0309 5492  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
19:40:44.0309 5492  C:\Windows\SysWOW64\wtsapi32.dll - ok
19:40:44.0316 5492  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:40:44.0316 5492  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
19:40:44.0321 5492  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
19:40:44.0321 5492  C:\Windows\SysWOW64\cryptsp.dll - ok
19:40:44.0327 5492  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
19:40:44.0327 5492  C:\Windows\SysWOW64\rsaenh.dll - ok
19:40:44.0333 5492  [ 4BE1DCAD76BE96D1EC887A41E570C404 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
19:40:44.0333 5492  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
19:40:44.0341 5492  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
19:40:44.0341 5492  C:\Windows\SysWOW64\mpr.dll - ok
19:40:44.0345 5492  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
19:40:44.0345 5492  C:\Windows\System32\msi.dll - ok
19:40:44.0351 5492  [ A190DA6546501CB4146BBCC0B6A3F48B ] C:\Windows\System32\msiexec.exe
19:40:44.0351 5492  C:\Windows\System32\msiexec.exe - ok
19:40:44.0357 5492  [ 3306930FD3AC4ABB17A6DFC9222467F1 ] C:\Windows\AppPatch\AppPatch64\AcLayers.dll
19:40:44.0357 5492  C:\Windows\AppPatch\AppPatch64\AcLayers.dll - ok
19:40:44.0362 5492  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
19:40:44.0363 5492  C:\Windows\SysWOW64\ntmarta.dll - ok
19:40:44.0368 5492  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
19:40:44.0368 5492  C:\Windows\SysWOW64\winsta.dll - ok
19:40:44.0373 5492  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
19:40:44.0374 5492  C:\Windows\SysWOW64\Wldap32.dll - ok
19:40:44.0380 5492  [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
19:40:44.0380 5492  C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
19:40:44.0387 5492  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
19:40:44.0387 5492  C:\Windows\System32\mpr.dll - ok
19:40:44.0394 5492  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
19:40:44.0394 5492  C:\Windows\System32\sfc.dll - ok
19:40:44.0399 5492  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
19:40:44.0399 5492  C:\Windows\System32\sfc_os.dll - ok
19:40:44.0405 5492  [ 5839A8027D6D324A7CD494051A96628C ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
19:40:44.0405 5492  C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe - ok
19:40:44.0410 5492  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
19:40:44.0410 5492  C:\Windows\System32\ncsi.dll - ok
19:40:44.0420 5492  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
19:40:44.0420 5492  C:\Windows\System32\nlasvc.dll - ok
19:40:44.0424 5492  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
19:40:44.0424 5492  C:\Windows\System32\ssdpapi.dll - ok
19:40:44.0431 5492  [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Symantec\Norton Online Backup\BuEng.dll
19:40:44.0431 5492  C:\Program Files (x86)\Symantec\Norton Online Backup\BuEng.dll - ok
19:40:44.0435 5492  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
19:40:44.0436 5492  C:\Windows\System32\aepic.dll - ok
19:40:44.0440 5492  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
19:40:44.0440 5492  C:\Windows\System32\drivers\PEAuth.sys - ok
19:40:44.0445 5492  [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
19:40:44.0446 5492  C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe - ok
19:40:44.0450 5492  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
19:40:44.0450 5492  C:\Windows\SysWOW64\winspool.drv - ok
19:40:44.0456 5492  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
19:40:44.0456 5492  C:\Windows\SysWOW64\oleacc.dll - ok
19:40:44.0461 5492  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
19:40:44.0461 5492  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
19:40:44.0466 5492  [ A6BAEA839CC888D4961AB5FE16BB8C4A ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:40:44.0466 5492  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok
19:40:44.0472 5492  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
19:40:44.0472 5492  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
19:40:44.0479 5492  [ C1568E17039B2EC2B73A4F880DDD51E5 ] C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
19:40:44.0479 5492  C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe - ok
19:40:44.0486 5492  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
19:40:44.0486 5492  C:\Windows\SysWOW64\wininet.dll - ok
19:40:44.0493 5492  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
19:40:44.0493 5492  C:\Windows\SysWOW64\iertutil.dll - ok
19:40:44.0499 5492  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
19:40:44.0499 5492  C:\Windows\SysWOW64\urlmon.dll - ok
19:40:44.0505 5492  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
19:40:44.0505 5492  C:\Windows\System32\drivers\secdrv.sys - ok
19:40:44.0510 5492  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
19:40:44.0510 5492  C:\Windows\System32\drivers\srvnet.sys - ok
19:40:44.0516 5492  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
19:40:44.0516 5492  C:\Windows\System32\drivers\tcpipreg.sys - ok
19:40:44.0521 5492  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
19:40:44.0521 5492  C:\Windows\System32\sysmain.dll - ok
19:40:44.0526 5492  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
19:40:44.0526 5492  C:\Windows\System32\wiaservc.dll - ok
19:40:44.0531 5492  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
19:40:44.0531 5492  C:\Windows\System32\wiatrace.dll - ok
19:40:44.0537 5492  [ 8686E96E13F41AC9806A79CA8004FEEE ] C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
19:40:44.0537 5492  C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe - ok
19:40:44.0542 5492  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
19:40:44.0542 5492  C:\Windows\System32\trkwks.dll - ok
19:40:44.0547 5492  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
19:40:44.0547 5492  C:\Windows\System32\dbghelp.dll - ok
19:40:44.0551 5492  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
19:40:44.0551 5492  C:\Windows\System32\fdPnp.dll - ok
19:40:44.0556 5492  [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
19:40:44.0556 5492  C:\Windows\System32\wsdchngr.dll - ok
19:40:44.0561 5492  [ B52CA47458C267FBB557D43C58660CAA ] C:\Windows\System32\BrWi209c.dll
19:40:44.0561 5492  C:\Windows\System32\BrWi209c.dll - ok
19:40:44.0567 5492  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:40:44.0568 5492  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
19:40:44.0574 5492  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
19:40:44.0574 5492  C:\Windows\System32\wbem\WMIsvc.dll - ok
19:40:44.0580 5492  [ 7ED370BEEA21C6037FBE5A6419B1134D ] C:\Windows\System32\supplicant.dll
19:40:44.0580 5492  C:\Windows\System32\supplicant.dll - ok
19:40:44.0586 5492  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
19:40:44.0586 5492  C:\Windows\System32\netcfgx.dll - ok
19:40:44.0592 5492  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
19:40:44.0593 5492  C:\Windows\System32\wbemcomn.dll - ok
19:40:44.0599 5492  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:40:44.0599 5492  C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:40:44.0606 5492  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:40:44.0606 5492  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:40:44.0612 5492  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
19:40:44.0612 5492  C:\Windows\System32\wbem\fastprox.dll - ok
19:40:44.0619 5492  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
19:40:44.0619 5492  C:\Windows\System32\wbem\wbemprox.dll - ok
19:40:44.0623 5492  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
19:40:44.0623 5492  C:\Windows\System32\wbem\wbemcore.dll - ok
19:40:44.0629 5492  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
19:40:44.0629 5492  C:\Windows\System32\wbem\esscli.dll - ok
19:40:44.0636 5492  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
19:40:44.0636 5492  C:\Windows\System32\wbem\wbemsvc.dll - ok
19:40:44.0641 5492  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
19:40:44.0642 5492  C:\Windows\System32\wbem\wmiutils.dll - ok
19:40:44.0648 5492  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
19:40:44.0648 5492  C:\Windows\System32\wbem\repdrvfs.dll - ok
19:40:44.0652 5492  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
19:40:44.0652 5492  C:\Windows\System32\aeevts.dll - ok
19:40:44.0659 5492  [ 615CC38CD92B15C4B07E3B3CD4DA92C0 ] C:\Windows\System32\BrNetSti.dll
19:40:44.0660 5492  C:\Windows\System32\BrNetSti.dll - ok
19:40:44.0667 5492  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
19:40:44.0667 5492  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
19:40:44.0672 5492  [ E3370E3143ED1FB77D356F688F2EBB2A ] C:\Windows\System32\BrSNMP64.dll
19:40:44.0672 5492  C:\Windows\System32\BrSNMP64.dll - ok
19:40:44.0677 5492  [ CFB89F5FF4D93244C722B4C86152870E ] C:\Windows\System32\BrWia09b.dll
19:40:44.0678 5492  C:\Windows\System32\BrWia09b.dll - ok
19:40:44.0684 5492  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
19:40:44.0684 5492  C:\Windows\System32\SensApi.dll - ok
19:40:44.0690 5492  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
19:40:44.0690 5492  C:\Windows\System32\wer.dll - ok
19:40:44.0696 5492  [ 61458C120CDDFE7514E2DB125568CA59 ] C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
19:40:44.0696 5492  C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe - ok
19:40:44.0701 5492  [ D51B86CDCD2C1C74BF6DC3ADC815CE26 ] C:\Windows\System32\HPScanMiniDrv_OJ6500_E710nz.dll
19:40:44.0701 5492  C:\Windows\System32\HPScanMiniDrv_OJ6500_E710nz.dll - ok
19:40:44.0707 5492  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
19:40:44.0707 5492  C:\Windows\System32\NapiNSP.dll - ok
19:40:44.0714 5492  [ BDFCB7E8C108D042B213957D2B044E7E ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:40:44.0714 5492  C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok
19:40:44.0721 5492  [ 1910285E124F0D98E5F1677D91FD3654 ] C:\Program Files\Intel\WiMAX\Bin\wimaxMO.dll
19:40:44.0721 5492  C:\Program Files\Intel\WiMAX\Bin\wimaxMO.dll - ok
19:40:44.0727 5492  [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
19:40:44.0727 5492  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
19:40:44.0734 5492  [ 90BEB87AC07660BC13F8136F559393A2 ] C:\Windows\System32\iWmxSDK.dll
19:40:44.0734 5492  C:\Windows\System32\iWmxSDK.dll - ok
19:40:44.0740 5492  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
19:40:44.0740 5492  C:\Windows\System32\msxml3.dll - ok
19:40:44.0745 5492  [ DC47CF6D2821C78FA8E5BA6DE96005ED ] C:\Windows\System32\PipeHandler.dll
19:40:44.0745 5492  C:\Windows\System32\PipeHandler.dll - ok
19:40:44.0750 5492  [ D63652F124E1D23F145667591AB5B737 ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
19:40:44.0750 5492  C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok
19:40:44.0756 5492  [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
19:40:44.0756 5492  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
19:40:44.0762 5492  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
19:40:44.0762 5492  C:\Windows\System32\pnrpnsp.dll - ok
19:40:44.0769 5492  [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
19:40:44.0769 5492  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
19:40:44.0774 5492  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
19:40:44.0774 5492  C:\Windows\System32\winrnr.dll - ok
19:40:44.0781 5492  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
19:40:44.0781 5492  C:\Windows\System32\rasadhlp.dll - ok
19:40:44.0786 5492  [ 439FE203A62321D341121F7F1353176F ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
19:40:44.0786 5492  C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok
19:40:44.0793 5492  [ 250CC5E6E5746673A5B5A1E89A9518EE ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
19:40:44.0793 5492  C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
19:40:44.0800 5492  [ AF17FAB5B90F54C6CD396A85CFE6A76B ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
19:40:44.0800 5492  C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok
19:40:44.0807 5492  [ FE2DDBCF65163CE24D95F2E70F54BDCC ] C:\Program Files\Intel\WiFi\bin\pfQOSMgr.dll
19:40:44.0807 5492  C:\Program Files\Intel\WiFi\bin\pfQOSMgr.dll - ok
19:40:44.0813 5492  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
19:40:44.0813 5492  C:\Windows\System32\drivers\srv2.sys - ok
19:40:44.0820 5492  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
19:40:44.0820 5492  C:\Windows\System32\iphlpsvc.dll - ok
19:40:44.0827 5492  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
19:40:44.0827 5492  C:\Windows\System32\drivers\srv.sys - ok
19:40:44.0833 5492  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
19:40:44.0833 5492  C:\Windows\System32\sqmapi.dll - ok
19:40:44.0839 5492  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
19:40:44.0839 5492  C:\Windows\System32\wdscore.dll - ok
19:40:44.0845 5492  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
19:40:44.0845 5492  C:\Windows\System32\browser.dll - ok
19:40:44.0850 5492  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
19:40:44.0850 5492  C:\Windows\System32\srvsvc.dll - ok
19:40:44.0855 5492  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
19:40:44.0855 5492  C:\Windows\System32\clusapi.dll - ok
19:40:44.0862 5492  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
19:40:44.0862 5492  C:\Windows\System32\netmsg.dll - ok
19:40:44.0869 5492  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
19:40:44.0869 5492  C:\Windows\System32\sscore.dll - ok
19:40:44.0875 5492  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
19:40:44.0875 5492  C:\Windows\System32\resutils.dll - ok
19:40:44.0881 5492  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
19:40:44.0881 5492  C:\Windows\System32\hnetcfg.dll - ok
19:40:44.0887 5492  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
19:40:44.0887 5492  C:\Windows\System32\nci.dll - ok
19:40:44.0894 5492  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
19:40:44.0894 5492  C:\Windows\System32\localspl.dll - ok
19:40:44.0899 5492  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
19:40:44.0899 5492  C:\Windows\System32\spoolss.dll - ok
19:40:44.0903 5492  [ ED9A7E01433244ECFF2212D442732FD2 ] C:\Windows\System32\hpinksts5412LM.dll
19:40:44.0903 5492  C:\Windows\System32\hpinksts5412LM.dll - ok
19:40:44.0909 5492  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
19:40:44.0909 5492  C:\Windows\System32\PrintIsolationProxy.dll - ok
19:40:44.0914 5492  [ 49FE0307484720327CA6E55B55E09653 ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
19:40:44.0914 5492  C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
19:40:44.0918 5492  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
19:40:44.0918 5492  C:\Windows\System32\drivers\vwifimp.sys - ok
19:40:44.0923 5492  [ E554ACAEAE4C2235229C5D0FC43E509F ] C:\Windows\System32\HPDiscoPM5412.dll
19:40:44.0923 5492  C:\Windows\System32\HPDiscoPM5412.dll - ok
19:40:44.0928 5492  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:40:44.0928 5492  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:40:44.0933 5492  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
19:40:44.0933 5492  C:\Windows\System32\ncobjapi.dll - ok
19:40:44.0938 5492  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
19:40:44.0938 5492  C:\Windows\System32\wbem\wbemess.dll - ok
19:40:44.0943 5492  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
19:40:44.0943 5492  C:\Windows\System32\ndiscapCfg.dll - ok
19:40:44.0947 5492  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
19:40:44.0947 5492  C:\Windows\System32\rascfg.dll - ok
19:40:44.0953 5492  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
19:40:44.0953 5492  C:\Windows\System32\mprapi.dll - ok
19:40:44.0960 5492  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
19:40:44.0960 5492  C:\Windows\System32\mprmsg.dll - ok
19:40:44.0966 5492  [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
19:40:44.0966 5492  C:\Windows\System32\tcpipcfg.dll - ok
19:40:44.0972 5492  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
19:40:44.0972 5492  C:\Windows\System32\wsnmp32.dll - ok
19:40:44.0979 5492  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
19:40:44.0979 5492  C:\Windows\System32\FXSMON.dll - ok
19:40:44.0983 5492  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
19:40:44.0984 5492  C:\Windows\System32\tcpmon.dll - ok
19:40:44.0988 5492  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
19:40:44.0988 5492  C:\Windows\System32\snmpapi.dll - ok
19:40:44.0993 5492  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
19:40:44.0993 5492  C:\Windows\System32\usbmon.dll - ok
19:40:44.0998 5492  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
19:40:44.0998 5492  C:\Windows\System32\WSDMon.dll - ok
19:40:45.0003 5492  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
19:40:45.0003 5492  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
19:40:45.0007 5492  [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\SysWOW64\WSDApi.dll
19:40:45.0007 5492  C:\Windows\SysWOW64\WSDApi.dll - ok
19:40:45.0012 5492  [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\SysWOW64\webservices.dll
19:40:45.0012 5492  C:\Windows\SysWOW64\webservices.dll - ok
19:40:45.0017 5492  [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
19:40:45.0017 5492  C:\Windows\SysWOW64\FirewallAPI.dll - ok
19:40:45.0021 5492  [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\SysWOW64\fundisc.dll
19:40:45.0021 5492  C:\Windows\SysWOW64\fundisc.dll - ok
19:40:45.0027 5492  [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\SysWOW64\fdPnp.dll
19:40:45.0027 5492  C:\Windows\SysWOW64\fdPnp.dll - ok
19:40:45.0031 5492  [ AAF7BEB63E2CC499834B608A85A55E4E ] C:\Windows\SysWOW64\wsdchngr.dll
19:40:45.0031 5492  C:\Windows\SysWOW64\wsdchngr.dll - ok
19:40:45.0034 5492  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
19:40:45.0034 5492  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
19:40:45.0039 5492  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
19:40:45.0039 5492  C:\Windows\SysWOW64\gpapi.dll - ok
19:40:45.0044 5492  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
19:40:45.0044 5492  C:\Windows\SysWOW64\dsrole.dll - ok
19:40:45.0050 5492  [ 52CCA2E9FFD0653CACED1E808AADE4B6 ] C:\Windows\SysWOW64\win32spl.dll
19:40:45.0050 5492  C:\Windows\SysWOW64\win32spl.dll - ok
19:40:45.0055 5492  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
19:40:45.0055 5492  C:\Windows\System32\win32spl.dll - ok
19:40:45.0059 5492  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
19:40:45.0060 5492  C:\Windows\SysWOW64\devrtl.dll - ok
19:40:45.0064 5492  [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
19:40:45.0064 5492  C:\Windows\SysWOW64\SPInf.dll - ok
19:40:45.0069 5492  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
19:40:45.0069 5492  C:\Windows\System32\inetpp.dll - ok
19:40:45.0075 5492  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
19:40:45.0075 5492  C:\Windows\SysWOW64\mswsock.dll - ok
19:40:45.0082 5492  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
19:40:45.0082 5492  C:\Windows\SysWOW64\netutils.dll - ok
19:40:45.0089 5492  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
19:40:45.0089 5492  C:\Windows\SysWOW64\rasadhlp.dll - ok
19:40:45.0095 5492  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
19:40:45.0095 5492  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
19:40:45.0101 5492  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
19:40:45.0101 5492  C:\Windows\SysWOW64\wship6.dll - ok
19:40:45.0108 5492  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
19:40:45.0108 5492  C:\Windows\SysWOW64\cscapi.dll - ok
19:40:45.0113 5492  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
19:40:45.0113 5492  C:\Windows\System32\drivers\WUDFPf.sys - ok
19:40:45.0118 5492  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\SysWOW64\wdi.dll
19:40:45.0118 5492  C:\Windows\SysWOW64\wdi.dll - ok
19:40:45.0125 5492  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
19:40:45.0125 5492  C:\Windows\System32\cscapi.dll - ok
19:40:45.0131 5492  [ 902EE57331D0A71DA17DBBC8454399FB ] C:\Windows\System32\spool\drivers\x64\3\BRUFXA5B.dll
19:40:45.0131 5492  C:\Windows\System32\spool\drivers\x64\3\BRUFXA5B.dll - ok
19:40:45.0137 5492  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
19:40:45.0137 5492  C:\Windows\System32\wdi.dll - ok
19:40:45.0144 5492  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
19:40:45.0144 5492  C:\Windows\System32\WUDFSvc.dll - ok
19:40:45.0149 5492  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
19:40:45.0149 5492  C:\Windows\System32\WUDFPlatform.dll - ok
19:40:45.0155 5492  [ C0EB8B5832F27896370298C0EC42B244 ] C:\Windows\System32\spool\drivers\x64\3\BRLFXA5B.DLL
19:40:45.0155 5492  C:\Windows\System32\spool\drivers\x64\3\BRLFXA5B.DLL - ok
19:40:45.0162 5492  [ C254DA1614D568F1153BAA53428D3E3B ] C:\Windows\System32\spool\drivers\x64\3\BROFXA5B.dll
19:40:45.0162 5492  C:\Windows\System32\spool\drivers\x64\3\BROFXA5B.dll - ok
19:40:45.0169 5492  [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
19:40:45.0169 5492  C:\Windows\System32\vaultsvc.dll - ok
19:40:45.0176 5492  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
19:40:45.0176 5492  C:\Windows\SysWOW64\netprofm.dll - ok
19:40:45.0182 5492  [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
19:40:45.0182 5492  C:\Windows\SysWOW64\ktmw32.dll - ok
19:40:45.0186 5492  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
19:40:45.0186 5492  C:\Windows\SysWOW64\nlaapi.dll - ok
19:40:45.0191 5492  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
19:40:45.0191 5492  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
19:40:45.0196 5492  [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
19:40:45.0196 5492  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
19:40:45.0202 5492  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
19:40:45.0202 5492  C:\Windows\SysWOW64\npmproxy.dll - ok
19:40:45.0207 5492  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
19:40:45.0207 5492  C:\Windows\System32\npmproxy.dll - ok
19:40:45.0213 5492  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
19:40:45.0213 5492  C:\Windows\SysWOW64\ntdsapi.dll - ok
19:40:45.0218 5492  [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
19:40:45.0219 5492  C:\Windows\SysWOW64\svchost.exe - ok
19:40:45.0225 5492  [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
19:40:45.0225 5492  C:\Windows\System32\wbem\unsecapp.exe - ok
19:40:45.0230 5492  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
19:40:45.0230 5492  C:\Windows\SysWOW64\apphelp.dll - ok
19:40:45.0236 5492  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\SysWOW64\hidserv.dll
19:40:45.0236 5492  C:\Windows\SysWOW64\hidserv.dll - ok
19:40:45.0245 5492  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
19:40:45.0245 5492  C:\Windows\System32\hidserv.dll - ok
19:40:45.0251 5492  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
19:40:45.0251 5492  C:\Windows\System32\wbiosrvc.dll - ok
19:40:45.0259 5492  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
19:40:45.0259 5492  C:\Windows\System32\perftrack.dll - ok
19:40:45.0266 5492  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
19:40:45.0266 5492  C:\Windows\SysWOW64\hid.dll - ok
19:40:45.0274 5492  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
19:40:45.0274 5492  C:\Windows\SysWOW64\wbemcomn.dll - ok
19:40:45.0281 5492  [ F31F1487388534C01135FEA9943B65EB ] C:\Program Files\Intel\WiFi\bin\iWrap.exe
19:40:45.0281 5492  C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok
19:40:45.0286 5492  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
19:40:45.0286 5492  C:\Windows\System32\wpdbusenum.dll - ok
19:40:45.0289 5492  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
19:40:45.0289 5492  C:\Windows\SysWOW64\wer.dll - ok
19:40:45.0296 5492  [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\SysWOW64\vaultcli.dll
19:40:45.0296 5492  C:\Windows\SysWOW64\vaultcli.dll - ok
19:40:45.0301 5492  [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
19:40:45.0301 5492  C:\Windows\SysWOW64\secur32.dll - ok
19:40:45.0307 5492  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
19:40:45.0307 5492  C:\Windows\SysWOW64\dwmapi.dll - ok
19:40:45.0313 5492  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
19:40:45.0313 5492  C:\Windows\System32\diagperf.dll - ok
19:40:45.0319 5492  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
19:40:45.0319 5492  C:\Windows\SysWOW64\netapi32.dll - ok
19:40:45.0324 5492  [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\SysWOW64\Apphlpdm.dll
19:40:45.0324 5492  C:\Windows\SysWOW64\Apphlpdm.dll - ok
19:40:45.0328 5492  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
19:40:45.0328 5492  C:\Windows\System32\pnpts.dll - ok
19:40:45.0333 5492  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
19:40:45.0333 5492  C:\Windows\System32\Apphlpdm.dll - ok
19:40:45.0338 5492  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
19:40:45.0338 5492  C:\Windows\System32\wdiasqmmodule.dll - ok
19:40:45.0343 5492  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
19:40:45.0344 5492  C:\Windows\SysWOW64\srvcli.dll - ok
19:40:45.0349 5492  [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
19:40:45.0349 5492  C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
19:40:45.0354 5492  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
19:40:45.0354 5492  C:\Windows\SysWOW64\wkscli.dll - ok
19:40:45.0359 5492  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
19:40:45.0359 5492  C:\Windows\System32\PortableDeviceApi.dll - ok
19:40:45.0363 5492  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
19:40:45.0363 5492  C:\Windows\SysWOW64\sfc.dll - ok
19:40:45.0369 5492  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
19:40:45.0369 5492  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
19:40:45.0374 5492  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
19:40:45.0374 5492  C:\Windows\SysWOW64\samcli.dll - ok
19:40:45.0380 5492  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
19:40:45.0380 5492  C:\Windows\SysWOW64\oledlg.dll - ok
19:40:45.0385 5492  [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\SysWOW64\PortableDeviceConnectApi.dll
19:40:45.0385 5492  C:\Windows\SysWOW64\PortableDeviceConnectApi.dll - ok
19:40:45.0391 5492  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
19:40:45.0391 5492  C:\Windows\SysWOW64\sfc_os.dll - ok
19:40:45.0395 5492  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
19:40:45.0396 5492  C:\Windows\System32\oledlg.dll - ok
19:40:45.0400 5492  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:40:45.0400 5492  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:40:45.0405 5492  [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
19:40:45.0405 5492  C:\Windows\SysWOW64\credui.dll - ok
19:40:45.0410 5492  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
19:40:45.0410 5492  C:\Windows\System32\wbem\NCProv.dll - ok
19:40:45.0416 5492  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
19:40:45.0416 5492  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
19:40:45.0422 5492  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
19:40:45.0422 5492  C:\Windows\SysWOW64\wsock32.dll - ok
19:40:45.0427 5492  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:40:45.0427 5492  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:40:45.0431 5492  [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\SysWOW64\ncobjapi.dll
19:40:45.0432 5492  C:\Windows\SysWOW64\ncobjapi.dll - ok
19:40:45.0436 5492  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
19:40:45.0436 5492  C:\Windows\SysWOW64\wlanapi.dll - ok
19:40:45.0440 5492  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
19:40:45.0440 5492  C:\Windows\SysWOW64\wlanutil.dll - ok
19:40:45.0445 5492  [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
19:40:45.0445 5492  C:\Windows\SysWOW64\netshell.dll - ok
19:40:45.0450 5492  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
19:40:45.0450 5492  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
19:40:45.0454 5492  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
19:40:45.0454 5492  C:\Windows\System32\netshell.dll - ok
19:40:45.0460 5492  [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\SysWOW64\wbem\esscli.dll
19:40:45.0460 5492  C:\Windows\SysWOW64\wbem\esscli.dll - ok
19:40:45.0466 5492  [ 470994AFCC3C981015200246D1C2FFBE ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
19:40:45.0466 5492  C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok
19:40:45.0471 5492  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
19:40:45.0471 5492  C:\Windows\SysWOW64\powrprof.dll - ok
19:40:45.0477 5492  [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\SysWOW64\netcfgx.dll
19:40:45.0477 5492  C:\Windows\SysWOW64\netcfgx.dll - ok
19:40:45.0482 5492  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
19:40:45.0482 5492  C:\Windows\System32\wbem\wmiprov.dll - ok
19:40:45.0486 5492  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
19:40:45.0487 5492  C:\Windows\SysWOW64\bcrypt.dll - ok
19:40:45.0492 5492  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
19:40:45.0492 5492  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
19:40:45.0497 5492  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
19:40:45.0497 5492  C:\Windows\System32\taskhost.exe - ok
19:40:45.0502 5492  [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\SysWOW64\dimsjob.dll
19:40:45.0502 5492  C:\Windows\SysWOW64\dimsjob.dll - ok
19:40:45.0507 5492  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
19:40:45.0507 5492  C:\Windows\System32\dimsjob.dll - ok
19:40:45.0514 5492  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
19:40:45.0514 5492  C:\Windows\SysWOW64\taskschd.dll - ok
19:40:45.0519 5492  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
19:40:45.0519 5492  C:\Windows\System32\pautoenr.dll - ok
19:40:45.0526 5492  [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\SysWOW64\pautoenr.dll
19:40:45.0526 5492  C:\Windows\SysWOW64\pautoenr.dll - ok
19:40:45.0532 5492  [ 61B1ED5F429EFAC7E2036769870AB93E ] C:\Windows\SysWOW64\certcli.dll
19:40:45.0532 5492  C:\Windows\SysWOW64\certcli.dll - ok
19:40:45.0538 5492  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
19:40:45.0538 5492  C:\Windows\System32\certcli.dll - ok
19:40:45.0546 5492  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
19:40:45.0546 5492  C:\Windows\SysWOW64\atl.dll - ok
19:40:45.0552 5492  [ 29BC473072568C072EC8B176498DE996 ] C:\Windows\SysWOW64\CertEnroll.dll
19:40:45.0552 5492  C:\Windows\SysWOW64\CertEnroll.dll - ok
19:40:45.0559 5492  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
19:40:45.0559 5492  C:\Windows\System32\CertEnroll.dll - ok
19:40:45.0565 5492  [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
19:40:45.0565 5492  C:\Windows\SysWOW64\dllhost.exe - ok
19:40:45.0572 5492  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
19:40:45.0572 5492  C:\Windows\System32\dllhost.exe - ok
19:40:45.0578 5492  [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\SysWOW64\shacct.dll
19:40:45.0578 5492  C:\Windows\SysWOW64\shacct.dll - ok
19:40:45.0584 5492  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
19:40:45.0584 5492  C:\Windows\SysWOW64\samlib.dll - ok
19:40:45.0591 5492  [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\SysWOW64\IDStore.dll
19:40:45.0591 5492  C:\Windows\SysWOW64\IDStore.dll - ok
19:40:45.0597 5492  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
19:40:45.0597 5492  C:\Windows\System32\IDStore.dll - ok
19:40:45.0603 5492  [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
19:40:45.0603 5492  C:\Windows\SysWOW64\KBDUS.DLL - ok
19:40:45.0610 5492  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
19:40:45.0610 5492  C:\Windows\SysWOW64\sxs.dll - ok
19:40:45.0616 5492  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
19:40:45.0616 5492  C:\Windows\SysWOW64\propsys.dll - ok
19:40:45.0622 5492  [ 3CA2BB895E204478C7A4C9BAF70970CE ] C:\Windows\SysWOW64\AtBroker.exe
19:40:45.0622 5492  C:\Windows\SysWOW64\AtBroker.exe - ok
19:40:45.0629 5492  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
19:40:45.0629 5492  C:\Windows\SysWOW64\uxtheme.dll - ok
19:40:45.0634 5492  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
19:40:45.0634 5492  C:\Windows\System32\AtBroker.exe - ok
19:40:45.0641 5492  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
19:40:45.0641 5492  C:\Windows\SysWOW64\slc.dll - ok
19:40:45.0647 5492  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:40:45.0647 5492  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:40:45.0654 5492  [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
19:40:45.0654 5492  C:\Windows\SysWOW64\drprov.dll - ok
19:40:45.0659 5492  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
19:40:45.0659 5492  C:\Windows\System32\drprov.dll - ok
19:40:45.0665 5492  [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\SysWOW64\PlaySndSrv.dll
19:40:45.0665 5492  C:\Windows\SysWOW64\PlaySndSrv.dll - ok
19:40:45.0672 5492  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
19:40:45.0672 5492  C:\Windows\SysWOW64\setupapi.dll - ok
19:40:45.0678 5492  [ 7853D2AB445C10F97610B2B05FA4CF0A ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
19:40:45.0678 5492  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
19:40:45.0685 5492  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
19:40:45.0685 5492  C:\Windows\System32\ntlanman.dll - ok
19:40:45.0692 5492  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
19:40:45.0692 5492  C:\Windows\System32\PlaySndSrv.dll - ok
19:40:45.0700 5492  [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
19:40:45.0700 5492  C:\Windows\SysWOW64\ntlanman.dll - ok
19:40:45.0706 5492  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
19:40:45.0706 5492  C:\Windows\System32\davclnt.dll - ok
19:40:45.0713 5492  [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
19:40:45.0713 5492  C:\Windows\SysWOW64\davclnt.dll - ok
19:40:45.0719 5492  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
19:40:45.0719 5492  C:\Windows\System32\davhlpr.dll - ok
19:40:45.0725 5492  [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
19:40:45.0725 5492  C:\Windows\SysWOW64\davhlpr.dll - ok
19:40:45.0730 5492  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
19:40:45.0730 5492  C:\Windows\SysWOW64\NapiNSP.dll - ok
19:40:45.0734 5492  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
19:40:45.0734 5492  C:\Windows\SysWOW64\cfgmgr32.dll - ok
19:40:45.0739 5492  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
19:40:45.0739 5492  C:\Windows\SysWOW64\devobj.dll - ok
19:40:45.0743 5492  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
19:40:45.0743 5492  C:\Windows\System32\HotStartUserAgent.dll - ok
19:40:45.0750 5492  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
19:40:45.0750 5492  C:\Windows\SysWOW64\pnrpnsp.dll - ok
19:40:45.0756 5492  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
19:40:45.0756 5492  C:\Windows\SysWOW64\winmm.dll - ok
19:40:45.0762 5492  [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\SysWOW64\MsCtfMonitor.dll
19:40:45.0762 5492  C:\Windows\SysWOW64\MsCtfMonitor.dll - ok
19:40:45.0768 5492  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
19:40:45.0768 5492  C:\Windows\System32\MsCtfMonitor.dll - ok
19:40:45.0773 5492  [ 56CEED370508F69A1BA04939BD1BADDA ] C:\Windows\SysWOW64\msutb.dll
19:40:45.0773 5492  C:\Windows\SysWOW64\msutb.dll - ok
19:40:45.0778 5492  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
19:40:45.0778 5492  C:\Windows\System32\msutb.dll - ok
19:40:45.0784 5492  [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\SysWOW64\radardt.dll
19:40:45.0784 5492  C:\Windows\SysWOW64\radardt.dll - ok
19:40:45.0791 5492  [ B73E1570D7BD1B02C8DA8F3B0A9D5CFF ] C:\Windows\System32\wpcumi.dll
19:40:45.0791 5492  C:\Windows\System32\wpcumi.dll - ok
19:40:45.0797 5492  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
19:40:45.0797 5492  C:\Windows\SysWOW64\wevtapi.dll - ok
19:40:45.0802 5492  [ C3D545F4646303A864C8DFA85B33F476 ] C:\Windows\System32\TaskSchdPS.dll
19:40:45.0802 5492  C:\Windows\System32\TaskSchdPS.dll - ok
19:40:45.0810 5492  [ E1EF320CBB1A6623DF040D5539DDA8F4 ] C:\Windows\SysWOW64\TaskSchdPS.dll
19:40:45.0810 5492  C:\Windows\SysWOW64\TaskSchdPS.dll - ok
19:40:45.0813 5492  [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\Windows\SysWOW64\Wpc.dll
19:40:45.0813 5492  C:\Windows\SysWOW64\Wpc.dll - ok
19:40:45.0819 5492  [ 027675ED9B34EE1B91505C3B8752649F ] C:\Windows\System32\Wpc.dll
19:40:45.0819 5492  C:\Windows\System32\Wpc.dll - ok
19:40:45.0826 5492  [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\SysWOW64\mprmsg.dll
19:40:45.0826 5492  C:\Windows\SysWOW64\mprmsg.dll - ok
19:40:45.0831 5492  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
19:40:45.0832 5492  C:\Windows\SysWOW64\winrnr.dll - ok
19:40:45.0838 5492  [ 14C9463A3E78A4F84306FE0945E0A94F ] C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
19:40:45.0838 5492  C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe - ok
19:40:45.0843 5492  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
19:40:45.0843 5492  C:\Windows\System32\userinit.exe - ok
19:40:45.0849 5492  [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\SysWOW64\userinit.exe
19:40:45.0849 5492  C:\Windows\SysWOW64\userinit.exe - ok
19:40:45.0854 5492  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
19:40:45.0855 5492  C:\Windows\System32\dwm.exe - ok
19:40:45.0860 5492  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
19:40:45.0860 5492  C:\Windows\System32\dwmredir.dll - ok
19:40:45.0865 5492  [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\SysWOW64\dwmcore.dll
19:40:45.0865 5492  C:\Windows\SysWOW64\dwmcore.dll - ok
19:40:45.0871 5492  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
19:40:45.0871 5492  C:\Windows\System32\dwmcore.dll - ok
19:40:45.0878 5492  [ 5BE2ABF62586044DA8A563EEE0F46B2C ] C:\Program Files (x86)\DigitalPersona\Bin\DpOSet.dll
19:40:45.0878 5492  C:\Program Files (x86)\DigitalPersona\Bin\DpOSet.dll - ok
19:40:45.0885 5492  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
19:40:45.0885 5492  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
19:40:45.0891 5492  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
19:40:45.0891 5492  C:\Windows\SysWOW64\webio.dll - ok
19:40:45.0898 5492  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
19:40:45.0898 5492  C:\Windows\SysWOW64\winhttp.dll - ok
19:40:45.0903 5492  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
19:40:45.0903 5492  C:\Windows\SysWOW64\credssp.dll - ok
19:40:45.0909 5492  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
19:40:45.0909 5492  C:\Windows\System32\d3d10_1.dll - ok
19:40:45.0915 5492  [ 3C1936A12C62254F914A01BBC6A8DC69 ] C:\Windows\SysWOW64\d3d10_1.dll
19:40:45.0915 5492  C:\Windows\SysWOW64\d3d10_1.dll - ok
19:40:45.0921 5492  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
19:40:45.0921 5492  C:\Windows\SysWOW64\dnsapi.dll - ok
19:40:45.0928 5492  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
19:40:45.0928 5492  C:\Windows\explorer.exe - ok
19:40:45.0934 5492  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
19:40:45.0934 5492  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
19:40:45.0940 5492  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
19:40:45.0940 5492  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
19:40:45.0946 5492  [ D4212AB475A3B25EC4DF574536C3EDC5 ] C:\Windows\SysWOW64\d3d10_1core.dll
19:40:45.0946 5492  C:\Windows\SysWOW64\d3d10_1core.dll - ok
19:40:45.0952 5492  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
19:40:45.0952 5492  C:\Windows\System32\d3d10_1core.dll - ok
19:40:45.0958 5492  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
19:40:45.0958 5492  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
19:40:45.0963 5492  [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
19:40:45.0963 5492  C:\Windows\SysWOW64\dxgi.dll - ok
19:40:45.0967 5492  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
19:40:45.0967 5492  C:\Windows\System32\dxgi.dll - ok
19:40:45.0972 5492  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
19:40:45.0972 5492  C:\Windows\System32\ExplorerFrame.dll - ok
19:40:45.0977 5492  [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
19:40:45.0977 5492  C:\Windows\SysWOW64\d3d11.dll - ok
19:40:45.0983 5492  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
19:40:45.0983 5492  C:\Windows\SysWOW64\duser.dll - ok
19:40:45.0987 5492  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
19:40:45.0987 5492  C:\Windows\SysWOW64\dui70.dll - ok
19:40:45.0993 5492  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
19:40:45.0993 5492  C:\Windows\System32\d3d11.dll - ok
19:40:45.0998 5492  [ 6846BC702F382588801FBE3E31D9D8D2 ] C:\Windows\System32\atiuxp64.dll
19:40:45.0999 5492  C:\Windows\System32\atiuxp64.dll - ok
19:40:46.0005 5492  [ 7DED1B3E4FFB15E33C07EF0ACAE172B6 ] C:\Windows\System32\igd10umd64.dll
19:40:46.0005 5492  C:\Windows\System32\igd10umd64.dll - ok
19:40:46.0010 5492  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
19:40:46.0010 5492  C:\Windows\SysWOW64\EhStorShell.dll - ok
19:40:46.0015 5492  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
19:40:46.0015 5492  C:\Windows\System32\EhStorShell.dll - ok
19:40:46.0021 5492  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
19:40:46.0021 5492  C:\Windows\System32\uDWM.dll - ok
19:40:46.0025 5492  [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
19:40:46.0025 5492  C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL - ok
19:40:46.0031 5492  [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
19:40:46.0031 5492  C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
19:40:46.0037 5492  [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
19:40:46.0037 5492  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF - ok
19:40:46.0044 5492  [ 66E3C667D853DF349E310568F60B9B6A ] C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
19:40:46.0044 5492  C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll - ok
19:40:46.0047 5492  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
19:40:46.0047 5492  C:\Windows\SysWOW64\ntshrui.dll - ok
19:40:46.0051 5492  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
19:40:46.0052 5492  C:\Windows\System32\ntshrui.dll - ok
19:40:46.0058 5492  [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
19:40:46.0058 5492  C:\Windows\System32\tcpmib.dll - ok
19:40:46.0062 5492  [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
19:40:46.0062 5492  C:\Windows\System32\mgmtapi.dll - ok
19:40:46.0067 5492  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
19:40:46.0067 5492  C:\Windows\SysWOW64\IconCodecService.dll - ok
19:40:46.0074 5492  [ BA54A966F873B043FDFCDA0B77937855 ] C:\Windows\SysWOW64\mgmtapi.dll
19:40:46.0074 5492  C:\Windows\SysWOW64\mgmtapi.dll - ok
19:40:46.0079 5492  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
19:40:46.0079 5492  C:\Windows\System32\IconCodecService.dll - ok
19:40:46.0084 5492  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
19:40:46.0084 5492  C:\Windows\System32\appinfo.dll - ok
19:40:46.0088 5492  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
19:40:46.0088 5492  C:\Windows\System32\aelupsvc.dll - ok
19:40:46.0093 5492  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
19:40:46.0093 5492  C:\Windows\System32\IPSECSVC.DLL - ok
19:40:46.0098 5492  [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\SysWOW64\authz.dll
19:40:46.0098 5492  C:\Windows\SysWOW64\authz.dll - ok
19:40:46.0104 5492  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
19:40:46.0104 5492  C:\Windows\System32\FwRemoteSvr.dll - ok
19:40:46.0110 5492  [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\SysWOW64\FwRemoteSvr.dll
19:40:46.0110 5492  C:\Windows\SysWOW64\FwRemoteSvr.dll - ok
19:40:46.0115 5492  [ 2F03490092C032392FB6FF635222B9B2 ] C:\Windows\SysWOW64\apisetschema.dll
19:40:46.0115 5492  C:\Windows\SysWOW64\apisetschema.dll - ok
19:40:46.0120 5492  [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\SysWOW64\dssenh.dll
19:40:46.0120 5492  C:\Windows\SysWOW64\dssenh.dll - ok
19:40:46.0126 5492  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
19:40:46.0126 5492  C:\Windows\System32\dssenh.dll - ok
19:40:46.0132 5492  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
19:40:46.0132 5492  C:\Windows\SysWOW64\clbcatq.dll - ok
19:40:46.0138 5492  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
19:40:46.0138 5492  C:\Windows\SysWOW64\runonce.exe - ok
19:40:46.0143 5492  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
19:40:46.0143 5492  C:\Windows\System32\runonce.exe - ok
19:40:46.0147 5492  [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
19:40:46.0147 5492  C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL - ok
19:40:46.0151 5492  [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
19:40:46.0151 5492  C:\Windows\System32\wlaninst.dll - ok
19:40:46.0157 5492  [ 9E6AF823733C70E207D9FB6731A63B3D ] C:\Windows\SysWOW64\wlaninst.dll
19:40:46.0157 5492  C:\Windows\SysWOW64\wlaninst.dll - ok
19:40:46.0162 5492  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
19:40:46.0162 5492  C:\Windows\System32\wwaninst.dll - ok
19:40:46.0169 5492  [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
19:40:46.0169 5492  C:\Windows\System32\spfileq.dll - ok
19:40:46.0174 5492  [ 4B9E4CE667DF26ADA061AA81E9AA841D ] C:\Windows\SysWOW64\spfileq.dll
19:40:46.0174 5492  C:\Windows\SysWOW64\spfileq.dll - ok
19:40:46.0180 5492  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:40:46.0180 5492  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:40:46.0187 5492  [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
19:40:46.0187 5492  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
19:40:46.0193 5492  [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
19:40:46.0193 5492  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
19:40:46.0199 5492  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
19:40:46.0199 5492  C:\Windows\SysWOW64\cmd.exe - ok
19:40:46.0204 5492  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
19:40:46.0204 5492  C:\Windows\SysWOW64\winbrand.dll - ok
19:40:46.0210 5492  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
19:40:46.0211 5492  C:\Windows\SysWOW64\ieframe.dll - ok
19:40:46.0217 5492  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
19:40:46.0217 5492  C:\Windows\SysWOW64\shdocvw.dll - ok
19:40:46.0223 5492  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Steve\AppData\Local\Temp\97C98524-3D6A-4654-97D9-D548A59BBBD7.exe
19:40:46.0223 5492  C:\Users\Steve\AppData\Local\Temp\97C98524-3D6A-4654-97D9-D548A59BBBD7.exe - ok
19:40:46.0230 5492  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
19:40:46.0230 5492  C:\Windows\SysWOW64\imagehlp.dll - ok
19:40:46.0236 5492  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
19:40:46.0236 5492  C:\Windows\SysWOW64\ncrypt.dll - ok
19:40:46.0241 5492  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
19:40:46.0241 5492  C:\Windows\SysWOW64\cryptnet.dll - ok
19:40:46.0247 5492  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
19:40:46.0247 5492  C:\Windows\SysWOW64\SensApi.dll - ok
19:40:46.0252 5492  [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
19:40:46.0253 5492  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
19:40:46.0258 5492  [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
19:40:46.0258 5492  C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll - ok
19:40:46.0264 5492  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
19:40:46.0264 5492  C:\Windows\SysWOW64\imageres.dll - ok
19:40:46.0271 5492  [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
19:40:46.0271 5492  C:\Windows\SysWOW64\schannel.dll - ok
19:40:46.0276 5492  [ A3169B7E724889A7F1D0D7DA83A65740 ] C:\Windows\SysWOW64\DPFPApi.dll
19:40:46.0276 5492  C:\Windows\SysWOW64\DPFPApi.dll - ok
19:40:46.0280 5492  [ 128C5E1034F3BA742E8C31C83F55CC7C ] C:\Windows\SysWOW64\DPClback.dll
19:40:46.0280 5492  C:\Windows\SysWOW64\DPClback.dll - ok
19:40:46.0285 5492  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
19:40:46.0285 5492  C:\Windows\SysWOW64\mscms.dll - ok
19:40:46.0292 5492  [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
19:40:46.0292 5492  C:\Windows\SysWOW64\icm32.dll - ok
19:40:46.0295 5492  [ 74D77E034E4012066E097BE9F4F7B86D ] C:\Program Files (x86)\DigitalPersona\Bin\DPAgentOtsPlugin.dll
19:40:46.0295 5492  C:\Program Files (x86)\DigitalPersona\Bin\DPAgentOtsPlugin.dll - ok
19:40:46.0302 5492  [ 8CD11548AD2FE7A7A2EF8DAE107109ED ] C:\Program Files (x86)\DigitalPersona\Bin\DpFillin.dll
19:40:46.0302 5492  C:\Program Files (x86)\DigitalPersona\Bin\DpFillin.dll - ok
19:40:46.0308 5492  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
19:40:46.0308 5492  C:\Windows\SysWOW64\msimg32.dll - ok
19:40:46.0314 5492  [ AE7764CB490B3AD85512C3086A7107AD ] C:\Program Files (x86)\DigitalPersona\Bin\DpoPS.dll
19:40:46.0314 5492  C:\Program Files (x86)\DigitalPersona\Bin\DpoPS.dll - ok
19:40:46.0319 5492  [ 33670A96052825AF782CAA4399804FF8 ] C:\Program Files (x86)\DigitalPersona\Bin\DpOCache.dll
19:40:46.0319 5492  C:\Program Files (x86)\DigitalPersona\Bin\DpOCache.dll - ok
19:40:46.0326 5492  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
19:40:46.0326 5492  C:\Windows\SysWOW64\shfolder.dll - ok
19:40:46.0331 5492  [ 239D7D95086871CC2F3EE913343A7472 ] C:\Windows\SysWOW64\DPCrProv.dll
19:40:46.0331 5492  C:\Windows\SysWOW64\DPCrProv.dll - ok
19:40:46.0337 5492  [ B131DD5DEE8D8C0A95401C35E0EF7612 ] C:\Program Files (x86)\DigitalPersona\Bin\DpOFeedb.dll
19:40:46.0337 5492  C:\Program Files (x86)\DigitalPersona\Bin\DpOFeedb.dll - ok
19:40:46.0343 5492  [ BF3916929D063F245CE13B5157CC4832 ] C:\Program Files\DigitalPersona\Bin\DpAgent.exe
19:40:46.0343 5492  C:\Program Files\DigitalPersona\Bin\DpAgent.exe - ok
19:40:46.0348 5492  [ B39B8CC163C41B12FE83E777199F3378 ] C:\Windows\SysWOW64\tzres.dll
19:40:46.0348 5492  C:\Windows\SysWOW64\tzres.dll - ok
19:40:46.0354 5492  [ 248F071DFDD85D0AF401D1472352A671 ] C:\Program Files\DigitalPersona\Bin\DpOFeedb.dll
19:40:46.0354 5492  C:\Program Files\DigitalPersona\Bin\DpOFeedb.dll - ok
19:40:46.0360 5492  [ 4F2659160AFCCA990305816946F69407 ] C:\Windows\SysWOW64\taskeng.exe
19:40:46.0360 5492  C:\Windows\SysWOW64\taskeng.exe - ok
19:40:46.0365 5492  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
19:40:46.0365 5492  C:\Windows\System32\taskeng.exe - ok
19:40:46.0371 5492  [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\SysWOW64\TSChannel.dll
19:40:46.0371 5492  C:\Windows\SysWOW64\TSChannel.dll - ok
19:40:46.0377 5492  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
19:40:46.0377 5492  C:\Windows\SysWOW64\xmllite.dll - ok
19:40:46.0383 5492  [ B7F55E2AE978D3D34F7876EE5D689AAE ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe
19:40:46.0383 5492  C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe - ok
19:40:46.0388 5492  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
19:40:46.0388 5492  C:\Windows\System32\TSChannel.dll - ok
19:40:46.0392 5492  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
19:40:46.0392 5492  C:\Windows\SysWOW64\devenum.dll - ok
19:40:46.0396 5492  [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
19:40:46.0396 5492  C:\Windows\SysWOW64\msdmo.dll - ok
19:40:46.0402 5492  [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
19:40:46.0402 5492  C:\Windows\SysWOW64\avicap32.dll - ok
19:40:46.0407 5492  [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
19:40:46.0407 5492  C:\Windows\SysWOW64\msvfw32.dll - ok
19:40:46.0413 5492  [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
19:40:46.0413 5492  C:\Windows\SysWOW64\vfwwdm32.dll - ok
19:40:46.0419 5492  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
19:40:46.0419 5492  C:\Windows\System32\ie4uinit.exe - ok
19:40:46.0426 5492  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
19:40:46.0426 5492  C:\Windows\System32\iedkcs32.dll - ok
19:40:46.0432 5492  [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\SysWOW64\SndVolSSO.dll
19:40:46.0432 5492  C:\Windows\SysWOW64\SndVolSSO.dll - ok
19:40:46.0438 5492  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
19:40:46.0438 5492  C:\Windows\SysWOW64\MMDevAPI.dll - ok
19:40:46.0444 5492  [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\SysWOW64\timedate.cpl
19:40:46.0444 5492  C:\Windows\SysWOW64\timedate.cpl - ok
19:40:46.0449 5492  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
19:40:46.0449 5492  C:\Windows\System32\timedate.cpl - ok
19:40:46.0456 5492  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
19:40:46.0456 5492  C:\Windows\SysWOW64\actxprxy.dll - ok
19:40:46.0461 5492  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
19:40:46.0462 5492  C:\Windows\System32\actxprxy.dll - ok
19:40:46.0466 5492  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
19:40:46.0466 5492  C:\Windows\System32\shdocvw.dll - ok
19:40:46.0472 5492  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
19:40:46.0472 5492  C:\Windows\SysWOW64\linkinfo.dll - ok
19:40:46.0478 5492  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
19:40:46.0478 5492  C:\Windows\System32\linkinfo.dll - ok
19:40:46.0484 5492  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
19:40:46.0484 5492  C:\Windows\SysWOW64\msiltcfg.dll - ok
19:40:46.0490 5492  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
19:40:46.0490 5492  C:\Windows\System32\msiltcfg.dll - ok
19:40:46.0494 5492  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
19:40:46.0494 5492  C:\Windows\SysWOW64\msi.dll - ok
19:40:46.0501 5492  [ 14BCA34F24F299748FB56EF8312296A0 ] C:\Program Files\DigitalPersona\Bin\DpoSet.dll
19:40:46.0501 5492  C:\Program Files\DigitalPersona\Bin\DpoSet.dll - ok
19:40:46.0505 5492  [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
19:40:46.0505 5492  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
19:40:46.0511 5492  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\SysWOW64\msftedit.dll
19:40:46.0511 5492  C:\Windows\SysWOW64\msftedit.dll - ok
19:40:46.0516 5492  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
19:40:46.0516 5492  C:\Windows\System32\msftedit.dll - ok
19:40:46.0523 5492  [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
19:40:46.0523 5492  C:\Windows\SysWOW64\msls31.dll - ok
19:40:46.0528 5492  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
19:40:46.0528 5492  C:\Windows\System32\msls31.dll - ok
19:40:46.0534 5492  [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\SysWOW64\authui.dll
19:40:46.0534 5492  C:\Windows\SysWOW64\authui.dll - ok
19:40:46.0540 5492  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
19:40:46.0541 5492  C:\Windows\SysWOW64\cryptui.dll - ok
19:40:46.0546 5492  [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\SysWOW64\gameux.dll
19:40:46.0546 5492  C:\Windows\SysWOW64\gameux.dll - ok
19:40:46.0550 5492  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
19:40:46.0550 5492  C:\Windows\System32\gameux.dll - ok
19:40:46.0556 5492  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\58824721.sys
19:40:46.0556 5492  C:\Windows\System32\drivers\58824721.sys - ok
19:40:46.0562 5492  [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C ] C:\Program Files\Zune\ZuneLauncher.exe
19:40:46.0562 5492  C:\Program Files\Zune\ZuneLauncher.exe - ok
19:40:46.0568 5492  [ 1D5BADF51C73219837A82B739C95C2CC ] C:\Program Files\IDT\WDM\sttray64.exe
19:40:46.0568 5492  C:\Program Files\IDT\WDM\sttray64.exe - ok
19:40:46.0575 5492  [ 33CF63222BADF68F15AAF6C1687360B2 ] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
19:40:46.0575 5492  C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe - ok
19:40:46.0581 5492  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
19:40:46.0581 5492  C:\Windows\System32\DeviceCenter.dll - ok
19:40:46.0585 5492  [ B3A029E4F539D2EAAB73C7307FE28147 ] C:\Program Files\Zune\ZuneCfg.dll
19:40:46.0585 5492  C:\Program Files\Zune\ZuneCfg.dll - ok
19:40:46.0591 5492  [ 24CAEDCD73B5B0E22226283B7B2468C7 ] C:\Windows\SysWOW64\mfc42u.dll
19:40:46.0591 5492  C:\Windows\SysWOW64\mfc42u.dll - ok
19:40:46.0597 5492  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
19:40:46.0597 5492  C:\Windows\SysWOW64\odbc32.dll - ok
19:40:46.0602 5492  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\SysWOW64\networkexplorer.dll
19:40:46.0602 5492  C:\Windows\SysWOW64\networkexplorer.dll - ok
19:40:46.0607 5492  [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
19:40:46.0607 5492  C:\Windows\SysWOW64\d2d1.dll - ok
19:40:46.0611 5492  [ 24ACB86A6D06931F61C1D6A328C7FDDD ] C:\Program Files\IDT\WDM\stlang64.dll
19:40:46.0611 5492  C:\Program Files\IDT\WDM\stlang64.dll - ok
19:40:46.0615 5492  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
19:40:46.0615 5492  C:\Windows\System32\networkexplorer.dll - ok
19:40:46.0621 5492  [ E366F0C5D6C948B76EEB3BE21762CAF6 ] C:\Program Files\Zune\ZuneShellExt.dll
19:40:46.0621 5492  C:\Program Files\Zune\ZuneShellExt.dll - ok
19:40:46.0627 5492  [ 47451864076E2DDBA90DB96700B8A290 ] C:\Windows\System32\igfxpers.exe
19:40:46.0627 5492  C:\Windows\System32\igfxpers.exe - ok
19:40:46.0631 5492  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
19:40:46.0631 5492  C:\Windows\System32\ieframe.dll - ok
19:40:46.0636 5492  [ 7E8A672B7B06A6EB11960C22E0360C59 ] C:\Windows\System32\d2d1.dll
19:40:46.0636 5492  C:\Windows\System32\d2d1.dll - ok
19:40:46.0641 5492  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
19:40:46.0641 5492  C:\Windows\SysWOW64\odbcint.dll - ok
19:40:46.0646 5492  [ E0A284479FE11525A75995B38EC7478F ] C:\Windows\System32\hccutils.dll
19:40:46.0646 5492  C:\Windows\System32\hccutils.dll - ok
19:40:46.0653 5492  [ 57D21695DAC66207E8A53A461F3A83D4 ] C:\Windows\System32\igfxsrvc.exe
19:40:46.0653 5492  C:\Windows\System32\igfxsrvc.exe - ok
19:40:46.0659 5492  [ B1444F32E84EE728B2DECA70F621C806 ] C:\Windows\System32\igfxsrvc.dll
19:40:46.0659 5492  C:\Windows\System32\igfxsrvc.dll - ok
19:40:46.0663 5492  [ 0476D6445FADB8040A3A3414D3250DB0 ] C:\Windows\System32\igfxdev.dll
19:40:46.0663 5492  C:\Windows\System32\igfxdev.dll - ok
19:40:46.0668 5492  [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\Windows\SysWOW64\DWrite.dll
19:40:46.0668 5492  C:\Windows\SysWOW64\DWrite.dll - ok
19:40:46.0673 5492  [ 63BB89DED1E9104E68D33E54DE4D340D ] C:\Windows\System32\DWrite.dll
19:40:46.0673 5492  C:\Windows\System32\DWrite.dll - ok
19:40:46.0678 5492  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
19:40:46.0678 5492  C:\Windows\SysWOW64\riched20.dll - ok
19:40:46.0682 5492  [ 1197D254CD563D465E24FED86925BB48 ] C:\Windows\System32\igfxtray.exe
19:40:46.0683 5492  C:\Windows\System32\igfxtray.exe - ok
19:40:46.0687 5492  [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
19:40:46.0687 5492  C:\Windows\SysWOW64\rundll32.exe - ok
19:40:46.0692 5492  [ 571DE5566BC8AF4A99869F9122760428 ] C:\Windows\System32\hkcmd.exe
19:40:46.0692 5492  C:\Windows\System32\hkcmd.exe - ok
19:40:46.0698 5492  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
19:40:46.0698 5492  C:\Windows\System32\rundll32.exe - ok
19:40:46.0704 5492  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
19:40:46.0704 5492  C:\Windows\SysWOW64\msxml6.dll - ok
19:40:46.0710 5492  [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\SysWOW64\thumbcache.dll
19:40:46.0710 5492  C:\Windows\SysWOW64\thumbcache.dll - ok
19:40:46.0715 5492  [ 69F9C8AE1BDB958EC9AE5C3DC5520CEA ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe
19:40:46.0715 5492  C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe - ok
19:40:46.0721 5492  [ 14EAAD6A782FF16B05AADACFE05C8D2A ] C:\Windows\System32\LogiLDA.DLL
19:40:46.0721 5492  C:\Windows\System32\LogiLDA.DLL - ok
19:40:46.0726 5492  [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
19:40:46.0727 5492  C:\Windows\System32\oleres.dll - ok
19:40:46.0732 5492  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
19:40:46.0732 5492  C:\Windows\SysWOW64\mscoree.dll - ok
19:40:46.0738 5492  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
19:40:46.0738 5492  C:\Windows\System32\thumbcache.dll - ok
19:40:46.0743 5492  [ 6B4F522AB6E642DB3B627C0E92B5A6C5 ] C:\Windows\System32\igfxrenu.lrc
19:40:46.0743 5492  C:\Windows\System32\igfxrenu.lrc - ok
19:40:46.0749 5492  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
19:40:46.0749 5492  C:\Windows\System32\mscoree.dll - ok
19:40:46.0755 5492  [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\SysWOW64\stobject.dll
19:40:46.0755 5492  C:\Windows\SysWOW64\stobject.dll - ok
19:40:46.0759 5492  [ C7B25840F55D2153F3431BFE2C3C0F7A ] C:\Windows\System32\GfxUI.exe
19:40:46.0759 5492  C:\Windows\System32\GfxUI.exe - ok
19:40:46.0764 5492  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
19:40:46.0764 5492  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
19:40:46.0769 5492  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
19:40:46.0769 5492  C:\Windows\System32\stobject.dll - ok
19:40:46.0775 5492  [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\SysWOW64\batmeter.dll
19:40:46.0775 5492  C:\Windows\SysWOW64\batmeter.dll - ok
19:40:46.0781 5492  [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
19:40:46.0781 5492  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
19:40:46.0786 5492  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
19:40:46.0786 5492  C:\Windows\System32\batmeter.dll - ok
19:40:46.0792 5492  [ E9D8C0101FB272CAFC419139EBC76451 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
19:40:46.0792 5492  C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe - ok
19:40:46.0797 5492  [ 65383B545D00DCC690FA78749359724A ] C:\Windows\System32\igfxress.dll
19:40:46.0797 5492  C:\Windows\System32\igfxress.dll - ok
19:40:46.0800 5492  [ FFC4181AACA8D7F0B075E3A9BF77497F ] C:\Program Files\Stardock\Fences Pro\FencesMenu64.dll
19:40:46.0800 5492  C:\Program Files\Stardock\Fences Pro\FencesMenu64.dll - ok
19:40:46.0806 5492  [ 5B72629C8144D1A96490D4C090D28DA1 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
19:40:46.0806 5492  C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
19:40:46.0811 5492  [ 8B285BDAB7735FDFB18E6F7122923B77 ] C:\Windows\SysWOW64\UIAnimation.dll
19:40:46.0811 5492  C:\Windows\SysWOW64\UIAnimation.dll - ok
19:40:46.0816 5492  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
19:40:46.0816 5492  C:\Windows\System32\UIAnimation.dll - ok
19:40:46.0821 5492  [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
19:40:46.0821 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
19:40:46.0827 5492  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
19:40:46.0827 5492  C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
19:40:46.0831 5492  [ 383F137ECAEA866B91473E11E68FABB6 ] C:\Program Files\Stardock\Fences Pro\DesktopDock64.dll
19:40:46.0831 5492  C:\Program Files\Stardock\Fences Pro\DesktopDock64.dll - ok
19:40:46.0836 5492  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
19:40:46.0836 5492  C:\Windows\SysWOW64\dbghelp.dll - ok
19:40:46.0840 5492  [ 3CDC9975457E78EE6A9D64599DBB76DD ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
19:40:46.0840 5492  C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
19:40:46.0846 5492  [ A0ABBAD8CE99CBF8467D697073B38E87 ] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
19:40:46.0846 5492  C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe - ok
19:40:46.0851 5492  [ B3170CCC779B682C3341873EA60CF084 ] C:\Windows\SysWOW64\d3d10warp.dll
19:40:46.0851 5492  C:\Windows\SysWOW64\d3d10warp.dll - ok
19:40:46.0856 5492  [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
19:40:46.0856 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
19:40:46.0860 5492  [ E4F3EF8A45732D5427FB8FD0AA309DFC ] C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll
19:40:46.0860 5492  C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll - ok
19:40:46.0865 5492  [ C498EF41B93986BCBD483597573EB96D ] C:\Windows\System32\d3d10warp.dll
19:40:46.0865 5492  C:\Windows\System32\d3d10warp.dll - ok
19:40:46.0870 5492  [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\SysWOW64\prnfldr.dll
19:40:46.0870 5492  C:\Windows\SysWOW64\prnfldr.dll - ok
19:40:46.0875 5492  [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
19:40:46.0875 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
19:40:46.0880 5492  [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
19:40:46.0880 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
19:40:46.0886 5492  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
19:40:46.0886 5492  C:\Windows\System32\prnfldr.dll - ok
19:40:46.0889 5492  [ 1E70071E1753E43983B1202CE98AEC6F ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
19:40:46.0889 5492  C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
19:40:46.0894 5492  [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
19:40:46.0894 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
19:40:46.0898 5492  [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
19:40:46.0898 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
19:40:46.0903 5492  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
19:40:46.0903 5492  C:\Windows\SysWOW64\msxml3.dll - ok
19:40:46.0908 5492  [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
19:40:46.0908 5492  C:\Windows\SysWOW64\wdmaud.drv - ok
19:40:46.0913 5492  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
19:40:46.0913 5492  C:\Windows\SysWOW64\ksuser.dll - ok
19:40:46.0918 5492  [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
19:40:46.0918 5492  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
19:40:46.0924 5492  [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
19:40:46.0924 5492  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
19:40:46.0929 5492  [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
19:40:46.0929 5492  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
19:40:46.0933 5492  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
19:40:46.0934 5492  C:\Windows\SysWOW64\avrt.dll - ok
19:40:46.0938 5492  [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
19:40:46.0938 5492  C:\Windows\SysWOW64\es.dll - ok
19:40:46.0943 5492  [ CFE0D9A7AB8F420B0FD3F946C6C399AA ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll
19:40:46.0943 5492  C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll - ok
19:40:46.0949 5492  [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
19:40:46.0949 5492  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
19:40:46.0954 5492  [ DF72D700CC33611206675B8A2FD4D4F9 ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
19:40:46.0954 5492  C:\Program Files\Logitech\SetPointP\SetPoint.exe - ok
19:40:46.0960 5492  [ 6B6A60DEBD6754E548DFEE6CB78ED6E4 ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
19:40:46.0960 5492  C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll - ok
19:40:46.0964 5492  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
19:40:46.0964 5492  C:\Windows\SysWOW64\AudioSes.dll - ok
19:40:46.0969 5492  [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
19:40:46.0970 5492  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
19:40:46.0975 5492  [ 52871562FDF8ACAE04DF3E9294870064 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_UICustomControls.dll
19:40:46.0975 5492  C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_UICustomControls.dll - ok
19:40:46.0980 5492  [ FB16C733E4ACB0D6E4699CE13F85336C ] C:\Program Files\7-Zip\7zFM.exe
19:40:46.0980 5492  C:\Program Files\7-Zip\7zFM.exe - ok
19:40:46.0985 5492  [ 3543759A6774B3059075CEC2BA378FB4 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_WiMAXSDKInterop.dll


#8 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 08:16 AM

Oh...okay.    Here are the last few lines of the TDSS Killer log.
 
 
19:40:50.0239 5492  ============================================================
19:40:50.0239 5492  Scan finished
19:40:50.0239 5492  ============================================================
19:40:50.0251 5380  Detected object count: 0
19:40:50.0251 5380  Actual detected object count: 0
19:41:32.0754 1408  Deinitialize success


#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 AM

Posted 05 March 2013 - 08:16 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.
 

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes
may "make changes to your registry" as part of its disinfection
routine. If using other security programs that detect registry changes
(ie Spybot's Teatimer), they may interfere or alert you. Temporarily
disable such programs or permit them to allow the changes.



  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy
    and paste the contents of that report in your next reply. Be sure to
    post the complete log to include the top portion which shows the
    database version and your operating system.
  • Exit Malwarebytes when done.

Note:
If Malwarebytes encounters a file that is difficult to remove, you will
be asked to reboot your computer so it can proceed with the
disinfection process. If asked to restart the computer, please do so
immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.



===================================================


Farbar's MiniToolBox

--------------------



  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please
download
Farbar
Service Scanner
, save it to your desktop, and run it.
 

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------
 

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------
 

  • Please
    download
    Junkware
    Removal Tool
    and save it to your desktop.
  • Disable your
    AntiVirus and AntiSpyware applications, usually via a right click on the
    System Tray icon. They may otherwise interfere with our tools. (Click
    on this
    link
    to see a list of programs that should be disabled. The list
    is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:
 


  • In
    order for Rkill to run properly you must disable your anti-malware
    software.  Please refer to
    this
    page
    if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A
    black screen will appear and then disappear. Please do not worry, that
    is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------
 

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:
 

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log


#10 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 12:10 PM

Okay - here are the logs.  May be in more than one post....

 

MalwareBytes:

 

 

Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org
 
Database version: v2013.03.05.03
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Steve :: PAVILIONDV7 [administrator]
 
Protection: Disabled
 
3/5/2013 8:18:33 AM
mbam-log-2013-03-05 (08-18-33).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 298634
Time elapsed: 3 minute(s), 42 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 
 
Mini Toolbox
 
MiniToolBox by Farbar  Version:01-03-2013
Ran by Steve (administrator) on 05-03-2013 at 08:24:18
Running from "C:\Users\Steve\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Centrino® Advanced-N 6250 AGN = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Intel® Centrino® WiMAX 6250 = Local Area Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Paviliondv7
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® WiMAX 6250
   Physical Address. . . . . . . . . : 64-D4-DA-23-63-35
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 64-80-99-00-3F-B5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 64-80-99-00-3F-B5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6250 AGN
   Physical Address. . . . . . . . . : 64-80-99-00-3F-B4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::306e:f8b:c348:31bb%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.0.0.14(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, March 04, 2013 7:42:38 PM
   Lease Expires . . . . . . . . . . : Wednesday, March 06, 2013 6:40:51 AM
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 325353625
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-E2-B7-F9-98-4B-E1-BF-ED-FE
   DNS Servers . . . . . . . . . . . : 10.0.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{61DE6255-2831-4569-9AF6-FAD55C712AB9}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{EFBC3F57-B30A-4368-A99A-E0D7FC673C43}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:8ec:2571:f5ff:fff1(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::8ec:2571:f5ff:fff1%17(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.{FBD0229F-3694-46CD-873E-3C2B42A90F0E}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{B4413CF2-3A85-4A45-9087-D38BF4AD24CE}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  10.0.0.1
 
Name:    google.com
Addresses:  2607:f8b0:4009:800::1000
      74.125.225.39
      74.125.225.40
      74.125.225.41
      74.125.225.46
      74.125.225.32
      74.125.225.33
      74.125.225.34
      74.125.225.35
      74.125.225.36
      74.125.225.37
      74.125.225.38
 
 
Pinging google.com [74.125.225.130] with 32 bytes of data:
Reply from 74.125.225.130: bytes=32 time=39ms TTL=51
Reply from 74.125.225.130: bytes=32 time=44ms TTL=51
 
Ping statistics for 74.125.225.130:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 39ms, Maximum = 44ms, Average = 41ms
Server:  UnKnown
Address:  10.0.0.1
 
Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=791ms TTL=46
Reply from 206.190.36.45: bytes=32 time=851ms TTL=46
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 791ms, Maximum = 851ms, Average = 821ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...64 d4 da 23 63 35 ......Intel® Centrino® WiMAX 6250
 14...64 80 99 00 3f b5 ......Microsoft Virtual WiFi Miniport Adapter #2
 13...64 80 99 00 3f b5 ......Microsoft Virtual WiFi Miniport Adapter
 12...64 80 99 00 3f b4 ......Intel® Centrino® Advanced-N 6250 AGN
  1...........................Software Loopback Interface 1
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1        10.0.0.14     25
         10.0.0.0    255.255.255.0         On-link         10.0.0.14    281
        10.0.0.14  255.255.255.255         On-link         10.0.0.14    281
       10.0.0.255  255.255.255.255         On-link         10.0.0.14    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         10.0.0.14    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         10.0.0.14    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 17     58 2001::/32                On-link
 17    306 2001:0:4137:9e76:8ec:2571:f5ff:fff1/128
                                    On-link
 12    281 fe80::/64                On-link
 17    306 fe80::/64                On-link
 17    306 fe80::8ec:2571:f5ff:fff1/128
                                    On-link
 12    281 fe80::306e:f8b:c348:31bb/128
                                    On-link
  1    306 ff00::/8                 On-link
 17    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (03/05/2013 00:31:10 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/05/2013 00:31:08 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (03/04/2013 08:09:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/04/2013 08:09:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/04/2013 08:09:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/04/2013 05:16:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/04/2013 05:16:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/04/2013 08:44:56 AM) (Source: Microsoft Security Client Setup) (User: Paviliondv7)
Description: HRESULT:0x8004FF0A
Description:Microsoft Security Essentials installation was canceled. You canceled the Security Essentials installation on your computer. Error code:0x8004FF0A.
 
Error: (03/04/2013 00:31:07 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/04/2013 00:31:06 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
 
System errors:
=============
Error: (03/04/2013 07:43:34 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (03/04/2013 07:37:21 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (03/04/2013 07:30:28 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (03/04/2013 07:30:20 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
 
Error: (03/04/2013 04:30:37 PM) (Source: Service Control Manager) (User: )
Description: The Intuit Update Service v4 service failed to start due to the following error: 
%%1053
 
Error: (03/04/2013 04:30:37 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intuit Update Service v4 service to connect.
 
Error: (03/04/2013 04:28:44 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (03/04/2013 04:27:17 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 4:24:14 PM on ?3/?4/?2013 was unexpected.
 
Error: (03/04/2013 08:47:15 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (03/04/2013 07:43:06 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
 
Microsoft Office Sessions:
=========================
Error: (03/05/2013 00:31:10 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe
 
Error: (03/05/2013 00:31:08 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"c:\program files (x86)\atomicsaquatics\cobalt-drivers\cobalt-drivers\usb_driver\installer_x86.exe
 
Error: (03/04/2013 08:09:04 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Public\Documents\esetsmartinstaller_enu.exe
 
Error: (03/04/2013 08:09:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Public\Documents\esetsmartinstaller_enu.exe
 
Error: (03/04/2013 08:09:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Public\Documents\esetsmartinstaller_enu.exe
 
Error: (03/04/2013 05:16:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Public\Documents\esetsmartinstaller_enu.exe
 
Error: (03/04/2013 05:16:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Public\Documents\esetsmartinstaller_enu.exe
 
Error: (03/04/2013 08:44:56 AM) (Source: Microsoft Security Client Setup)(User: Paviliondv7)
Description: HRESULT:0x8004FF0A
Description:Microsoft Security Essentials installation was canceled. You canceled the Security Essentials installation on your computer. Error code:0x8004FF0A.
 
Error: (03/04/2013 00:31:07 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe
 
Error: (03/04/2013 00:31:06 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"c:\program files (x86)\atomicsaquatics\cobalt-drivers\cobalt-drivers\usb_driver\installer_x86.exe
 
 
=========================== Installed Programs ============================
 
286
7-Zip 9.22 (x64 edition) (Version: 9.22.00.0)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.3)
Adobe AIR (Version: 2.0.2.12610)
Adobe Flash Player 10 ActiveX 64-bit (Version: 10.3.162.28)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.0.1.152)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
Apple Application Support (Version: 1.4.1)
Apple Software Update (Version: 2.1.1.116)
ATI Catalyst Install Manager (Version: 3.0.790.0)
Blio (Version: 2.0.5350)
Brother MFL-Pro Suite MFC-255CW (Version: 1.0.1.0)
Brother MFL-Pro Suite MFC-J630W (Version: 1.0.4.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0909.1412.23625)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0909.1412.23625)
Catalyst Control Center InstallProxy (Version: 2010.0909.1412.23625)
Catalyst Control Center Localization All (Version: 2010.0909.1412.23625)
CCC Help Chinese Standard (Version: 2010.0909.1411.23625)
CCC Help Chinese Traditional (Version: 2010.0909.1411.23625)
CCC Help Czech (Version: 2010.0909.1411.23625)
CCC Help Danish (Version: 2010.0909.1411.23625)
CCC Help Dutch (Version: 2010.0909.1411.23625)
CCC Help English (Version: 2010.0909.1411.23625)
CCC Help Finnish (Version: 2010.0909.1411.23625)
CCC Help French (Version: 2010.0909.1411.23625)
CCC Help German (Version: 2010.0909.1411.23625)
CCC Help Greek (Version: 2010.0909.1411.23625)
CCC Help Hungarian (Version: 2010.0909.1411.23625)
CCC Help Italian (Version: 2010.0909.1411.23625)
CCC Help Japanese (Version: 2010.0909.1411.23625)
CCC Help Korean (Version: 2010.0909.1411.23625)
CCC Help Norwegian (Version: 2010.0909.1411.23625)
CCC Help Polish (Version: 2010.0909.1411.23625)
CCC Help Portuguese (Version: 2010.0909.1411.23625)
CCC Help Russian (Version: 2010.0909.1411.23625)
CCC Help Spanish (Version: 2010.0909.1411.23625)
CCC Help Swedish (Version: 2010.0909.1411.23625)
CCC Help Thai (Version: 2010.0909.1411.23625)
CCC Help Turkish (Version: 2010.0909.1411.23625)
ccc-core-static (Version: 2010.0909.1412.23625)
ccc-utility64 (Version: 2010.0909.1412.23625)
Cobalt-Drivers 1.1 (Version: 1.1)
Cobalt-Logbook (Version: 1.0.0)
Contents (Version: 1.6.0.294)
Corel PaintShop Photo Pro X3 (Version: 1.00.0000)
Corel PaintShop Photo Pro X3 (Version: 1.6.1.252)
Corel VideoStudio Pro X3 (Version: 1.6.0.294)
CyberLink DVD Suite (Version: 7.0.3320)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DeviceIO (Version: 1.6.0.294)
Diablo II
Diving Log 5.0 (Version: 5.0)
DriverAgent by eSupport.com
DVD Menu Pack for HP MediaSmart Video (Version: 4.2.4412)
Energy Star Digital Logo (Version: 1.0.1)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
ESU for Microsoft Windows 7 (Version: 1.0.0)
FastStone Image Viewer 4.6 (Version: 4.6)
Fences Pro (Version: 1.0.1.312)
Fences Pro (Version: 1.0.1.312.19219)
FTL version 1.03.1 (Version: 1.03.1)
Google Chrome (Version: 25.0.1364.152)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HiJackThis (Version: 1.0.0)
HP 3D DriveGuard (Version: 4.0.10.1)
HP Auto (Version: 1.0.12494.3472)
HP Client Services (Version: 1.0.12656.3472)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.3.1)
HP DVB-T TV Tuner 8.0.64.43 (Version: 8.0.64.43)
HP MediaSmart DVD (Version: 4.2.4521)
HP MediaSmart Movies and TV (Version: 1.0.1.2)
HP MediaSmart Music (Version: 4.2.4604)
HP MediaSmart Photo (Version: 4.2.4513)
HP MediaSmart SmartMenu (Version: 3.1.2.2)
HP MediaSmart Video (Version: 4.2.4522)
HP MediaSmart Webcam (Version: 4.2.3303)
HP Officejet 6500 E710n-z Basic Device Software (Version: 22.50.231.0)
HP Officejet 6500 E710n-z Help (Version: 140.0.2.2)
HP Photo Creations (Version: 1.0.0.4042)
HP Power Manager (Version: 1.1.2)
HP Product Detection (Version: 11.10.1000)
HP Quick Launch (Version: 2.2.7)
HP Setup (Version: 8.4.4400.3525)
HP Setup Manager (Version: 1.0.12844.3519)
HP SimplePass Identity Protection (Version: 5.20.205)
HP Software Framework (Version: 4.0.70.1)
HP Support Assistant (Version: 5.2.9.2)
HP Wireless Assistant (Version: 4.0.10.0)
HPAsset component for HP Active Support Library (Version: 3.0.0.3)
Hulu Desktop (Version: 0.9.14)
ICA (Version: 1.6.0.294)
ICA (Version: 1.6.1.252)
IDT Audio (Version: 1.0.6292.0)
Intel PROSet Wireless
Intel WiMAX Tutorial (Version: 1.5.3.1)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.03.0000)
Intel® Rapid Storage Technology (Version: 9.6.2.1001)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
Intel® Wireless Display (Version: 1.2.21.0)
Intel® PROSet/Wireless WiMAX Software (Version: 2.03.0005)
IPM_PSP_Pro (Version: 1.00.0000)
IPM_VS_Pro (Version: 13.0)
IrfanView (remove only) (Version: 4.30)
ISCOM (Version: 1.6.0.294)
ISCOM (Version: 1.6.1.252)
Java 7 Update 11 (Version: 7.0.110)
Java Auto Updater (Version: 2.1.9.0)
Junk Mail filter update (Version: 15.4.3502.0922)
LabelPrint (Version: 2.5.3220)
League of Legends (Version: 1.3)
LightScribe System Software (Version: 1.18.18.1)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech SetPoint 6.32 (Version: 6.32.20)
Magic Online (Version: 3.00.0000)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Movie Theme Pack for HP MediaSmart Video (Version: 4.2.4412)
Mozilla Firefox 4.0.1 (x86 en-US) (Version: 4.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Norton Online Backup (Version: 2.1.17869)
Oceanlog 2.x (Version: 2.3.5)
Paint.NET v3.5.10 (Version: 3.60.0)
Pando Media Booster (Version: 2.6.0.8)
PaperPort Image Printer 64-bit (Version: 1.00.0000)
PhotoNow! (Version: 1.1.7717)
PictureMover (Version: 3.5.0.33)
PlayReady PC Runtime x86 (Version: 1.3.0)
Power2Go (Version: 6.1.4419)
PowerDirector (Version: 8.0.3320)
PSPPContent (Version: 1.00.0000)
PSPPRO_DCRAW (Version: 13.0.0)
PureHD (Version: 1.6.0.294)
PX Profile Update (Version: 1.00.1.)
QuickTime (Version: 7.69.80.9)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.23.623.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30111)
Recovery Manager (Version: 5.5.3223)
Remote Control USB Driver (Version: 2.3.2.317)
RoxioNow Player (Version: 1.9.5.101)
ScanSoft PaperPort 11 (Version: 11.2.0000)
Setup (Version: 1.6.0.294)
Setup (Version: 1.6.1.252)
Share (Version: 1.6.0.294)
Share64 (Version: 1.6.0.294)
Skype™ 4.2 (Version: 4.2.166)
StarCraft II (Version: 2.0.4.24944)
Sweet Home 3D version 3.7
Synaptics Pointing Device Driver (Version: 15.3.29.0)
System Requirements Lab CYRI (64-bit) (Version: 4.4.26.0)
System Requirements Lab CYRI (Version: 5.0.6.0)
Times Reader (Version: 2.055)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0495)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wmiiper (Version: 011.000.1583)
TurboTax 2011 wrapper (Version: 011.000.0121)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Validity Sensors DDK (Version: 4.1.139.0)
VIO (Version: 1.6.0.294)
VSClassic (Version: 1.6.0.294)
VSPro (Version: 1.6.0.294)
Windows Driver Package - FTDI CDM Driver Package (03/30/2010 2.06.02) (Version: 03/30/2010 2.06.02)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Xtranormal State - Showpak-FM-Preview (Version: 1.2.10)
Xtranormal State - SoundPack-Starter Kit (Version: 1.0.2)
Xtranormal State - Voicepack-British-Graham22k (Version: 1.0.2)
Xtranormal State - Voicepack-British-Lucy22k (Version: 1.0.2)
Xtranormal State - Voicepack-USEnglish-Heather22k (Version: 1.0.2)
Xtranormal State - Voicepack-USEnglish-Ryan22k (Version: 1.0.2)
Xtranormal State (Version: 2.6.3690.106)
Yahoo! Detect
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)
 
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 34%
Total physical RAM: 5941.86 MB
Available physical RAM: 3864.09 MB
Total Pagefile: 11881.91 MB
Available Pagefile: 9125.33 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.59 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:565.43 GB) (Free:403.08 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:30.44 GB) (Free:4.47 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\PAVILIONDV7
 
Administrator            Boss Moss                Guest                    
Jeannie                  Joe                      Jon                      
Steve                    
 
 
**** End of log ****
 
 


#11 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 12:14 PM

Service Scanner:

 

 

Farbar Service Scanner Version: 03-03-2013
Ran by Steve (administrator) on 05-03-2013 at 08:26:14
Running from "C:\Users\Steve\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****
 
 
 
AdwCleaner:
 
# AdwCleaner v2.114 - Logfile created 03/05/2013 at 08:28:00
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Steve - PAVILIONDV7
# Boot Mode : Normal
# Running from : C:\Users\Steve\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
File Deleted : C:\Users\Jon\Desktop\eBay.lnk
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16464
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v4.0.1 (en-US)
 
File : C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\x1oyc5nm.default\prefs.js
 
[OK] File is clean.
 
File : C:\Users\Jeannie\AppData\Roaming\Mozilla\Firefox\Profiles\h97y6dhw.default\prefs.js
 
[OK] File is clean.
 
File : C:\Users\Joe\AppData\Roaming\Mozilla\Firefox\Profiles\0r4zuyyg.default\prefs.js
 
[OK] File is clean.
 
-\\ Google Chrome v25.0.1364.152
 
File : C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
File : C:\Users\Joe\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [2057 octets] - [01/02/2013 03:41:59]
AdwCleaner[S2].txt - [1333 octets] - [01/02/2013 03:48:40]
AdwCleaner[S3].txt - [1313 octets] - [05/03/2013 08:28:00]
 
########## EOF - C:\AdwCleaner[S3].txt - [1373 octets] ##########
 
 
 
JRT:
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.8 (03.04.2013:1)
OS: Windows 7 Home Premium x64
Ran by Steve on Tue 03/05/2013 at  8:41:03.88
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 03/05/2013 at 10:49:02.88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
RKill
 
Rkill 2.4.6 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 03/05/2013 12:03:49 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * No issues found.
 
Checking Windows Service Integrity: 
 
 * FontCache => %SystemRoot%\system32\svchost.exe -k LocalService [Incorrect ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 03/05/2013 12:04:05 PM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)
 
 
 


Finally - 

 

Autoruns

 

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"    ""    ""    ""
+ "rdpclip"    ""    ""    "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit"    ""    ""    ""
+ "C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe"    "DigitalPersona Local Agent"    "DigitalPersona, Inc."    "c:\program files (x86)\digitalpersona\bin\dpagent.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "EvtMgr6"    "Logitech SetPoint Event Manager (UNICODE)"    "Logitech, Inc."    "c:\program files\logitech\setpointp\setpoint.exe"
+ "HotKeysCmds"    "hkcmd Module"    "Intel Corporation"    "c:\windows\system32\hkcmd.exe"
+ "HPWirelessAssistant"    ""    ""    "c:\program files\hewlett-packard\hp wireless assistant\delayedappstarter.exe"
+ "IgfxTray"    "igfxTray Module"    "Intel Corporation"    "c:\windows\system32\igfxtray.exe"
+ "IntelliPoint"    "IPoint.exe"    "Microsoft Corporation"    "c:\program files\microsoft intellipoint\ipoint.exe"
+ "IntelWireless"    "Intel® PROSet/Wireless Framework"    "Intel® Corporation"    "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"
+ "IntelWirelessWiMAX"    "Intel® PROSet/Wireless WiMAX Connection Utility"    "Intel® Corporation"    "c:\program files\intel\wimax\bin\wimaxcu.exe"
+ "Logitech Download Assistant"    "Logitech Download Assistant"    "Logitech, Inc."    "c:\windows\system32\logilda.dll"
+ "Persistence"    "persistence Module"    "Intel Corporation"    "c:\windows\system32\igfxpers.exe"
+ "SmartMenu"    "SmartMenu"    ""    "c:\program files\hewlett-packard\hp mediasmart\smartmenu.exe"
+ "SynTPEnh"    "Synaptics TouchPad Enhancements"    "Synaptics Incorporated"    "c:\program files\synaptics\syntp\syntpenh.exe"
+ "SysTrayApp"    "IDT PC Audio"    "IDT, Inc."    "c:\program files\idt\wdm\sttray64.exe"
+ "Zune Launcher"    "Zune Auto-Launcher"    "Microsoft Corporation"    "c:\program files\zune\zunelauncher.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "BCSSync"    "Microsoft Office 2010 component"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\bcssync.exe"
+ "BrMfcWnd"    "Brother Status Monitor Application"    "Brother Industries, Ltd."    "c:\program files (x86)\brother\brmfcmon\brmfcwnd.exe"
+ "BrStsMon00"    "Brother Status Monitor Application"    "Brother Industries, Ltd."    "c:\program files (x86)\browny02\brother\brstmonw.exe"
+ "ControlCenter3"    "ControlCenter Program"    "Brother Industries, Ltd."    "c:\program files (x86)\brother\controlcenter3\brctrcen.exe"
+ "Corel File Shell Monitor"    ""    ""    "File not found: c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exe"
+ "HP Quick Launch"    "HP Message Service"    "Hewlett-Packard Development Company, L.P."    "c:\program files (x86)\hewlett-packard\hp quick launch\hpmsgsvc.exe"
+ "IndexSearch"    "PaperPort IndexSearch"    "Nuance Communications, Inc."    "c:\program files (x86)\scansoft\paperport\indexsearch.exe"
+ "Norton Online Backup"    "Norton Online Backup Service"    "Symantec Corporation"    "c:\program files (x86)\symantec\norton online backup\nobuclient.exe"
+ "PaperPort PTD"    "PaperPort Print to Desktop for NT"    "Nuance Communications, Inc."    "c:\program files (x86)\scansoft\paperport\pptd40nt.exe"
+ "PPort11reminder"    "Ereg"    "Nuance Communications, Inc."    "c:\program files (x86)\scansoft\paperport\ereg\ereg.exe"
+ "QuickTime Task"    "QuickTime Task"    "Apple Inc."    "c:\program files (x86)\quicktime\qttask.exe"
+ "SSBkgdUpdate"    "SSBkgdUpdate"    "Nuance Communications, Inc."    "c:\program files (x86)\common files\scansoft shared\ssbkgdupdate\ssbkgdupdate.exe"
+ "StartCCC"    "Catalyst® Control Center Launcher"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\program files (x86)\common files\java\java update\jusched.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "Snapfish PictureMover.lnk"    "PictureMover Application"    "Hewlett-Packard Company"    "c:\program files (x86)\picturemover\bin\picturemover.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "LightScribe Control Panel"    ""    "Hewlett-Packard Company"    "c:\program files (x86)\common files\lightscribe\lsrunonce.exe"
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\users\steve\appdata\local\google\update\googleupdate.exe"
+ "LightScribe Control Panel"    ""    "Hewlett-Packard Company"    "c:\program files (x86)\common files\lightscribe\lightscribecontrolpanel.exe"
+ "OfficeSyncProcess"    "Microsoft Office Document Cache"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\msosync.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler"    ""    ""    ""
+ "FencesShellExt"    "Stardock Fences Shell Extension"    "Stardock"    "c:\program files\stardock\fences pro\fencesmenu64.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files\7-zip\7-zip.dll"
+ "Corel.Paint.Shop.Pro.Photo"    ""    ""    "c:\program files (x86)\corel\corel paintshop photo pro\x3\pspclassic\pspcontextmenu64.dll"
+ "FencesShellExt"    "Stardock Fences Shell Extension"    "Stardock"    "c:\program files\stardock\fences pro\fencesmenu64.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files\7-zip\7-zip32.dll"
+ "Corel.Paint.Shop.Pro.Photo"    ""    ""    "c:\program files (x86)\corel\corel paintshop photo pro\x3\pspclassic\pspcontextmenu.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files\7-zip\7-zip.dll"
+ "Corel.Paint.Shop.Pro.Photo"    ""    ""    "c:\program files (x86)\corel\corel paintshop photo pro\x3\pspclassic\pspcontextmenu64.dll"
+ "FencesShellExt"    "Stardock Fences Shell Extension"    "Stardock"    "c:\program files\stardock\fences pro\fencesmenu64.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files\7-zip\7-zip32.dll"
+ "Corel.Paint.Shop.Pro.Photo"    ""    ""    "c:\program files (x86)\corel\corel paintshop photo pro\x3\pspclassic\pspcontextmenu.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files\7-zip\7-zip.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files\7-zip\7-zip32.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "ACE"    "AMD Desktop Control Panel"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "FencesShellExt"    "Stardock Fences Shell Extension"    "Stardock"    "c:\program files\stardock\fences pro\fencesmenu64.dll"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui"    "igfxpph Module"    "Intel Corporation"    "c:\windows\system32\igfxpph.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "FencesShellExt"    "Stardock Fences Shell Extension"    "Stardock"    "c:\program files\stardock\fences pro\fencesmenu64.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper"    ""    ""    "File not found: C:\Program Files\Java\jre6\bin\jp2ssv.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    "Microsoft Corporation"    "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
"Task Scheduler"    ""    ""    ""
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3771651234-2725644926-208637320-1001Core"    "Google Installer"    "Google Inc."    "c:\users\steve\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3771651234-2725644926-208637320-1001UA"    "Google Installer"    "Google Inc."    "c:\users\steve\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3771651234-2725644926-208637320-1005Core"    "Google Installer"    "Google Inc."    "c:\users\joe\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3771651234-2725644926-208637320-1005UA"    "Google Installer"    "Google Inc."    "c:\users\joe\appdata\local\google\update\googleupdate.exe"
+ "\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up"    "HPTuneUp"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp support framework\hptuneup.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Health Analysis"    "HP Support Assistant"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Tuneup"    "HP Support Assistant"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\HPCeeScheduleForJeannie"    "HP Ceement"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\HPCeeScheduleForPAVILIONDV7$"    "HP Ceement"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\HPCeeScheduleForSteve"    "HP Ceement"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\HpWebReg.exe"    "WebRegistrationApp"    "Hewlett-Packard Co."    "c:\program files\hp\hp officejet 6500 e710n-z\bin\hpwebreg.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan"    "Microsoft Malware Protection Command Line Utility"    "Microsoft Corporation"    "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task"    "Windows Live Social Object Extractor Engine"    "Microsoft Corporation"    "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"
+ "\Microsoft_Hardware_Launch_IPoint_exe"    "IPoint.exe"    "Microsoft Corporation"    "c:\program files\microsoft intellipoint\ipoint.exe"
+ "\MirageAgent"    "YouCam Mirage"    "CyberLink"    "c:\program files (x86)\hewlett-packard\media\webcam\ycmmirage.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AESTFilters"    "Andrea filters APO access service (64-bit)"    "Andrea Electronics Corporation"    "c:\program files\idt\wdm\aestsr64.exe"
+ "AMD External Events Utility"    "AMD External Events Service Module"    "AMD"    "c:\windows\system32\atiesrxx.exe"
+ "BrYNSvc"    "BrYNCSvc"    "Brother Industries, Ltd."    "c:\program files (x86)\browny02\brynsvc.exe"
+ "DMAgent"    "Red Bend Device Management Service for Intel® PROSet/Wireless WiMAX Software."    "Red Bend Ltd."    "c:\program files\intel\wimax\bin\dmagent.exe"
+ "DpHost"    "Provides user authentication services."    "DigitalPersona, Inc."    "c:\program files\digitalpersona\bin\dphostw.exe"
+ "EvtEng"    "Manages the event trace messages for all the Intel® PROSet/Wireless Software components."    "Intel® Corporation"    "c:\program files\intel\wifi\bin\evteng.exe"
+ "HP Health Check Service"    "HP Health Check Service"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp health check\hphc_service.exe"
+ "HP Wireless Assistant Service"    "This service monitors the wireless devices in this computer and allows the HP Wireless Assistant application to turn devices on and off."    "Hewlett-Packard Company"    "c:\program files\hewlett-packard\hp wireless assistant\hpwa_service.exe"
+ "HPClientSvc"    "HP Client Services"    "Hewlett-Packard Company"    "c:\program files\hewlett-packard\hp client services\hpclientservices.exe"
+ "HPDrvMntSvc.exe"    "HP Quick Synchronization Service"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe"
+ "hpqwmiex"    "hpqwmiex Module"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "hpsrv"    "HpService"    "Hewlett-Packard Company"    "c:\windows\system32\hpservice.exe"
+ "HPWMISVC"    "HP Quick Launch WMI Service"    "Hewlett-Packard Development Company, L.P."    "c:\program files (x86)\hewlett-packard\hp quick launch\hpwmisvc.exe"
+ "IntuitUpdateServiceV4"    "Helps Intuit applications automatically update themselves."    "Intuit Inc."    "c:\program files (x86)\common files\intuit\update service v4\intuitupdateservice.exe"
+ "LBTServ"    "Logitech Bluetooth Service"    "Logitech, Inc."    "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"
+ "LightScribeService"    "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work."    "Hewlett-Packard Company"    "c:\program files (x86)\common files\lightscribe\lssrvc.exe"
+ "LMS"    "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces."    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler"    "Malwarebytes Anti-Malware scheduler"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService"    "Malwarebytes Anti-Malware service"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "Microsoft SharePoint Workspace Audit Service"    "Microsoft SharePoint Workspace"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "MyWiFiDHCPDNS"    "Wireless PAN DHCP and DNS Server"    ""    "c:\program files\intel\wifi\bin\pandhcpdns.exe"
+ "NOBU"    "Norton Online Backup Service"    "Symantec Corporation"    "c:\program files (x86)\symantec\norton online backup\nobuagent.exe"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "PSI_SVC_2"    "This service provides Protexis licensing functionalty."    "Protexis Inc."    "c:\program files (x86)\common files\protexis\license service\psiservice_2.exe"
+ "RegSrvc"    "Provides registry access to all Intel® PROSet/Wireless Software components"    "Intel® Corporation"    "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "RoxioNow Service"    "Windows Service App"    "Roxio"    "c:\program files (x86)\roxio\roxionow player\rnowsvc.exe"
+ "STacSV"    "Manages audio jack configurations."    "IDT, Inc."    "c:\program files\idt\wdm\stacsv64.exe"
+ "UNS"    "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device."    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "vcsFPService"    "Validity Fingerprint Service"    "Validity Sensors, Inc."    "c:\windows\system32\vcsfpservice.exe"
+ "WiMAXAppSrv"    "WiMAX SDK Service for Intel® PROSet/Wireless WiMAX Software"    "Intel® Corporation"    "c:\program files\intel\wimax\bin\appsrv.exe"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
+ "WMZuneComm"    "Zune Connectivity for Windows Mobile devices"    "Microsoft Corporation"    "c:\program files\zune\wmzunecomm.exe"
+ "ZuneNetworkSvc"    "Shares Zune media libraries to Zune devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\zune\zunenss.exe"
+ "ZuneWlanCfgSvc"    "Configures Zune for wireless syncing"    "Microsoft Corporation"    "c:\program files\zune\zunewlancfgsvc.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "Accelerometer"    "HP Accelerometer"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\accelerometer.sys"
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap"    "AMD multi-vendor Miniport Driver"    "Advanced Micro Devices, Inc."    "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHdmiService"    "ATI High Definition Audio Function Driver"    "ATI Technologies, Inc."    "c:\windows\system32\drivers\atihdmi.sys"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"
+ "bpenum"    "Intel® Centrino® WiMAX Enumerator"    "Intel Corporation"    "c:\windows\system32\drivers\bpenum.sys"
+ "bpmp"    "Intel® Centrino® WiMAX Driver"    "Intel Corporation"    "c:\windows\system32\drivers\bpmp.sys"
+ "bpusb"    "Intel® Centrino® WiMAX Function Driver"    "Intel Corporation"    "c:\windows\system32\drivers\bpusb.sys"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"
+ "BrSerIb"    "Brother MFC Serial Interface Driver(WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserib.sys"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"
+ "BrUsbSIb"    "Brother MFC Serial USB Driver(WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbsib.sys"
+ "clwvd"    "CyberLink WebCam Virtual Driver"    "CyberLink Corporation"    "c:\windows\system32\drivers\clwvd.sys"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"
+ "DrvAgent64"    "DriverAgent Direct I/O for 64-bit Windows"    "Phoenix Technologies"    "c:\windows\syswow64\drivers\drvagent64.sys"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"
+ "FTDIBUS"    "FTDIBUS USB Driver"    "FTDI Ltd."    "c:\windows\system32\drivers\ftdibus.sys"
+ "FTSER2K"    "FTDIBUS Serial Device Driver"    "FTDI Ltd."    "c:\windows\system32\drivers\ftser2k.sys"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64"    "Intel® Management Engine Interface"    "Intel Corporation"    "c:\windows\system32\drivers\hecix64.sys"
+ "hpdskflt"    "HP Disk Filter - SATA/RAID"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpdskflt.sys"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor"    "Intel Rapid Storage Technology driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"
+ "igfx"    "Intel Graphics Kernel Mode Driver"    "Intel Corporation"    "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"
+ "Impcd"    "Intel® Turbo Boost Technology Driver"    "Intel Corporation"    "c:\windows\system32\drivers\impcd.sys"
+ "intelkmd"    "Intel Graphics Kernel Mode Driver"    "Intel Corporation"    "c:\windows\system32\drivers\igdpmd64.sys"
+ "LEqdUsb"    "Logitech Equad USB Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\leqdusb.sys"
+ "LHidEqd"    "Logitech HID Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lhideqd.sys"
+ "LHidFilt"    "Logitech HID Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lhidfilt.sys"
+ "LMouFilt"    "Logitech Mouse Filter Driver."    "Logitech, Inc."    "c:\windows\system32\drivers\lmoufilt.sys"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\windows\system32\drivers\mbam.sys"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"
+ "netw5v64"    "Intel® Wireless WiFi Link Driver"    "Intel Corporation"    "c:\windows\system32\drivers\netw5v64.sys"
+ "NETwNs64"    "Intel® Wireless WiFi Link Driver"    "Intel Corporation"    "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR"    "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167"    "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                "    "Realtek                                            "    "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "Serial"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"
+ "SrvHsfHDA"    "HSF_HWAZL WDM driver"    "Conexant Systems, Inc."    "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92"    "HSF_DP driver"    "Conexant Systems, Inc."    "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac"    "HSF_CNXT driver"    "Conexant Systems, Inc."    "c:\windows\system32\drivers\vstcnxt6.sys"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA"    "IDT PC Audio"    "IDT, Inc."    "c:\windows\system32\drivers\stwrt64.sys"
+ "SynTP"    "Synaptics Touchpad Driver"    "Synaptics Incorporated"    "c:\windows\system32\drivers\syntp.sys"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"
+ "wdkmd"    "Intel Wireless Display Solution"    "Intel Corporation"    "c:\windows\system32\drivers\wdkmd.sys"
+ "yukonw7"    "Miniport Driver for Marvell Yukon Ethernet Controller."    "Marvell"    "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.dvacm"    "Ulead DV Audio ACM Driver"    "Corel TW Corp."    "c:\program files (x86)\common files\ulead systems\vio\dvacm.acm"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "Microsoft Zune H.264 Video Decoder"    "Microsoft Zune H.264 Video Decoder"    "Microsoft Corporation"    "c:\program files\zune\zuneh264dec.dll"
+ "WMEnc Screen Capture Filter"    "ZuneSrcWrp Module"    "Microsoft Corporation"    "c:\program files\zune\zunesrcwrp.dll"
+ "Zune Enhanced Video Renderer"    "Enhanced Video Renderer DLL"    "Microsoft Corporation"    "c:\program files\zune\zuneevr.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "ATI Ticker"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "Audio Source"    "Windows Media Preview Object"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmprevu.dll"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CoreCaption Filter"    "CoreCaption DLL"    "Corel Software, Inc."    "c:\program files (x86)\common files\corel\directshowcomponents2\corecaption.ax"
+ "CoreImgSrc"    "COREIMGFLT DLL"    "Corel Software, Inc."    "c:\program files (x86)\common files\corel\directshowcomponents\coreimgsrc.ax"
+ "CoreMovSrc"    "COREMOVFLT DLL"    "Corel Software, Inc."    "c:\program files (x86)\common files\corel\directshowcomponents\coremovsrc.ax"
+ "CoreNullXfrm Filter"    "CORENULLXFRM DLL"    "Corel Software, Inc."    "c:\program files (x86)\common files\corel\directshowcomponents2\corenullxfrm.ax"
+ "CoreVolume Filter"    "COREVOLUME DLL"    "Corel Software, Inc."    "c:\program files (x86)\common files\corel\directshowcomponents2\corevolume.ax"
+ "CyberLink Audio Decoder (HP)"    "CyberLink Audio Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claud.ax"
+ "CyberLink Audio Effect (HP)"    "CyberLink Audio Effect Filter"    "CyberLink Corporation"    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claudfx.ax"
+ "CyberLink Audio Noise Reduction"    "CLAuNR"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler"    "CLAuRsmpl.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster"    "CyberLink Audio Volume Booster Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter"    "CyberLink AudioCD Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter"    "Cyberlink File Dump Dispatch Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter"    "Cyberlink File Dump Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink DVD Navigator (HP)"    "CyberLink DVD Navigation Filter"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clnavx.ax"
+ "CyberLink Editing Service 3.0 (Source)"    "CES Kernel"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)"    "Cyberlink MPEG File Reader"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink Line21 Decoder Filter (HP)"    "CyberLink Line21 Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clline21.ax"
+ "CyberLink Load Image Filter"    "CLImage"    "CyberLink"    "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer"    "CLM2VWriter"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper"    "CyberLink MP3 Wrapper"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer"    "MpgMux"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder"    "CyberLink MPEG Video Encoder                               "    "CyberLink Corp.                                            "    "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper"    "CyberLink PCM Wrapper"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "Cyberlink SubTitle(HP)"    "CLSubTitle.ax"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clsubtitle.ax"
+ "CyberLink TimeStretch Filter (CES)"    "CLAuTS.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TL MPEG Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Tzan Filter (HP)"    "Cyberlink Tzan Filter"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\cltzan.ax"
+ "CyberLink Video Effect"    "CLVidFx"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator"    "CLRGL"    "Cyberlink"    "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer"    "CLVideoDeShaking"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "CyberLink Video/SP Decoder (HP)"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clvsd.ax"
+ "Dib Output"    ""    "Corel TW Corp."    "c:\program files (x86)\common files\ulead systems\filters\diboutput.ax"
+ "Dib Receive"    ""    "Corel TW Corp."    "c:\program files (x86)\common files\ulead systems\filters\dibreceive.ax"
+ "DS Video Buffer Filter"    "WiDiAgent.dll COM object."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\dsbuffer_video.ax"
+ "DV ACM V/A Source Filter"    ""    "Corel TW Corp."    "c:\program files (x86)\common files\ulead systems\filters\dvsf.ax"
+ "DV V/A Source Filter"    ""    "Corel TW Corp."    "c:\program files (x86)\common files\ulead systems\filters\dvsf.ax"
+ "DV Video Source Filter"    ""    "Corel TW Corp."    "c:\program files (x86)\common files\ulead systems\filters\dvsf.ax"
+ "MainConcept AAC Encoder"    "AAC audio encoder filter"    "MainConcept GmbH"    "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_enc_aac_ds.ax"
+ "MainConcept MPEG Multiplexer-Plus"    "MPEG Multiplexer-Plus DS Filter"    "MainConcept GmbH"    "c:\program files (x86)\common files\intel corporation\mainconcept filters\mcmpeg2mux.ax"
+ "MainConcept Network Renderer"    "Network Renderer"    "MainConcept GmbH"    "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_net_renderer_ds.ax"
+ "MMACE Deinterlace"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MS PR Source Filter"    "PlayReady DirectShow Source Filter DLL"    "Microsoft Corporation"    "c:\program files (x86)\playready\prsource.dll"
+ "MSDVD Audio Wizard (HP)"    "CyberLink Audio Wizard Filter"    "CyberLink Corp."    "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claudwizard.ax"
+ "P2G Audio Decoder"    "CyberLink Audio Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder"    "CyberLink Audio Encoder Filter"    "Cyberlink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator"    "CyberLink Video Regulator"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
+ "PlayReady DMO Wrapper"    "PlayReady DirectShow DMO Wrapper Filter DLL"    "Microsoft Corporation"    "c:\program files (x86)\playready\prdmowrapper.dll"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Record Queue"    "WME Record Queue"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmedque.dll"
+ "Ulead AMR Audio Decoder"    "MP4 AMR Audio Decoder Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uladamr.ax"
+ "Ulead Audio Dual Channel Filter"    "Ulead Audio Dual Channel Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uaudiodcfilter.ax"
+ "Ulead DV Scene Detect"    "ulDvScDt"    "Ulead system Inc."    "c:\program files (x86)\common files\ulead systems\capture\uldvscdt.ax"
+ "Ulead DV Writer"    "ulDVWriter"    "Corel"    "c:\program files (x86)\common files\ulead systems\capture\uldvrite.ax"
+ "Ulead DVD Audio Decoder 2"    "Audio Decoder"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uldvdaudio.ax"
+ "Ulead DVD Navigator"    "DVD Navigator filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\dvd\uleaddvdnavigator.ax"
+ "Ulead DVD Video decoder 2"    "DVD Video Decoder with DxVA Support"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uldvdvideo.ax"
+ "ULead File Source (Async.)"    "Ulead Async Filter"    "Ulead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\ulasync.ax"
+ "Ulead H264 Decoder"    "uldsh264"    "uleadivi"    "c:\program files (x86)\common files\ulead systems\mpeg\uldsh264.ax"
+ "Ulead IEEE Push Source Filter"    "Ulead IEEE Push Source Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\ulieeepushsource.ax"
+ "ULead Infinite Pin Tee"    "Ulead Infinite Tee Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uinftee.ax"
+ "Ulead LPCM Audio Encoder"    "LPCM Audio Encoder"    "ULead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\ulpcmpeg.ax"
+ "Ulead Mp3 Decoder"    "MP3 Decoder"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uldamp3.ax"
+ "Ulead MPEG Audio Decoder"    "Audio Decoder"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uldvdaudio.ax"
+ "Ulead MPEG Audio Encoder"    "DS MPEG Audio Encoder"    "Ulead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\uleampeg.ax"
+ "Ulead MPEG Encoder"    "MPEG Encoder and Muxer"    "ULead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\ulesmpeg.ax"
+ "Ulead MPEG Muxer"    "MPEG Muxer"    "ULead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\ulmxmpeg.ax"
+ "Ulead MPEG Splitter"    "ULead Mpeg I/II Splitter"    "ULead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\ulspmpeg.ax"
+ "Ulead MPEG Video Decoder"    "MPEG Video and Audio Decoder"    "ULead Systems"    "c:\program files (x86)\common files\ulead systems\mpeg\uldsmpeg.ax"
+ "Ulead MPEG-4 ASP Video Decoder"    "MP4 ASP Video Decoder Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\ulaspvdmp4.ax"
+ "Ulead MPEG-4 Audio Decoder"    "MP4 AAC Audio Decoder Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uladmp4.ax"
+ "Ulead MPEG-4 Encoder"    "MP4 Encoder Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\ulmp4enc.ax"
+ "Ulead MPEG-4 Splitter"    "MP4 Splitter Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\ulspmp4.ax"
+ "Ulead MPEG-4 Video Decoder"    "MP4 Video Decoder Filter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\ulvdmp4.ax"
+ "Ulead Ogg Parser"    "ulOggParserFilter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uloggparserfilter.ax"
+ "Ulead OggVorbis Decoder"    "ulOggVorbisDecoderFilter"    "Ulead Systems, Inc."    "c:\program files (x86)\common files\ulead systems\mpeg\uloggvorbisdecoderfilter.ax"
+ "Video Source"    "Windows Media Preview Object"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmprevu.dll"
+ "WD Audio Filter"    "WiDi Audio Source Filter."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\wdaudiofilter.dll"
+ "WDSource Filter"    "WiDi Video Source Filter."    "Intel Corporation"    "c:\program files (x86)\common files\intel corporation\widiagent\wdsourcefilter.dll"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMEnc Screen Capture Filter"    "WMESrcWp Module"    "Microsoft Corporation"    "c:\program files (x86)\windows media components\encoder\wmesrcwp.dll"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""
+ "ExternalProv Class"    "Biometric Credential Provider"    "DigitalPersona, Inc."    "c:\windows\system32\dpcrprov.dll"
+ "FingerProv Class"    "Biometric Credential Provider"    "DigitalPersona, Inc."    "c:\windows\system32\dpcrprov.dll"
+ "PswWrapProv Class"    "Biometric Credential Provider"    "DigitalPersona, Inc."    "c:\windows\system32\dpcrprov.dll"
+ "SCardWrapProv Class"    "Biometric Credential Provider"    "DigitalPersona, Inc."    "c:\windows\system32\dpcrprov.dll"
+ "TokenProv Class"    "Biometric Credential Provider"    "DigitalPersona, Inc."    "c:\windows\system32\dpcrprov.dll"
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters"    ""    ""    ""
+ "ProvFilter Class"    "Biometric Credential Provider"    "DigitalPersona, Inc."    "c:\windows\system32\dpcrprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify"    ""    ""    ""
+ "igfxcui"    "igfxdev Module"    "Intel Corporation"    "c:\windows\system32\igfxdev.dll"
+ "LBTWlgn"    "Logitech Bluetooth Service"    "Logitech, Inc."    "c:\program files\common files\logishrd\bluetooth\lbtwlgn.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "HP 5412 Status Monitor"    "Print Status Language Monitor"    "Hewlett-Packard Co."    "c:\windows\system32\hpinksts5412lm.dll"
+ "HP Discovery Port Monitor (HP Officejet 6500 E710n-z)"    "HP Discovery Port Monitor"    "Hewlett-Packard Co."    "c:\windows\system32\hpdiscopm5412.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages"    ""    ""    ""
+ "DPPassFilter"    "Password Filter"    "DigitalPersona, Inc."    "c:\windows\system32\dppassfilter.dll"
"C:\Users\Steve\AppData\Local\Microsoft\Windows Sidebar\Settings.ini"    ""    ""    ""
+ ""    ""    ""    "C:\Program Files\Windows Sidebar\Shared Gadgets\Kaspersky12.Gadget"


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 AM

Posted 05 March 2013 - 12:25 PM

Looks good.Current issues?



#13 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 05 March 2013 - 01:20 PM

The issue seems to be related to video streaming.  It seems that it works fine, until you go to Youtube or try to stream some other video.  At that point the computer slows way down to the point of being unusable.  The mouse is very slow to respond, as are all other programs.  Shutting down takes several minutes.  Rebooting doesn't necessarily stop the issue, although it does seem to sort of reset itself after a prolonged period shut down.  If you restart it too quickly after this issue starts, it doesn't go away, and the boot process takes an extended period of time.



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 AM

Posted 05 March 2013 - 01:22 PM

Lets start with flash player

 

Uninstall flash player ,reinstall it.If you still have crashes

 

reinstall your graphics driver.Let me know if that helps.


Edited by narenxp, 05 March 2013 - 01:22 PM.


#15 skpaul28

skpaul28
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:22 AM

Posted 06 March 2013 - 11:31 PM

Okay...so I uninstalled flash player, but it didn't uninstall from google chrome - it appears to be a different version than the IE and Firefox versions.  I also re-installed the graphics drivers.  The issue appears to be related to Firefox and flash player.  Currently, flash player is re-installed, I'm streaming youtube on IE and typing this in chrome.  Firefox was uninstalled.  There appear to be no issues at this point.  It may be that the installation of Firefox coincided with the earlier virus and the issues we were experiencing were coincidental.

 

Thank you for your help.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users