Jump to content

Alex768

Members
  • Posts

    20
  • Joined

  • Last visited

Everything posted by Alex768

  1. MrCharlie did a great job with providing easy instructions to fix my computer. Thank you very much!

  2. Everything is working great, and my computer seems to be faster now! Thank you so much for all your help!
  3. That's odd because I never saw any signs of an infection before I started getting the wow.dll error. Here is the checkup.txt file: Results of screen317's Security Check version 0.99.68 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.75.0.1300 Java 7 Update 25 Adobe Flash Player 11.7.700.224 Mozilla Firefox 21.0 Firefox out of Date! Google Chrome 27.0.1453.110 Google Chrome 27.0.1453.116 ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: 24% Defragment your hard drive soon! (Do NOT defrag if SSD!) ````````````````````End of Log``````````````````````
  4. After I did that and rebooted, the error message seems to have finally went away! Do you think everything is back to normal now? Here is the fixlog.txt file: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-06-2013 03 Ran by Alex at 2013-06-30 22:07:16 Run:1 Running from C:\Users\Alex\Desktop\Farbar Boot Mode: Normal ============================================== HKCU\Software\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9} => Key deleted successfully. ==== End of Fixlog ====
  5. I'm sorry thats my bad I thought that was supposed to fix it! Ok here is the FRST.txt file: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-06-2013 03 Ran by Alex (administrator) on 30-06-2013 21:48:15 Running from C:\Users\Alex\Desktop\Farbar Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe () C:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exe (Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\syswow64\svchost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe" [415816 2010-08-03] (Logitech Inc.) HKLM\...\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2412616 2010-08-03] (Logitech Inc.) HKLM\...\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE [4725320 2010-08-03] (Logitech Inc.) HKCR\...409d6c4515e9\InprocServer32: [Default-shell32] C:\Users\Alex\AppData\Local\Temp\sxpnrvm\sftrhbm\wow64.dll ATTENTION! ====> ZeroAccess HKLM-x32\...\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation) HKLM-x32\...\Run: [updReg] C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-01-28] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.) HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152392 2013-02-20] (Apple Inc.) HKLM-x32\...\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation) Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\b1o0r7td.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=1.102.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll No File FF Plugin-x32: @esn/esnlaunch,version=1.110.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll No File FF Plugin-x32: @esn/esnlaunch,version=2.1.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB) FF Plugin-x32: @idsoftware.com/QuakeLive - C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Extension: yesscript - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\b1o0r7td.default\Extensions\yesscript@userstyles.org.xpi FF Extension: No Name - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\b1o0r7td.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} Chrome: ======= CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll () CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.) CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB) CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File CHR Plugin: (Java Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () CHR Plugin: (QUAKE LIVE) - C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Dark Vibe) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkckeanhmkjaechlhllmapjaaglgpcbj\1.1_0 CHR Extension: (AdBlock) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0 CHR Extension: (Image To Center) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpejamelebpigblebnbabhndaaffjok\2.1.3_0 CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 ==================== Services (Whitelisted) ================= R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-02-18] () ==================== Drivers (Whitelisted) ==================== R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2010-11-09] (CPUID) R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.) R3 RTCore64; C:\Program Files (x86)\EVGA Precision X\RTCore64.sys [15176 2013-04-05] () R3 RTCore64; C:\Program Files (x86)\EVGA Precision X\RTCore64.sys [15176 2013-04-05] () S3 SSMO3v2Filter; C:\Windows\System32\drivers\MO3v2Driver.sys [23040 2010-12-17] (Sagatek Co. Ltd.) S3 ALSysIO; \??\C:\Users\Alex\AppData\Local\Temp\ALSysIO64.sys [x] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x] S3 tsusbhub; system32\drivers\tsusbhub.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-06-30 21:47 - 2013-06-30 21:47 - 00000000 ____D C:\Users\Alex\Desktop\Farbar 2013-06-30 21:47 - 2013-06-30 21:47 - 00000000 ____D C:\FRST 2013-06-30 20:37 - 2013-06-30 20:42 - 00000112 ____A C:\Windows\setupact.log 2013-06-30 20:37 - 2013-06-30 20:37 - 00000000 ____A C:\Windows\setuperr.log 2013-06-30 20:31 - 2013-06-30 20:39 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-06-30 20:28 - 2013-06-30 20:30 - 00000000 ____D C:\Users\Alex\Desktop\Malwarebytes 2013-06-30 20:28 - 2013-06-30 20:29 - 13399154 ____A C:\Users\Alex\Desktop\mbar-1.06.0.1004.zip 2013-06-30 20:19 - 2013-06-30 20:19 - 00000822 ____A C:\Users\Public\Desktop\CCleaner.lnk 2013-06-30 20:19 - 2013-06-30 20:19 - 00000000 ____D C:\Program Files\CCleaner 2013-06-30 19:32 - 2013-06-30 19:38 - 00000000 ____D C:\Users\Alex\Desktop\RK_Quarantine 2013-06-30 19:29 - 2013-06-30 19:29 - 00912384 ____A C:\Users\Alex\Desktop\RogueKiller.exe 2013-06-30 03:23 - 2013-06-30 14:54 - 00000000 ____D C:\Users\Alex\Desktop\New folder 2013-06-30 02:52 - 2013-06-30 02:52 - 00017804 ____A C:\Users\Alex\Desktop\dds.txt 2013-06-30 02:52 - 2013-06-30 02:52 - 00009008 ____A C:\Users\Alex\Desktop\attach.txt 2013-06-30 02:50 - 2013-06-30 02:50 - 00688992 ____R (Swearware) C:\Users\Alex\Desktop\dds.com 2013-06-30 02:39 - 2013-06-30 02:41 - 00000150 ____A C:\Users\Alex\Desktop\problem.txt 2013-06-22 21:31 - 2013-06-22 21:30 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-06-22 21:31 - 2013-06-22 21:30 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-06-22 21:31 - 2013-06-22 21:30 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-06-22 21:31 - 2013-06-22 21:30 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 27775776 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 25256224 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 21096736 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 17560352 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 15143904 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 13403168 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 12426216 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 11216160 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys 2013-06-14 17:28 - 2013-05-12 17:42 - 09233688 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 07682960 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 07641832 ____A (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 06324360 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 02942240 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 02754336 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 02363680 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 02002720 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 01832224 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispco6432018.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 01511712 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispgenco6432018.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00925648 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00550176 ____A (NVIDIA Corporation) C:\Windows\System32\NvFBC64.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00518944 ____A (NVIDIA Corporation) C:\Windows\System32\NvIFR64.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00443168 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00421152 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00266448 ____A (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00218592 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglshim64.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00214448 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2013-06-14 17:28 - 2013-05-12 17:42 - 00181488 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2013-06-14 17:28 - 2013-02-25 01:27 - 00194848 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys 2013-06-14 17:28 - 2013-02-25 01:27 - 00031520 ____A (NVIDIA Corporation) C:\Windows\System32\nvhdap64.dll 2013-06-14 17:24 - 2013-06-08 10:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-14 17:24 - 2013-06-08 10:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-14 17:24 - 2013-06-08 10:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-14 17:24 - 2013-06-08 10:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-14 17:24 - 2013-06-08 10:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-14 17:24 - 2013-06-08 08:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-14 17:24 - 2013-06-08 07:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-06-14 17:24 - 2013-06-08 07:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-06-14 17:24 - 2013-06-08 07:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-06-14 17:24 - 2013-06-08 07:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-06-14 17:24 - 2013-06-08 07:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-06-14 17:24 - 2013-06-08 07:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-06-14 17:24 - 2013-05-10 01:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll 2013-06-14 17:24 - 2013-05-09 23:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2013-06-14 17:24 - 2013-04-25 19:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-06-14 17:24 - 2013-04-17 03:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-06-14 17:24 - 2013-04-17 02:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2013-06-14 17:24 - 2013-03-31 18:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll 2013-06-14 17:21 - 2013-06-21 17:21 - 00000000 ____D C:\Users\Alex\Desktop\Stuff 2013-06-11 20:17 - 2013-05-16 21:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-06-11 20:17 - 2013-05-16 21:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-06-11 20:17 - 2013-05-16 20:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-06-11 20:17 - 2013-05-16 20:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-06-11 20:17 - 2013-05-16 20:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-06-11 20:17 - 2013-05-16 20:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-06-11 20:17 - 2013-05-16 20:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-06-11 20:17 - 2013-05-16 20:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-06-11 20:17 - 2013-05-16 20:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-06-11 20:17 - 2013-05-16 20:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-06-11 20:17 - 2013-05-16 20:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-06-11 20:17 - 2013-05-14 08:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-06-11 20:17 - 2013-05-14 04:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-06-11 20:13 - 2013-05-13 01:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll 2013-06-11 20:13 - 2013-05-13 01:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll 2013-06-11 20:13 - 2013-05-13 01:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll 2013-06-11 20:13 - 2013-05-13 01:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll 2013-06-11 20:13 - 2013-05-13 00:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-06-11 20:13 - 2013-05-13 00:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-06-11 20:13 - 2013-05-13 00:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-06-11 20:13 - 2013-05-12 23:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe 2013-06-11 20:13 - 2013-05-12 23:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe 2013-06-11 20:13 - 2013-05-12 23:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll 2013-06-11 20:13 - 2013-05-08 02:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys 2013-06-11 20:13 - 2013-04-26 01:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll 2013-06-11 20:13 - 2013-04-26 00:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-06-07 22:14 - 2013-06-07 22:14 - 00000000 ____D C:\Program Files (x86)\ESET ==================== One Month Modified Files and Folders ======= 2013-06-30 21:47 - 2013-06-30 21:47 - 00000000 ____D C:\Users\Alex\Desktop\Farbar 2013-06-30 21:47 - 2013-06-30 21:47 - 00000000 ____D C:\FRST 2013-06-30 21:28 - 2012-03-31 14:04 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-06-30 21:18 - 2013-02-23 00:06 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-06-30 20:49 - 2009-07-14 00:45 - 00013952 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-06-30 20:49 - 2009-07-14 00:45 - 00013952 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-06-30 20:48 - 2009-07-14 01:13 - 00779306 ____A C:\Windows\System32\PerfStringBackup.INI 2013-06-30 20:42 - 2013-06-30 20:37 - 00000112 ____A C:\Windows\setupact.log 2013-06-30 20:42 - 2013-02-23 00:06 - 00000890 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-06-30 20:42 - 2009-07-14 01:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-06-30 20:41 - 2011-01-09 00:26 - 01694555 ____A C:\Windows\WindowsUpdate.log 2013-06-30 20:39 - 2013-06-30 20:31 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-06-30 20:37 - 2013-06-30 20:37 - 00000000 ____A C:\Windows\setuperr.log 2013-06-30 20:30 - 2013-06-30 20:28 - 00000000 ____D C:\Users\Alex\Desktop\Malwarebytes 2013-06-30 20:29 - 2013-06-30 20:28 - 13399154 ____A C:\Users\Alex\Desktop\mbar-1.06.0.1004.zip 2013-06-30 20:27 - 2011-03-09 00:18 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Ventrilo 2013-06-30 20:27 - 2011-01-09 01:21 - 00000000 ____D C:\Windows\Panther 2013-06-30 20:19 - 2013-06-30 20:19 - 00000822 ____A C:\Users\Public\Desktop\CCleaner.lnk 2013-06-30 20:19 - 2013-06-30 20:19 - 00000000 ____D C:\Program Files\CCleaner 2013-06-30 19:57 - 2011-11-12 02:02 - 00000000 ____D C:\Users\Alex\AppData\Local\Skyrim 2013-06-30 19:39 - 2009-07-14 01:08 - 00032624 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2013-06-30 19:38 - 2013-06-30 19:32 - 00000000 ____D C:\Users\Alex\Desktop\RK_Quarantine 2013-06-30 19:29 - 2013-06-30 19:29 - 00912384 ____A C:\Users\Alex\Desktop\RogueKiller.exe 2013-06-30 14:54 - 2013-06-30 03:23 - 00000000 ____D C:\Users\Alex\Desktop\New folder 2013-06-30 02:52 - 2013-06-30 02:52 - 00017804 ____A C:\Users\Alex\Desktop\dds.txt 2013-06-30 02:52 - 2013-06-30 02:52 - 00009008 ____A C:\Users\Alex\Desktop\attach.txt 2013-06-30 02:50 - 2013-06-30 02:50 - 00688992 ____R (Swearware) C:\Users\Alex\Desktop\dds.com 2013-06-30 02:41 - 2013-06-30 02:39 - 00000150 ____A C:\Users\Alex\Desktop\problem.txt 2013-06-22 21:30 - 2013-06-22 21:31 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-06-22 21:30 - 2013-06-22 21:31 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-06-22 21:30 - 2013-06-22 21:31 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-06-22 21:30 - 2013-06-22 21:31 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-06-22 21:30 - 2012-09-15 16:51 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll 2013-06-22 21:30 - 2011-03-04 22:18 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-06-21 17:21 - 2013-06-14 17:21 - 00000000 ____D C:\Users\Alex\Desktop\Stuff 2013-06-21 16:12 - 2011-03-12 22:51 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.xtr 2013-06-21 16:12 - 2011-03-09 00:33 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.exe 2013-06-21 16:12 - 2011-03-09 00:33 - 00280904 ____A C:\Windows\SysWOW64\PnkBstrB.ex0 2013-06-21 15:46 - 2011-10-25 15:16 - 00000000 ____D C:\Program Files (x86)\Origin 2013-06-15 19:35 - 2011-10-25 15:48 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-06-15 19:13 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\rescache 2013-06-15 18:42 - 2011-10-25 15:17 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Origin 2013-06-15 18:42 - 2011-10-25 15:17 - 00000000 ____D C:\Users\Alex\AppData\Local\Origin 2013-06-15 18:42 - 2011-10-25 15:16 - 00000000 ____D C:\ProgramData\Origin 2013-06-14 17:53 - 2012-12-02 14:20 - 00000000 ____D C:\Program Files\Nexus Mod Manager 2013-06-14 17:44 - 2012-10-27 16:11 - 00001113 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-06-14 17:44 - 2012-10-27 16:11 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-06-14 17:41 - 2012-12-16 15:47 - 00000000 ____D C:\Users\Alex\Documents\PCSX2 2013-06-14 17:40 - 2011-01-09 00:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-06-14 17:39 - 2013-04-24 23:15 - 00000000 ____D C:\ProgramData\onOne Software 2013-06-14 17:39 - 2011-01-09 00:53 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Adobe 2013-06-14 17:38 - 2011-01-26 00:38 - 00000000 ____D C:\ProgramData\Solidshield 2013-06-14 17:29 - 2011-01-09 00:32 - 00000000 ____D C:\ProgramData\NVIDIA 2013-06-14 17:28 - 2012-03-31 14:04 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-14 17:28 - 2011-05-23 20:29 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-06-14 17:25 - 2011-04-19 23:26 - 00773030 ____A C:\Windows\SysWOW64\PerfStringBackup.INI 2013-06-11 20:17 - 2011-01-09 01:07 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-06-08 10:08 - 2013-06-14 17:24 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-06-08 10:07 - 2013-06-14 17:24 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-06-08 10:06 - 2013-06-14 17:24 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-06-08 10:06 - 2013-06-14 17:24 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-06-08 10:06 - 2013-06-14 17:24 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-06-08 08:28 - 2013-06-14 17:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-06-08 07:42 - 2013-06-14 17:24 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-06-08 07:40 - 2013-06-14 17:24 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-06-08 07:40 - 2013-06-14 17:24 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-06-08 07:40 - 2013-06-14 17:24 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-06-08 07:40 - 2013-06-14 17:24 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-06-08 07:13 - 2013-06-14 17:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-06-07 22:14 - 2013-06-07 22:14 - 00000000 ____D C:\Program Files (x86)\ESET 2013-06-01 14:52 - 2012-06-01 19:35 - 00000707 ____A C:\Users\Alex\Desktop\Max Payne 3.lnk ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-06-23 15:34 ==================== End Of Log ============================ And here is the Addition.txt file: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2013 03 Ran by Alex at 2013-06-30 21:48:29 Running from C:\Users\Alex\Desktop\Farbar Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Apple Application Support (x32 Version: 2.3.3) Apple Mobile Device Support (Version: 6.1.0.13) Apple Software Update (x32 Version: 2.1.3.127) Battlefield 3™ (x32 Version: 1.0.0.0) Battlelog Web Plugins (x32 Version: 2.1.7) BioShock Infinite (x32) Bonjour (Version: 3.0.0.10) Brütal Legend (x32) Bulletstorm (x32 Version: 1.0.0000.130) BulletStorm (x32 Version: 1.0.0001.130) CCleaner (Version: 4.03) CPUID CPU-Z 1.56 CPUID HWMonitor 1.17 Creative Audio Control Panel (x32 Version: 3.00) Creative Software AutoUpdate (x32 Version: 1.40) Creative Sound Blaster Properties x64 Edition (x32) Creative System Information (x32) Dead Space™ 2 (x32 Version: 1.0.944.0) Diablo III (x32 Version: 1.0.6.13300) DiskAid 5.31 (x32 Version: 5.31) Dolby Digital Live Pack (x32 Version: 3.00) DOOM 3: BFG Edition (x32) DTS Connect Pack (x32 Version: 1.00) Dual-Core Optimizer (x32 Version: 1.1.4.0169) ESET Online Scanner v3 (x32) ESN Sonar (x32 Version: 0.70.4) EVGA Precision X 4.1.0 (x32 Version: 4.1.0) EVGA SLI Enhancement Patch (x32 Version: 1.0.4.12) Futuremark SystemInfo (x32 Version: 4.2.0) Gears of War for Windows (x32 Version: 1.0.3341.132) Google Chrome (x32 Version: 27.0.1453.116) Google Update Helper (x32 Version: 1.3.21.145) Half-Life (x32) HD Tune Pro 4.60 (x32) Intel® Rapid Storage Technology (x32 Version: 9.6.0.1014) Intel® Solid-State Drive Toolbox (x32 Version: 2.01.000) iTunes (Version: 11.0.2.26) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) Logitech GamePanel Software 3.06.109 (Version: 3.06.109) Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300) Max Payne 3 (x32 Version: 1.0.0.0) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0) Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Mozilla Firefox 21.0 (x86 en-US) (x32 Version: 21.0) Mozilla Maintenance Service (x32 Version: 21.0) Nexus Mod Manager (Version: 0.44.15) NVIDIA Control Panel 320.18 (Version: 320.18) NVIDIA Graphics Driver 320.18 (Version: 320.18) NVIDIA HD Audio Driver 1.3.24.2 (Version: 1.3.24.2) NVIDIA Install Application (Version: 2.1002.124.810) NVIDIA PhysX (x32 Version: 9.12.1031) NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031) OpenAL (x32) Origin (x32 Version: 8.5.0.4550) PunkBuster Services (x32 Version: 0.991) Quake (x32) Quake II (x32) Quake Live Mozilla Plugin (x32 Version: 1.0.520) QuickTime (x32 Version: 7.73.80.64) Rainmeter (x32 Version: 2.4 r1678) Rockstar Games Social Club (x32 Version: 1.1.0.1) Serious Sam HD: The First Encounter (x32) Sound Blaster X-Fi (x32 Version: 1.0) Source SDK Base 2007 (x32) StarCraft II (x32 Version: 2.0.6.25180) Steam (x32 Version: 1.0.0.0) System Requirements Lab (x32) The Elder Scrolls V: Skyrim (x32) Tomb Raider (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1) Ventrilo Client for Windows x64 (Version: 3.0.8.0) Windows Live ID Sign-in Assistant (Version: 6.500.3165.0) World of Warcraft (x32 Version: 5.3.0.17055) Zandronum (x32 Version: 1.0) ==================== Restore Points ========================= 30-05-2013 04:24:00 Windows Update 05-06-2013 04:42:56 Windows Update 08-06-2013 02:09:10 Installed Java 7 Update 21 12-06-2013 00:17:04 Windows Update 14-06-2013 21:24:31 Windows Update 14-06-2013 21:38:31 Removed Crysis® 2 14-06-2013 21:40:35 Removed 3DMark 11 18-06-2013 19:42:46 Windows Update 21-06-2013 20:09:27 Windows Update 23-06-2013 01:30:46 Installed Java 7 Update 25 29-06-2013 03:18:16 Windows Update ==================== Scheduled Tasks (whitelisted) ============= Task: {172C82A3-E193-4A55-81DB-4FBA37ECECBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-23] (Google Inc.) Task: {2EF614D0-477C-4E9D-B310-9DDE9F1437EB} - System32\Tasks\EVGAPrecision => C:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exe [2013-04-05] () Task: {681B84DF-D6A1-4B80-96BA-0DC82540425C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd) Task: {80CE0516-C79A-4EDB-952E-A4913DE41CD7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-14] (Adobe Systems Incorporated) Task: {83EBAB8A-00A5-4A5D-B106-F4041224AEE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-23] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= Name: Logitech GamePanel Devices (QVGA) Description: Logitech GamePanel Devices (QVGA) Class Guid: {997b5d8d-c442-4f2e-baf3-9c8e671e9e21} Manufacturer: Logitech Inc Service: WUDFRd Problem: : Windows cannot initialize the device driver for this hardware. (Code 37) Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. Name: Logitech GamePanel Devices (Mono) Description: Logitech GamePanel Devices (Mono) Class Guid: {997b5d8d-c442-4f2e-baf3-9c8e671e9e21} Manufacturer: Logitech Inc Service: WUDFRd Problem: : Windows cannot initialize the device driver for this hardware. (Code 37) Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. ==================== Event log errors: ========================= Application errors: ================== Error: (06/30/2013 05:06:11 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/29/2013 08:38:32 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/23/2013 03:34:28 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/21/2013 11:47:20 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/20/2013 02:20:46 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/16/2013 02:21:31 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/15/2013 07:06:33 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/14/2013 09:44:51 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/09/2013 03:50:22 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (06/08/2013 00:31:10 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. System errors: ============= Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 5 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 7 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 3 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 11 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 9 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 6 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 4 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 2 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Error: (06/30/2013 08:42:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY) Description: Performance power management features on processor 10 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware. Microsoft Office Sessions: ========================= Error: (06/30/2013 05:06:11 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/29/2013 08:38:32 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/23/2013 03:34:28 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/21/2013 11:47:20 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/20/2013 02:20:46 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/16/2013 02:21:31 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/15/2013 07:06:33 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/14/2013 09:44:51 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/09/2013 03:50:22 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe Error: (06/08/2013 00:31:10 AM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe ==================== Memory info =========================== Percentage of memory in use: 11% Total physical RAM: 16375.14 MB Available physical RAM: 14455.88 MB Total Pagefile: 32748.47 MB Available Pagefile: 30608.85 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:298 GB) (Free:192.24 GB) NTFS (Disk=0 Partition=2) Drive e: (Slave) (Fixed) (Total:558.91 GB) (Free:389.9 GB) NTFS (Disk=1 Partition=1) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 75C0E09C) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 559 GB) (Disk ID: E3E90A9E) Partition 1: (Not Active) - (Size=559 GB) - (Type=07 NTFS) ==================== End Of Log ============================
  6. After I cleaned my temp files, I ran the anti-rootkit program, but it didn't find anthing. Then I ran fixdamage.exe, rebooted, and unfortunately the same RunDLL message I orginally described keeps coming up. mbar-log-2013-06-30 (20-37-47).txt system-log.txt
  7. So I got a new copy of Rogue Killer and booted up in safe mode, but the scan stopped at the same spot as before.
  8. How long does Rogue Killer usually take to scan your computer? I've been running the scan for about 2 hours now and it's been stuck on "checking processes - rundll32.exe" the entire time. Is this normal?
  9. Hello everyone! For the past few weeks I've been getting an error message that keeps coming up on my computer which says: There was a problem startingC:\Users\Alex\AppData\Local\Temp\sxpnrvm\sftrhbm\wow.dllA dynamic link library (DLL) initialization routine failed. I'm still not 100% clear if this is some type of malware or a computer related error because when I scan with malwarebytes it finds no results. But either way I would like to have it fixed. Here is my dds.txt file: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16611 BrowserJavaVersion: 10.25.2Run by Alex at 2:52:02 on 2013-06-30Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.16375.11037 [GMT -4:00].SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k netsvcsC:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exeC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\system32\svchost.exe -k NetworkServiceC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\SysWOW64\nlssrv32.exeC:\Windows\SysWOW64\PnkBstrA.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\system32\taskhost.exeC:\Windows\system32\taskeng.exeC:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exeC:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exeC:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\iTunes\iTunesHelper.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Windows\syswow64\rundll32.exeC:\Windows\syswow64\svchost.exe -k netsvcsC:\Windows\system32\taskhost.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeC:\Windows\System32\svchost.exe -k secsvcsC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\WUDFHost.exeC:\Windows\System32\WUDFHost.exeC:\Program Files\Windows Media Player\WMPSideShowGadget.exeC:\Program Files (x86)\Windows Media Player\wmplayer.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.mWinlogon: Userinit = userinit.exe,BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllmRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exemRun: [updReg] C:\Windows\UpdReg.EXEmRun: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exemRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottimemRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"StartupFolder: C:\Users\Alex\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\RAINME~1.LNK - C:\Program Files\Rainmeter\Rainmeter.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Explorer: NoActiveDesktop = dword:1mPolicies-Explorer: NoActiveDesktopChanges = dword:1mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0TCP: NameServer = 192.168.1.1TCP: Interfaces\{E79D4881-D384-44B2-A490-B93868F02236} : DHCPNameServer = 192.168.1.1SSODL: WebCheck - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllx64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - x64-Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe"x64-Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"x64-Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDEx64-SSODL: WebCheck - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\b1o0r7td.default\FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dllFF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dllFF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dllFF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dllFF - plugin: C:\ProgramData\id Software\QuakeLive\npquakezero.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dllFF - plugin: C:\Windows\SysWOW64\npDeployJava1.dllFF - plugin: C:\Windows\SysWOW64\npmproxy.dllFF - ExtSQL: 2013-06-14 20:41; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\b1o0r7td.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi.============= SERVICES / DRIVERS ===============.R2 cpuz135;cpuz135;C:\Windows\System32\drivers\cpuz135_x64.sys [2011-1-9 21992]R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-1-16 13336]R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\nlssrv32.exe [2013-4-24 66560]R3 CT20XUT.SYS;CT20XUT.SYS;C:\Windows\System32\drivers\CT20XUT.sys [2010-7-9 230488]R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-7-9 1494104]R3 CTHWIUT.SYS;CTHWIUT.SYS;C:\Windows\System32\drivers\CTHWIUT.sys [2010-7-9 95320]R3 ha20x22k;Creative 20X2 HAL Driver;C:\Windows\System32\drivers\ha20x22k.sys [2010-7-9 1678936]R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408]R3 LGPBTDD;LGPBTDD.sys Display Driver;C:\Windows\System32\drivers\LGPBTDD.sys [2009-7-1 30728]R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008]R3 RTCore64;RTCore64;C:\Program Files (x86)\EVGA Precision X\RTCore64.sys [2013-4-5 15176]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-6-13 79360]S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-1-9 79360]S3 CT20XUT;CT20XUT;C:\Windows\System32\drivers\CT20XUT.sys [2010-7-9 230488]S3 CTEXFIFX;CTEXFIFX;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-7-9 1494104]S3 CTHWIUT;CTHWIUT;C:\Windows\System32\drivers\CTHWIUT.sys [2010-7-9 95320]S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-6-15 130976]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-27 19456]S3 SSMO3v2Filter;MMO3v2 Mouse;C:\Windows\System32\drivers\MO3v2Driver.sys [2011-1-19 23040]S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-10-27 57856]S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-7-9 52736]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-1-9 1255736].=============== Created Last 30 ================.2013-06-29 03:18:22 9552976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D92A2DE2-B4AD-4EEB-B9F7-6FF205198EA3}\mpengine.dll2013-06-23 01:31:01 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2013-06-14 21:24:45 279040 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll2013-06-12 00:17:21 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe2013-06-12 00:13:16 1910632 ----a-w- C:\Windows\System32\drivers\tcpip.sys2013-06-12 00:13:15 903168 ----a-w- C:\Windows\SysWow64\certutil.exe2013-06-12 00:13:15 751104 ----a-w- C:\Windows\System32\win32spl.dll2013-06-12 00:13:15 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll2013-06-12 00:13:15 184320 ----a-w- C:\Windows\System32\cryptsvc.dll2013-06-12 00:13:15 1464320 ----a-w- C:\Windows\System32\crypt32.dll2013-06-12 00:13:15 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll2013-06-12 00:13:15 139776 ----a-w- C:\Windows\System32\cryptnet.dll2013-06-12 00:13:15 1192448 ----a-w- C:\Windows\System32\certutil.exe2013-06-12 00:13:15 1160192 ----a-w- C:\Windows\SysWow64\crypt32.dll2013-06-12 00:13:15 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll2013-06-12 00:13:14 52224 ----a-w- C:\Windows\System32\certenc.dll2013-06-12 00:13:14 43008 ----a-w- C:\Windows\SysWow64\certenc.dll2013-06-08 02:14:51 -------- d-----w- C:\Program Files (x86)\ESET.==================== Find3M ====================.2013-06-23 01:30:59 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll2013-06-23 01:30:59 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll2013-06-21 20:12:16 291088 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2013-06-21 20:12:16 291088 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2013-06-21 20:12:10 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex02013-06-14 21:28:07 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2013-06-14 21:28:07 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2013-06-08 12:28:46 2706432 ----a-w- C:\Windows\System32\mshtml.tlb2013-06-08 11:13:19 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb2013-05-17 01:25:57 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll2013-05-17 01:25:27 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll2013-05-17 01:25:26 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll2013-05-17 01:25:26 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll2013-05-17 00:59:03 2241024 ----a-w- C:\Windows\System32\wininet.dll2013-05-17 00:58:10 3958784 ----a-w- C:\Windows\System32\jscript9.dll2013-05-17 00:58:08 67072 ----a-w- C:\Windows\System32\iesetup.dll2013-05-17 00:58:08 136704 ----a-w- C:\Windows\System32\iesysprep.dll2013-05-14 08:40:13 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe2013-05-12 20:34:14 6491936 ----a-w- C:\Windows\System32\nvcpl.dll2013-05-12 20:34:14 3514656 ----a-w- C:\Windows\System32\nvsvc64.dll2013-05-12 20:34:12 884512 ----a-w- C:\Windows\System32\nvvsvc.exe2013-05-12 20:34:12 63776 ----a-w- C:\Windows\System32\nvshext.dll2013-05-12 20:34:11 237856 ----a-w- C:\Windows\System32\nvmctray.dll2013-05-10 05:49:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll2013-05-10 03:20:54 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll2013-05-08 14:13:10 3165737 ----a-w- C:\Windows\System32\nvcoproc.bin2013-05-02 06:06:08 278800 ------w- C:\Windows\System32\MpSigStub.exe2013-04-25 23:30:32 1505280 ----a-w- C:\Windows\SysWow64\d3d11.dll2013-04-17 07:02:06 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll2013-04-17 06:24:46 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll2013-04-13 05:49:23 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll2013-04-13 05:49:19 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll2013-04-13 05:49:19 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll2013-04-13 05:49:19 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll2013-04-13 04:45:16 474624 ----a-w- C:\Windows\apppatch\AcSpecfc.dll2013-04-13 04:45:15 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll2013-04-12 14:45:08 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys2013-04-10 06:01:54 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys2013-04-10 06:01:53 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys2013-04-10 03:30:50 3153920 ----a-w- C:\Windows\System32\win32k.sys2013-04-04 18:50:32 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys.============= FINISH: 2:52:07.33 =============== And here is my attach.txt file: .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1Install Date: 1/8/2011 11:26:10 PMSystem Uptime: 6/30/2013 2:33:53 AM (0 hours ago).Motherboard: EVGA | | X58 SLI ClassifiedProcessor: Intel® Core i7 CPU X 980 @ 3.33GHz | Socket 423 | 3740/150mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 298 GiB total, 182.739 GiB free.D: is CDROM ()E: is FIXED (NTFS) - 559 GiB total, 389.896 GiB free..==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP245: 5/30/2013 12:24:00 AM - Windows UpdateRP246: 6/5/2013 12:42:56 AM - Windows UpdateRP247: 6/7/2013 10:09:10 PM - Installed Java 7 Update 21RP248: 6/11/2013 8:17:04 PM - Windows UpdateRP249: 6/14/2013 5:24:31 PM - Windows UpdateRP250: 6/14/2013 5:38:31 PM - Removed Crysis® 2RP251: 6/14/2013 5:40:35 PM - Removed 3DMark 11RP252: 6/18/2013 3:42:46 PM - Windows UpdateRP253: 6/21/2013 4:09:27 PM - Windows UpdateRP254: 6/22/2013 9:30:46 PM - Installed Java 7 Update 25RP255: 6/28/2013 11:18:16 PM - Windows Update.==== Installed Programs ======================.Adobe Flash Player 11 PluginApple Application SupportApple Mobile Device SupportApple Software UpdateBattlefield 3™Battlelog Web PluginsBioShock InfiniteBonjourBrütal LegendBulletstormCPUID CPU-Z 1.56CPUID HWMonitor 1.17Creative Audio Control PanelCreative Software AutoUpdateCreative Sound Blaster Properties x64 EditionCreative System InformationDead Space™ 2Diablo IIIDiskAid 5.31Dolby Digital Live PackDOOM 3: BFG EditionDTS Connect PackDual-Core OptimizerESET Online Scanner v3ESN SonarEVGA Precision X 4.1.0EVGA SLI Enhancement PatchFuturemark SystemInfoGears of War for WindowsGoogle ChromeGoogle Update HelperHalf-LifeHD Tune Pro 4.60Intel® Rapid Storage TechnologyIntel® Solid-State Drive ToolboxiTunesJava 7 Update 25Java Auto UpdaterLogitech GamePanel Software 3.06.109Malwarebytes Anti-Malware version 1.75.0.1300Max Payne 3Microsoft .NET Framework 4 Client ProfileMicrosoft .NET Framework 4 ExtendedMicrosoft Games for Windows - LIVE RedistributableMicrosoft Games for Windows MarketplaceMicrosoft SilverlightMicrosoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Mozilla Firefox 21.0 (x86 en-US)Mozilla Maintenance ServiceNexus Mod ManagerNVIDIA Control Panel 320.18NVIDIA Graphics Driver 320.18NVIDIA HD Audio Driver 1.3.24.2NVIDIA Install ApplicationNVIDIA PhysXNVIDIA PhysX System Software 9.12.1031OpenALOriginPunkBuster ServicesQuakeQuake IIQuake Live Mozilla PluginQuickTimeRainmeterRockstar Games Social ClubSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2446708)Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2656351)Security Update for Microsoft .NET Framework 4 Extended (KB2736428)Security Update for Microsoft .NET Framework 4 Extended (KB2742595)Serious Sam HD: The First EncounterSound Blaster X-FiSource SDK Base 2007StarCraft IISteamSystem Requirements LabThe Elder Scrolls V: SkyrimTomb RaiderUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Client Profile (KB2600217)Update for Microsoft .NET Framework 4 Client Profile (KB2836939)Update for Microsoft .NET Framework 4 Extended (KB2468871)Update for Microsoft .NET Framework 4 Extended (KB2533523)Update for Microsoft .NET Framework 4 Extended (KB2600217)Update for Microsoft .NET Framework 4 Extended (KB2836939)Ventrilo Client for Windows x64Windows Live ID Sign-in AssistantWorld of WarcraftZandronum.==== Event Viewer Messages From Past Week ========.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 9 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 8 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 7 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 6 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 5 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 4 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 3 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 2 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 11 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 10 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.6/30/2013 2:33:59 AM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware..==== End Of File =========================== Thanks for any help in advance!
  10. I'll make sure to keep that in mind. Well thank you very much for all your help!
  11. So in your professional opinion do you think that my computer is malware free and safe to put personal information on it? I scanned it again and nothing showed up, so I assume that all the threats are gone.
  12. Ok I did all that and updated java. Well my computer seems to be running great now! I even did another scan with malwarebytes and nothing was found. The only thing that is running a little bit slow on my computer now is Firefox. But other than that everything else is working fine.
  13. Here is the log from the ESET scan: ESETSmartInstaller@High as CAB hook log: OnlineScanner64.ocx - registred OK OnlineScanner.ocx - registred OK # version=7 # iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330) # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial= # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2012-08-21 10:22:13 # local_time=2012-08-21 06:22:13 (-0500, Eastern Daylight Time) # country="United States" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776574 100 94 1263426 97129864 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # scanned=130962 # found=41 # cleaned=41 # scan_time=1319 C:\Games\World of Warcraft\ksuser.dll a variant of Win32/PSW.WOW.NUT trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\Qoobox\Quarantine\C\Users\Alex\New_Flash.exe.vir MSIL/TrojanDropper.Agent.GT trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.NH trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\mbr0000\tdlfs0000\tsk0014.dta Win32/Olmarik.AYI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\file0000\tsk0000.dta Win64/Patched.B.Gen trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\zafs0000\tsk0000.dta Win32/Sirefef.EZ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\zafs0000\tsk0001.dta Win64/Sirefef.AD trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\zafs0000\tsk0006.dta Win64/Agent.BA trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\zafs0000\tsk0007.dta Win64/Conedex.B trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\zafs0000\tsk0008.dta Win64/Sirefef.AP trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_12.19.20\zasubsys0000\zafs0000\tsk0009.dta a variant of Win32/Sirefef.FD trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.NH trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\21.08.2012_17.27.48\tdlfs0000\tsk0014.dta Win32/Olmarik.AYI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\53936e8b-10a9014b Java/Exploit.CVE-2011-3544.F trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7b2707d0-32b59570 a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\456472d2-367ed753 a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\6b527313-326460d3 a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\3de3f142-24efd466 multiple threats (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\ffcdc2-45020b4d multiple threats (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\d189d59-544bdb2e a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\8f389dd-408a16db a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5d149be1-354c0af5 multiple threats (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\1ae524e4-1ce740ef a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\2d5a4e9-4e8c2e9a a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\4c2baf2e-5fe3cd65 a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\Alex\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\7cea6c39-60e13f35 a variant of Java/TrojanDownloader.Agent.NDJ trojan (deleted - quarantined) 00000000000000000000000000000000 C C:\Windows\Installer\859a.msi a variant of Win32/PSWTool.IEPasswordsRevealer.A application (deleted - quarantined) 00000000000000000000000000000000 C
  14. Ok here is the ComboFix log: ComboFix 12-08-21.02 - Alex 08/21/2012 17:37:12.1.8 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8180.6635 [GMT -4:00] Running from: c:\users\Alex\Desktop\ComboFix.exe SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Created a new restore point . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Alex\New_Flash.exe c:\windows\svchost.exe . . ((((((((((((((((((((((((( Files Created from 2012-07-21 to 2012-08-21 ))))))))))))))))))))))))))))))) . . 2012-08-21 21:39 . 2012-08-21 21:39 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-08-21 16:21 . 2012-08-21 21:29 -------- d-----w- C:\TDSSKiller_Quarantine 2012-08-07 19:40 . 2010-05-10 08:45 103736 ----a-w- c:\windows\SysWow64\BRRBTOOL.EXE 2012-08-07 19:40 . 2010-04-02 05:33 25299 ----a-w- c:\windows\SysWow64\BRLM03A.DLL 2012-08-07 19:39 . 2012-08-07 19:39 180356 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll 2012-08-07 19:39 . 2004-04-19 03:42 733184 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iKernel.dll 2012-08-07 19:39 . 2004-04-19 03:40 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll 2012-08-07 19:39 . 2004-04-19 03:39 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll 2012-08-07 19:39 . 2004-04-19 03:39 172032 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll 2012-08-07 19:39 . 2012-08-07 19:39 303236 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll 2012-08-05 19:44 . 2012-08-05 19:44 -------- d-----w- c:\programdata\McAfee 2012-07-30 21:52 . 2012-07-30 21:52 103904 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll 2012-07-30 21:52 . 2012-07-30 21:52 103904 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll 2012-07-27 15:13 . 2012-07-27 15:13 -------- d-sh--w- c:\windows\SysWow64\%APPDATA% 2012-07-27 14:01 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F7273005-0A9B-43B6-B4B4-CF41C8DA7DF5}\mpengine.dll . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-08-21 16:22 . 2009-07-13 23:19 328704 ----a-w- c:\windows\system32\services.exe 2012-07-27 17:16 . 2012-04-25 14:40 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-07-27 17:16 . 2011-12-13 18:48 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-12 15:59 . 2010-12-23 02:20 59701280 ----a-w- c:\windows\system32\MRT.exe 2012-06-12 03:08 . 2012-07-12 16:00 3148800 ----a-w- c:\windows\system32\win32k.sys 2012-06-09 05:43 . 2012-07-11 14:44 14172672 ----a-w- c:\windows\system32\shell32.dll 2012-06-06 06:06 . 2012-07-11 14:44 2004480 ----a-w- c:\windows\system32\msxml6.dll 2012-06-06 06:06 . 2012-07-11 14:44 1881600 ----a-w- c:\windows\system32\msxml3.dll 2012-06-06 06:02 . 2012-07-11 14:42 1133568 ----a-w- c:\windows\system32\cdosys.dll 2012-06-06 05:05 . 2012-07-11 14:44 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll 2012-06-06 05:05 . 2012-07-11 14:44 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll 2012-06-06 05:03 . 2012-07-11 14:42 805376 ----a-w- c:\windows\SysWow64\cdosys.dll 2012-06-02 22:19 . 2012-06-22 14:29 38424 ----a-w- c:\windows\system32\wups.dll 2012-06-02 22:19 . 2012-06-22 14:29 2428952 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-02 22:19 . 2012-06-22 14:29 44056 ----a-w- c:\windows\system32\wups2.dll 2012-06-02 22:19 . 2012-06-22 14:29 57880 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-02 22:19 . 2012-06-22 14:29 701976 ----a-w- c:\windows\system32\wuapi.dll 2012-06-02 22:15 . 2012-06-22 14:29 2622464 ----a-w- c:\windows\system32\wucltux.dll 2012-06-02 22:15 . 2012-06-22 14:29 99840 ----a-w- c:\windows\system32\wudriver.dll 2012-06-02 19:19 . 2012-06-22 14:29 186752 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-02 19:15 . 2012-06-22 14:29 36864 ----a-w- c:\windows\system32\wuapp.exe 2012-06-02 12:49 . 2012-07-12 15:58 17807360 ----a-w- c:\windows\system32\mshtml.dll 2012-06-02 12:17 . 2012-07-12 15:58 10924032 ----a-w- c:\windows\system32\ieframe.dll 2012-06-02 12:12 . 2012-07-12 15:58 2311680 ----a-w- c:\windows\system32\jscript9.dll 2012-06-02 12:05 . 2012-07-12 15:58 1346048 ----a-w- c:\windows\system32\urlmon.dll 2012-06-02 12:05 . 2012-07-12 15:58 1392128 ----a-w- c:\windows\system32\wininet.dll 2012-06-02 12:04 . 2012-07-12 15:58 1494528 ----a-w- c:\windows\system32\inetcpl.cpl 2012-06-02 12:04 . 2012-07-12 15:58 237056 ----a-w- c:\windows\system32\url.dll 2012-06-02 12:03 . 2012-07-12 15:58 85504 ----a-w- c:\windows\system32\jsproxy.dll 2012-06-02 12:01 . 2012-07-12 15:58 173056 ----a-w- c:\windows\system32\ieUnatt.exe 2012-06-02 12:00 . 2012-07-12 15:58 818688 ----a-w- c:\windows\system32\jscript.dll 2012-06-02 11:59 . 2012-07-12 15:58 2144768 ----a-w- c:\windows\system32\iertutil.dll 2012-06-02 11:57 . 2012-07-12 15:58 96768 ----a-w- c:\windows\system32\mshtmled.dll 2012-06-02 11:57 . 2012-07-12 15:59 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-06-02 11:54 . 2012-07-12 15:58 248320 ----a-w- c:\windows\system32\ieui.dll 2012-06-02 08:33 . 2012-07-12 15:58 1800192 ----a-w- c:\windows\SysWow64\jscript9.dll 2012-06-02 08:25 . 2012-07-12 15:58 1129472 ----a-w- c:\windows\SysWow64\wininet.dll 2012-06-02 08:25 . 2012-07-12 15:58 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2012-06-02 08:20 . 2012-07-12 15:58 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2012-06-02 08:16 . 2012-07-12 15:59 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb 2012-06-02 05:50 . 2012-07-11 14:44 458704 ----a-w- c:\windows\system32\drivers\cng.sys 2012-06-02 05:48 . 2012-07-11 14:44 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-06-02 05:48 . 2012-07-11 14:44 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2012-06-02 05:45 . 2012-07-11 14:44 340992 ----a-w- c:\windows\system32\schannel.dll 2012-06-02 05:44 . 2012-07-11 14:44 307200 ----a-w- c:\windows\system32\ncrypt.dll 2012-06-02 04:40 . 2012-07-11 14:44 22016 ----a-w- c:\windows\SysWow64\secur32.dll 2012-06-02 04:40 . 2012-07-11 14:44 225280 ----a-w- c:\windows\SysWow64\schannel.dll 2012-06-02 04:39 . 2012-07-11 14:44 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll 2012-06-02 04:34 . 2012-07-11 14:44 96768 ----a-w- c:\windows\SysWow64\sspicli.dll 2012-05-31 16:25 . 2010-12-23 01:22 279656 ------w- c:\windows\system32\MpSigStub.exe . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "FATrayAlert"="c:\program files\Alienware\Command Center\AlienSense\FATrayMon.exe" [2010-04-04 95560] "OSD_LAUNCH"="c:\program files (x86)\OSD\Launch_OSD.exe" [2009-11-10 32768] "IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696] "UCam_Menu"="c:\program files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-02-18 218408] "WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2010-12-09 74752] "RemoteControl10"="c:\program files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" [2010-02-03 87336] "BDRegion"="c:\program files (x86)\Cyberlink\Shared files\brs.exe" [2010-06-29 75048] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-31 59280] "BrStsWnd"="c:\program files (x86)\Brownie\BrstsW64.exe" [2009-08-19 3695928] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-19 421888] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-06-07 421776] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-8-17 1080096] Stardock MyColors.lnk - c:\program files (x86)\Stardock\MyColors\SDDelayedLaunch.exe [2009-12-15 11520] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\FastAccess] 2010-04-04 18:43 144712 ----a-w- c:\program files\Alienware\Command Center\AlienSense\FALogNot.dll . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli FAPassSync . R2 AlienFusionService;Alienware Fusion Service;c:\program files\Alienware\Command Center\AlienFusionService.exe [2010-05-21 14648] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336] R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408] R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-27 257224] R3 bulkadi;Razer Megalodon DFU;c:\windows\system32\DRIVERS\bulkrazer_x64.sys [2011-02-09 25088] R3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;c:\windows\system32\drivers\BVRPMPR5a64.SYS [2009-08-25 35840] R3 FACAP;facap, FastAccess Video Capture;c:\windows\system32\DRIVERS\facap.sys [2008-09-25 238848] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2010-12-14 128928] R3 IAMTVE;Driver for Intel® Active Management Technology - KCS;c:\windows\system32\DRIVERS\IAMTVE.sys [2007-04-12 43416] R3 IAMTXPE;Driver for Intel® Active Management Technology - KCS;c:\windows\system32\DRIVERS\IAMTXPE.sys [2007-04-12 51096] R3 ioatdma1;ioatdma1;c:\windows\System32\Drivers\qd162x64.sys [2009-07-14 40144] R3 ioatdma2;Intel® QuickData Technology device ver.2;c:\windows\System32\Drivers\qd262x64.sys [2009-07-14 42192] R3 iSSetup;iSSetup;c:\windows\system32\DRIVERS\iSSetup.sys [2009-10-13 178400] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 24904] R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-16 113120] R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2009-09-21 315664] R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-04-25 52736] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-23 1255736] R3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040] S0 ioatdma;Intel® QuickData Technology device;c:\windows\System32\Drivers\ioatdma.sys [2009-07-14 46792] S0 stdflt;Disk Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdflt.sys [2009-11-27 19504] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/12/28 21:05];c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-06-29 03:50 146928] S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe [2009-03-03 89600] S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [2010-12-27 21992] S2 FAService;FAService;c:\program files\Alienware\Command Center\AlienSense\FAService.exe [2010-04-04 2409800] S2 HappyOSD;HappyOSD;c:\program files (x86)\OSD\OSD_Service.exe [2009-12-30 16384] S2 InstallFilterService;FF Install Filter Service;c:\program files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe [2009-11-30 59904] S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimspe64.sys [2009-07-02 60416] S2 risdpcie;risdpcie;c:\windows\system32\DRIVERS\risdpe64.sys [2009-07-01 80896] S2 rixdpcie;rixdpcie;c:\windows\system32\DRIVERS\rixdpe64.sys [2009-07-05 55808] S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Acceler.sys [2009-12-02 25136] S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2010-04-14 54824] S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104] S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-12-10 294064] S3 itecir;ITECIR Infrared Receiver;c:\windows\system32\DRIVERS\itecir.sys [2010-07-13 69736] S3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [2009-09-15 6952960] . . --- Other Services/Drivers In Memory --- . *NewlyCreated* - WS2IFSL . Contents of the 'Scheduled Tasks' folder . 2012-08-21 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-25 17:16] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2009-12-03 487424] "AlienFX Controller"="c:\program files\Alienware\Command Center\AlienwareAlienFXController.exe" [2010-05-21 63304] "IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2009-09-21 1926928] "FreeFallProtection"="c:\program files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe" [2009-07-22 2463232] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.alienware.com/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm TCP: DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 FF - ProfilePath - c:\users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\efx3qdcb.default\ . - - - - ORPHANS REMOVED - - - - . Toolbar-Locked - (no file) Wow6432Node-HKLM-Run-FAStartup - (no file) SafeBoot-33970154.sys SafeBoot-40029566.sys Toolbar-Locked - (no file) HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe HKLM-Run-(Default) - (no file) . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}] "ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl" . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions] @Denied: (2) (LocalSystem) "{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc, 1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7 "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07, 72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57 "{DA5BCE70-D057-4D63-943D-5F3927EC59F1}"=hex:51,66,7a,6c,4c,1d,38,12,1e,cd,48, de,65,9e,0d,08,eb,2b,1c,79,22,b2,1d,e5 "{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db, df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd "{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16, fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17 "{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9, b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration] @Denied: (2) (LocalSystem) "Timestamp"=hex:f7,5f,67,48,9f,69,cd,01 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Other Running Processes ------------------------ . c:\program files\Alienware\Command Center\AlienSense\FATrayAlert.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe c:\program files (x86)\CyberLink\Shared Files\RichVideo.exe c:\program files (x86)\OSD\OSD.exe c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe c:\program files\Alienware\Command Center\AlienFXHook32Mngr.exe . ************************************************************************** . Completion time: 2012-08-21 17:42:46 - machine was rebooted ComboFix-quarantined-files.txt 2012-08-21 21:42 . Pre-Run: 410,282,434,560 bytes free Post-Run: 410,731,442,176 bytes free . - - End Of File - - B99DB837B1E3C52DA4C4966232B3EC02
  15. Here is the malwarebytes report: Malwarebytes Anti-Malware (PRO) 1.62.0.1300 www.malwarebytes.org Database version: v2012.08.21.08 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Alex :: ALEXM17X [administrator] Protection: Disabled 8/21/2012 12:26:52 PM mbam-log-2012-08-21 (12-26-52).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 199034 Time elapsed: 1 minute(s), 1 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) Heres the DDS report: . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31 Run by Alex at 17:03:08 on 2012-08-21 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8180.5945 [GMT -4:00] . SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\STacSV64.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe C:\Program Files (x86)\Stardock\MyColors\WBVista.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Intel\WiFi\bin\EvtEng.exe C:\Program Files (x86)\OSD\OSD_Service.exe C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\UI0Detect.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k bthsvcs C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\IDT\WDM\sttray64.exe C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe C:\Program Files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Winamp\winampa.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\Shared Files\brs.exe C:\Program Files (x86)\OSD\OSD.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\iPod\bin\iPodService.exe c:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe C:\Program Files\Alienware\Command Center\AlienFXHook32Mngr.exe C:\Windows\system32\conhost.exe C:\Program Files\Alienware\Command Center\AlienFXHook64Mngr.exe C:\Windows\system32\conhost.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Windows\notepad.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\DllHost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\VETUSER\vet.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.alienware.com/ uDefault_Page_URL = hxxp://www.alienware.com/ uInternet Settings,ProxyOverride = *.local mWinlogon: Userinit=userinit.exe, BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO: SSOIEAddonBHO Class: {da5bce70-d057-4d63-943d-5f3927ec59f1} - C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll mRun: [FATrayAlert] C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe mRun: [FAStartup] mRun: [OSD_LAUNCH] c:\Program Files (x86)\OSD\Launch_OSD.exe mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun: [uCam_Menu] "c:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" mRun: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [brStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe Autorun mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\MyColors\SDDelayedLaunch.exe mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL LSP: mswsock.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab TCP: DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 TCP: Interfaces\{2809EF04-5AC3-45E3-93F2-E4518191A887} : DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4} : DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4}\34963736F61363337303 : DhcpNameServer = 184.16.4.22 184.16.33.54 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4}\65562796A7F6E602D496649623230303029334537302355636572756 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4}\E4544574541425 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{54145D2B-DF4A-4386-B153-681EC98CCC0E} : DhcpNameServer = 66.174.71.33 66.174.95.44 Notify: FastAccess - C:\Program Files\Alienware\Command Center\AlienSense\FALogNot.dll LSA: Notification Packages = scecli FAPassSync BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO-X64: AcroIEHelperStub - No File BHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO-X64: SSOIEAddonBHO Class: {DA5BCE70-D057-4D63-943D-5F3927EC59F1} - C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll BHO-X64: SSOIEAddonBHO - No File BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll mRun-x64: [FATrayAlert] C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe mRun-x64: [FAStartup] mRun-x64: [OSD_LAUNCH] c:\Program Files (x86)\OSD\Launch_OSD.exe mRun-x64: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun-x64: [uCam_Menu] "c:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" mRun-x64: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun-x64: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun-x64: [brStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe Autorun mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\efx3qdcb.default\ FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll . ============= SERVICES / DRIVERS =============== . R0 ioatdma;Intel® QuickData Technology device;C:\Windows\system32\Drivers\ioatdma.sys --> C:\Windows\system32\Drivers\ioatdma.sys [?] R0 stdflt;Disk Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdflt.sys --> C:\Windows\system32\DRIVERS\stdflt.sys [?] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/12/28 21:05:04];C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-6-28 146928] R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe [2010-10-27 89600] R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?] R2 FAService;FAService;C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe [2010-4-4 2409800] R2 HappyOSD;HappyOSD;C:\Program Files (x86)\OSD\OSD_Service.exe [2009-12-30 16384] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-12-16 13336] R2 InstallFilterService;FF Install Filter Service;C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe [2010-12-16 59904] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-7-19 654408] R2 rimspci;rimspci;C:\Windows\system32\DRIVERS\rimspe64.sys --> C:\Windows\system32\DRIVERS\rimspe64.sys [?] R2 risdpcie;risdpcie;C:\Windows\system32\DRIVERS\risdpe64.sys --> C:\Windows\system32\DRIVERS\risdpe64.sys [?] R2 rixdpcie;rixdpcie;C:\Windows\system32\DRIVERS\rixdpe64.sys --> C:\Windows\system32\DRIVERS\rixdpe64.sys [?] R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Acceler.sys --> C:\Windows\system32\DRIVERS\Acceler.sys [?] R3 btusbflt;Bluetooth USB Filter;C:\Windows\system32\drivers\btusbflt.sys --> C:\Windows\system32\drivers\btusbflt.sys [?] R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys --> C:\Windows\system32\DRIVERS\btwl2cap.sys [?] R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;C:\Windows\system32\DRIVERS\e1k62x64.sys --> C:\Windows\system32\DRIVERS\e1k62x64.sys [?] R3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys --> C:\Windows\system32\DRIVERS\itecir.sys [?] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETw5s64.sys --> C:\Windows\system32\DRIVERS\NETw5s64.sys [?] S2 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2010-5-21 14648] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-25 257224] S3 bulkadi;Razer Megalodon DFU;C:\Windows\system32\DRIVERS\bulkrazer_x64.sys --> C:\Windows\system32\DRIVERS\bulkrazer_x64.sys [?] S3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;\??\C:\Windows\system32\drivers\BVRPMPR5a64.SYS --> C:\Windows\system32\drivers\BVRPMPR5a64.SYS [?] S3 FACAP;facap, FastAccess Video Capture;C:\Windows\system32\DRIVERS\facap.sys --> C:\Windows\system32\DRIVERS\facap.sys [?] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-6-17 128928] S3 IAMTVE;Driver for Intel® Active Management Technology - KCS;C:\Windows\system32\DRIVERS\IAMTVE.sys --> C:\Windows\system32\DRIVERS\IAMTVE.sys [?] S3 IAMTXPE;Driver for Intel® Active Management Technology - KCS;C:\Windows\system32\DRIVERS\IAMTXPE.sys --> C:\Windows\system32\DRIVERS\IAMTXPE.sys [?] S3 ioatdma1;ioatdma1;C:\Windows\system32\Drivers\qd162x64.sys --> C:\Windows\system32\Drivers\qd162x64.sys [?] S3 ioatdma2;Intel® QuickData Technology device ver.2;C:\Windows\system32\Drivers\qd262x64.sys --> C:\Windows\system32\Drivers\qd262x64.sys [?] S3 iSSetup;iSSetup;C:\Windows\system32\DRIVERS\iSSetup.sys --> C:\Windows\system32\DRIVERS\iSSetup.sys [?] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-6-15 113120] S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2009-9-21 315664] S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\system32\DRIVERS\netaapl64.sys --> C:\Windows\system32\DRIVERS\netaapl64.sys [?] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?] S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?] S3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?] . =============== Created Last 30 ================ . 2012-08-21 16:21:17 -------- d-----w- C:\TDSSKiller_Quarantine 2012-08-20 11:23:36 20480 ----a-w- C:\Windows\svchost.exe 2012-08-07 19:40:16 25299 ----a-w- C:\Windows\SysWow64\BRLM03A.DLL 2012-08-07 19:40:16 103736 ----a-w- C:\Windows\SysWow64\BRRBTOOL.EXE 2012-08-07 19:39:57 733184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iKernel.dll 2012-08-07 19:39:57 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll 2012-08-07 19:39:57 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll 2012-08-07 19:39:57 180356 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll 2012-08-07 19:39:57 172032 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll 2012-08-07 19:39:56 303236 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll 2012-07-30 21:52:13 103904 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll 2012-07-30 21:52:13 103904 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll 2012-07-27 15:13:20 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA% 2012-07-27 14:01:52 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F7273005-0A9B-43B6-B4B4-CF41C8DA7DF5}\mpengine.dll . ==================== Find3M ==================== . 2012-08-21 16:22:55 328704 ----a-w- C:\Windows\System32\services.exe 2012-07-27 17:16:16 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-27 17:16:16 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-06-12 03:08:36 3148800 ----a-w- C:\Windows\System32\win32k.sys 2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll 2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll 2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll 2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll 2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll 2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll 2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll 2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll 2012-06-02 19:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll 2012-06-02 19:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe 2012-06-02 12:12:17 2311680 ----a-w- C:\Windows\System32\jscript9.dll 2012-06-02 12:05:28 1392128 ----a-w- C:\Windows\System32\wininet.dll 2012-06-02 12:04:50 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl 2012-06-02 12:01:40 173056 ----a-w- C:\Windows\System32\ieUnatt.exe 2012-06-02 11:57:08 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2012-06-02 08:33:25 1800192 ----a-w- C:\Windows\SysWow64\jscript9.dll 2012-06-02 08:25:08 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll 2012-06-02 08:25:03 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2012-06-02 08:20:33 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2012-06-02 08:16:52 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys 2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll 2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll 2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll 2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll 2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2012-05-31 16:25:12 279656 ------w- C:\Windows\System32\MpSigStub.exe . ============= FINISH: 17:03:23.33 =============== And the Attach report: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume2 Install Date: 12/22/2010 8:08:09 PM System Uptime: 8/21/2012 12:22:52 PM (5 hours ago) . Motherboard: Alienware | | Processor: Intel® Core i7 CPU X 940 @ 2.13GHz | CPU 1 | 2129/133mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 462 GiB total, 376.877 GiB free. D: is CDROM () V: is NetworkDisk (NTFS) - 931 GiB total, 876.118 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Description: facap, FastAccess Video Capture Device ID: ROOT\IMAGE\0000 Manufacturer: Sensible Vision Name: facap, FastAccess Video Capture PNP Device ID: ROOT\IMAGE\0000 Service: FACAP . ==== System Restore Points =================== . RP220: 7/27/2012 10:01:44 AM - Windows Update RP221: 8/9/2012 10:41:43 AM - Scheduled Checkpoint RP222: 8/17/2012 8:10:24 AM - Scheduled Checkpoint . ==== Installed Programs ====================== . Accelerometer Adobe AIR Adobe Flash Player 11 ActiveX Adobe Reader 9.5.2 Advertising Center Apple Application Support Apple Software Update Brother HL-3070CW Brother MFC-8890DW Cisco Connect Command Center CyberLink PowerDVD 10 CyberLink YouCam Dell InHome Service Agreement EVGA Precision 2.0.2 Futuremark SystemInfo HD Tune Pro 4.60 ImagXpress Intel® Control Center Intel® Rapid Storage Technology Java Auto Updater Java 6 Update 31 LaCie Network Assistant 1.4.0.30 LAN Speed Test Malwarebytes Anti-Malware version 1.61.0.1400 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Mozilla Firefox 14.0.1 (x86 en-US) Mozilla Maintenance Service MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 9 Essentials Nero BurnRights Nero BurnRights Help Nero ControlCenter Nero CoverDesigner Nero CoverDesigner Help Nero Disc Copy Gadget Nero Disc Copy Gadget Help Nero DiscSpeed Nero DiscSpeed Help Nero DriveSpeed Nero DriveSpeed Help Nero Express Help Nero InfoTool Nero InfoTool Help Nero Installer Nero Online Upgrade Nero Rescue Agent Nero RescueAgent Help Nero StartSmart Nero StartSmart Help NeroExpress neroxml NVIDIA PhysX OSD Setup Pandora QuickTime Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Stardock MyColors System Requirements Lab Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Vet 12 Global Install Vet 12 Workstation Installation Winamp Winamp Detector Plug-in . ==== Event Viewer Messages From Past Week ======== . 8/21/2012 4:40:28 PM, Error: Schannel [36888] - The following fatal alert was generated: 40. The internal error state is 107. 8/21/2012 4:40:28 PM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed. 8/21/2012 12:24:17 PM, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891 8/21/2012 12:24:17 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891 8/21/2012 12:23:36 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Alienware Fusion Service service to connect. 8/21/2012 12:23:36 PM, Error: Service Control Manager [7000] - The Alienware Fusion Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 8/20/2012 7:57:17 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1. 8/20/2012 5:32:21 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000002c38, 0x0000000000000002, 0x0000000000000001, 0xfffff80002ceb265). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-11856-01. 8/19/2012 3:46:39 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool. 8/14/2012 11:11:26 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR21. . ==== End Of File ===========================
  16. 12:20:20.0826 5024 [ 878AD98DC9ECD14CA733DFCCA3069CBC ] C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll 12:20:20.0826 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll - ok 12:20:20.0828 5024 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll 12:20:20.0828 5024 C:\Windows\System32\DeviceCenter.dll - ok 12:20:20.0831 5024 [ 22EC0852DBF032A93D8DA697065FA189 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe 12:20:20.0831 5024 C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe - ok 12:20:20.0833 5024 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll 12:20:20.0833 5024 C:\Windows\SysWOW64\sxs.dll - ok 12:20:20.0835 5024 [ 74437E9F1BAA15C95A8847E2C15A4B05 ] C:\Program Files (x86)\CyberLink\Shared Files\brs.exe 12:20:20.0835 5024 C:\Program Files (x86)\CyberLink\Shared Files\brs.exe - ok 12:20:20.0838 5024 [ 3DD1B36AB4D18172D77AB7A91AFFD1D3 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_8f16b0d88731ea9c\mfc80u.dll 12:20:20.0838 5024 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_8f16b0d88731ea9c\mfc80u.dll - ok 12:20:20.0841 5024 [ 1B82BCF0B8F9228B39F75B0DFA079A21 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe 12:20:20.0841 5024 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok 12:20:20.0843 5024 [ C2335D714EFAFFFB4C7A3C164F2024B1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll 12:20:20.0843 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll - ok 12:20:20.0846 5024 [ 64CC5502C69FC6D67735C10CB579C548 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll 12:20:20.0846 5024 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok 12:20:20.0848 5024 [ 11BE2933DA0600DE6A644C3A492675F4 ] C:\Windows\System32\irprops.cpl 12:20:20.0848 5024 C:\Windows\System32\irprops.cpl - ok 12:20:20.0851 5024 [ 809A1EC7868924B5E92421F018587AC9 ] C:\Program Files (x86)\CyberLink\PowerDVD10\CLRCEngine3.dll 12:20:20.0851 5024 C:\Program Files (x86)\CyberLink\PowerDVD10\CLRCEngine3.dll - ok 12:20:20.0853 5024 [ 60721AA3316A200A8DE23F1C502382FD ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll 12:20:20.0853 5024 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok 12:20:20.0856 5024 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll 12:20:20.0856 5024 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok 12:20:20.0858 5024 [ B45F2C4076ACFD9714037B7C69D90167 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe 12:20:20.0858 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok 12:20:20.0861 5024 [ 1020C0C4BAC624DAF56712EA6D5865CE ] C:\Program Files (x86)\CyberLink\PowerDVD10\msvcr71.dll 12:20:20.0861 5024 C:\Program Files (x86)\CyberLink\PowerDVD10\msvcr71.dll - ok 12:20:20.0863 5024 [ 82A9051696F607730FBD7529827423E9 ] C:\Program Files (x86)\OSD\OSD.exe 12:20:20.0863 5024 C:\Program Files (x86)\OSD\OSD.exe - ok 12:20:20.0866 5024 [ AA8BCDE01D1434B321F2593637376D55 ] C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll 12:20:20.0866 5024 C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll - ok 12:20:20.0868 5024 [ 3573A4FD6682D3DB7FAA089159AFFD1C ] C:\Program Files (x86)\Brownie\BrStsW64.exe 12:20:20.0868 5024 C:\Program Files (x86)\Brownie\BrStsW64.exe - ok 12:20:20.0871 5024 [ E39BA1F4A17F31B935CB31D2358198B0 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll 12:20:20.0871 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok 12:20:20.0873 5024 [ 0600CB2613BEA0C6C0987B58D56D77B9 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe 12:20:20.0873 5024 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok 12:20:20.0876 5024 [ 68F3DCABF21529871535EEFB16B136A2 ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll 12:20:20.0876 5024 C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll - ok 12:20:20.0878 5024 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 12:20:20.0878 5024 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok 12:20:20.0881 5024 [ 2E6B725AC4B885FB25A6BDC3587AC084 ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll 12:20:20.0881 5024 C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll - ok 12:20:20.0884 5024 [ E0CD5872CA4552056C4C705361A6BB5A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll 12:20:20.0884 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok 12:20:20.0886 5024 [ 98A078F838A70F84E1BD490D7C7675F4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 12:20:20.0886 5024 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok 12:20:20.0889 5024 [ 0CE4611DF2E9A6DB302606BBE9465DF5 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll 12:20:20.0889 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll - ok 12:20:20.0891 5024 [ D16903B9431F799877AD6DF13D16BDA0 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll 12:20:20.0891 5024 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll - ok 12:20:20.0894 5024 [ 916A2C4EB028604783FD5EA169236C1D ] C:\Program Files (x86)\QuickTime\QTTask.exe 12:20:20.0894 5024 C:\Program Files (x86)\QuickTime\QTTask.exe - ok 12:20:20.0896 5024 [ 084078DDADB3296E2C36F84191926A18 ] C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL 12:20:20.0896 5024 C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL - ok 12:20:20.0898 5024 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll 12:20:20.0898 5024 C:\Windows\SysWOW64\msi.dll - ok 12:20:20.0900 5024 [ 34086F1DBB4065047EA3671CB70505CC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe 12:20:20.0901 5024 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok 12:20:20.0903 5024 [ D732760C00A1B5BCFA4705E10F1F3F59 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll 12:20:20.0903 5024 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll - ok 12:20:20.0905 5024 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll 12:20:20.0905 5024 C:\Windows\System32\seclogon.dll - ok 12:20:20.0908 5024 [ 7C1C9323593D9E8035E453A05FAE7005 ] C:\Program Files\Intel\WiFi\bin\PanApi.dll 12:20:20.0908 5024 C:\Program Files\Intel\WiFi\bin\PanApi.dll - ok 12:20:20.0910 5024 [ B1CA4AA760FF0DDFA1C38E95D19CFEFB ] C:\Program Files (x86)\iTunes\iTunesHelper.dll 12:20:20.0910 5024 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok 12:20:20.0912 5024 [ 0654195051D1024C005E7BE135A6FEE7 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll 12:20:20.0912 5024 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok 12:20:20.0915 5024 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll 12:20:20.0915 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok 12:20:20.0918 5024 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll 12:20:20.0918 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok 12:20:20.0921 5024 [ E7FE89F69C3CC65CAD3D1ADC5D6A9F41 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll 12:20:20.0921 5024 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok 12:20:20.0923 5024 [ 2AEA0A806F7C1848AAAC1473241B0394 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll 12:20:20.0923 5024 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok 12:20:20.0926 5024 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll 12:20:20.0926 5024 C:\Windows\SysWOW64\riched20.dll - ok 12:20:20.0928 5024 [ 0B81540A7A179F2C3A4ABF904E0B5B21 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe 12:20:20.0928 5024 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok 12:20:20.0931 5024 [ 885A88C268C23618AFB937F1ECE56A20 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll 12:20:20.0931 5024 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok 12:20:20.0934 5024 [ 26A68554F95A344B62E5771AF598E0E8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll 12:20:20.0934 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll - ok 12:20:20.0937 5024 [ 50093278F90AB4843A65C6114DCB3773 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe 12:20:20.0937 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe - ok 12:20:20.0939 5024 [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx 12:20:20.0939 5024 C:\Windows\System32\hhctrl.ocx - ok 12:20:20.0942 5024 [ E0068A1C51932CCF8144C59AF2C771D3 ] C:\Windows\assembly\GAC_MSIL\AlienwareAlienFXTools\1.0.92.0__bebb3c8816410241\AlienwareAlienFXTools.dll 12:20:20.0942 5024 C:\Windows\assembly\GAC_MSIL\AlienwareAlienFXTools\1.0.92.0__bebb3c8816410241\AlienwareAlienFXTools.dll - ok 12:20:20.0944 5024 [ BCACA78707C8B44F732CCE05918277D3 ] C:\Program Files (x86)\Brownie\brpjp04a.exe 12:20:20.0944 5024 C:\Program Files (x86)\Brownie\brpjp04a.exe - ok 12:20:20.0947 5024 [ 84AA992918EA3A240DCDB1B5CE171E3C ] C:\Windows\assembly\GAC_MSIL\Alienlabs.CommandCenter.Tools\1.0.92.0__bebb3c8816410241\Alienlabs.CommandCenter.Tools.dll 12:20:20.0947 5024 C:\Windows\assembly\GAC_MSIL\Alienlabs.CommandCenter.Tools\1.0.92.0__bebb3c8816410241\Alienlabs.CommandCenter.Tools.dll - ok 12:20:20.0950 5024 [ 3EBCE609DC5AE828CD256337E384FE15 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtAudioHelper.dll 12:20:20.0950 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtAudioHelper.dll - ok 12:20:20.0952 5024 [ 64F785D95FD0008DE0CCF717FE771783 ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif_ol.dll 12:20:20.0952 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btosif_ol.dll - ok 12:20:20.0955 5024 [ 1A44F02176E276E8DF592B177C8D29D3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\635b3aec298ad5e8c903b2323d79cc5a\IAStorUtil.ni.dll 12:20:20.0955 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\635b3aec298ad5e8c903b2323d79cc5a\IAStorUtil.ni.dll - ok 12:20:20.0958 5024 [ DB5BC0C7F25A33590E37FDE869124B9F ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif_olx.dll 12:20:20.0958 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btosif_olx.dll - ok 12:20:20.0960 5024 [ 3B919CBDDE7AE3376ED296839846C3DD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll 12:20:20.0960 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll - ok 12:20:20.0963 5024 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll 12:20:20.0963 5024 C:\Windows\System32\mapi32.dll - ok 12:20:20.0965 5024 [ 5736554195F5DEC010DCAF563066CD7B ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif_notes.dll 12:20:20.0965 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btosif_notes.dll - ok 12:20:20.0968 5024 [ BD23077CBAD092A5EA5F77ED874F32A2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll 12:20:20.0968 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll - ok 12:20:20.0971 5024 [ CE6196784066D1109A347CA3B0650C8A ] C:\Program Files\WIDCOMM\Bluetooth Software\btdev.dll 12:20:20.0971 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btdev.dll - ok 12:20:20.0973 5024 [ 59BCE9F07985F8A4204F4D6554CFF708 ] C:\Windows\System32\regsvr32.exe 12:20:20.0973 5024 C:\Windows\System32\regsvr32.exe - ok 12:20:20.0975 5024 [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll 12:20:20.0975 5024 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok 12:20:20.0978 5024 [ 9A7D330DE6B03389E39AEEC7B10D9F76 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll 12:20:20.0978 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll - ok 12:20:20.0981 5024 [ FDC4D99490C00AF9AE3080DD3C0D23ED ] C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll 12:20:20.0981 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll - ok 12:20:20.0983 5024 [ 4131E3CC43C48DC4BBDD0C304F88ADBC ] C:\Program Files\WIDCOMM\Bluetooth Software\BtWizard.dll 12:20:20.0983 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtWizard.dll - ok 12:20:20.0986 5024 [ 8A6460B739AA184B0EF5D680A95BC57F ] C:\Program Files\WIDCOMM\Bluetooth Software\BtWdSdk.dll 12:20:20.0986 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtWdSdk.dll - ok 12:20:20.0989 5024 [ CB397EF7B2DD6C3ABAAFA86DBAF47F9A ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif_wincal.dll 12:20:20.0989 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btosif_wincal.dll - ok 12:20:20.0991 5024 [ EBC44887C0ACCD002A1B120969A05C36 ] C:\Windows\assembly\GAC_MSIL\AlienLabsTools\1.0.92.0__bebb3c8816410241\AlienLabsTools.dll 12:20:20.0991 5024 C:\Windows\assembly\GAC_MSIL\AlienLabsTools\1.0.92.0__bebb3c8816410241\AlienLabsTools.dll - ok 12:20:20.0994 5024 [ 68CE18072E9CDFE63DD2E083868C7433 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll 12:20:20.0994 5024 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok 12:20:20.0996 5024 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll 12:20:20.0996 5024 C:\Windows\SysWOW64\shfolder.dll - ok 12:20:20.0999 5024 [ 10307046E19C8EC964C792A798B32BB3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll 12:20:20.0999 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll - ok 12:20:21.0002 5024 [ 2291D1FABC087E43D4122CACE1CA30F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll 12:20:21.0002 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll - ok 12:20:21.0005 5024 [ E4993A704ACA876FC68E3FE2EF858E1E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9b2f17fb61b7197f2a04108f5d1a1cc6\System.Management.ni.dll 12:20:21.0005 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9b2f17fb61b7197f2a04108f5d1a1cc6\System.Management.ni.dll - ok 12:20:21.0007 5024 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll 12:20:21.0007 5024 C:\Windows\SysWOW64\wbemcomn.dll - ok 12:20:21.0009 5024 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll 12:20:21.0009 5024 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok 12:20:21.0012 5024 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll 12:20:21.0012 5024 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok 12:20:21.0015 5024 [ 01D585C95A0E752EFFB11EA899B0E387 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll 12:20:21.0015 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll - ok 12:20:21.0017 5024 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll 12:20:21.0018 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok 12:20:21.0020 5024 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe 12:20:21.0020 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok 12:20:21.0023 5024 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll 12:20:21.0023 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok 12:20:21.0025 5024 [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll 12:20:21.0025 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok 12:20:21.0027 5024 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll 12:20:21.0027 5024 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok 12:20:21.0030 5024 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll 12:20:21.0030 5024 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok 12:20:21.0032 5024 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll 12:20:21.0032 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok 12:20:21.0035 5024 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll 12:20:21.0035 5024 C:\Windows\SysWOW64\wbem\fastprox.dll - ok 12:20:21.0037 5024 [ 777F34146CD4126A2B8D6F2342F57536 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll 12:20:21.0037 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll - ok 12:20:21.0039 5024 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll 12:20:21.0039 5024 C:\Windows\SysWOW64\ntdsapi.dll - ok 12:20:21.0042 5024 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\77909111.sys 12:20:21.0042 5024 C:\Windows\System32\drivers\77909111.sys - ok 12:20:21.0044 5024 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll 12:20:21.0044 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok 12:20:21.0046 5024 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe 12:20:21.0046 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok 12:20:21.0049 5024 [ 97A8968A66F15FD3B2F09C6F56B2170D ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll 12:20:21.0049 5024 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok 12:20:21.0052 5024 [ 02E185944CFA58DAD47D409E5655FB28 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll 12:20:21.0052 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll - ok 12:20:21.0054 5024 [ A490B22BD077D42E385581047801B6B2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll 12:20:21.0054 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll - ok 12:20:21.0057 5024 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll 12:20:21.0057 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok 12:20:21.0059 5024 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll 12:20:21.0059 5024 C:\Windows\SysWOW64\ExplorerFrame.dll - ok 12:20:21.0062 5024 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll 12:20:21.0062 5024 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok 12:20:21.0064 5024 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll 12:20:21.0064 5024 C:\Windows\SysWOW64\duser.dll - ok 12:20:21.0066 5024 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll 12:20:21.0066 5024 C:\Windows\SysWOW64\dui70.dll - ok 12:20:21.0068 5024 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll 12:20:21.0068 5024 C:\Windows\System32\UIAnimation.dll - ok 12:20:21.0071 5024 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll 12:20:21.0071 5024 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok 12:20:21.0073 5024 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll 12:20:21.0073 5024 C:\Windows\System32\wbem\cimwin32.dll - ok 12:20:21.0076 5024 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll 12:20:21.0076 5024 C:\Windows\System32\framedynos.dll - ok 12:20:21.0078 5024 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll 12:20:21.0078 5024 C:\Windows\System32\wmi.dll - ok 12:20:21.0080 5024 [ A5A70AF023570C1D26501B14338C1D6C ] C:\Windows\System32\browcli.dll 12:20:21.0080 5024 C:\Windows\System32\browcli.dll - ok 12:20:21.0082 5024 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll 12:20:21.0082 5024 C:\Windows\System32\schedcli.dll - ok 12:20:21.0084 5024 [ 31DEBCD1F9874576D1B7CDE5CADD24A2 ] C:\Program Files (x86)\OSD\Win7CCD.dll 12:20:21.0084 5024 C:\Program Files (x86)\OSD\Win7CCD.dll - ok 12:20:21.0087 5024 [ D5369247B6C11EAE2C0650D8303E23B4 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll 12:20:21.0087 5024 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok 12:20:21.0089 5024 [ A9AB99EE7D39725EAFEC82732D2B3271 ] C:\Program Files\iPod\bin\iPodService.exe 12:20:21.0089 5024 C:\Program Files\iPod\bin\iPodService.exe - ok 12:20:21.0092 5024 [ BFC43967D25EA76082B9369B619AE5A7 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll 12:20:21.0092 5024 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok 12:20:21.0095 5024 [ 5CB4174FB02E0BD4639B6EBDE31EC8E1 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll 12:20:21.0095 5024 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok 12:20:21.0097 5024 [ 69388C3D3DBD3D92C475B58AE4BF508B ] C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe 12:20:21.0097 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe - ok 12:20:21.0099 5024 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll 12:20:21.0099 5024 C:\Windows\SysWOW64\rasapi32.dll - ok 12:20:21.0102 5024 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll 12:20:21.0102 5024 C:\Windows\SysWOW64\rasman.dll - ok 12:20:21.0104 5024 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll 12:20:21.0104 5024 C:\Windows\SysWOW64\rtutils.dll - ok 12:20:21.0106 5024 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\SysWOW64\authz.dll 12:20:21.0106 5024 C:\Windows\SysWOW64\authz.dll - ok 12:20:21.0109 5024 [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\SysWOW64\PeerDist.dll 12:20:21.0109 5024 C:\Windows\SysWOW64\PeerDist.dll - ok 12:20:21.0111 5024 [ 6820A9E91AFF7CB3A510360D8CCD9BDD ] C:\Windows\SysWOW64\mshtml.dll 12:20:21.0111 5024 C:\Windows\SysWOW64\mshtml.dll - ok 12:20:21.0113 5024 [ C1873BFB877412C49E31C58D79BADB9C ] C:\Windows\assembly\GAC_MSIL\AlienFX.DeviceDiscovery\1.0.92.0__bebb3c8816410241\AlienFX.DeviceDiscovery.dll 12:20:21.0113 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.DeviceDiscovery\1.0.92.0__bebb3c8816410241\AlienFX.DeviceDiscovery.dll - ok 12:20:21.0116 5024 [ 6ED9010EC6A309AFB46F7F7AE1317428 ] C:\Windows\assembly\GAC_MSIL\AlienLabs.MasterIOBoard.Communication.Core\1.0.92.0__bebb3c8816410241\AlienLabs.MasterIOBoard.Communication.Core.dll 12:20:21.0116 5024 C:\Windows\assembly\GAC_MSIL\AlienLabs.MasterIOBoard.Communication.Core\1.0.92.0__bebb3c8816410241\AlienLabs.MasterIOBoard.Communication.Core.dll - ok 12:20:21.0119 5024 [ 37B6F083FD9C4B2BFB8126A6E4F88300 ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication\1.0.92.0__bebb3c8816410241\AlienFX.Communication.dll 12:20:21.0119 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication\1.0.92.0__bebb3c8816410241\AlienFX.Communication.dll - ok 12:20:21.0122 5024 [ A0472AD796C58CA52EF91A2587AD55D9 ] C:\Windows\assembly\GAC_MSIL\AlienLabs.MasterIOBoard.Communication\1.0.92.0__bebb3c8816410241\AlienLabs.MasterIOBoard.Communication.dll 12:20:21.0122 5024 C:\Windows\assembly\GAC_MSIL\AlienLabs.MasterIOBoard.Communication\1.0.92.0__bebb3c8816410241\AlienLabs.MasterIOBoard.Communication.dll - ok 12:20:21.0124 5024 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll 12:20:21.0124 5024 C:\Windows\SysWOW64\mlang.dll - ok 12:20:21.0126 5024 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll 12:20:21.0126 5024 C:\Windows\SysWOW64\msimtf.dll - ok 12:20:21.0128 5024 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll 12:20:21.0128 5024 C:\Windows\SysWOW64\msls31.dll - ok 12:20:21.0130 5024 [ 53CECC958DB8F5E8188B1E80042588DB ] C:\Windows\SysWOW64\jscript9.dll 12:20:21.0130 5024 C:\Windows\SysWOW64\jscript9.dll - ok 12:20:21.0132 5024 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll 12:20:21.0132 5024 C:\Windows\SysWOW64\d2d1.dll - ok 12:20:21.0135 5024 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll 12:20:21.0135 5024 C:\Windows\SysWOW64\DWrite.dll - ok 12:20:21.0137 5024 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll 12:20:21.0137 5024 C:\Windows\System32\FntCache.dll - ok 12:20:21.0139 5024 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll 12:20:21.0139 5024 C:\Windows\SysWOW64\dxgi.dll - ok 12:20:21.0142 5024 [ 5F44B1A92E09E8803B0A10DA6B1D15C9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll 12:20:21.0142 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll - ok 12:20:21.0144 5024 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll 12:20:21.0144 5024 C:\Windows\SysWOW64\d3d10_1.dll - ok 12:20:21.0146 5024 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll 12:20:21.0146 5024 C:\Windows\SysWOW64\d3d10_1core.dll - ok 12:20:21.0148 5024 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll 12:20:21.0148 5024 C:\Windows\SysWOW64\d3d10warp.dll - ok 12:20:21.0151 5024 [ 67DBA8E8A8F3CA7EE1F5E921B9AA597D ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x516\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x516.dll 12:20:21.0151 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x516\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x516.dll - ok 12:20:21.0154 5024 [ D42A459F282EF3FA1207347148BFE298 ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.XPS\1.0.92.0__bebb3c8816410241\AlienFX.Communication.XPS.dll 12:20:21.0154 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.XPS\1.0.92.0__bebb3c8816410241\AlienFX.Communication.XPS.dll - ok 12:20:21.0156 5024 [ FA9344FE4EDF2ABB82363308FFAB038A ] C:\Windows\SysWOW64\nvd3dum.dll 12:20:21.0156 5024 C:\Windows\SysWOW64\nvd3dum.dll - ok 12:20:21.0159 5024 [ 1C031C2AFB27695BCEF7632085FB7D78 ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x515\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x515.dll 12:20:21.0159 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x515\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x515.dll - ok 12:20:21.0161 5024 [ 41259D42197C33941A872ACFA096AA3D ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x513\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x513.dll 12:20:21.0161 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x513\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x513.dll - ok 12:20:21.0164 5024 [ 69C8A85AEEFB7874693C71711BA61CA9 ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x514\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x514.dll 12:20:21.0164 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x514\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x514.dll - ok 12:20:21.0167 5024 [ 187553DAFF920F594FDB1607B00A5A26 ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x511\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x511.dll 12:20:21.0167 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x511\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x511.dll - ok 12:20:21.0170 5024 [ 5AA8E4B06C863464B2269975071EEC6B ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x512\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x512.dll 12:20:21.0170 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.PID0x512\1.0.92.0__bebb3c8816410241\AlienFX.Communication.PID0x512.dll - ok 12:20:21.0172 5024 [ 8D9DDF3758AD7839EDBF49A8568206FB ] C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.Core\1.0.92.0__bebb3c8816410241\AlienFX.Communication.Core.dll 12:20:21.0172 5024 C:\Windows\assembly\GAC_MSIL\AlienFX.Communication.Core\1.0.92.0__bebb3c8816410241\AlienFX.Communication.Core.dll - ok 12:20:21.0175 5024 [ E6E260879D1DCE00A9CA6D4CFBDB5FCC ] C:\Windows\assembly\GAC_MSIL\LightFX\1.0.92.0__bebb3c8816410241\LightFX.dll 12:20:21.0175 5024 C:\Windows\assembly\GAC_MSIL\LightFX\1.0.92.0__bebb3c8816410241\LightFX.dll - ok 12:20:21.0177 5024 [ 9A7CFF75FEA4D877CD6C4CA19777A2EB ] C:\Windows\assembly\GAC_MSIL\AlienwareAlienFXModelResources\1.0.92.0__bebb3c8816410241\AlienwareAlienFXModelResources.dll 12:20:21.0177 5024 C:\Windows\assembly\GAC_MSIL\AlienwareAlienFXModelResources\1.0.92.0__bebb3c8816410241\AlienwareAlienFXModelResources.dll - ok 12:20:21.0180 5024 [ AEFFC5990BA4E5F037108DBAAEE96F13 ] C:\Program Files\Alienware\Command Center\AlienFXHook32Mngr.exe 12:20:21.0180 5024 C:\Program Files\Alienware\Command Center\AlienFXHook32Mngr.exe - ok 12:20:21.0183 5024 [ E7FB068FE918DE0CA412A072EE252329 ] C:\Program Files\Alienware\Command Center\AlienFXHook64Mngr.exe 12:20:21.0183 5024 C:\Program Files\Alienware\Command Center\AlienFXHook64Mngr.exe - ok 12:20:21.0185 5024 [ 411C1C00A8B9E363DD9651B30EF9B6A7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f3814b488d9e083cbbc623e01b389f09\System.Data.ni.dll 12:20:21.0185 5024 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f3814b488d9e083cbbc623e01b389f09\System.Data.ni.dll - ok 12:20:21.0188 5024 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll 12:20:21.0188 5024 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok 12:20:21.0191 5024 [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll 12:20:21.0191 5024 C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok 12:20:21.0193 5024 [ D15EC535DD6B5AB1CBD9F77A60647555 ] C:\Program Files\Alienware\Command Center\AlienFXHook.dll 12:20:21.0193 5024 C:\Program Files\Alienware\Command Center\AlienFXHook.dll - ok 12:20:21.0196 5024 [ 9E1D042269249E98BC8A51742DFE10B7 ] C:\Program Files\Alienware\Command Center\AlienFXHook64.dll 12:20:21.0196 5024 C:\Program Files\Alienware\Command Center\AlienFXHook64.dll - ok 12:20:21.0199 5024 [ 0D7BE936A44E6B70F822D272A5CEBC22 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll 12:20:21.0199 5024 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok 12:20:21.0201 5024 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll 12:20:21.0201 5024 C:\Windows\System32\batmeter.dll - ok 12:20:21.0203 5024 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll 12:20:21.0203 5024 C:\Windows\System32\stobject.dll - ok 12:20:21.0206 5024 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll 12:20:21.0206 5024 C:\Windows\System32\prnfldr.dll - ok 12:20:21.0208 5024 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll 12:20:21.0208 5024 C:\Windows\System32\DXP.dll - ok 12:20:21.0210 5024 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll 12:20:21.0210 5024 C:\Windows\System32\Syncreg.dll - ok 12:20:21.0212 5024 [ EE77A034F10D1E62E12768861711DA41 ] C:\Program Files\Internet Explorer\ieproxy.dll 12:20:21.0212 5024 C:\Program Files\Internet Explorer\ieproxy.dll - ok 12:20:21.0214 5024 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe 12:20:21.0214 5024 C:\Windows\System32\rundll32.exe - ok 12:20:21.0217 5024 [ 3F677172F23FC17283D9BCE4B42E3F65 ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe 12:20:21.0217 5024 C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok 12:20:21.0219 5024 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll 12:20:21.0219 5024 C:\Windows\ehome\ehSSO.dll - ok 12:20:21.0221 5024 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll 12:20:21.0221 5024 C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok 12:20:21.0224 5024 [ 4009ACA971C4D4E5FA8891B076917069 ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll 12:20:21.0224 5024 C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok 12:20:21.0226 5024 [ D7CB45BEAD7FF63B8D82ABBFB9D74102 ] C:\Program Files (x86)\Mozilla Firefox\nspr4.dll 12:20:21.0226 5024 C:\Program Files (x86)\Mozilla Firefox\nspr4.dll - ok 12:20:21.0228 5024 [ 476F7D54970AEA25DEA456825C64D733 ] C:\Program Files (x86)\Mozilla Firefox\plc4.dll 12:20:21.0228 5024 C:\Program Files (x86)\Mozilla Firefox\plc4.dll - ok 12:20:21.0230 5024 [ 5127CDC241D32568DD458CB0D1C4CEA1 ] C:\Program Files (x86)\Mozilla Firefox\plds4.dll 12:20:21.0230 5024 C:\Program Files (x86)\Mozilla Firefox\plds4.dll - ok 12:20:21.0233 5024 [ D44761290B0861C8DF045CDE34EB0705 ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll 12:20:21.0233 5024 C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok 12:20:21.0235 5024 [ FDE476CFA50F0E1C3CA7B732334B5C3A ] C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll 12:20:21.0235 5024 C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll - ok 12:20:21.0237 5024 [ 80D6B31FA7618B97CA9A0112B7CBB0EA ] C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll 12:20:21.0238 5024 C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll - ok 12:20:21.0240 5024 [ 714E3F17D0E2E23354F15FD01B4F4EA8 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll 12:20:21.0240 5024 C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok 12:20:21.0242 5024 [ DD74FB796F5D9A2BF5B4F24201429AB8 ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll 12:20:21.0243 5024 C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok 12:20:21.0245 5024 [ A5A40243D737326E61D296ABD4C8AECE ] C:\Program Files (x86)\Mozilla Firefox\ssl3.dll 12:20:21.0245 5024 C:\Program Files (x86)\Mozilla Firefox\ssl3.dll - ok 12:20:21.0247 5024 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll 12:20:21.0247 5024 C:\Windows\System32\netshell.dll - ok 12:20:21.0249 5024 [ BA6DB597377C3D29128AA201E1D94297 ] C:\Program Files (x86)\Mozilla Firefox\smime3.dll 12:20:21.0249 5024 C:\Program Files (x86)\Mozilla Firefox\smime3.dll - ok 12:20:21.0252 5024 [ 0FCE648F8031872F7B8049F13FA0EDC4 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 12:20:21.0252 5024 C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok 12:20:21.0254 5024 [ 0BDD5B8AC394DE23EDBBF8998CBBE2A7 ] C:\Program Files (x86)\Mozilla Firefox\xul.dll 12:20:21.0254 5024 C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok 12:20:21.0256 5024 [ BE005B2321B30219B43986C713ED31A0 ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll 12:20:21.0256 5024 C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok 12:20:21.0259 5024 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll 12:20:21.0259 5024 C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok 12:20:21.0261 5024 [ A24CDF378DF91A4304A1F3E7247BD513 ] C:\Program Files (x86)\Mozilla Firefox\xpcom.dll 12:20:21.0261 5024 C:\Program Files (x86)\Mozilla Firefox\xpcom.dll - ok 12:20:21.0263 5024 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll 12:20:21.0263 5024 C:\Windows\System32\AltTab.dll - ok 12:20:21.0266 5024 [ F2545AE2D9E360EC7FB8D4993C731F19 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll 12:20:21.0266 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok 12:20:21.0268 5024 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll 12:20:21.0268 5024 C:\Windows\System32\PortableDeviceTypes.dll - ok 12:20:21.0270 5024 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll 12:20:21.0270 5024 C:\Windows\System32\WPDShServiceObj.dll - ok 12:20:21.0273 5024 [ 6D3CE6A1FE3BE6D51A90C3AEF6D545AC ] C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll 12:20:21.0273 5024 C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll - ok 12:20:21.0275 5024 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll 12:20:21.0275 5024 C:\Windows\SysWOW64\wshqos.dll - ok 12:20:21.0277 5024 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll 12:20:21.0277 5024 C:\Windows\System32\pnidui.dll - ok 12:20:21.0280 5024 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL 12:20:21.0280 5024 C:\Windows\System32\QUTIL.DLL - ok 12:20:21.0282 5024 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll 12:20:21.0282 5024 C:\Windows\System32\netman.dll - ok 12:20:21.0284 5024 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll 12:20:21.0284 5024 C:\Windows\System32\rasdlg.dll - ok 12:20:21.0286 5024 [ 234AFA322624B3203A2E720F08292B03 ] C:\Windows\System32\cscobj.dll 12:20:21.0286 5024 C:\Windows\System32\cscobj.dll - ok 12:20:21.0288 5024 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll 12:20:21.0288 5024 C:\Windows\System32\mprapi.dll - ok 12:20:21.0290 5024 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll 12:20:21.0290 5024 C:\Windows\System32\hnetcfg.dll - ok 12:20:21.0293 5024 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll 12:20:21.0293 5024 C:\Windows\SysWOW64\AudioSes.dll - ok 12:20:21.0295 5024 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll 12:20:21.0295 5024 C:\Windows\SysWOW64\MMDevAPI.dll - ok 12:20:21.0296 5024 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll 12:20:21.0296 5024 C:\Windows\System32\dot3api.dll - ok 12:20:21.0299 5024 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll 12:20:21.0299 5024 C:\Windows\System32\wlanhlp.dll - ok 12:20:21.0301 5024 [ 7E9B1C0EFF510CDF93A4CFECF9F2B86E ] C:\Windows\SysWOW64\nvwgf2um.dll 12:20:21.0301 5024 C:\Windows\SysWOW64\nvwgf2um.dll - ok 12:20:21.0303 5024 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe 12:20:21.0303 5024 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok 12:20:21.0306 5024 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll 12:20:21.0306 5024 C:\Windows\System32\WWanAPI.dll - ok 12:20:21.0308 5024 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll 12:20:21.0308 5024 C:\Windows\System32\wwapi.dll - ok 12:20:21.0310 5024 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll 12:20:21.0310 5024 C:\Program Files\Windows Media Player\wmpnssci.dll - ok 12:20:21.0313 5024 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll 12:20:21.0313 5024 C:\Windows\System32\srchadmin.dll - ok 12:20:21.0315 5024 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL 12:20:21.0315 5024 C:\Windows\System32\QAGENT.DLL - ok 12:20:21.0317 5024 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe 12:20:21.0317 5024 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok 12:20:21.0320 5024 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll 12:20:21.0320 5024 C:\Windows\SysWOW64\d3d10.dll - ok 12:20:21.0322 5024 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll 12:20:21.0322 5024 C:\Windows\System32\wmdrmdev.dll - ok 12:20:21.0324 5024 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll 12:20:21.0324 5024 C:\Windows\SysWOW64\d3d10core.dll - ok 12:20:21.0327 5024 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll 12:20:21.0327 5024 C:\Windows\System32\drmv2clt.dll - ok 12:20:21.0329 5024 [ FC3A5E13D26C131E6BB39094D9ACD1F6 ] C:\Windows\System32\ieframe.dll 12:20:21.0329 5024 C:\Windows\System32\ieframe.dll - ok 12:20:21.0331 5024 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll 12:20:21.0331 5024 C:\Windows\System32\webcheck.dll - ok 12:20:21.0333 5024 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll 12:20:21.0333 5024 C:\Windows\System32\esent.dll - ok 12:20:21.0335 5024 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll 12:20:21.0335 5024 C:\Windows\SysWOW64\NapiNSP.dll - ok 12:20:21.0338 5024 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll 12:20:21.0338 5024 C:\Windows\SysWOW64\pnrpnsp.dll - ok 12:20:21.0340 5024 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll 12:20:21.0340 5024 C:\Windows\SysWOW64\winrnr.dll - ok 12:20:21.0342 5024 [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll 12:20:21.0342 5024 C:\Windows\SysWOW64\wshbth.dll - ok 12:20:21.0344 5024 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll 12:20:21.0344 5024 C:\Windows\SysWOW64\mscms.dll - ok 12:20:21.0346 5024 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll 12:20:21.0346 5024 C:\Windows\System32\mlang.dll - ok 12:20:21.0349 5024 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll 12:20:21.0349 5024 C:\Windows\System32\SyncCenter.dll - ok 12:20:21.0351 5024 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll 12:20:21.0351 5024 C:\Windows\System32\imapi2.dll - ok 12:20:21.0353 5024 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll 12:20:21.0353 5024 C:\Windows\System32\hgcpl.dll - ok 12:20:21.0355 5024 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll 12:20:21.0355 5024 C:\Windows\System32\provsvc.dll - ok 12:20:21.0357 5024 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll 12:20:21.0357 5024 C:\Windows\System32\fdPHost.dll - ok 12:20:21.0360 5024 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll 12:20:21.0360 5024 C:\Windows\System32\fdSSDP.dll - ok 12:20:21.0362 5024 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll 12:20:21.0362 5024 C:\Windows\System32\fdWSD.dll - ok 12:20:21.0364 5024 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll 12:20:21.0364 5024 C:\Windows\System32\blackbox.dll - ok 12:20:21.0366 5024 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll 12:20:21.0366 5024 C:\Windows\SysWOW64\hid.dll - ok 12:20:21.0368 5024 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll 12:20:21.0368 5024 C:\Windows\System32\upnp.dll - ok 12:20:21.0371 5024 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll 12:20:21.0371 5024 C:\Windows\System32\ssdpsrv.dll - ok 12:20:21.0373 5024 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll 12:20:21.0373 5024 C:\Windows\System32\wmp.dll - ok 12:20:21.0375 5024 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL 12:20:21.0375 5024 C:\Windows\System32\wmploc.DLL - ok 12:20:21.0377 5024 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll 12:20:21.0377 5024 C:\Windows\System32\wmpps.dll - ok 12:20:21.0379 5024 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll 12:20:21.0379 5024 C:\Windows\System32\wmpmde.dll - ok 12:20:21.0381 5024 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll 12:20:21.0381 5024 C:\Windows\System32\httpapi.dll - ok 12:20:21.0384 5024 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll 12:20:21.0384 5024 C:\Windows\System32\WinSATAPI.dll - ok 12:20:21.0386 5024 [ C99C6E70B3625D0E5600B361007B6CA1 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL 12:20:21.0386 5024 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok 12:20:21.0388 5024 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL 12:20:21.0388 5024 C:\Windows\System32\MSMPEG2ENC.DLL - ok 12:20:21.0391 5024 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll 12:20:21.0391 5024 C:\Windows\System32\devenum.dll - ok 12:20:21.0393 5024 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll 12:20:21.0393 5024 C:\Windows\System32\msdmo.dll - ok 12:20:21.0395 5024 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll 12:20:21.0395 5024 C:\Windows\System32\upnphost.dll - ok 12:20:21.0397 5024 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll 12:20:21.0397 5024 C:\Windows\System32\msxml3.dll - ok 12:20:21.0399 5024 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll 12:20:21.0399 5024 C:\Windows\System32\udhisapi.dll - ok 12:20:21.0402 5024 [ EEFF5623465B383677699A06070BECEA ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll 12:20:21.0402 5024 C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok 12:20:21.0404 5024 [ 7AD79EBF2915BB6C9B821932D8D90879 ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll 12:20:21.0404 5024 C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok 12:20:21.0406 5024 [ F661ECDDF6B287683139F4BD365478CB ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll 12:20:21.0406 5024 C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok 12:20:21.0409 5024 [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\SysWOW64\feclient.dll 12:20:21.0409 5024 C:\Windows\SysWOW64\feclient.dll - ok 12:20:21.0411 5024 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll 12:20:21.0411 5024 C:\Windows\System32\FXSST.dll - ok 12:20:21.0413 5024 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll 12:20:21.0413 5024 C:\Windows\System32\FXSAPI.dll - ok 12:20:21.0415 5024 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll 12:20:21.0415 5024 C:\Windows\System32\FXSRESM.dll - ok 12:20:21.0418 5024 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe 12:20:21.0418 5024 C:\Windows\System32\FXSSVC.exe - ok 12:20:21.0420 5024 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll 12:20:21.0420 5024 C:\Windows\SysWOW64\schannel.dll - ok 12:20:21.0422 5024 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll 12:20:21.0422 5024 C:\Windows\System32\dssenh.dll - ok 12:20:21.0425 5024 [ AB1F1374CE30F0679263A05EF40AFDDC ] C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe 12:20:21.0425 5024 C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe - ok 12:20:21.0427 5024 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe 12:20:21.0427 5024 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok 12:20:21.0429 5024 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll 12:20:21.0429 5024 C:\Windows\SysWOW64\msxml3.dll - ok 12:20:21.0432 5024 [ A06AB1550658A19E871A6FD7FF1C2CDB ] C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe 12:20:21.0432 5024 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe - ok 12:20:21.0434 5024 [ 62059985AF996F4FFE5451CB0D5924BF ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll 12:20:21.0434 5024 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll - ok 12:20:21.0436 5024 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll 12:20:21.0436 5024 C:\Windows\SysWOW64\icm32.dll - ok 12:20:21.0438 5024 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll 12:20:21.0438 5024 C:\Windows\SysWOW64\avrt.dll - ok 12:20:21.0441 5024 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll 12:20:21.0441 5024 C:\Windows\SysWOW64\ksuser.dll - ok 12:20:21.0443 5024 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv 12:20:21.0443 5024 C:\Windows\SysWOW64\wdmaud.drv - ok 12:20:21.0445 5024 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv 12:20:21.0445 5024 C:\Windows\SysWOW64\msacm32.drv - ok 12:20:21.0447 5024 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll 12:20:21.0447 5024 C:\Windows\SysWOW64\midimap.dll - ok 12:20:21.0449 5024 ============================================================ 12:20:21.0449 5024 Scan finished 12:20:21.0449 5024 ============================================================ 12:20:21.0455 5028 Detected object count: 6 12:20:21.0455 5028 Actual detected object count: 6 12:21:17.0277 5028 bulkadi ( UnsignedFile.Multi.Generic ) - skipped by user 12:21:17.0277 5028 bulkadi ( UnsignedFile.Multi.Generic ) - User select action: Skip 12:21:17.0278 5028 HappyOSD ( UnsignedFile.Multi.Generic ) - skipped by user 12:21:17.0278 5028 HappyOSD ( UnsignedFile.Multi.Generic ) - User select action: Skip 12:21:17.0279 5028 InstallFilterService ( UnsignedFile.Multi.Generic ) - skipped by user 12:21:17.0279 5028 InstallFilterService ( UnsignedFile.Multi.Generic ) - User select action: Skip 12:21:17.0291 5028 C:\Windows\system32\services.exe - copied to quarantine 12:21:17.0447 5028 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine 12:21:17.0447 5028 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine 12:21:17.0466 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\@ - copied to quarantine 12:21:17.0467 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\L\00000004.@ - copied to quarantine 12:21:17.0468 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\L\201d3dde - copied to quarantine 12:21:17.0468 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\00000004.@ - copied to quarantine 12:21:17.0469 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\00000008.@ - copied to quarantine 12:21:17.0470 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\000000cb.@ - copied to quarantine 12:21:17.0470 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000000.@ - copied to quarantine 12:21:17.0471 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000032.@ - copied to quarantine 12:21:17.0472 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000064.@ - copied to quarantine 12:21:17.0475 5028 C:\Users\Alex\AppData\Local\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\@ - copied to quarantine 12:21:19.0292 5028 Backup copy found, using it.. 12:21:19.0322 5028 C:\Windows\assembly\GAC_32\desktop.ini - will be deleted on reboot 12:21:19.0322 5028 C:\Windows\assembly\GAC_64\desktop.ini - will be deleted on reboot 12:21:19.0324 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\@ - will be deleted on reboot 12:21:19.0325 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\00000004.@ - will be deleted on reboot 12:21:19.0326 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\00000008.@ - will be deleted on reboot 12:21:19.0326 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\000000cb.@ - will be deleted on reboot 12:21:19.0326 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000000.@ - will be deleted on reboot 12:21:19.0326 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000032.@ - will be deleted on reboot 12:21:19.0326 5028 C:\Windows\installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000064.@ - will be deleted on reboot 12:21:19.0327 5028 C:\Users\Alex\AppData\Local\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\@ - will be deleted on reboot 12:21:19.0327 5028 C:\Windows\system32\services.exe - will be cured on reboot 12:21:19.0327 5028 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure 12:21:19.0674 5028 \Device\Harddisk0\DR0\# - copied to quarantine 12:21:19.0675 5028 \Device\Harddisk0\DR0 - copied to quarantine 12:21:19.0686 5028 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine 12:21:19.0687 5028 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine 12:21:19.0688 5028 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine 12:21:19.0690 5028 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine 12:21:19.0692 5028 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine 12:21:19.0694 5028 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine 12:21:19.0695 5028 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine 12:21:19.0695 5028 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine 12:21:19.0696 5028 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine 12:21:19.0697 5028 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine 12:21:19.0697 5028 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine 12:21:19.0698 5028 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine 12:21:19.0699 5028 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine 12:21:19.0699 5028 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine 12:21:19.0700 5028 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine 12:21:19.0702 5028 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot 12:21:19.0703 5028 \Device\Harddisk0\DR0 - ok 12:21:19.0716 5028 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure 12:21:19.0716 5028 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user 12:21:19.0716 5028 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 12:22:29.0267 3516 Deinitialize success 12:23:47.0099 3352 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03 12:23:47.0704 3352 ============================================================ 12:23:47.0704 3352 Current date / time: 2012/08/21 12:23:47.0704 12:23:47.0704 3352 SystemInfo: 12:23:47.0704 3352 12:23:47.0704 3352 OS Version: 6.1.7601 ServicePack: 1.0 12:23:47.0704 3352 Product type: Workstation 12:23:47.0704 3352 ComputerName: ALEXM17X 12:23:47.0704 3352 UserName: Alex 12:23:47.0704 3352 Windows directory: C:\Windows 12:23:47.0704 3352 System windows directory: C:\Windows 12:23:47.0704 3352 Running under WOW64 12:23:47.0704 3352 Processor architecture: Intel x64 12:23:47.0704 3352 Number of processors: 8 12:23:47.0704 3352 Page size: 0x1000 12:23:47.0704 3352 Boot type: Normal boot 12:23:47.0704 3352 ============================================================ 12:23:47.0954 3352 BG loaded 12:23:48.0174 3352 Drive \Device\Harddisk0\DR0 - Size: 0x773C800000 (476.95 Gb), SectorSize: 0x200, Cylinders: 0xF335, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:23:48.0174 3352 ============================================================ 12:23:48.0174 3352 \Device\Harddisk0\DR0: 12:23:48.0174 3352 MBR partitions: 12:23:48.0174 3352 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000 12:23:48.0174 3352 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x39C83E3B 12:23:48.0174 3352 ============================================================ 12:23:48.0174 3352 C: <-> \Device\Harddisk0\DR0\Partition2 12:23:48.0174 3352 ============================================================ 12:23:48.0174 3352 Initialize success 12:23:48.0174 3352 ============================================================ 12:26:37.0665 3308 Deinitialize success
  17. 12:20:20.0155 5024 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll 12:20:20.0155 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok 12:20:20.0158 5024 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll 12:20:20.0158 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok 12:20:20.0160 5024 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll 12:20:20.0160 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok 12:20:20.0163 5024 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll 12:20:20.0163 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok 12:20:20.0166 5024 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll 12:20:20.0166 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok 12:20:20.0168 5024 [ 3B7D8EAE5E44CBDA4CD772720594F116 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll 12:20:20.0168 5024 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok 12:20:20.0170 5024 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll 12:20:20.0170 5024 C:\Windows\SysWOW64\dnssd.dll - ok 12:20:20.0173 5024 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe 12:20:20.0173 5024 C:\Program Files\Bonjour\mDNSResponder.exe - ok 12:20:20.0175 5024 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll 12:20:20.0175 5024 C:\Windows\SysWOW64\mswsock.dll - ok 12:20:20.0177 5024 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL 12:20:20.0177 5024 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok 12:20:20.0180 5024 [ B0BF87F9E247BB0621BCE59EB8CD113F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll 12:20:20.0180 5024 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok 12:20:20.0182 5024 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 12:20:20.0182 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok 12:20:20.0185 5024 [ 6DDE1E97BE4D50253DFB9090A6A62524 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe 12:20:20.0185 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok 12:20:20.0187 5024 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll 12:20:20.0187 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok 12:20:20.0190 5024 [ 0A9432AD51E083A687A64D3E9C05031F ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll 12:20:20.0190 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok 12:20:20.0192 5024 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll 12:20:20.0192 5024 C:\Windows\System32\cryptsvc.dll - ok 12:20:20.0194 5024 [ 76355D5EAFDFA3E9B7580B9153DE1F30 ] C:\Windows\System32\drivers\cpuz135_x64.sys 12:20:20.0194 5024 C:\Windows\System32\drivers\cpuz135_x64.sys - ok 12:20:20.0197 5024 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll 12:20:20.0197 5024 C:\Windows\System32\vssapi.dll - ok 12:20:20.0199 5024 [ 51643EE2712D9212E1E53CA7E8D8EB4A ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe 12:20:20.0199 5024 C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok 12:20:20.0201 5024 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll 12:20:20.0201 5024 C:\Windows\System32\dps.dll - ok 12:20:20.0204 5024 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll 12:20:20.0204 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok 12:20:20.0206 5024 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll 12:20:20.0206 5024 C:\Windows\System32\wdi.dll - ok 12:20:20.0208 5024 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL 12:20:20.0208 5024 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok 12:20:20.0210 5024 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll 12:20:20.0210 5024 C:\Windows\SysWOW64\winnsi.dll - ok 12:20:20.0213 5024 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll 12:20:20.0213 5024 C:\Windows\System32\msi.dll - ok 12:20:20.0215 5024 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 12:20:20.0215 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok 12:20:20.0218 5024 [ 120C117C8D5013745EA497742CF9AD7E ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll 12:20:20.0218 5024 C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok 12:20:20.0220 5024 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll 12:20:20.0220 5024 C:\Windows\System32\vsstrace.dll - ok 12:20:20.0222 5024 [ E62C8D51F24F2CF6F4897E423B272A69 ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll 12:20:20.0222 5024 C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok 12:20:20.0225 5024 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll 12:20:20.0225 5024 C:\Windows\System32\tapi32.dll - ok 12:20:20.0227 5024 [ D6E86B82EBC0835D5998C1AC308FDBD2 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll 12:20:20.0227 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok 12:20:20.0230 5024 [ 44F9BE8A505269E41082330F5273A3A7 ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll 12:20:20.0230 5024 C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok 12:20:20.0232 5024 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll 12:20:20.0232 5024 C:\Windows\System32\winhttp.dll - ok 12:20:20.0234 5024 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll 12:20:20.0234 5024 C:\Windows\System32\webio.dll - ok 12:20:20.0236 5024 [ 94F1E1409E9AF9439D1121C06EF54E69 ] C:\Program Files\Intel\WiFi\bin\pfQOSMgr.dll 12:20:20.0236 5024 C:\Program Files\Intel\WiFi\bin\pfQOSMgr.dll - ok 12:20:20.0238 5024 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll 12:20:20.0238 5024 C:\Windows\System32\FDResPub.dll - ok 12:20:20.0241 5024 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll 12:20:20.0241 5024 C:\Windows\System32\WSDApi.dll - ok 12:20:20.0243 5024 [ 719C56738C03CE88F46EFF9D57AF7A0A ] C:\Program Files (x86)\OSD\OSD_Service.exe 12:20:20.0243 5024 C:\Program Files (x86)\OSD\OSD_Service.exe - ok 12:20:20.0245 5024 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll 12:20:20.0245 5024 C:\Windows\System32\webservices.dll - ok 12:20:20.0248 5024 [ 361A47591FD31EC99A9794B6541360A6 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.1_none_dcc7eae99ad0d9cf\mfc90.dll 12:20:20.0248 5024 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.1_none_dcc7eae99ad0d9cf\mfc90.dll - ok 12:20:20.0250 5024 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll 12:20:20.0250 5024 C:\Windows\System32\fundisc.dll - ok 12:20:20.0253 5024 [ B3892E6DA8E2C8CE4B0A9D3EB9A185E5 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll 12:20:20.0253 5024 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll - ok 12:20:20.0255 5024 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll 12:20:20.0255 5024 C:\Windows\SysWOW64\msimg32.dll - ok 12:20:20.0257 5024 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll 12:20:20.0257 5024 C:\Windows\SysWOW64\dwmapi.dll - ok 12:20:20.0259 5024 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll 12:20:20.0259 5024 C:\Windows\SysWOW64\uxtheme.dll - ok 12:20:20.0262 5024 [ 2229324CE0374811CA64A19EE62F130B ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.1_none_da4695fc507e16e1\MFC90ENU.DLL 12:20:20.0262 5024 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.1_none_da4695fc507e16e1\MFC90ENU.DLL - ok 12:20:20.0265 5024 [ CB8E52C468D674324260D1102955D42E ] C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe 12:20:20.0265 5024 C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe - ok 12:20:20.0267 5024 [ 7D2633295EB6FF2B938185874884059D ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe 12:20:20.0267 5024 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe - ok 12:20:20.0270 5024 [ 813331FDB5375C4AC9A1DB2BC64AE6EE ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NB.dll 12:20:20.0270 5024 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NB.dll - ok 12:20:20.0272 5024 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll 12:20:20.0272 5024 C:\Windows\SysWOW64\winhttp.dll - ok 12:20:20.0274 5024 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll 12:20:20.0274 5024 C:\Windows\SysWOW64\webio.dll - ok 12:20:20.0277 5024 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll 12:20:20.0277 5024 C:\Windows\SysWOW64\Faultrep.dll - ok 12:20:20.0279 5024 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll 12:20:20.0279 5024 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok 12:20:20.0282 5024 [ 813101AE7E85BC1EF2E014DCCF588984 ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\LBFC.dll 12:20:20.0282 5024 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\LBFC.dll - ok 12:20:20.0284 5024 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll 12:20:20.0284 5024 C:\Windows\System32\nlasvc.dll - ok 12:20:20.0286 5024 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll 12:20:20.0286 5024 C:\Windows\System32\pcasvc.dll - ok 12:20:20.0289 5024 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll 12:20:20.0289 5024 C:\Windows\System32\aepic.dll - ok 12:20:20.0291 5024 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll 12:20:20.0291 5024 C:\Windows\System32\ncsi.dll - ok 12:20:20.0293 5024 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll 12:20:20.0293 5024 C:\Windows\System32\sfc.dll - ok 12:20:20.0295 5024 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll 12:20:20.0295 5024 C:\Windows\System32\sfc_os.dll - ok 12:20:20.0297 5024 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll 12:20:20.0297 5024 C:\Windows\SysWOW64\mstask.dll - ok 12:20:20.0300 5024 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll 12:20:20.0300 5024 C:\Windows\SysWOW64\RpcRtRemote.dll - ok 12:20:20.0302 5024 [ 2EDDAC53FFBB0A440B1AB9A278853295 ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBBurn.dll 12:20:20.0302 5024 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBBurn.dll - ok 12:20:20.0305 5024 [ C1E64261CE370717259904F5D3FDFC2C ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll 12:20:20.0305 5024 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll - ok 12:20:20.0307 5024 [ 3B71B5B91E7DCA93585D5A86C897ADC4 ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 12:20:20.0307 5024 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok 12:20:20.0310 5024 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys 12:20:20.0310 5024 C:\Windows\System32\drivers\PEAuth.sys - ok 12:20:20.0312 5024 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll 12:20:20.0312 5024 C:\Windows\System32\ssdpapi.dll - ok 12:20:20.0315 5024 [ 686B224B4987C22B153FBB545FEE9657 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\mfc80u.dll 12:20:20.0315 5024 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\mfc80u.dll - ok 12:20:20.0317 5024 [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E ] C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe 12:20:20.0317 5024 C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe - ok 12:20:20.0320 5024 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll 12:20:20.0320 5024 C:\Windows\System32\aeevts.dll - ok 12:20:20.0323 5024 [ D8584C7FB9A1BA8480F9000C1CA1B415 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\mfc80ENU.dll 12:20:20.0323 5024 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\mfc80ENU.dll - ok 12:20:20.0326 5024 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys 12:20:20.0326 5024 C:\Windows\System32\drivers\secdrv.sys - ok 12:20:20.0329 5024 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys 12:20:20.0329 5024 C:\Windows\System32\drivers\srvnet.sys - ok 12:20:20.0331 5024 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll 12:20:20.0331 5024 C:\Windows\System32\wiaservc.dll - ok 12:20:20.0334 5024 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys 12:20:20.0334 5024 C:\Windows\System32\drivers\tcpipreg.sys - ok 12:20:20.0336 5024 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll 12:20:20.0336 5024 C:\Windows\System32\trkwks.dll - ok 12:20:20.0338 5024 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll 12:20:20.0338 5024 C:\Windows\System32\wbem\WMIsvc.dll - ok 12:20:20.0341 5024 [ 74983ADDCA2D9618512C088D856D6615 ] C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl 12:20:20.0341 5024 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl - ok 12:20:20.0343 5024 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll 12:20:20.0343 5024 C:\Windows\System32\wbemcomn.dll - ok 12:20:20.0345 5024 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys 12:20:20.0345 5024 C:\Windows\System32\drivers\srv2.sys - ok 12:20:20.0347 5024 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll 12:20:20.0347 5024 C:\Windows\System32\wbem\fastprox.dll - ok 12:20:20.0349 5024 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll 12:20:20.0349 5024 C:\Windows\System32\wbem\WinMgmtR.dll - ok 12:20:20.0352 5024 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll 12:20:20.0352 5024 C:\Windows\System32\wbem\WmiDcPrv.dll - ok 12:20:20.0354 5024 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys 12:20:20.0354 5024 C:\Windows\System32\drivers\srv.sys - ok 12:20:20.0356 5024 [ 8EF0D5C41EC907751B8429162B1239ED ] C:\Windows\System32\browser.dll 12:20:20.0356 5024 C:\Windows\System32\browser.dll - ok 12:20:20.0358 5024 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll 12:20:20.0358 5024 C:\Windows\System32\netmsg.dll - ok 12:20:20.0360 5024 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll 12:20:20.0360 5024 C:\Windows\System32\ntdsapi.dll - ok 12:20:20.0363 5024 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll 12:20:20.0363 5024 C:\Windows\System32\srvsvc.dll - ok 12:20:20.0365 5024 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll 12:20:20.0365 5024 C:\Windows\System32\wbem\wbemprox.dll - ok 12:20:20.0367 5024 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll 12:20:20.0367 5024 C:\Windows\System32\clusapi.dll - ok 12:20:20.0369 5024 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll 12:20:20.0369 5024 C:\Windows\System32\resutils.dll - ok 12:20:20.0372 5024 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll 12:20:20.0372 5024 C:\Windows\System32\sscore.dll - ok 12:20:20.0374 5024 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll 12:20:20.0374 5024 C:\Windows\System32\wbem\wbemcore.dll - ok 12:20:20.0376 5024 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll 12:20:20.0376 5024 C:\Windows\System32\wbem\esscli.dll - ok 12:20:20.0378 5024 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll 12:20:20.0378 5024 C:\Windows\System32\wbem\wbemsvc.dll - ok 12:20:20.0381 5024 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll 12:20:20.0381 5024 C:\Windows\System32\wbem\repdrvfs.dll - ok 12:20:20.0383 5024 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll 12:20:20.0383 5024 C:\Windows\System32\wbem\wmiutils.dll - ok 12:20:20.0385 5024 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll 12:20:20.0385 5024 C:\Windows\System32\wbem\WmiPrvSD.dll - ok 12:20:20.0387 5024 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll 12:20:20.0387 5024 C:\Windows\System32\ncobjapi.dll - ok 12:20:20.0390 5024 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll 12:20:20.0390 5024 C:\Windows\System32\wbem\wbemess.dll - ok 12:20:20.0392 5024 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe 12:20:20.0392 5024 C:\Windows\System32\dllhost.exe - ok 12:20:20.0394 5024 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll 12:20:20.0394 5024 C:\Windows\System32\IDStore.dll - ok 12:20:20.0396 5024 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe 12:20:20.0396 5024 C:\Windows\System32\taskhost.exe - ok 12:20:20.0398 5024 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll 12:20:20.0398 5024 C:\Program Files\Bonjour\mdnsNSP.dll - ok 12:20:20.0401 5024 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe 12:20:20.0401 5024 C:\Windows\System32\AtBroker.exe - ok 12:20:20.0403 5024 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll 12:20:20.0403 5024 C:\Windows\System32\mpr.dll - ok 12:20:20.0405 5024 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll 12:20:20.0405 5024 C:\Windows\System32\PlaySndSrv.dll - ok 12:20:20.0407 5024 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll 12:20:20.0407 5024 C:\Windows\System32\cscapi.dll - ok 12:20:20.0409 5024 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll 12:20:20.0409 5024 C:\Windows\System32\davclnt.dll - ok 12:20:20.0412 5024 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll 12:20:20.0412 5024 C:\Windows\System32\davhlpr.dll - ok 12:20:20.0414 5024 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll 12:20:20.0414 5024 C:\Windows\System32\drprov.dll - ok 12:20:20.0416 5024 [ 89B89AE23491F5D4E338499A3D568269 ] C:\Windows\System32\localspl.dll 12:20:20.0416 5024 C:\Windows\System32\localspl.dll - ok 12:20:20.0418 5024 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll 12:20:20.0418 5024 C:\Windows\System32\ntlanman.dll - ok 12:20:20.0421 5024 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll 12:20:20.0421 5024 C:\Windows\System32\rasadhlp.dll - ok 12:20:20.0423 5024 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll 12:20:20.0423 5024 C:\Windows\System32\NapiNSP.dll - ok 12:20:20.0425 5024 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll 12:20:20.0425 5024 C:\Windows\System32\pnrpnsp.dll - ok 12:20:20.0427 5024 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll 12:20:20.0427 5024 C:\Windows\System32\spoolss.dll - ok 12:20:20.0429 5024 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll 12:20:20.0429 5024 C:\Windows\System32\wshbth.dll - ok 12:20:20.0432 5024 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll 12:20:20.0432 5024 C:\Windows\System32\CertPolEng.dll - ok 12:20:20.0434 5024 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll 12:20:20.0434 5024 C:\Windows\System32\FXSMON.dll - ok 12:20:20.0437 5024 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll 12:20:20.0437 5024 C:\Windows\System32\PrintIsolationProxy.dll - ok 12:20:20.0439 5024 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll 12:20:20.0439 5024 C:\Windows\System32\snmpapi.dll - ok 12:20:20.0441 5024 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll 12:20:20.0441 5024 C:\Windows\System32\tcpmon.dll - ok 12:20:20.0443 5024 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll 12:20:20.0443 5024 C:\Windows\System32\winrnr.dll - ok 12:20:20.0445 5024 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll 12:20:20.0445 5024 C:\Windows\System32\wsnmp32.dll - ok 12:20:20.0448 5024 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll 12:20:20.0448 5024 C:\Windows\System32\usbmon.dll - ok 12:20:20.0450 5024 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe 12:20:20.0450 5024 C:\Windows\System32\userinit.exe - ok 12:20:20.0452 5024 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll 12:20:20.0452 5024 C:\Windows\System32\WSDMon.dll - ok 12:20:20.0454 5024 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe 12:20:20.0454 5024 C:\Windows\System32\dwm.exe - ok 12:20:20.0457 5024 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll 12:20:20.0457 5024 C:\Windows\System32\dwmredir.dll - ok 12:20:20.0459 5024 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll 12:20:20.0459 5024 C:\Windows\System32\fdPnp.dll - ok 12:20:20.0461 5024 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll 12:20:20.0461 5024 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok 12:20:20.0464 5024 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll 12:20:20.0464 5024 C:\Windows\System32\dwmcore.dll - ok 12:20:20.0466 5024 [ 2AC11BE0F5D9A01433732AAB8BA21774 ] C:\Windows\System32\win32spl.dll 12:20:20.0466 5024 C:\Windows\System32\win32spl.dll - ok 12:20:20.0468 5024 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll 12:20:20.0468 5024 C:\Windows\System32\HotStartUserAgent.dll - ok 12:20:20.0470 5024 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll 12:20:20.0470 5024 C:\Windows\System32\inetpp.dll - ok 12:20:20.0472 5024 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll 12:20:20.0472 5024 C:\Windows\System32\MsCtfMonitor.dll - ok 12:20:20.0475 5024 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll 12:20:20.0475 5024 C:\Windows\System32\msutb.dll - ok 12:20:20.0477 5024 [ EE4BAC333AE9C790C46068585E1708BF ] C:\Windows\System32\spool\drivers\x64\3\BRUIMA8A.DLL 12:20:20.0477 5024 C:\Windows\System32\spool\drivers\x64\3\BRUIMA8A.DLL - ok 12:20:20.0479 5024 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll 12:20:20.0479 5024 C:\Windows\System32\d3d10_1.dll - ok 12:20:20.0482 5024 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll 12:20:20.0482 5024 C:\Windows\System32\d3d10_1core.dll - ok 12:20:20.0484 5024 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll 12:20:20.0484 5024 C:\Windows\System32\dxgi.dll - ok 12:20:20.0486 5024 [ 5925415EBF9BBCC1D688BA585CA1A194 ] C:\Windows\System32\spool\drivers\x64\3\BRDLMA8A.DLL 12:20:20.0486 5024 C:\Windows\System32\spool\drivers\x64\3\BRDLMA8A.DLL - ok 12:20:20.0489 5024 [ 305318EFCDAC51EF919E505340BCDAAB ] C:\Windows\System32\spool\drivers\x64\3\BRDSMA80.DLL 12:20:20.0489 5024 C:\Windows\System32\spool\drivers\x64\3\BRDSMA80.DLL - ok 12:20:20.0491 5024 [ 69DBE1BF12EF10CA43BCBAAB13184E72 ] C:\Windows\System32\spool\drivers\x64\3\BRLGMA8A.DLL 12:20:20.0491 5024 C:\Windows\System32\spool\drivers\x64\3\BRLGMA8A.DLL - ok 12:20:20.0493 5024 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe 12:20:20.0493 5024 C:\Windows\explorer.exe - ok 12:20:20.0496 5024 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll 12:20:20.0496 5024 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok 12:20:20.0498 5024 [ 2B8B19F57D155B955903727D7A3C2B26 ] C:\Windows\System32\nvwgf2umx.dll 12:20:20.0498 5024 C:\Windows\System32\nvwgf2umx.dll - ok 12:20:20.0501 5024 [ A7D74D953F40BEB5412373B809DA0B54 ] C:\Windows\System32\spool\drivers\x64\3\BRUICA8A.DLL 12:20:20.0501 5024 C:\Windows\System32\spool\drivers\x64\3\BRUICA8A.DLL - ok 12:20:20.0503 5024 [ E8DB870D8B10BFB54660058B4801D5AA ] C:\Windows\System32\spool\drivers\x64\3\BRDLCA8A.DLL 12:20:20.0503 5024 C:\Windows\System32\spool\drivers\x64\3\BRDLCA8A.DLL - ok 12:20:20.0506 5024 [ A7424198DD0459E454E220E6149EAB70 ] C:\Windows\System32\spool\drivers\x64\3\BRLGCA8A.DLL 12:20:20.0506 5024 C:\Windows\System32\spool\drivers\x64\3\BRLGCA8A.DLL - ok 12:20:20.0508 5024 [ AFCEBBF1F68B9EAA63EAD4692EE7D8E4 ] C:\Windows\System32\spool\drivers\x64\3\BRPSMA80.DLL 12:20:20.0508 5024 C:\Windows\System32\spool\drivers\x64\3\BRPSMA80.DLL - ok 12:20:20.0510 5024 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll 12:20:20.0510 5024 C:\Windows\System32\ExplorerFrame.dll - ok 12:20:20.0512 5024 [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll 12:20:20.0512 5024 C:\Windows\System32\mgmtapi.dll - ok 12:20:20.0515 5024 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe 12:20:20.0515 5024 C:\Windows\System32\PrintIsolationHost.exe - ok 12:20:20.0517 5024 [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll 12:20:20.0517 5024 C:\Windows\System32\tcpmib.dll - ok 12:20:20.0519 5024 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL 12:20:20.0519 5024 C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok 12:20:20.0522 5024 [ D28110CEC974C058D71DEE8E38A4B359 ] C:\Windows\System32\spool\drivers\x64\3\BROHLA8A.DLL 12:20:20.0522 5024 C:\Windows\System32\spool\drivers\x64\3\BROHLA8A.DLL - ok 12:20:20.0524 5024 [ F19A916EDE89E6D608EE350982AF8E66 ] C:\Windows\System32\spool\drivers\x64\3\BROCHA8A.DLL 12:20:20.0524 5024 C:\Windows\System32\spool\drivers\x64\3\BROCHA8A.DLL - ok 12:20:20.0526 5024 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll 12:20:20.0526 5024 C:\Windows\System32\diagperf.dll - ok 12:20:20.0529 5024 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll 12:20:20.0529 5024 C:\Windows\System32\npmproxy.dll - ok 12:20:20.0531 5024 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll 12:20:20.0531 5024 C:\Windows\System32\uDWM.dll - ok 12:20:20.0533 5024 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe 12:20:20.0533 5024 C:\Windows\System32\UI0Detect.exe - ok 12:20:20.0535 5024 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll 12:20:20.0535 5024 C:\Windows\System32\EhStorShell.dll - ok 12:20:20.0538 5024 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll 12:20:20.0538 5024 C:\Windows\System32\hidserv.dll - ok 12:20:20.0540 5024 [ F6E85F0EB6F349E31F6C97A5FFE4F0F4 ] C:\Windows\System32\spool\drivers\x64\3\BRUUI23A.DLL 12:20:20.0540 5024 C:\Windows\System32\spool\drivers\x64\3\BRUUI23A.DLL - ok 12:20:20.0543 5024 [ 1B9B865BE9020F591A273CB37BC0EE3D ] C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\000000cb.@ 12:20:20.0543 5024 C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\000000cb.@ - ok 12:20:20.0545 5024 [ 4350FED1ED450E731EF0124AAE21131A ] C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000000.@ 12:20:20.0545 5024 C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000000.@ - ok 12:20:20.0547 5024 [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll 12:20:20.0547 5024 C:\Windows\System32\cscui.dll - ok 12:20:20.0549 5024 [ 05F08E6A19AE6F441D74262BC841A6FD ] C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\00000004.@ 12:20:20.0549 5024 C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\00000004.@ - ok 12:20:20.0552 5024 [ 0115E9A964729DF77D53362CF4E39886 ] C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000064.@ 12:20:20.0552 5024 C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000064.@ - ok 12:20:20.0554 5024 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll 12:20:20.0554 5024 C:\Windows\System32\Apphlpdm.dll - ok 12:20:20.0556 5024 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll 12:20:20.0556 5024 C:\Windows\System32\cabinet.dll - ok 12:20:20.0558 5024 [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll 12:20:20.0559 5024 C:\Windows\System32\cscdll.dll - ok 12:20:20.0561 5024 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll 12:20:20.0561 5024 C:\Windows\System32\ntshrui.dll - ok 12:20:20.0563 5024 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll 12:20:20.0563 5024 C:\Windows\System32\perftrack.dll - ok 12:20:20.0565 5024 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll 12:20:20.0565 5024 C:\Windows\System32\pnpts.dll - ok 12:20:20.0568 5024 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll 12:20:20.0568 5024 C:\Windows\System32\wer.dll - ok 12:20:20.0570 5024 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll 12:20:20.0570 5024 C:\Windows\System32\wpdbusenum.dll - ok 12:20:20.0572 5024 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll 12:20:20.0572 5024 C:\Windows\System32\PortableDeviceApi.dll - ok 12:20:20.0574 5024 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll 12:20:20.0574 5024 C:\Windows\System32\IconCodecService.dll - ok 12:20:20.0577 5024 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll 12:20:20.0577 5024 C:\Windows\System32\PortableDeviceConnectApi.dll - ok 12:20:20.0579 5024 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe 12:20:20.0579 5024 C:\Windows\System32\runonce.exe - ok 12:20:20.0581 5024 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe 12:20:20.0581 5024 C:\Windows\SysWOW64\runonce.exe - ok 12:20:20.0583 5024 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll 12:20:20.0583 5024 C:\Windows\System32\dimsjob.dll - ok 12:20:20.0586 5024 [ 2641A3FE3D7B0646308F33B67F3B5300 ] C:\Windows\System32\drivers\btusbflt.sys 12:20:20.0586 5024 C:\Windows\System32\drivers\btusbflt.sys - ok 12:20:20.0588 5024 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll 12:20:20.0588 5024 C:\Windows\SysWOW64\propsys.dll - ok 12:20:20.0590 5024 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll 12:20:20.0590 5024 C:\Windows\System32\certcli.dll - ok 12:20:20.0592 5024 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll 12:20:20.0592 5024 C:\Windows\System32\pautoenr.dll - ok 12:20:20.0594 5024 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll 12:20:20.0594 5024 C:\Windows\System32\CertEnroll.dll - ok 12:20:20.0597 5024 [ 64C198198501F7560EE41D8D1EFA7952 ] C:\Windows\System32\drivers\bthport.sys 12:20:20.0597 5024 C:\Windows\System32\drivers\bthport.sys - ok 12:20:20.0599 5024 [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS 12:20:20.0599 5024 C:\Windows\System32\drivers\BTHUSB.SYS - ok 12:20:20.0601 5024 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll 12:20:20.0601 5024 C:\Windows\SysWOW64\secur32.dll - ok 12:20:20.0603 5024 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll 12:20:20.0603 5024 C:\Windows\System32\radardt.dll - ok 12:20:20.0606 5024 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll 12:20:20.0606 5024 C:\Windows\System32\wdiasqmmodule.dll - ok 12:20:20.0608 5024 [ 8DCDD0B5939043A1EC98C6F168A56B16 ] C:\Windows\SysWOW64\ieframe.dll 12:20:20.0608 5024 C:\Windows\SysWOW64\ieframe.dll - ok 12:20:20.0610 5024 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe 12:20:20.0610 5024 C:\Windows\System32\wbem\unsecapp.exe - ok 12:20:20.0612 5024 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe 12:20:20.0612 5024 C:\Windows\System32\wbem\WmiPrvSE.exe - ok 12:20:20.0615 5024 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll 12:20:20.0615 5024 C:\Windows\SysWOW64\oleacc.dll - ok 12:20:20.0617 5024 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll 12:20:20.0617 5024 C:\Windows\System32\wbem\NCProv.dll - ok 12:20:20.0619 5024 [ 17C3AEC1DF1C548A3FFCCE7CE8401EB6 ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll 12:20:20.0619 5024 C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok 12:20:20.0621 5024 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll 12:20:20.0621 5024 C:\Windows\SysWOW64\shdocvw.dll - ok 12:20:20.0624 5024 [ 1B2E79DB7750D7E8B6F61D2611F9FF59 ] C:\Windows\assembly\GAC_64\Desktop.ini 12:20:20.0624 5024 C:\Windows\assembly\GAC_64\Desktop.ini - ok 12:20:20.0626 5024 [ C5A2155E27F1E00B629ECA9FED6AC841 ] C:\Users\Alex\AppData\Local\Temp\308307B6-A5E9-40CE-A340-3A00B05E3C3B.exe 12:20:20.0626 5024 C:\Users\Alex\AppData\Local\Temp\308307B6-A5E9-40CE-A340-3A00B05E3C3B.exe - ok 12:20:20.0628 5024 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll 12:20:20.0628 5024 C:\Windows\System32\wbem\wmiprov.dll - ok 12:20:20.0631 5024 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll 12:20:20.0631 5024 C:\Windows\SysWOW64\WindowsCodecs.dll - ok 12:20:20.0633 5024 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll 12:20:20.0633 5024 C:\Windows\SysWOW64\EhStorShell.dll - ok 12:20:20.0635 5024 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll 12:20:20.0635 5024 C:\Windows\SysWOW64\ntshrui.dll - ok 12:20:20.0638 5024 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll 12:20:20.0638 5024 C:\Windows\SysWOW64\imageres.dll - ok 12:20:20.0640 5024 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll 12:20:20.0640 5024 C:\Windows\SysWOW64\slc.dll - ok 12:20:20.0642 5024 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll 12:20:20.0642 5024 C:\Windows\System32\aelupsvc.dll - ok 12:20:20.0644 5024 [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys 12:20:20.0644 5024 C:\Windows\System32\drivers\bthenum.sys - ok 12:20:20.0646 5024 [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys 12:20:20.0646 5024 C:\Windows\System32\drivers\rfcomm.sys - ok 12:20:20.0649 5024 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll 12:20:20.0649 5024 C:\Windows\System32\bthserv.dll - ok 12:20:20.0651 5024 [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys 12:20:20.0651 5024 C:\Windows\System32\drivers\bthpan.sys - ok 12:20:20.0654 5024 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll 12:20:20.0654 5024 C:\Windows\System32\shfolder.dll - ok 12:20:20.0656 5024 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] C:\Windows\System32\drivers\btwaudio.sys 12:20:20.0656 5024 C:\Windows\System32\drivers\btwaudio.sys - ok 12:20:20.0659 5024 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] C:\Windows\System32\drivers\btwavdt.sys 12:20:20.0659 5024 C:\Windows\System32\drivers\btwavdt.sys - ok 12:20:20.0661 5024 [ 6149301DC3F81D6F9667A3FBAC410975 ] C:\Windows\System32\drivers\btwl2cap.sys 12:20:20.0661 5024 C:\Windows\System32\drivers\btwl2cap.sys - ok 12:20:20.0663 5024 [ 28E105AD3B79F440BF94780F507BF66A ] C:\Windows\System32\drivers\btwrchid.sys 12:20:20.0663 5024 C:\Windows\System32\drivers\btwrchid.sys - ok 12:20:20.0665 5024 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll 12:20:20.0665 5024 C:\Windows\SysWOW64\IconCodecService.dll - ok 12:20:20.0668 5024 [ BB7E865599FA258C70DF8B1F70109F6F ] C:\Windows\System32\newdev.dll 12:20:20.0668 5024 C:\Windows\System32\newdev.dll - ok 12:20:20.0670 5024 [ 13F63494B1736C5C53F507EE9688BAA4 ] C:\Program Files\Intel\WiFi\bin\iWrap.exe 12:20:20.0670 5024 C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok 12:20:20.0672 5024 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll 12:20:20.0672 5024 C:\Windows\System32\oledlg.dll - ok 12:20:20.0674 5024 [ 11D1FAF2C42829AD7BEC60639AE0840D ] C:\Windows\SysWOW64\FAPassSync.dll 12:20:20.0674 5024 C:\Windows\SysWOW64\FAPassSync.dll - ok 12:20:20.0677 5024 [ 526721157D258B7B12CB87B5FD45D76A ] C:\Windows\SysWOW64\FAConsIfDLL.dll 12:20:20.0677 5024 C:\Windows\SysWOW64\FAConsIfDLL.dll - ok 12:20:20.0679 5024 [ C4516AFC497EF74A9A2B6E6121F2FBDC ] C:\Windows\SysWOW64\FAIESSODlg.dll 12:20:20.0679 5024 C:\Windows\SysWOW64\FAIESSODlg.dll - ok 12:20:20.0681 5024 [ 12D2600A5E8B5983610BA746AE0E7D41 ] C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll 12:20:20.0681 5024 C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll - ok 12:20:20.0684 5024 [ DE964FC50F757F5D45FE376DDBD70E3C ] C:\Program Files\Alienware\Command Center\AlienSense\FAMMCConsole.dll 12:20:20.0684 5024 C:\Program Files\Alienware\Command Center\AlienSense\FAMMCConsole.dll - ok 12:20:20.0687 5024 [ FABBD13CBD83F18D046FFCE01947F3EB ] C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe 12:20:20.0687 5024 C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe - ok 12:20:20.0689 5024 [ F9559F6BADB5B3ED3FCBFBD25F3E767E ] C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe 12:20:20.0689 5024 C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe - ok 12:20:20.0692 5024 [ 0D8DF47084D2F3AE27A11FE25C6A7A26 ] C:\Program Files\Alienware\Command Center\AlienSense\FACons.exe 12:20:20.0692 5024 C:\Program Files\Alienware\Command Center\AlienSense\FACons.exe - ok 12:20:20.0695 5024 [ F9466B6FF290A6CF3FC828D1088DF0D9 ] C:\Program Files\Alienware\Command Center\AlienSense\FAEnrollWiz.exe 12:20:20.0695 5024 C:\Program Files\Alienware\Command Center\AlienSense\FAEnrollWiz.exe - ok 12:20:20.0697 5024 [ 394BC983EE9CC38871EC989BD25C776A ] C:\Program Files\Alienware\Command Center\AlienSense\FASecFacX.exe 12:20:20.0697 5024 C:\Program Files\Alienware\Command Center\AlienSense\FASecFacX.exe - ok 12:20:20.0699 5024 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe 12:20:20.0699 5024 C:\Windows\svchost.exe - ok 12:20:20.0701 5024 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll 12:20:20.0701 5024 C:\Windows\SysWOW64\dsound.dll - ok 12:20:20.0704 5024 [ 8A25602F94B5EE1DDA228C462F76F230 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 12:20:20.0704 5024 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok 12:20:20.0706 5024 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll 12:20:20.0706 5024 C:\Windows\SysWOW64\sfc.dll - ok 12:20:20.0708 5024 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll 12:20:20.0708 5024 C:\Windows\SysWOW64\sfc_os.dll - ok 12:20:20.0711 5024 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll 12:20:20.0711 5024 C:\Windows\SysWOW64\devrtl.dll - ok 12:20:20.0713 5024 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe 12:20:20.0713 5024 C:\Windows\System32\ie4uinit.exe - ok 12:20:20.0715 5024 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll 12:20:20.0715 5024 C:\Windows\System32\iedkcs32.dll - ok 12:20:20.0717 5024 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl 12:20:20.0717 5024 C:\Windows\System32\timedate.cpl - ok 12:20:20.0719 5024 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll 12:20:20.0719 5024 C:\Windows\System32\actxprxy.dll - ok 12:20:20.0722 5024 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll 12:20:20.0722 5024 C:\Windows\System32\gameux.dll - ok 12:20:20.0724 5024 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll 12:20:20.0724 5024 C:\Windows\System32\msftedit.dll - ok 12:20:20.0726 5024 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll 12:20:20.0726 5024 C:\Windows\System32\msls31.dll - ok 12:20:20.0729 5024 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll 12:20:20.0729 5024 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok 12:20:20.0731 5024 [ 529F25D17404C52034079069AA8D7BB8 ] C:\Windows\assembly\GAC_32\Desktop.ini 12:20:20.0731 5024 C:\Windows\assembly\GAC_32\Desktop.ini - ok 12:20:20.0733 5024 [ E1CC77B9D1EF9C7B809C680CCF986482 ] C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000032.@ 12:20:20.0734 5024 C:\Windows\Installer\{ee7d18ad-a420-8762-78e1-7d171c8be86d}\U\80000032.@ - ok 12:20:20.0736 5024 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll 12:20:20.0736 5024 C:\Windows\SysWOW64\cabinet.dll - ok 12:20:20.0738 5024 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll 12:20:20.0738 5024 C:\Windows\SysWOW64\credssp.dll - ok 12:20:20.0740 5024 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll 12:20:20.0740 5024 C:\Windows\SysWOW64\wship6.dll - ok 12:20:20.0742 5024 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll 12:20:20.0742 5024 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok 12:20:20.0745 5024 [ 705DF92F4721DA67528758638E74F90D ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 12:20:20.0745 5024 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok 12:20:20.0747 5024 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll 12:20:20.0747 5024 C:\Windows\System32\linkinfo.dll - ok 12:20:20.0749 5024 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll 12:20:20.0749 5024 C:\Windows\System32\msiltcfg.dll - ok 12:20:20.0752 5024 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll 12:20:20.0752 5024 C:\Windows\SysWOW64\rasadhlp.dll - ok 12:20:20.0754 5024 [ 95FAB969D756CA7C80CDE1FD7D74A2B4 ] C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe 12:20:20.0754 5024 C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe - ok 12:20:20.0756 5024 [ C7DE55C6EC8401EE40F6184B201318D4 ] C:\Program Files\IDT\WDM\sttray64.exe 12:20:20.0756 5024 C:\Program Files\IDT\WDM\sttray64.exe - ok 12:20:20.0759 5024 [ 18F2C909612AB23DFA672A2C464380CD ] C:\Program Files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe 12:20:20.0759 5024 C:\Program Files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe - ok 12:20:20.0762 5024 [ CAFC14FD383035C97C846706E2FCFD0C ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe 12:20:20.0762 5024 C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe - ok 12:20:20.0764 5024 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll 12:20:20.0764 5024 C:\Windows\System32\mfc42u.dll - ok 12:20:20.0766 5024 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll 12:20:20.0766 5024 C:\Windows\System32\thumbcache.dll - ok 12:20:20.0769 5024 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll 12:20:20.0769 5024 C:\Windows\SysWOW64\mscoree.dll - ok 12:20:20.0771 5024 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll 12:20:20.0771 5024 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok 12:20:20.0773 5024 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll 12:20:20.0773 5024 C:\Windows\System32\networkexplorer.dll - ok 12:20:20.0776 5024 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll 12:20:20.0776 5024 C:\Windows\System32\shdocvw.dll - ok 12:20:20.0778 5024 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll 12:20:20.0778 5024 C:\Windows\System32\odbc32.dll - ok 12:20:20.0780 5024 [ 81AB532CC53A6C4D8D72E42812FE0B0D ] C:\Windows\System32\SynCOM.dll 12:20:20.0780 5024 C:\Windows\System32\SynCOM.dll - ok 12:20:20.0783 5024 [ A144DB561F7EE26C28D5BD90D4AA8210 ] C:\Windows\System32\SynTPAPI.dll 12:20:20.0783 5024 C:\Windows\System32\SynTPAPI.dll - ok 12:20:20.0785 5024 [ BBB34DDD6359AE157B77645CAF0359E2 ] C:\Program Files (x86)\OSD\Launch_OSD.exe 12:20:20.0785 5024 C:\Program Files (x86)\OSD\Launch_OSD.exe - ok 12:20:20.0788 5024 [ 3F278AFFC343760A03CBD89FA392FC1C ] C:\Program Files\IDT\WDM\stlang64.dll 12:20:20.0788 5024 C:\Program Files\IDT\WDM\stlang64.dll - ok 12:20:20.0790 5024 [ 283217480A22E5F28185D5C5173A8AE6 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 12:20:20.0790 5024 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok 12:20:20.0792 5024 [ C40894A0E9031191674FEE74D4C7C473 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe 12:20:20.0792 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok 12:20:20.0795 5024 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll 12:20:20.0795 5024 C:\Windows\SysWOW64\comdlg32.dll - ok 12:20:20.0796 5024 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL 12:20:20.0796 5024 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok 12:20:20.0799 5024 [ 5343A19C618BC515CEB1695586C6C137 ] C:\Windows\SysWOW64\msvbvm60.dll 12:20:20.0799 5024 C:\Windows\SysWOW64\msvbvm60.dll - ok 12:20:20.0801 5024 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll 12:20:20.0801 5024 C:\Windows\SysWOW64\oledlg.dll - ok 12:20:20.0803 5024 [ 25107F58D1B8F60D67D1EE95798C0DE8 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 12:20:20.0803 5024 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok 12:20:20.0806 5024 [ 2D840805B9125AF39507700FE8965D8D ] C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll 12:20:20.0806 5024 C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll - ok 12:20:20.0808 5024 [ 44AE4369A1BD51F4B2084C03AF3A62C4 ] C:\Program Files (x86)\Stardock\MyColors\SDDelayedLaunch.exe 12:20:20.0808 5024 C:\Program Files (x86)\Stardock\MyColors\SDDelayedLaunch.exe - ok 12:20:20.0811 5024 [ 368B2BEE3F88BFB883D2C74A258DE6F6 ] C:\Windows\AppPatch\AcLayers.dll 12:20:20.0811 5024 C:\Windows\AppPatch\AcLayers.dll - ok 12:20:20.0813 5024 [ 4552F8F61A7975C2359D19673483604D ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 12:20:20.0813 5024 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok 12:20:20.0816 5024 [ 5C5D40DDDE89190B2B3A19EDAC1CCF55 ] C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe 12:20:20.0816 5024 C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe - ok 12:20:20.0818 5024 [ 79FE6A371BC0ACB0F59E31EE9E31EF4A ] C:\Program Files (x86)\Winamp\winampa.exe 12:20:20.0818 5024 C:\Program Files (x86)\Winamp\winampa.exe - ok 12:20:20.0821 5024 [ 7CB14FD41A0ADC538FDB65CE31C659C5 ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll 12:20:20.0821 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll - ok 12:20:20.0823 5024 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll 12:20:20.0823 5024 C:\Windows\System32\odbcint.dll - ok
  18. 12:20:19.0158 5024 [ F369E83F6CDAB987CA2DD764278659A6 ] C:\Windows\System32\drivers\e1k62x64.sys 12:20:19.0158 5024 C:\Windows\System32\drivers\e1k62x64.sys - ok 12:20:19.0160 5024 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys 12:20:19.0160 5024 C:\Windows\System32\drivers\usbehci.sys - ok 12:20:19.0162 5024 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys 12:20:19.0162 5024 C:\Windows\System32\drivers\usbport.sys - ok 12:20:19.0164 5024 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys 12:20:19.0164 5024 C:\Windows\System32\drivers\hdaudbus.sys - ok 12:20:19.0167 5024 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll 12:20:19.0167 5024 C:\Windows\System32\ole32.dll - ok 12:20:19.0169 5024 [ 5A45FA344F4AD99D903F4B20E43B89EC ] C:\Windows\System32\wininet.dll 12:20:19.0169 5024 C:\Windows\System32\wininet.dll - ok 12:20:19.0171 5024 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll 12:20:19.0171 5024 C:\Windows\System32\imm32.dll - ok 12:20:19.0173 5024 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll 12:20:19.0173 5024 C:\Windows\System32\sechost.dll - ok 12:20:19.0176 5024 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll 12:20:19.0176 5024 C:\Windows\System32\normaliz.dll - ok 12:20:19.0178 5024 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll 12:20:19.0178 5024 C:\Windows\System32\shell32.dll - ok 12:20:19.0180 5024 [ 4D85A450EDEF10C38882182753A49AAE ] C:\Windows\System32\drivers\NETw5s64.sys 12:20:19.0180 5024 C:\Windows\System32\drivers\NETw5s64.sys - ok 12:20:19.0182 5024 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys 12:20:19.0182 5024 C:\Windows\System32\drivers\vwifibus.sys - ok 12:20:19.0184 5024 [ E20B1907FC72A3664ECE21E3C20FC63D ] C:\Windows\System32\drivers\rimspe64.sys 12:20:19.0184 5024 C:\Windows\System32\drivers\rimspe64.sys - ok 12:20:19.0187 5024 [ A6DA2B0C8F5BB3F9F5423CFF8D6A02D9 ] C:\Windows\System32\drivers\risdpe64.sys 12:20:19.0187 5024 C:\Windows\System32\drivers\risdpe64.sys - ok 12:20:19.0189 5024 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys 12:20:19.0189 5024 C:\Windows\System32\drivers\1394ohci.sys - ok 12:20:19.0191 5024 [ 6A1CD4674505E6791390A1AB71DA1FBE ] C:\Windows\System32\drivers\rixdpe64.sys 12:20:19.0191 5024 C:\Windows\System32\drivers\rixdpe64.sys - ok 12:20:19.0194 5024 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys 12:20:19.0194 5024 C:\Windows\System32\drivers\i8042prt.sys - ok 12:20:19.0196 5024 [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] C:\Windows\System32\drivers\itecir.sys 12:20:19.0196 5024 C:\Windows\System32\drivers\itecir.sys - ok 12:20:19.0198 5024 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys 12:20:19.0198 5024 C:\Windows\System32\drivers\kbdclass.sys - ok 12:20:19.0200 5024 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll 12:20:19.0200 5024 C:\Windows\System32\advapi32.dll - ok 12:20:19.0203 5024 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys 12:20:19.0203 5024 C:\Windows\System32\drivers\mouclass.sys - ok 12:20:19.0205 5024 [ 5C9BB68B1F4BBCB85B4F6E675FC523A0 ] C:\Windows\System32\drivers\SynTP.sys 12:20:19.0205 5024 C:\Windows\System32\drivers\SynTP.sys - ok 12:20:19.0207 5024 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys 12:20:19.0207 5024 C:\Windows\System32\drivers\usbd.sys - ok 12:20:19.0210 5024 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll 12:20:19.0210 5024 C:\Windows\System32\difxapi.dll - ok 12:20:19.0212 5024 [ E388503069001F0797EC200CE19B265E ] C:\Windows\System32\drivers\Acceler.sys 12:20:19.0212 5024 C:\Windows\System32\drivers\Acceler.sys - ok 12:20:19.0214 5024 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys 12:20:19.0214 5024 C:\Windows\System32\drivers\CmBatt.sys - ok 12:20:19.0216 5024 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys 12:20:19.0216 5024 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok 12:20:19.0218 5024 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys 12:20:19.0218 5024 C:\Windows\System32\drivers\intelppm.sys - ok 12:20:19.0221 5024 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys 12:20:19.0221 5024 C:\Windows\System32\drivers\agilevpn.sys - ok 12:20:19.0223 5024 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys 12:20:19.0223 5024 C:\Windows\System32\drivers\CompositeBus.sys - ok 12:20:19.0225 5024 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys 12:20:19.0225 5024 C:\Windows\System32\drivers\rasl2tp.sys - ok 12:20:19.0227 5024 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll 12:20:19.0227 5024 C:\Windows\System32\nsi.dll - ok 12:20:19.0230 5024 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll 12:20:19.0230 5024 C:\Windows\System32\usp10.dll - ok 12:20:19.0232 5024 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys 12:20:19.0232 5024 C:\Windows\System32\drivers\ndistapi.sys - ok 12:20:19.0234 5024 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys 12:20:19.0234 5024 C:\Windows\System32\drivers\ndiswan.sys - ok 12:20:19.0236 5024 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys 12:20:19.0236 5024 C:\Windows\System32\drivers\raspppoe.sys - ok 12:20:19.0239 5024 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll 12:20:19.0239 5024 C:\Windows\System32\comdlg32.dll - ok 12:20:19.0241 5024 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys 12:20:19.0241 5024 C:\Windows\System32\drivers\raspptp.sys - ok 12:20:19.0243 5024 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys 12:20:19.0243 5024 C:\Windows\System32\drivers\rassstp.sys - ok 12:20:19.0245 5024 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys 12:20:19.0245 5024 C:\Windows\System32\drivers\rdpbus.sys - ok 12:20:19.0248 5024 [ D7CD5C4E1B71FA62050515314CFB52CF ] C:\Windows\System32\drivers\circlass.sys 12:20:19.0248 5024 C:\Windows\System32\drivers\circlass.sys - ok 12:20:19.0250 5024 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys 12:20:19.0250 5024 C:\Windows\System32\drivers\ks.sys - ok 12:20:19.0252 5024 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys 12:20:19.0252 5024 C:\Windows\System32\drivers\swenum.sys - ok 12:20:19.0254 5024 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll 12:20:19.0254 5024 C:\Windows\System32\gdi32.dll - ok 12:20:19.0257 5024 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll 12:20:19.0257 5024 C:\Windows\System32\ws2_32.dll - ok 12:20:19.0259 5024 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll 12:20:19.0259 5024 C:\Windows\System32\cfgmgr32.dll - ok 12:20:19.0261 5024 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys 12:20:19.0261 5024 C:\Windows\System32\drivers\umbus.sys - ok 12:20:19.0263 5024 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll 12:20:19.0263 5024 C:\Windows\System32\imagehlp.dll - ok 12:20:19.0266 5024 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll 12:20:19.0266 5024 C:\Windows\System32\KernelBase.dll - ok 12:20:19.0268 5024 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll 12:20:19.0268 5024 C:\Windows\System32\comctl32.dll - ok 12:20:19.0270 5024 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll 12:20:19.0270 5024 C:\Windows\System32\devobj.dll - ok 12:20:19.0272 5024 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll 12:20:19.0272 5024 C:\Windows\System32\crypt32.dll - ok 12:20:19.0274 5024 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll 12:20:19.0274 5024 C:\Windows\System32\wintrust.dll - ok 12:20:19.0276 5024 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll 12:20:19.0276 5024 C:\Windows\System32\msasn1.dll - ok 12:20:19.0279 5024 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll 12:20:19.0279 5024 C:\Windows\SysWOW64\normaliz.dll - ok 12:20:19.0281 5024 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys 12:20:19.0281 5024 C:\Windows\System32\drivers\usbhub.sys - ok 12:20:19.0283 5024 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys 12:20:19.0283 5024 C:\Windows\System32\drivers\ndproxy.sys - ok 12:20:19.0285 5024 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys 12:20:19.0285 5024 C:\Windows\System32\drivers\drmk.sys - ok 12:20:19.0288 5024 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys 12:20:19.0288 5024 C:\Windows\System32\drivers\portcls.sys - ok 12:20:19.0290 5024 [ 04906A6B1DD17D38795E28AF4F4392F9 ] C:\Windows\System32\drivers\stwrt64.sys 12:20:19.0290 5024 C:\Windows\System32\drivers\stwrt64.sys - ok 12:20:19.0292 5024 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys 12:20:19.0292 5024 C:\Windows\System32\drivers\ksthunk.sys - ok 12:20:19.0293 5024 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys 12:20:19.0293 5024 C:\Windows\System32\drivers\hidclass.sys - ok 12:20:19.0296 5024 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] C:\Windows\System32\drivers\hidir.sys 12:20:19.0296 5024 C:\Windows\System32\drivers\hidir.sys - ok 12:20:19.0298 5024 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys 12:20:19.0298 5024 C:\Windows\System32\drivers\hidparse.sys - ok 12:20:19.0300 5024 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys 12:20:19.0300 5024 C:\Windows\System32\drivers\kbdhid.sys - ok 12:20:19.0302 5024 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys 12:20:19.0302 5024 C:\Windows\System32\drivers\mouhid.sys - ok 12:20:19.0305 5024 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys 12:20:19.0305 5024 C:\Windows\System32\drivers\dxapi.sys - ok 12:20:19.0307 5024 [ 511166D3F5D7EBA36DE48C4F5E195886 ] C:\Windows\System32\win32k.sys 12:20:19.0307 5024 C:\Windows\System32\win32k.sys - ok 12:20:19.0309 5024 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll 12:20:19.0309 5024 C:\Windows\System32\basesrv.dll - ok 12:20:19.0311 5024 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll 12:20:19.0311 5024 C:\Windows\System32\csrsrv.dll - ok 12:20:19.0313 5024 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe 12:20:19.0313 5024 C:\Windows\System32\csrss.exe - ok 12:20:19.0316 5024 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll 12:20:19.0316 5024 C:\Windows\System32\winsrv.dll - ok 12:20:19.0318 5024 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys 12:20:19.0318 5024 C:\Windows\System32\drivers\usbccgp.sys - ok 12:20:19.0320 5024 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys 12:20:19.0320 5024 C:\Windows\System32\drivers\hidusb.sys - ok 12:20:19.0322 5024 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys 12:20:19.0322 5024 C:\Windows\System32\drivers\usbvideo.sys - ok 12:20:19.0325 5024 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys 12:20:19.0325 5024 C:\Windows\System32\drivers\monitor.sys - ok 12:20:19.0327 5024 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll 12:20:19.0327 5024 C:\Windows\System32\tsddd.dll - ok 12:20:19.0329 5024 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll 12:20:19.0329 5024 C:\Windows\System32\profapi.dll - ok 12:20:19.0331 5024 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll 12:20:19.0331 5024 C:\Windows\System32\sxssrv.dll - ok 12:20:19.0334 5024 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe 12:20:19.0334 5024 C:\Windows\System32\wininit.exe - ok 12:20:19.0336 5024 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL 12:20:19.0336 5024 C:\Windows\System32\KBDUS.DLL - ok 12:20:19.0338 5024 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll 12:20:19.0338 5024 C:\Windows\System32\RpcRtRemote.dll - ok 12:20:19.0340 5024 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll 12:20:19.0340 5024 C:\Windows\System32\cdd.dll - ok 12:20:19.0342 5024 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll 12:20:19.0342 5024 C:\Windows\System32\sxs.dll - ok 12:20:19.0345 5024 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll 12:20:19.0345 5024 C:\Windows\System32\WlS0WndH.dll - ok 12:20:19.0347 5024 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll 12:20:19.0347 5024 C:\Windows\System32\cryptbase.dll - ok 12:20:19.0349 5024 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll 12:20:19.0349 5024 C:\Windows\System32\apphelp.dll - ok 12:20:19.0351 5024 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe 12:20:19.0351 5024 C:\Windows\System32\lsass.exe - ok 12:20:19.0353 5024 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe 12:20:19.0353 5024 C:\Windows\System32\lsm.exe - ok 12:20:19.0355 5024 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\System32\services.exe 12:20:19.0355 5024 C:\Windows\System32\services.exe - ok 12:20:19.0358 5024 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll 12:20:19.0358 5024 C:\Windows\System32\sspisrv.dll - ok 12:20:19.0360 5024 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll 12:20:19.0360 5024 C:\Windows\System32\lsasrv.dll - ok 12:20:19.0362 5024 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll 12:20:19.0362 5024 C:\Windows\System32\sspicli.dll - ok 12:20:19.0364 5024 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll 12:20:19.0364 5024 C:\Windows\System32\sysntfy.dll - ok 12:20:19.0367 5024 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll 12:20:19.0367 5024 C:\Windows\System32\wmsgapi.dll - ok 12:20:19.0369 5024 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll 12:20:19.0369 5024 C:\Windows\System32\scesrv.dll - ok 12:20:19.0371 5024 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll 12:20:19.0371 5024 C:\Windows\System32\scext.dll - ok 12:20:19.0373 5024 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll 12:20:19.0373 5024 C:\Windows\System32\secur32.dll - ok 12:20:19.0375 5024 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll 12:20:19.0375 5024 C:\Windows\System32\srvcli.dll - ok 12:20:19.0378 5024 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll 12:20:19.0378 5024 C:\Windows\System32\samsrv.dll - ok 12:20:19.0380 5024 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll 12:20:19.0380 5024 C:\Windows\System32\cryptdll.dll - ok 12:20:19.0382 5024 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll 12:20:19.0382 5024 C:\Windows\System32\wevtapi.dll - ok 12:20:19.0384 5024 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll 12:20:19.0384 5024 C:\Windows\System32\authz.dll - ok 12:20:19.0386 5024 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll 12:20:19.0386 5024 C:\Windows\System32\cngaudit.dll - ok 12:20:19.0389 5024 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll 12:20:19.0389 5024 C:\Windows\System32\bcrypt.dll - ok 12:20:19.0391 5024 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll 12:20:19.0391 5024 C:\Windows\System32\ncrypt.dll - ok 12:20:19.0393 5024 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll 12:20:19.0393 5024 C:\Windows\System32\msprivs.dll - ok 12:20:19.0395 5024 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll 12:20:19.0395 5024 C:\Windows\System32\netjoin.dll - ok 12:20:19.0397 5024 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll 12:20:19.0397 5024 C:\Windows\System32\kerberos.dll - ok 12:20:19.0400 5024 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll 12:20:19.0400 5024 C:\Windows\System32\negoexts.dll - ok 12:20:19.0402 5024 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll 12:20:19.0402 5024 C:\Windows\System32\cryptsp.dll - ok 12:20:19.0404 5024 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll 12:20:19.0404 5024 C:\Windows\System32\mswsock.dll - ok 12:20:19.0406 5024 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll 12:20:19.0406 5024 C:\Windows\System32\wship6.dll - ok 12:20:19.0409 5024 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll 12:20:19.0409 5024 C:\Windows\System32\msv1_0.dll - ok 12:20:19.0411 5024 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll 12:20:19.0411 5024 C:\Windows\System32\netlogon.dll - ok 12:20:19.0413 5024 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe 12:20:19.0413 5024 C:\Windows\System32\winlogon.exe - ok 12:20:19.0415 5024 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll 12:20:19.0415 5024 C:\Windows\System32\dnsapi.dll - ok 12:20:19.0417 5024 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll 12:20:19.0417 5024 C:\Windows\System32\winsta.dll - ok 12:20:19.0419 5024 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll 12:20:19.0419 5024 C:\Windows\System32\logoncli.dll - ok 12:20:19.0422 5024 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll 12:20:19.0422 5024 C:\Windows\System32\schannel.dll - ok 12:20:19.0424 5024 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll 12:20:19.0424 5024 C:\Windows\System32\wdigest.dll - ok 12:20:19.0426 5024 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll 12:20:19.0426 5024 C:\Windows\System32\pku2u.dll - ok 12:20:19.0428 5024 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll 12:20:19.0428 5024 C:\Windows\System32\rsaenh.dll - ok 12:20:19.0430 5024 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll 12:20:19.0430 5024 C:\Windows\System32\TSpkg.dll - ok 12:20:19.0432 5024 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll 12:20:19.0432 5024 C:\Windows\System32\bcryptprimitives.dll - ok 12:20:19.0435 5024 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll 12:20:19.0435 5024 C:\Windows\System32\credssp.dll - ok 12:20:19.0437 5024 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll 12:20:19.0437 5024 C:\Windows\System32\efslsaext.dll - ok 12:20:19.0439 5024 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll 12:20:19.0439 5024 C:\Windows\System32\scecli.dll - ok 12:20:19.0442 5024 [ C5FA17286871B8CAA6A8D281BBA0B2D2 ] C:\Windows\System32\FAPassSync.dll 12:20:19.0442 5024 C:\Windows\System32\FAPassSync.dll - ok 12:20:19.0444 5024 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll 12:20:19.0444 5024 C:\Windows\System32\ubpm.dll - ok 12:20:19.0446 5024 [ 764908FE1FA96F93C95B1B67A0FCED29 ] C:\Windows\System32\netapi32.dll 12:20:19.0446 5024 C:\Windows\System32\netapi32.dll - ok 12:20:19.0448 5024 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll 12:20:19.0448 5024 C:\Windows\System32\netutils.dll - ok 12:20:19.0451 5024 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll 12:20:19.0451 5024 C:\Windows\System32\wtsapi32.dll - ok 12:20:19.0453 5024 [ 011F0B067E47612F57C4ECE377D9C9DF ] C:\Windows\System32\activeds.dll 12:20:19.0453 5024 C:\Windows\System32\activeds.dll - ok 12:20:19.0455 5024 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll 12:20:19.0455 5024 C:\Windows\System32\samcli.dll - ok 12:20:19.0457 5024 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll 12:20:19.0457 5024 C:\Windows\System32\wkscli.dll - ok 12:20:19.0459 5024 [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4 ] C:\Windows\System32\adsldpc.dll 12:20:19.0459 5024 C:\Windows\System32\adsldpc.dll - ok 12:20:19.0462 5024 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll 12:20:19.0462 5024 C:\Windows\System32\atl.dll - ok 12:20:19.0464 5024 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe 12:20:19.0464 5024 C:\Windows\System32\svchost.exe - ok 12:20:19.0466 5024 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll 12:20:19.0466 5024 C:\Windows\System32\umpnpmgr.dll - ok 12:20:19.0469 5024 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll 12:20:19.0469 5024 C:\Windows\System32\devrtl.dll - ok 12:20:19.0471 5024 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll 12:20:19.0471 5024 C:\Windows\System32\SPInf.dll - ok 12:20:19.0473 5024 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll 12:20:19.0473 5024 C:\Windows\System32\userenv.dll - ok 12:20:19.0475 5024 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll 12:20:19.0475 5024 C:\Windows\System32\gpapi.dll - ok 12:20:19.0477 5024 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll 12:20:19.0477 5024 C:\Windows\System32\umpo.dll - ok 12:20:19.0479 5024 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll 12:20:19.0479 5024 C:\Windows\System32\pcwum.dll - ok 12:20:19.0482 5024 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll 12:20:19.0482 5024 C:\Windows\System32\powrprof.dll - ok 12:20:19.0484 5024 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys 12:20:19.0484 5024 C:\Windows\System32\drivers\luafv.sys - ok 12:20:19.0486 5024 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys 12:20:19.0486 5024 C:\Windows\System32\drivers\WUDFPf.sys - ok 12:20:19.0488 5024 [ 32FF8EE6DCEE5C0CB91FF892FB1CA364 ] C:\Windows\System32\nvvsvc.exe 12:20:19.0488 5024 C:\Windows\System32\nvvsvc.exe - ok 12:20:19.0491 5024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll 12:20:19.0491 5024 C:\Windows\System32\rpcss.dll - ok 12:20:19.0493 5024 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll 12:20:19.0493 5024 C:\Windows\System32\RpcEpMap.dll - ok 12:20:19.0495 5024 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL 12:20:19.0495 5024 C:\Windows\System32\WSHTCPIP.DLL - ok 12:20:19.0497 5024 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll 12:20:19.0497 5024 C:\Windows\System32\FirewallAPI.dll - ok 12:20:19.0499 5024 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll 12:20:19.0499 5024 C:\Windows\System32\wshqos.dll - ok 12:20:19.0501 5024 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll 12:20:19.0501 5024 C:\Windows\System32\version.dll - ok 12:20:19.0504 5024 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll 12:20:19.0504 5024 C:\Windows\System32\wevtsvc.dll - ok 12:20:19.0506 5024 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe 12:20:19.0506 5024 C:\Windows\System32\LogonUI.exe - ok 12:20:19.0508 5024 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll 12:20:19.0508 5024 C:\Windows\System32\audiosrv.dll - ok 12:20:19.0510 5024 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll 12:20:19.0510 5024 C:\Windows\System32\authui.dll - ok 12:20:19.0512 5024 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll 12:20:19.0512 5024 C:\Windows\System32\wlansvc.dll - ok 12:20:19.0515 5024 [ 53E30A6E86AA93C0FFC0BC0439E3E636 ] C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe 12:20:19.0515 5024 C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe - ok 12:20:19.0517 5024 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll 12:20:19.0517 5024 C:\Windows\System32\MMDevAPI.dll - ok 12:20:19.0520 5024 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll 12:20:19.0520 5024 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok 12:20:19.0522 5024 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll 12:20:19.0522 5024 C:\Windows\System32\netprofm.dll - ok 12:20:19.0524 5024 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll 12:20:19.0524 5024 C:\Windows\System32\propsys.dll - ok 12:20:19.0526 5024 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll 12:20:19.0526 5024 C:\Windows\System32\adtschema.dll - ok 12:20:19.0529 5024 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll 12:20:19.0529 5024 C:\Windows\System32\avrt.dll - ok 12:20:19.0531 5024 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll 12:20:19.0531 5024 C:\Windows\System32\cryptui.dll - ok 12:20:19.0533 5024 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys 12:20:19.0533 5024 C:\Windows\System32\drivers\fltMgr.sys - ok 12:20:19.0536 5024 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL 12:20:19.0536 5024 C:\Windows\System32\PSHED.DLL - ok 12:20:19.0538 5024 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll 12:20:19.0538 5024 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok 12:20:19.0541 5024 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll 12:20:19.0541 5024 C:\Windows\SysWOW64\ntdll.dll - ok 12:20:19.0543 5024 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll 12:20:19.0543 5024 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok 12:20:19.0545 5024 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll 12:20:19.0545 5024 C:\Windows\System32\wow64.dll - ok 12:20:19.0547 5024 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll 12:20:19.0547 5024 C:\Windows\System32\wow64win.dll - ok 12:20:19.0550 5024 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll 12:20:19.0550 5024 C:\Windows\System32\wow64cpu.dll - ok 12:20:19.0552 5024 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll 12:20:19.0552 5024 C:\Windows\SysWOW64\kernel32.dll - ok 12:20:19.0554 5024 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll 12:20:19.0554 5024 C:\Windows\System32\samlib.dll - ok 12:20:19.0556 5024 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll 12:20:19.0556 5024 C:\Windows\System32\shacct.dll - ok 12:20:19.0559 5024 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll 12:20:19.0559 5024 C:\Windows\System32\uxtheme.dll - ok 12:20:19.0561 5024 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll 12:20:19.0561 5024 C:\Windows\SysWOW64\KernelBase.dll - ok 12:20:19.0564 5024 [ DCEABBA22E12CC44C2E7785C0EB9C6E3 ] C:\Windows\SysWOW64\avifil32.dll 12:20:19.0564 5024 C:\Windows\SysWOW64\avifil32.dll - ok 12:20:19.0566 5024 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll 12:20:19.0566 5024 C:\Windows\SysWOW64\msvcrt.dll - ok 12:20:19.0568 5024 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll 12:20:19.0568 5024 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok 12:20:19.0571 5024 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll 12:20:19.0571 5024 C:\Windows\SysWOW64\user32.dll - ok 12:20:19.0573 5024 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll 12:20:19.0573 5024 C:\Windows\SysWOW64\gdi32.dll - ok 12:20:19.0575 5024 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll 12:20:19.0575 5024 C:\Windows\SysWOW64\lpk.dll - ok 12:20:19.0577 5024 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll 12:20:19.0577 5024 C:\Windows\SysWOW64\usp10.dll - ok 12:20:19.0579 5024 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll 12:20:19.0579 5024 C:\Windows\System32\dui70.dll - ok 12:20:19.0582 5024 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll 12:20:19.0582 5024 C:\Windows\SysWOW64\advapi32.dll - ok 12:20:19.0584 5024 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll 12:20:19.0584 5024 C:\Windows\SysWOW64\sechost.dll - ok 12:20:19.0586 5024 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll 12:20:19.0586 5024 C:\Windows\System32\duser.dll - ok 12:20:19.0588 5024 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll 12:20:19.0588 5024 C:\Windows\System32\SndVolSSO.dll - ok 12:20:19.0590 5024 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll 12:20:19.0590 5024 C:\Windows\SysWOW64\rpcrt4.dll - ok 12:20:19.0592 5024 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll 12:20:19.0592 5024 C:\Windows\System32\dwmapi.dll - ok 12:20:19.0594 5024 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll 12:20:19.0594 5024 C:\Windows\System32\hid.dll - ok 12:20:19.0597 5024 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll 12:20:19.0597 5024 C:\Windows\SysWOW64\cryptbase.dll - ok 12:20:19.0599 5024 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll 12:20:19.0599 5024 C:\Windows\SysWOW64\sspicli.dll - ok 12:20:19.0601 5024 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll 12:20:19.0601 5024 C:\Windows\SysWOW64\winmm.dll - ok 12:20:19.0603 5024 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll 12:20:19.0603 5024 C:\Windows\System32\xmllite.dll - ok 12:20:19.0605 5024 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll 12:20:19.0605 5024 C:\Windows\SysWOW64\ole32.dll - ok 12:20:19.0608 5024 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll 12:20:19.0608 5024 C:\Windows\System32\WindowsCodecs.dll - ok 12:20:19.0610 5024 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll 12:20:19.0610 5024 C:\Windows\SysWOW64\msacm32.dll - ok 12:20:19.0612 5024 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll 12:20:19.0612 5024 C:\Windows\SysWOW64\msvfw32.dll - ok 12:20:19.0614 5024 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll 12:20:19.0614 5024 C:\Windows\SysWOW64\shell32.dll - ok 12:20:19.0616 5024 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll 12:20:19.0616 5024 C:\Windows\System32\winbrand.dll - ok 12:20:19.0619 5024 [ E2038ABDBDF1837F077FB8E50EAD083C ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll 12:20:19.0619 5024 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok 12:20:19.0621 5024 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll 12:20:19.0621 5024 C:\Windows\System32\VaultCredProvider.dll - ok 12:20:19.0623 5024 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv 12:20:19.0623 5024 C:\Windows\System32\winspool.drv - ok 12:20:19.0626 5024 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll 12:20:19.0626 5024 C:\Windows\SysWOW64\shlwapi.dll - ok 12:20:19.0628 5024 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll 12:20:19.0628 5024 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok 12:20:19.0631 5024 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl 12:20:19.0631 5024 C:\Windows\System32\bthprops.cpl - ok 12:20:19.0633 5024 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll 12:20:19.0633 5024 C:\Windows\SysWOW64\avicap32.dll - ok 12:20:19.0635 5024 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll 12:20:19.0635 5024 C:\Windows\SysWOW64\nsi.dll - ok 12:20:19.0637 5024 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll 12:20:19.0637 5024 C:\Windows\SysWOW64\version.dll - ok 12:20:19.0639 5024 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll 12:20:19.0639 5024 C:\Windows\SysWOW64\ws2_32.dll - ok 12:20:19.0642 5024 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll 12:20:19.0642 5024 C:\Windows\SysWOW64\wsock32.dll - ok 12:20:19.0644 5024 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll 12:20:19.0644 5024 C:\Windows\System32\SmartcardCredentialProvider.dll - ok 12:20:19.0646 5024 [ 8CE1A6D16B9077E91E192499EB611C5F ] C:\Windows\SysWOW64\netapi32.dll 12:20:19.0646 5024 C:\Windows\SysWOW64\netapi32.dll - ok 12:20:19.0648 5024 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll 12:20:19.0648 5024 C:\Windows\SysWOW64\netutils.dll - ok 12:20:19.0651 5024 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll 12:20:19.0651 5024 C:\Windows\SysWOW64\srvcli.dll - ok 12:20:19.0653 5024 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll 12:20:19.0653 5024 C:\Windows\SysWOW64\wkscli.dll - ok 12:20:19.0655 5024 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll 12:20:19.0655 5024 C:\Windows\System32\BioCredProv.dll - ok 12:20:19.0657 5024 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll 12:20:19.0657 5024 C:\Windows\System32\credui.dll - ok 12:20:19.0659 5024 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll 12:20:19.0659 5024 C:\Windows\System32\winbio.dll - ok 12:20:19.0662 5024 [ 564437F67AC640389E648585E7BA2BFF ] C:\Windows\SysWOW64\FACrashRpt.dll 12:20:19.0662 5024 C:\Windows\SysWOW64\FACrashRpt.dll - ok 12:20:19.0664 5024 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll 12:20:19.0664 5024 C:\Windows\SysWOW64\logoncli.dll - ok 12:20:19.0666 5024 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll 12:20:19.0666 5024 C:\Windows\SysWOW64\samcli.dll - ok 12:20:19.0668 5024 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll 12:20:19.0668 5024 C:\Windows\SysWOW64\wtsapi32.dll - ok 12:20:19.0671 5024 [ 23DEA5E0F84DCFA477A4245DFBA6B3F8 ] C:\Windows\System32\FACredProv2.dll 12:20:19.0671 5024 C:\Windows\System32\FACredProv2.dll - ok 12:20:19.0673 5024 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll 12:20:19.0673 5024 C:\Windows\System32\vaultcli.dll - ok 12:20:19.0675 5024 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll 12:20:19.0675 5024 C:\Windows\SysWOW64\dbghelp.dll - ok 12:20:19.0677 5024 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll 12:20:19.0677 5024 C:\Windows\SysWOW64\oleaut32.dll - ok 12:20:19.0680 5024 [ 474DEFB79E147860A74717B19DCD8551 ] C:\Windows\System32\FACredProv.dll 12:20:19.0680 5024 C:\Windows\System32\FACredProv.dll - ok 12:20:19.0682 5024 [ 9EF220784F1C5652E2B78661D779FCA8 ] C:\Windows\SysWOW64\FAib.dll 12:20:19.0682 5024 C:\Windows\SysWOW64\FAib.dll - ok 12:20:19.0684 5024 [ FCC8F25A5F5A4D6BD57D917DB7A00D78 ] C:\Windows\SysWOW64\crtdll.dll 12:20:19.0684 5024 C:\Windows\SysWOW64\crtdll.dll - ok 12:20:19.0686 5024 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll 12:20:19.0686 5024 C:\Windows\SysWOW64\crypt32.dll - ok 12:20:19.0688 5024 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll 12:20:19.0688 5024 C:\Windows\System32\certCredProvider.dll - ok 12:20:19.0691 5024 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll 12:20:19.0691 5024 C:\Windows\SysWOW64\msasn1.dll - ok 12:20:19.0693 5024 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll 12:20:19.0693 5024 C:\Windows\SysWOW64\setupapi.dll - ok 12:20:19.0695 5024 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll 12:20:19.0695 5024 C:\Windows\System32\rasapi32.dll - ok 12:20:19.0697 5024 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll 12:20:19.0697 5024 C:\Windows\System32\rasplap.dll - ok 12:20:19.0699 5024 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll 12:20:19.0699 5024 C:\Windows\System32\rasman.dll - ok 12:20:19.0702 5024 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll 12:20:19.0702 5024 C:\Windows\System32\rtutils.dll - ok 12:20:19.0704 5024 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll 12:20:19.0704 5024 C:\Windows\SysWOW64\cfgmgr32.dll - ok 12:20:19.0706 5024 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll 12:20:19.0706 5024 C:\Windows\SysWOW64\devobj.dll - ok 12:20:19.0708 5024 [ A78C073B7930543C2D708D394D9AF225 ] C:\Windows\SysWOW64\FAIEExtension.dll 12:20:19.0708 5024 C:\Windows\SysWOW64\FAIEExtension.dll - ok 12:20:19.0710 5024 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll 12:20:19.0710 5024 C:\Windows\SysWOW64\psapi.dll - ok 12:20:19.0713 5024 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll 12:20:19.0713 5024 C:\Windows\SysWOW64\powrprof.dll - ok 12:20:19.0715 5024 [ 8E87270C4704CF2951E1E7820D6C8A2B ] C:\Windows\SysWOW64\wininet.dll 12:20:19.0715 5024 C:\Windows\SysWOW64\wininet.dll - ok 12:20:19.0717 5024 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll 12:20:19.0717 5024 C:\Windows\SysWOW64\wintrust.dll - ok 12:20:19.0719 5024 [ C516284DE6DB833E77CC0E5217CDC6AA ] C:\Windows\SysWOW64\iertutil.dll 12:20:19.0719 5024 C:\Windows\SysWOW64\iertutil.dll - ok 12:20:19.0721 5024 [ 1408CF9B0DD2AAA80D8E7087C8A2E3BC ] C:\Windows\SysWOW64\urlmon.dll 12:20:19.0721 5024 C:\Windows\SysWOW64\urlmon.dll - ok 12:20:19.0724 5024 [ CA2F560921B7B8BE1CF555A5A18D54C3 ] C:\Windows\SysWOW64\msvcr71.dll 12:20:19.0724 5024 C:\Windows\SysWOW64\msvcr71.dll - ok 12:20:19.0726 5024 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\SysWOW64\activeds.dll 12:20:19.0726 5024 C:\Windows\SysWOW64\activeds.dll - ok 12:20:19.0728 5024 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll 12:20:19.0728 5024 C:\Windows\SysWOW64\adsldpc.dll - ok 12:20:19.0730 5024 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll 12:20:19.0730 5024 C:\Windows\SysWOW64\atl.dll - ok 12:20:19.0732 5024 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll 12:20:19.0732 5024 C:\Windows\SysWOW64\Wldap32.dll - ok 12:20:19.0735 5024 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll 12:20:19.0735 5024 C:\Windows\SysWOW64\imm32.dll - ok 12:20:19.0737 5024 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll 12:20:19.0737 5024 C:\Windows\SysWOW64\msctf.dll - ok 12:20:19.0739 5024 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll 12:20:19.0739 5024 C:\Windows\SysWOW64\cryptsp.dll - ok 12:20:19.0742 5024 [ DAE7A8A33DF0635E6299640395037765 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\stacsv64.exe 12:20:19.0742 5024 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\stacsv64.exe - ok 12:20:19.0744 5024 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll 12:20:19.0744 5024 C:\Windows\System32\mmcss.dll - ok 12:20:19.0746 5024 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll 12:20:19.0746 5024 C:\Windows\SysWOW64\profapi.dll - ok 12:20:19.0748 5024 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll 12:20:19.0748 5024 C:\Windows\SysWOW64\rsaenh.dll - ok 12:20:19.0750 5024 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll 12:20:19.0750 5024 C:\Windows\System32\dsound.dll - ok 12:20:19.0753 5024 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll 12:20:19.0753 5024 C:\Windows\SysWOW64\ntmarta.dll - ok 12:20:19.0755 5024 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll 12:20:19.0755 5024 C:\Windows\System32\winmm.dll - ok 12:20:19.0757 5024 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll 12:20:19.0757 5024 C:\Windows\SysWOW64\apphelp.dll - ok 12:20:19.0759 5024 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe 12:20:19.0759 5024 C:\Windows\SysWOW64\cmd.exe - ok 12:20:19.0761 5024 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe 12:20:19.0761 5024 C:\Windows\System32\audiodg.exe - ok 12:20:19.0764 5024 [ 9AB1D2DA7F27E33ECE88D640EBB21BED ] C:\Windows\System32\stapi64.dll 12:20:19.0764 5024 C:\Windows\System32\stapi64.dll - ok 12:20:19.0766 5024 [ 448BF22538F1DFCB3412AE2B1CF123A9 ] C:\Windows\System32\conhost.exe 12:20:19.0766 5024 C:\Windows\System32\conhost.exe - ok 12:20:19.0768 5024 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll 12:20:19.0768 5024 C:\Windows\System32\ntmarta.dll - ok 12:20:19.0770 5024 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv 12:20:19.0770 5024 C:\Windows\System32\wdmaud.drv - ok 12:20:19.0772 5024 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll 12:20:19.0772 5024 C:\Windows\System32\AudioSes.dll - ok 12:20:19.0774 5024 [ 5746BD7E255DD6A8AFA06F7C42C1BA41 ] C:\Windows\System32\cmd.exe 12:20:19.0774 5024 C:\Windows\System32\cmd.exe - ok 12:20:19.0777 5024 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll 12:20:19.0777 5024 C:\Windows\System32\ksuser.dll - ok 12:20:19.0779 5024 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll 12:20:19.0779 5024 C:\Windows\System32\AUDIOKSE.dll - ok 12:20:19.0781 5024 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll 12:20:19.0781 5024 C:\Windows\SysWOW64\winbrand.dll - ok 12:20:19.0783 5024 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll 12:20:19.0783 5024 C:\Windows\System32\msacm32.dll - ok 12:20:19.0785 5024 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv 12:20:19.0785 5024 C:\Windows\System32\msacm32.drv - ok 12:20:19.0787 5024 [ 130B4A36665321920553F3BD5E3D65DD ] C:\Windows\System32\stapo64.dll 12:20:19.0787 5024 C:\Windows\System32\stapo64.dll - ok 12:20:19.0790 5024 [ 98E7E971AB21A6EDD2323C0FB37B9A0F ] C:\Windows\SysWOW64\powercfg.exe 12:20:19.0790 5024 C:\Windows\SysWOW64\powercfg.exe - ok 12:20:19.0792 5024 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll 12:20:19.0792 5024 C:\Windows\System32\midimap.dll - ok 12:20:19.0794 5024 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll 12:20:19.0794 5024 C:\Windows\System32\AudioEng.dll - ok 12:20:19.0796 5024 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll 12:20:19.0796 5024 C:\Windows\System32\WMALFXGFXDSP.dll - ok 12:20:19.0798 5024 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll 12:20:19.0798 5024 C:\Windows\System32\mfplat.dll - ok 12:20:19.0800 5024 [ 43E6294CC9698627627C58C6B786FB38 ] C:\Windows\System32\ctapo64.dll 12:20:19.0800 5024 C:\Windows\System32\ctapo64.dll - ok 12:20:19.0802 5024 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL 12:20:19.0802 5024 C:\Windows\System32\IPHLPAPI.DLL - ok 12:20:19.0805 5024 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll 12:20:19.0805 5024 C:\Windows\System32\AESTAR64.dll - ok 12:20:19.0807 5024 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll 12:20:19.0807 5024 C:\Windows\System32\winnsi.dll - ok 12:20:19.0809 5024 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] C:\Windows\System32\cscsvc.dll 12:20:19.0809 5024 C:\Windows\System32\cscsvc.dll - ok 12:20:19.0812 5024 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll 12:20:19.0812 5024 C:\Windows\System32\gpsvc.dll - ok 12:20:19.0814 5024 [ 3D9FC44CA93001B423F89876369F1348 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll 12:20:19.0814 5024 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok 12:20:19.0817 5024 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll 12:20:19.0817 5024 C:\Windows\System32\nlaapi.dll - ok 12:20:19.0819 5024 [ 29910D50542B1AA0F162EF3339C61B6D ] C:\Windows\System32\PeerDist.dll 12:20:19.0819 5024 C:\Windows\System32\PeerDist.dll - ok 12:20:19.0822 5024 [ B6F0676FC23D543452FE81D8B71D24E7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll 12:20:19.0822 5024 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok 12:20:19.0824 5024 [ F7BA79CEFBD9DF4AF781E00356FBF48E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll 12:20:19.0824 5024 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok 12:20:19.0827 5024 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll 12:20:19.0827 5024 C:\Windows\System32\profsvc.dll - ok 12:20:19.0829 5024 [ 79E25E0628A2FF7A74356EAEF5011C26 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll 12:20:19.0829 5024 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok 12:20:19.0832 5024 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll 12:20:19.0832 5024 C:\Windows\System32\taskschd.dll - ok 12:20:19.0834 5024 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll 12:20:19.0834 5024 C:\Windows\System32\themeservice.dll - ok 12:20:19.0836 5024 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll 12:20:19.0836 5024 C:\Windows\System32\dsrole.dll - ok 12:20:19.0838 5024 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll 12:20:19.0838 5024 C:\Windows\System32\slc.dll - ok 12:20:19.0841 5024 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll 12:20:19.0841 5024 C:\Windows\System32\es.dll - ok 12:20:19.0843 5024 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll 12:20:19.0843 5024 C:\Windows\System32\mstask.dll - ok 12:20:19.0845 5024 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll 12:20:19.0845 5024 C:\Windows\System32\comres.dll - ok 12:20:19.0847 5024 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll 12:20:19.0847 5024 C:\Windows\System32\Sens.dll - ok 12:20:19.0850 5024 [ 8258726D076C8FFF994F468712DDFBAB ] C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe 12:20:19.0850 5024 C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe - ok 12:20:19.0852 5024 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll 12:20:19.0852 5024 C:\Windows\System32\uxsms.dll - ok 12:20:19.0854 5024 [ A1CB6A5A42658F9533F32FBE71B3C397 ] C:\Program Files (x86)\Stardock\MyColors\wbvista.exe 12:20:19.0854 5024 C:\Program Files (x86)\Stardock\MyColors\wbvista.exe - ok 12:20:19.0857 5024 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll 12:20:19.0857 5024 C:\Windows\System32\WUDFPlatform.dll - ok 12:20:19.0859 5024 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll 12:20:19.0859 5024 C:\Windows\System32\WUDFSvc.dll - ok 12:20:19.0861 5024 [ 37BEBDD296BB41A2827A933EB1EEE31D ] C:\Program Files (x86)\Stardock\MyColors\wbsrv.dll 12:20:19.0861 5024 C:\Program Files (x86)\Stardock\MyColors\wbsrv.dll - ok 12:20:19.0863 5024 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys 12:20:19.0863 5024 C:\Windows\System32\drivers\lltdio.sys - ok 12:20:19.0866 5024 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys 12:20:19.0866 5024 C:\Windows\System32\drivers\nwifi.sys - ok 12:20:19.0868 5024 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys 12:20:19.0868 5024 C:\Windows\System32\drivers\ndisuio.sys - ok 12:20:19.0870 5024 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys 12:20:19.0870 5024 C:\Windows\System32\drivers\rspndr.sys - ok 12:20:19.0872 5024 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll 12:20:19.0872 5024 C:\Windows\System32\dhcpcore.dll - ok 12:20:19.0874 5024 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll 12:20:19.0874 5024 C:\Windows\System32\lmhsvc.dll - ok 12:20:19.0877 5024 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll 12:20:19.0877 5024 C:\Windows\System32\nrpsrv.dll - ok 12:20:19.0879 5024 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll 12:20:19.0879 5024 C:\Windows\System32\nsisvc.dll - ok 12:20:19.0881 5024 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll 12:20:19.0881 5024 C:\Windows\System32\dhcpcore6.dll - ok 12:20:19.0883 5024 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll 12:20:19.0883 5024 C:\Windows\System32\dnsrslvr.dll - ok 12:20:19.0885 5024 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll 12:20:19.0885 5024 C:\Windows\System32\keyiso.dll - ok 12:20:19.0887 5024 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll 12:20:19.0887 5024 C:\Windows\System32\UXInit.dll - ok 12:20:19.0890 5024 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll 12:20:19.0890 5024 C:\Windows\System32\eapphost.dll - ok 12:20:19.0892 5024 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll 12:20:19.0892 5024 C:\Windows\System32\eapsvc.dll - ok 12:20:19.0894 5024 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL 12:20:19.0894 5024 C:\Windows\System32\FWPUCLNT.DLL - ok 12:20:19.0897 5024 [ 07D90D664652307D78FB607B3076186D ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 12:20:19.0897 5024 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok 12:20:19.0899 5024 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll 12:20:19.0899 5024 C:\Windows\System32\dnsext.dll - ok 12:20:19.0901 5024 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll 12:20:19.0901 5024 C:\Windows\System32\dhcpcsvc6.dll - ok 12:20:19.0904 5024 [ 2D02C2E9E69A2A5845969F1F65315E63 ] C:\Windows\System32\nvsvc64.dll 12:20:19.0904 5024 C:\Windows\System32\nvsvc64.dll - ok 12:20:19.0906 5024 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll 12:20:19.0906 5024 C:\Windows\System32\dhcpcsvc.dll - ok 12:20:19.0908 5024 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll 12:20:19.0908 5024 C:\Windows\System32\umb.dll - ok 12:20:19.0910 5024 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll 12:20:19.0910 5024 C:\Windows\System32\wlanmsm.dll - ok 12:20:19.0913 5024 [ 752CF0C1B406849817A81EE24BA22706 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll 12:20:19.0913 5024 C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok 12:20:19.0915 5024 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll 12:20:19.0915 5024 C:\Windows\System32\wlansec.dll - ok 12:20:19.0917 5024 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll 12:20:19.0917 5024 C:\Windows\System32\eappprxy.dll - ok 12:20:19.0919 5024 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll 12:20:19.0919 5024 C:\Windows\System32\onex.dll - ok 12:20:19.0921 5024 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll 12:20:19.0921 5024 C:\Windows\System32\eappcfg.dll - ok 12:20:19.0924 5024 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll 12:20:19.0924 5024 C:\Windows\System32\l2gpstore.dll - ok 12:20:19.0926 5024 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll 12:20:19.0926 5024 C:\Windows\System32\wlanutil.dll - ok 12:20:19.0928 5024 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll 12:20:19.0928 5024 C:\Windows\System32\wlgpclnt.dll - ok 12:20:19.0930 5024 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll 12:20:19.0930 5024 C:\Windows\System32\WinSCard.dll - ok 12:20:19.0932 5024 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll 12:20:19.0932 5024 C:\Windows\System32\mscms.dll - ok 12:20:19.0934 5024 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll 12:20:19.0934 5024 C:\Windows\System32\msxml6.dll - ok 12:20:19.0937 5024 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll 12:20:19.0937 5024 C:\Windows\System32\msimg32.dll - ok 12:20:19.0939 5024 [ 289CE4EE001815D9FF52362ABEE8C806 ] C:\Windows\System32\nvapi64.dll 12:20:19.0939 5024 C:\Windows\System32\nvapi64.dll - ok 12:20:19.0941 5024 [ FDAF788732802912A27A26F5E83DE544 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll 12:20:19.0941 5024 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok 12:20:19.0943 5024 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll 12:20:19.0943 5024 C:\Windows\System32\shsvcs.dll - ok 12:20:19.0945 5024 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe 12:20:19.0945 5024 C:\Windows\System32\wlanext.exe - ok 12:20:19.0948 5024 [ BC2BC78967CEB516F8D56DA76E868E30 ] C:\Windows\System32\nvsvcr.dll 12:20:19.0948 5024 C:\Windows\System32\nvsvcr.dll - ok 12:20:19.0950 5024 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll 12:20:19.0950 5024 C:\Windows\System32\schedsvc.dll - ok 12:20:19.0952 5024 [ 523EABB5E762343DA4A02F637DC6B3B0 ] C:\Windows\System32\iwmssvc.dll 12:20:19.0952 5024 C:\Windows\System32\iwmssvc.dll - ok 12:20:19.0954 5024 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll 12:20:19.0954 5024 C:\Windows\System32\ktmw32.dll - ok 12:20:19.0957 5024 [ 27ABA2872316B4EFC22CC53CA9AC22CD ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll 12:20:19.0957 5024 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok 12:20:19.0959 5024 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll 12:20:19.0959 5024 C:\Windows\SysWOW64\cscapi.dll - ok 12:20:19.0961 5024 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll 12:20:19.0961 5024 C:\Windows\SysWOW64\winsta.dll - ok 12:20:19.0964 5024 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll 12:20:19.0964 5024 C:\Windows\SysWOW64\clbcatq.dll - ok 12:20:19.0966 5024 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll 12:20:19.0966 5024 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok 12:20:19.0968 5024 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll 12:20:19.0968 5024 C:\Windows\System32\fveapi.dll - ok 12:20:19.0971 5024 [ 11E549E5FE081995D2B3961CB7FB523E ] C:\Windows\System32\nvcpl.dll 12:20:19.0971 5024 C:\Windows\System32\nvcpl.dll - ok 12:20:19.0973 5024 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll 12:20:19.0973 5024 C:\Windows\System32\oleacc.dll - ok 12:20:19.0976 5024 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll 12:20:19.0976 5024 C:\Windows\System32\wlanapi.dll - ok 12:20:19.0979 5024 [ D844B11545F53AA0C10F78763381D9EC ] C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 12:20:19.0979 5024 C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll - ok 12:20:19.0981 5024 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll 12:20:19.0981 5024 C:\Windows\System32\fvecerts.dll - ok 12:20:19.0984 5024 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll 12:20:19.0984 5024 C:\Windows\System32\pdh.dll - ok 12:20:19.0987 5024 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll 12:20:19.0987 5024 C:\Windows\System32\tbs.dll - ok 12:20:19.0989 5024 [ B7D2873EC0487646CCDF740AF748852C ] C:\Windows\SysWOW64\adsnt.dll 12:20:19.0989 5024 C:\Windows\SysWOW64\adsnt.dll - ok 12:20:19.0992 5024 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll 12:20:19.0992 5024 C:\Windows\System32\wiarpc.dll - ok 12:20:19.0995 5024 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv 12:20:19.0995 5024 C:\Windows\SysWOW64\winspool.drv - ok 12:20:19.0998 5024 [ FF83D10CC6BEF313A1F2F21DC7D060E2 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll 12:20:19.0998 5024 C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok 12:20:20.0001 5024 [ 45760EECC8B74B251171BE4F247F17CB ] C:\Windows\SysWOW64\browcli.dll 12:20:20.0001 5024 C:\Windows\SysWOW64\browcli.dll - ok 12:20:20.0004 5024 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll 12:20:20.0004 5024 C:\Windows\SysWOW64\dsrole.dll - ok 12:20:20.0006 5024 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll 12:20:20.0006 5024 C:\Windows\SysWOW64\mpr.dll - ok 12:20:20.0009 5024 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll 12:20:20.0009 5024 C:\Windows\SysWOW64\dnsapi.dll - ok 12:20:20.0012 5024 [ E96E7084925EB282E4F86217A503B02E ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll 12:20:20.0012 5024 C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok 12:20:20.0015 5024 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll 12:20:20.0015 5024 C:\Windows\System32\wsock32.dll - ok 12:20:20.0018 5024 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll 12:20:20.0018 5024 C:\Windows\SysWOW64\samlib.dll - ok 12:20:20.0020 5024 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll 12:20:20.0020 5024 C:\Windows\System32\taskcomp.dll - ok 12:20:20.0023 5024 [ C8332F3E36B4AE3BCA91152E78728CEF ] C:\Program Files\Alienware\Command Center\AlienSense\devcon.exe 12:20:20.0023 5024 C:\Program Files\Alienware\Command Center\AlienSense\devcon.exe - ok 12:20:20.0026 5024 [ 1F7B659DF77F17366A8CE094733074A0 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll 12:20:20.0026 5024 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok 12:20:20.0030 5024 [ 66D12721EC263B601B0F79EAA113A431 ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll 12:20:20.0030 5024 C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll - ok 12:20:20.0035 5024 [ 31E78AA87D5B88A4F3E6C7435EDDE031 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll 12:20:20.0035 5024 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok 12:20:20.0037 5024 [ BF6BF2F25C73CB4A5204DCC1924A8A14 ] C:\Windows\System32\sti_ci.dll 12:20:20.0037 5024 C:\Windows\System32\sti_ci.dll - ok 12:20:20.0041 5024 [ 90602C1BB9A16FA6AFCA3893012E1F44 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll 12:20:20.0041 5024 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok 12:20:20.0043 5024 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys 12:20:20.0043 5024 C:\Windows\System32\drivers\http.sys - ok 12:20:20.0045 5024 [ B96C17B5DC1424D56EEA3A99E97428CD ] C:\Windows\System32\spoolsv.exe 12:20:20.0045 5024 C:\Windows\System32\spoolsv.exe - ok 12:20:20.0047 5024 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll 12:20:20.0047 5024 C:\Windows\System32\wiatrace.dll - ok 12:20:20.0050 5024 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys 12:20:20.0050 5024 C:\Windows\System32\drivers\bowser.sys - ok 12:20:20.0052 5024 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys 12:20:20.0052 5024 C:\Windows\System32\drivers\mrxsmb.sys - ok 12:20:20.0054 5024 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys 12:20:20.0054 5024 C:\Windows\System32\drivers\mrxsmb10.sys - ok 12:20:20.0057 5024 [ 4914E1821E368E8C8C1B4E174F33246E ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_8f16b0d88731ea9c\mfc80.dll 12:20:20.0057 5024 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_8f16b0d88731ea9c\mfc80.dll - ok 12:20:20.0059 5024 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys 12:20:20.0059 5024 C:\Windows\System32\drivers\mrxsmb20.sys - ok 12:20:20.0062 5024 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll 12:20:20.0062 5024 C:\Windows\System32\wkssvc.dll - ok 12:20:20.0065 5024 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe 12:20:20.0065 5024 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe - ok 12:20:20.0068 5024 [ A99E57669390F265D25288C8BA042D78 ] C:\Program Files\Alienware\Command Center\AlienFusionService.exe 12:20:20.0068 5024 C:\Program Files\Alienware\Command Center\AlienFusionService.exe - ok 12:20:20.0071 5024 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll 12:20:20.0071 5024 C:\Windows\System32\mscoree.dll - ok 12:20:20.0074 5024 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll 12:20:20.0074 5024 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok 12:20:20.0078 5024 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 12:20:20.0078 5024 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok 12:20:20.0080 5024 [ F779EE89CD1F679C91AB8848C978F086 ] C:\Windows\System32\powercfg.exe 12:20:20.0080 5024 C:\Windows\System32\powercfg.exe - ok 12:20:20.0083 5024 [ 88A7B682EC1517295E60D3A56D503C6A ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_c6eef3b6608113e0\mfc80ENU.dll 12:20:20.0083 5024 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_c6eef3b6608113e0\mfc80ENU.dll - ok 12:20:20.0086 5024 [ A05C0003E8D7CEA359A439690554F8BB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll 12:20:20.0086 5024 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok 12:20:20.0090 5024 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll 12:20:20.0090 5024 C:\Windows\System32\imageres.dll - ok 12:20:20.0092 5024 [ 76CDA84DCB30EBDEF0D86051A72E0C0F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll 12:20:20.0092 5024 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll - ok 12:20:20.0095 5024 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll 12:20:20.0095 5024 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok 12:20:20.0097 5024 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll 12:20:20.0097 5024 C:\Windows\System32\riched20.dll - ok 12:20:20.0100 5024 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll 12:20:20.0100 5024 C:\Windows\System32\cryptnet.dll - ok 12:20:20.0102 5024 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll 12:20:20.0102 5024 C:\Windows\System32\SensApi.dll - ok 12:20:20.0104 5024 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll 12:20:20.0104 5024 C:\Windows\SysWOW64\imagehlp.dll - ok 12:20:20.0106 5024 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll 12:20:20.0106 5024 C:\Windows\SysWOW64\bcrypt.dll - ok 12:20:20.0108 5024 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll 12:20:20.0108 5024 C:\Windows\SysWOW64\ncrypt.dll - ok 12:20:20.0110 5024 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll 12:20:20.0110 5024 C:\Windows\SysWOW64\bcryptprimitives.dll - ok 12:20:20.0113 5024 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll 12:20:20.0113 5024 C:\Windows\SysWOW64\userenv.dll - ok 12:20:20.0115 5024 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll 12:20:20.0115 5024 C:\Windows\SysWOW64\gpapi.dll - ok 12:20:20.0117 5024 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\SysWOW64\cryptnet.dll 12:20:20.0117 5024 C:\Windows\SysWOW64\cryptnet.dll - ok 12:20:20.0119 5024 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll 12:20:20.0119 5024 C:\Windows\SysWOW64\SensApi.dll - ok 12:20:20.0122 5024 [ E5DD390D354F8F040456DA7C9CD5E0EF ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll 12:20:20.0122 5024 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok 12:20:20.0124 5024 [ C50B6C2941B0BB0977194361D076AC80 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll 12:20:20.0124 5024 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok 12:20:20.0127 5024 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll 12:20:20.0127 5024 C:\Windows\System32\netcfgx.dll - ok 12:20:20.0129 5024 [ 5C9AA85D0FBA79A95A7F762318B40A93 ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll 12:20:20.0129 5024 C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok 12:20:20.0131 5024 [ 7540EE9F7525A9B2ADD04A4E590C4612 ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll 12:20:20.0131 5024 C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok 12:20:20.0134 5024 [ F401929EE0CC92BFE7F15161CA535383 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 12:20:20.0134 5024 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok 12:20:20.0136 5024 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll 12:20:20.0136 5024 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok 12:20:20.0139 5024 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll 12:20:20.0139 5024 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok 12:20:20.0142 5024 [ 848BC9A0BB2361E549FD4C22D7548FB8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll 12:20:20.0142 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok 12:20:20.0144 5024 [ 53A6FFB9FFF5C3E64B64E9B68C31D4E5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll 12:20:20.0144 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok 12:20:20.0147 5024 [ D3259D0DFC6A69AF54240A59A86F07BD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll 12:20:20.0147 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok 12:20:20.0150 5024 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll 12:20:20.0150 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok 12:20:20.0152 5024 [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll 12:20:20.0152 5024 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
  19. Ok here are the TDSSKiller reports: 12:15:55.0146 7724 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03 12:15:55.0445 7724 ============================================================ 12:15:55.0445 7724 Current date / time: 2012/08/21 12:15:55.0445 12:15:55.0445 7724 SystemInfo: 12:15:55.0445 7724 12:15:55.0445 7724 OS Version: 6.1.7601 ServicePack: 1.0 12:15:55.0445 7724 Product type: Workstation 12:15:55.0445 7724 ComputerName: ALEXM17X 12:15:55.0445 7724 UserName: Alex 12:15:55.0445 7724 Windows directory: C:\Windows 12:15:55.0445 7724 System windows directory: C:\Windows 12:15:55.0445 7724 Running under WOW64 12:15:55.0445 7724 Processor architecture: Intel x64 12:15:55.0445 7724 Number of processors: 8 12:15:55.0445 7724 Page size: 0x1000 12:15:55.0445 7724 Boot type: Normal boot 12:15:55.0445 7724 ============================================================ 12:15:55.0646 7724 Drive \Device\Harddisk0\DR0 - Size: 0x773C800000 (476.95 Gb), SectorSize: 0x200, Cylinders: 0xF335, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:15:55.0652 7724 ============================================================ 12:15:55.0652 7724 \Device\Harddisk0\DR0: 12:15:55.0652 7724 MBR partitions: 12:15:55.0652 7724 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000 12:15:55.0652 7724 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x39C83E3B 12:15:55.0652 7724 ============================================================ 12:15:55.0655 7724 C: <-> \Device\Harddisk0\DR0\Partition2 12:15:55.0655 7724 ============================================================ 12:15:55.0655 7724 Initialize success 12:15:55.0655 7724 ============================================================ 12:17:22.0546 3276 Deinitialize success 12:19:20.0033 3564 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03 12:19:20.0454 3564 ============================================================ 12:19:20.0454 3564 Current date / time: 2012/08/21 12:19:20.0454 12:19:20.0454 3564 SystemInfo: 12:19:20.0454 3564 12:19:20.0454 3564 OS Version: 6.1.7601 ServicePack: 1.0 12:19:20.0454 3564 Product type: Workstation 12:19:20.0454 3564 ComputerName: ALEXM17X 12:19:20.0454 3564 UserName: Alex 12:19:20.0454 3564 Windows directory: C:\Windows 12:19:20.0454 3564 System windows directory: C:\Windows 12:19:20.0454 3564 Running under WOW64 12:19:20.0454 3564 Processor architecture: Intel x64 12:19:20.0454 3564 Number of processors: 8 12:19:20.0454 3564 Page size: 0x1000 12:19:20.0454 3564 Boot type: Normal boot 12:19:20.0454 3564 ============================================================ 12:19:21.0366 3564 BG loaded 12:19:21.0564 3564 Drive \Device\Harddisk0\DR0 - Size: 0x773C800000 (476.95 Gb), SectorSize: 0x200, Cylinders: 0xF335, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:19:21.0564 3564 ============================================================ 12:19:21.0564 3564 \Device\Harddisk0\DR0: 12:19:21.0564 3564 MBR partitions: 12:19:21.0564 3564 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000 12:19:21.0564 3564 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x39C83E3B 12:19:21.0564 3564 ============================================================ 12:19:21.0579 3564 C: <-> \Device\Harddisk0\DR0\Partition2 12:19:21.0579 3564 ============================================================ 12:19:21.0579 3564 Initialize success 12:19:21.0579 3564 ============================================================ 12:20:08.0782 5024 ============================================================ 12:20:08.0782 5024 Scan started 12:20:08.0782 5024 Mode: Manual; SigCheck; TDLFS; 12:20:08.0782 5024 ============================================================ 12:20:09.0004 5024 ================ Scan system memory ======================== 12:20:09.0004 5024 System memory - ok 12:20:09.0005 5024 ================ Scan services ============================= 12:20:09.0043 5024 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 12:20:09.0084 5024 1394ohci - ok 12:20:09.0088 5024 [ E388503069001F0797EC200CE19B265E ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys 12:20:09.0097 5024 Acceler - ok 12:20:09.0104 5024 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 12:20:09.0117 5024 ACPI - ok 12:20:09.0120 5024 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 12:20:09.0151 5024 AcpiPmi - ok 12:20:09.0176 5024 [ F3CD7B20B27D1772C946DF993FF3635C ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 12:20:09.0186 5024 AdobeFlashPlayerUpdateSvc - ok 12:20:09.0195 5024 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 12:20:09.0209 5024 adp94xx - ok 12:20:09.0215 5024 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 12:20:09.0227 5024 adpahci - ok 12:20:09.0233 5024 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 12:20:09.0244 5024 adpu320 - ok 12:20:09.0249 5024 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 12:20:09.0341 5024 AeLookupSvc - ok 12:20:09.0359 5024 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe 12:20:09.0373 5024 AESTFilters - ok 12:20:09.0382 5024 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 12:20:09.0396 5024 AFD - ok 12:20:09.0400 5024 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 12:20:09.0410 5024 agp440 - ok 12:20:09.0413 5024 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 12:20:09.0431 5024 ALG - ok 12:20:09.0439 5024 [ A99E57669390F265D25288C8BA042D78 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe 12:20:09.0444 5024 AlienFusionService - ok 12:20:09.0448 5024 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 12:20:09.0457 5024 aliide - ok 12:20:09.0459 5024 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 12:20:09.0468 5024 amdide - ok 12:20:09.0471 5024 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 12:20:09.0483 5024 AmdK8 - ok 12:20:09.0486 5024 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 12:20:09.0499 5024 AmdPPM - ok 12:20:09.0503 5024 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 12:20:09.0513 5024 amdsata - ok 12:20:09.0518 5024 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 12:20:09.0529 5024 amdsbs - ok 12:20:09.0533 5024 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 12:20:09.0541 5024 amdxata - ok 12:20:09.0545 5024 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 12:20:09.0632 5024 AppID - ok 12:20:09.0635 5024 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 12:20:09.0662 5024 AppIDSvc - ok 12:20:09.0665 5024 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 12:20:09.0689 5024 Appinfo - ok 12:20:09.0698 5024 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 12:20:09.0704 5024 Apple Mobile Device - ok 12:20:09.0709 5024 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 12:20:09.0722 5024 AppMgmt - ok 12:20:09.0725 5024 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 12:20:09.0734 5024 arc - ok 12:20:09.0738 5024 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 12:20:09.0747 5024 arcsas - ok 12:20:09.0750 5024 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 12:20:09.0777 5024 AsyncMac - ok 12:20:09.0780 5024 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 12:20:09.0790 5024 atapi - ok 12:20:09.0800 5024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 12:20:09.0831 5024 AudioEndpointBuilder - ok 12:20:09.0837 5024 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 12:20:09.0863 5024 AudioSrv - ok 12:20:09.0874 5024 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 12:20:09.0909 5024 AxInstSV - ok 12:20:09.0916 5024 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 12:20:09.0931 5024 b06bdrv - ok 12:20:09.0937 5024 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 12:20:09.0950 5024 b57nd60a - ok 12:20:09.0956 5024 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 12:20:09.0967 5024 BDESVC - ok 12:20:09.0970 5024 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 12:20:09.0995 5024 Beep - ok 12:20:09.0998 5024 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 12:20:10.0008 5024 blbdrive - ok 12:20:10.0018 5024 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 12:20:10.0026 5024 Bonjour Service - ok 12:20:10.0030 5024 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 12:20:10.0040 5024 bowser - ok 12:20:10.0043 5024 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 12:20:10.0055 5024 BrFiltLo - ok 12:20:10.0058 5024 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 12:20:10.0069 5024 BrFiltUp - ok 12:20:10.0073 5024 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll 12:20:10.0098 5024 Browser - ok 12:20:10.0104 5024 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 12:20:10.0120 5024 Brserid - ok 12:20:10.0123 5024 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 12:20:10.0136 5024 BrSerWdm - ok 12:20:10.0138 5024 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 12:20:10.0151 5024 BrUsbMdm - ok 12:20:10.0153 5024 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 12:20:10.0165 5024 BrUsbSer - ok 12:20:10.0168 5024 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 12:20:10.0179 5024 BthEnum - ok 12:20:10.0183 5024 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 12:20:10.0196 5024 BTHMODEM - ok 12:20:10.0199 5024 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 12:20:10.0212 5024 BthPan - ok 12:20:10.0221 5024 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 12:20:10.0233 5024 BTHPORT - ok 12:20:10.0237 5024 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 12:20:10.0262 5024 bthserv - ok 12:20:10.0266 5024 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 12:20:10.0276 5024 BTHUSB - ok 12:20:10.0279 5024 [ 2641A3FE3D7B0646308F33B67F3B5300 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys 12:20:10.0286 5024 btusbflt - ok 12:20:10.0289 5024 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys 12:20:10.0295 5024 btwaudio - ok 12:20:10.0303 5024 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys 12:20:10.0309 5024 btwavdt - ok 12:20:10.0325 5024 [ 6DDE1E97BE4D50253DFB9090A6A62524 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe 12:20:10.0338 5024 btwdins - ok 12:20:10.0342 5024 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys 12:20:10.0346 5024 btwl2cap - ok 12:20:10.0350 5024 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys 12:20:10.0355 5024 btwrchid - ok 12:20:10.0358 5024 [ CE294CF4893A31A7AE59FCAF906936A6 ] bulkadi C:\Windows\system32\DRIVERS\bulkrazer_x64.sys 12:20:10.0363 5024 bulkadi ( UnsignedFile.Multi.Generic ) - warning 12:20:10.0363 5024 bulkadi - detected UnsignedFile.Multi.Generic (1) 12:20:10.0367 5024 [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64 C:\Windows\system32\drivers\BVRPMPR5a64.SYS 12:20:10.0374 5024 BVRPMPR5a64 - ok 12:20:10.0377 5024 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 12:20:10.0404 5024 cdfs - ok 12:20:10.0409 5024 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys 12:20:10.0421 5024 cdrom - ok 12:20:10.0425 5024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 12:20:10.0456 5024 CertPropSvc - ok 12:20:10.0461 5024 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 12:20:10.0474 5024 circlass - ok 12:20:10.0481 5024 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 12:20:10.0493 5024 CLFS - ok 12:20:10.0501 5024 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 12:20:10.0511 5024 clr_optimization_v2.0.50727_32 - ok 12:20:10.0518 5024 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 12:20:10.0527 5024 clr_optimization_v2.0.50727_64 - ok 12:20:10.0536 5024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 12:20:10.0550 5024 clr_optimization_v4.0.30319_32 - ok 12:20:10.0558 5024 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 12:20:10.0567 5024 clr_optimization_v4.0.30319_64 - ok 12:20:10.0570 5024 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 12:20:10.0579 5024 CmBatt - ok 12:20:10.0582 5024 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 12:20:10.0590 5024 cmdide - ok 12:20:10.0599 5024 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 12:20:10.0616 5024 CNG - ok 12:20:10.0619 5024 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 12:20:10.0628 5024 Compbatt - ok 12:20:10.0631 5024 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 12:20:10.0643 5024 CompositeBus - ok 12:20:10.0645 5024 COMSysApp - ok 12:20:10.0650 5024 [ 76355D5EAFDFA3E9B7580B9153DE1F30 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys 12:20:10.0656 5024 cpuz135 - ok 12:20:10.0659 5024 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 12:20:10.0667 5024 crcdisk - ok 12:20:10.0673 5024 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll 12:20:10.0685 5024 CryptSvc - ok 12:20:10.0693 5024 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 12:20:10.0707 5024 CSC - ok 12:20:10.0718 5024 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 12:20:10.0731 5024 CscService - ok 12:20:10.0740 5024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 12:20:10.0767 5024 DcomLaunch - ok 12:20:10.0773 5024 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 12:20:10.0801 5024 defragsvc - ok 12:20:10.0805 5024 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 12:20:10.0830 5024 DfsC - ok 12:20:10.0837 5024 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 12:20:10.0863 5024 Dhcp - ok 12:20:10.0867 5024 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 12:20:10.0891 5024 discache - ok 12:20:10.0895 5024 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 12:20:10.0905 5024 Disk - ok 12:20:10.0910 5024 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 12:20:10.0921 5024 Dnscache - ok 12:20:10.0927 5024 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 12:20:10.0954 5024 dot3svc - ok 12:20:10.0959 5024 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 12:20:10.0984 5024 DPS - ok 12:20:10.0988 5024 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 12:20:11.0000 5024 drmkaud - ok 12:20:11.0017 5024 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 12:20:11.0035 5024 DXGKrnl - ok 12:20:11.0040 5024 [ F369E83F6CDAB987CA2DD764278659A6 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys 12:20:11.0048 5024 e1kexpress - ok 12:20:11.0052 5024 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 12:20:11.0077 5024 EapHost - ok 12:20:11.0113 5024 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 12:20:11.0150 5024 ebdrv - ok 12:20:11.0154 5024 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 12:20:11.0165 5024 EFS - ok 12:20:11.0178 5024 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 12:20:11.0199 5024 ehRecvr - ok 12:20:11.0202 5024 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 12:20:11.0214 5024 ehSched - ok 12:20:11.0222 5024 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 12:20:11.0235 5024 elxstor - ok 12:20:11.0239 5024 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 12:20:11.0249 5024 ErrDev - ok 12:20:11.0259 5024 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 12:20:11.0285 5024 EventSystem - ok 12:20:11.0305 5024 [ 51643EE2712D9212E1E53CA7E8D8EB4A ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe 12:20:11.0323 5024 EvtEng - ok 12:20:11.0327 5024 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 12:20:11.0352 5024 exfat - ok 12:20:11.0357 5024 [ 2C1D443E14F376E8331F52F135DCA9EF ] FACAP C:\Windows\system32\DRIVERS\facap.sys 12:20:11.0366 5024 FACAP - ok 12:20:11.0399 5024 [ 53E30A6E86AA93C0FFC0BC0439E3E636 ] FAService C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe 12:20:11.0426 5024 FAService - ok 12:20:11.0433 5024 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 12:20:11.0459 5024 fastfat - ok 12:20:11.0470 5024 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 12:20:11.0483 5024 Fax - ok 12:20:11.0485 5024 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 12:20:11.0493 5024 fdc - ok 12:20:11.0496 5024 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 12:20:11.0518 5024 fdPHost - ok 12:20:11.0522 5024 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 12:20:11.0545 5024 FDResPub - ok 12:20:11.0548 5024 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 12:20:11.0556 5024 FileInfo - ok 12:20:11.0559 5024 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 12:20:11.0583 5024 Filetrace - ok 12:20:11.0586 5024 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 12:20:11.0593 5024 flpydisk - ok 12:20:11.0600 5024 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 12:20:11.0609 5024 FltMgr - ok 12:20:11.0624 5024 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 12:20:11.0642 5024 FontCache - ok 12:20:11.0646 5024 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 12:20:11.0655 5024 FontCache3.0.0.0 - ok 12:20:11.0658 5024 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 12:20:11.0667 5024 FsDepends - ok 12:20:11.0670 5024 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 12:20:11.0680 5024 Fs_Rec - ok 12:20:11.0688 5024 [ BD8B74DA98783BCDB410461E65868A60 ] Futuremark SystemInfo Service C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe 12:20:11.0700 5024 Futuremark SystemInfo Service - ok 12:20:11.0706 5024 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 12:20:11.0718 5024 fvevol - ok 12:20:11.0722 5024 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 12:20:11.0730 5024 gagp30kx - ok 12:20:11.0733 5024 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 12:20:11.0738 5024 GEARAspiWDM - ok 12:20:11.0749 5024 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 12:20:11.0776 5024 gpsvc - ok 12:20:11.0781 5024 [ 719C56738C03CE88F46EFF9D57AF7A0A ] HappyOSD C:\Program Files (x86)\OSD\OSD_Service.exe 12:20:11.0784 5024 HappyOSD ( UnsignedFile.Multi.Generic ) - warning 12:20:11.0784 5024 HappyOSD - detected UnsignedFile.Multi.Generic (1) 12:20:11.0787 5024 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 12:20:11.0797 5024 hcw85cir - ok 12:20:11.0801 5024 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 12:20:11.0812 5024 HDAudBus - ok 12:20:11.0816 5024 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 12:20:11.0825 5024 HidBatt - ok 12:20:11.0829 5024 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 12:20:11.0841 5024 HidBth - ok 12:20:11.0844 5024 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 12:20:11.0855 5024 HidIr - ok 12:20:11.0858 5024 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 12:20:11.0882 5024 hidserv - ok 12:20:11.0885 5024 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys 12:20:11.0893 5024 HidUsb - ok 12:20:11.0896 5024 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 12:20:11.0921 5024 hkmsvc - ok 12:20:11.0926 5024 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 12:20:11.0937 5024 HomeGroupListener - ok 12:20:11.0942 5024 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 12:20:11.0951 5024 HomeGroupProvider - ok 12:20:11.0954 5024 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 12:20:11.0963 5024 HpSAMD - ok 12:20:11.0972 5024 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 12:20:11.0999 5024 HTTP - ok 12:20:12.0003 5024 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 12:20:12.0010 5024 hwpolicy - ok 12:20:12.0013 5024 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 12:20:12.0021 5024 i8042prt - ok 12:20:12.0025 5024 [ 87A72502C8AC5E89B5A46FF6E874F5C5 ] IAMTVE C:\Windows\system32\DRIVERS\IAMTVE.sys 12:20:12.0034 5024 IAMTVE - ok 12:20:12.0038 5024 [ 5516F8E518A2F6A8755498F3E73957CF ] IAMTXPE C:\Windows\system32\DRIVERS\IAMTXPE.sys 12:20:12.0045 5024 IAMTXPE - ok 12:20:12.0054 5024 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 12:20:12.0064 5024 iaStor - ok 12:20:12.0071 5024 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe 12:20:12.0079 5024 IAStorDataMgrSvc - ok 12:20:12.0086 5024 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 12:20:12.0099 5024 iaStorV - ok 12:20:12.0112 5024 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 12:20:12.0127 5024 idsvc - ok 12:20:12.0131 5024 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 12:20:12.0140 5024 iirsp - ok 12:20:12.0152 5024 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 12:20:12.0182 5024 IKEEXT - ok 12:20:12.0188 5024 [ CB8E52C468D674324260D1102955D42E ] InstallFilterService C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe 12:20:12.0191 5024 InstallFilterService ( UnsignedFile.Multi.Generic ) - warning 12:20:12.0191 5024 InstallFilterService - detected UnsignedFile.Multi.Generic (1) 12:20:12.0194 5024 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 12:20:12.0202 5024 intelide - ok 12:20:12.0205 5024 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 12:20:12.0213 5024 intelppm - ok 12:20:12.0216 5024 [ 4B846898AA05BB1E1E88313C9174A9ED ] ioatdma C:\Windows\system32\Drivers\ioatdma.sys 12:20:12.0222 5024 ioatdma - ok 12:20:12.0225 5024 [ 7F4F67177E9FC600B2AFF6BB21DB6D04 ] ioatdma1 C:\Windows\System32\Drivers\qd162x64.sys 12:20:12.0231 5024 ioatdma1 - ok 12:20:12.0234 5024 [ 565DE53FB5E4CB14314E4F53848A025D ] ioatdma2 C:\Windows\System32\Drivers\qd262x64.sys 12:20:12.0240 5024 ioatdma2 - ok 12:20:12.0244 5024 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 12:20:12.0268 5024 IPBusEnum - ok 12:20:12.0271 5024 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 12:20:12.0295 5024 IpFilterDriver - ok 12:20:12.0299 5024 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 12:20:12.0309 5024 IPMIDRV - ok 12:20:12.0314 5024 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 12:20:12.0339 5024 IPNAT - ok 12:20:12.0352 5024 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 12:20:12.0365 5024 iPod Service - ok 12:20:12.0368 5024 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 12:20:12.0379 5024 IRENUM - ok 12:20:12.0382 5024 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 12:20:12.0390 5024 isapnp - ok 12:20:12.0395 5024 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 12:20:12.0406 5024 iScsiPrt - ok 12:20:12.0410 5024 [ 5122B80266E2DF2188466A93A31EE3B7 ] iSSetup C:\Windows\system32\DRIVERS\iSSetup.sys 12:20:12.0418 5024 iSSetup - ok 12:20:12.0421 5024 [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] itecir C:\Windows\system32\DRIVERS\itecir.sys 12:20:12.0427 5024 itecir - ok 12:20:12.0430 5024 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 12:20:12.0437 5024 kbdclass - ok 12:20:12.0439 5024 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 12:20:12.0447 5024 kbdhid - ok 12:20:12.0450 5024 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 12:20:12.0458 5024 KeyIso - ok 12:20:12.0461 5024 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 12:20:12.0470 5024 KSecDD - ok 12:20:12.0475 5024 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 12:20:12.0485 5024 KSecPkg - ok 12:20:12.0488 5024 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 12:20:12.0510 5024 ksthunk - ok 12:20:12.0517 5024 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 12:20:12.0544 5024 KtmRm - ok 12:20:12.0549 5024 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 12:20:12.0573 5024 LanmanServer - ok 12:20:12.0576 5024 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 12:20:12.0599 5024 LanmanWorkstation - ok 12:20:12.0603 5024 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 12:20:12.0626 5024 lltdio - ok 12:20:12.0632 5024 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 12:20:12.0658 5024 lltdsvc - ok 12:20:12.0661 5024 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 12:20:12.0683 5024 lmhosts - ok 12:20:12.0689 5024 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 12:20:12.0698 5024 LSI_FC - ok 12:20:12.0701 5024 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 12:20:12.0710 5024 LSI_SAS - ok 12:20:12.0713 5024 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 12:20:12.0722 5024 LSI_SAS2 - ok 12:20:12.0725 5024 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 12:20:12.0734 5024 LSI_SCSI - ok 12:20:12.0737 5024 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 12:20:12.0760 5024 luafv - ok 12:20:12.0766 5024 [ DBC08862A71459E74F7538B432C114CC ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 12:20:12.0773 5024 MBAMProtector - ok 12:20:12.0783 5024 [ BA400ED640BCA1EAE5C727AE17C10207 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 12:20:12.0797 5024 MBAMService - ok 12:20:12.0801 5024 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 12:20:12.0812 5024 Mcx2Svc - ok 12:20:12.0815 5024 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 12:20:12.0823 5024 megasas - ok 12:20:12.0829 5024 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 12:20:12.0840 5024 MegaSR - ok 12:20:12.0844 5024 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 12:20:12.0869 5024 MMCSS - ok 12:20:12.0872 5024 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 12:20:12.0898 5024 Modem - ok 12:20:12.0901 5024 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 12:20:12.0912 5024 monitor - ok 12:20:12.0915 5024 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys 12:20:12.0922 5024 mouclass - ok 12:20:12.0925 5024 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 12:20:12.0935 5024 mouhid - ok 12:20:12.0939 5024 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 12:20:12.0947 5024 mountmgr - ok 12:20:12.0954 5024 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 12:20:12.0965 5024 MozillaMaintenance - ok 12:20:12.0970 5024 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 12:20:12.0981 5024 mpio - ok 12:20:12.0984 5024 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 12:20:13.0009 5024 mpsdrv - ok 12:20:13.0014 5024 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 12:20:13.0028 5024 MRxDAV - ok 12:20:13.0032 5024 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 12:20:13.0042 5024 mrxsmb - ok 12:20:13.0048 5024 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 12:20:13.0057 5024 mrxsmb10 - ok 12:20:13.0061 5024 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 12:20:13.0071 5024 mrxsmb20 - ok 12:20:13.0074 5024 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 12:20:13.0083 5024 msahci - ok 12:20:13.0088 5024 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 12:20:13.0098 5024 msdsm - ok 12:20:13.0102 5024 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 12:20:13.0113 5024 MSDTC - ok 12:20:13.0118 5024 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 12:20:13.0140 5024 Msfs - ok 12:20:13.0143 5024 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 12:20:13.0169 5024 mshidkmdf - ok 12:20:13.0171 5024 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 12:20:13.0180 5024 msisadrv - ok 12:20:13.0185 5024 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 12:20:13.0212 5024 MSiSCSI - ok 12:20:13.0214 5024 msiserver - ok 12:20:13.0218 5024 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 12:20:13.0242 5024 MSKSSRV - ok 12:20:13.0245 5024 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 12:20:13.0268 5024 MSPCLOCK - ok 12:20:13.0271 5024 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 12:20:13.0296 5024 MSPQM - ok 12:20:13.0302 5024 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 12:20:13.0314 5024 MsRPC - ok 12:20:13.0319 5024 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 12:20:13.0326 5024 mssmbios - ok 12:20:13.0328 5024 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 12:20:13.0351 5024 MSTEE - ok 12:20:13.0354 5024 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 12:20:13.0364 5024 MTConfig - ok 12:20:13.0366 5024 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 12:20:13.0375 5024 Mup - ok 12:20:13.0382 5024 [ D285D0539016BE299A55FF997B44DA33 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe 12:20:13.0391 5024 MyWiFiDHCPDNS - ok 12:20:13.0400 5024 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 12:20:13.0427 5024 napagent - ok 12:20:13.0433 5024 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 12:20:13.0448 5024 NativeWifiP - ok 12:20:13.0463 5024 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys 12:20:13.0481 5024 NDIS - ok 12:20:13.0484 5024 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 12:20:13.0508 5024 NdisCap - ok 12:20:13.0511 5024 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 12:20:13.0535 5024 NdisTapi - ok 12:20:13.0539 5024 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 12:20:13.0563 5024 Ndisuio - ok 12:20:13.0567 5024 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 12:20:13.0592 5024 NdisWan - ok 12:20:13.0595 5024 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 12:20:13.0618 5024 NDProxy - ok 12:20:13.0633 5024 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe 12:20:13.0646 5024 Nero BackItUp Scheduler 4.0 - ok 12:20:13.0650 5024 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys 12:20:13.0661 5024 Netaapl - ok 12:20:13.0663 5024 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 12:20:13.0688 5024 NetBIOS - ok 12:20:13.0693 5024 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 12:20:13.0717 5024 NetBT - ok 12:20:13.0719 5024 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 12:20:13.0727 5024 Netlogon - ok 12:20:13.0734 5024 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 12:20:13.0761 5024 Netman - ok 12:20:13.0769 5024 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 12:20:13.0797 5024 netprofm - ok 12:20:13.0800 5024 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 12:20:13.0808 5024 NetTcpPortSharing - ok 12:20:13.0866 5024 [ 4D85A450EDEF10C38882182753A49AAE ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys 12:20:13.0924 5024 NETw5s64 - ok 12:20:13.0929 5024 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 12:20:13.0937 5024 nfrd960 - ok 12:20:13.0943 5024 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll 12:20:13.0969 5024 NlaSvc - ok 12:20:13.0972 5024 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 12:20:13.0996 5024 Npfs - ok 12:20:13.0999 5024 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 12:20:14.0024 5024 nsi - ok 12:20:14.0027 5024 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 12:20:14.0053 5024 nsiproxy - ok 12:20:14.0077 5024 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 12:20:14.0100 5024 Ntfs - ok 12:20:14.0103 5024 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 12:20:14.0126 5024 Null - ok 12:20:14.0224 5024 [ 0EB204639119370F5F8F2871FBF4E14B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 12:20:14.0362 5024 nvlddmkm - ok 12:20:14.0371 5024 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 12:20:14.0380 5024 nvraid - ok 12:20:14.0385 5024 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 12:20:14.0395 5024 nvstor - ok 12:20:14.0407 5024 [ 32FF8EE6DCEE5C0CB91FF892FB1CA364 ] nvsvc C:\Windows\system32\nvvsvc.exe 12:20:14.0423 5024 nvsvc - ok 12:20:14.0428 5024 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 12:20:14.0438 5024 nv_agp - ok 12:20:14.0447 5024 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 12:20:14.0458 5024 odserv - ok 12:20:14.0461 5024 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 12:20:14.0473 5024 ohci1394 - ok 12:20:14.0478 5024 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 12:20:14.0487 5024 ose - ok 12:20:14.0494 5024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 12:20:14.0507 5024 p2pimsvc - ok 12:20:14.0514 5024 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 12:20:14.0525 5024 p2psvc - ok 12:20:14.0530 5024 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 12:20:14.0540 5024 Parport - ok 12:20:14.0544 5024 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 12:20:14.0554 5024 partmgr - ok 12:20:14.0559 5024 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 12:20:14.0573 5024 PcaSvc - ok 12:20:14.0578 5024 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 12:20:14.0588 5024 pci - ok 12:20:14.0592 5024 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 12:20:14.0600 5024 pciide - ok 12:20:14.0605 5024 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 12:20:14.0616 5024 pcmcia - ok 12:20:14.0619 5024 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 12:20:14.0628 5024 pcw - ok 12:20:14.0637 5024 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 12:20:14.0664 5024 PEAUTH - ok 12:20:14.0683 5024 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 12:20:14.0703 5024 PeerDistSvc - ok 12:20:14.0726 5024 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 12:20:14.0738 5024 PerfHost - ok 12:20:14.0758 5024 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 12:20:14.0794 5024 pla - ok 12:20:14.0801 5024 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 12:20:14.0814 5024 PlugPlay - ok 12:20:14.0817 5024 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 12:20:14.0827 5024 PNRPAutoReg - ok 12:20:14.0830 5024 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 12:20:14.0840 5024 PNRPsvc - ok 12:20:14.0848 5024 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 12:20:14.0875 5024 PolicyAgent - ok 12:20:14.0881 5024 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 12:20:14.0905 5024 Power - ok 12:20:14.0909 5024 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 12:20:14.0932 5024 PptpMiniport - ok 12:20:14.0935 5024 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 12:20:14.0945 5024 Processor - ok 12:20:14.0950 5024 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 12:20:14.0960 5024 ProfSvc - ok 12:20:14.0964 5024 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 12:20:14.0972 5024 ProtectedStorage - ok 12:20:14.0977 5024 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 12:20:15.0000 5024 Psched - ok 12:20:15.0018 5024 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 12:20:15.0041 5024 ql2300 - ok 12:20:15.0045 5024 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 12:20:15.0058 5024 ql40xx - ok 12:20:15.0063 5024 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 12:20:15.0083 5024 QWAVE - ok 12:20:15.0087 5024 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 12:20:15.0103 5024 QWAVEdrv - ok 12:20:15.0106 5024 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 12:20:15.0133 5024 RasAcd - ok 12:20:15.0136 5024 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 12:20:15.0159 5024 RasAgileVpn - ok 12:20:15.0163 5024 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 12:20:15.0188 5024 RasAuto - ok 12:20:15.0192 5024 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 12:20:15.0216 5024 Rasl2tp - ok 12:20:15.0223 5024 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 12:20:15.0249 5024 RasMan - ok 12:20:15.0253 5024 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 12:20:15.0277 5024 RasPppoe - ok 12:20:15.0281 5024 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 12:20:15.0305 5024 RasSstp - ok 12:20:15.0311 5024 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 12:20:15.0336 5024 rdbss - ok 12:20:15.0340 5024 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 12:20:15.0350 5024 rdpbus - ok 12:20:15.0353 5024 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 12:20:15.0376 5024 RDPCDD - ok 12:20:15.0381 5024 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 12:20:15.0393 5024 RDPDR - ok 12:20:15.0396 5024 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 12:20:15.0419 5024 RDPENCDD - ok 12:20:15.0423 5024 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 12:20:15.0446 5024 RDPREFMP - ok 12:20:15.0453 5024 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 12:20:15.0465 5024 RdpVideoMiniport - ok 12:20:15.0471 5024 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 12:20:15.0482 5024 RDPWD - ok 12:20:15.0487 5024 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 12:20:15.0497 5024 rdyboost - ok 12:20:15.0510 5024 [ 3B71B5B91E7DCA93585D5A86C897ADC4 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 12:20:15.0522 5024 RegSrvc - ok 12:20:15.0527 5024 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 12:20:15.0553 5024 RemoteAccess - ok 12:20:15.0558 5024 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 12:20:15.0583 5024 RemoteRegistry - ok 12:20:15.0588 5024 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 12:20:15.0598 5024 RFCOMM - ok 12:20:15.0605 5024 [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E ] RichVideo C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe 12:20:15.0611 5024 RichVideo - ok 12:20:15.0615 5024 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys 12:20:15.0624 5024 rimmptsk - ok 12:20:15.0627 5024 [ E20B1907FC72A3664ECE21E3C20FC63D ] rimspci C:\Windows\system32\DRIVERS\rimspe64.sys 12:20:15.0635 5024 rimspci - ok 12:20:15.0638 5024 [ 67F50C31713106FD1B0F286F86AA2B2E ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys 12:20:15.0647 5024 rimsptsk - ok 12:20:15.0650 5024 [ A6DA2B0C8F5BB3F9F5423CFF8D6A02D9 ] risdpcie C:\Windows\system32\DRIVERS\risdpe64.sys 12:20:15.0657 5024 risdpcie - ok 12:20:15.0660 5024 [ 4D7EF3D46346EC4C58784DB964B365DE ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys 12:20:15.0669 5024 rismxdp - ok 12:20:15.0673 5024 [ 6A1CD4674505E6791390A1AB71DA1FBE ] rixdpcie C:\Windows\system32\DRIVERS\rixdpe64.sys 12:20:15.0681 5024 rixdpcie - ok 12:20:15.0685 5024 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 12:20:15.0709 5024 RpcEptMapper - ok 12:20:15.0712 5024 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 12:20:15.0721 5024 RpcLocator - ok 12:20:15.0728 5024 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 12:20:15.0755 5024 RpcSs - ok 12:20:15.0759 5024 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 12:20:15.0781 5024 rspndr - ok 12:20:15.0784 5024 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 12:20:15.0794 5024 s3cap - ok 12:20:15.0796 5024 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 12:20:15.0803 5024 SamSs - ok 12:20:15.0806 5024 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 12:20:15.0815 5024 sbp2port - ok 12:20:15.0821 5024 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 12:20:15.0846 5024 SCardSvr - ok 12:20:15.0850 5024 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 12:20:15.0874 5024 scfilter - ok 12:20:15.0888 5024 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 12:20:15.0919 5024 Schedule - ok 12:20:15.0924 5024 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 12:20:15.0946 5024 SCPolicySvc - ok 12:20:15.0951 5024 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 12:20:15.0962 5024 SDRSVC - ok 12:20:15.0965 5024 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 12:20:15.0988 5024 secdrv - ok 12:20:15.0991 5024 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 12:20:16.0012 5024 seclogon - ok 12:20:16.0015 5024 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 12:20:16.0041 5024 SENS - ok 12:20:16.0046 5024 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 12:20:16.0057 5024 SensrSvc - ok 12:20:16.0066 5024 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 12:20:16.0078 5024 Serenum - ok 12:20:16.0083 5024 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 12:20:16.0099 5024 Serial - ok 12:20:16.0104 5024 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 12:20:16.0118 5024 sermouse - ok 12:20:16.0131 5024 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 12:20:16.0164 5024 SessionEnv - ok 12:20:16.0168 5024 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 12:20:16.0181 5024 sffdisk - ok 12:20:16.0184 5024 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 12:20:16.0196 5024 sffp_mmc - ok 12:20:16.0200 5024 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 12:20:16.0212 5024 sffp_sd - ok 12:20:16.0216 5024 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 12:20:16.0227 5024 sfloppy - ok 12:20:16.0235 5024 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 12:20:16.0266 5024 ShellHWDetection - ok 12:20:16.0269 5024 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 12:20:16.0279 5024 SiSRaid2 - ok 12:20:16.0284 5024 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 12:20:16.0294 5024 SiSRaid4 - ok 12:20:16.0297 5024 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 12:20:16.0330 5024 Smb - ok 12:20:16.0336 5024 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 12:20:16.0348 5024 SNMPTRAP - ok 12:20:16.0352 5024 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 12:20:16.0361 5024 spldr - ok 12:20:16.0371 5024 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe 12:20:16.0405 5024 Spooler - ok 12:20:16.0447 5024 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 12:20:16.0501 5024 sppsvc - ok 12:20:16.0507 5024 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 12:20:16.0539 5024 sppuinotify - ok 12:20:16.0548 5024 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 12:20:16.0561 5024 srv - ok 12:20:16.0570 5024 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 12:20:16.0582 5024 srv2 - ok 12:20:16.0588 5024 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 12:20:16.0599 5024 srvnet - ok 12:20:16.0604 5024 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 12:20:16.0635 5024 SSDPSRV - ok 12:20:16.0639 5024 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 12:20:16.0667 5024 SstpSvc - ok 12:20:16.0683 5024 [ DAE7A8A33DF0635E6299640395037765 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\STacSV64.exe 12:20:16.0693 5024 STacSV - ok 12:20:16.0696 5024 [ 3D69F5F3BEB8AA28D7F46F5548B8D6D7 ] stdflt C:\Windows\system32\DRIVERS\stdflt.sys 12:20:16.0703 5024 stdflt - ok 12:20:16.0706 5024 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 12:20:16.0714 5024 stexstor - ok 12:20:16.0722 5024 [ 04906A6B1DD17D38795E28AF4F4392F9 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 12:20:16.0733 5024 STHDA - ok 12:20:16.0743 5024 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 12:20:16.0760 5024 stisvc - ok 12:20:16.0764 5024 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 12:20:16.0772 5024 storflt - ok 12:20:16.0775 5024 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 12:20:16.0790 5024 storvsc - ok 12:20:16.0793 5024 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 12:20:16.0800 5024 swenum - ok 12:20:16.0808 5024 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 12:20:16.0836 5024 swprv - ok 12:20:16.0840 5024 Synth3dVsc - ok 12:20:16.0846 5024 [ 5C9BB68B1F4BBCB85B4F6E675FC523A0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 12:20:16.0854 5024 SynTP - ok 12:20:16.0876 5024 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 12:20:16.0901 5024 SysMain - ok 12:20:16.0905 5024 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 12:20:16.0919 5024 TabletInputService - ok 12:20:16.0926 5024 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 12:20:16.0951 5024 TapiSrv - ok 12:20:16.0954 5024 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 12:20:16.0979 5024 TBS - ok 12:20:17.0003 5024 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 12:20:17.0029 5024 Tcpip - ok 12:20:17.0040 5024 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 12:20:17.0065 5024 TCPIP6 - ok 12:20:17.0070 5024 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 12:20:17.0095 5024 tcpipreg - ok 12:20:17.0099 5024 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 12:20:17.0108 5024 TDPIPE - ok 12:20:17.0111 5024 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 12:20:17.0121 5024 TDTCP - ok 12:20:17.0124 5024 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 12:20:17.0146 5024 tdx - ok 12:20:17.0150 5024 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 12:20:17.0157 5024 TermDD - ok 12:20:17.0168 5024 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 12:20:17.0197 5024 TermService - ok 12:20:17.0200 5024 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 12:20:17.0213 5024 Themes - ok 12:20:17.0218 5024 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 12:20:17.0241 5024 THREADORDER - ok 12:20:17.0245 5024 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 12:20:17.0269 5024 TrkWks - ok 12:20:17.0274 5024 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 12:20:17.0301 5024 TrustedInstaller - ok 12:20:17.0305 5024 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 12:20:17.0329 5024 tssecsrv - ok 12:20:17.0333 5024 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 12:20:17.0344 5024 TsUsbFlt - ok 12:20:17.0347 5024 tsusbhub - ok 12:20:17.0351 5024 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 12:20:17.0374 5024 tunnel - ok 12:20:17.0378 5024 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 12:20:17.0387 5024 uagp35 - ok 12:20:17.0394 5024 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 12:20:17.0420 5024 udfs - ok 12:20:17.0426 5024 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 12:20:17.0435 5024 UI0Detect - ok 12:20:17.0438 5024 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 12:20:17.0446 5024 uliagpkx - ok 12:20:17.0449 5024 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 12:20:17.0459 5024 umbus - ok 12:20:17.0462 5024 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 12:20:17.0474 5024 UmPass - ok 12:20:17.0480 5024 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 12:20:17.0491 5024 UmRdpService - ok 12:20:17.0498 5024 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 12:20:17.0524 5024 upnphost - ok 12:20:17.0528 5024 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 12:20:17.0538 5024 USBAAPL64 - ok 12:20:17.0543 5024 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 12:20:17.0556 5024 usbaudio - ok 12:20:17.0560 5024 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 12:20:17.0569 5024 usbccgp - ok 12:20:17.0573 5024 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 12:20:17.0585 5024 usbcir - ok 12:20:17.0589 5024 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 12:20:17.0598 5024 usbehci - ok 12:20:17.0604 5024 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 12:20:17.0615 5024 usbhub - ok 12:20:17.0619 5024 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 12:20:17.0629 5024 usbohci - ok 12:20:17.0632 5024 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 12:20:17.0645 5024 usbprint - ok 12:20:17.0648 5024 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 12:20:17.0660 5024 USBSTOR - ok 12:20:17.0663 5024 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 12:20:17.0674 5024 usbuhci - ok 12:20:17.0679 5024 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 12:20:17.0690 5024 usbvideo - ok 12:20:17.0693 5024 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 12:20:17.0717 5024 UxSms - ok 12:20:17.0720 5024 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 12:20:17.0729 5024 VaultSvc - ok 12:20:17.0732 5024 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 12:20:17.0740 5024 vdrvroot - ok 12:20:17.0750 5024 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 12:20:17.0777 5024 vds - ok 12:20:17.0781 5024 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 12:20:17.0792 5024 vga - ok 12:20:17.0794 5024 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 12:20:17.0819 5024 VgaSave - ok 12:20:17.0821 5024 VGPU - ok 12:20:17.0826 5024 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 12:20:17.0836 5024 vhdmp - ok 12:20:17.0839 5024 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 12:20:17.0846 5024 viaide - ok 12:20:17.0851 5024 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys 12:20:17.0861 5024 vmbus - ok 12:20:17.0863 5024 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 12:20:17.0872 5024 VMBusHID - ok 12:20:17.0875 5024 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 12:20:17.0884 5024 volmgr - ok 12:20:17.0890 5024 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 12:20:17.0902 5024 volmgrx - ok 12:20:17.0908 5024 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 12:20:17.0918 5024 volsnap - ok 12:20:17.0924 5024 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 12:20:17.0935 5024 vsmraid - ok 12:20:17.0954 5024 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 12:20:17.0989 5024 VSS - ok 12:20:17.0993 5024 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 12:20:18.0004 5024 vwifibus - ok 12:20:18.0006 5024 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 12:20:18.0019 5024 vwififlt - ok 12:20:18.0021 5024 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 12:20:18.0034 5024 vwifimp - ok 12:20:18.0040 5024 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 12:20:18.0067 5024 W32Time - ok 12:20:18.0071 5024 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 12:20:18.0080 5024 WacomPen - ok 12:20:18.0083 5024 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 12:20:18.0106 5024 WANARP - ok 12:20:18.0109 5024 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 12:20:18.0130 5024 Wanarpv6 - ok 12:20:18.0147 5024 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 12:20:18.0167 5024 WatAdminSvc - ok 12:20:18.0186 5024 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 12:20:18.0207 5024 wbengine - ok 12:20:18.0213 5024 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 12:20:18.0228 5024 WbioSrvc - ok 12:20:18.0235 5024 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 12:20:18.0251 5024 wcncsvc - ok 12:20:18.0254 5024 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 12:20:18.0265 5024 WcsPlugInService - ok 12:20:18.0268 5024 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 12:20:18.0276 5024 Wd - ok 12:20:18.0285 5024 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 12:20:18.0299 5024 Wdf01000 - ok 12:20:18.0302 5024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 12:20:18.0344 5024 WdiServiceHost - ok 12:20:18.0347 5024 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 12:20:18.0360 5024 WdiSystemHost - ok 12:20:18.0365 5024 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 12:20:18.0381 5024 WebClient - ok 12:20:18.0387 5024 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 12:20:18.0415 5024 Wecsvc - ok 12:20:18.0419 5024 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 12:20:18.0445 5024 wercplsupport - ok 12:20:18.0448 5024 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 12:20:18.0473 5024 WerSvc - ok 12:20:18.0477 5024 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 12:20:18.0500 5024 WfpLwf - ok 12:20:18.0504 5024 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 12:20:18.0513 5024 WimFltr - ok 12:20:18.0516 5024 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 12:20:18.0524 5024 WIMMount - ok 12:20:18.0531 5024 [ 8258726D076C8FFF994F468712DDFBAB ] WindowBlinds C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe 12:20:18.0539 5024 WindowBlinds - ok 12:20:18.0542 5024 WinHttpAutoProxySvc - ok 12:20:18.0551 5024 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 12:20:18.0576 5024 Winmgmt - ok 12:20:18.0599 5024 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 12:20:18.0636 5024 WinRM - ok 12:20:18.0643 5024 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 12:20:18.0655 5024 WinUsb - ok 12:20:18.0667 5024 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 12:20:18.0685 5024 Wlansvc - ok 12:20:18.0688 5024 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 12:20:18.0696 5024 WmiAcpi - ok 12:20:18.0702 5024 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 12:20:18.0713 5024 wmiApSrv - ok 12:20:18.0715 5024 WMPNetworkSvc - ok 12:20:18.0718 5024 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 12:20:18.0727 5024 WPCSvc - ok 12:20:18.0730 5024 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 12:20:18.0740 5024 WPDBusEnum - ok 12:20:18.0743 5024 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 12:20:18.0768 5024 ws2ifsl - ok 12:20:18.0773 5024 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys 12:20:18.0786 5024 WSDPrintDevice - ok 12:20:18.0788 5024 WSearch - ok 12:20:18.0793 5024 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 12:20:18.0817 5024 WudfPf - ok 12:20:18.0823 5024 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 12:20:18.0849 5024 WUDFRd - ok 12:20:18.0853 5024 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 12:20:18.0876 5024 wudfsvc - ok 12:20:18.0882 5024 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 12:20:18.0898 5024 WwanSvc - ok 12:20:18.0909 5024 [ 74983ADDCA2D9618512C088D856D6615 ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl 12:20:18.0915 5024 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok 12:20:18.0923 5024 ================ Scan global =============================== 12:20:18.0926 5024 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 12:20:18.0931 5024 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 12:20:18.0936 5024 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 12:20:18.0939 5024 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 12:20:18.0945 5024 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe 12:20:18.0948 5024 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected 12:20:18.0948 5024 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0) 12:20:18.0948 5024 ================ Scan MBR ================================== 12:20:18.0950 5024 [ D7AD5AA31A559120C3BA48FD0A1B1636 ] \Device\Harddisk0\DR0 12:20:18.0950 5024 Suspicious mbr (Forged): \Device\Harddisk0\DR0 12:20:18.0951 5024 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected 12:20:18.0951 5024 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0) 12:20:18.0967 5024 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 12:20:18.0967 5024 \Device\Harddisk0\DR0 - detected TDSS File System (1) 12:20:18.0967 5024 ================ Scan VBR ================================== 12:20:18.0969 5024 [ 87F7FAA6CD5D69FBBAF7C321AD0F3531 ] \Device\Harddisk0\DR0\Partition1 12:20:18.0970 5024 \Device\Harddisk0\DR0\Partition1 - ok 12:20:18.0972 5024 [ C6BE6DDFFCA5160A3DA5CA489C4E6F49 ] \Device\Harddisk0\DR0\Partition2 12:20:18.0973 5024 \Device\Harddisk0\DR0\Partition2 - ok 12:20:18.0974 5024 ================ Scan active images ======================== 12:20:18.0975 5024 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys 12:20:18.0975 5024 C:\Windows\System32\drivers\crashdmp.sys - ok 12:20:18.0977 5024 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys 12:20:18.0977 5024 C:\Windows\System32\drivers\dumpfve.sys - ok 12:20:18.0979 5024 [ ABBF174CB394F5C437410A788B7E404A ] C:\Windows\System32\drivers\iaStor.sys 12:20:18.0979 5024 C:\Windows\System32\drivers\iaStor.sys - ok 12:20:19.0043 5024 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys 12:20:19.0043 5024 C:\Windows\System32\drivers\beep.sys - ok 12:20:19.0045 5024 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys 12:20:19.0045 5024 C:\Windows\System32\drivers\cdrom.sys - ok 12:20:19.0047 5024 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys 12:20:19.0047 5024 C:\Windows\System32\drivers\null.sys - ok 12:20:19.0049 5024 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys 12:20:19.0049 5024 C:\Windows\System32\drivers\RDPCDD.sys - ok 12:20:19.0052 5024 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys 12:20:19.0052 5024 C:\Windows\System32\drivers\vga.sys - ok 12:20:19.0054 5024 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys 12:20:19.0054 5024 C:\Windows\System32\drivers\videoprt.sys - ok 12:20:19.0056 5024 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys 12:20:19.0056 5024 C:\Windows\System32\drivers\watchdog.sys - ok 12:20:19.0058 5024 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys 12:20:19.0058 5024 C:\Windows\System32\drivers\RDPENCDD.sys - ok 12:20:19.0061 5024 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys 12:20:19.0061 5024 C:\Windows\System32\drivers\RDPREFMP.sys - ok 12:20:19.0063 5024 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys 12:20:19.0063 5024 C:\Windows\System32\drivers\msfs.sys - ok 12:20:19.0065 5024 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys 12:20:19.0065 5024 C:\Windows\System32\drivers\npfs.sys - ok 12:20:19.0067 5024 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys 12:20:19.0067 5024 C:\Windows\System32\drivers\tdi.sys - ok 12:20:19.0070 5024 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys 12:20:19.0070 5024 C:\Windows\System32\drivers\tdx.sys - ok 12:20:19.0072 5024 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys 12:20:19.0072 5024 C:\Windows\System32\drivers\afd.sys - ok 12:20:19.0075 5024 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys 12:20:19.0075 5024 C:\Windows\System32\drivers\netbt.sys - ok 12:20:19.0077 5024 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys 12:20:19.0077 5024 C:\Windows\System32\drivers\pacer.sys - ok 12:20:19.0079 5024 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys 12:20:19.0079 5024 C:\Windows\System32\drivers\wfplwf.sys - ok 12:20:19.0081 5024 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys 12:20:19.0081 5024 C:\Windows\System32\drivers\netbios.sys - ok 12:20:19.0083 5024 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys 12:20:19.0083 5024 C:\Windows\System32\drivers\termdd.sys - ok 12:20:19.0086 5024 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys 12:20:19.0086 5024 C:\Windows\System32\drivers\vwififlt.sys - ok 12:20:19.0088 5024 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys 12:20:19.0088 5024 C:\Windows\System32\drivers\wanarp.sys - ok 12:20:19.0090 5024 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys 12:20:19.0090 5024 C:\Windows\System32\drivers\mssmbios.sys - ok 12:20:19.0093 5024 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys 12:20:19.0093 5024 C:\Windows\System32\drivers\nsiproxy.sys - ok 12:20:19.0095 5024 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys 12:20:19.0095 5024 C:\Windows\System32\drivers\rdbss.sys - ok 12:20:19.0097 5024 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys 12:20:19.0097 5024 C:\Windows\System32\drivers\discache.sys - ok 12:20:19.0099 5024 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys 12:20:19.0099 5024 C:\Windows\System32\drivers\blbdrive.sys - ok 12:20:19.0102 5024 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys 12:20:19.0102 5024 C:\Windows\System32\drivers\csc.sys - ok 12:20:19.0104 5024 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys 12:20:19.0104 5024 C:\Windows\System32\drivers\dfsc.sys - ok 12:20:19.0106 5024 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys 12:20:19.0106 5024 C:\Windows\System32\drivers\tunnel.sys - ok 12:20:19.0109 5024 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys 12:20:19.0109 5024 C:\Windows\System32\drivers\wmiacpi.sys - ok 12:20:19.0111 5024 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll 12:20:19.0111 5024 C:\Windows\System32\ntdll.dll - ok 12:20:19.0113 5024 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe 12:20:19.0113 5024 C:\Windows\System32\smss.exe - ok 12:20:19.0115 5024 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe 12:20:19.0115 5024 C:\Windows\System32\autochk.exe - ok 12:20:19.0117 5024 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll 12:20:19.0117 5024 C:\Windows\System32\user32.dll - ok 12:20:19.0120 5024 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll 12:20:19.0120 5024 C:\Windows\System32\rpcrt4.dll - ok 12:20:19.0122 5024 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll 12:20:19.0122 5024 C:\Windows\System32\lpk.dll - ok 12:20:19.0124 5024 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll 12:20:19.0124 5024 C:\Windows\System32\psapi.dll - ok 12:20:19.0126 5024 [ 78CA24E3B51C624007C1B8A7B8D6C9AF ] C:\Windows\System32\iertutil.dll 12:20:19.0126 5024 C:\Windows\System32\iertutil.dll - ok 12:20:19.0128 5024 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll 12:20:19.0128 5024 C:\Windows\System32\Wldap32.dll - ok 12:20:19.0131 5024 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll 12:20:19.0131 5024 C:\Windows\System32\oleaut32.dll - ok 12:20:19.0133 5024 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll 12:20:19.0133 5024 C:\Windows\System32\msvcrt.dll - ok 12:20:19.0135 5024 [ 0EB204639119370F5F8F2871FBF4E14B ] C:\Windows\System32\drivers\nvlddmkm.sys 12:20:19.0135 5024 C:\Windows\System32\drivers\nvlddmkm.sys - ok 12:20:19.0137 5024 [ E8FD953D416772794408A68CC20B247D ] C:\Windows\System32\urlmon.dll 12:20:19.0137 5024 C:\Windows\System32\urlmon.dll - ok 12:20:19.0140 5024 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll 12:20:19.0140 5024 C:\Windows\System32\msctf.dll - ok 12:20:19.0142 5024 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll 12:20:19.0142 5024 C:\Windows\System32\clbcatq.dll - ok 12:20:19.0144 5024 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll 12:20:19.0144 5024 C:\Windows\System32\kernel32.dll - ok 12:20:19.0146 5024 [ 4190337CE3C7BB45AA83CFD6773A2ED5 ] C:\Windows\System32\drivers\nvBridge.kmd 12:20:19.0146 5024 C:\Windows\System32\drivers\nvBridge.kmd - ok 12:20:19.0148 5024 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll 12:20:19.0148 5024 C:\Windows\System32\shlwapi.dll - ok 12:20:19.0151 5024 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys 12:20:19.0151 5024 C:\Windows\System32\drivers\dxgkrnl.sys - ok 12:20:19.0153 5024 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys 12:20:19.0153 5024 C:\Windows\System32\drivers\dxgmms1.sys - ok 12:20:19.0155 5024 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll 12:20:19.0155 5024 C:\Windows\System32\setupapi.dll - ok
  20. Thank you very much for the quick reply! I followed the instructions you gave me and I ran into a problem. After doing the TDSSKiller scan I noticed that I have three text files saved. Would you like for me to paste all three of those files along with the MWB report and DDS log?
  21. Hello and good day. I've been using malwarebyes for several years now and I never had a major problem until just a few weeks ago. My laptop, which I mostly use for work, was very badly infected with the Dropper.BCMiner trojan and no matter how many times MWB picked it up it couldn't delete it. Then after doing a system restore the BCMiner trojan disappeared and instead was replaced with some other infections, which I couldn't get rid of either. However the other day I noticed that my google searches were being redirected again and after rescanning my computer I saw that the same trojan came back. I really need to get my laptop cleaned up because I'm unable to do my work properly since the website I use on a daily basis is blocked and I no longer feel safe putting sensitive information on my computer. Any help is very greatly appreciated! DDS report: . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31 Run by Alex at 10:49:37 on 2012-08-21 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.8180.5512 [GMT -4:00] . SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\STacSV64.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\Stardock\MyColors\WBVista.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Windows\System32\spoolsv.exe C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\IDT\WDM\sttray64.exe C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe C:\Program Files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\Shared Files\brs.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Intel\WiFi\bin\EvtEng.exe C:\Program Files (x86)\OSD\OSD_Service.exe C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Program Files (x86)\OSD\OSD.exe C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\UI0Detect.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\svchost.exe -k bthsvcs c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe c:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe C:\Program Files\Alienware\Command Center\AlienFXHook32Mngr.exe C:\Windows\system32\conhost.exe C:\Program Files\Alienware\Command Center\AlienFXHook64Mngr.exe C:\Windows\system32\conhost.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe -netsvcs C:\Windows\system32\conhost.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe "C:\Windows\SysWOW64\svchost.exe" -k LocalServiceDns C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.alienware.com/ uDefault_Page_URL = hxxp://www.alienware.com/ uInternet Settings,ProxyOverride = *.local mWinlogon: Userinit=userinit.exe, BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO: SSOIEAddonBHO Class: {da5bce70-d057-4d63-943d-5f3927ec59f1} - C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll mRun: [FATrayAlert] C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe mRun: [FAStartup] mRun: [OSD_LAUNCH] c:\Program Files (x86)\OSD\Launch_OSD.exe mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun: [uCam_Menu] "c:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" mRun: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [brStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe Autorun mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\MyColors\SDDelayedLaunch.exe mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL LSP: mswsock.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab TCP: DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 TCP: Interfaces\{2809EF04-5AC3-45E3-93F2-E4518191A887} : DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4} : DhcpNameServer = 74.40.74.40 74.40.74.41 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4}\34963736F61363337303 : DhcpNameServer = 184.16.4.22 184.16.33.54 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4}\65562796A7F6E602D496649623230303029334537302355636572756 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3FF5AA76-5CD9-48FB-8C07-3C4872D856D4}\E4544574541425 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{54145D2B-DF4A-4386-B153-681EC98CCC0E} : DhcpNameServer = 66.174.71.33 66.174.95.44 Notify: FastAccess - C:\Program Files\Alienware\Command Center\AlienSense\FALogNot.dll LSA: Notification Packages = scecli FAPassSync BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO-X64: AcroIEHelperStub - No File BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO-X64: SSOIEAddonBHO Class: {DA5BCE70-D057-4D63-943D-5F3927EC59F1} - C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll BHO-X64: SSOIEAddonBHO - No File BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll mRun-x64: [FATrayAlert] C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe mRun-x64: [FAStartup] mRun-x64: [OSD_LAUNCH] c:\Program Files (x86)\OSD\Launch_OSD.exe mRun-x64: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun-x64: [uCam_Menu] "c:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" mRun-x64: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun-x64: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun-x64: [brStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe Autorun mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\efx3qdcb.default\ FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll . ============= SERVICES / DRIVERS =============== . R0 ioatdma;Intel® QuickData Technology device;C:\Windows\system32\Drivers\ioatdma.sys --> C:\Windows\system32\Drivers\ioatdma.sys [?] R0 stdflt;Disk Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdflt.sys --> C:\Windows\system32\DRIVERS\stdflt.sys [?] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/12/28 21:05:04];C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-6-28 146928] R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ec0230c23ac63514\AESTSr64.exe [2010-10-27 89600] R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?] R2 FAService;FAService;C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe [2010-4-4 2409800] R2 HappyOSD;HappyOSD;C:\Program Files (x86)\OSD\OSD_Service.exe [2009-12-30 16384] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-12-16 13336] R2 InstallFilterService;FF Install Filter Service;C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe [2010-12-16 59904] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-7-19 654408] R2 rimspci;rimspci;C:\Windows\system32\DRIVERS\rimspe64.sys --> C:\Windows\system32\DRIVERS\rimspe64.sys [?] R2 risdpcie;risdpcie;C:\Windows\system32\DRIVERS\risdpe64.sys --> C:\Windows\system32\DRIVERS\risdpe64.sys [?] R2 rixdpcie;rixdpcie;C:\Windows\system32\DRIVERS\rixdpe64.sys --> C:\Windows\system32\DRIVERS\rixdpe64.sys [?] R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Acceler.sys --> C:\Windows\system32\DRIVERS\Acceler.sys [?] R3 btusbflt;Bluetooth USB Filter;C:\Windows\system32\drivers\btusbflt.sys --> C:\Windows\system32\drivers\btusbflt.sys [?] R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys --> C:\Windows\system32\DRIVERS\btwl2cap.sys [?] R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;C:\Windows\system32\DRIVERS\e1k62x64.sys --> C:\Windows\system32\DRIVERS\e1k62x64.sys [?] R3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys --> C:\Windows\system32\DRIVERS\itecir.sys [?] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETw5s64.sys --> C:\Windows\system32\DRIVERS\NETw5s64.sys [?] S2 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2010-5-21 14648] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-25 257224] S3 bulkadi;Razer Megalodon DFU;C:\Windows\system32\DRIVERS\bulkrazer_x64.sys --> C:\Windows\system32\DRIVERS\bulkrazer_x64.sys [?] S3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver;\??\C:\Windows\system32\drivers\BVRPMPR5a64.SYS --> C:\Windows\system32\drivers\BVRPMPR5a64.SYS [?] S3 FACAP;facap, FastAccess Video Capture;C:\Windows\system32\DRIVERS\facap.sys --> C:\Windows\system32\DRIVERS\facap.sys [?] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-6-17 128928] S3 IAMTVE;Driver for Intel® Active Management Technology - KCS;C:\Windows\system32\DRIVERS\IAMTVE.sys --> C:\Windows\system32\DRIVERS\IAMTVE.sys [?] S3 IAMTXPE;Driver for Intel® Active Management Technology - KCS;C:\Windows\system32\DRIVERS\IAMTXPE.sys --> C:\Windows\system32\DRIVERS\IAMTXPE.sys [?] S3 ioatdma1;ioatdma1;C:\Windows\system32\Drivers\qd162x64.sys --> C:\Windows\system32\Drivers\qd162x64.sys [?] S3 ioatdma2;Intel® QuickData Technology device ver.2;C:\Windows\system32\Drivers\qd262x64.sys --> C:\Windows\system32\Drivers\qd262x64.sys [?] S3 iSSetup;iSSetup;C:\Windows\system32\DRIVERS\iSSetup.sys --> C:\Windows\system32\DRIVERS\iSSetup.sys [?] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-6-15 113120] S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2009-9-21 315664] S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\system32\DRIVERS\netaapl64.sys --> C:\Windows\system32\DRIVERS\netaapl64.sys [?] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?] S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?] S3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?] . =============== Created Last 30 ================ . 2012-08-20 11:23:36 20480 ----a-w- C:\Windows\svchost.exe 2012-08-07 19:40:16 25299 ----a-w- C:\Windows\SysWow64\BRLM03A.DLL 2012-08-07 19:40:16 103736 ----a-w- C:\Windows\SysWow64\BRRBTOOL.EXE 2012-08-07 19:39:57 733184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iKernel.dll 2012-08-07 19:39:57 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll 2012-08-07 19:39:57 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll 2012-08-07 19:39:57 180356 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll 2012-08-07 19:39:57 172032 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll 2012-08-07 19:39:56 303236 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll 2012-07-30 21:52:13 103904 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll 2012-07-30 21:52:13 103904 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll 2012-07-27 15:13:20 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA% 2012-07-27 14:01:52 9133488 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F7273005-0A9B-43B6-B4B4-CF41C8DA7DF5}\mpengine.dll . ==================== Find3M ==================== . 2012-07-27 17:16:16 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-27 17:16:16 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-06-12 03:08:36 3148800 ----a-w- C:\Windows\System32\win32k.sys 2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll 2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll 2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll 2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll 2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll 2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll 2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll 2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll 2012-06-02 19:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll 2012-06-02 19:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe 2012-06-02 12:12:17 2311680 ----a-w- C:\Windows\System32\jscript9.dll 2012-06-02 12:05:28 1392128 ----a-w- C:\Windows\System32\wininet.dll 2012-06-02 12:04:50 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl 2012-06-02 12:01:40 173056 ----a-w- C:\Windows\System32\ieUnatt.exe 2012-06-02 11:57:08 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2012-06-02 08:33:25 1800192 ----a-w- C:\Windows\SysWow64\jscript9.dll 2012-06-02 08:25:08 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll 2012-06-02 08:25:03 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2012-06-02 08:20:33 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2012-06-02 08:16:52 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys 2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll 2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll 2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll 2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll 2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2012-05-31 16:25:12 279656 ------w- C:\Windows\System32\MpSigStub.exe . ============= FINISH: 10:49:51.29 =============== Attact report: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume2 Install Date: 12/22/2010 8:08:09 PM System Uptime: 8/21/2012 10:28:08 AM (0 hours ago) . Motherboard: Alienware | | Processor: Intel® Core™ i7 CPU X 940 @ 2.13GHz | CPU 1 | 2129/133mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 462 GiB total, 377.078 GiB free. D: is CDROM () V: is NetworkDisk (NTFS) - 931 GiB total, 876.143 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Description: facap, FastAccess Video Capture Device ID: ROOT\IMAGE\0000 Manufacturer: Sensible Vision Name: facap, FastAccess Video Capture PNP Device ID: ROOT\IMAGE\0000 Service: FACAP . ==== System Restore Points =================== . RP220: 7/27/2012 10:01:44 AM - Windows Update RP221: 8/9/2012 10:41:43 AM - Scheduled Checkpoint RP222: 8/17/2012 8:10:24 AM - Scheduled Checkpoint . ==== Installed Programs ====================== . Accelerometer Adobe AIR Adobe Flash Player 11 ActiveX Adobe Reader 9.5.2 Advertising Center Apple Application Support Apple Software Update Brother HL-3070CW Brother MFC-8890DW Cisco Connect Command Center CyberLink PowerDVD 10 CyberLink YouCam Dell InHome Service Agreement EVGA Precision 2.0.2 Futuremark SystemInfo HD Tune Pro 4.60 ImagXpress Intel® Control Center Intel® Rapid Storage Technology Java Auto Updater Java™ 6 Update 31 LaCie Network Assistant 1.4.0.30 LAN Speed Test Malwarebytes Anti-Malware version 1.61.0.1400 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Mozilla Firefox 14.0.1 (x86 en-US) Mozilla Maintenance Service MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 9 Essentials Nero BurnRights Nero BurnRights Help Nero ControlCenter Nero CoverDesigner Nero CoverDesigner Help Nero Disc Copy Gadget Nero Disc Copy Gadget Help Nero DiscSpeed Nero DiscSpeed Help Nero DriveSpeed Nero DriveSpeed Help Nero Express Help Nero InfoTool Nero InfoTool Help Nero Installer Nero Online Upgrade Nero Rescue Agent Nero RescueAgent Help Nero StartSmart Nero StartSmart Help NeroExpress neroxml NVIDIA PhysX OSD Setup Pandora QuickTime Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Stardock MyColors System Requirements Lab Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Vet 12 Global Install Vet 12 Workstation Installation Winamp Winamp Detector Plug-in . ==== Event Viewer Messages From Past Week ======== . 8/21/2012 10:28:53 AM, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891 8/21/2012 10:28:53 AM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891 8/21/2012 10:28:51 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Alienware Fusion Service service to connect. 8/21/2012 10:28:51 AM, Error: Service Control Manager [7000] - The Alienware Fusion Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 8/20/2012 7:57:17 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1. 8/20/2012 5:32:21 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000002c38, 0x0000000000000002, 0x0000000000000001, 0xfffff80002ceb265). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 082012-11856-01. 8/19/2012 6:11:38 PM, Error: Schannel [36888] - The following fatal alert was generated: 40. The internal error state is 107. 8/19/2012 6:11:38 PM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed. 8/19/2012 3:46:39 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool. 8/14/2012 11:11:26 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR21. . ==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.