Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Sound mutes every few minutes


  • This topic is locked This topic is locked
22 replies to this topic

#1 rebeccabecky

rebeccabecky

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 17 August 2013 - 02:33 PM

The wave control keeps muting itself.  Sometimes it will work for 15-30 minutes, other times it will mute after only a minute or two.

 

I have run malwarebytes and it tells me that there are no infections on the computer.

 

Thank you so much for you time... I appreciate any help!

 

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.17.2
Run by Becky at 14:23:28 on 2013-08-17
Microsoft Windows XP Home Edition  5.1.2600.3.1252.1.1033.18.2038.786 [GMT -5:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ================
.
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Windows Live\Family Safety\fsssvc.exe
C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\STacSV.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\WINDOWS\LockStatusTray.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
BHO: Windows Live Family Safety Browser Helper Class: {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - c:\program files\windows live\family safety\fssbho.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [ROC_ROC_APR2013_AV] c:\documents and settings\becky\application data\avg april 2013 campaign\AVG-Secure-Search-Update.exe /PROMPT --mid e5328e34552147d0866cd156a7b75472-5dac8b226c1e97dbd030688df1a509355afe11fe --CMPID ROC_APR2013_AV --CMPIDEXTRA 2013
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [SigmatelSysTrayApp] c:\program files\sigmatel\c-major audio\wdm\stsystra.exe
mRun: [LockStatusTray] c:\windows\LockStatusTray.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [fssui] "c:\program files\windows live\family safety\fsui.exe" -autorun
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\setpoint.lnk - c:\program files\setpoint\SetPoint.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1358562965109
DPF: {B479199A-1242-4E3C-AD81-7F0DF801B4AE} - hxxp://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{32A1A32D-9A3A-4888-B216-8E0D40B340E6} : DHCPNameServer = 192.168.1.254
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Notify: igfxcui - igfxdev.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\becky\application data\mozilla\firefox\profiles\zcpqzql3.default\
FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: c:\windows\npMSDM.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_224.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 246072]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-11-15 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 171320]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 182072]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-7-4 4939312]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-7-23 283136]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2013-2-23 54760]
R2 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [2013-1-19 10384]
.
=============== Created Last 30 ================
.
2013-07-23 01:47:41    --------    d-----w-    c:\windows\system32\MRT
.
==================== Find3M  ====================
.
2013-07-26 02:47:17    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-07-26 02:47:13    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-07-26 02:47:12    1469440    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-07-25 15:52:59    385024    ----a-w-    c:\windows\system32\html.iec
2013-07-20 06:51:00    246072    ----a-w-    c:\windows\system32\drivers\avglogx.sys
2013-07-20 06:50:56    60216    ----a-w-    c:\windows\system32\drivers\avgidshx.sys
2013-07-20 06:50:56    208184    ----a-w-    c:\windows\system32\drivers\avgidsdriverx.sys
2013-07-20 06:50:50    171320    ----a-w-    c:\windows\system32\drivers\avgldx86.sys
2013-07-10 10:37:53    406016    ----a-w-    c:\windows\system32\usp10.dll
2013-07-10 06:32:40    39224    ----a-w-    c:\windows\system32\drivers\avgrkx86.sys
2013-07-04 03:03:25    2149888    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08:30    2028544    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-06-11 19:16:18    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-06-11 19:16:17    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-04 07:23:02    562688    ----a-w-    c:\windows\system32\qedit.dll
2013-06-04 01:40:45    1876736    ----a-w-    c:\windows\system32\win32k.sys
2013-05-28 01:59:37    590848    ----a-w-    c:\windows\system32\rpcrt4.dll
2013-05-28 00:41:07    6144    ----a-w-    c:\windows\system32\xpsp4res.dll
.
============= FINISH: 14:24:43.20 ===============
 

 

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:42 PM

Posted 17 August 2013 - 08:59 PM


Hello rebeccabecky

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
When they are complete let me have the two reports and let me know how things are running.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 17 August 2013 - 10:42 PM

Thank you so much for the instructions.  I will keep an eye on how things are running. 

 

Here is the AdwCleaner report.

 

# AdwCleaner v2.306 - Logfile created 08/17/2013 at 22:01:46
# Updated 19/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Becky - PHILLAPTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Becky\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\76322c23820ae7473cdebbff3eceb262

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v23.0.1 (en-US)

File : C:\Documents and Settings\Phil\Application Data\Mozilla\Firefox\Profiles\vhqojy6i.default-1367876664312\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\Becky\Application Data\Mozilla\Firefox\Profiles\zcpqzql3.default\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\Benjamin\Application Data\Mozilla\Firefox\Profiles\pkimcyg4.default\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\cgxvn6wt.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1463 octets] - [17/08/2013 22:01:46]

########## EOF - C:\AdwCleaner[S1].txt - [1523 octets] ##########
 

 

Here is the JRT report

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.9 (08.17.2013:3)
OS: Microsoft Windows XP x86
Ran by Becky on Sat 08/17/2013 at 22:12:15.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Documents and Settings\Becky\Application Data\mozilla\firefox\profiles\zcpqzql3.default\minidumps [2 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 08/17/2013 at 22:30:52.48
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:42 PM

Posted 17 August 2013 - 10:49 PM


Hello rebeccabecky

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 17 August 2013 - 11:57 PM

Here is the report.  There were no problems running it.

 

I'm not sure how the computer is running yet.  When I opened the volume control for the first time after running ComboFix, the Wave control was muted.  It has not re-muted yet, though.

 

ComboFix 13-08-16.03 - Becky 08/17/2013  23:18:57.1.2 - x86
Microsoft Windows XP Home Edition  5.1.2600.3.1252.1.1033.18.2038.1231 [GMT -5:00]
Running from: c:\documents and settings\Becky\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\drivers\1028_DELL_XPS_Vostro 1400                     .MRK
c:\windows\system32\drivers\DELL_XPS_Vostro 1400                     .MRK
.
.
(((((((((((((((((((((((((   Files Created from 2013-07-18 to 2013-08-18  )))))))))))))))))))))))))))))))
.
.
2013-08-18 03:12 . 2013-08-18 03:12    --------    d-----w-    c:\windows\ERUNT
2013-08-17 16:47 . 2013-08-17 16:48    --------    d-----w-    c:\documents and settings\Administrator
2013-08-17 16:27 . 2013-08-17 16:27    --------    d-----w-    c:\documents and settings\Benjamin\Application Data\Malwarebytes
2013-07-23 01:47 . 2013-08-15 13:46    --------    d-----w-    c:\windows\system32\MRT
2013-07-22 18:09 . 2013-07-22 18:09    --------    d-----w-    c:\documents and settings\Benjamin\Application Data\Unity
2013-07-22 18:04 . 2013-07-22 18:04    --------    d-----w-    c:\documents and settings\Benjamin\Local Settings\Application Data\Unity
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-26 02:47 . 2006-03-04 03:33    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-07-26 02:47 . 2004-08-04 10:00    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-07-26 02:47 . 2004-08-04 10:00    1469440    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-07-25 15:52 . 2004-08-04 10:00    385024    ----a-w-    c:\windows\system32\html.iec
2013-07-20 06:51 . 2012-09-21 08:46    246072    ----a-w-    c:\windows\system32\drivers\avglogx.sys
2013-07-20 06:50 . 2012-10-22 18:02    208184    ----a-w-    c:\windows\system32\drivers\avgidsdriverx.sys
2013-07-20 06:50 . 2012-10-15 08:48    60216    ----a-w-    c:\windows\system32\drivers\avgidshx.sys
2013-07-20 06:50 . 2012-10-02 08:30    171320    ----a-w-    c:\windows\system32\drivers\avgldx86.sys
2013-07-10 10:37 . 2004-08-04 10:00    406016    ----a-w-    c:\windows\system32\usp10.dll
2013-07-10 06:32 . 2012-09-14 08:05    39224    ----a-w-    c:\windows\system32\drivers\avgrkx86.sys
2013-07-04 03:03 . 2005-03-30 01:21    2149888    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08 . 2005-03-30 01:01    2028544    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-07-01 06:45 . 2012-11-16 04:33    96568    ----a-w-    c:\windows\system32\drivers\avgmfx86.sys
2013-06-11 19:16 . 2013-01-19 20:02    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-06-11 19:16 . 2013-01-19 20:02    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-04 07:23 . 2004-08-04 10:00    562688    ----a-w-    c:\windows\system32\qedit.dll
2013-06-04 01:40 . 2004-08-04 10:00    1876736    ----a-w-    c:\windows\system32\win32k.sys
2013-05-28 01:59 . 2004-08-04 10:00    590848    ----a-w-    c:\windows\system32\rpcrt4.dll
2013-05-28 00:41 . 2013-03-20 12:01    6144    ----a-w-    c:\windows\system32\xpsp4res.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-08-30 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-08-30 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-08-30 137752]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2007-07-02 159744]
"SigmatelSysTrayApp"="c:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
"LockStatusTray"="c:\windows\LockStatusTray.exe" [2008-02-19 192512]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-11-26 2289664]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2013-07-01 4411440]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-12-12 152544]
"fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2010-04-28 647528]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-5-17 568176]
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2013-1-19 50688]
SetPoint.lnk - c:\program files\SetPoint\SetPoint.exe [2013-1-19 813584]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute    REG_MULTI_SZ       autocheck autochk *\0c:\progra~1\AVG\AVG2013\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgemcx.exe"=
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [10/15/2012 3:48 AM 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [9/21/2012 3:46 AM 246072]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [9/14/2012 3:05 AM 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [10/22/2012 1:02 PM 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [9/21/2012 3:45 AM 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [10/2/2012 3:30 AM 171320]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [9/21/2012 3:46 AM 182072]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [7/4/2013 3:53 PM 4939312]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [7/23/2013 7:09 PM 283136]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [1/19/2013 2:14 PM 10384]
.
Contents of the 'Scheduled Tasks' folder
.
2013-08-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-19 19:16]
.
2013-05-17 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 22:57]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\documents and settings\Becky\Application Data\Mozilla\Firefox\Profiles\zcpqzql3.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-ROC_ROC_APR2013_AV - c:\documents and settings\Becky\Application Data\AVG April 2013 Campaign\AVG-Secure-Search-Update.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-08-17 23:44
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...  
.
scanning hidden autostart entries ...
.
scanning hidden files ...  
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1120)
c:\windows\system32\WININET.dll
c:\windows\System32\BCMLogon.dll
c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80.DLL
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll
c:\windows\system32\igfxdev.dll
.
- - - - - - - > 'lsass.exe'(1184)
c:\windows\system32\WININET.dll
.
Completion time: 2013-08-17  23:51:09
ComboFix-quarantined-files.txt  2013-08-18 04:51
.
Pre-Run: 480,542,846,976 bytes free
Post-Run: 482,606,383,104 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 218CF609A0E15A27BDB6D415FCF84250
8F558EB6672622401DA993E1E865C861
 



#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:42 PM

Posted 18 August 2013 - 06:55 AM


Hello rebeccabecky

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================
and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
  • Exit/Close RogueKiller+
send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 18 August 2013 - 02:44 PM

TDSS report

 

14:20:02.0421 2760  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:20:02.0968 2760  ============================================================
14:20:02.0968 2760  Current date / time: 2013/08/18 14:20:02.0968
14:20:02.0968 2760  SystemInfo:
14:20:02.0968 2760  
14:20:02.0968 2760  OS Version: 5.1.2600 ServicePack: 3.0
14:20:02.0968 2760  Product type: Workstation
14:20:02.0968 2760  ComputerName: PHILLAPTOP
14:20:02.0968 2760  UserName: Becky
14:20:02.0968 2760  Windows directory: C:\WINDOWS
14:20:02.0968 2760  System windows directory: C:\WINDOWS
14:20:02.0968 2760  Processor architecture: Intel x86
14:20:02.0968 2760  Number of processors: 2
14:20:02.0968 2760  Page size: 0x1000
14:20:02.0968 2760  Boot type: Normal boot
14:20:02.0968 2760  ============================================================
14:20:04.0109 2760  BG loaded
14:20:04.0578 2760  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:20:04.0593 2760  ============================================================
14:20:04.0593 2760  \Device\Harddisk0\DR0:
14:20:04.0593 2760  MBR partitions:
14:20:04.0593 2760  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
14:20:04.0593 2760  ============================================================
14:20:04.0968 2760  C: <-> \Device\Harddisk0\DR0\Partition1
14:20:04.0968 2760  ============================================================
14:20:04.0968 2760  Initialize success
14:20:04.0968 2760  ============================================================
14:25:31.0390 4000  ============================================================
14:25:31.0390 4000  Scan started
14:25:31.0390 4000  Mode: Manual; SigCheck; TDLFS;
14:25:31.0390 4000  ============================================================
14:25:31.0609 4000  ================ Scan system memory ========================
14:25:31.0609 4000  System memory - ok
14:25:31.0609 4000  ================ Scan services =============================
14:25:31.0703 4000  Abiosdsk - ok
14:25:31.0703 4000  abp480n5 - ok
14:25:31.0750 4000  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:25:33.0265 4000  ACPI - ok
14:25:33.0296 4000  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
14:25:33.0453 4000  ACPIEC - ok
14:25:33.0531 4000  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:25:33.0562 4000  AdobeFlashPlayerUpdateSvc - ok
14:25:33.0562 4000  adpu160m - ok
14:25:33.0640 4000  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
14:25:33.0750 4000  aec - ok
14:25:33.0781 4000  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
14:25:33.0875 4000  AFD - ok
14:25:33.0875 4000  Aha154x - ok
14:25:33.0890 4000  aic78u2 - ok
14:25:33.0890 4000  aic78xx - ok
14:25:33.0953 4000  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
14:25:34.0093 4000  Alerter - ok
14:25:34.0109 4000  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
14:25:34.0265 4000  ALG - ok
14:25:34.0281 4000  AliIde - ok
14:25:34.0281 4000  amsint - ok
14:25:34.0328 4000  [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
14:25:34.0531 4000  ApfiltrService - ok
14:25:34.0625 4000  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:25:34.0640 4000  Apple Mobile Device - ok
14:25:34.0640 4000  AppMgmt - ok
14:25:34.0703 4000  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
14:25:34.0796 4000  Arp1394 - ok
14:25:34.0796 4000  asc - ok
14:25:34.0812 4000  asc3350p - ok
14:25:34.0812 4000  asc3550 - ok
14:25:34.0843 4000  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:25:35.0046 4000  AsyncMac - ok
14:25:35.0078 4000  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
14:25:35.0187 4000  atapi - ok
14:25:35.0203 4000  Atdisk - ok
14:25:35.0218 4000  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:25:35.0343 4000  Atmarpc - ok
14:25:35.0375 4000  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
14:25:35.0468 4000  AudioSrv - ok
14:25:35.0531 4000  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
14:25:35.0625 4000  audstub - ok
14:25:35.0796 4000  [ 4DB93F4DB7077801D2D82013506AC1D0 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
14:25:36.0000 4000  AVGIDSAgent - ok
14:25:36.0031 4000  [ 4D7E34E36E586EA26F171A258341BD80 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
14:25:36.0156 4000  AVGIDSDriver - ok
14:25:36.0156 4000  [ 7C8E88549BCDAAC965B1B724C175F7A9 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
14:25:36.0187 4000  AVGIDSHX - ok
14:25:36.0234 4000  [ A426B2DC795531D99E2EE1952AEC051A ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
14:25:36.0250 4000  AVGIDSShim - ok
14:25:36.0265 4000  [ 2018C4E9A40B122408763A5635CF14D9 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
14:25:36.0281 4000  Avgldx86 - ok
14:25:36.0296 4000  [ E2B9CF2CF787C6978E7CC898E9684E48 ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
14:25:36.0328 4000  Avglogx - ok
14:25:36.0343 4000  [ 3F59750A3AA55C46663801E7C2FD1E2B ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
14:25:36.0359 4000  Avgmfx86 - ok
14:25:36.0375 4000  [ EDDE28E993496EE1DC3F0937DFF7BF28 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
14:25:36.0390 4000  Avgrkx86 - ok
14:25:36.0437 4000  [ 14370FB29526F593C04FA48B5D69F7F0 ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
14:25:36.0468 4000  Avgtdix - ok
14:25:36.0531 4000  [ 48939D9F350AEF9370F03A1E49A49BE2 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
14:25:36.0562 4000  avgwd - ok
14:25:36.0625 4000  [ 74A65415DFAAD20F06E7550FA9B6E012 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
14:25:36.0687 4000  b57w2k - ok
14:25:36.0765 4000  [ 37F385A93C620CBE0F89C17E45F697A1 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
14:25:36.0890 4000  BCM43XX - ok
14:25:36.0937 4000  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:25:37.0031 4000  Beep - ok
14:25:37.0125 4000  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
14:25:37.0265 4000  BITS - ok
14:25:37.0328 4000  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:25:37.0343 4000  Bonjour Service - ok
14:25:37.0390 4000  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
14:25:37.0484 4000  Browser - ok
14:25:37.0546 4000  [ 885B6D0F826A216EEE4C3AD883809012 ] BTKRNL          C:\WINDOWS\system32\DRIVERS\btkrnl.sys
14:25:37.0593 4000  BTKRNL - ok
14:25:37.0687 4000  [ 467BC618DEBA4F8DB5A1A5E87510C335 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
14:25:37.0718 4000  btwdins - ok
14:25:37.0781 4000  [ 57E91E9925976BBC98984EEBAAF1D84C ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
14:25:37.0828 4000  BTWUSB - ok
14:25:37.0968 4000  catchme - ok
14:25:37.0984 4000  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
14:25:38.0156 4000  cbidf2k - ok
14:25:38.0156 4000  cd20xrnt - ok
14:25:38.0187 4000  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
14:25:38.0296 4000  Cdaudio - ok
14:25:38.0343 4000  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
14:25:38.0437 4000  Cdfs - ok
14:25:38.0453 4000  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:25:38.0562 4000  Cdrom - ok
14:25:38.0562 4000  [ 84853B3FD012251690570E9E7E43343F ] cercsr6         C:\WINDOWS\system32\drivers\cercsr6.sys
14:25:38.0593 4000  cercsr6 ( UnsignedFile.Multi.Generic ) - warning
14:25:38.0593 4000  cercsr6 - detected UnsignedFile.Multi.Generic (1)
14:25:38.0593 4000  Changer - ok
14:25:38.0625 4000  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
14:25:38.0734 4000  CiSvc - ok
14:25:38.0765 4000  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
14:25:38.0890 4000  ClipSrv - ok
14:25:38.0937 4000  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
14:25:39.0046 4000  CmBatt - ok
14:25:39.0046 4000  CmdIde - ok
14:25:39.0062 4000  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
14:25:39.0156 4000  Compbatt - ok
14:25:39.0171 4000  COMSysApp - ok
14:25:39.0171 4000  Cpqarray - ok
14:25:39.0218 4000  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
14:25:39.0312 4000  CryptSvc - ok
14:25:39.0312 4000  dac2w2k - ok
14:25:39.0312 4000  dac960nt - ok
14:25:39.0390 4000  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:25:39.0453 4000  DcomLaunch - ok
14:25:39.0500 4000  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
14:25:39.0609 4000  Dhcp - ok
14:25:39.0640 4000  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
14:25:39.0750 4000  Disk - ok
14:25:39.0750 4000  dmadmin - ok
14:25:39.0843 4000  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
14:25:39.0984 4000  dmboot - ok
14:25:40.0031 4000  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
14:25:40.0156 4000  dmio - ok
14:25:40.0203 4000  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
14:25:40.0312 4000  dmload - ok
14:25:40.0359 4000  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
14:25:40.0437 4000  dmserver - ok
14:25:40.0468 4000  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
14:25:40.0578 4000  DMusic - ok
14:25:40.0640 4000  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:25:40.0671 4000  Dnscache - ok
14:25:40.0718 4000  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:25:40.0828 4000  Dot3svc - ok
14:25:40.0843 4000  dpti2o - ok
14:25:40.0875 4000  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
14:25:40.0984 4000  drmkaud - ok
14:25:41.0015 4000  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
14:25:41.0109 4000  EapHost - ok
14:25:41.0156 4000  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
14:25:41.0265 4000  ERSvc - ok
14:25:41.0296 4000  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
14:25:41.0328 4000  Eventlog - ok
14:25:41.0375 4000  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
14:25:41.0437 4000  EventSystem - ok
14:25:41.0468 4000  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
14:25:41.0593 4000  Fastfat - ok
14:25:41.0656 4000  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:25:41.0703 4000  FastUserSwitchingCompatibility - ok
14:25:41.0750 4000  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
14:25:41.0843 4000  Fdc - ok
14:25:41.0890 4000  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
14:25:41.0984 4000  Fips - ok
14:25:42.0015 4000  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
14:25:42.0109 4000  Flpydisk - ok
14:25:42.0140 4000  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
14:25:42.0234 4000  FltMgr - ok
14:25:42.0281 4000  [ E0087225B137E57239FF40F8AE82059B ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
14:25:42.0296 4000  fssfltr - ok
14:25:42.0359 4000  [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
14:25:42.0390 4000  fsssvc - ok
14:25:42.0406 4000  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:25:42.0531 4000  Fs_Rec - ok
14:25:42.0546 4000  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:25:42.0656 4000  Ftdisk - ok
14:25:42.0687 4000  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
14:25:42.0703 4000  GEARAspiWDM - ok
14:25:42.0734 4000  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:25:42.0843 4000  Gpc - ok
14:25:42.0875 4000  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:25:42.0968 4000  HDAudBus - ok
14:25:43.0093 4000  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:25:43.0187 4000  helpsvc - ok
14:25:43.0234 4000  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
14:25:43.0328 4000  HidServ - ok
14:25:43.0343 4000  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:25:43.0453 4000  hidusb - ok
14:25:43.0500 4000  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
14:25:43.0609 4000  hkmsvc - ok
14:25:43.0609 4000  hpn - ok
14:25:43.0703 4000  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
14:25:43.0765 4000  HTTP - ok
14:25:43.0812 4000  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
14:25:43.0921 4000  HTTPFilter - ok
14:25:43.0921 4000  i2omgmt - ok
14:25:43.0937 4000  i2omp - ok
14:25:43.0968 4000  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:25:44.0109 4000  i8042prt - ok
14:25:44.0312 4000  [ 8B998E6C0AEBBAECD6DA33DF947695D3 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:25:44.0609 4000  ialm - ok
14:25:44.0687 4000  [ 2358C53F30CB9DCD1D3843C4E2F299B2 ] iastor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
14:25:44.0718 4000  iastor - ok
14:25:44.0765 4000  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
14:25:44.0968 4000  Imapi - ok
14:25:45.0015 4000  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
14:25:45.0109 4000  ImapiService - ok
14:25:45.0109 4000  ini910u - ok
14:25:45.0125 4000  IntelIde - ok
14:25:45.0156 4000  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:25:45.0250 4000  intelppm - ok
14:25:45.0281 4000  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
14:25:45.0375 4000  Ip6Fw - ok
14:25:45.0437 4000  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:25:45.0531 4000  IpFilterDriver - ok
14:25:45.0546 4000  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:25:45.0656 4000  IpInIp - ok
14:25:45.0687 4000  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:25:45.0796 4000  IpNat - ok
14:25:45.0843 4000  [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:25:45.0875 4000  iPod Service - ok
14:25:45.0921 4000  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:25:46.0031 4000  IPSec - ok
14:25:46.0046 4000  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
14:25:46.0171 4000  IRENUM - ok
14:25:46.0218 4000  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:25:46.0328 4000  isapnp - ok
14:25:46.0421 4000  [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
14:25:46.0437 4000  JavaQuickStarterService - ok
14:25:46.0484 4000  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:25:46.0578 4000  Kbdclass - ok
14:25:46.0609 4000  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:25:46.0703 4000  kbdhid - ok
14:25:46.0718 4000  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
14:25:46.0859 4000  kmixer - ok
14:25:46.0921 4000  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
14:25:47.0000 4000  KSecDD - ok
14:25:47.0046 4000  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
14:25:47.0109 4000  lanmanserver - ok
14:25:47.0156 4000  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:25:47.0218 4000  lanmanworkstation - ok
14:25:47.0281 4000  [ 9FFD1CF2A782F2560E78EEC4B8B8689E ] LBeepKE         C:\WINDOWS\system32\Drivers\LBeepKE.sys
14:25:47.0296 4000  LBeepKE - ok
14:25:47.0296 4000  lbrtfdc - ok
14:25:47.0375 4000  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
14:25:47.0562 4000  LmHosts - ok
14:25:47.0593 4000  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
14:25:47.0718 4000  Messenger - ok
14:25:47.0843 4000  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
14:25:47.0859 4000  Microsoft Office Groove Audit Service - ok
14:25:47.0921 4000  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
14:25:48.0015 4000  mnmdd - ok
14:25:48.0062 4000  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
14:25:48.0156 4000  mnmsrvc - ok
14:25:48.0171 4000  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
14:25:48.0296 4000  Modem - ok
14:25:48.0312 4000  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:25:48.0406 4000  Mouclass - ok
14:25:48.0468 4000  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:25:48.0578 4000  mouhid - ok
14:25:48.0625 4000  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
14:25:48.0718 4000  MountMgr - ok
14:25:48.0765 4000  [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:25:48.0781 4000  MozillaMaintenance - ok
14:25:48.0781 4000  mraid35x - ok
14:25:48.0796 4000  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:25:48.0906 4000  MRxDAV - ok
14:25:48.0921 4000  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:25:48.0968 4000  MRxSmb - ok
14:25:49.0015 4000  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
14:25:49.0125 4000  MSDTC - ok
14:25:49.0156 4000  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
14:25:49.0265 4000  Msfs - ok
14:25:49.0265 4000  MSIServer - ok
14:25:49.0296 4000  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:25:49.0375 4000  MSKSSRV - ok
14:25:49.0390 4000  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:25:49.0484 4000  MSPCLOCK - ok
14:25:49.0515 4000  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
14:25:49.0640 4000  MSPQM - ok
14:25:49.0656 4000  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:25:49.0765 4000  mssmbios - ok
14:25:49.0812 4000  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
14:25:49.0890 4000  Mup - ok
14:25:49.0921 4000  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
14:25:50.0046 4000  napagent - ok
14:25:50.0062 4000  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
14:25:50.0171 4000  NDIS - ok
14:25:50.0218 4000  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:25:50.0265 4000  NdisTapi - ok
14:25:50.0312 4000  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:25:50.0500 4000  Ndisuio - ok
14:25:50.0500 4000  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:25:50.0593 4000  NdisWan - ok
14:25:50.0625 4000  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
14:25:50.0671 4000  NDProxy - ok
14:25:50.0687 4000  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
14:25:50.0781 4000  NetBIOS - ok
14:25:50.0812 4000  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
14:25:50.0921 4000  NetBT - ok
14:25:50.0968 4000  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
14:25:51.0078 4000  NetDDE - ok
14:25:51.0093 4000  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
14:25:51.0171 4000  NetDDEdsdm - ok
14:25:51.0218 4000  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
14:25:51.0296 4000  Netlogon - ok
14:25:51.0312 4000  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
14:25:51.0421 4000  Netman - ok
14:25:51.0437 4000  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
14:25:51.0546 4000  NIC1394 - ok
14:25:51.0578 4000  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
14:25:51.0593 4000  Nla - ok
14:25:51.0640 4000  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
14:25:51.0750 4000  Npfs - ok
14:25:51.0781 4000  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
14:25:51.0890 4000  Ntfs - ok
14:25:51.0921 4000  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
14:25:52.0015 4000  NtLmSsp - ok
14:25:52.0078 4000  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
14:25:52.0187 4000  NtmsSvc - ok
14:25:52.0218 4000  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
14:25:52.0328 4000  Null - ok
14:25:52.0359 4000  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:25:52.0468 4000  NwlnkFlt - ok
14:25:52.0468 4000  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:25:52.0593 4000  NwlnkFwd - ok
14:25:52.0687 4000  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:25:52.0718 4000  odserv - ok
14:25:52.0734 4000  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
14:25:52.0828 4000  ohci1394 - ok
14:25:52.0859 4000  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:25:52.0875 4000  ose - ok
14:25:52.0921 4000  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
14:25:53.0031 4000  Parport - ok
14:25:53.0046 4000  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
14:25:53.0156 4000  PartMgr - ok
14:25:53.0203 4000  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
14:25:53.0328 4000  ParVdm - ok
14:25:53.0343 4000  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
14:25:53.0453 4000  PCI - ok
14:25:53.0453 4000  PCIDump - ok
14:25:53.0468 4000  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
14:25:53.0578 4000  PCIIde - ok
14:25:53.0625 4000  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
14:25:53.0734 4000  Pcmcia - ok
14:25:53.0750 4000  PDCOMP - ok
14:25:53.0750 4000  PDFRAME - ok
14:25:53.0750 4000  PDRELI - ok
14:25:53.0750 4000  PDRFRAME - ok
14:25:53.0765 4000  perc2 - ok
14:25:53.0765 4000  perc2hib - ok
14:25:53.0812 4000  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
14:25:53.0843 4000  PlugPlay - ok
14:25:53.0859 4000  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
14:25:53.0953 4000  PolicyAgent - ok
14:25:53.0984 4000  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:25:54.0078 4000  PptpMiniport - ok
14:25:54.0093 4000  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
14:25:54.0187 4000  ProtectedStorage - ok
14:25:54.0203 4000  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
14:25:54.0312 4000  PSched - ok
14:25:54.0312 4000  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:25:54.0437 4000  Ptilink - ok
14:25:54.0437 4000  ql1080 - ok
14:25:54.0453 4000  Ql10wnt - ok
14:25:54.0453 4000  ql12160 - ok
14:25:54.0453 4000  ql1240 - ok
14:25:54.0468 4000  ql1280 - ok
14:25:54.0500 4000  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:25:54.0609 4000  RasAcd - ok
14:25:54.0640 4000  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
14:25:54.0765 4000  RasAuto - ok
14:25:54.0796 4000  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:25:54.0875 4000  Rasl2tp - ok
14:25:54.0937 4000  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
14:25:55.0031 4000  RasMan - ok
14:25:55.0031 4000  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:25:55.0140 4000  RasPppoe - ok
14:25:55.0171 4000  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
14:25:55.0265 4000  Raspti - ok
14:25:55.0281 4000  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:25:55.0390 4000  Rdbss - ok
14:25:55.0421 4000  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:25:55.0515 4000  RDPCDD - ok
14:25:55.0562 4000  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
14:25:55.0609 4000  RDPWD - ok
14:25:55.0656 4000  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
14:25:55.0750 4000  RDSessMgr - ok
14:25:55.0781 4000  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
14:25:55.0890 4000  redbook - ok
14:25:55.0921 4000  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
14:25:56.0031 4000  RemoteAccess - ok
14:25:56.0078 4000  [ 355AAC141B214BEF1DBC1483AFD9BD50 ] rimmptsk        C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
14:25:56.0140 4000  rimmptsk - ok
14:25:56.0156 4000  [ A4216C71DD4F60B26418CCFD99CD0815 ] rimsptsk        C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
14:25:56.0171 4000  rimsptsk - ok
14:25:56.0187 4000  [ D231B577024AA324AF13A42F3A807D10 ] rismxdp         C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
14:25:56.0203 4000  rismxdp - ok
14:25:56.0218 4000  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
14:25:56.0312 4000  RpcLocator - ok
14:25:56.0343 4000  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll
14:25:56.0359 4000  RpcSs - ok
14:25:56.0421 4000  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
14:25:56.0546 4000  RSVP - ok
14:25:56.0562 4000  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
14:25:56.0656 4000  SamSs - ok
14:25:56.0703 4000  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
14:25:56.0796 4000  SCardSvr - ok
14:25:56.0843 4000  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
14:25:56.0953 4000  Schedule - ok
14:25:56.0984 4000  [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
14:25:57.0078 4000  sdbus - ok
14:25:57.0125 4000  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:25:57.0234 4000  Secdrv - ok
14:25:57.0281 4000  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
14:25:57.0390 4000  seclogon - ok
14:25:57.0421 4000  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
14:25:57.0531 4000  SENS - ok
14:25:57.0578 4000  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
14:25:57.0671 4000  Serial - ok
14:25:57.0687 4000  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
14:25:57.0781 4000  Sfloppy - ok
14:25:57.0843 4000  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
14:25:57.0953 4000  SharedAccess - ok
14:25:57.0984 4000  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:25:58.0015 4000  ShellHWDetection - ok
14:25:58.0015 4000  Simbad - ok
14:25:58.0015 4000  Sparrow - ok
14:25:58.0031 4000  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
14:25:58.0125 4000  splitter - ok
14:25:58.0171 4000  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
14:25:58.0250 4000  Spooler - ok
14:25:58.0265 4000  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
14:25:58.0375 4000  sr - ok
14:25:58.0421 4000  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
14:25:58.0531 4000  srservice - ok
14:25:58.0546 4000  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
14:25:58.0593 4000  Srv - ok
14:25:58.0640 4000  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
14:25:58.0750 4000  SSDPSRV - ok
14:25:58.0796 4000  [ 6F855B5625A47F3AC731A262FDC379A6 ] STacSV          C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\STacSV.exe
14:25:58.0859 4000  STacSV - ok
14:25:58.0937 4000  [ 951801DFB54D86F611F0AF47825476F9 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
14:25:59.0015 4000  STHDA - ok
14:25:59.0062 4000  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
14:25:59.0156 4000  stisvc - ok
14:25:59.0203 4000  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
14:25:59.0312 4000  swenum - ok
14:25:59.0343 4000  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
14:25:59.0453 4000  swmidi - ok
14:25:59.0453 4000  SwPrv - ok
14:25:59.0468 4000  symc810 - ok
14:25:59.0468 4000  symc8xx - ok
14:25:59.0468 4000  sym_hi - ok
14:25:59.0484 4000  sym_u3 - ok
14:25:59.0531 4000  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
14:25:59.0625 4000  sysaudio - ok
14:25:59.0656 4000  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
14:25:59.0750 4000  SysmonLog - ok
14:25:59.0796 4000  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
14:25:59.0890 4000  TapiSrv - ok
14:25:59.0937 4000  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:25:59.0968 4000  Tcpip - ok
14:26:00.0015 4000  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
14:26:00.0125 4000  TDPIPE - ok
14:26:00.0171 4000  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
14:26:00.0265 4000  TDTCP - ok
14:26:00.0281 4000  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
14:26:00.0375 4000  TermDD - ok
14:26:00.0437 4000  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
14:26:00.0546 4000  TermService - ok
14:26:00.0578 4000  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
14:26:00.0593 4000  Themes - ok
14:26:00.0609 4000  TosIde - ok
14:26:00.0656 4000  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
14:26:00.0765 4000  TrkWks - ok
14:26:00.0796 4000  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
14:26:00.0906 4000  Udfs - ok
14:26:00.0906 4000  ultra - ok
14:26:00.0953 4000  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
14:26:01.0046 4000  Update - ok
14:26:01.0093 4000  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
14:26:01.0203 4000  upnphost - ok
14:26:01.0234 4000  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
14:26:01.0343 4000  UPS - ok
14:26:01.0390 4000  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:26:01.0484 4000  usbccgp - ok
14:26:01.0531 4000  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:26:01.0625 4000  usbehci - ok
14:26:01.0656 4000  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:26:01.0765 4000  usbhub - ok
14:26:01.0812 4000  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:26:01.0906 4000  usbprint - ok
14:26:01.0937 4000  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:26:02.0046 4000  usbscan - ok
14:26:02.0046 4000  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:26:02.0171 4000  USBSTOR - ok
14:26:02.0203 4000  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:26:02.0296 4000  usbuhci - ok
14:26:02.0312 4000  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
14:26:02.0421 4000  VgaSave - ok
14:26:02.0421 4000  ViaIde - ok
14:26:02.0453 4000  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
14:26:02.0562 4000  VolSnap - ok
14:26:02.0609 4000  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
14:26:02.0718 4000  VSS - ok
14:26:02.0750 4000  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
14:26:02.0859 4000  W32Time - ok
14:26:02.0921 4000  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:26:03.0031 4000  Wanarp - ok
14:26:03.0093 4000  [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
14:26:03.0109 4000  Wdf01000 - ok
14:26:03.0109 4000  WDICA - ok
14:26:03.0156 4000  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
14:26:03.0250 4000  wdmaud - ok
14:26:03.0296 4000  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
14:26:03.0406 4000  WebClient - ok
14:26:03.0484 4000  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
14:26:03.0593 4000  winmgmt - ok
14:26:03.0609 4000  wltrysvc - ok
14:26:03.0640 4000  [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
14:26:03.0750 4000  WmdmPmSN - ok
14:26:03.0781 4000  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
14:26:03.0890 4000  WmiAcpi - ok
14:26:03.0937 4000  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:26:04.0031 4000  WmiApSrv - ok
14:26:04.0062 4000  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:26:04.0187 4000  WS2IFSL - ok
14:26:04.0234 4000  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
14:26:04.0328 4000  wscsvc - ok
14:26:04.0359 4000  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
14:26:04.0468 4000  wuauserv - ok
14:26:04.0515 4000  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
14:26:04.0625 4000  WZCSVC - ok
14:26:04.0656 4000  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
14:26:04.0750 4000  xmlprov - ok
14:26:04.0765 4000  ================ Scan global ===============================
14:26:04.0796 4000  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
14:26:04.0843 4000  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
14:26:04.0859 4000  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
14:26:04.0875 4000  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
14:26:04.0875 4000  [Global] - ok
14:26:04.0875 4000  ================ Scan MBR ==================================
14:26:04.0890 4000  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
14:26:04.0906 4000  Suspicious mbr (Forged): \Device\Harddisk0\DR0
14:26:04.0937 4000  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
14:26:04.0937 4000  \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
14:26:04.0984 4000  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
14:26:04.0984 4000  \Device\Harddisk0\DR0 - detected TDSS File System (1)
14:26:04.0984 4000  ================ Scan VBR ==================================
14:26:05.0000 4000  [ 59EE6A23392C324710886FA47470C869 ] \Device\Harddisk0\DR0\Partition1
14:26:05.0000 4000  \Device\Harddisk0\DR0\Partition1 - ok
14:26:05.0000 4000  ================ Scan active images ========================
14:26:05.0000 4000  [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
14:26:05.0000 4000  C:\WINDOWS\system32\drivers\intelppm.sys - ok
14:26:05.0000 4000  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
14:26:05.0000 4000  C:\WINDOWS\system32\drivers\videoprt.sys - ok
14:26:05.0000 4000  [ 8B998E6C0AEBBAECD6DA33DF947695D3 ] C:\WINDOWS\system32\drivers\igxpmp32.sys
14:26:05.0000 4000  C:\WINDOWS\system32\drivers\igxpmp32.sys - ok
14:26:05.0015 4000  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
14:26:05.0015 4000  C:\WINDOWS\system32\drivers\usbport.sys - ok
14:26:05.0015 4000  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
14:26:05.0015 4000  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
14:26:05.0015 4000  [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
14:26:05.0015 4000  C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
14:26:05.0015 4000  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
14:26:05.0015 4000  C:\WINDOWS\system32\drivers\usbehci.sys - ok
14:26:05.0031 4000  [ 37F385A93C620CBE0F89C17E45F697A1 ] C:\WINDOWS\system32\drivers\BCMWL5.SYS
14:26:05.0031 4000  C:\WINDOWS\system32\drivers\BCMWL5.SYS - ok
14:26:05.0031 4000  [ 74A65415DFAAD20F06E7550FA9B6E012 ] C:\WINDOWS\system32\drivers\b57xp32.sys
14:26:05.0031 4000  C:\WINDOWS\system32\drivers\b57xp32.sys - ok
14:26:05.0031 4000  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] C:\WINDOWS\system32\drivers\nic1394.sys
14:26:05.0031 4000  C:\WINDOWS\system32\drivers\nic1394.sys - ok
14:26:05.0031 4000  [ 8D04819A3CE51B9EB47E5689B44D43C4 ] C:\WINDOWS\system32\drivers\sdbus.sys
14:26:05.0031 4000  C:\WINDOWS\system32\drivers\sdbus.sys - ok
14:26:05.0046 4000  [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] C:\WINDOWS\system32\drivers\Apfiltr.sys
14:26:05.0046 4000  C:\WINDOWS\system32\drivers\Apfiltr.sys - ok
14:26:05.0046 4000  [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
14:26:05.0046 4000  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
14:26:05.0046 4000  [ 355AAC141B214BEF1DBC1483AFD9BD50 ] C:\WINDOWS\system32\drivers\rimmptsk.sys
14:26:05.0046 4000  C:\WINDOWS\system32\drivers\rimmptsk.sys - ok
14:26:05.0046 4000  [ A4216C71DD4F60B26418CCFD99CD0815 ] C:\WINDOWS\system32\drivers\rimsptsk.sys
14:26:05.0046 4000  C:\WINDOWS\system32\drivers\rimsptsk.sys - ok
14:26:05.0062 4000  [ D231B577024AA324AF13A42F3A807D10 ] C:\WINDOWS\system32\drivers\rixdptsk.sys
14:26:05.0062 4000  C:\WINDOWS\system32\drivers\rixdptsk.sys - ok
14:26:05.0062 4000  [ DED98A3E466251CCAB93D579144B048C ] C:\WINDOWS\system32\drivers\wdfldr.sys
14:26:05.0062 4000  C:\WINDOWS\system32\drivers\wdfldr.sys - ok
14:26:05.0062 4000  [ FD47474BD21794508AF449D9D91AF6E6 ] C:\WINDOWS\system32\drivers\wdf01000.sys
14:26:05.0062 4000  C:\WINDOWS\system32\drivers\wdf01000.sys - ok
14:26:05.0062 4000  [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
14:26:05.0062 4000  C:\WINDOWS\system32\drivers\mouclass.sys - ok
14:26:05.0078 4000  [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
14:26:05.0078 4000  C:\WINDOWS\system32\drivers\cdrom.sys - ok
14:26:05.0078 4000  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
14:26:05.0078 4000  C:\WINDOWS\system32\drivers\imapi.sys - ok
14:26:05.0078 4000  [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
14:26:05.0078 4000  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
14:26:05.0078 4000  [ 0F6C187D38D98F8DF904589A5F94D411 ] C:\WINDOWS\system32\drivers\cmbatt.sys
14:26:05.0078 4000  C:\WINDOWS\system32\drivers\cmbatt.sys - ok
14:26:05.0078 4000  [ 185ADA973B5020655CEE342059A86CBB ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
14:26:05.0078 4000  C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
14:26:05.0093 4000  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
14:26:05.0093 4000  C:\WINDOWS\system32\drivers\ks.sys - ok
14:26:05.0093 4000  [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
14:26:05.0093 4000  C:\WINDOWS\system32\drivers\redbook.sys - ok
14:26:05.0093 4000  [ C42584FD66CE9E17403AEBCA199F7BDB ] C:\WINDOWS\system32\drivers\wmiacpi.sys
14:26:05.0093 4000  C:\WINDOWS\system32\drivers\wmiacpi.sys - ok
14:26:05.0093 4000  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
14:26:05.0093 4000  C:\WINDOWS\system32\drivers\audstub.sys - ok
14:26:05.0109 4000  [ 885B6D0F826A216EEE4C3AD883809012 ] C:\WINDOWS\system32\drivers\btkrnl.sys
14:26:05.0109 4000  C:\WINDOWS\system32\drivers\btkrnl.sys - ok
14:26:05.0109 4000  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
14:26:05.0109 4000  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
14:26:05.0109 4000  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
14:26:05.0109 4000  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
14:26:05.0109 4000  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
14:26:05.0109 4000  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
14:26:05.0125 4000  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
14:26:05.0125 4000  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
14:26:05.0125 4000  [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
14:26:05.0125 4000  C:\WINDOWS\system32\drivers\tdi.sys - ok
14:26:05.0125 4000  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
14:26:05.0125 4000  C:\WINDOWS\system32\drivers\psched.sys - ok
14:26:05.0125 4000  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
14:26:05.0125 4000  C:\WINDOWS\system32\drivers\raspptp.sys - ok
14:26:05.0140 4000  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
14:26:05.0140 4000  C:\WINDOWS\system32\drivers\msgpc.sys - ok
14:26:05.0140 4000  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
14:26:05.0140 4000  C:\WINDOWS\system32\drivers\ptilink.sys - ok
14:26:05.0140 4000  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
14:26:05.0140 4000  C:\WINDOWS\system32\drivers\raspti.sys - ok
14:26:05.0140 4000  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
14:26:05.0140 4000  C:\WINDOWS\system32\drivers\swenum.sys - ok
14:26:05.0156 4000  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
14:26:05.0156 4000  C:\WINDOWS\system32\drivers\termdd.sys - ok
14:26:05.0156 4000  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
14:26:05.0156 4000  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
14:26:05.0156 4000  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
14:26:05.0156 4000  C:\WINDOWS\system32\drivers\update.sys - ok
14:26:05.0156 4000  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
14:26:05.0156 4000  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
14:26:05.0171 4000  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
14:26:05.0171 4000  C:\WINDOWS\system32\drivers\usbd.sys - ok
14:26:05.0171 4000  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
14:26:05.0171 4000  C:\WINDOWS\system32\drivers\usbhub.sys - ok
14:26:05.0171 4000  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
14:26:05.0171 4000  C:\WINDOWS\system32\drivers\drmk.sys - ok
14:26:05.0171 4000  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
14:26:05.0171 4000  C:\WINDOWS\system32\drivers\portcls.sys - ok
14:26:05.0187 4000  [ 951801DFB54D86F611F0AF47825476F9 ] C:\WINDOWS\system32\drivers\sthda.sys
14:26:05.0187 4000  C:\WINDOWS\system32\drivers\sthda.sys - ok
14:26:05.0187 4000  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
14:26:05.0187 4000  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
14:26:05.0187 4000  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
14:26:05.0187 4000  C:\WINDOWS\system32\drivers\fdc.sys - ok
14:26:05.0187 4000  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
14:26:05.0187 4000  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
14:26:05.0187 4000  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
14:26:05.0187 4000  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
14:26:05.0203 4000  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
14:26:05.0203 4000  C:\WINDOWS\system32\drivers\beep.sys - ok
14:26:05.0203 4000  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
14:26:05.0203 4000  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
14:26:05.0203 4000  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
14:26:05.0203 4000  C:\WINDOWS\system32\drivers\hidparse.sys - ok
14:26:05.0203 4000  [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
14:26:05.0203 4000  C:\WINDOWS\system32\drivers\kbdhid.sys - ok
14:26:05.0218 4000  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
14:26:05.0218 4000  C:\WINDOWS\system32\drivers\null.sys - ok
14:26:05.0218 4000  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
14:26:05.0218 4000  C:\WINDOWS\system32\drivers\vga.sys - ok
14:26:05.0218 4000  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
14:26:05.0218 4000  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
14:26:05.0218 4000  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
14:26:05.0218 4000  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
14:26:05.0234 4000  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
14:26:05.0234 4000  C:\WINDOWS\system32\drivers\msfs.sys - ok
14:26:05.0234 4000  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
14:26:05.0234 4000  C:\WINDOWS\system32\drivers\npfs.sys - ok
14:26:05.0234 4000  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
14:26:05.0234 4000  C:\WINDOWS\system32\drivers\rasacd.sys - ok
14:26:05.0234 4000  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
14:26:05.0234 4000  C:\WINDOWS\system32\drivers\ipsec.sys - ok
14:26:05.0250 4000  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
14:26:05.0250 4000  C:\WINDOWS\system32\drivers\tcpip.sys - ok
14:26:05.0250 4000  [ 14370FB29526F593C04FA48B5D69F7F0 ] C:\WINDOWS\system32\drivers\avgtdix.sys
14:26:05.0250 4000  C:\WINDOWS\system32\drivers\avgtdix.sys - ok
14:26:05.0250 4000  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
14:26:05.0250 4000  C:\WINDOWS\system32\drivers\ipnat.sys - ok
14:26:05.0250 4000  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
14:26:05.0250 4000  C:\WINDOWS\system32\drivers\netbt.sys - ok
14:26:05.0265 4000  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
14:26:05.0265 4000  C:\WINDOWS\system32\drivers\afd.sys - ok
14:26:05.0265 4000  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
14:26:05.0265 4000  C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
14:26:05.0265 4000  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
14:26:05.0265 4000  C:\WINDOWS\system32\drivers\netbios.sys - ok
14:26:05.0265 4000  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
14:26:05.0265 4000  C:\WINDOWS\system32\drivers\rdbss.sys - ok
14:26:05.0281 4000  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
14:26:05.0281 4000  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
14:26:05.0281 4000  [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
14:26:05.0281 4000  C:\WINDOWS\system32\drivers\fips.sys - ok
14:26:05.0281 4000  [ 2018C4E9A40B122408763A5635CF14D9 ] C:\WINDOWS\system32\drivers\avgldx86.sys
14:26:05.0281 4000  C:\WINDOWS\system32\drivers\avgldx86.sys - ok
14:26:05.0281 4000  [ 57E91E9925976BBC98984EEBAAF1D84C ] C:\WINDOWS\system32\drivers\btwusb.sys
14:26:05.0281 4000  C:\WINDOWS\system32\drivers\btwusb.sys - ok
14:26:05.0281 4000  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
14:26:05.0281 4000  C:\WINDOWS\system32\drivers\hidclass.sys - ok
14:26:05.0296 4000  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
14:26:05.0296 4000  C:\WINDOWS\system32\drivers\hidusb.sys - ok
14:26:05.0296 4000  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
14:26:05.0296 4000  C:\WINDOWS\system32\drivers\wanarp.sys - ok
14:26:05.0296 4000  [ B5B8A80875C1DEDEDA8B02765642C32F ] C:\WINDOWS\system32\drivers\arp1394.sys
14:26:05.0296 4000  C:\WINDOWS\system32\drivers\arp1394.sys - ok
14:26:05.0296 4000  [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
14:26:05.0296 4000  C:\WINDOWS\system32\drivers\mouhid.sys - ok
14:26:05.0312 4000  [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
14:26:05.0312 4000  C:\WINDOWS\system32\drivers\usbccgp.sys - ok
14:26:05.0312 4000  [ A426B2DC795531D99E2EE1952AEC051A ] C:\WINDOWS\system32\drivers\avgidsshimx.sys
14:26:05.0312 4000  C:\WINDOWS\system32\drivers\avgidsshimx.sys - ok
14:26:05.0312 4000  [ 4D7E34E36E586EA26F171A258341BD80 ] C:\WINDOWS\system32\drivers\avgidsdriverx.sys
14:26:05.0312 4000  C:\WINDOWS\system32\drivers\avgidsdriverx.sys - ok
14:26:05.0312 4000  [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
14:26:05.0312 4000  C:\WINDOWS\system32\ntdll.dll - ok
14:26:05.0328 4000  [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
14:26:05.0328 4000  C:\WINDOWS\system32\smss.exe - ok
14:26:05.0328 4000  [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
14:26:05.0328 4000  C:\WINDOWS\system32\autochk.exe - ok
14:26:05.0328 4000  [ B1EC3A650C8640BA5094D7C4F02A798B ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
14:26:05.0328 4000  C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
14:26:05.0328 4000  [ 8BEC8631AED9C58EF8DD7CE1755F86AA ] C:\Program Files\AVG\AVG2013\avgsysx.dll
14:26:05.0328 4000  C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
14:26:05.0343 4000  [ AE4D9DC676A2517DEE3E51978BCFE47C ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
14:26:05.0343 4000  C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
14:26:05.0343 4000  [ 21139ED432EFB4A8CDF715862DBDF9E0 ] C:\Program Files\AVG\AVG2013\avglogx.dll
14:26:05.0343 4000  C:\Program Files\AVG\AVG2013\avglogx.dll - ok
14:26:05.0343 4000  [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
14:26:05.0343 4000  C:\WINDOWS\system32\drivers\cdfs.sys - ok
14:26:05.0343 4000  [ AFEE19399CF992A098309F7FDF87880A ] C:\WINDOWS\system32\ntoskrnl.exe
14:26:05.0343 4000  C:\WINDOWS\system32\ntoskrnl.exe - ok
14:26:05.0359 4000  [ 48939D9F350AEF9370F03A1E49A49BE2 ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
14:26:05.0359 4000  C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
14:26:05.0359 4000  [ 8564728CB493B0704EDB9A3607B3DDE9 ] C:\Program Files\AVG\AVG2013\avgcommx.dll
14:26:05.0359 4000  C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
14:26:05.0359 4000  [ A58368EB286021D25876D351E4CF6DCB ] C:\Program Files\AVG\AVG2013\avgwd.dll
14:26:05.0359 4000  C:\Program Files\AVG\AVG2013\avgwd.dll - ok
14:26:05.0359 4000  [ 3F4DE64257DAC6B892EC2AD0CEEEFF68 ] C:\Program Files\AVG\AVG2013\avgnsx.exe
14:26:05.0359 4000  C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
14:26:05.0359 4000  [ 62D32E9C2C63C113BFD011423719B292 ] C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
14:26:05.0359 4000  C:\Program Files\AVG\AVG2013\avgkrnlapix.dll - ok
14:26:05.0375 4000  [ 4DB93F4DB7077801D2D82013506AC1D0 ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
14:26:05.0375 4000  C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
14:26:05.0375 4000  [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
14:26:05.0375 4000  C:\WINDOWS\system32\csrss.exe - ok
14:26:05.0375 4000  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
14:26:05.0375 4000  C:\WINDOWS\system32\kbdus.dll - ok
14:26:05.0375 4000  [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
14:26:05.0375 4000  C:\WINDOWS\system32\lz32.dll - ok
14:26:05.0390 4000  [ 05F3DB567EAE368AE3BBD7E973490646 ] C:\WINDOWS\system32\ntkrnlpa.exe
14:26:05.0390 4000  C:\WINDOWS\system32\ntkrnlpa.exe - ok
14:26:05.0390 4000  [ A6639BC625634614DC30392BD81C4001 ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
14:26:05.0390 4000  C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
14:26:05.0390 4000  [ 99F59B3392AD68F08BB528791F5D880D ] C:\WINDOWS\system32\oleaccrc.dll
14:26:05.0390 4000  C:\WINDOWS\system32\oleaccrc.dll - ok
14:26:05.0390 4000  [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
14:26:05.0390 4000  C:\WINDOWS\system32\rasadhlp.dll - ok
14:26:05.0406 4000  [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
14:26:05.0406 4000  C:\WINDOWS\system32\sfc.dll - ok
14:26:05.0406 4000  [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
14:26:05.0406 4000  C:\WINDOWS\system32\vga.dll - ok
14:26:05.0406 4000  [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
14:26:05.0406 4000  C:\WINDOWS\system32\wmi.dll - ok
14:26:05.0406 4000  [ 67DABFB8EB4AFA87C558504D5FCD43C8 ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
14:26:05.0406 4000  C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
14:26:05.0421 4000  [ EC45360EF69F034D2D6F52AFE88EA88D ] C:\Program Files\AVG\AVG2013\avgemcx.exe
14:26:05.0421 4000  C:\Program Files\AVG\AVG2013\avgemcx.exe - ok
14:26:05.0421 4000  [ F65BEBE969C232F60C7A13B0F00FB52C ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
14:26:05.0421 4000  C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
14:26:05.0421 4000  [ 71EA9078F6E1246B0BBD746C2999723F ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
14:26:05.0421 4000  C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
14:26:05.0421 4000  [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
14:26:05.0421 4000  C:\WINDOWS\system32\csrsrv.dll - ok
14:26:05.0421 4000  [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
14:26:05.0421 4000  C:\WINDOWS\system32\dimsntfy.dll - ok
14:26:05.0437 4000  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\WINDOWS\system32\msvcr100.dll
14:26:05.0437 4000  C:\WINDOWS\system32\msvcr100.dll - ok
14:26:05.0437 4000  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
14:26:05.0437 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll - ok
14:26:05.0437 4000  [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
14:26:05.0437 4000  C:\WINDOWS\system32\wdigest.dll - ok
14:26:05.0437 4000  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
14:26:05.0437 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll - ok
14:26:05.0453 4000  [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll
14:26:05.0453 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll - ok
14:26:05.0453 4000  [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
14:26:05.0453 4000  C:\WINDOWS\system32\dnsrslvr.dll - ok
14:26:05.0453 4000  [ BC83108B18756547013ED443B8CDB31B ] C:\WINDOWS\system32\msvcp100.dll
14:26:05.0453 4000  C:\WINDOWS\system32\msvcp100.dll - ok
14:26:05.0453 4000  [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
14:26:05.0453 4000  C:\WINDOWS\system32\secur32.dll - ok
14:26:05.0468 4000  [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
14:26:05.0468 4000  C:\WINDOWS\system32\atl.dll - ok
14:26:05.0468 4000  [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
14:26:05.0468 4000  C:\WINDOWS\system32\msasn1.dll - ok
14:26:05.0468 4000  [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
14:26:05.0468 4000  C:\WINDOWS\system32\netapi32.dll - ok
14:26:05.0468 4000  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
14:26:05.0468 4000  C:\WINDOWS\system32\oleacc.dll - ok
14:26:05.0484 4000  [ 86440EDFF27095E03741AEDC5752AA51 ] C:\WINDOWS\system32\olecnv32.dll
14:26:05.0484 4000  C:\WINDOWS\system32\olecnv32.dll - ok
14:26:05.0484 4000  [ 825D8F0021169DEE6738A9456767170B ] C:\WINDOWS\system32\iertutil.dll
14:26:05.0484 4000  C:\WINDOWS\system32\iertutil.dll - ok
14:26:05.0484 4000  [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
14:26:05.0484 4000  C:\WINDOWS\system32\es.dll - ok
14:26:05.0484 4000  [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
14:26:05.0484 4000  C:\WINDOWS\system32\raschap.dll - ok
14:26:05.0500 4000  [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
14:26:05.0500 4000  C:\WINDOWS\system32\rpcss.dll - ok
14:26:05.0500 4000  [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
14:26:05.0500 4000  C:\WINDOWS\system32\schannel.dll - ok
14:26:05.0500 4000  [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
14:26:05.0500 4000  C:\WINDOWS\system32\lsasrv.dll - ok
14:26:05.0500 4000  [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
14:26:05.0500 4000  C:\WINDOWS\system32\mswsock.dll - ok
14:26:05.0500 4000  [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
14:26:05.0500 4000  C:\WINDOWS\system32\gdi32.dll - ok
14:26:05.0515 4000  [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
14:26:05.0515 4000  C:\WINDOWS\system32\dnsapi.dll - ok
14:26:05.0515 4000  [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
14:26:05.0515 4000  C:\WINDOWS\system32\imagehlp.dll - ok
14:26:05.0515 4000  [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
14:26:05.0515 4000  C:\WINDOWS\system32\msv1_0.dll - ok
14:26:05.0515 4000  [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
14:26:05.0515 4000  C:\WINDOWS\system32\rastls.dll - ok
14:26:05.0531 4000  [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
14:26:05.0531 4000  C:\WINDOWS\system32\advapi32.dll - ok
14:26:05.0531 4000  [ 89AFA12F6A1AD5837377E0B01C11E40E ] C:\WINDOWS\system32\msxml6r.dll
14:26:05.0531 4000  C:\WINDOWS\system32\msxml6r.dll - ok
14:26:05.0531 4000  [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
14:26:05.0531 4000  C:\WINDOWS\system32\mtxclu.dll - ok
14:26:05.0531 4000  [ A1B780CD5020A2E75100D5EC0B046A08 ] C:\WINDOWS\system32\url.dll
14:26:05.0531 4000  C:\WINDOWS\system32\url.dll - ok
14:26:05.0546 4000  [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
14:26:05.0546 4000  C:\WINDOWS\system32\winhttp.dll - ok
14:26:05.0546 4000  [ D46E195D0C76D430D73576CDAC763F78 ] C:\WINDOWS\system32\wininet.dll
14:26:05.0546 4000  C:\WINDOWS\system32\wininet.dll - ok
14:26:05.0546 4000  [ BCA9B59515D452666B2CC88D6FAB0235 ] C:\WINDOWS\system32\urlmon.dll
14:26:05.0546 4000  C:\WINDOWS\system32\urlmon.dll - ok
14:26:05.0546 4000  [ FFFADE697513EEBD3EA6AE656E4CE547 ] C:\WINDOWS\system32\ieframe.dll
14:26:05.0546 4000  C:\WINDOWS\system32\ieframe.dll - ok
14:26:05.0562 4000  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
14:26:05.0562 4000  C:\WINDOWS\system32\spoolsv.exe - ok
14:26:05.0562 4000  [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
14:26:05.0562 4000  C:\WINDOWS\system32\lmhsvc.dll - ok
14:26:05.0562 4000  [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9 ] C:\WINDOWS\system32\msxml6.dll
14:26:05.0562 4000  C:\WINDOWS\system32\msxml6.dll - ok
14:26:05.0562 4000  [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
14:26:05.0562 4000  C:\WINDOWS\system32\atmfd.dll - ok
14:26:05.0578 4000  [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
14:26:05.0578 4000  C:\WINDOWS\system32\ole32.dll - ok
14:26:05.0578 4000  [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
14:26:05.0578 4000  C:\WINDOWS\system32\shlwapi.dll - ok
14:26:05.0578 4000  [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
14:26:05.0578 4000  C:\WINDOWS\system32\oleaut32.dll - ok
14:26:05.0578 4000  [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
14:26:05.0578 4000  C:\WINDOWS\system32\comctl32.dll - ok
14:26:05.0593 4000  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
14:26:05.0593 4000  C:\WINDOWS\system32\winsrv.dll - ok
14:26:05.0593 4000  [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
14:26:05.0593 4000  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
14:26:05.0593 4000  [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
14:26:05.0593 4000  C:\WINDOWS\system32\shell32.dll - ok
14:26:05.0593 4000  [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
14:26:05.0593 4000  C:\WINDOWS\system32\kernel32.dll - ok
14:26:05.0593 4000  [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
14:26:05.0593 4000  C:\WINDOWS\system32\kerberos.dll - ok
14:26:05.0609 4000  [ B0E27554F0B16BAEF4D51D7260E62CFB ] C:\WINDOWS\system32\rpcrt4.dll
14:26:05.0609 4000  C:\WINDOWS\system32\rpcrt4.dll - ok
14:26:05.0609 4000  [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
14:26:05.0609 4000  C:\WINDOWS\system32\shsvcs.dll - ok
14:26:05.0609 4000  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
14:26:05.0609 4000  C:\WINDOWS\system32\services.exe - ok
14:26:05.0609 4000  [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
14:26:05.0609 4000  C:\WINDOWS\system32\wintrust.dll - ok
14:26:05.0625 4000  [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
14:26:05.0625 4000  C:\WINDOWS\system32\winmm.dll - ok
14:26:05.0625 4000  [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
14:26:05.0625 4000  C:\WINDOWS\system32\wkssvc.dll - ok
14:26:05.0625 4000  [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
14:26:05.0625 4000  C:\WINDOWS\system32\odbc32.dll - ok
14:26:05.0625 4000  [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
14:26:05.0625 4000  C:\WINDOWS\system32\crypt32.dll - ok
14:26:05.0640 4000  [ 999DB5F88C8E145CCA9D471E33227143 ] C:\Program Files\Java\jre7\bin\jqs.exe
14:26:05.0640 4000  C:\Program Files\Java\jre7\bin\jqs.exe - ok
14:26:05.0640 4000  [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
14:26:05.0640 4000  C:\WINDOWS\system32\comdlg32.dll - ok
14:26:05.0640 4000  [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
14:26:05.0640 4000  C:\WINDOWS\system32\dhcpcsvc.dll - ok
14:26:05.0640 4000  [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
14:26:05.0640 4000  C:\WINDOWS\system32\xpsp2res.dll - ok
14:26:05.0656 4000  [ 681B807E53BDADA337735C28C0E48A1B ] C:\WINDOWS\system32\ntvdm.exe
14:26:05.0656 4000  C:\WINDOWS\system32\ntvdm.exe - ok
14:26:05.0656 4000  [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
14:26:05.0656 4000  C:\WINDOWS\system32\samsrv.dll - ok
14:26:05.0656 4000  [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
14:26:05.0656 4000  C:\WINDOWS\system32\rasapi32.dll - ok
14:26:05.0656 4000  [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
14:26:05.0656 4000  C:\WINDOWS\system32\rasman.dll - ok
14:26:05.0671 4000  [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
14:26:05.0671 4000  C:\WINDOWS\system32\samlib.dll - ok
14:26:05.0671 4000  [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
14:26:05.0671 4000  C:\WINDOWS\system32\shgina.dll - ok
14:26:05.0671 4000  [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
14:26:05.0671 4000  C:\WINDOWS\system32\sfcfiles.dll - ok
14:26:05.0671 4000  [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
14:26:05.0671 4000  C:\WINDOWS\system32\msidle.dll - ok
14:26:05.0671 4000  [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
14:26:05.0671 4000  C:\WINDOWS\system32\msimg32.dll - ok
14:26:05.0687 4000  [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
14:26:05.0687 4000  C:\WINDOWS\system32\msnsspc.dll - ok
14:26:05.0687 4000  [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
14:26:05.0687 4000  C:\WINDOWS\system32\logonui.exe - ok
14:26:05.0687 4000  [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
14:26:05.0687 4000  C:\WINDOWS\system32\msapsspc.dll - ok
14:26:05.0687 4000  [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
14:26:05.0687 4000  C:\WINDOWS\system32\digest.dll - ok
14:26:05.0703 4000  [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
14:26:05.0703 4000  C:\WINDOWS\system32\setupapi.dll - ok
14:26:05.0703 4000  [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\system32\xmlprovi.dll
14:26:05.0703 4000  C:\WINDOWS\system32\xmlprovi.dll - ok
14:26:05.0703 4000  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
14:26:05.0703 4000  C:\WINDOWS\system32\normaliz.dll - ok
14:26:05.0703 4000  [ D8361BEAB7109AB8B069F7F5028E37B1 ] C:\WINDOWS\system32\olesvr32.dll
14:26:05.0703 4000  C:\WINDOWS\system32\olesvr32.dll - ok
14:26:05.0718 4000  [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
14:26:05.0718 4000  C:\WINDOWS\system32\sensapi.dll - ok
14:26:05.0718 4000  [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
14:26:05.0718 4000  C:\WINDOWS\system32\version.dll - ok
14:26:05.0718 4000  [ 8C22083ED515DC94D575438662F0BE6A ] C:\WINDOWS\system32\msi.dll
14:26:05.0718 4000  C:\WINDOWS\system32\msi.dll - ok
14:26:05.0718 4000  [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
14:26:05.0718 4000  C:\WINDOWS\system32\apphelp.dll - ok
14:26:05.0718 4000  [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
14:26:05.0718 4000  C:\WINDOWS\system32\lsass.exe - ok
14:26:05.0734 4000  [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
14:26:05.0734 4000  C:\WINDOWS\system32\nddeapi.dll - ok
14:26:05.0734 4000  [ FA1B9CAE64B23C950DA3D96ABBF23BD0 ] C:\WINDOWS\system32\olecli32.dll
14:26:05.0734 4000  C:\WINDOWS\system32\olecli32.dll - ok
14:26:05.0734 4000  [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
14:26:05.0734 4000  C:\WINDOWS\system32\profmap.dll - ok
14:26:05.0734 4000  [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
14:26:05.0734 4000  C:\WINDOWS\system32\svchost.exe - ok
14:26:05.0750 4000  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
14:26:05.0750 4000  C:\WINDOWS\system32\basesrv.dll - ok
14:26:05.0750 4000  [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
14:26:05.0750 4000  C:\WINDOWS\system32\mpr.dll - ok
14:26:05.0750 4000  [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
14:26:05.0750 4000  C:\WINDOWS\system32\ncobjapi.dll - ok
14:26:05.0750 4000  [ AE9543F20FCC1E7BCAA13051CC076147 ] C:\WINDOWS\system32\olethk32.dll
14:26:05.0750 4000  C:\WINDOWS\system32\olethk32.dll - ok
14:26:05.0765 4000  [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
14:26:05.0765 4000  C:\WINDOWS\system32\psapi.dll - ok
14:26:05.0765 4000  [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
14:26:05.0765 4000  C:\WINDOWS\system32\ws2help.dll - ok
14:26:05.0765 4000  [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
14:26:05.0765 4000  C:\WINDOWS\system32\wtsapi32.dll - ok
14:26:05.0765 4000  [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
14:26:05.0765 4000  C:\WINDOWS\system32\cryptdll.dll - ok
14:26:05.0781 4000  [ 26B8DF8AF63C383F5CA26F41CD106D37 ] C:\WINDOWS\system32\igxprd32.dll
14:26:05.0781 4000  C:\WINDOWS\system32\igxprd32.dll - ok
14:26:05.0781 4000  [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
14:26:05.0781 4000  C:\WINDOWS\system32\winrnr.dll - ok
14:26:05.0781 4000  [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
14:26:05.0781 4000  C:\WINDOWS\system32\wldap32.dll - ok
14:26:05.0781 4000  [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
14:26:05.0781 4000  C:\WINDOWS\system32\wshtcpip.dll - ok
14:26:05.0796 4000  [ 414F57444511B818DB23FA5CF89F3205 ] C:\Program Files\AVG\AVG2013\avgclitx.dll
14:26:05.0796 4000  C:\Program Files\AVG\AVG2013\avgclitx.dll - ok
14:26:05.0796 4000  [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
14:26:05.0796 4000  C:\WINDOWS\system32\cfgmgr32.dll - ok
14:26:05.0796 4000  [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
14:26:05.0796 4000  C:\WINDOWS\system32\hid.dll - ok
14:26:05.0796 4000  [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
14:26:05.0796 4000  C:\WINDOWS\system32\powrprof.dll - ok
14:26:05.0796 4000  [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
14:26:05.0796 4000  C:\WINDOWS\system32\ersvc.dll - ok
14:26:05.0812 4000  [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
14:26:05.0812 4000  C:\WINDOWS\system32\rtutils.dll - ok
14:26:05.0812 4000  [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
14:26:05.0812 4000  C:\WINDOWS\system32\user32.dll - ok
14:26:05.0812 4000  [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
14:26:05.0812 4000  C:\WINDOWS\system32\wsock32.dll - ok
14:26:05.0812 4000  [ C1B58171AD366CD2E3F190BE6E035FF1 ] C:\WINDOWS\system32\igxpgd32.dll
14:26:05.0812 4000  C:\WINDOWS\system32\igxpgd32.dll - ok
14:26:05.0828 4000  [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
14:26:05.0828 4000  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
14:26:05.0828 4000  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
14:26:05.0828 4000  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
14:26:05.0828 4000  [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
14:26:05.0828 4000  C:\WINDOWS\system32\audiosrv.dll - ok
14:26:05.0828 4000  [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
14:26:05.0828 4000  C:\WINDOWS\system32\authz.dll - ok
14:26:05.0843 4000  [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
14:26:05.0843 4000  C:\WINDOWS\system32\hidserv.dll - ok
14:26:05.0843 4000  [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
14:26:05.0843 4000  C:\WINDOWS\system32\regapi.dll - ok
14:26:05.0843 4000  [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
14:26:05.0843 4000  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
14:26:05.0843 4000  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
14:26:05.0843 4000  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
14:26:05.0859 4000  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
14:26:05.0859 4000  C:\WINDOWS\system32\msprivs.dll - ok
14:26:05.0859 4000  [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
14:26:05.0859 4000  C:\WINDOWS\system32\shimeng.dll - ok
14:26:05.0859 4000  [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
14:26:05.0859 4000  C:\WINDOWS\system32\winsta.dll - ok
14:26:05.0859 4000  [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
14:26:05.0859 4000  C:\WINDOWS\system32\ws2_32.dll - ok
14:26:05.0875 4000  [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
14:26:05.0875 4000  C:\WINDOWS\system32\ntdsapi.dll - ok
14:26:05.0875 4000  [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
14:26:05.0875 4000  C:\WINDOWS\system32\odbcint.dll - ok
14:26:05.0875 4000  [ 045DF7AE14CAAED71338916D6FB66812 ] C:\WINDOWS\system32\wow32.dll
14:26:05.0875 4000  C:\WINDOWS\system32\wow32.dll - ok
14:26:05.0875 4000  [ 099D9F937F6EE23672391B3A5BD6D7E5 ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
14:26:05.0875 4000  C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
14:26:05.0890 4000  [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
14:26:05.0890 4000  C:\WINDOWS\system32\eventlog.dll - ok
14:26:05.0890 4000  [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
14:26:05.0890 4000  C:\WINDOWS\system32\msacm32.dll - ok
14:26:05.0890 4000  [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
14:26:05.0890 4000  C:\WINDOWS\system32\msvcrt.dll - ok
14:26:05.0890 4000  [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
14:26:05.0890 4000  C:\WINDOWS\system32\sfc_os.dll - ok
14:26:05.0890 4000  [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
14:26:05.0890 4000  C:\WINDOWS\system32\umpnpmgr.dll - ok
14:26:05.0906 4000  [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
14:26:05.0906 4000  C:\WINDOWS\system32\userenv.dll - ok
14:26:05.0906 4000  [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
14:26:05.0906 4000  C:\WINDOWS\system32\cryptui.dll - ok
14:26:05.0906 4000  [ 68D06B1A3D3FED145E6158BD12F92FEB ] C:\WINDOWS\system32\igxpdv32.dll
14:26:05.0906 4000  C:\WINDOWS\system32\igxpdv32.dll - ok
14:26:05.0906 4000  [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
14:26:05.0906 4000  C:\WINDOWS\system32\iphlpapi.dll - ok
14:26:05.0921 4000  [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
14:26:05.0921 4000  C:\WINDOWS\system32\uxtheme.dll - ok
14:26:05.0921 4000  [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
14:26:05.0921 4000  C:\WINDOWS\system32\winscard.dll - ok
14:26:05.0921 4000  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
14:26:05.0921 4000  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
14:26:05.0937 4000  [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
14:26:05.0937 4000  C:\WINDOWS\system32\ntmarta.dll - ok
14:26:05.0937 4000  [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
14:26:05.0937 4000  C:\WINDOWS\system32\w32time.dll - ok
14:26:05.0937 4000  [ 4B1B01F18B1EE6D575005026B5F77094 ] C:\WINDOWS\system32\igxpdx32.dll
14:26:05.0937 4000  C:\WINDOWS\system32\igxpdx32.dll - ok
14:26:05.0937 4000  [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
14:26:05.0937 4000  C:\WINDOWS\system32\cryptsvc.dll - ok
14:26:05.0953 4000  [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
14:26:05.0953 4000  C:\WINDOWS\system32\winlogon.exe - ok
14:26:05.0953 4000  [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
14:26:05.0953 4000  C:\WINDOWS\system32\msgina.dll - ok
14:26:05.0953 4000  [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
14:26:05.0953 4000  C:\WINDOWS\system32\wzcsapi.dll - ok
14:26:05.0953 4000  [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
14:26:05.0953 4000  C:\WINDOWS\system32\mprapi.dll - ok
14:26:05.0968 4000  [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
14:26:05.0968 4000  C:\WINDOWS\system32\sxs.dll - ok
14:26:05.0968 4000  [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
14:26:05.0968 4000  C:\WINDOWS\system32\scesrv.dll - ok
14:26:05.0968 4000  [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
14:26:05.0968 4000  C:\WINDOWS\system32\cscdll.dll - ok
14:26:05.0968 4000  [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
14:26:05.0968 4000  C:\WINDOWS\system32\msvcp60.dll - ok
14:26:05.0968 4000  [ 4B2495C00D6DA2A092DBE30DB583B19F ] C:\WINDOWS\system32\wltrynt.dll
14:26:05.0968 4000  C:\WINDOWS\system32\wltrynt.dll - ok
14:26:05.0984 4000  [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
14:26:05.0984 4000  C:\WINDOWS\AppPatch\acgenral.dll - ok
14:26:05.0984 4000  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
14:26:05.0984 4000  C:\WINDOWS\system32\rsaenh.dll - ok
14:26:05.0984 4000  [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
14:26:05.0984 4000  C:\WINDOWS\system32\adsldpc.dll - ok
14:26:05.0984 4000  [ 4DF537A09034434EA9481B88AB1D3C25 ] C:\WINDOWS\system32\bcmwlpkt.dll
14:26:05.0984 4000  C:\WINDOWS\system32\bcmwlpkt.dll - ok
14:26:06.0000 4000  [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
14:26:06.0000 4000  C:\WINDOWS\system32\scecli.dll - ok
14:26:06.0000 4000  [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
14:26:06.0000 4000  C:\WINDOWS\system32\netlogon.dll - ok
14:26:06.0000 4000  [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
14:26:06.0000 4000  C:\WINDOWS\system32\wlnotify.dll - ok
14:26:06.0000 4000  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:26:06.0000 4000  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
14:26:06.0015 4000  [ DA45AD502B4F2B7FC4ADEBA2E309F384 ] C:\WINDOWS\system32\netevent.dll
14:26:06.0015 4000  C:\WINDOWS\system32\netevent.dll - ok
14:26:06.0015 4000  [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
14:26:06.0015 4000  C:\WINDOWS\system32\webclnt.dll - ok
14:26:06.0015 4000  [ 467BC618DEBA4F8DB5A1A5E87510C335 ] C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
14:26:06.0015 4000  C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe - ok
14:26:06.0015 4000  [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
14:26:06.0015 4000  C:\WINDOWS\system32\activeds.dll - ok
14:26:06.0031 4000  [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
14:26:06.0031 4000  C:\WINDOWS\system32\hnetcfg.dll - ok
14:26:06.0031 4000  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
14:26:06.0031 4000  C:\WINDOWS\system32\wzcsvc.dll - ok
14:26:06.0031 4000  [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
14:26:06.0031 4000  C:\WINDOWS\system32\esent.dll - ok
14:26:06.0031 4000  [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
14:26:06.0031 4000  C:\WINDOWS\system32\clusapi.dll - ok
14:26:06.0046 4000  [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
14:26:06.0046 4000  C:\WINDOWS\system32\tapi32.dll - ok
14:26:06.0046 4000  [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
14:26:06.0046 4000  C:\WINDOWS\system32\riched20.dll - ok
14:26:06.0046 4000  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
14:26:06.0046 4000  C:\WINDOWS\system32\schedsvc.dll - ok
14:26:06.0046 4000  [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
14:26:06.0046 4000  C:\WINDOWS\system32\duser.dll - ok
14:26:06.0046 4000  [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
14:26:06.0062 4000  C:\WINDOWS\system32\clbcatq.dll - ok
14:26:06.0062 4000  [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
14:26:06.0062 4000  C:\WINDOWS\system32\comres.dll - ok
14:26:06.0062 4000  [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
14:26:06.0062 4000  C:\WINDOWS\system32\resutils.dll - ok
14:26:06.0062 4000  [ 1BEECF91737D8BF1694E3522743E0918 ] C:\WINDOWS\system32\bcm1xsup.dll
14:26:06.0062 4000  C:\WINDOWS\system32\bcm1xsup.dll - ok
14:26:06.0062 4000  [ 5BDB1E096DEA119A4D205ACB6E958175 ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
14:26:06.0062 4000  C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
14:26:06.0078 4000  [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
14:26:06.0078 4000  C:\WINDOWS\system32\colbact.dll - ok
14:26:06.0078 4000  [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
14:26:06.0078 4000  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
14:26:06.0078 4000  [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
14:26:06.0078 4000  C:\WINDOWS\system32\certcli.dll - ok
14:26:06.0078 4000  [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
14:26:06.0078 4000  C:\WINDOWS\system32\mlang.dll - ok
14:26:06.0093 4000  [ DFA5C8AA0AE6B6FB44E891D3138FC9C8 ] C:\WINDOWS\system32\bt2k_ins.dll
14:26:06.0093 4000  C:\WINDOWS\system32\bt2k_ins.dll - ok
14:26:06.0093 4000  [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
14:26:06.0093 4000  C:\WINDOWS\system32\dsound.dll - ok
14:26:06.0093 4000  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
14:26:06.0093 4000  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
14:26:06.0093 4000  [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
14:26:06.0093 4000  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
14:26:06.0109 4000  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\WINDOWS\system32\dnssd.dll
14:26:06.0109 4000  C:\WINDOWS\system32\dnssd.dll - ok
14:26:06.0109 4000  [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
14:26:06.0109 4000  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
14:26:06.0109 4000  [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
14:26:06.0109 4000  C:\WINDOWS\system32\comsvcs.dll - ok
14:26:06.0109 4000  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
14:26:06.0109 4000  C:\Program Files\Bonjour\mdnsNSP.dll - ok
14:26:06.0125 4000  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
14:26:06.0125 4000  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
14:26:06.0125 4000  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
14:26:06.0125 4000  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
14:26:06.0125 4000  [ 6A0A8D20469EFD39A4A3463A88811A57 ] C:\Program Files\AVG\AVG2013\avgsched.dll
14:26:06.0125 4000  C:\Program Files\AVG\AVG2013\avgsched.dll - ok
14:26:06.0125 4000  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
14:26:06.0125 4000  C:\Program Files\Bonjour\mDNSResponder.exe - ok
14:26:06.0140 4000  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
14:26:06.0140 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
14:26:06.0140 4000  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
14:26:06.0140 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
14:26:06.0140 4000  [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
14:26:06.0140 4000  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
14:26:06.0140 4000  [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
14:26:06.0140 4000  C:\WINDOWS\system32\imm32.dll - ok
14:26:06.0156 4000  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
14:26:06.0156 4000  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
14:26:06.0156 4000  [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
14:26:06.0156 4000  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
14:26:06.0156 4000  [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
14:26:06.0156 4000  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
14:26:06.0156 4000  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
14:26:06.0156 4000  C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
14:26:06.0171 4000  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
14:26:06.0171 4000  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
14:26:06.0171 4000  [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
14:26:06.0171 4000  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
14:26:06.0171 4000  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
14:26:06.0171 4000  C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
14:26:06.0171 4000  [ 45B52394F9624237F33A8A3D73C0B221 ] C:\Program Files\Windows Live\Family Safety\fsssvc.exe
14:26:06.0171 4000  C:\Program Files\Windows Live\Family Safety\fsssvc.exe - ok
14:26:06.0171 4000  [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
14:26:06.0171 4000  C:\WINDOWS\AppPatch\acadproc.dll - ok
14:26:06.0187 4000  [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
14:26:06.0187 4000  C:\WINDOWS\system32\msctf.dll - ok
14:26:06.0187 4000  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
14:26:06.0187 4000  C:\WINDOWS\system32\msvcrt40.dll - ok
14:26:06.0187 4000  [ 7572D6D0DE68EDC0089578AC952514C2 ] C:\Program Files\AVG\AVG2013\avgcorex.dll
14:26:06.0187 4000  C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
14:26:06.0187 4000  [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
14:26:06.0187 4000  C:\WINDOWS\system32\dot3api.dll - ok
14:26:06.0203 4000  [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
14:26:06.0203 4000  C:\WINDOWS\system32\eapolqec.dll - ok
14:26:06.0203 4000  [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
14:26:06.0203 4000  C:\WINDOWS\system32\qutil.dll - ok
14:26:06.0203 4000  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
14:26:06.0203 4000  C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
14:26:06.0203 4000  [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
14:26:06.0203 4000  C:\WINDOWS\system32\dot3dlg.dll - ok
14:26:06.0218 4000  [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
14:26:06.0218 4000  C:\WINDOWS\system32\odbcbcp.dll - ok
14:26:06.0218 4000  [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
14:26:06.0218 4000  C:\WINDOWS\system32\pdh.dll - ok
14:26:06.0218 4000  [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
14:26:06.0218 4000  C:\WINDOWS\system32\seclogon.dll - ok
14:26:06.0218 4000  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
14:26:06.0218 4000  C:\WINDOWS\system32\sens.dll - ok
14:26:06.0218 4000  [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
14:26:06.0218 4000  C:\WINDOWS\system32\winipsec.dll - ok
14:26:06.0234 4000  [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
14:26:06.0234 4000  C:\WINDOWS\system32\oakley.dll - ok
14:26:06.0234 4000  [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
14:26:06.0234 4000  C:\WINDOWS\system32\perfdisk.dll - ok
14:26:06.0234 4000  [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
14:26:06.0234 4000  C:\WINDOWS\system32\perfos.dll - ok
14:26:06.0234 4000  [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
14:26:06.0234 4000  C:\WINDOWS\system32\pstorsvc.dll - ok
14:26:06.0250 4000  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
14:26:06.0250 4000  C:\WINDOWS\system32\srvsvc.dll - ok
14:26:06.0250 4000  [ 6F855B5625A47F3AC731A262FDC379A6 ] C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe
14:26:06.0250 4000  C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe - ok
14:26:06.0250 4000  [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
14:26:06.0250 4000  C:\WINDOWS\system32\eappprxy.dll - ok
14:26:06.0250 4000  [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
14:26:06.0250 4000  C:\WINDOWS\system32\ipsecsvc.dll - ok
14:26:06.0265 4000  [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
14:26:06.0265 4000  C:\WINDOWS\system32\psbase.dll - ok
14:26:06.0265 4000  [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
14:26:06.0265 4000  C:\WINDOWS\system32\credui.dll - ok
14:26:06.0265 4000  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
14:26:06.0265 4000  C:\WINDOWS\system32\dssenh.dll - ok
14:26:06.0265 4000  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
14:26:06.0265 4000  C:\WINDOWS\system32\netman.dll - ok
14:26:06.0281 4000  [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
14:26:06.0281 4000  C:\WINDOWS\system32\netmsg.dll - ok
14:26:06.0281 4000  [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
14:26:06.0281 4000  C:\WINDOWS\system32\srsvc.dll - ok
14:26:06.0281 4000  [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
14:26:06.0281 4000  C:\WINDOWS\system32\netshell.dll - ok
14:26:06.0281 4000  [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
14:26:06.0281 4000  C:\WINDOWS\system32\eappcfg.dll - ok
14:26:06.0296 4000  [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
14:26:06.0296 4000  C:\WINDOWS\system32\onex.dll - ok
14:26:06.0296 4000  [ EF66829B99BBFC465B05DC7411B0DCFA ] C:\Program Files\Windows Live\Family Safety\msidcrl40.dll
14:26:06.0296 4000  C:\Program Files\Windows Live\Family Safety\msidcrl40.dll - ok
14:26:06.0296 4000  [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
14:26:06.0296 4000  C:\WINDOWS\system32\midimap.dll - ok
14:26:06.0296 4000  [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
14:26:06.0296 4000  C:\WINDOWS\system32\actxprxy.dll - ok
14:26:06.0296 4000  [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
14:26:06.0296 4000  C:\WINDOWS\system32\mscms.dll - ok
14:26:06.0312 4000  [ 07086F74E3B72FFFDAF11FC9F0B88A03 ] C:\WINDOWS\system32\stacapi.dll
14:26:06.0312 4000  C:\WINDOWS\system32\stacapi.dll - ok
14:26:06.0312 4000  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
14:26:06.0312 4000  C:\WINDOWS\system32\wuauserv.dll - ok
14:26:06.0312 4000  [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
14:26:06.0312 4000  C:\WINDOWS\system32\trkwks.dll - ok
14:26:06.0312 4000  [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
14:26:06.0312 4000  C:\WINDOWS\system32\vssapi.dll - ok
14:26:06.0328 4000  [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
14:26:06.0328 4000  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
14:26:06.0328 4000  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
14:26:06.0328 4000  C:\WINDOWS\system32\wiaservc.dll - ok
14:26:06.0328 4000  [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
14:26:06.0328 4000  C:\WINDOWS\system32\browser.dll - ok
14:26:06.0328 4000  [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
14:26:06.0328 4000  C:\WINDOWS\system32\ipnathlp.dll - ok
14:26:06.0343 4000  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
14:26:06.0343 4000  C:\WINDOWS\system32\wuaueng.dll - ok
14:26:06.0343 4000  [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
14:26:06.0343 4000  C:\WINDOWS\system32\cabinet.dll - ok
14:26:06.0343 4000  [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
14:26:06.0343 4000  C:\WINDOWS\system32\mspatcha.dll - ok
14:26:06.0343 4000  [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
14:26:06.0343 4000  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
14:26:06.0359 4000  [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
14:26:06.0359 4000  C:\WINDOWS\system32\wscsvc.dll - ok
14:26:06.0359 4000  [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
14:26:06.0359 4000  C:\WINDOWS\system32\wbem\esscli.dll - ok
14:26:06.0359 4000  [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
14:26:06.0359 4000  C:\WINDOWS\system32\wbem\fastprox.dll - ok
14:26:06.0359 4000  [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
14:26:06.0359 4000  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
14:26:06.0375 4000  [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
14:26:06.0375 4000  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
14:26:06.0375 4000  [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
14:26:06.0375 4000  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
14:26:06.0375 4000  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
14:26:06.0375 4000  C:\WINDOWS\system32\wuauclt.exe - ok
14:26:06.0375 4000  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
14:26:06.0375 4000  C:\WINDOWS\system32\wups.dll - ok
14:26:06.0375 4000  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
14:26:06.0375 4000  C:\WINDOWS\system32\wups2.dll - ok
14:26:06.0390 4000  [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
14:26:06.0390 4000  C:\WINDOWS\system32\wbem\wbemess.dll - ok
14:26:06.0390 4000  [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
14:26:06.0390 4000  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
14:26:06.0390 4000  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
14:26:06.0390 4000  C:\WINDOWS\system32\wuapi.dll - ok
14:26:06.0390 4000  [ A28A7F1D4B985B77BDAB7AF42760763F ] C:\WINDOWS\system32\BCMLogon.dll
14:26:06.0390 4000  C:\WINDOWS\system32\BCMLogon.dll - ok
14:26:06.0406 4000  [ A7E06854EA2A20AEE8EC32BD8C754298 ] C:\WINDOWS\system32\mpnotify.exe
14:26:06.0406 4000  C:\WINDOWS\system32\mpnotify.exe - ok
14:26:06.0406 4000  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
14:26:06.0406 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll - ok
14:26:06.0406 4000  [ 7BDCEAF13D9EC5873C43BD8063BEC871 ] C:\WINDOWS\system32\KemWnd.dll
14:26:06.0406 4000  C:\WINDOWS\system32\KemWnd.dll - ok
14:26:06.0406 4000  [ D4931277DF5393E84A48B27DF40914E3 ] C:\WINDOWS\system32\riched32.dll
14:26:06.0406 4000  C:\WINDOWS\system32\riched32.dll - ok
14:26:06.0421 4000  [ B9610D4A0230892D66DFB847DEBF181C ] C:\WINDOWS\system32\wmp.dll
14:26:06.0421 4000  C:\WINDOWS\system32\wmp.dll - ok
14:26:06.0421 4000  [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
14:26:06.0421 4000  C:\WINDOWS\system32\cryptnet.dll - ok
14:26:06.0421 4000  [ 7DDB04EFCA15BEE73286D67270894303 ] C:\Program Files\AVG\AVG2013\avguirux.exe
14:26:06.0421 4000  C:\Program Files\AVG\AVG2013\avguirux.exe - ok
14:26:06.0421 4000  [ 3E5AA6A816FA331E64C38A45C6FF5637 ] C:\WINDOWS\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
14:26:06.0421 4000  C:\WINDOWS\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe - ok
14:26:06.0421 4000  [ 17063190E94407460CC520F88BDA0041 ] C:\WINDOWS\system32\winbrand.dll
14:26:06.0421 4000  C:\WINDOWS\system32\winbrand.dll - ok
14:26:06.0437 4000  [ 1B3B381E1AAB46F7B321A46150D890CB ] C:\WINDOWS\system32\xpsp3res.dll
14:26:06.0437 4000  C:\WINDOWS\system32\xpsp3res.dll - ok
14:26:06.0437 4000  [ 3C7DEF3CBBCA6284867AA4621D5D8A54 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
14:26:06.0437 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll - ok
14:26:06.0437 4000  [ 9090454E6772F7CFBCE240BF4DC5F7E8 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
14:26:06.0437 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll - ok
14:26:06.0437 4000  [ 1B7524806D0270B81360C63A2FA047CB ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
14:26:06.0437 4000  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll - ok
14:26:06.0453 4000  [ C72CE5B8E86F4A0FDB4853747932C771 ] C:\Program Files\AVG\AVG2013\avgcmgr.exe
14:26:06.0453 4000  C:\Program Files\AVG\AVG2013\avgcmgr.exe - ok
14:26:06.0453 4000  [ F95D55859E9ABF442161A738CDACA3B2 ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
14:26:06.0453 4000  C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
14:26:06.0453 4000  [ 6D2EDE5CC51FF35004BD07E9EF3E1996 ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
14:26:06.0453 4000  C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
14:26:06.0453 4000  [ 6167870E1C50E29C18F5120524C0C191 ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
14:26:06.0453 4000  C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
14:26:06.0468 4000  [ 3961DE6134280FD3BC911D5B2119CECF ] C:\Program Files\AVG\AVG2013\avgcertx.dll
14:26:06.0468 4000  C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
14:26:06.0468 4000  [ 2E967B05E5D1EF57632819BDC54F19B1 ] C:\Program Files\AVG\AVG2013\avgchclx.dll
14:26:06.0468 4000  C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
14:26:06.0468 4000  [ 2358C53F30CB9DCD1D3843C4E2F299B2 ] C:\WINDOWS\system32\drivers\iaStor.sys
14:26:06.0468 4000  C:\WINDOWS\system32\drivers\iaStor.sys - ok
14:26:06.0468 4000  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
14:26:06.0468 4000  C:\WINDOWS\system32\drivers\dxapi.sys - ok
14:26:06.0484 4000  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
14:26:06.0484 4000  C:\WINDOWS\system32\watchdog.sys - ok
14:26:06.0484 4000  [ A1886BEBC12536FE2FA8464B7FA6F0FC ] C:\WINDOWS\system32\win32k.sys
14:26:06.0484 4000  C:\WINDOWS\system32\win32k.sys - ok
14:26:06.0484 4000  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
14:26:06.0484 4000  C:\WINDOWS\system32\drivers\dxg.sys - ok
14:26:06.0484 4000  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
14:26:06.0484 4000  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
14:26:06.0500 4000  [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
14:26:06.0500 4000  C:\WINDOWS\system32\msctfime.ime - ok
14:26:06.0500 4000  [ E0087225B137E57239FF40F8AE82059B ] C:\WINDOWS\system32\drivers\fssfltr_tdi.sys
14:26:06.0500 4000  C:\WINDOWS\system32\drivers\fssfltr_tdi.sys - ok
14:26:06.0500 4000  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
14:26:06.0500 4000  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
14:26:06.0500 4000  [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
14:26:06.0500 4000  C:\WINDOWS\system32\winspool.drv - ok
14:26:06.0500 4000  [ 01FAE7E8176472FE359E86AB4FD039A9 ] C:\WINDOWS\system32\WLTRYSVC.EXE
14:26:06.0500 4000  C:\WINDOWS\system32\WLTRYSVC.EXE - ok
14:26:06.0515 4000  [ C7F30BB20487765460865AEF466933EA ] C:\WINDOWS\system32\BCMWLTRY.EXE
14:26:06.0515 4000  C:\WINDOWS\system32\BCMWLTRY.EXE - ok
14:26:06.0515 4000  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
14:26:06.0515 4000  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
14:26:06.0515 4000  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
14:26:06.0515 4000  C:\WINDOWS\system32\drivers\parport.sys - ok
14:26:06.0515 4000  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
14:26:06.0515 4000  C:\WINDOWS\system32\drivers\serial.sys - ok
14:26:06.0531 4000  [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
14:26:06.0531 4000  C:\WINDOWS\system32\cscui.dll - ok
14:26:06.0531 4000  [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
14:26:06.0531 4000  C:\WINDOWS\system32\wdmaud.drv - ok
14:26:06.0531 4000  [ 3E2F3E2F4A82B7FAE23BAB864FB0F837 ] C:\WINDOWS\system32\dpcdll.dll
14:26:06.0531 4000  C:\WINDOWS\system32\dpcdll.dll - ok
14:26:06.0531 4000  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
14:26:06.0531 4000  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
14:26:06.0546 4000  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
14:26:06.0546 4000  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
14:26:06.0546 4000  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
14:26:06.0546 4000  C:\WINDOWS\system32\drivers\splitter.sys - ok
14:26:06.0546 4000  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
14:26:06.0546 4000  C:\WINDOWS\system32\drivers\aec.sys - ok
14:26:06.0546 4000  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
14:26:06.0546 4000  C:\WINDOWS\system32\drivers\swmidi.sys - ok
14:26:06.0562 4000  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
14:26:06.0562 4000  C:\WINDOWS\system32\drivers\dmusic.sys - ok
14:26:06.0562 4000  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
14:26:06.0562 4000  C:\WINDOWS\system32\drivers\kmixer.sys - ok
14:26:06.0562 4000  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
14:26:06.0562 4000  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
14:26:06.0562 4000  [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
14:26:06.0562 4000  C:\WINDOWS\system32\userinit.exe - ok
14:26:06.0578 4000  [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
14:26:06.0578 4000  C:\WINDOWS\system32\msacm32.drv - ok
14:26:06.0578 4000  [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
14:26:06.0578 4000  C:\WINDOWS\explorer.exe - ok
14:26:06.0578 4000  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
14:26:06.0578 4000  C:\WINDOWS\system32\rasmans.dll - ok
14:26:06.0578 4000  [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
14:26:06.0578 4000  C:\WINDOWS\system32\netcfgx.dll - ok
14:26:06.0593 4000  [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
14:26:06.0593 4000  C:\WINDOWS\system32\browseui.dll - ok
14:26:06.0593 4000  [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
14:26:06.0593 4000  C:\WINDOWS\system32\shdocvw.dll - ok
14:26:06.0593 4000  [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
14:26:06.0593 4000  C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
14:26:06.0593 4000  [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
14:26:06.0593 4000  C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
14:26:06.0609 4000  [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
14:26:06.0609 4000  C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
14:26:06.0609 4000  [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
14:26:06.0609 4000  C:\WINDOWS\system32\desk.cpl - ok
14:26:06.0609 4000  [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
14:26:06.0609 4000  C:\WINDOWS\system32\themeui.dll - ok
14:26:06.0609 4000  [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
14:26:06.0609 4000  C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
14:26:06.0609 4000  [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
14:26:06.0609 4000  C:\WINDOWS\system32\msxml3.dll - ok
14:26:06.0625 4000  [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
14:26:06.0625 4000  C:\WINDOWS\system32\cmd.exe - ok
14:26:06.0625 4000  [ 9FFD1CF2A782F2560E78EEC4B8B8689E ] C:\WINDOWS\system32\drivers\LBeepKE.sys
14:26:06.0625 4000  C:\WINDOWS\system32\drivers\LBeepKE.sys - ok
14:26:06.0625 4000  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
14:26:06.0625 4000  C:\WINDOWS\system32\drivers\srv.sys - ok
14:26:06.0625 4000  [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
14:26:06.0625 4000  C:\WINDOWS\system32\spoolss.dll - ok
14:26:06.0640 4000  [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
14:26:06.0640 4000  C:\WINDOWS\system32\localspl.dll - ok
14:26:06.0640 4000  [ 4023C6BE33E43A4E8D4542C0CA20BF89 ] C:\WINDOWS\system32\bthcrp.dll
14:26:06.0640 4000  C:\WINDOWS\system32\bthcrp.dll - ok
14:26:06.0640 4000  [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
14:26:06.0640 4000  C:\WINDOWS\system32\cnbjmon.dll - ok
14:26:06.0640 4000  [ 80E93B200D4D83A22F183388EE301E9C ] C:\WINDOWS\system32\WidcommSdk.dll
14:26:06.0640 4000  C:\WINDOWS\system32\WidcommSdk.dll - ok
14:26:06.0656 4000  [ F3144580622424F5607A73E1C9034CAA ] C:\WINDOWS\system32\wbtapi.dll
14:26:06.0656 4000  C:\WINDOWS\system32\wbtapi.dll - ok
14:26:06.0656 4000  [ 76848CB1AA5818DB47D5F5986E0A7485 ] C:\WINDOWS\system32\mfc42.dll
14:26:06.0656 4000  C:\WINDOWS\system32\mfc42.dll - ok
14:26:06.0656 4000  [ 477D3AFD61EA366AA673F9642A79A702 ] C:\WINDOWS\system32\CNMLM9T.DLL
14:26:06.0656 4000  C:\WINDOWS\system32\CNMLM9T.DLL - ok
14:26:06.0656 4000  [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
14:26:06.0656 4000  C:\WINDOWS\system32\pjlmon.dll - ok
14:26:06.0671 4000  [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\WINDOWS\system32\msonpmon.dll
14:26:06.0671 4000  C:\WINDOWS\system32\msonpmon.dll - ok
14:26:06.0671 4000  [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
14:26:06.0671 4000  C:\WINDOWS\system32\tcpmon.dll - ok
14:26:06.0671 4000  [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
14:26:06.0671 4000  C:\WINDOWS\system32\usbmon.dll - ok
14:26:06.0671 4000  [ 6AF58B23914B0D04307D5B4DB95E79EC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD9T.DLL
14:26:06.0671 4000  C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD9T.DLL - ok
14:26:06.0671 4000  [ F348280907B38FDBDB3CEF55D456E149 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
14:26:06.0671 4000  C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll - ok
14:26:06.0687 4000  [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
14:26:06.0687 4000  C:\WINDOWS\system32\win32spl.dll - ok
14:26:06.0687 4000  [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
14:26:06.0687 4000  C:\WINDOWS\system32\netrap.dll - ok
14:26:06.0687 4000  [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
14:26:06.0687 4000  C:\WINDOWS\system32\inetpp.dll - ok
14:26:06.0687 4000  [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
14:26:06.0687 4000  C:\WINDOWS\system32\wbem\ncprov.dll - ok
14:26:06.0703 4000  [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
14:26:06.0703 4000  C:\WINDOWS\system32\termsrv.dll - ok
14:26:06.0703 4000  [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
14:26:06.0703 4000  C:\WINDOWS\system32\icaapi.dll - ok
14:26:06.0703 4000  [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
14:26:06.0703 4000  C:\WINDOWS\system32\mstlsapi.dll - ok
14:26:06.0703 4000  [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
14:26:06.0703 4000  C:\WINDOWS\system32\tapisrv.dll - ok
14:26:06.0718 4000  [ 058710B720282CA82B909912D3EF28DB ] C:\WINDOWS\regedit.exe
14:26:06.0718 4000  C:\WINDOWS\regedit.exe - ok
14:26:06.0718 4000  [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
14:26:06.0718 4000  C:\WINDOWS\system32\rastapi.dll - ok
14:26:06.0718 4000  [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
14:26:06.0718 4000  C:\WINDOWS\system32\unimdm.tsp - ok
14:26:06.0718 4000  [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
14:26:06.0718 4000  C:\WINDOWS\system32\uniplat.dll - ok
14:26:06.0734 4000  [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
14:26:06.0734 4000  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
14:26:06.0734 4000  [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
14:26:06.0734 4000  C:\WINDOWS\system32\kmddsp.tsp - ok
14:26:06.0734 4000  [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
14:26:06.0734 4000  C:\WINDOWS\system32\ndptsp.tsp - ok
14:26:06.0734 4000  [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
14:26:06.0734 4000  C:\WINDOWS\system32\ipconf.tsp - ok
14:26:06.0734 4000  [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
14:26:06.0734 4000  C:\WINDOWS\system32\h323.tsp - ok
14:26:06.0750 4000  [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
14:26:06.0750 4000  C:\WINDOWS\system32\hidphone.tsp - ok
14:26:06.0750 4000  [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
14:26:06.0750 4000  C:\WINDOWS\system32\rasppp.dll - ok
14:26:06.0750 4000  [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
14:26:06.0750 4000  C:\WINDOWS\system32\alg.exe - ok
14:26:06.0750 4000  [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
14:26:06.0750 4000  C:\WINDOWS\system32\ntlsapi.dll - ok
14:26:06.0765 4000  [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
14:26:06.0765 4000  C:\WINDOWS\system32\rasqec.dll - ok
14:26:06.0765 4000  [ 17965D48033D1A6E6320AA867351CC21 ] C:\WINDOWS\system32\mshtml.dll
14:26:06.0765 4000  C:\WINDOWS\system32\mshtml.dll - ok
14:26:06.0765 4000  [ 96A0066AB9872D3575575A463C53FF6C ] C:\WINDOWS\system32\aclui.dll
14:26:06.0765 4000  C:\WINDOWS\system32\aclui.dll - ok
14:26:06.0765 4000  [ 751068D5D0ECD64A4810379729A1F0BC ] C:\WINDOWS\system32\ulib.dll
14:26:06.0765 4000  C:\WINDOWS\system32\ulib.dll - ok
14:26:06.0781 4000  [ 37461F2C3F212CF508A20FDC729ABDE5 ] C:\WINDOWS\system32\clb.dll
14:26:06.0781 4000  C:\WINDOWS\system32\clb.dll - ok
14:26:06.0781 4000  [ 2ACCD352451EC0F99AF2AD9DB6DB4439 ] C:\WINDOWS\system32\msls31.dll
14:26:06.0781 4000  C:\WINDOWS\system32\msls31.dll - ok
14:26:06.0781 4000  [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\msimtf.dll
14:26:06.0781 4000  C:\WINDOWS\system32\msimtf.dll - ok
14:26:06.0781 4000  [ 0689622E6484934EB6E5F4D3A96311F9 ] C:\WINDOWS\system32\jscript.dll
14:26:06.0781 4000  C:\WINDOWS\system32\jscript.dll - ok
14:26:06.0796 4000  [ 42B928FC8518D793BF7A5EAFC57B1D8B ] C:\WINDOWS\system32\imgutil.dll
14:26:06.0796 4000  C:\WINDOWS\system32\imgutil.dll - ok
14:26:06.0796 4000  [ E5FA1B044DAC5F6F600A1742D73F6936 ] C:\WINDOWS\system32\pngfilt.dll
14:26:06.0796 4000  C:\WINDOWS\system32\pngfilt.dll - ok
14:26:06.0796 4000  [ 2775CF7A0D1ABEBCBF2296A2D95AF793 ] C:\Program Files\Java\jre7\bin\awt.dll
14:26:06.0796 4000  C:\Program Files\Java\jre7\bin\awt.dll - ok
14:26:06.0796 4000  [ 8839C69D4E9468A1E5BDF4B9F4BCC5FE ] C:\Program Files\Java\jre7\bin\client\jvm.dll
14:26:06.0796 4000  C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
14:26:06.0796 4000  [ 60C2752036FAC5DA6E5F72CB9AB60747 ] C:\Program Files\Java\jre7\bin\dcpr.dll
14:26:06.0796 4000  C:\Program Files\Java\jre7\bin\dcpr.dll - ok
14:26:06.0812 4000  [ F38B92211F961CF9D48B2192BC7B00D6 ] C:\Program Files\Java\jre7\bin\deploy.dll
14:26:06.0812 4000  C:\Program Files\Java\jre7\bin\deploy.dll - ok
14:26:06.0812 4000  [ 24265143B1F4D8C57695630FBF6494CD ] C:\Program Files\Java\jre7\bin\fontmanager.dll
14:26:06.0812 4000  C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
14:26:06.0812 4000  [ 8A53582955841F6FFC62D7FD2E913773 ] C:\Program Files\Java\jre7\bin\java.dll
14:26:06.0812 4000  C:\Program Files\Java\jre7\bin\java.dll - ok
14:26:06.0812 4000  [ 0B56B878192DBA95D66A3162D38911F2 ] C:\Program Files\Java\jre7\bin\javaw.exe
14:26:06.0812 4000  C:\Program Files\Java\jre7\bin\javaw.exe - ok
14:26:06.0828 4000  [ C053C0F4F941A74EE163A601AEFE7AC3 ] C:\Program Files\Java\jre7\bin\jp2native.dll
14:26:06.0828 4000  C:\Program Files\Java\jre7\bin\jp2native.dll - ok
14:26:06.0828 4000  [ 467B0D0BC47D0B9CFA3837DA0A498C7F ] C:\Program Files\Java\jre7\bin\jpeg.dll
14:26:06.0828 4000  C:\Program Files\Java\jre7\bin\jpeg.dll - ok
14:26:06.0828 4000  [ 0A45A39E9A1D3D33A49D1BAF292659E3 ] C:\Program Files\Java\jre7\bin\net.dll
14:26:06.0828 4000  C:\Program Files\Java\jre7\bin\net.dll - ok
14:26:06.0828 4000  [ F897D8369C0523D32A5DD169DF545BCD ] C:\Program Files\Java\jre7\bin\nio.dll
14:26:06.0828 4000  C:\Program Files\Java\jre7\bin\nio.dll - ok
14:26:06.0843 4000  [ 76F27FAB5BA22E336E5D42626702E744 ] C:\Program Files\Java\jre7\bin\verify.dll
14:26:06.0843 4000  C:\Program Files\Java\jre7\bin\verify.dll - ok
14:26:06.0843 4000  [ 95A841BE3CF27181D7E9033DD66BC5CF ] C:\Program Files\Java\jre7\bin\zip.dll
14:26:06.0843 4000  C:\Program Files\Java\jre7\bin\zip.dll - ok
14:26:06.0843 4000  [ 0C9874161C59675B493B1CFBBDB13E06 ] C:\Program Files\AVG\AVG2013\avgxpl.dll
14:26:06.0843 4000  C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
14:26:06.0843 4000  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
14:26:06.0843 4000  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
14:26:06.0859 4000  [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
14:26:06.0859 4000  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
14:26:06.0859 4000  [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
14:26:06.0859 4000  C:\WINDOWS\system32\wbem\framedyn.dll - ok
14:26:06.0859 4000  [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
14:26:06.0859 4000  C:\WINDOWS\system32\security.dll - ok
14:26:06.0859 4000  [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
14:26:06.0859 4000  C:\WINDOWS\system32\wbem\wmipcima.dll - ok
14:26:06.0875 4000  [ 8FED1E0A491D4990853D23F21C59C730 ] C:\WINDOWS\system32\advpack.dll
14:26:06.0875 4000  C:\WINDOWS\system32\advpack.dll - ok
14:26:06.0875 4000  [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Becky\LOCALS~1\temp\E4EC99BE-7F31-414F-BABB-24BFF01EDC7D.exe
14:26:06.0875 4000  C:\DOCUME~1\Becky\LOCALS~1\temp\E4EC99BE-7F31-414F-BABB-24BFF01EDC7D.exe - ok
14:26:06.0875 4000  [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
14:26:06.0875 4000  C:\WINDOWS\system32\msutb.dll - ok
14:26:06.0875 4000  [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
14:26:06.0875 4000  C:\WINDOWS\system32\linkinfo.dll - ok
14:26:06.0890 4000  [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
14:26:06.0890 4000  C:\WINDOWS\system32\ntshrui.dll - ok
14:26:06.0890 4000  [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
14:26:06.0890 4000  C:\WINDOWS\system32\verclsid.exe - ok
14:26:06.0890 4000  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\67148221.sys
14:26:06.0890 4000  C:\WINDOWS\system32\drivers\67148221.sys - ok
14:26:06.0890 4000  [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
14:26:06.0890 4000  C:\WINDOWS\system32\upnp.dll - ok
14:26:06.0890 4000  [ 9C8937BE6D8EAFD2752008832667E17F ] C:\WINDOWS\system32\igfxtray.exe
14:26:06.0890 4000  C:\WINDOWS\system32\igfxtray.exe - ok
14:26:06.0906 4000  [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
14:26:06.0906 4000  C:\WINDOWS\system32\webcheck.dll - ok
14:26:06.0906 4000  [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
14:26:06.0906 4000  C:\WINDOWS\system32\ssdpapi.dll - ok
14:26:06.0906 4000  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
14:26:06.0906 4000  C:\WINDOWS\system32\imapi.exe - ok
14:26:06.0906 4000  [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
14:26:06.0906 4000  C:\WINDOWS\system32\stobject.dll - ok
14:26:06.0921 4000  [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
14:26:06.0921 4000  C:\WINDOWS\system32\batmeter.dll - ok
14:26:06.0921 4000  [ 412A81FBFB738C3B458EB3F07AB40F62 ] C:\WINDOWS\system32\hkcmd.exe
14:26:06.0921 4000  C:\WINDOWS\system32\hkcmd.exe - ok
14:26:06.0921 4000  [ 4240BD5873EE41CA9937B204E1079A32 ] C:\WINDOWS\system32\igfxpers.exe
14:26:06.0921 4000  C:\WINDOWS\system32\igfxpers.exe - ok
14:26:06.0937 4000  [ 5EF24621ABCE6965E32A365CA613A544 ] C:\Program Files\DellTPad\Apoint.exe
14:26:06.0937 4000  C:\Program Files\DellTPad\Apoint.exe - ok
14:26:06.0937 4000  [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
14:26:06.0937 4000  C:\WINDOWS\system32\rasdlg.dll - ok
14:26:06.0937 4000  [ 012844A8E13BE3941C9CAF1F91F47DF2 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
14:26:06.0937 4000  C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe - ok
14:26:06.0937 4000  [ 309BF2F494E57B4C2BFDFA94F8C6A238 ] C:\WINDOWS\LockStatusTray.exe
14:26:06.0937 4000  C:\WINDOWS\LockStatusTray.exe - ok
14:26:06.0953 4000  [ 1818A2CD223603911970E667A5EACC9C ] C:\WINDOWS\system32\WLTRAY.EXE
14:26:06.0953 4000  C:\WINDOWS\system32\WLTRAY.EXE - ok
14:26:06.0953 4000  [ 288D8A54FE326AE26AD43F348E646147 ] C:\Program Files\AVG\AVG2013\avgui.exe
14:26:06.0953 4000  C:\Program Files\AVG\AVG2013\avgui.exe - ok
14:26:06.0953 4000  [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:26:06.0953 4000  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
14:26:06.0953 4000  [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files\iTunes\iTunesHelper.exe
14:26:06.0953 4000  C:\Program Files\iTunes\iTunesHelper.exe - ok
14:26:06.0968 4000  [ 1B4BC5E32AC3AC67F412D97C793B5659 ] C:\Program Files\Windows Live\Family Safety\fsui.exe
14:26:06.0968 4000  C:\Program Files\Windows Live\Family Safety\fsui.exe - ok
14:26:06.0968 4000  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
14:26:06.0968 4000  C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
14:26:06.0968 4000  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:26:06.0968 4000  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
14:26:06.0968 4000  [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
14:26:06.0968 4000  C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
14:26:06.0984 4000  [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
14:26:06.0984 4000  C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
14:26:06.0984 4000  [ 317C54DCAB9EE29CD4B9F55D197A90D1 ] C:\WINDOWS\system32\msisip.dll
14:26:06.0984 4000  C:\WINDOWS\system32\msisip.dll - ok
14:26:06.0984 4000  [ 3A6D465F379E5C815F4AD565391E654C ] C:\WINDOWS\system32\wshext.dll
14:26:06.0984 4000  C:\WINDOWS\system32\wshext.dll - ok
14:26:06.0984 4000  [ 469184CB3E8D8432F4830BB73940810D ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
14:26:06.0984 4000  C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
14:26:06.0984 4000  [ EACED945008EB7E91AAD494358FD84EA ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
14:26:06.0984 4000  C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
14:26:07.0000 4000  [ F03FFC962E18F36A922E61F96BE09925 ] C:\Program Files\Digital Line Detect\DLG.exe
14:26:07.0000 4000  C:\Program Files\Digital Line Detect\DLG.exe - ok
14:26:07.0000 4000  [ B624202660474516E73AA95238FD9843 ] C:\Program Files\SetPoint\SetPoint.exe
14:26:07.0000 4000  C:\Program Files\SetPoint\SetPoint.exe - ok
14:26:07.0000 4000  [ 6A00985851E9C6BDD14DC15279E5B508 ] C:\WINDOWS\system32\hccutils.dll
14:26:07.0000 4000  C:\WINDOWS\system32\hccutils.dll - ok
14:26:07.0000 4000  [ F2B4A9D0D0E1FBF6CCA824EA0A76FFC0 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\stlang.dll
14:26:07.0000 4000  C:\Program Files\SigmaTel\C-Major Audio\WDM\stlang.dll - ok
14:26:07.0015 4000  [ F6F2BFC17069EB335ACCEEF7595F9302 ] C:\WINDOWS\system32\mfc42u.dll
14:26:07.0015 4000  C:\WINDOWS\system32\mfc42u.dll - ok
14:26:07.0015 4000  [ 66F6F18DC8F843F666D88F6CD8BF2260 ] C:\WINDOWS\system32\igfxsrvc.exe
14:26:07.0015 4000  C:\WINDOWS\system32\igfxsrvc.exe - ok
14:26:07.0015 4000  [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files\iTunes\iTunesHelper.dll
14:26:07.0015 4000  C:\Program Files\iTunes\iTunesHelper.dll - ok
14:26:07.0015 4000  [ 1F16F20318DBFD2E2ED54406A81A92FC ] C:\Program Files\DellTPad\Apoint.dll
14:26:07.0015 4000  C:\Program Files\DellTPad\Apoint.dll - ok
14:26:07.0031 4000  [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
14:26:07.0031 4000  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
14:26:07.0031 4000  [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
14:26:07.0031 4000  C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
14:26:07.0031 4000  [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
14:26:07.0031 4000  C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
14:26:07.0031 4000  [ A7D6E11630EB4D8BED5AEB786C1556E5 ] C:\WINDOWS\system32\Vxdif.dll
14:26:07.0031 4000  C:\WINDOWS\system32\Vxdif.dll - ok
14:26:07.0046 4000  [ 4895E1BDA720F634ABDA31BBEC90DEAE ] C:\Program Files\DellTPad\EzAuto.dll
14:26:07.0046 4000  C:\Program Files\DellTPad\EzAuto.dll - ok
14:26:07.0046 4000  [ 42370C1DE2B83844B253478DB8A907D5 ] C:\Program Files\DellTPad\ApMsgFwd.exe
14:26:07.0046 4000  C:\Program Files\DellTPad\ApMsgFwd.exe - ok
14:26:07.0046 4000  [ 8D78BE3690DB07A2FD03D2A6B61E3DCD ] C:\Program Files\DellTPad\ApntEx.exe
14:26:07.0046 4000  C:\Program Files\DellTPad\ApntEx.exe - ok
14:26:07.0046 4000  [ C574C551637734B13278898FE2D12D15 ] C:\Program Files\DellTPad\hidfind.exe
14:26:07.0046 4000  C:\Program Files\DellTPad\hidfind.exe - ok
14:26:07.0062 4000  [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
14:26:07.0062 4000  C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
14:26:07.0062 4000  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
14:26:07.0062 4000  C:\WINDOWS\system32\drivers\http.sys - ok
14:26:07.0062 4000  [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
14:26:07.0062 4000  C:\WINDOWS\system32\ssdpsrv.dll - ok
14:26:07.0062 4000  [ B4CF3FB7E9B8EA69757541DCE6CA20ED ] C:\Program Files\Mozilla Firefox\firefox.exe
14:26:07.0062 4000  C:\Program Files\Mozilla Firefox\firefox.exe - ok
14:26:07.0062 4000  [ 8A02CB4204008852CABE45F420BDF7EF ] C:\Program Files\AVG\AVG2013\fixcfg.exe
14:26:07.0078 4000  C:\Program Files\AVG\AVG2013\fixcfg.exe - ok
14:26:07.0078 4000  [ E8A39D41474BE42FD8830CED32932D6C ] C:\Program Files\iPod\bin\iPodService.exe
14:26:07.0078 4000  C:\Program Files\iPod\bin\iPodService.exe - ok
14:26:07.0078 4000  [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
14:26:07.0078 4000  C:\WINDOWS\system32\drprov.dll - ok
14:26:07.0078 4000  [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
14:26:07.0078 4000  C:\WINDOWS\system32\ntlanman.dll - ok
14:26:07.0078 4000  [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
14:26:07.0078 4000  C:\WINDOWS\system32\netui0.dll - ok
14:26:07.0093 4000  [ 29ECDA17BA5E6D98430F698587569ACC ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll
14:26:07.0093 4000  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll - ok
14:26:07.0093 4000  [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
14:26:07.0093 4000  C:\WINDOWS\system32\netui1.dll - ok
14:26:07.0093 4000  [ 18F5D2CF39A543FDFEF67F05F8CDF4E3 ] C:\Program Files\Windows Live\Family Safety\uxcore.dll
14:26:07.0093 4000  C:\Program Files\Windows Live\Family Safety\uxcore.dll - ok
14:26:07.0093 4000  [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
14:26:07.0093 4000  C:\WINDOWS\system32\davclnt.dll - ok
14:26:07.0109 4000  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
14:26:07.0109 4000  C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
14:26:07.0109 4000  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\WINDOWS\system32\mfc100u.dll
14:26:07.0109 4000  C:\WINDOWS\system32\mfc100u.dll - ok
14:26:07.0109 4000  [ 4B1EB3AD2771AE8D0390ED1444B7B493 ] C:\Program Files\SetPoint\lgscroll.dll
14:26:07.0109 4000  C:\Program Files\SetPoint\lgscroll.dll - ok
14:26:07.0109 4000  [ 145229828A29F5B90C9DE2F2B58CCB19 ] C:\WINDOWS\system32\preflib.dll
14:26:07.0109 4000  C:\WINDOWS\system32\preflib.dll - ok
14:26:07.0125 4000  [ CB1135906D951B574F9F2498BE8F11F9 ] C:\Program Files\Digital Line Detect\BVRPDiag.dll
14:26:07.0125 4000  C:\Program Files\Digital Line Detect\BVRPDiag.dll - ok
14:26:07.0125 4000  [ A25E08CE13CEDEA59318CAEB29498236 ] C:\Program Files\Windows Live\Family Safety\wldcore.dll
14:26:07.0125 4000  C:\Program Files\Windows Live\Family Safety\wldcore.dll - ok
14:26:07.0125 4000  [ 22AA20E24295D0D98AFF72C65BD7DBFA ] C:\WINDOWS\system32\KemXML.dll
14:26:07.0125 4000  C:\WINDOWS\system32\KemXML.dll - ok
14:26:07.0125 4000  [ 1D845821F5ADB076831DE4C2818F858B ] C:\WINDOWS\system32\usp10.dll
14:26:07.0125 4000  C:\WINDOWS\system32\usp10.dll - ok
14:26:07.0140 4000  [ 810F104256F6BCD7012545B0BEA18D23 ] C:\WINDOWS\system32\kemutb.dll
14:26:07.0140 4000  C:\WINDOWS\system32\kemutb.dll - ok
14:26:07.0140 4000  [ BE5D578F387C8E077DDE48C149B7FE42 ] C:\WINDOWS\system32\btosif.dll
14:26:07.0140 4000  C:\WINDOWS\system32\btosif.dll - ok
14:26:07.0140 4000  [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
14:26:07.0140 4000  C:\WINDOWS\system32\shfolder.dll - ok
14:26:07.0140 4000  [ 8ADAE4E00D86A8530B8176A853B4B9B9 ] C:\WINDOWS\system32\KemUtil.dll
14:26:07.0140 4000  C:\WINDOWS\system32\KemUtil.dll - ok
14:26:07.0140 4000  [ 176AE8EF5AB848BD5143CA15CBE46300 ] C:\Program Files\Mozilla Firefox\mozglue.dll
14:26:07.0140 4000  C:\Program Files\Mozilla Firefox\mozglue.dll - ok
14:26:07.0156 4000  [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files\Mozilla Firefox\msvcp100.dll
14:26:07.0156 4000  C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
14:26:07.0156 4000  [ 1972533E3CF15267C239B995ECDD80F3 ] C:\WINDOWS\system32\btwhidcs.dll
14:26:07.0156 4000  C:\WINDOWS\system32\btwhidcs.dll - ok
14:26:07.0156 4000  [ 7DF0DECD3006B8BA450AEC714086FF3C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
14:26:07.0156 4000  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
14:26:07.0156 4000  [ 5A75AD48884503430B50181CE44C9D39 ] C:\Program Files\Mozilla Firefox\nss3.dll
14:26:07.0156 4000  C:\Program Files\Mozilla Firefox\nss3.dll - ok
14:26:07.0171 4000  [ 280013E1CA1A648A6B896D884CC46601 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
14:26:07.0171 4000  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
14:26:07.0171 4000  [ 9AF037DF48AE21B6E30177DFE1481C45 ] C:\WINDOWS\system32\mdmxsdk.dll
14:26:07.0171 4000  C:\WINDOWS\system32\mdmxsdk.dll - ok
14:26:07.0171 4000  [ EEC8E86203B43AB462465D6755E16086 ] C:\WINDOWS\system32\igfxdev.dll
14:26:07.0171 4000  C:\WINDOWS\system32\igfxdev.dll - ok
14:26:07.0171 4000  [ 1A04841C5B09E8D2248600906B3799E1 ] C:\WINDOWS\system32\igfxsrvc.dll
14:26:07.0171 4000  C:\WINDOWS\system32\igfxsrvc.dll - ok
14:26:07.0187 4000  [ 84C0593DCD2C92A1D8A139C7DD82DD0D ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll
14:26:07.0187 4000  C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok
14:26:07.0187 4000  [ 559DC15B74C66EC38C4ECF81503C7757 ] C:\Program Files\SetPoint\SetPointCOM.dll
14:26:07.0187 4000  C:\Program Files\SetPoint\SetPointCOM.dll - ok
14:26:07.0187 4000  [ D20AF468FA7F09B9561C8232BB80D4BA ] C:\Program Files\SetPoint\khalwrapper.dll
14:26:07.0187 4000  C:\Program Files\SetPoint\khalwrapper.dll - ok
14:26:07.0187 4000  [ 94284E313415F5A495A953870333E868 ] C:\Program Files\Mozilla Firefox\mozjs.dll
14:26:07.0187 4000  C:\Program Files\Mozilla Firefox\mozjs.dll - ok
14:26:07.0187 4000  [ 39CCEDC670F61DB34D761A2C736E8CA0 ] C:\WINDOWS\system32\igfxres.dll
14:26:07.0187 4000  C:\WINDOWS\system32\igfxres.dll - ok
14:26:07.0203 4000  [ B658ED3DB3722DD1EBE6DF508B642358 ] C:\WINDOWS\system32\btrez.dll
14:26:07.0203 4000  C:\WINDOWS\system32\btrez.dll - ok
14:26:07.0203 4000  [ 3294EFA117C49C68E5ED8FFFB9855CC4 ] C:\Program Files\Mozilla Firefox\mozalloc.dll
14:26:07.0203 4000  C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
14:26:07.0203 4000  [ 66BB459457DE608E45B23BAD367D4673 ] C:\WINDOWS\system32\btwicons.dll
14:26:07.0203 4000  C:\WINDOWS\system32\btwicons.dll - ok
14:26:07.0203 4000  [ 56EE8E46820E5342AC69F5849F1F9FE4 ] C:\Program Files\Mozilla Firefox\gkmedias.dll
14:26:07.0203 4000  C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
14:26:07.0218 4000  [ 96E7A6ED1B5603F53E9147AFE84A2B6F ] C:\Program Files\Windows Live\Family Safety\fsui.dll
14:26:07.0218 4000  C:\Program Files\Windows Live\Family Safety\fsui.dll - ok
14:26:07.0218 4000  [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\WINDOWS\system32\mfc100enu.dll
14:26:07.0218 4000  C:\WINDOWS\system32\mfc100enu.dll - ok
14:26:07.0218 4000  [ CBDAF981AA31159163B855E31CA94FC1 ] C:\Program Files\Windows Live\Family Safety\fsssvcps.dll
14:26:07.0218 4000  C:\Program Files\Windows Live\Family Safety\fsssvcps.dll - ok
14:26:07.0218 4000  [ B736E9A31EDB4D7CE3632FFCFBD69304 ] C:\Program Files\SetPoint\Macros\MacroCore.dll
14:26:07.0218 4000  C:\Program Files\SetPoint\Macros\MacroCore.dll - ok
14:26:07.0234 4000  [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe
14:26:07.0234 4000  C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
14:26:07.0234 4000  [ F60C53A52B036FF892D8F114176DE6C0 ] C:\Program Files\Mozilla Firefox\xul.dll
14:26:07.0234 4000  C:\Program Files\Mozilla Firefox\xul.dll - ok
14:26:07.0234 4000  [ EDB5A21BB8124AE4998A58778000C38D ] C:\Program Files\Windows Live\Family Safety\fsuires.dll
14:26:07.0234 4000  C:\Program Files\Windows Live\Family Safety\fsuires.dll - ok
14:26:07.0234 4000  [ 145D7CB9862D6FA5A6F068F9F8B61B39 ] C:\Program Files\SetPoint\IMHook.dll
14:26:07.0234 4000  C:\Program Files\SetPoint\IMHook.dll - ok
14:26:07.0250 4000  [ C0F8561D8F32926EB25165CBDC7BBA3F ] C:\Program Files\SetPoint\WebBrowserSupport.dll
14:26:07.0250 4000  C:\Program Files\SetPoint\WebBrowserSupport.dll - ok
14:26:07.0250 4000  [ 0F837F93FC8858B6C002F9D66C8DE45C ] C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
14:26:07.0250 4000  C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll - ok
14:26:07.0250 4000  [ 2C3196C163BEF55A404A2549C7B69589 ] C:\Program Files\SetPoint\Macros\MacroAppSwitch.dll
14:26:07.0250 4000  C:\Program Files\SetPoint\Macros\MacroAppSwitch.dll - ok
14:26:07.0250 4000  [ CF2CFBB5B83A196597F8A24F1302BBDA ] C:\WINDOWS\system32\BtMmHook.dll
14:26:07.0250 4000  C:\WINDOWS\system32\BtMmHook.dll - ok
14:26:07.0265 4000  [ 3D9E0344B6D79F0E6037DF2492A63793 ] C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
14:26:07.0265 4000  C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE - ok
14:26:07.0265 4000  [ 4A79F94E9A9D911D1BB525C262CCE2BA ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.dll
14:26:07.0265 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.dll - ok
14:26:07.0265 4000  [ E96BC31E0114F0999FB0F92FC65D61CA ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
14:26:07.0265 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe - ok
14:26:07.0265 4000  [ 9EED448E2C6306BFD8B2B19063FC21A1 ] C:\Program Files\AVG\AVG2013\avgidpmx.dll
14:26:07.0265 4000  C:\Program Files\AVG\AVG2013\avgidpmx.dll - ok
14:26:07.0265 4000  [ 6538BA7912DA1CB4BEE20A4722667D65 ] C:\WINDOWS\system32\btins.dll
14:26:07.0265 4000  C:\WINDOWS\system32\btins.dll - ok
14:26:07.0281 4000  [ 97E46C5E21660B2772481D75117D0D24 ] C:\WINDOWS\system32\BtAudioHelper.dll
14:26:07.0281 4000  C:\WINDOWS\system32\BtAudioHelper.dll - ok
14:26:07.0281 4000  [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
14:26:07.0281 4000  C:\WINDOWS\system32\dbghelp.dll - ok
14:26:07.0281 4000  [ 2FEF21EEE9934BB10165AA02E530183C ] C:\Program Files\AVG\AVG2013\avglngx.dll
14:26:07.0281 4000  C:\Program Files\AVG\AVG2013\avglngx.dll - ok
14:26:07.0281 4000  [ D7A835DB03CFE8168574893BF7E5C886 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.dll
14:26:07.0281 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.dll - ok
14:26:07.0296 4000  [ 9DB55C2361E0974A9630EECD70C69FAB ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.dll
14:26:07.0296 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.dll - ok
14:26:07.0296 4000  [ 2BE37815B1FCA885119612C658DB8CA8 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.dll
14:26:07.0296 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.dll - ok
14:26:07.0296 4000  [ 70D4F5E5490A8947262A0D591309CEB4 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.dll
14:26:07.0296 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.dll - ok
14:26:07.0296 4000  [ 24F2095044B9EE2AD1ED2B1D7152893E ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.dll
14:26:07.0296 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.dll - ok
14:26:07.0312 4000  [ B02910B449EA0B5AF9D3422A9F907D8D ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.dll
14:26:07.0312 4000  C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.dll - ok
14:26:07.0312 4000  [ 13710783A04D427B6F621EE697569217 ] C:\Program Files\SetPoint\KGame.dll
14:26:07.0312 4000  C:\Program Files\SetPoint\KGame.dll - ok
14:26:07.0312 4000  [ 805D3AE37FC58F8174ED7BACEEF7BB3F ] C:\WINDOWS\system32\btosif_ol.dll
14:26:07.0312 4000  C:\WINDOWS\system32\btosif_ol.dll - ok
14:26:07.0312 4000  [ CC2215FDB02BA39EDE8EF54E0B71B3B8 ] C:\WINDOWS\system32\btosif_olx.dll
14:26:07.0312 4000  C:\WINDOWS\system32\btosif_olx.dll - ok
14:26:07.0328 4000  [ 8A5092AE59D6ED5B181292CDBFB22B2F ] C:\Program Files\SetPoint\GameHook.dll
14:26:07.0328 4000  C:\Program Files\SetPoint\GameHook.dll - ok
14:26:07.0328 4000  [ B80B70609797F944517186DDAC174A50 ] C:\Program Files\AVG\AVG2013\avguires.dll
14:26:07.0328 4000  C:\Program Files\AVG\AVG2013\avguires.dll - ok
14:26:07.0328 4000  [ E81BBE78A8EF85ACD490B3E64EF63A7C ] C:\WINDOWS\system32\mapi32.dll
14:26:07.0328 4000  C:\WINDOWS\system32\mapi32.dll - ok
14:26:07.0328 4000  [ 0435DDECB04E5DFF30CB0FD6C185C6C1 ] C:\WINDOWS\system32\btosif_notes.dll
14:26:07.0328 4000  C:\WINDOWS\system32\btosif_notes.dll - ok
14:26:07.0343 4000  [ A8D63A66ACE6A7059F7F29376D032182 ] C:\WINDOWS\system32\btdev.dll
14:26:07.0343 4000  C:\WINDOWS\system32\btdev.dll - ok
14:26:07.0343 4000  [ AD3A6B2D7AB6BBB26851210B3634F2D4 ] C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll
14:26:07.0343 4000  C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll - ok
14:26:07.0343 4000  [ FBDB9D0935B9907B809B381FDDF1627F ] C:\WINDOWS\system32\regsvr32.exe
14:26:07.0343 4000  C:\WINDOWS\system32\regsvr32.exe - ok
14:26:07.0343 4000  [ 730E90935150048A4E5F392FCDD49DA3 ] C:\Program Files\AVG\AVG2013\avgapps.dll
14:26:07.0343 4000  C:\Program Files\AVG\AVG2013\avgapps.dll - ok
14:26:07.0359 4000  [ D0049860B63DD87A73A5D165C829C65F ] C:\WINDOWS\system32\t2embed.dll
14:26:07.0359 4000  C:\WINDOWS\system32\t2embed.dll - ok
14:26:07.0359 4000  [ B48E7B4C95CCE0C6C0C3F7B1A97FBC8F ] C:\WINDOWS\system32\wzcdlg.dll
14:26:07.0359 4000  C:\WINDOWS\system32\wzcdlg.dll - ok
14:26:07.0359 4000  [ 303A63F4B913AA5D8998161CB77A8CE7 ] C:\WINDOWS\system32\feclient.dll
14:26:07.0359 4000  C:\WINDOWS\system32\feclient.dll - ok
14:26:07.0359 4000  [ 419CBCBF4D1DC0DB6FB4A7C4CF015747 ] C:\Program Files\Mozilla Firefox\softokn3.dll
14:26:07.0359 4000  C:\Program Files\Mozilla Firefox\softokn3.dll - ok
14:26:07.0359 4000  [ 5D60EC04894640F0E4FB5E012CF48A42 ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
14:26:07.0359 4000  C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
14:26:07.0375 4000  [ 2EF382D605BE1DD120EE4B53B73BA000 ] C:\Program Files\Mozilla Firefox\freebl3.dll
14:26:07.0375 4000  C:\Program Files\Mozilla Firefox\freebl3.dll - ok
14:26:07.0375 4000  [ 9E4C349593D21A53F2F18397A1939D98 ] C:\Program Files\Mozilla Firefox\nssckbi.dll
14:26:07.0375 4000  C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
14:26:07.0375 4000  [ B0AC88C4E3B63EC8B67768301D10E652 ] C:\Program Files\SetPoint\SetPointCOMWMP9.dll
14:26:07.0375 4000  C:\Program Files\SetPoint\SetPointCOMWMP9.dll - ok
14:26:07.0375 4000  [ B292E60B5334E6763BA365D8FD96D3B7 ] C:\Program Files\SetPoint\SetPointCOMMM9.dll
14:26:07.0375 4000  C:\Program Files\SetPoint\SetPointCOMMM9.dll - ok
14:26:07.0390 4000  [ E69A7AD873CAF58D3A39DD8B0DB94724 ] C:\Program Files\AVG\AVG2013\avgcslx.dll
14:26:07.0390 4000  C:\Program Files\AVG\AVG2013\avgcslx.dll - ok
14:26:07.0390 4000  [ F5CF984927625B23757C83B0E3AACFA9 ] C:\WINDOWS\system32\wbem\wmiadap.exe
14:26:07.0390 4000  C:\WINDOWS\system32\wbem\wmiadap.exe - ok
14:26:07.0390 4000  [ 6358C181BF021970A897C1FAB0ECF5D2 ] C:\WINDOWS\system32\loadperf.dll
14:26:07.0390 4000  C:\WINDOWS\system32\loadperf.dll - ok
14:26:07.0390 4000  [ 960F6D3CD9A1BA6435D7AADD102B297F ] C:\WINDOWS\system32\wbem\wmiprov.dll
14:26:07.0390 4000  C:\WINDOWS\system32\wbem\wmiprov.dll - ok
14:26:07.0406 4000  [ 5E28284F9B5F9097640D58A73D38AD4C ] C:\WINDOWS\system32\notepad.exe
14:26:07.0406 4000  C:\WINDOWS\system32\notepad.exe - ok
14:26:07.0406 4000  [ 5378AD5A54C074EBA41B7D97FC96D63F ] C:\Program Files\AVG\AVG2013\avgadvisorx.dll
14:26:07.0406 4000  C:\Program Files\AVG\AVG2013\avgadvisorx.dll - ok
14:26:07.0406 4000  [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
14:26:07.0406 4000  C:\WINDOWS\system32\snmpapi.dll - ok
14:26:07.0406 4000  [ 9EEFE69139FDBB4A3C327630F8EB993A ] C:\WINDOWS\system32\wlanapi.dll
14:26:07.0406 4000  C:\WINDOWS\system32\wlanapi.dll - ok
14:26:07.0421 4000  [ 3AEF260BE97996854DC1AE645864264A ] C:\Program Files\AVG\AVG2013\avgdiagex.exe
14:26:07.0421 4000  C:\Program Files\AVG\AVG2013\avgdiagex.exe - ok
14:26:07.0421 4000  [ 5A2F938939EAAD5B3328867D57F21ABE ] C:\Program Files\AVG\AVG2013\avgmfapx.exe
14:26:07.0421 4000  C:\Program Files\AVG\AVG2013\avgmfapx.exe - ok
14:26:07.0421 4000  [ 1EF311C44B22C97AB69FE19266CED618 ] C:\Program Files\AVG\AVG2013\htmlayout.dll
14:26:07.0421 4000  C:\Program Files\AVG\AVG2013\htmlayout.dll - ok
14:26:07.0421 4000  [ BDC015F25B1A4721FE862FC3256C182E ] C:\Program Files\AVG\AVG2013\avgupdx.dll
14:26:07.0421 4000  C:\Program Files\AVG\AVG2013\avgupdx.dll - ok
14:26:07.0421 4000  ============================================================
14:26:07.0421 4000  Scan finished
14:26:07.0421 4000  ============================================================
14:26:07.0531 2440  Detected object count: 3
14:26:07.0531 2440  Actual detected object count: 3
14:27:40.0531 2440  cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
14:27:40.0531 2440  cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:27:41.0781 2440  \Device\Harddisk0\DR0\# - copied to quarantine
14:27:41.0812 2440  \Device\Harddisk0\DR0 - copied to quarantine
14:27:41.0875 2440  \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
14:27:41.0906 2440  \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
14:27:41.0906 2440  \Device\Harddisk0\DR0\TDLFS\cmd32.dll - copied to quarantine
14:27:41.0906 2440  \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
14:27:41.0937 2440  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
14:27:41.0953 2440  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
14:27:41.0953 2440  \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
14:27:41.0953 2440  \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
14:27:41.0953 2440  \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
14:27:42.0000 2440  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
14:27:42.0015 2440  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
14:27:42.0015 2440  \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
14:27:42.0015 2440  \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
14:27:42.0015 2440  \Device\Harddisk0\DR0\TDLFS\so - copied to quarantine
14:27:42.0062 2440  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
14:27:42.0093 2440  \Device\Harddisk0\DR0 - ok
14:27:42.0109 2440  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
14:27:42.0109 2440  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
14:27:42.0109 2440  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
14:28:13.0140 2424  Deinitialize success
 



#8 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 18 August 2013 - 02:46 PM

RogueKiller report.  Wave control was still on mute after RogueKiller finished.

 

RogueKiller V8.6.5 [Aug  5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : Becky [Admin rights]
Mode : Remove -- Date : 08/18/2013 14:42:24
| ARK || FAK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] LockStatusTray.exe -- C:\WINDOWS\LockStatusTray.exe [-] -> KILLED [TermProc]

¤¤¤ Registry Entries : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Run : LockStatusTray (C:\WINDOWS\LockStatusTray.exe [-]) -> DELETED
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1       localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000BEVT-00A0RT0 +++++
--- User ---
[MBR] dc845517972bc78652ea2d46cca07f66
[BSP] 0a9b39fc6b6e71a481c8e28ab9ec1984 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476929 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_08182013_144224.txt >>
RKreport[0]_S_08182013_143840.txt


 



#9 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 18 August 2013 - 07:31 PM

hmmm... things might be improving, actually.  I turned up the Wave volume then restarted.  It stayed where I put it after restarting.  I'll continue to keep an eye on things.  Thank you for all your help so far!!



#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:42 PM

Posted 18 August 2013 - 08:56 PM


Hello

"things might be improving, actually. " :)

I would like you to rerun TDSSKiller and this time when it gets to this part
  • \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
    \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
I want you to select Delete this time instead of skip.


Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 18 August 2013 - 10:01 PM

When I run it again, there are two threats detected.  The first is "Unsigned file  Service: cercsr6  Suspicious object, medium risk".  The second is the one that you described. 

 

Do I still select skip on the first one and only select delete on the second one?

 

Thanks



#12 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:42 PM

Posted 18 August 2013 - 10:52 PM

only delete the one I have indicated - leave the other alone


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#13 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 19 August 2013 - 07:11 AM

Ok.. thanks!  Here is the new report...

 

21:53:48.0671 3716  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:53:50.0718 3716  ============================================================
21:53:50.0718 3716  Current date / time: 2013/08/18 21:53:50.0718
21:53:50.0718 3716  SystemInfo:
21:53:50.0718 3716  
21:53:50.0718 3716  OS Version: 5.1.2600 ServicePack: 3.0
21:53:50.0718 3716  Product type: Workstation
21:53:50.0718 3716  ComputerName: PHILLAPTOP
21:53:50.0718 3716  UserName: Becky
21:53:50.0718 3716  Windows directory: C:\WINDOWS
21:53:50.0718 3716  System windows directory: C:\WINDOWS
21:53:50.0718 3716  Processor architecture: Intel x86
21:53:50.0718 3716  Number of processors: 2
21:53:50.0718 3716  Page size: 0x1000
21:53:50.0718 3716  Boot type: Normal boot
21:53:50.0718 3716  ============================================================
21:53:51.0562 3716  BG loaded
21:53:52.0109 3716  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:53:52.0125 3716  ============================================================
21:53:52.0125 3716  \Device\Harddisk0\DR0:
21:53:52.0125 3716  MBR partitions:
21:53:52.0125 3716  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
21:53:52.0125 3716  ============================================================
21:53:52.0250 3716  C: <-> \Device\Harddisk0\DR0\Partition1
21:53:52.0250 3716  ============================================================
21:53:52.0250 3716  Initialize success
21:53:52.0250 3716  ============================================================
21:54:42.0734 1972  ============================================================
21:54:42.0734 1972  Scan started
21:54:42.0734 1972  Mode: Manual; SigCheck; TDLFS;
21:54:42.0734 1972  ============================================================
21:54:42.0875 1972  ================ Scan system memory ========================
21:54:42.0875 1972  System memory - ok
21:54:42.0875 1972  ================ Scan services =============================
21:54:42.0984 1972  Abiosdsk - ok
21:54:43.0000 1972  abp480n5 - ok
21:54:43.0062 1972  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:54:43.0468 1972  ACPI - ok
21:54:43.0515 1972  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
21:54:43.0625 1972  ACPIEC - ok
21:54:43.0718 1972  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:54:43.0750 1972  AdobeFlashPlayerUpdateSvc - ok
21:54:43.0750 1972  adpu160m - ok
21:54:43.0765 1972  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
21:54:43.0937 1972  aec - ok
21:54:43.0984 1972  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
21:54:44.0078 1972  AFD - ok
21:54:44.0078 1972  Aha154x - ok
21:54:44.0078 1972  aic78u2 - ok
21:54:44.0093 1972  aic78xx - ok
21:54:44.0140 1972  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
21:54:44.0296 1972  Alerter - ok
21:54:44.0328 1972  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
21:54:44.0484 1972  ALG - ok
21:54:44.0500 1972  AliIde - ok
21:54:44.0500 1972  amsint - ok
21:54:44.0546 1972  [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
21:54:44.0718 1972  ApfiltrService - ok
21:54:44.0843 1972  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:54:44.0875 1972  Apple Mobile Device - ok
21:54:44.0875 1972  AppMgmt - ok
21:54:44.0921 1972  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:54:45.0093 1972  Arp1394 - ok
21:54:45.0093 1972  asc - ok
21:54:45.0109 1972  asc3350p - ok
21:54:45.0109 1972  asc3550 - ok
21:54:45.0156 1972  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:54:45.0359 1972  AsyncMac - ok
21:54:45.0406 1972  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
21:54:45.0515 1972  atapi - ok
21:54:45.0515 1972  Atdisk - ok
21:54:45.0562 1972  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:54:45.0671 1972  Atmarpc - ok
21:54:45.0718 1972  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
21:54:45.0812 1972  AudioSrv - ok
21:54:45.0843 1972  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
21:54:45.0937 1972  audstub - ok
21:54:46.0140 1972  [ 4DB93F4DB7077801D2D82013506AC1D0 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
21:54:46.0328 1972  AVGIDSAgent - ok
21:54:46.0343 1972  [ 4D7E34E36E586EA26F171A258341BD80 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
21:54:46.0421 1972  AVGIDSDriver - ok
21:54:46.0421 1972  [ 7C8E88549BCDAAC965B1B724C175F7A9 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
21:54:46.0437 1972  AVGIDSHX - ok
21:54:46.0468 1972  [ A426B2DC795531D99E2EE1952AEC051A ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
21:54:46.0484 1972  AVGIDSShim - ok
21:54:46.0500 1972  [ 2018C4E9A40B122408763A5635CF14D9 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
21:54:46.0515 1972  Avgldx86 - ok
21:54:46.0531 1972  [ E2B9CF2CF787C6978E7CC898E9684E48 ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
21:54:46.0546 1972  Avglogx - ok
21:54:46.0546 1972  [ 3F59750A3AA55C46663801E7C2FD1E2B ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
21:54:46.0562 1972  Avgmfx86 - ok
21:54:46.0578 1972  [ EDDE28E993496EE1DC3F0937DFF7BF28 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
21:54:46.0593 1972  Avgrkx86 - ok
21:54:46.0625 1972  [ 14370FB29526F593C04FA48B5D69F7F0 ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
21:54:46.0640 1972  Avgtdix - ok
21:54:46.0703 1972  [ 48939D9F350AEF9370F03A1E49A49BE2 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
21:54:46.0718 1972  avgwd - ok
21:54:46.0765 1972  [ 74A65415DFAAD20F06E7550FA9B6E012 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
21:54:46.0828 1972  b57w2k - ok
21:54:46.0906 1972  [ 37F385A93C620CBE0F89C17E45F697A1 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
21:54:47.0000 1972  BCM43XX - ok
21:54:47.0078 1972  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:54:47.0250 1972  Beep - ok
21:54:47.0359 1972  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
21:54:47.0531 1972  BITS - ok
21:54:47.0593 1972  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:54:47.0625 1972  Bonjour Service - ok
21:54:47.0687 1972  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
21:54:47.0765 1972  Browser - ok
21:54:47.0843 1972  [ 885B6D0F826A216EEE4C3AD883809012 ] BTKRNL          C:\WINDOWS\system32\DRIVERS\btkrnl.sys
21:54:47.0875 1972  BTKRNL - ok
21:54:47.0984 1972  [ 467BC618DEBA4F8DB5A1A5E87510C335 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:54:48.0015 1972  btwdins - ok
21:54:48.0062 1972  [ 57E91E9925976BBC98984EEBAAF1D84C ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
21:54:48.0093 1972  BTWUSB - ok
21:54:48.0265 1972  catchme - ok
21:54:48.0281 1972  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
21:54:48.0390 1972  cbidf2k - ok
21:54:48.0390 1972  cd20xrnt - ok
21:54:48.0421 1972  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
21:54:48.0546 1972  Cdaudio - ok
21:54:48.0609 1972  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
21:54:48.0703 1972  Cdfs - ok
21:54:48.0734 1972  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:54:48.0843 1972  Cdrom - ok
21:54:48.0859 1972  [ 84853B3FD012251690570E9E7E43343F ] cercsr6         C:\WINDOWS\system32\drivers\cercsr6.sys
21:54:48.0875 1972  cercsr6 ( UnsignedFile.Multi.Generic ) - warning
21:54:48.0875 1972  cercsr6 - detected UnsignedFile.Multi.Generic (1)
21:54:48.0875 1972  Changer - ok
21:54:48.0921 1972  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
21:54:49.0031 1972  CiSvc - ok
21:54:49.0062 1972  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
21:54:49.0171 1972  ClipSrv - ok
21:54:49.0187 1972  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:54:49.0296 1972  CmBatt - ok
21:54:49.0296 1972  CmdIde - ok
21:54:49.0312 1972  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:54:49.0421 1972  Compbatt - ok
21:54:49.0421 1972  COMSysApp - ok
21:54:49.0437 1972  Cpqarray - ok
21:54:49.0484 1972  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
21:54:49.0578 1972  CryptSvc - ok
21:54:49.0578 1972  dac2w2k - ok
21:54:49.0593 1972  dac960nt - ok
21:54:49.0640 1972  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:54:49.0687 1972  DcomLaunch - ok
21:54:49.0718 1972  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
21:54:49.0828 1972  Dhcp - ok
21:54:49.0859 1972  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
21:54:49.0968 1972  Disk - ok
21:54:49.0968 1972  dmadmin - ok
21:54:50.0078 1972  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
21:54:50.0218 1972  dmboot - ok
21:54:50.0265 1972  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
21:54:50.0390 1972  dmio - ok
21:54:50.0421 1972  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
21:54:50.0546 1972  dmload - ok
21:54:50.0578 1972  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
21:54:50.0671 1972  dmserver - ok
21:54:50.0687 1972  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
21:54:50.0796 1972  DMusic - ok
21:54:50.0843 1972  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:54:50.0890 1972  Dnscache - ok
21:54:50.0937 1972  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:54:51.0062 1972  Dot3svc - ok
21:54:51.0062 1972  dpti2o - ok
21:54:51.0062 1972  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:54:51.0171 1972  drmkaud - ok
21:54:51.0203 1972  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:54:51.0312 1972  EapHost - ok
21:54:51.0343 1972  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
21:54:51.0453 1972  ERSvc - ok
21:54:51.0500 1972  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
21:54:51.0515 1972  Eventlog - ok
21:54:51.0562 1972  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
21:54:51.0625 1972  EventSystem - ok
21:54:51.0656 1972  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
21:54:51.0781 1972  Fastfat - ok
21:54:51.0828 1972  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:54:51.0906 1972  FastUserSwitchingCompatibility - ok
21:54:51.0953 1972  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
21:54:52.0046 1972  Fdc - ok
21:54:52.0062 1972  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
21:54:52.0156 1972  Fips - ok
21:54:52.0171 1972  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
21:54:52.0281 1972  Flpydisk - ok
21:54:52.0312 1972  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:54:52.0406 1972  FltMgr - ok
21:54:52.0453 1972  [ E0087225B137E57239FF40F8AE82059B ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
21:54:52.0468 1972  fssfltr - ok
21:54:52.0546 1972  [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:54:52.0578 1972  fsssvc - ok
21:54:52.0609 1972  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:54:52.0718 1972  Fs_Rec - ok
21:54:52.0734 1972  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:54:52.0843 1972  Ftdisk - ok
21:54:52.0890 1972  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:54:52.0906 1972  GEARAspiWDM - ok
21:54:52.0937 1972  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:54:53.0046 1972  Gpc - ok
21:54:53.0078 1972  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:54:53.0171 1972  HDAudBus - ok
21:54:53.0265 1972  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:54:53.0375 1972  helpsvc - ok
21:54:53.0421 1972  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
21:54:53.0531 1972  HidServ - ok
21:54:53.0546 1972  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:54:53.0656 1972  hidusb - ok
21:54:53.0703 1972  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
21:54:53.0828 1972  hkmsvc - ok
21:54:53.0828 1972  hpn - ok
21:54:53.0890 1972  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
21:54:53.0953 1972  HTTP - ok
21:54:53.0984 1972  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
21:54:54.0109 1972  HTTPFilter - ok
21:54:54.0109 1972  i2omgmt - ok
21:54:54.0109 1972  i2omp - ok
21:54:54.0140 1972  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:54:54.0250 1972  i8042prt - ok
21:54:54.0421 1972  [ 8B998E6C0AEBBAECD6DA33DF947695D3 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
21:54:54.0671 1972  ialm - ok
21:54:54.0750 1972  [ 2358C53F30CB9DCD1D3843C4E2F299B2 ] iastor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
21:54:54.0781 1972  iastor - ok
21:54:54.0781 1972  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
21:54:54.0984 1972  Imapi - ok
21:54:55.0015 1972  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
21:54:55.0109 1972  ImapiService - ok
21:54:55.0125 1972  ini910u - ok
21:54:55.0125 1972  IntelIde - ok
21:54:55.0171 1972  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:54:55.0265 1972  intelppm - ok
21:54:55.0296 1972  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
21:54:55.0406 1972  Ip6Fw - ok
21:54:55.0437 1972  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:54:55.0531 1972  IpFilterDriver - ok
21:54:55.0546 1972  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:54:55.0656 1972  IpInIp - ok
21:54:55.0687 1972  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:54:55.0796 1972  IpNat - ok
21:54:55.0859 1972  [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:54:55.0875 1972  iPod Service - ok
21:54:55.0921 1972  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:54:56.0031 1972  IPSec - ok
21:54:56.0046 1972  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
21:54:56.0171 1972  IRENUM - ok
21:54:56.0218 1972  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:54:56.0328 1972  isapnp - ok
21:54:56.0421 1972  [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:54:56.0437 1972  JavaQuickStarterService - ok
21:54:56.0468 1972  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:54:56.0578 1972  Kbdclass - ok
21:54:56.0609 1972  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:54:56.0703 1972  kbdhid - ok
21:54:56.0718 1972  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
21:54:56.0828 1972  kmixer - ok
21:54:56.0875 1972  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
21:54:56.0953 1972  KSecDD - ok
21:54:57.0000 1972  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
21:54:57.0062 1972  lanmanserver - ok
21:54:57.0109 1972  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:54:57.0171 1972  lanmanworkstation - ok
21:54:57.0218 1972  [ 9FFD1CF2A782F2560E78EEC4B8B8689E ] LBeepKE         C:\WINDOWS\system32\Drivers\LBeepKE.sys
21:54:57.0234 1972  LBeepKE - ok
21:54:57.0234 1972  lbrtfdc - ok
21:54:57.0296 1972  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
21:54:57.0406 1972  LmHosts - ok
21:54:57.0453 1972  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
21:54:57.0625 1972  Messenger - ok
21:54:57.0718 1972  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:54:57.0734 1972  Microsoft Office Groove Audit Service - ok
21:54:57.0781 1972  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
21:54:57.0921 1972  mnmdd - ok
21:54:57.0937 1972  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
21:54:58.0093 1972  mnmsrvc - ok
21:54:58.0109 1972  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
21:54:58.0218 1972  Modem - ok
21:54:58.0234 1972  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:54:58.0328 1972  Mouclass - ok
21:54:58.0390 1972  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:54:58.0484 1972  mouhid - ok
21:54:58.0531 1972  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
21:54:58.0640 1972  MountMgr - ok
21:54:58.0687 1972  [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:54:58.0703 1972  MozillaMaintenance - ok
21:54:58.0703 1972  mraid35x - ok
21:54:58.0703 1972  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:54:58.0828 1972  MRxDAV - ok
21:54:58.0875 1972  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:54:58.0937 1972  MRxSmb - ok
21:54:58.0984 1972  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
21:54:59.0093 1972  MSDTC - ok
21:54:59.0093 1972  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:54:59.0234 1972  Msfs - ok
21:54:59.0234 1972  MSIServer - ok
21:54:59.0250 1972  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:54:59.0343 1972  MSKSSRV - ok
21:54:59.0343 1972  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:54:59.0437 1972  MSPCLOCK - ok
21:54:59.0453 1972  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:54:59.0578 1972  MSPQM - ok
21:54:59.0609 1972  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:54:59.0703 1972  mssmbios - ok
21:54:59.0734 1972  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
21:54:59.0812 1972  Mup - ok
21:54:59.0843 1972  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
21:54:59.0968 1972  napagent - ok
21:55:00.0015 1972  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
21:55:00.0125 1972  NDIS - ok
21:55:00.0187 1972  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:55:00.0234 1972  NdisTapi - ok
21:55:00.0281 1972  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:55:00.0390 1972  Ndisuio - ok
21:55:00.0390 1972  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:55:00.0500 1972  NdisWan - ok
21:55:00.0531 1972  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:55:00.0609 1972  NDProxy - ok
21:55:00.0625 1972  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:55:00.0718 1972  NetBIOS - ok
21:55:00.0781 1972  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:55:00.0890 1972  NetBT - ok
21:55:00.0937 1972  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
21:55:01.0046 1972  NetDDE - ok
21:55:01.0046 1972  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
21:55:01.0140 1972  NetDDEdsdm - ok
21:55:01.0187 1972  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:55:01.0281 1972  Netlogon - ok
21:55:01.0328 1972  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
21:55:01.0421 1972  Netman - ok
21:55:01.0437 1972  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:55:01.0546 1972  NIC1394 - ok
21:55:01.0578 1972  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
21:55:01.0609 1972  Nla - ok
21:55:01.0656 1972  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:55:01.0750 1972  Npfs - ok
21:55:01.0781 1972  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:55:01.0906 1972  Ntfs - ok
21:55:01.0937 1972  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
21:55:02.0046 1972  NtLmSsp - ok
21:55:02.0187 1972  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
21:55:02.0328 1972  NtmsSvc - ok
21:55:02.0343 1972  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:55:02.0468 1972  Null - ok
21:55:02.0500 1972  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:55:02.0609 1972  NwlnkFlt - ok
21:55:02.0609 1972  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:55:02.0734 1972  NwlnkFwd - ok
21:55:02.0828 1972  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:55:02.0843 1972  odserv - ok
21:55:02.0875 1972  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:55:02.0968 1972  ohci1394 - ok
21:55:03.0000 1972  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:55:03.0015 1972  ose - ok
21:55:03.0046 1972  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
21:55:03.0156 1972  Parport - ok
21:55:03.0156 1972  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
21:55:03.0281 1972  PartMgr - ok
21:55:03.0312 1972  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
21:55:03.0421 1972  ParVdm - ok
21:55:03.0437 1972  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
21:55:03.0546 1972  PCI - ok
21:55:03.0562 1972  PCIDump - ok
21:55:03.0578 1972  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
21:55:03.0671 1972  PCIIde - ok
21:55:03.0734 1972  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
21:55:03.0843 1972  Pcmcia - ok
21:55:03.0843 1972  PDCOMP - ok
21:55:03.0843 1972  PDFRAME - ok
21:55:03.0859 1972  PDRELI - ok
21:55:03.0859 1972  PDRFRAME - ok
21:55:03.0859 1972  perc2 - ok
21:55:03.0859 1972  perc2hib - ok
21:55:03.0906 1972  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
21:55:03.0921 1972  PlugPlay - ok
21:55:03.0953 1972  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
21:55:04.0031 1972  PolicyAgent - ok
21:55:04.0062 1972  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:55:04.0156 1972  PptpMiniport - ok
21:55:04.0171 1972  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:55:04.0250 1972  ProtectedStorage - ok
21:55:04.0265 1972  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
21:55:04.0359 1972  PSched - ok
21:55:04.0359 1972  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:55:04.0484 1972  Ptilink - ok
21:55:04.0484 1972  ql1080 - ok
21:55:04.0500 1972  Ql10wnt - ok
21:55:04.0500 1972  ql12160 - ok
21:55:04.0500 1972  ql1240 - ok
21:55:04.0500 1972  ql1280 - ok
21:55:04.0531 1972  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:55:04.0640 1972  RasAcd - ok
21:55:04.0687 1972  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:55:04.0796 1972  RasAuto - ok
21:55:04.0828 1972  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:55:04.0921 1972  Rasl2tp - ok
21:55:04.0968 1972  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:55:05.0062 1972  RasMan - ok
21:55:05.0062 1972  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:55:05.0156 1972  RasPppoe - ok
21:55:05.0187 1972  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
21:55:05.0281 1972  Raspti - ok
21:55:05.0328 1972  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:55:05.0421 1972  Rdbss - ok
21:55:05.0453 1972  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:55:05.0546 1972  RDPCDD - ok
21:55:05.0593 1972  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
21:55:05.0640 1972  RDPWD - ok
21:55:05.0687 1972  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
21:55:05.0781 1972  RDSessMgr - ok
21:55:05.0812 1972  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
21:55:05.0921 1972  redbook - ok
21:55:05.0968 1972  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:55:06.0078 1972  RemoteAccess - ok
21:55:06.0109 1972  [ 355AAC141B214BEF1DBC1483AFD9BD50 ] rimmptsk        C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
21:55:06.0171 1972  rimmptsk - ok
21:55:06.0187 1972  [ A4216C71DD4F60B26418CCFD99CD0815 ] rimsptsk        C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
21:55:06.0218 1972  rimsptsk - ok
21:55:06.0218 1972  [ D231B577024AA324AF13A42F3A807D10 ] rismxdp         C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
21:55:06.0234 1972  rismxdp - ok
21:55:06.0265 1972  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:55:06.0375 1972  RpcLocator - ok
21:55:06.0406 1972  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll
21:55:06.0437 1972  RpcSs - ok
21:55:06.0484 1972  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
21:55:06.0593 1972  RSVP - ok
21:55:06.0625 1972  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:55:06.0718 1972  SamSs - ok
21:55:06.0750 1972  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
21:55:06.0843 1972  SCardSvr - ok
21:55:06.0890 1972  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:55:07.0000 1972  Schedule - ok
21:55:07.0015 1972  [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
21:55:07.0125 1972  sdbus - ok
21:55:07.0140 1972  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:55:07.0265 1972  Secdrv - ok
21:55:07.0296 1972  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
21:55:07.0390 1972  seclogon - ok
21:55:07.0421 1972  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
21:55:07.0531 1972  SENS - ok
21:55:07.0562 1972  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
21:55:07.0671 1972  Serial - ok
21:55:07.0687 1972  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
21:55:07.0796 1972  Sfloppy - ok
21:55:07.0843 1972  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:55:07.0937 1972  SharedAccess - ok
21:55:07.0968 1972  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:55:08.0000 1972  ShellHWDetection - ok
21:55:08.0000 1972  Simbad - ok
21:55:08.0000 1972  Sparrow - ok
21:55:08.0015 1972  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
21:55:08.0125 1972  splitter - ok
21:55:08.0171 1972  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
21:55:08.0234 1972  Spooler - ok
21:55:08.0250 1972  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
21:55:08.0359 1972  sr - ok
21:55:08.0406 1972  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
21:55:08.0515 1972  srservice - ok
21:55:08.0546 1972  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:55:08.0578 1972  Srv - ok
21:55:08.0625 1972  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:55:08.0750 1972  SSDPSRV - ok
21:55:08.0796 1972  [ 6F855B5625A47F3AC731A262FDC379A6 ] STacSV          C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\STacSV.exe
21:55:08.0859 1972  STacSV - ok
21:55:08.0906 1972  [ 951801DFB54D86F611F0AF47825476F9 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
21:55:08.0953 1972  STHDA - ok
21:55:09.0015 1972  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
21:55:09.0109 1972  stisvc - ok
21:55:09.0171 1972  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
21:55:09.0281 1972  swenum - ok
21:55:09.0312 1972  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
21:55:09.0421 1972  swmidi - ok
21:55:09.0421 1972  SwPrv - ok
21:55:09.0437 1972  symc810 - ok
21:55:09.0437 1972  symc8xx - ok
21:55:09.0437 1972  sym_hi - ok
21:55:09.0437 1972  sym_u3 - ok
21:55:09.0468 1972  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
21:55:09.0578 1972  sysaudio - ok
21:55:09.0625 1972  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
21:55:09.0718 1972  SysmonLog - ok
21:55:09.0765 1972  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:55:09.0859 1972  TapiSrv - ok
21:55:09.0906 1972  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:55:09.0937 1972  Tcpip - ok
21:55:09.0968 1972  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
21:55:10.0078 1972  TDPIPE - ok
21:55:10.0125 1972  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
21:55:10.0218 1972  TDTCP - ok
21:55:10.0234 1972  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
21:55:10.0328 1972  TermDD - ok
21:55:10.0375 1972  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
21:55:10.0484 1972  TermService - ok
21:55:10.0484 1972  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
21:55:10.0515 1972  Themes - ok
21:55:10.0515 1972  TosIde - ok
21:55:10.0546 1972  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
21:55:10.0656 1972  TrkWks - ok
21:55:10.0703 1972  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
21:55:10.0812 1972  Udfs - ok
21:55:10.0812 1972  ultra - ok
21:55:10.0859 1972  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
21:55:10.0953 1972  Update - ok
21:55:11.0000 1972  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:55:11.0109 1972  upnphost - ok
21:55:11.0140 1972  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
21:55:11.0250 1972  UPS - ok
21:55:11.0296 1972  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:55:11.0390 1972  usbccgp - ok
21:55:11.0437 1972  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:55:11.0546 1972  usbehci - ok
21:55:11.0562 1972  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:55:11.0671 1972  usbhub - ok
21:55:11.0718 1972  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:55:11.0812 1972  usbprint - ok
21:55:11.0859 1972  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:55:11.0953 1972  usbscan - ok
21:55:11.0953 1972  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:55:12.0046 1972  USBSTOR - ok
21:55:12.0093 1972  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:55:12.0187 1972  usbuhci - ok
21:55:12.0218 1972  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
21:55:12.0328 1972  VgaSave - ok
21:55:12.0328 1972  ViaIde - ok
21:55:12.0343 1972  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
21:55:12.0500 1972  VolSnap - ok
21:55:12.0625 1972  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
21:55:12.0734 1972  VSS - ok
21:55:12.0812 1972  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
21:55:12.0937 1972  W32Time - ok
21:55:12.0984 1972  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:55:13.0109 1972  Wanarp - ok
21:55:13.0156 1972  [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:55:13.0187 1972  Wdf01000 - ok
21:55:13.0203 1972  WDICA - ok
21:55:13.0234 1972  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
21:55:13.0359 1972  wdmaud - ok
21:55:13.0406 1972  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:55:13.0515 1972  WebClient - ok
21:55:13.0625 1972  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:55:13.0765 1972  winmgmt - ok
21:55:13.0781 1972  wltrysvc - ok
21:55:13.0828 1972  [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
21:55:13.0968 1972  WmdmPmSN - ok
21:55:14.0000 1972  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:55:14.0156 1972  WmiAcpi - ok
21:55:14.0203 1972  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:55:14.0312 1972  WmiApSrv - ok
21:55:14.0359 1972  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:55:14.0484 1972  WS2IFSL - ok
21:55:14.0531 1972  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
21:55:14.0640 1972  wscsvc - ok
21:55:14.0656 1972  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
21:55:14.0765 1972  wuauserv - ok
21:55:14.0812 1972  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
21:55:14.0937 1972  WZCSVC - ok
21:55:14.0953 1972  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
21:55:15.0078 1972  xmlprov - ok
21:55:15.0093 1972  ================ Scan global ===============================
21:55:15.0140 1972  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:55:15.0187 1972  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
21:55:15.0203 1972  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
21:55:15.0218 1972  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
21:55:15.0218 1972  [Global] - ok
21:55:15.0218 1972  ================ Scan MBR ==================================
21:55:15.0234 1972  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
21:55:15.0671 1972  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
21:55:15.0671 1972  \Device\Harddisk0\DR0 - detected TDSS File System (1)
21:55:15.0671 1972  ================ Scan VBR ==================================
21:55:15.0671 1972  [ 59EE6A23392C324710886FA47470C869 ] \Device\Harddisk0\DR0\Partition1
21:55:15.0671 1972  \Device\Harddisk0\DR0\Partition1 - ok
21:55:15.0671 1972  ================ Scan active images ========================
21:55:15.0687 1972  [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
21:55:15.0687 1972  C:\WINDOWS\system32\drivers\intelppm.sys - ok
21:55:15.0687 1972  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
21:55:15.0687 1972  C:\WINDOWS\system32\drivers\videoprt.sys - ok
21:55:15.0703 1972  [ 8B998E6C0AEBBAECD6DA33DF947695D3 ] C:\WINDOWS\system32\drivers\igxpmp32.sys
21:55:15.0703 1972  C:\WINDOWS\system32\drivers\igxpmp32.sys - ok
21:55:15.0703 1972  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
21:55:15.0703 1972  C:\WINDOWS\system32\drivers\usbport.sys - ok
21:55:15.0718 1972  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
21:55:15.0718 1972  C:\WINDOWS\system32\drivers\usbehci.sys - ok
21:55:15.0718 1972  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
21:55:15.0718 1972  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
21:55:15.0734 1972  [ 37F385A93C620CBE0F89C17E45F697A1 ] C:\WINDOWS\system32\drivers\BCMWL5.SYS
21:55:15.0734 1972  C:\WINDOWS\system32\drivers\BCMWL5.SYS - ok
21:55:15.0734 1972  [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
21:55:15.0734 1972  C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
21:55:15.0750 1972  [ 74A65415DFAAD20F06E7550FA9B6E012 ] C:\WINDOWS\system32\drivers\b57xp32.sys
21:55:15.0750 1972  C:\WINDOWS\system32\drivers\b57xp32.sys - ok
21:55:15.0750 1972  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] C:\WINDOWS\system32\drivers\nic1394.sys
21:55:15.0750 1972  C:\WINDOWS\system32\drivers\nic1394.sys - ok
21:55:15.0765 1972  [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] C:\WINDOWS\system32\drivers\Apfiltr.sys
21:55:15.0765 1972  C:\WINDOWS\system32\drivers\Apfiltr.sys - ok
21:55:15.0765 1972  [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
21:55:15.0765 1972  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
21:55:15.0781 1972  [ 355AAC141B214BEF1DBC1483AFD9BD50 ] C:\WINDOWS\system32\drivers\rimmptsk.sys
21:55:15.0781 1972  C:\WINDOWS\system32\drivers\rimmptsk.sys - ok
21:55:15.0781 1972  [ A4216C71DD4F60B26418CCFD99CD0815 ] C:\WINDOWS\system32\drivers\rimsptsk.sys
21:55:15.0781 1972  C:\WINDOWS\system32\drivers\rimsptsk.sys - ok
21:55:15.0796 1972  [ D231B577024AA324AF13A42F3A807D10 ] C:\WINDOWS\system32\drivers\rixdptsk.sys
21:55:15.0796 1972  C:\WINDOWS\system32\drivers\rixdptsk.sys - ok
21:55:15.0796 1972  [ 8D04819A3CE51B9EB47E5689B44D43C4 ] C:\WINDOWS\system32\drivers\sdbus.sys
21:55:15.0796 1972  C:\WINDOWS\system32\drivers\sdbus.sys - ok
21:55:15.0796 1972  [ DED98A3E466251CCAB93D579144B048C ] C:\WINDOWS\system32\drivers\wdfldr.sys
21:55:15.0796 1972  C:\WINDOWS\system32\drivers\wdfldr.sys - ok
21:55:15.0812 1972  [ FD47474BD21794508AF449D9D91AF6E6 ] C:\WINDOWS\system32\drivers\wdf01000.sys
21:55:15.0812 1972  C:\WINDOWS\system32\drivers\wdf01000.sys - ok
21:55:15.0812 1972  [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
21:55:15.0812 1972  C:\WINDOWS\system32\drivers\mouclass.sys - ok
21:55:15.0828 1972  [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
21:55:15.0828 1972  C:\WINDOWS\system32\drivers\cdrom.sys - ok
21:55:15.0828 1972  [ 0F6C187D38D98F8DF904589A5F94D411 ] C:\WINDOWS\system32\drivers\cmbatt.sys
21:55:15.0828 1972  C:\WINDOWS\system32\drivers\cmbatt.sys - ok
21:55:15.0828 1972  [ 185ADA973B5020655CEE342059A86CBB ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
21:55:15.0828 1972  C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
21:55:15.0828 1972  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
21:55:15.0828 1972  C:\WINDOWS\system32\drivers\imapi.sys - ok
21:55:15.0843 1972  [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
21:55:15.0843 1972  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
21:55:15.0843 1972  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
21:55:15.0843 1972  C:\WINDOWS\system32\drivers\ks.sys - ok
21:55:15.0843 1972  [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
21:55:15.0843 1972  C:\WINDOWS\system32\drivers\redbook.sys - ok
21:55:15.0859 1972  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
21:55:15.0859 1972  C:\WINDOWS\system32\drivers\audstub.sys - ok
21:55:15.0859 1972  [ 885B6D0F826A216EEE4C3AD883809012 ] C:\WINDOWS\system32\drivers\btkrnl.sys
21:55:15.0859 1972  C:\WINDOWS\system32\drivers\btkrnl.sys - ok
21:55:15.0859 1972  [ C42584FD66CE9E17403AEBCA199F7BDB ] C:\WINDOWS\system32\drivers\wmiacpi.sys
21:55:15.0859 1972  C:\WINDOWS\system32\drivers\wmiacpi.sys - ok
21:55:15.0859 1972  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
21:55:15.0859 1972  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
21:55:15.0875 1972  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
21:55:15.0875 1972  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
21:55:15.0875 1972  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
21:55:15.0875 1972  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
21:55:15.0875 1972  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
21:55:15.0875 1972  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
21:55:15.0875 1972  [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
21:55:15.0875 1972  C:\WINDOWS\system32\drivers\tdi.sys - ok
21:55:15.0890 1972  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
21:55:15.0890 1972  C:\WINDOWS\system32\drivers\msgpc.sys - ok
21:55:15.0890 1972  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
21:55:15.0890 1972  C:\WINDOWS\system32\drivers\psched.sys - ok
21:55:15.0890 1972  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
21:55:15.0890 1972  C:\WINDOWS\system32\drivers\ptilink.sys - ok
21:55:15.0890 1972  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
21:55:15.0890 1972  C:\WINDOWS\system32\drivers\raspptp.sys - ok
21:55:15.0906 1972  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
21:55:15.0906 1972  C:\WINDOWS\system32\drivers\raspti.sys - ok
21:55:15.0906 1972  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
21:55:15.0906 1972  C:\WINDOWS\system32\drivers\termdd.sys - ok
21:55:15.0906 1972  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
21:55:15.0906 1972  C:\WINDOWS\system32\drivers\swenum.sys - ok
21:55:15.0906 1972  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
21:55:15.0906 1972  C:\WINDOWS\system32\drivers\update.sys - ok
21:55:15.0921 1972  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
21:55:15.0921 1972  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
21:55:15.0921 1972  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
21:55:15.0921 1972  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
21:55:15.0921 1972  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
21:55:15.0921 1972  C:\WINDOWS\system32\drivers\usbd.sys - ok
21:55:15.0921 1972  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
21:55:15.0921 1972  C:\WINDOWS\system32\drivers\usbhub.sys - ok
21:55:15.0921 1972  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
21:55:15.0921 1972  C:\WINDOWS\system32\drivers\drmk.sys - ok
21:55:15.0937 1972  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
21:55:15.0937 1972  C:\WINDOWS\system32\drivers\portcls.sys - ok
21:55:15.0937 1972  [ 951801DFB54D86F611F0AF47825476F9 ] C:\WINDOWS\system32\drivers\sthda.sys
21:55:15.0937 1972  C:\WINDOWS\system32\drivers\sthda.sys - ok
21:55:15.0937 1972  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
21:55:15.0937 1972  C:\WINDOWS\system32\drivers\fdc.sys - ok
21:55:15.0937 1972  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
21:55:15.0937 1972  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
21:55:15.0953 1972  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
21:55:15.0953 1972  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
21:55:15.0953 1972  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
21:55:15.0953 1972  C:\WINDOWS\system32\drivers\beep.sys - ok
21:55:15.0953 1972  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
21:55:15.0953 1972  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
21:55:15.0953 1972  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
21:55:15.0953 1972  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
21:55:15.0968 1972  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
21:55:15.0968 1972  C:\WINDOWS\system32\drivers\hidparse.sys - ok
21:55:15.0968 1972  [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
21:55:15.0968 1972  C:\WINDOWS\system32\drivers\kbdhid.sys - ok
21:55:15.0968 1972  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
21:55:15.0968 1972  C:\WINDOWS\system32\drivers\null.sys - ok
21:55:15.0968 1972  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
21:55:15.0968 1972  C:\WINDOWS\system32\drivers\vga.sys - ok
21:55:15.0984 1972  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
21:55:15.0984 1972  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
21:55:15.0984 1972  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
21:55:15.0984 1972  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
21:55:15.0984 1972  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
21:55:15.0984 1972  C:\WINDOWS\system32\drivers\msfs.sys - ok
21:55:15.0984 1972  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
21:55:15.0984 1972  C:\WINDOWS\system32\drivers\npfs.sys - ok
21:55:16.0000 1972  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
21:55:16.0000 1972  C:\WINDOWS\system32\drivers\ipsec.sys - ok
21:55:16.0000 1972  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
21:55:16.0000 1972  C:\WINDOWS\system32\drivers\rasacd.sys - ok
21:55:16.0000 1972  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
21:55:16.0000 1972  C:\WINDOWS\system32\drivers\tcpip.sys - ok
21:55:16.0000 1972  [ 14370FB29526F593C04FA48B5D69F7F0 ] C:\WINDOWS\system32\drivers\avgtdix.sys
21:55:16.0000 1972  C:\WINDOWS\system32\drivers\avgtdix.sys - ok
21:55:16.0015 1972  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
21:55:16.0015 1972  C:\WINDOWS\system32\drivers\ipnat.sys - ok
21:55:16.0015 1972  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
21:55:16.0015 1972  C:\WINDOWS\system32\drivers\netbt.sys - ok
21:55:16.0015 1972  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:55:16.0015 1972  C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
21:55:16.0015 1972  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
21:55:16.0015 1972  C:\WINDOWS\system32\drivers\afd.sys - ok
21:55:16.0015 1972  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
21:55:16.0015 1972  C:\WINDOWS\system32\drivers\netbios.sys - ok
21:55:16.0031 1972  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
21:55:16.0031 1972  C:\WINDOWS\system32\drivers\rdbss.sys - ok
21:55:16.0031 1972  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
21:55:16.0031 1972  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
21:55:16.0031 1972  [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
21:55:16.0031 1972  C:\WINDOWS\system32\drivers\fips.sys - ok
21:55:16.0031 1972  [ 2018C4E9A40B122408763A5635CF14D9 ] C:\WINDOWS\system32\drivers\avgldx86.sys
21:55:16.0031 1972  C:\WINDOWS\system32\drivers\avgldx86.sys - ok
21:55:16.0046 1972  [ 57E91E9925976BBC98984EEBAAF1D84C ] C:\WINDOWS\system32\drivers\btwusb.sys
21:55:16.0046 1972  C:\WINDOWS\system32\drivers\btwusb.sys - ok
21:55:16.0046 1972  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
21:55:16.0046 1972  C:\WINDOWS\system32\drivers\hidclass.sys - ok
21:55:16.0046 1972  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
21:55:16.0046 1972  C:\WINDOWS\system32\drivers\hidusb.sys - ok
21:55:16.0046 1972  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
21:55:16.0046 1972  C:\WINDOWS\system32\drivers\wanarp.sys - ok
21:55:16.0062 1972  [ B5B8A80875C1DEDEDA8B02765642C32F ] C:\WINDOWS\system32\drivers\arp1394.sys
21:55:16.0062 1972  C:\WINDOWS\system32\drivers\arp1394.sys - ok
21:55:16.0062 1972  [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
21:55:16.0062 1972  C:\WINDOWS\system32\drivers\mouhid.sys - ok
21:55:16.0062 1972  [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
21:55:16.0062 1972  C:\WINDOWS\system32\drivers\usbccgp.sys - ok
21:55:16.0062 1972  [ A426B2DC795531D99E2EE1952AEC051A ] C:\WINDOWS\system32\drivers\avgidsshimx.sys
21:55:16.0062 1972  C:\WINDOWS\system32\drivers\avgidsshimx.sys - ok
21:55:16.0078 1972  [ 4D7E34E36E586EA26F171A258341BD80 ] C:\WINDOWS\system32\drivers\avgidsdriverx.sys
21:55:16.0078 1972  C:\WINDOWS\system32\drivers\avgidsdriverx.sys - ok
21:55:16.0078 1972  [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
21:55:16.0078 1972  C:\WINDOWS\system32\autochk.exe - ok
21:55:16.0078 1972  [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
21:55:16.0078 1972  C:\WINDOWS\system32\ntdll.dll - ok
21:55:16.0078 1972  [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
21:55:16.0078 1972  C:\WINDOWS\system32\smss.exe - ok
21:55:16.0093 1972  [ 8BEC8631AED9C58EF8DD7CE1755F86AA ] C:\Program Files\AVG\AVG2013\avgsysx.dll
21:55:16.0093 1972  C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
21:55:16.0093 1972  [ B1EC3A650C8640BA5094D7C4F02A798B ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
21:55:16.0093 1972  C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
21:55:16.0093 1972  [ 21139ED432EFB4A8CDF715862DBDF9E0 ] C:\Program Files\AVG\AVG2013\avglogx.dll
21:55:16.0093 1972  C:\Program Files\AVG\AVG2013\avglogx.dll - ok
21:55:16.0093 1972  [ AE4D9DC676A2517DEE3E51978BCFE47C ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
21:55:16.0093 1972  C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
21:55:16.0109 1972  [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
21:55:16.0109 1972  C:\WINDOWS\system32\drivers\cdfs.sys - ok
21:55:16.0109 1972  [ AFEE19399CF992A098309F7FDF87880A ] C:\WINDOWS\system32\ntoskrnl.exe
21:55:16.0109 1972  C:\WINDOWS\system32\ntoskrnl.exe - ok
21:55:16.0109 1972  [ 8564728CB493B0704EDB9A3607B3DDE9 ] C:\Program Files\AVG\AVG2013\avgcommx.dll
21:55:16.0109 1972  C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
21:55:16.0109 1972  [ A58368EB286021D25876D351E4CF6DCB ] C:\Program Files\AVG\AVG2013\avgwd.dll
21:55:16.0109 1972  C:\Program Files\AVG\AVG2013\avgwd.dll - ok
21:55:16.0109 1972  [ 48939D9F350AEF9370F03A1E49A49BE2 ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
21:55:16.0109 1972  C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
21:55:16.0125 1972  [ 62D32E9C2C63C113BFD011423719B292 ] C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
21:55:16.0125 1972  C:\Program Files\AVG\AVG2013\avgkrnlapix.dll - ok
21:55:16.0125 1972  [ 3F4DE64257DAC6B892EC2AD0CEEEFF68 ] C:\Program Files\AVG\AVG2013\avgnsx.exe
21:55:16.0125 1972  C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
21:55:16.0125 1972  [ 4DB93F4DB7077801D2D82013506AC1D0 ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
21:55:16.0125 1972  C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
21:55:16.0125 1972  [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
21:55:16.0125 1972  C:\WINDOWS\system32\csrss.exe - ok
21:55:16.0140 1972  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
21:55:16.0140 1972  C:\WINDOWS\system32\kbdus.dll - ok
21:55:16.0140 1972  [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
21:55:16.0140 1972  C:\WINDOWS\system32\lz32.dll - ok
21:55:16.0140 1972  [ 05F3DB567EAE368AE3BBD7E973490646 ] C:\WINDOWS\system32\ntkrnlpa.exe
21:55:16.0140 1972  C:\WINDOWS\system32\ntkrnlpa.exe - ok
21:55:16.0140 1972  [ A6639BC625634614DC30392BD81C4001 ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
21:55:16.0140 1972  C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
21:55:16.0156 1972  [ 67DABFB8EB4AFA87C558504D5FCD43C8 ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
21:55:16.0156 1972  C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
21:55:16.0156 1972  [ 99F59B3392AD68F08BB528791F5D880D ] C:\WINDOWS\system32\oleaccrc.dll
21:55:16.0156 1972  C:\WINDOWS\system32\oleaccrc.dll - ok
21:55:16.0156 1972  [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
21:55:16.0156 1972  C:\WINDOWS\system32\rasadhlp.dll - ok
21:55:16.0156 1972  [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
21:55:16.0156 1972  C:\WINDOWS\system32\sfc.dll - ok
21:55:16.0171 1972  [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
21:55:16.0171 1972  C:\WINDOWS\system32\vga.dll - ok
21:55:16.0171 1972  [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
21:55:16.0171 1972  C:\WINDOWS\system32\wmi.dll - ok
21:55:16.0171 1972  [ 71EA9078F6E1246B0BBD746C2999723F ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
21:55:16.0171 1972  C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
21:55:16.0171 1972  [ EC45360EF69F034D2D6F52AFE88EA88D ] C:\Program Files\AVG\AVG2013\avgemcx.exe
21:55:16.0171 1972  C:\Program Files\AVG\AVG2013\avgemcx.exe - ok
21:55:16.0171 1972  [ F65BEBE969C232F60C7A13B0F00FB52C ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
21:55:16.0171 1972  C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
21:55:16.0187 1972  [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
21:55:16.0187 1972  C:\WINDOWS\system32\csrsrv.dll - ok
21:55:16.0187 1972  [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
21:55:16.0187 1972  C:\WINDOWS\system32\dimsntfy.dll - ok
21:55:16.0187 1972  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
21:55:16.0187 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll - ok
21:55:16.0187 1972  [ BC83108B18756547013ED443B8CDB31B ] C:\WINDOWS\system32\msvcp100.dll
21:55:16.0187 1972  C:\WINDOWS\system32\msvcp100.dll - ok
21:55:16.0203 1972  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\WINDOWS\system32\msvcr100.dll
21:55:16.0203 1972  C:\WINDOWS\system32\msvcr100.dll - ok
21:55:16.0203 1972  [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
21:55:16.0203 1972  C:\WINDOWS\system32\secur32.dll - ok
21:55:16.0203 1972  [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
21:55:16.0203 1972  C:\WINDOWS\system32\wdigest.dll - ok
21:55:16.0203 1972  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
21:55:16.0203 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll - ok
21:55:16.0218 1972  [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll
21:55:16.0218 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll - ok
21:55:16.0218 1972  [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
21:55:16.0218 1972  C:\WINDOWS\system32\atl.dll - ok
21:55:16.0218 1972  [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
21:55:16.0218 1972  C:\WINDOWS\system32\dnsrslvr.dll - ok
21:55:16.0218 1972  [ 825D8F0021169DEE6738A9456767170B ] C:\WINDOWS\system32\iertutil.dll
21:55:16.0218 1972  C:\WINDOWS\system32\iertutil.dll - ok
21:55:16.0234 1972  [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
21:55:16.0234 1972  C:\WINDOWS\system32\msasn1.dll - ok
21:55:16.0234 1972  [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
21:55:16.0234 1972  C:\WINDOWS\system32\netapi32.dll - ok
21:55:16.0234 1972  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
21:55:16.0234 1972  C:\WINDOWS\system32\oleacc.dll - ok
21:55:16.0234 1972  [ 86440EDFF27095E03741AEDC5752AA51 ] C:\WINDOWS\system32\olecnv32.dll
21:55:16.0234 1972  C:\WINDOWS\system32\olecnv32.dll - ok
21:55:16.0234 1972  [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
21:55:16.0234 1972  C:\WINDOWS\system32\es.dll - ok
21:55:16.0250 1972  [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
21:55:16.0250 1972  C:\WINDOWS\system32\gdi32.dll - ok
21:55:16.0250 1972  [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
21:55:16.0250 1972  C:\WINDOWS\system32\lsasrv.dll - ok
21:55:16.0250 1972  [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
21:55:16.0250 1972  C:\WINDOWS\system32\mswsock.dll - ok
21:55:16.0250 1972  [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
21:55:16.0250 1972  C:\WINDOWS\system32\raschap.dll - ok
21:55:16.0265 1972  [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
21:55:16.0265 1972  C:\WINDOWS\system32\rpcss.dll - ok
21:55:16.0265 1972  [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
21:55:16.0265 1972  C:\WINDOWS\system32\schannel.dll - ok
21:55:16.0265 1972  [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
21:55:16.0265 1972  C:\WINDOWS\system32\advapi32.dll - ok
21:55:16.0265 1972  [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
21:55:16.0265 1972  C:\WINDOWS\system32\dnsapi.dll - ok
21:55:16.0281 1972  [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
21:55:16.0281 1972  C:\WINDOWS\system32\imagehlp.dll - ok
21:55:16.0281 1972  [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
21:55:16.0281 1972  C:\WINDOWS\system32\msv1_0.dll - ok
21:55:16.0281 1972  [ 89AFA12F6A1AD5837377E0B01C11E40E ] C:\WINDOWS\system32\msxml6r.dll
21:55:16.0281 1972  C:\WINDOWS\system32\msxml6r.dll - ok
21:55:16.0281 1972  [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
21:55:16.0281 1972  C:\WINDOWS\system32\mtxclu.dll - ok
21:55:16.0296 1972  [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
21:55:16.0296 1972  C:\WINDOWS\system32\rastls.dll - ok
21:55:16.0296 1972  [ A1B780CD5020A2E75100D5EC0B046A08 ] C:\WINDOWS\system32\url.dll
21:55:16.0296 1972  C:\WINDOWS\system32\url.dll - ok
21:55:16.0296 1972  [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
21:55:16.0296 1972  C:\WINDOWS\system32\winhttp.dll - ok
21:55:16.0296 1972  [ D46E195D0C76D430D73576CDAC763F78 ] C:\WINDOWS\system32\wininet.dll
21:55:16.0296 1972  C:\WINDOWS\system32\wininet.dll - ok
21:55:16.0296 1972  [ FFFADE697513EEBD3EA6AE656E4CE547 ] C:\WINDOWS\system32\ieframe.dll
21:55:16.0296 1972  C:\WINDOWS\system32\ieframe.dll - ok
21:55:16.0312 1972  [ BCA9B59515D452666B2CC88D6FAB0235 ] C:\WINDOWS\system32\urlmon.dll
21:55:16.0312 1972  C:\WINDOWS\system32\urlmon.dll - ok
21:55:16.0312 1972  [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
21:55:16.0312 1972  C:\WINDOWS\system32\lmhsvc.dll - ok
21:55:16.0312 1972  [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9 ] C:\WINDOWS\system32\msxml6.dll
21:55:16.0312 1972  C:\WINDOWS\system32\msxml6.dll - ok
21:55:16.0312 1972  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
21:55:16.0312 1972  C:\WINDOWS\system32\spoolsv.exe - ok
21:55:16.0328 1972  [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
21:55:16.0328 1972  C:\WINDOWS\system32\atmfd.dll - ok
21:55:16.0328 1972  [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
21:55:16.0328 1972  C:\WINDOWS\system32\ole32.dll - ok
21:55:16.0328 1972  [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
21:55:16.0328 1972  C:\WINDOWS\system32\shlwapi.dll - ok
21:55:16.0328 1972  [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
21:55:16.0328 1972  C:\WINDOWS\system32\comctl32.dll - ok
21:55:16.0343 1972  [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
21:55:16.0343 1972  C:\WINDOWS\system32\oleaut32.dll - ok
21:55:16.0343 1972  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
21:55:16.0343 1972  C:\WINDOWS\system32\winsrv.dll - ok
21:55:16.0343 1972  [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
21:55:16.0343 1972  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
21:55:16.0343 1972  [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
21:55:16.0343 1972  C:\WINDOWS\system32\shell32.dll - ok
21:55:16.0359 1972  [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
21:55:16.0359 1972  C:\WINDOWS\system32\kerberos.dll - ok
21:55:16.0359 1972  [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
21:55:16.0359 1972  C:\WINDOWS\system32\kernel32.dll - ok
21:55:16.0359 1972  [ B0E27554F0B16BAEF4D51D7260E62CFB ] C:\WINDOWS\system32\rpcrt4.dll
21:55:16.0359 1972  C:\WINDOWS\system32\rpcrt4.dll - ok
21:55:16.0359 1972  [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
21:55:16.0359 1972  C:\WINDOWS\system32\shsvcs.dll - ok
21:55:16.0359 1972  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
21:55:16.0359 1972  C:\WINDOWS\system32\services.exe - ok
21:55:16.0375 1972  [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
21:55:16.0375 1972  C:\WINDOWS\system32\wintrust.dll - ok
21:55:16.0375 1972  [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
21:55:16.0375 1972  C:\WINDOWS\system32\wkssvc.dll - ok
21:55:16.0375 1972  [ 999DB5F88C8E145CCA9D471E33227143 ] C:\Program Files\Java\jre7\bin\jqs.exe
21:55:16.0375 1972  C:\Program Files\Java\jre7\bin\jqs.exe - ok
21:55:16.0375 1972  [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
21:55:16.0375 1972  C:\WINDOWS\system32\comdlg32.dll - ok
21:55:16.0390 1972  [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
21:55:16.0390 1972  C:\WINDOWS\system32\crypt32.dll - ok
21:55:16.0390 1972  [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
21:55:16.0390 1972  C:\WINDOWS\system32\dhcpcsvc.dll - ok
21:55:16.0390 1972  [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
21:55:16.0390 1972  C:\WINDOWS\system32\odbc32.dll - ok
21:55:16.0390 1972  [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
21:55:16.0390 1972  C:\WINDOWS\system32\winmm.dll - ok
21:55:16.0406 1972  [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
21:55:16.0406 1972  C:\WINDOWS\system32\xpsp2res.dll - ok
21:55:16.0406 1972  [ 681B807E53BDADA337735C28C0E48A1B ] C:\WINDOWS\system32\ntvdm.exe
21:55:16.0406 1972  C:\WINDOWS\system32\ntvdm.exe - ok
21:55:16.0406 1972  [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
21:55:16.0406 1972  C:\WINDOWS\system32\samsrv.dll - ok
21:55:16.0406 1972  [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
21:55:16.0406 1972  C:\WINDOWS\system32\msidle.dll - ok
21:55:16.0421 1972  [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
21:55:16.0421 1972  C:\WINDOWS\system32\msimg32.dll - ok
21:55:16.0421 1972  [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
21:55:16.0421 1972  C:\WINDOWS\system32\msnsspc.dll - ok
21:55:16.0421 1972  [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
21:55:16.0421 1972  C:\WINDOWS\system32\rasapi32.dll - ok
21:55:16.0421 1972  [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
21:55:16.0421 1972  C:\WINDOWS\system32\rasman.dll - ok
21:55:16.0437 1972  [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
21:55:16.0437 1972  C:\WINDOWS\system32\samlib.dll - ok
21:55:16.0437 1972  [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
21:55:16.0437 1972  C:\WINDOWS\system32\sfcfiles.dll - ok
21:55:16.0437 1972  [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
21:55:16.0437 1972  C:\WINDOWS\system32\shgina.dll - ok
21:55:16.0437 1972  [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
21:55:16.0437 1972  C:\WINDOWS\system32\digest.dll - ok
21:55:16.0453 1972  [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
21:55:16.0453 1972  C:\WINDOWS\system32\logonui.exe - ok
21:55:16.0453 1972  [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
21:55:16.0453 1972  C:\WINDOWS\system32\msapsspc.dll - ok
21:55:16.0453 1972  [ 8C22083ED515DC94D575438662F0BE6A ] C:\WINDOWS\system32\msi.dll
21:55:16.0453 1972  C:\WINDOWS\system32\msi.dll - ok
21:55:16.0453 1972  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
21:55:16.0453 1972  C:\WINDOWS\system32\normaliz.dll - ok
21:55:16.0468 1972  [ D8361BEAB7109AB8B069F7F5028E37B1 ] C:\WINDOWS\system32\olesvr32.dll
21:55:16.0468 1972  C:\WINDOWS\system32\olesvr32.dll - ok
21:55:16.0468 1972  [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
21:55:16.0468 1972  C:\WINDOWS\system32\sensapi.dll - ok
21:55:16.0468 1972  [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
21:55:16.0468 1972  C:\WINDOWS\system32\setupapi.dll - ok
21:55:16.0468 1972  [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
21:55:16.0468 1972  C:\WINDOWS\system32\version.dll - ok
21:55:16.0484 1972  [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\system32\xmlprovi.dll
21:55:16.0484 1972  C:\WINDOWS\system32\xmlprovi.dll - ok
21:55:16.0484 1972  [ FA1B9CAE64B23C950DA3D96ABBF23BD0 ] C:\WINDOWS\system32\olecli32.dll
21:55:16.0484 1972  C:\WINDOWS\system32\olecli32.dll - ok
21:55:16.0484 1972  [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
21:55:16.0484 1972  C:\WINDOWS\system32\apphelp.dll - ok
21:55:16.0484 1972  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:55:16.0484 1972  C:\WINDOWS\system32\basesrv.dll - ok
21:55:16.0484 1972  [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
21:55:16.0484 1972  C:\WINDOWS\system32\cryptdll.dll - ok
21:55:16.0500 1972  [ 26B8DF8AF63C383F5CA26F41CD106D37 ] C:\WINDOWS\system32\igxprd32.dll
21:55:16.0500 1972  C:\WINDOWS\system32\igxprd32.dll - ok
21:55:16.0500 1972  [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
21:55:16.0500 1972  C:\WINDOWS\system32\lsass.exe - ok
21:55:16.0500 1972  [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
21:55:16.0500 1972  C:\WINDOWS\system32\mpr.dll - ok
21:55:16.0500 1972  [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
21:55:16.0500 1972  C:\WINDOWS\system32\ncobjapi.dll - ok
21:55:16.0515 1972  [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
21:55:16.0515 1972  C:\WINDOWS\system32\nddeapi.dll - ok
21:55:16.0515 1972  [ AE9543F20FCC1E7BCAA13051CC076147 ] C:\WINDOWS\system32\olethk32.dll
21:55:16.0515 1972  C:\WINDOWS\system32\olethk32.dll - ok
21:55:16.0515 1972  [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
21:55:16.0515 1972  C:\WINDOWS\system32\profmap.dll - ok
21:55:16.0515 1972  [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
21:55:16.0515 1972  C:\WINDOWS\system32\psapi.dll - ok
21:55:16.0531 1972  [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
21:55:16.0531 1972  C:\WINDOWS\system32\svchost.exe - ok
21:55:16.0531 1972  [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
21:55:16.0531 1972  C:\WINDOWS\system32\ws2help.dll - ok
21:55:16.0531 1972  [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
21:55:16.0531 1972  C:\WINDOWS\system32\wtsapi32.dll - ok
21:55:16.0531 1972  [ 414F57444511B818DB23FA5CF89F3205 ] C:\Program Files\AVG\AVG2013\avgclitx.dll
21:55:16.0531 1972  C:\Program Files\AVG\AVG2013\avgclitx.dll - ok
21:55:16.0546 1972  [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
21:55:16.0546 1972  C:\WINDOWS\system32\authz.dll - ok
21:55:16.0546 1972  [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
21:55:16.0546 1972  C:\WINDOWS\system32\cfgmgr32.dll - ok
21:55:16.0546 1972  [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
21:55:16.0546 1972  C:\WINDOWS\system32\ersvc.dll - ok
21:55:16.0546 1972  [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
21:55:16.0546 1972  C:\WINDOWS\system32\hid.dll - ok
21:55:16.0546 1972  [ C1B58171AD366CD2E3F190BE6E035FF1 ] C:\WINDOWS\system32\igxpgd32.dll
21:55:16.0546 1972  C:\WINDOWS\system32\igxpgd32.dll - ok
21:55:16.0562 1972  [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
21:55:16.0562 1972  C:\WINDOWS\system32\powrprof.dll - ok
21:55:16.0562 1972  [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
21:55:16.0562 1972  C:\WINDOWS\system32\rtutils.dll - ok
21:55:16.0562 1972  [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
21:55:16.0562 1972  C:\WINDOWS\system32\user32.dll - ok
21:55:16.0562 1972  [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
21:55:16.0562 1972  C:\WINDOWS\system32\winrnr.dll - ok
21:55:16.0578 1972  [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
21:55:16.0578 1972  C:\WINDOWS\system32\wldap32.dll - ok
21:55:16.0578 1972  [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
21:55:16.0578 1972  C:\WINDOWS\system32\wshtcpip.dll - ok
21:55:16.0578 1972  [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
21:55:16.0578 1972  C:\WINDOWS\system32\wsock32.dll - ok
21:55:16.0578 1972  [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
21:55:16.0578 1972  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
21:55:16.0593 1972  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
21:55:16.0593 1972  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
21:55:16.0593 1972  [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
21:55:16.0593 1972  C:\WINDOWS\system32\audiosrv.dll - ok
21:55:16.0593 1972  [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
21:55:16.0593 1972  C:\WINDOWS\system32\hidserv.dll - ok
21:55:16.0593 1972  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
21:55:16.0593 1972  C:\WINDOWS\system32\msprivs.dll - ok
21:55:16.0609 1972  [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
21:55:16.0609 1972  C:\WINDOWS\system32\regapi.dll - ok
21:55:16.0609 1972  [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
21:55:16.0609 1972  C:\WINDOWS\system32\shimeng.dll - ok
21:55:16.0609 1972  [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
21:55:16.0609 1972  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
21:55:16.0609 1972  [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
21:55:16.0609 1972  C:\WINDOWS\system32\winsta.dll - ok
21:55:16.0625 1972  [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
21:55:16.0625 1972  C:\WINDOWS\system32\ws2_32.dll - ok
21:55:16.0625 1972  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
21:55:16.0625 1972  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
21:55:16.0625 1972  [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
21:55:16.0625 1972  C:\WINDOWS\system32\eventlog.dll - ok
21:55:16.0625 1972  [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
21:55:16.0625 1972  C:\WINDOWS\system32\msacm32.dll - ok
21:55:16.0640 1972  [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
21:55:16.0640 1972  C:\WINDOWS\system32\ntdsapi.dll - ok
21:55:16.0640 1972  [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
21:55:16.0640 1972  C:\WINDOWS\system32\odbcint.dll - ok
21:55:16.0640 1972  [ 045DF7AE14CAAED71338916D6FB66812 ] C:\WINDOWS\system32\wow32.dll
21:55:16.0640 1972  C:\WINDOWS\system32\wow32.dll - ok
21:55:16.0640 1972  [ 099D9F937F6EE23672391B3A5BD6D7E5 ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
21:55:16.0640 1972  C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
21:55:16.0640 1972  [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
21:55:16.0640 1972  C:\WINDOWS\system32\msvcrt.dll - ok
21:55:16.0656 1972  [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
21:55:16.0656 1972  C:\WINDOWS\system32\sfc_os.dll - ok
21:55:16.0656 1972  [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
21:55:16.0656 1972  C:\WINDOWS\system32\umpnpmgr.dll - ok
21:55:16.0656 1972  [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
21:55:16.0656 1972  C:\WINDOWS\system32\userenv.dll - ok
21:55:16.0656 1972  [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
21:55:16.0656 1972  C:\WINDOWS\system32\cryptui.dll - ok
21:55:16.0671 1972  [ 68D06B1A3D3FED145E6158BD12F92FEB ] C:\WINDOWS\system32\igxpdv32.dll
21:55:16.0671 1972  C:\WINDOWS\system32\igxpdv32.dll - ok
21:55:16.0671 1972  [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
21:55:16.0671 1972  C:\WINDOWS\system32\iphlpapi.dll - ok
21:55:16.0671 1972  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
21:55:16.0671 1972  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
21:55:16.0671 1972  [ 4B1B01F18B1EE6D575005026B5F77094 ] C:\WINDOWS\system32\igxpdx32.dll
21:55:16.0671 1972  C:\WINDOWS\system32\igxpdx32.dll - ok
21:55:16.0687 1972  [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
21:55:16.0687 1972  C:\WINDOWS\system32\ntmarta.dll - ok
21:55:16.0687 1972  [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
21:55:16.0687 1972  C:\WINDOWS\system32\uxtheme.dll - ok
21:55:16.0687 1972  [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
21:55:16.0687 1972  C:\WINDOWS\system32\w32time.dll - ok
21:55:16.0687 1972  [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
21:55:16.0687 1972  C:\WINDOWS\system32\winscard.dll - ok
21:55:16.0703 1972  [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
21:55:16.0703 1972  C:\WINDOWS\system32\cryptsvc.dll - ok
21:55:16.0703 1972  [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
21:55:16.0703 1972  C:\WINDOWS\system32\msgina.dll - ok
21:55:16.0703 1972  [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
21:55:16.0703 1972  C:\WINDOWS\system32\winlogon.exe - ok
21:55:16.0703 1972  [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
21:55:16.0703 1972  C:\WINDOWS\system32\wzcsapi.dll - ok
21:55:16.0718 1972  [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
21:55:16.0718 1972  C:\WINDOWS\AppPatch\acgenral.dll - ok
21:55:16.0718 1972  [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
21:55:16.0718 1972  C:\WINDOWS\system32\cscdll.dll - ok
21:55:16.0718 1972  [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
21:55:16.0718 1972  C:\WINDOWS\system32\mprapi.dll - ok
21:55:16.0718 1972  [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
21:55:16.0718 1972  C:\WINDOWS\system32\msvcp60.dll - ok
21:55:16.0718 1972  [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
21:55:16.0718 1972  C:\WINDOWS\system32\scesrv.dll - ok
21:55:16.0734 1972  [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
21:55:16.0734 1972  C:\WINDOWS\system32\sxs.dll - ok
21:55:16.0734 1972  [ 4B2495C00D6DA2A092DBE30DB583B19F ] C:\WINDOWS\system32\wltrynt.dll
21:55:16.0734 1972  C:\WINDOWS\system32\wltrynt.dll - ok
21:55:16.0734 1972  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
21:55:16.0734 1972  C:\WINDOWS\system32\rsaenh.dll - ok
21:55:16.0734 1972  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:55:16.0734 1972  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
21:55:16.0750 1972  [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
21:55:16.0750 1972  C:\WINDOWS\system32\adsldpc.dll - ok
21:55:16.0750 1972  [ 4DF537A09034434EA9481B88AB1D3C25 ] C:\WINDOWS\system32\bcmwlpkt.dll
21:55:16.0750 1972  C:\WINDOWS\system32\bcmwlpkt.dll - ok
21:55:16.0750 1972  [ DA45AD502B4F2B7FC4ADEBA2E309F384 ] C:\WINDOWS\system32\netevent.dll
21:55:16.0750 1972  C:\WINDOWS\system32\netevent.dll - ok
21:55:16.0750 1972  [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
21:55:16.0750 1972  C:\WINDOWS\system32\netlogon.dll - ok
21:55:16.0765 1972  [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
21:55:16.0765 1972  C:\WINDOWS\system32\scecli.dll - ok
21:55:16.0765 1972  [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
21:55:16.0765 1972  C:\WINDOWS\system32\webclnt.dll - ok
21:55:16.0765 1972  [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
21:55:16.0765 1972  C:\WINDOWS\system32\wlnotify.dll - ok
21:55:16.0765 1972  [ 467BC618DEBA4F8DB5A1A5E87510C335 ] C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:55:16.0765 1972  C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe - ok
21:55:16.0781 1972  [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
21:55:16.0781 1972  C:\WINDOWS\system32\activeds.dll - ok
21:55:16.0781 1972  [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
21:55:16.0781 1972  C:\WINDOWS\system32\clusapi.dll - ok
21:55:16.0781 1972  [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
21:55:16.0781 1972  C:\WINDOWS\system32\esent.dll - ok
21:55:16.0781 1972  [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
21:55:16.0781 1972  C:\WINDOWS\system32\hnetcfg.dll - ok
21:55:16.0796 1972  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
21:55:16.0796 1972  C:\WINDOWS\system32\wzcsvc.dll - ok
21:55:16.0796 1972  [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
21:55:16.0796 1972  C:\WINDOWS\system32\clbcatq.dll - ok
21:55:16.0796 1972  [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
21:55:16.0796 1972  C:\WINDOWS\system32\comres.dll - ok
21:55:16.0796 1972  [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
21:55:16.0796 1972  C:\WINDOWS\system32\duser.dll - ok
21:55:16.0812 1972  [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
21:55:16.0812 1972  C:\WINDOWS\system32\riched20.dll - ok
21:55:16.0812 1972  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
21:55:16.0812 1972  C:\WINDOWS\system32\schedsvc.dll - ok
21:55:16.0812 1972  [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
21:55:16.0812 1972  C:\WINDOWS\system32\tapi32.dll - ok
21:55:16.0812 1972  [ 1BEECF91737D8BF1694E3522743E0918 ] C:\WINDOWS\system32\bcm1xsup.dll
21:55:16.0812 1972  C:\WINDOWS\system32\bcm1xsup.dll - ok
21:55:16.0828 1972  [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
21:55:16.0828 1972  C:\WINDOWS\system32\resutils.dll - ok
21:55:16.0828 1972  [ 5BDB1E096DEA119A4D205ACB6E958175 ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
21:55:16.0828 1972  C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
21:55:16.0828 1972  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
21:55:16.0828 1972  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
21:55:16.0828 1972  [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
21:55:16.0828 1972  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
21:55:16.0843 1972  [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
21:55:16.0843 1972  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
21:55:16.0859 1972  [ DFA5C8AA0AE6B6FB44E891D3138FC9C8 ] C:\WINDOWS\system32\bt2k_ins.dll
21:55:16.0859 1972  C:\WINDOWS\system32\bt2k_ins.dll - ok
21:55:16.0859 1972  [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
21:55:16.0859 1972  C:\WINDOWS\system32\certcli.dll - ok
21:55:16.0859 1972  [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
21:55:16.0859 1972  C:\WINDOWS\system32\colbact.dll - ok
21:55:16.0859 1972  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\WINDOWS\system32\dnssd.dll
21:55:16.0859 1972  C:\WINDOWS\system32\dnssd.dll - ok
21:55:16.0859 1972  [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
21:55:16.0859 1972  C:\WINDOWS\system32\dsound.dll - ok
21:55:16.0875 1972  [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
21:55:16.0875 1972  C:\WINDOWS\system32\mlang.dll - ok
21:55:16.0875 1972  [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
21:55:16.0875 1972  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
21:55:16.0875 1972  [ 6A0A8D20469EFD39A4A3463A88811A57 ] C:\Program Files\AVG\AVG2013\avgsched.dll
21:55:16.0875 1972  C:\Program Files\AVG\AVG2013\avgsched.dll - ok
21:55:16.0875 1972  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
21:55:16.0875 1972  C:\Program Files\Bonjour\mdnsNSP.dll - ok
21:55:16.0890 1972  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
21:55:16.0890 1972  C:\Program Files\Bonjour\mDNSResponder.exe - ok
21:55:16.0890 1972  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
21:55:16.0890 1972  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
21:55:16.0890 1972  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
21:55:16.0890 1972  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
21:55:16.0890 1972  [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
21:55:16.0890 1972  C:\WINDOWS\system32\comsvcs.dll - ok
21:55:16.0906 1972  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
21:55:16.0906 1972  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
21:55:16.0906 1972  [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
21:55:16.0906 1972  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
21:55:16.0906 1972  [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
21:55:16.0906 1972  C:\WINDOWS\system32\imm32.dll - ok
21:55:16.0906 1972  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
21:55:16.0906 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
21:55:16.0921 1972  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
21:55:16.0921 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
21:55:16.0921 1972  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
21:55:16.0921 1972  C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
21:55:16.0921 1972  [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
21:55:16.0921 1972  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
21:55:16.0921 1972  [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
21:55:16.0921 1972  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
21:55:16.0937 1972  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
21:55:16.0937 1972  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
21:55:16.0937 1972  [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
21:55:16.0937 1972  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
21:55:16.0937 1972  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
21:55:16.0937 1972  C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
21:55:16.0937 1972  [ 45B52394F9624237F33A8A3D73C0B221 ] C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:55:16.0937 1972  C:\Program Files\Windows Live\Family Safety\fsssvc.exe - ok
21:55:16.0937 1972  [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
21:55:16.0937 1972  C:\WINDOWS\system32\msctf.dll - ok
21:55:16.0953 1972  [ 7572D6D0DE68EDC0089578AC952514C2 ] C:\Program Files\AVG\AVG2013\avgcorex.dll
21:55:16.0953 1972  C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
21:55:16.0953 1972  [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
21:55:16.0953 1972  C:\WINDOWS\AppPatch\acadproc.dll - ok
21:55:16.0953 1972  [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
21:55:16.0953 1972  C:\WINDOWS\system32\dot3api.dll - ok
21:55:16.0968 1972  [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
21:55:16.0968 1972  C:\WINDOWS\system32\eapolqec.dll - ok
21:55:16.0968 1972  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
21:55:16.0968 1972  C:\WINDOWS\system32\msvcrt40.dll - ok
21:55:16.0968 1972  [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
21:55:16.0968 1972  C:\WINDOWS\system32\qutil.dll - ok
21:55:16.0968 1972  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
21:55:16.0968 1972  C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
21:55:16.0968 1972  [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
21:55:16.0968 1972  C:\WINDOWS\system32\dot3dlg.dll - ok
21:55:16.0984 1972  [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
21:55:16.0984 1972  C:\WINDOWS\system32\odbcbcp.dll - ok
21:55:16.0984 1972  [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
21:55:16.0984 1972  C:\WINDOWS\system32\pdh.dll - ok
21:55:16.0984 1972  [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
21:55:16.0984 1972  C:\WINDOWS\system32\seclogon.dll - ok
21:55:16.0984 1972  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
21:55:16.0984 1972  C:\WINDOWS\system32\sens.dll - ok
21:55:17.0000 1972  [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
21:55:17.0000 1972  C:\WINDOWS\system32\winipsec.dll - ok
21:55:17.0000 1972  [ 6F855B5625A47F3AC731A262FDC379A6 ] C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe
21:55:17.0000 1972  C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe - ok
21:55:17.0000 1972  [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
21:55:17.0000 1972  C:\WINDOWS\system32\credui.dll - ok
21:55:17.0000 1972  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
21:55:17.0000 1972  C:\WINDOWS\system32\dssenh.dll - ok
21:55:17.0015 1972  [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
21:55:17.0015 1972  C:\WINDOWS\system32\eappprxy.dll - ok
21:55:17.0015 1972  [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
21:55:17.0015 1972  C:\WINDOWS\system32\ipsecsvc.dll - ok
21:55:17.0015 1972  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
21:55:17.0015 1972  C:\WINDOWS\system32\netman.dll - ok
21:55:17.0015 1972  [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
21:55:17.0015 1972  C:\WINDOWS\system32\netmsg.dll - ok
21:55:17.0015 1972  [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
21:55:17.0015 1972  C:\WINDOWS\system32\oakley.dll - ok
21:55:17.0031 1972  [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
21:55:17.0031 1972  C:\WINDOWS\system32\psbase.dll - ok
21:55:17.0031 1972  [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
21:55:17.0031 1972  C:\WINDOWS\system32\pstorsvc.dll - ok
21:55:17.0031 1972  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
21:55:17.0031 1972  C:\WINDOWS\system32\srvsvc.dll - ok
21:55:17.0031 1972  [ EF66829B99BBFC465B05DC7411B0DCFA ] C:\Program Files\Windows Live\Family Safety\msidcrl40.dll
21:55:17.0031 1972  C:\Program Files\Windows Live\Family Safety\msidcrl40.dll - ok
21:55:17.0046 1972  [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
21:55:17.0046 1972  C:\WINDOWS\system32\eappcfg.dll - ok
21:55:17.0046 1972  [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
21:55:17.0046 1972  C:\WINDOWS\system32\midimap.dll - ok
21:55:17.0046 1972  [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
21:55:17.0046 1972  C:\WINDOWS\system32\netshell.dll - ok
21:55:17.0046 1972  [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
21:55:17.0046 1972  C:\WINDOWS\system32\onex.dll - ok
21:55:17.0062 1972  [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
21:55:17.0062 1972  C:\WINDOWS\system32\srsvc.dll - ok
21:55:17.0062 1972  [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
21:55:17.0062 1972  C:\WINDOWS\system32\browseui.dll - ok
21:55:17.0062 1972  [ 17965D48033D1A6E6320AA867351CC21 ] C:\WINDOWS\system32\mshtml.dll
21:55:17.0062 1972  C:\WINDOWS\system32\mshtml.dll - ok
21:55:17.0062 1972  [ 96A0066AB9872D3575575A463C53FF6C ] C:\WINDOWS\system32\aclui.dll
21:55:17.0062 1972  C:\WINDOWS\system32\aclui.dll - ok
21:55:17.0078 1972  [ 751068D5D0ECD64A4810379729A1F0BC ] C:\WINDOWS\system32\ulib.dll
21:55:17.0078 1972  C:\WINDOWS\system32\ulib.dll - ok
21:55:17.0078 1972  [ 2775CF7A0D1ABEBCBF2296A2D95AF793 ] C:\Program Files\Java\jre7\bin\awt.dll
21:55:17.0078 1972  C:\Program Files\Java\jre7\bin\awt.dll - ok
21:55:17.0078 1972  [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
21:55:17.0078 1972  C:\WINDOWS\system32\alg.exe - ok
21:55:17.0078 1972  [ 8839C69D4E9468A1E5BDF4B9F4BCC5FE ] C:\Program Files\Java\jre7\bin\client\jvm.dll
21:55:17.0078 1972  C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
21:55:17.0078 1972  [ 0B56B878192DBA95D66A3162D38911F2 ] C:\Program Files\Java\jre7\bin\javaw.exe
21:55:17.0078 1972  C:\Program Files\Java\jre7\bin\javaw.exe - ok
21:55:17.0093 1972  [ A28A7F1D4B985B77BDAB7AF42760763F ] C:\WINDOWS\system32\BCMLogon.dll
21:55:17.0093 1972  C:\WINDOWS\system32\BCMLogon.dll - ok
21:55:17.0093 1972  [ A7E06854EA2A20AEE8EC32BD8C754298 ] C:\WINDOWS\system32\mpnotify.exe
21:55:17.0093 1972  C:\WINDOWS\system32\mpnotify.exe - ok
21:55:17.0093 1972  [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
21:55:17.0093 1972  C:\WINDOWS\system32\shdocvw.dll - ok
21:55:17.0093 1972  [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\msimtf.dll
21:55:17.0093 1972  C:\WINDOWS\system32\msimtf.dll - ok
21:55:17.0109 1972  [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
21:55:17.0109 1972  C:\WINDOWS\system32\themeui.dll - ok
21:55:17.0109 1972  [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
21:55:17.0109 1972  C:\WINDOWS\system32\cscui.dll - ok
21:55:17.0109 1972  [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
21:55:17.0109 1972  C:\WINDOWS\explorer.exe - ok
21:55:17.0109 1972  [ 3E2F3E2F4A82B7FAE23BAB864FB0F837 ] C:\WINDOWS\system32\dpcdll.dll
21:55:17.0109 1972  C:\WINDOWS\system32\dpcdll.dll - ok
21:55:17.0125 1972  [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
21:55:17.0125 1972  C:\WINDOWS\system32\userinit.exe - ok
21:55:17.0125 1972  [ 7DDB04EFCA15BEE73286D67270894303 ] C:\Program Files\AVG\AVG2013\avguirux.exe
21:55:17.0125 1972  C:\Program Files\AVG\AVG2013\avguirux.exe - ok
21:55:17.0125 1972  [ 3C7DEF3CBBCA6284867AA4621D5D8A54 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
21:55:17.0125 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll - ok
21:55:17.0125 1972  [ 9090454E6772F7CFBCE240BF4DC5F7E8 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
21:55:17.0125 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll - ok
21:55:17.0140 1972  [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
21:55:17.0140 1972  C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
21:55:17.0140 1972  [ 1B7524806D0270B81360C63A2FA047CB ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
21:55:17.0140 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll - ok
21:55:17.0140 1972  [ F95D55859E9ABF442161A738CDACA3B2 ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
21:55:17.0140 1972  C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
21:55:17.0140 1972  [ 6D2EDE5CC51FF35004BD07E9EF3E1996 ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
21:55:17.0140 1972  C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
21:55:17.0156 1972  [ 6167870E1C50E29C18F5120524C0C191 ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
21:55:17.0156 1972  C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
21:55:17.0156 1972  [ 3961DE6134280FD3BC911D5B2119CECF ] C:\Program Files\AVG\AVG2013\avgcertx.dll
21:55:17.0156 1972  C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
21:55:17.0156 1972  [ 2E967B05E5D1EF57632819BDC54F19B1 ] C:\Program Files\AVG\AVG2013\avgchclx.dll
21:55:17.0156 1972  C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
21:55:17.0156 1972  [ 2358C53F30CB9DCD1D3843C4E2F299B2 ] C:\WINDOWS\system32\drivers\iaStor.sys
21:55:17.0156 1972  C:\WINDOWS\system32\drivers\iaStor.sys - ok
21:55:17.0171 1972  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
21:55:17.0171 1972  C:\WINDOWS\system32\drivers\dxapi.sys - ok
21:55:17.0171 1972  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
21:55:17.0171 1972  C:\WINDOWS\system32\watchdog.sys - ok
21:55:17.0171 1972  [ A1886BEBC12536FE2FA8464B7FA6F0FC ] C:\WINDOWS\system32\win32k.sys
21:55:17.0171 1972  C:\WINDOWS\system32\win32k.sys - ok
21:55:17.0171 1972  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
21:55:17.0171 1972  C:\WINDOWS\system32\drivers\dxg.sys - ok
21:55:17.0187 1972  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
21:55:17.0187 1972  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
21:55:17.0187 1972  [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
21:55:17.0187 1972  C:\WINDOWS\system32\msctfime.ime - ok
21:55:17.0187 1972  [ E0087225B137E57239FF40F8AE82059B ] C:\WINDOWS\system32\drivers\fssfltr_tdi.sys
21:55:17.0187 1972  C:\WINDOWS\system32\drivers\fssfltr_tdi.sys - ok
21:55:17.0187 1972  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
21:55:17.0187 1972  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
21:55:17.0187 1972  [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
21:55:17.0187 1972  C:\WINDOWS\system32\winspool.drv - ok
21:55:17.0203 1972  [ 01FAE7E8176472FE359E86AB4FD039A9 ] C:\WINDOWS\system32\WLTRYSVC.EXE
21:55:17.0203 1972  C:\WINDOWS\system32\WLTRYSVC.EXE - ok
21:55:17.0203 1972  [ C7F30BB20487765460865AEF466933EA ] C:\WINDOWS\system32\BCMWLTRY.EXE
21:55:17.0203 1972  C:\WINDOWS\system32\BCMWLTRY.EXE - ok
21:55:17.0203 1972  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
21:55:17.0203 1972  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
21:55:17.0203 1972  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
21:55:17.0203 1972  C:\WINDOWS\system32\drivers\parport.sys - ok
21:55:17.0218 1972  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
21:55:17.0218 1972  C:\WINDOWS\system32\drivers\serial.sys - ok
21:55:17.0218 1972  [ 9FFD1CF2A782F2560E78EEC4B8B8689E ] C:\WINDOWS\system32\drivers\LBeepKE.sys
21:55:17.0218 1972  C:\WINDOWS\system32\drivers\LBeepKE.sys - ok
21:55:17.0218 1972  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
21:55:17.0218 1972  C:\WINDOWS\system32\drivers\srv.sys - ok
21:55:17.0218 1972  [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
21:55:17.0218 1972  C:\WINDOWS\system32\wdmaud.drv - ok
21:55:17.0234 1972  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
21:55:17.0234 1972  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
21:55:17.0234 1972  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
21:55:17.0234 1972  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
21:55:17.0234 1972  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
21:55:17.0234 1972  C:\WINDOWS\system32\drivers\splitter.sys - ok
21:55:17.0234 1972  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
21:55:17.0234 1972  C:\WINDOWS\system32\drivers\aec.sys - ok
21:55:17.0250 1972  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
21:55:17.0250 1972  C:\WINDOWS\system32\drivers\swmidi.sys - ok
21:55:17.0250 1972  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
21:55:17.0250 1972  C:\WINDOWS\system32\drivers\dmusic.sys - ok
21:55:17.0250 1972  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
21:55:17.0250 1972  C:\WINDOWS\system32\drivers\kmixer.sys - ok
21:55:17.0250 1972  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
21:55:17.0250 1972  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
21:55:17.0250 1972  [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
21:55:17.0250 1972  C:\WINDOWS\system32\msacm32.drv - ok
21:55:17.0265 1972  [ 07086F74E3B72FFFDAF11FC9F0B88A03 ] C:\WINDOWS\system32\stacapi.dll
21:55:17.0265 1972  C:\WINDOWS\system32\stacapi.dll - ok
21:55:17.0265 1972  [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
21:55:17.0265 1972  C:\WINDOWS\system32\mscms.dll - ok
21:55:17.0265 1972  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
21:55:17.0265 1972  C:\WINDOWS\system32\wiaservc.dll - ok
21:55:17.0265 1972  [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
21:55:17.0265 1972  C:\WINDOWS\system32\trkwks.dll - ok
21:55:17.0281 1972  [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
21:55:17.0281 1972  C:\WINDOWS\system32\vssapi.dll - ok
21:55:17.0281 1972  [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
21:55:17.0281 1972  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
21:55:17.0281 1972  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
21:55:17.0281 1972  C:\WINDOWS\system32\wuaueng.dll - ok
21:55:17.0281 1972  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
21:55:17.0281 1972  C:\WINDOWS\system32\wuauserv.dll - ok
21:55:17.0296 1972  [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
21:55:17.0296 1972  C:\WINDOWS\system32\cabinet.dll - ok
21:55:17.0296 1972  [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
21:55:17.0296 1972  C:\WINDOWS\system32\mspatcha.dll - ok
21:55:17.0296 1972  [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
21:55:17.0296 1972  C:\WINDOWS\system32\browser.dll - ok
21:55:17.0296 1972  [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
21:55:17.0296 1972  C:\WINDOWS\system32\ipnathlp.dll - ok
21:55:17.0296 1972  [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
21:55:17.0296 1972  C:\WINDOWS\system32\wscsvc.dll - ok
21:55:17.0312 1972  [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
21:55:17.0312 1972  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
21:55:17.0312 1972  [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
21:55:17.0312 1972  C:\WINDOWS\system32\wbem\esscli.dll - ok
21:55:17.0312 1972  [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
21:55:17.0312 1972  C:\WINDOWS\system32\wbem\fastprox.dll - ok
21:55:17.0312 1972  [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
21:55:17.0312 1972  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
21:55:17.0328 1972  [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
21:55:17.0328 1972  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
21:55:17.0328 1972  [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
21:55:17.0328 1972  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
21:55:17.0328 1972  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
21:55:17.0328 1972  C:\WINDOWS\system32\wups.dll - ok
21:55:17.0328 1972  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
21:55:17.0328 1972  C:\WINDOWS\system32\wups2.dll - ok
21:55:17.0343 1972  [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
21:55:17.0343 1972  C:\WINDOWS\system32\perfos.dll - ok
21:55:17.0343 1972  [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
21:55:17.0343 1972  C:\WINDOWS\system32\perfdisk.dll - ok
21:55:17.0343 1972  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
21:55:17.0343 1972  C:\WINDOWS\system32\wuauclt.exe - ok
21:55:17.0343 1972  [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
21:55:17.0343 1972  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
21:55:17.0359 1972  [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
21:55:17.0359 1972  C:\WINDOWS\system32\wbem\wbemess.dll - ok
21:55:17.0359 1972  [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
21:55:17.0359 1972  C:\WINDOWS\system32\actxprxy.dll - ok
21:55:17.0359 1972  [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
21:55:17.0359 1972  C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
21:55:17.0359 1972  [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
21:55:17.0359 1972  C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
21:55:17.0375 1972  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
21:55:17.0375 1972  C:\WINDOWS\system32\wuapi.dll - ok
21:55:17.0375 1972  [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
21:55:17.0375 1972  C:\WINDOWS\system32\desk.cpl - ok
21:55:17.0375 1972  [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
21:55:17.0375 1972  C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
21:55:17.0375 1972  [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
21:55:17.0375 1972  C:\WINDOWS\system32\termsrv.dll - ok
21:55:17.0375 1972  [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
21:55:17.0375 1972  C:\WINDOWS\system32\icaapi.dll - ok
21:55:17.0390 1972  [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
21:55:17.0390 1972  C:\WINDOWS\system32\mstlsapi.dll - ok
21:55:17.0390 1972  [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
21:55:17.0390 1972  C:\WINDOWS\system32\msxml3.dll - ok
21:55:17.0390 1972  [ 058710B720282CA82B909912D3EF28DB ] C:\WINDOWS\regedit.exe
21:55:17.0390 1972  C:\WINDOWS\regedit.exe - ok
21:55:17.0390 1972  [ 37461F2C3F212CF508A20FDC729ABDE5 ] C:\WINDOWS\system32\clb.dll
21:55:17.0390 1972  C:\WINDOWS\system32\clb.dll - ok
21:55:17.0406 1972  [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
21:55:17.0406 1972  C:\WINDOWS\system32\wbem\ncprov.dll - ok
21:55:17.0406 1972  [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
21:55:17.0406 1972  C:\WINDOWS\system32\cmd.exe - ok
21:55:17.0406 1972  [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
21:55:17.0406 1972  C:\WINDOWS\system32\netcfgx.dll - ok
21:55:17.0406 1972  [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
21:55:17.0406 1972  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
21:55:17.0421 1972  [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
21:55:17.0421 1972  C:\WINDOWS\system32\cryptnet.dll - ok
21:55:17.0421 1972  [ 60C2752036FAC5DA6E5F72CB9AB60747 ] C:\Program Files\Java\jre7\bin\dcpr.dll
21:55:17.0421 1972  C:\Program Files\Java\jre7\bin\dcpr.dll - ok
21:55:17.0421 1972  [ F38B92211F961CF9D48B2192BC7B00D6 ] C:\Program Files\Java\jre7\bin\deploy.dll
21:55:17.0421 1972  C:\Program Files\Java\jre7\bin\deploy.dll - ok
21:55:17.0421 1972  [ 24265143B1F4D8C57695630FBF6494CD ] C:\Program Files\Java\jre7\bin\fontmanager.dll
21:55:17.0421 1972  C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
21:55:17.0437 1972  [ 8A53582955841F6FFC62D7FD2E913773 ] C:\Program Files\Java\jre7\bin\java.dll
21:55:17.0437 1972  C:\Program Files\Java\jre7\bin\java.dll - ok
21:55:17.0437 1972  [ C053C0F4F941A74EE163A601AEFE7AC3 ] C:\Program Files\Java\jre7\bin\jp2native.dll
21:55:17.0437 1972  C:\Program Files\Java\jre7\bin\jp2native.dll - ok
21:55:17.0437 1972  [ 467B0D0BC47D0B9CFA3837DA0A498C7F ] C:\Program Files\Java\jre7\bin\jpeg.dll
21:55:17.0437 1972  C:\Program Files\Java\jre7\bin\jpeg.dll - ok
21:55:17.0437 1972  [ 0A45A39E9A1D3D33A49D1BAF292659E3 ] C:\Program Files\Java\jre7\bin\net.dll
21:55:17.0437 1972  C:\Program Files\Java\jre7\bin\net.dll - ok
21:55:17.0437 1972  [ F897D8369C0523D32A5DD169DF545BCD ] C:\Program Files\Java\jre7\bin\nio.dll
21:55:17.0437 1972  C:\Program Files\Java\jre7\bin\nio.dll - ok
21:55:17.0453 1972  [ 76F27FAB5BA22E336E5D42626702E744 ] C:\Program Files\Java\jre7\bin\verify.dll
21:55:17.0453 1972  C:\Program Files\Java\jre7\bin\verify.dll - ok
21:55:17.0453 1972  [ 95A841BE3CF27181D7E9033DD66BC5CF ] C:\Program Files\Java\jre7\bin\zip.dll
21:55:17.0453 1972  C:\Program Files\Java\jre7\bin\zip.dll - ok
21:55:17.0453 1972  [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
21:55:17.0453 1972  C:\WINDOWS\system32\spoolss.dll - ok
21:55:17.0453 1972  [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
21:55:17.0453 1972  C:\WINDOWS\system32\localspl.dll - ok
21:55:17.0468 1972  [ 4023C6BE33E43A4E8D4542C0CA20BF89 ] C:\WINDOWS\system32\bthcrp.dll
21:55:17.0468 1972  C:\WINDOWS\system32\bthcrp.dll - ok
21:55:17.0468 1972  [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
21:55:17.0468 1972  C:\WINDOWS\system32\cnbjmon.dll - ok
21:55:17.0468 1972  [ 80E93B200D4D83A22F183388EE301E9C ] C:\WINDOWS\system32\WidcommSdk.dll
21:55:17.0468 1972  C:\WINDOWS\system32\WidcommSdk.dll - ok
21:55:17.0468 1972  [ F3144580622424F5607A73E1C9034CAA ] C:\WINDOWS\system32\wbtapi.dll
21:55:17.0468 1972  C:\WINDOWS\system32\wbtapi.dll - ok
21:55:17.0484 1972  [ 76848CB1AA5818DB47D5F5986E0A7485 ] C:\WINDOWS\system32\mfc42.dll
21:55:17.0484 1972  C:\WINDOWS\system32\mfc42.dll - ok
21:55:17.0484 1972  [ 477D3AFD61EA366AA673F9642A79A702 ] C:\WINDOWS\system32\CNMLM9T.DLL
21:55:17.0484 1972  C:\WINDOWS\system32\CNMLM9T.DLL - ok
21:55:17.0484 1972  [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
21:55:17.0484 1972  C:\WINDOWS\system32\pjlmon.dll - ok
21:55:17.0484 1972  [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\WINDOWS\system32\msonpmon.dll
21:55:17.0484 1972  C:\WINDOWS\system32\msonpmon.dll - ok
21:55:17.0500 1972  [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
21:55:17.0500 1972  C:\WINDOWS\system32\tcpmon.dll - ok
21:55:17.0500 1972  [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
21:55:17.0500 1972  C:\WINDOWS\system32\usbmon.dll - ok
21:55:17.0500 1972  [ 6AF58B23914B0D04307D5B4DB95E79EC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD9T.DLL
21:55:17.0500 1972  C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD9T.DLL - ok
21:55:17.0500 1972  [ F348280907B38FDBDB3CEF55D456E149 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
21:55:17.0500 1972  C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll - ok
21:55:17.0515 1972  [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
21:55:17.0515 1972  C:\WINDOWS\system32\win32spl.dll - ok
21:55:17.0515 1972  [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
21:55:17.0515 1972  C:\WINDOWS\system32\netrap.dll - ok
21:55:17.0515 1972  [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
21:55:17.0515 1972  C:\WINDOWS\system32\inetpp.dll - ok
21:55:17.0515 1972  [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Becky\LOCALS~1\temp\357C5D99-4443-40B8-9B7D-406A70FC99D3.exe
21:55:17.0515 1972  C:\DOCUME~1\Becky\LOCALS~1\temp\357C5D99-4443-40B8-9B7D-406A70FC99D3.exe - ok
21:55:17.0515 1972  [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
21:55:17.0515 1972  C:\WINDOWS\system32\msutb.dll - ok
21:55:17.0531 1972  [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
21:55:17.0531 1972  C:\WINDOWS\system32\linkinfo.dll - ok
21:55:17.0531 1972  [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
21:55:17.0531 1972  C:\WINDOWS\system32\ntshrui.dll - ok
21:55:17.0531 1972  [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
21:55:17.0531 1972  C:\WINDOWS\system32\verclsid.exe - ok
21:55:17.0531 1972  [ 0C9874161C59675B493B1CFBBDB13E06 ] C:\Program Files\AVG\AVG2013\avgxpl.dll
21:55:17.0531 1972  C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
21:55:17.0546 1972  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\76382979.sys
21:55:17.0546 1972  C:\WINDOWS\system32\drivers\76382979.sys - ok
21:55:17.0546 1972  [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
21:55:17.0546 1972  C:\WINDOWS\system32\upnp.dll - ok
21:55:17.0546 1972  [ 9C8937BE6D8EAFD2752008832667E17F ] C:\WINDOWS\system32\igfxtray.exe
21:55:17.0546 1972  C:\WINDOWS\system32\igfxtray.exe - ok
21:55:17.0546 1972  [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
21:55:17.0546 1972  C:\WINDOWS\system32\ssdpapi.dll - ok
21:55:17.0562 1972  [ 412A81FBFB738C3B458EB3F07AB40F62 ] C:\WINDOWS\system32\hkcmd.exe
21:55:17.0562 1972  C:\WINDOWS\system32\hkcmd.exe - ok
21:55:17.0562 1972  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
21:55:17.0562 1972  C:\WINDOWS\system32\rasmans.dll - ok
21:55:17.0562 1972  [ 6A00985851E9C6BDD14DC15279E5B508 ] C:\WINDOWS\system32\hccutils.dll
21:55:17.0562 1972  C:\WINDOWS\system32\hccutils.dll - ok
21:55:17.0562 1972  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
21:55:17.0562 1972  C:\WINDOWS\system32\drivers\http.sys - ok
21:55:17.0578 1972  [ 4240BD5873EE41CA9937B204E1079A32 ] C:\WINDOWS\system32\igfxpers.exe
21:55:17.0578 1972  C:\WINDOWS\system32\igfxpers.exe - ok
21:55:17.0578 1972  [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
21:55:17.0578 1972  C:\WINDOWS\system32\ssdpsrv.dll - ok
21:55:17.0578 1972  [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
21:55:17.0578 1972  C:\WINDOWS\system32\tapisrv.dll - ok
21:55:17.0578 1972  [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
21:55:17.0578 1972  C:\WINDOWS\system32\rastapi.dll - ok
21:55:17.0578 1972  [ 5EF24621ABCE6965E32A365CA613A544 ] C:\Program Files\DellTPad\Apoint.exe
21:55:17.0578 1972  C:\Program Files\DellTPad\Apoint.exe - ok
21:55:17.0593 1972  [ 66F6F18DC8F843F666D88F6CD8BF2260 ] C:\WINDOWS\system32\igfxsrvc.exe
21:55:17.0593 1972  C:\WINDOWS\system32\igfxsrvc.exe - ok
21:55:17.0593 1972  [ 012844A8E13BE3941C9CAF1F91F47DF2 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
21:55:17.0593 1972  C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe - ok
21:55:17.0593 1972  [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
21:55:17.0593 1972  C:\WINDOWS\system32\unimdm.tsp - ok
21:55:17.0593 1972  [ F2B4A9D0D0E1FBF6CCA824EA0A76FFC0 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\stlang.dll
21:55:17.0593 1972  C:\Program Files\SigmaTel\C-Major Audio\WDM\stlang.dll - ok
21:55:17.0609 1972  [ 1F16F20318DBFD2E2ED54406A81A92FC ] C:\Program Files\DellTPad\Apoint.dll
21:55:17.0609 1972  C:\Program Files\DellTPad\Apoint.dll - ok
21:55:17.0609 1972  [ 1818A2CD223603911970E667A5EACC9C ] C:\WINDOWS\system32\WLTRAY.EXE
21:55:17.0609 1972  C:\WINDOWS\system32\WLTRAY.EXE - ok
21:55:17.0609 1972  [ 1A04841C5B09E8D2248600906B3799E1 ] C:\WINDOWS\system32\igfxsrvc.dll
21:55:17.0609 1972  C:\WINDOWS\system32\igfxsrvc.dll - ok
21:55:17.0609 1972  [ 288D8A54FE326AE26AD43F348E646147 ] C:\Program Files\AVG\AVG2013\avgui.exe
21:55:17.0609 1972  C:\Program Files\AVG\AVG2013\avgui.exe - ok
21:55:17.0625 1972  [ EEC8E86203B43AB462465D6755E16086 ] C:\WINDOWS\system32\igfxdev.dll
21:55:17.0625 1972  C:\WINDOWS\system32\igfxdev.dll - ok
21:55:17.0625 1972  [ A7D6E11630EB4D8BED5AEB786C1556E5 ] C:\WINDOWS\system32\Vxdif.dll
21:55:17.0625 1972  C:\WINDOWS\system32\Vxdif.dll - ok
21:55:17.0625 1972  [ 4895E1BDA720F634ABDA31BBEC90DEAE ] C:\Program Files\DellTPad\EzAuto.dll
21:55:17.0625 1972  C:\Program Files\DellTPad\EzAuto.dll - ok
21:55:17.0625 1972  [ 39CCEDC670F61DB34D761A2C736E8CA0 ] C:\WINDOWS\system32\igfxres.dll
21:55:17.0625 1972  C:\WINDOWS\system32\igfxres.dll - ok
21:55:17.0640 1972  [ F6F2BFC17069EB335ACCEEF7595F9302 ] C:\WINDOWS\system32\mfc42u.dll
21:55:17.0640 1972  C:\WINDOWS\system32\mfc42u.dll - ok
21:55:17.0640 1972  [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
21:55:17.0640 1972  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
21:55:17.0640 1972  [ 145229828A29F5B90C9DE2F2B58CCB19 ] C:\WINDOWS\system32\preflib.dll
21:55:17.0640 1972  C:\WINDOWS\system32\preflib.dll - ok
21:55:17.0640 1972  [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
21:55:17.0640 1972  C:\WINDOWS\system32\uniplat.dll - ok
21:55:17.0656 1972  [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files\iTunes\iTunesHelper.exe
21:55:17.0656 1972  C:\Program Files\iTunes\iTunesHelper.exe - ok
21:55:17.0656 1972  [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
21:55:17.0656 1972  C:\WINDOWS\system32\rundll32.exe - ok
21:55:17.0656 1972  [ 42370C1DE2B83844B253478DB8A907D5 ] C:\Program Files\DellTPad\ApMsgFwd.exe
21:55:17.0656 1972  C:\Program Files\DellTPad\ApMsgFwd.exe - ok
21:55:17.0656 1972  [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
21:55:17.0656 1972  C:\WINDOWS\system32\webcheck.dll - ok
21:55:17.0671 1972  [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
21:55:17.0671 1972  C:\WINDOWS\system32\kmddsp.tsp - ok
21:55:17.0671 1972  [ D4931277DF5393E84A48B27DF40914E3 ] C:\WINDOWS\system32\riched32.dll
21:55:17.0671 1972  C:\WINDOWS\system32\riched32.dll - ok
21:55:17.0671 1972  [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files\iTunes\iTunesHelper.dll
21:55:17.0671 1972  C:\Program Files\iTunes\iTunesHelper.dll - ok
21:55:17.0671 1972  [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
21:55:17.0671 1972  C:\WINDOWS\system32\stobject.dll - ok
21:55:17.0671 1972  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
21:55:17.0687 1972  C:\WINDOWS\system32\imapi.exe - ok
21:55:17.0687 1972  [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
21:55:17.0687 1972  C:\WINDOWS\system32\ndptsp.tsp - ok
21:55:17.0687 1972  [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
21:55:17.0687 1972  C:\WINDOWS\system32\batmeter.dll - ok
21:55:17.0687 1972  [ 1B4BC5E32AC3AC67F412D97C793B5659 ] C:\Program Files\Windows Live\Family Safety\fsui.exe
21:55:17.0687 1972  C:\Program Files\Windows Live\Family Safety\fsui.exe - ok
21:55:17.0687 1972  [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
21:55:17.0687 1972  C:\WINDOWS\system32\ipconf.tsp - ok
21:55:17.0703 1972  [ 81EF7547ABD2D8738D88C05D4FB06D85 ] C:\WINDOWS\system32\fldrclnr.dll
21:55:17.0703 1972  C:\WINDOWS\system32\fldrclnr.dll - ok
21:55:17.0703 1972  [ 29ECDA17BA5E6D98430F698587569ACC ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll
21:55:17.0703 1972  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll - ok
21:55:17.0703 1972  [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
21:55:17.0703 1972  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
21:55:17.0703 1972  [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
21:55:17.0703 1972  C:\WINDOWS\system32\h323.tsp - ok
21:55:17.0718 1972  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\WINDOWS\system32\mfc100u.dll
21:55:17.0718 1972  C:\WINDOWS\system32\mfc100u.dll - ok
21:55:17.0718 1972  [ 18F5D2CF39A543FDFEF67F05F8CDF4E3 ] C:\Program Files\Windows Live\Family Safety\uxcore.dll
21:55:17.0718 1972  C:\Program Files\Windows Live\Family Safety\uxcore.dll - ok
21:55:17.0718 1972  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
21:55:17.0718 1972  C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
21:55:17.0718 1972  [ 8D78BE3690DB07A2FD03D2A6B61E3DCD ] C:\Program Files\DellTPad\ApntEx.exe
21:55:17.0718 1972  C:\Program Files\DellTPad\ApntEx.exe - ok
21:55:17.0734 1972  [ A25E08CE13CEDEA59318CAEB29498236 ] C:\Program Files\Windows Live\Family Safety\wldcore.dll
21:55:17.0734 1972  C:\Program Files\Windows Live\Family Safety\wldcore.dll - ok
21:55:17.0734 1972  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
21:55:17.0734 1972  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
21:55:17.0734 1972  [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
21:55:17.0734 1972  C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
21:55:17.0734 1972  [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
21:55:17.0734 1972  C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
21:55:17.0750 1972  [ 1D845821F5ADB076831DE4C2818F858B ] C:\WINDOWS\system32\usp10.dll
21:55:17.0750 1972  C:\WINDOWS\system32\usp10.dll - ok
21:55:17.0750 1972  [ C574C551637734B13278898FE2D12D15 ] C:\Program Files\DellTPad\hidfind.exe
21:55:17.0750 1972  C:\Program Files\DellTPad\hidfind.exe - ok
21:55:17.0750 1972  [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
21:55:17.0750 1972  C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
21:55:17.0750 1972  [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
21:55:17.0750 1972  C:\WINDOWS\system32\hidphone.tsp - ok
21:55:17.0750 1972  [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
21:55:17.0750 1972  C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
21:55:17.0765 1972  [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
21:55:17.0765 1972  C:\WINDOWS\system32\rasppp.dll - ok
21:55:17.0765 1972  [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
21:55:17.0765 1972  C:\WINDOWS\system32\ntlsapi.dll - ok
21:55:17.0765 1972  [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
21:55:17.0765 1972  C:\WINDOWS\system32\rasqec.dll - ok
21:55:17.0765 1972  [ 96E7A6ED1B5603F53E9147AFE84A2B6F ] C:\Program Files\Windows Live\Family Safety\fsui.dll
21:55:17.0765 1972  C:\Program Files\Windows Live\Family Safety\fsui.dll - ok
21:55:17.0781 1972  [ 5D999BF519415D1C8EE0B97FF6A254DB ] C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL
21:55:17.0781 1972  C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL - ok
21:55:17.0781 1972  [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
21:55:17.0781 1972  C:\WINDOWS\system32\rasdlg.dll - ok
21:55:17.0781 1972  [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
21:55:17.0781 1972  C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
21:55:17.0781 1972  [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\WINDOWS\system32\mfc100enu.dll
21:55:17.0781 1972  C:\WINDOWS\system32\mfc100enu.dll - ok
21:55:17.0796 1972  [ CBDAF981AA31159163B855E31CA94FC1 ] C:\Program Files\Windows Live\Family Safety\fsssvcps.dll
21:55:17.0796 1972  C:\Program Files\Windows Live\Family Safety\fsssvcps.dll - ok
21:55:17.0796 1972  [ 317C54DCAB9EE29CD4B9F55D197A90D1 ] C:\WINDOWS\system32\msisip.dll
21:55:17.0796 1972  C:\WINDOWS\system32\msisip.dll - ok
21:55:17.0796 1972  [ 3A6D465F379E5C815F4AD565391E654C ] C:\WINDOWS\system32\wshext.dll
21:55:17.0796 1972  C:\WINDOWS\system32\wshext.dll - ok
21:55:17.0796 1972  [ EDB5A21BB8124AE4998A58778000C38D ] C:\Program Files\Windows Live\Family Safety\fsuires.dll
21:55:17.0796 1972  C:\Program Files\Windows Live\Family Safety\fsuires.dll - ok
21:55:17.0812 1972  [ 469184CB3E8D8432F4830BB73940810D ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
21:55:17.0812 1972  C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
21:55:17.0812 1972  [ EACED945008EB7E91AAD494358FD84EA ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
21:55:17.0812 1972  C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
21:55:17.0812 1972  [ F03FFC962E18F36A922E61F96BE09925 ] C:\Program Files\Digital Line Detect\DLG.exe
21:55:17.0812 1972  C:\Program Files\Digital Line Detect\DLG.exe - ok
21:55:17.0812 1972  [ CB1135906D951B574F9F2498BE8F11F9 ] C:\Program Files\Digital Line Detect\BVRPDiag.dll
21:55:17.0812 1972  C:\Program Files\Digital Line Detect\BVRPDiag.dll - ok
21:55:17.0812 1972  [ BE5D578F387C8E077DDE48C149B7FE42 ] C:\WINDOWS\system32\btosif.dll
21:55:17.0812 1972  C:\WINDOWS\system32\btosif.dll - ok
21:55:17.0828 1972  [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
21:55:17.0828 1972  C:\WINDOWS\system32\shfolder.dll - ok
21:55:17.0828 1972  [ 1972533E3CF15267C239B995ECDD80F3 ] C:\WINDOWS\system32\btwhidcs.dll
21:55:17.0828 1972  C:\WINDOWS\system32\btwhidcs.dll - ok
21:55:17.0828 1972  [ 9AF037DF48AE21B6E30177DFE1481C45 ] C:\WINDOWS\system32\mdmxsdk.dll
21:55:17.0828 1972  C:\WINDOWS\system32\mdmxsdk.dll - ok
21:55:17.0828 1972  [ E8A39D41474BE42FD8830CED32932D6C ] C:\Program Files\iPod\bin\iPodService.exe
21:55:17.0828 1972  C:\Program Files\iPod\bin\iPodService.exe - ok
21:55:17.0843 1972  [ B624202660474516E73AA95238FD9843 ] C:\Program Files\SetPoint\SetPoint.exe
21:55:17.0843 1972  C:\Program Files\SetPoint\SetPoint.exe - ok
21:55:17.0843 1972  [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe
21:55:17.0843 1972  C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
21:55:17.0843 1972  [ 84C0593DCD2C92A1D8A139C7DD82DD0D ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll
21:55:17.0843 1972  C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok
21:55:17.0843 1972  [ 4B1EB3AD2771AE8D0390ED1444B7B493 ] C:\Program Files\SetPoint\lgscroll.dll
21:55:17.0843 1972  C:\Program Files\SetPoint\lgscroll.dll - ok
21:55:17.0859 1972  [ 22AA20E24295D0D98AFF72C65BD7DBFA ] C:\WINDOWS\system32\KemXML.dll
21:55:17.0859 1972  C:\WINDOWS\system32\KemXML.dll - ok
21:55:17.0859 1972  [ 810F104256F6BCD7012545B0BEA18D23 ] C:\WINDOWS\system32\kemutb.dll
21:55:17.0859 1972  C:\WINDOWS\system32\kemutb.dll - ok
21:55:17.0859 1972  [ 7DF0DECD3006B8BA450AEC714086FF3C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
21:55:17.0859 1972  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
21:55:17.0859 1972  [ 8ADAE4E00D86A8530B8176A853B4B9B9 ] C:\WINDOWS\system32\KemUtil.dll
21:55:17.0859 1972  C:\WINDOWS\system32\KemUtil.dll - ok
21:55:17.0875 1972  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
21:55:17.0875 1972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll - ok
21:55:17.0875 1972  [ 280013E1CA1A648A6B896D884CC46601 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
21:55:17.0875 1972  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
21:55:17.0875 1972  [ B48E7B4C95CCE0C6C0C3F7B1A97FBC8F ] C:\WINDOWS\system32\wzcdlg.dll
21:55:17.0875 1972  C:\WINDOWS\system32\wzcdlg.dll - ok
21:55:17.0875 1972  [ B658ED3DB3722DD1EBE6DF508B642358 ] C:\WINDOWS\system32\btrez.dll
21:55:17.0875 1972  C:\WINDOWS\system32\btrez.dll - ok
21:55:17.0890 1972  [ 66BB459457DE608E45B23BAD367D4673 ] C:\WINDOWS\system32\btwicons.dll
21:55:17.0890 1972  C:\WINDOWS\system32\btwicons.dll - ok
21:55:17.0890 1972  [ 7BDCEAF13D9EC5873C43BD8063BEC871 ] C:\WINDOWS\system32\KemWnd.dll
21:55:17.0890 1972  C:\WINDOWS\system32\KemWnd.dll - ok
21:55:17.0890 1972  [ 9EED448E2C6306BFD8B2B19063FC21A1 ] C:\Program Files\AVG\AVG2013\avgidpmx.dll
21:55:17.0890 1972  C:\Program Files\AVG\AVG2013\avgidpmx.dll - ok
21:55:17.0890 1972  [ 559DC15B74C66EC38C4ECF81503C7757 ] C:\Program Files\SetPoint\SetPointCOM.dll
21:55:17.0890 1972  C:\Program Files\SetPoint\SetPointCOM.dll - ok
21:55:17.0906 1972  [ D20AF468FA7F09B9561C8232BB80D4BA ] C:\Program Files\SetPoint\khalwrapper.dll
21:55:17.0906 1972  C:\Program Files\SetPoint\khalwrapper.dll - ok
21:55:17.0906 1972  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
21:55:17.0906 1972  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
21:55:17.0906 1972  [ 0F837F93FC8858B6C002F9D66C8DE45C ] C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
21:55:17.0906 1972  C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll - ok
21:55:17.0906 1972  [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
21:55:17.0906 1972  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
21:55:17.0921 1972  [ CF2CFBB5B83A196597F8A24F1302BBDA ] C:\WINDOWS\system32\BtMmHook.dll
21:55:17.0921 1972  C:\WINDOWS\system32\BtMmHook.dll - ok
21:55:17.0921 1972  [ 3D9E0344B6D79F0E6037DF2492A63793 ] C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
21:55:17.0921 1972  C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE - ok
21:55:17.0921 1972  [ 2FEF21EEE9934BB10165AA02E530183C ] C:\Program Files\AVG\AVG2013\avglngx.dll
21:55:17.0921 1972  C:\Program Files\AVG\AVG2013\avglngx.dll - ok
21:55:17.0921 1972  [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
21:55:17.0921 1972  C:\WINDOWS\system32\wbem\framedyn.dll - ok
21:55:17.0921 1972  [ 6538BA7912DA1CB4BEE20A4722667D65 ] C:\WINDOWS\system32\btins.dll
21:55:17.0921 1972  C:\WINDOWS\system32\btins.dll - ok
21:55:17.0937 1972  [ B80B70609797F944517186DDAC174A50 ] C:\Program Files\AVG\AVG2013\avguires.dll
21:55:17.0937 1972  C:\Program Files\AVG\AVG2013\avguires.dll - ok
21:55:17.0937 1972  [ 97E46C5E21660B2772481D75117D0D24 ] C:\WINDOWS\system32\BtAudioHelper.dll
21:55:17.0937 1972  C:\WINDOWS\system32\BtAudioHelper.dll - ok
21:55:17.0937 1972  [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
21:55:17.0937 1972  C:\WINDOWS\system32\security.dll - ok
21:55:17.0937 1972  [ 805D3AE37FC58F8174ED7BACEEF7BB3F ] C:\WINDOWS\system32\btosif_ol.dll
21:55:17.0937 1972  C:\WINDOWS\system32\btosif_ol.dll - ok
21:55:17.0953 1972  [ CC2215FDB02BA39EDE8EF54E0B71B3B8 ] C:\WINDOWS\system32\btosif_olx.dll
21:55:17.0953 1972  C:\WINDOWS\system32\btosif_olx.dll - ok
21:55:17.0953 1972  [ B736E9A31EDB4D7CE3632FFCFBD69304 ] C:\Program Files\SetPoint\Macros\MacroCore.dll
21:55:17.0953 1972  C:\Program Files\SetPoint\Macros\MacroCore.dll - ok
21:55:17.0953 1972  [ E81BBE78A8EF85ACD490B3E64EF63A7C ] C:\WINDOWS\system32\mapi32.dll
21:55:17.0953 1972  C:\WINDOWS\system32\mapi32.dll - ok
21:55:17.0953 1972  [ 0435DDECB04E5DFF30CB0FD6C185C6C1 ] C:\WINDOWS\system32\btosif_notes.dll
21:55:17.0953 1972  C:\WINDOWS\system32\btosif_notes.dll - ok
21:55:17.0968 1972  [ A8D63A66ACE6A7059F7F29376D032182 ] C:\WINDOWS\system32\btdev.dll
21:55:17.0968 1972  C:\WINDOWS\system32\btdev.dll - ok
21:55:17.0968 1972  [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
21:55:17.0968 1972  C:\WINDOWS\system32\wbem\wmipcima.dll - ok
21:55:17.0968 1972  [ 145D7CB9862D6FA5A6F068F9F8B61B39 ] C:\Program Files\SetPoint\IMHook.dll
21:55:17.0968 1972  C:\Program Files\SetPoint\IMHook.dll - ok
21:55:17.0968 1972  [ C0F8561D8F32926EB25165CBDC7BBA3F ] C:\Program Files\SetPoint\WebBrowserSupport.dll
21:55:17.0968 1972  C:\Program Files\SetPoint\WebBrowserSupport.dll - ok
21:55:17.0984 1972  [ 730E90935150048A4E5F392FCDD49DA3 ] C:\Program Files\AVG\AVG2013\avgapps.dll
21:55:17.0984 1972  C:\Program Files\AVG\AVG2013\avgapps.dll - ok
21:55:17.0984 1972  [ 2C3196C163BEF55A404A2549C7B69589 ] C:\Program Files\SetPoint\Macros\MacroAppSwitch.dll
21:55:17.0984 1972  C:\Program Files\SetPoint\Macros\MacroAppSwitch.dll - ok
21:55:17.0984 1972  [ 4A79F94E9A9D911D1BB525C262CCE2BA ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.dll
21:55:17.0984 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.dll - ok
21:55:17.0984 1972  [ E96BC31E0114F0999FB0F92FC65D61CA ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
21:55:17.0984 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe - ok
21:55:18.0000 1972  [ D7A835DB03CFE8168574893BF7E5C886 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.dll
21:55:18.0000 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.dll - ok
21:55:18.0000 1972  [ 2BE37815B1FCA885119612C658DB8CA8 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.dll
21:55:18.0000 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.dll - ok
21:55:18.0000 1972  [ 9DB55C2361E0974A9630EECD70C69FAB ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.dll
21:55:18.0000 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.dll - ok
21:55:18.0000 1972  [ 70D4F5E5490A8947262A0D591309CEB4 ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.dll
21:55:18.0000 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.dll - ok
21:55:18.0015 1972  [ 24F2095044B9EE2AD1ED2B1D7152893E ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.dll
21:55:18.0015 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.dll - ok
21:55:18.0015 1972  [ B02910B449EA0B5AF9D3422A9F907D8D ] C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.dll
21:55:18.0015 1972  C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.dll - ok
21:55:18.0015 1972  [ 13710783A04D427B6F621EE697569217 ] C:\Program Files\SetPoint\KGame.dll
21:55:18.0015 1972  C:\Program Files\SetPoint\KGame.dll - ok
21:55:18.0015 1972  [ 8A5092AE59D6ED5B181292CDBFB22B2F ] C:\Program Files\SetPoint\GameHook.dll
21:55:18.0015 1972  C:\Program Files\SetPoint\GameHook.dll - ok
21:55:18.0015 1972  [ FBDB9D0935B9907B809B381FDDF1627F ] C:\WINDOWS\system32\regsvr32.exe
21:55:18.0015 1972  C:\WINDOWS\system32\regsvr32.exe - ok
21:55:18.0031 1972  [ B0AC88C4E3B63EC8B67768301D10E652 ] C:\Program Files\SetPoint\SetPointCOMWMP9.dll
21:55:18.0031 1972  C:\Program Files\SetPoint\SetPointCOMWMP9.dll - ok
21:55:18.0031 1972  [ B292E60B5334E6763BA365D8FD96D3B7 ] C:\Program Files\SetPoint\SetPointCOMMM9.dll
21:55:18.0031 1972  C:\Program Files\SetPoint\SetPointCOMMM9.dll - ok
21:55:18.0031 1972  [ 5E28284F9B5F9097640D58A73D38AD4C ] C:\WINDOWS\system32\notepad.exe
21:55:18.0031 1972  C:\WINDOWS\system32\notepad.exe - ok
21:55:18.0031 1972  ============================================================
21:55:18.0031 1972  Scan finished
21:55:18.0031 1972  ============================================================
21:55:18.0140 2592  Detected object count: 2
21:55:18.0140 2592  Actual detected object count: 2
07:06:52.0125 2592  cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
07:06:52.0125 2592  cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:06:52.0171 2592  \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
07:06:52.0187 2592  \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
07:06:52.0203 2592  \Device\Harddisk0\DR0\TDLFS\cmd32.dll - copied to quarantine
07:06:52.0203 2592  \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
07:06:52.0234 2592  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
07:06:52.0250 2592  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
07:06:52.0265 2592  \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
07:06:52.0265 2592  \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
07:06:52.0281 2592  \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
07:06:52.0296 2592  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
07:06:52.0296 2592  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
07:06:52.0296 2592  \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
07:06:52.0312 2592  \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
07:06:52.0312 2592  \Device\Harddisk0\DR0\TDLFS\so - copied to quarantine
07:06:52.0312 2592  \Device\Harddisk0\DR0\TDLFS - deleted
07:06:52.0312 2592  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
07:08:30.0421 3684  Deinitialize success
 



#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:42 PM

Posted 19 August 2013 - 12:47 PM


Hello rebeccabecky

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::


 
Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
CFScriptB-4.gif
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
    • report from Combofix
    • let me know of any problems you may have had
    • How is the computer doing now after running the script?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 rebeccabecky

rebeccabecky
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:12:42 PM

Posted 19 August 2013 - 08:10 PM

Here is the Combofix report.  I would say that the computer is running much better since doing all this stuff to it.  The sound controls have all stayed where I put them.  It seems pretty good!

 

 

 

ComboFix 13-08-19.02 - Becky 08/19/2013  19:56:23.2.2 - x86
Microsoft Windows XP Home Edition  5.1.2600.3.1252.1.1033.18.2038.1479 [GMT -5:00]
Running from: c:\documents and settings\Becky\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Becky\Desktop\CFScript.txt
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
(((((((((((((((((((((((((   Files Created from 2013-07-20 to 2013-08-20  )))))))))))))))))))))))))))))))
.
.
2013-08-18 19:27 . 2013-08-19 12:06    --------    d-----w-    C:\TDSSKiller_Quarantine
2013-08-18 03:12 . 2013-08-18 03:12    --------    d-----w-    c:\windows\ERUNT
2013-08-17 16:47 . 2013-08-17 16:48    --------    d-----w-    c:\documents and settings\Administrator
2013-08-17 16:27 . 2013-08-17 16:27    --------    d-----w-    c:\documents and settings\Benjamin\Application Data\Malwarebytes
2013-07-23 01:47 . 2013-08-15 13:46    --------    d-----w-    c:\windows\system32\MRT
2013-07-22 18:09 . 2013-07-22 18:09    --------    d-----w-    c:\documents and settings\Benjamin\Application Data\Unity
2013-07-22 18:04 . 2013-07-22 18:04    --------    d-----w-    c:\documents and settings\Benjamin\Local Settings\Application Data\Unity
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-26 02:47 . 2006-03-04 03:33    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-07-26 02:47 . 2004-08-04 10:00    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-07-26 02:47 . 2004-08-04 10:00    1469440    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-07-25 15:52 . 2004-08-04 10:00    385024    ----a-w-    c:\windows\system32\html.iec
2013-07-20 06:51 . 2012-09-21 08:46    246072    ----a-w-    c:\windows\system32\drivers\avglogx.sys
2013-07-20 06:50 . 2012-10-22 18:02    208184    ----a-w-    c:\windows\system32\drivers\avgidsdriverx.sys
2013-07-20 06:50 . 2012-10-15 08:48    60216    ----a-w-    c:\windows\system32\drivers\avgidshx.sys
2013-07-20 06:50 . 2012-10-02 08:30    171320    ----a-w-    c:\windows\system32\drivers\avgldx86.sys
2013-07-10 10:37 . 2004-08-04 10:00    406016    ----a-w-    c:\windows\system32\usp10.dll
2013-07-10 06:32 . 2012-09-14 08:05    39224    ----a-w-    c:\windows\system32\drivers\avgrkx86.sys
2013-07-04 03:03 . 2005-03-30 01:21    2149888    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08 . 2005-03-30 01:01    2028544    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-07-01 06:45 . 2012-11-16 04:33    96568    ----a-w-    c:\windows\system32\drivers\avgmfx86.sys
2013-06-11 19:16 . 2013-01-19 20:02    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-06-11 19:16 . 2013-01-19 20:02    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-04 07:23 . 2004-08-04 10:00    562688    ----a-w-    c:\windows\system32\qedit.dll
2013-06-04 01:40 . 2004-08-04 10:00    1876736    ----a-w-    c:\windows\system32\win32k.sys
2013-05-28 01:59 . 2004-08-04 10:00    590848    ----a-w-    c:\windows\system32\rpcrt4.dll
2013-05-28 00:41 . 2013-03-20 12:01    6144    ----a-w-    c:\windows\system32\xpsp4res.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-08-30 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-08-30 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-08-30 137752]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2007-07-02 159744]
"SigmatelSysTrayApp"="c:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-11-26 2289664]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2013-07-01 4411440]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-12-12 152544]
"fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2010-04-28 647528]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-5-17 568176]
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2013-1-19 50688]
SetPoint.lnk - c:\program files\SetPoint\SetPoint.exe [2013-1-19 813584]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute    REG_MULTI_SZ       autocheck autochk *\0c:\progra~1\AVG\AVG2013\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgemcx.exe"=
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [10/15/2012 3:48 AM 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [9/21/2012 3:46 AM 246072]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [9/14/2012 3:05 AM 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [10/22/2012 1:02 PM 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [9/21/2012 3:45 AM 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [10/2/2012 3:30 AM 171320]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [9/21/2012 3:46 AM 182072]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [7/4/2013 3:53 PM 4939312]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [7/23/2013 7:09 PM 283136]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [1/19/2013 2:14 PM 10384]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 70302948
*NewlyCreated* - 79175613
*Deregistered* - 70302948
*Deregistered* - 79175613
.
Contents of the 'Scheduled Tasks' folder
.
2013-08-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-19 19:16]
.
2013-05-17 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 22:57]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\documents and settings\Becky\Application Data\Mozilla\Firefox\Profiles\zcpqzql3.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-12710675.sys
SafeBoot-73148193.sys
SafeBoot-79175613.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-08-19 20:02
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...  
.
scanning hidden autostart entries ...
.
scanning hidden files ...  
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1116)
c:\windows\System32\BCMLogon.dll
c:\windows\system32\igfxdev.dll
.
- - - - - - - > 'explorer.exe'(3352)
c:\windows\system32\WININET.dll
c:\program files\SetPoint\lgscroll.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2013-08-19  20:04:08
ComboFix-quarantined-files.txt  2013-08-20 01:04
ComboFix2.txt  2013-08-18 04:51
.
Pre-Run: 483,028,971,520 bytes free
Post-Run: 483,040,591,872 bytes free
.
- - End Of File - - C9778CEA8A60A02BFBC6EF163C4B9C28
8F558EB6672622401DA993E1E865C861
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users