Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AVG detected a trogan horse whilst trying to update adobe flash


  • Please log in to reply
13 replies to this topic

#1 StevePotatoes

StevePotatoes

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 18 March 2013 - 08:57 PM

I'm new to this site so firstly, apologies if I've posted this in the wrong place or if I've posted something that's been posted a million times.

 

So, I tried to update flash yesterday and AVG popped up saying there was something untoward so I stopped the install, fixed the problem with AVG, checked the website and tried again and the same thing happened.  I'm sure Adobe aren't sending out virus but this all lead me to this site and it got me thinking about the general speed and the state of my computer.  Now I'm usually pretty careful with programs that I install, I regularly use CCleaner and ASC (though I don't know whether it's a good idea to use both).  I also keep my registry clean (as far as I know how to), I regularly defrag and I check the start up programs and services that are running to try and spot anything dodgy that might be going on.  My trouble is, is that I wouldn't know what is and what isn't dodgy.

 

I was looking at another topic on here where a guy was told to download and run a few programs such as farbar etc which I've done but I have absolutely no idea how to read the results and what if anything I can do.

 

Is there anyone that can take a look at the performance of my computer and just give me some general advice on what I can do to try and speed it up a little?

 

Many thanks

 

 

SP


Edited by StevePotatoes, 18 March 2013 - 08:58 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 18 March 2013 - 09:31 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 



#3 StevePotatoes

StevePotatoes
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 19 March 2013 - 09:29 AM

OK, Thanks Naren, here's the TDDSSKiller results -



02:53:27.0296 2808 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
02:53:29.0308 2808 ============================================================
02:53:29.0308 2808 Current date / time: 2013/03/19 02:53:29.0308
02:53:29.0308 2808 SystemInfo:
02:53:29.0308 2808
02:53:29.0308 2808 OS Version: 6.0.6002 ServicePack: 2.0
02:53:29.0308 2808 Product type: Workstation
02:53:29.0308 2808 ComputerName: ANDY-LAPTOP
02:53:29.0308 2808 UserName: Andy
02:53:29.0308 2808 Windows directory: C:\Windows
02:53:29.0308 2808 System windows directory: C:\Windows
02:53:29.0308 2808 Processor architecture: Intel x86
02:53:29.0308 2808 Number of processors: 2
02:53:29.0308 2808 Page size: 0x1000
02:53:29.0308 2808 Boot type: Normal boot
02:53:29.0308 2808 ============================================================
02:53:32.0616 2808 BG loaded
02:53:34.0004 2808 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
02:53:34.0004 2808 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
02:53:34.0332 2808 ============================================================
02:53:34.0332 2808 \Device\Harddisk0\DR0:
02:53:34.0347 2808 MBR partitions:
02:53:34.0347 2808 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x94BCFF8
02:53:34.0347 2808 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x97AB800, BlocksNum 0x926DE98
02:53:34.0347 2808 \Device\Harddisk1\DR1:
02:53:34.0347 2808 MBR partitions:
02:53:34.0347 2808 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705000
02:53:34.0347 2808 ============================================================
02:53:34.0378 2808 C: <-> \Device\Harddisk0\DR0\Partition1
02:53:34.0597 2808 D: <-> \Device\Harddisk0\DR0\Partition2
02:53:34.0612 2808 F: <-> \Device\Harddisk1\DR1\Partition1
02:53:34.0612 2808 ============================================================
02:53:34.0612 2808 Initialize success
02:53:34.0612 2808 ============================================================
02:55:41.0593 2620 ============================================================
02:55:41.0593 2620 Scan started
02:55:41.0593 2620 Mode: Manual; TDLFS;
02:55:41.0593 2620 ============================================================
02:55:42.0883 2620 ================ Scan system memory ========================
02:55:42.0883 2620 System memory - ok
02:55:42.0883 2620 ================ Scan services =============================
02:55:43.0278 2620 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
02:55:43.0283 2620 ACPI - ok
02:55:43.0353 2620 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
02:55:43.0363 2620 AdobeFlashPlayerUpdateSvc - ok
02:55:43.0463 2620 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
02:55:43.0478 2620 adp94xx - ok
02:55:43.0523 2620 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
02:55:43.0533 2620 adpahci - ok
02:55:43.0563 2620 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
02:55:43.0563 2620 adpu160m - ok
02:55:43.0608 2620 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
02:55:43.0613 2620 adpu320 - ok
02:55:43.0753 2620 [ 993F7B0BA5188A0007C085AA10257B8E ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
02:55:43.0783 2620 AdvancedSystemCareService6 - ok
02:55:43.0818 2620 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:55:43.0818 2620 AeLookupSvc - ok
02:55:43.0878 2620 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
02:55:43.0888 2620 AFD - ok
02:55:43.0933 2620 [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
02:55:43.0943 2620 AgereModemAudio - ok
02:55:44.0003 2620 [ CE91B158FA490CF4C4D487A4130F4660 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
02:55:44.0033 2620 AgereSoftModem - ok
02:55:44.0088 2620 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
02:55:44.0088 2620 agp440 - ok
02:55:44.0118 2620 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
02:55:44.0118 2620 aic78xx - ok
02:55:44.0273 2620 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
02:55:44.0273 2620 ALG - ok
02:55:44.0303 2620 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
02:55:44.0303 2620 aliide - ok
02:55:44.0318 2620 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
02:55:44.0328 2620 amdagp - ok
02:55:44.0358 2620 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
02:55:44.0368 2620 amdide - ok
02:55:44.0388 2620 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
02:55:44.0388 2620 AmdK7 - ok
02:55:44.0413 2620 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
02:55:44.0423 2620 AmdK8 - ok
02:55:44.0443 2620 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
02:55:44.0443 2620 Appinfo - ok
02:55:44.0523 2620 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:55:44.0523 2620 Apple Mobile Device - ok
02:55:44.0568 2620 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
02:55:44.0568 2620 arc - ok
02:55:44.0618 2620 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
02:55:44.0628 2620 arcsas - ok
02:55:44.0663 2620 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:55:44.0673 2620 AsyncMac - ok
02:55:44.0728 2620 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
02:55:44.0728 2620 atapi - ok
02:55:44.0813 2620 [ 37C63181D8A1B6C948F0866BCBDE406E ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
02:55:44.0848 2620 Ati External Event Utility - ok
02:55:45.0098 2620 [ A2B6478963451A99C28DA8133B648142 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
02:55:45.0148 2620 atikmdag - ok
02:55:45.0228 2620 [ 4AA1EB65481C392955939E735D27118B ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
02:55:45.0233 2620 AtiPcie - ok
02:55:45.0283 2620 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:55:45.0303 2620 AudioEndpointBuilder - ok
02:55:45.0318 2620 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
02:55:45.0328 2620 Audiosrv - ok
02:55:45.0669 2620 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
02:55:45.0759 2620 AVGIDSAgent - ok
02:55:45.0804 2620 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
02:55:45.0809 2620 AVGIDSDriver - ok
02:55:45.0839 2620 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
02:55:45.0839 2620 AVGIDSHX - ok
02:55:45.0889 2620 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
02:55:45.0919 2620 AVGIDSShim - ok
02:55:45.0979 2620 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
02:55:45.0984 2620 Avgldx86 - ok
02:55:46.0134 2620 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
02:55:46.0134 2620 Avglogx - ok
02:55:46.0189 2620 [ AF7AA9BA434CD28833A66E90993E8DFD ] avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
02:55:46.0189 2620 avgmfx86 - ok
02:55:46.0204 2620 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
02:55:46.0204 2620 Avgrkx86 - ok
02:55:46.0259 2620 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
02:55:46.0259 2620 Avgtdix - ok
02:55:46.0279 2620 [ 3001E24F340D400BFF85935E5777FC5B ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
02:55:46.0289 2620 avgtp - ok
02:55:46.0334 2620 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
02:55:46.0334 2620 avgwd - ok
02:55:46.0389 2620 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
02:55:46.0389 2620 Beep - ok
02:55:46.0474 2620 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
02:55:46.0474 2620 BFE - ok
02:55:46.0525 2620 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
02:55:46.0525 2620 BITS - ok
02:55:46.0562 2620 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
02:55:46.0562 2620 blbdrive - ok
02:55:46.0607 2620 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:55:46.0627 2620 Bonjour Service - ok
02:55:46.0672 2620 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:55:46.0672 2620 bowser - ok
02:55:46.0722 2620 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
02:55:46.0722 2620 BrFiltLo - ok
02:55:46.0732 2620 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
02:55:46.0732 2620 BrFiltUp - ok
02:55:46.0807 2620 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
02:55:46.0812 2620 Browser - ok
02:55:46.0857 2620 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
02:55:47.0112 2620 Brserid - ok
02:55:47.0157 2620 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
02:55:47.0167 2620 BrSerWdm - ok
02:55:47.0637 2620 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
02:55:47.0637 2620 BrUsbMdm - ok
02:55:47.0712 2620 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
02:55:47.0712 2620 BrUsbSer - ok
02:55:47.0762 2620 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
02:55:47.0772 2620 BTHMODEM - ok
02:55:47.0817 2620 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:55:47.0827 2620 cdfs - ok
02:55:47.0887 2620 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
02:55:47.0887 2620 cdrom - ok
02:55:47.0952 2620 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
02:55:47.0952 2620 CertPropSvc - ok
02:55:48.0012 2620 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
02:55:48.0012 2620 circlass - ok
02:55:48.0097 2620 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
02:55:48.0097 2620 CLFS - ok
02:55:48.0292 2620 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:55:48.0302 2620 clr_optimization_v2.0.50727_32 - ok
02:55:48.0377 2620 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:55:48.0387 2620 clr_optimization_v4.0.30319_32 - ok
02:55:48.0452 2620 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:55:48.0452 2620 CmBatt - ok
02:55:48.0502 2620 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:55:48.0502 2620 cmdide - ok
02:55:48.0559 2620 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:55:48.0575 2620 Compbatt - ok
02:55:48.0580 2620 COMSysApp - ok
02:55:48.0647 2620 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
02:55:48.0647 2620 crcdisk - ok
02:55:48.0699 2620 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
02:55:48.0715 2620 Crusoe - ok
02:55:48.0787 2620 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:55:48.0787 2620 CryptSvc - ok
02:55:48.0886 2620 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:55:48.0906 2620 DcomLaunch - ok
02:55:48.0989 2620 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:55:48.0989 2620 DfsC - ok
02:55:49.0118 2620 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
02:55:49.0134 2620 Dhcp - ok
02:55:49.0160 2620 [ 411670143F7B98520E0708F2FA263B9D ] DigiNet C:\Windows\system32\DRIVERS\diginet.sys
02:55:49.0160 2620 DigiNet - ok
02:55:49.0390 2620 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
02:55:49.0390 2620 disk - ok
02:55:49.0430 2620 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:55:49.0440 2620 Dnscache - ok
02:55:49.0505 2620 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
02:55:49.0515 2620 dot3svc - ok
02:55:49.0545 2620 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
02:55:49.0555 2620 DPS - ok
02:55:49.0605 2620 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:55:49.0615 2620 drmkaud - ok
02:55:49.0690 2620 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:55:49.0710 2620 DXGKrnl - ok
02:55:49.0745 2620 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
02:55:49.0755 2620 E1G60 - ok
02:55:49.0795 2620 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
02:55:49.0805 2620 EapHost - ok
02:55:49.0900 2620 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
02:55:49.0910 2620 Ecache - ok
02:55:50.0085 2620 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
02:55:50.0105 2620 ehRecvr - ok
02:55:50.0145 2620 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
02:55:50.0150 2620 ehSched - ok
02:55:50.0190 2620 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
02:55:50.0190 2620 ehstart - ok
02:55:50.0265 2620 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
02:55:50.0285 2620 elxstor - ok
02:55:50.0405 2620 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
02:55:50.0425 2620 EMDMgmt - ok
02:55:50.0505 2620 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
02:55:50.0515 2620 ErrDev - ok
02:55:50.0578 2620 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
02:55:50.0588 2620 EventSystem - ok
02:55:50.0643 2620 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
02:55:50.0658 2620 exfat - ok
02:55:50.0728 2620 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:55:50.0728 2620 fastfat - ok
02:55:50.0773 2620 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:55:50.0773 2620 fdc - ok
02:55:50.0838 2620 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
02:55:50.0838 2620 fdPHost - ok
02:55:50.0888 2620 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
02:55:50.0888 2620 FDResPub - ok
02:55:50.0948 2620 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:55:50.0948 2620 FileInfo - ok
02:55:50.0978 2620 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:55:50.0978 2620 Filetrace - ok
02:55:51.0053 2620 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:55:51.0053 2620 flpydisk - ok
02:55:51.0188 2620 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:55:51.0198 2620 FltMgr - ok
02:55:51.0323 2620 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
02:55:51.0353 2620 FontCache - ok
02:55:51.0465 2620 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
02:55:51.0481 2620 FontCache3.0.0.0 - ok
02:55:51.0512 2620 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:55:51.0522 2620 Fs_Rec - ok
02:55:51.0632 2620 [ CBC22823628544735625B280665E434E ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
02:55:51.0632 2620 FwLnk - ok
02:55:51.0692 2620 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
02:55:51.0702 2620 gagp30kx - ok
02:55:51.0772 2620 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:55:51.0772 2620 GEARAspiWDM - ok
02:55:51.0877 2620 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
02:55:51.0897 2620 gpsvc - ok
02:55:52.0107 2620 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:55:52.0117 2620 HdAudAddService - ok
02:55:52.0212 2620 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
02:55:52.0222 2620 HDAudBus - ok
02:55:52.0312 2620 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
02:55:52.0312 2620 HidBth - ok
02:55:52.0357 2620 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
02:55:52.0357 2620 HidIr - ok
02:55:52.0392 2620 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
02:55:52.0397 2620 hidserv - ok
02:55:52.0442 2620 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:55:52.0442 2620 HidUsb - ok
02:55:52.0502 2620 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:55:52.0512 2620 hkmsvc - ok
02:55:52.0542 2620 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
02:55:52.0543 2620 HpCISSs - ok
02:55:52.0624 2620 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
02:55:52.0634 2620 HSFHWAZL - ok
02:55:52.0894 2620 [ EC36F1D542ED4252390D446BF6D4DFD0 ] HSF_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
02:55:52.0949 2620 HSF_DPV - ok
02:55:53.0019 2620 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:55:53.0029 2620 HTTP - ok
02:55:53.0084 2620 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
02:55:53.0084 2620 i2omp - ok
02:55:53.0114 2620 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
02:55:53.0124 2620 i8042prt - ok
02:55:53.0159 2620 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
02:55:53.0179 2620 iaStorV - ok
02:55:53.0274 2620 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
02:55:53.0314 2620 idsvc - ok
02:55:53.0349 2620 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
02:55:53.0349 2620 iirsp - ok
02:55:53.0399 2620 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
02:55:53.0409 2620 IKEEXT - ok
02:55:53.0519 2620 [ B9CBD3DEA7CA02868621173BF7A2AF9F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
02:55:53.0609 2620 IntcAzAudAddService - ok
02:55:53.0644 2620 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
02:55:53.0644 2620 intelide - ok
02:55:53.0689 2620 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:55:53.0689 2620 intelppm - ok
02:55:53.0734 2620 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:55:53.0744 2620 IPBusEnum - ok
02:55:53.0774 2620 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:55:53.0774 2620 IpFilterDriver - ok
02:55:53.0819 2620 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:55:53.0839 2620 iphlpsvc - ok
02:55:53.0859 2620 IpInIp - ok
02:55:53.0899 2620 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
02:55:53.0919 2620 IPMIDRV - ok
02:55:53.0939 2620 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
02:55:53.0949 2620 IPNAT - ok
02:55:54.0024 2620 [ E46B17060D3962A384AE484094614788 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:55:54.0054 2620 iPod Service - ok
02:55:54.0079 2620 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:55:54.0079 2620 IRENUM - ok
02:55:54.0109 2620 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:55:54.0119 2620 isapnp - ok
02:55:54.0174 2620 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
02:55:54.0184 2620 iScsiPrt - ok
02:55:54.0394 2620 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
02:55:54.0394 2620 iteatapi - ok
02:55:54.0434 2620 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
02:55:54.0444 2620 iteraid - ok
02:55:54.0464 2620 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:55:54.0464 2620 kbdclass - ok
02:55:54.0489 2620 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
02:55:54.0499 2620 kbdhid - ok
02:55:54.0564 2620 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
02:55:54.0569 2620 KeyIso - ok
02:55:54.0634 2620 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:55:54.0649 2620 KSecDD - ok
02:55:54.0689 2620 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
02:55:54.0694 2620 KtmRm - ok
02:55:54.0739 2620 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
02:55:54.0759 2620 LanmanServer - ok
02:55:54.0799 2620 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:55:54.0809 2620 LanmanWorkstation - ok
02:55:54.0849 2620 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:55:54.0849 2620 lltdio - ok
02:55:54.0894 2620 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:55:54.0899 2620 lltdsvc - ok
02:55:54.0929 2620 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:55:54.0929 2620 lmhosts - ok
02:55:54.0974 2620 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
02:55:54.0979 2620 LSI_FC - ok
02:55:55.0014 2620 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
02:55:55.0014 2620 LSI_SAS - ok
02:55:55.0034 2620 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
02:55:55.0044 2620 LSI_SCSI - ok
02:55:55.0134 2620 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
02:55:55.0134 2620 luafv - ok
02:55:55.0149 2620 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
02:55:55.0154 2620 Mcx2Svc - ok
02:55:55.0184 2620 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
02:55:55.0194 2620 megasas - ok
02:55:55.0229 2620 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
02:55:55.0234 2620 MegaSR - ok
02:55:55.0284 2620 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
02:55:55.0294 2620 MMCSS - ok
02:55:55.0314 2620 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
02:55:55.0314 2620 Modem - ok
02:55:55.0329 2620 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:55:55.0329 2620 monitor - ok
02:55:55.0349 2620 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:55:55.0349 2620 mouclass - ok
02:55:55.0374 2620 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\drivers\mouhid.sys
02:55:55.0374 2620 mouhid - ok
02:55:55.0404 2620 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
02:55:55.0404 2620 MountMgr - ok
02:55:55.0454 2620 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
02:55:55.0454 2620 mpio - ok
02:55:55.0479 2620 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:55:55.0479 2620 mpsdrv - ok
02:55:55.0539 2620 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
02:55:55.0539 2620 MpsSvc - ok
02:55:55.0564 2620 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
02:55:55.0569 2620 Mraid35x - ok
02:55:55.0630 2620 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:55:55.0645 2620 MRxDAV - ok
02:55:55.0686 2620 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:55:55.0686 2620 mrxsmb - ok
02:55:55.0731 2620 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:55:55.0736 2620 mrxsmb10 - ok
02:55:55.0776 2620 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:55:55.0776 2620 mrxsmb20 - ok
02:55:55.0811 2620 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
02:55:55.0811 2620 msahci - ok
02:55:55.0856 2620 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:55:55.0866 2620 msdsm - ok
02:55:55.0916 2620 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
02:55:55.0926 2620 MSDTC - ok
02:55:55.0966 2620 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:55:55.0966 2620 Msfs - ok
02:55:56.0006 2620 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:55:56.0006 2620 msisadrv - ok
02:55:56.0061 2620 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:55:56.0076 2620 MSiSCSI - ok
02:55:56.0086 2620 msiserver - ok
02:55:56.0116 2620 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:55:56.0126 2620 MSKSSRV - ok
02:55:56.0136 2620 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:55:56.0136 2620 MSPCLOCK - ok
02:55:56.0171 2620 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:55:56.0171 2620 MSPQM - ok
02:55:56.0221 2620 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:55:56.0221 2620 MsRPC - ok
02:55:56.0261 2620 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
02:55:56.0261 2620 mssmbios - ok
02:55:56.0281 2620 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:55:56.0281 2620 MSTEE - ok
02:55:56.0316 2620 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
02:55:56.0316 2620 Mup - ok
02:55:56.0376 2620 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
02:55:56.0376 2620 napagent - ok
02:55:56.0401 2620 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:55:56.0411 2620 NativeWifiP - ok
02:55:56.0461 2620 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
02:55:56.0471 2620 NDIS - ok
02:55:56.0511 2620 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:55:56.0521 2620 NdisTapi - ok
02:55:56.0531 2620 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:55:56.0531 2620 Ndisuio - ok
02:55:56.0566 2620 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:55:56.0576 2620 NdisWan - ok
02:55:56.0586 2620 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:55:56.0596 2620 NDProxy - ok
02:55:56.0606 2620 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:55:56.0606 2620 NetBIOS - ok
02:55:56.0646 2620 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
02:55:56.0646 2620 netbt - ok
02:55:56.0681 2620 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
02:55:56.0691 2620 Netlogon - ok
02:55:56.0726 2620 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
02:55:56.0726 2620 Netman - ok
02:55:56.0776 2620 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
02:55:56.0786 2620 netprofm - ok
02:55:56.0886 2620 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:55:56.0896 2620 NetTcpPortSharing - ok
02:55:56.0951 2620 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
02:55:56.0951 2620 nfrd960 - ok
02:55:56.0991 2620 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
02:55:57.0001 2620 NlaSvc - ok
02:55:57.0041 2620 [ 33A4B24A4C4DCF3C168E2C1151A62FC5 ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
02:55:57.0086 2620 nmwcd - ok
02:55:57.0126 2620 [ A77265EF7BF998B8BB22A1A23E72B45D ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
02:55:57.0126 2620 nmwcdc - ok
02:55:57.0171 2620 [ 62A8B306AACFC53D6FB08D8D36EAF61F ] nmwcdnsu C:\Windows\system32\drivers\nmwcdnsu.sys
02:55:57.0181 2620 nmwcdnsu - ok
02:55:57.0216 2620 [ C0AD13045C82CC9569595223C7568B7F ] nmwcdnsuc C:\Windows\system32\drivers\nmwcdnsuc.sys
02:55:57.0216 2620 nmwcdnsuc - ok
02:55:57.0261 2620 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:55:57.0261 2620 Npfs - ok
02:55:57.0306 2620 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
02:55:57.0326 2620 nsi - ok
02:55:57.0376 2620 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:55:57.0376 2620 nsiproxy - ok
02:55:57.0561 2620 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:55:57.0566 2620 Ntfs - ok
02:55:57.0636 2620 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
02:55:57.0646 2620 ntrigdigi - ok
02:55:57.0661 2620 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
02:55:57.0671 2620 Null - ok
02:55:57.0701 2620 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:55:57.0711 2620 nvraid - ok
02:55:57.0726 2620 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:55:57.0731 2620 nvstor - ok
02:55:57.0778 2620 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:55:57.0778 2620 nv_agp - ok
02:55:57.0793 2620 NwlnkFlt - ok
02:55:57.0793 2620 NwlnkFwd - ok
02:55:57.0809 2620 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
02:55:57.0825 2620 ohci1394 - ok
02:55:57.0895 2620 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
02:55:57.0910 2620 p2pimsvc - ok
02:55:57.0930 2620 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
02:55:57.0930 2620 p2psvc - ok
02:55:57.0960 2620 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
02:55:57.0970 2620 Parport - ok
02:55:58.0005 2620 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:55:58.0015 2620 partmgr - ok
02:55:58.0035 2620 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
02:55:58.0035 2620 Parvdm - ok
02:55:58.0060 2620 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
02:55:58.0060 2620 PcaSvc - ok
02:55:58.0110 2620 [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
02:55:58.0135 2620 pccsmcfd - ok
02:55:58.0150 2620 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
02:55:58.0150 2620 pci - ok
02:55:58.0210 2620 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
02:55:58.0210 2620 pciide - ok
02:55:58.0270 2620 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
02:55:58.0280 2620 pcmcia - ok
02:55:58.0340 2620 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:55:58.0360 2620 PEAUTH - ok
02:55:58.0595 2620 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
02:55:58.0625 2620 pla - ok
02:55:58.0680 2620 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:55:58.0690 2620 PlugPlay - ok
02:55:58.0845 2620 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
02:55:58.0865 2620 PNRPAutoReg - ok
02:55:58.0930 2620 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
02:55:58.0950 2620 PNRPsvc - ok
02:55:59.0025 2620 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:55:59.0035 2620 PolicyAgent - ok
02:55:59.0095 2620 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:55:59.0095 2620 PptpMiniport - ok
02:55:59.0155 2620 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\DRIVERS\processr.sys
02:55:59.0165 2620 Processor - ok
02:55:59.0225 2620 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
02:55:59.0230 2620 ProfSvc - ok
02:55:59.0430 2620 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:55:59.0440 2620 ProtectedStorage - ok
02:55:59.0540 2620 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
02:55:59.0550 2620 PSched - ok
02:55:59.0785 2620 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
02:55:59.0860 2620 ql2300 - ok
02:55:59.0890 2620 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
02:55:59.0895 2620 ql40xx - ok
02:55:59.0988 2620 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
02:56:00.0009 2620 QWAVE - ok
02:56:00.0040 2620 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:56:00.0040 2620 QWAVEdrv - ok
02:56:00.0107 2620 [ 70DBDAB246C18B78E2200D6401D038BE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
02:56:00.0107 2620 RapiMgr - ok
02:56:00.0154 2620 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:56:00.0159 2620 RasAcd - ok
02:56:00.0195 2620 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
02:56:00.0211 2620 RasAuto - ok
02:56:00.0216 2620 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:56:00.0216 2620 Rasl2tp - ok
02:56:00.0283 2620 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
02:56:00.0283 2620 RasMan - ok
02:56:00.0335 2620 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:56:00.0335 2620 RasPppoe - ok
02:56:00.0403 2620 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:56:00.0408 2620 RasSstp - ok
02:56:00.0474 2620 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:56:00.0479 2620 rdbss - ok
02:56:00.0653 2620 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:56:00.0663 2620 RDPCDD - ok
02:56:00.0778 2620 [ 3A3A4C256B91276210D3A2FAF019313D ] RDPDISPM C:\Windows\system32\DRIVERS\rdpdispm.sys
02:56:00.0798 2620 RDPDISPM - ok
02:56:00.0833 2620 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
02:56:00.0843 2620 rdpdr - ok
02:56:00.0883 2620 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:56:00.0883 2620 RDPENCDD - ok
02:56:00.0948 2620 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:56:00.0968 2620 RDPWD - ok
02:56:01.0023 2620 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:56:01.0023 2620 RemoteAccess - ok
02:56:01.0068 2620 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:56:01.0088 2620 RemoteRegistry - ok
02:56:01.0118 2620 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
02:56:01.0128 2620 RpcLocator - ok
02:56:01.0178 2620 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
02:56:01.0198 2620 RpcSs - ok
02:56:01.0273 2620 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:56:01.0273 2620 rspndr - ok
02:56:01.0388 2620 [ C853AE16CCF5033C0CBA0855390F5C7F ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIV.sys
02:56:01.0438 2620 RTHDMIAzAudService - ok
02:56:01.0483 2620 [ 2D19A7469EA19993D0C12E627F4530BC ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
02:56:01.0523 2620 RTL8169 - ok
02:56:01.0683 2620 [ 661AF6A63DFF9F23B1DC3FB7B3E7A917 ] RTL8187B C:\Windows\system32\DRIVERS\RTL8187B.sys
02:56:01.0693 2620 RTL8187B - ok
02:56:01.0753 2620 [ 0D60B8C10A2C5E8DD620B3FDEB1CDA64 ] RtlProt C:\Windows\system32\DRIVERS\rtlprot.sys
02:56:01.0763 2620 RtlProt - ok
02:56:01.0773 2620 RTSTOR - ok
02:56:01.0813 2620 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
02:56:01.0813 2620 SamSs - ok
02:56:01.0858 2620 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:56:01.0868 2620 sbp2port - ok
02:56:01.0908 2620 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:56:01.0918 2620 SCardSvr - ok
02:56:01.0993 2620 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
02:56:02.0023 2620 Schedule - ok
02:56:02.0053 2620 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:56:02.0053 2620 SCPolicySvc - ok
02:56:02.0128 2620 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:56:02.0128 2620 SDRSVC - ok
02:56:02.0218 2620 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:56:02.0218 2620 secdrv - ok
02:56:02.0273 2620 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
02:56:02.0283 2620 seclogon - ok
02:56:02.0328 2620 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
02:56:02.0338 2620 SENS - ok
02:56:02.0388 2620 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
02:56:02.0393 2620 Serenum - ok
02:56:02.0428 2620 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
02:56:02.0438 2620 Serial - ok
02:56:02.0458 2620 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
02:56:02.0468 2620 sermouse - ok
02:56:02.0741 2620 [ 289E853881E688286AD24299FCC485D8 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
02:56:02.0791 2620 ServiceLayer - ok
02:56:02.0876 2620 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
02:56:02.0886 2620 SessionEnv - ok
02:56:02.0911 2620 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
02:56:02.0921 2620 sffdisk - ok
02:56:02.0961 2620 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:56:02.0961 2620 sffp_mmc - ok
02:56:03.0001 2620 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
02:56:03.0001 2620 sffp_sd - ok
02:56:03.0066 2620 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
02:56:03.0066 2620 sfloppy - ok
02:56:03.0151 2620 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:56:03.0171 2620 SharedAccess - ok
02:56:03.0231 2620 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:56:03.0251 2620 ShellHWDetection - ok
02:56:03.0311 2620 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
02:56:03.0311 2620 sisagp - ok
02:56:03.0346 2620 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
02:56:03.0356 2620 SiSRaid2 - ok
02:56:03.0386 2620 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
02:56:03.0396 2620 SiSRaid4 - ok
02:56:03.0451 2620 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
02:56:03.0451 2620 SkypeUpdate - ok
02:56:03.0596 2620 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
02:56:03.0646 2620 slsvc - ok
02:56:03.0691 2620 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
02:56:03.0701 2620 SLUINotify - ok
02:56:03.0751 2620 [ 46B40982AF166BF89C3F51FB13E60D6D ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
02:56:03.0751 2620 SmartDefragDriver - ok
02:56:03.0801 2620 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:56:03.0801 2620 Smb - ok
02:56:03.0877 2620 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:56:03.0877 2620 SNMPTRAP - ok
02:56:03.0923 2620 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
02:56:03.0933 2620 spldr - ok
02:56:03.0978 2620 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
02:56:04.0003 2620 Spooler - ok
02:56:04.0043 2620 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:56:04.0053 2620 srv - ok
02:56:04.0098 2620 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:56:04.0108 2620 srv2 - ok
02:56:04.0143 2620 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:56:04.0148 2620 srvnet - ok
02:56:04.0218 2620 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:56:04.0228 2620 SSDPSRV - ok
02:56:04.0253 2620 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:56:04.0263 2620 SstpSvc - ok
02:56:04.0338 2620 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
02:56:04.0348 2620 stisvc - ok
02:56:04.0428 2620 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
02:56:04.0428 2620 swenum - ok
02:56:04.0483 2620 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
02:56:04.0503 2620 swprv - ok
02:56:04.0538 2620 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
02:56:04.0548 2620 Symc8xx - ok
02:56:04.0568 2620 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
02:56:04.0573 2620 Sym_hi - ok
02:56:04.0603 2620 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
02:56:04.0603 2620 Sym_u3 - ok
02:56:04.0643 2620 [ 70534D1E4F9AC990536D5FB5B550B3DE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
02:56:04.0648 2620 SynTP - ok
02:56:04.0703 2620 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
02:56:04.0713 2620 SysMain - ok
02:56:04.0768 2620 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:56:04.0788 2620 TabletInputService - ok
02:56:04.0838 2620 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
02:56:04.0858 2620 TapiSrv - ok
02:56:04.0918 2620 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
02:56:04.0928 2620 TBS - ok
02:56:04.0993 2620 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:56:05.0003 2620 Tcpip - ok
02:56:05.0033 2620 [ 74E2D020C47BB2B2FCCBA29A518A7EB4 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
02:56:05.0043 2620 Tcpip6 - ok
02:56:05.0138 2620 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:56:05.0138 2620 tcpipreg - ok
02:56:05.0233 2620 [ 1825BCEB47BF41C5A9F0E44DE82FC27A ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
02:56:05.0243 2620 tdcmdpst - ok
02:56:05.0293 2620 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:56:05.0293 2620 TDPIPE - ok
02:56:05.0318 2620 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:56:05.0318 2620 TDTCP - ok
02:56:05.0378 2620 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:56:05.0378 2620 tdx - ok
02:56:05.0408 2620 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
02:56:05.0418 2620 TermDD - ok
02:56:05.0483 2620 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
02:56:05.0503 2620 TermService - ok
02:56:05.0528 2620 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
02:56:05.0538 2620 Themes - ok
02:56:05.0563 2620 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
02:56:05.0563 2620 THREADORDER - ok
02:56:05.0598 2620 [ C5AC715B65B01788ABC22D10749DDDD8 ] TODDSrv C:\Windows\system32\TODDSrv.exe
02:56:05.0611 2620 TODDSrv - ok
02:56:05.0701 2620 [ 1EA5F27C29405BF49799FECA77186DA9 ] tos_sps32 C:\Windows\system32\DRIVERS\tos_sps32.sys
02:56:05.0701 2620 tos_sps32 - ok
02:56:05.0771 2620 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
02:56:05.0781 2620 TrkWks - ok
02:56:05.0896 2620 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:56:05.0896 2620 TrustedInstaller - ok
02:56:05.0941 2620 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:56:05.0951 2620 tssecsrv - ok
02:56:06.0028 2620 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
02:56:06.0033 2620 tunmp - ok
02:56:06.0080 2620 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:56:06.0080 2620 tunnel - ok
02:56:06.0115 2620 [ 792A8B80F8188ABA4B2BE271583F3E46 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
02:56:06.0115 2620 TVALZ - ok
02:56:06.0150 2620 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
02:56:06.0150 2620 uagp35 - ok
02:56:06.0205 2620 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:56:06.0215 2620 udfs - ok
02:56:06.0295 2620 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:56:06.0305 2620 UI0Detect - ok
02:56:06.0325 2620 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:56:06.0335 2620 uliagpkx - ok
02:56:06.0375 2620 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
02:56:06.0385 2620 uliahci - ok
02:56:06.0410 2620 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
02:56:06.0420 2620 UlSata - ok
02:56:06.0450 2620 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
02:56:06.0460 2620 ulsata2 - ok
02:56:06.0515 2620 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:56:06.0515 2620 umbus - ok
02:56:06.0640 2620 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
02:56:06.0645 2620 upnphost - ok
02:56:06.0685 2620 [ B671514497DF7417F83919A6A5BD6BB9 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
02:56:06.0695 2620 upperdev - ok
02:56:06.0710 2620 USBAAPL - ok
02:56:06.0750 2620 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
02:56:06.0750 2620 usbaudio - ok
02:56:06.0790 2620 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:56:06.0790 2620 usbccgp - ok
02:56:06.0805 2620 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:56:06.0810 2620 usbcir - ok
02:56:06.0850 2620 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:56:06.0850 2620 usbehci - ok
02:56:06.0870 2620 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:56:06.0875 2620 usbhub - ok
02:56:06.0915 2620 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
02:56:06.0925 2620 usbohci - ok
02:56:06.0955 2620 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
02:56:06.0960 2620 usbprint - ok
02:56:06.0995 2620 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
02:56:07.0000 2620 usbscan - ok
02:56:07.0080 2620 [ D575246188F63DE0ACCF6EAC5FB59E6A ] usbser C:\Windows\system32\drivers\usbser.sys
02:56:07.0080 2620 usbser - ok
02:56:07.0115 2620 [ FF358FD3176B2E5605C4ACCD5026A5AC ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
02:56:07.0115 2620 UsbserFilt - ok
02:56:07.0145 2620 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:56:07.0145 2620 USBSTOR - ok
02:56:07.0200 2620 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
02:56:07.0200 2620 usbuhci - ok
02:56:07.0250 2620 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
02:56:07.0255 2620 usbvideo - ok
02:56:07.0295 2620 [ 237C444FBD1C697A2E3FA60F02C61F22 ] UVCFTR C:\Windows\system32\Drivers\UVCFTR_S.SYS
02:56:07.0300 2620 UVCFTR - ok
02:56:07.0345 2620 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
02:56:07.0355 2620 UxSms - ok
02:56:07.0555 2620 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
02:56:07.0570 2620 vds - ok
02:56:07.0640 2620 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:56:07.0640 2620 vga - ok
02:56:07.0690 2620 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
02:56:07.0690 2620 VgaSave - ok
02:56:07.0720 2620 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
02:56:07.0730 2620 viaagp - ok
02:56:07.0775 2620 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
02:56:07.0785 2620 ViaC7 - ok
02:56:07.0810 2620 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
02:56:07.0815 2620 viaide - ok
02:56:07.0865 2620 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:56:07.0865 2620 volmgr - ok
02:56:08.0005 2620 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:56:08.0005 2620 volmgrx - ok
02:56:08.0060 2620 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:56:08.0060 2620 volsnap - ok
02:56:08.0120 2620 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
02:56:08.0130 2620 vsmraid - ok
02:56:08.0295 2620 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
02:56:08.0315 2620 VSS - ok
02:56:08.0555 2620 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
02:56:08.0605 2620 vToolbarUpdater12.2.6 - ok
02:56:08.0685 2620 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
02:56:08.0711 2620 W32Time - ok
02:56:08.0787 2620 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
02:56:08.0787 2620 WacomPen - ok
02:56:08.0812 2620 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
02:56:08.0817 2620 Wanarp - ok
02:56:08.0837 2620 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:56:08.0837 2620 Wanarpv6 - ok
02:56:08.0922 2620 [ 779F9C90D3FE9C70B6FFD8EF035F3E83 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
02:56:09.0012 2620 WcesComm - ok
02:56:09.0117 2620 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:56:09.0127 2620 wcncsvc - ok
02:56:09.0252 2620 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:56:09.0252 2620 WcsPlugInService - ok
02:56:09.0327 2620 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
02:56:09.0337 2620 Wd - ok
02:56:09.0532 2620 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:56:09.0537 2620 Wdf01000 - ok
02:56:09.0617 2620 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:56:09.0622 2620 WdiServiceHost - ok
02:56:09.0637 2620 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:56:09.0647 2620 WdiSystemHost - ok
02:56:09.0762 2620 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
02:56:09.0782 2620 WebClient - ok
02:56:09.0892 2620 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:56:09.0902 2620 Wecsvc - ok
02:56:09.0952 2620 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:56:09.0962 2620 wercplsupport - ok
02:56:10.0027 2620 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
02:56:10.0027 2620 WerSvc - ok
02:56:10.0172 2620 [ 5C7BDCF5864DB00323FE2D90FA26A8A2 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
02:56:10.0192 2620 winachsf - ok
02:56:10.0312 2620 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
02:56:10.0317 2620 WinDefend - ok
02:56:10.0347 2620 WinHttpAutoProxySvc - ok
02:56:10.0477 2620 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:56:10.0477 2620 Winmgmt - ok
02:56:10.0804 2620 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
02:56:10.0869 2620 WinRM - ok
02:56:11.0134 2620 [ 676F4B665BDD8053EAA53AC1695B8074 ] winusb C:\Windows\system32\DRIVERS\winusb.sys
02:56:11.0134 2620 winusb - ok
02:56:11.0209 2620 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:56:11.0229 2620 Wlansvc - ok
02:56:11.0419 2620 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
02:56:11.0469 2620 wlidsvc - ok
02:56:11.0504 2620 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
02:56:11.0504 2620 WmiAcpi - ok
02:56:11.0609 2620 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:56:11.0609 2620 wmiApSrv - ok
02:56:11.0714 2620 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
02:56:11.0729 2620 WMPNetworkSvc - ok
02:56:11.0799 2620 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:56:11.0809 2620 WPCSvc - ok
02:56:11.0849 2620 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:56:11.0849 2620 WPDBusEnum - ok
02:56:11.0894 2620 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
02:56:11.0899 2620 WpdUsb - ok
02:56:12.0069 2620 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
02:56:12.0074 2620 WPFFontCache_v0400 - ok
02:56:12.0079 2620 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:56:12.0094 2620 ws2ifsl - ok
02:56:12.0130 2620 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
02:56:12.0146 2620 wscsvc - ok
02:56:12.0151 2620 WSearch - ok
02:56:12.0249 2620 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
02:56:12.0285 2620 wuauserv - ok
02:56:12.0337 2620 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:56:12.0353 2620 WudfPf - ok
02:56:12.0368 2620 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:56:12.0404 2620 WUDFRd - ok
02:56:12.0451 2620 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:56:12.0467 2620 wudfsvc - ok
02:56:12.0482 2620 ================ Scan global ===============================
02:56:12.0529 2620 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
02:56:12.0576 2620 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:56:12.0586 2620 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:56:12.0696 2620 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
02:56:12.0716 2620 [Global] - ok
02:56:12.0716 2620 ================ Scan MBR ==================================
02:56:12.0741 2620 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
02:56:13.0826 2620 \Device\Harddisk0\DR0 - ok
02:56:13.0856 2620 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
02:56:14.0041 2620 \Device\Harddisk1\DR1 - ok
02:56:14.0051 2620 ================ Scan VBR ==================================
02:56:14.0066 2620 [ D7CBA7F40730A7FDEE3F5C6E791810AE ] \Device\Harddisk0\DR0\Partition1
02:56:14.0066 2620 \Device\Harddisk0\DR0\Partition1 - ok
02:56:14.0091 2620 [ 42E71ADEC54E7EB15C24057FAC45B13E ] \Device\Harddisk0\DR0\Partition2
02:56:14.0101 2620 \Device\Harddisk0\DR0\Partition2 - ok
02:56:14.0101 2620 [ EE04ABFA7200323E001C23C9775BBF83 ] \Device\Harddisk1\DR1\Partition1
02:56:14.0111 2620 \Device\Harddisk1\DR1\Partition1 - ok
02:56:14.0111 2620 ================ Scan active images ========================
02:56:14.0111 2620 [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys
02:56:14.0111 2620 C:\Windows\System32\drivers\crashdmp.sys - ok
02:56:14.0116 2620 [ C67EBF9C05531C406E1E079FF669A2E6 ] C:\Windows\System32\drivers\Dumpata.sys
02:56:14.0116 2620 C:\Windows\System32\drivers\Dumpata.sys - ok
02:56:14.0136 2620 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] C:\Windows\System32\drivers\msahci.sys
02:56:14.0136 2620 C:\Windows\System32\drivers\msahci.sys - ok
02:56:14.0146 2620 [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys
02:56:14.0146 2620 C:\Windows\System32\drivers\tunnel.sys - ok
02:56:14.0151 2620 [ CBC22823628544735625B280665E434E ] C:\Windows\System32\drivers\FwLnk.sys
02:56:14.0151 2620 C:\Windows\System32\drivers\FwLnk.sys - ok
02:56:14.0156 2620 [ 2027293619DD0F047C584CF2E7DF4FFD ] C:\Windows\System32\drivers\processr.sys
02:56:14.0156 2620 C:\Windows\System32\drivers\processr.sys - ok
02:56:14.0176 2620 [ CAECC0120AC49E3D2F758B9169872D38 ] C:\Windows\System32\drivers\TUNMP.SYS
02:56:14.0176 2620 C:\Windows\System32\drivers\TUNMP.SYS - ok
02:56:14.0186 2620 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] C:\Windows\System32\drivers\CmBatt.sys
02:56:14.0186 2620 C:\Windows\System32\drivers\CmBatt.sys - ok
02:56:14.0196 2620 [ A2B6478963451A99C28DA8133B648142 ] C:\Windows\System32\drivers\atikmdag.sys
02:56:14.0196 2620 C:\Windows\System32\drivers\atikmdag.sys - ok
02:56:14.0201 2620 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] C:\Windows\System32\drivers\dxgkrnl.sys
02:56:14.0201 2620 C:\Windows\System32\drivers\dxgkrnl.sys - ok
02:56:14.0211 2620 [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys
02:56:14.0211 2620 C:\Windows\System32\drivers\watchdog.sys - ok
02:56:14.0221 2620 [ 2D19A7469EA19993D0C12E627F4530BC ] C:\Windows\System32\drivers\Rtlh86.sys
02:56:14.0221 2620 C:\Windows\System32\drivers\Rtlh86.sys - ok
02:56:14.0226 2620 [ 1825BCEB47BF41C5A9F0E44DE82FC27A ] C:\Windows\System32\drivers\tdcmdpst.sys
02:56:14.0226 2620 C:\Windows\System32\drivers\tdcmdpst.sys - ok
02:56:14.0236 2620 [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys
02:56:14.0236 2620 C:\Windows\System32\drivers\cdrom.sys - ok
02:56:14.0256 2620 [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys
02:56:14.0256 2620 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
02:56:14.0266 2620 [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys
02:56:14.0266 2620 C:\Windows\System32\drivers\usbport.sys - ok
02:56:14.0266 2620 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys
02:56:14.0266 2620 C:\Windows\System32\drivers\usbehci.sys - ok
02:56:14.0276 2620 [ CE697FEE0D479290D89BEC80DFE793B7 ] C:\Windows\System32\drivers\usbohci.sys
02:56:14.0276 2620 C:\Windows\System32\drivers\usbohci.sys - ok
02:56:14.0276 2620 [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys
02:56:14.0276 2620 C:\Windows\System32\drivers\hdaudbus.sys - ok
02:56:14.0281 2620 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] C:\Windows\System32\drivers\i8042prt.sys
02:56:14.0281 2620 C:\Windows\System32\drivers\i8042prt.sys - ok
02:56:14.0301 2620 [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys
02:56:14.0301 2620 C:\Windows\System32\drivers\kbdclass.sys - ok
02:56:14.0311 2620 [ 70534D1E4F9AC990536D5FB5B550B3DE ] C:\Windows\System32\drivers\SynTP.sys
02:56:14.0311 2620 C:\Windows\System32\drivers\SynTP.sys - ok
02:56:14.0316 2620 [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys
02:56:14.0316 2620 C:\Windows\System32\drivers\usbd.sys - ok
02:56:14.0321 2620 [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys
02:56:14.0321 2620 C:\Windows\System32\drivers\mouclass.sys - ok
02:56:14.0341 2620 [ 47E55AFE1ED1D5AFF09690DB226F4A7A ] C:\Windows\System32\drivers\Storport.sys
02:56:14.0341 2620 C:\Windows\System32\drivers\Storport.sys - ok
02:56:14.0341 2620 [ 77937EFF009AC696B90E09F671F9D0A4 ] C:\Windows\System32\drivers\tdi.sys
02:56:14.0341 2620 C:\Windows\System32\drivers\tdi.sys - ok
02:56:14.0351 2620 [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys
02:56:14.0351 2620 C:\Windows\System32\drivers\msiscsi.sys - ok
02:56:14.0361 2620 [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys
02:56:14.0361 2620 C:\Windows\System32\drivers\rasl2tp.sys - ok
02:56:14.0361 2620 [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys
02:56:14.0361 2620 C:\Windows\System32\drivers\ndistapi.sys - ok
02:56:14.0371 2620 [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys
02:56:14.0371 2620 C:\Windows\System32\drivers\ndiswan.sys - ok
02:56:14.0371 2620 [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys
02:56:14.0371 2620 C:\Windows\System32\drivers\raspppoe.sys - ok
02:56:14.0381 2620 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys
02:56:14.0381 2620 C:\Windows\System32\drivers\raspptp.sys - ok
02:56:14.0391 2620 [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys
02:56:14.0391 2620 C:\Windows\System32\drivers\rassstp.sys - ok
02:56:14.0391 2620 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys
02:56:14.0391 2620 C:\Windows\System32\drivers\termdd.sys - ok
02:56:14.0401 2620 [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys
02:56:14.0401 2620 C:\Windows\System32\drivers\ks.sys - ok
02:56:14.0401 2620 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys
02:56:14.0401 2620 C:\Windows\System32\drivers\swenum.sys - ok
02:56:14.0416 2620 [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys
02:56:14.0416 2620 C:\Windows\System32\drivers\mssmbios.sys - ok
02:56:14.0426 2620 [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys
02:56:14.0426 2620 C:\Windows\System32\drivers\umbus.sys - ok
02:56:14.0436 2620 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys
02:56:14.0436 2620 C:\Windows\System32\drivers\usbhub.sys - ok
02:56:14.0436 2620 [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys
02:56:14.0436 2620 C:\Windows\System32\drivers\ndproxy.sys - ok
02:56:14.0446 2620 [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys
02:56:14.0446 2620 C:\Windows\System32\drivers\drmk.sys - ok
02:56:14.0446 2620 [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys
02:56:14.0446 2620 C:\Windows\System32\drivers\portcls.sys - ok
02:56:14.0456 2620 [ B9CBD3DEA7CA02868621173BF7A2AF9F ] C:\Windows\System32\drivers\RTKVHDA.sys
02:56:14.0456 2620 C:\Windows\System32\drivers\RTKVHDA.sys - ok
02:56:14.0466 2620 [ CE91B158FA490CF4C4D487A4130F4660 ] C:\Windows\System32\drivers\AGRSM.sys
02:56:14.0466 2620 C:\Windows\System32\drivers\AGRSM.sys - ok
02:56:14.0466 2620 [ E13B5EA0F51BA5B1512EC671393D09BA ] C:\Windows\System32\drivers\modem.sys
02:56:14.0466 2620 C:\Windows\System32\drivers\modem.sys - ok
02:56:14.0476 2620 [ B972A66758577E0BFD1DE0F91AAA27B5 ] C:\Windows\System32\drivers\fs_rec.sys
02:56:14.0476 2620 C:\Windows\System32\drivers\fs_rec.sys - ok
02:56:14.0481 2620 [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys
02:56:14.0481 2620 C:\Windows\System32\drivers\null.sys - ok
02:56:14.0481 2620 [ 3001E24F340D400BFF85935E5777FC5B ] C:\Windows\System32\drivers\avgtpx86.sys
02:56:14.0481 2620 C:\Windows\System32\drivers\avgtpx86.sys - ok
02:56:14.0496 2620 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys
02:56:14.0496 2620 C:\Windows\System32\drivers\beep.sys - ok
02:56:14.0506 2620 [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys
02:56:14.0506 2620 C:\Windows\System32\drivers\vga.sys - ok
02:56:14.0516 2620 [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys
02:56:14.0516 2620 C:\Windows\System32\drivers\videoprt.sys - ok
02:56:14.0516 2620 [ BE3DA31C191BC222D9AD503C5224F2AD ] C:\Windows\System32\drivers\USBSTOR.SYS
02:56:14.0516 2620 C:\Windows\System32\drivers\USBSTOR.SYS - ok
02:56:14.0526 2620 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys
02:56:14.0526 2620 C:\Windows\System32\drivers\RDPCDD.sys - ok
02:56:14.0526 2620 [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys
02:56:14.0526 2620 C:\Windows\System32\drivers\RDPENCDD.sys - ok
02:56:14.0536 2620 [ 661AF6A63DFF9F23B1DC3FB7B3E7A917 ] C:\Windows\System32\drivers\RTL8187B.sys
02:56:14.0536 2620 C:\Windows\System32\drivers\RTL8187B.sys - ok
02:56:14.0536 2620 [ CAF811AE4C147FFCD5B51750C7F09142 ] C:\Windows\System32\drivers\usbccgp.sys
02:56:14.0536 2620 C:\Windows\System32\drivers\usbccgp.sys - ok
02:56:14.0546 2620 [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys
02:56:14.0546 2620 C:\Windows\System32\drivers\msfs.sys - ok
02:56:14.0556 2620 [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys
02:56:14.0556 2620 C:\Windows\System32\drivers\npfs.sys - ok
02:56:14.0556 2620 [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys
02:56:14.0556 2620 C:\Windows\System32\drivers\rasacd.sys - ok
02:56:14.0566 2620 [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys
02:56:14.0566 2620 C:\Windows\System32\drivers\tdx.sys - ok
02:56:14.0566 2620 [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys
02:56:14.0566 2620 C:\Windows\System32\drivers\smb.sys - ok
02:56:14.0571 2620 [ 237C444FBD1C697A2E3FA60F02C61F22 ] C:\Windows\System32\drivers\UVCFTR_S.SYS
02:56:14.0571 2620 C:\Windows\System32\drivers\UVCFTR_S.SYS - ok
02:56:14.0576 2620 [ BA73B38E9033FC6018DB736B635706AE ] C:\Windows\System32\drivers\avgtdix.sys
02:56:14.0576 2620 C:\Windows\System32\drivers\avgtdix.sys - ok
02:56:14.0586 2620 [ E67998E8F14CB0627A769F6530BCB352 ] C:\Windows\System32\drivers\usbvideo.sys
02:56:14.0586 2620 C:\Windows\System32\drivers\usbvideo.sys - ok
02:56:14.0596 2620 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys
02:56:14.0596 2620 C:\Windows\System32\drivers\netbt.sys - ok
02:56:14.0606 2620 [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys
02:56:14.0606 2620 C:\Windows\System32\drivers\afd.sys - ok
02:56:14.0606 2620 [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys
02:56:14.0606 2620 C:\Windows\System32\drivers\pacer.sys - ok
02:56:14.0616 2620 [ 0D60B8C10A2C5E8DD620B3FDEB1CDA64 ] C:\Windows\System32\drivers\RtlProt.sys
02:56:14.0616 2620 C:\Windows\System32\drivers\RtlProt.sys - ok
02:56:14.0616 2620 [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys
02:56:14.0616 2620 C:\Windows\System32\drivers\netbios.sys - ok
02:56:14.0626 2620 [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys
02:56:14.0626 2620 C:\Windows\System32\drivers\wanarp.sys - ok
02:56:14.0636 2620 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys
02:56:14.0636 2620 C:\Windows\System32\drivers\rdbss.sys - ok
02:56:14.0636 2620 [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys
02:56:14.0636 2620 C:\Windows\System32\drivers\nsiproxy.sys - ok
02:56:14.0646 2620 [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys
02:56:14.0646 2620 C:\Windows\System32\drivers\dfsc.sys - ok
02:56:14.0651 2620 [ D53D35031365A0ECCB1DC1BC1B15B18E ] C:\Windows\System32\drivers\avgldx86.sys
02:56:14.0651 2620 C:\Windows\System32\drivers\avgldx86.sys - ok
02:56:14.0651 2620 [ A8DE230CC8536790CA07D37FBCD87A74 ] C:\Windows\System32\drivers\avgidsshimx.sys
02:56:14.0651 2620 C:\Windows\System32\drivers\avgidsshimx.sys - ok
02:56:14.0656 2620 [ 7BB2C605094DBCA536D127B434214862 ] C:\Windows\System32\drivers\avgidsdriverx.sys
02:56:14.0656 2620 C:\Windows\System32\drivers\avgidsdriverx.sys - ok
02:56:14.0661 2620 [ DDA770BBD7C2ED024D6F50E279D90E5B ] C:\Windows\System32\ntdll.dll
02:56:14.0666 2620 C:\Windows\System32\ntdll.dll - ok
02:56:14.0676 2620 [ 98AF15A94CD6AC37248E72E5FE789B35 ] C:\Windows\System32\smss.exe
02:56:14.0676 2620 C:\Windows\System32\smss.exe - ok
02:56:14.0686 2620 [ 544D486301588C8199187C9AB5778B4B ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
02:56:14.0686 2620 C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
02:56:14.0686 2620 [ 484987420BC8DED2CB26C6F4EC9BA7F2 ] C:\Program Files\AVG\AVG2013\avgsysx.dll
02:56:14.0686 2620 C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
02:56:14.0696 2620 [ 42836D10270B1940F9A2FF77AE679537 ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
02:56:14.0696 2620 C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
02:56:14.0706 2620 [ 1C2E1FC9F8ED794CC191E92F27D1391C ] C:\Program Files\AVG\AVG2013\avglogx.dll
02:56:14.0706 2620 C:\Program Files\AVG\AVG2013\avglogx.dll - ok
02:56:14.0706 2620 [ 7ADD03E75BEB9E6DD102C3081D29840A ] C:\Windows\System32\drivers\cdfs.sys
02:56:14.0706 2620 C:\Windows\System32\drivers\cdfs.sys - ok
02:56:14.0716 2620 [ 0E297F71CBFAA611F830407D1054DC70 ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
02:56:14.0716 2620 C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
02:56:14.0716 2620 [ 76FFA2433FEB42E78FB5421A50C8FBE3 ] C:\PROGRA~1\AVG\AVG2013\avgclitx.dll
02:56:14.0716 2620 C:\PROGRA~1\AVG\AVG2013\avgclitx.dll - ok
02:56:14.0726 2620 [ CCF775179F42797A3EE8BA5678543621 ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
02:56:14.0726 2620 C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
02:56:14.0731 2620 [ 99997FA9056ACB38AA388BDA134CEF6E ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
02:56:14.0731 2620 C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
02:56:14.0731 2620 [ 43D8779059D848BB26D725D4E6C3350C ] C:\Program Files\AVG\AVG2013\avgcorex.dll
02:56:14.0731 2620 C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
02:56:14.0741 2620 [ 95EFDCB44DD093EDAD447F1D21C8A3F7 ] C:\Program Files\AVG\AVG2013\avgcertx.dll
02:56:14.0741 2620 C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
02:56:14.0751 2620 [ 6F19639188F792BBB234B2A3FCB0C8C9 ] C:\Program Files\AVG\AVG2013\avgchclx.dll
02:56:14.0751 2620 C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
02:56:14.0761 2620 [ A6251155B7017D4B4A77A3531A8DA6D8 ] C:\Program Files\AVG\AVG2013\avgcommx.dll
02:56:14.0761 2620 C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
02:56:14.0761 2620 [ F820B93E4ABCCABD698A175FD5FC83FE ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
02:56:14.0761 2620 C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
02:56:14.0771 2620 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll
02:56:14.0771 2620 C:\Windows\System32\Wldap32.dll - ok
02:56:14.0771 2620 [ 8E2EBCD935EA8D60E4CBCE07F20824E4 ] C:\Windows\System32\wininet.dll
02:56:14.0771 2620 C:\Windows\System32\wininet.dll - ok
02:56:14.0781 2620 [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll
02:56:14.0781 2620 C:\Windows\System32\lpk.dll - ok
02:56:14.0781 2620 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll
02:56:14.0781 2620 C:\Windows\System32\usp10.dll - ok
02:56:14.0791 2620 [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\System32\oleaut32.dll
02:56:14.0791 2620 C:\Windows\System32\oleaut32.dll - ok
02:56:14.0791 2620 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll
02:56:14.0791 2620 C:\Windows\System32\ole32.dll - ok
02:56:14.0801 2620 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll
02:56:14.0801 2620 C:\Windows\System32\advapi32.dll - ok
02:56:14.0811 2620 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll
02:56:14.0811 2620 C:\Windows\System32\ws2_32.dll - ok
02:56:14.0811 2620 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll
02:56:14.0811 2620 C:\Windows\System32\msctf.dll - ok
02:56:14.0816 2620 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll
02:56:14.0816 2620 C:\Windows\System32\clbcatq.dll - ok
02:56:14.0816 2620 [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll
02:56:14.0816 2620 C:\Windows\System32\gdi32.dll - ok
02:56:14.0836 2620 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll
02:56:14.0836 2620 C:\Windows\System32\normaliz.dll - ok
02:56:14.0836 2620 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll
02:56:14.0836 2620 C:\Windows\System32\nsi.dll - ok
02:56:14.0846 2620 [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll
02:56:14.0846 2620 C:\Windows\System32\rpcrt4.dll - ok
02:56:14.0846 2620 [ 420B075CD71AB9E58D15DD258958FBA3 ] C:\Windows\System32\shlwapi.dll
02:56:14.0846 2620 C:\Windows\System32\shlwapi.dll - ok
02:56:14.0856 2620 [ DC3105CC925A0D47F61B54E66AB730FC ] C:\Windows\System32\kernel32.dll
02:56:14.0856 2620 C:\Windows\System32\kernel32.dll - ok
02:56:14.0856 2620 [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\System32\imagehlp.dll
02:56:14.0856 2620 C:\Windows\System32\imagehlp.dll - ok
02:56:14.0866 2620 [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\System32\msvcrt.dll
02:56:14.0866 2620 C:\Windows\System32\msvcrt.dll - ok
02:56:14.0866 2620 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll
02:56:14.0866 2620 C:\Windows\System32\setupapi.dll - ok
02:56:14.0876 2620 [ A22EF74A3DE86B32E1BD7AD3F93F4B93 ] C:\Windows\System32\iertutil.dll
02:56:14.0876 2620 C:\Windows\System32\iertutil.dll - ok
02:56:14.0876 2620 [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\System32\shell32.dll
02:56:14.0876 2620 C:\Windows\System32\shell32.dll - ok
02:56:14.0886 2620 [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll
02:56:14.0886 2620 C:\Windows\System32\user32.dll - ok
02:56:14.0896 2620 [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll
02:56:14.0896 2620 C:\Windows\System32\imm32.dll - ok
02:56:14.0896 2620 [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll
02:56:14.0896 2620 C:\Windows\System32\comctl32.dll - ok
02:56:14.0901 2620 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll
02:56:14.0901 2620 C:\Windows\System32\comdlg32.dll - ok
02:56:14.0901 2620 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll
02:56:14.0901 2620 C:\Windows\System32\psapi.dll - ok
02:56:14.0921 2620 [ BA22D7F28C0F2CDF91634B239B7A0FF6 ] C:\Windows\System32\urlmon.dll
02:56:14.0921 2620 C:\Windows\System32\urlmon.dll - ok
02:56:14.0921 2620 [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys
02:56:14.0921 2620 C:\Windows\System32\drivers\dxapi.sys - ok
02:56:14.0931 2620 [ 1C1F3014453865E805A8708751743A48 ] C:\Windows\System32\win32k.sys
02:56:14.0931 2620 C:\Windows\System32\win32k.sys - ok
02:56:14.0941 2620 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll
02:56:14.0971 2620 C:\Windows\System32\basesrv.dll - ok
02:56:14.0971 2620 [ 187076DD5D8D4D5D23079D0741195EAD ] C:\Windows\System32\csrsrv.dll
02:56:14.0971 2620 C:\Windows\System32\csrsrv.dll - ok
02:56:14.0981 2620 [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe
02:56:14.0981 2620 C:\Windows\System32\csrss.exe - ok
02:56:14.0986 2620 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\System32\winsrv.dll
02:56:14.0986 2620 C:\Windows\System32\winsrv.dll - ok
02:56:14.0986 2620 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys
02:56:14.0986 2620 C:\Windows\System32\drivers\monitor.sys - ok
02:56:14.0996 2620 [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll
02:56:14.0996 2620 C:\Windows\System32\tsddd.dll - ok
02:56:15.0006 2620 [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe
02:56:15.0006 2620 C:\Windows\System32\wininit.exe - ok
02:56:15.0006 2620 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll
02:56:15.0006 2620 C:\Windows\System32\userenv.dll - ok
02:56:15.0016 2620 [ D602FEDBD9155FC2DED6863FB60C950F ] C:\Windows\System32\secur32.dll
02:56:15.0016 2620 C:\Windows\System32\secur32.dll - ok
02:56:15.0026 2620 [ C2383A7FA2608D384ACAE1CDDE19A9F2 ] C:\Windows\System32\KBDUK.DLL
02:56:15.0026 2620 C:\Windows\System32\KBDUK.DLL - ok
02:56:15.0026 2620 [ CF9F5BBC2740C41DD471278C41B91F5F ] C:\Windows\System32\cdd.dll
02:56:15.0026 2620 C:\Windows\System32\cdd.dll - ok
02:56:15.0036 2620 [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll
02:56:15.0036 2620 C:\Windows\System32\WlS0WndH.dll - ok
02:56:15.0046 2620 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll
02:56:15.0046 2620 C:\Windows\System32\apphelp.dll - ok
02:56:15.0046 2620 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\services.exe
02:56:15.0046 2620 C:\Windows\System32\services.exe - ok
02:56:15.0056 2620 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll
02:56:15.0056 2620 C:\Windows\System32\sxs.dll - ok
02:56:15.0056 2620 [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe
02:56:15.0056 2620 C:\Windows\System32\winlogon.exe - ok
02:56:15.0066 2620 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll
02:56:15.0066 2620 C:\Windows\System32\winsta.dll - ok
02:56:15.0066 2620 [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll
02:56:15.0066 2620 C:\Windows\System32\authz.dll - ok
02:56:15.0071 2620 [ A3E186B4B935905B829219502557314E ] C:\Windows\System32\lsass.exe
02:56:15.0071 2620 C:\Windows\System32\lsass.exe - ok
02:56:15.0081 2620 [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll
02:56:15.0081 2620 C:\Windows\System32\scesrv.dll - ok
02:56:15.0091 2620 [ 178FAC2B7C66E9A4400CE7AC37623E3F ] C:\Windows\System32\lsasrv.dll
02:56:15.0091 2620 C:\Windows\System32\lsasrv.dll - ok
02:56:15.0091 2620 [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe
02:56:15.0091 2620 C:\Windows\System32\lsm.exe - ok
02:56:15.0101 2620 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll
02:56:15.0101 2620 C:\Windows\System32\cryptdll.dll - ok
02:56:15.0111 2620 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll
02:56:15.0111 2620 C:\Windows\System32\dnsapi.dll - ok
02:56:15.0111 2620 [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\System32\netapi32.dll
02:56:15.0111 2620 C:\Windows\System32\netapi32.dll - ok
02:56:15.0121 2620 [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll
02:56:15.0121 2620 C:\Windows\System32\samsrv.dll - ok
02:56:15.0131 2620 [ B0F9073BE86C6D4EDD4EBA674251E699 ] C:\Windows\System32\crypt32.dll
02:56:15.0131 2620 C:\Windows\System32\crypt32.dll - ok
02:56:15.0131 2620 [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll
02:56:15.0131 2620 C:\Windows\System32\feclient.dll - ok
02:56:15.0141 2620 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll
02:56:15.0141 2620 C:\Windows\System32\mpr.dll - ok
02:56:15.0141 2620 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll
02:56:15.0141 2620 C:\Windows\System32\msasn1.dll - ok
02:56:15.0151 2620 [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll
02:56:15.0151 2620 C:\Windows\System32\ncobjapi.dll - ok
02:56:15.0151 2620 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll
02:56:15.0151 2620 C:\Windows\System32\ntdsapi.dll - ok
02:56:15.0156 2620 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll
02:56:15.0156 2620 C:\Windows\System32\samlib.dll - ok
02:56:15.0166 2620 [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll
02:56:15.0166 2620 C:\Windows\System32\sysntfy.dll - ok
02:56:15.0176 2620 [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll
02:56:15.0176 2620 C:\Windows\System32\wmsgapi.dll - ok
02:56:15.0176 2620 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll
02:56:15.0176 2620 C:\Windows\System32\dhcpcsvc.dll - ok
02:56:15.0186 2620 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL
02:56:15.0186 2620 C:\Windows\System32\IPHLPAPI.DLL - ok
02:56:15.0186 2620 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll
02:56:15.0186 2620 C:\Windows\System32\SLC.dll - ok
02:56:15.0196 2620 [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll
02:56:15.0196 2620 C:\Windows\System32\wevtapi.dll - ok
02:56:15.0206 2620 [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe
02:56:15.0206 2620 C:\Windows\System32\alg.exe - ok
02:56:15.0216 2620 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll
02:56:15.0216 2620 C:\Windows\System32\appinfo.dll - ok
02:56:15.0216 2620 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll
02:56:15.0216 2620 C:\Windows\System32\dhcpcsvc6.dll - ok
02:56:15.0226 2620 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll
02:56:15.0226 2620 C:\Windows\System32\winnsi.dll - ok
02:56:15.0226 2620 [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll
02:56:15.0226 2620 C:\Windows\System32\audiosrv.dll - ok
02:56:15.0231 2620 [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll
02:56:15.0231 2620 C:\Windows\System32\rascfg.dll - ok
02:56:15.0236 2620 [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll
02:56:15.0236 2620 C:\Windows\System32\bcrypt.dll - ok
02:56:15.0246 2620 [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL
02:56:15.0246 2620 C:\Windows\System32\BFE.DLL - ok
02:56:15.0256 2620 [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll
02:56:15.0256 2620 C:\Windows\System32\cngaudit.dll - ok
02:56:15.0256 2620 [ 13CC59C1B04E9F20A87987C68CD4BE3F ] C:\Windows\System32\ncrypt.dll
02:56:15.0256 2620 C:\Windows\System32\ncrypt.dll - ok
02:56:15.0266 2620 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll
02:56:15.0266 2620 C:\Windows\System32\browser.dll - ok
02:56:15.0276 2620 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll
02:56:15.0276 2620 C:\Windows\System32\credssp.dll - ok
02:56:15.0276 2620 [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll
02:56:15.0276 2620 C:\Windows\System32\qmgr.dll - ok
02:56:15.0286 2620 [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll
02:56:15.0286 2620 C:\Windows\System32\certprop.dll - ok
02:56:15.0286 2620 [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll
02:56:15.0296 2620 C:\Windows\System32\comres.dll - ok
02:56:15.0296 2620 [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll
02:56:15.0296 2620 C:\Windows\System32\kerberos.dll - ok
02:56:15.0296 2620 [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll
02:56:15.0296 2620 C:\Windows\System32\msprivs.dll - ok
02:56:15.0306 2620 [ F1E8C34892336D33EDDCDFE44E474F64 ] C:\Windows\System32\cryptsvc.dll
02:56:15.0306 2620 C:\Windows\System32\cryptsvc.dll - ok
02:56:15.0306 2620 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL
02:56:15.0316 2620 C:\Windows\System32\WSHTCPIP.DLL - ok
02:56:15.0316 2620 [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll
02:56:15.0316 2620 C:\Windows\System32\oleres.dll - ok
02:56:15.0321 2620 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll
02:56:15.0321 2620 C:\Windows\System32\dot3svc.dll - ok
02:56:15.0321 2620 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll
02:56:15.0321 2620 C:\Windows\System32\wship6.dll - ok
02:56:15.0341 2620 [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll
02:56:15.0341 2620 C:\Windows\System32\eapsvc.dll - ok
02:56:15.0341 2620 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll
02:56:15.0341 2620 C:\Windows\System32\wshqos.dll - ok
02:56:15.0351 2620 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll
02:56:15.0351 2620 C:\Windows\System32\nlasvc.dll - ok
02:56:15.0351 2620 [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll
02:56:15.0351 2620 C:\Windows\System32\wevtsvc.dll - ok
02:56:15.0361 2620 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll
02:56:15.0361 2620 C:\Windows\System32\NapiNSP.dll - ok
02:56:15.0371 2620 [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll
02:56:15.0371 2620 C:\Windows\System32\FntCache.dll - ok
02:56:15.0371 2620 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll
02:56:15.0371 2620 C:\Windows\System32\mswsock.dll - ok
02:56:15.0381 2620 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll
02:56:15.0381 2620 C:\Windows\System32\pnrpnsp.dll - ok
02:56:15.0391 2620 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll
02:56:15.0391 2620 C:\Windows\System32\gpapi.dll - ok
02:56:15.0391 2620 [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL
02:56:15.0391 2620 C:\Windows\System32\IKEEXT.DLL - ok
02:56:15.0401 2620 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll
02:56:15.0401 2620 C:\Windows\System32\msv1_0.dll - ok
02:56:15.0406 2620 [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll
02:56:15.0406 2620 C:\Windows\System32\netlogon.dll - ok
02:56:15.0406 2620 [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll
02:56:15.0406 2620 C:\Windows\System32\winbrand.dll - ok
02:56:15.0416 2620 [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\System32\schannel.dll
02:56:15.0416 2620 C:\Windows\System32\schannel.dll - ok
02:56:15.0426 2620 [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll
02:56:15.0426 2620 C:\Windows\System32\wdigest.dll - ok
02:56:15.0436 2620 [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll
02:56:15.0436 2620 C:\Windows\System32\keyiso.dll - ok
02:56:15.0436 2620 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll
02:56:15.0436 2620 C:\Windows\System32\rsaenh.dll - ok
02:56:15.0446 2620 [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll
02:56:15.0446 2620 C:\Windows\System32\srvsvc.dll - ok
02:56:15.0446 2620 [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll
02:56:15.0446 2620 C:\Windows\System32\wkssvc.dll - ok
02:56:15.0456 2620 [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll
02:56:15.0456 2620 C:\Windows\System32\lmhsvc.dll - ok
02:56:15.0466 2620 [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll
02:56:15.0466 2620 C:\Windows\System32\TSpkg.dll - ok
02:56:15.0466 2620 [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll
02:56:15.0466 2620 C:\Windows\ehome\ehres.dll - ok
02:56:15.0476 2620 [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll
02:56:15.0476 2620 C:\Windows\System32\FirewallAPI.dll - ok
02:56:15.0481 2620 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll
02:56:15.0481 2620 C:\Windows\System32\mmcss.dll - ok
02:56:15.0481 2620 [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll
02:56:15.0481 2620 C:\Windows\System32\msimsg.dll - ok
02:56:15.0496 2620 [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll
02:56:15.0496 2620 C:\Windows\System32\netprof.dll - ok
02:56:15.0506 2620 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll
02:56:15.0506 2620 C:\Windows\System32\nsisvc.dll - ok
02:56:15.0506 2620 [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll
02:56:15.0506 2620 C:\Windows\System32\pcasvc.dll - ok
02:56:15.0516 2620 [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll
02:56:15.0516 2620 C:\Windows\System32\pla.dll - ok
02:56:15.0516 2620 [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll
02:56:15.0516 2620 C:\Windows\System32\polstore.dll - ok
02:56:15.0526 2620 [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll
02:56:15.0526 2620 C:\Windows\System32\umpnpmgr.dll - ok
02:56:15.0526 2620 [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys
02:56:15.0526 2620 C:\Windows\System32\drivers\qwavedrv.sys - ok
02:56:15.0536 2620 [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll
02:56:15.0536 2620 C:\Windows\System32\profsvc.dll - ok
02:56:15.0546 2620 [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll
02:56:15.0546 2620 C:\Windows\System32\psbase.dll - ok
02:56:15.0546 2620 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll
02:56:15.0546 2620 C:\Windows\System32\rasauto.dll - ok
02:56:15.0546 2620 [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll
02:56:15.0546 2620 C:\Windows\System32\rasmans.dll - ok
02:56:15.0556 2620 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll
02:56:15.0556 2620 C:\Windows\System32\mprdim.dll - ok
02:56:15.0566 2620 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll
02:56:15.0566 2620 C:\Windows\System32\sstpsvc.dll - ok
02:56:15.0566 2620 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll
02:56:15.0566 2620 C:\Windows\System32\SCardSvr.dll - ok
02:56:15.0571 2620 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll
02:56:15.0571 2620 C:\Windows\System32\schedsvc.dll - ok
02:56:15.0581 2620 [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll
02:56:15.0581 2620 C:\Windows\System32\sdrsvc.dll - ok
02:56:15.0601 2620 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll
02:56:15.0601 2620 C:\Windows\System32\seclogon.dll - ok
02:56:15.0611 2620 [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll
02:56:15.0611 2620 C:\Windows\System32\Sens.dll - ok
02:56:15.0611 2620 [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll
02:56:15.0611 2620 C:\Windows\System32\SessEnv.dll - ok
02:56:15.0621 2620 [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll
02:56:15.0621 2620 C:\Windows\System32\shsvcs.dll - ok
02:56:15.0631 2620 [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe
02:56:15.0631 2620 C:\Windows\System32\SLsvc.exe - ok
02:56:15.0631 2620 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll
02:56:15.0631 2620 C:\Windows\System32\SLUINotify.dll - ok
02:56:15.0641 2620 [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll
02:56:15.0641 2620 C:\Windows\System32\tcpipcfg.dll - ok
02:56:15.0651 2620 [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe
02:56:15.0651 2620 C:\Windows\System32\snmptrap.exe - ok
02:56:15.0656 2620 [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll
02:56:15.0656 2620 C:\Windows\System32\ssdpsrv.dll - ok
02:56:15.0671 2620 [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll
02:56:15.0671 2620 C:\Windows\System32\swprv.dll - ok
02:56:15.0681 2620 [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll
02:56:15.0681 2620 C:\Windows\System32\sysmain.dll - ok
02:56:15.0681 2620 [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll
02:56:15.0681 2620 C:\Windows\System32\tapisrv.dll - ok
02:56:15.0691 2620 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe
02:56:15.0691 2620 C:\Windows\servicing\TrustedInstaller.exe - ok
02:56:15.0691 2620 [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll
02:56:15.0691 2620 C:\Windows\System32\termsrv.dll - ok
02:56:15.0701 2620 [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe
02:56:15.0701 2620 C:\Windows\System32\dwm.exe - ok
02:56:15.0711 2620 [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe
02:56:15.0711 2620 C:\Windows\System32\UI0Detect.exe - ok
02:56:15.0711 2620 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe
02:56:15.0711 2620 C:\Windows\System32\VSSVC.exe - ok
02:56:15.0721 2620 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] C:\Windows\System32\drivers\Wdf01000.sys
02:56:15.0721 2620 C:\Windows\System32\drivers\Wdf01000.sys - ok
02:56:15.0721 2620 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll
02:56:15.0721 2620 C:\Windows\System32\w32time.dll - ok
02:56:15.0731 2620 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll
02:56:15.0731 2620 C:\Windows\System32\WcsPlugInService.dll - ok
02:56:15.0736 2620 [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll
02:56:15.0736 2620 C:\Windows\System32\wecsvc.dll - ok
02:56:15.0736 2620 [ 62DB790A860CDFC4278D2F03CC5675D8 ] C:\Program Files\Windows Defender\MsMpRes.dll
02:56:15.0736 2620 C:\Program Files\Windows Defender\MsMpRes.dll - ok
02:56:15.0741 2620 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll
02:56:15.0741 2620 C:\Windows\System32\wbem\WMIsvc.dll - ok
02:56:15.0751 2620 [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\System32\winhttp.dll
02:56:15.0751 2620 C:\Windows\System32\winhttp.dll - ok
02:56:15.0761 2620 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
02:56:15.0761 2620 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok
02:56:15.0771 2620 [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe
02:56:15.0771 2620 C:\Windows\System32\wbem\WmiApSrv.exe - ok
02:56:15.0771 2620 [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll
02:56:15.0771 2620 C:\Windows\System32\wscsvc.dll - ok
02:56:15.0781 2620 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
02:56:15.0781 2620 C:\Windows\System32\wuaueng.dll - ok
02:56:15.0781 2620 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] C:\Windows\System32\drivers\WUDFPf.sys
02:56:15.0781 2620 C:\Windows\System32\drivers\WUDFPf.sys - ok
02:56:15.0791 2620 [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll
02:56:15.0791 2620 C:\Windows\System32\scecli.dll - ok
02:56:15.0801 2620 [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe
02:56:15.0801 2620 C:\Windows\System32\svchost.exe - ok
02:56:15.0811 2620 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll
02:56:15.0811 2620 C:\Windows\System32\ntmarta.dll - ok
02:56:15.0811 2620 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll
02:56:15.0811 2620 C:\Windows\System32\powrprof.dll - ok
02:56:15.0816 2620 [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys
02:56:15.0816 2620 C:\Windows\System32\drivers\luafv.sys - ok
02:56:15.0821 2620 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll
02:56:15.0821 2620 C:\Windows\System32\rpcss.dll - ok
02:56:15.0831 2620 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll
02:56:15.0831 2620 C:\Windows\System32\version.dll - ok
02:56:15.0841 2620 [ 4575AA12561C5648483403541D0D7F2B ] C:\Program Files\Windows Defender\MpSvc.dll
02:56:15.0841 2620 C:\Program Files\Windows Defender\MpSvc.dll - ok
02:56:15.0851 2620 [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe
02:56:15.0851 2620 C:\Windows\System32\LogonUI.exe - ok
02:56:15.0851 2620 [ 1BD363738B672A394EBE3B8A78EAB9D3 ] C:\Program Files\Windows Defender\MpClient.dll
02:56:15.0851 2620 C:\Program Files\Windows Defender\MpClient.dll - ok
02:56:15.0861 2620 [ B2E569EF26DAC9D6994A2AFF4F601B7A ] C:\Windows\System32\wintrust.dll
02:56:15.0861 2620 C:\Windows\System32\wintrust.dll - ok
02:56:15.0861 2620 [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll
02:56:15.0861 2620 C:\Windows\System32\authui.dll - ok
02:56:15.0871 2620 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
02:56:15.0871 2620 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
02:56:15.0881 2620 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll
02:56:15.0881 2620 C:\Windows\System32\msimg32.dll - ok
02:56:15.0891 2620 [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll
02:56:15.0891 2620 C:\Windows\System32\uxtheme.dll - ok
02:56:15.0891 2620 [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll
02:56:15.0891 2620 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok
02:56:15.0901 2620 [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll
02:56:15.0901 2620 C:\Windows\System32\duser.dll - ok
02:56:15.0901 2620 [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\System32\xmllite.dll
02:56:15.0901 2620 C:\Windows\System32\xmllite.dll - ok
02:56:15.0906 2620 [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll
02:56:15.0906 2620 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
02:56:15.0916 2620 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll
02:56:15.0916 2620 C:\Windows\System32\rasapi32.dll - ok
02:56:15.0926 2620 [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll
02:56:15.0926 2620 C:\Windows\System32\rasplap.dll - ok
02:56:15.0926 2620 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll
02:56:15.0926 2620 C:\Windows\System32\rasman.dll - ok
02:56:15.0936 2620 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll
02:56:15.0936 2620 C:\Windows\System32\rtutils.dll - ok
02:56:15.0946 2620 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll
02:56:15.0946 2620 C:\Windows\System32\tapi32.dll - ok
02:56:15.0946 2620 [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\System32\winmm.dll
02:56:15.0946 2620 C:\Windows\System32\winmm.dll - ok
02:56:15.0956 2620 [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\System32\oleacc.dll
02:56:15.0956 2620 C:\Windows\System32\oleacc.dll - ok
02:56:15.0966 2620 [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll
02:56:15.0966 2620 C:\Windows\System32\WinSCard.dll - ok
02:56:15.0966 2620 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll
02:56:15.0966 2620 C:\Windows\System32\wtsapi32.dll - ok
02:56:15.0976 2620 [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll
02:56:15.0976 2620 C:\Windows\System32\shgina.dll - ok
02:56:15.0981 2620 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll
02:56:15.0981 2620 C:\Windows\System32\propsys.dll - ok
02:56:15.0986 2620 [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll
02:56:15.0986 2620 C:\Windows\System32\shacct.dll - ok
02:56:15.0996 2620 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll
02:56:15.0996 2620 C:\Windows\System32\avrt.dll - ok
02:56:16.0006 2620 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll
02:56:16.0006 2620 C:\Windows\System32\MMDevAPI.dll - ok
02:56:16.0016 2620 [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll
02:56:16.0016 2620 C:\Windows\System32\wlansvc.dll - ok
02:56:16.0016 2620 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll
02:56:16.0016 2620 C:\Windows\System32\cabinet.dll - ok
02:56:16.0026 2620 [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe
02:56:16.0026 2620 C:\Windows\System32\audiodg.exe - ok
02:56:16.0036 2620 [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll
02:56:16.0036 2620 C:\Windows\System32\adtschema.dll - ok
02:56:16.0046 2620 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll
02:56:16.0046 2620 C:\Windows\System32\gpsvc.dll - ok
02:56:16.0046 2620 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll
02:56:16.0046 2620 C:\Windows\System32\nlaapi.dll - ok
02:56:16.0056 2620 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll
02:56:16.0056 2620 C:\Windows\System32\atl.dll - ok
02:56:16.0056 2620 [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll
02:56:16.0056 2620 C:\Windows\System32\es.dll - ok
02:56:16.0066 2620 [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys
02:56:16.0066 2620 C:\Windows\System32\drivers\spsys.sys - ok
02:56:16.0066 2620 [ 1509E705F3AC1D474C92454A5C2DD81F ] C:\Windows\System32\uxsms.dll
02:56:16.0066 2620 C:\Windows\System32\uxsms.dll - ok
02:56:16.0071 2620 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys
02:56:16.0071 2620 C:\Windows\System32\drivers\fltMgr.sys - ok
02:56:16.0071 2620 [ 22F73612087430A94DBE912AB58E0C79 ] C:\Windows\System32\ci.dll
02:56:16.0071 2620 C:\Windows\System32\ci.dll - ok
02:56:16.0091 2620 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll
02:56:16.0091 2620 C:\Windows\System32\WindowsCodecs.dll - ok
02:56:16.0091 2620 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] C:\Windows\System32\WUDFSvc.dll
02:56:16.0091 2620 C:\Windows\System32\WUDFSvc.dll - ok
02:56:16.0101 2620 [ D5CF1536137026ACDED95BF6CBF849F6 ] C:\Windows\System32\WUDFPlatform.dll
02:56:16.0101 2620 C:\Windows\System32\WUDFPlatform.dll - ok
02:56:16.0101 2620 [ 411670143F7B98520E0708F2FA263B9D ] C:\Windows\System32\drivers\diginet.sys
02:56:16.0101 2620 C:\Windows\System32\drivers\diginet.sys - ok
02:56:16.0111 2620 [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys
02:56:16.0111 2620 C:\Windows\System32\drivers\lltdio.sys - ok
02:56:16.0111 2620 [ D6973AA34C4D5D76C0430B181C3CD389 ] C:\Windows\System32\drivers\ndisuio.sys
02:56:16.0111 2620 C:\Windows\System32\drivers\ndisuio.sys - ok
02:56:16.0121 2620 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] C:\Windows\System32\drivers\nwifi.sys
02:56:16.0121 2620 C:\Windows\System32\drivers\nwifi.sys - ok
02:56:16.0121 2620 [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys
02:56:16.0121 2620 C:\Windows\System32\drivers\rspndr.sys - ok
02:56:16.0131 2620 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll
02:56:16.0131 2620 C:\Windows\System32\dnsrslvr.dll - ok
02:56:16.0141 2620 [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll
02:56:16.0141 2620 C:\Windows\System32\hid.dll - ok
02:56:16.0141 2620 [ 3AB4023CBD406AC33AB8CDFF6C8079A0 ] C:\Windows\System32\eapphost.dll
02:56:16.0141 2620 C:\Windows\System32\eapphost.dll - ok
02:56:16.0151 2620 [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL
02:56:16.0151 2620 C:\Windows\System32\PSHED.DLL - ok
02:56:16.0151 2620 [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll
02:56:16.0151 2620 C:\Windows\System32\rastls.dll - ok
02:56:16.0161 2620 [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll
02:56:16.0161 2620 C:\Windows\System32\raschap.dll - ok
02:56:16.0161 2620 [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll
02:56:16.0161 2620 C:\Windows\System32\onex.dll - ok
02:56:16.0166 2620 [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll
02:56:16.0166 2620 C:\Windows\System32\umb.dll - ok
02:56:16.0176 2620 [ 3727F8B85E24BBDD325BFF75F029DDE3 ] C:\Windows\System32\wlanmsm.dll
02:56:16.0176 2620 C:\Windows\System32\wlanmsm.dll - ok
02:56:16.0186 2620 [ 4662AF853DFAD5648CE3814E7D9EF3D6 ] C:\Windows\System32\wlansec.dll
02:56:16.0186 2620 C:\Windows\System32\wlansec.dll - ok
02:56:16.0196 2620 [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll
02:56:16.0196 2620 C:\Windows\System32\eappcfg.dll - ok
02:56:16.0196 2620 [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll
02:56:16.0196 2620 C:\Windows\System32\eappprxy.dll - ok
02:56:16.0206 2620 [ 19FFAD68A02AF1BF0BC336EE26CD6767 ] C:\Windows\System32\l2gpstore.dll
02:56:16.0206 2620 C:\Windows\System32\l2gpstore.dll - ok
02:56:16.0216 2620 [ 91D995A67D9447592A1BF21CBC15C628 ] C:\Windows\System32\wlgpclnt.dll
02:56:16.0216 2620 C:\Windows\System32\wlgpclnt.dll - ok
02:56:16.0216 2620 [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll
02:56:16.0216 2620 C:\Windows\System32\wlanutil.dll - ok
02:56:16.0226 2620 [ 0296DAEB5555A248E8ABF7E5012A37A6 ] C:\Windows\System32\msxml6.dll
02:56:16.0226 2620 C:\Windows\System32\msxml6.dll - ok
02:56:16.0226 2620 [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll
02:56:16.0226 2620 C:\Windows\System32\ktmw32.dll - ok
02:56:16.0231 2620 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
02:56:16.0231 2620 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok
02:56:16.0241 2620 [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll
02:56:16.0241 2620 C:\Windows\System32\taskcomp.dll - ok
02:56:16.0251 2620 [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys
02:56:16.0251 2620 C:\Windows\System32\drivers\srvnet.sys - ok
02:56:16.0251 2620 [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll
02:56:16.0251 2620 C:\Windows\System32\wiarpc.dll - ok
02:56:16.0261 2620 [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL
02:56:16.0261 2620 C:\Windows\System32\FWPUCLNT.DLL - ok
02:56:16.0261 2620 [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys
02:56:16.0261 2620 C:\Windows\System32\drivers\bowser.sys - ok
02:56:16.0271 2620 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys
02:56:16.0271 2620 C:\Windows\System32\drivers\mpsdrv.sys - ok
02:56:16.0271 2620 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys
02:56:16.0271 2620 C:\Windows\System32\drivers\mrxsmb.sys - ok
02:56:16.0281 2620 [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll
02:56:16.0281 2620 C:\Windows\System32\MPSSVC.dll - ok
02:56:16.0291 2620 [ 4FCCB34D793B116423209C0F8B7A3B03 ] C:\Windows\System32\drivers\mrxsmb10.sys
02:56:16.0291 2620 C:\Windows\System32\drivers\mrxsmb10.sys - ok
02:56:16.0291 2620 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys
02:56:16.0291 2620 C:\Windows\System32\drivers\mrxsmb20.sys - ok
02:56:16.0301 2620 [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys
02:56:16.0301 2620 C:\Windows\System32\drivers\srv2.sys - ok
02:56:16.0301 2620 [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys
02:56:16.0301 2620 C:\Windows\System32\drivers\srv.sys - ok
02:56:16.0311 2620 [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll
02:56:16.0311 2620 C:\Windows\System32\wfapigp.dll - ok
02:56:16.0311 2620 [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll
02:56:16.0311 2620 C:\Windows\System32\activeds.dll - ok
02:56:16.0316 2620 [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll
02:56:16.0316 2620 C:\Windows\System32\adsldpc.dll - ok
02:56:16.0316 2620 [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll
02:56:16.0316 2620 C:\Windows\System32\clusapi.dll - ok
02:56:16.0326 2620 [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll
02:56:16.0326 2620 C:\Windows\System32\netmsg.dll - ok
02:56:16.0336 2620 [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll
02:56:16.0336 2620 C:\Windows\System32\sscore.dll - ok
02:56:16.0346 2620 [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll
02:56:16.0346 2620 C:\Windows\System32\credui.dll - ok
02:56:16.0346 2620 [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll
02:56:16.0346 2620 C:\Windows\System32\resutils.dll - ok
02:56:16.0351 2620 [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\System32\mscms.dll
02:56:16.0351 2620 C:\Windows\System32\mscms.dll - ok
02:56:16.0351 2620 [ 1311171CF8F6D2954441EF2A42693035 ] C:\Windows\System32\WsmRes.dll
02:56:16.0351 2620 C:\Windows\System32\WsmRes.dll - ok
02:56:16.0361 2620 [ E230F3776F373F4C5E788794B53101E4 ] C:\Windows\System32\plasrv.exe
02:56:16.0361 2620 C:\Windows\System32\plasrv.exe - ok
02:56:16.0371 2620 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:56:16.0371 2620 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
02:56:16.0381 2620 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
02:56:16.0381 2620 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
02:56:16.0381 2620 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
02:56:16.0381 2620 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
02:56:16.0391 2620 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
02:56:16.0391 2620 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
02:56:16.0401 2620 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
02:56:16.0401 2620 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
02:56:16.0401 2620 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
02:56:16.0401 2620 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
02:56:16.0406 2620 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
02:56:16.0406 2620 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
02:56:16.0416 2620 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
02:56:16.0416 2620 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
02:56:16.0426 2620 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll
02:56:16.0426 2620 C:\Windows\System32\wsock32.dll - ok
02:56:16.0426 2620 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
02:56:16.0426 2620 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
02:56:16.0436 2620 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
02:56:16.0436 2620 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
02:56:16.0446 2620 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
02:56:16.0446 2620 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
02:56:16.0446 2620 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
02:56:16.0446 2620 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
02:56:16.0456 2620 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
02:56:16.0456 2620 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
02:56:16.0466 2620 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
02:56:16.0466 2620 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
02:56:16.0466 2620 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll
02:56:16.0466 2620 C:\Windows\System32\dnssd.dll - ok
02:56:16.0476 2620 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
02:56:16.0476 2620 C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
02:56:16.0476 2620 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
02:56:16.0481 2620 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
02:56:16.0481 2620 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\System32\msvcp100.dll
02:56:16.0481 2620 C:\Windows\System32\msvcp100.dll - ok
02:56:16.0486 2620 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
02:56:16.0486 2620 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
02:56:16.0496 2620 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\System32\msvcr100.dll
02:56:16.0496 2620 C:\Windows\System32\msvcr100.dll - ok
02:56:16.0506 2620 [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
02:56:16.0506 2620 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
02:56:16.0506 2620 [ F036DB9CF05B3C21405403FF074A78D9 ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
02:56:16.0506 2620 C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
02:56:16.0516 2620 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
02:56:16.0516 2620 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
02:56:16.0526 2620 [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
02:56:16.0526 2620 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
02:56:16.0526 2620 [ B40F5DCD59ED2A46EED8AE340CC167FB ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
02:56:16.0526 2620 C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
02:56:16.0536 2620 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
02:56:16.0536 2620 C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
02:56:16.0546 2620 [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll
02:56:16.0546 2620 C:\Windows\System32\emdmgmt.dll - ok
02:56:16.0546 2620 [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys
02:56:16.0546 2620 C:\Windows\System32\drivers\http.sys - ok
02:56:16.0556 2620 [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll
02:56:16.0556 2620 C:\Windows\System32\wdscore.dll - ok
02:56:16.0556 2620 [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll
02:56:16.0556 2620 C:\Windows\System32\vssapi.dll - ok
02:56:16.0566 2620 [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys
02:56:16.0566 2620 C:\Windows\System32\drivers\PEAuth.sys - ok
02:56:16.0571 2620 [ 09469B8EDD2755143FDA06867AAD7E73 ] C:\Windows\System32\cryptnet.dll
02:56:16.0571 2620 C:\Windows\System32\cryptnet.dll - ok
02:56:16.0571 2620 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll
02:56:16.0571 2620 C:\Windows\System32\SensApi.dll - ok
02:56:16.0581 2620 [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll
02:56:16.0581 2620 C:\Windows\System32\vsstrace.dll - ok
02:56:16.0591 2620 [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll
02:56:16.0591 2620 C:\Windows\System32\ncsi.dll - ok
02:56:16.0596 2620 [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll
02:56:16.0596 2620 C:\Windows\System32\cfgmgr32.dll - ok
02:56:16.0596 2620 [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll
02:56:16.0596 2620 C:\Windows\System32\ssdpapi.dll - ok
02:56:16.0606 2620 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
02:56:16.0606 2620 C:\Windows\System32\drivers\secdrv.sys - ok
02:56:16.0616 2620 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll
02:56:16.0616 2620 C:\Windows\System32\wiaservc.dll - ok
02:56:16.0616 2620 [ 608C345A255D82A6289C2D468EB41FD7 ] C:\Windows\System32\drivers\tcpipreg.sys
02:56:16.0616 2620 C:\Windows\System32\drivers\tcpipreg.sys - ok
02:56:16.0626 2620 [ 0C84B6AFFA7486422235584110D7176F ] C:\Windows\System32\icaapi.dll
02:56:16.0626 2620 C:\Windows\System32\icaapi.dll - ok
02:56:16.0626 2620 [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll
02:56:16.0636 2620 C:\Windows\System32\upnphost.dll - ok
02:56:16.0636 2620 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll
02:56:16.0636 2620 C:\Windows\System32\netprofm.dll - ok
02:56:16.0646 2620 [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll
02:56:16.0646 2620 C:\Windows\System32\wbemcomn.dll - ok
02:56:16.0646 2620 [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll
02:56:16.0646 2620 C:\Windows\System32\wiatrace.dll - ok
02:56:16.0651 2620 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll
02:56:16.0651 2620 C:\Windows\System32\npmproxy.dll - ok
02:56:16.0651 2620 [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll
02:56:16.0651 2620 C:\Windows\System32\wbem\WinMgmtR.dll - ok
02:56:16.0661 2620 [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll
02:56:16.0661 2620 C:\Windows\System32\netcfgx.dll - ok
02:56:16.0671 2620 [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL
02:56:16.0671 2620 C:\Windows\System32\IPSECSVC.DLL - ok
02:56:16.0681 2620 [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll
02:56:16.0681 2620 C:\Windows\System32\FwRemoteSvr.dll - ok
02:56:16.0681 2620 [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll
02:56:16.0681 2620 C:\Windows\System32\fundisc.dll - ok
02:56:16.0691 2620 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll
02:56:16.0691 2620 C:\Windows\System32\sfc.dll - ok
02:56:16.0701 2620 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll
02:56:16.0701 2620 C:\Windows\System32\sfc_os.dll - ok
02:56:16.0701 2620 [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll
02:56:16.0701 2620 C:\Windows\System32\wsdchngr.dll - ok
02:56:16.0711 2620 [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\System32\msxml3.dll
02:56:16.0711 2620 C:\Windows\System32\msxml3.dll - ok
02:56:16.0711 2620 [ 5014D9C982E360176066F30D633D6600 ] C:\Program Files\AVG\AVG2013\avgwd.dll
02:56:16.0711 2620 C:\Program Files\AVG\AVG2013\avgwd.dll - ok
02:56:16.0721 2620 [ 9E30B21B14FB24C383AC255BDFA47E0E ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
02:56:16.0721 2620 C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
02:56:16.0731 2620 [ 491918E4C46ED4CEB6E7A90F7B73924D ] C:\Program Files\AVG\AVG2013\avgxpl.dll
02:56:16.0731 2620 C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
02:56:16.0731 2620 [ F67480EE1AC3CB32C63AF86B0AE57AC9 ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
02:56:16.0731 2620 C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
02:56:16.0736 2620 [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll
02:56:16.0736 2620 C:\Windows\System32\wscapi.dll - ok
02:56:16.0746 2620 [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll
02:56:16.0746 2620 C:\Windows\System32\wbem\wbemprox.dll - ok
02:56:16.0756 2620 [ 1CA7C04957F8419E426E334B5FF2D0FA ] C:\Program Files\AVG\AVG2013\avgnsx.exe
02:56:16.0756 2620 C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
02:56:16.0756 2620 [ A4932026499FFE9A493E3E9BBFDAA682 ] C:\Program Files\AVG\AVG2013\avgemcx.exe
02:56:16.0756 2620 C:\Program Files\AVG\AVG2013\avgemcx.exe - ok
02:56:16.0766 2620 [ 8622AE563E2AC2F8BF9FAFEE726FC7B8 ] C:\Program Files\AVG\AVG2013\avgsched.dll
02:56:16.0766 2620 C:\Program Files\AVG\AVG2013\avgsched.dll - ok
02:56:16.0766 2620 [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe
02:56:16.0766 2620 C:\Windows\System32\dllhost.exe - ok
02:56:16.0776 2620 [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll
02:56:16.0776 2620 C:\Windows\System32\wbem\wbemcore.dll - ok
02:56:16.0786 2620 [ FF9AFBD2864BBEA6A9E7F90F8C94F6B7 ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
02:56:16.0786 2620 C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
02:56:16.0786 2620 [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll
02:56:16.0786 2620 C:\Windows\System32\wbem\esscli.dll - ok
02:56:16.0796 2620 [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll
02:56:16.0796 2620 C:\Windows\System32\wbem\fastprox.dll - ok
02:56:16.0796 2620 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll
02:56:16.0796 2620 C:\Windows\System32\shimeng.dll - ok
02:56:16.0806 2620 [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll
02:56:16.0806 2620 C:\Windows\System32\wbem\wbemsvc.dll - ok
02:56:16.0806 2620 [ E9296800685ED622132C0E1FA9241F92 ] C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
02:56:16.0806 2620 C:\Program Files\AVG\AVG2013\avgkrnlapix.dll - ok
02:56:16.0816 2620 [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll
02:56:16.0816 2620 C:\Windows\System32\wbem\wmiutils.dll - ok
02:56:16.0816 2620 [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll
02:56:16.0816 2620 C:\Windows\System32\wbem\repdrvfs.dll - ok
02:56:16.0821 2620 [ 3CD1B69551236977918E60F9543C89A2 ] C:\Windows\System32\AtBroker.exe
02:56:16.0821 2620 C:\Windows\System32\AtBroker.exe - ok
02:56:16.0821 2620 [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll
02:56:16.0821 2620 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
02:56:16.0831 2620 [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll
02:56:16.0831 2620 C:\Windows\System32\wbem\wbemess.dll - ok
02:56:16.0841 2620 [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe
02:56:16.0841 2620 C:\Windows\System32\userinit.exe - ok
02:56:16.0851 2620 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll
02:56:16.0851 2620 C:\Windows\System32\dwmapi.dll - ok
02:56:16.0851 2620 [ D80C6539C00CB4F5D59066865479C308 ] C:\Windows\System32\dwmredir.dll
02:56:16.0851 2620 C:\Windows\System32\dwmredir.dll - ok
02:56:16.0861 2620 [ C99403A5B641520DAED0021DDA06F272 ] C:\Windows\System32\milcore.dll
02:56:16.0861 2620 C:\Windows\System32\milcore.dll - ok
02:56:16.0861 2620 [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe
02:56:16.0861 2620 C:\Windows\System32\taskeng.exe - ok
02:56:16.0871 2620 [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe
02:56:16.0871 2620 C:\Windows\explorer.exe - ok
02:56:16.0871 2620 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll
02:56:16.0871 2620 C:\Windows\System32\d3d9.dll - ok
02:56:16.0881 2620 [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll
02:56:16.0881 2620 C:\Windows\System32\TSChannel.dll - ok
02:56:16.0891 2620 [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll
02:56:16.0891 2620 C:\Windows\System32\HotStartUserAgent.dll - ok
02:56:16.0891 2620 [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll
02:56:16.0891 2620 C:\Windows\System32\PlaySndSrv.dll - ok
02:56:16.0901 2620 [ 70C6489D56008D75DEDF73226FA63C11 ] C:\Windows\System32\dimsjob.dll
02:56:16.0901 2620 C:\Windows\System32\dimsjob.dll - ok
02:56:16.0901 2620 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll
02:56:16.0901 2620 C:\Windows\System32\d3d8thk.dll - ok
02:56:16.0906 2620 [ 98638A4CA187245C469DA0DEC4F04A45 ] C:\Windows\System32\pautoenr.dll
02:56:16.0906 2620 C:\Windows\System32\pautoenr.dll - ok
02:56:16.0906 2620 [ 6C5E3F6EF8E1BFCC53FD35668D1F4829 ] C:\Windows\System32\atiumdag.dll
02:56:16.0906 2620 C:\Windows\System32\atiumdag.dll - ok
02:56:16.0916 2620 [ AC48FD62E22C4425879FCA5A63F50497 ] C:\Windows\System32\certcli.dll
02:56:16.0916 2620 C:\Windows\System32\certcli.dll - ok
02:56:16.0926 2620 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll
02:56:16.0926 2620 C:\Windows\System32\shdocvw.dll - ok
02:56:16.0936 2620 [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll
02:56:16.0936 2620 C:\Windows\System32\browseui.dll - ok
02:56:16.0936 2620 [ 0053319C4438CDE659AA75C19BBD22F1 ] C:\Windows\System32\CertEnroll.dll
02:56:16.0936 2620 C:\Windows\System32\CertEnroll.dll - ok
02:56:16.0946 2620 [ 3F4ECB1DE53786E83EE3713D6FBE1B01 ] C:\Windows\System32\atiumdva.dll
02:56:16.0946 2620 C:\Windows\System32\atiumdva.dll - ok
02:56:16.0946 2620 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv
02:56:16.0946 2620 C:\Windows\System32\wdmaud.drv - ok
02:56:16.0956 2620 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll
02:56:16.0956 2620 C:\Windows\System32\ksuser.dll - ok
02:56:16.0956 2620 [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll
02:56:16.0956 2620 C:\Windows\System32\MsCtfMonitor.dll - ok
02:56:16.0966 2620 [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\Andy\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
02:56:16.0966 2620 C:\Users\Andy\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
02:56:16.0966 2620 [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll
02:56:16.0966 2620 C:\Windows\System32\msutb.dll - ok
02:56:16.0976 2620 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll
02:56:16.0976 2620 C:\Windows\System32\dbghelp.dll - ok
02:56:16.0981 2620 [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll
02:56:16.0981 2620 C:\Windows\System32\TMM.dll - ok
02:56:16.0981 2620 [ 615DC3A0F69A101BCBE63DF30960A2B4 ] C:\Windows\System32\atipdlxx.dll
02:56:16.0981 2620 C:\Windows\System32\atipdlxx.dll - ok
02:56:16.0986 2620 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
02:56:16.0986 2620 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
02:56:16.0991 2620 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
02:56:16.0991 2620 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
02:56:17.0011 2620 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll
02:56:17.0011 2620 C:\Windows\System32\AudioSes.dll - ok
02:56:17.0011 2620 [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll
02:56:17.0011 2620 C:\Windows\System32\AudioEng.dll - ok
02:56:17.0021 2620 [ 1F79A5ECEC9E69BE772E5ACC8DD78505 ] C:\Windows\System32\atitmmxx.dll
02:56:17.0021 2620 C:\Windows\System32\atitmmxx.dll - ok
02:56:17.0021 2620 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll
02:56:17.0021 2620 C:\Windows\System32\EhStorShell.dll - ok
02:56:17.0031 2620 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv
02:56:17.0031 2620 C:\Windows\System32\msacm32.drv - ok
02:56:17.0031 2620 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll
02:56:17.0031 2620 C:\Windows\System32\imageres.dll - ok
02:56:17.0041 2620 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll
02:56:17.0041 2620 C:\Windows\System32\msacm32.dll - ok
02:56:17.0051 2620 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll
02:56:17.0051 2620 C:\Windows\System32\midimap.dll - ok
02:56:17.0051 2620 [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll
02:56:17.0051 2620 C:\Windows\System32\IconCodecService.dll - ok
02:56:17.0061 2620 [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL
02:56:17.0061 2620 C:\Windows\System32\QAGENT.DLL - ok
02:56:17.0061 2620 [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL
02:56:17.0061 2620 C:\Windows\System32\QUTIL.DLL - ok
02:56:17.0066 2620 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe
02:56:17.0066 2620 C:\Windows\System32\runonce.exe - ok
02:56:17.0066 2620 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe
02:56:17.0066 2620 C:\Windows\System32\cmd.exe - ok
02:56:17.0071 2620 [ F325BE9BF7B8B5C443784BC954757391 ] C:\Windows\System32\ieframe.dll
02:56:17.0071 2620 C:\Windows\System32\ieframe.dll - ok
02:56:17.0081 2620 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Andy\AppData\Local\Temp\FED6C78D-1DD9-49B5-B62E-DF68E3E54969.exe
02:56:17.0081 2620 C:\Users\Andy\AppData\Local\Temp\FED6C78D-1DD9-49B5-B62E-DF68E3E54969.exe - ok
02:56:17.0091 2620 [ 9E726329B5EB63F607B2B3D7B58C72DE ] C:\Windows\System32\iedkcs32.dll
02:56:17.0091 2620 C:\Windows\System32\iedkcs32.dll - ok
02:56:17.0091 2620 [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl
02:56:17.0091 2620 C:\Windows\System32\timedate.cpl - ok
02:56:17.0101 2620 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll
02:56:17.0101 2620 C:\Windows\System32\actxprxy.dll - ok
02:56:17.0101 2620 [ 425C4B729A3F64DA998051704710C5AB ] C:\Program Files\iTunes\iTunesMiniPlayer.dll
02:56:17.0101 2620 C:\Program Files\iTunes\iTunesMiniPlayer.dll - ok
02:56:17.0111 2620 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll
02:56:17.0111 2620 C:\Windows\System32\winrnr.dll - ok
02:56:17.0121 2620 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
02:56:17.0121 2620 C:\Program Files\Bonjour\mdnsNSP.dll - ok
02:56:17.0131 2620 [ 0E4C325892D0BAF59C9378CB579CC594 ] C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
02:56:17.0131 2620 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll - ok
02:56:17.0131 2620 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll
02:56:17.0131 2620 C:\Windows\System32\rasadhlp.dll - ok
02:56:17.0141 2620 [ BFF00FAC50ED60ECF5EFA3E582EC4DCA ] C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll
02:56:17.0141 2620 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll - ok
02:56:17.0141 2620 [ FF41E1AC301F51E16F61AD7C0F45467C ] C:\Windows\System32\msshsq.dll
02:56:17.0141 2620 C:\Windows\System32\msshsq.dll - ok
02:56:17.0151 2620 [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll
02:56:17.0151 2620 C:\Windows\System32\NaturalLanguage6.dll - ok
02:56:17.0156 2620 [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll
02:56:17.0156 2620 C:\Windows\System32\NlsData0009.dll - ok
02:56:17.0166 2620 [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll
02:56:17.0166 2620 C:\Windows\System32\NlsLexicons0009.dll - ok
02:56:17.0176 2620 [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll
02:56:17.0176 2620 C:\Windows\System32\esent.dll - ok
02:56:17.0186 2620 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\05808519.sys
02:56:17.0186 2620 C:\Windows\System32\drivers\05808519.sys - ok
02:56:17.0186 2620 [ 790222D6CCFC576F0D07D418E6115D85 ] C:\Program Files\Windows Calendar\WinCal.exe
02:56:17.0186 2620 C:\Program Files\Windows Calendar\WinCal.exe - ok
02:56:17.0196 2620 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll
02:56:17.0196 2620 C:\Windows\System32\msi.dll - ok
02:56:17.0206 2620 [ DE7F813217EC88C0A6D4D8F2F39D7949 ] C:\Windows\System32\msiltcfg.dll
02:56:17.0206 2620 C:\Windows\System32\msiltcfg.dll - ok
02:56:17.0216 2620 [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\System32\linkinfo.dll
02:56:17.0216 2620 C:\Windows\System32\linkinfo.dll - ok
02:56:17.0216 2620 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll
02:56:17.0216 2620 C:\Windows\System32\riched20.dll - ok
02:56:17.0226 2620 [ 5016B8FC59AD616F03813FBE63295081 ] C:\Windows\System32\thumbcache.dll
02:56:17.0226 2620 C:\Windows\System32\thumbcache.dll - ok
02:56:17.0231 2620 [ 61216539E55DDF2F78E421E7EF140650 ] C:\Windows\System32\ExplorerFrame.dll
02:56:17.0231 2620 C:\Windows\System32\ExplorerFrame.dll - ok
02:56:17.0231 2620 [ 04044BF8E6989BE45FA718C24407CA28 ] C:\Windows\System32\networkexplorer.dll
02:56:17.0231 2620 C:\Windows\System32\networkexplorer.dll - ok
02:56:17.0246 2620 [ 0D392EDE3B97E0B3131B2F63EF1DB94E ] C:\Program Files\Windows Defender\MSASCui.exe
02:56:17.0246 2620 C:\Program Files\Windows Defender\MSASCui.exe - ok
02:56:17.0256 2620 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll
02:56:17.0256 2620 C:\Windows\System32\ntshrui.dll - ok
02:56:17.0256 2620 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll
02:56:17.0256 2620 C:\Windows\System32\cscapi.dll - ok
02:56:17.0266 2620 [ 2ABD166EC31BE154D8CBEEC5D7F5714C ] C:\Program Files\Opera\opera.exe
02:56:17.0266 2620 C:\Program Files\Opera\opera.exe - ok
02:56:17.0276 2620 [ 6E240D6C2F0DB74BED13AD723D3AB0A1 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
02:56:17.0276 2620 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
02:56:17.0276 2620 [ 1CB570624E4BD7D6F17044E2C62A7429 ] C:\Program Files\Opera\opera.dll
02:56:17.0276 2620 C:\Program Files\Opera\opera.dll - ok
02:56:17.0286 2620 [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll
02:56:17.0286 2620 C:\Windows\System32\taskschd.dll - ok
02:56:17.0286 2620 [ C6FD3425B1ADD739B95DC4D661FF4DD3 ] C:\Windows\System32\PresentationSettings.exe
02:56:17.0286 2620 C:\Windows\System32\PresentationSettings.exe - ok
02:56:17.0296 2620 [ 9DADF1A809ECEC86F04BDE35190D59FE ] C:\Program Files\AVG\AVG2013\avgui.exe
02:56:17.0296 2620 C:\Program Files\AVG\AVG2013\avgui.exe - ok
02:56:17.0306 2620 [ 06164026C38AA5366E4D127E2E36FDE8 ] C:\Program Files\Windows Mail\wab.exe
02:56:17.0306 2620 C:\Program Files\Windows Mail\wab.exe - ok
02:56:17.0316 2620 [ 395335431AD55C167CFDBBAB8420DA73 ] C:\Program Files\Movie Maker\DVDMaker.exe
02:56:17.0316 2620 C:\Program Files\Movie Maker\DVDMaker.exe - ok
02:56:17.0321 2620 [ B5950DF243837D8217F4E597919B224A ] C:\Windows\System32\stobject.dll
02:56:17.0321 2620 C:\Windows\System32\stobject.dll - ok
02:56:17.0321 2620 [ EC69B16644C613F41A57169F8D068F1D ] C:\Windows\System32\batmeter.dll
02:56:17.0321 2620 C:\Windows\System32\batmeter.dll - ok
02:56:17.0341 2620 [ C4AB08459CD7B59B410ACFC04D90E87B ] C:\Program Files\Movie Maker\MOVIEMK.exe
02:56:17.0341 2620 C:\Program Files\Movie Maker\MOVIEMK.exe - ok
02:56:17.0341 2620 [ C03AC1FBCD625F93D2C245D97E06F270 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe
02:56:17.0341 2620 C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok
02:56:17.0351 2620 [ 069385484EA57B663D688894C88975C5 ] C:\Windows\System32\wuapp.exe
02:56:17.0351 2620 C:\Windows\System32\wuapp.exe - ok
02:56:17.0351 2620 [ 30F02D9C55053367E26A11482F51E255 ] C:\Windows\System32\SndVolSSO.dll
02:56:17.0351 2620 C:\Windows\System32\SndVolSSO.dll - ok
02:56:17.0361 2620 [ 313B30189557A2E2793F845DE0F0A4D5 ] C:\Windows\ehome\ehSSO.dll
02:56:17.0361 2620 C:\Windows\ehome\ehSSO.dll - ok
02:56:17.0371 2620 [ E98E402067978DB38282158F9E8609CA ] C:\Windows\System32\netshell.dll
02:56:17.0371 2620 C:\Windows\System32\netshell.dll - ok
02:56:17.0371 2620 [ 390951D528C971215AC220BA12F60DEC ] C:\Windows\System32\SynCOM.dll
02:56:17.0371 2620 C:\Windows\System32\SynCOM.dll - ok
02:56:17.0381 2620 [ 75AD59B9B12EB194486BE8D97B062994 ] C:\Windows\System32\pnidui.dll
02:56:17.0381 2620 C:\Windows\System32\pnidui.dll - ok
02:56:17.0381 2620 [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll
02:56:17.0381 2620 C:\Windows\System32\netman.dll - ok
02:56:17.0391 2620 [ ABAEAEE763E287BDD39094C4165E1F3F ] C:\Windows\System32\fdProxy.dll
02:56:17.0391 2620 C:\Windows\System32\fdProxy.dll - ok
02:56:17.0401 2620 [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll
02:56:17.0401 2620 C:\Windows\System32\rasdlg.dll - ok
02:56:17.0406 2620 [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll
02:56:17.0406 2620 C:\Windows\System32\mprapi.dll - ok
02:56:17.0406 2620 [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll
02:56:17.0406 2620 C:\Windows\System32\wlanapi.dll - ok
02:56:17.0426 2620 [ 4A839160ED1963F9A1526DDA2D1233B2 ] C:\Windows\System32\AltTab.dll
02:56:17.0426 2620 C:\Windows\System32\AltTab.dll - ok
02:56:17.0426 2620 [ 6B5C53E0932C510606D700B7A896EF73 ] C:\Windows\System32\WPDShServiceObj.dll
02:56:17.0426 2620 C:\Windows\System32\WPDShServiceObj.dll - ok
02:56:17.0436 2620 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll
02:56:17.0436 2620 C:\Windows\System32\PortableDeviceTypes.dll - ok
02:56:17.0436 2620 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll
02:56:17.0436 2620 C:\Windows\System32\PortableDeviceApi.dll - ok
02:56:17.0446 2620 [ 744F08CF9ACFFB1C715191D04DEEE907 ] C:\Windows\System32\srchadmin.dll
02:56:17.0446 2620 C:\Windows\System32\srchadmin.dll - ok
02:56:17.0456 2620 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\Windows\System32\webcheck.dll
02:56:17.0456 2620 C:\Windows\System32\webcheck.dll - ok
02:56:17.0456 2620 [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\System32\mlang.dll
02:56:17.0456 2620 C:\Windows\System32\mlang.dll - ok
02:56:17.0466 2620 [ 4ACEA0C4BB15ACE55E3AE5EC4E88DD55 ] C:\Windows\System32\SyncCenter.dll
02:56:17.0466 2620 C:\Windows\System32\SyncCenter.dll - ok
02:56:17.0466 2620 [ 0B5AC46982E77CAF3EC1D55C9AC6AB56 ] C:\Windows\System32\wscntfy.dll
02:56:17.0466 2620 C:\Windows\System32\wscntfy.dll - ok
02:56:17.0476 2620 [ 9B0726A03B790E5B82BED44D24009BEF ] C:\Windows\System32\imapi2.dll
02:56:17.0476 2620 C:\Windows\System32\imapi2.dll - ok
02:56:17.0481 2620 [ A7FA423E62CA375D0B12B752C446568F ] C:\Windows\System32\SynTPAPI.dll
02:56:17.0481 2620 C:\Windows\System32\SynTPAPI.dll - ok
02:56:17.0486 2620 [ 7BC0410ADF51083C2694AC19FF3C6847 ] C:\Program Files\Windows Defender\MpRtMon.dll
02:56:17.0486 2620 C:\Program Files\Windows Defender\MpRtMon.dll - ok
02:56:17.0491 2620 [ CEA69EEC43978AEEE8E3E02E07AD1A54 ] C:\Windows\System32\tzres.dll
02:56:17.0491 2620 C:\Windows\System32\tzres.dll - ok
02:56:17.0496 2620 [ C0ABD66F31C0B84CD944802E6D3D02C2 ] C:\Windows\System32\bthprops.cpl
02:56:17.0496 2620 C:\Windows\System32\bthprops.cpl - ok
02:56:17.0516 2620 [ 3A72AB0BAF2DC1AE0BA6E1EE28FFCC0B ] C:\Windows\System32\msftedit.dll
02:56:17.0516 2620 C:\Windows\System32\msftedit.dll - ok
02:56:17.0516 2620 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\System32\mfc100u.dll
02:56:17.0516 2620 C:\Windows\System32\mfc100u.dll - ok
02:56:17.0526 2620 [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\System32\mfc100enu.dll
02:56:17.0526 2620 C:\Windows\System32\mfc100enu.dll - ok
02:56:17.0526 2620 [ 6950BBCEB21F9C3CB3B52E90960109C3 ] C:\Windows\System32\devenum.dll
02:56:17.0526 2620 C:\Windows\System32\devenum.dll - ok
02:56:17.0536 2620 [ B8AEFF80ABD57E6ABC6A46EAC7F4515F ] C:\Windows\System32\msdmo.dll
02:56:17.0536 2620 C:\Windows\System32\msdmo.dll - ok
02:56:17.0536 2620 [ 928C90E02E05244D2290C1551DF732C8 ] C:\Windows\System32\avicap32.dll
02:56:17.0536 2620 C:\Windows\System32\avicap32.dll - ok
02:56:17.0546 2620 [ EACACA0F2FF4CC54A909E3C5721FCDE8 ] C:\Windows\System32\msvfw32.dll
02:56:17.0546 2620 C:\Windows\System32\msvfw32.dll - ok
02:56:17.0556 2620 [ 65C092EF598DCCA1D665D52F06829512 ] C:\Windows\System32\vfwwdm32.dll
02:56:17.0556 2620 C:\Windows\System32\vfwwdm32.dll - ok
02:56:17.0556 2620 [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files\Opera\program\plugins\npqtplugin.dll
02:56:17.0556 2620 C:\Program Files\Opera\program\plugins\npqtplugin.dll - ok
02:56:17.0566 2620 [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files\Opera\program\plugins\npqtplugin2.dll
02:56:17.0566 2620 C:\Program Files\Opera\program\plugins\npqtplugin2.dll - ok
02:56:17.0566 2620 [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files\Opera\program\plugins\npqtplugin3.dll
02:56:17.0571 2620 C:\Program Files\Opera\program\plugins\npqtplugin3.dll - ok
02:56:17.0591 2620 [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files\Opera\program\plugins\npqtplugin4.dll
02:56:17.0591 2620 C:\Program Files\Opera\program\plugins\npqtplugin4.dll - ok
02:56:17.0611 2620 [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files\Opera\program\plugins\npqtplugin5.dll
02:56:17.0611 2620 C:\Program Files\Opera\program\plugins\npqtplugin5.dll - ok
02:56:17.0611 2620 [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files\Opera\program\plugins\npqtplugin6.dll
02:56:17.0611 2620 C:\Program Files\Opera\program\plugins\npqtplugin6.dll - ok
02:56:17.0631 2620 [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files\Opera\program\plugins\npqtplugin7.dll
02:56:17.0631 2620 C:\Program Files\Opera\program\plugins\npqtplugin7.dll - ok
02:56:17.0631 2620 [ 0CADE166293FC566B4B9D477A3A9D650 ] C:\Program Files\Windows Media Player\mpvis.DLL
02:56:17.0631 2620 C:\Program Files\Windows Media Player\mpvis.DLL - ok
02:56:17.0641 2620 [ 2AC2716E2083A949437CEDB2B6A2E89A ] C:\Program Files\Windows Media Player\wmpband.dll
02:56:17.0641 2620 C:\Program Files\Windows Media Player\wmpband.dll - ok
02:56:17.0641 2620 [ E46A4765F8E6D631C9C9CB0B083602F5 ] C:\Program Files\Windows Media Player\wmpnssci.dll
02:56:17.0641 2620 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
02:56:17.0651 2620 [ 7599E425947A595448DA778B610923BC ] C:\Program Files\Windows Media Player\wmpsyncmgr.dll
02:56:17.0651 2620 C:\Program Files\Windows Media Player\wmpsyncmgr.dll - ok
02:56:17.0656 2620 [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files\QuickTime\Plugins\npqtplugin.dll
02:56:17.0656 2620 C:\Program Files\QuickTime\Plugins\npqtplugin.dll - ok
02:56:17.0661 2620 [ 745B5E69D91907A0E9CEDFD386B0DDF3 ] C:\Program Files\Windows Media Player\wmssetup.dll
02:56:17.0661 2620 C:\Program Files\Windows Media Player\wmssetup.dll - ok
02:56:17.0666 2620 [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files\QuickTime\Plugins\npqtplugin2.dll
02:56:17.0666 2620 C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - ok
02:56:17.0681 2620 [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files\QuickTime\Plugins\npqtplugin3.dll
02:56:17.0681 2620 C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - ok
02:56:17.0691 2620 [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files\QuickTime\Plugins\npqtplugin4.dll
02:56:17.0691 2620 C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - ok
02:56:17.0691 2620 [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files\QuickTime\Plugins\npqtplugin5.dll
02:56:17.0691 2620 C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - ok
02:56:17.0701 2620 [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files\QuickTime\Plugins\npqtplugin6.dll
02:56:17.0701 2620 C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - ok
02:56:17.0711 2620 [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files\QuickTime\Plugins\npqtplugin7.dll
02:56:17.0711 2620 C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - ok
02:56:17.0711 2620 [ 47299371607DC2FB234444EEACB1639E ] C:\Windows\System32\Macromed\Flash\NPSWF32_11_6_602_180.dll
02:56:17.0711 2620 C:\Windows\System32\Macromed\Flash\NPSWF32_11_6_602_180.dll - ok
02:56:17.0721 2620 [ F00A0EF5835E1B96F783D617F1948704 ] C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
02:56:17.0721 2620 C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - ok
02:56:17.0731 2620 [ E152B8112A76CF238A2B30927F2FCF48 ] C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\npsitesafety.dll
02:56:17.0731 2620 C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\npsitesafety.dll - ok
02:56:17.0736 2620 [ 5689804A4016EAF199C7FA2E3C88778F ] C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
02:56:17.0736 2620 C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll - ok
02:56:17.0741 2620 [ D4BD9F86123C87ECA570418B69326F99 ] C:\Windows\System32\npdeployJava1.dll
02:56:17.0741 2620 C:\Windows\System32\npdeployJava1.dll - ok
02:56:17.0751 2620 [ 05C4A7136F3012BB47107333B5D351D3 ] C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
02:56:17.0751 2620 C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - ok
02:56:17.0761 2620 [ A5C14075B571AF1C9592595BE724D9D2 ] C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
02:56:17.0761 2620 C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll - ok
02:56:17.0771 2620 [ AB87EEFFD18F2BAAFC274E7075EA6C67 ] C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
02:56:17.0771 2620 C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - ok
02:56:17.0771 2620 [ F7B27774DAF8660ADD71EA29AE8C1B1A ] C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
02:56:17.0771 2620 C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll - ok
02:56:17.0781 2620 [ A843FC35574ECFD9E7A41C5505A9921B ] C:\Program Files\VideoLAN\VLC\npvlc.dll
02:56:17.0781 2620 C:\Program Files\VideoLAN\VLC\npvlc.dll - ok
02:56:17.0791 2620 [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll
02:56:17.0791 2620 C:\Windows\System32\wbem\NCProv.dll - ok
02:56:17.0791 2620 [ 9730643AB698D3B7F19D9192E4D3E4B0 ] C:\Program Files\AVG\AVG2013\avgidpmx.dll
02:56:17.0791 2620 C:\Program Files\AVG\AVG2013\avgidpmx.dll - ok
02:56:17.0801 2620 [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll
02:56:17.0801 2620 C:\Windows\System32\wbem\wbemcons.dll - ok
02:56:17.0801 2620 [ DE35D659575C700BA4E8E912671EA4BA ] C:\Program Files\AVG\AVG2013\avgdiagex.exe
02:56:17.0801 2620 C:\Program Files\AVG\AVG2013\avgdiagex.exe - ok
02:56:17.0811 2620 [ 751EEDB874FD17A6F26B9E2CC5E19170 ] C:\Program Files\AVG\AVG2013\avglngx.dll
02:56:17.0811 2620 C:\Program Files\AVG\AVG2013\avglngx.dll - ok
02:56:17.0816 2620 [ EB74C861075ECFA1B51B396615387657 ] C:\Program Files\AVG\AVG2013\avguires.dll
02:56:17.0816 2620 C:\Program Files\AVG\AVG2013\avguires.dll - ok
02:56:17.0821 2620 [ 295363D4317820AED0D527E15B90A8ED ] C:\Windows\System32\pdh.dll
02:56:17.0821 2620 C:\Windows\System32\pdh.dll - ok
02:56:17.0837 2620 [ F7E915FA38C119101873AE5E0E7C8B66 ] C:\Program Files\AVG\AVG2013\avgapps.dll
02:56:17.0837 2620 C:\Program Files\AVG\AVG2013\avgapps.dll - ok
02:56:17.0852 2620 [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\System32\dsound.dll
02:56:17.0852 2620 C:\Windows\System32\dsound.dll - ok
02:56:17.0852 2620 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv
02:56:17.0852 2620 C:\Windows\System32\winspool.drv - ok
02:56:17.0852 2620 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll
02:56:17.0852 2620 C:\Windows\System32\dssenh.dll - ok
02:56:17.0868 2620 [ E90BB891CE98D647E88C5BBD58A8F4DA ] C:\Windows\System32\RtkAPO.dll
02:56:17.0868 2620 C:\Windows\System32\RtkAPO.dll - ok
02:56:17.0883 2620 [ 0727200F10320A6BA7E59433094FBBA7 ] C:\Windows\System32\WMALFXGFXDSP.dll
02:56:17.0883 2620 C:\Windows\System32\WMALFXGFXDSP.dll - ok
02:56:17.0883 2620 [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll
02:56:17.0883 2620 C:\Windows\System32\mfplat.dll - ok
02:56:17.0899 2620 [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll
02:56:17.0899 2620 C:\Windows\System32\AUDIOKSE.dll - ok
02:56:17.0915 2620 [ 582EFE56FC0858E58A6CEBA2A64B02C7 ] C:\Windows\System32\drprov.dll
02:56:17.0915 2620 C:\Windows\System32\drprov.dll - ok
02:56:17.0915 2620 [ 3A2EEE8444A8E5C1A454C57B2198F5FC ] C:\Windows\System32\ntlanman.dll
02:56:17.0915 2620 C:\Windows\System32\ntlanman.dll - ok
02:56:17.0920 2620 [ CFBD2E1FE18B50748A76703A2DC6D4E3 ] C:\Windows\System32\davclnt.dll
02:56:17.0920 2620 C:\Windows\System32\davclnt.dll - ok
02:56:17.0920 2620 [ 4C1F26CFCA34E978CC1311F9F080F675 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
02:56:17.0920 2620 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
02:56:17.0920 2620 [ E44C7D6F8D665DA2D9385E5E15EDEEF7 ] C:\Windows\System32\consent.exe
02:56:17.0920 2620 C:\Windows\System32\consent.exe - ok
02:56:17.0951 2620 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll
02:56:17.0951 2620 C:\Windows\System32\p2pcollab.dll - ok
02:56:17.0951 2620 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL
02:56:17.0951 2620 C:\Windows\System32\QAGENTRT.DLL - ok
02:56:17.0966 2620 [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll
02:56:17.0966 2620 C:\Windows\System32\shfolder.dll - ok
02:56:17.0966 2620 [ F21F255B91CA4F04E4250DECD2067CBB ] C:\Windows\System32\bitsperf.dll
02:56:17.0966 2620 C:\Windows\System32\bitsperf.dll - ok
02:56:17.0966 2620 [ 632557F2495931D952161465AA177B3B ] C:\Windows\System32\bitsigd.dll
02:56:17.0966 2620 C:\Windows\System32\bitsigd.dll - ok
02:56:17.0982 2620 [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll
02:56:17.0982 2620 C:\Windows\System32\upnp.dll - ok
02:56:17.0982 2620 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:56:17.0982 2620 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
02:56:17.0998 2620 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll
02:56:17.0998 2620 C:\Windows\System32\msvcr100_clr0400.dll - ok
02:56:17.0998 2620 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll
02:56:17.0998 2620 C:\Windows\System32\mscoree.dll - ok
02:56:18.0003 2620 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll
02:56:18.0003 2620 C:\Windows\System32\dps.dll - ok
02:56:18.0003 2620 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll
02:56:18.0003 2620 C:\Windows\System32\wdi.dll - ok
02:56:18.0008 2620 [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll
02:56:18.0008 2620 C:\Windows\System32\diagperf.dll - ok
02:56:18.0028 2620 [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll
02:56:18.0028 2620 C:\Windows\System32\pnpts.dll - ok
02:56:18.0038 2620 [ 8078F8F8F7A79E2E6B494523A828C585 ] C:\Windows\System32\msdtckrm.dll
02:56:18.0038 2620 C:\Windows\System32\msdtckrm.dll - ok
02:56:18.0038 2620 [ 5E41139EC6EFBCAFFD96D46925E544AB ] C:\Windows\System32\mspatcha.dll
02:56:18.0038 2620 C:\Windows\System32\mspatcha.dll - ok
02:56:18.0048 2620 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll
02:56:18.0048 2620 C:\Windows\System32\wuapi.dll - ok
02:56:18.0048 2620 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
02:56:18.0048 2620 C:\Windows\System32\wups.dll - ok
02:56:18.0058 2620 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll
02:56:18.0058 2620 C:\Windows\System32\wups2.dll - ok
02:56:18.0068 2620 [ D0A95E567224B4C347CBDD6541E5D928 ] C:\Windows\System32\wscisvif.dll
02:56:18.0068 2620 C:\Windows\System32\wscisvif.dll - ok
02:56:18.0068 2620 ============================================================
02:56:18.0068 2620 Scan finished
02:56:18.0068 2620 ============================================================
02:56:18.0083 2540 Detected object count: 0
02:56:18.0083 2540 Actual detected object count: 0
02:57:09.0237 2768 Deinitialize success








aswMBR.txt results....





aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-03-19 03:03:51
-----------------------------
03:03:51.146 OS Version: Windows 6.0.6002 Service Pack 2
03:03:51.146 Number of processors: 2 586 0x301
03:03:51.156 ComputerName: ANDY-LAPTOP UserName: Andy
03:03:52.431 Initialize success
03:04:11.255 AVAST engine download error: 0
03:05:29.565 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
03:05:29.575 Disk 0 Vendor: TOSHIBA_MK1652GSX LV010M Size: 152627MB BusType: 3
03:05:29.825 Disk 0 MBR read successfully
03:05:29.845 Disk 0 MBR scan
03:05:29.855 Disk 0 Windows VISTA default MBR code
03:05:29.875 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
03:05:29.910 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76153 MB offset 3074048
03:05:29.940 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 74971 MB offset 159037440
03:05:29.970 Disk 0 scanning sectors +312579736
03:05:30.255 Disk 0 scanning C:\Windows\system32\drivers
03:05:39.792 Service scanning
03:06:16.529 Modules scanning
03:06:31.688 Disk 0 trace - called modules:
03:06:31.720 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS PCIIDEX.SYS msahci.sys
03:06:31.723 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x862c6ac8]
03:06:31.725 3 CLASSPNP.SYS[833188b3] -> nt!IofCallDriver -> [0x85854858]
03:06:31.726 5 acpi.sys[8061c6bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8584ab98]
03:06:31.728 Scan finished successfully
03:06:58.064 Disk 0 MBR has been saved successfully to "C:\Users\Andy\Desktop\MBR.dat"
03:06:58.094 The log file has been saved successfully to "C:\Users\Andy\Desktop\aswMBR.txt"




ESET results....


C:\Users\Andy\Downloads\+Programs\cdbxp_setup_4.3.7.2423.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Andy\Downloads\+Programs\FoxitReader501.0523_enu_Setup.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
C:\Users\Andy\Downloads\+Programs\FreemakeVideoConverterSetup.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Andy\Downloads\+Programs\Nokia_PC_Suite-ORG-10598525.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined



 



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 19 March 2013 - 09:31 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Make sure you are connected to the Internet and double-click on the it to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

 



#5 StevePotatoes

StevePotatoes
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 19 March 2013 - 10:49 AM

OK, here's all the info, as requested.  Thanks so much for your help so far on this....



Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.19.07

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19401
Andy :: ANDY-LAPTOP [administrator]

19/03/2013 14:58:53
mbam-log-2013-03-19 (14-58-53).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 198542
Time elapsed: 7 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)






MiniToolBox by Farbar Version:05-03-2013
Ran by Andy (administrator) on 19-03-2013 at 15:13:29
Running from "C:\Users\Andy\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Andy-Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HG532.com

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-1E-33-74-C9-41
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : HG532.com
Description . . . . . . . . . . . : Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
Physical Address. . . . . . . . . : 00-22-5F-30-30-78
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c0db:2558:b3ac:8b87%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 19 March 2013 02:53:13
Lease Expires . . . . . . . . . . : 20 March 2013 15:09:34
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 268444255
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-F4-67-3D-00-1E-33-74-C9-41
DNS Servers . . . . . . . . . . . : 192.168.1.1
192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{8A0FAA5D-174A-44ED-852D-5238DCF1761E}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.Belkin
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2a00:1450:4009:802::100e
173.194.34.71
173.194.34.73
173.194.34.67
173.194.34.78
173.194.34.66
173.194.34.69
173.194.34.70
173.194.34.72
173.194.34.68
173.194.34.64
173.194.34.65



Pinging google.com [173.194.34.70] with 32 bytes of data:

Reply from 173.194.34.70: bytes=32 time=34ms TTL=46

Reply from 173.194.34.70: bytes=32 time=34ms TTL=46



Ping statistics for 173.194.34.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 34ms, Maximum = 34ms, Average = 34ms

Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 206.190.36.45
98.138.253.109
98.139.183.24



Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=723ms TTL=45

Reply from 206.190.36.45: bytes=32 time=833ms TTL=45



Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 723ms, Maximum = 833ms, Average = 778ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
14 ...00 1e 33 74 c9 41 ...... Realtek PCIe FE Family Controller
10 ...00 22 5f 30 30 78 ...... Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
1 ........................... Software Loopback Interface 1
12 ...00 00 00 00 00 00 00 e0 isatap.{8A0FAA5D-174A-44ED-852D-5238DCF1761E}
13 ...00 00 00 00 00 00 00 e0 isatap.Belkin
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 281 fe80::/64 On-link
10 281 fe80::c0db:2558:b3ac:8b87/128
On-link
1 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/19/2013 02:54:07 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/19/2013 02:42:29 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (03/19/2013 02:54:08 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (03/19/2013 02:54:08 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (03/19/2013 02:51:30 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (03/19/2013 02:42:30 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (03/19/2013 02:42:30 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5


Microsoft Office Sessions:
=========================
Error: (03/19/2013 02:54:07 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/19/2013 02:42:29 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
Date: 2013-03-19 15:04:33.392
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:32.887
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:32.347
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:31.817
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:31.298
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:30.816
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:30.324
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:29.859
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:29.374
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 15:04:28.787
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Advanced SystemCare 6 (Version: 6.0)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.664.0)
Audacity 2.0.2 (Version: 2.0.2)
AVG 2013 (Version: 13.0.2641)
AVG 2013 (Version: 13.0.2904)
AVG 2013 (Version: 2013.0.2904)
Bonjour (Version: 3.0.0.10)
Camera Assistant Software for Toshiba (Version: 1.7.231.1126L)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Full Existing (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Full New (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Light (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Czech (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Danish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Dutch (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Finnish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization French (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization German (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Greek (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Hungarian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Italian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Japanese (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Korean (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Norwegian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Polish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Portuguese (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Russian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Spanish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Swedish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Thai (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Turkish (Version: 2008.0422.2139.36895)
CCC Help Chinese Standard (Version: 2008.0422.2138.36895)
CCC Help Chinese Traditional (Version: 2008.0422.2138.36895)
CCC Help Czech (Version: 2008.0422.2138.36895)
CCC Help Danish (Version: 2008.0422.2138.36895)
CCC Help Dutch (Version: 2008.0422.2138.36895)
CCC Help English (Version: 2008.0422.2138.36895)
CCC Help Finnish (Version: 2008.0422.2138.36895)
CCC Help French (Version: 2008.0422.2138.36895)
CCC Help German (Version: 2008.0422.2138.36895)
CCC Help Greek (Version: 2008.0422.2138.36895)
CCC Help Hungarian (Version: 2008.0422.2138.36895)
CCC Help Italian (Version: 2008.0422.2138.36895)
CCC Help Japanese (Version: 2008.0422.2138.36895)
CCC Help Korean (Version: 2008.0422.2138.36895)
CCC Help Norwegian (Version: 2008.0422.2138.36895)
CCC Help Polish (Version: 2008.0422.2138.36895)
CCC Help Portuguese (Version: 2008.0422.2138.36895)
CCC Help Russian (Version: 2008.0422.2138.36895)
CCC Help Spanish (Version: 2008.0422.2138.36895)
CCC Help Swedish (Version: 2008.0422.2138.36895)
CCC Help Thai (Version: 2008.0422.2138.36895)
CCC Help Turkish (Version: 2008.0422.2138.36895)
ccc-core-static (Version: 2008.0422.2139.36895)
ccc-utility (Version: 2008.0422.2139.36895)
CCleaner (Version: 3.26)
CD/DVD Drive Acoustic Silencer (Version: 2.02.03)
D3DX10 (Version: 15.4.2368.0902)
Defraggler (Version: 2.12)
Dropbox (Version: 1.6.16)
EPSON Scan
ESET Online Scanner v3
Foxit Reader (Version: 5.4.5.124)
Freemake Video Converter version 3.2.1 (Version: 3.2.1)
iTunes (Version: 11.0.2.26)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 37 (Version: 6.0.370)
Junk Mail filter update (Version: 15.4.3502.0922)
LAME v3.99.3 (for Windows)
Last.fm Scrobbler 2.1.35
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XML Parser (Version: 8.20.8730.4)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
MouSing
Mozilla Firefox 18.0.2 (x86 en-US) (Version: 18.0.2)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nokia Connectivity Cable Driver (Version: 7.1.101.0)
Nokia Suite (Version: 3.7.22.0)
OpenOffice.org 3.3 (Version: 3.3.9567)
Opera 12.14 (Version: 12.14.1738)
Paint.NET v3.5.10 (Version: 3.60.0)
PC Connectivity Solution (Version: 12.0.76.0)
QuickTime (Version: 7.73.80.64)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5599)
REALTEK RTL8187B Wireless LAN Driver (Version: Package:1.00.0026 Driver:6.1116.1226.2007)
Realtek WiFi Protected Setup Library (Version: Package:1.00.0026)
Realtek WLAN Driver (Version: 2.00.0006)
Revo Uninstaller 1.92 (Version: 1.92)
Segoe UI (Version: 15.4.2271.0615)
Skins (Version: 2008.0422.2139.36895)
Skype™ 6.1 (Version: 6.1.129)
SoulseekQt
Sound Club
Spotify (Version: 0.3.18)
Synaptics Pointing Device Driver (Version: 11.2.4.0)
TOSHIBA ConfigFree (Version: 7.3.19)
TOSHIBA Hardware Setup (Version: 2.00.08)
TOSHIBA Recovery Disc Creator (Version: 2.0.0.1b)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TRORDCLauncher (Version: 1.0.0.1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VLC media player 2.0.5 (Version: 2.0.5)
Vuze (Version: 4.9.0.0)
Windows Driver Package - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 61%
Total physical RAM: 2813.08 MB
Available physical RAM: 1082.23 MB
Total Pagefile: 5848.7 MB
Available Pagefile: 4163.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.59 MB

========================= Partitions: =====================================

1 Drive c: (Vista) (Fixed) (Total:74.37 GB) (Free:29.65 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:73.21 GB) (Free:28.37 GB) NTFS
4 Drive f: (External) (Fixed) (Total:931.51 GB) (Free:627.31 GB) NTFS

========================= Users: ========================================

User accounts for \\ANDY-LAPTOP

2A0716F89BDF4AC096C4 A3A8CAA308CD4C7F997C Administrator
Andy Guest


**** End of log ****






Farbar Service Scanner Version: 03-03-2013
Ran by Andy (administrator) on 19-03-2013 at 15:16:18
Running from "C:\Users\Andy\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2013-02-14 05:20] - [2013-01-04 11:28] - 0905576 ____A (Microsoft Corporation) 74E2D020C47BB2B2FCCBA29A518A7EB4

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****



# AdwCleaner v2.115 - Logfile created 03/19/2013 at 15:17:50
# Updated 17/03/2013 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Andy - ANDY-LAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Andy\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\END
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Users\Andy\AppData\Local\AVG Secure Search

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Software
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.19401

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.2 (en-US)

File : C:\Users\Andy\AppData\Roaming\Mozilla\Firefox\Profiles\madvdc5i.default-1348026479574\prefs.js

Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.34");
Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");

-\\ Opera v12.14.1738.0

File : C:\Users\Andy\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [4145 octets] - [19/03/2013 15:17:50]

########## EOF - C:\AdwCleaner[S1].txt - [4205 octets] ##########




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.7.2 (03.15.2013:1)
OS: Windows Vista ™ Home Premium x86
Ran by Andy on 19/03/2013 at 15:27:52.14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted the following from C:\Users\Andy\AppData\Roaming\mozilla\firefox\profiles\madvdc5i.default-1348026479574\prefs.js

user_pref("browser.newtabpage.blocked", "{\"DMVQjvXWn0wScLq5AK9iKQ==\":1,\"fKwOu3V9EztRGA3anMXYRg==\":1,\"f07olgPgDf41Rum6sEnEYg==\":1,\"Qr9T7jGmGEfP0m1nC0IGyQ==\":1,\"awSF/DC



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 19/03/2013 at 15:34:09.55
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~







Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/19/2013 03:45:13 PM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Automatic

* DFSR [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost
::1 localhost

Program finished at: 03/19/2013 03:45:31 PM
Execution time: 0 hours(s), 0 minute(s), and 18 seconds(s)




"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AVG_UI" "AVG User Interface" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgui.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics, Inc." "c:\program files\synaptics\syntp\syntpenh.exe"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll"
+ "wlmailhtml" "Windows Live Mail" "Microsoft Corporation" "c:\program files\windows live\mail\mailcomm.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\andy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "ACE Context Menu" "" "c:\program files\ati technologies\ati.ace\core-static\atiacmxx.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgse.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\andy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\andy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\andy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
"Task Scheduler" "" "" ""
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AdvancedSystemCareService6" "Advanced SystemCare Service" "IObit" "c:\program files\iobit\advanced systemcare 6\ascservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AVGIDSAgent" "Provides Identity Protection Against Cyber Crime." "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgidsagent.exe"
+ "avgwd" "AVG Watchdog Service" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg2013\avgwdsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files\pc connectivity solution\servicelayer.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe"
+ "TODDSrv" "TDCSrv Application" "TOSHIBA Corporation" "c:\windows\system32\toddsrv.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AgereSoftModem" "SoftModem Device Driver" "Agere Systems" "c:\windows\system32\drivers\agrsm.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "AtiPcie" "ATI PCIE Driver for ATI PCIE chipset" "ATI Technologies Inc." "c:\windows\system32\drivers\atipcie.sys"
+ "AVGIDSDriver" "AVG Technologies IDS Application Activity Monitor Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsdriverx.sys"
+ "AVGIDSHX" "AVG Technologies IDS Application Activity Monitor Helper Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidshx.sys"
+ "AVGIDSShim" "AVG Technologies IDS Application Activity Monitor Shim Loader Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsshimx.sys"
+ "Avgldx86" "AVG AVI Loader Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgldx86.sys"
+ "Avglogx" "AVG Logging Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avglogx.sys"
+ "avgmfx86" "AVG Resident Shield Minifilter Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgmfx86.sys"
+ "Avgrkx86" "AVG Anti-Rootkit Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgrkx86.sys"
+ "Avgtdix" "AVG Network connection watcher" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgtdix.sys"
+ "avgtp" "" "AVG Technologies" "c:\windows\system32\drivers\avgtpx86.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "DigiNet" "Digidesign Ethernet Support" "Digidesign, A Division of Avid Technology, Inc." "c:\windows\system32\drivers\diginet.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "FwLnk" "TOSHIBA Firmware Linkage 32-bit Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\fwlnk.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "HSF_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv3.sys"
+ "HSFHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl3.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmb.sys"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbo.sys"
+ "nmwcdnsu" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\nmwcdnsu.sys"
+ "nmwcdnsuc" "Nokia USB Phone Generic Client" "Nokia" "c:\windows\system32\drivers\nmwcdnsuc.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfd.sys"
+ "RTHDMIAzAudService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rthdmiv.sys"
+ "RTL8169" "Realtek 8136/8168/8169 NDIS6 32-bit Driver " "Realtek " "c:\windows\system32\drivers\rtlh86.sys"
+ "RTL8187B" "Realtek RTL8187B NDIS Driver" "Realtek Semiconductor Corporation " "c:\windows\system32\drivers\rtl8187b.sys"
+ "RtlProt" "Realtke RtlProt WLAN Utility Protocol Driver" "Windows ® Codename Longhorn DDK provider" "c:\windows\system32\drivers\rtlprot.sys"
+ "RTSTOR" "" "" "File not found: system32\drivers\RTSTOR.SYS"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SmartDefragDriver" "File driver of SmartDefrag" "" "c:\windows\system32\drivers\smartdefragdriver.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics, Inc." "c:\windows\system32\drivers\syntp.sys"
+ "tdcmdpst" "Toshiba ODD Writing Driver For x86." "TOSHIBA Corporation." "c:\windows\system32\drivers\tdcmdpst.sys"
+ "tos_sps32" "tos_sps2" "TOSHIBA Corporation" "c:\windows\system32\drivers\tos_sps32.sys"
+ "TVALZ" "TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalz_o.sys"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerflt.sys"
+ "USBAAPL" "" "" "File not found: System32\Drivers\usbaapl.sys"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltj.sys"
+ "UVCFTR" "UVCFTR_S.sys" "Chicony Electronics Co., Ltd." "c:\windows\system32\drivers\uvcftr_s.sys"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt3.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzaacdecfilter.dll"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\ezdmp4muxfilter.dll"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzmp4source.dll"
+ "Emuzed H264 Video Decoder-Filter" "Emuzed H.264 Video Transform Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\ezdh264dectfilter.dll"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzmp3sourcefilter.dll"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzdecmp4_h263.dll"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files\common files\nokia\codecs\nokiah264hpmpdectfilter.dll"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files\common files\nokia\codecs\nokiadecmp4asp_h263.dll"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "TOSHIBA Audio Rate Converter" "TOSHIBA Audio Rate Converter" "TOSHIBA Corporation" "c:\program files\common files\toshiba shared\tosarc.ax"
+ "TOSHIBA DualMono" "TOSHIBA DualMono" "TOSHIBA Corporation" "c:\program files\common files\toshiba shared\tosdualmono.ax"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"C:\Users\Andy\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Amazon.co.uk - Online Shopping" "" "Amazon EU S.a.r.l." "C:\Program Files\windows sidebar\shared gadgets\amazonSearch.Gadget\Gadget.xml"
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.Gadget\en-us\Gadget.xml"
+ "Feed Headlines" "Track the latest news, sports, and entertainment headlines." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\RSSFeeds.Gadget\en-us\Gadget.xml"
+ "Search eBay" "Quick search eBay" "eBay Inc." "C:\Program Files\windows sidebar\shared gadgets\eBaySearch.Gadget\Gadget.xml"
+ "Slide Show" "Show a continuous slide show of your pictures." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\SlideShow.gadget\en-us\Gadget.xml"



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 19 March 2013 - 11:29 AM

Current issues?



#7 StevePotatoes

StevePotatoes
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 19 March 2013 - 05:33 PM

OK well I managed to download and install the flash update with no problem (other than the fact that it tried to install chrome!) and so flash is working again!  Yay.  My whole system is still slow though.  Can you see anything from the results that I might be able to do to speed it up a little?  Or can you think of any other suggestions?



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 19 March 2013 - 05:36 PM

Please reinstall AVG.Some of the AVG drivers fails to load during bootup which could cause slowness

 

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Update JAVA

Uninstall old versions of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Let me know if that helps
 



#9 StevePotatoes

StevePotatoes
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 19 March 2013 - 11:37 PM

It seems to have helped.  It's definitely running a bit better now.  It's still really slow compared to how it used to be though.  I guess I'll just have to put up with it.  I'm really impressed with everything you've done though.  Thanks a billion!  This site is fantastic!!



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 20 March 2013 - 05:43 AM

If you really want to troubleshoot the slowness issue you can start with this guide

 

http://support.microsoft.com/kb/929135

 

Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)
 



#11 StevePotatoes

StevePotatoes
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 20 March 2013 - 09:31 PM

I have some serious issues now.  :(  I deleted my restore points and tha tseemed to have a good impact.  My PC started working a little fast e and overall responsiveness was maybe a tiny bit better.  Now, on your recommendation, which seemed like a strange idea in the first place, I uninstalled AVG and installed Microsoft security essentials.  It's ended up changing the whole look of my desktop and it's also telling me that windows defender is not updating properly.

 

I need help quick~!

x



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 20 March 2013 - 10:57 PM

Microsoft security essentials will disable windows defender.MSE has inbuilt features similar to windows defender.

 

It's ended up changing the whole look of my desktop

 

Can you explain



#13 StevePotatoes

StevePotatoes
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 21 March 2013 - 05:29 PM

Oh I see, right I kinda just assumed that they would work together.  The desktop problem is all fixed now too.  Ace ace ace.  I think it was the sytem restores that was slowing it all down in the end.  It's seems to be working better now.  Thanks.



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:16 AM

Posted 21 March 2013 - 06:25 PM

:bananas:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users