superaman

Using Adobe Reader X, not sure why Adobe Reader 9 is showing up on this even

Results of screen317's Security Check version 0.99.51 Windows Vista Service Pack 2 x86 (UAC is enabled) Internet Explorer 9 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Disabled! Norton Internet Security WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.65.0.1400 CCleaner Java 7 Update 7 Adobe Flash Player 11.4.402.278 Adobe Reader 9 Adobe Reader out of Date! Adobe Reader X (10.1.4) Mozilla Firefox (15.0.1) Google Chrome 21.0.1180.83 Google Chrome 21.0.1180.89 ````````Process Check: objlist.exe by Laurent```````` Norton ccSvcHst.exe Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 1 % ````````````````````End of Log``````````````````````

Hmm not sure why it didn't work last time, did a direct copy and paste, but here it is again from what you posted from the last post. All processes killed ========== OTL ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. Registry value HKEY_USERS\S-1-5-21-1781417293-1407770052-2831755773-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\cf\ deleted successfully. File Protocol\Handler\cf - No CLSID value found not found. File PTYJAVA] not found. File ptytemp] not found. File PTYFLASH] not found. OTL by OldTimer - Version 3.2.65.1 log created on 09222012_175945 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot...

Mainly my only concern is that since nothing has been found so far, I'm confused what had disabled Windows Updating from doing it's job. With things like that, I don't change those settings, as far as I had known, it was always set to Check for Updates and prompt me to choose which to install. So I'm not sure if it was a malicious virus or a program that was being difficult with Windows, so any clarification on this would be great. Also, other than MBAM, which virus protection would you say is the best to have installed on a computer? I currently have Norton but I feel like as a protection, it doesn't do such a great job. If not one, perhaps suggestting a combination would be helpful, thanks

I tried to open those files (were just 2-4kb files, no specific ending) and since they had no native application, I just opened with notepad and it was just a bunch of jibberish from what I could tell. Here is the picture of what I saw: Here is the OTL log as requested: All processes killed Error: Unable to interpret <:OTLO3 - HKLM\..\Toolbar: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No CLSID value found.O3 - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.O3 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.O18 - Protocol\Handler\cf - No CLSID value found:Commands[EMPTYJAVA][emptytemp][EMPTYFLASH]> in the current context! OTL by OldTimer - Version 3.2.65.1 log created on 09222012_161350 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot...

Extras: OTL Extras logfile created on: 9/22/2012 2:46:01 PM - Run 1 OTL by OldTimer - Version 3.2.65.1 Folder = C:\Users\Aman Arneja\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 3.50 Gb Total Physical Memory | 1.78 Gb Available Physical Memory | 50.83% Memory free 7.18 Gb Paging File | 5.55 Gb Available in Paging File | 77.41% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 220.29 Gb Total Space | 66.83 Gb Free Space | 30.34% Space Free | Partition Type: NTFS Drive D: | 10.00 Gb Total Space | 4.62 Gb Free Space | 46.23% Space Free | Partition Type: NTFS Computer Name: OLIVER | User Name: Aman Arneja | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1781417293-1407770052-2831755773-1000] "EnableNotifications" = 0 "EnableNotificationsRef" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{06D8D568-612B-4F34-B3E8-E470A88A32C1}" = rport=137 | protocol=17 | dir=out | app=system | "{16C1589B-8E1A-40AF-890E-F0AC4DD715D1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | "{28661025-AC8B-416F-837C-01A68D6F94C6}" = lport=54925 | protocol=17 | dir=in | name=brother network scanner | "{36E8C674-C59F-4454-BCBC-64F8B751395F}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{509A2E2F-A8FE-41FE-A011-7A093336257D}" = lport=137 | protocol=17 | dir=in | app=system | "{5541CAF7-AFC8-4CA2-AF1B-C0C469998CE6}" = lport=445 | protocol=6 | dir=in | app=system | "{714CC0B6-4D7A-44A8-BBE7-237256872D7F}" = lport=2869 | protocol=6 | dir=in | app=system | "{7CC3D402-B827-4701-AB47-07AB64B06C50}" = rport=139 | protocol=6 | dir=out | app=system | "{7EB9F2A1-028F-46EF-90CC-761F05595A02}" = lport=138 | protocol=17 | dir=in | app=system | "{7F7634D7-AC9B-4FAD-A96F-B6A126435FA4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{941D18A7-00BA-437A-8CEC-989A9C63D4F4}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{9E87CC4D-34C5-4D5F-B1F6-BB76F106B913}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{A93B3EAE-6BE6-4BB0-912C-EDF385C10659}" = lport=86 | protocol=6 | dir=in | name=broadcam web server | "{AA91DA60-9BC5-468A-A3FE-85C7DB5C773C}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe | "{B98644CD-1243-4326-9E34-94BE9A3A5E88}" = rport=445 | protocol=6 | dir=out | app=system | "{DE137D9C-B661-4A37-8BDA-A56BF4EE251B}" = lport=139 | protocol=6 | dir=in | app=system | "{EB9CF5E6-1173-4D75-92DB-97B40F56FAE9}" = rport=138 | protocol=17 | dir=out | app=system | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{06106F29-B33A-43C4-A319-8D7C28BEA849}" = protocol=17 | dir=in | app=c:\program files\2k sports\nba 2k12\nba2k12.exe | "{06B27B68-D7C2-4B94-921B-013F3C1FE0BE}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{18F72531-1421-468C-BBA9-1C88262465EF}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | "{1AD44CAD-692B-48C6-9F86-2EAE4B23C98F}" = protocol=6 | dir=in | app=c:\program files\gamigo\golfstar\golfstar.exe | "{1C6901F0-6595-486E-AD64-C5D30864239D}" = protocol=17 | dir=in | app=c:\program files\brother\brmfl07b\faxrx.exe | "{3AAFE324-BB48-44F2-9A27-12A7B333CE08}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{3B95C2F8-24AF-4383-96F5-880362C9D7CD}" = protocol=6 | dir=in | app=c:\program files\brother\brmfl07b\faxrx.exe | "{3DA1D714-0DE6-481A-BD5A-ACA2F517FEA1}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{42D77A39-96B8-491F-8E17-35943119F90E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{4ADCAF4B-BE46-4A32-A201-5F89A5F932EA}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe | "{5AB13170-3D4D-4A5B-8C9C-8C674D47BEDD}" = dir=in | app=c:\program files\dell\mediadirect\pcmservice.exe | "{6FC63DE3-5701-49B4-A3E5-687D68C4CB62}" = dir=in | app=heat.bin | "{78B50A52-1B97-4483-98EE-EFC85F4F6B42}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe | "{7B98E02D-F399-4B04-83A3-BEE72BAF20F2}" = protocol=6 | dir=in | app=c:\program files\gamigo\golfstar\golfstarpatcher.exe | "{7D157712-91B4-4EF0-83AC-B22A8BB72C42}" = protocol=17 | dir=in | app=c:\program files\gamigo\golfstar\golfstar.exe | "{884181B2-4BB6-496B-AA23-7692E59DDD1D}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{91FFD905-5412-4B16-B135-61E8E543F07D}" = protocol=6 | dir=in | app=c:\program files\2k sports\nba 2k12\nba2k12.exe | "{9C42AF5C-6B7C-4500-AB81-6A4DD2D29E72}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | "{BAF524A9-E373-4660-A460-BA874DAD2404}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{CE8ADC4A-E320-4946-AFDC-9EB3040771BA}" = protocol=17 | dir=in | app=c:\users\aman arneja\appdata\local\google\google talk plugin\googletalkplugin.exe | "{D805DFEF-0FB0-4456-8992-87B4275C391B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{E2009B16-6E61-4C2A-9450-E536C15AEE4A}" = protocol=6 | dir=in | app=c:\users\aman arneja\appdata\local\google\google talk plugin\googletalkplugin.exe | "{E3D72984-123F-44E4-ADA7-042EE3E19FF0}" = protocol=6 | dir=in | app=c:\program files\gamigo\golfstar\golfstarpatcherloader.exe | "{E4D5A699-6F42-437D-9953-3BBCFC38D78E}" = dir=in | app=c:\program files\itunes\itunes.exe | "{F449F539-7ACC-4506-AE02-0EFC912C49A6}" = protocol=17 | dir=in | app=c:\program files\gamigo\golfstar\golfstarpatcher.exe | "{F7943EF4-7C11-48C7-8C8F-835AF1667413}" = dir=in | app=levelr.bin | "{F97E9E96-148B-4993-B625-14EDB17A5DC5}" = protocol=17 | dir=in | app=c:\program files\gamigo\golfstar\golfstarpatcherloader.exe | "TCP Query User{424FA028-F765-471F-BC86-9A9782D30B9F}C:\program files\valve\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files\valve\counter-strike source\hl2.exe | "TCP Query User{5CFDCEC5-5CA6-41F2-B20F-9CC4772A5AD1}C:\program files\call of duty game of the year edition\codmp.exe" = protocol=6 | dir=in | app=c:\program files\call of duty game of the year edition\codmp.exe | "TCP Query User{99B61EDF-7392-4C0A-909F-5386B0E5741C}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "UDP Query User{5BA1B9CC-1CE5-4AC3-90EE-F0C67465E520}C:\program files\call of duty game of the year edition\codmp.exe" = protocol=17 | dir=in | app=c:\program files\call of duty game of the year edition\codmp.exe | "UDP Query User{8E9F213B-93BC-42AB-84CC-43144C786A47}C:\program files\valve\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files\valve\counter-strike source\hl2.exe | "UDP Query User{F38016C9-3D21-4674-A1F1-5309718C2994}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3 "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{04E9B02B-4F85-4B73-B865-27B9B8B35877}" = NBA 2K12 "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data "{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0F6F6876-6334-4977-B5DD-CFC12E193420}" = iTunes "{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker "{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}" = Live! Cam Avatar v1.0 "{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7 "{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1 "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger "{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) "{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer "{2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}" = NVIDIA PhysX "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery "{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology "{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}" = Banctec Service Agreement "{46E1B1F2-A279-4356-9B17-029F9CC72EAE}" = Brother MFL-Pro Suite "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4B6AD248-D3BF-426A-8D64-847288154F13}" = QuickSet "{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies "{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings "{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English) "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack "{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 "{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth "{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI "{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector "{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support "{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3 "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 "{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}" = EDocs "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3 "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{7391ABC8-0EA4-3798-ACE3-96B8C8D84EA8}" = Google Talk Plugin "{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio "{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime "{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour "{7A8FF745-BBC5-482B-88E4-18D3178249A9}" = ScanSoft PaperPort 11 "{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3 "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{8E7D7400-4F4F-409D-8F8A-43BF1DAC575A}" = TouchChip USB Driver 2.6 "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007 "{90120000-0015-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007 "{90120000-0016-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007 "{90120000-0018-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007 "{90120000-0019-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007 "{90120000-001A-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007 "{90120000-001B-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_PROR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_PROR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007 "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007 "{90120000-006E-0409-0000-0000000FF1CE}_PROR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007 "{90120000-0115-0409-0000-0000000FF1CE}_PROR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007 "{90120000-0117-0409-0000-0000000FF1CE}_PROR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{90A40409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components "{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007 "{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker "{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI "{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English) "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings "{98BAFEF4-7A37-4E48-B66C-BA8D730EFFAF}" = Pocket Tanks Deluxe v1.3 By Argogo "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}" = OutlookAddinSetup "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}" = MediaDirect "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad "{A2289997-10A3-48F2-AA03-99180D761661}" = Fingerprint Reader Suite 5.6 "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{A3BC1DBD-64D6-4EBC-0091-24C811662D40}" = Madden NFL 08 "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Microsoft Office Small Business Connectivity Components "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer "{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4) "{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9 "{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter "{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 306.23 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 306.23 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 306.23 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 306.23 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.12.0604 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.10.8 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B32C4059-6E7A-41EF-AD20-56DF1872B923}" = Business Contact Manager for Outlook 2007 SP2 "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo "{C0E5147E-C9F3-4360-9ED0-2E875F11766C}" = Respondus LockDown Browser "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant "{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail "{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D4DDFAA1-EC37-4529-AD5B-A433ADE68662}" = Apple Mobile Device Support "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings "{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings "{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{E7084B89-69E0-46B3-A118-8F99D06988CD}" = Microsoft SQL Server VSS Writer "{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5 "{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock "{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials "AC3Filter_is1" = AC3Filter 1.63b "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3 "Advanced Audio FX Engine" = Advanced Audio FX Engine "Advanced Video FX Engine" = Advanced Video FX Engine "Amazon Games & Software Downloader_is1" = Amazon Games & Software Downloader "Bejeweled 2 Deluxe" = Bejeweled 2 Deluxe "Blast Pack for Pocket Tanks Deluxe_is1" = Blast Pack for Pocket Tanks Deluxe "Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card "Business Contact Manager" = Business Contact Manager for Outlook 2007 SP2 "CCleaner" = CCleaner "com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com "Creative OEM002" = Laptop Integrated Webcam Driver (1.04.01.1011) "CSS FULL DZ [Oct 15 2007]" = CSS FULL DZ [Oct 15 2007] v18.1 "DAEMON Tools Lite" = DAEMON Tools Lite "Dell Webcam Center" = Dell Webcam Center "Dell Webcam Manager" = Dell Webcam Manager "Do Not Track Plus Add-on_is1" = Do Not Track Plus Add-on 2.2.1.827 "ESET Online Scanner" = ESET Online Scanner v3 "Game Booster_is1" = Game Booster 3 "Google Chrome" = Google Chrome "Google Chrome Frame" = Google Chrome Frame "GoToAssist" = GoToAssist 8.0.0.514 "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.65.0.1400 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft SQL Server 2005" = Microsoft SQL Server 2005 "Mozilla Firefox 15.0.1 (x86 en-US)" = Mozilla Firefox 15.0.1 (x86 en-US) "MozillaMaintenanceService" = Mozilla Maintenance Service "NIS" = Norton Internet Security "NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Party Pack for Pocket Tanks Deluxe_is1" = Party Pack for Pocket Tanks Deluxe "PROR" = Microsoft Office Professional 2007 "RealPlayer 15.0" = RealPlayer "Steam App 220" = Half-Life 2 "Steam App 340" = Half-Life 2: Lost Coast "Steam App 380" = Half-Life 2: Episode One "Steam App 400" = Portal "Steam App 420" = Half-Life 2: Episode Two "Steam App 440" = Team Fortress 2 "SystemRequirementsLab" = System Requirements Lab "TeamSpeak 3 Client" = TeamSpeak 3 Client "WinLiveSuite" = Windows Live Essentials "WinRAR archiver" = WinRAR archiver "Xvid Video Codec 1.3.2" = Xvid Video Codec ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "bd4d3a0508d364f5" = Dell Driver Download Manager "Octoshape add-in for Adobe Flash Player" = Octoshape add-in for Adobe Flash Player ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 9/21/2012 4:49:37 PM | Computer Name = Oliver | Source = Application Hang | ID = 1002 Description = The program iexplore.exe version 9.0.8112.16421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel. Process ID: a60 Start Time: 01cd983a3ec6e210 Termination Time: 6 Error - 9/21/2012 4:51:04 PM | Computer Name = Oliver | Source = Application Hang | ID = 1002 Description = The program iexplore.exe version 9.0.8112.16421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel. Process ID: 1360 Start Time: 01cd983a4b48a280 Termination Time: 7 Error - 9/21/2012 5:02:53 PM | Computer Name = Oliver | Source = WinMgmt | ID = 10 Description = Error - 9/21/2012 6:17:17 PM | Computer Name = Oliver | Source = WinMgmt | ID = 10 Description = Error - 9/21/2012 7:36:03 PM | Computer Name = Oliver | Source = Application Error | ID = 1000 Description = Faulting application iexplore.exe, version 9.0.8112.16450, time stamp 0x503723f6, faulting module rpbrowserrecordplugin.dll, version 15.0.6.14, time stamp 0x5013092c, exception code 0xc0000005, fault offset 0x00021190, process id 0x11c8, application start time 0x01cd984fb6558ba8. Error - 9/21/2012 9:17:39 PM | Computer Name = Oliver | Source = Application Error | ID = 1000 Description = Faulting application iexplore.exe, version 9.0.8112.16450, time stamp 0x503723f6, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x63305b30, process id 0xc34, application start time 0x01cd985eac63a008. Error - 9/21/2012 10:08:35 PM | Computer Name = Oliver | Source = WinMgmt | ID = 10 Description = Error - 9/22/2012 2:16:13 AM | Computer Name = Oliver | Source = WinMgmt | ID = 10 Description = Error - 9/22/2012 5:57:48 AM | Computer Name = Oliver | Source = EventSystem | ID = 4621 Description = Error - 9/22/2012 5:38:08 PM | Computer Name = Oliver | Source = WinMgmt | ID = 10 Description = [ Broadcom Wireless LAN Events ] Error - 1/28/2012 6:15:29 PM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 14:15:29, Sat, Jan 28, 12 Error - Unable to gain access to user store Error - 4/3/2012 6:26:00 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 03:26:00, Tue, Apr 03, 12 Error - User "" does not have administrative privileges on this system Error - 4/3/2012 6:26:00 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 03:26:00, Tue, Apr 03, 12 Error - User "" does not have administrative privileges on this system Error - 5/8/2012 11:41:24 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 08:41:24, Tue, May 08, 12 Error - Unable to gain access to user store Error - 5/13/2012 5:13:40 PM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 14:13:40, Sun, May 13, 12 Error - Unable to gain access to user store Error - 5/30/2012 5:21:38 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 02:21:37, Wed, May 30, 12 Error - Unable to gain access to user store Error - 6/1/2012 12:17:54 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 21:17:54, Thu, May 31, 12 Error - Unable to gain access to user store Error - 6/11/2012 10:50:08 PM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 19:50:08, Mon, Jun 11, 12 Error - Unable to gain access to user store Error - 7/10/2012 11:30:20 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 08:30:19, Tue, Jul 10, 12 Error - Unable to gain access to user store Error - 7/13/2012 2:06:04 AM | Computer Name = Oliver | Source = WLAN-Tray | ID = 0 Description = 23:06:04, Thu, Jul 12, 12 Error - Unable to gain access to user store [ OSession Events ] Error - 6/30/2010 6:48:44 PM | Computer Name = Oliver | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash. Error - 9/29/2010 12:55:31 AM | Computer Name = Oliver | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash. Error - 12/19/2011 8:46:29 PM | Computer Name = Oliver | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash. [ System Events ] Error - 9/22/2012 5:38:19 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7000 Description = Error - 9/22/2012 5:38:19 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7000 Description = Error - 9/22/2012 5:39:32 PM | Computer Name = Oliver | Source = DCOM | ID = 10016 Description = Error - 9/22/2012 5:39:54 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7000 Description = Error - 9/22/2012 5:39:54 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7000 Description = Error - 9/22/2012 5:41:09 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7031 Description = Error - 9/22/2012 5:41:19 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7034 Description = Error - 9/22/2012 5:41:20 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7034 Description = Error - 9/22/2012 5:41:33 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7034 Description = Error - 9/22/2012 5:41:36 PM | Computer Name = Oliver | Source = Service Control Manager | ID = 7034 Description = < End of report >

OTL: OTL logfile created on: 9/22/2012 2:46:01 PM - Run 1 OTL by OldTimer - Version 3.2.65.1 Folder = C:\Users\Aman Arneja\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 3.50 Gb Total Physical Memory | 1.78 Gb Available Physical Memory | 50.83% Memory free 7.18 Gb Paging File | 5.55 Gb Available in Paging File | 77.41% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 220.29 Gb Total Space | 66.83 Gb Free Space | 30.34% Space Free | Partition Type: NTFS Drive D: | 10.00 Gb Total Space | 4.62 Gb Free Space | 46.23% Space Free | Partition Type: NTFS Computer Name: OLIVER | User Name: Aman Arneja | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012/09/22 14:45:29 | 000,600,576 | ---- | M] (OldTimer Tools) -- C:\Users\Aman Arneja\Downloads\OTL.exe PRC - [2012/08/30 12:13:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2012/08/30 08:57:35 | 001,820,520 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe PRC - [2012/08/30 08:57:34 | 000,864,104 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe PRC - [2012/08/27 19:31:52 | 000,300,480 | ---- | M] (Abine Inc.) -- C:\Program Files\DoNotTrackPlus\IE\DNTPService.exe PRC - [2012/08/25 18:58:00 | 000,296,096 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe PRC - [2012/08/14 21:03:01 | 000,307,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe PRC - [2012/07/27 13:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2012/06/15 19:24:19 | 000,138,272 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsvchst.exe PRC - [2010/04/05 16:46:08 | 000,288,040 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe PRC - [2010/03/23 13:22:26 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe PRC - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2010/03/03 20:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe PRC - [2009/10/23 13:31:44 | 000,401,920 | ---- | M] (Amazon.com) -- C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe PRC - [2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009/01/31 22:43:30 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe PRC - [2008/01/11 18:50:16 | 000,030,312 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe PRC - [2007/12/02 21:28:06 | 000,405,504 | ---- | M] (IDT, Inc.) -- C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe PRC - [2007/12/02 21:27:58 | 000,102,400 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\stacsv.exe PRC - [2007/12/02 21:27:54 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AEstSrv.exe ========== Modules (No Company Name) ========== MOD - [2012/09/21 15:19:33 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll MOD - [2012/09/21 15:19:25 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll MOD - [2012/08/27 19:31:50 | 000,921,536 | ---- | M] () -- C:\Program Files\DoNotTrackPlus\IE\DNTPContentFilter.dll MOD - [2012/08/27 19:31:48 | 000,251,328 | ---- | M] () -- C:\Program Files\DoNotTrackPlus\IE\DNTPButton.dll MOD - [2012/05/12 14:02:30 | 000,453,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ff52fc65db88feb6c203259731a8d0ea\IAStorUtil.ni.dll MOD - [2012/05/12 14:02:05 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll MOD - [2012/05/12 14:01:49 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll MOD - [2012/05/12 12:48:19 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll MOD - [2012/05/12 12:46:44 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\54426ee1881b42af5b090e223f43823c\WindowsBase.ni.dll MOD - [2012/05/12 12:46:40 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll MOD - [2012/05/12 12:46:16 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll ========== Services (SafeList) ========== SRV - [2012/09/21 15:02:57 | 000,250,288 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012/09/15 15:20:57 | 000,529,744 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012/09/05 18:26:40 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012/08/30 12:13:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012/08/13 13:33:30 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2012/07/27 13:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012/07/13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012/06/15 19:24:19 | 000,138,272 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccSvcHst.exe -- (NIS) SRV - [2011/03/01 18:29:58 | 000,130,976 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service) SRV - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2009/10/23 13:31:44 | 000,401,920 | ---- | M] (Amazon.com) [Auto | Running] -- C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe -- (Amazon Download Agent) SRV - [2008/12/14 11:05:00 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist) SRV - [2008/09/23 21:09:52 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Stopped] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService) SRV - [2008/01/20 19:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008/01/11 18:50:16 | 000,030,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc) SRV - [2007/12/02 21:27:58 | 000,102,400 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\stacsv.exe -- (STacSV) SRV - [2007/12/02 21:27:54 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AEstSrv.exe -- (AESTFilters) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | Boot | Unknown] -- system32\drivers\Partizan.sys -- (Partizan) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\BCM42RLY.sys -- (BCM42RLY) DRV - [2012/09/21 09:52:34 | 001,601,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.033\NAVEX15.SYS -- (NAVEX15) DRV - [2012/09/21 09:52:33 | 000,092,704 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.033\NAVENG.SYS -- (NAVENG) DRV - [2012/09/20 20:21:38 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy) DRV - [2012/09/06 04:54:30 | 000,386,720 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IDSvix86.sys -- (IDSVix86) DRV - [2012/08/31 15:09:14 | 000,995,488 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20120919.001\BHDrvx86.sys -- (BHDrvx86) DRV - [2012/08/30 12:13:00 | 010,790,760 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2012/08/09 00:50:24 | 000,376,480 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2012/08/09 00:50:24 | 000,106,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2012/07/05 19:17:57 | 000,574,112 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\srtsp.sys -- (SRTSP) DRV - [2012/07/05 19:17:57 | 000,032,928 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\srtspx.sys -- (SRTSPX) DRV - [2012/06/06 21:43:43 | 000,132,768 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\ccsetx86.sys -- (ccSet_NIS) DRV - [2012/05/21 18:37:12 | 000,924,320 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\symefa.sys -- (SymEFA) DRV - [2012/04/17 19:13:32 | 000,345,208 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\symtdiv.sys -- (SYMTDIv) DRV - [2012/04/17 18:42:14 | 000,149,624 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\ironx86.sys -- (SymIRON) DRV - [2012/03/28 18:07:47 | 000,141,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2012/01/17 15:45:55 | 000,340,088 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\NIS\1308000.00E\symds.sys -- (SymDS) DRV - [2011/08/18 11:19:11 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2010/11/01 06:08:46 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys -- (WinRing0_1_2_0) DRV - [2010/04/15 13:36:40 | 000,252,536 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService) DRV - [2009/11/11 11:14:44 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfesmfk.sys -- (mfesmfk) DRV - [2009/11/11 11:14:12 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdk.sys -- (mferkdk) DRV - [2008/03/03 22:05:34 | 000,007,424 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OEM02Vfx.sys -- (OEM02Vfx) DRV - [2008/03/03 22:05:18 | 000,235,648 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OEM02Dev.sys -- (OEM02Dev) DRV - [2008/01/20 19:23:25 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) DRV - [2008/01/20 19:23:21 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice) DRV - [2007/12/02 21:28:08 | 000,330,240 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA) DRV - [2007/09/07 02:27:32 | 000,209,408 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\iaNvStor.sys -- (iaNvStor) DRV - [2007/09/06 23:35:46 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp) DRV - [2007/09/06 23:35:44 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk) DRV - [2007/09/06 23:35:42 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk) DRV - [2006/11/02 00:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DKUS IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\SearchScopes,DefaultScope = {DECA3892-BA8F-44b8-A993-A466AD694AE4} IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7DKUS_en&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\SearchScopes\{9AD1E0CB-67CC-40DB-A90F-FE0E1D18D2EA}: "URL" = http://search.yahoo.com/search?fr=mcafee&p={SearchTerms} IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms} IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}: "URL" = http://www.ask.com/web?q={SEARCHTERMS}&o=15527&l=dis&prt=NIS&chn=retail&geo=US&ver=18 IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo.com/search?fr=mcafee&p={searchTerms} IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local> ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledAddons: lkwxxtqfaw@lkwxxtqfaw.org:1.0 FF - prefs.js..extensions.enabledAddons: {0153E448-190B-4987-BDE1-F256CADA672F}:15.0.6 FF - prefs.js..extensions.enabledAddons: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.5.5 FF - prefs.js..extensions.enabledAddons: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20120910 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_278.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.6.14: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.6.14: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Aman Arneja\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Aman Arneja\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Aman Arneja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Aman Arneja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\IPSFFPlgn\ [2012/05/08 13:35:11 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\coFFPlgn\ [2012/09/22 14:37:15 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0153E448-190B-4987-BDE1-F256CADA672F}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/08/25 18:58:17 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/09/12 23:27:57 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/09/12 23:30:36 | 000,000,000 | ---D | M] [2010/03/14 22:50:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Extensions [2010/03/14 20:14:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Extensions\MediaCoder [2010/03/14 22:50:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Extensions\MediaCoder-MCEX [2010/03/14 20:15:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Extensions\MediaCoder-Setup-Wizard [2008/12/22 14:22:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org [2012/09/20 12:41:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions [2010/05/04 16:04:31 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012/09/20 12:41:37 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2011/04/23 18:06:39 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\DTToolbar@toolbarnet.com [2012/08/23 04:22:05 | 000,001,678 | ---- | M] () (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\lkwxxtqfaw@lkwxxtqfaw.org.xpi [2012/09/16 23:54:41 | 000,527,915 | ---- | M] () (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012/07/26 15:07:56 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011/04/09 21:29:45 | 000,002,059 | ---- | M] () -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\searchplugins\daemon-search.xml [2010/11/22 22:02:03 | 000,002,470 | ---- | M] () -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\searchplugins\safesearch.xml [2012/09/16 00:04:07 | 000,002,112 | ---- | M] () -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\searchplugins\search.xml [2012/09/12 23:27:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012/08/24 11:43:45 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012/08/25 18:58:17 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT [2012/09/05 18:27:05 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011/03/18 11:32:12 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll [2011/03/18 11:32:14 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll [2012/08/25 18:58:05 | 000,129,176 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2012/09/05 18:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2010/10/10 17:19:52 | 000,002,024 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\McSiteAdvisor.xml [2012/09/05 18:26:22 | 000,002,253 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml ========== Chrome ========== CHR - homepage: http://www.google.com/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: http://www.google.com/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll CHR - plugin: Norton Confidential (Enabled) = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.3.7_0\npcoplgn.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Aman Arneja\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Aman Arneja\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\Aman Arneja\AppData\Roaming\Move Networks\plugins\npqmp071503000010.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - Extension: Google Translate = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.4_0\ CHR - Extension: Bejeweled = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm\2_0\ CHR - Extension: Angry Birds = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\ CHR - Extension: YouTube = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google Search = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Chain Reaction = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\gemgfpodpjapjhfohdlibagceiknakpa\1.2_0\ CHR - Extension: Planetarium = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp\1.1.1_0\ CHR - Extension: AdBlock = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.42_0\ CHR - Extension: The Weather Channel for Chrome = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop\1.0.0.4_0\ CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\ CHR - Extension: Skype Click to Call = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.2.0.10687_0\ CHR - Extension: Fieldrunners = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0\ CHR - Extension: Google Maps = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.4_0\ CHR - Extension: Norton Identity Protection = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.5.11_0\ CHR - Extension: Plants vs Zombies = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina\1.0.5_0\ CHR - Extension: Gmail = C:\Users\Aman Arneja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012/09/09 12:51:21 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coieplg.dll (Symantec Corporation) O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ips\ipsbho.dll (Symantec Corporation) O2 - BHO: (Do Not Track Plus) - {6E45F3E8-2683-4824-A6BE-08108022FB36} - C:\Program Files\DoNotTrackPlus\IE\DNTPAddon.dll (Abine) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (ChromeFrame BHO) - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files\Google\Chrome Frame\Application\21.0.1180.89\npchrome_frame.dll (Google Inc.) O3 - HKLM\..\Toolbar: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coieplg.dll (Symantec Corporation) O3 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coieplg.dll (Symantec Corporation) O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.) O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [iAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe (Creative Technology Ltd.) O4 - HKLM..\Run: [sigmatelSysTrayApp] C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe (IDT, Inc.) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000..\Run: [steam] C:\Program Files\Steam\steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe () O4 - Startup: C:\Users\Aman Arneja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O4 - Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0 O7 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0 O7 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1005\Software\Policies\Microsoft\Internet Explorer\Control Panel present O9 - Extra Button: Do Not Track Plus © Abine - {6E45F3E8-2683-4824-A6BE-08108022FB36} - C:\Program Files\DoNotTrackPlus\IE\DNTPAddon.dll (Abine) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKU\S-1-5-21-1781417293-1407770052-2831755773-1000\..Trusted Domains: losrios.edu ([d2l] https in Trusted sites) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab (Reg Error: Value error.) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab (Java Plug-in 1.7.0_07) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab (Java Plug-in 10.7.2) O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} http://clients.futuremark.com/calico/systeminfodeploy/FMSI.cab (FuturemarkSystemInfoX Class) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{370CB115-CDC1-46F6-810D-871A7EDCFDD0}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E3C7B973-C380-4A18-9D35-81EC4FE74051}: DhcpNameServer = 192.168.1.254 O18 - Protocol\Handler\cf - No CLSID value found O18 - Protocol\Handler\gcf {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\21.0.1180.89\npchrome_frame.dll (Google Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: GinaDLL - (vrlogon.dll) - C:\Windows\System32\vrlogon.dll (UPEK Inc.) O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll) - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.) O20 - Winlogon\Notify\psfus: DllName - (C:\Windows\system32\psqlpwd.dll) - C:\Windows\System32\psqlpwd.dll (UPEK Inc.) O24 - Desktop WallPaper: C:\Users\Aman Arneja\Pictures\Colorado_River_Grand_Canyon.jpg O24 - Desktop BackupWallPaper: C:\Users\Aman Arneja\Pictures\Colorado_River_Grand_Canyon.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2012/09/21 16:40:05 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\Desktop\RK_Quarantine [2012/09/20 20:21:38 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2012/09/17 10:11:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2012/09/16 07:03:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes [2012/09/16 07:00:28 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2012/09/16 07:00:26 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2012/09/16 07:00:26 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 [2012/09/16 06:59:06 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\AppData\Local\Apple Computer [2012/09/16 06:04:18 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\AppData\Local\Apple [2012/09/16 00:35:02 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2012/09/14 01:01:06 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\AppData\Local\DoNotTrackPlus [2012/09/14 00:58:18 | 000,000,000 | ---D | C] -- C:\Program Files\DoNotTrackPlus [2012/09/12 23:38:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2012/09/10 23:05:13 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2012/09/09 18:30:13 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\AppData\Local\Adobe [2012/09/09 13:00:34 | 000,000,000 | ---D | C] -- C:\Windows\temp [2012/09/09 13:00:32 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\AppData\Local\temp [2012/09/04 23:24:30 | 000,000,000 | ---D | C] -- C:\FRST [2012/09/04 12:53:39 | 000,000,000 | ---D | C] -- C:\Windows\erdnt [2012/08/31 02:34:57 | 000,000,000 | ---D | C] -- C:\ProgramData\RegRun [2012/08/31 02:34:50 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\Documents\RegRun2 [2012/08/31 02:34:45 | 000,000,000 | ---D | C] -- C:\Program Files\UnHackMe [2012/08/25 18:58:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2012/08/25 18:58:01 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [2012/08/25 18:58:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks [2012/08/25 18:57:57 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2012/08/25 18:57:45 | 000,000,000 | ---D | C] -- C:\Users\Aman Arneja\AppData\Roaming\Real [2012/08/25 18:55:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Real [2009/01/30 16:00:49 | 008,653,312 | ---- | C] (Dell, Inc. ) -- C:\Users\Aman Arneja\AppData\Roaming\DataSafeDotNet.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012/09/22 14:38:59 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012/09/22 14:37:09 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012/09/22 14:37:08 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012/09/22 14:36:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012/09/22 02:52:00 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1781417293-1407770052-2831755773-1000UA.job [2012/09/22 02:05:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012/09/22 02:02:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012/09/22 01:52:00 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1781417293-1407770052-2831755773-1000Core.job [2012/09/21 19:38:42 | 000,002,627 | ---- | M] () -- C:\Users\Aman Arneja\Desktop\Microsoft Office Word 2007.lnk [2012/09/21 15:17:08 | 001,727,160 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2012/09/21 14:26:44 | 000,654,716 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012/09/21 14:26:44 | 000,123,138 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012/09/21 03:10:32 | 000,002,008 | ---- | M] () -- C:\{28C8B252-77ED-423D-938F-AD13F6883854} [2012/09/21 00:23:53 | 000,002,664 | ---- | M] () -- C:\{D46EB4F0-50FF-4610-B2AA-67C08B741350} [2012/09/21 00:01:52 | 000,003,336 | ---- | M] () -- C:\{3791864B-022B-4BF6-AE0F-F7B913692AB9} [2012/09/21 00:00:04 | 000,002,672 | ---- | M] () -- C:\{77FB0099-CF1F-46FA-AA04-D3861BB01F4F} [2012/09/20 23:57:48 | 000,002,904 | ---- | M] () -- C:\{199F9299-BABC-4C69-8D94-2CCBEEF053EB} [2012/09/20 23:52:29 | 000,002,704 | ---- | M] () -- C:\{03ACFF80-46D1-4941-814D-6608F20537B3} [2012/09/20 20:21:38 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2012/09/20 15:53:03 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2012/09/16 07:03:12 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk [2012/09/13 00:05:03 | 000,000,426 | ---- | M] () -- C:\Windows\BRWMARK.INI [2012/09/12 23:50:58 | 000,002,377 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2012/09/12 23:28:01 | 000,000,872 | ---- | M] () -- C:\Users\Aman Arneja\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2012/09/12 23:28:01 | 000,000,848 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012/09/09 21:02:00 | 000,001,894 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk [2012/09/09 12:51:21 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts [2012/09/09 00:25:49 | 000,060,123 | ---- | M] () -- C:\Users\Aman Arneja\Documents\Anemia.pdf [2012/09/07 21:29:54 | 000,000,110 | ---- | M] () -- C:\Users\Aman Arneja\Documents\start.bat [2012/09/07 17:04:46 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2012/09/04 13:42:41 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2012/08/31 02:34:52 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2012/08/31 02:34:52 | 000,001,688 | ---- | M] () -- C:\Windows\System32\autoexec.nt [2012/08/31 02:34:52 | 000,000,002 | RHS- | M] () -- C:\Windows\winstart.bat [2012/08/30 12:13:00 | 000,012,956 | ---- | M] () -- C:\Windows\System32\nvinfo.pb [2012/08/30 10:40:14 | 000,429,416 | ---- | M] () -- C:\Windows\System32\nvStreaming.exe [2012/08/25 18:58:33 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk [2012/08/25 18:58:01 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\System32\pncrt.dll [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012/09/21 03:10:32 | 000,002,008 | ---- | C] () -- C:\{28C8B252-77ED-423D-938F-AD13F6883854} [2012/09/21 00:23:52 | 000,002,664 | ---- | C] () -- C:\{D46EB4F0-50FF-4610-B2AA-67C08B741350} [2012/09/21 00:01:50 | 000,003,336 | ---- | C] () -- C:\{3791864B-022B-4BF6-AE0F-F7B913692AB9} [2012/09/21 00:00:02 | 000,002,672 | ---- | C] () -- C:\{77FB0099-CF1F-46FA-AA04-D3861BB01F4F} [2012/09/20 23:57:45 | 000,002,904 | ---- | C] () -- C:\{199F9299-BABC-4C69-8D94-2CCBEEF053EB} [2012/09/20 23:52:25 | 000,002,704 | ---- | C] () -- C:\{03ACFF80-46D1-4941-814D-6608F20537B3} [2012/09/16 07:03:12 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk [2012/09/09 21:01:59 | 000,002,451 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk [2012/09/09 21:01:59 | 000,001,894 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk [2012/09/09 00:25:49 | 000,060,123 | ---- | C] () -- C:\Users\Aman Arneja\Documents\Anemia.pdf [2012/09/07 16:43:49 | 000,000,110 | ---- | C] () -- C:\Users\Aman Arneja\Documents\start.bat [2012/08/31 02:34:52 | 000,000,002 | RHS- | C] () -- C:\Windows\winstart.bat [2012/08/30 10:40:14 | 000,429,416 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe [2012/08/25 18:58:32 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk [2012/05/26 21:37:58 | 000,000,000 | ---- | C] () -- C:\Users\Aman Arneja\ping [2011/05/03 21:16:11 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat [2010/05/12 21:16:56 | 000,007,086 | ---- | C] () -- C:\Users\Aman Arneja\AppData\Roaming\wklnhst.dat [2009/01/10 12:54:59 | 000,001,356 | ---- | C] () -- C:\Users\Aman Arneja\AppData\Local\d3d9caps.dat [2008/12/19 19:52:21 | 000,035,465 | ---- | C] () -- C:\ProgramData\nvModes.001 [2008/12/19 19:26:19 | 000,035,465 | ---- | C] () -- C:\ProgramData\nvModes.dat [2008/12/19 19:00:58 | 000,030,720 | ---- | C] () -- C:\Users\Aman Arneja\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ========== ZeroAccess Check ========== [2012/03/10 02:50:23 | 000,000,082 | ---- | M] () -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\4DBCE5SP\t.cxt.ms\lso.swf\u.sol [2012/08/10 17:38:49 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\LocalLow\Microsoft\Silverlight\is\nwfcndjh.ys4\h4n22jp0.iac\1\l [2011/04/05 16:47:52 | 000,001,150 | ---- | M] () -- C:\Users\Aman Arneja\AppData\Roaming\Mozilla\Firefox\Profiles\i0s2tblk.default\extensions\DTToolbar@toolbarnet.com\components\Resources\u.ico [2006/11/02 05:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini ========== LOP Check ========== [2012/06/17 22:22:44 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\.mono [2012/08/26 03:12:12 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\2K Sports [2009/07/07 22:08:20 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Any DVD Converter Professional [2009/10/14 18:28:50 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Canon [2012/05/29 13:28:50 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\DAEMON Tools Lite [2010/03/20 18:05:39 | 000,000,000 | -H-D | M] -- C:\Users\Aman Arneja\AppData\Roaming\ijjigame [2009/06/19 15:26:56 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Leadertech [2009/07/06 11:14:59 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\NCH Swift Sound [2011/08/07 21:36:17 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Rovio [2009/10/14 18:29:05 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\ScanSoft [2011/05/06 19:59:54 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Sony [2010/05/12 21:16:59 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Template [2012/07/08 20:45:05 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\TS3Client [2011/12/08 23:25:53 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\ts3overlay [2012/06/17 22:42:10 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Unity [2012/09/09 13:37:42 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\wargaming.net [2011/11/21 20:10:58 | 000,000,000 | ---D | M] -- C:\Users\Aman Arneja\AppData\Roaming\Windows Live Writer ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:5D432CE3 @Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:FB1B13D8 < End of report >

Sorry it took so many posts, would not let me post in one post and the last helper I talked to told me that attachments may harm the person I am getting help from.

19:11:20.0857 4872 C:\Program Files\Microsoft Works\wksdb.exe - ok 19:11:20.0861 4872 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll 19:11:20.0861 4872 C:\Windows\System32\webcheck.dll - ok 19:11:20.0866 4872 [ 4ACEA0C4BB15ACE55E3AE5EC4E88DD55 ] C:\Windows\System32\SyncCenter.dll 19:11:20.0866 4872 C:\Windows\System32\SyncCenter.dll - ok 19:11:20.0870 4872 [ 7ADD03E75BEB9E6DD102C3081D29840A ] C:\Windows\System32\drivers\cdfs.sys 19:11:20.0870 4872 C:\Windows\System32\drivers\cdfs.sys - ok 19:11:20.0874 4872 [ 0B5AC46982E77CAF3EC1D55C9AC6AB56 ] C:\Windows\System32\wscntfy.dll 19:11:20.0874 4872 C:\Windows\System32\wscntfy.dll - ok 19:11:20.0878 4872 [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll 19:11:20.0878 4872 C:\Windows\System32\wscapi.dll - ok 19:11:20.0882 4872 [ 9B0726A03B790E5B82BED44D24009BEF ] C:\Windows\System32\imapi2.dll 19:11:20.0882 4872 C:\Windows\System32\imapi2.dll - ok 19:11:20.0886 4872 [ 790222D6CCFC576F0D07D418E6115D85 ] C:\Program Files\Windows Calendar\WinCal.exe 19:11:20.0886 4872 C:\Program Files\Windows Calendar\WinCal.exe - ok 19:11:20.0890 4872 [ 06164026C38AA5366E4D127E2E36FDE8 ] C:\Program Files\Windows Mail\wab.exe 19:11:20.0890 4872 C:\Program Files\Windows Mail\wab.exe - ok 19:11:20.0894 4872 [ 8274C87726D4561EE8750D883764ACC1 ] C:\Windows\System32\wbem\unsecapp.exe 19:11:20.0894 4872 C:\Windows\System32\wbem\unsecapp.exe - ok 19:11:20.0898 4872 [ 0D392EDE3B97E0B3131B2F63EF1DB94E ] C:\Program Files\Windows Defender\MSASCui.exe 19:11:20.0898 4872 C:\Program Files\Windows Defender\MSASCui.exe - ok 19:11:20.0902 4872 [ 395335431AD55C167CFDBBAB8420DA73 ] C:\Program Files\Movie Maker\DVDMaker.exe 19:11:20.0902 4872 C:\Program Files\Movie Maker\DVDMaker.exe - ok 19:11:20.0906 4872 [ 77BD0166102F3B9BB9499B2952C3BCFA ] C:\Program Files\Windows Live\Mail\wlmail.exe 19:11:20.0906 4872 C:\Program Files\Windows Live\Mail\wlmail.exe - ok 19:11:20.0910 4872 [ 24B1666FD14CC71C7B0679AC61625B90 ] C:\Program Files\Windows Live\Messenger\msnmsgr.exe 19:11:20.0910 4872 C:\Program Files\Windows Live\Messenger\msnmsgr.exe - ok 19:11:20.0916 4872 [ C2FB797884D9CC30AC0B5FB28146FE7A ] C:\Program Files\Windows Live\Messenger\uccapi.dll 19:11:20.0916 4872 C:\Program Files\Windows Live\Messenger\uccapi.dll - ok 19:11:20.0920 4872 [ 39D8EAA29CC2CC144E2B1214FA774F6A ] C:\Program Files\Windows Live\Messenger\vvpltfrm.dll 19:11:20.0920 4872 C:\Program Files\Windows Live\Messenger\vvpltfrm.dll - ok 19:11:20.0924 4872 [ 8EB5E95365AC5796E0C8175267D50744 ] C:\Program Files\Windows Live\Messenger\shareanything.dll 19:11:20.0924 4872 C:\Program Files\Windows Live\Messenger\shareanything.dll - ok 19:11:20.0928 4872 [ 82E53EC685889AD8CFB3AD812A906489 ] C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe 19:11:20.0928 4872 C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe - ok 19:11:20.0932 4872 [ 9CB27AE21BF0553BF20F571DD9E2C3A0 ] C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe 19:11:20.0933 4872 C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok 19:11:20.0937 4872 [ 7E6EA9CB72B5DE84A5D700BED877E5F9 ] C:\Program Files\Windows Mail\WinMail.exe 19:11:20.0937 4872 C:\Program Files\Windows Mail\WinMail.exe - ok 19:11:20.0940 4872 [ B7ED332A57FC78CA29E40D3619550225 ] C:\Windows\ehome\ehshell.exe 19:11:20.0940 4872 C:\Windows\ehome\ehshell.exe - ok 19:11:20.0944 4872 [ 2D821AFA5A1A9CA7F9F997A1AAD09E72 ] C:\Program Files\Windows Media Player\wmplayer.exe 19:11:20.0944 4872 C:\Program Files\Windows Media Player\wmplayer.exe - ok 19:11:20.0949 4872 [ 52BC119E49F88F2A5D1466230B1275C7 ] C:\Program Files\Windows Collaboration\WinCollab.exe 19:11:20.0950 4872 C:\Program Files\Windows Collaboration\WinCollab.exe - ok 19:11:20.0953 4872 [ C4AB08459CD7B59B410ACFC04D90E87B ] C:\Program Files\Movie Maker\MOVIEMK.exe 19:11:20.0953 4872 C:\Program Files\Movie Maker\MOVIEMK.exe - ok 19:11:20.0957 4872 [ C03AC1FBCD625F93D2C245D97E06F270 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe 19:11:20.0957 4872 C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok 19:11:20.0961 4872 [ 069385484EA57B663D688894C88975C5 ] C:\Windows\System32\wuapp.exe 19:11:20.0961 4872 C:\Windows\System32\wuapp.exe - ok 19:11:20.0966 4872 [ 285C594C4913FA9DC7BB6BA3AD6F101A ] C:\Windows\System32\wucltux.dll 19:11:20.0966 4872 C:\Windows\System32\wucltux.dll - ok 19:11:20.0970 4872 [ 1B593FBB763150BD225DF266C69A9329 ] C:\Windows\System32\mfc42u.dll 19:11:20.0970 4872 C:\Windows\System32\mfc42u.dll - ok 19:11:20.0974 4872 [ DE7F813217EC88C0A6D4D8F2F39D7949 ] C:\Windows\System32\msiltcfg.dll 19:11:20.0974 4872 C:\Windows\System32\msiltcfg.dll - ok 19:11:20.0978 4872 [ DAF60E13E96ECB67F0EDAA89C6B01B8D ] C:\Windows\System32\notepad.exe 19:11:20.0978 4872 C:\Windows\System32\notepad.exe - ok 19:11:20.0983 4872 [ A4A66195EB0ECD574A32AAA92DC0A7BD ] C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe 19:11:20.0983 4872 C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe - ok 19:11:20.0987 4872 [ 941486AB385556BF6A62342F8CA15BD8 ] C:\Windows\System32\accessibilitycpl.dll 19:11:20.0987 4872 C:\Windows\System32\accessibilitycpl.dll - ok 19:11:20.0991 4872 [ 5F420D778511FE963CFF45A7B3E3EA54 ] C:\Program Files\ScanSoft\PaperPort\XMaxUtil.dll 19:11:20.0991 4872 C:\Program Files\ScanSoft\PaperPort\XMaxUtil.dll - ok 19:11:20.0995 4872 [ AFB7C943ADCC595F679D2AB12C7B5096 ] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe 19:11:20.0995 4872 C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe - ok 19:11:21.0000 4872 [ 77F3BE5CA502311C69BF75E52C89F8EE ] C:\Program Files\ScanSoft\PaperPort\MaxRes.dll 19:11:21.0000 4872 C:\Program Files\ScanSoft\PaperPort\MaxRes.dll - ok 19:11:21.0004 4872 [ 10DE220BDFE330073762F89974DB8403 ] C:\Windows\System32\wbem\wmiprov.dll 19:11:21.0004 4872 C:\Windows\System32\wbem\wmiprov.dll - ok 19:11:21.0008 4872 [ E47C854A28A81F2939F42CBE9FEA994C ] C:\Windows\System32\Magnify.exe 19:11:21.0008 4872 C:\Windows\System32\Magnify.exe - ok 19:11:21.0011 4872 [ 25107F58D1B8F60D67D1EE95798C0DE8 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 19:11:21.0011 4872 C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok 19:11:21.0017 4872 [ 27BB54357A51594D9F9B6257B5B9A879 ] C:\Windows\System32\Narrator.exe 19:11:21.0017 4872 C:\Windows\System32\Narrator.exe - ok 19:11:21.0020 4872 [ 73430E79D6DF4DE9055E2A7742B881D3 ] C:\Program Files\QuickTime\QTTask.exe 19:11:21.0020 4872 C:\Program Files\QuickTime\QTTask.exe - ok 19:11:21.0022 4872 [ 877F2939794EBA4F3D1BB967007E99E8 ] C:\Windows\System32\osk.exe 19:11:21.0022 4872 C:\Windows\System32\osk.exe - ok 19:11:21.0027 4872 [ C0ABD66F31C0B84CD944802E6D3D02C2 ] C:\Windows\System32\bthprops.cpl 19:11:21.0027 4872 C:\Windows\System32\bthprops.cpl - ok 19:11:21.0031 4872 [ 82CC8F77E9EC61C6B4D48DD4D5CA78E7 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe 19:11:21.0031 4872 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok 19:11:21.0036 4872 [ 862363973DCBCC31DD161EF41A69153C ] C:\Windows\System32\odbc32.dll 19:11:21.0036 4872 C:\Windows\System32\odbc32.dll - ok 19:11:21.0040 4872 [ FA4B5940B31853ADE67A73026884C8C9 ] C:\Windows\System32\dfshim.dll 19:11:21.0040 4872 C:\Windows\System32\dfshim.dll - ok 19:11:21.0044 4872 [ A73731A0B0A165907799E9AFB461F856 ] C:\Program Files\Real\RealPlayer\Update\realsched.exe 19:11:21.0044 4872 C:\Program Files\Real\RealPlayer\Update\realsched.exe - ok 19:11:21.0051 4872 [ AB6D0A4EBA0B43A83A21F698F3E1BCC8 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\dfdll.dll 19:11:21.0051 4872 C:\Windows\Microsoft.NET\Framework\v4.0.30319\dfdll.dll - ok 19:11:21.0055 4872 [ 215CE077258CEDD5BE4C56E9D614DB9F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll 19:11:21.0055 4872 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok 19:11:21.0060 4872 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll 19:11:21.0060 4872 C:\Windows\System32\msvcr100_clr0400.dll - ok 19:11:21.0064 4872 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe 19:11:21.0064 4872 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok 19:11:21.0069 4872 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe 19:11:21.0069 4872 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok 19:11:21.0073 4872 [ 4AFFDCAADCB1DBBFFAF06C7F82E7F6FC ] C:\Program Files\iTunes\iTunesHelper.exe 19:11:21.0073 4872 C:\Program Files\iTunes\iTunesHelper.exe - ok 19:11:21.0077 4872 [ 60A24CA5E2D760F4F619F1D1FE62FB27 ] C:\Program Files\Steam\Steam.exe 19:11:21.0077 4872 C:\Program Files\Steam\Steam.exe - ok 19:11:21.0081 4872 [ 35937EAD711207544E219C2A19A78A7D ] C:\Program Files\Windows Media Player\wmpnscfg.exe 19:11:21.0081 4872 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok 19:11:21.0085 4872 [ 6D9E1356A9C1B5F36698FAFF9205E34A ] C:\Program Files\Xvid\CheckUpdate.exe 19:11:21.0085 4872 C:\Program Files\Xvid\CheckUpdate.exe - ok 19:11:21.0090 4872 [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Aman Arneja\AppData\Local\Google\Update\GoogleUpdate.exe 19:11:21.0090 4872 C:\Users\Aman Arneja\AppData\Local\Google\Update\GoogleUpdate.exe - ok 19:11:21.0094 4872 [ 9C2D78167B281231DCDDE9B30F56DD46 ] C:\Program Files\ScanSoft\PaperPort\Ereg\EregRes_eng.dll 19:11:21.0094 4872 C:\Program Files\ScanSoft\PaperPort\Ereg\EregRes_eng.dll - ok 19:11:21.0098 4872 [ E2BF206E5164569500742637B5459402 ] C:\Program Files\ScanSoft\PaperPort\BliceCtr.dll 19:11:21.0098 4872 C:\Program Files\ScanSoft\PaperPort\BliceCtr.dll - ok 19:11:21.0103 4872 [ EF24642D5FB52A1EEF56DE9E47CBB993 ] C:\Windows\System32\mfc42.dll 19:11:21.0103 4872 C:\Windows\System32\mfc42.dll - ok 19:11:21.0106 4872 [ 0DAAF8032546D1B4543D7B101B53FD6C ] C:\Windows\System32\odbcint.dll 19:11:21.0106 4872 C:\Windows\System32\odbcint.dll - ok 19:11:21.0111 4872 [ 885A88C268C23618AFB937F1ECE56A20 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll 19:11:21.0111 4872 C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok 19:11:21.0114 4872 [ 7B845BFE314509D08AB5865CB141E332 ] C:\Program Files\iTunes\iTunesHelper.dll 19:11:21.0115 4872 C:\Program Files\iTunes\iTunesHelper.dll - ok 19:11:21.0119 4872 [ 1F8150E96A6C71A7EB1CD104C18B5766 ] C:\Program Files\DellTPad\Apoint.dll 19:11:21.0119 4872 C:\Program Files\DellTPad\Apoint.dll - ok 19:11:21.0124 4872 [ 4E70315D5EBECA70BCCA7EF1F436F701 ] C:\Program Files\Brother\Brmfcmon\BrDbgOut.dll 19:11:21.0124 4872 C:\Program Files\Brother\Brmfcmon\BrDbgOut.dll - ok 19:11:21.0128 4872 [ 98FECA90739BD06F6A1621E87BAB083A ] C:\Program Files\ScanSoft\PaperPort\BindRes.dll 19:11:21.0128 4872 C:\Program Files\ScanSoft\PaperPort\BindRes.dll - ok 19:11:21.0132 4872 [ 8775AFCA82625F18B0FD3D417E511666 ] C:\Windows\System32\Vxdif.dll 19:11:21.0132 4872 C:\Windows\System32\Vxdif.dll - ok 19:11:21.0136 4872 [ 950F6279F51FD8F0D69887F675443C8A ] C:\Program Files\DellTPad\EzAuto.dll 19:11:21.0136 4872 C:\Program Files\DellTPad\EzAuto.dll - ok 19:11:21.0140 4872 [ E46A4765F8E6D631C9C9CB0B083602F5 ] C:\Program Files\Windows Media Player\wmpnssci.dll 19:11:21.0140 4872 C:\Program Files\Windows Media Player\wmpnssci.dll - ok 19:11:21.0145 4872 [ 39F63A3B7D445571116B590D7CC12652 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\qbackup.dll 19:11:21.0146 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\qbackup.dll - ok 19:11:21.0149 4872 [ 785707C979C7523D00BCCB3A60BE7167 ] C:\Program Files\DellTPad\ApMsgFwd.exe 19:11:21.0149 4872 C:\Program Files\DellTPad\ApMsgFwd.exe - ok 19:11:21.0154 4872 [ 648AB74D9C104FB500B6C4EEDC6A8772 ] C:\Windows\System32\wmpmde.dll 19:11:21.0154 4872 C:\Windows\System32\wmpmde.dll - ok 19:11:21.0159 4872 [ 67D16247C56C26A4F0D79D1A7F272B8F ] C:\Windows\System32\mf.dll 19:11:21.0159 4872 C:\Windows\System32\mf.dll - ok 19:11:21.0162 4872 [ A49BA83F79BADEDB12AEDDAE0CB5ED3F ] C:\Program Files\WinRAR\WinRAR.exe 19:11:21.0162 4872 C:\Program Files\WinRAR\WinRAR.exe - ok 19:11:21.0166 4872 [ 2495C4204C63678F8FD5D488CA7DAD26 ] C:\Windows\System32\evr.dll 19:11:21.0166 4872 C:\Windows\System32\evr.dll - ok 19:11:21.0170 4872 [ 4DF10CE50010D70152944B51E03588B0 ] C:\Windows\System32\wmdrmsdk.dll 19:11:21.0170 4872 C:\Windows\System32\wmdrmsdk.dll - ok 19:11:21.0174 4872 [ EFD278F8129EE12F1D4AE0250494B791 ] C:\Windows\System32\dxva2.dll 19:11:21.0174 4872 C:\Windows\System32\dxva2.dll - ok 19:11:21.0178 4872 [ 015E99A7634B93E8BB0380C70F3D2CC3 ] C:\Windows\System32\wmp.dll 19:11:21.0178 4872 C:\Windows\System32\wmp.dll - ok 19:11:21.0181 4872 [ 8367988DC0585700CFA758F18A2EF1AC ] C:\Program Files\AC3Filter\ac3config.exe 19:11:21.0181 4872 C:\Program Files\AC3Filter\ac3config.exe - ok 19:11:21.0186 4872 [ A6C9085DB29CEB92FA32D9EFBAB0471D ] C:\Program Files\AC3Filter\spdif_test.exe 19:11:21.0186 4872 C:\Program Files\AC3Filter\spdif_test.exe - ok 19:11:21.0190 4872 [ CC127EE542BC41BFD7EB3CF6F6DBAA3B ] C:\Program Files\AC3Filter\unins000.exe 19:11:21.0190 4872 C:\Program Files\AC3Filter\unins000.exe - ok 19:11:21.0194 4872 [ 1ED2124313CCE34C877247574212EFC8 ] C:\Windows\System32\calc.exe 19:11:21.0194 4872 C:\Windows\System32\calc.exe - ok 19:11:21.0197 4872 [ 338104E0E18307CD65604FE317B5FB8D ] C:\Windows\System32\mblctr.exe 19:11:21.0198 4872 C:\Windows\System32\mblctr.exe - ok 19:11:21.0202 4872 [ EACACA0F2FF4CC54A909E3C5721FCDE8 ] C:\Windows\System32\msvfw32.dll 19:11:21.0202 4872 C:\Windows\System32\msvfw32.dll - ok 19:11:21.0206 4872 [ B1AFF0B6DED627A1D22A6817DD58AC0F ] C:\Windows\System32\NetProj.exe 19:11:21.0206 4872 C:\Windows\System32\NetProj.exe - ok 19:11:21.0209 4872 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files\Windows Live\Messenger\msgsres.dll 19:11:21.0209 4872 C:\Program Files\Windows Live\Messenger\msgsres.dll - ok 19:11:21.0213 4872 [ A577868F76CEE16D6A82625FD55F379A ] C:\Windows\System32\NetProjW.dll 19:11:21.0213 4872 C:\Windows\System32\NetProjW.dll - ok 19:11:21.0219 4872 [ 694AF8B27C9A0A99399E02CE977F986B ] C:\Windows\System32\mspaint.exe 19:11:21.0219 4872 C:\Windows\System32\mspaint.exe - ok 19:11:21.0221 4872 [ 16FEE292E95EDC274385103E6B498019 ] C:\Windows\System32\mstsc.exe 19:11:21.0221 4872 C:\Windows\System32\mstsc.exe - ok 19:11:21.0225 4872 [ 9E35FF7F943AE0FB89192BFE058B7FD4 ] C:\Program Files\Windows Sidebar\sidebar.exe 19:11:21.0225 4872 C:\Program Files\Windows Sidebar\sidebar.exe - ok 19:11:21.0230 4872 [ E80DB295132C5EF0C623935422BD0FC7 ] C:\Windows\System32\SnippingTool.exe 19:11:21.0230 4872 C:\Windows\System32\SnippingTool.exe - ok 19:11:21.0234 4872 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\12677229.sys 19:11:21.0234 4872 C:\Windows\System32\drivers\12677229.sys - ok 19:11:21.0238 4872 [ 617F9A5813E69F6E9ED94B811EC75396 ] C:\Windows\System32\wmpps.dll 19:11:21.0238 4872 C:\Windows\System32\wmpps.dll - ok 19:11:21.0244 4872 [ 248F33A6C2380757BC1E20E34D9E827B ] C:\Windows\System32\SoundRecorder.exe 19:11:21.0244 4872 C:\Windows\System32\SoundRecorder.exe - ok 19:11:21.0248 4872 [ 9B89B3BB79EA1ACF041F40A7B6FC5827 ] C:\Windows\System32\mobsync.exe 19:11:21.0248 4872 C:\Windows\System32\mobsync.exe - ok 19:11:21.0253 4872 [ F1ECEC53B9FFC30E123D14E087C49111 ] C:\Windows\System32\wmdrmdev.dll 19:11:21.0253 4872 C:\Windows\System32\wmdrmdev.dll - ok 19:11:21.0256 4872 [ 16FC5B430123238E522B18E63C257AF8 ] C:\Windows\System32\oobefldr.dll 19:11:21.0256 4872 C:\Windows\System32\oobefldr.dll - ok 19:11:21.0260 4872 [ 7C7C620860819A62F926D7EC0B72C50B ] C:\Windows\System32\drmv2clt.dll 19:11:21.0260 4872 C:\Windows\System32\drmv2clt.dll - ok 19:11:21.0264 4872 [ 19D0FC69D4E68D5CE2E4B34940529727 ] C:\Program Files\Windows NT\Accessories\wordpad.exe 19:11:21.0264 4872 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok 19:11:21.0270 4872 [ 105A4D87C8DCF2CF5DB042830B203E5F ] C:\Windows\Speech\Common\sapisvr.exe 19:11:21.0270 4872 C:\Windows\Speech\Common\sapisvr.exe - ok 19:11:21.0273 4872 [ 9AD8AEAAB3EB89277AF1DDF31B14F90F ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl 19:11:21.0273 4872 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok 19:11:21.0275 4872 [ A623666C8A8EC9A57DCA07915A3F1EC6 ] C:\Windows\System32\sdclt.exe 19:11:21.0275 4872 C:\Windows\System32\sdclt.exe - ok 19:11:21.0279 4872 [ BB4910DE8B6C5E30DF39EC97308D44BA ] C:\Windows\System32\charmap.exe 19:11:21.0279 4872 C:\Windows\System32\charmap.exe - ok 19:11:21.0283 4872 [ 2327C11B043FCEB80BE00CC8D077E9AA ] C:\Windows\System32\dfrgui.exe 19:11:21.0283 4872 C:\Windows\System32\dfrgui.exe - ok 19:11:21.0288 4872 [ 86AB3F6C784197DC1D994A83AF4259CD ] C:\Windows\System32\cleanmgr.exe 19:11:21.0288 4872 C:\Windows\System32\cleanmgr.exe - ok 19:11:21.0293 4872 [ FBF628702A408977FEB0845D48F4F154 ] C:\Windows\System32\migwiz\migwiz.exe 19:11:21.0293 4872 C:\Windows\System32\migwiz\migwiz.exe - ok 19:11:21.0297 4872 [ D3D1CE8FF30786D50272DA3085149904 ] C:\Windows\System32\msinfo32.exe 19:11:21.0297 4872 C:\Windows\System32\msinfo32.exe - ok 19:11:21.0300 4872 [ 95D5AC5CCBE10E8B4B8A0DF41022568D ] C:\Windows\System32\rstrui.exe 19:11:21.0301 4872 C:\Windows\System32\rstrui.exe - ok 19:11:21.0305 4872 [ B13A8D6F708AA2034A9DE0979F81D890 ] C:\Windows\System32\miguiresource.dll 19:11:21.0305 4872 C:\Windows\System32\miguiresource.dll - ok 19:11:21.0309 4872 [ C9B520028498E5DA23651619F8A556D4 ] C:\Windows\System32\StikyNot.exe 19:11:21.0309 4872 C:\Windows\System32\StikyNot.exe - ok 19:11:21.0315 4872 [ 7122B0AA2212B07BBFC49BD22215BF3B ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 19:11:21.0315 4872 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok 19:11:21.0324 4872 [ C20436B4F0596ACD5569749206F99265 ] C:\Program Files\Windows Journal\Journal.exe 19:11:21.0324 4872 C:\Program Files\Windows Journal\Journal.exe - ok 19:11:21.0327 4872 [ 36B6F71B6D7D280302B348145DB05A9F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe 19:11:21.0327 4872 C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe - ok 19:11:21.0333 4872 [ DF4217DDB34A0B73DC7AAC7829371C0C ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe 19:11:21.0333 4872 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok 19:11:21.0339 4872 [ 4CAAD229A00C0DEFFF51841AE2B93B46 ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll 19:11:21.0339 4872 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll - ok 19:11:21.0344 4872 [ 2CB350B72FEA6FB5A010099A4444B636 ] C:\Windows\System32\mycomput.dll 19:11:21.0344 4872 C:\Windows\System32\mycomput.dll - ok 19:11:21.0348 4872 [ 1C474C0C4CB5F15A555FE912CBF4549C ] C:\Windows\System32\odbcad32.exe 19:11:21.0348 4872 C:\Windows\System32\odbcad32.exe - ok 19:11:21.0354 4872 [ 1CB1B95D67BC380FBCCFAEA3CF2DDA80 ] C:\Windows\System32\iscsicpl.exe 19:11:21.0354 4872 C:\Windows\System32\iscsicpl.exe - ok 19:11:21.0357 4872 [ F84D0B1B90404D0A27E86F159FBDAC81 ] C:\Windows\System32\iscsicpl.dll 19:11:21.0357 4872 C:\Windows\System32\iscsicpl.dll - ok 19:11:21.0360 4872 [ 8D865A3E7E2C78317EDE4EAE8316284F ] C:\Windows\System32\MdSched.exe 19:11:21.0360 4872 C:\Windows\System32\MdSched.exe - ok 19:11:21.0364 4872 [ 1959E5AAEE0D988C10F19CEC7DFF2242 ] C:\Windows\System32\wdc.dll 19:11:21.0364 4872 C:\Windows\System32\wdc.dll - ok 19:11:21.0368 4872 [ 90438B514A5AC6A23602484A907E20A7 ] C:\Windows\System32\filemgmt.dll 19:11:21.0368 4872 C:\Windows\System32\filemgmt.dll - ok 19:11:21.0373 4872 [ 7629E9BB2FF06EACA62580A2C1D4FE6A ] C:\Windows\System32\msconfig.exe 19:11:21.0373 4872 C:\Windows\System32\msconfig.exe - ok 19:11:21.0376 4872 [ 0ADED25D371AE14665CE514E413988E7 ] C:\Windows\System32\AuthFWGP.dll 19:11:21.0376 4872 C:\Windows\System32\AuthFWGP.dll - ok 19:11:21.0381 4872 [ D5864EA9DE2E9C2EA8777A564E3E4408 ] C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe 19:11:21.0381 4872 C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe - ok 19:11:21.0385 4872 [ B787DB00559F332CF78653EC795A097D ] C:\Program Files\Amazon\Amazon Games & Software Downloader\uninst\unins000.exe 19:11:21.0387 4872 C:\Program Files\Amazon\Amazon Games & Software Downloader\uninst\unins000.exe - ok 19:11:21.0390 4872 [ CE11AAB746685235A1A607C2998E40A9 ] C:\Program Files\Brother\ControlCenter3\BrCtrCen.exe 19:11:21.0391 4872 C:\Program Files\Brother\ControlCenter3\BrCtrCen.exe - ok 19:11:21.0395 4872 [ 2F8B3326F4C7F31D80B97F0D5D3DBAFF ] C:\Program Files\Brother\Brmfl07b\Brinstck.exe 19:11:21.0395 4872 C:\Program Files\Brother\Brmfl07b\Brinstck.exe - ok 19:11:21.0399 4872 [ 27C9A12D64E5E7F6A395A2D0B8610522 ] C:\Program Files\Brother\Brmfl07b\Brolink\Brolink0.exe 19:11:21.0399 4872 C:\Program Files\Brother\Brmfl07b\Brolink\Brolink0.exe - ok 19:11:21.0404 4872 [ B2999D641A75CD6CB6D607BA12D67ADA ] C:\Program Files\Brother\Brmfl07b\brmfrmss.exe 19:11:21.0404 4872 C:\Program Files\Brother\Brmfl07b\brmfrmss.exe - ok 19:11:21.0408 4872 [ FBAB280D0CAC5E21C72F0A1A7B5B9608 ] C:\Program Files\InstallShield Installation Information\{46E1B1F2-A279-4356-9B17-029F9CC72EAE}\setup.exe 19:11:21.0408 4872 C:\Program Files\InstallShield Installation Information\{46E1B1F2-A279-4356-9B17-029F9CC72EAE}\setup.exe - ok 19:11:21.0412 4872 [ 110A6F2697DA6DB4CABDC6C593F8EC92 ] C:\Windows\brunin03.dll 19:11:21.0412 4872 C:\Windows\brunin03.dll - ok 19:11:21.0416 4872 [ 7C5749854AE6D3601773BF6790BF670C ] C:\Program Files\Brother\Brmfl07b\FAXRX.exe 19:11:21.0416 4872 C:\Program Files\Brother\Brmfl07b\FAXRX.exe - ok 19:11:21.0421 4872 [ 2C8D2C83389DB71670954383F232816E ] C:\Program Files\Brother\Brmfl07b\rms2csv.exe 19:11:21.0421 4872 C:\Program Files\Brother\Brmfl07b\rms2csv.exe - ok 19:11:21.0425 4872 [ A6D6C0EA425017811E00D8C97A9CFE18 ] C:\Program Files\Brother\Brmfl07b\AddrBook.exe 19:11:21.0425 4872 C:\Program Files\Brother\Brmfl07b\AddrBook.exe - ok 19:11:21.0429 4872 [ AE896A751289BBCD76680B066DB0807C ] C:\Program Files\Brother\Brmfl07b\PCfxSet.exe 19:11:21.0429 4872 C:\Program Files\Brother\Brmfl07b\PCfxSet.exe - ok 19:11:21.0433 4872 [ 34E7FF5EE9B54197D908E2FB2D916787 ] C:\Program Files\Brother\Brmfl07b\BrScUtil.exe 19:11:21.0434 4872 C:\Program Files\Brother\Brmfl07b\BrScUtil.exe - ok 19:11:21.0440 4872 [ 0729A2E7124D39DC9791531247610CB8 ] C:\Program Files\CCleaner\uninst.exe 19:11:21.0440 4872 C:\Program Files\CCleaner\uninst.exe - ok 19:11:21.0446 4872 [ 46B5995A4D051D4AAD4F9BC7D0941197 ] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Avatar\CT4IM.exe 19:11:21.0446 4872 C:\Program Files\Creative\Creative Live! Cam\Live! Cam Avatar\CT4IM.exe - ok 19:11:21.0450 4872 [ 1108B166160D6023AF76435B074052B6 ] C:\Program Files\InstallShield Installation Information\{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}\setup.exe 19:11:21.0450 4872 C:\Program Files\InstallShield Installation Information\{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}\setup.exe - ok 19:11:21.0455 4872 [ 674E3D3514A737B94B4386684F2A3673 ] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Avatar Creator\CT Program\CTIEMain.exe 19:11:21.0455 4872 C:\Program Files\Creative\Creative Live! Cam\Live! Cam Avatar Creator\CT Program\CTIEMain.exe - ok 19:11:21.0460 4872 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL 19:11:21.0460 4872 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok 19:11:21.0464 4872 [ 1108B166160D6023AF76435B074052B6 ] C:\Program Files\InstallShield Installation Information\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}\setup.exe 19:11:21.0464 4872 C:\Program Files\InstallShield Installation Information\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}\setup.exe - ok 19:11:21.0469 4872 [ 02F0BE91B0F2B1C30F6F48334F47D625 ] C:\Windows\System32\blackbox.dll 19:11:21.0469 4872 C:\Windows\System32\blackbox.dll - ok 19:11:21.0473 4872 [ CEA0461AAE4B8B6216F164501B1B5A10 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe 19:11:21.0473 4872 C:\Program Files\DAEMON Tools Lite\DTLite.exe - ok 19:11:21.0477 4872 [ D571295B71C60A67F6F2EA987E5CC3B0 ] C:\Windows\System32\wmdrmnet.dll 19:11:21.0478 4872 C:\Windows\System32\wmdrmnet.dll - ok 19:11:21.0482 4872 [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\System32\WMVCORE.DLL 19:11:21.0482 4872 C:\Windows\System32\WMVCORE.DLL - ok 19:11:21.0485 4872 [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\System32\WMASF.DLL 19:11:21.0486 4872 C:\Windows\System32\WMASF.DLL - ok 19:11:21.0490 4872 [ FD62E3B8D7E193AB19E71F26C1FC81B6 ] C:\Program Files\DAEMON Tools Lite\SPTDinst-x86.exe 19:11:21.0490 4872 C:\Program Files\DAEMON Tools Lite\SPTDinst-x86.exe - ok 19:11:21.0495 4872 [ 92E541CB724A8A0EE3F04469B8099C04 ] C:\Program Files\DAEMON Tools Lite\uninst.exe 19:11:21.0495 4872 C:\Program Files\DAEMON Tools Lite\uninst.exe - ok 19:11:21.0499 4872 [ 32F35EA9D6273ECB6E0CB3EEE9665AAB ] C:\Program Files\Dell\Dell Welcome\welcome.exe 19:11:21.0499 4872 C:\Program Files\Dell\Dell Welcome\welcome.exe - ok 19:11:21.0503 4872 [ C10EA8692D2E9DDB310999E738607811 ] C:\Windows\Installer\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}\Icon28DFA10C.pdf 19:11:21.0503 4872 C:\Windows\Installer\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}\Icon28DFA10C.pdf - ok 19:11:21.0508 4872 [ A9E853143783526DA70F62633EE2EC8C ] C:\Windows\Installer\{4B6AD248-D3BF-426A-8D64-847288154F13}\NewShortcut1_53A01CC614B04512A2E710D39BF83DC4.exe 19:11:21.0508 4872 C:\Windows\Installer\{4B6AD248-D3BF-426A-8D64-847288154F13}\NewShortcut1_53A01CC614B04512A2E710D39BF83DC4.exe - ok 19:11:21.0512 4872 [ F0963D45DB8935843EF96A2FCEC03DCF ] C:\Windows\Installer\{4B6AD248-D3BF-426A-8D64-847288154F13}\NewShortcut4_7F0C44578E64491B8D7B991504365D1E.exe 19:11:21.0512 4872 C:\Windows\Installer\{4B6AD248-D3BF-426A-8D64-847288154F13}\NewShortcut4_7F0C44578E64491B8D7B991504365D1E.exe - ok 19:11:21.0517 4872 [ E8BD16191FCCD3AAF7CC8F8E3E6E0E36 ] C:\Program Files\Dell\Dell Webcam Center\LiveCamDe.exe 19:11:21.0517 4872 C:\Program Files\Dell\Dell Webcam Center\LiveCamDe.exe - ok 19:11:21.0522 4872 [ DAC9B43BBFA0359E252DDB0CB91DEA6D ] C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe 19:11:21.0522 4872 C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe - ok 19:11:21.0524 4872 [ 621B8AB85B3F0AE42E058ABBBD483048 ] C:\Windows\System32\OEM02Cvw.crl 19:11:21.0524 4872 C:\Windows\System32\OEM02Cvw.crl - ok 19:11:21.0528 4872 [ D0E5DCE4CEC8BF33F4CD76CF35C460ED ] C:\Windows\System32\BCMWLCPL.CPL 19:11:21.0528 4872 C:\Windows\System32\BCMWLCPL.CPL - ok 19:11:21.0532 4872 [ CC8F658DC286565CBB2A877B081F7E10 ] C:\Program Files\EA Sports\Madden NFL 08\Madden08.exe 19:11:21.0532 4872 C:\Program Files\EA Sports\Madden NFL 08\Madden08.exe - ok 19:11:21.0536 4872 [ 10844CA3FD2F698212DC600FEC2A015C ] C:\Program Files\EA Sports\Madden NFL 08\eauninstall.exe 19:11:21.0536 4872 C:\Program Files\EA Sports\Madden NFL 08\eauninstall.exe - ok 19:11:21.0541 4872 [ A7146C0C90D7BA0F251AC073E655D4D2 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll 19:11:21.0541 4872 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok 19:11:21.0545 4872 [ 626F198768F67A0FEB3AD909E638F551 ] C:\Windows\System32\WindowsAnytimeUpgrade.exe 19:11:21.0545 4872 C:\Windows\System32\WindowsAnytimeUpgrade.exe - ok 19:11:21.0550 4872 [ 554BF617B3BBE4F2F73BF201B05438DE ] C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll 19:11:21.0550 4872 C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll - ok 19:11:21.0556 4872 [ 320A7DC47EB84997D940ACF45704F50C ] C:\Program Files\Fingerprint Reader Suite\ctlcntr.exe 19:11:21.0556 4872 C:\Program Files\Fingerprint Reader Suite\ctlcntr.exe - ok 19:11:21.0559 4872 [ 313C9E464FE16CFD0B601D921480EE08 ] C:\Program Files\Fingerprint Reader Suite\launchte.exe 19:11:21.0559 4872 C:\Program Files\Fingerprint Reader Suite\launchte.exe - ok 19:11:21.0563 4872 [ 324A620ED37D1C26361A6C9911813888 ] C:\Program Files\Fingerprint Reader Suite\startmui.exe 19:11:21.0563 4872 C:\Program Files\Fingerprint Reader Suite\startmui.exe - ok 19:11:21.0568 4872 [ 2192C4075AFDF85C877D6E324090E249 ] C:\Program Files\Fingerprint Reader Suite\enrollbtn.exe 19:11:21.0568 4872 C:\Program Files\Fingerprint Reader Suite\enrollbtn.exe - ok 19:11:21.0572 4872 [ 30F2396AD4A22E87F99F5C3C30EB1490 ] C:\Program Files\IObit\Game Booster 3\unins000.exe 19:11:21.0572 4872 C:\Program Files\IObit\Game Booster 3\unins000.exe - ok 19:11:21.0576 4872 [ 4304D04DFDAAE621171A2F955981016E ] C:\Program Files\Microsoft Games\Chess\Chess.exe 19:11:21.0576 4872 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok 19:11:21.0580 4872 [ 21AD332BE723EFE40D9F32AD97BA8376 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe 19:11:21.0580 4872 C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok 19:11:21.0584 4872 [ 9A75518600FBA10980EE94267CA98489 ] C:\Windows\System32\gameux.dll 19:11:21.0584 4872 C:\Windows\System32\gameux.dll - ok 19:11:21.0589 4872 [ 6ED28075D6D9E0C0464048A30432A142 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe 19:11:21.0589 4872 C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok 19:11:21.0593 4872 [ EFF7DBEE92519EB96F70E1E31FDE7098 ] C:\Program Files\Microsoft Games\inkball\inkball.exe 19:11:21.0593 4872 C:\Program Files\Microsoft Games\inkball\inkball.exe - ok 19:11:21.0597 4872 [ 7A88900F2F11882FFCE3BF3D4EAEFB4B ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe 19:11:21.0597 4872 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok 19:11:21.0601 4872 [ C8C383E6AA546780B2AD3034D6F6ACEF ] C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe 19:11:21.0601 4872 C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe - ok 19:11:21.0606 4872 [ 3F903BDD206EB3C688651048B5E304E1 ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe 19:11:21.0606 4872 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok 19:11:21.0610 4872 [ 07302F014858D038CB93CC349505D0E6 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe 19:11:21.0610 4872 C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok 19:11:21.0614 4872 [ 401A203AB058DEC44BD44AA81BF2CB64 ] C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe 19:11:21.0614 4872 C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe - ok 19:11:21.0619 4872 [ AD718751D220D3A974B8777F9A905539 ] C:\Program Files\Google\Chrome\Application\21.0.1180.89\Installer\setup.exe 19:11:21.0619 4872 C:\Program Files\Google\Chrome\Application\21.0.1180.89\Installer\setup.exe - ok 19:11:21.0624 4872 [ EFB85620BE0EA4A1E998D4227CE06078 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ff52fc65db88feb6c203259731a8d0ea\IAStorUtil.ni.dll 19:11:21.0624 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ff52fc65db88feb6c203259731a8d0ea\IAStorUtil.ni.dll - ok 19:11:21.0629 4872 ============================================================ 19:11:21.0629 4872 Scan finished 19:11:21.0629 4872 ============================================================ 19:11:21.0641 4864 Detected object count: 3 19:11:21.0641 4864 Actual detected object count: 3 19:12:07.0994 4864 Amazon Download Agent ( UnsignedFile.Multi.Generic ) - skipped by user 19:12:07.0994 4864 Amazon Download Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip 19:12:07.0996 4864 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user 19:12:07.0996 4864 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip 19:12:07.0997 4864 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user 19:12:07.0997 4864 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip 19:21:31.0760 1656 Deinitialize success

19:11:19.0085 4872 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll 19:11:19.0085 4872 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok 19:11:19.0090 4872 [ D339D7F6E52AECCA9C0898CB547B2902 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll 19:11:19.0090 4872 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok 19:11:19.0094 4872 [ 5F3347EBA403EE64780980A5BAF10304 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll 19:11:19.0094 4872 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok 19:11:19.0100 4872 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll 19:11:19.0100 4872 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok 19:11:19.0104 4872 [ 3787A4BC97CE6C630F4B581425223D96 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll 19:11:19.0104 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok 19:11:19.0108 4872 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll 19:11:19.0108 4872 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok 19:11:19.0114 4872 [ 09B7E7CD6F202247B3CF2306108589C2 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll 19:11:19.0114 4872 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok 19:11:19.0117 4872 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll 19:11:19.0118 4872 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok 19:11:19.0122 4872 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll 19:11:19.0122 4872 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok 19:11:19.0126 4872 [ 74E77B2B636E1325BF094CA139E0E307 ] C:\Windows\System32\bcmwlrmt.dll 19:11:19.0126 4872 C:\Windows\System32\bcmwlrmt.dll - ok 19:11:19.0131 4872 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll 19:11:19.0131 4872 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok 19:11:19.0135 4872 [ 766DDBD42E50735A95378784E9A01C35 ] C:\Windows\System32\wltrynt.dll 19:11:19.0135 4872 C:\Windows\System32\wltrynt.dll - ok 19:11:19.0139 4872 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll 19:11:19.0139 4872 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok 19:11:19.0143 4872 [ 1E03BABB4D6CA5C27BD2C822F7F95788 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll 19:11:19.0143 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll - ok 19:11:19.0148 4872 [ 5CAD3395A4720BF735836D125297229A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll 19:11:19.0148 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\846b9cf2756fdd15f704c9bab9c70b6f\System.Runtime.Remoting.ni.dll - ok 19:11:19.0153 4872 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll 19:11:19.0153 4872 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok 19:11:19.0157 4872 [ 5A6BFE723CF0E6E39021CDC01CA57EED ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll 19:11:19.0158 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll - ok 19:11:19.0162 4872 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll 19:11:19.0162 4872 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok 19:11:19.0167 4872 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll 19:11:19.0167 4872 C:\Windows\System32\dnssd.dll - ok 19:11:19.0171 4872 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll 19:11:19.0171 4872 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok 19:11:19.0176 4872 [ 6163664C7E9CD110AF70180C126C3FDC ] C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 19:11:19.0176 4872 C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe - ok 19:11:19.0182 4872 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 19:11:19.0182 4872 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok 19:11:19.0186 4872 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll 19:11:19.0186 4872 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok 19:11:19.0191 4872 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe 19:11:19.0191 4872 C:\Program Files\Bonjour\mDNSResponder.exe - ok 19:11:19.0195 4872 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll 19:11:19.0195 4872 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok 19:11:19.0200 4872 [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll 19:11:19.0200 4872 C:\Windows\System32\vssapi.dll - ok 19:11:19.0204 4872 [ F2840DBFE9322F35557219AE82CC4597 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsvchst.exe 19:11:19.0204 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsvchst.exe - ok 19:11:19.0210 4872 [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll 19:11:19.0210 4872 C:\Windows\System32\wdscore.dll - ok 19:11:19.0217 4872 [ 4853FAA23868E66FD66DC81B8DD42333 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccl110u.dll 19:11:19.0217 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccl110u.dll - ok 19:11:19.0225 4872 [ AD48183027CAFCEBC322CB9CAC60F9B8 ] C:\Windows\System32\WSDApi.dll 19:11:19.0225 4872 C:\Windows\System32\WSDApi.dll - ok 19:11:19.0230 4872 [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll 19:11:19.0230 4872 C:\Windows\System32\fundisc.dll - ok 19:11:19.0248 4872 [ F86293D93760C70ADF4F19E66E3FA5E8 ] C:\Windows\System32\httpapi.dll 19:11:19.0249 4872 C:\Windows\System32\httpapi.dll - ok 19:11:19.0254 4872 [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\System32\msxml3.dll 19:11:19.0254 4872 C:\Windows\System32\msxml3.dll - ok 19:11:19.0258 4872 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll 19:11:19.0258 4872 C:\Windows\System32\dbghelp.dll - ok 19:11:19.0262 4872 [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll 19:11:19.0262 4872 C:\Windows\System32\taskschd.dll - ok 19:11:19.0267 4872 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 19:11:19.0267 4872 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok 19:11:19.0271 4872 [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll 19:11:19.0271 4872 C:\Windows\System32\diagperf.dll - ok 19:11:19.0275 4872 [ 1E9B9A70D332103C52995E957DC09EF8 ] C:\Windows\System32\drivers\fastfat.sys 19:11:19.0276 4872 C:\Windows\System32\drivers\fastfat.sys - ok 19:11:19.0286 4872 [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll 19:11:19.0286 4872 C:\Windows\System32\vsstrace.dll - ok 19:11:19.0293 4872 [ F798A893C8C214F74889DBF9D3A412DE ] C:\Windows\System32\cryptnet.dll 19:11:19.0293 4872 C:\Windows\System32\cryptnet.dll - ok 19:11:19.0301 4872 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll 19:11:19.0301 4872 C:\Windows\System32\SensApi.dll - ok 19:11:19.0306 4872 [ 2257C98561EBAC594A8BB797970D6D54 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccvrtrst.dll 19:11:19.0306 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccvrtrst.dll - ok 19:11:19.0310 4872 [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys 19:11:19.0310 4872 C:\Windows\System32\drivers\PEAuth.sys - ok 19:11:19.0317 4872 [ 52364B2BBA5D1CB4E6A55076EB184D90 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\efacli.dll 19:11:19.0317 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\efacli.dll - ok 19:11:19.0319 4872 [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL 19:11:19.0319 4872 C:\Windows\System32\IPSECSVC.DLL - ok 19:11:19.0323 4872 [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll 19:11:19.0323 4872 C:\Windows\System32\cfgmgr32.dll - ok 19:11:19.0327 4872 [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll 19:11:19.0327 4872 C:\Windows\System32\ncsi.dll - ok 19:11:19.0331 4872 [ 8B8EEDA3D4B9C32170918B4EB8EF023B ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsvc.dll 19:11:19.0331 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsvc.dll - ok 19:11:19.0336 4872 [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll 19:11:19.0336 4872 C:\Windows\System32\ssdpapi.dll - ok 19:11:19.0340 4872 [ 65D64BB840ABF8AA317E1A56595C5E28 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\srtsp32.dll 19:11:19.0340 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\srtsp32.dll - ok 19:11:19.0345 4872 [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll 19:11:19.0345 4872 C:\Windows\System32\FwRemoteSvr.dll - ok 19:11:19.0350 4872 [ 753D254205E0A62100A050BD8B458D06 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 19:11:19.0350 4872 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok 19:11:19.0354 4872 [ 79ED7408D94471522D5C34BA10BCC7B9 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccipc.dll 19:11:19.0354 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccipc.dll - ok 19:11:19.0358 4872 [ 284DAE55DED345F240DF806D45711E0B ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\dimaster.dll 19:11:19.0358 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\dimaster.dll - ok 19:11:19.0367 4872 [ 1FB830EB312A6AFEC385BB3927545AE2 ] C:\Program Files\Common Files\Apple\Mobile Device Support\ssleay32.dll 19:11:19.0367 4872 C:\Program Files\Common Files\Apple\Mobile Device Support\ssleay32.dll - ok 19:11:19.0370 4872 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll 19:11:19.0370 4872 C:\Windows\System32\msi.dll - ok 19:11:19.0374 4872 [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll 19:11:19.0374 4872 C:\Windows\System32\wbemcomn.dll - ok 19:11:19.0378 4872 [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll 19:11:19.0378 4872 C:\Windows\System32\wbem\wbemprox.dll - ok 19:11:19.0384 4872 [ B151F5A52F098F3C718E8F9BC03AA034 ] C:\Program Files\Common Files\Apple\Mobile Device Support\libeay32.dll 19:11:19.0384 4872 C:\Program Files\Common Files\Apple\Mobile Device Support\libeay32.dll - ok 19:11:19.0387 4872 [ 5684762CF40116976A0007EECD5A587D ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccset.dll 19:11:19.0387 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccset.dll - ok 19:11:19.0391 4872 [ D810B8996608832B6AD64F3AFCA7C280 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cosvcplg.dll 19:11:19.0391 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cosvcplg.dll - ok 19:11:19.0396 4872 [ 024BD741E58270955FFA08ABBF44E823 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coFFPlgn.dll 19:11:19.0396 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coFFPlgn.dll - ok 19:11:19.0401 4872 [ 3A9738A0C71A9A5098356BD3AA46D0BD ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccgevt.dll 19:11:19.0401 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccgevt.dll - ok 19:11:19.0405 4872 [ E036AA5E1F4A94C2D7058192DA0514BA ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccglog.dll 19:11:19.0405 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccglog.dll - ok 19:11:19.0410 4872 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files\Skype\Updater\Updater.exe 19:11:19.0410 4872 C:\Program Files\Skype\Updater\Updater.exe - ok 19:11:19.0414 4872 [ 024BD741E58270955FFA08ABBF44E823 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\coFFPlgn\components\coFFPlgn.dll 19:11:19.0414 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\coFFPlgn\components\coFFPlgn.dll - ok 19:11:19.0419 4872 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll 19:11:19.0419 4872 C:\Windows\System32\actxprxy.dll - ok 19:11:19.0423 4872 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll 19:11:19.0423 4872 C:\Windows\System32\shdocvw.dll - ok 19:11:19.0427 4872 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 19:11:19.0427 4872 C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - ok 19:11:19.0431 4872 [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll 19:11:19.0431 4872 C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok 19:11:19.0436 4872 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll 19:11:19.0436 4872 C:\Windows\System32\ntshrui.dll - ok 19:11:19.0440 4872 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll 19:11:19.0440 4872 C:\Windows\System32\cscapi.dll - ok 19:11:19.0444 4872 [ D89083C4EB02DACA8F944B0E05E57F9D ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 19:11:19.0444 4872 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok 19:11:19.0448 4872 [ 0D77436DA61BE7338BC600F0D8773331 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll 19:11:19.0448 4872 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll - ok 19:11:19.0453 4872 [ 7E6DD4B34ACD36AF6C711D2BDE91B040 ] C:\Windows\System32\stacsv.exe 19:11:19.0453 4872 C:\Windows\System32\stacsv.exe - ok 19:11:19.0456 4872 [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\System32\dsound.dll 19:11:19.0456 4872 C:\Windows\System32\dsound.dll - ok 19:11:19.0461 4872 [ 93ED9FF632CEE1D181CD89BB67256C92 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccjobmgr.dll 19:11:19.0461 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccjobmgr.dll - ok 19:11:19.0465 4872 [ A9E790F2C9B5F22EC9E9BE7855B9BFFC ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsubeng.dll 19:11:19.0465 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccsubeng.dll - ok 19:11:19.0471 4872 [ 3662262608ADC5DEA6FD9F5AC465528D ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccemlpxy.dll 19:11:19.0471 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccemlpxy.dll - ok 19:11:19.0475 4872 [ 9225F181166C0FD8A4763611045D3C30 ] C:\Windows\System32\stapi32.dll 19:11:19.0475 4872 C:\Windows\System32\stapi32.dll - ok 19:11:19.0479 4872 [ 99056A9FF85141B3337C5D392DD9EBA7 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\iron.dll 19:11:19.0479 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\iron.dll - ok 19:11:19.0485 4872 [ 608C345A255D82A6289C2D468EB41FD7 ] C:\Windows\System32\drivers\tcpipreg.sys 19:11:19.0485 4872 C:\Windows\System32\drivers\tcpipreg.sys - ok 19:11:19.0488 4872 [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll 19:11:19.0488 4872 C:\Windows\System32\wiatrace.dll - ok 19:11:19.0492 4872 [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll 19:11:19.0492 4872 C:\Windows\System32\wsdchngr.dll - ok 19:11:19.0495 4872 [ 1DAFB965705E8128630CC472192320FE ] C:\Windows\System32\BrWia07b.dll 19:11:19.0496 4872 C:\Windows\System32\BrWia07b.dll - ok 19:11:19.0499 4872 [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll 19:11:19.0499 4872 C:\Windows\System32\wbem\WinMgmtR.dll - ok 19:11:19.0504 4872 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE 19:11:19.0504 4872 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok 19:11:19.0508 4872 [ 7EABAA542A7DA553552128F595DDA08E ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sndsvc.dll 19:11:19.0508 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sndsvc.dll - ok 19:11:19.0512 4872 [ 0C84B6AFFA7486422235584110D7176F ] C:\Windows\System32\icaapi.dll 19:11:19.0512 4872 C:\Windows\System32\icaapi.dll - ok 19:11:19.0516 4872 [ 46DD33E12D12A03CABF009FBB3F3D0E4 ] C:\Windows\System32\mpnotify.exe 19:11:19.0516 4872 C:\Windows\System32\mpnotify.exe - ok 19:11:19.0519 4872 [ 7601A29152ED8EDF2478DEBF5CDD89B6 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symrdrsv.dll 19:11:19.0519 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symrdrsv.dll - ok 19:11:19.0524 4872 [ 2CFE545ABAFCE9AB0C375DC05CE831C7 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symredir.dll 19:11:19.0524 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symredir.dll - ok 19:11:19.0528 4872 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL 19:11:19.0528 4872 C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok 19:11:19.0532 4872 [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\System32\wer.dll 19:11:19.0532 4872 C:\Windows\System32\wer.dll - ok 19:11:19.0538 4872 [ A9318D1D48956CAEA4D7D88925BAE218 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\hncore.dll 19:11:19.0538 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\hncore.dll - ok 19:11:19.0542 4872 [ 97C8FC42065E54C0FB764ED3A22443DB ] C:\Windows\System32\BrMuSNMP.dll 19:11:19.0542 4872 C:\Windows\System32\BrMuSNMP.dll - ok 19:11:19.0547 4872 [ D84049BAD4B5457972F1455D5650E245 ] C:\Windows\System32\BrNetSti.dll 19:11:19.0547 4872 C:\Windows\System32\BrNetSti.dll - ok 19:11:19.0552 4872 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll 19:11:19.0552 4872 C:\Program Files\Bonjour\mdnsNSP.dll - ok 19:11:19.0557 4872 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll 19:11:19.0557 4872 C:\Windows\System32\winrnr.dll - ok 19:11:19.0561 4872 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll 19:11:19.0561 4872 C:\Windows\System32\rasadhlp.dll - ok 19:11:19.0564 4872 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll 19:11:19.0565 4872 C:\Windows\System32\netprofm.dll - ok 19:11:19.0569 4872 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll 19:11:19.0569 4872 C:\Windows\System32\npmproxy.dll - ok 19:11:19.0573 4872 [ 6DF0E2C64CD2C719A5530B302C792186 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\appmgr32.dll 19:11:19.0573 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\appmgr32.dll - ok 19:11:19.0577 4872 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll 19:11:19.0577 4872 C:\Windows\System32\PortableDeviceApi.dll - ok 19:11:19.0581 4872 [ BF7E4D6F60A6D9E866432855C6F8C262 ] C:\Windows\System32\sqmapi.dll 19:11:19.0581 4872 C:\Windows\System32\sqmapi.dll - ok 19:11:19.0586 4872 [ C649F293B8B047A2694F3C615D09BF17 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE 19:11:19.0586 4872 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok 19:11:19.0590 4872 [ B53BD9E63867CD9FD853F666CA172713 ] C:\Windows\System32\PortableDeviceConnectApi.dll 19:11:19.0590 4872 C:\Windows\System32\PortableDeviceConnectApi.dll - ok 19:11:19.0594 4872 [ 1D6B95871DC006190964B04E5657E35F ] C:\Windows\System32\rastapi.dll 19:11:19.0594 4872 C:\Windows\System32\rastapi.dll - ok 19:11:19.0598 4872 [ FF6B44E0BD9C3941A9D7764839100AC6 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symneti.dll 19:11:19.0599 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symneti.dll - ok 19:11:19.0603 4872 [ B96B60EC821F86D445C9739A0F3DED59 ] C:\Windows\System32\unimdm.tsp 19:11:19.0603 4872 C:\Windows\System32\unimdm.tsp - ok 19:11:19.0608 4872 [ 9133538A1D892C07C2C724CC87775907 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\isdatapr.dll 19:11:19.0608 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\isdatapr.dll - ok 19:11:19.0612 4872 [ A952D0DED445F26AEFCF593A935AB300 ] C:\Windows\System32\hnetcfg.dll 19:11:19.0612 4872 C:\Windows\System32\hnetcfg.dll - ok 19:11:19.0615 4872 [ DFBAADF1B624DC71E88D34D86B3595BE ] C:\Windows\System32\uniplat.dll 19:11:19.0615 4872 C:\Windows\System32\uniplat.dll - ok 19:11:19.0621 4872 [ 953193A9DEA40348C1086D171F6440AE ] C:\Windows\System32\kmddsp.tsp 19:11:19.0621 4872 C:\Windows\System32\kmddsp.tsp - ok 19:11:19.0624 4872 [ B4B59AC042EE3733A862F26CBC0B17FC ] C:\Windows\System32\hidphone.tsp 19:11:19.0624 4872 C:\Windows\System32\hidphone.tsp - ok 19:11:19.0629 4872 [ 2F6776ACEFE41EE889C464EA407918F2 ] C:\Windows\System32\ndptsp.tsp 19:11:19.0629 4872 C:\Windows\System32\ndptsp.tsp - ok 19:11:19.0633 4872 [ 8B645890A93F1FBBC7DA3E07CC72D762 ] C:\Windows\System32\rasppp.dll 19:11:19.0633 4872 C:\Windows\System32\rasppp.dll - ok 19:11:19.0638 4872 [ 0428F523A8DFCBA96958B36D77A99EE4 ] C:\Windows\System32\BCMLogon.dll 19:11:19.0638 4872 C:\Windows\System32\BCMLogon.dll - ok 19:11:19.0643 4872 [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll 19:11:19.0643 4872 C:\Windows\System32\mprapi.dll - ok 19:11:19.0646 4872 [ 88225070DD2F7B0B2ED51E7935078641 ] C:\Windows\System32\rasqec.dll 19:11:19.0647 4872 C:\Windows\System32\rasqec.dll - ok 19:11:19.0651 4872 [ 248A1F31ABB58DDDDC01490EF0BDC777 ] C:\Windows\System32\cryptui.dll 19:11:19.0651 4872 C:\Windows\System32\cryptui.dll - ok 19:11:19.0655 4872 [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL 19:11:19.0655 4872 C:\Windows\System32\QUTIL.DLL - ok 19:11:19.0659 4872 [ 3A00D9ED1BCA5DE87F84CE9328FECF73 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ncw.dll 19:11:19.0660 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ncw.dll - ok 19:11:19.0663 4872 [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll 19:11:19.0663 4872 C:\Windows\System32\wbem\wbemcore.dll - ok 19:11:19.0667 4872 [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll 19:11:19.0667 4872 C:\Windows\System32\wbem\esscli.dll - ok 19:11:19.0672 4872 [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll 19:11:19.0672 4872 C:\Windows\System32\wbem\fastprox.dll - ok 19:11:19.0676 4872 [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll 19:11:19.0676 4872 C:\Windows\System32\wbem\wbemsvc.dll - ok 19:11:19.0680 4872 [ E98E402067978DB38282158F9E8609CA ] C:\Windows\System32\netshell.dll 19:11:19.0680 4872 C:\Windows\System32\netshell.dll - ok 19:11:19.0684 4872 [ 34256E81F0EFB05D244376F4C387317B ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cltpe.dll 19:11:19.0684 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cltpe.dll - ok 19:11:19.0689 4872 [ 002E7895F88B96CFF2A03313B88A7E64 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avmodule.dll 19:11:19.0689 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avmodule.dll - ok 19:11:19.0693 4872 [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll 19:11:19.0693 4872 C:\Windows\System32\wbem\wmiutils.dll - ok 19:11:19.0697 4872 [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll 19:11:19.0697 4872 C:\Windows\System32\wbem\repdrvfs.dll - ok 19:11:19.0701 4872 [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe 19:11:19.0701 4872 C:\Windows\System32\dllhost.exe - ok 19:11:19.0705 4872 [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll 19:11:19.0705 4872 C:\Windows\System32\wbem\WmiPrvSD.dll - ok 19:11:19.0709 4872 [ 613B277AB5C75287DACBA35AA7EE4BC8 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\defutdcd.dll 19:11:19.0710 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\defutdcd.dll - ok 19:11:19.0714 4872 [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll 19:11:19.0714 4872 C:\Windows\System32\wbem\wbemess.dll - ok 19:11:19.0718 4872 [ 58D9C70B01DBF2DEAEA787A1D7C869BB ] C:\Program Files\Dell\DellDock\DellDock.exe 19:11:19.0718 4872 C:\Program Files\Dell\DellDock\DellDock.exe - ok 19:11:19.0723 4872 [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe 19:11:19.0723 4872 C:\Windows\System32\userinit.exe - ok 19:11:19.0728 4872 [ C44354E5074D69B0A7FF50964CB3BD18 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ducclib.dll 19:11:19.0728 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ducclib.dll - ok 19:11:19.0732 4872 [ A6FA5D45ACF2E855F890FAC505EFEDB2 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll 19:11:19.0732 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok 19:11:19.0736 4872 [ D80C6539C00CB4F5D59066865479C308 ] C:\Windows\System32\dwmredir.dll 19:11:19.0736 4872 C:\Windows\System32\dwmredir.dll - ok 19:11:19.0741 4872 [ C99403A5B641520DAED0021DDA06F272 ] C:\Windows\System32\milcore.dll 19:11:19.0741 4872 C:\Windows\System32\milcore.dll - ok 19:11:19.0745 4872 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll 19:11:19.0745 4872 C:\Windows\System32\p2pcollab.dll - ok 19:11:19.0749 4872 [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe 19:11:19.0749 4872 C:\Windows\explorer.exe - ok 19:11:19.0754 4872 [ 3D58C37846EBC8068246F8398192A3D0 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avpsvc32.dll 19:11:19.0754 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avpsvc32.dll - ok 19:11:19.0759 4872 [ 1EB69F81E7A3FC061828B60E3AA1FF27 ] C:\Program Files\Dell\DellDock\MyDock.Util.DLL 19:11:19.0759 4872 C:\Program Files\Dell\DellDock\MyDock.Util.DLL - ok 19:11:19.0762 4872 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll 19:11:19.0762 4872 C:\Windows\System32\d3d9.dll - ok 19:11:19.0766 4872 [ 4A1F912DAF2E8263D6BEFDCCA7F0DE0F ] C:\Program Files\Dell\DellDock\MenuSkinning.DLL 19:11:19.0766 4872 C:\Program Files\Dell\DellDock\MenuSkinning.DLL - ok 19:11:19.0771 4872 [ D30528CC80571FB8435A934BFD11102F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\MyDock.Util\d8dfd448743194309366caa97c215c21\MyDock.Util.ni.dll 19:11:19.0771 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\MyDock.Util\d8dfd448743194309366caa97c215c21\MyDock.Util.ni.dll - ok 19:11:19.0775 4872 [ 9F4F01AE70EFA8389AA42F85AB805F23 ] C:\Program Files\Dell\DellDock\VistaBridgeLibrary.DLL 19:11:19.0775 4872 C:\Program Files\Dell\DellDock\VistaBridgeLibrary.DLL - ok 19:11:19.0780 4872 [ 468D9C5404D6202DC7A5D96B8480929B ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sqsvc.dll 19:11:19.0780 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sqsvc.dll - ok 19:11:19.0786 4872 [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll 19:11:19.0786 4872 C:\Windows\System32\browseui.dll - ok 19:11:19.0791 4872 [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe 19:11:19.0791 4872 C:\Windows\System32\taskeng.exe - ok 19:11:19.0800 4872 [ D3F7336DF6475923F26A732C4672C947 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\DellDock\a2117f9d2b9670193889149f0ec777d5\DellDock.ni.exe 19:11:19.0800 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\DellDock\a2117f9d2b9670193889149f0ec777d5\DellDock.ni.exe - ok 19:11:19.0810 4872 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll 19:11:19.0810 4872 C:\Windows\System32\d3d8thk.dll - ok 19:11:19.0823 4872 [ 0C1C10223C7627D656ED1DA67E3F6E73 ] C:\Windows\System32\nvd3dum.dll 19:11:19.0823 4872 C:\Windows\System32\nvd3dum.dll - ok 19:11:19.0845 4872 [ 63396CBB1365769D520E0FD89C2419F2 ] C:\Windows\System32\localspl.dll 19:11:19.0845 4872 C:\Windows\System32\localspl.dll - ok 19:11:19.0849 4872 [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll 19:11:19.0849 4872 C:\Windows\System32\TSChannel.dll - ok 19:11:19.0853 4872 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll 19:11:19.0853 4872 C:\Windows\System32\sfc.dll - ok 19:11:19.0858 4872 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll 19:11:19.0858 4872 C:\Windows\System32\dssenh.dll - ok 19:11:19.0862 4872 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files\Google\Update\GoogleUpdate.exe 19:11:19.0862 4872 C:\Program Files\Google\Update\GoogleUpdate.exe - ok 19:11:19.0866 4872 [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll 19:11:19.0866 4872 C:\Windows\System32\HotStartUserAgent.dll - ok 19:11:19.0870 4872 [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll 19:11:19.0870 4872 C:\Windows\System32\PlaySndSrv.dll - ok 19:11:19.0875 4872 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\goopdate.dll 19:11:19.0875 4872 C:\Program Files\Google\Update\1.3.21.123\goopdate.dll - ok 19:11:19.0879 4872 [ E6019253451DBB67740F7027AD9E1CB5 ] C:\Program Files\Real\RealUpgrade\realupgrade.exe 19:11:19.0879 4872 C:\Program Files\Real\RealUpgrade\realupgrade.exe - ok 19:11:19.0883 4872 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe 19:11:19.0883 4872 C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok 19:11:19.0889 4872 [ 3F994A6CF62AA8ED7B82CBE8AD7BE810 ] C:\Program Files\Real\RealUpgrade\Common\hxmedpltfm.dll 19:11:19.0889 4872 C:\Program Files\Real\RealUpgrade\Common\hxmedpltfm.dll - ok 19:11:19.0893 4872 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll 19:11:19.0893 4872 C:\Windows\System32\EhStorShell.dll - ok 19:11:19.0896 4872 [ F0062778F50838145AC46B384FFB4FA3 ] C:\Windows\System32\pcadm.dll 19:11:19.0896 4872 C:\Windows\System32\pcadm.dll - ok 19:11:19.0900 4872 [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll 19:11:19.0900 4872 C:\Windows\System32\pnpts.dll - ok 19:11:19.0904 4872 [ 43BAE2A78DE14F25979D09647F4B681D ] C:\Windows\System32\CNMLM83.DLL 19:11:19.0904 4872 C:\Windows\System32\CNMLM83.DLL - ok 19:11:19.0908 4872 [ B10B38B22709A66325775F3B77C0558C ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avifc.dll 19:11:19.0909 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avifc.dll - ok 19:11:19.0913 4872 [ CD46C5F1378BAC9A71766070671FDED1 ] C:\Program Files\Dell\DellDock\VDialog.dll 19:11:19.0913 4872 C:\Program Files\Dell\DellDock\VDialog.dll - ok 19:11:19.0917 4872 [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\System32\mstask.dll 19:11:19.0917 4872 C:\Windows\System32\mstask.dll - ok 19:11:19.0922 4872 [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll 19:11:19.0922 4872 C:\Windows\System32\shfolder.dll - ok 19:11:19.0926 4872 [ 98638A4CA187245C469DA0DEC4F04A45 ] C:\Windows\System32\pautoenr.dll 19:11:19.0926 4872 C:\Windows\System32\pautoenr.dll - ok 19:11:19.0930 4872 [ 7A623F6B4C51F6F2BC1A31D5787FC0A7 ] C:\Windows\System32\uDWM.dll 19:11:19.0930 4872 C:\Windows\System32\uDWM.dll - ok 19:11:19.0934 4872 [ 00E74FD4E086C449E7EA3C89C9F25435 ] C:\Windows\System32\ZLhp1020.DLL 19:11:19.0934 4872 C:\Windows\System32\ZLhp1020.DLL - ok 19:11:19.0939 4872 [ F21F255B91CA4F04E4250DECD2067CBB ] C:\Windows\System32\bitsperf.dll 19:11:19.0939 4872 C:\Windows\System32\bitsperf.dll - ok 19:11:19.0942 4872 [ C84A5C60883395B875F01140F48BB887 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVENG32.DLL 19:11:19.0942 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVENG32.DLL - ok 19:11:19.0946 4872 [ AC48FD62E22C4425879FCA5A63F50497 ] C:\Windows\System32\certcli.dll 19:11:19.0946 4872 C:\Windows\System32\certcli.dll - ok 19:11:19.0951 4872 [ 1ED0D7F633C59DC6C161B21AC2231155 ] C:\Program Files\Fingerprint Reader Suite\farchns.dll 19:11:19.0951 4872 C:\Program Files\Fingerprint Reader Suite\farchns.dll - ok 19:11:19.0956 4872 [ 632557F2495931D952161465AA177B3B ] C:\Windows\System32\bitsigd.dll 19:11:19.0956 4872 C:\Windows\System32\bitsigd.dll - ok 19:11:19.0959 4872 [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll 19:11:19.0959 4872 C:\Windows\System32\upnp.dll - ok 19:11:19.0963 4872 [ 0053319C4438CDE659AA75C19BBD22F1 ] C:\Windows\System32\CertEnroll.dll 19:11:19.0963 4872 C:\Windows\System32\CertEnroll.dll - ok 19:11:19.0969 4872 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll 19:11:19.0969 4872 C:\Windows\System32\imageres.dll - ok 19:11:19.0973 4872 [ BB0EB921877A1A7EF15AE2D97A71CBA9 ] C:\Windows\System32\tcpmon.dll 19:11:19.0973 4872 C:\Windows\System32\tcpmon.dll - ok 19:11:19.0976 4872 [ AF24A9DF84637BF9858EC6FB88EBA7B2 ] C:\Windows\System32\snmpapi.dll 19:11:19.0977 4872 C:\Windows\System32\snmpapi.dll - ok 19:11:19.0980 4872 [ 1EDE113859276E4B0F19B80F39E2CC95 ] C:\Windows\System32\wsnmp32.dll 19:11:19.0980 4872 C:\Windows\System32\wsnmp32.dll - ok 19:11:19.0984 4872 [ 5091452DC719281CF1DD69367E13B494 ] C:\Windows\System32\tcpmib.dll 19:11:19.0984 4872 C:\Windows\System32\tcpmib.dll - ok 19:11:19.0990 4872 [ 8FBF6631A3513B5BFD3F9519FE4C338B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\53ff6fb64982a15d164f25e727be6bb4\VistaBridgeLibrary.ni.dll 19:11:19.0990 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\53ff6fb64982a15d164f25e727be6bb4\VistaBridgeLibrary.ni.dll - ok 19:11:19.0993 4872 [ AD5B9C40AD2ECA6E5FFAB90631AFF961 ] C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPI.dll 19:11:19.0993 4872 C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPI.dll - ok 19:11:19.0998 4872 [ AAAE543C535ED596ECAD2AB8761C2C6F ] C:\Windows\System32\dxgi.dll 19:11:19.0998 4872 C:\Windows\System32\dxgi.dll - ok 19:11:20.0001 4872 [ B4F5DE3DAD8E6B97272F45DB97674878 ] C:\Windows\System32\mgmtapi.dll 19:11:20.0001 4872 C:\Windows\System32\mgmtapi.dll - ok 19:11:20.0007 4872 [ 10F13FFF542FEC4A2C4FA734EEBE56B9 ] C:\Windows\System32\qmgrprxy.dll 19:11:20.0007 4872 C:\Windows\System32\qmgrprxy.dll - ok 19:11:20.0010 4872 [ 9495FCC01D7AB7B60E5B8BA7AEFE9E3D ] C:\Windows\System32\wbem\WmiPrvSE.exe 19:11:20.0010 4872 C:\Windows\System32\wbem\WmiPrvSE.exe - ok 19:11:20.0014 4872 [ 9FACF68EE6BDED00108002C61517D08A ] C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe 19:11:20.0014 4872 C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe - ok 19:11:20.0018 4872 [ D0C0C17E2A31C33FA495D3AB8A0D5BB2 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\bhclient.dll 19:11:20.0018 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\bhclient.dll - ok 19:11:20.0021 4872 [ 0BF0BB276F17B6AD61A8694D2551EC28 ] C:\Windows\System32\usbmon.dll 19:11:20.0021 4872 C:\Windows\System32\usbmon.dll - ok 19:11:20.0026 4872 [ 6B9F51436B93925BFAC9B0B47AEE595F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\MenuSkinning\e4ead33e7390326a9814a511c566054b\MenuSkinning.ni.dll 19:11:20.0026 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\MenuSkinning\e4ead33e7390326a9814a511c566054b\MenuSkinning.ni.dll - ok 19:11:20.0030 4872 [ 0EB1CC5EBFCAAB7DBAEE881E2887F7F9 ] C:\Windows\System32\WSDMon.dll 19:11:20.0030 4872 C:\Windows\System32\WSDMon.dll - ok 19:11:20.0034 4872 [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll 19:11:20.0034 4872 C:\Windows\System32\MsCtfMonitor.dll - ok 19:11:20.0041 4872 [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll 19:11:20.0041 4872 C:\Windows\System32\msutb.dll - ok 19:11:20.0044 4872 [ FEC3ACE4D5E9B8B13C401941EE50F476 ] C:\Windows\System32\spool\prtprocs\w32x86\CNMPD83.DLL 19:11:20.0044 4872 C:\Windows\System32\spool\prtprocs\w32x86\CNMPD83.DLL - ok 19:11:20.0049 4872 [ CDD90FA1AF84F483C37CA60FB56DE5D2 ] C:\Windows\System32\spool\prtprocs\w32x86\ZIMFPRNT.DLL 19:11:20.0049 4872 C:\Windows\System32\spool\prtprocs\w32x86\ZIMFPRNT.DLL - ok 19:11:20.0053 4872 [ B67A8E2103197F8FD2FED28CA6FD4245 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avmail.dll 19:11:20.0053 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avmail.dll - ok 19:11:20.0058 4872 [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll 19:11:20.0058 4872 C:\Windows\System32\TMM.dll - ok 19:11:20.0063 4872 [ 0CC7DA54F5FED71160C3FC13E9F972FC ] C:\Windows\System32\ZIMF.DLL 19:11:20.0063 4872 C:\Windows\System32\ZIMF.DLL - ok 19:11:20.0067 4872 [ 7CA836648E40709797D9F3BFF56679EE ] C:\Windows\System32\ZTAG.DLL 19:11:20.0067 4872 C:\Windows\System32\ZTAG.DLL - ok 19:11:20.0071 4872 [ 067239789BD7591F5EAA24DAB63D261A ] C:\Windows\System32\ZSPOOL.DLL 19:11:20.0071 4872 C:\Windows\System32\ZSPOOL.DLL - ok 19:11:20.0075 4872 [ C90B296C43EDD9DD1751AD3B590ACDE6 ] C:\Windows\System32\win32spl.dll 19:11:20.0075 4872 C:\Windows\System32\win32spl.dll - ok 19:11:20.0079 4872 [ 86A424E3845C8BD3414B15C3119FA609 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\asengine.dll 19:11:20.0079 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\asengine.dll - ok 19:11:20.0083 4872 [ 2E8E30F3B318A9FDA5A2485723F4C2B3 ] C:\Windows\System32\inetpp.dll 19:11:20.0083 4872 C:\Windows\System32\inetpp.dll - ok 19:11:20.0087 4872 [ 4BF053944E973C073339BE841C9ECF28 ] C:\Windows\System32\netrap.dll 19:11:20.0087 4872 C:\Windows\System32\netrap.dll - ok 19:11:20.0092 4872 [ E340845C8E96D107C36420065D7A5733 ] C:\Windows\System32\printcom.dll 19:11:20.0092 4872 C:\Windows\System32\printcom.dll - ok 19:11:20.0096 4872 [ 005737B98487851080D4F3C11E75F87F ] C:\Windows\System32\spool\drivers\w32x86\3\BROHL07A.DLL 19:11:20.0096 4872 C:\Windows\System32\spool\drivers\w32x86\3\BROHL07A.DLL - ok 19:11:20.0100 4872 [ 0CD64370A83354B01FD59E82E0B644BB ] C:\Windows\System32\spool\drivers\w32x86\3\BRUHL07A.DLL 19:11:20.0101 4872 C:\Windows\System32\spool\drivers\w32x86\3\BRUHL07A.DLL - ok 19:11:20.0109 4872 [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL 19:11:20.0109 4872 C:\Windows\System32\QAGENT.DLL - ok 19:11:20.0113 4872 [ 07B384CA78194F0C52F61A194FB566A9 ] C:\Windows\System32\spool\drivers\w32x86\3\BRLHL07A.DLL 19:11:20.0113 4872 C:\Windows\System32\spool\drivers\w32x86\3\BRLHL07A.DLL - ok 19:11:20.0117 4872 [ 4C8D0202F50BD46F28AB90B35D8FCBB3 ] C:\Windows\System32\spool\drivers\w32x86\3\BROFX05A.DLL 19:11:20.0117 4872 C:\Windows\System32\spool\drivers\w32x86\3\BROFX05A.DLL - ok 19:11:20.0121 4872 [ 6D4791D06C8B43E9CEAA188D8D5B6CC1 ] C:\Windows\System32\spool\drivers\w32x86\3\BRUFX05A.DLL 19:11:20.0122 4872 C:\Windows\System32\spool\drivers\w32x86\3\BRUFX05A.DLL - ok 19:11:20.0126 4872 [ 1EEA356F1E77E64B36774CB78CC82F9D ] C:\Windows\System32\spool\drivers\w32x86\3\Brlfx05a.dll 19:11:20.0126 4872 C:\Windows\System32\spool\drivers\w32x86\3\Brlfx05a.dll - ok 19:11:20.0131 4872 [ 27DB3CEB88A1EF2BE1E193A05964973C ] C:\Program Files\Real\RealUpgrade\Plugins\upgrade.dll 19:11:20.0131 4872 C:\Program Files\Real\RealUpgrade\Plugins\upgrade.dll - ok 19:11:20.0135 4872 [ CC58AF5CE271DB23DB19034077A7F08D ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\qsplugin.dll 19:11:20.0135 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\qsplugin.dll - ok 19:11:20.0141 4872 [ 36E8C701B168E58C6AB0946F5ABAD9EB ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cltlms.dll 19:11:20.0141 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cltlms.dll - ok 19:11:20.0144 4872 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IDSxpx86.dll 19:11:20.0144 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IDSxpx86.dll - ok 19:11:20.0149 4872 [ 971A138E6A474E87B576A0E333584433 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\codatapr.dll 19:11:20.0149 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\codatapr.dll - ok 19:11:20.0153 4872 [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll 19:11:20.0153 4872 C:\Windows\System32\IconCodecService.dll - ok 19:11:20.0158 4872 [ 2975906C981B3FE1156594A6FC30B708 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coshdobj.dll 19:11:20.0158 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coshdobj.dll - ok 19:11:20.0162 4872 [ F05FDB5756F82C6CBBC9203D974A0C3B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll 19:11:20.0162 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll - ok 19:11:20.0167 4872 [ 1F761DA08B1855DDBDD97204D69B48DD ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\bhsvcplg.dll 19:11:20.0167 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\bhsvcplg.dll - ok 19:11:20.0172 4872 [ 5E0C5B5BE5304E133968D6D6F8840B28 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\dscli.dll 19:11:20.0172 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\dscli.dll - ok 19:11:20.0177 4872 [ CA591BB0B28C777065D8A16B7057FCF8 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\spocclnt.dll 19:11:20.0177 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\spocclnt.dll - ok 19:11:20.0182 4872 [ 279A8BE318EBC0C25C5EA9AED19E0CF9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll 19:11:20.0182 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll - ok 19:11:20.0186 4872 [ 53726EBA2B0D9DD215CCE7B8923D73BF ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\datastor.dll 19:11:20.0186 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\datastor.dll - ok 19:11:20.0191 4872 [ 4C230E31630087B78D061D29A43E6D11 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\comm.dll 19:11:20.0191 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\comm.dll - ok 19:11:20.0196 4872 [ F7DC4705A1B1D14FF9582D373AF080BA ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sqlite.dll 19:11:20.0196 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sqlite.dll - ok 19:11:20.0201 4872 [ 10729D2D308C5AA804ECE537B49C16AD ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\userlog.dll 19:11:20.0201 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\userlog.dll - ok 19:11:20.0206 4872 [ D750EA29EB42573062C3F115C4884942 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ipsplug.dll 19:11:20.0206 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ipsplug.dll - ok 19:11:20.0211 4872 [ 3E09B60E3DCF3EF673DB25D5799EFDFD ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\isdatasv.dll 19:11:20.0211 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\isdatasv.dll - ok 19:11:20.0216 4872 [ 8718831F001A4C4F8ADD98833C2B1211 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\proxyclt.dll 19:11:20.0216 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\proxyclt.dll - ok 19:11:20.0220 4872 [ BDB746E17148A1B509C06D2518B7E12A ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ispwd.dll 19:11:20.0220 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ispwd.dll - ok 19:11:20.0226 4872 [ B7A8F271355559721CCC8B2B93A5AAB4 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwcore.dll 19:11:20.0226 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwcore.dll - ok 19:11:20.0231 4872 [ 02896052E43E1452893806F6D2DA8786 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20120919.001\BHEngine.dll 19:11:20.0232 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20120919.001\BHEngine.dll - ok 19:11:20.0236 4872 [ FD36C7CF327E32FD75BDBCD5F732C7F2 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwgenplg.dll 19:11:20.0236 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwgenplg.dll - ok 19:11:20.0242 4872 [ 545638475B03B252ED540369CCB278A0 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\npctray.dll 19:11:20.0242 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\npctray.dll - ok 19:11:20.0245 4872 [ C4FFE41D9EF211791CB404E7158593A1 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwsetup.dll 19:11:20.0245 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwsetup.dll - ok 19:11:20.0250 4872 [ D870D9FBD5E019174AFE43907529AF63 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\npcstats.dll 19:11:20.0250 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\npcstats.dll - ok 19:11:20.0254 4872 [ 95A5497D129D95D12A46F7848AFFE1DB ] C:\Windows\System32\comsvcs.dll 19:11:20.0254 4872 C:\Windows\System32\comsvcs.dll - ok 19:11:20.0259 4872 [ F481D6099DA5B4B40EEAAF08C4547F7D ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ashelper.dll 19:11:20.0259 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ashelper.dll - ok 19:11:20.0264 4872 [ 64975EB94BE6B314694C1F550D5DA3AD ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\idsaux.dll 19:11:20.0264 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\idsaux.dll - ok 19:11:20.0269 4872 [ CDE9F06A3F1D7907599329561D71C8F3 ] C:\Windows\System32\FirewallSettings.exe 19:11:20.0269 4872 C:\Windows\System32\FirewallSettings.exe - ok 19:11:20.0271 4872 [ 6487A19E0EA3228515394A4B1A780B17 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symhtml.dll 19:11:20.0271 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\symhtml.dll - ok 19:11:20.0276 4872 [ 99495E46CBF87F1C1FF3E57C069D0A8D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll 19:11:20.0276 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll - ok 19:11:20.0281 4872 [ 8C6B3E7CE7FA66EBD40549AEEBB51B8B ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IPSFFPl.dll 19:11:20.0281 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IPSFFPl.dll - ok 19:11:20.0287 4872 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\System32\mshtml.dll 19:11:20.0287 4872 C:\Windows\System32\mshtml.dll - ok 19:11:20.0290 4872 [ 8C6B3E7CE7FA66EBD40549AEEBB51B8B ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\IPSFFPlgn\components\IPSFFPl.dll 19:11:20.0290 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\IPSFFPlgn\components\IPSFFPl.dll - ok 19:11:20.0295 4872 [ 0F2FF924384CEFAFED27E95BAB63731F ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\asoehook.dll 19:11:20.0295 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\asoehook.dll - ok 19:11:20.0301 4872 [ 7A3D87207F25C41DAE8230FBB99AE562 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avpapp32.dll 19:11:20.0301 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\avpapp32.dll - ok 19:11:20.0306 4872 [ FC77EA9F18D22D6FECA318E81A0BC473 ] C:\Program Files\Dell\DellDock\MyDockLib.dll 19:11:20.0306 4872 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok 19:11:20.0317 4872 [ 84DD22E6A6399AEF7FFA86035122F13D ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cltaldis.dll 19:11:20.0317 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\cltaldis.dll - ok 19:11:20.0324 4872 [ B8876BBA284DFEC2311D7694483AB8AE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll 19:11:20.0324 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll - ok 19:11:20.0329 4872 [ BA8A9EC5F381C1A2B81F632F88D1EC2D ] C:\Program Files\Norton Internet Security\MUI\19.8.0.14\09\01\cltres.loc 19:11:20.0329 4872 C:\Program Files\Norton Internet Security\MUI\19.8.0.14\09\01\cltres.loc - ok 19:11:20.0334 4872 [ 26A037C4AD6D6892AD7516BE512B875A ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwsesal.dll 19:11:20.0334 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwsesal.dll - ok 19:11:20.0338 4872 [ A864FFB85EAE5EBBC7E4861E91C67FB6 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\nahelper.dll 19:11:20.0338 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\nahelper.dll - ok 19:11:20.0343 4872 [ 530ED4B00397C2E65DDFDDFAC60744D2 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll 19:11:20.0343 4872 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok 19:11:20.0347 4872 [ B88DC38209CC72B56D79EDBC3182B29A ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coactmgr.dll 19:11:20.0347 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\coactmgr.dll - ok 19:11:20.0352 4872 [ 198D51AB311EF8ED8882985048A93406 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\distrptr.dll 19:11:20.0352 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\distrptr.dll - ok 19:11:20.0356 4872 [ 468CD8DD7825578C3E2A105D062659F6 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwhelper.dll 19:11:20.0356 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\fwhelper.dll - ok 19:11:20.0361 4872 [ C0479DFDB520B7117EDA736ADE855698 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sdkcmn.dll 19:11:20.0361 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\sdkcmn.dll - ok 19:11:20.0367 4872 [ 583D3A8C4CA75EF706E2C6B8E739D62E ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\uialert.dll 19:11:20.0367 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\uialert.dll - ok 19:11:20.0373 4872 [ 60402F4BC7E1DDE03CECA8B50E7A942E ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\userctxt.dll 19:11:20.0373 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\userctxt.dll - ok 19:11:20.0377 4872 [ 219AF0F9A54EBEEB3E7E20025D801034 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll 19:11:20.0378 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok 19:11:20.0382 4872 [ 05C245593DCB591A6B38A796D0C1975E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe 19:11:20.0382 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok 19:11:20.0385 4872 [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll 19:11:20.0386 4872 C:\Windows\System32\esent.dll - ok 19:11:20.0390 4872 [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll 19:11:20.0390 4872 C:\Windows\System32\wbem\NCProv.dll - ok 19:11:20.0394 4872 [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll 19:11:20.0394 4872 C:\Windows\System32\wbem\wbemcons.dll - ok 19:11:20.0398 4872 [ 14B1AF40195CF5DB586F39387A77AFB6 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll 19:11:20.0398 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok 19:11:20.0403 4872 [ 7A9DE8B16CF183D1038E49C9613275B7 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll 19:11:20.0403 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok 19:11:20.0407 4872 [ FB875FBE3BD042F6A69A4406178C561B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll 19:11:20.0407 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok 19:11:20.0411 4872 [ F723422A11CD6FA13036746272200993 ] C:\Windows\System32\wbem\cimwin32.dll 19:11:20.0411 4872 C:\Windows\System32\wbem\cimwin32.dll - ok 19:11:20.0415 4872 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe 19:11:20.0415 4872 C:\Windows\System32\runonce.exe - ok 19:11:20.0420 4872 [ 67BB7141F7F5F37411F796943B3418B6 ] C:\Windows\System32\framedynos.dll 19:11:20.0420 4872 C:\Windows\System32\framedynos.dll - ok 19:11:20.0424 4872 [ 304503DEE4D3F7989B8660C62CAFAE28 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe 19:11:20.0424 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok 19:11:20.0428 4872 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe 19:11:20.0428 4872 C:\Windows\System32\cmd.exe - ok 19:11:20.0432 4872 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\System32\ieframe.dll 19:11:20.0432 4872 C:\Windows\System32\ieframe.dll - ok 19:11:20.0436 4872 [ 3DD74DDFADA2D113033EBD87DA85893A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\1b337cf9a031145849bc48c11b2cfe58\Accessibility.ni.dll 19:11:20.0436 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\1b337cf9a031145849bc48c11b2cfe58\Accessibility.ni.dll - ok 19:11:20.0441 4872 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Aman Arneja\AppData\Local\temp\7AB3A6E3-C8D2-4F32-AC3D-F5920500D5AB.exe 19:11:20.0441 4872 C:\Users\Aman Arneja\AppData\Local\temp\7AB3A6E3-C8D2-4F32-AC3D-F5920500D5AB.exe - ok 19:11:20.0446 4872 [ D06F70B01524CE57AC1EE94D8E8595A1 ] C:\PROGRA~1\MICROS~3\Office12\OUTLOOK.EXE 19:11:20.0446 4872 C:\PROGRA~1\MICROS~3\Office12\OUTLOOK.EXE - ok 19:11:20.0451 4872 [ 1E3137F06CD92ED2654B59D010B13BE7 ] C:\Windows\System32\wpccpl.dll 19:11:20.0451 4872 C:\Windows\System32\wpccpl.dll - ok 19:11:20.0455 4872 [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\System32\linkinfo.dll 19:11:20.0455 4872 C:\Windows\System32\linkinfo.dll - ok 19:11:20.0461 4872 [ 486957A989638A9C07E9B5B970E728B4 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\uistub.exe 19:11:20.0461 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\uistub.exe - ok 19:11:20.0465 4872 [ 4EE060E78F3EA6C865F617F941B57128 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\settings.dll 19:11:20.0465 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\settings.dll - ok 19:11:20.0469 4872 [ B491D05B436A439AC77DD34F55A15C8C ] C:\DELL\docs\EDocs.exe 19:11:20.0469 4872 C:\DELL\docs\EDocs.exe - ok 19:11:20.0473 4872 [ 6AED23C7B6E189EA826BCDCCD41E0FF0 ] C:\ProgramData\Dell\DellDock\uninstaller.exe 19:11:20.0473 4872 C:\ProgramData\Dell\DellDock\uninstaller.exe - ok 19:11:20.0478 4872 [ DD82EB68D97944B192C7803EB585B03C ] C:\Program Files\IObit\Game Booster 3\rtl120.bpl 19:11:20.0478 4872 C:\Program Files\IObit\Game Booster 3\rtl120.bpl - ok 19:11:20.0482 4872 [ 773EBD87010A6F644869A59D98792C9C ] C:\Program Files\IObit\Game Booster 3\vcl120.bpl 19:11:20.0483 4872 C:\Program Files\IObit\Game Booster 3\vcl120.bpl - ok 19:11:20.0487 4872 [ 80BD4B26E2CBC0D65445D0463DFF6FC2 ] C:\Windows\System32\oledlg.dll 19:11:20.0487 4872 C:\Windows\System32\oledlg.dll - ok 19:11:20.0491 4872 [ 311CCA642D0BFAF29EBC2C0D71CBB286 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 19:11:20.0491 4872 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok 19:11:20.0495 4872 [ 335C3C737E2C28EEE4055F99AB25E915 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll 19:11:20.0495 4872 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok 19:11:20.0500 4872 [ 3051A958B6280BB39880F667F2196F00 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll 19:11:20.0500 4872 C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll - ok 19:11:20.0505 4872 [ C6FD3425B1ADD739B95DC4D661FF4DD3 ] C:\Windows\System32\PresentationSettings.exe 19:11:20.0505 4872 C:\Windows\System32\PresentationSettings.exe - ok 19:11:20.0509 4872 [ 8D923A2AC0B83E741A167F0AC0C518A7 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll 19:11:20.0509 4872 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok 19:11:20.0514 4872 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll 19:11:20.0514 4872 C:\Windows\System32\sfc_os.dll - ok 19:11:20.0517 4872 [ 9441A231C0AA0712F7CF3B10D9CFCF76 ] C:\Windows\System32\wmploc.DLL 19:11:20.0518 4872 C:\Windows\System32\wmploc.DLL - ok 19:11:20.0520 4872 [ B8367D76BBF50335BA0777179D7BB799 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccscanw.dll 19:11:20.0520 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccscanw.dll - ok 19:11:20.0525 4872 [ 7B378E6633E08BC393D0E59A0DA13678 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ecmldr32.dll 19:11:20.0525 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ecmldr32.dll - ok 19:11:20.0529 4872 [ 9EC8510AB428F079BFCC96A7B2F8709C ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\ECMSVR32.DLL 19:11:20.0529 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\ECMSVR32.DLL - ok 19:11:20.0534 4872 [ 748306FCA3E4F30D8F615EDF448BD767 ] C:\Program Files\Norton Internet Security\Engine\19.8.0.14\dec_abi.dll 19:11:20.0534 4872 C:\Program Files\Norton Internet Security\Engine\19.8.0.14\dec_abi.dll - ok 19:11:20.0539 4872 [ 69F88751C739AE79908B5BFCE8D9915B ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVEX32A.DLL 19:11:20.0539 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVEX32A.DLL - ok 19:11:20.0543 4872 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe 19:11:20.0543 4872 C:\Windows\System32\ie4uinit.exe - ok 19:11:20.0548 4872 [ 4CF66D8014ECB3BF517E38C5B90AAC74 ] C:\Windows\System32\themeui.dll 19:11:20.0548 4872 C:\Windows\System32\themeui.dll - ok 19:11:20.0553 4872 [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl 19:11:20.0553 4872 C:\Windows\System32\timedate.cpl - ok 19:11:20.0557 4872 [ 2AC2716E2083A949437CEDB2B6A2E89A ] C:\PROGRA~1\WI4EB4~1\wmpband.dll 19:11:20.0557 4872 C:\PROGRA~1\WI4EB4~1\wmpband.dll - ok 19:11:20.0562 4872 [ FF41E1AC301F51E16F61AD7C0F45467C ] C:\Windows\System32\msshsq.dll 19:11:20.0562 4872 C:\Windows\System32\msshsq.dll - ok 19:11:20.0565 4872 [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll 19:11:20.0565 4872 C:\Windows\System32\NaturalLanguage6.dll - ok 19:11:20.0569 4872 [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll 19:11:20.0569 4872 C:\Windows\System32\NlsData0009.dll - ok 19:11:20.0573 4872 [ 295363D4317820AED0D527E15B90A8ED ] C:\Windows\System32\pdh.dll 19:11:20.0573 4872 C:\Windows\System32\pdh.dll - ok 19:11:20.0577 4872 [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll 19:11:20.0577 4872 C:\Windows\System32\NlsLexicons0009.dll - ok 19:11:20.0581 4872 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files\Internet Explorer\iexplore.exe 19:11:20.0581 4872 C:\Program Files\Internet Explorer\iexplore.exe - ok 19:11:20.0586 4872 [ 35A936C7C029A5B705D3FFD40518D660 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll 19:11:20.0586 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok 19:11:20.0590 4872 [ 87CDFFCBD09C1CA03A068343D5D93250 ] C:\Windows\System32\wmi.dll 19:11:20.0590 4872 C:\Windows\System32\wmi.dll - ok 19:11:20.0594 4872 [ 04044BF8E6989BE45FA718C24407CA28 ] C:\Windows\System32\networkexplorer.dll 19:11:20.0594 4872 C:\Windows\System32\networkexplorer.dll - ok 19:11:20.0598 4872 [ 689C95B325C3118CE09E3F3FBCEB5D44 ] C:\Program Files\DellTPad\Apoint.exe 19:11:20.0598 4872 C:\Program Files\DellTPad\Apoint.exe - ok 19:11:20.0602 4872 [ 23242FD6C7D4C61807E84FD3A79248C4 ] C:\Windows\OEM02Mon.exe 19:11:20.0602 4872 C:\Windows\OEM02Mon.exe - ok 19:11:20.0606 4872 [ 5016B8FC59AD616F03813FBE63295081 ] C:\Windows\System32\thumbcache.dll 19:11:20.0606 4872 C:\Windows\System32\thumbcache.dll - ok 19:11:20.0610 4872 [ C1C4C28E23AC934F49C2F60BD8D5BF63 ] C:\Windows\System32\WLTRAY.EXE 19:11:20.0610 4872 C:\Windows\System32\WLTRAY.EXE - ok 19:11:20.0614 4872 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll 19:11:20.0614 4872 C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll - ok 19:11:20.0619 4872 [ 37AE019B337D4533FBB6831B8954E2EF ] C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe 19:11:20.0619 4872 C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe - ok 19:11:20.0623 4872 [ 61216539E55DDF2F78E421E7EF140650 ] C:\Windows\System32\ExplorerFrame.dll 19:11:20.0623 4872 C:\Windows\System32\ExplorerFrame.dll - ok 19:11:20.0627 4872 [ 9C376F42BDE37F18D0A39AF7415D9BE6 ] C:\Program Files\Mozilla Firefox\firefox.exe 19:11:20.0627 4872 C:\Program Files\Mozilla Firefox\firefox.exe - ok 19:11:20.0632 4872 [ 846965AE55A2662B1576C0F392DD1D6E ] C:\Program Files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe 19:11:20.0632 4872 C:\Program Files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe - ok 19:11:20.0636 4872 [ 40B8684493371CC0FB85AD6AD135BE0B ] C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe 19:11:20.0636 4872 C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe - ok 19:11:20.0640 4872 [ 992594885ABD17994D0B38E807F3921A ] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe 19:11:20.0640 4872 C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe - ok 19:11:20.0647 4872 [ 2E17E8CD4D77BF831AC5F8C2C49233C7 ] C:\Program Files\Google\Chrome\Application\chrome.exe 19:11:20.0647 4872 C:\Program Files\Google\Chrome\Application\chrome.exe - ok 19:11:20.0650 4872 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe 19:11:20.0650 4872 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok 19:11:20.0654 4872 [ FE0C21131667A5860CBE56C1D0D00C66 ] C:\Program Files\iTunes\iTunes.exe 19:11:20.0654 4872 C:\Program Files\iTunes\iTunes.exe - ok 19:11:20.0659 4872 [ 5299C43D1328B6549685216CE9753993 ] C:\Program Files\Adobe\Adobe Bridge CS3\Bridge.exe 19:11:20.0659 4872 C:\Program Files\Adobe\Adobe Bridge CS3\Bridge.exe - ok 19:11:20.0664 4872 [ F2B4A9D0D0E1FBF6CCA824EA0A76FFC0 ] C:\Program Files\Sigmatel\C-Major Audio\WDM\stlang.dll 19:11:20.0664 4872 C:\Program Files\Sigmatel\C-Major Audio\WDM\stlang.dll - ok 19:11:20.0668 4872 [ F2EAA9C72F228E19D37D0B57C179E545 ] C:\Windows\Installer\{0F6F6876-6334-4977-B5DD-CFC12E193420}\iTunesIco.exe 19:11:20.0669 4872 C:\Windows\Installer\{0F6F6876-6334-4977-B5DD-CFC12E193420}\iTunesIco.exe - ok 19:11:20.0672 4872 [ 861797D3C83A6EBA05FB2C63B1A45E82 ] C:\Windows\System32\ksproxy.ax 19:11:20.0672 4872 C:\Windows\System32\ksproxy.ax - ok 19:11:20.0676 4872 [ AB530FDD34C67B497A20171D1234CFE9 ] C:\Windows\System32\riched32.dll 19:11:20.0676 4872 C:\Windows\System32\riched32.dll - ok 19:11:20.0682 4872 [ B5950DF243837D8217F4E597919B224A ] C:\Windows\System32\stobject.dll 19:11:20.0682 4872 C:\Windows\System32\stobject.dll - ok 19:11:20.0686 4872 [ EC69B16644C613F41A57169F8D068F1D ] C:\Windows\System32\batmeter.dll 19:11:20.0686 4872 C:\Windows\System32\batmeter.dll - ok 19:11:20.0690 4872 [ 41B7F0A4EBF804D9D512637A06D96D34 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\508b444db523c5cf20ff12c7f440837b\System.Web.ni.dll 19:11:20.0690 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\508b444db523c5cf20ff12c7f440837b\System.Web.ni.dll - ok 19:11:20.0694 4872 [ BEF644F059E9600EADCE2BDE5EF97AFF ] C:\Program Files\2K Sports\NBA 2K12\nba2k12.exe 19:11:20.0694 4872 C:\Program Files\2K Sports\NBA 2K12\nba2k12.exe - ok 19:11:20.0699 4872 [ 709FD06B71D29D1D2432984AF487387A ] C:\Program Files\ScanSoft\PaperPort\PPRecDiag.dll 19:11:20.0699 4872 C:\Program Files\ScanSoft\PaperPort\PPRecDiag.dll - ok 19:11:20.0704 4872 [ B97E2A6FCE171A701D49A669AB1A972C ] C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe 19:11:20.0705 4872 C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe - ok 19:11:20.0708 4872 [ 88F285801C156064201327EAC45B664C ] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe 19:11:20.0708 4872 C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe - ok 19:11:20.0714 4872 [ D5E00A92B66366CCAB2E20D7DDE189E2 ] C:\Windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe 19:11:20.0714 4872 C:\Windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe - ok 19:11:20.0717 4872 [ B7CFA3F9DF5DF31E67B93C4AACBB9C97 ] C:\Program Files\Real\RealPlayer\realplay.exe 19:11:20.0718 4872 C:\Program Files\Real\RealPlayer\realplay.exe - ok 19:11:20.0722 4872 [ CAABBEC1403467452159CE82DDDEE5FE ] C:\Program Files\Adobe\Adobe Device Central CS3\DeviceCentral.exe 19:11:20.0722 4872 C:\Program Files\Adobe\Adobe Device Central CS3\DeviceCentral.exe - ok 19:11:20.0726 4872 [ 303DAAC2ADAFF801D36071DAE690B769 ] C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe 19:11:20.0726 4872 C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe - ok 19:11:20.0731 4872 [ 1E2946D7A5998E74FB02FB551F996E6D ] C:\Program Files\IObit\Game Booster 3\GameBooster.exe 19:11:20.0731 4872 C:\Program Files\IObit\Game Booster 3\GameBooster.exe - ok 19:11:20.0735 4872 [ 5D04DAFC5D917128ECFBB25D4EB41AF7 ] C:\Program Files\Sports Mogul\Baseball Mogul 2012\BB2K12.exe 19:11:20.0735 4872 C:\Program Files\Sports Mogul\Baseball Mogul 2012\BB2K12.exe - ok 19:11:20.0739 4872 [ 30F02D9C55053367E26A11482F51E255 ] C:\Windows\System32\SndVolSSO.dll 19:11:20.0739 4872 C:\Windows\System32\SndVolSSO.dll - ok 19:11:20.0743 4872 [ 2782ABEBCF2A5482FEDCC2929CA3F1E8 ] C:\Program Files\Pocket Tanks Deluxe\ptloader.exe 19:11:20.0743 4872 C:\Program Files\Pocket Tanks Deluxe\ptloader.exe - ok 19:11:20.0748 4872 [ 313B30189557A2E2793F845DE0F0A4D5 ] C:\Windows\ehome\ehSSO.dll 19:11:20.0748 4872 C:\Windows\ehome\ehSSO.dll - ok 19:11:20.0751 4872 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\wordicon.exe 19:11:20.0751 4872 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\wordicon.exe - ok 19:11:20.0755 4872 [ 75AD59B9B12EB194486BE8D97B062994 ] C:\Windows\System32\pnidui.dll 19:11:20.0756 4872 C:\Windows\System32\pnidui.dll - ok 19:11:20.0760 4872 [ 8BBFFD6536EF589FC2D2820F6E377ABD ] C:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe 19:11:20.0760 4872 C:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe - ok 19:11:20.0765 4872 [ F42AFA8A630FAD960722CC11B07254FF ] C:\Program Files\gamigo\Golfstar\GolfStarPatcher.exe 19:11:20.0765 4872 C:\Program Files\gamigo\Golfstar\GolfStarPatcher.exe - ok 19:11:20.0768 4872 [ ABAEAEE763E287BDD39094C4165E1F3F ] C:\Windows\System32\fdProxy.dll 19:11:20.0769 4872 C:\Windows\System32\fdProxy.dll - ok 19:11:20.0771 4872 [ FE21E999E8B12CB2958959E21D1E42A5 ] C:\Program Files\CCleaner\CCleaner.exe 19:11:20.0771 4872 C:\Program Files\CCleaner\CCleaner.exe - ok 19:11:20.0775 4872 [ 4BAEC13BCAA595639EBB5185278DEFEA ] C:\Windows\System32\fdWSD.dll 19:11:20.0775 4872 C:\Windows\System32\fdWSD.dll - ok 19:11:20.0779 4872 [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\System32\mlang.dll 19:11:20.0779 4872 C:\Windows\System32\mlang.dll - ok 19:11:20.0784 4872 [ 443C5961CACD4ABC16648874AF06E4A0 ] C:\Windows\System32\fdSSDP.dll 19:11:20.0784 4872 C:\Windows\System32\fdSSDP.dll - ok 19:11:20.0789 4872 [ 1A5E2ABF3277B8E3ECFC62A0CA352483 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe 19:11:20.0789 4872 C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe - ok 19:11:20.0794 4872 [ 0654F998AC78814F50762AC02014C1A9 ] C:\Program Files\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe 19:11:20.0794 4872 C:\Program Files\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe - ok 19:11:20.0799 4872 [ 6F6FC3DFC19921B5488242E52CE24A8B ] C:\World_of_Tanks\WOTLauncher.exe 19:11:20.0799 4872 C:\World_of_Tanks\WOTLauncher.exe - ok 19:11:20.0804 4872 [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe 19:11:20.0804 4872 C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok 19:11:20.0809 4872 [ 027E5E14C9CFF810377701BDEAD8210F ] C:\Windows\System32\control.exe 19:11:20.0809 4872 C:\Windows\System32\control.exe - ok 19:11:20.0816 4872 [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll 19:11:20.0816 4872 C:\Windows\System32\rasdlg.dll - ok 19:11:20.0824 4872 [ 4A839160ED1963F9A1526DDA2D1233B2 ] C:\Windows\System32\AltTab.dll 19:11:20.0824 4872 C:\Windows\System32\AltTab.dll - ok 19:11:20.0829 4872 [ 6B5C53E0932C510606D700B7A896EF73 ] C:\Windows\System32\WPDShServiceObj.dll 19:11:20.0829 4872 C:\Windows\System32\WPDShServiceObj.dll - ok 19:11:20.0834 4872 [ 0D6340BE0D39C430BF08867EBB7EEBB5 ] C:\Program Files\Dell\MediaDirect\MDirect.exe 19:11:20.0834 4872 C:\Program Files\Dell\MediaDirect\MDirect.exe - ok 19:11:20.0840 4872 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll 19:11:20.0840 4872 C:\Windows\System32\PortableDeviceTypes.dll - ok 19:11:20.0844 4872 [ 8728A91948AC0FE779BDF47BC551BAF5 ] C:\Windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe 19:11:20.0844 4872 C:\Windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe - ok 19:11:20.0849 4872 [ 6D796D59977EB52B33B966EAB9C73E6A ] C:\Program Files\Microsoft Works\MSWorks.exe 19:11:20.0849 4872 C:\Program Files\Microsoft Works\MSWorks.exe - ok 19:11:20.0854 4872 [ 744F08CF9ACFFB1C715191D04DEEE907 ] C:\Windows\System32\srchadmin.dll 19:11:20.0854 4872 C:\Windows\System32\srchadmin.dll - ok 19:11:20.0857 4872 [ 8BC00165083171F8DE760AE39D76D003 ] C:\Program Files\Microsoft Works\wksdb.exe

C:\Windows\System32\drivers\TUNMP.SYS 19:11:17.0096 4872 C:\Windows\System32\drivers\TUNMP.SYS - ok 19:11:17.0100 4872 [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys 19:11:17.0100 4872 C:\Windows\System32\drivers\tunnel.sys - ok 19:11:17.0105 4872 [ D3F22DA8F670EFD15D348B5952769CEF ] C:\Windows\System32\drivers\nvlddmkm.sys 19:11:17.0105 4872 C:\Windows\System32\drivers\nvlddmkm.sys - ok 19:11:17.0109 4872 [ 8A3C4E55C8E24D1D12AF4142D50939FC ] C:\Windows\System32\drivers\nvBridge.kmd 19:11:17.0109 4872 C:\Windows\System32\drivers\nvBridge.kmd - ok 19:11:17.0114 4872 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] C:\Windows\System32\drivers\dxgkrnl.sys 19:11:17.0114 4872 C:\Windows\System32\drivers\dxgkrnl.sys - ok 19:11:17.0118 4872 [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys 19:11:17.0118 4872 C:\Windows\System32\drivers\watchdog.sys - ok 19:11:17.0122 4872 [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys 19:11:17.0122 4872 C:\Windows\System32\drivers\usbport.sys - ok 19:11:17.0126 4872 [ 814D653EFC4D48BE3B04A307ECEFF56F ] C:\Windows\System32\drivers\usbuhci.sys 19:11:17.0126 4872 C:\Windows\System32\drivers\usbuhci.sys - ok 19:11:17.0131 4872 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys 19:11:17.0131 4872 C:\Windows\System32\drivers\usbehci.sys - ok 19:11:17.0135 4872 [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys 19:11:17.0135 4872 C:\Windows\System32\drivers\hdaudbus.sys - ok 19:11:17.0139 4872 [ 04E268ADFC81964C49DC0C082D520F7E ] C:\Windows\System32\drivers\yk60x86.sys 19:11:17.0139 4872 C:\Windows\System32\drivers\yk60x86.sys - ok 19:11:17.0143 4872 [ CDF7F28FFD693B1B4137845DD1EF1CCC ] C:\Windows\System32\drivers\BCMWL6.SYS 19:11:17.0143 4872 C:\Windows\System32\drivers\BCMWL6.SYS - ok 19:11:17.0147 4872 [ 0349BE02F329F4F48F1D48097FD65974 ] C:\Windows\System32\drivers\1394bus.sys 19:11:17.0147 4872 C:\Windows\System32\drivers\1394bus.sys - ok 19:11:17.0151 4872 [ 6F310E890D46E246E0E261A63D9B36B4 ] C:\Windows\System32\drivers\ohci1394.sys 19:11:17.0151 4872 C:\Windows\System32\drivers\ohci1394.sys - ok 19:11:17.0155 4872 [ 8F36B54688C31EED4580129040C6A3D3 ] C:\Windows\System32\drivers\sdbus.sys 19:11:17.0155 4872 C:\Windows\System32\drivers\sdbus.sys - ok 19:11:17.0162 4872 [ 355AAC141B214BEF1DBC1483AFD9BD50 ] C:\Windows\System32\drivers\rimmptsk.sys 19:11:17.0163 4872 C:\Windows\System32\drivers\rimmptsk.sys - ok 19:11:17.0166 4872 [ A4216C71DD4F60B26418CCFD99CD0815 ] C:\Windows\System32\drivers\rimsptsk.sys 19:11:17.0166 4872 C:\Windows\System32\drivers\rimsptsk.sys - ok 19:11:17.0171 4872 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] C:\Windows\System32\drivers\i8042prt.sys 19:11:17.0171 4872 C:\Windows\System32\drivers\i8042prt.sys - ok 19:11:17.0175 4872 [ D231B577024AA324AF13A42F3A807D10 ] C:\Windows\System32\drivers\rixdptsk.sys 19:11:17.0175 4872 C:\Windows\System32\drivers\rixdptsk.sys - ok 19:11:17.0179 4872 [ 448DA519F3B6FFA158C513156053181E ] C:\Windows\System32\drivers\Apfiltr.sys 19:11:17.0179 4872 C:\Windows\System32\drivers\Apfiltr.sys - ok 19:11:17.0183 4872 [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys 19:11:17.0183 4872 C:\Windows\System32\drivers\mouclass.sys - ok 19:11:17.0187 4872 [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys 19:11:17.0187 4872 C:\Windows\System32\drivers\kbdclass.sys - ok 19:11:17.0193 4872 [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys 19:11:17.0193 4872 C:\Windows\System32\drivers\cdrom.sys - ok 19:11:17.0198 4872 [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys 19:11:17.0198 4872 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok 19:11:17.0202 4872 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] C:\Windows\System32\drivers\CmBatt.sys 19:11:17.0202 4872 C:\Windows\System32\drivers\CmBatt.sys - ok 19:11:17.0206 4872 [ 2E7255D172DF0B8283CDFB7B433B864E ] C:\Windows\System32\drivers\wmiacpi.sys 19:11:17.0206 4872 C:\Windows\System32\drivers\wmiacpi.sys - ok 19:11:17.0210 4872 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] C:\Windows\System32\drivers\serscan.sys 19:11:17.0210 4872 C:\Windows\System32\drivers\serscan.sys - ok 19:11:17.0215 4872 [ 47E55AFE1ED1D5AFF09690DB226F4A7A ] C:\Windows\System32\drivers\Storport.sys 19:11:17.0215 4872 C:\Windows\System32\drivers\Storport.sys - ok 19:11:17.0219 4872 [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys 19:11:17.0219 4872 C:\Windows\System32\drivers\msiscsi.sys - ok 19:11:17.0223 4872 [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys 19:11:17.0223 4872 C:\Windows\System32\drivers\rasl2tp.sys - ok 19:11:17.0227 4872 [ 77937EFF009AC696B90E09F671F9D0A4 ] C:\Windows\System32\drivers\tdi.sys 19:11:17.0227 4872 C:\Windows\System32\drivers\tdi.sys - ok 19:11:17.0232 4872 [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys 19:11:17.0232 4872 C:\Windows\System32\drivers\ndistapi.sys - ok 19:11:17.0236 4872 [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys 19:11:17.0236 4872 C:\Windows\System32\drivers\ndiswan.sys - ok 19:11:17.0240 4872 [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys 19:11:17.0240 4872 C:\Windows\System32\drivers\raspppoe.sys - ok 19:11:17.0244 4872 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys 19:11:17.0244 4872 C:\Windows\System32\drivers\raspptp.sys - ok 19:11:17.0248 4872 [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys 19:11:17.0249 4872 C:\Windows\System32\drivers\rassstp.sys - ok 19:11:17.0253 4872 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys 19:11:17.0254 4872 C:\Windows\System32\drivers\termdd.sys - ok 19:11:17.0257 4872 [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys 19:11:17.0257 4872 C:\Windows\System32\drivers\ks.sys - ok 19:11:17.0263 4872 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys 19:11:17.0263 4872 C:\Windows\System32\drivers\swenum.sys - ok 19:11:17.0268 4872 [ C0C7CECCB6C85994C2BC92D58E52D3F2 ] C:\Windows\System32\drivers\dtsoftbus01.sys 19:11:17.0268 4872 C:\Windows\System32\drivers\dtsoftbus01.sys - ok 19:11:17.0275 4872 [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys 19:11:17.0275 4872 C:\Windows\System32\drivers\mssmbios.sys - ok 19:11:17.0283 4872 [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys 19:11:17.0283 4872 C:\Windows\System32\drivers\umbus.sys - ok 19:11:17.0288 4872 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys 19:11:17.0288 4872 C:\Windows\System32\drivers\usbhub.sys - ok 19:11:17.0291 4872 [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys 19:11:17.0291 4872 C:\Windows\System32\drivers\ndproxy.sys - ok 19:11:17.0298 4872 [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys 19:11:17.0298 4872 C:\Windows\System32\drivers\drmk.sys - ok 19:11:17.0301 4872 [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys 19:11:17.0301 4872 C:\Windows\System32\drivers\portcls.sys - ok 19:11:17.0305 4872 [ 6A2A5E809C2C0178326D92B19EE4AAD3 ] C:\Windows\System32\drivers\stwrt.sys 19:11:17.0305 4872 C:\Windows\System32\drivers\stwrt.sys - ok 19:11:17.0308 4872 [ 5CA437A08509FB7ECF843480FC1232E2 ] C:\Windows\System32\drivers\tcusb.sys 19:11:17.0309 4872 C:\Windows\System32\drivers\tcusb.sys - ok 19:11:17.0314 4872 [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys 19:11:17.0314 4872 C:\Windows\System32\drivers\usbd.sys - ok 19:11:17.0318 4872 [ CAF811AE4C147FFCD5B51750C7F09142 ] C:\Windows\System32\drivers\usbccgp.sys 19:11:17.0318 4872 C:\Windows\System32\drivers\usbccgp.sys - ok 19:11:17.0322 4872 [ 5961CADB7CAD938368D2028725EF771D ] C:\Windows\System32\drivers\hidclass.sys 19:11:17.0322 4872 C:\Windows\System32\drivers\hidclass.sys - ok 19:11:17.0326 4872 [ 175444D3A01CA45D0E1C5DC5F48DF7CD ] C:\Windows\System32\drivers\hidparse.sys 19:11:17.0326 4872 C:\Windows\System32\drivers\hidparse.sys - ok 19:11:17.0331 4872 [ CCA4B519B17E23A00B826C55716809CC ] C:\Windows\System32\drivers\hidusb.sys 19:11:17.0331 4872 C:\Windows\System32\drivers\hidusb.sys - ok 19:11:17.0335 4872 [ 19CAC780B858822055F46C58A111723C ] C:\Windows\System32\drivers\OEM02Dev.sys 19:11:17.0335 4872 C:\Windows\System32\drivers\OEM02Dev.sys - ok 19:11:17.0339 4872 [ 86326062A90494BDD79CE383511D7D69 ] C:\Windows\System32\drivers\OEM02Vfx.sys 19:11:17.0339 4872 C:\Windows\System32\drivers\OEM02Vfx.sys - ok 19:11:17.0343 4872 [ 93B8D4869E12CFBE663915502900876F ] C:\Windows\System32\drivers\mouhid.sys 19:11:17.0343 4872 C:\Windows\System32\drivers\mouhid.sys - ok 19:11:17.0347 4872 [ ACE85AF1C31F68BDFEE9333F6592917E ] C:\Windows\System32\drivers\NIS\1308000.00E\ccsetx86.sys 19:11:17.0348 4872 C:\Windows\System32\drivers\NIS\1308000.00E\ccsetx86.sys - ok 19:11:17.0352 4872 [ 7BB297CADA42903328E92425D9761DA6 ] C:\Windows\System32\drivers\NIS\1308000.00E\srtsp.sys 19:11:17.0352 4872 C:\Windows\System32\drivers\NIS\1308000.00E\srtsp.sys - ok 19:11:17.0357 4872 [ 2C356CCA706505CF63CBE39D532B9236 ] C:\Windows\System32\drivers\NIS\1308000.00E\ironx86.sys 19:11:17.0357 4872 C:\Windows\System32\drivers\NIS\1308000.00E\ironx86.sys - ok 19:11:17.0361 4872 [ 475FCF0F28D845BF1C8ABAC27F19003E ] C:\Windows\System32\drivers\NIS\1308000.00E\srtspx.sys 19:11:17.0361 4872 C:\Windows\System32\drivers\NIS\1308000.00E\srtspx.sys - ok 19:11:17.0367 4872 [ 74E2521E96176A4449570E50BE91954D ] C:\Windows\System32\drivers\SYMEVENT.SYS 19:11:17.0367 4872 C:\Windows\System32\drivers\SYMEVENT.SYS - ok 19:11:17.0372 4872 [ 826F699B69E88A3920C70F344DD42D88 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVEX15.SYS 19:11:17.0372 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVEX15.SYS - ok 19:11:17.0378 4872 [ 8E4C77AD9BB279900C00F870CC0C674B ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVENG.SYS 19:11:17.0378 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVENG.SYS - ok 19:11:17.0393 4872 [ B972A66758577E0BFD1DE0F91AAA27B5 ] C:\Windows\System32\drivers\fs_rec.sys 19:11:17.0393 4872 C:\Windows\System32\drivers\fs_rec.sys - ok 19:11:17.0408 4872 [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys 19:11:17.0408 4872 C:\Windows\System32\drivers\null.sys - ok 19:11:17.0412 4872 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys 19:11:17.0412 4872 C:\Windows\System32\drivers\beep.sys - ok 19:11:17.0417 4872 [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys 19:11:17.0417 4872 C:\Windows\System32\drivers\videoprt.sys - ok 19:11:17.0421 4872 [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys 19:11:17.0421 4872 C:\Windows\System32\drivers\vga.sys - ok 19:11:17.0426 4872 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys 19:11:17.0426 4872 C:\Windows\System32\drivers\RDPCDD.sys - ok 19:11:17.0430 4872 [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys 19:11:17.0430 4872 C:\Windows\System32\drivers\RDPENCDD.sys - ok 19:11:17.0434 4872 [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys 19:11:17.0434 4872 C:\Windows\System32\drivers\msfs.sys - ok 19:11:17.0438 4872 [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys 19:11:17.0438 4872 C:\Windows\System32\drivers\npfs.sys - ok 19:11:17.0445 4872 [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys 19:11:17.0445 4872 C:\Windows\System32\drivers\rasacd.sys - ok 19:11:17.0449 4872 [ 73594DBC99E22958150192EE99BC48CE ] C:\Windows\System32\drivers\FWPKCLNT.SYS 19:11:17.0449 4872 C:\Windows\System32\drivers\FWPKCLNT.SYS - ok 19:11:17.0453 4872 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] C:\Windows\System32\drivers\tcpip.sys 19:11:17.0454 4872 C:\Windows\System32\drivers\tcpip.sys - ok 19:11:17.0458 4872 [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys 19:11:17.0458 4872 C:\Windows\System32\drivers\tdx.sys - ok 19:11:17.0462 4872 [ 40C6E6417C8B7D7FCF82CFBE71525795 ] C:\Windows\System32\drivers\NIS\1308000.00E\symtdiv.sys 19:11:17.0462 4872 C:\Windows\System32\drivers\NIS\1308000.00E\symtdiv.sys - ok 19:11:17.0466 4872 [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys 19:11:17.0466 4872 C:\Windows\System32\drivers\smb.sys - ok 19:11:17.0471 4872 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys 19:11:17.0471 4872 C:\Windows\System32\drivers\netbt.sys - ok 19:11:17.0474 4872 [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys 19:11:17.0475 4872 C:\Windows\System32\drivers\afd.sys - ok 19:11:17.0479 4872 [ E3A3CB253C0EC2494D4A61F5E43A389C ] C:\Windows\System32\drivers\ws2ifsl.sys 19:11:17.0479 4872 C:\Windows\System32\drivers\ws2ifsl.sys - ok 19:11:17.0483 4872 [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys 19:11:17.0483 4872 C:\Windows\System32\drivers\pacer.sys - ok 19:11:17.0487 4872 [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys 19:11:17.0487 4872 C:\Windows\System32\drivers\netbios.sys - ok 19:11:17.0491 4872 [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys 19:11:17.0491 4872 C:\Windows\System32\drivers\wanarp.sys - ok 19:11:17.0495 4872 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys 19:11:17.0495 4872 C:\Windows\System32\drivers\rdbss.sys - ok 19:11:17.0500 4872 [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys 19:11:17.0500 4872 C:\Windows\System32\drivers\nsiproxy.sys - ok 19:11:17.0502 4872 [ 404FB2AAF532BC7BBACC8880BE401C74 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IDSvix86.sys 19:11:17.0502 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IDSvix86.sys - ok 19:11:17.0507 4872 [ 85B8B4032A895A746D46A288A9B30DED ] C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 19:11:17.0507 4872 C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys - ok 19:11:17.0511 4872 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 19:11:17.0511 4872 C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok 19:11:17.0516 4872 [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys 19:11:17.0516 4872 C:\Windows\System32\drivers\dfsc.sys - ok 19:11:17.0521 4872 [ C364F02969E9A842321DD91BCFF749D4 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20120919.001\BHDrvx86.sys 19:11:17.0521 4872 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20120919.001\BHDrvx86.sys - ok 19:11:17.0525 4872 [ 98AF15A94CD6AC37248E72E5FE789B35 ] C:\Windows\System32\smss.exe 19:11:17.0525 4872 C:\Windows\System32\smss.exe - ok 19:11:17.0528 4872 [ DDA770BBD7C2ED024D6F50E279D90E5B ] C:\Windows\System32\ntdll.dll 19:11:17.0528 4872 C:\Windows\System32\ntdll.dll - ok 19:11:17.0533 4872 [ 10761177A6EBE45843F443E99509F5E7 ] C:\Windows\System32\autochk.exe 19:11:17.0533 4872 C:\Windows\System32\autochk.exe - ok 19:11:17.0539 4872 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\System32\wininet.dll 19:11:17.0539 4872 C:\Windows\System32\wininet.dll - ok 19:11:17.0545 4872 [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll 19:11:17.0545 4872 C:\Windows\System32\lpk.dll - ok 19:11:17.0550 4872 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll 19:11:17.0550 4872 C:\Windows\System32\advapi32.dll - ok 19:11:17.0558 4872 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll 19:11:17.0558 4872 C:\Windows\System32\ole32.dll - ok 19:11:17.0563 4872 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll 19:11:17.0563 4872 C:\Windows\System32\msctf.dll - ok 19:11:17.0567 4872 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll 19:11:17.0567 4872 C:\Windows\System32\comdlg32.dll - ok 19:11:17.0571 4872 [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\System32\shell32.dll 19:11:17.0571 4872 C:\Windows\System32\shell32.dll - ok 19:11:17.0575 4872 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll 19:11:17.0575 4872 C:\Windows\System32\clbcatq.dll - ok 19:11:17.0579 4872 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll 19:11:17.0579 4872 C:\Windows\System32\nsi.dll - ok 19:11:17.0583 4872 [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll 19:11:17.0583 4872 C:\Windows\System32\imm32.dll - ok 19:11:17.0587 4872 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\System32\urlmon.dll 19:11:17.0587 4872 C:\Windows\System32\urlmon.dll - ok 19:11:17.0591 4872 [ 574B473FACAA0E91702B86578440B525 ] C:\Windows\System32\kernel32.dll 19:11:17.0591 4872 C:\Windows\System32\kernel32.dll - ok 19:11:17.0595 4872 [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\System32\imagehlp.dll 19:11:17.0595 4872 C:\Windows\System32\imagehlp.dll - ok 19:11:17.0600 4872 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll 19:11:17.0600 4872 C:\Windows\System32\Wldap32.dll - ok 19:11:17.0603 4872 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\System32\iertutil.dll 19:11:17.0603 4872 C:\Windows\System32\iertutil.dll - ok 19:11:17.0608 4872 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll 19:11:17.0608 4872 C:\Windows\System32\normaliz.dll - ok 19:11:17.0612 4872 [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll 19:11:17.0612 4872 C:\Windows\System32\rpcrt4.dll - ok 19:11:17.0617 4872 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll 19:11:17.0617 4872 C:\Windows\System32\setupapi.dll - ok 19:11:17.0620 4872 [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll 19:11:17.0620 4872 C:\Windows\System32\gdi32.dll - ok 19:11:17.0624 4872 [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\System32\msvcrt.dll 19:11:17.0624 4872 C:\Windows\System32\msvcrt.dll - ok 19:11:17.0627 4872 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll 19:11:17.0628 4872 C:\Windows\System32\usp10.dll - ok 19:11:17.0631 4872 [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll 19:11:17.0631 4872 C:\Windows\System32\user32.dll - ok 19:11:17.0636 4872 [ 9176285122B7B849FEC2AA1B72A8F7A8 ] C:\Windows\System32\shlwapi.dll 19:11:17.0636 4872 C:\Windows\System32\shlwapi.dll - ok 19:11:17.0640 4872 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll 19:11:17.0640 4872 C:\Windows\System32\ws2_32.dll - ok 19:11:17.0644 4872 [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\System32\oleaut32.dll 19:11:17.0644 4872 C:\Windows\System32\oleaut32.dll - ok 19:11:17.0647 4872 [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll 19:11:17.0647 4872 C:\Windows\System32\comctl32.dll - ok 19:11:17.0652 4872 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll 19:11:17.0652 4872 C:\Windows\System32\psapi.dll - ok 19:11:17.0655 4872 [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys 19:11:17.0656 4872 C:\Windows\System32\drivers\dxapi.sys - ok 19:11:17.0660 4872 [ 92D85E8A4129FE44A3266266AC8D151D ] C:\Windows\System32\win32k.sys 19:11:17.0660 4872 C:\Windows\System32\win32k.sys - ok 19:11:17.0663 4872 [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe 19:11:17.0663 4872 C:\Windows\System32\csrss.exe - ok 19:11:17.0667 4872 [ 187076DD5D8D4D5D23079D0741195EAD ] C:\Windows\System32\csrsrv.dll 19:11:17.0668 4872 C:\Windows\System32\csrsrv.dll - ok 19:11:17.0672 4872 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll 19:11:17.0672 4872 C:\Windows\System32\basesrv.dll - ok 19:11:17.0676 4872 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\System32\winsrv.dll 19:11:17.0676 4872 C:\Windows\System32\winsrv.dll - ok 19:11:17.0680 4872 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys 19:11:17.0680 4872 C:\Windows\System32\drivers\monitor.sys - ok 19:11:17.0684 4872 [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll 19:11:17.0684 4872 C:\Windows\System32\tsddd.dll - ok 19:11:17.0688 4872 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll 19:11:17.0688 4872 C:\Windows\System32\userenv.dll - ok 19:11:17.0692 4872 [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe 19:11:17.0692 4872 C:\Windows\System32\wininit.exe - ok 19:11:17.0695 4872 [ 12C8D6C564702B0776512932290A3F6B ] C:\Windows\System32\KBDUS.DLL 19:11:17.0695 4872 C:\Windows\System32\KBDUS.DLL - ok 19:11:17.0701 4872 [ D602FEDBD9155FC2DED6863FB60C950F ] C:\Windows\System32\secur32.dll 19:11:17.0701 4872 C:\Windows\System32\secur32.dll - ok 19:11:17.0705 4872 [ CF9F5BBC2740C41DD471278C41B91F5F ] C:\Windows\System32\cdd.dll 19:11:17.0705 4872 C:\Windows\System32\cdd.dll - ok 19:11:17.0708 4872 [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll 19:11:17.0708 4872 C:\Windows\System32\WlS0WndH.dll - ok 19:11:17.0712 4872 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll 19:11:17.0712 4872 C:\Windows\System32\sxs.dll - ok 19:11:17.0718 4872 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll 19:11:17.0718 4872 C:\Windows\System32\apphelp.dll - ok 19:11:17.0720 4872 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\services.exe 19:11:17.0721 4872 C:\Windows\System32\services.exe - ok 19:11:17.0724 4872 [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll 19:11:17.0724 4872 C:\Windows\System32\scesrv.dll - ok 19:11:17.0728 4872 [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll 19:11:17.0728 4872 C:\Windows\System32\authz.dll - ok 19:11:17.0734 4872 [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\System32\netapi32.dll 19:11:17.0735 4872 C:\Windows\System32\netapi32.dll - ok 19:11:17.0737 4872 [ A3E186B4B935905B829219502557314E ] C:\Windows\System32\lsass.exe 19:11:17.0737 4872 C:\Windows\System32\lsass.exe - ok 19:11:17.0741 4872 [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll 19:11:17.0741 4872 C:\Windows\System32\ncobjapi.dll - ok 19:11:17.0745 4872 [ 178FAC2B7C66E9A4400CE7AC37623E3F ] C:\Windows\System32\lsasrv.dll 19:11:17.0745 4872 C:\Windows\System32\lsasrv.dll - ok 19:11:17.0749 4872 [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe 19:11:17.0749 4872 C:\Windows\System32\lsm.exe - ok 19:11:17.0753 4872 [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll 19:11:17.0753 4872 C:\Windows\System32\samsrv.dll - ok 19:11:17.0757 4872 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll 19:11:17.0757 4872 C:\Windows\System32\cryptdll.dll - ok 19:11:17.0761 4872 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll 19:11:17.0761 4872 C:\Windows\System32\dnsapi.dll - ok 19:11:17.0768 4872 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll 19:11:17.0768 4872 C:\Windows\System32\samlib.dll - ok 19:11:17.0772 4872 [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll 19:11:17.0772 4872 C:\Windows\System32\feclient.dll - ok 19:11:17.0789 4872 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll 19:11:17.0789 4872 C:\Windows\System32\msasn1.dll - ok 19:11:17.0793 4872 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll 19:11:17.0793 4872 C:\Windows\System32\ntdsapi.dll - ok 19:11:17.0797 4872 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll 19:11:17.0797 4872 C:\Windows\System32\mpr.dll - ok 19:11:17.0803 4872 [ F180EDE9CFC3FF218D4B45155119F4D9 ] C:\Windows\System32\crypt32.dll 19:11:17.0803 4872 C:\Windows\System32\crypt32.dll - ok 19:11:17.0805 4872 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll 19:11:17.0806 4872 C:\Windows\System32\SLC.dll - ok 19:11:17.0809 4872 [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll 19:11:17.0809 4872 C:\Windows\System32\sysntfy.dll - ok 19:11:17.0813 4872 [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll 19:11:17.0813 4872 C:\Windows\System32\wevtapi.dll - ok 19:11:17.0819 4872 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL 19:11:17.0819 4872 C:\Windows\System32\IPHLPAPI.DLL - ok 19:11:17.0822 4872 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll 19:11:17.0822 4872 C:\Windows\System32\dhcpcsvc.dll - ok 19:11:17.0826 4872 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll 19:11:17.0826 4872 C:\Windows\System32\dhcpcsvc6.dll - ok 19:11:17.0830 4872 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll 19:11:17.0830 4872 C:\Windows\System32\winnsi.dll - ok 19:11:17.0836 4872 [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe 19:11:17.0836 4872 C:\Windows\System32\winlogon.exe - ok 19:11:17.0838 4872 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] C:\Windows\System32\aelupsvc.dll 19:11:17.0839 4872 C:\Windows\System32\aelupsvc.dll - ok 19:11:17.0842 4872 [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll 19:11:17.0842 4872 C:\Windows\System32\cngaudit.dll - ok 19:11:17.0846 4872 [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll 19:11:17.0846 4872 C:\Windows\System32\wmsgapi.dll - ok 19:11:17.0850 4872 [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe 19:11:17.0850 4872 C:\Windows\System32\alg.exe - ok 19:11:17.0854 4872 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll 19:11:17.0854 4872 C:\Windows\System32\winsta.dll - ok 19:11:17.0858 4872 [ 188CC19108B0EBD6332D6628D4EDE469 ] C:\Windows\System32\ncrypt.dll 19:11:17.0858 4872 C:\Windows\System32\ncrypt.dll - ok 19:11:17.0862 4872 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll 19:11:17.0862 4872 C:\Windows\System32\appinfo.dll - ok 19:11:17.0866 4872 [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll 19:11:17.0866 4872 C:\Windows\System32\bcrypt.dll - ok 19:11:17.0870 4872 [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll 19:11:17.0870 4872 C:\Windows\System32\rascfg.dll - ok 19:11:17.0873 4872 [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll 19:11:17.0874 4872 C:\Windows\System32\audiosrv.dll - ok 19:11:17.0877 4872 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll 19:11:17.0877 4872 C:\Windows\System32\credssp.dll - ok 19:11:17.0881 4872 [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL 19:11:17.0881 4872 C:\Windows\System32\BFE.DLL - ok 19:11:17.0886 4872 [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll 19:11:17.0886 4872 C:\Windows\System32\msprivs.dll - ok 19:11:17.0890 4872 [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll 19:11:17.0890 4872 C:\Windows\System32\qmgr.dll - ok 19:11:17.0893 4872 [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll 19:11:17.0893 4872 C:\Windows\System32\kerberos.dll - ok 19:11:17.0897 4872 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL 19:11:17.0897 4872 C:\Windows\System32\WSHTCPIP.DLL - ok 19:11:17.0901 4872 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll 19:11:17.0901 4872 C:\Windows\System32\browser.dll - ok 19:11:17.0906 4872 [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll 19:11:17.0906 4872 C:\Windows\System32\certprop.dll - ok 19:11:17.0910 4872 [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll 19:11:17.0910 4872 C:\Windows\System32\comres.dll - ok 19:11:17.0914 4872 [ 75C6A297E364014840B48ECCD7525E30 ] C:\Windows\System32\cryptsvc.dll 19:11:17.0914 4872 C:\Windows\System32\cryptsvc.dll - ok 19:11:17.0917 4872 [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll 19:11:17.0917 4872 C:\Windows\System32\oleres.dll - ok 19:11:17.0922 4872 [ 74F380C8EC8813626C670D46E8A714D1 ] C:\Windows\System32\dfsrres.dll 19:11:17.0922 4872 C:\Windows\System32\dfsrres.dll - ok 19:11:17.0926 4872 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll 19:11:17.0926 4872 C:\Windows\System32\wship6.dll - ok 19:11:17.0929 4872 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll 19:11:17.0930 4872 C:\Windows\System32\wshqos.dll - ok 19:11:17.0933 4872 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll 19:11:17.0933 4872 C:\Windows\System32\dot3svc.dll - ok 19:11:17.0938 4872 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll 19:11:17.0938 4872 C:\Windows\System32\nlasvc.dll - ok 19:11:17.0942 4872 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll 19:11:17.0942 4872 C:\Windows\System32\NapiNSP.dll - ok 19:11:17.0945 4872 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll 19:11:17.0945 4872 C:\Windows\System32\dps.dll - ok 19:11:17.0949 4872 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll 19:11:17.0949 4872 C:\Windows\System32\pnrpnsp.dll - ok 19:11:17.0954 4872 [ 9BE3744D295A7701EB425332014F0797 ] C:\Windows\ehome\ehrecvr.exe 19:11:17.0954 4872 C:\Windows\ehome\ehrecvr.exe - ok 19:11:17.0957 4872 [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll 19:11:17.0957 4872 C:\Windows\System32\eapsvc.dll - ok 19:11:17.0962 4872 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll 19:11:17.0962 4872 C:\Windows\System32\mswsock.dll - ok 19:11:17.0966 4872 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll 19:11:17.0966 4872 C:\Windows\System32\msv1_0.dll - ok 19:11:17.0971 4872 [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll 19:11:17.0971 4872 C:\Windows\System32\netlogon.dll - ok 19:11:17.0974 4872 [ AD1870C8E5D6DD340C829E6074BF3C3F ] C:\Windows\ehome\ehsched.exe 19:11:17.0975 4872 C:\Windows\ehome\ehsched.exe - ok 19:11:17.0978 4872 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] C:\Windows\ehome\ehstart.dll 19:11:17.0978 4872 C:\Windows\ehome\ehstart.dll - ok 19:11:17.0982 4872 [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll 19:11:17.0982 4872 C:\Windows\System32\emdmgmt.dll - ok 19:11:17.0986 4872 [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll 19:11:17.0986 4872 C:\Windows\System32\winbrand.dll - ok 19:11:17.0991 4872 [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll 19:11:17.0991 4872 C:\Windows\System32\wevtsvc.dll - ok 19:11:17.0994 4872 [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\System32\schannel.dll 19:11:17.0995 4872 C:\Windows\System32\schannel.dll - ok 19:11:17.0998 4872 [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll 19:11:17.0998 4872 C:\Windows\System32\wdigest.dll - ok 19:11:18.0002 4872 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] C:\Windows\System32\fdPHost.dll 19:11:18.0002 4872 C:\Windows\System32\fdPHost.dll - ok 19:11:18.0005 4872 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll 19:11:18.0005 4872 C:\Windows\System32\rsaenh.dll - ok 19:11:18.0009 4872 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] C:\Windows\System32\FDResPub.dll 19:11:18.0009 4872 C:\Windows\System32\FDResPub.dll - ok 19:11:18.0013 4872 [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll 19:11:18.0013 4872 C:\Windows\System32\TSpkg.dll - ok 19:11:18.0017 4872 [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll 19:11:18.0017 4872 C:\Windows\System32\FntCache.dll - ok 19:11:18.0021 4872 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll 19:11:18.0021 4872 C:\Windows\System32\gpapi.dll - ok 19:11:18.0025 4872 [ 302964DCAC79D618CC7B72C778DA9FD2 ] C:\Windows\System32\PresentationHost.exe 19:11:18.0025 4872 C:\Windows\System32\PresentationHost.exe - ok 19:11:18.0029 4872 [ 84067081F3318162797385E11A8F0582 ] C:\Windows\System32\hidserv.dll 19:11:18.0029 4872 C:\Windows\System32\hidserv.dll - ok 19:11:18.0035 4872 [ D8AD255B37DA92434C26E4876DB7D418 ] C:\Windows\System32\KMSVC.DLL 19:11:18.0035 4872 C:\Windows\System32\KMSVC.DLL - ok 19:11:18.0039 4872 [ 05586F5438AB0DA4F5149159E0E5FD4B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll 19:11:18.0039 4872 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok 19:11:18.0043 4872 [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL 19:11:18.0043 4872 C:\Windows\System32\IKEEXT.DLL - ok 19:11:18.0047 4872 [ 9AC218C6E6105477484C6FDBE7D409A4 ] C:\Windows\System32\IPBusEnum.dll 19:11:18.0047 4872 C:\Windows\System32\IPBusEnum.dll - ok 19:11:18.0051 4872 [ 1998BD97F950680BB55F55A7244679C2 ] C:\Windows\System32\iphlpsvc.dll 19:11:18.0051 4872 C:\Windows\System32\iphlpsvc.dll - ok 19:11:18.0056 4872 [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll 19:11:18.0056 4872 C:\Windows\System32\keyiso.dll - ok 19:11:18.0060 4872 [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll 19:11:18.0060 4872 C:\Windows\System32\srvsvc.dll - ok 19:11:18.0063 4872 [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll 19:11:18.0064 4872 C:\Windows\System32\wkssvc.dll - ok 19:11:18.0067 4872 [ FA0593D936C9B95FB6FAA32AD1595D49 ] C:\Windows\System32\lltdres.dll 19:11:18.0068 4872 C:\Windows\System32\lltdres.dll - ok 19:11:18.0072 4872 [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll 19:11:18.0072 4872 C:\Windows\System32\lmhsvc.dll - ok 19:11:18.0076 4872 [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll 19:11:18.0076 4872 C:\Windows\ehome\ehres.dll - ok 19:11:18.0080 4872 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll 19:11:18.0080 4872 C:\Windows\System32\mmcss.dll - ok 19:11:18.0084 4872 [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll 19:11:18.0084 4872 C:\Windows\System32\FirewallAPI.dll - ok 19:11:18.0088 4872 [ EA822412BBBA9B7D2B1A3748AD50EFB8 ] C:\Windows\System32\iscsidsc.dll 19:11:18.0088 4872 C:\Windows\System32\iscsidsc.dll - ok 19:11:18.0092 4872 [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll 19:11:18.0092 4872 C:\Windows\System32\msimsg.dll - ok 19:11:18.0096 4872 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL 19:11:18.0096 4872 C:\Windows\System32\QAGENTRT.DLL - ok 19:11:18.0100 4872 [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll 19:11:18.0100 4872 C:\Windows\System32\netman.dll - ok 19:11:18.0104 4872 [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll 19:11:18.0104 4872 C:\Windows\System32\netprof.dll - ok 19:11:18.0109 4872 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll 19:11:18.0109 4872 C:\Windows\System32\nsisvc.dll - ok 19:11:18.0113 4872 [ 0C8E8E61AD1EB0B250B846712C917506 ] C:\Windows\System32\p2psvc.dll 19:11:18.0113 4872 C:\Windows\System32\p2psvc.dll - ok 19:11:18.0117 4872 [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll 19:11:18.0117 4872 C:\Windows\System32\pcasvc.dll - ok 19:11:18.0121 4872 [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll 19:11:18.0121 4872 C:\Windows\System32\pla.dll - ok 19:11:18.0126 4872 [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll 19:11:18.0126 4872 C:\Windows\System32\umpnpmgr.dll - ok 19:11:18.0130 4872 [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll 19:11:18.0130 4872 C:\Windows\System32\polstore.dll - ok 19:11:18.0134 4872 [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll 19:11:18.0134 4872 C:\Windows\System32\profsvc.dll - ok 19:11:18.0139 4872 [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll 19:11:18.0139 4872 C:\Windows\System32\psbase.dll - ok 19:11:18.0142 4872 [ E9ECAE663F47E6CB43962D18AB18890F ] C:\Windows\System32\qwave.dll 19:11:18.0142 4872 C:\Windows\System32\qwave.dll - ok 19:11:18.0146 4872 [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys 19:11:18.0146 4872 C:\Windows\System32\drivers\qwavedrv.sys - ok 19:11:18.0150 4872 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll 19:11:18.0150 4872 C:\Windows\System32\rasauto.dll - ok 19:11:18.0155 4872 [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll 19:11:18.0156 4872 C:\Windows\System32\rasmans.dll - ok 19:11:18.0158 4872 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll 19:11:18.0158 4872 C:\Windows\System32\sstpsvc.dll - ok 19:11:18.0162 4872 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll 19:11:18.0162 4872 C:\Windows\System32\mprdim.dll - ok 19:11:18.0166 4872 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] C:\Windows\System32\regsvc.dll 19:11:18.0166 4872 C:\Windows\System32\regsvc.dll - ok 19:11:18.0170 4872 [ 5123F83CBC4349D065534EEB6BBDC42B ] C:\Windows\System32\Locator.exe 19:11:18.0170 4872 C:\Windows\System32\Locator.exe - ok 19:11:18.0175 4872 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll 19:11:18.0175 4872 C:\Windows\System32\SCardSvr.dll - ok 19:11:18.0179 4872 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll 19:11:18.0179 4872 C:\Windows\System32\schedsvc.dll - ok 19:11:18.0183 4872 [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll 19:11:18.0183 4872 C:\Windows\System32\sdrsvc.dll - ok 19:11:18.0187 4872 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll 19:11:18.0187 4872 C:\Windows\System32\seclogon.dll - ok 19:11:18.0191 4872 [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll 19:11:18.0191 4872 C:\Windows\System32\Sens.dll - ok 19:11:18.0195 4872 [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll 19:11:18.0195 4872 C:\Windows\System32\SessEnv.dll - ok 19:11:18.0199 4872 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] C:\Windows\System32\ipnathlp.dll 19:11:18.0200 4872 C:\Windows\System32\ipnathlp.dll - ok 19:11:18.0203 4872 [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll 19:11:18.0203 4872 C:\Windows\System32\shsvcs.dll - ok 19:11:18.0208 4872 [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe 19:11:18.0208 4872 C:\Windows\System32\SLsvc.exe - ok 19:11:18.0212 4872 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll 19:11:18.0212 4872 C:\Windows\System32\SLUINotify.dll - ok 19:11:18.0216 4872 [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll 19:11:18.0216 4872 C:\Windows\System32\tcpipcfg.dll - ok 19:11:18.0220 4872 [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe 19:11:18.0220 4872 C:\Windows\System32\snmptrap.exe - ok 19:11:18.0225 4872 [ 8554097E5136C3BF9F69FE578A1B35F4 ] C:\Windows\System32\spoolsv.exe 19:11:18.0225 4872 C:\Windows\System32\spoolsv.exe - ok 19:11:18.0229 4872 [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll 19:11:18.0229 4872 C:\Windows\System32\ssdpsrv.dll - ok 19:11:18.0233 4872 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll 19:11:18.0233 4872 C:\Windows\System32\wiaservc.dll - ok 19:11:18.0237 4872 [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll 19:11:18.0237 4872 C:\Windows\System32\swprv.dll - ok 19:11:18.0242 4872 [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll 19:11:18.0242 4872 C:\Windows\System32\sysmain.dll - ok 19:11:18.0246 4872 [ 2DCA225EAE15F42C0933E998EE0231C3 ] C:\Windows\System32\TabSvc.dll 19:11:18.0246 4872 C:\Windows\System32\TabSvc.dll - ok 19:11:18.0251 4872 [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll 19:11:18.0251 4872 C:\Windows\System32\tapisrv.dll - ok 19:11:18.0254 4872 [ CB05822CD9CC6C688168E113C603DBE7 ] C:\Windows\System32\tbssvc.dll 19:11:18.0254 4872 C:\Windows\System32\tbssvc.dll - ok 19:11:18.0257 4872 [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll 19:11:18.0257 4872 C:\Windows\System32\termsrv.dll - ok 19:11:18.0261 4872 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe 19:11:18.0261 4872 C:\Windows\servicing\TrustedInstaller.exe - ok 19:11:18.0265 4872 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] C:\Windows\System32\trkwks.dll 19:11:18.0265 4872 C:\Windows\System32\trkwks.dll - ok 19:11:18.0270 4872 [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe 19:11:18.0270 4872 C:\Windows\System32\UI0Detect.exe - ok 19:11:18.0278 4872 [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll 19:11:18.0278 4872 C:\Windows\System32\upnphost.dll - ok 19:11:18.0284 4872 [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe 19:11:18.0284 4872 C:\Windows\System32\dwm.exe - ok 19:11:18.0291 4872 [ CD88D1B7776DC17A119049742EC07EB4 ] C:\Windows\System32\vds.exe 19:11:18.0291 4872 C:\Windows\System32\vds.exe - ok 19:11:18.0296 4872 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe 19:11:18.0296 4872 C:\Windows\System32\VSSVC.exe - ok 19:11:18.0300 4872 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll 19:11:18.0300 4872 C:\Windows\System32\w32time.dll - ok 19:11:18.0303 4872 [ A3CD60FD826381B49F03832590E069AF ] C:\Windows\System32\wcncsvc.dll 19:11:18.0303 4872 C:\Windows\System32\wcncsvc.dll - ok 19:11:18.0308 4872 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll 19:11:18.0308 4872 C:\Windows\System32\WcsPlugInService.dll - ok 19:11:18.0312 4872 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll 19:11:18.0313 4872 C:\Windows\System32\wdi.dll - ok 19:11:18.0316 4872 [ 04C37D8107320312FBAE09926103D5E2 ] C:\Windows\System32\WebClnt.dll 19:11:18.0316 4872 C:\Windows\System32\WebClnt.dll - ok 19:11:18.0320 4872 [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll 19:11:18.0320 4872 C:\Windows\System32\wecsvc.dll - ok 19:11:18.0325 4872 [ 670FF720071ED741206D69BD995EA453 ] C:\Windows\System32\wercplsupport.dll 19:11:18.0325 4872 C:\Windows\System32\wercplsupport.dll - ok 19:11:18.0330 4872 [ 32B88481D3B326DA6DEB07B1D03481E7 ] C:\Windows\System32\wersvc.dll 19:11:18.0330 4872 C:\Windows\System32\wersvc.dll - ok 19:11:18.0334 4872 [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\System32\winhttp.dll 19:11:18.0334 4872 C:\Windows\System32\winhttp.dll - ok 19:11:18.0337 4872 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll 19:11:18.0337 4872 C:\Windows\System32\wbem\WMIsvc.dll - ok 19:11:18.0342 4872 [ 7CFE68BDC065E55AA5E8421607037511 ] C:\Windows\System32\WsmSvc.dll 19:11:18.0342 4872 C:\Windows\System32\WsmSvc.dll - ok 19:11:18.0346 4872 [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll 19:11:18.0346 4872 C:\Windows\System32\wlansvc.dll - ok 19:11:18.0350 4872 [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe 19:11:18.0350 4872 C:\Windows\System32\wbem\WmiApSrv.exe - ok 19:11:18.0354 4872 [ 3978704576A121A9204F8CC49A301A9B ] C:\Program Files\Windows Media Player\wmpnetwk.exe 19:11:18.0354 4872 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok 19:11:18.0359 4872 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] C:\Windows\System32\wpcsvc.dll 19:11:18.0359 4872 C:\Windows\System32\wpcsvc.dll - ok 19:11:18.0363 4872 [ 801FBDB89D472B3C467EB112A0FC9246 ] C:\Windows\System32\wpdbusenum.dll 19:11:18.0363 4872 C:\Windows\System32\wpdbusenum.dll - ok 19:11:18.0367 4872 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 19:11:18.0367 4872 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok 19:11:18.0372 4872 [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll 19:11:18.0372 4872 C:\Windows\System32\wscsvc.dll - ok 19:11:18.0377 4872 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll 19:11:18.0377 4872 C:\Windows\System32\wuaueng.dll - ok 19:11:18.0381 4872 [ 575A4190D989F64732119E4114045A4F ] C:\Windows\System32\WUDFSvc.dll 19:11:18.0381 4872 C:\Windows\System32\WUDFSvc.dll - ok 19:11:18.0384 4872 [ B44A7AC9E801C38F54F7340351313E85 ] C:\Windows\System32\atmfd.dll 19:11:18.0385 4872 C:\Windows\System32\atmfd.dll - ok 19:11:18.0388 4872 [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll 19:11:18.0388 4872 C:\Windows\System32\scecli.dll - ok 19:11:18.0393 4872 [ ABB544B237F37A090674CADAFD43B708 ] C:\Windows\System32\psqlpwd.dll 19:11:18.0393 4872 C:\Windows\System32\psqlpwd.dll - ok 19:11:18.0397 4872 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll 19:11:18.0397 4872 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok 19:11:18.0401 4872 [ 3916191B15BFA6654B3408E44475AEBF ] C:\Program Files\Fingerprint Reader Suite\homefus2.dll 19:11:18.0402 4872 C:\Program Files\Fingerprint Reader Suite\homefus2.dll - ok 19:11:18.0406 4872 [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll 19:11:18.0406 4872 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok 19:11:18.0411 4872 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll 19:11:18.0411 4872 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok 19:11:18.0415 4872 [ CDC573F48B4A99597552D2FCB201F43B ] C:\Program Files\Fingerprint Reader Suite\infra.dll 19:11:18.0415 4872 C:\Program Files\Fingerprint Reader Suite\infra.dll - ok 19:11:18.0419 4872 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll 19:11:18.0419 4872 C:\Windows\System32\riched20.dll - ok 19:11:18.0423 4872 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll 19:11:18.0423 4872 C:\Windows\System32\ntmarta.dll - ok 19:11:18.0428 4872 [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe 19:11:18.0428 4872 C:\Windows\System32\svchost.exe - ok 19:11:18.0431 4872 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll 19:11:18.0432 4872 C:\Windows\System32\powrprof.dll - ok 19:11:18.0435 4872 [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys 19:11:18.0435 4872 C:\Windows\System32\drivers\luafv.sys - ok 19:11:18.0439 4872 [ A3B80E6B7CDE9660F639658739A5824E ] C:\Windows\System32\nvvsvc.exe 19:11:18.0439 4872 C:\Windows\System32\nvvsvc.exe - ok 19:11:18.0444 4872 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll 19:11:18.0444 4872 C:\Windows\System32\wtsapi32.dll - ok 19:11:18.0448 4872 [ A766CCAD980235FF34E7F8089D3175A3 ] C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 19:11:18.0448 4872 C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok 19:11:18.0452 4872 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll 19:11:18.0452 4872 C:\Windows\System32\version.dll - ok 19:11:18.0456 4872 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv 19:11:18.0456 4872 C:\Windows\System32\winspool.drv - ok 19:11:18.0461 4872 [ 91B82AFC372093C48D225CB358250325 ] C:\Program Files\NVIDIA Corporation\3D Vision\nvstres.dll 19:11:18.0461 4872 C:\Program Files\NVIDIA Corporation\3D Vision\nvstres.dll - ok 19:11:18.0465 4872 [ 7FB76BB304C9CE38BDC398707E1EEE74 ] C:\Program Files\NVIDIA Corporation\3D Vision\nvwl.dll 19:11:18.0465 4872 C:\Program Files\NVIDIA Corporation\3D Vision\nvwl.dll - ok 19:11:18.0470 4872 [ E253E5DA1249A471D913F7EA4C81FAF6 ] C:\Windows\System32\wintrust.dll 19:11:18.0470 4872 C:\Windows\System32\wintrust.dll - ok 19:11:18.0473 4872 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll 19:11:18.0473 4872 C:\Windows\System32\rpcss.dll - ok 19:11:18.0478 4872 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll 19:11:18.0478 4872 C:\Windows\System32\cabinet.dll - ok 19:11:18.0482 4872 [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe 19:11:18.0482 4872 C:\Windows\System32\LogonUI.exe - ok 19:11:18.0486 4872 [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll 19:11:18.0486 4872 C:\Windows\System32\authui.dll - ok 19:11:18.0490 4872 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll 19:11:18.0490 4872 C:\Windows\System32\msimg32.dll - ok 19:11:18.0494 4872 [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll 19:11:18.0495 4872 C:\Windows\System32\uxtheme.dll - ok 19:11:18.0498 4872 [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll 19:11:18.0498 4872 C:\Windows\System32\duser.dll - ok 19:11:18.0502 4872 [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\System32\xmllite.dll 19:11:18.0502 4872 C:\Windows\System32\xmllite.dll - ok 19:11:18.0506 4872 [ CFE8348CB89DF3141247AC77B46F91BA ] C:\Program Files\Fingerprint Reader Suite\provider.dll 19:11:18.0506 4872 C:\Program Files\Fingerprint Reader Suite\provider.dll - ok 19:11:18.0511 4872 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll 19:11:18.0511 4872 C:\Windows\System32\avrt.dll - ok 19:11:18.0515 4872 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll 19:11:18.0515 4872 C:\Windows\System32\MMDevAPI.dll - ok 19:11:18.0518 4872 [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll 19:11:18.0518 4872 C:\Windows\System32\adtschema.dll - ok 19:11:18.0522 4872 [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll 19:11:18.0522 4872 C:\Windows\System32\SmartcardCredentialProvider.dll - ok 19:11:18.0527 4872 [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll 19:11:18.0527 4872 C:\Windows\System32\rasplap.dll - ok 19:11:18.0531 4872 [ 70C6489D56008D75DEDF73226FA63C11 ] C:\Windows\System32\dimsjob.dll 19:11:18.0531 4872 C:\Windows\System32\dimsjob.dll - ok 19:11:18.0535 4872 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys 19:11:18.0535 4872 C:\Windows\System32\drivers\fltMgr.sys - ok 19:11:18.0539 4872 [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL 19:11:18.0539 4872 C:\Windows\System32\PSHED.DLL - ok 19:11:18.0543 4872 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll 19:11:18.0543 4872 C:\Windows\System32\rasapi32.dll - ok 19:11:18.0547 4872 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll 19:11:18.0547 4872 C:\Windows\System32\rasman.dll - ok 19:11:18.0551 4872 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll 19:11:18.0551 4872 C:\Windows\System32\tapi32.dll - ok 19:11:18.0555 4872 [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe 19:11:18.0555 4872 C:\Windows\System32\audiodg.exe - ok 19:11:18.0560 4872 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll 19:11:18.0560 4872 C:\Windows\System32\rtutils.dll - ok 19:11:18.0564 4872 [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\System32\oleacc.dll 19:11:18.0564 4872 C:\Windows\System32\oleacc.dll - ok 19:11:18.0567 4872 [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\System32\winmm.dll 19:11:18.0567 4872 C:\Windows\System32\winmm.dll - ok 19:11:18.0571 4872 [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll 19:11:18.0571 4872 C:\Windows\System32\WinSCard.dll - ok 19:11:18.0575 4872 [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll 19:11:18.0575 4872 C:\Windows\System32\shgina.dll - ok 19:11:18.0579 4872 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll 19:11:18.0579 4872 C:\Windows\System32\propsys.dll - ok 19:11:18.0583 4872 [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll 19:11:18.0583 4872 C:\Windows\System32\shacct.dll - ok 19:11:18.0587 4872 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll 19:11:18.0587 4872 C:\Windows\System32\gpsvc.dll - ok 19:11:18.0590 4872 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv 19:11:18.0590 4872 C:\Windows\System32\wdmaud.drv - ok 19:11:18.0595 4872 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll 19:11:18.0595 4872 C:\Windows\System32\ksuser.dll - ok 19:11:18.0599 4872 [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll 19:11:18.0599 4872 C:\Windows\System32\AudioEng.dll - ok 19:11:18.0603 4872 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll 19:11:18.0603 4872 C:\Windows\System32\AudioSes.dll - ok 19:11:18.0607 4872 [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys 19:11:18.0607 4872 C:\Windows\System32\drivers\spsys.sys - ok 19:11:18.0611 4872 [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll 19:11:18.0611 4872 C:\Windows\System32\es.dll - ok 19:11:18.0615 4872 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll 19:11:18.0615 4872 C:\Windows\System32\nlaapi.dll - ok 19:11:18.0619 4872 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll 19:11:18.0635 4872 C:\Windows\System32\atl.dll - ok 19:11:18.0638 4872 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll 19:11:18.0638 4872 C:\Windows\System32\msacm32.dll - ok 19:11:18.0645 4872 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv 19:11:18.0645 4872 C:\Windows\System32\msacm32.drv - ok 19:11:18.0648 4872 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll 19:11:18.0648 4872 C:\Windows\System32\midimap.dll - ok 19:11:18.0652 4872 [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll 19:11:18.0653 4872 C:\Windows\System32\AUDIOKSE.dll - ok 19:11:18.0657 4872 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll 19:11:18.0657 4872 C:\Windows\System32\WindowsCodecs.dll - ok 19:11:18.0661 4872 [ F3F940C6F1EDC2EF2B96BC05F1F8CE8E ] C:\Windows\System32\stapo.dll 19:11:18.0661 4872 C:\Windows\System32\stapo.dll - ok 19:11:18.0666 4872 [ 5EF35DBD3B14B1E595712C92949C349E ] C:\Windows\System32\ctapo32.dll 19:11:18.0666 4872 C:\Windows\System32\ctapo32.dll - ok 19:11:18.0670 4872 [ 954CA32CB0E3CCD19956D900A4A9F3FC ] C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe 19:11:18.0670 4872 C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe - ok 19:11:18.0674 4872 [ DB29915209770D8B59654345EC2D943A ] C:\Program Files\Dell\DellDock\DockLogin.exe 19:11:18.0674 4872 C:\Program Files\Dell\DellDock\DockLogin.exe - ok 19:11:18.0679 4872 [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll 19:11:18.0679 4872 C:\Windows\System32\hid.dll - ok 19:11:18.0682 4872 [ 1509E705F3AC1D474C92454A5C2DD81F ] C:\Windows\System32\uxsms.dll 19:11:18.0682 4872 C:\Windows\System32\uxsms.dll - ok 19:11:18.0686 4872 [ 0727200F10320A6BA7E59433094FBBA7 ] C:\Windows\System32\WMALFXGFXDSP.dll 19:11:18.0686 4872 C:\Windows\System32\WMALFXGFXDSP.dll - ok 19:11:18.0690 4872 [ 86315342856C88A4BB91BD7488883B91 ] C:\Program Files\Fingerprint Reader Suite\remote.dll 19:11:18.0690 4872 C:\Program Files\Fingerprint Reader Suite\remote.dll - ok 19:11:18.0695 4872 [ 56139C1B79B6EE0C6D02754F3F70892F ] C:\Windows\System32\nvsvc.dll 19:11:18.0695 4872 C:\Windows\System32\nvsvc.dll - ok 19:11:18.0699 4872 [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll 19:11:18.0699 4872 C:\Windows\System32\mfplat.dll - ok 19:11:18.0703 4872 [ E76D086A0F9FA5387F02C2CD66D51044 ] C:\Program Files\Fingerprint Reader Suite\upeksvr.exe 19:11:18.0703 4872 C:\Program Files\Fingerprint Reader Suite\upeksvr.exe - ok 19:11:18.0707 4872 [ B78B8F611A9E87874798C6222F23D0D1 ] C:\Program Files\Fingerprint Reader Suite\homepass.dll 19:11:18.0707 4872 C:\Program Files\Fingerprint Reader Suite\homepass.dll - ok 19:11:18.0712 4872 [ A2B99C57E9ED69E432390C3966946910 ] C:\Program Files\NVIDIA Corporation\Display\NVXDApiX.dll 19:11:18.0712 4872 C:\Program Files\NVIDIA Corporation\Display\NVXDApiX.dll - ok 19:11:18.0716 4872 [ AB4BC1F10FF8273D4B54DAC4DE4B7AA4 ] C:\Windows\System32\aestaren.dll 19:11:18.0716 4872 C:\Windows\System32\aestaren.dll - ok 19:11:18.0720 4872 [ 399BB52AD0668472717498E97CF28341 ] C:\Windows\System32\WUDFPlatform.dll 19:11:18.0720 4872 C:\Windows\System32\WUDFPlatform.dll - ok 19:11:18.0724 4872 [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys 19:11:18.0724 4872 C:\Windows\System32\drivers\lltdio.sys - ok 19:11:18.0729 4872 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] C:\Windows\System32\drivers\nwifi.sys 19:11:18.0729 4872 C:\Windows\System32\drivers\nwifi.sys - ok 19:11:18.0733 4872 [ D6973AA34C4D5D76C0430B181C3CD389 ] C:\Windows\System32\drivers\ndisuio.sys 19:11:18.0733 4872 C:\Windows\System32\drivers\ndisuio.sys - ok 19:11:18.0738 4872 [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys 19:11:18.0738 4872 C:\Windows\System32\drivers\rspndr.sys - ok 19:11:18.0744 4872 [ 829CE88BCB5E88F130EF64418028D73C ] C:\Program Files\Fingerprint Reader Suite\bio.dll 19:11:18.0744 4872 C:\Program Files\Fingerprint Reader Suite\bio.dll - ok 19:11:18.0747 4872 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll 19:11:18.0747 4872 C:\Windows\System32\dnsrslvr.dll - ok 19:11:18.0751 4872 [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\System32\mscms.dll 19:11:18.0751 4872 C:\Windows\System32\mscms.dll - ok 19:11:18.0755 4872 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll 19:11:18.0755 4872 C:\Windows\System32\dwmapi.dll - ok 19:11:18.0759 4872 [ 25D4EAFF936A6FA97DAD44D303741868 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll 19:11:18.0759 4872 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok 19:11:18.0762 4872 [ 3AB4023CBD406AC33AB8CDFF6C8079A0 ] C:\Windows\System32\eapphost.dll 19:11:18.0762 4872 C:\Windows\System32\eapphost.dll - ok 19:11:18.0766 4872 [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll 19:11:18.0766 4872 C:\Windows\System32\rastls.dll - ok 19:11:18.0771 4872 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll 19:11:18.0771 4872 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok 19:11:18.0775 4872 [ C2D2270A85FE733BE9E606C67E43EC47 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll 19:11:18.0775 4872 C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok 19:11:18.0783 4872 [ 97F064EA7D1240ADA38657E249EB3C5B ] C:\Windows\System32\nvapi.dll 19:11:18.0783 4872 C:\Windows\System32\nvapi.dll - ok 19:11:18.0788 4872 [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll 19:11:18.0788 4872 C:\Windows\System32\raschap.dll - ok 19:11:18.0791 4872 [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll 19:11:18.0791 4872 C:\Windows\System32\umb.dll - ok 19:11:18.0800 4872 [ 3727F8B85E24BBDD325BFF75F029DDE3 ] C:\Windows\System32\wlanmsm.dll 19:11:18.0800 4872 C:\Windows\System32\wlanmsm.dll - ok 19:11:18.0803 4872 [ 4662AF853DFAD5648CE3814E7D9EF3D6 ] C:\Windows\System32\wlansec.dll 19:11:18.0804 4872 C:\Windows\System32\wlansec.dll - ok 19:11:18.0807 4872 [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll 19:11:18.0808 4872 C:\Windows\System32\onex.dll - ok 19:11:18.0812 4872 [ 692A2ECA4ACB58BB337EE084E414B132 ] C:\Windows\System32\nvsvcr.dll 19:11:18.0812 4872 C:\Windows\System32\nvsvcr.dll - ok 19:11:18.0817 4872 [ 85E57D87AF7AF2EECBE4548F8A54061F ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll 19:11:18.0817 4872 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok 19:11:18.0821 4872 [ 82EC9AC48736E310F81C6F58F0D27FEF ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll 19:11:18.0821 4872 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok 19:11:18.0825 4872 [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll 19:11:18.0825 4872 C:\Windows\System32\eappprxy.dll - ok 19:11:18.0830 4872 [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll 19:11:18.0830 4872 C:\Windows\System32\eappcfg.dll - ok 19:11:18.0833 4872 [ 91D995A67D9447592A1BF21CBC15C628 ] C:\Windows\System32\wlgpclnt.dll 19:11:18.0834 4872 C:\Windows\System32\wlgpclnt.dll - ok 19:11:18.0838 4872 [ 19FFAD68A02AF1BF0BC336EE26CD6767 ] C:\Windows\System32\l2gpstore.dll 19:11:18.0838 4872 C:\Windows\System32\l2gpstore.dll - ok 19:11:18.0841 4872 [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll 19:11:18.0841 4872 C:\Windows\System32\wlanutil.dll - ok 19:11:18.0846 4872 [ 024528E25BBE8768536861EA09BE1672 ] C:\Windows\System32\msxml6.dll 19:11:18.0846 4872 C:\Windows\System32\msxml6.dll - ok 19:11:18.0850 4872 [ 23C3A0680042C0D1DE1F360F8B62BC57 ] C:\Windows\System32\wlanext.exe 19:11:18.0850 4872 C:\Windows\System32\wlanext.exe - ok 19:11:18.0854 4872 [ 2428E38ECCE487EBEF6FC4ACF636043B ] C:\Windows\System32\WLTRYSVC.EXE 19:11:18.0854 4872 C:\Windows\System32\WLTRYSVC.EXE - ok 19:11:18.0858 4872 [ D580F50B45A18BC927F0106981308F53 ] C:\Windows\System32\bcmihvsrv.dll 19:11:18.0858 4872 C:\Windows\System32\bcmihvsrv.dll - ok 19:11:18.0862 4872 [ 3CB15ED250A70B9FA3FF5AA125362A63 ] C:\Windows\System32\nvcpl.dll 19:11:18.0862 4872 C:\Windows\System32\nvcpl.dll - ok 19:11:18.0866 4872 [ 983B5DC6E65071878ADA5A31AAD19B91 ] C:\Windows\System32\BCMWLTRY.EXE 19:11:18.0866 4872 C:\Windows\System32\BCMWLTRY.EXE - ok 19:11:18.0870 4872 [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll 19:11:18.0870 4872 C:\Windows\System32\wlanapi.dll - ok 19:11:18.0874 4872 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll 19:11:18.0874 4872 C:\Windows\System32\mscoree.dll - ok 19:11:18.0878 4872 [ 4B555106290BD117334E9A08761C035A ] C:\Windows\System32\rundll32.exe 19:11:18.0879 4872 C:\Windows\System32\rundll32.exe - ok 19:11:18.0882 4872 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll 19:11:18.0882 4872 C:\Windows\System32\shimeng.dll - ok 19:11:18.0886 4872 [ D6804F089CBB6749E95124E7C4D80900 ] C:\Windows\AppPatch\AcLayers.dll 19:11:18.0886 4872 C:\Windows\AppPatch\AcLayers.dll - ok 19:11:18.0890 4872 [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll 19:11:18.0890 4872 C:\Windows\System32\ktmw32.dll - ok 19:11:18.0895 4872 [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll 19:11:18.0895 4872 C:\Windows\System32\netcfgx.dll - ok 19:11:18.0899 4872 [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll 19:11:18.0899 4872 C:\Windows\System32\wiarpc.dll - ok 19:11:18.0903 4872 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll 19:11:18.0903 4872 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok 19:11:18.0907 4872 [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll 19:11:18.0907 4872 C:\Windows\System32\taskcomp.dll - ok 19:11:18.0912 4872 [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys 19:11:18.0912 4872 C:\Windows\System32\drivers\http.sys - ok 19:11:18.0916 4872 [ E79FDA8D320147FDC347C504B3487F87 ] C:\Windows\System32\spoolss.dll 19:11:18.0916 4872 C:\Windows\System32\spoolss.dll - ok 19:11:18.0920 4872 [ 1D109ED0D660654EA7FF1574558031C4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll 19:11:18.0921 4872 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok 19:11:18.0925 4872 [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys 19:11:18.0925 4872 C:\Windows\System32\drivers\srvnet.sys - ok 19:11:18.0929 4872 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll 19:11:18.0930 4872 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok 19:11:18.0934 4872 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll 19:11:18.0934 4872 C:\Windows\System32\wsock32.dll - ok 19:11:18.0939 4872 [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL 19:11:18.0939 4872 C:\Windows\System32\FWPUCLNT.DLL - ok 19:11:18.0942 4872 [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys 19:11:18.0942 4872 C:\Windows\System32\drivers\bowser.sys - ok 19:11:18.0947 4872 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys 19:11:18.0947 4872 C:\Windows\System32\drivers\mpsdrv.sys - ok 19:11:18.0951 4872 [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll 19:11:18.0951 4872 C:\Windows\System32\MPSSVC.dll - ok 19:11:18.0955 4872 [ 82CEA0395524AACFEB58BA1448E8325C ] C:\Windows\System32\drivers\mrxdav.sys 19:11:18.0955 4872 C:\Windows\System32\drivers\mrxdav.sys - ok 19:11:18.0959 4872 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll 19:11:18.0959 4872 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok 19:11:18.0964 4872 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys 19:11:18.0964 4872 C:\Windows\System32\drivers\mrxsmb.sys - ok 19:11:18.0970 4872 [ 4FCCB34D793B116423209C0F8B7A3B03 ] C:\Windows\System32\drivers\mrxsmb10.sys 19:11:18.0970 4872 C:\Windows\System32\drivers\mrxsmb10.sys - ok 19:11:18.0973 4872 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll 19:11:18.0973 4872 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok 19:11:18.0977 4872 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys 19:11:18.0977 4872 C:\Windows\System32\drivers\mrxsmb20.sys - ok 19:11:18.0982 4872 [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys 19:11:18.0982 4872 C:\Windows\System32\drivers\srv2.sys - ok 19:11:18.0986 4872 [ C42AE64F5DB6BC5E947B7E3E1B1E633E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 19:11:18.0986 4872 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok 19:11:18.0990 4872 [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys 19:11:18.0990 4872 C:\Windows\System32\drivers\srv.sys - ok 19:11:18.0994 4872 [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll 19:11:18.0994 4872 C:\Windows\System32\wfapigp.dll - ok 19:11:18.0998 4872 [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll 19:11:18.0998 4872 C:\Windows\System32\netmsg.dll - ok 19:11:19.0002 4872 [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll 19:11:19.0002 4872 C:\Windows\System32\clusapi.dll - ok 19:11:19.0006 4872 [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll 19:11:19.0006 4872 C:\Windows\System32\sscore.dll - ok 19:11:19.0010 4872 [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll 19:11:19.0010 4872 C:\Windows\System32\activeds.dll - ok 19:11:19.0013 4872 [ 1311171CF8F6D2954441EF2A42693035 ] C:\Windows\System32\WsmRes.dll 19:11:19.0014 4872 C:\Windows\System32\WsmRes.dll - ok 19:11:19.0018 4872 [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll 19:11:19.0018 4872 C:\Windows\System32\adsldpc.dll - ok 19:11:19.0022 4872 [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll 19:11:19.0022 4872 C:\Windows\System32\credui.dll - ok 19:11:19.0026 4872 [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll 19:11:19.0026 4872 C:\Windows\System32\resutils.dll - ok 19:11:19.0030 4872 [ E230F3776F373F4C5E788794B53101E4 ] C:\Windows\System32\plasrv.exe 19:11:19.0030 4872 C:\Windows\System32\plasrv.exe - ok 19:11:19.0034 4872 [ 015A9D857726C083144CA352A273378A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll 19:11:19.0035 4872 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll - ok 19:11:19.0039 4872 [ 0FA9B5055484649D63C303FE404E5F4D ] C:\Windows\System32\drivers\parport.sys 19:11:19.0039 4872 C:\Windows\System32\drivers\parport.sys - ok 19:11:19.0043 4872 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 19:11:19.0043 4872 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok 19:11:19.0048 4872 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll 19:11:19.0048 4872 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok 19:11:19.0053 4872 [ EF1142512BEC12F1C2C87735DA1755BE ] C:\Windows\System32\AEstSrv.exe 19:11:19.0053 4872 C:\Windows\System32\AEstSrv.exe - ok 19:11:19.0057 4872 [ FF6F0F6A2D72065AE4300426FA414693 ] C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe 19:11:19.0057 4872 C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe - ok 19:11:19.0061 4872 [ 364A7B230670E7F91BA451EDA44C6AB9 ] C:\Program Files\Amazon\Amazon Games & Software Downloader\utility.dll 19:11:19.0061 4872 C:\Program Files\Amazon\Amazon Games & Software Downloader\utility.dll - ok 19:11:19.0066 4872 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll 19:11:19.0066 4872 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok 19:11:19.0071 4872 [ F9B512CF12993586AFA01BAF5D41B892 ] C:\Program Files\Amazon\Amazon Games & Software Downloader\ssleay32.dll 19:11:19.0071 4872 C:\Program Files\Amazon\Amazon Games & Software Downloader\ssleay32.dll - ok 19:11:19.0076 4872 [ 9CF66DCF2C8D479D3FA3796F317105B6 ] C:\Program Files\Amazon\Amazon Games & Software Downloader\libeay32.dll 19:11:19.0076 4872 C:\Program Files\Amazon\Amazon Games & Software Downloader\libeay32.dll - ok 19:11:19.0081 4872 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 19:11:19.0081 4872 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok

The last file TDSS found is one I haven't seen before, not dock login or Amazon TDSS 1 19:05:32.0956 5324 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24 19:05:33.0992 5324 ============================================================ 19:05:33.0992 5324 Current date / time: 2012/09/21 19:05:33.0992 19:05:33.0992 5324 SystemInfo: 19:05:33.0992 5324 19:05:33.0992 5324 OS Version: 6.0.6002 ServicePack: 2.0 19:05:33.0992 5324 Product type: Workstation 19:05:33.0992 5324 ComputerName: OLIVER 19:05:33.0992 5324 UserName: Aman Arneja 19:05:33.0992 5324 Windows directory: C:\Windows 19:05:33.0992 5324 System windows directory: C:\Windows 19:05:33.0993 5324 Processor architecture: Intel x86 19:05:33.0993 5324 Number of processors: 2 19:05:33.0993 5324 Page size: 0x1000 19:05:33.0993 5324 Boot type: Normal boot 19:05:33.0993 5324 ============================================================ 19:05:34.0521 5324 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 19:05:34.0523 5324 ============================================================ 19:05:34.0523 5324 \Device\Harddisk0\DR0: 19:05:34.0523 5324 MBR partitions: 19:05:34.0523 5324 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2F800, BlocksNum 0x1400000 19:05:34.0523 5324 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x142F800, BlocksNum 0x1B8957F8 19:05:34.0545 5324 ============================================================ 19:05:34.0588 5324 C: <-> \Device\Harddisk0\DR0\Partition2 19:05:34.0611 5324 D: <-> \Device\Harddisk0\DR0\Partition1 19:05:34.0612 5324 ============================================================ 19:05:34.0612 5324 Initialize success 19:05:34.0612 5324 ============================================================ 19:05:44.0458 1060 Deinitialize success ----------------------------------------------------------------------------- TDSS 2 19:09:31.0137 4640 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24 19:09:32.0260 4640 ============================================================ 19:09:32.0260 4640 Current date / time: 2012/09/21 19:09:32.0260 19:09:32.0260 4640 SystemInfo: 19:09:32.0260 4640 19:09:32.0260 4640 OS Version: 6.0.6002 ServicePack: 2.0 19:09:32.0260 4640 Product type: Workstation 19:09:32.0260 4640 ComputerName: OLIVER 19:09:32.0260 4640 UserName: Aman Arneja 19:09:32.0260 4640 Windows directory: C:\Windows 19:09:32.0260 4640 System windows directory: C:\Windows 19:09:32.0260 4640 Processor architecture: Intel x86 19:09:32.0260 4640 Number of processors: 2 19:09:32.0260 4640 Page size: 0x1000 19:09:32.0260 4640 Boot type: Normal boot 19:09:32.0260 4640 ============================================================ 19:09:34.0178 4640 BG loaded 19:09:34.0804 4640 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 19:09:34.0806 4640 ============================================================ 19:09:34.0806 4640 \Device\Harddisk0\DR0: 19:09:34.0817 4640 MBR partitions: 19:09:34.0817 4640 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2F800, BlocksNum 0x1400000 19:09:34.0817 4640 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x142F800, BlocksNum 0x1B8957F8 19:09:34.0853 4640 ============================================================ 19:09:34.0922 4640 C: <-> \Device\Harddisk0\DR0\Partition2 19:09:35.0045 4640 D: <-> \Device\Harddisk0\DR0\Partition1 19:09:35.0045 4640 ============================================================ 19:09:35.0045 4640 Initialize success 19:09:35.0045 4640 ============================================================ 19:09:44.0901 4872 ============================================================ 19:09:44.0901 4872 Scan started 19:09:44.0901 4872 Mode: Manual; SigCheck; TDLFS; 19:09:44.0901 4872 ============================================================ 19:09:45.0679 4872 ================ Scan system memory ======================== 19:09:45.0679 4872 System memory - ok 19:09:45.0679 4872 ================ Scan services ============================= 19:09:46.0724 4872 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys 19:09:46.0962 4872 ACPI - ok 19:09:47.0160 4872 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 19:09:47.0172 4872 AdobeARMservice - ok 19:09:47.0416 4872 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 19:09:47.0513 4872 AdobeFlashPlayerUpdateSvc - ok 19:09:49.0486 4872 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 19:09:50.0601 4872 adp94xx - ok 19:09:50.0675 4872 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys 19:09:50.0959 4872 adpahci - ok 19:09:51.0034 4872 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 19:09:51.0085 4872 adpu160m - ok 19:09:51.0978 4872 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 19:09:52.0134 4872 adpu320 - ok 19:09:52.0268 4872 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 19:09:53.0232 4872 AeLookupSvc - ok 19:09:53.0444 4872 [ EF1142512BEC12F1C2C87735DA1755BE ] AESTFilters C:\Windows\system32\aestsrv.exe 19:09:53.0545 4872 AESTFilters - ok 19:09:53.0870 4872 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys 19:09:53.0941 4872 AFD - ok 19:09:54.0097 4872 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys 19:09:54.0129 4872 agp440 - ok 19:09:54.0147 4872 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys 19:09:54.0175 4872 aic78xx - ok 19:09:54.0260 4872 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe 19:09:55.0094 4872 ALG - ok 19:09:55.0137 4872 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys 19:09:55.0197 4872 aliide - ok 19:09:55.0402 4872 [ FF6F0F6A2D72065AE4300426FA414693 ] Amazon Download Agent C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe 19:09:55.0435 4872 Amazon Download Agent ( UnsignedFile.Multi.Generic ) - warning 19:09:55.0435 4872 Amazon Download Agent - detected UnsignedFile.Multi.Generic (1) 19:09:55.0598 4872 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys 19:09:55.0629 4872 amdagp - ok 19:09:55.0669 4872 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys 19:09:55.0713 4872 amdide - ok 19:09:55.0787 4872 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 19:09:55.0927 4872 AmdK7 - ok 19:09:55.0982 4872 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 19:09:56.0127 4872 AmdK8 - ok 19:09:56.0215 4872 [ 448DA519F3B6FFA158C513156053181E ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys 19:09:56.0233 4872 ApfiltrService - ok 19:09:56.0364 4872 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll 19:09:56.0470 4872 Appinfo - ok 19:09:56.0734 4872 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 19:09:56.0745 4872 Apple Mobile Device - ok 19:09:56.0906 4872 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys 19:09:56.0972 4872 arc - ok 19:09:57.0017 4872 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys 19:09:57.0091 4872 arcsas - ok 19:09:57.0171 4872 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 19:09:57.0319 4872 AsyncMac - ok 19:09:57.0348 4872 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys 19:09:57.0360 4872 atapi - ok 19:09:57.0529 4872 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 19:09:57.0593 4872 AudioEndpointBuilder - ok 19:09:57.0622 4872 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll 19:09:57.0642 4872 Audiosrv - ok 19:09:57.0678 4872 BCM42RLY - ok 19:09:57.0953 4872 [ CDF7F28FFD693B1B4137845DD1EF1CCC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys 19:09:57.0991 4872 BCM43XX - ok 19:09:58.0318 4872 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 19:09:58.0351 4872 BcmSqlStartupSvc - ok 19:09:58.0386 4872 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys 19:09:58.0452 4872 Beep - ok 19:09:58.0529 4872 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll 19:09:58.0563 4872 BFE - ok 19:09:58.0951 4872 [ C364F02969E9A842321DD91BCFF749D4 ] BHDrvx86 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20120919.001\BHDrvx86.sys 19:09:58.0993 4872 BHDrvx86 - ok 19:09:59.0232 4872 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll 19:09:59.0508 4872 BITS - ok 19:09:59.0546 4872 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 19:09:59.0643 4872 blbdrive - ok 19:09:59.0775 4872 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 19:09:59.0798 4872 Bonjour Service - ok 19:09:59.0817 4872 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys 19:09:59.0854 4872 bowser - ok 19:09:59.0936 4872 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 19:09:59.0991 4872 BrFiltLo - ok 19:10:00.0016 4872 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 19:10:00.0065 4872 BrFiltUp - ok 19:10:00.0091 4872 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll 19:10:00.0181 4872 Browser - ok 19:10:00.0249 4872 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys 19:10:01.0141 4872 Brserid - ok 19:10:01.0196 4872 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 19:10:01.0285 4872 BrSerWdm - ok 19:10:01.0298 4872 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 19:10:01.0372 4872 BrUsbMdm - ok 19:10:01.0405 4872 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 19:10:01.0497 4872 BrUsbSer - ok 19:10:01.0567 4872 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 19:10:01.0666 4872 BTHMODEM - ok 19:10:01.0753 4872 catchme - ok 19:10:01.0950 4872 [ ACE85AF1C31F68BDFEE9333F6592917E ] ccSet_NIS C:\Windows\system32\drivers\NIS\1308000.00E\ccSetx86.sys 19:10:02.0034 4872 ccSet_NIS - ok 19:10:02.0107 4872 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 19:10:02.0165 4872 cdfs - ok 19:10:02.0227 4872 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 19:10:02.0310 4872 cdrom - ok 19:10:02.0361 4872 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll 19:10:02.0408 4872 CertPropSvc - ok 19:10:02.0459 4872 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys 19:10:02.0515 4872 circlass - ok 19:10:02.0624 4872 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys 19:10:02.0665 4872 CLFS - ok 19:10:02.0938 4872 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 19:10:02.0976 4872 clr_optimization_v2.0.50727_32 - ok 19:10:03.0515 4872 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 19:10:03.0783 4872 clr_optimization_v4.0.30319_32 - ok 19:10:03.0944 4872 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 19:10:04.0048 4872 CmBatt - ok 19:10:04.0102 4872 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys 19:10:04.0134 4872 cmdide - ok 19:10:04.0305 4872 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 19:10:04.0327 4872 Compbatt - ok 19:10:04.0332 4872 COMSysApp - ok 19:10:04.0383 4872 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 19:10:04.0395 4872 crcdisk - ok 19:10:04.0581 4872 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys 19:10:04.0628 4872 Crusoe - ok 19:10:04.0840 4872 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll 19:10:04.0920 4872 CryptSvc - ok 19:10:05.0011 4872 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll 19:10:05.0344 4872 DcomLaunch - ok 19:10:05.0414 4872 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys 19:10:05.0559 4872 DfsC - ok 19:10:06.0086 4872 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe 19:10:07.0512 4872 DFSR - ok 19:10:07.0672 4872 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll 19:10:07.0691 4872 Dhcp - ok 19:10:07.0761 4872 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys 19:10:07.0832 4872 disk - ok 19:10:07.0982 4872 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll 19:10:08.0062 4872 Dnscache - ok 19:10:08.0267 4872 [ DB29915209770D8B59654345EC2D943A ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe 19:10:08.0293 4872 DockLoginService ( UnsignedFile.Multi.Generic ) - warning 19:10:08.0293 4872 DockLoginService - detected UnsignedFile.Multi.Generic (1) 19:10:08.0348 4872 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll 19:10:08.0378 4872 dot3svc - ok 19:10:08.0435 4872 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll 19:10:08.0464 4872 DPS - ok 19:10:08.0535 4872 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 19:10:08.0660 4872 drmkaud - ok 19:10:08.0787 4872 [ C0C7CECCB6C85994C2BC92D58E52D3F2 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 19:10:08.0799 4872 dtsoftbus01 - ok 19:10:08.0988 4872 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 19:10:09.0033 4872 DXGKrnl - ok 19:10:09.0165 4872 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys 19:10:09.0274 4872 e1express - ok 19:10:09.0316 4872 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 19:10:09.0400 4872 E1G60 - ok 19:10:09.0514 4872 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll 19:10:09.0584 4872 EapHost - ok 19:10:09.0703 4872 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys 19:10:09.0717 4872 Ecache - ok 19:10:09.0778 4872 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 19:10:09.0812 4872 eeCtrl - ok 19:10:10.0042 4872 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 19:10:10.0084 4872 ehRecvr - ok 19:10:10.0152 4872 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe 19:10:10.0243 4872 ehSched - ok 19:10:10.0323 4872 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll 19:10:10.0352 4872 ehstart - ok 19:10:10.0431 4872 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys 19:10:10.0476 4872 elxstor - ok 19:10:10.0510 4872 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 19:10:10.0555 4872 EMDMgmt - ok 19:10:10.0592 4872 [ 16EBD8BF1D5090923694CC972C7CE1B4 ] ENTECH C:\Windows\system32\DRIVERS\ENTECH.sys 19:10:10.0604 4872 ENTECH - ok 19:10:10.0641 4872 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 19:10:10.0652 4872 EraserUtilRebootDrv - ok 19:10:10.0677 4872 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys 19:10:10.0772 4872 ErrDev - ok 19:10:10.0894 4872 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll 19:10:10.0932 4872 EventSystem - ok 19:10:10.0978 4872 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys 19:10:11.0012 4872 exfat - ok 19:10:11.0050 4872 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys 19:10:11.0095 4872 fastfat - ok 19:10:11.0140 4872 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys 19:10:11.0174 4872 fdc - ok 19:10:11.0200 4872 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll 19:10:11.0223 4872 fdPHost - ok 19:10:11.0271 4872 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll 19:10:11.0321 4872 FDResPub - ok 19:10:11.0356 4872 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 19:10:11.0370 4872 FileInfo - ok 19:10:11.0394 4872 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys 19:10:11.0432 4872 Filetrace - ok 19:10:11.0481 4872 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 19:10:11.0536 4872 flpydisk - ok 19:10:11.0573 4872 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 19:10:11.0610 4872 FltMgr - ok 19:10:12.0006 4872 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll 19:10:12.0123 4872 FontCache - ok 19:10:12.0297 4872 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 19:10:12.0385 4872 FontCache3.0.0.0 - ok 19:10:12.0432 4872 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 19:10:12.0471 4872 Fs_Rec - ok 19:10:12.0618 4872 [ 79B4CDE2B69ED8BA4011859780A66A4D ] Futuremark SystemInfo Service C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe 19:10:12.0663 4872 Futuremark SystemInfo Service - ok 19:10:12.0713 4872 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 19:10:12.0764 4872 gagp30kx - ok 19:10:12.0810 4872 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 19:10:12.0819 4872 GEARAspiWDM - ok 19:10:12.0944 4872 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe 19:10:12.0985 4872 GoToAssist - ok 19:10:13.0053 4872 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll 19:10:13.0098 4872 gpsvc - ok 19:10:13.0176 4872 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 19:10:13.0188 4872 gupdate - ok 19:10:13.0231 4872 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 19:10:13.0244 4872 gupdatem - ok 19:10:13.0327 4872 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 19:10:13.0366 4872 gusvc - ok 19:10:13.0492 4872 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 19:10:13.0716 4872 HDAudBus - ok 19:10:13.0794 4872 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys 19:10:13.0863 4872 HidBth - ok 19:10:13.0908 4872 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys 19:10:14.0004 4872 HidIr - ok 19:10:14.0087 4872 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll 19:10:14.0175 4872 hidserv - ok 19:10:14.0212 4872 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 19:10:14.0304 4872 HidUsb - ok 19:10:14.0342 4872 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll 19:10:14.0376 4872 hkmsvc - ok 19:10:14.0419 4872 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 19:10:14.0432 4872 HpCISSs - ok 19:10:14.0472 4872 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys 19:10:14.0526 4872 HTTP - ok 19:10:14.0593 4872 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys 19:10:14.0628 4872 i2omp - ok 19:10:14.0704 4872 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 19:10:14.0736 4872 i8042prt - ok 19:10:14.0893 4872 [ 92B37E0A61CD710A0C66DC3567A8BF3C ] iaNvStor C:\Windows\system32\drivers\ianvstor.sys 19:10:14.0945 4872 iaNvStor - ok 19:10:14.0992 4872 [ 26541A068572F650A2FA490726FE81BE ] iaStor C:\Windows\system32\drivers\iastor.sys 19:10:15.0012 4872 iaStor - ok 19:10:15.0067 4872 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe 19:10:15.0131 4872 IAStorDataMgrSvc - ok 19:10:15.0197 4872 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 19:10:15.0261 4872 iaStorV - ok 19:10:15.0449 4872 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 19:10:15.0679 4872 idsvc - ok 19:10:15.0813 4872 [ 404FB2AAF532BC7BBACC8880BE401C74 ] IDSVix86 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20120921.001\IDSvix86.sys 19:10:15.0835 4872 IDSVix86 - ok 19:10:15.0867 4872 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys 19:10:15.0879 4872 iirsp - ok 19:10:15.0936 4872 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll 19:10:15.0973 4872 IKEEXT - ok 19:10:16.0015 4872 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\DRIVERS\intelide.sys 19:10:16.0027 4872 intelide - ok 19:10:16.0067 4872 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 19:10:16.0097 4872 intelppm - ok 19:10:16.0130 4872 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 19:10:16.0161 4872 IPBusEnum - ok 19:10:16.0194 4872 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:10:16.0244 4872 IpFilterDriver - ok 19:10:16.0293 4872 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 19:10:16.0351 4872 iphlpsvc - ok 19:10:16.0355 4872 IpInIp - ok 19:10:16.0374 4872 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 19:10:17.0055 4872 IPMIDRV - ok 19:10:17.0184 4872 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 19:10:17.0312 4872 IPNAT - ok 19:10:17.0742 4872 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 19:10:17.0808 4872 iPod Service - ok 19:10:17.0821 4872 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 19:10:17.0854 4872 IRENUM - ok 19:10:18.0016 4872 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys 19:10:18.0080 4872 isapnp - ok 19:10:18.0296 4872 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 19:10:18.0310 4872 iScsiPrt - ok 19:10:18.0336 4872 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 19:10:18.0368 4872 iteatapi - ok 19:10:18.0399 4872 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys 19:10:18.0434 4872 iteraid - ok 19:10:18.0466 4872 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 19:10:18.0478 4872 kbdclass - ok 19:10:18.0520 4872 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 19:10:18.0626 4872 kbdhid - ok 19:10:18.0675 4872 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe 19:10:18.0752 4872 KeyIso - ok 19:10:18.0852 4872 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 19:10:18.0879 4872 KSecDD - ok 19:10:18.0978 4872 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll 19:10:19.0081 4872 KtmRm - ok 19:10:19.0124 4872 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll 19:10:19.0168 4872 LanmanServer - ok 19:10:19.0235 4872 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 19:10:19.0279 4872 LanmanWorkstation - ok 19:10:19.0311 4872 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 19:10:19.0345 4872 lltdio - ok 19:10:19.0435 4872 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll 19:10:19.0475 4872 lltdsvc - ok 19:10:19.0497 4872 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll 19:10:19.0537 4872 lmhosts - ok 19:10:19.0582 4872 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 19:10:19.0629 4872 LSI_FC - ok 19:10:19.0644 4872 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 19:10:19.0666 4872 LSI_SAS - ok 19:10:19.0695 4872 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 19:10:19.0719 4872 LSI_SCSI - ok 19:10:19.0735 4872 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys 19:10:19.0780 4872 luafv - ok 19:10:19.0825 4872 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys 19:10:19.0847 4872 MBAMSwissArmy - ok 19:10:19.0868 4872 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 19:10:19.0977 4872 Mcx2Svc - ok 19:10:20.0046 4872 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys 19:10:20.0066 4872 megasas - ok 19:10:20.0144 4872 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys 19:10:20.0187 4872 MegaSR - ok 19:10:20.0301 4872 [ 41FE2F288E05A6C8AB85DD56770FFBAD ] mferkdk C:\Windows\system32\drivers\mferkdk.sys 19:10:20.0324 4872 mferkdk - ok 19:10:20.0367 4872 [ 096B52EA918AA909BA5903D79E129005 ] mfesmfk C:\Windows\system32\drivers\mfesmfk.sys 19:10:20.0392 4872 mfesmfk - ok 19:10:20.0429 4872 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll 19:10:20.0502 4872 MMCSS - ok 19:10:20.0556 4872 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys 19:10:20.0632 4872 Modem - ok 19:10:20.0731 4872 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 19:10:20.0805 4872 monitor - ok 19:10:20.0839 4872 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 19:10:20.0850 4872 mouclass - ok 19:10:20.0881 4872 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 19:10:20.0903 4872 mouhid - ok 19:10:20.0909 4872 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 19:10:20.0934 4872 MountMgr - ok 19:10:21.0125 4872 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 19:10:21.0150 4872 MozillaMaintenance - ok 19:10:21.0251 4872 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys 19:10:21.0289 4872 mpio - ok 19:10:21.0331 4872 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 19:10:21.0382 4872 mpsdrv - ok 19:10:21.0495 4872 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll 19:10:21.0551 4872 MpsSvc - ok 19:10:21.0625 4872 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 19:10:21.0636 4872 Mraid35x - ok 19:10:21.0728 4872 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 19:10:21.0800 4872 MRxDAV - ok 19:10:21.0835 4872 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 19:10:21.0927 4872 mrxsmb - ok 19:10:22.0017 4872 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:10:22.0043 4872 mrxsmb10 - ok 19:10:22.0070 4872 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:10:22.0095 4872 mrxsmb20 - ok 19:10:22.0123 4872 [ F70590424EEFBF5C27A40C67AFDB8383 ] msahci C:\Windows\system32\drivers\msahci.sys 19:10:22.0142 4872 msahci - ok 19:10:22.0161 4872 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys 19:10:22.0175 4872 msdsm - ok 19:10:22.0194 4872 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe 19:10:22.0236 4872 MSDTC - ok 19:10:22.0260 4872 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys 19:10:22.0305 4872 Msfs - ok 19:10:22.0329 4872 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 19:10:22.0496 4872 msisadrv - ok 19:10:22.0574 4872 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 19:10:22.0618 4872 MSiSCSI - ok 19:10:22.0622 4872 msiserver - ok 19:10:22.0670 4872 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 19:10:22.0708 4872 MSKSSRV - ok 19:10:22.0725 4872 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 19:10:22.0754 4872 MSPCLOCK - ok 19:10:22.0780 4872 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 19:10:22.0809 4872 MSPQM - ok 19:10:22.0839 4872 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 19:10:22.0854 4872 MsRPC - ok 19:10:22.0879 4872 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 19:10:22.0891 4872 mssmbios - ok 19:10:22.0988 4872 MSSQL$MSSMLBIZ - ok 19:10:23.0045 4872 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 19:10:23.0057 4872 MSSQLServerADHelper - ok 19:10:23.0095 4872 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 19:10:23.0140 4872 MSTEE - ok 19:10:23.0188 4872 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys 19:10:23.0206 4872 Mup - ok 19:10:23.0349 4872 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll 19:10:23.0388 4872 napagent - ok 19:10:23.0468 4872 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 19:10:23.0509 4872 NativeWifiP - ok 19:10:23.0593 4872 [ 8E4C77AD9BB279900C00F870CC0C674B ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVENG.SYS 19:10:23.0603 4872 NAVENG - ok 19:10:23.0840 4872 [ 826F699B69E88A3920C70F344DD42D88 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20120921.017\NAVEX15.SYS 19:10:23.0958 4872 NAVEX15 - ok 19:10:24.0084 4872 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys 19:10:24.0172 4872 NDIS - ok 19:10:24.0229 4872 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 19:10:24.0888 4872 NdisTapi - ok 19:10:24.0921 4872 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 19:10:24.0942 4872 Ndisuio - ok 19:10:25.0093 4872 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 19:10:25.0128 4872 NdisWan - ok 19:10:25.0141 4872 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 19:10:25.0159 4872 NDProxy - ok 19:10:25.0202 4872 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 19:10:25.0235 4872 NetBIOS - ok 19:10:25.0290 4872 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys 19:10:25.0319 4872 netbt - ok 19:10:25.0342 4872 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe 19:10:25.0354 4872 Netlogon - ok 19:10:25.0427 4872 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll 19:10:25.0473 4872 Netman - ok 19:10:25.0522 4872 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll 19:10:25.0576 4872 netprofm - ok 19:10:25.0716 4872 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 19:10:25.0771 4872 NetTcpPortSharing - ok 19:10:25.0805 4872 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 19:10:27.0215 4872 nfrd960 - ok 19:10:27.0400 4872 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files\Norton Internet Security\Engine\19.8.0.14\ccSvcHst.exe 19:10:27.0412 4872 NIS - ok 19:10:27.0501 4872 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll 19:10:27.0526 4872 NlaSvc - ok 19:10:27.0646 4872 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys 19:10:27.0698 4872 Npfs - ok 19:10:27.0776 4872 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll 19:10:27.0802 4872 nsi - ok 19:10:27.0840 4872 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 19:10:27.0905 4872 nsiproxy - ok 19:10:28.0248 4872 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 19:10:28.0926 4872 Ntfs - ok 19:10:29.0022 4872 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 19:10:29.0090 4872 ntrigdigi - ok 19:10:29.0127 4872 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys 19:10:29.0187 4872 Null - ok 19:10:30.0987 4872 [ D3F22DA8F670EFD15D348B5952769CEF ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 19:10:33.0845 4872 nvlddmkm - ok 19:10:33.0941 4872 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys 19:10:34.0127 4872 nvraid - ok 19:10:34.0187 4872 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys 19:10:34.0368 4872 nvstor - ok 19:10:34.0674 4872 [ A3B80E6B7CDE9660F639658739A5824E ] nvsvc C:\Windows\system32\nvvsvc.exe 19:10:34.0820 4872 nvsvc - ok 19:10:35.0322 4872 [ 61FF84F865B4414EFDC11856BF5757AD ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 19:10:36.0251 4872 nvUpdatusService - ok 19:10:36.0320 4872 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 19:10:36.0380 4872 nv_agp - ok 19:10:36.0384 4872 NwlnkFlt - ok 19:10:36.0389 4872 NwlnkFwd - ok 19:10:36.0928 4872 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 19:10:37.0246 4872 odserv - ok 19:10:37.0369 4872 [ 19CAC780B858822055F46C58A111723C ] OEM02Dev C:\Windows\system32\DRIVERS\OEM02Dev.sys 19:10:37.0434 4872 OEM02Dev - ok 19:10:37.0526 4872 [ 86326062A90494BDD79CE383511D7D69 ] OEM02Vfx C:\Windows\system32\DRIVERS\OEM02Vfx.sys 19:10:37.0537 4872 OEM02Vfx - ok 19:10:37.0666 4872 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys 19:10:37.0703 4872 ohci1394 - ok 19:10:37.0907 4872 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 19:10:38.0075 4872 ose - ok 19:10:38.0297 4872 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll 19:10:38.0844 4872 p2pimsvc - ok 19:10:38.0943 4872 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll 19:10:39.0481 4872 p2psvc - ok 19:10:39.0531 4872 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys 19:10:39.0570 4872 Parport - ok 19:10:39.0600 4872 Partizan - ok 19:10:39.0681 4872 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys 19:10:39.0727 4872 partmgr - ok 19:10:39.0801 4872 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 19:10:39.0947 4872 Parvdm - ok 19:10:40.0018 4872 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll 19:10:40.0288 4872 PcaSvc - ok 19:10:40.0409 4872 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys 19:10:40.0516 4872 pci - ok 19:10:40.0671 4872 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys 19:10:40.0705 4872 pciide - ok 19:10:40.0880 4872 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 19:10:40.0985 4872 pcmcia - ok 19:10:41.0258 4872 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 19:10:41.0451 4872 PEAUTH - ok 19:10:41.0851 4872 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll 19:10:42.0125 4872 pla - ok 19:10:42.0320 4872 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll 19:10:42.0374 4872 PlugPlay - ok 19:10:42.0606 4872 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 19:10:42.0693 4872 PNRPAutoReg - ok 19:10:42.0757 4872 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll 19:10:43.0584 4872 PNRPsvc - ok 19:10:43.0796 4872 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 19:10:43.0932 4872 PolicyAgent - ok 19:10:44.0249 4872 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 19:10:44.0393 4872 PptpMiniport - ok 19:10:44.0553 4872 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys 19:10:44.0967 4872 Processor - ok 19:10:45.0281 4872 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll 19:10:45.0302 4872 ProfSvc - ok 19:10:45.0350 4872 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe 19:10:45.0385 4872 ProtectedStorage - ok 19:10:45.0591 4872 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys 19:10:45.0659 4872 PSched - ok 19:10:45.0871 4872 [ 03E0FE281823BA64B3782F5B38950E73 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys 19:10:45.0934 4872 PxHelp20 - ok 19:10:46.0604 4872 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 19:10:47.0501 4872 ql2300 - ok 19:10:48.0075 4872 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 19:10:48.0191 4872 ql40xx - ok 19:10:49.0394 4872 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll 19:10:49.0539 4872 QWAVE - ok 19:10:49.0826 4872 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 19:10:50.0042 4872 QWAVEdrv - ok 19:10:50.0587 4872 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys 19:10:52.0113 4872 R300 - ok 19:10:52.0177 4872 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 19:10:52.0268 4872 RasAcd - ok 19:10:52.0375 4872 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll 19:10:52.0452 4872 RasAuto - ok 19:10:52.0566 4872 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 19:10:52.0663 4872 Rasl2tp - ok 19:10:52.0844 4872 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll 19:10:52.0890 4872 RasMan - ok 19:10:52.0959 4872 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 19:10:53.0003 4872 RasPppoe - ok 19:10:53.0084 4872 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 19:10:53.0099 4872 RasSstp - ok 19:10:53.0268 4872 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 19:10:53.0287 4872 rdbss - ok 19:10:53.0360 4872 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 19:10:53.0408 4872 RDPCDD - ok 19:10:53.0481 4872 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 19:10:53.0534 4872 rdpdr - ok 19:10:53.0562 4872 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 19:10:53.0622 4872 RDPENCDD - ok 19:10:53.0732 4872 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 19:10:53.0967 4872 RDPWD - ok 19:10:54.0145 4872 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll 19:10:54.0169 4872 RemoteAccess - ok 19:10:54.0260 4872 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll 19:10:54.0310 4872 RemoteRegistry - ok 19:10:54.0553 4872 [ 355AAC141B214BEF1DBC1483AFD9BD50 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys 19:10:54.0662 4872 rimmptsk - ok 19:10:54.0781 4872 [ A4216C71DD4F60B26418CCFD99CD0815 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys 19:10:54.0901 4872 rimsptsk - ok 19:10:54.0957 4872 [ D231B577024AA324AF13A42F3A807D10 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys 19:10:55.0023 4872 rismxdp - ok 19:10:55.0070 4872 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe 19:10:55.0269 4872 RpcLocator - ok 19:10:55.0461 4872 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll 19:10:55.0584 4872 RpcSs - ok 19:10:55.0613 4872 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 19:10:55.0657 4872 rspndr - ok 19:10:55.0683 4872 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe 19:10:55.0695 4872 SamSs - ok 19:10:55.0711 4872 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 19:10:55.0739 4872 sbp2port - ok 19:10:55.0850 4872 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll 19:10:55.0873 4872 SCardSvr - ok 19:10:56.0086 4872 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll 19:10:56.0382 4872 Schedule - ok 19:10:56.0454 4872 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll 19:10:56.0502 4872 SCPolicySvc - ok 19:10:56.0555 4872 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 19:10:56.0574 4872 sdbus - ok 19:10:56.0684 4872 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll 19:10:56.0748 4872 SDRSVC - ok 19:10:56.0793 4872 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll 19:10:56.0874 4872 seclogon - ok 19:10:56.0922 4872 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll 19:10:57.0018 4872 SENS - ok 19:10:57.0120 4872 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys 19:10:57.0183 4872 Serenum - ok 19:10:57.0219 4872 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys 19:10:57.0315 4872 Serial - ok 19:10:57.0357 4872 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys 19:10:57.0416 4872 sermouse - ok 19:10:57.0493 4872 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll 19:10:57.0519 4872 SessionEnv - ok 19:10:57.0579 4872 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys 19:10:57.0611 4872 sffdisk - ok 19:10:57.0645 4872 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 19:10:57.0689 4872 sffp_mmc - ok 19:10:57.0751 4872 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys 19:10:57.0815 4872 sffp_sd - ok 19:10:57.0860 4872 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 19:10:58.0058 4872 sfloppy - ok 19:10:58.0168 4872 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll 19:10:58.0222 4872 SharedAccess - ok 19:10:58.0353 4872 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 19:10:58.0410 4872 ShellHWDetection - ok 19:10:58.0442 4872 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys 19:10:58.0456 4872 sisagp - ok 19:10:58.0503 4872 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 19:10:58.0526 4872 SiSRaid2 - ok 19:10:58.0576 4872 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 19:10:58.0627 4872 SiSRaid4 - ok 19:10:58.0959 4872 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 19:10:59.0070 4872 Skype C2C Service - ok 19:10:59.0391 4872 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 19:10:59.0402 4872 SkypeUpdate - ok 19:11:00.0546 4872 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe 19:11:00.0792 4872 slsvc - ok 19:11:01.0049 4872 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll 19:11:01.0104 4872 SLUINotify - ok 19:11:01.0152 4872 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys 19:11:01.0201 4872 Smb - ok 19:11:01.0236 4872 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 19:11:01.0250 4872 SNMPTRAP - ok 19:11:01.0295 4872 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys 19:11:01.0331 4872 spldr - ok 19:11:01.0389 4872 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe 19:11:01.0462 4872 Spooler - ok 19:11:01.0550 4872 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 19:11:01.0563 4872 SQLBrowser - ok 19:11:01.0650 4872 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 19:11:01.0659 4872 SQLWriter - ok 19:11:01.0856 4872 [ 7BB297CADA42903328E92425D9761DA6 ] SRTSP C:\Windows\System32\Drivers\NIS\1308000.00E\SRTSP.SYS 19:11:01.0932 4872 SRTSP - ok 19:11:01.0987 4872 [ 475FCF0F28D845BF1C8ABAC27F19003E ] SRTSPX C:\Windows\system32\drivers\NIS\1308000.00E\SRTSPX.SYS 19:11:01.0997 4872 SRTSPX - ok 19:11:02.0222 4872 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys 19:11:02.0342 4872 srv - ok 19:11:02.0422 4872 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 19:11:02.0503 4872 srv2 - ok 19:11:02.0584 4872 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 19:11:02.0653 4872 srvnet - ok 19:11:02.0702 4872 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 19:11:02.0739 4872 SSDPSRV - ok 19:11:02.0770 4872 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll 19:11:02.0786 4872 SstpSvc - ok 19:11:02.0805 4872 [ 7E6DD4B34ACD36AF6C711D2BDE91B040 ] STacSV C:\Windows\system32\STacSV.exe 19:11:02.0833 4872 STacSV - ok 19:11:02.0878 4872 Steam Client Service - ok 19:11:03.0152 4872 [ A766CCAD980235FF34E7F8089D3175A3 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 19:11:03.0169 4872 Stereo Service - ok 19:11:03.0218 4872 [ 6A2A5E809C2C0178326D92B19EE4AAD3 ] STHDA C:\Windows\system32\drivers\stwrt.sys 19:11:03.0250 4872 STHDA - ok 19:11:03.0277 4872 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 19:11:03.0309 4872 StillCam - ok 19:11:03.0368 4872 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll 19:11:03.0418 4872 stisvc - ok 19:11:03.0526 4872 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe 19:11:03.0538 4872 stllssvr - ok 19:11:03.0588 4872 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 19:11:03.0601 4872 swenum - ok 19:11:03.0630 4872 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll 19:11:03.0675 4872 swprv - ok 19:11:03.0709 4872 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 19:11:03.0723 4872 Symc8xx - ok 19:11:03.0754 4872 [ 690FA0E61B90084C4D9A721BD4F3D779 ] SymDS C:\Windows\system32\drivers\NIS\1308000.00E\SYMDS.SYS 19:11:03.0785 4872 SymDS - ok 19:11:04.0009 4872 [ 8F88EDB211B12537D2DC2A6D73D6067C ] SymEFA C:\Windows\system32\drivers\NIS\1308000.00E\SYMEFA.SYS 19:11:04.0180 4872 SymEFA - ok 19:11:04.0225 4872 [ 74E2521E96176A4449570E50BE91954D ] SymEvent C:\Windows\system32\Drivers\SYMEVENT.SYS 19:11:04.0237 4872 SymEvent - ok 19:11:04.0326 4872 [ 2C356CCA706505CF63CBE39D532B9236 ] SymIRON C:\Windows\system32\drivers\NIS\1308000.00E\Ironx86.SYS 19:11:04.0337 4872 SymIRON - ok 19:11:04.0378 4872 [ 40C6E6417C8B7D7FCF82CFBE71525795 ] SYMTDIv C:\Windows\System32\Drivers\NIS\1308000.00E\SYMTDIV.SYS 19:11:04.0393 4872 SYMTDIv - ok 19:11:04.0426 4872 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 19:11:04.0460 4872 Sym_hi - ok 19:11:04.0546 4872 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 19:11:04.0715 4872 Sym_u3 - ok 19:11:04.0834 4872 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll 19:11:04.0882 4872 SysMain - ok 19:11:04.0962 4872 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll 19:11:04.0976 4872 TabletInputService - ok 19:11:05.0073 4872 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll 19:11:05.0096 4872 TapiSrv - ok 19:11:05.0155 4872 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll 19:11:05.0192 4872 TBS - ok 19:11:05.0415 4872 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 19:11:05.0449 4872 Tcpip - ok 19:11:05.0480 4872 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 19:11:05.0637 4872 Tcpip6 - ok 19:11:05.0693 4872 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 19:11:05.0759 4872 tcpipreg - ok 19:11:05.0800 4872 [ 5CA437A08509FB7ECF843480FC1232E2 ] TcUsb C:\Windows\system32\Drivers\tcusb.sys 19:11:05.0811 4872 TcUsb - ok 19:11:05.0849 4872 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 19:11:05.0896 4872 TDPIPE - ok 19:11:05.0946 4872 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 19:11:06.0005 4872 TDTCP - ok 19:11:06.0071 4872 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 19:11:06.0099 4872 tdx - ok 19:11:06.0170 4872 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 19:11:06.0182 4872 TermDD - ok 19:11:06.0236 4872 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll 19:11:06.0374 4872 TermService - ok 19:11:06.0411 4872 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll 19:11:06.0430 4872 Themes - ok 19:11:06.0469 4872 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll 19:11:06.0493 4872 THREADORDER - ok 19:11:06.0583 4872 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll 19:11:06.0610 4872 TrkWks - ok 19:11:06.0681 4872 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 19:11:06.0761 4872 TrustedInstaller - ok 19:11:06.0815 4872 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 19:11:06.0897 4872 tssecsrv - ok 19:11:06.0984 4872 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 19:11:07.0053 4872 tunmp - ok 19:11:07.0102 4872 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 19:11:07.0168 4872 tunnel - ok 19:11:07.0224 4872 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys 19:11:07.0242 4872 uagp35 - ok 19:11:07.0394 4872 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 19:11:07.0459 4872 udfs - ok 19:11:07.0516 4872 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe 19:11:07.0592 4872 UI0Detect - ok 19:11:07.0661 4872 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 19:11:07.0719 4872 uliagpkx - ok 19:11:07.0763 4872 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys 19:11:07.0805 4872 uliahci - ok 19:11:07.0833 4872 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys 19:11:08.0120 4872 UlSata - ok 19:11:08.0152 4872 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 19:11:08.0216 4872 ulsata2 - ok 19:11:08.0263 4872 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 19:11:08.0372 4872 umbus - ok 19:11:08.0452 4872 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll 19:11:08.0484 4872 upnphost - ok 19:11:08.0538 4872 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys 19:11:08.0553 4872 USBAAPL ( UnsignedFile.Multi.Generic ) - warning 19:11:08.0553 4872 USBAAPL - detected UnsignedFile.Multi.Generic (1) 19:11:08.0581 4872 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 19:11:08.0613 4872 usbccgp - ok 19:11:08.0653 4872 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys 19:11:08.0713 4872 usbcir - ok 19:11:08.0750 4872 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 19:11:08.0768 4872 usbehci - ok 19:11:08.0839 4872 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 19:11:08.0858 4872 usbhub - ok 19:11:08.0910 4872 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys 19:11:08.0970 4872 usbohci - ok 19:11:09.0029 4872 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 19:11:09.0124 4872 usbprint - ok 19:11:09.0200 4872 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 19:11:09.0489 4872 usbscan - ok 19:11:09.0509 4872 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 19:11:09.0537 4872 USBSTOR - ok 19:11:09.0554 4872 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 19:11:09.0591 4872 usbuhci - ok 19:11:09.0648 4872 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll 19:11:09.0674 4872 UxSms - ok 19:11:09.0730 4872 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe 19:11:09.0867 4872 vds - ok 19:11:09.0930 4872 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 19:11:09.0971 4872 vga - ok 19:11:10.0010 4872 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys 19:11:10.0055 4872 VgaSave - ok 19:11:10.0088 4872 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys 19:11:10.0111 4872 viaagp - ok 19:11:10.0132 4872 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys 19:11:10.0171 4872 ViaC7 - ok 19:11:10.0204 4872 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys 19:11:10.0224 4872 viaide - ok 19:11:10.0253 4872 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys 19:11:10.0266 4872 volmgr - ok 19:11:10.0308 4872 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 19:11:10.0325 4872 volmgrx - ok 19:11:10.0359 4872 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys 19:11:10.0380 4872 volsnap - ok 19:11:10.0419 4872 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 19:11:10.0434 4872 vsmraid - ok 19:11:10.0577 4872 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe 19:11:10.0663 4872 VSS - ok 19:11:10.0719 4872 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll 19:11:10.0794 4872 W32Time - ok 19:11:10.0828 4872 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 19:11:10.0925 4872 WacomPen - ok 19:11:10.0989 4872 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 19:11:11.0007 4872 Wanarp - ok 19:11:11.0037 4872 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 19:11:11.0055 4872 Wanarpv6 - ok 19:11:11.0152 4872 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll 19:11:11.0244 4872 wcncsvc - ok 19:11:11.0373 4872 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 19:11:11.0392 4872 WcsPlugInService - ok 19:11:11.0441 4872 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys 19:11:11.0490 4872 Wd - ok 19:11:11.0560 4872 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 19:11:11.0614 4872 Wdf01000 - ok 19:11:11.0638 4872 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll 19:11:11.0710 4872 WdiServiceHost - ok 19:11:11.0714 4872 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll 19:11:11.0741 4872 WdiSystemHost - ok 19:11:11.0777 4872 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll 19:11:11.0825 4872 WebClient - ok 19:11:11.0859 4872 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll 19:11:11.0883 4872 Wecsvc - ok 19:11:11.0903 4872 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll 19:11:11.0934 4872 wercplsupport - ok 19:11:11.0959 4872 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll 19:11:11.0983 4872 WerSvc - ok 19:11:12.0091 4872 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 19:11:12.0150 4872 WinDefend - ok 19:11:12.0155 4872 WinHttpAutoProxySvc - ok 19:11:12.0294 4872 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 19:11:12.0314 4872 Winmgmt - ok 19:11:12.0370 4872 [ 845AF1BA23C8D5E64DEF61BCC441604C ] WinRing0_1_2_0 C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys 19:11:12.0385 4872 WinRing0_1_2_0 - ok 19:11:12.0480 4872 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll 19:11:12.0511 4872 WinRM - ok 19:11:12.0611 4872 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll 19:11:12.0708 4872 Wlansvc - ok 19:11:12.0798 4872 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 19:11:12.0887 4872 wlidsvc - ok 19:11:12.0948 4872 wltrysvc - ok 19:11:12.0975 4872 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 19:11:13.0038 4872 WmiAcpi - ok 19:11:13.0072 4872 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 19:11:13.0108 4872 wmiApSrv - ok 19:11:13.0269 4872 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 19:11:13.0384 4872 WMPNetworkSvc - ok 19:11:13.0435 4872 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll 19:11:13.0474 4872 WPCSvc - ok 19:11:13.0531 4872 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 19:11:13.0604 4872 WPDBusEnum - ok 19:11:13.0720 4872 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 19:11:13.0736 4872 WpdUsb - ok 19:11:14.0347 4872 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 19:11:14.0370 4872 WPFFontCache_v0400 - ok 19:11:14.0402 4872 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 19:11:14.0439 4872 ws2ifsl - ok 19:11:14.0484 4872 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll 19:11:14.0517 4872 wscsvc - ok 19:11:14.0564 4872 [ 4422AC5ED8D4C2F0DB63E71D4C069DD7 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys 19:11:14.0581 4872 WSDPrintDevice - ok 19:11:14.0587 4872 WSearch - ok 19:11:14.0835 4872 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll 19:11:14.0945 4872 wuauserv - ok 19:11:15.0018 4872 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 19:11:15.0078 4872 WUDFRd - ok 19:11:15.0154 4872 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll 19:11:15.0180 4872 wudfsvc - ok 19:11:15.0218 4872 [ 04E268ADFC81964C49DC0C082D520F7E ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys 19:11:15.0263 4872 yukonwlh - ok 19:11:15.0277 4872 ================ Scan global =============================== 19:11:15.0309 4872 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll 19:11:15.0407 4872 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll 19:11:15.0457 4872 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll 19:11:15.0656 4872 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe 19:11:15.0680 4872 [Global] - ok 19:11:15.0681 4872 ================ Scan MBR ================================== 19:11:15.0700 4872 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 19:11:17.0008 4872 \Device\Harddisk0\DR0 - ok 19:11:17.0008 4872 ================ Scan VBR ================================== 19:11:17.0032 4872 [ FA901F170D1B9EC49C37A56AA58BF901 ] \Device\Harddisk0\DR0\Partition1 19:11:17.0056 4872 \Device\Harddisk0\DR0\Partition1 - ok 19:11:17.0079 4872 [ 3C0CCD56C7DC9CD6A8DD4E28F98F362F ] \Device\Harddisk0\DR0\Partition2 19:11:17.0081 4872 \Device\Harddisk0\DR0\Partition2 - ok 19:11:17.0081 4872 ================ Scan active images ======================== 19:11:17.0084 4872 [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys 19:11:17.0084 4872 C:\Windows\System32\drivers\crashdmp.sys - ok 19:11:17.0088 4872 [ 26541A068572F650A2FA490726FE81BE ] C:\Windows\System32\drivers\iaStor.sys 19:11:17.0088 4872 C:\Windows\System32\drivers\iaStor.sys - ok 19:11:17.0091 4872 [ 224191001E78C89DFA78924C3EA595FF ] C:\Windows\System32\drivers\intelppm.sys 19:11:17.0091 4872 C:\Windows\System32\drivers\intelppm.sys - ok 19:11:17.0096 4872 [ CAECC0120AC49E3D2F758B9169872D38 ]

Here are the 2 RKill fills and the 2 TDSS Reports, will post TDSS in 2nd post. Removed 4 files from RKill as asked. RK1: RogueKiller V8.0.4 [09/19/2012] by Tigzy mail: tigzyRK<at>gmail<dot>com Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Started in : Normal mode User : Aman Arneja [Admin rights] Mode : Scan -- Date : 09/21/2012 19:01:46 ¤¤¤ Bad processes : 3 ¤¤¤ [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] ¤¤¤ Registry Entries : 9 ¤¤¤ [TASK][ROGUE ST] 0 : c:\program files\internet explorer\iexplore.exe -> FOUND [TASK][ROGUE ST] 4788 : wscript.exe -> FOUND [HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND [HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND [HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND [FILEASSO] HKLM\[...]\command : ("C:\Program Files\Internet Explorer\iexplore.exe") -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [LOADED] ¤¤¤ SSDT[13] : NtAlertResumeThread @ 0x824CD5C3 -> HOOKED (Unknown @ 0x8A9569D8) SSDT[14] : NtAlertThread @ 0x82446255 -> HOOKED (Unknown @ 0x8A956AB8) SSDT[18] : NtAllocateVirtualMemory @ 0x824824FB -> HOOKED (Unknown @ 0x8A955470) SSDT[21] : NtAlpcConnectPort @ 0x82424887 -> HOOKED (Unknown @ 0x88E0B330) SSDT[42] : NtAssignProcessToJobObject @ 0x823F7B43 -> HOOKED (Unknown @ 0x8A956180) SSDT[67] : NtCreateMutant @ 0x8245A812 -> HOOKED (Unknown @ 0x8A956728) SSDT[77] : NtCreateSymbolicLinkObject @ 0x823FA35A -> HOOKED (Unknown @ 0x8A957E80) SSDT[78] : NtCreateThread @ 0x824CBBE0 -> HOOKED (Unknown @ 0x8A955978) SSDT[116] : NtDebugActiveProcess @ 0x8249ED22 -> HOOKED (Unknown @ 0x8A956260) SSDT[129] : NtDuplicateObject @ 0x82432551 -> HOOKED (Unknown @ 0x8A955640) SSDT[147] : NtFreeVirtualMemory @ 0x822BEF1D -> HOOKED (Unknown @ 0x8A955228) SSDT[156] : NtImpersonateAnonymousToken @ 0x823F4F12 -> HOOKED (Unknown @ 0x8A956818) SSDT[158] : NtImpersonateThread @ 0x8240A54F -> HOOKED (Unknown @ 0x8A9568F8) SSDT[165] : NtLoadDriver @ 0x823A5DEE -> HOOKED (Unknown @ 0x88E0B2B8) SSDT[177] : NtMapViewOfSection @ 0x8244A89A -> HOOKED (Unknown @ 0x8A955128) SSDT[184] : NtOpenEvent @ 0x82433DCF -> HOOKED (Unknown @ 0x8A956648) SSDT[194] : NtOpenProcess @ 0x8245AFAE -> HOOKED (Unknown @ 0x8A955820) SSDT[195] : NtOpenProcessToken @ 0x8243BA2E -> HOOKED (Unknown @ 0x8A955560) SSDT[197] : NtOpenSection @ 0x8244B66D -> HOOKED (Unknown @ 0x8A956488) SSDT[201] : NtOpenThread @ 0x824564FF -> HOOKED (Unknown @ 0x8A955730) SSDT[210] : NtProtectVirtualMemory @ 0x824542E2 -> HOOKED (Unknown @ 0x8A956090) SSDT[282] : NtResumeThread @ 0x82455B4A -> HOOKED (Unknown @ 0x8A956B98) SSDT[289] : NtSetContextThread @ 0x824CD06F -> HOOKED (Unknown @ 0x8A956E38) SSDT[305] : NtSetInformationProcess @ 0x8244E8C8 -> HOOKED (Unknown @ 0x8A956F18) SSDT[317] : NtSetSystemInformation @ 0x82420EEB -> HOOKED (Unknown @ 0x8A956340) SSDT[330] : NtSuspendProcess @ 0x824CD4FF -> HOOKED (Unknown @ 0x8A956568) SSDT[331] : NtSuspendThread @ 0x823D492B -> HOOKED (Unknown @ 0x8A956C78) SSDT[334] : NtTerminateProcess @ 0x8242B143 -> HOOKED (Unknown @ 0x8A955A78) SSDT[335] : NtTerminateThread @ 0x82456534 -> HOOKED (Unknown @ 0x8A956D58) SSDT[348] : NtUnmapViewOfSection @ 0x8244AB5D -> HOOKED (Unknown @ 0x8A956008) SSDT[358] : NtWriteVirtualMemory @ 0x8244792D -> HOOKED (Unknown @ 0x8A955318) SSDT[382] : NtCreateThreadEx @ 0x82455FE9 -> HOOKED (Unknown @ 0x8A957F70) S_SSDT[317] : Unknown -> HOOKED (Unknown @ 0x8A9470C8) S_SSDT[397] : Unknown -> HOOKED (Unknown @ 0x8850E510) S_SSDT[428] : Unknown -> HOOKED (Unknown @ 0x8B374AD8) S_SSDT[430] : Unknown -> HOOKED (Unknown @ 0x8B0BD108) S_SSDT[442] : Unknown -> HOOKED (Unknown @ 0x8B374270) S_SSDT[479] : Unknown -> HOOKED (Unknown @ 0x8B375300) S_SSDT[497] : Unknown -> HOOKED (Unknown @ 0x8B3754A0) S_SSDT[498] : Unknown -> HOOKED (Unknown @ 0x8B3753D0) S_SSDT[573] : Unknown -> HOOKED (Unknown @ 0x8B374B58) S_SSDT[576] : Unknown -> HOOKED (Unknown @ 0x8B375F68) ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: FUJITSU MHZ2250BJ FFS G2 +++++ --- User --- [MBR] cf8a108ca4a4342787630e957f73d272 [bSP] 0bbd13b5d76695bb505e813c44c7894b : Windows Vista MBR Code Partition table: 0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 94 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 194560 | Size: 10240 Mo 2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 21166080 | Size: 225578 Mo 3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 483151872 | Size: 2560 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[2].txt >> RKreport[1].txt ; RKreport[2].txt RK2: RogueKiller V8.0.4 [09/19/2012] by Tigzy mail: tigzyRK<at>gmail<dot>com Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Started in : Normal mode User : Aman Arneja [Admin rights] Mode : Remove -- Date : 09/21/2012 19:03:55 ¤¤¤ Bad processes : 5 ¤¤¤ [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] [RESIDUE] iexplore.exe -- C:\Program Files\Internet Explorer\iexplore.exe -> KILLED [TermProc] ¤¤¤ Registry Entries : 9 ¤¤¤ [TASK][ROGUE ST] 0 : c:\program files\internet explorer\iexplore.exe -> DELETED [TASK][ROGUE ST] 4788 : wscript.exe -> DELETED [HJPOL] HKCU\[...]\System : disableregistrytools (0) -> DELETED [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED [HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> NOT SELECTED [HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> NOT SELECTED [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NOT SELECTED [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NOT SELECTED [FILEASSO] HKLM\[...]\command : ("C:\Program Files\Internet Explorer\iexplore.exe") -> NOT SELECTED ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [LOADED] ¤¤¤ SSDT[13] : NtAlertResumeThread @ 0x824CD5C3 -> HOOKED (Unknown @ 0x8A9569D8) SSDT[14] : NtAlertThread @ 0x82446255 -> HOOKED (Unknown @ 0x8A956AB8) SSDT[18] : NtAllocateVirtualMemory @ 0x824824FB -> HOOKED (Unknown @ 0x8A955470) SSDT[21] : NtAlpcConnectPort @ 0x82424887 -> HOOKED (Unknown @ 0x88E0B330) SSDT[42] : NtAssignProcessToJobObject @ 0x823F7B43 -> HOOKED (Unknown @ 0x8A956180) SSDT[67] : NtCreateMutant @ 0x8245A812 -> HOOKED (Unknown @ 0x8A956728) SSDT[77] : NtCreateSymbolicLinkObject @ 0x823FA35A -> HOOKED (Unknown @ 0x8A957E80) SSDT[78] : NtCreateThread @ 0x824CBBE0 -> HOOKED (Unknown @ 0x8A955978) SSDT[116] : NtDebugActiveProcess @ 0x8249ED22 -> HOOKED (Unknown @ 0x8A956260) SSDT[129] : NtDuplicateObject @ 0x82432551 -> HOOKED (Unknown @ 0x8A955640) SSDT[147] : NtFreeVirtualMemory @ 0x822BEF1D -> HOOKED (Unknown @ 0x8A955228) SSDT[156] : NtImpersonateAnonymousToken @ 0x823F4F12 -> HOOKED (Unknown @ 0x8A956818) SSDT[158] : NtImpersonateThread @ 0x8240A54F -> HOOKED (Unknown @ 0x8A9568F8) SSDT[165] : NtLoadDriver @ 0x823A5DEE -> HOOKED (Unknown @ 0x88E0B2B8) SSDT[177] : NtMapViewOfSection @ 0x8244A89A -> HOOKED (Unknown @ 0x8A955128) SSDT[184] : NtOpenEvent @ 0x82433DCF -> HOOKED (Unknown @ 0x8A956648) SSDT[194] : NtOpenProcess @ 0x8245AFAE -> HOOKED (Unknown @ 0x8A955820) SSDT[195] : NtOpenProcessToken @ 0x8243BA2E -> HOOKED (Unknown @ 0x8A955560) SSDT[197] : NtOpenSection @ 0x8244B66D -> HOOKED (Unknown @ 0x8A956488) SSDT[201] : NtOpenThread @ 0x824564FF -> HOOKED (Unknown @ 0x8A955730) SSDT[210] : NtProtectVirtualMemory @ 0x824542E2 -> HOOKED (Unknown @ 0x8A956090) SSDT[282] : NtResumeThread @ 0x82455B4A -> HOOKED (Unknown @ 0x8A956B98) SSDT[289] : NtSetContextThread @ 0x824CD06F -> HOOKED (Unknown @ 0x8A956E38) SSDT[305] : NtSetInformationProcess @ 0x8244E8C8 -> HOOKED (Unknown @ 0x8A956F18) SSDT[317] : NtSetSystemInformation @ 0x82420EEB -> HOOKED (Unknown @ 0x8A956340) SSDT[330] : NtSuspendProcess @ 0x824CD4FF -> HOOKED (Unknown @ 0x8A956568) SSDT[331] : NtSuspendThread @ 0x823D492B -> HOOKED (Unknown @ 0x8A956C78) SSDT[334] : NtTerminateProcess @ 0x8242B143 -> HOOKED (Unknown @ 0x8A955A78) SSDT[335] : NtTerminateThread @ 0x82456534 -> HOOKED (Unknown @ 0x8A956D58) SSDT[348] : NtUnmapViewOfSection @ 0x8244AB5D -> HOOKED (Unknown @ 0x8A956008) SSDT[358] : NtWriteVirtualMemory @ 0x8244792D -> HOOKED (Unknown @ 0x8A955318) SSDT[382] : NtCreateThreadEx @ 0x82455FE9 -> HOOKED (Unknown @ 0x8A957F70) S_SSDT[317] : Unknown -> HOOKED (Unknown @ 0x8A9470C8) S_SSDT[397] : Unknown -> HOOKED (Unknown @ 0x8850E510) S_SSDT[428] : Unknown -> HOOKED (Unknown @ 0x8B374AD8) S_SSDT[430] : Unknown -> HOOKED (Unknown @ 0x8B0BD108) S_SSDT[442] : Unknown -> HOOKED (Unknown @ 0x8B374270) S_SSDT[479] : Unknown -> HOOKED (Unknown @ 0x8B375300) S_SSDT[497] : Unknown -> HOOKED (Unknown @ 0x8B3754A0) S_SSDT[498] : Unknown -> HOOKED (Unknown @ 0x8B3753D0) S_SSDT[573] : Unknown -> HOOKED (Unknown @ 0x8B374B58) S_SSDT[576] : Unknown -> HOOKED (Unknown @ 0x8B375F68) ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: FUJITSU MHZ2250BJ FFS G2 +++++ --- User --- [MBR] cf8a108ca4a4342787630e957f73d272 [bSP] 0bbd13b5d76695bb505e813c44c7894b : Windows Vista MBR Code Partition table: 0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 94 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 194560 | Size: 10240 Mo 2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 21166080 | Size: 225578 Mo 3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 483151872 | Size: 2560 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[3].txt >> RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

Here is the report as requested RogueKiller V8.0.4 [09/19/2012] by Tigzy mail: tigzyRK<at>gmail<dot>com Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Started in : Normal mode User : Aman Arneja [Admin rights] Mode : Scan -- Date : 09/21/2012 16:40:29 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 8 ¤¤¤ [TASK][ROGUE ST] 0 : c:\program files\internet explorer\iexplore.exe -> FOUND [TASK][ROGUE ST] 4788 : wscript.exe -> FOUND [HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND [HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND [HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [LOADED] ¤¤¤ SSDT[13] : NtAlertResumeThread @ 0x824CD5C3 -> HOOKED (Unknown @ 0x8A9569D8) SSDT[14] : NtAlertThread @ 0x82446255 -> HOOKED (Unknown @ 0x8A956AB8) SSDT[18] : NtAllocateVirtualMemory @ 0x824824FB -> HOOKED (Unknown @ 0x8A955470) SSDT[21] : NtAlpcConnectPort @ 0x82424887 -> HOOKED (Unknown @ 0x88E0B330) SSDT[42] : NtAssignProcessToJobObject @ 0x823F7B43 -> HOOKED (Unknown @ 0x8A956180) SSDT[67] : NtCreateMutant @ 0x8245A812 -> HOOKED (Unknown @ 0x8A956728) SSDT[77] : NtCreateSymbolicLinkObject @ 0x823FA35A -> HOOKED (Unknown @ 0x8A957E80) SSDT[78] : NtCreateThread @ 0x824CBBE0 -> HOOKED (Unknown @ 0x8A955978) SSDT[116] : NtDebugActiveProcess @ 0x8249ED22 -> HOOKED (Unknown @ 0x8A956260) SSDT[129] : NtDuplicateObject @ 0x82432551 -> HOOKED (Unknown @ 0x8A955640) SSDT[147] : NtFreeVirtualMemory @ 0x822BEF1D -> HOOKED (Unknown @ 0x8A955228) SSDT[156] : NtImpersonateAnonymousToken @ 0x823F4F12 -> HOOKED (Unknown @ 0x8A956818) SSDT[158] : NtImpersonateThread @ 0x8240A54F -> HOOKED (Unknown @ 0x8A9568F8) SSDT[165] : NtLoadDriver @ 0x823A5DEE -> HOOKED (Unknown @ 0x88E0B2B8) SSDT[177] : NtMapViewOfSection @ 0x8244A89A -> HOOKED (Unknown @ 0x8A955128) SSDT[184] : NtOpenEvent @ 0x82433DCF -> HOOKED (Unknown @ 0x8A956648) SSDT[194] : NtOpenProcess @ 0x8245AFAE -> HOOKED (Unknown @ 0x8A955820) SSDT[195] : NtOpenProcessToken @ 0x8243BA2E -> HOOKED (Unknown @ 0x8A955560) SSDT[197] : NtOpenSection @ 0x8244B66D -> HOOKED (Unknown @ 0x8A956488) SSDT[201] : NtOpenThread @ 0x824564FF -> HOOKED (Unknown @ 0x8A955730) SSDT[210] : NtProtectVirtualMemory @ 0x824542E2 -> HOOKED (Unknown @ 0x8A956090) SSDT[282] : NtResumeThread @ 0x82455B4A -> HOOKED (Unknown @ 0x8A956B98) SSDT[289] : NtSetContextThread @ 0x824CD06F -> HOOKED (Unknown @ 0x8A956E38) SSDT[305] : NtSetInformationProcess @ 0x8244E8C8 -> HOOKED (Unknown @ 0x8A956F18) SSDT[317] : NtSetSystemInformation @ 0x82420EEB -> HOOKED (Unknown @ 0x8A956340) SSDT[330] : NtSuspendProcess @ 0x824CD4FF -> HOOKED (Unknown @ 0x8A956568) SSDT[331] : NtSuspendThread @ 0x823D492B -> HOOKED (Unknown @ 0x8A956C78) SSDT[334] : NtTerminateProcess @ 0x8242B143 -> HOOKED (Unknown @ 0x8A955A78) SSDT[335] : NtTerminateThread @ 0x82456534 -> HOOKED (Unknown @ 0x8A956D58) SSDT[348] : NtUnmapViewOfSection @ 0x8244AB5D -> HOOKED (Unknown @ 0x8A956008) SSDT[358] : NtWriteVirtualMemory @ 0x8244792D -> HOOKED (Unknown @ 0x8A955318) SSDT[382] : NtCreateThreadEx @ 0x82455FE9 -> HOOKED (Unknown @ 0x8A957F70) S_SSDT[317] : Unknown -> HOOKED (Unknown @ 0x8A9470C8) S_SSDT[397] : Unknown -> HOOKED (Unknown @ 0x8850E510) S_SSDT[428] : Unknown -> HOOKED (Unknown @ 0x8B374AD8) S_SSDT[430] : Unknown -> HOOKED (Unknown @ 0x8B0BD108) S_SSDT[442] : Unknown -> HOOKED (Unknown @ 0x8B374270) S_SSDT[479] : Unknown -> HOOKED (Unknown @ 0x8B375300) S_SSDT[497] : Unknown -> HOOKED (Unknown @ 0x8B3754A0) S_SSDT[498] : Unknown -> HOOKED (Unknown @ 0x8B3753D0) S_SSDT[573] : Unknown -> HOOKED (Unknown @ 0x8B374B58) S_SSDT[576] : Unknown -> HOOKED (Unknown @ 0x8B375F68) ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: FUJITSU MHZ2250BJ FFS G2 +++++ --- User --- [MBR] cf8a108ca4a4342787630e957f73d272 [bSP] 0bbd13b5d76695bb505e813c44c7894b : Windows Vista MBR Code Partition table: 0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 94 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 194560 | Size: 10240 Mo 2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 21166080 | Size: 225578 Mo 3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 483151872 | Size: 2560 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[1].txt >> RKreport[1].txt