Jump to content

MSE and PhotoGallery won't open, Is This A Virus?!


Recommended Posts

Hey Awesome People Who Know How To Fix Stuff,

 

My PC is older, but I love it, and I mostly use it as a word-processor and photo-editor. Last week my pictures wouldn't show any Previews all of a sudden in Windows Photo Gallery, then it (the Gallery) started resetting itself without starting; then the Windows Explorer started shutting down/restarting itself whenever I tried opening MSE; and Then Windows Explorer started doing the same thing about four days ago whenever I opened almost any program!

 

What kind of freaky virus thing have I caught?! I feel like I'm stranded on a techno-island of strings of numbers and letters I don't understand or recognize and everyone speaks ancient Sumerian, while I only know Ebonics...yeah, frightening.

 

...I guess I should mention that I was on Pixlr.com before all this happened and had recently downloaded some fonts from a few websites (though my web protection was up-to-date and running at the time), but that was days before all this started.

 

So, I can surf the web and run Scannow (whatever that actually does), but that's about the length of my technical computer savvy. I have updated and run my anti-virus stuff since this happened but nothing seems to work. Could there be something I'm missing or not doing right?

 

If a virus has destroyed my computer I think I might Literally crawl into a corner and weep. Literally. This is my last (Ditch) effort before resetting/reinstalling windows. Someone Help Me!

 

[p.s.: thanks in advance for listening to me whine...]

Link to post
Share on other sites

  • Root Admin

Please download Malwarebytes Anti-Rootkit from HERE

  • Unzip the contents to a folder in a convenient location.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
  • When done, please post the two logs produced they will be in the MBAR folder... mbar-log.txt and system-log.txt
Link to post
Share on other sites

Sorry it took so long to reply, had to work, but here ya go---

 

(I'm not sure if it's relevant but a few months after I got the PC it wouldn't start so I have been booting it from a CD my friend made me. It's been almost a year and totally never take the disk out so I completely forgot about it.)

 

MBAR-LOG.txt ----------------------------------------------------------------------------------

 

Database version: v2013.06.21.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Ken :: KEN-PC [administrator]

6/21/2013 12:07:36 PM
mbar-log-2013-06-21 (12-07-36).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | Deep Anti-Rootkit Scan | PUM | P2P
Scan options disabled: PUP
Objects scanned: 260306
Time elapsed: 21 minute(s), 22 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

 

SYSTEM-LOG.txt --------------------------------------------------------------------------------------------------------

 

OS version: 6.0.6002 Windows Vista Service Pack 2 x86

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, Q:\ DRIVE_FIXED
CPU speed: 2.104000 GHz
Memory total: 2078023680, free: 914075648

Downloaded database version: v2013.06.21.04
Downloaded database version: v2013.05.22.01
Initializing...
------------ Kernel report ------------
     06/21/2013 12:07:27
------------ Loaded modules -----------
\SystemRoot\system32\ntkrnlpa.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\sptd.sys
\SystemRoot\system32\drivers\acpi.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\gfibto.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\nvraid.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\nvstor.sys
\SystemRoot\system32\drivers\storport.sys
\SystemRoot\system32\DRIVERS\nvstor32.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\system32\DRIVERS\MpFilter.sys
\SystemRoot\System32\Drivers\PxHelp20.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\msrpc.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\ecache.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\crcdisk.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\tunmp.sys
\SystemRoot\system32\DRIVERS\amdk8.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\bcm4sbxp.sys
\SystemRoot\system32\DRIVERS\HSXHWBS2.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\HSX_DPV.sys
\SystemRoot\system32\DRIVERS\HSX_CNXT.sys
\SystemRoot\system32\drivers\modem.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\System32\Drivers\aztfmytb.SYS
\SystemRoot\System32\Drivers\SCSIPORT.SYS
\SystemRoot\system32\DRIVERS\msiscsi.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\stwrt.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\smb.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\RTL8187B.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\rtlprot.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_nvstor32.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\Sftvollh.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\drivers\spsys.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\drivers\mrxdav.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Program Files\PogoplugBackup\dokance.sys
\SystemRoot\system32\DRIVERS\dsunidrv.sys
\SystemRoot\system32\DRIVERS\mdmxsdk.sys
\SystemRoot\system32\DRIVERS\NisDrvWFP.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\system32\DRIVERS\Sftfslh.sys
\SystemRoot\system32\DRIVERS\Sftplaylh.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\system32\DRIVERS\xaudio.sys
\SystemRoot\system32\DRIVERS\Sftredirlh.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\cdfs.sys
\??\C:\Windows\system32\drivers\mbam.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Program Files\DAEMON Tools Lite\Engine.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff85f884e0
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\0000005d\
Lower Device Object: 0xffffffff8521b928
Lower Device Driver Name: \Driver\nvstor32\
IRP handler 0 of \Driver\nvstor32 points to an unknown module
Unhooking enabled.
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff85f884e0
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\0000005d\
Lower Device Object: 0xffffffff8521b928
Lower Device Driver Name: \Driver\nvstor32\
Driver name found: nvstor32
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\Storport.sys (0x0)
Load Function returned 0x0
<<<2>>>
Device number: 0, partition: 3
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff85f88160, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffffff855cbf08, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8521b928, DeviceName: \Device\0000005d\, DriverName: \Driver\nvstor32\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
Upper DeviceData: 0xffffffffb4e796b0, 0xffffffff85f884e0, 0xffffffff85df6ac8
Lower DeviceData: 0xffffffffb526d5f0, 0xffffffff8521b928, 0xffffffff85dc0350
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 30000000

Partition information:

    Partition 0 type is Other (0xde)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 63  Numsec = 112392

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 112640  Numsec = 20971520

    Partition 2 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 21084160  Numsec = 467193856
    Partition file system is NTFS
    Partition is bootable

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 250000000000 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-488261250-488281250)...
Done!
Scan finished
=======================================

Removal queue found; removal started
Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_2_21084160_i.mbam...
Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removal finished

Link to post
Share on other sites

  • Root Admin

Okay let me have you run another scanner that can both find and fix some oddities that other scanners don't do.

 

 

Please visit this webpage for instructions on downloading and running ComboFix: How to use ComboFix

Please make sure you disable your security applications before running ComboFix.

Once Combofix has completed it will produce and open a log file.  Please attach that log file to your next reply.
If needed the file can be located here:  C:\combofix.txt
 

 

NOTE:!! If you get an error about "this key has been marked for deletion" please ignore it and restart the computer and send back the log.

Link to post
Share on other sites

ok, sorry to keep being such a pain, but my friend told me that he had disabled all my "something or other with MSConfig" so he re-enabled it and I re-ran the Malwarebytes Anti-Rootkit-thing and the system-log was a little bigger so I'm posting that too in case it changes anything you need to know...sorry again if I messed something up.

 

Also, I tried running the Combofix program but it says to deactivate MSE and press ok, which I did but MSE is still active and I can't open/access it to turn it off, and Combofix said it could damage my PC if I continue to run it so I shut it off. Should I redo it and let it run or is there some other way of turning MSE off so it'll run the way it should. Sorry again but I'm just not sure how I should proceed.

 

 

 

Re-Run System-Log.txt ================================================

 

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.06.0.1003

© Malwarebytes Corporation 2011-2012

OS version: 6.0.6002 Windows Vista Service Pack 2 x86

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, Q:\ DRIVE_FIXED
CPU speed: 2.104000 GHz
Memory total: 2078023680, free: 914075648

Downloaded database version: v2013.06.21.04
Downloaded database version: v2013.05.22.01
Initializing...
------------ Kernel report ------------
     06/21/2013 12:07:27
------------ Loaded modules -----------
\SystemRoot\system32\ntkrnlpa.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\sptd.sys
\SystemRoot\system32\drivers\acpi.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\gfibto.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\nvraid.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\nvstor.sys
\SystemRoot\system32\drivers\storport.sys
\SystemRoot\system32\DRIVERS\nvstor32.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\system32\DRIVERS\MpFilter.sys
\SystemRoot\System32\Drivers\PxHelp20.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\msrpc.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\ecache.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\crcdisk.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\tunmp.sys
\SystemRoot\system32\DRIVERS\amdk8.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\bcm4sbxp.sys
\SystemRoot\system32\DRIVERS\HSXHWBS2.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\HSX_DPV.sys
\SystemRoot\system32\DRIVERS\HSX_CNXT.sys
\SystemRoot\system32\drivers\modem.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\System32\Drivers\aztfmytb.SYS
\SystemRoot\System32\Drivers\SCSIPORT.SYS
\SystemRoot\system32\DRIVERS\msiscsi.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\stwrt.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\smb.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\RTL8187B.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\rtlprot.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_nvstor32.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\Sftvollh.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\drivers\spsys.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\drivers\mrxdav.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Program Files\PogoplugBackup\dokance.sys
\SystemRoot\system32\DRIVERS\dsunidrv.sys
\SystemRoot\system32\DRIVERS\mdmxsdk.sys
\SystemRoot\system32\DRIVERS\NisDrvWFP.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\system32\DRIVERS\Sftfslh.sys
\SystemRoot\system32\DRIVERS\Sftplaylh.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\system32\DRIVERS\xaudio.sys
\SystemRoot\system32\DRIVERS\Sftredirlh.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\cdfs.sys
\??\C:\Windows\system32\drivers\mbam.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Program Files\DAEMON Tools Lite\Engine.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff85f884e0
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\0000005d\
Lower Device Object: 0xffffffff8521b928
Lower Device Driver Name: \Driver\nvstor32\
IRP handler 0 of \Driver\nvstor32 points to an unknown module
Unhooking enabled.
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff85f884e0
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\0000005d\
Lower Device Object: 0xffffffff8521b928
Lower Device Driver Name: \Driver\nvstor32\
Driver name found: nvstor32
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\Storport.sys (0x0)
Load Function returned 0x0
<<<2>>>
Device number: 0, partition: 3
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff85f88160, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffffff855cbf08, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8521b928, DeviceName: \Device\0000005d\, DriverName: \Driver\nvstor32\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
Upper DeviceData: 0xffffffffb4e796b0, 0xffffffff85f884e0, 0xffffffff85df6ac8
Lower DeviceData: 0xffffffffb526d5f0, 0xffffffff8521b928, 0xffffffff85dc0350
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 30000000

Partition information:

    Partition 0 type is Other (0xde)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 63  Numsec = 112392

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 112640  Numsec = 20971520

    Partition 2 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 21084160  Numsec = 467193856
    Partition file system is NTFS
    Partition is bootable

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 250000000000 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-488261250-488281250)...
Done!
Scan finished
=======================================

Removal queue found; removal started
Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_2_21084160_i.mbam...
Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removal finished
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.06.0.1003

© Malwarebytes Corporation 2011-2012

OS version: 6.0.6002 Windows Vista Service Pack 2 x86

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, Q:\ DRIVE_FIXED
CPU speed: 2.104000 GHz
Memory total: 2078023680, free: 1175822336

Downloaded database version: v2013.06.21.05
Downloaded database version: v2013.06.21.06
Initializing...
------------ Kernel report ------------
     06/21/2013 14:16:22
------------ Loaded modules -----------
\SystemRoot\system32\ntkrnlpa.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\sptd.sys
\SystemRoot\system32\drivers\acpi.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\gfibto.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\nvraid.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\nvstor.sys
\SystemRoot\system32\drivers\storport.sys
\SystemRoot\system32\DRIVERS\nvstor32.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\system32\DRIVERS\MpFilter.sys
\SystemRoot\System32\Drivers\PxHelp20.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\msrpc.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\ecache.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\crcdisk.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\tunmp.sys
\SystemRoot\system32\DRIVERS\amdk8.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\bcm4sbxp.sys
\SystemRoot\system32\DRIVERS\HSXHWBS2.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\HSX_DPV.sys
\SystemRoot\system32\DRIVERS\HSX_CNXT.sys
\SystemRoot\system32\drivers\modem.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\System32\Drivers\azysvx8d.SYS
\SystemRoot\System32\Drivers\SCSIPORT.SYS
\SystemRoot\system32\DRIVERS\msiscsi.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\stwrt.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\smb.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\RTL8187B.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\rtlprot.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\udfs.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_nvstor32.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\??\C:\Windows\system32\drivers\mbam.sys
\SystemRoot\system32\DRIVERS\Sftvollh.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\drivers\spsys.sys
\??\C:\Program Files\Sandboxie\SbieDrv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\drivers\mrxdav.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Program Files\PogoplugBackup\dokance.sys
\SystemRoot\system32\DRIVERS\dsunidrv.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\system32\DRIVERS\mdmxsdk.sys
\SystemRoot\system32\DRIVERS\NisDrvWFP.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\system32\DRIVERS\Sftfslh.sys
\SystemRoot\system32\DRIVERS\Sftplaylh.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\system32\DRIVERS\xaudio.sys
\SystemRoot\system32\DRIVERS\Sftredirlh.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\MpKsl82c6b15a.sys
\SystemRoot\system32\DRIVERS\cdfs.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Program Files\DAEMON Tools Lite\Engine.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff85fd0ac8
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\0000005d\
Lower Device Object: 0xffffffff851b4c90
Lower Device Driver Name: \Driver\nvstor32\
IRP handler 0 of \Driver\nvstor32 points to an unknown module
Unhooking enabled.
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff85fd0ac8
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\0000005d\
Lower Device Object: 0xffffffff851b4c90
Lower Device Driver Name: \Driver\nvstor32\
Driver name found: nvstor32
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\Storport.sys (0x0)
Load Function returned 0x0
<<<2>>>
Device number: 0, partition: 3
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff85fd0ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff85b7a108, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffffff85fd0ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffffff855c8ad0, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff851b4c90, DeviceName: \Device\0000005d\, DriverName: \Driver\nvstor32\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
Upper DeviceData: 0xffffffffa94950c8, 0xffffffff85fd0ac8, 0xffffffffa3e3eac8
Lower DeviceData: 0xffffffff99b2d398, 0xffffffff851b4c90, 0xffffffff84e07360
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 30000000

Partition information:

    Partition 0 type is Other (0xde)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 63  Numsec = 112392

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 112640  Numsec = 20971520

    Partition 2 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 21084160  Numsec = 467193856
    Partition file system is NTFS
    Partition is bootable

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 250000000000 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-488261250-488281250)...
Done!
Scan finished
=======================================

Removal queue found; removal started
Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_2_21084160_i.mbam...
Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removal finished

 

 

END System-Log.txt =============================================================================

Link to post
Share on other sites

here ya go,

 

Combofix Log.txt ---------------------

 

 

 ComboFix 13-06-21.02 - Ken 06/21/2013  19:04:45.1.2 - x86

 

Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.1982.1013 [GMT -4:00]

 

Running from: c:\users\Ken\Desktop\ComboFix.exe

 

AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}

 

SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}

 

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 

.

 

.

 

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

 

.

 

.

 

C:\Install.exe

 

c:\program files\TelevisionFanaticEI

 

c:\program files\TelevisionFanaticEI\Installr\1.bin\64EIPlug.dll

 

c:\program files\TelevisionFanaticEI\Installr\1.bin\NP64EISb.dll

 

c:\programdata\Codecv

 

c:\programdata\Codecv\background.html

 

c:\programdata\Codecv\content.js

 

c:\programdata\Codecv\data\content.js

 

c:\programdata\Codecv\data\jsondb.js

 

c:\programdata\Codecv\jpnnbfjmbmmkploieoehdbkkjebfceae.crx

 

c:\programdata\Codecv\settings.ini

 

c:\programdata\Codecv\uninstall.exe

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome.manifest

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome\content\overlay.xul

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\install.rdf

 

c:\users\Ken\AppData\Roaming\CA3206

 

c:\windows\system32\drivers\etc\hosts.ics

 

c:\windows\system32\roboot.exe

 

c:\windows\system32\system

 

c:\windows\wininit.ini

 

.

 

.

 

(((((((((((((((((((((((((   Files Created from 2013-05-21 to 2013-06-21  )))))))))))))))))))))))))))))))

 

.

 

.

 

2013-06-21 23:16 . 2013-06-21 23:17 -------- d-----w- c:\users\Ken\AppData\Local\temp

 

2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Default\AppData\Local\temp

 

2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Cass\AppData\Local\temp

 

2013-06-21 17:39 . 2013-06-21 17:39 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\MpKsl82c6b15a.sys

 

2013-06-21 16:07 . 2013-06-21 19:24 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)

 

2013-06-21 16:02 . 2013-06-17 11:08 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll

 

2013-06-21 16:02 . 2013-06-21 16:01 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll

 

2013-06-21 16:01 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\mpengine.dll

 

2013-06-20 03:51 . 2013-06-20 03:51 -------- d-----w- c:\users\Ken\AppData\Roaming\Oracle

 

2013-06-20 02:33 . 2013-06-20 02:33 -------- d-----w- c:\program files\Common Files\Java

 

2013-06-20 02:32 . 2013-06-20 02:32 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

 

2013-06-20 01:59 . 2013-06-20 01:59 -------- d-----w- c:\program files\Belarc

 

2013-06-20 00:31 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

 

2013-06-19 15:41 . 2013-06-19 15:41 -------- d-----w- C:\TDSSKiller_Quarantine

 

2013-06-19 02:35 . 2013-06-19 02:35 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1

 

2013-06-19 01:03 . 2013-06-19 01:03 -------- d-----w- c:\windows\CheckSur

 

2013-06-18 07:26 . 2013-06-18 07:26 -------- d-----w- c:\users\Ken\AppData\Local\MigWiz

 

2013-06-17 11:05 . 2013-06-17 11:05 -------- d-----w- c:\program files\Microsoft Security Client

 

2013-06-17 11:02 . 2013-06-11 04:59 7016152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{339C4D5B-747E-4CDD-94ED-43775B133887}\mpengine.dll

 

2013-06-16 19:07 . 2013-06-16 19:44 -------- d-----w- c:\users\Ken\AppData\Roaming\Systweak

 

2013-06-15 00:45 . 2013-06-15 00:46 -------- d-----w- c:\users\UpdatusUser

 

2013-06-14 18:07 . 2013-06-14 18:07 12872 ----a-w- c:\windows\system32\bootdelete.exe

 

2013-06-14 17:55 . 2013-06-14 17:55 -------- d-----w- c:\program files\HitmanPro

 

2013-06-14 17:40 . 2013-06-14 18:07 -------- d-----w- c:\programdata\HitmanPro

 

2013-06-14 17:27 . 2013-06-16 18:52 -------- d-----w- c:\users\Ken\AppData\Local\LogMeIn Rescue Applet

 

2013-06-14 04:07 . 2013-06-14 04:11 -------- d-----w- c:\programdata\Ad-Aware Antivirus

 

2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Lavasoft

 

2013-06-14 03:52 . 2013-06-14 18:12 -------- d-----w- c:\program files\Ad-Aware Antivirus

 

2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Downloaded Installations

 

2013-06-14 03:48 . 2013-06-14 03:48 -------- d-----w- c:\users\Ken\AppData\Roaming\LavasoftStatistics

 

2013-06-14 03:45 . 2013-06-14 03:50 44424 ----a-w- c:\windows\system32\sbbd.exe

 

2013-06-14 03:45 . 2013-06-14 03:50 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys

 

2013-06-14 03:45 . 2013-06-14 16:01 -------- d-----w- c:\users\Ken\AppData\Roaming\Ad-Aware Antivirus

 

2013-06-14 03:42 . 2013-06-14 03:47 -------- d-----w- c:\programdata\Spybot - Search & Destroy

 

2013-06-12 15:46 . 2013-05-08 03:40 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys

 

2013-06-12 15:46 . 2013-05-08 01:58 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

 

2013-06-12 15:46 . 2013-05-02 04:04 443904 ----a-w- c:\windows\system32\win32spl.dll

 

2013-06-12 15:46 . 2013-05-02 04:03 37376 ----a-w- c:\windows\system32\printcom.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 985600 ----a-w- c:\windows\system32\crypt32.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 98304 ----a-w- c:\windows\system32\cryptnet.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 41984 ----a-w- c:\windows\system32\certenc.dll

 

2013-06-12 15:45 . 2013-04-24 01:46 812544 ----a-w- c:\windows\system32\certutil.exe

 

2013-06-12 15:45 . 2013-05-02 22:03 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe

 

2013-06-12 15:45 . 2013-05-02 22:03 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe

 

2013-06-12 15:45 . 2013-04-17 12:30 24576 ----a-w- c:\windows\system32\cryptdlg.dll

 

2013-06-09 15:03 . 2013-06-09 15:03 -------- d-----w- c:\program files\iPod

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin5.dll

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin5.dll

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin4.dll

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin4.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin3.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin3.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin2.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin2.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin.dll

 

2013-06-09 14:56 . 2013-06-09 14:56 -------- d-----w- c:\program files\QuickTime

 

2013-06-07 01:36 . 2013-06-19 02:40 -------- d-----w- c:\program files\7-Zip

 

2013-05-28 01:35 . 2013-05-21 12:28 632656 ----a-w- c:\windows\system32\msvcr80.dll

 

2013-05-28 01:35 . 2013-05-21 12:28 554832 ----a-w- c:\windows\system32\msvcp80.dll

 

2013-05-28 01:35 . 2013-05-21 12:28 479232 ----a-w- c:\windows\system32\msvcm80.dll

 

2013-05-28 01:31 . 2013-05-28 01:31 -------- d-----w- c:\program files\DAEMON Tools Lite

 

.

 

.

 

.

 

((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

 

.

 

2013-06-12 18:53 . 2012-05-04 01:23 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe

 

2013-06-12 18:53 . 2011-08-27 14:39 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

 

2013-05-28 01:32 . 2010-04-22 16:16 466008 ----a-w- c:\windows\system32\drivers\sptd.sys

 

2013-05-18 15:17 . 2010-06-24 16:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

 

2013-05-02 06:06 . 2009-12-25 03:55 238872 ------w- c:\windows\system32\MpSigStub.exe

 

2013-05-01 07:59 . 2013-05-01 07:59 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx

 

2013-05-01 07:59 . 2013-05-01 07:59 69632 ----a-w- c:\windows\system32\QuickTime.qts

 

2013-04-27 14:01 . 2013-05-22 02:47 339784 ----a-w- c:\windows\system32\WPShellExt32.dll

 

2013-04-15 14:20 . 2013-05-15 00:12 638328 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

 

2013-04-13 10:56 . 2013-05-15 00:12 37376 ----a-w- c:\windows\system32\cdd.dll

 

2013-04-09 01:36 . 2013-05-15 00:13 2049024 ----a-w- c:\windows\system32\win32k.sys

 

2013-04-04 18:50 . 2012-09-20 21:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

 

2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\system32\GPhotos.scr

 

2013-03-25 14:57 . 2013-05-22 02:46 727952 ----a-w- c:\windows\system32\WSCM64.dll

 

2013-03-25 14:57 . 2013-05-22 02:46 153088 ----a-w- c:\windows\system32\WSCM32.dll

 

2013-03-07 14:31 . 2013-03-08 05:08 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

 

.

 

.

 

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))

 

.

 

.

 

*Note* empty entries & legit default entries are not shown

 

REGEDIT4

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]

 

2010-12-09 17:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

 

2010-12-09 17:51 3911776 ----a-w- c:\program files\Vuze_Remote\tbVuze.dll

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

 

"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

 

"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776]

 

"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]

 

[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

 

.

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

 

"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

 

"{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776]

 

"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]

 

[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

 

.

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

 

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

 

"Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192]

 

"Steam"="c:\program files\Steam\Steam.exe" [2013-02-15 1597864]

 

"Spotify Web Helper"="c:\users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-21 1104384]

 

"Spotify"="c:\users\Ken\AppData\Roaming\Spotify\Spotify.exe" [2013-06-21 4643328]

 

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]

 

"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 545552]

 

"Pogoplug Backup"="c:\program files\PogoplugBackup\Pogoplug.exe" [2012-10-31 416768]

 

"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2010-09-24 2969496]

 

"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]

 

"DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784]

 

"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]

 

"Akamai NetSession Interface"="c:\users\Ken\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

 

"WPCUMI"="c:\windows\system32\WpcUmi.exe" [2006-11-02 176128]

 

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 947152]

 

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

 

"Wondershare Helper Compact.exe"="c:\program files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2013-06-13 1743648]

 

"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2013-03-22 295512]

 

"SigmatelSysTrayApp"="sttray.exe" [2007-02-08 303104]

 

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2013-05-01 421888]

 

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-05-31 152392]

 

"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952]

 

"DivXMediaServer"="c:\program files\DivX\DivX Media Server\DivXMediaServer.exe" [2013-04-15 450560]

 

"BrowserPlugInHelper"="c:\program files\Wondershare\Video Converter Ultimate\BrowserPlugInHelper.exe" [2013-05-14 1969440]

 

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]

 

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]

 

.

 

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

 

Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2009-4-30 50688]

 

McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.1.121\SSScheduler.exe [2010-9-3 255536]

 

Wireless Configuration Utility.lnk - c:\program files\TRENDnet\TEW-424UB\WlanCU.exe [2009-12-24 499712]

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

 

"EnableUIADesktopToggle"= 0 (0x0)

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

 

"aux6"=wdmaud.drv

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

 

@="Service"

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

 

@="Service"

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3501597266-4077889590-3413061231-1000]

 

"EnableNotificationsRef"=dword:00000001

 

.

 

--- Other Services/Drivers In Memory ---

 

.

 

*NewlyCreated* - MPKSL82C6B15A

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

 

Akamai REG_MULTI_SZ    Akamai

 

LocalServiceAndNoImpersonation REG_MULTI_SZ    FontCache

 

WindowsMobile REG_MULTI_SZ    wcescomm rapimgr

 

LocalServiceRestricted REG_MULTI_SZ    WcesComm RapiMgr

 

.

 

Contents of the 'Scheduled Tasks' folder

 

.

 

2013-06-21 c:\windows\Tasks\Adobe Flash Player Updater.job

 

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 18:53]

 

.

 

2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

 

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40]

 

.

 

2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

 

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40]

 

.

 

2013-06-20 c:\windows\Tasks\ReclaimerUpdateFiles_Ken.job

 

- c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59]

 

.

 

2013-06-21 c:\windows\Tasks\ReclaimerUpdateXML_Ken.job

 

- c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59]

 

.

 

2013-06-21 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Ken.job

 

- c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59]

 

.

 

.

 

------- Supplementary Scan -------

 

.

 

 

 

uInternet Settings,ProxyOverride = <local>

 

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

 

LSP: c:\windows\system32\wpclsp.dll

 

Trusted Zone: clonewarsadventures.com

 

Trusted Zone: freerealms.com

 

Trusted Zone: real.com\rhap-app-4-0

 

Trusted Zone: real.com\rhapreg

 

Trusted Zone: rhapsody.com\rhap-app-4-0

 

Trusted Zone: rhapsody.com\rhapreg

 

Trusted Zone: soe.com

 

Trusted Zone: sony.com

 

TCP: DhcpNameServer = 72.28.160.35 72.28.160.36

 

FF - ProfilePath - c:\users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\4hdp37ux.default\

 

 

FF - prefs.js: browser.search.selectedEngine - Bing

 

FF - prefs.js: browser.search.defaulturl -

 

 

FF - prefs.js: browser.search.selectedEngine - SecureSearch

 

 

 

.

 

- - - - ORPHANS REMOVED - - - -

 

.

 

Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

 

WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

 

WebBrowser-{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A} - (no file)

 

WebBrowser-{2D922B81-34C7-4AAB-9C5D-433E79FC9445} - (no file)

 

HKLM-Run-%PROVIDERID% - bin\sprtcmd.exe

 

SafeBoot-32180213.sys

 

SafeBoot-59253419.sys

 

SafeBoot-WudfPf

 

SafeBoot-WudfRd

 

AddRemove-{2EF17083-57D4-4D64-AE4F-55F32A2C4571} - c:\programdata\Codecv\uninstall.exe

 

AddRemove-Plex - c:\program files\Plex\Plex Media Center\uninstall.exe

 

.

 

.

 

.

 

**************************************************************************

 

.

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

 

Rootkit scan 2013-06-21 19:17

 

Windows 6.0.6002 Service Pack 2 NTFS

 

.

 

scanning hidden processes ... 

 

.

 

scanning hidden autostart entries ...

 

.

 

scanning hidden files ... 

 

.

 

scan completed successfully

 

hidden files: 0

 

.

 

**************************************************************************

 

.

 

--------------------- LOCKED REGISTRY KEYS ---------------------

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

 

@Denied: (A) (Users)

 

@Denied: (A) (Everyone)

 

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

 

"BlindDial"=dword:00000000

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

 

@Denied: (A) (Users)

 

@Denied: (A) (Everyone)

 

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

 

"BlindDial"=dword:00000000

 

.

 

Completion time: 2013-06-21  19:19:20

 

ComboFix-quarantined-files.txt  2013-06-21 23:19

 

.

 

Pre-Run: 51,239,202,816 bytes free

 

Post-Run: 51,236,732,928 bytes free

 

.

 

- - End Of File - - 63B657D860221DC7BF16BCE02E5B2E53

 

5C616939100B85E558DA92B899A0FC36

 

Link to post
Share on other sites

sorry for the wait, I did try about five times to post the results but for some reason it wouldn't let me paste the file info after I copied it...I'm telling ya, this has gotta be one "Mother Brain" of a virus (i would imagine). It's even trying to keep me from getting your help on here. Freaky.

Link to post
Share on other sites

oh.....just realized after all that, that that was the wrong file. Ugh, sorry, I'm trying. Ok here ya go. Combofix.txt  --------------------------

 

 

ComboFix 13-06-21.02 - Ken 06/21/2013  19:04:45.1.2 - x86

 

Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.1982.1013 [GMT -4:00]

 

Running from: c:\users\Ken\Desktop\ComboFix.exe

 

AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}

 

SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}

 

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

 

.

 

.

 

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

 

.

 

.

 

C:\Install.exe

 

c:\program files\TelevisionFanaticEI

 

c:\program files\TelevisionFanaticEI\Installr\1.bin\64EIPlug.dll

 

c:\program files\TelevisionFanaticEI\Installr\1.bin\NP64EISb.dll

 

c:\programdata\Codecv

 

c:\programdata\Codecv\background.html

 

c:\programdata\Codecv\content.js

 

c:\programdata\Codecv\data\content.js

 

c:\programdata\Codecv\data\jsondb.js

 

c:\programdata\Codecv\jpnnbfjmbmmkploieoehdbkkjebfceae.crx

 

c:\programdata\Codecv\settings.ini

 

c:\programdata\Codecv\uninstall.exe

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome.manifest

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome\content\overlay.xul

 

c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\install.rdf

 

c:\users\Ken\AppData\Roaming\CA3206

 

c:\windows\system32\drivers\etc\hosts.ics

 

c:\windows\system32\roboot.exe

 

c:\windows\system32\system

 

c:\windows\wininit.ini

 

.

 

.

 

(((((((((((((((((((((((((   Files Created from 2013-05-21 to 2013-06-21  )))))))))))))))))))))))))))))))

 

.

 

.

 

2013-06-21 23:16 . 2013-06-21 23:17 -------- d-----w- c:\users\Ken\AppData\Local\temp

 

2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Default\AppData\Local\temp

 

2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Cass\AppData\Local\temp

 

2013-06-21 17:39 . 2013-06-21 17:39 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\MpKsl82c6b15a.sys

 

2013-06-21 16:07 . 2013-06-21 19:24 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)

 

2013-06-21 16:02 . 2013-06-17 11:08 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll

 

2013-06-21 16:02 . 2013-06-21 16:01 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll

 

2013-06-21 16:01 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\mpengine.dll

 

2013-06-20 03:51 . 2013-06-20 03:51 -------- d-----w- c:\users\Ken\AppData\Roaming\Oracle

 

2013-06-20 02:33 . 2013-06-20 02:33 -------- d-----w- c:\program files\Common Files\Java

 

2013-06-20 02:32 . 2013-06-20 02:32 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

 

2013-06-20 01:59 . 2013-06-20 01:59 -------- d-----w- c:\program files\Belarc

 

2013-06-20 00:31 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

 

2013-06-19 15:41 . 2013-06-19 15:41 -------- d-----w- C:\TDSSKiller_Quarantine

 

2013-06-19 02:35 . 2013-06-19 02:35 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1

 

2013-06-19 01:03 . 2013-06-19 01:03 -------- d-----w- c:\windows\CheckSur

 

2013-06-18 07:26 . 2013-06-18 07:26 -------- d-----w- c:\users\Ken\AppData\Local\MigWiz

 

2013-06-17 11:05 . 2013-06-17 11:05 -------- d-----w- c:\program files\Microsoft Security Client

 

2013-06-17 11:02 . 2013-06-11 04:59 7016152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{339C4D5B-747E-4CDD-94ED-43775B133887}\mpengine.dll

 

2013-06-16 19:07 . 2013-06-16 19:44 -------- d-----w- c:\users\Ken\AppData\Roaming\Systweak

 

2013-06-15 00:45 . 2013-06-15 00:46 -------- d-----w- c:\users\UpdatusUser

 

2013-06-14 18:07 . 2013-06-14 18:07 12872 ----a-w- c:\windows\system32\bootdelete.exe

 

2013-06-14 17:55 . 2013-06-14 17:55 -------- d-----w- c:\program files\HitmanPro

 

2013-06-14 17:40 . 2013-06-14 18:07 -------- d-----w- c:\programdata\HitmanPro

 

2013-06-14 17:27 . 2013-06-16 18:52 -------- d-----w- c:\users\Ken\AppData\Local\LogMeIn Rescue Applet

 

2013-06-14 04:07 . 2013-06-14 04:11 -------- d-----w- c:\programdata\Ad-Aware Antivirus

 

2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Lavasoft

 

2013-06-14 03:52 . 2013-06-14 18:12 -------- d-----w- c:\program files\Ad-Aware Antivirus

 

2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Downloaded Installations

 

2013-06-14 03:48 . 2013-06-14 03:48 -------- d-----w- c:\users\Ken\AppData\Roaming\LavasoftStatistics

 

2013-06-14 03:45 . 2013-06-14 03:50 44424 ----a-w- c:\windows\system32\sbbd.exe

 

2013-06-14 03:45 . 2013-06-14 03:50 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys

 

2013-06-14 03:45 . 2013-06-14 16:01 -------- d-----w- c:\users\Ken\AppData\Roaming\Ad-Aware Antivirus

 

2013-06-14 03:42 . 2013-06-14 03:47 -------- d-----w- c:\programdata\Spybot - Search & Destroy

 

2013-06-12 15:46 . 2013-05-08 03:40 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys

 

2013-06-12 15:46 . 2013-05-08 01:58 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

 

2013-06-12 15:46 . 2013-05-02 04:04 443904 ----a-w- c:\windows\system32\win32spl.dll

 

2013-06-12 15:46 . 2013-05-02 04:03 37376 ----a-w- c:\windows\system32\printcom.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 985600 ----a-w- c:\windows\system32\crypt32.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 98304 ----a-w- c:\windows\system32\cryptnet.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll

 

2013-06-12 15:45 . 2013-04-24 04:00 41984 ----a-w- c:\windows\system32\certenc.dll

 

2013-06-12 15:45 . 2013-04-24 01:46 812544 ----a-w- c:\windows\system32\certutil.exe

 

2013-06-12 15:45 . 2013-05-02 22:03 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe

 

2013-06-12 15:45 . 2013-05-02 22:03 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe

 

2013-06-12 15:45 . 2013-04-17 12:30 24576 ----a-w- c:\windows\system32\cryptdlg.dll

 

2013-06-09 15:03 . 2013-06-09 15:03 -------- d-----w- c:\program files\iPod

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin5.dll

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin5.dll

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin4.dll

 

2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin4.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin3.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin3.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin2.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin2.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin.dll

 

2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin.dll

 

2013-06-09 14:56 . 2013-06-09 14:56 -------- d-----w- c:\program files\QuickTime

 

2013-06-07 01:36 . 2013-06-19 02:40 -------- d-----w- c:\program files\7-Zip

 

2013-05-28 01:35 . 2013-05-21 12:28 632656 ----a-w- c:\windows\system32\msvcr80.dll

 

2013-05-28 01:35 . 2013-05-21 12:28 554832 ----a-w- c:\windows\system32\msvcp80.dll

 

2013-05-28 01:35 . 2013-05-21 12:28 479232 ----a-w- c:\windows\system32\msvcm80.dll

 

2013-05-28 01:31 . 2013-05-28 01:31 -------- d-----w- c:\program files\DAEMON Tools Lite

 

.

 

.

 

.

 

((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

 

.

 

2013-06-12 18:53 . 2012-05-04 01:23 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe

 

2013-06-12 18:53 . 2011-08-27 14:39 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

 

2013-05-28 01:32 . 2010-04-22 16:16 466008 ----a-w- c:\windows\system32\drivers\sptd.sys

 

2013-05-18 15:17 . 2010-06-24 16:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

 

2013-05-02 06:06 . 2009-12-25 03:55 238872 ------w- c:\windows\system32\MpSigStub.exe

 

2013-05-01 07:59 . 2013-05-01 07:59 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx

 

2013-05-01 07:59 . 2013-05-01 07:59 69632 ----a-w- c:\windows\system32\QuickTime.qts

 

2013-04-27 14:01 . 2013-05-22 02:47 339784 ----a-w- c:\windows\system32\WPShellExt32.dll

 

2013-04-15 14:20 . 2013-05-15 00:12 638328 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

 

2013-04-13 10:56 . 2013-05-15 00:12 37376 ----a-w- c:\windows\system32\cdd.dll

 

2013-04-09 01:36 . 2013-05-15 00:13 2049024 ----a-w- c:\windows\system32\win32k.sys

 

2013-04-04 18:50 . 2012-09-20 21:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

 

2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\system32\GPhotos.scr

 

2013-03-25 14:57 . 2013-05-22 02:46 727952 ----a-w- c:\windows\system32\WSCM64.dll

 

2013-03-25 14:57 . 2013-05-22 02:46 153088 ----a-w- c:\windows\system32\WSCM32.dll

 

2013-03-07 14:31 . 2013-03-08 05:08 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

 

.

 

.

 

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))

 

.

 

.

 

*Note* empty entries & legit default entries are not shown

 

REGEDIT4

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]

 

2010-12-09 17:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

 

2010-12-09 17:51 3911776 ----a-w- c:\program files\Vuze_Remote\tbVuze.dll

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

 

"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

 

"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776]

 

"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]

 

[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

 

.

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

 

"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

 

"{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776]

 

"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]

 

[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

 

.

 

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

 

.

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

 

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

 

"Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192]

 

"Steam"="c:\program files\Steam\Steam.exe" [2013-02-15 1597864]

 

"Spotify Web Helper"="c:\users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-21 1104384]

 

"Spotify"="c:\users\Ken\AppData\Roaming\Spotify\Spotify.exe" [2013-06-21 4643328]

 

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]

 

"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 545552]

 

"Pogoplug Backup"="c:\program files\PogoplugBackup\Pogoplug.exe" [2012-10-31 416768]

 

"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2010-09-24 2969496]

 

"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]

 

"DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784]

 

"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]

 

"Akamai NetSession Interface"="c:\users\Ken\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]

 

.

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

 

"WPCUMI"="c:\windows\system32\WpcUmi.exe" [2006-11-02 176128]

 

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 947152]

 

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

 

"Wondershare Helper Compact.exe"="c:\program files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2013-06-13 1743648]

 

"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2013-03-22 295512]

 

"SigmatelSysTrayApp"="sttray.exe" [2007-02-08 303104]

 

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2013-05-01 421888]

 

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-05-31 152392]

 

"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952]

 

"DivXMediaServer"="c:\program files\DivX\DivX Media Server\DivXMediaServer.exe" [2013-04-15 450560]

 

"BrowserPlugInHelper"="c:\program files\Wondershare\Video Converter Ultimate\BrowserPlugInHelper.exe" [2013-05-14 1969440]

 

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]

 

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]

 

.

 

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

 

Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2009-4-30 50688]

 

McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.1.121\SSScheduler.exe [2010-9-3 255536]

 

Wireless Configuration Utility.lnk - c:\program files\TRENDnet\TEW-424UB\WlanCU.exe [2009-12-24 499712]

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

 

"EnableUIADesktopToggle"= 0 (0x0)

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

 

"aux6"=wdmaud.drv

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

 

@=""

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

 

@="Service"

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

 

@="Service"

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3501597266-4077889590-3413061231-1000]

 

"EnableNotificationsRef"=dword:00000001

 

.

 

--- Other Services/Drivers In Memory ---

 

.

 

*NewlyCreated* - MPKSL82C6B15A

 

.

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

 

Akamai REG_MULTI_SZ    Akamai

 

LocalServiceAndNoImpersonation REG_MULTI_SZ    FontCache

 

WindowsMobile REG_MULTI_SZ    wcescomm rapimgr

 

LocalServiceRestricted REG_MULTI_SZ    WcesComm RapiMgr

 

.

 

Contents of the 'Scheduled Tasks' folder

 

.

 

2013-06-21 c:\windows\Tasks\Adobe Flash Player Updater.job

 

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 18:53]

 

.

 

2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

 

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40]

 

.

 

2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

 

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40]

 

.

 

2013-06-20 c:\windows\Tasks\ReclaimerUpdateFiles_Ken.job

 

- c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59]

 

.

 

2013-06-21 c:\windows\Tasks\ReclaimerUpdateXML_Ken.job

 

- c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59]

 

.

 

2013-06-21 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Ken.job

 

- c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59]

 

.

 

.

 

------- Supplementary Scan -------

 

.

 

 

 

uInternet Settings,ProxyOverride = <local>

 

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

 

LSP: c:\windows\system32\wpclsp.dll

 

Trusted Zone: clonewarsadventures.com

 

Trusted Zone: freerealms.com

 

Trusted Zone: real.com\rhap-app-4-0

 

Trusted Zone: real.com\rhapreg

 

Trusted Zone: rhapsody.com\rhap-app-4-0

 

Trusted Zone: rhapsody.com\rhapreg

 

Trusted Zone: soe.com

 

Trusted Zone: sony.com

 

TCP: DhcpNameServer = 72.28.160.35 72.28.160.36

 

FF - ProfilePath - c:\users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\4hdp37ux.default\

 

 

FF - prefs.js: browser.search.selectedEngine - Bing

 

FF - prefs.js: browser.search.defaulturl -

 

 

FF - prefs.js: browser.search.selectedEngine - SecureSearch

 

 

 

.

 

- - - - ORPHANS REMOVED - - - -

 

.

 

Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

 

WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

 

WebBrowser-{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A} - (no file)

 

WebBrowser-{2D922B81-34C7-4AAB-9C5D-433E79FC9445} - (no file)

 

HKLM-Run-%PROVIDERID% - bin\sprtcmd.exe

 

SafeBoot-32180213.sys

 

SafeBoot-59253419.sys

 

SafeBoot-WudfPf

 

SafeBoot-WudfRd

 

AddRemove-{2EF17083-57D4-4D64-AE4F-55F32A2C4571} - c:\programdata\Codecv\uninstall.exe

 

AddRemove-Plex - c:\program files\Plex\Plex Media Center\uninstall.exe

 

.

 

.

 

.

 

**************************************************************************

 

.

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

 

Rootkit scan 2013-06-21 19:17

 

Windows 6.0.6002 Service Pack 2 NTFS

 

.

 

scanning hidden processes ... 

 

.

 

scanning hidden autostart entries ...

 

.

 

scanning hidden files ... 

 

.

 

scan completed successfully

 

hidden files: 0

 

.

 

**************************************************************************

 

.

 

--------------------- LOCKED REGISTRY KEYS ---------------------

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

 

@Denied: (A) (Users)

 

@Denied: (A) (Everyone)

 

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

 

"BlindDial"=dword:00000000

 

.

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

 

@Denied: (A) (Users)

 

@Denied: (A) (Everyone)

 

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

 

"BlindDial"=dword:00000000

 

.

 

Completion time: 2013-06-21  19:19:20

 

ComboFix-quarantined-files.txt  2013-06-21 23:19

 

.

 

Pre-Run: 51,239,202,816 bytes free

 

Post-Run: 51,236,732,928 bytes free

 

.

 

- - End Of File - - 63B657D860221DC7BF16BCE02E5B2E53

 

5C616939100B85E558DA92B899A0FC36

Link to post
Share on other sites

  • Root Admin

I'm going to be in and out most of the weekend but I'll check back with you as soon as I can.


STEP 01

Please download Junkware Removal Tool to your desktop.

  • Shutdown your antivirus to avoid any conflicts.
  • Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next reply message
  • When completed make sure to re-enable your antivirus


STEP 02

Please download AdwCleaner by Xplode to your desktop.


  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • If prompted by the User Account Control click Yes to allow it to run.
  • Under Actions click on the Delete button.
  • Click OK on all prompts.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the entire contents of that logfile to your next reply.
  • You can find the logfile at C:\AdwCleaner[s1].txt where the number in brackets indicates how often it was run.


STEP 03

button_eos.gif

Please go here to run the online antivirus scannner from ESET.


  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings and ensure these options are ticked:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click Scan
  • Wait for the scan to finish
  • If any threats were found, click the 'List of found threats' , then click Export to text file....
  • Save it to your desktop, then please copy and paste that log as a reply to this topic.

 

 

Link to post
Share on other sites

ok, here are the logs you requested...

 

JRT :

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Junkware Removal Tool (JRT) by Thisisu

 

Version: 4.9.4 (05.06.2013:1)

 

OS: Windows Vista Home Premium x86

 

Ran by Ken on Sun 06/23/2013 at 20:25:57.37

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

 

~~~ Services

 

 

Successfully stopped: [service] AskService

 

Successfully deleted: [service] AskService

 

Successfully stopped: [service] AskUpgrade

 

Successfully deleted: [service] AskUpgrade

 

 

 

 

~~~ Registry Values

 

 

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\New Windows\Allow\\*.crossrider.com

 

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D}

 

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page

 

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041D03E-FD4B-44E0-B742-2D9B88305F98}

 

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{3041D03E-FD4B-44E0-B742-2D9B88305F98}

 

 

 

 

~~~ Registry Keys

 

 

Successfully deleted: [Registry Key] "HKEY_CURRENT_USER\Software\Microsoft\internet explorer\internetregistry\registry\user\S-1-5-21-3501597266-4077889590-3413061231-1000\software\web assistant"

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduitengine

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\freeze.com

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\web assistant

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduit

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduitengine

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduitsearchscopes

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\pricegong

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\toolbar

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escort.dll

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr.1

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\conduit.engine

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT2504091

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT3150609

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT3177532

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2329355B-9777-40FE-8E0B-7885E323383D}

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{8b0d31e7-0331-43cc-87cd-a472317f1305}

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf}

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}

 

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{201F27D4-3704-41D6-89C1-AA35E39143ED}

 

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}

 

Successfully deleted: [Registry Key] "hkey_current_user\software\appdatalow\askbardis"

 

 

 

 

~~~ Files

 

 

Successfully deleted: [File] "C:\end"

 

Successfully deleted: [File] C:\eula.1028.txt

 

Successfully deleted: [File] C:\eula.1031.txt

 

Successfully deleted: [File] C:\eula.1033.txt

 

Successfully deleted: [File] C:\eula.1036.txt

 

Successfully deleted: [File] C:\eula.1040.txt

 

Successfully deleted: [File] C:\eula.1041.txt

 

Successfully deleted: [File] C:\eula.1042.txt

 

Successfully deleted: [File] C:\eula.1049.txt

 

Successfully deleted: [File] C:\eula.2052.txt

 

Successfully deleted: [File] C:\install.res.1028.dll

 

Successfully deleted: [File] C:\install.res.1031.dll

 

Successfully deleted: [File] C:\install.res.1033.dll

 

Successfully deleted: [File] C:\install.res.1036.dll

 

Successfully deleted: [File] C:\install.res.1040.dll

 

Successfully deleted: [File] C:\install.res.1041.dll

 

Successfully deleted: [File] C:\install.res.1042.dll

 

Successfully deleted: [File] C:\install.res.1049.dll

 

Successfully deleted: [File] C:\install.res.2052.dll

 

Successfully deleted: [File] C:\install.res.3082.dll

 

 

 

 

~~~ Folders

 

 

Successfully deleted: [Folder] "C:\ProgramData\babylon"

 

Successfully deleted: [Folder] "C:\ProgramData\codeccheck"

 

Successfully deleted: [Folder] "C:\ProgramData\drivercure"

 

Successfully deleted: [Folder] "C:\ProgramData\installmate"

 

Successfully deleted: [Folder] "C:\ProgramData\premium"

 

Successfully deleted: [Folder] "C:\ProgramData\wecarereminder"

 

Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\babylon"

 

Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\drivercure"

 

Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\file scout"

 

Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\systweak"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\babylon"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\conduit"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\premiumplay codec-c"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\wondershare"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\babylontoolbar"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\boost_interprocess"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\codecv"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\conduit"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\conduitengine"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\pricegong"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\televisionfanaticei"

 

Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\vuze_remote"

 

Successfully deleted: [Folder] "C:\Program Files\conduit"

 

Successfully deleted: [Folder] "C:\Program Files\conduitengine"

 

Successfully deleted: [Folder] "C:\Program Files\crossriderwebapps"

 

Successfully deleted: [Folder] "C:\Program Files\file scout"

 

Successfully deleted: [Folder] "C:\Program Files\premiumplay codec-c"

 

Successfully deleted: [Folder] "C:\Program Files\vuze_remote"

 

Successfully deleted: [Folder] "C:\Program Files\wondershare"

 

Successfully deleted: [Folder] "C:\Program Files\Common Files\Wondershare"

 

Successfully deleted: [Folder] "C:\Windows\system32\ai_recyclebin"

 

Successfully deleted: [Empty Folder] C:\Users\Ken\appdata\local\{7961EBE3-B0C4-4AAD-AD71-869A144EF5BF}

 

Successfully deleted: [Empty Folder] C:\Users\Ken\appdata\local\{AFD9C368-BB43-4980-AAF3-E458839FA9BA}

 

Successfully deleted: [Empty Folder] C:\Users\Ken\appdata\local\{C5C15B8F-A785-4349-A496-9177F35A4B06}

 

Successfully deleted: [Folder] "C:\Program Files\askbardis\bar\bin"

 

Successfully deleted: [Folder] "C:\Program Files\askbardis\bar"

 

Successfully deleted: [Folder] "C:\Program Files\askbardis"

 

 

 

 

~~~ FireFox

 

 

Successfully deleted: [File] C:\user.js

 

Successfully deleted: [File] "C:\Program Files\Mozilla Firefox\searchplugins\adawaretb.xml"

 

Successfully deleted: [File] C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\extensions\{eee6c361-6118-11dc-9c72-001320c79847}.xpi

 

Successfully deleted: [File] C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\searchplugins\sweetim.xml

 

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{336D0C35-8A85-403A-B9D2-65C292C39087}

 

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}

 

Successfully deleted the following from C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\prefs.js

 

 

 

user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");

 

 

user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");

 

user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");

 

 

user_pref("sweetim.toolbar.previous.keyword.URL", "");

 

user_pref("browser.search.selectedEngine", "SecureSearch");

 

Emptied folder: C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\minidumps [2 files]

 

 

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Scan was completed on Sun 06/23/2013 at 20:28:31.43

 

End of JRT log

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

AdwCleaner : 

 

# AdwCleaner v2.303 - Logfile created 06/24/2013 at 08:07:03

 

# Updated 08/06/2013 by Xplode

 

# Operating system : Windows Vista Home Premium Service Pack 2 (32 bits)

 

# User : Ken - KEN-PC

 

# Boot Mode : Normal

 

# Running from : C:\Users\Ken\Desktop\AdwCleaner.exe

 

# Option [Delete]

 

 

 

***** [services] *****

 

 

 

***** [Files / Folders] *****

 

 

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codecv

 

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare

 

Folder Deleted : C:\ProgramData\ParetoLogic

 

Folder Deleted : C:\Users\Cass\AppData\LocalLow\Codecv

 

Folder Deleted : C:\Users\Cass\AppData\LocalLow\Conduit

 

Folder Deleted : C:\Users\Cass\AppData\LocalLow\ConduitEngine

 

Folder Deleted : C:\Users\Cass\AppData\LocalLow\Vuze_Remote

 

 

***** [Registry] *****

 

 

Key Deleted : HKCU\Software\AppDataLow\Software\bflixtoolbar

 

Key Deleted : HKCU\Software\AppDataLow\Software\Vuze_Remote

 

Key Deleted : HKCU\Software\InstallCore

 

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{2EF17083-57D4-4D64-AE4F-55F32A2C4571}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6EFDBA50-4ABE-4194-86F7-F3BD0A011F5B}_is1

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\adawaretb

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bflixtoolbar

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Vuze_Remote Toolbar

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B0DE3308-5D5A-470D-81B9-634FC078393B}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}

 

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}

 

Key Deleted : HKCU\Software\wecarereminder

 

Key Deleted : HKCU\Software\YahooPartnerToolbar

 

Key Deleted : HKLM\Software\bflixtoolbar

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

 

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}

 

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E708A355-705F-477C-A01C-61287EF8550E}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}

 

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}

 

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}

 

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

 

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8C27E4F-5753-4EF1-AFBC-2C946D6298B0}

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E708A355-705F-477C-A01C-61287EF8550E}

 

Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar

 

Key Deleted : HKLM\Software\Vuze_Remote

 

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}]

 

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}]

 

Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]

 

Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]

 

 

***** [internet Browsers] *****

 

 

-\\ Internet Explorer v9.0.8112.16490

 

 

[OK] Registry is clean.

 

 

-\\ Mozilla Firefox v19.0.2 (en-US)

 

 

File : C:\Users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\4hdp37ux.default\prefs.js

 

 

[OK] File is clean.

 

 

-\\ Google Chrome v [unable to get version]

 

 

File : C:\Users\Ken\AppData\Local\Google\Chrome\User Data\Default\Preferences

 

 

 

 

*************************

 

 

AdwCleaner[R1].txt - [7236 octets] - [24/06/2013 08:06:33]

 

AdwCleaner[s1].txt - [6287 octets] - [24/06/2013 08:07:03]

 

 

########## EOF - C:\AdwCleaner[s1].txt - [6347 octets] ##########

 

 

 

 

and finally, ESET online scanner :

 

 

 

C:\Program Files\SmileyCentral_1vEI\Installr\1.bin\1vEIPlug.dll Win32/Toolbar.MyWebSearch application

 

C:\Program Files\SmileyCentral_1vEI\Installr\1.bin\NP1vEISb.dll Win32/Toolbar.MyWebSearch application

 

C:\Program Files\Veoh Networks\VeohWebPlayer\OCSetupHlp.dll Win32/OpenCandy application

 

C:\Program Files\Veoh Networks\VeohWebPlayer\qlps-qlipso-sntb.exe Win32/Toolbar.Zugo application

 

C:\Qoobox\Quarantine\C\Program Files\TelevisionFanaticEI\Installr\1.bin\64EIPlug.dll.vir a variant of Win32/Toolbar.MyWebSearch application

 

C:\Qoobox\Quarantine\C\ProgramData\Codecv\uninstall.exe.vir Win32/Adware.MultiPlug.A application

Link to post
Share on other sites

  • Root Admin

Please run MBAM and check for updates. Then do a Quick Scan and post back the log.

Next please run the following.

Please download the following scanner from Kaspersky and save it to your computer: TDSSkiller

Then watch the following video on how to use the tool and make sure to temporarily disable your security applications before running TDSSkiller.

PC Winvids - How to run Kaspersky TDSSKiller

If any infection is found please make sure to choose SKIP and post back the log in case of a False Positive detection.

Once the tool has completed scanning make sure to re-enable your other security applications.

Link to post
Share on other sites

Malwarebytes Anti-Malware (PRO) 1.75.0.1300

www.malwarebytes.org

Database version: v2013.06.25.01

Windows Vista Service Pack 2 x86 NTFS

Internet Explorer 9.0.8112.16421

Ken :: KEN-PC [administrator]

Protection: Enabled

6/24/2013 8:46:53 PM

mbam-log-2013-06-24 (20-46-53).txt

 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P

Scan options disabled:

Objects scanned: 260995

Time elapsed: 9 minute(s), 11 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 0

(No malicious items detected)

(end)

Link to post
Share on other sites

I'm gonna try part in each reply, maybe that'll keep it from freezing...

 

 

02:42:33.0793 1212  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19

02:42:33.0855 1212  ============================================================

02:42:33.0855 1212  Current date / time: 2013/06/25 02:42:33.0855

02:42:33.0855 1212  SystemInfo:

02:42:33.0855 1212 

02:42:33.0855 1212  OS Version: 6.0.6002 ServicePack: 2.0

02:42:33.0855 1212  Product type: Workstation

02:42:33.0855 1212  ComputerName: KEN-PC

02:42:33.0855 1212  UserName: Ken

02:42:33.0855 1212  Windows directory: C:\Windows

02:42:33.0855 1212  System windows directory: C:\Windows

02:42:33.0855 1212  Processor architecture: Intel x86

02:42:33.0855 1212  Number of processors: 2

02:42:33.0855 1212  Page size: 0x1000

02:42:33.0855 1212  Boot type: Normal boot

02:42:33.0855 1212  ============================================================

02:42:33.0855 1212  BG loaded

02:42:34.0152 1212  Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

02:42:34.0167 1212  ============================================================

02:42:34.0167 1212  \Device\Harddisk0\DR0:

02:42:34.0167 1212  MBR partitions:

02:42:34.0167 1212  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B800, BlocksNum 0x1400000

02:42:34.0167 1212  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x141B800, BlocksNum 0x1BD8D000

02:42:34.0167 1212  ============================================================

02:42:34.0245 1212  C: <-> \Device\Harddisk0\DR0\Partition2

02:42:34.0308 1212  D: <-> \Device\Harddisk0\DR0\Partition1

02:42:34.0308 1212  ============================================================

02:42:34.0308 1212  Initialize success

02:42:34.0308 1212  ============================================================

02:47:35.0668 0364  ============================================================

02:47:35.0668 0364  Scan started

02:47:35.0668 0364  Mode: Manual; SigCheck; TDLFS;

02:47:35.0668 0364  ============================================================

02:47:36.0113 0364  ================ Scan system memory ========================

02:47:36.0113 0364  System memory - ok

02:47:36.0114 0364  ================ Scan services =============================

02:47:36.0274 0364  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys

02:47:36.0393 0364  ACPI - ok

02:47:36.0473 0364  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

02:47:36.0489 0364  AdobeARMservice - ok

02:47:36.0545 0364  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

02:47:36.0562 0364  AdobeFlashPlayerUpdateSvc - ok

02:47:36.0607 0364  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys

02:47:36.0630 0364  adp94xx - ok

02:47:36.0668 0364  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci         C:\Windows\system32\drivers\adpahci.sys

02:47:36.0686 0364  adpahci - ok

02:47:36.0715 0364  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys

02:47:36.0730 0364  adpu160m - ok

02:47:36.0761 0364  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320         C:\Windows\system32\drivers\adpu320.sys

02:47:36.0780 0364  adpu320 - ok

02:47:36.0850 0364  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

02:47:36.0996 0364  AeLookupSvc - ok

02:47:37.0037 0364  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys

02:47:37.0099 0364  AFD - ok

02:47:37.0128 0364  [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4 ] agp440          C:\Windows\system32\drivers\agp440.sys

02:47:37.0143 0364  agp440 - ok

02:47:37.0168 0364  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys

02:47:37.0183 0364  aic78xx - ok

02:47:37.0211 0364  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe

02:47:37.0381 0364  ALG - ok

02:47:37.0401 0364  [ E32A92E1574A467F7C762922F6162D76 ] aliide          C:\Windows\system32\drivers\aliide.sys

02:47:37.0416 0364  aliide - ok

02:47:37.0468 0364  [ 848F27E5B27C1C253F6CEFDC1A5D8F21 ] amdagp          C:\Windows\system32\drivers\amdagp.sys

02:47:37.0481 0364  amdagp - ok

02:47:37.0496 0364  [ B52B576CB0099A62F87214F371031561 ] amdide          C:\Windows\system32\drivers\amdide.sys

02:47:37.0515 0364  amdide - ok

02:47:37.0532 0364  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys

02:47:37.0766 0364  AmdK7 - ok

02:47:37.0802 0364  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys

02:47:37.0872 0364  AmdK8 - ok

02:47:37.0898 0364  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll

02:47:37.0959 0364  Appinfo - ok

02:47:38.0031 0364  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

02:47:38.0052 0364  Apple Mobile Device - ok

02:47:38.0102 0364  [ 5F673180268BB1FDB69C99B6619FE379 ] arc             C:\Windows\system32\drivers\arc.sys

02:47:38.0122 0364  arc - ok

02:47:38.0146 0364  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys

02:47:38.0169 0364  arcsas - ok

02:47:38.0223 0364  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

02:47:38.0267 0364  AsyncMac - ok

02:47:38.0306 0364  [ E03E8C99D15D0381E02743C36AFC7C6F ] atapi           C:\Windows\system32\drivers\atapi.sys

02:47:38.0330 0364  atapi - ok

02:47:38.0376 0364  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

02:47:38.0480 0364  AudioEndpointBuilder - ok

02:47:38.0530 0364  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll

02:47:38.0559 0364  Audiosrv - ok

02:47:38.0604 0364  [ CD4646067CC7DCBA1907FA0ACF7E3966 ] bcm4sbxp        C:\Windows\system32\DRIVERS\bcm4sbxp.sys

02:47:38.0666 0364  bcm4sbxp - ok

02:47:38.0725 0364  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys

02:47:38.0774 0364  Beep - ok

02:47:38.0806 0364  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll

02:47:38.0877 0364  BFE - ok

02:47:38.0914 0364  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\system32\qmgr.dll

02:47:38.0982 0364  BITS - ok

02:47:38.0993 0364  blbdrive - ok

02:47:39.0049 0364  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

02:47:39.0075 0364  Bonjour Service - ok

02:47:39.0110 0364  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

02:47:39.0168 0364  bowser - ok

02:47:39.0200 0364  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys

02:47:39.0232 0364  BrFiltLo - ok

02:47:39.0265 0364  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll

02:47:39.0305 0364  Browser - ok

02:47:39.0330 0364  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys

02:47:39.0395 0364  Brserid - ok

02:47:39.0414 0364  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys

02:47:39.0476 0364  BrSerWdm - ok

02:47:39.0495 0364  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys

02:47:39.0564 0364  BrUsbMdm - ok

02:47:39.0585 0364  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys

02:47:39.0637 0364  BrUsbSer - ok

02:47:39.0655 0364  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys

02:47:39.0714 0364  BTHMODEM - ok

02:47:39.0814 0364  catchme - ok

02:47:39.0840 0364  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

02:47:39.0878 0364  cdfs - ok

02:47:39.0903 0364  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys

02:47:39.0937 0364  cdrom - ok

02:47:39.0970 0364  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll

02:47:40.0006 0364  CertPropSvc - ok

02:47:40.0032 0364  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys

02:47:40.0094 0364  circlass - ok

02:47:40.0130 0364  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys

02:47:40.0153 0364  CLFS - ok

02:47:40.0199 0364  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

02:47:40.0216 0364  clr_optimization_v2.0.50727_32 - ok

02:47:40.0275 0364  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

02:47:40.0291 0364  clr_optimization_v4.0.30319_32 - ok

02:47:40.0317 0364  [ C177DD90B5DC1DCAA96CCECE752E6F0F ] cmdide          C:\Windows\system32\drivers\cmdide.sys

02:47:40.0331 0364  cmdide - ok

02:47:40.0348 0364  [ F66B956E390275639869A546DD1101B0 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys

02:47:40.0362 0364  Compbatt - ok

02:47:40.0370 0364  COMSysApp - ok

02:47:40.0393 0364  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys

02:47:40.0406 0364  crcdisk - ok

02:47:40.0469 0364  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys

02:47:40.0530 0364  Crusoe - ok

02:47:40.0557 0364  [ 3EDE4C1F9672C972479201544969ADCB ] CryptSvc        C:\Windows\system32\cryptsvc.dll

02:47:40.0580 0364  CryptSvc - ok

02:47:40.0642 0364  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

02:47:40.0704 0364  cvhsvc - ok

02:47:40.0754 0364  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll

02:47:40.0803 0364  DcomLaunch - ok

02:47:40.0832 0364  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

02:47:40.0887 0364  DfsC - ok

02:47:40.0973 0364  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe

02:47:41.0140 0364  DFSR - ok

02:47:41.0172 0364  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll

02:47:41.0209 0364  Dhcp - ok

02:47:41.0234 0364  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys

02:47:41.0251 0364  disk - ok

02:47:41.0285 0364  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll

02:47:41.0343 0364  Dnscache - ok

02:47:41.0411 0364  [ 1A11EF6E4606F604C479D604B81D04DB ] DokanCEDriver   C:\Program Files\PogoplugBackup\dokance.sys

02:47:41.0531 0364  DokanCEDriver - ok

02:47:41.0547 0364  [ 95F0941685F65C27C783AF301E5DAE78 ] DokanCEMounter  C:\Program Files\PogoplugBackup\dokanmnt.exe

02:47:41.0622 0364  DokanCEMounter - ok

02:47:41.0668 0364  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll

02:47:41.0707 0364  dot3svc - ok

02:47:41.0734 0364  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll

02:47:41.0778 0364  DPS - ok

02:47:41.0804 0364  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

02:47:41.0833 0364  drmkaud - ok

02:47:41.0875 0364  [ 245F62A2AA67F4A61F10174BF1017327 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe

02:47:42.0076 0364  DSBrokerService ( UnsignedFile.Multi.Generic ) - warning

02:47:42.0077 0364  DSBrokerService - detected UnsignedFile.Multi.Generic (1)

02:47:42.0121 0364  [ 413F2D5F9D802688242C23B38F767ECB ] DSproct         C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys

02:47:42.0141 0364  DSproct ( UnsignedFile.Multi.Generic ) - warning

02:47:42.0141 0364  DSproct - detected UnsignedFile.Multi.Generic (1)

02:47:42.0166 0364  [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv        C:\Windows\system32\DRIVERS\dsunidrv.sys

02:47:42.0206 0364  dsunidrv - ok

02:47:42.0250 0364  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

02:47:42.0284 0364  DXGKrnl - ok

02:47:42.0314 0364  [ 7505290504C8E2D172FA378CC0497BCC ] e1express       C:\Windows\system32\DRIVERS\e1e6032.sys

02:47:42.0387 0364  e1express - ok

02:47:42.0407 0364  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys

02:47:42.0472 0364  E1G60 - ok

02:47:42.0494 0364  EagleNT - ok

02:47:42.0520 0364  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll

02:47:42.0549 0364  EapHost - ok

02:47:42.0576 0364  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys

02:47:42.0594 0364  Ecache - ok

02:47:42.0642 0364  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

02:47:42.0675 0364  ehRecvr - ok

02:47:42.0695 0364  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe

02:47:42.0762 0364  ehSched - ok

02:47:42.0782 0364  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll

02:47:42.0802 0364  ehstart - ok

02:47:42.0828 0364  [ E8F3F21A71720C84BCF423B80028359F ] elxstor         C:\Windows\system32\drivers\elxstor.sys

02:47:42.0849 0364  elxstor - ok

02:47:42.0896 0364  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll

02:47:43.0029 0364  EMDMgmt - ok

02:47:43.0080 0364  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll

02:47:43.0115 0364  EventSystem - ok

02:47:43.0134 0364  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys

02:47:43.0185 0364  exfat - ok

02:47:43.0213 0364  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys

02:47:43.0243 0364  fastfat - ok

02:47:43.0272 0364  [ 63BDADA84951B9C03E641800E176898A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys

02:47:43.0335 0364  fdc - ok

02:47:43.0359 0364  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll

02:47:43.0389 0364  fdPHost - ok

02:47:43.0407 0364  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll

02:47:43.0468 0364  FDResPub - ok

02:47:43.0488 0364  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

02:47:43.0508 0364  FileInfo - ok

02:47:43.0532 0364  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

02:47:43.0568 0364  Filetrace - ok

02:47:43.0605 0364  [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

02:47:43.0641 0364  FLEXnet Licensing Service - ok

02:47:43.0670 0364  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys

02:47:43.0729 0364  flpydisk - ok

02:47:43.0762 0364  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

02:47:43.0781 0364  FltMgr - ok

02:47:43.0816 0364  [ 8CE364388C8ECA59B14B539179276D44 ] FontCache       C:\Windows\system32\FntCache.dll

02:47:43.0883 0364  FontCache - ok

02:47:43.0929 0364  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

02:47:43.0943 0364  FontCache3.0.0.0 - ok

02:47:43.0981 0364  [ D909075FA72C090F27AA926C32CB4612 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys

02:47:43.0994 0364  fssfltr - ok

02:47:44.0095 0364  [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe

02:47:44.0251 0364  fsssvc - ok

02:47:44.0281 0364  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

02:47:44.0316 0364  Fs_Rec - ok

02:47:44.0346 0364  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys

02:47:44.0384 0364  gagp30kx - ok

02:47:44.0428 0364  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

02:47:44.0439 0364  GEARAspiWDM - ok

02:47:44.0471 0364  [ 483924F92E55A5F9423201EC635E2CED ] gfibto          C:\Windows\system32\drivers\gfibto.sys

02:47:44.0484 0364  gfibto - ok

02:47:44.0534 0364  Giraffic - ok

02:47:44.0580 0364  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll

02:47:44.0630 0364  gpsvc - ok

02:47:44.0700 0364  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe

02:47:44.0716 0364  gupdate - ok

02:47:44.0725 0364  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe

02:47:44.0739 0364  gupdatem - ok

02:47:44.0778 0364  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

02:47:44.0796 0364  gusvc - ok

02:47:44.0821 0364  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

02:47:44.0887 0364  HdAudAddService - ok

02:47:44.0920 0364  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys

02:47:45.0017 0364  HDAudBus - ok

02:47:45.0040 0364  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys

02:47:45.0090 0364  HidBth - ok

02:47:45.0106 0364  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys

02:47:45.0162 0364  HidIr - ok

02:47:45.0188 0364  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\System32\hidserv.dll

02:47:45.0225 0364  hidserv - ok

02:47:45.0247 0364  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys

02:47:45.0269 0364  HidUsb - ok

02:47:45.0290 0364  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll

02:47:45.0335 0364  hkmsvc - ok

02:47:45.0363 0364  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys

02:47:45.0378 0364  HpCISSs - ok

02:47:45.0417 0364  [ 99F85640054BA65190B860D878A7C9AE ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys

02:47:45.0510 0364  HSF_DPV - ok

02:47:45.0540 0364  [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2        C:\Windows\system32\DRIVERS\HSXHWBS2.sys

02:47:45.0558 0364  HSXHWBS2 - ok

02:47:45.0588 0364  [ F870AA3E254628EBEAFE754108D664DE ] HTTP            C:\Windows\system32\drivers\HTTP.sys

02:47:45.0648 0364  HTTP - ok

02:47:45.0691 0364  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp           C:\Windows\system32\drivers\i2omp.sys

02:47:45.0704 0364  i2omp - ok

02:47:45.0740 0364  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys

02:47:45.0786 0364  i8042prt - ok

02:47:45.0812 0364  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys

02:47:45.0832 0364  iaStorV - ok

02:47:45.0892 0364  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

02:47:45.0900 0364  IDriverT ( UnsignedFile.Multi.Generic ) - warning

02:47:45.0901 0364  IDriverT - detected UnsignedFile.Multi.Generic (1)

02:47:45.0969 0364  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

02:47:46.0018 0364  idsvc - ok

02:47:46.0077 0364  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys

02:47:46.0091 0364  iirsp - ok

02:47:46.0132 0364  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll

02:47:46.0178 0364  IKEEXT - ok

02:47:46.0208 0364  [ 59B00EFB24EAD979BECF413703BB1FAC ] intelide        C:\Windows\system32\drivers\intelide.sys

02:47:46.0223 0364  intelide - ok

02:47:46.0240 0364  [ CE44CC04262F28216DD4341E9E36A16F ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys

02:47:46.0303 0364  intelppm - ok

02:47:46.0328 0364  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

02:47:46.0362 0364  IPBusEnum - ok

02:47:46.0397 0364  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

02:47:46.0445 0364  IpFilterDriver - ok

02:47:46.0475 0364  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

02:47:46.0522 0364  iphlpsvc - ok

02:47:46.0529 0364  IpInIp - ok

02:47:46.0575 0364  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys

02:47:46.0670 0364  IPMIDRV - ok

02:47:46.0712 0364  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys

02:47:46.0746 0364  IPNAT - ok

02:47:46.0795 0364  [ FE56897B27ED266F9C4E7D90A0B5DA47 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

02:47:46.0846 0364  iPod Service - ok

02:47:46.0908 0364  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys

02:47:46.0937 0364  IRENUM - ok

02:47:46.0970 0364  [ 2F8ECE2699E7E2070545E9B0960A8ED2 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

02:47:46.0989 0364  isapnp - ok

02:47:47.0026 0364  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys

02:47:47.0045 0364  iScsiPrt - ok

02:47:47.0071 0364  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys

02:47:47.0085 0364  iteatapi - ok

02:47:47.0116 0364  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys

02:47:47.0130 0364  iteraid - ok

02:47:47.0160 0364  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys

02:47:47.0175 0364  kbdclass - ok

02:47:47.0203 0364  [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys

02:47:47.0239 0364  kbdhid - ok

02:47:47.0267 0364  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe

02:47:47.0298 0364  KeyIso - ok

02:47:47.0340 0364  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

02:47:47.0385 0364  KSecDD - ok

02:47:47.0416 0364  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll

02:47:47.0474 0364  KtmRm - ok

02:47:47.0503 0364  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\System32\srvsvc.dll

02:47:47.0559 0364  LanmanServer - ok

02:47:47.0588 0364  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

02:47:47.0640 0364  LanmanWorkstation - ok

02:47:47.0674 0364  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

02:47:47.0716 0364  lltdio - ok

02:47:47.0773 0364  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll

02:47:47.0825 0364  lltdsvc - ok

02:47:47.0853 0364  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll

02:47:47.0905 0364  lmhosts - ok

02:47:47.0915 0364  lmimirr - ok

02:47:47.0954 0364  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys

02:47:47.0970 0364  LSI_FC - ok

02:47:47.0993 0364  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys

02:47:48.0010 0364  LSI_SAS - ok

02:47:48.0029 0364  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys

02:47:48.0044 0364  LSI_SCSI - ok

02:47:48.0070 0364  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys

02:47:48.0115 0364  luafv - ok

02:47:48.0151 0364  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys

02:47:48.0165 0364  MBAMProtector - ok

02:47:48.0204 0364  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

02:47:48.0233 0364  MBAMScheduler - ok

02:47:48.0270 0364  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

02:47:48.0317 0364  MBAMService - ok

02:47:48.0383 0364  [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe

02:47:48.0401 0364  McComponentHostService - ok

02:47:48.0422 0364  MCSTRM - ok

02:47:48.0448 0364  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

02:47:48.0476 0364  Mcx2Svc - ok

02:47:48.0500 0364  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys

02:47:48.0516 0364  mdmxsdk - ok

02:47:48.0541 0364  [ D153B14FC6598EAE8422A2037553ADCE ] megasas         C:\Windows\system32\drivers\megasas.sys

02:47:48.0555 0364  megasas - ok

02:47:48.0584 0364  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll

02:47:48.0614 0364  MMCSS - ok

02:47:48.0638 0364  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys

02:47:48.0705 0364  Modem - ok

02:47:48.0733 0364  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

02:47:48.0761 0364  monitor - ok

02:47:48.0791 0364  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys

02:47:48.0807 0364  mouclass - ok

02:47:48.0822 0364  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys

02:47:48.0858 0364  mouhid - ok

02:47:48.0880 0364  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys

02:47:48.0895 0364  MountMgr - ok

02:47:48.0933 0364  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

02:47:48.0952 0364  MozillaMaintenance - ok

02:47:48.0993 0364  [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys

02:47:49.0017 0364  MpFilter - ok

02:47:49.0045 0364  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys

02:47:49.0059 0364  mpio - ok

02:47:49.0149 0364  [ A69630D039C38018689190234F866D77 ] MpKsl080172f5   c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\MpKsl080172f5.sys

02:47:49.0219 0364  MpKsl080172f5 - ok

02:47:49.0259 0364  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

02:47:49.0294 0364  mpsdrv - ok

02:47:49.0324 0364  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll

02:47:49.0368 0364  MpsSvc - ok

02:47:49.0390 0364  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys

02:47:49.0404 0364  Mraid35x - ok

02:47:49.0437 0364  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

02:47:49.0464 0364  MRxDAV - ok

02:47:49.0490 0364  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

02:47:49.0522 0364  mrxsmb - ok

02:47:49.0563 0364  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

02:47:49.0591 0364  mrxsmb10 - ok

02:47:49.0619 0364  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

02:47:49.0635 0364  mrxsmb20 - ok

02:47:49.0663 0364  [ 2681302B63B318CBEA6C82902AC5428C ] msahci          C:\Windows\system32\drivers\msahci.sys

02:47:49.0687 0364  msahci - ok

02:47:49.0704 0364  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

02:47:49.0720 0364  msdsm - ok

02:47:49.0747 0364  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe

02:47:49.0802 0364  MSDTC - ok

02:47:49.0848 0364  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

02:47:49.0886 0364  Msfs - ok

02:47:49.0914 0364  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

02:47:49.0929 0364  msisadrv - ok

02:47:49.0956 0364  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

02:47:49.0999 0364  MSiSCSI - ok

02:47:50.0016 0364  msiserver - ok

02:47:50.0044 0364  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

02:47:50.0089 0364  MSKSSRV - ok

02:47:50.0118 0364  [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe

02:47:50.0134 0364  MsMpSvc - ok

02:47:50.0158 0364  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

02:47:50.0196 0364  MSPCLOCK - ok

02:47:50.0208 0364  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

02:47:50.0253 0364  MSPQM - ok

02:47:50.0283 0364  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

02:47:50.0303 0364  MsRPC - ok

02:47:50.0337 0364  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys

02:47:50.0351 0364  mssmbios - ok

02:47:50.0379 0364  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

02:47:50.0413 0364  MSTEE - ok

02:47:50.0438 0364  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys

02:47:50.0455 0364  Mup - ok

02:47:50.0481 0364  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll

02:47:50.0516 0364  napagent - ok

02:47:50.0551 0364  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

02:47:50.0577 0364  NativeWifiP - ok

02:47:50.0614 0364  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys

02:47:50.0646 0364  NDIS - ok

02:47:50.0694 0364  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

02:47:50.0728 0364  NdisTapi - ok

02:47:50.0756 0364  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

02:47:50.0802 0364  Ndisuio - ok

02:47:50.0838 0364  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

02:47:50.0863 0364  NdisWan - ok

02:47:50.0889 0364  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

02:47:50.0913 0364  NDProxy - ok

02:47:50.0940 0364  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

02:47:50.0980 0364  NetBIOS - ok

02:47:51.0008 0364  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys

02:47:51.0035 0364  netbt - ok

02:47:51.0049 0364  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe

02:47:51.0064 0364  Netlogon - ok

02:47:51.0097 0364  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll

02:47:51.0148 0364  Netman - ok

02:47:51.0174 0364  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll

02:47:51.0220 0364  netprofm - ok

02:47:51.0241 0364  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

02:47:51.0258 0364  NetTcpPortSharing - ok

02:47:51.0286 0364  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys

02:47:51.0301 0364  nfrd960 - ok

02:47:51.0322 0364  [ 832E098BCA8235436FE2D8AE50AC3718 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys

02:47:51.0339 0364  NisDrv - ok

02:47:51.0366 0364  [ E570ECA850F30EB740C2E9699DF3D2BD ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe

02:47:51.0390 0364  NisSrv - ok

02:47:51.0419 0364  [ 6C459D3113565D8E016E443DD5B23097 ] nk_bus          C:\Windows\system32\Drivers\nk_bus.sys

02:47:51.0447 0364  nk_bus - ok

02:47:51.0475 0364  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll

02:47:51.0524 0364  NlaSvc - ok

02:47:51.0556 0364  [ 71575EB97D4E87712DC98ECEFF575F62 ] nokusbser       C:\Windows\system32\DRIVERS\nokusbser.sys

02:47:51.0588 0364  nokusbser - ok

02:47:51.0617 0364  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys

02:47:51.0647 0364  Npfs - ok

02:47:51.0659 0364  npggsvc - ok

02:47:51.0680 0364  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll

02:47:51.0720 0364  nsi - ok

02:47:51.0750 0364  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

02:47:51.0791 0364  nsiproxy - ok

02:47:51.0857 0364  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

02:47:51.0914 0364  Ntfs - ok

02:47:51.0938 0364  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys

02:47:52.0003 0364  ntrigdigi - ok

02:47:52.0024 0364  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys

02:47:52.0069 0364  Null - ok

02:47:52.0340 0364  [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys

02:47:53.0177 0364  nvlddmkm - ok

02:47:53.0213 0364  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys

02:47:53.0229 0364  nvraid - ok

02:47:53.0261 0364  [ 1988AF02F581EE0A0A0C4D920B7E272F ] nvrd32          C:\Windows\system32\drivers\nvrd32.sys

02:47:53.0277 0364  nvrd32 - ok

02:47:53.0297 0364  [ 4A5FCAB82D9BF6AF8A023A66802FE9E9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

02:47:53.0344 0364  nvstor - ok

02:47:53.0380 0364  [ DC5F166422BEEBF195E3E4BB8AB4EE22 ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys

02:47:53.0395 0364  nvstor32 - ok

02:47:53.0438 0364  [ 31B8835B003CAA6D31BEAD83DDBF98E5 ] nvsvc           C:\Windows\system32\nvvsvc.exe

02:47:53.0481 0364  nvsvc - ok

02:47:53.0567 0364  [ 53C847F33D51E21CAC27923D18092B49 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

02:47:53.0609 0364  nvUpdatusService - ok

02:47:53.0624 0364  [ 055081FD5076401C1EE1BCAB08D81911 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

02:47:53.0641 0364  nv_agp - ok

02:47:53.0647 0364  NwlnkFlt - ok

02:47:53.0659 0364  NwlnkFwd - ok

02:47:53.0686 0364  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

02:47:53.0771 0364  ohci1394 - ok

02:47:53.0800 0364  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

02:47:53.0818 0364  ose - ok

02:47:53.0989 0364  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

02:47:54.0195 0364  osppsvc - ok

02:47:54.0236 0364  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll

02:47:54.0326 0364  p2pimsvc - ok

02:47:54.0371 0364  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll

02:47:54.0402 0364  p2psvc - ok

02:47:54.0454 0364  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys

02:47:54.0506 0364  Parport - ok

02:47:54.0536 0364  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys

02:47:54.0559 0364  partmgr - ok

02:47:54.0585 0364  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys

02:47:54.0652 0364  Parvdm - ok

02:47:54.0677 0364  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll

02:47:54.0723 0364  PcaSvc - ok

02:47:54.0751 0364  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys

02:47:54.0770 0364  pci - ok

02:47:54.0796 0364  [ B2FC76090EF1003463CCB07CABB35CFF ] pciide          C:\Windows\system32\drivers\pciide.sys

02:47:54.0813 0364  pciide - ok

02:47:54.0836 0364  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys

02:47:54.0854 0364  pcmcia - ok

02:47:54.0896 0364  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

02:47:55.0052 0364  PEAUTH - ok

02:47:55.0154 0364  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll

02:47:55.0317 0364  pla - ok

02:47:55.0350 0364  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

02:47:55.0396 0364  PlugPlay - ok

02:47:55.0437 0364  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll

02:47:55.0466 0364  PNRPAutoReg - ok

02:47:55.0512 0364  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll

02:47:55.0544 0364  PNRPsvc - ok

02:47:55.0595 0364  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

02:47:55.0639 0364  PolicyAgent - ok

02:47:55.0669 0364  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

02:47:55.0699 0364  PptpMiniport - ok

02:47:55.0728 0364  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor       C:\Windows\system32\drivers\processr.sys

02:47:55.0792 0364  Processor - ok

02:47:55.0825 0364  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll

02:47:55.0853 0364  ProfSvc - ok

02:47:55.0864 0364  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe

02:47:55.0886 0364  ProtectedStorage - ok

02:47:55.0927 0364  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys

02:47:55.0959 0364  PSched - ok

02:47:55.0986 0364  [ D24DFD16A1E2A76034DF5AA18125C35D ] PSI             C:\Windows\system32\DRIVERS\psi_mf.sys

02:47:56.0040 0364  PSI - ok

02:47:56.0065 0364  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys

02:47:56.0079 0364  PxHelp20 - ok

02:47:56.0123 0364  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys

02:47:56.0190 0364  ql2300 - ok

02:47:56.0224 0364  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys

02:47:56.0240 0364  ql40xx - ok

02:47:56.0264 0364  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll

02:47:56.0306 0364  QWAVE - ok

02:47:56.0330 0364  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

02:47:56.0355 0364  QWAVEdrv - ok

02:47:56.0426 0364  [ E642B131FB74CAF4BB8A014F31113142 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys

02:47:56.0602 0364  R300 - ok

02:47:56.0642 0364  [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll

02:47:56.0662 0364  RapiMgr - ok

02:47:56.0684 0364  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

02:47:56.0718 0364  RasAcd - ok

02:47:56.0747 0364  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll

02:47:56.0787 0364  RasAuto - ok

02:47:56.0813 0364  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

02:47:56.0854 0364  Rasl2tp - ok

02:47:56.0884 0364  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll

02:47:56.0936 0364  RasMan - ok

02:47:56.0960 0364  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

02:47:56.0990 0364  RasPppoe - ok

02:47:57.0023 0364  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

02:47:57.0042 0364  RasSstp - ok

02:47:57.0086 0364  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

02:47:57.0135 0364  rdbss - ok

02:47:57.0182 0364  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

02:47:57.0226 0364  RDPCDD - ok

02:47:57.0255 0364  [ 0245418224CFA77BF4B41C2FE0622258 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys

02:47:57.0292 0364  rdpdr - ok

02:47:57.0312 0364  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

02:47:57.0357 0364  RDPENCDD - ok

02:47:57.0389 0364  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

02:47:57.0484 0364  RDPWD - ok

02:47:57.0523 0364  [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

02:47:57.0537 0364  RealNetworks Downloader Resolver Service - ok

02:47:57.0568 0364  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll

02:47:57.0608 0364  RemoteAccess - ok

02:47:57.0637 0364  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll

02:47:57.0681 0364  RemoteRegistry - ok

02:47:57.0705 0364  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe

02:47:57.0744 0364  RpcLocator - ok

02:47:57.0765 0364  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll

02:47:57.0805 0364  RpcSs - ok

02:47:57.0832 0364  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

02:47:57.0871 0364  rspndr - ok

02:47:57.0907 0364  [ 661AF6A63DFF9F23B1DC3FB7B3E7A917 ] RTL8187B        C:\Windows\system32\DRIVERS\RTL8187B.sys

02:47:57.0965 0364  RTL8187B - ok

02:47:57.0994 0364  [ 0D60B8C10A2C5E8DD620B3FDEB1CDA64 ] RtlProt         C:\Windows\system32\DRIVERS\rtlprot.sys

02:47:58.0006 0364  RtlProt - ok

02:47:58.0021 0364  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe

02:47:58.0039 0364  SamSs - ok

02:47:58.0087 0364  [ CA57D847403633D0D97114071B59C2B2 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys

02:47:58.0110 0364  SbieDrv - ok

02:47:58.0135 0364  [ 5CC11034A2E22DFF623BC922090AEBAB ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe

02:47:58.0150 0364  SbieSvc - ok

02:47:58.0171 0364  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

02:47:58.0187 0364  sbp2port - ok

02:47:58.0212 0364  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

02:47:58.0252 0364  SCardSvr - ok

02:47:58.0284 0364  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll

02:47:58.0352 0364  Schedule - ok

02:47:58.0380 0364  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll

02:47:58.0403 0364  SCPolicySvc - ok

02:47:58.0431 0364  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

02:47:58.0511 0364  SDRSVC - ok

02:47:58.0540 0364  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys

02:47:58.0602 0364  secdrv - ok

02:47:58.0621 0364  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll

02:47:58.0675 0364  seclogon - ok

02:47:58.0763 0364  [ F70A51EB03EE7046784EF62EFCE9528E ] Secunia PSI Agent C:\Program Files\Secunia\PSI\PSIA.exe

02:47:59.0314 0364  Secunia PSI Agent - ok

02:47:59.0360 0364  [ AD56CEB08EEB517332355FDE9E5939C8 ] Secunia Update Agent C:\Program Files\Secunia\PSI\sua.exe

02:47:59.0639 0364  Secunia Update Agent - ok

02:47:59.0711 0364  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\system32\sens.dll

02:47:59.0761 0364  SENS - ok

02:47:59.0779 0364  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys

02:47:59.0844 0364  Serenum - ok

02:47:59.0862 0364  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys

02:47:59.0923 0364  Serial - ok

02:47:59.0950 0364  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys

02:48:00.0001 0364  sermouse - ok

02:48:00.0038 0364  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll

02:48:00.0070 0364  SessionEnv - ok

02:48:00.0097 0364  [ 51CF56AA8BCC241F134B420B8F850406 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

02:48:00.0141 0364  sffdisk - ok

02:48:00.0151 0364  [ 96DED8B20C734AC41641CE275250E55D ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

02:48:00.0182 0364  sffp_mmc - ok

02:48:00.0202 0364  [ 8B08CAB1267B2C377883FC9E56981F90 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

02:48:00.0215 0364  sffp_sd - ok

02:48:00.0228 0364  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys

02:48:00.0284 0364  sfloppy - ok

02:48:00.0335 0364  [ D9B734638DD8DBA9D59AAD3189CD0FAD ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys

02:48:00.0365 0364  Sftfs - ok

02:48:00.0424 0364  [ CB73BC422C07FB611F194DA18D1E7F36 ] sftlist         C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe

02:48:00.0452 0364  sftlist - ok

02:48:00.0491 0364  [ 2F61BD46C0BFF4EB36E1E359CA17BFC5 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys

02:48:00.0509 0364  Sftplay - ok

02:48:00.0521 0364  [ 518BAC0179F94304F422696B47C0EC12 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys

02:48:00.0535 0364  Sftredir - ok

02:48:00.0545 0364  [ 747325236D88B3F05FFD27FF9EC711C5 ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys

02:48:00.0558 0364  Sftvol - ok

02:48:00.0574 0364  [ A5812F0281CA5081BF696626F9BF324D ] sftvsa          C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe

02:48:00.0594 0364  sftvsa - ok

02:48:00.0622 0364  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll

02:48:00.0685 0364  SharedAccess - ok

02:48:00.0711 0364  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

02:48:00.0776 0364  ShellHWDetection - ok

02:48:00.0799 0364  [ 08072B2FB92477FC813271A84B3A8698 ] sisagp          C:\Windows\system32\drivers\sisagp.sys

02:48:00.0815 0364  sisagp - ok

02:48:00.0836 0364  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys

02:48:00.0850 0364  SiSRaid2 - ok

02:48:00.0872 0364  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys

02:48:00.0888 0364  SiSRaid4 - ok

02:48:01.0006 0364  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe

02:48:01.0157 0364  slsvc - ok

02:48:01.0195 0364  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll

02:48:01.0230 0364  SLUINotify - ok

02:48:01.0257 0364  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

02:48:01.0291 0364  Smb - ok

02:48:01.0340 0364  [ 1E715247EFFFDDA938C085913045D599 ] SMSIVZAM5       C:\PROGRA~1\VERIZO~1\VZACCE~1\SMSIVZAM5.SYS

02:48:01.0353 0364  SMSIVZAM5 - ok

02:48:01.0394 0364  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

02:48:01.0409 0364  SNMPTRAP - ok

02:48:01.0480 0364  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys

02:48:01.0495 0364  spldr - ok

02:48:01.0516 0364  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe

02:48:01.0569 0364  Spooler - ok

02:48:01.0606 0364  sprtsvc_dellsupportcenter - ok

02:48:01.0646 0364  [ 68103A2B441BBF3908EBB587F0704D6C ] sptd            C:\Windows\System32\Drivers\sptd.sys

02:48:01.0680 0364  sptd - ok

02:48:01.0712 0364  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys

02:48:01.0778 0364  srv - ok

02:48:01.0811 0364  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

02:48:01.0847 0364  srv2 - ok

02:48:01.0878 0364  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

02:48:01.0908 0364  srvnet - ok

02:48:01.0930 0364  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

02:48:01.0975 0364  SSDPSRV - ok

02:48:02.0003 0364  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll

02:48:02.0022 0364  SstpSvc - ok

02:48:02.0032 0364  Steam Client Service - ok

02:48:02.0075 0364  [ 9CEA131B5EB0EA653F6B3EA80B54956D ] STHDA           C:\Windows\system32\drivers\stwrt.sys

02:48:02.0126 0364  STHDA - ok

02:48:02.0196 0364  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll

02:48:02.0273 0364  stisvc - ok

02:48:02.0296 0364  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys

02:48:02.0311 0364  swenum - ok

02:48:02.0348 0364  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll

02:48:02.0399 0364  swprv - ok

02:48:02.0419 0364  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys

02:48:02.0434 0364  Symc8xx - ok

02:48:02.0457 0364  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys

02:48:02.0473 0364  Sym_hi - ok

02:48:02.0489 0364  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys

02:48:02.0503 0364  Sym_u3 - ok

02:48:02.0536 0364  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll

02:48:02.0606 0364  SysMain - ok

02:48:02.0633 0364  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll

02:48:02.0682 0364  TabletInputService - ok

02:48:02.0710 0364  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll

02:48:02.0749 0364  TapiSrv - ok

02:48:02.0789 0364  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll

02:48:02.0823 0364  TBS - ok

02:48:02.0876 0364  [ 078218D74C4EFC2CE7E4C6DF22A94F2F ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

02:48:02.0934 0364  Tcpip - ok

02:48:03.0011 0364  [ 078218D74C4EFC2CE7E4C6DF22A94F2F ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys

02:48:03.0049 0364  Tcpip6 - ok

02:48:03.0076 0364  [ 4C11A1820DDC37FA653913AD680ACCAE ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

02:48:03.0120 0364  tcpipreg - ok

02:48:03.0147 0364  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

02:48:03.0177 0364  TDPIPE - ok

02:48:03.0202 0364  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

02:48:03.0244 0364  TDTCP - ok

02:48:03.0268 0364  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

02:48:03.0309 0364  tdx - ok

02:48:03.0328 0364  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys

02:48:03.0346 0364  TermDD - ok

02:48:03.0396 0364  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll

02:48:03.0439 0364  TermService - ok

02:48:03.0461 0364  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll

02:48:03.0484 0364  Themes - ok

02:48:03.0504 0364  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll

02:48:03.0539 0364  THREADORDER - ok

02:48:03.0565 0364  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll

02:48:03.0605 0364  TrkWks - ok

02:48:03.0658 0364  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

02:48:03.0682 0364  TrustedInstaller - ok

02:48:03.0712 0364  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

02:48:03.0754 0364  tssecsrv - ok

02:48:03.0787 0364  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys

02:48:03.0817 0364  tunmp - ok

02:48:03.0828 0364  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

02:48:03.0861 0364  tunnel - ok

02:48:03.0890 0364  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys

02:48:03.0908 0364  uagp35 - ok

02:48:03.0945 0364  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

02:48:03.0973 0364  udfs - ok

02:48:04.0007 0364  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe

02:48:04.0051 0364  UI0Detect - ok

02:48:04.0074 0364  [ 6D72EF05921ABDF59FC45C7EBFE7E8DD ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

02:48:04.0092 0364  uliagpkx - ok

02:48:04.0115 0364  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci         C:\Windows\system32\drivers\uliahci.sys

02:48:04.0144 0364  uliahci - ok

02:48:04.0163 0364  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys

02:48:04.0193 0364  UlSata - ok

02:48:04.0209 0364  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys

02:48:04.0226 0364  ulsata2 - ok

02:48:04.0256 0364  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

02:48:04.0297 0364  umbus - ok

02:48:04.0332 0364  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll

02:48:04.0374 0364  upnphost - ok

02:48:04.0403 0364  [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys

02:48:04.0435 0364  USBAAPL - ok

02:48:04.0466 0364  [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys

02:48:04.0491 0364  usbaudio - ok

02:48:04.0516 0364  usbbus - ok

02:48:04.0533 0364  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

02:48:04.0566 0364  usbccgp - ok

02:48:04.0588 0364  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys

02:48:04.0656 0364  usbcir - ok

02:48:04.0667 0364  UsbDiag - ok

02:48:04.0702 0364  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys

02:48:04.0732 0364  usbehci - ok

02:48:04.0754 0364  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

02:48:04.0792 0364  usbhub - ok

02:48:04.0801 0364  USBModem - ok

02:48:04.0829 0364  [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys

02:48:04.0859 0364  usbohci - ok

02:48:04.0885 0364  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

02:48:04.0930 0364  usbprint - ok

02:48:04.0955 0364  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

02:48:04.0992 0364  USBSTOR - ok

02:48:05.0025 0364  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys

02:48:05.0077 0364  usbuhci - ok

02:48:05.0100 0364  [ 35C9095FA7076466AFBFC5B9EC4B779E ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys

02:48:05.0125 0364  usb_rndisx - ok

02:48:05.0158 0364  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll

02:48:05.0195 0364  UxSms - ok

02:48:05.0240 0364  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe

02:48:05.0286 0364  vds - ok

02:48:05.0324 0364  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

02:48:05.0393 0364  vga - ok

02:48:05.0421 0364  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys

02:48:05.0465 0364  VgaSave - ok

02:48:05.0480 0364  [ D5929A28BDFF4367A12CAF06AF901971 ] viaagp          C:\Windows\system32\drivers\viaagp.sys

02:48:05.0496 0364  viaagp - ok

02:48:05.0521 0364  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7           C:\Windows\system32\drivers\viac7.sys

02:48:05.0584 0364  ViaC7 - ok

02:48:05.0603 0364  [ 689547CE911998D1E0DA7A5992E025FC ] viaide          C:\Windows\system32\drivers\viaide.sys

02:48:05.0619 0364  viaide - ok

02:48:05.0649 0364  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

02:48:05.0665 0364  volmgr - ok

02:48:05.0699 0364  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

02:48:05.0724 0364  volmgrx - ok

02:48:05.0753 0364  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys

02:48:05.0777 0364  volsnap - ok

02:48:05.0804 0364  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys

02:48:05.0821 0364  vsmraid - ok

02:48:05.0870 0364  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe

02:48:05.0998 0364  VSS - ok

02:48:06.0040 0364  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll

02:48:06.0076 0364  W32Time - ok

02:48:06.0098 0364  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys

02:48:06.0162 0364  WacomPen - ok

02:48:06.0195 0364  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys

02:48:06.0235 0364  Wanarp - ok

02:48:06.0252 0364  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

02:48:06.0275 0364  Wanarpv6 - ok

02:48:06.0312 0364  [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll

02:48:06.0352 0364  WcesComm - ok

02:48:06.0414 0364  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll

02:48:06.0463 0364  wcncsvc - ok

02:48:06.0513 0364  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

02:48:06.0556 0364  WcsPlugInService - ok

02:48:06.0583 0364  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys

02:48:06.0598 0364  Wd - ok

02:48:06.0629 0364  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

02:48:06.0665 0364  Wdf01000 - ok

02:48:06.0710 0364  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll

02:48:06.0785 0364  WdiServiceHost - ok

02:48:06.0802 0364  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll

02:48:06.0836 0364  WdiSystemHost - ok

02:48:06.0867 0364  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll

02:48:06.0903 0364  WebClient - ok

02:48:06.0989 0364  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll

02:48:07.0059 0364  Wecsvc - ok

02:48:07.0087 0364  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

02:48:07.0116 0364  wercplsupport - ok

02:48:07.0176 0364  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll

02:48:07.0226 0364  WerSvc - ok

02:48:07.0277 0364  [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys

02:48:07.0363 0364  winachsf - ok

02:48:07.0473 0364  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll

02:48:07.0498 0364  WinDefend - ok

02:48:07.0512 0364  WinHttpAutoProxySvc - ok

02:48:07.0793 0364  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

02:48:07.0844 0364  Winmgmt - ok

02:48:07.0972 0364  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll

02:48:08.0119 0364  WinRM - ok

02:48:08.0170 0364  [ 676F4B665BDD8053EAA53AC1695B8074 ] WINUSB          C:\Windows\system32\DRIVERS\WinUSB.SYS

02:48:08.0260 0364  WINUSB - ok

02:48:08.0367 0364  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll

02:48:08.0450 0364  Wlansvc - ok

02:48:08.0557 0364  [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

02:48:08.0597 0364  wlcrasvc - ok

02:48:08.0941 0364  [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

02:48:09.0483 0364  wlidsvc - ok

02:48:09.0517 0364  [ E552DBABDB60866C8D4C2C0054F27469 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

02:48:09.0550 0364  WmiAcpi - ok

02:48:09.0637 0364  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

02:48:09.0671 0364  wmiApSrv - ok

02:48:09.0833 0364  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe

02:48:10.0295 0364  WMPNetworkSvc - ok

02:48:10.0350 0364  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll

02:48:10.0502 0364  WPCSvc - ok

02:48:10.0548 0364  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

02:48:10.0678 0364  WPDBusEnum - ok

02:48:10.0737 0364  [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys

02:48:10.0754 0364  WpdUsb - ok

02:48:11.0177 0364  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

02:48:11.0221 0364  WPFFontCache_v0400 - ok

02:48:11.0258 0364  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

02:48:11.0329 0364  ws2ifsl - ok

02:48:11.0400 0364  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\system32\wscsvc.dll

02:48:11.0450 0364  wscsvc - ok

02:48:11.0457 0364  WSearch - ok

02:48:11.0726 0364  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll

02:48:12.0092 0364  wuauserv - ok

02:48:12.0148 0364  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

02:48:12.0204 0364  WudfPf - ok

02:48:12.0230 0364  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

02:48:12.0248 0364  WUDFRd - ok

02:48:12.0269 0364  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

02:48:12.0299 0364  wudfsvc - ok

02:48:12.0325 0364  [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys

02:48:12.0344 0364  XAudio - ok

02:48:12.0370 0364  [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe

02:48:12.0428 0364  XAudioService - ok

02:48:12.0437 0364  XDva320 - ok

02:48:12.0447 0364  XDva391 - ok

Link to post
Share on other sites

02:48:12.0481 0364  ================ Scan global ===============================

02:48:12.0529 0364  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll

02:48:12.0575 0364  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll

02:48:12.0616 0364  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll

02:48:12.0651 0364  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe

02:48:12.0660 0364  [Global] - ok

02:48:12.0660 0364  ================ Scan MBR ==================================

02:48:12.0694 0364  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0

02:48:13.0041 0364  \Device\Harddisk0\DR0 - ok

02:48:13.0041 0364  ================ Scan VBR ==================================

02:48:13.0071 0364  [ E1F82C90BDCA99EAAA87C1817851E78F ] \Device\Harddisk0\DR0\Partition1

02:48:13.0081 0364  \Device\Harddisk0\DR0\Partition1 - ok

02:48:13.0094 0364  [ BDB0552CB3BD13371C49527CD3DAF520 ] \Device\Harddisk0\DR0\Partition2

02:48:13.0096 0364  \Device\Harddisk0\DR0\Partition2 - ok

02:48:13.0101 0364  ================ Scan active images ========================

02:48:13.0103 0364  [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys

02:48:13.0103 0364  C:\Windows\System32\drivers\crashdmp.sys - ok

02:48:13.0108 0364  [ 494075282E23D838F43A4C9FB7143959 ] C:\Windows\System32\drivers\Diskdump.sys

02:48:13.0108 0364  C:\Windows\System32\drivers\Diskdump.sys - ok

02:48:13.0118 0364  [ DC5F166422BEEBF195E3E4BB8AB4EE22 ] C:\Windows\System32\drivers\nvstor32.sys

02:48:13.0118 0364  C:\Windows\System32\drivers\nvstor32.sys - ok

02:48:13.0126 0364  [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys

02:48:13.0126 0364  C:\Windows\System32\drivers\tunnel.sys - ok

02:48:13.0136 0364  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] C:\Windows\System32\drivers\amdk8.sys

02:48:13.0136 0364  C:\Windows\System32\drivers\amdk8.sys - ok

02:48:13.0146 0364  [ CAECC0120AC49E3D2F758B9169872D38 ] C:\Windows\System32\drivers\TUNMP.SYS

02:48:13.0146 0364  C:\Windows\System32\drivers\TUNMP.SYS - ok

02:48:13.0155 0364  [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E ] C:\Windows\System32\drivers\nvlddmkm.sys

02:48:13.0155 0364  C:\Windows\System32\drivers\nvlddmkm.sys - ok

02:48:13.0167 0364  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] C:\Windows\System32\drivers\dxgkrnl.sys

02:48:13.0167 0364  C:\Windows\System32\drivers\dxgkrnl.sys - ok

02:48:13.0177 0364  [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys

02:48:13.0177 0364  C:\Windows\System32\drivers\watchdog.sys - ok

02:48:13.0186 0364  [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys

02:48:13.0186 0364  C:\Windows\System32\drivers\usbport.sys - ok

02:48:13.0196 0364  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys

02:48:13.0196 0364  C:\Windows\System32\drivers\usbehci.sys - ok

02:48:13.0204 0364  [ CE697FEE0D479290D89BEC80DFE793B7 ] C:\Windows\System32\drivers\usbohci.sys

02:48:13.0204 0364  C:\Windows\System32\drivers\usbohci.sys - ok

02:48:13.0214 0364  [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys

02:48:13.0214 0364  C:\Windows\System32\drivers\cdrom.sys - ok

02:48:13.0224 0364  [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys

02:48:13.0224 0364  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok

02:48:13.0232 0364  [ CD4646067CC7DCBA1907FA0ACF7E3966 ] C:\Windows\System32\drivers\bcm4sbxp.sys

02:48:13.0232 0364  C:\Windows\System32\drivers\bcm4sbxp.sys - ok

02:48:13.0242 0364  [ FE440536BD98AF772130DC3A6FE1915F ] C:\Windows\System32\drivers\HSXHWBS2.sys

02:48:13.0242 0364  C:\Windows\System32\drivers\HSXHWBS2.sys - ok

02:48:13.0255 0364  [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys

02:48:13.0255 0364  C:\Windows\System32\drivers\ks.sys - ok

02:48:13.0268 0364  [ 99F85640054BA65190B860D878A7C9AE ] C:\Windows\System32\drivers\HSX_DPV.sys

02:48:13.0268 0364  C:\Windows\System32\drivers\HSX_DPV.sys - ok

02:48:13.0279 0364  [ 72CC6A8CA7891031D6380DB5025C773C ] C:\Windows\System32\drivers\HSX_CNXT.sys

02:48:13.0279 0364  C:\Windows\System32\drivers\HSX_CNXT.sys - ok

02:48:13.0288 0364  [ E13B5EA0F51BA5B1512EC671393D09BA ] C:\Windows\System32\drivers\modem.sys

02:48:13.0288 0364  C:\Windows\System32\drivers\modem.sys - ok

02:48:13.0297 0364  [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys

02:48:13.0297 0364  C:\Windows\System32\drivers\hdaudbus.sys - ok

02:48:13.0314 0364  [ 6F5CA34AE885645ACF8A20D564DB976C ] C:\Windows\System32\drivers\scsiport.sys

02:48:13.0314 0364  C:\Windows\System32\drivers\scsiport.sys - ok

02:48:13.0331 0364  [ EB2708876D52F94BA199B2A8F774D50C ] \Device\3708235705

02:48:13.0331 0364  \Device\3708235705 - ok

02:48:13.0340 0364  [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys

02:48:13.0340 0364  C:\Windows\System32\drivers\msiscsi.sys - ok

02:48:13.0349 0364  [ 77937EFF009AC696B90E09F671F9D0A4 ] C:\Windows\System32\drivers\tdi.sys

02:48:13.0350 0364  C:\Windows\System32\drivers\tdi.sys - ok

02:48:13.0359 0364  [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys

02:48:13.0359 0364  C:\Windows\System32\drivers\rasl2tp.sys - ok

02:48:13.0366 0364  [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys

02:48:13.0366 0364  C:\Windows\System32\drivers\ndistapi.sys - ok

02:48:13.0377 0364  [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys

02:48:13.0377 0364  C:\Windows\System32\drivers\ndiswan.sys - ok

02:48:13.0391 0364  [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys

02:48:13.0391 0364  C:\Windows\System32\drivers\raspppoe.sys - ok

02:48:13.0404 0364  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys

02:48:13.0404 0364  C:\Windows\System32\drivers\raspptp.sys - ok

02:48:13.0415 0364  [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys

02:48:13.0415 0364  C:\Windows\System32\drivers\rassstp.sys - ok

02:48:13.0422 0364  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys

02:48:13.0422 0364  C:\Windows\System32\drivers\termdd.sys - ok

02:48:13.0432 0364  [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys

02:48:13.0432 0364  C:\Windows\System32\drivers\kbdclass.sys - ok

02:48:13.0440 0364  [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys

02:48:13.0440 0364  C:\Windows\System32\drivers\mouclass.sys - ok

02:48:13.0451 0364  [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys

02:48:13.0451 0364  C:\Windows\System32\drivers\mssmbios.sys - ok

02:48:13.0461 0364  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys

02:48:13.0461 0364  C:\Windows\System32\drivers\swenum.sys - ok

02:48:13.0469 0364  [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys

02:48:13.0469 0364  C:\Windows\System32\drivers\umbus.sys - ok

02:48:13.0485 0364  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys

02:48:13.0485 0364  C:\Windows\System32\drivers\usbhub.sys - ok

02:48:13.0492 0364  [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys

02:48:13.0492 0364  C:\Windows\System32\drivers\ndproxy.sys - ok

02:48:13.0502 0364  [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys

02:48:13.0502 0364  C:\Windows\System32\drivers\drmk.sys - ok

02:48:13.0516 0364  [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys

02:48:13.0516 0364  C:\Windows\System32\drivers\portcls.sys - ok

02:48:13.0526 0364  [ 9CEA131B5EB0EA653F6B3EA80B54956D ] C:\Windows\System32\drivers\stwrt.sys

02:48:13.0526 0364  C:\Windows\System32\drivers\stwrt.sys - ok

02:48:13.0534 0364  [ B972A66758577E0BFD1DE0F91AAA27B5 ] C:\Windows\System32\drivers\fs_rec.sys

02:48:13.0534 0364  C:\Windows\System32\drivers\fs_rec.sys - ok

02:48:13.0544 0364  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys

02:48:13.0544 0364  C:\Windows\System32\drivers\beep.sys - ok

02:48:13.0555 0364  [ 175444D3A01CA45D0E1C5DC5F48DF7CD ] C:\Windows\System32\drivers\hidparse.sys

02:48:13.0555 0364  C:\Windows\System32\drivers\hidparse.sys - ok

02:48:13.0564 0364  [ EDE59EC70E25C24581ADD1FBEC7325F7 ] C:\Windows\System32\drivers\kbdhid.sys

02:48:13.0564 0364  C:\Windows\System32\drivers\kbdhid.sys - ok

02:48:13.0577 0364  [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys

02:48:13.0577 0364  C:\Windows\System32\drivers\null.sys - ok

02:48:13.0585 0364  [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys

02:48:13.0585 0364  C:\Windows\System32\drivers\vga.sys - ok

02:48:13.0594 0364  [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys

02:48:13.0594 0364  C:\Windows\System32\drivers\videoprt.sys - ok

02:48:13.0607 0364  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys

02:48:13.0607 0364  C:\Windows\System32\drivers\RDPCDD.sys - ok

02:48:13.0610 0364  [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys

02:48:13.0610 0364  C:\Windows\System32\drivers\RDPENCDD.sys - ok

02:48:13.0620 0364  [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys

02:48:13.0621 0364  C:\Windows\System32\drivers\msfs.sys - ok

02:48:13.0629 0364  [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys

02:48:13.0629 0364  C:\Windows\System32\drivers\npfs.sys - ok

02:48:13.0638 0364  [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys

02:48:13.0638 0364  C:\Windows\System32\drivers\rasacd.sys - ok

02:48:13.0653 0364  [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys

02:48:13.0654 0364  C:\Windows\System32\drivers\tdx.sys - ok

02:48:13.0661 0364  [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys

02:48:13.0661 0364  C:\Windows\System32\drivers\smb.sys - ok

02:48:13.0672 0364  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys

02:48:13.0672 0364  C:\Windows\System32\drivers\netbt.sys - ok

02:48:13.0681 0364  [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys

02:48:13.0681 0364  C:\Windows\System32\drivers\afd.sys - ok

02:48:13.0690 0364  [ E3A3CB253C0EC2494D4A61F5E43A389C ] C:\Windows\System32\drivers\ws2ifsl.sys

02:48:13.0690 0364  C:\Windows\System32\drivers\ws2ifsl.sys - ok

02:48:13.0700 0364  [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys

02:48:13.0700 0364  C:\Windows\System32\drivers\pacer.sys - ok

02:48:13.0710 0364  [ 661AF6A63DFF9F23B1DC3FB7B3E7A917 ] C:\Windows\System32\drivers\RTL8187B.sys

02:48:13.0710 0364  C:\Windows\System32\drivers\RTL8187B.sys - ok

02:48:13.0720 0364  [ 5961CADB7CAD938368D2028725EF771D ] C:\Windows\System32\drivers\hidclass.sys

02:48:13.0720 0364  C:\Windows\System32\drivers\hidclass.sys - ok

02:48:13.0728 0364  [ CCA4B519B17E23A00B826C55716809CC ] C:\Windows\System32\drivers\hidusb.sys

02:48:13.0729 0364  C:\Windows\System32\drivers\hidusb.sys - ok

02:48:13.0743 0364  [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys

02:48:13.0743 0364  C:\Windows\System32\drivers\usbd.sys - ok

02:48:13.0756 0364  [ 93B8D4869E12CFBE663915502900876F ] C:\Windows\System32\drivers\mouhid.sys

02:48:13.0756 0364  C:\Windows\System32\drivers\mouhid.sys - ok

02:48:13.0769 0364  [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys

02:48:13.0770 0364  C:\Windows\System32\drivers\netbios.sys - ok

02:48:13.0779 0364  [ 0D60B8C10A2C5E8DD620B3FDEB1CDA64 ] C:\Windows\System32\drivers\RtlProt.sys

02:48:13.0779 0364  C:\Windows\System32\drivers\RtlProt.sys - ok

02:48:13.0796 0364  [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys

02:48:13.0796 0364  C:\Windows\System32\drivers\wanarp.sys - ok

02:48:13.0808 0364  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys

02:48:13.0808 0364  C:\Windows\System32\drivers\rdbss.sys - ok

02:48:13.0818 0364  [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys

02:48:13.0818 0364  C:\Windows\System32\drivers\dfsc.sys - ok

02:48:13.0829 0364  [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys

02:48:13.0829 0364  C:\Windows\System32\drivers\nsiproxy.sys - ok

02:48:13.0837 0364  [ DDA770BBD7C2ED024D6F50E279D90E5B ] C:\Windows\System32\ntdll.dll

02:48:13.0837 0364  C:\Windows\System32\ntdll.dll - ok

02:48:13.0845 0364  [ BE7480C91E89EB82FC080F772C220AE4 ] C:\Windows\System32\smss.exe

02:48:13.0845 0364  C:\Windows\System32\smss.exe - ok

02:48:13.0855 0364  [ 10761177A6EBE45843F443E99509F5E7 ] C:\Windows\System32\autochk.exe

02:48:13.0855 0364  C:\Windows\System32\autochk.exe - ok

02:48:13.0861 0364  [ D9728AF68C4C7693CB100B8441CBDEC6 ] C:\Windows\System32\drivers\udfs.sys

02:48:13.0861 0364  C:\Windows\System32\drivers\udfs.sys - ok

02:48:13.0874 0364  [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\System32\imagehlp.dll

02:48:13.0874 0364  C:\Windows\System32\imagehlp.dll - ok

02:48:13.0885 0364  [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll

02:48:13.0885 0364  C:\Windows\System32\lpk.dll - ok

02:48:13.0893 0364  [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\System32\shell32.dll

02:48:13.0893 0364  C:\Windows\System32\shell32.dll - ok

02:48:13.0902 0364  [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll

02:48:13.0903 0364  C:\Windows\System32\ws2_32.dll - ok

02:48:13.0913 0364  [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll

02:48:13.0913 0364  C:\Windows\System32\gdi32.dll - ok

02:48:13.0923 0364  [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll

02:48:13.0923 0364  C:\Windows\System32\ole32.dll - ok

02:48:13.0934 0364  [ 6057AA7FDF03309A18FAE4E9FCFE7D8F ] C:\Windows\System32\iertutil.dll

02:48:13.0934 0364  C:\Windows\System32\iertutil.dll - ok

02:48:13.0944 0364  [ 420B075CD71AB9E58D15DD258958FBA3 ] C:\Windows\System32\shlwapi.dll

02:48:13.0944 0364  C:\Windows\System32\shlwapi.dll - ok

02:48:13.0954 0364  [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll

02:48:13.0954 0364  C:\Windows\System32\rpcrt4.dll - ok

02:48:13.0962 0364  [ 71D8D1FD4989932674CD1F5743191286 ] C:\Windows\System32\urlmon.dll

02:48:13.0962 0364  C:\Windows\System32\urlmon.dll - ok

02:48:13.0970 0364  [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll

02:48:13.0971 0364  C:\Windows\System32\comdlg32.dll - ok

02:48:13.0985 0364  [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll

02:48:13.0985 0364  C:\Windows\System32\Wldap32.dll - ok

02:48:13.0993 0364  [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\System32\msvcrt.dll

02:48:13.0993 0364  C:\Windows\System32\msvcrt.dll - ok

02:48:14.0003 0364  [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll

02:48:14.0003 0364  C:\Windows\System32\setupapi.dll - ok

02:48:14.0015 0364  [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll

02:48:14.0015 0364  C:\Windows\System32\clbcatq.dll - ok

02:48:14.0025 0364  [ DC3105CC925A0D47F61B54E66AB730FC ] C:\Windows\System32\kernel32.dll

02:48:14.0025 0364  C:\Windows\System32\kernel32.dll - ok

02:48:14.0036 0364  [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll

02:48:14.0036 0364  C:\Windows\System32\normaliz.dll - ok

02:48:14.0050 0364  [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll

02:48:14.0050 0364  C:\Windows\System32\nsi.dll - ok

02:48:14.0056 0364  [ 6A25377A76479A0C0BF3DB6FC42FE09A ] C:\Windows\System32\wininet.dll

02:48:14.0056 0364  C:\Windows\System32\wininet.dll - ok

02:48:14.0069 0364  [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll

02:48:14.0069 0364  C:\Windows\System32\usp10.dll - ok

02:48:14.0079 0364  [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll

02:48:14.0079 0364  C:\Windows\System32\msctf.dll - ok

02:48:14.0087 0364  [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll

02:48:14.0088 0364  C:\Windows\System32\imm32.dll - ok

02:48:14.0101 0364  [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\System32\oleaut32.dll

02:48:14.0101 0364  C:\Windows\System32\oleaut32.dll - ok

02:48:14.0112 0364  [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll

02:48:14.0113 0364  C:\Windows\System32\user32.dll - ok

02:48:14.0117 0364  [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll

02:48:14.0117 0364  C:\Windows\System32\advapi32.dll - ok

02:48:14.0127 0364  [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll

02:48:14.0127 0364  C:\Windows\System32\comctl32.dll - ok

02:48:14.0134 0364  [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll

02:48:14.0134 0364  C:\Windows\System32\psapi.dll - ok

02:48:14.0148 0364  [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys

02:48:14.0148 0364  C:\Windows\System32\drivers\dxapi.sys - ok

02:48:14.0158 0364  [ C2DD5271193B4CCF11D63319DA0CA7AE ] C:\Windows\System32\win32k.sys

02:48:14.0159 0364  C:\Windows\System32\win32k.sys - ok

02:48:14.0173 0364  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll

02:48:14.0173 0364  C:\Windows\System32\basesrv.dll - ok

02:48:14.0189 0364  [ 33F84B64D4765BCDFA0AB8464122DA14 ] C:\Windows\System32\csrsrv.dll

02:48:14.0189 0364  C:\Windows\System32\csrsrv.dll - ok

02:48:14.0200 0364  [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe

02:48:14.0200 0364  C:\Windows\System32\csrss.exe - ok

02:48:14.0216 0364  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\System32\winsrv.dll

02:48:14.0216 0364  C:\Windows\System32\winsrv.dll - ok

02:48:14.0227 0364  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys

02:48:14.0227 0364  C:\Windows\System32\drivers\monitor.sys - ok

02:48:14.0238 0364  [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll

02:48:14.0238 0364  C:\Windows\System32\tsddd.dll - ok

02:48:14.0260 0364  [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll

02:48:14.0261 0364  C:\Windows\System32\userenv.dll - ok

02:48:14.0272 0364  [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe

02:48:14.0272 0364  C:\Windows\System32\wininit.exe - ok

02:48:14.0280 0364  [ D602FEDBD9155FC2DED6863FB60C950F ] C:\Windows\System32\secur32.dll

02:48:14.0281 0364  C:\Windows\System32\secur32.dll - ok

02:48:14.0290 0364  [ 12C8D6C564702B0776512932290A3F6B ] C:\Windows\System32\KBDUS.DLL

02:48:14.0290 0364  C:\Windows\System32\KBDUS.DLL - ok

02:48:14.0300 0364  [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll

02:48:14.0300 0364  C:\Windows\System32\WlS0WndH.dll - ok

02:48:14.0310 0364  [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll

02:48:14.0310 0364  C:\Windows\System32\apphelp.dll - ok

02:48:14.0335 0364  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\services.exe

02:48:14.0335 0364  C:\Windows\System32\services.exe - ok

02:48:14.0340 0364  [ 6F0D2FBABC62E39413C836B8DAE888E1 ] C:\Windows\System32\cdd.dll

02:48:14.0340 0364  C:\Windows\System32\cdd.dll - ok

02:48:14.0355 0364  [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll

02:48:14.0355 0364  C:\Windows\System32\sxs.dll - ok

02:48:14.0363 0364  [ A3E186B4B935905B829219502557314E ] C:\Windows\System32\lsass.exe

02:48:14.0363 0364  C:\Windows\System32\lsass.exe - ok

02:48:14.0382 0364  [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll

02:48:14.0382 0364  C:\Windows\System32\scesrv.dll - ok

02:48:14.0395 0364  [ 178FAC2B7C66E9A4400CE7AC37623E3F ] C:\Windows\System32\lsasrv.dll

02:48:14.0395 0364  C:\Windows\System32\lsasrv.dll - ok

02:48:14.0404 0364  [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe

02:48:14.0404 0364  C:\Windows\System32\lsm.exe - ok

02:48:14.0414 0364  [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll

02:48:14.0414 0364  C:\Windows\System32\sysntfy.dll - ok

02:48:14.0428 0364  [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll

02:48:14.0429 0364  C:\Windows\System32\wmsgapi.dll - ok

02:48:14.0437 0364  [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll

02:48:14.0437 0364  C:\Windows\System32\authz.dll - ok

02:48:14.0449 0364  [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\System32\netapi32.dll

02:48:14.0450 0364  C:\Windows\System32\netapi32.dll - ok

02:48:14.0459 0364  [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll

02:48:14.0459 0364  C:\Windows\System32\samsrv.dll - ok

02:48:14.0468 0364  [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll

02:48:14.0468 0364  C:\Windows\System32\ncobjapi.dll - ok

02:48:14.0483 0364  [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll

02:48:14.0483 0364  C:\Windows\System32\cryptdll.dll - ok

02:48:14.0495 0364  [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll

02:48:14.0495 0364  C:\Windows\System32\dnsapi.dll - ok

02:48:14.0508 0364  [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll

02:48:14.0508 0364  C:\Windows\System32\msasn1.dll - ok

02:48:14.0518 0364  [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll

02:48:14.0518 0364  C:\Windows\System32\ntdsapi.dll - ok

02:48:14.0527 0364  [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll

02:48:14.0527 0364  C:\Windows\System32\samlib.dll - ok

02:48:14.0535 0364  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] C:\Windows\System32\aelupsvc.dll

02:48:14.0536 0364  C:\Windows\System32\aelupsvc.dll - ok

02:48:14.0547 0364  [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe

02:48:14.0547 0364  C:\Windows\System32\alg.exe - ok

02:48:14.0557 0364  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll

02:48:14.0557 0364  C:\Windows\System32\appinfo.dll - ok

02:48:14.0572 0364  [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll

02:48:14.0572 0364  C:\Windows\System32\audiosrv.dll - ok

02:48:14.0580 0364  [ 54289361E9150C2D03E68AA6DEEF171F ] C:\Windows\System32\crypt32.dll

02:48:14.0580 0364  C:\Windows\System32\crypt32.dll - ok

02:48:14.0590 0364  [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll

02:48:14.0590 0364  C:\Windows\System32\feclient.dll - ok

02:48:14.0599 0364  [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll

02:48:14.0600 0364  C:\Windows\System32\mpr.dll - ok

02:48:14.0614 0364  [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe

02:48:14.0614 0364  C:\Windows\System32\winlogon.exe - ok

02:48:14.0617 0364  [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL

02:48:14.0617 0364  C:\Windows\System32\BFE.DLL - ok

02:48:14.0625 0364  [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll

02:48:14.0625 0364  C:\Windows\System32\winsta.dll - ok

02:48:14.0634 0364  [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll

02:48:14.0634 0364  C:\Windows\System32\qmgr.dll - ok

02:48:14.0648 0364  [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll

02:48:14.0648 0364  C:\Windows\System32\SLC.dll - ok

02:48:14.0655 0364  [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll

02:48:14.0655 0364  C:\Windows\System32\dhcpcsvc.dll - ok

02:48:14.0664 0364  [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL

02:48:14.0664 0364  C:\Windows\System32\IPHLPAPI.DLL - ok

02:48:14.0673 0364  [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll

02:48:14.0673 0364  C:\Windows\System32\wevtapi.dll - ok

02:48:14.0683 0364  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll

02:48:14.0683 0364  C:\Windows\System32\browser.dll - ok

02:48:14.0692 0364  [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll

02:48:14.0692 0364  C:\Windows\System32\certprop.dll - ok

02:48:14.0702 0364  [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll

02:48:14.0702 0364  C:\Windows\System32\cngaudit.dll - ok

02:48:14.0718 0364  [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll

02:48:14.0718 0364  C:\Windows\System32\dhcpcsvc6.dll - ok

02:48:14.0726 0364  [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll

02:48:14.0726 0364  C:\Windows\System32\winnsi.dll - ok

02:48:14.0735 0364  [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll

02:48:14.0735 0364  C:\Windows\System32\comres.dll - ok

02:48:14.0746 0364  [ 13CC59C1B04E9F20A87987C68CD4BE3F ] C:\Windows\System32\ncrypt.dll

02:48:14.0746 0364  C:\Windows\System32\ncrypt.dll - ok

02:48:14.0767 0364  [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll

02:48:14.0767 0364  C:\Windows\System32\bcrypt.dll - ok

02:48:14.0776 0364  [ 3EDE4C1F9672C972479201544969ADCB ] C:\Windows\System32\cryptsvc.dll

02:48:14.0776 0364  C:\Windows\System32\cryptsvc.dll - ok

02:48:14.0783 0364  [ 74F380C8EC8813626C670D46E8A714D1 ] C:\Windows\System32\dfsrres.dll

02:48:14.0784 0364  C:\Windows\System32\dfsrres.dll - ok

02:48:14.0793 0364  [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll

02:48:14.0793 0364  C:\Windows\System32\oleres.dll - ok

02:48:14.0809 0364  [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll

02:48:14.0809 0364  C:\Windows\System32\credssp.dll - ok

02:48:14.0819 0364  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll

02:48:14.0819 0364  C:\Windows\System32\dot3svc.dll - ok

02:48:14.0828 0364  [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll

02:48:14.0828 0364  C:\Windows\System32\kerberos.dll - ok

02:48:14.0837 0364  [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll

02:48:14.0837 0364  C:\Windows\System32\msprivs.dll - ok

02:48:14.0851 0364  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll

02:48:14.0851 0364  C:\Windows\System32\dps.dll - ok

02:48:14.0858 0364  [ 9BE3744D295A7701EB425332014F0797 ] C:\Windows\ehome\ehrecvr.exe

02:48:14.0858 0364  C:\Windows\ehome\ehrecvr.exe - ok

02:48:14.0866 0364  [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll

02:48:14.0866 0364  C:\Windows\System32\eapsvc.dll - ok

02:48:14.0877 0364  [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll

02:48:14.0877 0364  C:\Windows\System32\wship6.dll - ok

02:48:14.0887 0364  [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL

02:48:14.0887 0364  C:\Windows\System32\WSHTCPIP.DLL - ok

02:48:14.0895 0364  [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll

02:48:14.0895 0364  C:\Windows\System32\wshqos.dll - ok

02:48:14.0906 0364  [ D4152EB9099917EE50329447EAC0BD62 ] C:\Windows\System32\atmfd.dll

02:48:14.0906 0364  C:\Windows\System32\atmfd.dll - ok

02:48:14.0922 0364  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll

02:48:14.0923 0364  C:\Windows\System32\nlasvc.dll - ok

02:48:14.0933 0364  [ AD1870C8E5D6DD340C829E6074BF3C3F ] C:\Windows\ehome\ehsched.exe

02:48:14.0933 0364  C:\Windows\ehome\ehsched.exe - ok

02:48:14.0948 0364  [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll

02:48:14.0948 0364  C:\Windows\System32\mswsock.dll - ok

02:48:14.0961 0364  [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll

02:48:14.0961 0364  C:\Windows\System32\NapiNSP.dll - ok

02:48:14.0973 0364  [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll

02:48:14.0973 0364  C:\Windows\System32\pnrpnsp.dll - ok

02:48:14.0985 0364  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] C:\Windows\ehome\ehstart.dll

02:48:14.0985 0364  C:\Windows\ehome\ehstart.dll - ok

02:48:14.0995 0364  [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll

02:48:14.0995 0364  C:\Windows\System32\msv1_0.dll - ok

02:48:15.0010 0364  [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll

02:48:15.0010 0364  C:\Windows\System32\emdmgmt.dll - ok

02:48:15.0022 0364  [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll

02:48:15.0023 0364  C:\Windows\System32\netlogon.dll - ok

02:48:15.0034 0364  [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll

02:48:15.0034 0364  C:\Windows\System32\wevtsvc.dll - ok

02:48:15.0044 0364  [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll

02:48:15.0044 0364  C:\Windows\System32\winbrand.dll - ok

02:48:15.0052 0364  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] C:\Windows\System32\fdPHost.dll

02:48:15.0052 0364  C:\Windows\System32\fdPHost.dll - ok

02:48:15.0067 0364  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] C:\Windows\System32\FDResPub.dll

02:48:15.0067 0364  C:\Windows\System32\FDResPub.dll - ok

02:48:15.0078 0364  [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll

02:48:15.0079 0364  C:\Windows\System32\FntCache.dll - ok

02:48:15.0087 0364  [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\System32\schannel.dll

02:48:15.0087 0364  C:\Windows\System32\schannel.dll - ok

02:48:15.0095 0364  [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll

02:48:15.0095 0364  C:\Windows\System32\wdigest.dll - ok

02:48:15.0104 0364  [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll

02:48:15.0104 0364  C:\Windows\System32\rsaenh.dll - ok

02:48:15.0115 0364  [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll

02:48:15.0115 0364  C:\Windows\System32\TSpkg.dll - ok

02:48:15.0125 0364  [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll

02:48:15.0125 0364  C:\Windows\System32\gpapi.dll - ok

02:48:15.0129 0364  [ 302964DCAC79D618CC7B72C778DA9FD2 ] C:\Windows\System32\PresentationHost.exe

02:48:15.0129 0364  C:\Windows\System32\PresentationHost.exe - ok

02:48:15.0139 0364  [ 84067081F3318162797385E11A8F0582 ] C:\Windows\System32\hidserv.dll

02:48:15.0139 0364  C:\Windows\System32\hidserv.dll - ok

02:48:15.0158 0364  [ D8AD255B37DA92434C26E4876DB7D418 ] C:\Windows\System32\KMSVC.DLL

02:48:15.0158 0364  C:\Windows\System32\KMSVC.DLL - ok

02:48:15.0168 0364  [ 05586F5438AB0DA4F5149159E0E5FD4B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll

02:48:15.0168 0364  C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok

02:48:15.0179 0364  [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL

02:48:15.0179 0364  C:\Windows\System32\IKEEXT.DLL - ok

02:48:15.0192 0364  [ 9AC218C6E6105477484C6FDBE7D409A4 ] C:\Windows\System32\IPBusEnum.dll

02:48:15.0192 0364  C:\Windows\System32\IPBusEnum.dll - ok

02:48:15.0205 0364  [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll

02:48:15.0205 0364  C:\Windows\System32\rascfg.dll - ok

02:48:15.0213 0364  [ 1998BD97F950680BB55F55A7244679C2 ] C:\Windows\System32\iphlpsvc.dll

02:48:15.0213 0364  C:\Windows\System32\iphlpsvc.dll - ok

02:48:15.0222 0364  [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll

02:48:15.0222 0364  C:\Windows\System32\keyiso.dll - ok

02:48:15.0231 0364  [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll

02:48:15.0231 0364  C:\Windows\System32\srvsvc.dll - ok

02:48:15.0241 0364  [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll

02:48:15.0241 0364  C:\Windows\System32\wkssvc.dll - ok

02:48:15.0252 0364  [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll

02:48:15.0252 0364  C:\Windows\ehome\ehres.dll - ok

02:48:15.0260 0364  [ FA0593D936C9B95FB6FAA32AD1595D49 ] C:\Windows\System32\lltdres.dll

02:48:15.0260 0364  C:\Windows\System32\lltdres.dll - ok

02:48:15.0269 0364  [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll

02:48:15.0269 0364  C:\Windows\System32\lmhsvc.dll - ok

02:48:15.0282 0364  [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll

02:48:15.0282 0364  C:\Windows\System32\FirewallAPI.dll - ok

02:48:15.0293 0364  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll

02:48:15.0293 0364  C:\Windows\System32\mmcss.dll - ok

02:48:15.0300 0364  [ EA822412BBBA9B7D2B1A3748AD50EFB8 ] C:\Windows\System32\iscsidsc.dll

02:48:15.0300 0364  C:\Windows\System32\iscsidsc.dll - ok

02:48:15.0310 0364  [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll

02:48:15.0311 0364  C:\Windows\System32\msimsg.dll - ok

02:48:15.0320 0364  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL

02:48:15.0320 0364  C:\Windows\System32\QAGENTRT.DLL - ok

02:48:15.0330 0364  [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll

02:48:15.0330 0364  C:\Windows\System32\netman.dll - ok

02:48:15.0338 0364  [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll

02:48:15.0338 0364  C:\Windows\System32\netprof.dll - ok

02:48:15.0352 0364  [ 983B356504D443E61B9012EA9F36496B ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll

02:48:15.0352 0364  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok

02:48:15.0362 0364  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll

02:48:15.0362 0364  C:\Windows\System32\nsisvc.dll - ok

02:48:15.0371 0364  [ 0C8E8E61AD1EB0B250B846712C917506 ] C:\Windows\System32\p2psvc.dll

02:48:15.0371 0364  C:\Windows\System32\p2psvc.dll - ok

02:48:15.0380 0364  [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll

02:48:15.0380 0364  C:\Windows\System32\pcasvc.dll - ok

02:48:15.0389 0364  [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll

02:48:15.0389 0364  C:\Windows\System32\pla.dll - ok

02:48:15.0398 0364  [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll

02:48:15.0398 0364  C:\Windows\System32\umpnpmgr.dll - ok

02:48:15.0412 0364  [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll

02:48:15.0412 0364  C:\Windows\System32\polstore.dll - ok

02:48:15.0420 0364  [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll

02:48:15.0420 0364  C:\Windows\System32\profsvc.dll - ok

02:48:15.0429 0364  [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll

02:48:15.0429 0364  C:\Windows\System32\psbase.dll - ok

02:48:15.0438 0364  [ E9ECAE663F47E6CB43962D18AB18890F ] C:\Windows\System32\qwave.dll

02:48:15.0438 0364  C:\Windows\System32\qwave.dll - ok

02:48:15.0458 0364  [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys

02:48:15.0458 0364  C:\Windows\System32\drivers\qwavedrv.sys - ok

02:48:15.0468 0364  [ 8F97D374AD1857E1EED85A79F29A1D3D ] C:\Windows\WindowsMobile\rapimgr.dll

02:48:15.0468 0364  C:\Windows\WindowsMobile\rapimgr.dll - ok

02:48:15.0478 0364  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll

02:48:15.0478 0364  C:\Windows\System32\rasauto.dll - ok

02:48:15.0489 0364  [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll

02:48:15.0489 0364  C:\Windows\System32\rasmans.dll - ok

02:48:15.0501 0364  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll

02:48:15.0502 0364  C:\Windows\System32\sstpsvc.dll - ok

02:48:15.0508 0364  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll

02:48:15.0508 0364  C:\Windows\System32\mprdim.dll - ok

02:48:15.0518 0364  [ 5123F83CBC4349D065534EEB6BBDC42B ] C:\Windows\System32\Locator.exe

02:48:15.0518 0364  C:\Windows\System32\Locator.exe - ok

02:48:15.0525 0364  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] C:\Windows\System32\regsvc.dll

02:48:15.0525 0364  C:\Windows\System32\regsvc.dll - ok

02:48:15.0537 0364  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll

02:48:15.0537 0364  C:\Windows\System32\SCardSvr.dll - ok

02:48:15.0550 0364  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll

02:48:15.0550 0364  C:\Windows\System32\schedsvc.dll - ok

02:48:15.0561 0364  [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll

02:48:15.0561 0364  C:\Windows\System32\sdrsvc.dll - ok

02:48:15.0572 0364  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll

02:48:15.0573 0364  C:\Windows\System32\seclogon.dll - ok

02:48:15.0583 0364  [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll

02:48:15.0583 0364  C:\Windows\System32\Sens.dll - ok

02:48:15.0593 0364  [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll

02:48:15.0593 0364  C:\Windows\System32\SessEnv.dll - ok

02:48:15.0608 0364  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] C:\Windows\System32\ipnathlp.dll

02:48:15.0609 0364  C:\Windows\System32\ipnathlp.dll - ok

02:48:15.0618 0364  [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll

02:48:15.0618 0364  C:\Windows\System32\shsvcs.dll - ok

02:48:15.0630 0364  [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe

02:48:15.0630 0364  C:\Windows\System32\SLsvc.exe - ok

02:48:15.0635 0364  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll

02:48:15.0635 0364  C:\Windows\System32\SLUINotify.dll - ok

02:48:15.0643 0364  [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll

02:48:15.0643 0364  C:\Windows\System32\tcpipcfg.dll - ok

02:48:15.0651 0364  [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe

02:48:15.0651 0364  C:\Windows\System32\snmptrap.exe - ok

02:48:15.0660 0364  [ 8554097E5136C3BF9F69FE578A1B35F4 ] C:\Windows\System32\spoolsv.exe

02:48:15.0660 0364  C:\Windows\System32\spoolsv.exe - ok

02:48:15.0671 0364  [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll

02:48:15.0671 0364  C:\Windows\System32\ssdpsrv.dll - ok

02:48:15.0689 0364  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll

02:48:15.0689 0364  C:\Windows\System32\wiaservc.dll - ok

02:48:15.0694 0364  [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll

02:48:15.0694 0364  C:\Windows\System32\swprv.dll - ok

02:48:15.0708 0364  [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll

02:48:15.0708 0364  C:\Windows\System32\sysmain.dll - ok

02:48:15.0715 0364  [ 2DCA225EAE15F42C0933E998EE0231C3 ] C:\Windows\System32\TabSvc.dll

02:48:15.0715 0364  C:\Windows\System32\TabSvc.dll - ok

02:48:15.0725 0364  [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll

02:48:15.0725 0364  C:\Windows\System32\tapisrv.dll - ok

02:48:15.0732 0364  [ CB05822CD9CC6C688168E113C603DBE7 ] C:\Windows\System32\tbssvc.dll

02:48:15.0733 0364  C:\Windows\System32\tbssvc.dll - ok

02:48:15.0742 0364  [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll

02:48:15.0742 0364  C:\Windows\System32\termsrv.dll - ok

02:48:15.0756 0364  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] C:\Windows\System32\trkwks.dll

02:48:15.0756 0364  C:\Windows\System32\trkwks.dll - ok

02:48:15.0764 0364  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe

02:48:15.0764 0364  C:\Windows\servicing\TrustedInstaller.exe - ok

02:48:15.0772 0364  [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe

02:48:15.0772 0364  C:\Windows\System32\UI0Detect.exe - ok

02:48:15.0784 0364  [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll

02:48:15.0784 0364  C:\Windows\System32\upnphost.dll - ok

02:48:15.0793 0364  [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe

02:48:15.0793 0364  C:\Windows\System32\dwm.exe - ok

02:48:15.0802 0364  [ CD88D1B7776DC17A119049742EC07EB4 ] C:\Windows\System32\vds.exe

02:48:15.0802 0364  C:\Windows\System32\vds.exe - ok

02:48:15.0819 0364  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe

02:48:15.0819 0364  C:\Windows\System32\VSSVC.exe - ok

02:48:15.0833 0364  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll

02:48:15.0833 0364  C:\Windows\System32\w32time.dll - ok

02:48:15.0841 0364  [ 59E19BD13C3BDB857646B9E436BA27F7 ] C:\Windows\WindowsMobile\wcescomm.dll

02:48:15.0842 0364  C:\Windows\WindowsMobile\wcescomm.dll - ok

02:48:15.0851 0364  [ A3CD60FD826381B49F03832590E069AF ] C:\Windows\System32\wcncsvc.dll

02:48:15.0851 0364  C:\Windows\System32\wcncsvc.dll - ok

02:48:15.0863 0364  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] C:\Windows\System32\drivers\Wdf01000.sys

02:48:15.0863 0364  C:\Windows\System32\drivers\Wdf01000.sys - ok

02:48:15.0875 0364  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll

02:48:15.0875 0364  C:\Windows\System32\WcsPlugInService.dll - ok

02:48:15.0884 0364  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll

02:48:15.0884 0364  C:\Windows\System32\wdi.dll - ok

02:48:15.0893 0364  [ 04C37D8107320312FBAE09926103D5E2 ] C:\Windows\System32\WebClnt.dll

02:48:15.0893 0364  C:\Windows\System32\WebClnt.dll - ok

02:48:15.0907 0364  [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll

02:48:15.0907 0364  C:\Windows\System32\wecsvc.dll - ok

02:48:15.0917 0364  [ 670FF720071ED741206D69BD995EA453 ] C:\Windows\System32\wercplsupport.dll

02:48:15.0917 0364  C:\Windows\System32\wercplsupport.dll - ok

02:48:15.0926 0364  [ 62DB790A860CDFC4278D2F03CC5675D8 ] C:\Program Files\Windows Defender\MsMpRes.dll

02:48:15.0926 0364  C:\Program Files\Windows Defender\MsMpRes.dll - ok

02:48:15.0935 0364  [ 32B88481D3B326DA6DEB07B1D03481E7 ] C:\Windows\System32\wersvc.dll

02:48:15.0935 0364  C:\Windows\System32\wersvc.dll - ok

02:48:15.0948 0364  [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\System32\winhttp.dll

02:48:15.0949 0364  C:\Windows\System32\winhttp.dll - ok

02:48:15.0957 0364  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll

02:48:15.0957 0364  C:\Windows\System32\wbem\WMIsvc.dll - ok

02:48:15.0966 0364  [ 7CFE68BDC065E55AA5E8421607037511 ] C:\Windows\System32\WsmSvc.dll

02:48:15.0966 0364  C:\Windows\System32\WsmSvc.dll - ok

02:48:15.0977 0364  [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll

02:48:15.0977 0364  C:\Windows\System32\wlansvc.dll - ok

02:48:15.0991 0364  [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe

02:48:15.0991 0364  C:\Windows\System32\wbem\WmiApSrv.exe - ok

02:48:16.0003 0364  [ 3978704576A121A9204F8CC49A301A9B ] C:\Program Files\Windows Media Player\wmpnetwk.exe

02:48:16.0003 0364  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok

02:48:16.0014 0364  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] C:\Windows\System32\wpcsvc.dll

02:48:16.0014 0364  C:\Windows\System32\wpcsvc.dll - ok

02:48:16.0026 0364  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

02:48:16.0026 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok

02:48:16.0039 0364  [ 801FBDB89D472B3C467EB112A0FC9246 ] C:\Windows\System32\wpdbusenum.dll

02:48:16.0040 0364  C:\Windows\System32\wpdbusenum.dll - ok

02:48:16.0048 0364  [ AED0DFF80C6B3914769407E78D7AB21A ] C:\Windows\System32\SearchIndexer.exe

02:48:16.0048 0364  C:\Windows\System32\SearchIndexer.exe - ok

02:48:16.0062 0364  [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll

02:48:16.0062 0364  C:\Windows\System32\wscsvc.dll - ok

02:48:16.0072 0364  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll

02:48:16.0072 0364  C:\Windows\System32\wuaueng.dll - ok

02:48:16.0081 0364  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] C:\Windows\System32\drivers\WUDFPf.sys

02:48:16.0081 0364  C:\Windows\System32\drivers\WUDFPf.sys - ok

02:48:16.0091 0364  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] C:\Windows\System32\WUDFSvc.dll

02:48:16.0091 0364  C:\Windows\System32\WUDFSvc.dll - ok

02:48:16.0106 0364  [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll

02:48:16.0107 0364  C:\Windows\System32\scecli.dll - ok

02:48:16.0117 0364  [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll

02:48:16.0117 0364  C:\Windows\System32\ntmarta.dll - ok

02:48:16.0132 0364  [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll

02:48:16.0133 0364  C:\Windows\System32\powrprof.dll - ok

02:48:16.0137 0364  [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe

02:48:16.0137 0364  C:\Windows\System32\svchost.exe - ok

02:48:16.0146 0364  [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys

02:48:16.0147 0364  C:\Windows\System32\drivers\luafv.sys - ok

02:48:16.0157 0364  [ 4470E3C1E0C3378E4CAB137893C12C3A ] C:\Windows\System32\drivers\mbam.sys

02:48:16.0157 0364  C:\Windows\System32\drivers\mbam.sys - ok

02:48:16.0167 0364  [ 747325236D88B3F05FFD27FF9EC711C5 ] C:\Windows\System32\drivers\Sftvollh.sys

02:48:16.0167 0364  C:\Windows\System32\drivers\Sftvollh.sys - ok

02:48:16.0181 0364  [ 31B8835B003CAA6D31BEAD83DDBF98E5 ] C:\Windows\System32\nvvsvc.exe

02:48:16.0182 0364  C:\Windows\System32\nvvsvc.exe - ok

02:48:16.0189 0364  [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll

02:48:16.0190 0364  C:\Windows\System32\wtsapi32.dll - ok

02:48:16.0199 0364  [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll

02:48:16.0199 0364  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok

02:48:16.0210 0364  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll

02:48:16.0211 0364  C:\Windows\System32\rpcss.dll - ok

02:48:16.0218 0364  [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll

02:48:16.0218 0364  C:\Windows\System32\version.dll - ok

02:48:16.0229 0364  [ DD1D685D387A8AC666BA3B7539C774E8 ] C:\Windows\System32\wpclsp.dll

02:48:16.0229 0364  C:\Windows\System32\wpclsp.dll - ok

02:48:16.0239 0364  [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe

02:48:16.0239 0364  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok

02:48:16.0253 0364  [ F556912E70B22D740C9C99E310E3C11F ] C:\Program Files\Microsoft Security Client\MpSvc.dll

02:48:16.0253 0364  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok

02:48:16.0263 0364  [ 3D9381A332E4373F8811C71BA5078B31 ] C:\Program Files\Microsoft Security Client\MpClient.dll

02:48:16.0263 0364  C:\Program Files\Microsoft Security Client\MpClient.dll - ok

02:48:16.0272 0364  [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe

02:48:16.0272 0364  C:\Windows\System32\LogonUI.exe - ok

02:48:16.0286 0364  [ B2E569EF26DAC9D6994A2AFF4F601B7A ] C:\Windows\System32\wintrust.dll

02:48:16.0286 0364  C:\Windows\System32\wintrust.dll - ok

02:48:16.0296 0364  [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll

02:48:16.0296 0364  C:\Windows\System32\authui.dll - ok

02:48:16.0306 0364  [ 4575AA12561C5648483403541D0D7F2B ] C:\Program Files\Windows Defender\MpSvc.dll

02:48:16.0306 0364  C:\Program Files\Windows Defender\MpSvc.dll - ok

02:48:16.0315 0364  [ 1BD363738B672A394EBE3B8A78EAB9D3 ] C:\Program Files\Windows Defender\MpClient.dll

02:48:16.0315 0364  C:\Program Files\Windows Defender\MpClient.dll - ok

02:48:16.0324 0364  [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll

02:48:16.0325 0364  C:\Windows\System32\msimg32.dll - ok

02:48:16.0332 0364  [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll

02:48:16.0332 0364  C:\Windows\System32\uxtheme.dll - ok

02:48:16.0345 0364  [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll

02:48:16.0345 0364  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok

02:48:16.0356 0364  [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll

02:48:16.0356 0364  C:\Windows\System32\duser.dll - ok

02:48:16.0365 0364  [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\System32\xmllite.dll

02:48:16.0365 0364  C:\Windows\System32\xmllite.dll - ok

02:48:16.0376 0364  [ 118D81523EA80B9E252CB840E94754C6 ] C:\Program Files\Microsoft Security Client\EppManifest.dll

02:48:16.0376 0364  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok

02:48:16.0394 0364  [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll

02:48:16.0394 0364  C:\Windows\System32\SmartcardCredentialProvider.dll - ok

02:48:16.0401 0364  [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll

02:48:16.0401 0364  C:\Windows\System32\rasplap.dll - ok

02:48:16.0411 0364  [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll

02:48:16.0411 0364  C:\Windows\System32\rasapi32.dll - ok

02:48:16.0422 0364  [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll

02:48:16.0422 0364  C:\Windows\System32\rasman.dll - ok

02:48:16.0429 0364  [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll

02:48:16.0430 0364  C:\Windows\System32\tapi32.dll - ok

02:48:16.0442 0364  [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll

02:48:16.0442 0364  C:\Windows\System32\rtutils.dll - ok

02:48:16.0452 0364  [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\System32\winmm.dll

02:48:16.0452 0364  C:\Windows\System32\winmm.dll - ok

02:48:16.0460 0364  [ AA87D7709021503687326432DC59590D ] C:\Program Files\Microsoft Security Client\MpRTP.dll

02:48:16.0460 0364  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok

02:48:16.0474 0364  [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\System32\oleacc.dll

02:48:16.0474 0364  C:\Windows\System32\oleacc.dll - ok

02:48:16.0485 0364  [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll

02:48:16.0486 0364  C:\Windows\System32\MMDevAPI.dll - ok

02:48:16.0493 0364  [ EE38212D3630819A6293A5BAE2D5C9A8 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll

02:48:16.0493 0364  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok

02:48:16.0505 0364  [ A9542FF2E9A82CF100E5729EC79068F0 ] C:\Windows\System32\fltLib.dll

02:48:16.0506 0364  C:\Windows\System32\fltLib.dll - ok

02:48:16.0515 0364  [ CF105EE42E3F71E648CEBB3F666E1CF0 ] C:\Windows\System32\drivers\MpFilter.sys

02:48:16.0515 0364  C:\Windows\System32\drivers\MpFilter.sys - ok

02:48:16.0523 0364  [ 801F1E963F7EEFFDA3F9EF89DB3EF133 ] C:\Windows\System32\radardt.dll

02:48:16.0523 0364  C:\Windows\System32\radardt.dll - ok

02:48:16.0532 0364  [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll

02:48:16.0532 0364  C:\Windows\System32\WinSCard.dll - ok

02:48:16.0553 0364  [ AC66A87B91D548D8DBDA58D00FA21547 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll

02:48:16.0554 0364  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok

02:48:16.0562 0364  [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll

02:48:16.0562 0364  C:\Windows\System32\cabinet.dll - ok

02:48:16.0569 0364  [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll

02:48:16.0569 0364  C:\Windows\System32\avrt.dll - ok

02:48:16.0579 0364  [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll

02:48:16.0579 0364  C:\Windows\System32\shgina.dll - ok

02:48:16.0588 0364  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys

02:48:16.0589 0364  C:\Windows\System32\drivers\fltMgr.sys - ok

02:48:16.0598 0364  [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll

02:48:16.0598 0364  C:\Windows\System32\shacct.dll - ok

02:48:16.0609 0364  [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll

02:48:16.0609 0364  C:\Windows\System32\propsys.dll - ok

02:48:16.0633 0364  [ 22F73612087430A94DBE912AB58E0C79 ] C:\Windows\System32\ci.dll

02:48:16.0633 0364  C:\Windows\System32\ci.dll - ok

02:48:16.0644 0364  [ 97FEF831AB90BEE128C9AF390E243F80 ] C:\Windows\System32\drivers\drmkaud.sys

02:48:16.0644 0364  C:\Windows\System32\drivers\drmkaud.sys - ok

02:48:16.0649 0364  [ 3E4F7CEF4D814584D3E9E390CA59DE5F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpengine.dll

02:48:16.0649 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpengine.dll - ok

02:48:16.0658 0364  [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll

02:48:16.0658 0364  C:\Windows\System32\adtschema.dll - ok

02:48:16.0673 0364  [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe

02:48:16.0673 0364  C:\Windows\System32\audiodg.exe - ok

02:48:16.0681 0364  [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL

02:48:16.0681 0364  C:\Windows\System32\PSHED.DLL - ok

02:48:16.0693 0364  [ 70C6489D56008D75DEDF73226FA63C11 ] C:\Windows\System32\dimsjob.dll

02:48:16.0693 0364  C:\Windows\System32\dimsjob.dll - ok

02:48:16.0702 0364  [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv

02:48:16.0702 0364  C:\Windows\System32\wdmaud.drv - ok

02:48:16.0711 0364  [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll

02:48:16.0711 0364  C:\Windows\System32\atl.dll - ok

02:48:16.0722 0364  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll

02:48:16.0722 0364  C:\Windows\System32\gpsvc.dll - ok

02:48:16.0736 0364  [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll

02:48:16.0736 0364  C:\Windows\System32\ksuser.dll - ok

02:48:16.0749 0364  [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll

02:48:16.0749 0364  C:\Windows\System32\nlaapi.dll - ok

02:48:16.0756 0364  [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll

02:48:16.0756 0364  C:\Windows\System32\AudioEng.dll - ok

02:48:16.0765 0364  [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll

02:48:16.0765 0364  C:\Windows\System32\AudioSes.dll - ok

02:48:16.0773 0364  [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll

02:48:16.0773 0364  C:\Windows\System32\es.dll - ok

02:48:16.0786 0364  [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys

02:48:16.0786 0364  C:\Windows\System32\drivers\spsys.sys - ok

02:48:16.0796 0364  [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll

02:48:16.0796 0364  C:\Windows\System32\midimap.dll - ok

02:48:16.0806 0364  [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll

02:48:16.0806 0364  C:\Windows\System32\msacm32.dll - ok

02:48:16.0817 0364  [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv

02:48:16.0817 0364  C:\Windows\System32\msacm32.drv - ok

02:48:16.0825 0364  [ 5CC11034A2E22DFF623BC922090AEBAB ] C:\Program Files\Sandboxie\SbieSvc.exe

02:48:16.0825 0364  C:\Program Files\Sandboxie\SbieSvc.exe - ok

02:48:16.0833 0364  [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll

02:48:16.0833 0364  C:\Windows\System32\AUDIOKSE.dll - ok

02:48:16.0843 0364  [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll

02:48:16.0844 0364  C:\Windows\System32\WindowsCodecs.dll - ok

02:48:16.0853 0364  [ DD749A6F27E53F003DE6177C96904D81 ] C:\Windows\System32\stapo.dll

02:48:16.0853 0364  C:\Windows\System32\stapo.dll - ok

02:48:16.0863 0364  [ 0C3DEE30C0CD6E416B52B7329E8FF7CF ] C:\Program Files\Sandboxie\SbieDll.dll

02:48:16.0864 0364  C:\Program Files\Sandboxie\SbieDll.dll - ok

02:48:16.0877 0364  [ 26535C8F7105D7C2767C93FDFC49CF57 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasbase.vdm

02:48:16.0877 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasbase.vdm - ok

02:48:16.0887 0364  [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll

02:48:16.0887 0364  C:\Windows\System32\hid.dll - ok

02:48:16.0897 0364  [ F654842D0653472BB37BBD016CFED0E3 ] C:\Windows\System32\ctapo32.dll

02:48:16.0897 0364  C:\Windows\System32\ctapo32.dll - ok

02:48:16.0903 0364  [ 0727200F10320A6BA7E59433094FBBA7 ] C:\Windows\System32\WMALFXGFXDSP.dll

02:48:16.0903 0364  C:\Windows\System32\WMALFXGFXDSP.dll - ok

02:48:16.0912 0364  [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll

02:48:16.0913 0364  C:\Windows\System32\mfplat.dll - ok

02:48:16.0925 0364  [ 158C8F7319E1376976FD2CCBBB94A74F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasdlta.vdm

02:48:16.0925 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasdlta.vdm - ok

02:48:16.0937 0364  [ 1ED58DA041A992EEEC934290508B6B71 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

02:48:16.0937 0364  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok

02:48:16.0945 0364  [ CA57D847403633D0D97114071B59C2B2 ] C:\Program Files\Sandboxie\SbieDrv.sys

02:48:16.0945 0364  C:\Program Files\Sandboxie\SbieDrv.sys - ok

02:48:16.0960 0364  [ DED3E3640A25F3E1C49ABF2AACB2E379 ] C:\Windows\System32\nvsvc.dll

02:48:16.0960 0364  C:\Windows\System32\nvsvc.dll - ok

02:48:16.0972 0364  [ 1509E705F3AC1D474C92454A5C2DD81F ] C:\Windows\System32\uxsms.dll

02:48:16.0972 0364  C:\Windows\System32\uxsms.dll - ok

02:48:16.0982 0364  [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavbase.vdm

02:48:16.0982 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavbase.vdm - ok

02:48:16.0991 0364  [ D5CF1536137026ACDED95BF6CBF849F6 ] C:\Windows\System32\WUDFPlatform.dll

02:48:16.0991 0364  C:\Windows\System32\WUDFPlatform.dll - ok

02:48:17.0001 0364  [ FFBB4DA6BBEF3509E799E4A16544AA9E ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavdlta.vdm

02:48:17.0001 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavdlta.vdm - ok

02:48:17.0016 0364  [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys

02:48:17.0016 0364  C:\Windows\System32\drivers\lltdio.sys - ok

02:48:17.0023 0364  [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\System32\mscms.dll

02:48:17.0023 0364  C:\Windows\System32\mscms.dll - ok

02:48:17.0031 0364  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] C:\Windows\System32\drivers\nwifi.sys

02:48:17.0031 0364  C:\Windows\System32\drivers\nwifi.sys - ok

02:48:17.0044 0364  [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv

02:48:17.0044 0364  C:\Windows\System32\winspool.drv - ok

02:48:17.0059 0364  [ D6973AA34C4D5D76C0430B181C3CD389 ] C:\Windows\System32\drivers\ndisuio.sys

02:48:17.0059 0364  C:\Windows\System32\drivers\ndisuio.sys - ok

02:48:17.0072 0364  [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys

02:48:17.0072 0364  C:\Windows\System32\drivers\rspndr.sys - ok

02:48:17.0080 0364  [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll

02:48:17.0080 0364  C:\Windows\System32\dwmapi.dll - ok

02:48:17.0089 0364  [ 9932C1981EC2E481DBA7DFDDB1C1C0D2 ] C:\Windows\System32\nvapi.dll

02:48:17.0089 0364  C:\Windows\System32\nvapi.dll - ok

02:48:17.0100 0364  [ 45EE8E18EDD84E38B77C68A55E2C4245 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll

02:48:17.0101 0364  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok

02:48:17.0113 0364  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll

02:48:17.0113 0364  C:\Windows\System32\dnsrslvr.dll - ok

02:48:17.0122 0364  [ DAA1B96073C79C84F8D28FBF55580415 ] C:\Windows\System32\pstorec.dll

02:48:17.0122 0364  C:\Windows\System32\pstorec.dll - ok

02:48:17.0132 0364  [ 3AB4023CBD406AC33AB8CDFF6C8079A0 ] C:\Windows\System32\eapphost.dll

02:48:17.0133 0364  C:\Windows\System32\eapphost.dll - ok

02:48:17.0141 0364  [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll

02:48:17.0141 0364  C:\Windows\System32\rastls.dll - ok

02:48:17.0149 0364  [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll

02:48:17.0149 0364  C:\Windows\System32\raschap.dll - ok

02:48:17.0157 0364  [ 60307769C577A2924F787DCD761EFFB0 ] C:\Windows\System32\nvsvcr.dll

02:48:17.0157 0364  C:\Windows\System32\nvsvcr.dll - ok

02:48:17.0166 0364  [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll

02:48:17.0166 0364  C:\Windows\System32\umb.dll - ok

02:48:17.0176 0364  [ 3727F8B85E24BBDD325BFF75F029DDE3 ] C:\Windows\System32\wlanmsm.dll

02:48:17.0176 0364  C:\Windows\System32\wlanmsm.dll - ok

02:48:17.0186 0364  [ 4662AF853DFAD5648CE3814E7D9EF3D6 ] C:\Windows\System32\wlansec.dll

02:48:17.0186 0364  C:\Windows\System32\wlansec.dll - ok

02:48:17.0196 0364  [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll

02:48:17.0196 0364  C:\Windows\System32\onex.dll - ok

02:48:17.0209 0364  [ 977B05E1577442422575D37D5E5A6571 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll

02:48:17.0209 0364  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok

02:48:17.0217 0364  [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll

02:48:17.0217 0364  C:\Windows\System32\eappprxy.dll - ok

02:48:17.0228 0364  [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll

02:48:17.0229 0364  C:\Windows\System32\eappcfg.dll - ok

02:48:17.0238 0364  [ 91D995A67D9447592A1BF21CBC15C628 ] C:\Windows\System32\wlgpclnt.dll

02:48:17.0238 0364  C:\Windows\System32\wlgpclnt.dll - ok

02:48:17.0252 0364  [ 19FFAD68A02AF1BF0BC336EE26CD6767 ] C:\Windows\System32\l2gpstore.dll

02:48:17.0252 0364  C:\Windows\System32\l2gpstore.dll - ok

02:48:17.0262 0364  [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll

02:48:17.0262 0364  C:\Windows\System32\wlanutil.dll - ok

02:48:17.0273 0364  [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll

02:48:17.0273 0364  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok

02:48:17.0281 0364  [ 0296DAEB5555A248E8ABF7E5012A37A6 ] C:\Windows\System32\msxml6.dll

02:48:17.0281 0364  C:\Windows\System32\msxml6.dll - ok

02:48:17.0295 0364  [ 85466C0757A23D9A9AECDC0755203CB2 ] C:\Windows\System32\iscsiexe.dll

02:48:17.0296 0364  C:\Windows\System32\iscsiexe.dll - ok

02:48:17.0312 0364  [ 2FA5D2644DF077AA9BEC63B19A179823 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll

02:48:17.0312 0364  C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok

02:48:17.0321 0364  [ DD348DA5669282C80A3DE4D8991DB717 ] C:\Windows\System32\iscsium.dll

02:48:17.0321 0364  C:\Windows\System32\iscsium.dll - ok

02:48:17.0341 0364  [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll

02:48:17.0341 0364  C:\Windows\System32\netcfgx.dll - ok

02:48:17.0350 0364  [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll

02:48:17.0351 0364  C:\Windows\System32\cfgmgr32.dll - ok

02:48:17.0361 0364  [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL

02:48:17.0361 0364  C:\Windows\System32\FWPUCLNT.DLL - ok

02:48:17.0383 0364  [ 61C5507090E036D647E4FAC1F5ACB1C6 ] C:\Windows\System32\iscsied.dll

02:48:17.0383 0364  C:\Windows\System32\iscsied.dll - ok

02:48:17.0393 0364  [ 0F40F1FE4BE3C3B88EA719F393382634 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll

02:48:17.0393 0364  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok

02:48:17.0401 0364  [ 054E058EB59212BE229C516258DFC5FF ] C:\Windows\System32\nvcpl.dll

02:48:17.0401 0364  C:\Windows\System32\nvcpl.dll - ok

02:48:17.0413 0364  [ 880681B274E1C8B643B2C92BF59BE5E2 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll

02:48:17.0413 0364  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok

02:48:17.0427 0364  [ 4B555106290BD117334E9A08761C035A ] C:\Windows\System32\rundll32.exe

02:48:17.0427 0364  C:\Windows\System32\rundll32.exe - ok

02:48:17.0451 0364  [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll

02:48:17.0451 0364  C:\Windows\System32\shimeng.dll - ok

02:48:17.0461 0364  [ D6804F089CBB6749E95124E7C4D80900 ] C:\Windows\AppPatch\AcLayers.dll

02:48:17.0461 0364  C:\Windows\AppPatch\AcLayers.dll - ok

02:48:17.0471 0364  [ CB6B671ED6D97F2E9F2274EADB7517B2 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe

02:48:17.0471 0364  C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok

02:48:17.0481 0364  [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll

02:48:17.0481 0364  C:\Windows\System32\wscapi.dll - ok

02:48:17.0490 0364  [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll

02:48:17.0491 0364  C:\Windows\System32\p2pcollab.dll - ok

02:48:17.0506 0364  [ 42DD9011D54C3A91F14BDBBF50791DA9 ] C:\Program Files\Microsoft Security Client\MsseWat.dll

02:48:17.0506 0364  C:\Program Files\Microsoft Security Client\MsseWat.dll - ok

02:48:17.0518 0364  [ DA887F28054D78EE8637BEBB924A2DB5 ] C:\Windows\System32\slwga.dll

02:48:17.0518 0364  C:\Windows\System32\slwga.dll - ok

02:48:17.0525 0364  [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll

02:48:17.0526 0364  C:\Windows\System32\ktmw32.dll - ok

02:48:17.0534 0364  [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll

02:48:17.0534 0364  C:\Windows\System32\wiarpc.dll - ok

02:48:17.0542 0364  [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll

02:48:17.0542 0364  C:\Windows\System32\taskcomp.dll - ok

02:48:17.0556 0364  [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys

02:48:17.0557 0364  C:\Windows\System32\drivers\http.sys - ok

02:48:17.0564 0364  [ E79FDA8D320147FDC347C504B3487F87 ] C:\Windows\System32\spoolss.dll

02:48:17.0564 0364  C:\Windows\System32\spoolss.dll - ok

02:48:17.0574 0364  [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys

02:48:17.0574 0364  C:\Windows\System32\drivers\srvnet.sys - ok

02:48:17.0586 0364  [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys

02:48:17.0586 0364  C:\Windows\System32\drivers\bowser.sys - ok

02:48:17.0597 0364  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys

02:48:17.0597 0364  C:\Windows\System32\drivers\mpsdrv.sys - ok

02:48:17.0608 0364  [ 82CEA0395524AACFEB58BA1448E8325C ] C:\Windows\System32\drivers\mrxdav.sys

02:48:17.0608 0364  C:\Windows\System32\drivers\mrxdav.sys - ok

02:48:17.0619 0364  [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll

02:48:17.0619 0364  C:\Windows\System32\MPSSVC.dll - ok

02:48:17.0632 0364  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys

02:48:17.0632 0364  C:\Windows\System32\drivers\mrxsmb.sys - ok

02:48:17.0641 0364  [ 4FCCB34D793B116423209C0F8B7A3B03 ] C:\Windows\System32\drivers\mrxsmb10.sys

02:48:17.0641 0364  C:\Windows\System32\drivers\mrxsmb10.sys - ok

02:48:17.0653 0364  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys

02:48:17.0653 0364  C:\Windows\System32\drivers\mrxsmb20.sys - ok

02:48:17.0658 0364  [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys

02:48:17.0658 0364  C:\Windows\System32\drivers\srv2.sys - ok

02:48:17.0669 0364  [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys

02:48:17.0669 0364  C:\Windows\System32\drivers\srv.sys - ok

02:48:17.0679 0364  [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll

02:48:17.0679 0364  C:\Windows\System32\netmsg.dll - ok

02:48:17.0694 0364  [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll

02:48:17.0694 0364  C:\Windows\System32\activeds.dll - ok

02:48:17.0702 0364  [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll

02:48:17.0703 0364  C:\Windows\System32\clusapi.dll - ok

02:48:17.0714 0364  [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll

02:48:17.0715 0364  C:\Windows\System32\sscore.dll - ok

02:48:17.0724 0364  [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll

02:48:17.0724 0364  C:\Windows\System32\adsldpc.dll - ok

02:48:17.0733 0364  [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll

02:48:17.0733 0364  C:\Windows\System32\credui.dll - ok

02:48:17.0747 0364  [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll

02:48:17.0747 0364  C:\Windows\System32\wfapigp.dll - ok

02:48:17.0756 0364  [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll

02:48:17.0756 0364  C:\Windows\System32\resutils.dll - ok

02:48:17.0772 0364  [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\WindowsMobile\wmdcBase.exe

02:48:17.0772 0364  C:\Windows\WindowsMobile\wmdcBase.exe - ok

02:48:17.0783 0364  [ F845CB13B1D1FC68C97900FEF94D03CC ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll

02:48:17.0783 0364  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok

02:48:17.0794 0364  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

02:48:17.0795 0364  C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok

02:48:17.0817 0364  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll

02:48:17.0817 0364  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok

02:48:17.0828 0364  [ 1311171CF8F6D2954441EF2A42693035 ] C:\Windows\System32\WsmRes.dll

02:48:17.0828 0364  C:\Windows\System32\WsmRes.dll - ok

02:48:17.0837 0364  [ A952D0DED445F26AEFCF593A935AB300 ] C:\Windows\System32\hnetcfg.dll

02:48:17.0837 0364  C:\Windows\System32\hnetcfg.dll - ok

02:48:17.0848 0364  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

02:48:17.0848 0364  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok

02:48:17.0860 0364  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll

02:48:17.0861 0364  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok

02:48:17.0874 0364  [ E230F3776F373F4C5E788794B53101E4 ] C:\Windows\System32\plasrv.exe

02:48:17.0874 0364  C:\Windows\System32\plasrv.exe - ok

02:48:17.0883 0364  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll

02:48:17.0883 0364  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok

02:48:17.0895 0364  [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll

02:48:17.0895 0364  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok

02:48:17.0909 0364  [ 6D41F6AA35220E7A54543075B27E8F83 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll

02:48:17.0909 0364  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok

02:48:17.0917 0364  [ 6953E980ADCA0BE816C7FF463695499A ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll

02:48:17.0917 0364  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok

02:48:17.0925 0364  [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll

02:48:17.0925 0364  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok

02:48:17.0934 0364  [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll

02:48:17.0934 0364  C:\Windows\System32\wsock32.dll - ok

02:48:17.0943 0364  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll

02:48:17.0943 0364  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok

02:48:17.0957 0364  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll

02:48:17.0957 0364  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok

02:48:17.0967 0364  [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll

02:48:17.0968 0364  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok

02:48:17.0978 0364  [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll

02:48:17.0978 0364  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok

02:48:17.0990 0364  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll

02:48:17.0990 0364  C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok

02:48:18.0002 0364  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll

02:48:18.0002 0364  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok

02:48:18.0013 0364  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll

02:48:18.0013 0364  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok

02:48:18.0023 0364  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll

02:48:18.0023 0364  C:\Windows\System32\dnssd.dll - ok

02:48:18.0032 0364  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe

02:48:18.0032 0364  C:\Program Files\Bonjour\mDNSResponder.exe - ok

02:48:18.0040 0364  [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll

02:48:18.0040 0364  C:\Windows\System32\vssapi.dll - ok

02:48:18.0053 0364  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll

02:48:18.0053 0364  C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok

02:48:18.0064 0364  [ 9340105C246B16EE661FD8FCE579B117 ] C:\Windows\System32\cryptnet.dll

Link to post
Share on other sites

02:48:18.0064 0364  C:\Windows\System32\cryptnet.dll - ok

02:48:18.0072 0364  [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll

02:48:18.0072 0364  C:\Windows\System32\SensApi.dll - ok

02:48:18.0085 0364  [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll

02:48:18.0085 0364  C:\Windows\System32\vsstrace.dll - ok

02:48:18.0095 0364  [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

02:48:18.0095 0364  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok

02:48:18.0110 0364  [ A7DDDDE163F16AB49DF3DE9EEC715495 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll

02:48:18.0110 0364  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok

02:48:18.0119 0364  [ 1A11EF6E4606F604C479D604B81D04DB ] C:\Program Files\PogoplugBackup\dokance.sys

02:48:18.0119 0364  C:\Program Files\PogoplugBackup\dokance.sys - ok

02:48:18.0130 0364  [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll

02:48:18.0130 0364  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok

02:48:18.0140 0364  [ 95F0941685F65C27C783AF301E5DAE78 ] C:\Program Files\PogoplugBackup\dokanmnt.exe

02:48:18.0140 0364  C:\Program Files\PogoplugBackup\dokanmnt.exe - ok

02:48:18.0156 0364  [ E8F932E855CBF23ED4632439A35E7354 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

02:48:18.0156 0364  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok

02:48:18.0162 0364  [ B96C2E38F3D528E1C5E926557CC8D8CC ] C:\Program Files\PogoplugBackup\dokance.dll

02:48:18.0162 0364  C:\Program Files\PogoplugBackup\dokance.dll - ok

02:48:18.0170 0364  [ DFEABB7CFFFADEA4A912AB95BDC3177A ] C:\Windows\System32\drivers\dsunidrv.sys

02:48:18.0170 0364  C:\Windows\System32\drivers\dsunidrv.sys - ok

02:48:18.0181 0364  [ F86293D93760C70ADF4F19E66E3FA5E8 ] C:\Windows\System32\httpapi.dll

02:48:18.0181 0364  C:\Windows\System32\httpapi.dll - ok

02:48:18.0193 0364  [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll

02:48:18.0193 0364  C:\Windows\System32\taskschd.dll - ok

02:48:18.0201 0364  [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll

02:48:18.0201 0364  C:\Windows\System32\wdscore.dll - ok

02:48:18.0216 0364  [ AD48183027CAFCEBC322CB9CAC60F9B8 ] C:\Windows\System32\WSDApi.dll

02:48:18.0216 0364  C:\Windows\System32\WSDApi.dll - ok

02:48:18.0226 0364  [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll

02:48:18.0226 0364  C:\Windows\System32\fundisc.dll - ok

02:48:18.0234 0364  [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\System32\msxml3.dll

02:48:18.0234 0364  C:\Windows\System32\msxml3.dll - ok

02:48:18.0245 0364  [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll

02:48:18.0245 0364  C:\Windows\System32\diagperf.dll - ok

02:48:18.0266 0364  [ 1E9B9A70D332103C52995E957DC09EF8 ] C:\Windows\System32\drivers\fastfat.sys

02:48:18.0266 0364  C:\Windows\System32\drivers\fastfat.sys - ok

02:48:18.0275 0364  [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll

02:48:18.0275 0364  C:\Windows\System32\esent.dll - ok

02:48:18.0285 0364  [ 1B9100ACCFC9FD8B1D991F4BB80EC401 ] C:\Program Files\Giraffic\Veoh_GirafficWatchdog.exe

02:48:18.0285 0364  C:\Program Files\Giraffic\Veoh_GirafficWatchdog.exe - ok

02:48:18.0299 0364  [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll

02:48:18.0299 0364  C:\Windows\System32\dbghelp.dll - ok

02:48:18.0311 0364  [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

02:48:18.0311 0364  C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok

02:48:18.0322 0364  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll

02:48:18.0322 0364  C:\Program Files\Bonjour\mdnsNSP.dll - ok

02:48:18.0331 0364  [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll

02:48:18.0331 0364  C:\Windows\System32\winrnr.dll - ok

02:48:18.0341 0364  [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll

02:48:18.0341 0364  C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok

02:48:18.0356 0364  [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll

02:48:18.0356 0364  C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok

02:48:18.0367 0364  [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll

02:48:18.0367 0364  C:\Windows\System32\rasadhlp.dll - ok

02:48:18.0375 0364  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

02:48:18.0375 0364  C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe - ok

02:48:18.0398 0364  [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll

02:48:18.0399 0364  C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll - ok

02:48:18.0421 0364  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] C:\Windows\System32\drivers\mdmxsdk.sys

02:48:18.0421 0364  C:\Windows\System32\drivers\mdmxsdk.sys - ok

02:48:18.0432 0364  [ 8A7C8F4C713E70D73946833D76B77035 ] C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

02:48:18.0432 0364  C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe - ok

02:48:18.0438 0364  [ 832E098BCA8235436FE2D8AE50AC3718 ] C:\Windows\System32\drivers\NisDrvWFP.sys

02:48:18.0438 0364  C:\Windows\System32\drivers\NisDrvWFP.sys - ok

02:48:18.0452 0364  [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll

02:48:18.0452 0364  C:\Windows\System32\ncsi.dll - ok

02:48:18.0464 0364  [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys

02:48:18.0465 0364  C:\Windows\System32\drivers\PEAuth.sys - ok

02:48:18.0479 0364  [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll

02:48:18.0479 0364  C:\Windows\System32\ssdpapi.dll - ok

02:48:18.0487 0364  [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL

02:48:18.0487 0364  C:\Windows\System32\IPSECSVC.DLL - ok

02:48:18.0501 0364  [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

02:48:18.0501 0364  C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe - ok

02:48:18.0512 0364  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\System32\msvcr100.dll

02:48:18.0513 0364  C:\Windows\System32\msvcr100.dll - ok

02:48:18.0526 0364  [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll

02:48:18.0526 0364  C:\Windows\System32\FwRemoteSvr.dll - ok

02:48:18.0535 0364  [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys

02:48:18.0535 0364  C:\Windows\System32\drivers\secdrv.sys - ok

02:48:18.0545 0364  [ AD56CEB08EEB517332355FDE9E5939C8 ] C:\Program Files\Secunia\PSI\sua.exe

02:48:18.0545 0364  C:\Program Files\Secunia\PSI\sua.exe - ok

02:48:18.0555 0364  [ D9B734638DD8DBA9D59AAD3189CD0FAD ] C:\Windows\System32\drivers\Sftfslh.sys

02:48:18.0555 0364  C:\Windows\System32\drivers\Sftfslh.sys - ok

02:48:18.0564 0364  [ A5812F0281CA5081BF696626F9BF324D ] C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe

02:48:18.0564 0364  C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe - ok

02:48:18.0574 0364  [ 2F61BD46C0BFF4EB36E1E359CA17BFC5 ] C:\Windows\System32\drivers\Sftplaylh.sys

02:48:18.0574 0364  C:\Windows\System32\drivers\Sftplaylh.sys - ok

02:48:18.0585 0364  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll

02:48:18.0585 0364  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok

02:48:18.0594 0364  [ 4C11A1820DDC37FA653913AD680ACCAE ] C:\Windows\System32\drivers\tcpipreg.sys

02:48:18.0594 0364  C:\Windows\System32\drivers\tcpipreg.sys - ok

02:48:18.0603 0364  [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll

02:48:18.0603 0364  C:\Windows\System32\wiatrace.dll - ok

02:48:18.0613 0364  [ 0A70F4022EC2E14C159EFC4F69AA2477 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

02:48:18.0613 0364  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok

02:48:18.0624 0364  [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll

02:48:18.0624 0364  C:\Windows\System32\wbemcomn.dll - ok

02:48:18.0635 0364  [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll

02:48:18.0636 0364  C:\Windows\System32\wsdchngr.dll - ok

02:48:18.0645 0364  [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll

02:48:18.0645 0364  C:\Windows\System32\wbem\WinMgmtR.dll - ok

02:48:18.0654 0364  [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL

02:48:18.0654 0364  C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok

02:48:18.0663 0364  [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\System32\wer.dll

02:48:18.0663 0364  C:\Windows\System32\wer.dll - ok

02:48:18.0672 0364  [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll

02:48:18.0673 0364  C:\Windows\System32\PortableDeviceApi.dll - ok

02:48:18.0686 0364  [ DEB9D08750423069647C3A066CEC7A1B ] C:\Windows\System32\tquery.dll

02:48:18.0686 0364  C:\Windows\System32\tquery.dll - ok

02:48:18.0696 0364  [ A9662BCF218BC76869A8D91635D5F93A ] C:\Windows\System32\Wpc.dll

02:48:18.0696 0364  C:\Windows\System32\Wpc.dll - ok

02:48:18.0701 0364  [ 218B73EA8341EA9FDF018D43052E790A ] C:\Windows\System32\mssrch.dll

02:48:18.0701 0364  C:\Windows\System32\mssrch.dll - ok

02:48:18.0711 0364  [ 9C879E1C3B27085FB46EFECCD7120D51 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

02:48:18.0711 0364  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok

02:48:18.0725 0364  [ DAB33CFA9DD24251AAA389FF36B64D4B ] C:\Windows\System32\drivers\XAudio.sys

02:48:18.0725 0364  C:\Windows\System32\drivers\XAudio.sys - ok

02:48:18.0735 0364  [ B53BD9E63867CD9FD853F666CA172713 ] C:\Windows\System32\PortableDeviceConnectApi.dll

02:48:18.0735 0364  C:\Windows\System32\PortableDeviceConnectApi.dll - ok

02:48:18.0743 0364  [ AAB5FEAABF4CB6F76D794203831C8D94 ] C:\Windows\System32\msidle.dll

02:48:18.0743 0364  C:\Windows\System32\msidle.dll - ok

02:48:18.0753 0364  [ CD5F291A1161F15896D1A4D63DAFF5DF ] C:\Windows\System32\drivers\XAudio.exe

02:48:18.0753 0364  C:\Windows\System32\drivers\XAudio.exe - ok

02:48:18.0762 0364  [ B458B58F7BB97C48D01AC3CF5805AAAC ] C:\Windows\System32\Query.dll

02:48:18.0762 0364  C:\Windows\System32\Query.dll - ok

02:48:18.0771 0364  [ BF7E4D6F60A6D9E866432855C6F8C262 ] C:\Windows\System32\sqmapi.dll

02:48:18.0771 0364  C:\Windows\System32\sqmapi.dll - ok

02:48:18.0783 0364  [ CB73BC422C07FB611F194DA18D1E7F36 ] C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe

02:48:18.0783 0364  C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe - ok

02:48:18.0792 0364  [ 1D6B95871DC006190964B04E5657E35F ] C:\Windows\System32\rastapi.dll

02:48:18.0793 0364  C:\Windows\System32\rastapi.dll - ok

02:48:18.0804 0364  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll

02:48:18.0804 0364  C:\Windows\System32\netprofm.dll - ok

02:48:18.0816 0364  [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll

02:48:18.0816 0364  C:\Windows\System32\wbem\wbemprox.dll - ok

02:48:18.0827 0364  [ 2B92C5A385978D5CD9C72F51A495862E ] C:\Program Files\Microsoft Application Virtualization Client\sftsync.dll

02:48:18.0827 0364  C:\Program Files\Microsoft Application Virtualization Client\sftsync.dll - ok

02:48:18.0837 0364  [ B96B60EC821F86D445C9739A0F3DED59 ] C:\Windows\System32\unimdm.tsp

02:48:18.0837 0364  C:\Windows\System32\unimdm.tsp - ok

02:48:18.0847 0364  [ DFBAADF1B624DC71E88D34D86B3595BE ] C:\Windows\System32\uniplat.dll

02:48:18.0847 0364  C:\Windows\System32\uniplat.dll - ok

02:48:18.0859 0364  [ 5A09E46B9F9B49CCD6E7565EB213B357 ] C:\Program Files\Microsoft Application Virtualization Client\sftuser.dll

02:48:18.0859 0364  C:\Program Files\Microsoft Application Virtualization Client\sftuser.dll - ok

02:48:18.0872 0364  [ 3ADA468CBA9A9DA3F9425E4F2434B781 ] C:\Program Files\Microsoft Application Virtualization Client\sftcore.dll

02:48:18.0872 0364  C:\Program Files\Microsoft Application Virtualization Client\sftcore.dll - ok

02:48:18.0881 0364  [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll

02:48:18.0881 0364  C:\Windows\System32\npmproxy.dll - ok

02:48:18.0890 0364  [ A05EF62D7340CD92CA053A9A12E60504 ] C:\Program Files\Microsoft Application Virtualization Client\sftpsr.dll

02:48:18.0891 0364  C:\Program Files\Microsoft Application Virtualization Client\sftpsr.dll - ok

02:48:18.0900 0364  [ 979580F2BDFF2AA06F50EC44723A760D ] C:\Program Files\Microsoft Application Virtualization Client\sftfsi.dll

02:48:18.0900 0364  C:\Program Files\Microsoft Application Virtualization Client\sftfsi.dll - ok

02:48:18.0910 0364  [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll

02:48:18.0910 0364  C:\Windows\System32\wbem\wbemcore.dll - ok

02:48:18.0920 0364  [ 2E837F3D406224DF131C34BC8F71621E ] C:\Windows\System32\modemui.dll

02:48:18.0920 0364  C:\Windows\System32\modemui.dll - ok

02:48:18.0928 0364  [ 0B71899E60D1265229BF3D080EAB573D ] C:\Windows\System32\unimdmat.dll

02:48:18.0928 0364  C:\Windows\System32\unimdmat.dll - ok

02:48:18.0995 0364  [ B4B59AC042EE3733A862F26CBC0B17FC ] C:\Windows\System32\hidphone.tsp

02:48:18.0995 0364  C:\Windows\System32\hidphone.tsp - ok

02:48:19.0004 0364  [ 953193A9DEA40348C1086D171F6440AE ] C:\Windows\System32\kmddsp.tsp

02:48:19.0005 0364  C:\Windows\System32\kmddsp.tsp - ok

02:48:19.0010 0364  [ 2F6776ACEFE41EE889C464EA407918F2 ] C:\Windows\System32\ndptsp.tsp

02:48:19.0010 0364  C:\Windows\System32\ndptsp.tsp - ok

02:48:19.0021 0364  [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll

02:48:19.0021 0364  C:\Windows\System32\wbem\esscli.dll - ok

02:48:19.0030 0364  [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll

02:48:19.0030 0364  C:\Windows\System32\wbem\fastprox.dll - ok

02:48:19.0039 0364  [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll

02:48:19.0039 0364  C:\Windows\System32\wbem\wbemsvc.dll - ok

02:48:19.0048 0364  [ 8B645890A93F1FBBC7DA3E07CC72D762 ] C:\Windows\System32\rasppp.dll

02:48:19.0048 0364  C:\Windows\System32\rasppp.dll - ok

02:48:19.0057 0364  [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll

02:48:19.0057 0364  C:\Windows\System32\wbem\wmiutils.dll - ok

02:48:19.0076 0364  [ 32D4A228986BF7656C8A0B50ACEE684C ] C:\Program Files\Microsoft Application Virtualization Client\sftcomp.dll

02:48:19.0076 0364  C:\Program Files\Microsoft Application Virtualization Client\sftcomp.dll - ok

02:48:19.0086 0364  [ B8A21907FE2F1A113F3487D9AB60BEF9 ] C:\Windows\System32\en-US\tquery.dll.mui

02:48:19.0086 0364  C:\Windows\System32\en-US\tquery.dll.mui - ok

02:48:19.0096 0364  [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll

02:48:19.0096 0364  C:\Windows\System32\msi.dll - ok

02:48:19.0105 0364  [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll

02:48:19.0106 0364  C:\Windows\System32\mprapi.dll - ok

02:48:19.0121 0364  [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll

02:48:19.0121 0364  C:\Windows\System32\wbem\repdrvfs.dll - ok

02:48:19.0138 0364  [ F85134BF76CB335A39F8D7BC4173D4FB ] C:\Windows\System32\msscb.dll

02:48:19.0138 0364  C:\Windows\System32\msscb.dll - ok

02:48:19.0173 0364  [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL

02:48:19.0173 0364  C:\Windows\System32\QUTIL.DLL - ok

02:48:19.0197 0364  [ 88225070DD2F7B0B2ED51E7935078641 ] C:\Windows\System32\rasqec.dll

02:48:19.0197 0364  C:\Windows\System32\rasqec.dll - ok

02:48:19.0206 0364  [ 248A1F31ABB58DDDDC01490EF0BDC777 ] C:\Windows\System32\cryptui.dll

02:48:19.0206 0364  C:\Windows\System32\cryptui.dll - ok

02:48:19.0221 0364  [ E98E402067978DB38282158F9E8609CA ] C:\Windows\System32\netshell.dll

02:48:19.0221 0364  C:\Windows\System32\netshell.dll - ok

02:48:19.0231 0364  [ 518BAC0179F94304F422696B47C0EC12 ] C:\Windows\System32\drivers\Sftredirlh.sys

02:48:19.0231 0364  C:\Windows\System32\drivers\Sftredirlh.sys - ok

02:48:19.0240 0364  [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll

02:48:19.0240 0364  C:\Windows\System32\dssenh.dll - ok

02:48:19.0250 0364  [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll

02:48:19.0250 0364  C:\Windows\System32\wbem\WmiPrvSD.dll - ok

02:48:19.0260 0364  [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll

02:48:19.0260 0364  C:\Windows\System32\wbem\wbemess.dll - ok

02:48:19.0268 0364  [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe

02:48:19.0268 0364  C:\Windows\System32\dllhost.exe - ok

02:48:19.0281 0364  [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll

02:48:19.0282 0364  C:\Windows\System32\upnp.dll - ok

02:48:19.0291 0364  [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe

02:48:19.0291 0364  C:\Windows\System32\taskeng.exe - ok

02:48:19.0296 0364  [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll

02:48:19.0296 0364  C:\Windows\System32\TSChannel.dll - ok

02:48:19.0306 0364  [ 3CD1B69551236977918E60F9543C89A2 ] C:\Windows\System32\AtBroker.exe

02:48:19.0306 0364  C:\Windows\System32\AtBroker.exe - ok

02:48:19.0315 0364  [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe

02:48:19.0316 0364  C:\Windows\System32\userinit.exe - ok

02:48:19.0326 0364  [ E08281DCDE69DD9E5EBBF9B3F0454D42 ] C:\Users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe

02:48:19.0326 0364  C:\Users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe - ok

02:48:19.0336 0364  [ D1C8ADF4140E20B9D575A7763F2902AD ] C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe

02:48:19.0336 0364  C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe - ok

02:48:19.0348 0364  [ 63396CBB1365769D520E0FD89C2419F2 ] C:\Windows\System32\localspl.dll

02:48:19.0348 0364  C:\Windows\System32\localspl.dll - ok

02:48:19.0358 0364  [ D80C6539C00CB4F5D59066865479C308 ] C:\Windows\System32\dwmredir.dll

02:48:19.0358 0364  C:\Windows\System32\dwmredir.dll - ok

02:48:19.0368 0364  [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe

02:48:19.0368 0364  C:\Windows\explorer.exe - ok

02:48:19.0377 0364  [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll

02:48:19.0377 0364  C:\Windows\System32\sfc.dll - ok

02:48:19.0393 0364  [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll

02:48:19.0393 0364  C:\Windows\System32\shdocvw.dll - ok

02:48:19.0401 0364  [ C99403A5B641520DAED0021DDA06F272 ] C:\Windows\System32\milcore.dll

02:48:19.0401 0364  C:\Windows\System32\milcore.dll - ok

02:48:19.0416 0364  [ BB0EB921877A1A7EF15AE2D97A71CBA9 ] C:\Windows\System32\tcpmon.dll

02:48:19.0416 0364  C:\Windows\System32\tcpmon.dll - ok

02:48:19.0427 0364  [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll

02:48:19.0427 0364  C:\Windows\System32\d3d9.dll - ok

02:48:19.0440 0364  [ 56D1D4BA99D1A18CDFE35D65F1752B52 ] C:\Program Files\real\realplayer\realplay.exe

02:48:19.0440 0364  C:\Program Files\real\realplayer\realplay.exe - ok

02:48:19.0451 0364  [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll

02:48:19.0451 0364  C:\Windows\System32\browseui.dll - ok

02:48:19.0464 0364  [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll

02:48:19.0464 0364  C:\Windows\System32\d3d8thk.dll - ok

02:48:19.0474 0364  [ AF24A9DF84637BF9858EC6FB88EBA7B2 ] C:\Windows\System32\snmpapi.dll

02:48:19.0474 0364  C:\Windows\System32\snmpapi.dll - ok

02:48:19.0489 0364  [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files\Google\Update\GoogleUpdate.exe

02:48:19.0489 0364  C:\Program Files\Google\Update\GoogleUpdate.exe - ok

02:48:19.0499 0364  [ FEA6D21F78922D641A0C9346D885133B ] C:\Windows\System32\mssprxy.dll

02:48:19.0499 0364  C:\Windows\System32\mssprxy.dll - ok

02:48:19.0513 0364  [ 1EDE113859276E4B0F19B80F39E2CC95 ] C:\Windows\System32\wsnmp32.dll

02:48:19.0513 0364  C:\Windows\System32\wsnmp32.dll - ok

02:48:19.0521 0364  [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll

02:48:19.0521 0364  C:\Windows\System32\HotStartUserAgent.dll - ok

02:48:19.0534 0364  [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files\Google\Update\1.3.21.145\goopdate.dll

02:48:19.0534 0364  C:\Program Files\Google\Update\1.3.21.145\goopdate.dll - ok

02:48:19.0546 0364  [ 5091452DC719281CF1DD69367E13B494 ] C:\Windows\System32\tcpmib.dll

02:48:19.0546 0364  C:\Windows\System32\tcpmib.dll - ok

02:48:19.0552 0364  [ BF45D1E087B701D5215EBE57E2EDCA47 ] C:\Program Files\Giraffic\Veoh_Giraffic.exe

02:48:19.0552 0364  C:\Program Files\Giraffic\Veoh_Giraffic.exe - ok

02:48:19.0563 0364  [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll

02:48:19.0563 0364  C:\Windows\System32\TMM.dll - ok

02:48:19.0578 0364  [ B4F5DE3DAD8E6B97272F45DB97674878 ] C:\Windows\System32\mgmtapi.dll

02:48:19.0578 0364  C:\Windows\System32\mgmtapi.dll - ok

02:48:19.0590 0364  [ 0BF0BB276F17B6AD61A8694D2551EC28 ] C:\Windows\System32\usbmon.dll

02:48:19.0590 0364  C:\Windows\System32\usbmon.dll - ok

02:48:19.0605 0364  [ 0EB1CC5EBFCAAB7DBAEE881E2887F7F9 ] C:\Windows\System32\WSDMon.dll

02:48:19.0605 0364  C:\Windows\System32\WSDMon.dll - ok

02:48:19.0612 0364  [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll

02:48:19.0612 0364  C:\Windows\System32\EhStorShell.dll - ok

02:48:19.0623 0364  [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll

02:48:19.0623 0364  C:\Windows\System32\imageres.dll - ok

02:48:19.0631 0364  [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll

02:48:19.0631 0364  C:\Windows\System32\cscapi.dll - ok

02:48:19.0639 0364  [ A4E7946B71BBDF8708C7AC97FD9E9008 ] C:\Windows\System32\win32spl.dll

02:48:19.0639 0364  C:\Windows\System32\win32spl.dll - ok

02:48:19.0653 0364  [ 4BF053944E973C073339BE841C9ECF28 ] C:\Windows\System32\netrap.dll

02:48:19.0653 0364  C:\Windows\System32\netrap.dll - ok

02:48:19.0661 0364  [ B04ABC47319CB3C808A3A5525F2F3F2F ] C:\Program Files\real\RealUpgrade\realupgrade.exe

02:48:19.0661 0364  C:\Program Files\real\RealUpgrade\realupgrade.exe - ok

02:48:19.0670 0364  [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll

02:48:19.0670 0364  C:\Windows\System32\PlaySndSrv.dll - ok

02:48:19.0678 0364  [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll

02:48:19.0678 0364  C:\Windows\System32\MsCtfMonitor.dll - ok

02:48:19.0690 0364  [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll

02:48:19.0690 0364  C:\Windows\System32\msutb.dll - ok

02:48:19.0704 0364  [ 2D3D47B93E0BE86EEBB261734AB5B6A1 ] C:\Windows\System32\printcom.dll

02:48:19.0704 0364  C:\Windows\System32\printcom.dll - ok

02:48:19.0711 0364  [ 2E8E30F3B318A9FDA5A2485723F4C2B3 ] C:\Windows\System32\inetpp.dll

02:48:19.0712 0364  C:\Windows\System32\inetpp.dll - ok

02:48:19.0721 0364  [ 53D0A06B7A71FFA9851D49CE71AA2610 ] C:\Windows\System32\nvd3dum.dll

02:48:19.0721 0364  C:\Windows\System32\nvd3dum.dll - ok

02:48:19.0730 0364  [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\System32\msvcp100.dll

02:48:19.0730 0364  C:\Windows\System32\msvcp100.dll - ok

02:48:19.0739 0364  [ 898ABECCD5F0B9A8E8F1318DDB234685 ] C:\Windows\System32\dot3api.dll

02:48:19.0739 0364  C:\Windows\System32\dot3api.dll - ok

02:48:19.0751 0364  [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll

02:48:19.0751 0364  C:\Windows\System32\wlanapi.dll - ok

02:48:19.0761 0364  [ 8D544AC1B7AA7FB9DFF0C3E7DA6AD295 ] C:\Windows\System32\wlanhlp.dll

02:48:19.0761 0364  C:\Windows\System32\wlanhlp.dll - ok

02:48:19.0768 0364  [ 8793643A67B42CEC66490B2A0CF92D68 ] C:\Windows\System32\drivers\ipnat.sys

02:48:19.0769 0364  C:\Windows\System32\drivers\ipnat.sys - ok

02:48:19.0777 0364  [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll

02:48:19.0777 0364  C:\Windows\System32\IconCodecService.dll - ok

02:48:19.0788 0364  [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe

02:48:19.0788 0364  C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok

02:48:19.0798 0364  [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL

02:48:19.0799 0364  C:\Windows\System32\QAGENT.DLL - ok

02:48:19.0814 0364  [ 0EDAACBC028C1B50A57899E64EE60E9B ] C:\Program Files\real\RealUpgrade\Common\hxmedpltfm.dll

02:48:19.0814 0364  C:\Program Files\real\RealUpgrade\Common\hxmedpltfm.dll - ok

02:48:19.0818 0364  [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\System32\mstask.dll

02:48:19.0818 0364  C:\Windows\System32\mstask.dll - ok

02:48:19.0828 0364  [ 1290853C52D8BD47683FED043D79BC21 ] C:\Program Files\real\RealUpgrade\Plugins\upgrade.dll

02:48:19.0828 0364  C:\Program Files\real\RealUpgrade\Plugins\upgrade.dll - ok

02:48:19.0836 0364  [ A6F5B25905CD01AE714990E02C7205A5 ] C:\Windows\System32\mshtml.dll

02:48:19.0837 0364  C:\Windows\System32\mshtml.dll - ok

02:48:19.0847 0364  [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE

02:48:19.0847 0364  C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok

02:48:19.0860 0364  [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL

02:48:19.0860 0364  C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok

02:48:19.0869 0364  [ 70F60DE5F06CDF8E0B8B48E3BCE82987 ] C:\Windows\System32\hlink.dll

02:48:19.0869 0364  C:\Windows\System32\hlink.dll - ok

02:48:19.0882 0364  [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll

02:48:19.0882 0364  C:\Program Files\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok

02:48:19.0897 0364  [ C3180C93AB352C03B27723F94C0B4AA2 ] C:\Program Files\Microsoft Application Virtualization Client\sftintf.dll

02:48:19.0897 0364  C:\Program Files\Microsoft Application Virtualization Client\sftintf.dll - ok

02:48:19.0910 0364  [ 790222D6CCFC576F0D07D418E6115D85 ] C:\Program Files\Windows Calendar\WinCal.exe

02:48:19.0910 0364  C:\Program Files\Windows Calendar\WinCal.exe - ok

02:48:19.0921 0364  [ B776DFE408E415AA901030C022EEB7DA ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

02:48:19.0921 0364  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok

02:48:19.0931 0364  [ FD130C0517A4BCD7E07EA4B5669CCC6D ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll

02:48:19.0931 0364  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok

02:48:19.0942 0364  [ 23B564B4DF0ADE8C0B81B78602B9B639 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll

02:48:19.0942 0364  C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll - ok

02:48:19.0956 0364  [ 81D393F61123915248FB1B8D7C17AE39 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll

02:48:19.0956 0364  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok

02:48:19.0970 0364  [ B5EF1DA337DB9859709A387638AC5E07 ] C:\Windows\System32\SearchProtocolHost.exe

02:48:19.0970 0364  C:\Windows\System32\SearchProtocolHost.exe - ok

02:48:19.0978 0364  [ 582BE479E7E286BB3B31C5A4C3DC3987 ] C:\Windows\System32\msshooks.dll

02:48:19.0978 0364  C:\Windows\System32\msshooks.dll - ok

02:48:19.0995 0364  [ 771AF583BC58373A84496CCD52C36E33 ] C:\Windows\System32\mssvp.dll

02:48:19.0995 0364  C:\Windows\System32\mssvp.dll - ok

02:48:20.0005 0364  [ 98C77FD99F3DB37B2C03F32B8F837B65 ] C:\Windows\System32\mapi32.dll

02:48:20.0006 0364  C:\Windows\System32\mapi32.dll - ok

02:48:20.0018 0364  [ 351319EF11C263C95FB721AC76F436D6 ] C:\Windows\System32\mssph.dll

02:48:20.0018 0364  C:\Windows\System32\mssph.dll - ok

02:48:20.0025 0364  [ 07ACE87D978985460F248CBD33F2D2C1 ] C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL

02:48:20.0025 0364  C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL - ok

02:48:20.0035 0364  [ E9CD450487B7E2EFA5E8B16DA4085450 ] C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL

02:48:20.0035 0364  C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL - ok

02:48:20.0045 0364  [ 911F487F7DD6538AC9FB17DEDFD5117F ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSO.DLL

02:48:20.0046 0364  C:\Program Files\Common Files\microsoft shared\OFFICE14\MSO.DLL - ok

02:48:20.0056 0364  [ B81388E9FE895065FD5CEAF3C11FDC3F ] C:\Windows\System32\ieframe.dll

02:48:20.0056 0364  C:\Windows\System32\ieframe.dll - ok

02:48:20.0066 0364  [ C2CDBB424CF2461199322D6825F7B426 ] C:\Windows\System32\msfeeds.dll

02:48:20.0066 0364  C:\Windows\System32\msfeeds.dll - ok

02:48:20.0070 0364  [ F9CCA77443DF0A9F79FC585C8D705D54 ] C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL

02:48:20.0070 0364  C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL - ok

02:48:20.0082 0364  [ C9EE7FF225EAC1CB9C78C413667CDB80 ] C:\Windows\System32\SearchFilterHost.exe

02:48:20.0082 0364  C:\Windows\System32\SearchFilterHost.exe - ok

02:48:20.0090 0364  [ 7C0FC379D4B066C2D2189792DED0E4AA ] C:\Windows\System32\xmlfilter.dll

02:48:20.0090 0364  C:\Windows\System32\xmlfilter.dll - ok

02:48:20.0105 0364  [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll

02:48:20.0105 0364  C:\Windows\System32\ntshrui.dll - ok

02:48:20.0116 0364  [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll

02:48:20.0116 0364  C:\Windows\System32\actxprxy.dll - ok

02:48:20.0126 0364  [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll

02:48:20.0126 0364  C:\Windows\System32\NaturalLanguage6.dll - ok

02:48:20.0139 0364  [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll

02:48:20.0139 0364  C:\Windows\System32\NlsData0009.dll - ok

02:48:20.0151 0364  [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll

02:48:20.0151 0364  C:\Windows\System32\NlsLexicons0009.dll - ok

02:48:20.0162 0364  [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll

02:48:20.0162 0364  C:\Windows\System32\wbem\NCProv.dll - ok

02:48:20.0178 0364  [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll

02:48:20.0179 0364  C:\Windows\System32\wbem\wbemcons.dll - ok

02:48:20.0187 0364  [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll

02:48:20.0187 0364  C:\Windows\System32\shfolder.dll - ok

02:48:20.0198 0364  [ 254AC97C9AF4DDF3F5F57855198527B7 ] C:\Windows\System32\wermgr.exe

02:48:20.0198 0364  C:\Windows\System32\wermgr.exe - ok

02:48:20.0209 0364  [ E570ECA850F30EB740C2E9699DF3D2BD ] C:\Program Files\Microsoft Security Client\NisSrv.exe

02:48:20.0209 0364  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok

02:48:20.0228 0364  [ 6D01259214D1E815613ECA3CD81679EC ] C:\Windows\System32\pstorsvc.dll

02:48:20.0228 0364  C:\Windows\System32\pstorsvc.dll - ok

02:48:20.0236 0364  [ 3E81E93CBAD69FD0112F88148913B5FC ] C:\Program Files\Microsoft Security Client\NisLog.dll

02:48:20.0237 0364  C:\Program Files\Microsoft Security Client\NisLog.dll - ok

02:48:20.0244 0364  [ F0062778F50838145AC46B384FFB4FA3 ] C:\Windows\System32\pcadm.dll

02:48:20.0244 0364  C:\Windows\System32\pcadm.dll - ok

02:48:20.0253 0364  [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll

02:48:20.0253 0364  C:\Windows\System32\pnpts.dll - ok

02:48:20.0265 0364  [ A69630D039C38018689190234F866D77 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\MpKsl080172f5.sys

02:48:20.0266 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\MpKsl080172f5.sys - ok

02:48:20.0276 0364  [ 1BFAE531CB5DD89A0D1A935E307CC7F2 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll

02:48:20.0276 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll - ok

02:48:20.0292 0364  [ 2F50B262AF349C3B6F8D659C15241E26 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\nisfull.vdm

02:48:20.0292 0364  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\nisfull.vdm - ok

02:48:20.0305 0364  [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe

02:48:20.0305 0364  C:\Windows\System32\runonce.exe - ok

02:48:20.0315 0364  [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll

02:48:20.0315 0364  C:\Windows\System32\rasdlg.dll - ok

02:48:20.0323 0364  [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe

02:48:20.0323 0364  C:\Windows\System32\cmd.exe - ok

02:48:20.0335 0364  [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL

02:48:20.0335 0364  C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok

02:48:20.0343 0364  [ 80A9ADB30ABDF99A8B5A6C233DB3F1D8 ] C:\Users\Ken\AppData\Local\temp\5B018A68-8AD3-4351-85C7-35CA42D5612A.exe

02:48:20.0343 0364  C:\Users\Ken\AppData\Local\temp\5B018A68-8AD3-4351-85C7-35CA42D5612A.exe - ok

02:48:20.0368 0364  [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll

02:48:20.0368 0364  C:\Windows\System32\sfc_os.dll - ok

02:48:20.0379 0364  [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe

02:48:20.0379 0364  C:\Windows\System32\ie4uinit.exe - ok

02:48:20.0389 0364  [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll

02:48:20.0389 0364  C:\Windows\System32\iedkcs32.dll - ok

02:48:20.0400 0364  [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl

02:48:20.0400 0364  C:\Windows\System32\timedate.cpl - ok

02:48:20.0422 0364  [ FF41E1AC301F51E16F61AD7C0F45467C ] C:\Windows\System32\msshsq.dll

02:48:20.0422 0364  C:\Windows\System32\msshsq.dll - ok

02:48:20.0432 0364  [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll

02:48:20.0432 0364  C:\Windows\System32\riched20.dll - ok

02:48:20.0442 0364  [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\System32\linkinfo.dll

02:48:20.0443 0364  C:\Windows\System32\linkinfo.dll - ok

02:48:20.0453 0364  [ C456658AF90F42BE3CDF1048F9CDB5CA ] C:\Windows\System32\wpcumi.exe

02:48:20.0453 0364  C:\Windows\System32\wpcumi.exe - ok

02:48:20.0464 0364  [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll

02:48:20.0464 0364  C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll - ok

02:48:20.0476 0364  [ DE7F813217EC88C0A6D4D8F2F39D7949 ] C:\Windows\System32\msiltcfg.dll

02:48:20.0476 0364  C:\Windows\System32\msiltcfg.dll - ok

02:48:20.0490 0364  [ 4D2F7561D8A840450AABFAD3740B0E6B ] C:\Program Files\Microsoft Security Client\msseces.exe

02:48:20.0490 0364  C:\Program Files\Microsoft Security Client\msseces.exe - ok

02:48:20.0500 0364  [ 036687BA050CF6666057B9081646748B ] C:\Program Files\GRETECH\GomPlayer\GOM.exe

02:48:20.0500 0364  C:\Program Files\GRETECH\GomPlayer\GOM.exe - ok

02:48:20.0508 0364  [ 9495FCC01D7AB7B60E5B8BA7AEFE9E3D ] C:\Windows\System32\wbem\WmiPrvSE.exe

02:48:20.0508 0364  C:\Windows\System32\wbem\WmiPrvSE.exe - ok

02:48:20.0518 0364  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

02:48:20.0518 0364  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok

02:48:20.0527 0364  [ 027E5E14C9CFF810377701BDEAD8210F ] C:\Windows\System32\control.exe

02:48:20.0527 0364  C:\Windows\System32\control.exe - ok

02:48:20.0545 0364  [ 7F2691FD961C9A704DA221745CCE6295 ] C:\Program Files\real\realplayer\Update\realsched.exe

02:48:20.0545 0364  C:\Program Files\real\realplayer\Update\realsched.exe - ok

02:48:20.0566 0364  [ 67EE46FD4D3B56531C5DD1BDC149275A ] C:\Program Files\Internet Explorer\iexplore.exe

02:48:20.0566 0364  C:\Program Files\Internet Explorer\iexplore.exe - ok

02:48:20.0575 0364  [ 733DA847D5C3E32C40BA831BEAA8DC93 ] C:\Windows\sttray.exe

02:48:20.0575 0364  C:\Windows\sttray.exe - ok

02:48:20.0588 0364  [ 5EFB30F030B913DAAE7218B5815EBE54 ] C:\Program Files\real\realplayer\Update\setu3270.dll

02:48:20.0588 0364  C:\Program Files\real\realplayer\Update\setu3270.dll - ok

02:48:20.0598 0364  [ 21221CD7C7C844F6F0E0B7BC69CBA36B ] C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE

02:48:20.0599 0364  C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE - ok

02:48:20.0622 0364  [ 26DE50A7F668F541B8130A0E26EFF3D8 ] C:\Program Files\Microsoft Works\MSWorks.exe

02:48:20.0622 0364  C:\Program Files\Microsoft Works\MSWorks.exe - ok

02:48:20.0631 0364  [ 9ACCBC5891BA51B5B29C1A88F80D4CE3 ] C:\Program Files\QuickTime\QTTask.exe

02:48:20.0631 0364  C:\Program Files\QuickTime\QTTask.exe - ok

02:48:20.0640 0364  [ C37571F7C79C3972D641804F1DF7C0F5 ] C:\Program Files\Microsoft Works\wksdb.exe

02:48:20.0640 0364  C:\Program Files\Microsoft Works\wksdb.exe - ok

02:48:20.0648 0364  [ A9F9D081518AC03A51C1195986076F42 ] C:\Program Files\iTunes\iTunesHelper.exe

02:48:20.0648 0364  C:\Program Files\iTunes\iTunesHelper.exe - ok

02:48:20.0658 0364  [ 81800928E0F713DF31F3393CC26F4013 ] C:\Program Files\DivX\DivX Update\DivXUpdate.exe

02:48:20.0658 0364  C:\Program Files\DivX\DivX Update\DivXUpdate.exe - ok

02:48:20.0670 0364  [ 61216539E55DDF2F78E421E7EF140650 ] C:\Windows\System32\ExplorerFrame.dll

02:48:20.0670 0364  C:\Windows\System32\ExplorerFrame.dll - ok

02:48:20.0684 0364  [ C6235EF491612EF3BFAFACEC7FC0C254 ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe

02:48:20.0684 0364  C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe - ok

02:48:20.0695 0364  [ 901AA7A38CE13F14B6BBEC38C0595698 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe

02:48:20.0695 0364  C:\Program Files\Microsoft Office\Office14\BCSSync.exe - ok

02:48:20.0706 0364  [ BF08674925F151BD4537B89A493E3E0C ] C:\Windows\ehome\ehtray.exe

02:48:20.0706 0364  C:\Windows\ehome\ehtray.exe - ok

02:48:20.0716 0364  [ 6D9E1356A9C1B5F36698FAFF9205E34A ] C:\Program Files\Xvid\CheckUpdate.exe

02:48:20.0716 0364  C:\Program Files\Xvid\CheckUpdate.exe - ok

02:48:20.0732 0364  [ BCC412AC5943584ED691BA5715DF46EF ] C:\Program Files\V CAST Music with Rhapsody\rhapsody.exe

02:48:20.0733 0364  C:\Program Files\V CAST Music with Rhapsody\rhapsody.exe - ok

02:48:20.0747 0364  [ 61E4289E91E88C90478D7F4BEB10DCF7 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe

02:48:20.0747 0364  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok

02:48:20.0757 0364  [ 9F0A78629F451BAAFE21DFCCD887F087 ] C:\Program Files\Steam\steam.exe

02:48:20.0757 0364  C:\Program Files\Steam\steam.exe - ok

02:48:20.0767 0364  [ 06164026C38AA5366E4D127E2E36FDE8 ] C:\Program Files\Windows Mail\wab.exe

02:48:20.0767 0364  C:\Program Files\Windows Mail\wab.exe - ok

02:48:20.0780 0364  [ B5950DF243837D8217F4E597919B224A ] C:\Windows\System32\stobject.dll

02:48:20.0780 0364  C:\Windows\System32\stobject.dll - ok

02:48:20.0790 0364  [ EC69B16644C613F41A57169F8D068F1D ] C:\Windows\System32\batmeter.dll

02:48:20.0790 0364  C:\Windows\System32\batmeter.dll - ok

02:48:20.0801 0364  [ 395335431AD55C167CFDBBAB8420DA73 ] C:\Program Files\Movie Maker\DVDMaker.exe

02:48:20.0801 0364  C:\Program Files\Movie Maker\DVDMaker.exe - ok

02:48:20.0811 0364  [ 6F0DAB13529BCB7C0F8A3082A8B1CDE9 ] C:\Program Files\Windows Live\Messenger\msnmsgr.exe

02:48:20.0811 0364  C:\Program Files\Windows Live\Messenger\msnmsgr.exe - ok

02:48:20.0825 0364  [ 7F27323E0BA892B12C52E686E09F39D6 ] C:\Users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

02:48:20.0825 0364  C:\Users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok

02:48:20.0830 0364  [ C2FB797884D9CC30AC0B5FB28146FE7A ] C:\Program Files\Windows Live\Messenger\uccapi.dll

02:48:20.0830 0364  C:\Program Files\Windows Live\Messenger\uccapi.dll - ok

02:48:20.0843 0364  [ CA55D2F9F9FC2708DD6BD26E8FEA76D8 ] C:\Program Files\Windows Live\Messenger\vvpltfrm.dll

02:48:20.0843 0364  C:\Program Files\Windows Live\Messenger\vvpltfrm.dll - ok

02:48:20.0853 0364  [ E08C81ABB98956BA1F571138BE8983FA ] C:\Program Files\Windows Live\Messenger\shareanything.dll

02:48:20.0853 0364  C:\Program Files\Windows Live\Messenger\shareanything.dll - ok

02:48:20.0863 0364  [ 30F02D9C55053367E26A11482F51E255 ] C:\Windows\System32\SndVolSSO.dll

02:48:20.0863 0364  C:\Windows\System32\SndVolSSO.dll - ok

02:48:20.0873 0364  [ B7ED332A57FC78CA29E40D3619550225 ] C:\Windows\ehome\ehshell.exe

02:48:20.0873 0364  C:\Windows\ehome\ehshell.exe - ok

02:48:20.0882 0364  [ 313B30189557A2E2793F845DE0F0A4D5 ] C:\Windows\ehome\ehSSO.dll

02:48:20.0882 0364  C:\Windows\ehome\ehSSO.dll - ok

02:48:20.0894 0364  [ 75AD59B9B12EB194486BE8D97B062994 ] C:\Windows\System32\pnidui.dll

02:48:20.0894 0364  C:\Windows\System32\pnidui.dll - ok

02:48:20.0903 0364  [ 52BC119E49F88F2A5D1466230B1275C7 ] C:\Program Files\Windows Collaboration\WinCollab.exe

02:48:20.0903 0364  C:\Program Files\Windows Collaboration\WinCollab.exe - ok

02:48:20.0917 0364  [ C4AB08459CD7B59B410ACFC04D90E87B ] C:\Program Files\Movie Maker\MOVIEMK.exe

02:48:20.0917 0364  C:\Program Files\Movie Maker\MOVIEMK.exe - ok

02:48:20.0932 0364  [ ABAEAEE763E287BDD39094C4165E1F3F ] C:\Windows\System32\fdProxy.dll

02:48:20.0932 0364  C:\Windows\System32\fdProxy.dll - ok

02:48:20.0943 0364  [ 4BAEC13BCAA595639EBB5185278DEFEA ] C:\Windows\System32\fdWSD.dll

02:48:20.0943 0364  C:\Windows\System32\fdWSD.dll - ok

02:48:20.0951 0364  [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\System32\mlang.dll

02:48:20.0951 0364  C:\Windows\System32\mlang.dll - ok

02:48:20.0960 0364  [ 4A839160ED1963F9A1526DDA2D1233B2 ] C:\Windows\System32\AltTab.dll

02:48:20.0960 0364  C:\Windows\System32\AltTab.dll - ok

02:48:20.0974 0364  [ C03AC1FBCD625F93D2C245D97E06F270 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe

02:48:20.0974 0364  C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok

02:48:20.0990 0364  [ 443C5961CACD4ABC16648874AF06E4A0 ] C:\Windows\System32\fdSSDP.dll

02:48:20.0990 0364  C:\Windows\System32\fdSSDP.dll - ok

02:48:20.0998 0364  [ 6B5C53E0932C510606D700B7A896EF73 ] C:\Windows\System32\WPDShServiceObj.dll

02:48:20.0998 0364  C:\Windows\System32\WPDShServiceObj.dll - ok

02:48:21.0009 0364  [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll

02:48:21.0009 0364  C:\Windows\System32\PortableDeviceTypes.dll - ok

02:48:21.0017 0364  [ 069385484EA57B663D688894C88975C5 ] C:\Windows\System32\wuapp.exe

02:48:21.0017 0364  C:\Windows\System32\wuapp.exe - ok

02:48:21.0027 0364  [ 744F08CF9ACFFB1C715191D04DEEE907 ] C:\Windows\System32\srchadmin.dll

02:48:21.0028 0364  C:\Windows\System32\srchadmin.dll - ok

02:48:21.0036 0364  [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll

02:48:21.0037 0364  C:\Windows\System32\webcheck.dll - ok

02:48:21.0045 0364  [ 4ACEA0C4BB15ACE55E3AE5EC4E88DD55 ] C:\Windows\System32\SyncCenter.dll

02:48:21.0045 0364  C:\Windows\System32\SyncCenter.dll - ok

02:48:21.0055 0364  [ 0B5AC46982E77CAF3EC1D55C9AC6AB56 ] C:\Windows\System32\wscntfy.dll

02:48:21.0055 0364  C:\Windows\System32\wscntfy.dll - ok

02:48:21.0067 0364  [ 7ADD03E75BEB9E6DD102C3081D29840A ] C:\Windows\System32\drivers\cdfs.sys

02:48:21.0067 0364  C:\Windows\System32\drivers\cdfs.sys - ok

02:48:21.0076 0364  [ 9B0726A03B790E5B82BED44D24009BEF ] C:\Windows\System32\imapi2.dll

02:48:21.0076 0364  C:\Windows\System32\imapi2.dll - ok

02:48:21.0087 0364  [ C653D7F4BDC08A06A187BF48050FE23C ] C:\Program Files\iTunes\iTunesHelper.dll

02:48:21.0087 0364  C:\Program Files\iTunes\iTunesHelper.dll - ok

02:48:21.0097 0364  [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll

02:48:21.0097 0364  C:\Windows\System32\mscoree.dll - ok

02:48:21.0114 0364  [ ED3F7B4548A13561278BF6018D1364A0 ] C:\Windows\System32\stlang.dll

02:48:21.0114 0364  C:\Windows\System32\stlang.dll - ok

02:48:21.0130 0364  [ 36FDB8C775B1F7D2069B8C8D0CD09084 ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe

02:48:21.0130 0364  C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok

02:48:21.0137 0364  [ C0ABD66F31C0B84CD944802E6D3D02C2 ] C:\Windows\System32\bthprops.cpl

02:48:21.0137 0364  C:\Windows\System32\bthprops.cpl - ok

02:48:21.0150 0364  [ 1B593FBB763150BD225DF266C69A9329 ] C:\Windows\System32\mfc42u.dll

02:48:21.0151 0364  C:\Windows\System32\mfc42u.dll - ok

02:48:21.0160 0364  [ CD5CF90696C0EDF98C80B8DF69F58062 ] C:\Program Files\Internet Explorer\sqmapi.dll

02:48:21.0160 0364  C:\Program Files\Internet Explorer\sqmapi.dll - ok

02:48:21.0168 0364  [ A1400CCB4D99E0B9E76EB45782D5C7FC ] C:\Windows\System32\ieui.dll

02:48:21.0168 0364  C:\Windows\System32\ieui.dll - ok

02:48:21.0177 0364  [ F15D2768A9DE5079727A3BEAD2164096 ] C:\Program Files\Internet Explorer\IEShims.dll

02:48:21.0177 0364  C:\Program Files\Internet Explorer\IEShims.dll - ok

02:48:21.0188 0364  [ A371EE84C0C5081ACC013B687D08D83C ] C:\Program Files\Internet Explorer\ieproxy.dll

02:48:21.0188 0364  C:\Program Files\Internet Explorer\ieproxy.dll - ok

02:48:21.0202 0364  [ 7659BE31CF936C49E3E59E3D40D755BA ] C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

02:48:21.0203 0364  C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll - ok

02:48:21.0213 0364  [ CC5835E8F89B4355BCCA3B2603AC0679 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll

02:48:21.0213 0364  C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll - ok

02:48:21.0222 0364  [ 49F948CC887587CA8F933CB0B6F2C8AC ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll

02:48:21.0222 0364  C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll - ok

02:48:21.0232 0364  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\msvcr100.dll

02:48:21.0232 0364  C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\msvcr100.dll - ok

02:48:21.0242 0364  [ 9BD7053026B4435E882C7161DF5DADFA ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\deploy.dll

02:48:21.0243 0364  C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\deploy.dll - ok

02:48:21.0256 0364  [ 5CB17097A5752337977A9A7FED3A06E5 ] C:\Users\Ken\AppData\Roaming\Spotify\spotify.exe

02:48:21.0256 0364  C:\Users\Ken\AppData\Roaming\Spotify\spotify.exe - ok

02:48:21.0265 0364  [ 7E6EA9CB72B5DE84A5D700BED877E5F9 ] C:\Program Files\Windows Mail\WinMail.exe

02:48:21.0265 0364  C:\Program Files\Windows Mail\WinMail.exe - ok

02:48:21.0274 0364  [ 9E35FF7F943AE0FB89192BFE058B7FD4 ] C:\Program Files\Windows Sidebar\sidebar.exe

02:48:21.0274 0364  C:\Program Files\Windows Sidebar\sidebar.exe - ok

02:48:21.0288 0364  [ F77650C58484D6B1F27829E08A282AA0 ] C:\Program Files\Sandboxie\SbieCtrl.exe

02:48:21.0288 0364  C:\Program Files\Sandboxie\SbieCtrl.exe - ok

02:48:21.0295 0364  [ 57E68AE0BCEB0F70C8AA1C4A6D5C2050 ] C:\Windows\System32\jscript9.dll

02:48:21.0295 0364  C:\Windows\System32\jscript9.dll - ok

02:48:21.0306 0364  [ 2D821AFA5A1A9CA7F9F997A1AAD09E72 ] C:\Program Files\Windows Media Player\wmplayer.exe

02:48:21.0306 0364  C:\Program Files\Windows Media Player\wmplayer.exe - ok

02:48:21.0316 0364  [ AC6B8F8058EE27932F9AF8A2D959D201 ] C:\Windows\System32\msimtf.dll

02:48:21.0316 0364  C:\Windows\System32\msimtf.dll - ok

02:48:21.0327 0364  [ E47C854A28A81F2939F42CBE9FEA994C ] C:\Windows\System32\Magnify.exe

02:48:21.0328 0364  C:\Windows\System32\Magnify.exe - ok

02:48:21.0337 0364  [ F0CB496BE3D8E43DA8D9505ED8DC7CC1 ] C:\Program Files\PogoplugBackup\Pogoplug.exe

02:48:21.0337 0364  C:\Program Files\PogoplugBackup\Pogoplug.exe - ok

02:48:21.0350 0364  [ 27BB54357A51594D9F9B6257B5B9A879 ] C:\Windows\System32\Narrator.exe

02:48:21.0350 0364  C:\Windows\System32\Narrator.exe - ok

02:48:21.0360 0364  [ 37C23556FA5ED4066E9328A2281EB76F ] C:\Program Files\Pando Networks\Media Booster\PMB.exe

02:48:21.0360 0364  C:\Program Files\Pando Networks\Media Booster\PMB.exe - ok

02:48:21.0369 0364  [ 43D083268A0919F3527A2837390BAF63 ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe

02:48:21.0369 0364  C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe - ok

02:48:21.0381 0364  [ 877F2939794EBA4F3D1BB967007E99E8 ] C:\Windows\System32\osk.exe

02:48:21.0381 0364  C:\Windows\System32\osk.exe - ok

02:48:21.0391 0364  [ B75FDBF14073D72C50624CC8338DD534 ] C:\Program Files\DellSupport\DSAgnt.exe

02:48:21.0391 0364  C:\Program Files\DellSupport\DSAgnt.exe - ok

02:48:21.0401 0364  [ AFE3883FB37A5567C913E7DFCF2924A5 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe

02:48:21.0401 0364  C:\Program Files\DAEMON Tools Lite\DTLite.exe - ok

02:48:21.0415 0364  [ AAB979089E192ACC0FE1E3C018F8B591 ] C:\Users\Ken\AppData\Local\Akamai\netsession_win.exe

02:48:21.0415 0364  C:\Users\Ken\AppData\Local\Akamai\netsession_win.exe - ok

02:48:21.0426 0364  [ F03FFC962E18F36A922E61F96BE09925 ] C:\Program Files\Digital Line Detect\DLG.exe

02:48:21.0426 0364  C:\Program Files\Digital Line Detect\DLG.exe - ok

02:48:21.0436 0364  [ 0930656E3154516E19E9A5C5309023E6 ] C:\Program Files\McAfee Security Scan\2.1.121\SSScheduler.exe

02:48:21.0436 0364  C:\Program Files\McAfee Security Scan\2.1.121\SSScheduler.exe - ok

02:48:21.0446 0364  [ AC00643FA6E5E7AB035C1DA0105A396D ] C:\Program Files\Plex\Plex Media Center\Plex.exe

02:48:21.0446 0364  C:\Program Files\Plex\Plex Media Center\Plex.exe - ok

02:48:21.0456 0364  [ 104A6DC38776E3D84BBF2C879A85423C ] C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe

02:48:21.0456 0364  C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe - ok

02:48:21.0467 0364  [ CDE97F5441FD3416D79989564622727F ] C:\Users\Ken\AppData\Roaming\Pokémon Trading Card Game Online\Pokemon Trading Card Game Online.exe

02:48:21.0467 0364  C:\Users\Ken\AppData\Roaming\Pokémon Trading Card Game Online\Pokemon Trading Card Game Online.exe - ok

02:48:21.0475 0364  [ C559672F31ABE6BA7277DD73C4502238 ] C:\Windows\System32\msiexec.exe

02:48:21.0476 0364  C:\Windows\System32\msiexec.exe - ok

02:48:21.0498 0364  [ 0424B6097CD758E5DE492881E1F7619E ] C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe

02:48:21.0498 0364  C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe - ok

02:48:21.0504 0364  [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe

02:48:21.0504 0364  C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok

02:48:21.0514 0364  [ 584A5A6B2C9F63354FA294B1A5A198A5 ] C:\Program Files\Belarc\BelarcAdvisor\BelarcAdvisor.exe

02:48:21.0514 0364  C:\Program Files\Belarc\BelarcAdvisor\BelarcAdvisor.exe - ok

02:48:21.0527 0364  [ BF2F2717C13A4BD4FD73F2788534E86B ] C:\Program Files\Mozilla Firefox\firefox.exe

02:48:21.0527 0364  C:\Program Files\Mozilla Firefox\firefox.exe - ok

02:48:21.0535 0364  [ 7A316864F87CDD15DA91981D4C7EDDC0 ] C:\Program Files\Secunia\PSI\psi.exe

02:48:21.0535 0364  C:\Program Files\Secunia\PSI\psi.exe - ok

02:48:21.0544 0364  [ EA31DAF6E297C961F8B07906E5CF87C7 ] C:\Windows\Installer\{EE55714B-B67C-4D08-97AE-0CF4AC5A3A77}\SitExpander.exe_57DC898073DA481EAFD45E2D44B7F1AD.exe

02:48:21.0545 0364  C:\Windows\Installer\{EE55714B-B67C-4D08-97AE-0CF4AC5A3A77}\SitExpander.exe_57DC898073DA481EAFD45E2D44B7F1AD.exe - ok

02:48:21.0559 0364  [ C4A0673606F8A4D912646E2778630BDD ] C:\Program Files\Vuze\Azureus.exe

02:48:21.0559 0364  C:\Program Files\Vuze\Azureus.exe - ok

02:48:21.0568 0364  [ 75EDADF84D749D7792B9F2CB19F8C8B4 ] C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe

02:48:21.0568 0364  C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe - ok

02:48:21.0578 0364  [ 0D392EDE3B97E0B3131B2F63EF1DB94E ] C:\Program Files\Windows Defender\MSASCui.exe

02:48:21.0579 0364  C:\Program Files\Windows Defender\MSASCui.exe - ok

02:48:21.0589 0364  [ 000B70598782452D2EBD26918F551041 ] C:\Program Files\Windows Live\Mail\wlmail.exe

02:48:21.0589 0364  C:\Program Files\Windows Live\Mail\wlmail.exe - ok

02:48:21.0600 0364  [ FCBE52C7410791791EB1EF066D54FA1C ] C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe

02:48:21.0600 0364  C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe - ok

02:48:21.0617 0364  [ A00D5FBFABBF281FD059BB0CDA55B6E8 ] C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe

02:48:21.0617 0364  C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok

02:48:21.0630 0364  [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe

02:48:21.0631 0364  C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe - ok

02:48:21.0646 0364  [ 1ED2124313CCE34C877247574212EFC8 ] C:\Windows\System32\calc.exe

02:48:21.0646 0364  C:\Windows\System32\calc.exe - ok

02:48:21.0658 0364  [ 338104E0E18307CD65604FE317B5FB8D ] C:\Windows\System32\mblctr.exe

02:48:21.0658 0364  C:\Windows\System32\mblctr.exe - ok

02:48:21.0666 0364  [ B1AFF0B6DED627A1D22A6817DD58AC0F ] C:\Windows\System32\NetProj.exe

02:48:21.0666 0364  C:\Windows\System32\NetProj.exe - ok

02:48:21.0677 0364  [ 16FEE292E95EDC274385103E6B498019 ] C:\Windows\System32\mstsc.exe

02:48:21.0677 0364  C:\Windows\System32\mstsc.exe - ok

02:48:21.0689 0364  [ E80DB295132C5EF0C623935422BD0FC7 ] C:\Windows\System32\SnippingTool.exe

02:48:21.0689 0364  C:\Windows\System32\SnippingTool.exe - ok

02:48:21.0697 0364  [ 248F33A6C2380757BC1E20E34D9E827B ] C:\Windows\System32\SoundRecorder.exe

02:48:21.0697 0364  C:\Windows\System32\SoundRecorder.exe - ok

02:48:21.0708 0364  [ 9B89B3BB79EA1ACF041F40A7B6FC5827 ] C:\Windows\System32\mobsync.exe

02:48:21.0708 0364  C:\Windows\System32\mobsync.exe - ok

02:48:21.0721 0364  [ 19D0FC69D4E68D5CE2E4B34940529727 ] C:\Program Files\Windows NT\Accessories\wordpad.exe

02:48:21.0721 0364  C:\Program Files\Windows NT\Accessories\wordpad.exe - ok

02:48:21.0727 0364  [ 105A4D87C8DCF2CF5DB042830B203E5F ] C:\Windows\Speech\Common\sapisvr.exe

02:48:21.0727 0364  C:\Windows\Speech\Common\sapisvr.exe - ok

02:48:21.0736 0364  [ A623666C8A8EC9A57DCA07915A3F1EC6 ] C:\Windows\System32\sdclt.exe

02:48:21.0736 0364  C:\Windows\System32\sdclt.exe - ok

02:48:21.0749 0364  [ BB4910DE8B6C5E30DF39EC97308D44BA ] C:\Windows\System32\charmap.exe

02:48:21.0749 0364  C:\Windows\System32\charmap.exe - ok

02:48:21.0765 0364  [ 2327C11B043FCEB80BE00CC8D077E9AA ] C:\Windows\System32\dfrgui.exe

02:48:21.0765 0364  C:\Windows\System32\dfrgui.exe - ok

02:48:21.0774 0364  [ 86AB3F6C784197DC1D994A83AF4259CD ] C:\Windows\System32\cleanmgr.exe

02:48:21.0774 0364  C:\Windows\System32\cleanmgr.exe - ok

02:48:21.0782 0364  [ FBF628702A408977FEB0845D48F4F154 ] C:\Windows\System32\migwiz\migwiz.exe

02:48:21.0783 0364  C:\Windows\System32\migwiz\migwiz.exe - ok

02:48:21.0790 0364  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll

02:48:21.0790 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok

02:48:21.0802 0364  [ F273D5F339F528A7B0C000F1AB82EA34 ] C:\Program Files\real\realplayer\realjbox.exe

02:48:21.0802 0364  C:\Program Files\real\realplayer\realjbox.exe - ok

02:48:21.0814 0364  [ 6EA0A7B3E030DAD132956538F75400B8 ] C:\Program Files\Steam\crashhandler.dll

02:48:21.0814 0364  C:\Program Files\Steam\crashhandler.dll - ok

02:48:21.0823 0364  [ 52C66C4AA985D962855056C5D9C644BB ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.dll

02:48:21.0823 0364  C:\Program Files\DivX\DivX Media Server\DivXMediaServer.dll - ok

02:48:21.0833 0364  [ F70A554333BCFAF67D20F1EC4D6A44B6 ] C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll

02:48:21.0834 0364  C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll - ok

02:48:21.0842 0364  [ 862363973DCBCC31DD161EF41A69153C ] C:\Windows\System32\odbc32.dll

02:48:21.0842 0364  C:\Windows\System32\odbc32.dll - ok

02:48:21.0848 0364  [ 34ED4524A7EBD74F4B8F4134E31EAEE1 ] C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll

02:48:21.0848 0364  C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll - ok

02:48:21.0858 0364  [ B9B5C142C75E7E2A95E7E958CF6EAB3A ] C:\Program Files\Xvid\autoupdate-windows.exe

02:48:21.0858 0364  C:\Program Files\Xvid\autoupdate-windows.exe - ok

02:48:21.0867 0364  [ D3D1CE8FF30786D50272DA3085149904 ] C:\Windows\System32\msinfo32.exe

02:48:21.0867 0364  C:\Windows\System32\msinfo32.exe - ok

02:48:21.0877 0364  [ A85BF26968E112EAA04FDD2E9585B297 ] C:\Program Files\Pando Networks\Media Booster\nspr4.dll

02:48:21.0877 0364  C:\Program Files\Pando Networks\Media Booster\nspr4.dll - ok

02:48:21.0887 0364  [ 295363D4317820AED0D527E15B90A8ED ] C:\Windows\System32\pdh.dll

02:48:21.0887 0364  C:\Windows\System32\pdh.dll - ok

02:48:21.0898 0364  [ 0D9EC40AF01938BEF0DBBF9F33660222 ] C:\Program Files\TRENDnet\TEW-424UB\WlanDll.dll

02:48:21.0898 0364  C:\Program Files\TRENDnet\TEW-424UB\WlanDll.dll - ok

02:48:21.0907 0364  [ CB1135906D951B574F9F2498BE8F11F9 ] C:\Program Files\Digital Line Detect\BVRPDiag.dll

02:48:21.0907 0364  C:\Program Files\Digital Line Detect\BVRPDiag.dll - ok

02:48:21.0918 0364  [ E9B39C81C87E5B790FCE121DA9E02701 ] C:\Windows\System32\d2d1.dll

02:48:21.0918 0364  C:\Windows\System32\d2d1.dll - ok

02:48:21.0928 0364  [ 1E5B9201721D9B687546A982323C030E ] C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe

02:48:21.0928 0364  C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe - ok

02:48:21.0937 0364  [ 80BD4B26E2CBC0D65445D0463DFF6FC2 ] C:\Windows\System32\oledlg.dll

02:48:21.0937 0364  C:\Windows\System32\oledlg.dll - ok

02:48:21.0948 0364  [ 0F4195B9B348DE5CF9B822F81704B20E ] C:\Windows\ehome\ehmsas.exe

02:48:21.0948 0364  C:\Windows\ehome\ehmsas.exe - ok

02:48:21.0959 0364  [ 0DAAF8032546D1B4543D7B101B53FD6C ] C:\Windows\System32\odbcint.dll

02:48:21.0959 0364  C:\Windows\System32\odbcint.dll - ok

02:48:21.0966 0364  [ 95D5AC5CCBE10E8B4B8A0DF41022568D ] C:\Windows\System32\rstrui.exe

02:48:21.0966 0364  C:\Windows\System32\rstrui.exe - ok

02:48:21.0974 0364  [ CABD1B34BD05C986B4DBC18BC0E947EE ] C:\Windows\System32\DWrite.dll

Link to post
Share on other sites

02:48:21.0975 0364  C:\Windows\System32\DWrite.dll - ok

 

02:48:21.0984 0364  [ C9B520028498E5DA23651619F8A556D4 ] C:\Windows\System32\StikyNot.exe

 

02:48:21.0984 0364  C:\Windows\System32\StikyNot.exe - ok

 

02:48:21.0995 0364  [ 7122B0AA2212B07BBFC49BD22215BF3B ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe

 

02:48:21.0995 0364  C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok

 

02:48:22.0006 0364  [ C20436B4F0596ACD5569749206F99265 ] C:\Program Files\Windows Journal\Journal.exe

 

02:48:22.0006 0364  C:\Program Files\Windows Journal\Journal.exe - ok

 

02:48:22.0016 0364  [ 4A938E44BEB41641B70175DACAB1BBB0 ] C:\Windows\ehome\ehProxy.dll

 

02:48:22.0016 0364  C:\Windows\ehome\ehProxy.dll - ok

 

02:48:22.0026 0364  [ 36B6F71B6D7D280302B348145DB05A9F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe

 

02:48:22.0026 0364  C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe - ok

 

02:48:22.0035 0364  [ DF4217DDB34A0B73DC7AAC7829371C0C ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

 

02:48:22.0035 0364  C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok

 

02:48:22.0043 0364  [ AAAE543C535ED596ECAD2AB8761C2C6F ] C:\Windows\System32\dxgi.dll

 

02:48:22.0043 0364  C:\Windows\System32\dxgi.dll - ok

 

02:48:22.0054 0364  [ 4CAAD229A00C0DEFFF51841AE2B93B46 ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll

 

02:48:22.0054 0364  C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll - ok

 

02:48:22.0068 0364  [ 1C474C0C4CB5F15A555FE912CBF4549C ] C:\Windows\System32\odbcad32.exe

 

02:48:22.0068 0364  C:\Windows\System32\odbcad32.exe - ok

 

02:48:22.0074 0364  [ 5256383D1D266A9EEFCDB270340C0E5C ] C:\Windows\System32\d3d10_1.dll

 

02:48:22.0074 0364  C:\Windows\System32\d3d10_1.dll - ok

 

02:48:22.0084 0364  [ A441F5B43EAF4BD4E3ACFBE38841B46B ] C:\Windows\System32\d3d10_1core.dll

 

02:48:22.0084 0364  C:\Windows\System32\d3d10_1core.dll - ok

 

02:48:22.0092 0364  [ 4A4C71376ECA305D6DEA021F1A44816D ] C:\Windows\System32\d3d10warp.dll

 

02:48:22.0092 0364  C:\Windows\System32\d3d10warp.dll - ok

 

02:48:22.0101 0364  [ 1CB1B95D67BC380FBCCFAEA3CF2DDA80 ] C:\Windows\System32\iscsicpl.exe

 

02:48:22.0101 0364  C:\Windows\System32\iscsicpl.exe - ok

 

02:48:22.0112 0364  [ 8D865A3E7E2C78317EDE4EAE8316284F ] C:\Windows\System32\MdSched.exe

 

02:48:22.0112 0364  C:\Windows\System32\MdSched.exe - ok

 

02:48:22.0122 0364  [ 7629E9BB2FF06EACA62580A2C1D4FE6A ] C:\Windows\System32\msconfig.exe

 

02:48:22.0122 0364  C:\Windows\System32\msconfig.exe - ok

 

02:48:22.0132 0364  [ 8B02D2ECC7EF6E1F6AF08459E3F741F6 ] C:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.22573_none_e3504f4b6f0c972b\d3d10.dll

 

02:48:22.0132 0364  C:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.22573_none_e3504f4b6f0c972b\d3d10.dll - ok

 

02:48:22.0140 0364  [ 518545E8CBD79EBF42891A6066578118 ] C:\Program Files\CCleaner\CCleaner.exe

 

02:48:22.0140 0364  C:\Program Files\CCleaner\CCleaner.exe - ok

 

02:48:22.0153 0364  [ 9C7094F537782A82B6A29B4A7172E180 ] C:\Windows\System32\d3d10core.dll

 

02:48:22.0153 0364  C:\Windows\System32\d3d10core.dll - ok

 

02:48:22.0160 0364  [ 413E667E7BC59B5C3AFB2D3216694F0C ] C:\Program Files\CCleaner\uninst.exe

 

02:48:22.0160 0364  C:\Program Files\CCleaner\uninst.exe - ok

 

02:48:22.0170 0364  [ 0B0296FDC8A4AC5B395A7B0AF9059342 ] C:\Program Files\Dell\Music Photos Videos Launcher\Launcher.exe

 

02:48:22.0170 0364  C:\Program Files\Dell\Music Photos Videos Launcher\Launcher.exe - ok

 

02:48:22.0178 0364  [ 7511E2588A373C8B6AA2FBDE267A5708 ] C:\Program Files\DivX\DivX Converter\DivX Converter.exe

 

02:48:22.0179 0364  C:\Program Files\DivX\DivX Converter\DivX Converter.exe - ok

 

02:48:22.0189 0364  [ C1A9A5A649D5F678FAAFA14F1D9095D1 ] C:\Program Files\DivX\DivX Control Panel\DivXControlPanelLauncher.exe

 

02:48:22.0189 0364  C:\Program Files\DivX\DivX Control Panel\DivXControlPanelLauncher.exe - ok

 

02:48:22.0200 0364  [ 5CDABA3D16072FFF5EA30C9AD0BAE708 ] C:\Program Files\DivX\DivX Plus Converter\DivXConverterLauncher.exe

 

02:48:22.0200 0364  C:\Program Files\DivX\DivX Plus Converter\DivXConverterLauncher.exe - ok

 

02:48:22.0216 0364  [ 9955B059A7245857B322A48D28EFCA4B ] C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe

 

02:48:22.0216 0364  C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe - ok

 

02:48:22.0221 0364  [ 4462E06B2EAA5387EA20A61E4B3B5CC3 ] C:\Program Files\DVD Decrypter\DVDDecrypter.exe

 

02:48:22.0221 0364  C:\Program Files\DVD Decrypter\DVDDecrypter.exe - ok

 

02:48:22.0231 0364  [ 50DC642234539AB3D014A6598EA02A86 ] C:\Program Files\DVD Decrypter\uninstall.exe

 

02:48:22.0231 0364  C:\Program Files\DVD Decrypter\uninstall.exe - ok

 

02:48:22.0242 0364  [ 0A87198FACE29466307AEC11AE1AFC6B ] C:\Program Files\DVD Shrink\DVD Shrink 3.2.exe

 

02:48:22.0242 0364  C:\Program Files\DVD Shrink\DVD Shrink 3.2.exe - ok

 

02:48:22.0253 0364  [ ADA23DCD5DD87CA957AAF1DE9D6CE292 ] C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL

 

02:48:22.0253 0364  C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL - ok

 

02:48:22.0263 0364  [ 984CFEA6CBC8E5EDD9498CD7AFCD18EC ] C:\Program Files\Pando Networks\Media Booster\plc4.dll

 

02:48:22.0264 0364  C:\Program Files\Pando Networks\Media Booster\plc4.dll - ok

 

02:48:22.0273 0364  [ BF15CE70E055955FAFD81A18EC1C0771 ] C:\Program Files\DVD Shrink\unins000.exe

 

02:48:22.0274 0364  C:\Program Files\DVD Shrink\unins000.exe - ok

 

02:48:22.0287 0364  [ 4A8D768B66471C80DB22E2B5B4A213B3 ] C:\Program Files\DVDFab 8 Qt\ProfileEditor.exe

 

02:48:22.0287 0364  C:\Program Files\DVDFab 8 Qt\ProfileEditor.exe - ok

 

02:48:22.0301 0364  [ 670337623FB4EBF08FF440CEAC465A98 ] C:\Program Files\DVDFab 8 Qt\DVDFab.exe

 

02:48:22.0301 0364  C:\Program Files\DVDFab 8 Qt\DVDFab.exe - ok

 

02:48:22.0308 0364  [ A5B932A139B02793E3E4A826678646C5 ] C:\Program Files\DVDFab 8 Qt\unins000.exe

 

02:48:22.0308 0364  C:\Program Files\DVDFab 8 Qt\unins000.exe - ok

 

02:48:22.0319 0364  [ 626F198768F67A0FEB3AD909E638F551 ] C:\Windows\System32\WindowsAnytimeUpgrade.exe

 

02:48:22.0319 0364  C:\Windows\System32\WindowsAnytimeUpgrade.exe - ok

 

02:48:22.0329 0364  [ B6774F04D769864408ECF7B48F78D942 ] C:\Program Files\ffdshow\makeAVIS.exe

 

02:48:22.0329 0364  C:\Program Files\ffdshow\makeAVIS.exe - ok

 

02:48:22.0337 0364  [ A33452A42BDF214E7FC40CB470515605 ] C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe

 

02:48:22.0338 0364  C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe - ok

 

02:48:22.0350 0364  [ EF868F732847BDD031B8CDFD8D0BA26C ] C:\Program Files\ffdshow\unins000.exe

 

02:48:22.0350 0364  C:\Program Files\ffdshow\unins000.exe - ok

 

02:48:22.0355 0364  [ 507F75E56E453B6956E05DB6FB1FF682 ] C:\Program Files\Steam\steamerrorreporter.exe

 

02:48:22.0355 0364  C:\Program Files\Steam\steamerrorreporter.exe - ok

 

02:48:22.0363 0364  [ 4304D04DFDAAE621171A2F955981016E ] C:\Program Files\Microsoft Games\Chess\Chess.exe

 

02:48:22.0367 0364  C:\Program Files\Microsoft Games\Chess\Chess.exe - ok

 

02:48:22.0378 0364  [ 21AD332BE723EFE40D9F32AD97BA8376 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe

 

02:48:22.0378 0364  C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok

 

02:48:22.0390 0364  [ 6ED28075D6D9E0C0464048A30432A142 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe

 

02:48:22.0390 0364  C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok

 

02:48:22.0402 0364  [ EFF7DBEE92519EB96F70E1E31FDE7098 ] C:\Program Files\Microsoft Games\inkball\inkball.exe

 

02:48:22.0402 0364  C:\Program Files\Microsoft Games\inkball\inkball.exe - ok

 

02:48:22.0415 0364  [ 7A88900F2F11882FFCE3BF3D4EAEFB4B ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe

 

02:48:22.0415 0364  C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok

 

02:48:22.0425 0364  [ C8C383E6AA546780B2AD3034D6F6ACEF ] C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe

 

02:48:22.0425 0364  C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe - ok

 

02:48:22.0433 0364  [ 3F903BDD206EB3C688651048B5E304E1 ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe

 

02:48:22.0433 0364  C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok

 

02:48:22.0443 0364  [ 07302F014858D038CB93CC349505D0E6 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe

 

02:48:22.0443 0364  C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok

 

02:48:22.0454 0364  [ 401A203AB058DEC44BD44AA81BF2CB64 ] C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe

 

02:48:22.0454 0364  C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe - ok

 

02:48:22.0463 0364  [ 8ADC47F0897DCCA57FF0D58738028521 ] C:\Program Files\GRETECH\GomPlayer\GomWiz.exe

 

02:48:22.0463 0364  C:\Program Files\GRETECH\GomPlayer\GomWiz.exe - ok

 

02:48:22.0473 0364  [ B309C18F9A0D94B61A433CA6DD29FE40 ] C:\Program Files\TRENDnet\TEW-424UB\WPSCtrl.dll

 

02:48:22.0473 0364  C:\Program Files\TRENDnet\TEW-424UB\WPSCtrl.dll - ok

 

02:48:22.0489 0364  [ 471D6BFD9AA2F5A1880CB1D959CEB229 ] C:\Program Files\GRETECH\GomPlayer\Uninstall.exe

 

02:48:22.0489 0364  C:\Program Files\GRETECH\GomPlayer\Uninstall.exe - ok

 

02:48:22.0512 0364  [ BF9E83CB6E790A2D619E2A3600CB6237 ] C:\Program Files\Haali\MatroskaSplitter\gdsmux.exe

 

02:48:22.0512 0364  C:\Program Files\Haali\MatroskaSplitter\gdsmux.exe - ok

 

02:48:22.0522 0364  [ 403AEE57E3D28289A9C50B1EB50D9810 ] C:\Program Files\Haali\MatroskaSplitter\uninstall.exe

 

02:48:22.0523 0364  C:\Program Files\Haali\MatroskaSplitter\uninstall.exe - ok

 

02:48:22.0533 0364  [ 0011AC7B83C557D3273A1E093BD46F8E ] C:\Program Files\HitmanPro\HitmanPro.exe

 

02:48:22.0533 0364  C:\Program Files\HitmanPro\HitmanPro.exe - ok

 

02:48:22.0560 0364  [ 88D3F73B4125328C4E79FE89F5068CC1 ] C:\Program Files\iTunes\iTunes.exe

 

02:48:22.0560 0364  C:\Program Files\iTunes\iTunes.exe - ok

 

02:48:22.0569 0364  [ 9658E2BD6D67AAC42B8A906E01129E85 ] C:\Program Files\MagicISO\MagicISO.exe

 

02:48:22.0569 0364  C:\Program Files\MagicISO\MagicISO.exe - ok

 

02:48:22.0578 0364  [ 3A938ED2427DF10E571041069E6980CB ] C:\Program Files\MagicISO\UNWISE.EXE

 

02:48:22.0578 0364  C:\Program Files\MagicISO\UNWISE.EXE - ok

 

02:48:22.0591 0364  [ BF899F57858B8C6F162D9EEB2370641C ] C:\Windows\System32\wercon.exe

 

02:48:22.0591 0364  C:\Windows\System32\wercon.exe - ok

 

02:48:22.0600 0364  [ 3141224EEBA075BC085175E60CD14782 ] C:\Windows\System32\msra.exe

 

02:48:22.0600 0364  C:\Windows\System32\msra.exe - ok

 

02:48:22.0610 0364  [ CD18E303B47E126EAACDEFAD26B006B2 ] C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe

 

02:48:22.0610 0364  C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe - ok

 

02:48:22.0616 0364  [ C22983E20481AA2E07E564632C82B81E ] C:\Program Files\DAEMON Tools Lite\Engine.dll

 

02:48:22.0616 0364  C:\Program Files\DAEMON Tools Lite\Engine.dll - ok

 

02:48:22.0628 0364  [ 0486B27A7A31EDFA9F92A7F6BBC964E5 ] C:\Windows\System32\stapi32.dll

 

02:48:22.0629 0364  C:\Windows\System32\stapi32.dll - ok

 

02:48:22.0637 0364  [ 6793734153D6FD3C4E81D1F12D88957F ] C:\Program Files\McAfee Security Scan\uninstall.exe

 

02:48:22.0637 0364  C:\Program Files\McAfee Security Scan\uninstall.exe - ok

 

02:48:22.0647 0364  [ 8367988DC0585700CFA758F18A2EF1AC ] C:\Windows\System32\ac3config.exe

 

02:48:22.0647 0364  C:\Windows\System32\ac3config.exe - ok

 

02:48:22.0661 0364  [ 8C04DFEC2438CF43D575B2B03F23E24A ] C:\Windows\System32\C2MP\DivXConfig.exe

 

02:48:22.0661 0364  C:\Windows\System32\C2MP\DivXConfig.exe - ok

 

02:48:22.0675 0364  [ 2D7C1F659699D6DA65E1F9B70B84C2C4 ] C:\Windows\System32\C2MP\GSpot.exe

 

02:48:22.0675 0364  C:\Windows\System32\C2MP\GSpot.exe - ok

 

02:48:22.0686 0364  [ 7CD104D7791EC5DC4EE6FA1AE57325D4 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtCore4.dll

 

02:48:22.0686 0364  C:\Program Files\Common Files\DivX Shared\Qt4.8\QtCore4.dll - ok

 

02:48:22.0695 0364  [ 82A98D0EB83505529AD81E4C1FADC37D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll

 

02:48:22.0695 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok

 

02:48:22.0706 0364  [ A2CC385D7BD26001AF002E8BD98E05AE ] C:\Program Files\Pando Networks\Media Booster\BugSplat.dll

 

02:48:22.0707 0364  C:\Program Files\Pando Networks\Media Booster\BugSplat.dll - ok

 

02:48:22.0724 0364  [ D9963D39F6711E9A1C14C939C3A25605 ] C:\Windows\System32\mdmxsdk.dll

 

02:48:22.0724 0364  C:\Windows\System32\mdmxsdk.dll - ok

 

02:48:22.0733 0364  [ CADBD5403066F0FFB5780E7EC7F941CA ] C:\Windows\System32\C2MP\Uninst.exe

 

02:48:22.0733 0364  C:\Windows\System32\C2MP\Uninst.exe - ok

 

02:48:22.0742 0364  [ C39AD6299E0E1F7AA3F5B51AC9B5CD0E ] C:\Windows\System32\C2MP\AviC.exe

 

02:48:22.0742 0364  C:\Windows\System32\C2MP\AviC.exe - ok

 

02:48:22.0751 0364  [ 7CE40A557359849EA374E0E4DDE52E26 ] C:\Windows\System32\C2MP\MiniCalc.exe

 

02:48:22.0751 0364  C:\Windows\System32\C2MP\MiniCalc.exe - ok

 

02:48:22.0767 0364  [ 95CAEF9DA6E9AEE1ECD627527CFA0F38 ] C:\Windows\System32\C2MP\OGMCalc.exe

 

02:48:22.0767 0364  C:\Windows\System32\C2MP\OGMCalc.exe - ok

 

02:48:22.0781 0364  [ 487AF46145B81C5BC54873E764F93636 ] C:\Windows\System32\C2MP\StatsReader.exe

 

02:48:22.0781 0364  C:\Windows\System32\C2MP\StatsReader.exe - ok

 

02:48:22.0790 0364  [ 625020DE1DBE6A19EDF26916A127AD3D ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\outicon.exe

 

02:48:22.0790 0364  C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\outicon.exe - ok

 

02:48:22.0801 0364  [ D75E7F29044AC6713AEABE3936490D30 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\misc.exe

 

02:48:22.0801 0364  C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\misc.exe - ok

 

02:48:22.0813 0364  [ E85D3155D40F86279E6A5A3489ACC095 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\cagicon.exe

 

02:48:22.0813 0364  C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\cagicon.exe - ok

 

02:48:22.0823 0364  [ 0AE8BFCD467ED749575EBF2A5CC7E732 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\msouc.exe

 

02:48:22.0823 0364  C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\msouc.exe - ok

 

02:48:22.0840 0364  [ B61315F9701F911648524F77308899A5 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\oisicon.exe

 

02:48:22.0840 0364  C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\oisicon.exe - ok

 

02:48:22.0852 0364  [ 859642746B575ECE7DEAE9915631CB87 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE

 

02:48:22.0852 0364  C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE - ok

 

02:48:22.0866 0364  [ F721DA9797379AD77617E754E3334376 ] C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe

 

02:48:22.0866 0364  C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe - ok

 

02:48:22.0872 0364  [ B6384C99ED7472F39977B1A2663C2BE2 ] C:\Program Files\Common Files\microsoft shared\Works Shared\WksCal.exe

 

02:48:22.0872 0364  C:\Program Files\Common Files\microsoft shared\Works Shared\WksCal.exe - ok

 

02:48:22.0888 0364  [ FE01A9088D1E62B0A4A31084CC6E43FC ] C:\Program Files\Microsoft Works\WksSb.exe

 

02:48:22.0888 0364  C:\Program Files\Microsoft Works\WksSb.exe - ok

 

02:48:22.0899 0364  [ CE56C2B2D0EE4669F2C193147A83E6B7 ] C:\Program Files\Microsoft Works\wksss.exe

 

02:48:22.0899 0364  C:\Program Files\Microsoft Works\wksss.exe - ok

 

02:48:22.0910 0364  [ B11DC3D321AA003E6BEB770DC2911D2A ] C:\Program Files\Microsoft Works\WksWP.exe

 

02:48:22.0910 0364  C:\Program Files\Microsoft Works\WksWP.exe - ok

 

02:48:22.0920 0364  [ F4BCC0C5F6E88F9C9A18DBCE748963B1 ] C:\Program Files\NetWaiting\NetWaiting.exe

 

02:48:22.0920 0364  C:\Program Files\NetWaiting\NetWaiting.exe - ok

 

02:48:22.0930 0364  [ 99818062462065F94DC8AB2FB44068BE ] C:\Program Files\Steam\tier0_s.dll

 

02:48:22.0930 0364  C:\Program Files\Steam\tier0_s.dll - ok

 

02:48:22.0941 0364  [ 8F6117E54499AC5ED54E8DD43C35EB84 ] C:\Program Files\Notepad++\notepad++.exe

 

02:48:22.0941 0364  C:\Program Files\Notepad++\notepad++.exe - ok

 

02:48:22.0952 0364  [ B5D7BBD83870C9D59D1F6160DD3D71E0 ] C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe

 

02:48:22.0952 0364  C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe - ok

 

02:48:22.0965 0364  [ 9CECDDA4EDD0D37499B862DC14C1B65C ] C:\Program Files\real\realplayer\rpwa3260.dll

 

02:48:22.0965 0364  C:\Program Files\real\realplayer\rpwa3260.dll - ok

 

02:48:22.0976 0364  [ 74B2D4C4DAEAF401C73DE8F7A5491331 ] C:\Program Files\TRENDnet\TEW-424UB\WlanWPS.dll

 

02:48:22.0976 0364  C:\Program Files\TRENDnet\TEW-424UB\WlanWPS.dll - ok

 

02:48:22.0985 0364  [ A7532E66EA2F168A0970E829D8986423 ] C:\Program Files\Steam\dbghelp.dll

 

02:48:22.0985 0364  C:\Program Files\Steam\dbghelp.dll - ok

 

02:48:22.0995 0364  [ 5FDB273EC4A139CC7F58A4F9FF4A08F7 ] C:\Program Files\Pando Networks\Media Booster\nss3.dll

 

02:48:22.0995 0364  C:\Program Files\Pando Networks\Media Booster\nss3.dll - ok

 

02:48:23.0007 0364  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll

 

02:48:23.0007 0364  C:\Windows\System32\msvcr100_clr0400.dll - ok

 

02:48:23.0021 0364  [ 966D8AC2491FF009B6BB3F335F6EF8A5 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtGui4.dll

 

02:48:23.0021 0364  C:\Program Files\Common Files\DivX Shared\Qt4.8\QtGui4.dll - ok

 

02:48:23.0032 0364  [ 1FB67269E80F7F831445915D43120157 ] C:\Program Files\Steam\vstdlib_s.dll

 

02:48:23.0032 0364  C:\Program Files\Steam\vstdlib_s.dll - ok

 

02:48:23.0043 0364  [ 7F3A97D8DE1F044FDE1C7BC66BC4BE4F ] C:\Program Files\TRENDnet\TEW-424UB\RtlLib.dll

 

02:48:23.0043 0364  C:\Program Files\TRENDnet\TEW-424UB\RtlLib.dll - ok

 

02:48:23.0054 0364  [ 142BBD9373F7F278C5D9ECA6756BA8A8 ] C:\Users\Ken\AppData\Roaming\Spotify\Data\libcef.dll

 

02:48:23.0054 0364  C:\Users\Ken\AppData\Roaming\Spotify\Data\libcef.dll - ok

 

02:48:23.0065 0364  [ 68EC8AB5E5E4D3E29589C8D2FB6DC96D ] C:\Program Files\Pando Networks\Media Booster\softokn3.dll

 

02:48:23.0065 0364  C:\Program Files\Pando Networks\Media Booster\softokn3.dll - ok

 

02:48:23.0077 0364  [ 564E468E1422FDD64A958A66B05B4D91 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll

 

02:48:23.0077 0364  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok

 

02:48:23.0086 0364  [ 0A990AFB9F2726323D61C8ECB8B70B17 ] C:\Windows\System32\security.dll

 

02:48:23.0087 0364  C:\Windows\System32\security.dll - ok

 

02:48:23.0095 0364  [ 22E04A8AE1ABA831026F8F3328F85995 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll

 

02:48:23.0096 0364  C:\Program Files\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll - ok

 

02:48:23.0104 0364  [ 3A84E46897EA16D0EF2FAE3B9E4C9B07 ] C:\Program Files\Google\Picasa3\Uninstall.exe

 

02:48:23.0105 0364  C:\Program Files\Google\Picasa3\Uninstall.exe - ok

 

02:48:23.0120 0364  [ E98D0D64BD25EDCFD3AE0B90514099BA ] C:\Windows\Installer\{EA1FAE0F-2354-4E32-B423-ABAE8E358F91}\recordingmanager.exe

 

02:48:23.0120 0364  C:\Windows\Installer\{EA1FAE0F-2354-4E32-B423-ABAE8E358F91}\recordingmanager.exe - ok

 

02:48:23.0132 0364  [ 3EEEF4496535D442A3940A9009186B12 ] C:\Program Files\real\realplayer\realconverter.exe

 

02:48:23.0132 0364  C:\Program Files\real\realplayer\realconverter.exe - ok

 

02:48:23.0141 0364  [ E799DC41BB87DCA823233BC984379AAA ] C:\Program Files\real\realplayer\realtrimmer.exe

 

02:48:23.0141 0364  C:\Program Files\real\realplayer\realtrimmer.exe - ok

 

02:48:23.0151 0364  [ 80F943DC6E1E7B0D89BA07ADA9DC120C ] C:\Program Files\Common Files\Real\Plugins\basi3260.dll

 

02:48:23.0151 0364  C:\Program Files\Common Files\Real\Plugins\basi3260.dll - ok

 

02:48:23.0162 0364  [ E26EBBF5B1FE277C8FCAFBEBB9585EC2 ] C:\Program Files\Recuva\Recuva.exe

 

02:48:23.0162 0364  C:\Program Files\Recuva\Recuva.exe - ok

 

02:48:23.0193 0364  [ FB4EEB0360929CBA3196FBF053CDCFB9 ] C:\Program Files\Recuva\uninst.exe

 

02:48:23.0193 0364  C:\Program Files\Recuva\uninst.exe - ok

 

02:48:23.0210 0364  [ E2A5F51D91B0A10381747A97983DC5A1 ] C:\Users\Ken\AppData\Roaming\Spotify\Data\icudt.dll

 

02:48:23.0210 0364  C:\Users\Ken\AppData\Roaming\Spotify\Data\icudt.dll - ok

 

02:48:23.0220 0364  [ 336BD49193BAA48546421DAC30E3344A ] C:\Windows\Installer\{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}\MainIcon.exe

 

02:48:23.0220 0364  C:\Windows\Installer\{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}\MainIcon.exe - ok

 

02:48:23.0240 0364  [ 493F0AC5E6E8ABB4E58690249146C5B0 ] C:\Program Files\Sandboxie\Start.exe

 

02:48:23.0240 0364  C:\Program Files\Sandboxie\Start.exe - ok

 

02:48:23.0249 0364  [ 64B82BE29788FE667BA19913D176E5CB ] C:\Windows\Installer\SandboxieInstall32.exe

 

02:48:23.0249 0364  C:\Windows\Installer\SandboxieInstall32.exe - ok

 

02:48:23.0258 0364  [ 94FF7D87E0639701DF79A40C436149C5 ] C:\Windows\System32\wlanui.dll

 

02:48:23.0258 0364  C:\Windows\System32\wlanui.dll - ok

 

02:48:23.0268 0364  [ 1108B166160D6023AF76435B074052B6 ] C:\Program Files\InstallShield Installation Information\{B1BDEA80-95CE-4DFB-B9D3-DC800E7F87B4}\setup.exe

 

02:48:23.0268 0364  C:\Program Files\InstallShield Installation Information\{B1BDEA80-95CE-4DFB-B9D3-DC800E7F87B4}\setup.exe - ok

 

02:48:23.0285 0364  [ F24DC728A5284121B87B7C4314582A75 ] C:\Program Files\Pando Networks\Media Booster\plds4.dll

 

02:48:23.0285 0364  C:\Program Files\Pando Networks\Media Booster\plds4.dll - ok

 

02:48:23.0295 0364  [ 10980B501F20F9CBA822127BA9CC00DA ] C:\Program Files\V CAST Music with Rhapsody\WiseUpd2.exe

 

02:48:23.0295 0364  C:\Program Files\V CAST Music with Rhapsody\WiseUpd2.exe - ok

 

02:48:23.0310 0364  [ 3A938ED2427DF10E571041069E6980CB ] C:\Program Files\V CAST Music with Rhapsody\Unwise32.exe

 

02:48:23.0311 0364  C:\Program Files\V CAST Music with Rhapsody\Unwise32.exe - ok

 

02:48:23.0322 0364  [ 60EDF8622CAD337A3629E9E6561EAC73 ] C:\Program Files\VideoLAN\VLC\vlc.exe

 

02:48:23.0322 0364  C:\Program Files\VideoLAN\VLC\vlc.exe - ok

 

02:48:23.0331 0364  [ F6D5B1943A0C5D31FD9132C530A4B031 ] C:\Program Files\WinAce\winace.exe

 

02:48:23.0331 0364  C:\Program Files\WinAce\winace.exe - ok

 

02:48:23.0343 0364  [ ADE3384FBF2314072424F01F45E17067 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtXml4.dll

 

02:48:23.0343 0364  C:\Program Files\Common Files\DivX Shared\Qt4.8\QtXml4.dll - ok

 

02:48:23.0353 0364  [ 09EFB6439C76E94059C5E22409926B48 ] C:\Users\Ken\AppData\Local\temp\BRC5BE.tmp

 

02:48:23.0353 0364  C:\Users\Ken\AppData\Local\temp\BRC5BE.tmp - ok

 

02:48:23.0368 0364  [ 10B7FDBEC25B646FC0D9D0B9C2AA8DFB ] C:\Program Files\WinAce\order.exe

 

02:48:23.0368 0364  C:\Program Files\WinAce\order.exe - ok

 

02:48:23.0390 0364  [ FDA1BA7B2179F29D6DEB3DEC9C9037D0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll

 

02:48:23.0390 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll - ok

 

02:48:23.0401 0364  [ FF0ACA55FDCFCCF444F5F40E0D0E69C0 ] C:\Program Files\WinAce\sxuninst.exe

 

02:48:23.0401 0364  C:\Program Files\WinAce\sxuninst.exe - ok

 

02:48:23.0411 0364  [ 0D2D1D85D299A43A9076FCB4C7ECEE81 ] C:\Program Files\Windows Live\Mesh\WLSync.exe

 

02:48:23.0411 0364  C:\Program Files\Windows Live\Mesh\WLSync.exe - ok

 

02:48:23.0428 0364  [ 091014DF9AD0C0C3D6C1F3DDAE5867D6 ] C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe

 

02:48:23.0428 0364  C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe - ok

 

02:48:23.0436 0364  [ 97BACFD757C2F626D2B98ACAECA44C08 ] C:\Program Files\Wizards of the Coast\Magic Online\Renamer.exe

 

02:48:23.0436 0364  C:\Program Files\Wizards of the Coast\Magic Online\Renamer.exe - ok

 

02:48:23.0447 0364  [ 885B26318B25D30C50A8E42937ED983D ] C:\Program Files\InstallShield Installation Information\{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}\setup.exe

 

02:48:23.0447 0364  C:\Program Files\InstallShield Installation Information\{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}\setup.exe - ok

 

02:48:23.0464 0364  [ C83470111578D3039DB619529AF40720 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll

 

02:48:23.0464 0364  C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok

 

02:48:23.0472 0364  [ 3A72AB0BAF2DC1AE0BA6E1EE28FFCC0B ] C:\Windows\System32\msftedit.dll

 

02:48:23.0472 0364  C:\Windows\System32\msftedit.dll - ok

 

02:48:23.0482 0364  [ 8795AFF4BD4A5EC1ED81B7A469F20919 ] C:\Program Files\TRENDnet\TEW-424UB\IpLib.dll

 

02:48:23.0482 0364  C:\Program Files\TRENDnet\TEW-424UB\IpLib.dll - ok

 

02:48:23.0493 0364  [ A924D39668F9618F3843D2FA6669378F ] C:\Program Files\Pando Networks\Media Booster\ssl3.dll

 

02:48:23.0493 0364  C:\Program Files\Pando Networks\Media Booster\ssl3.dll - ok

 

02:48:23.0503 0364  [ 479268EE20B9EB00B2300EF211D05B7B ] C:\Program Files\DivX\DivX Media Server\mc_net_tools.dll

 

02:48:23.0503 0364  C:\Program Files\DivX\DivX Media Server\mc_net_tools.dll - ok

 

02:48:23.0519 0364  [ BFDEDA37DE512BDEE122F8339DBFE711 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll

 

02:48:23.0519 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll - ok

 

02:48:23.0528 0364  [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Windows\System32\D3DCompiler_43.dll

 

02:48:23.0528 0364  C:\Windows\System32\D3DCompiler_43.dll - ok

 

02:48:23.0540 0364  [ 81322F09E392689B2AF50C65714175D6 ] C:\Program Files\DellSupport\gtagnt.dll

 

02:48:23.0540 0364  C:\Program Files\DellSupport\gtagnt.dll - ok

 

02:48:23.0553 0364  [ 5E21285DA720664CEC9B57664D4D2407 ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll

 

02:48:23.0553 0364  C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok

 

02:48:23.0568 0364  [ F1ED09F4F1FE819031F9140B76F20395 ] C:\Program Files\TRENDnet\TEW-424UB\libeay32.dll

 

02:48:23.0568 0364  C:\Program Files\TRENDnet\TEW-424UB\libeay32.dll - ok

 

02:48:23.0583 0364  [ FD6218D4831F7A9D59313606F28FDCA8 ] C:\Program Files\Pando Networks\Media Booster\smime3.dll

 

02:48:23.0584 0364  C:\Program Files\Pando Networks\Media Booster\smime3.dll - ok

 

02:48:23.0592 0364  [ 55C5164E03D707AEFC8B7C97B7074564 ] C:\Program Files\DivX\DivX Media Server\mc_net_source.dll

 

02:48:23.0592 0364  C:\Program Files\DivX\DivX Media Server\mc_net_source.dll - ok

 

02:48:23.0602 0364  [ 86E39E9161C3D930D93822F1563C280D ] C:\Windows\System32\D3DX9_43.dll

 

02:48:23.0602 0364  C:\Windows\System32\D3DX9_43.dll - ok

 

02:48:23.0612 0364  [ 9A1ED0B28AD9CFB5E506BD51439F3F17 ] C:\Program Files\DellSupport\cfgdata.dll

 

02:48:23.0612 0364  C:\Program Files\DellSupport\cfgdata.dll - ok

 

02:48:23.0620 0364  [ FA54697620A923BACA6FE897B971BB28 ] C:\Program Files\DivX\DivX Media Server\mc_parser_sdp.dll

 

02:48:23.0621 0364  C:\Program Files\DivX\DivX Media Server\mc_parser_sdp.dll - ok

 

02:48:23.0631 0364  [ 08AD4CD2A940379F1DCDBDB9884A1375 ] C:\Users\Ken\AppData\Local\temp\BRE540.tmp

 

02:48:23.0631 0364  C:\Users\Ken\AppData\Local\temp\BRE540.tmp - ok

 

02:48:23.0641 0364  [ E5BC8D93CDCB957146D971647849A154 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll

 

02:48:23.0641 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok

 

02:48:23.0657 0364  [ 8DB479E065F2B546BFBD7323E5EE5B02 ] C:\Windows\System32\Macromed\Flash\Flash32_11_7_700_224.ocx

 

02:48:23.0657 0364  C:\Windows\System32\Macromed\Flash\Flash32_11_7_700_224.ocx - ok

 

02:48:23.0669 0364  [ 4235107CAA0BCE7E872C4355329FC06E ] C:\Program Files\DellSupport\actmgr.dll

 

02:48:23.0669 0364  C:\Program Files\DellSupport\actmgr.dll - ok

 

02:48:23.0679 0364  [ 46D0CD070F09596DC5ECC3BF88DABD5D ] C:\Program Files\Xvid\uninstall.exe

 

02:48:23.0679 0364  C:\Program Files\Xvid\uninstall.exe - ok

 

02:48:23.0692 0364  [ FA31E5F1D353649141D3C78278DD7579 ] C:\Program Files\Xvid\MiniConvert.exe

 

02:48:23.0692 0364  C:\Program Files\Xvid\MiniConvert.exe - ok

 

02:48:23.0701 0364  [ 3A2EEE8444A8E5C1A454C57B2198F5FC ] C:\Windows\System32\ntlanman.dll

 

02:48:23.0701 0364  C:\Windows\System32\ntlanman.dll - ok

 

02:48:23.0711 0364  [ C39AD6299E0E1F7AA3F5B51AC9B5CD0E ] C:\Program Files\Xvid\AviC.exe

 

02:48:23.0711 0364  C:\Program Files\Xvid\AviC.exe - ok

 

02:48:23.0725 0364  [ CFBD2E1FE18B50748A76703A2DC6D4E3 ] C:\Windows\System32\davclnt.dll

 

02:48:23.0725 0364  C:\Windows\System32\davclnt.dll - ok

 

02:48:23.0741 0364  [ 582EFE56FC0858E58A6CEBA2A64B02C7 ] C:\Windows\System32\drprov.dll

 

02:48:23.0742 0364  C:\Windows\System32\drprov.dll - ok

 

02:48:23.0746 0364  [ 7CE40A557359849EA374E0E4DDE52E26 ] C:\Program Files\Xvid\MiniCalc.exe

 

02:48:23.0746 0364  C:\Program Files\Xvid\MiniCalc.exe - ok

 

02:48:23.0757 0364  [ 487AF46145B81C5BC54873E764F93636 ] C:\Program Files\Xvid\StatsReader.exe

 

02:48:23.0757 0364  C:\Program Files\Xvid\StatsReader.exe - ok

 

02:48:23.0772 0364  [ A5013F152486A54234133DFA5DA4FC3B ] C:\Program Files\DivX\DivX Media Server\mc_upnp_dlna_stack.dll

 

02:48:23.0772 0364  C:\Program Files\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok

 

02:48:23.0781 0364  [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll

 

02:48:23.0781 0364  C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok

 

02:48:23.0793 0364  [ 13820B972D74B3DE4F6552A57AC799A7 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll

 

02:48:23.0793 0364  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok

 

02:48:23.0806 0364  [ 979C780C57D5099DFA4F00E23EDB64D5 ] C:\Program Files\DivX\DivX Media Server\mc_mux_mp2.dll

 

02:48:23.0806 0364  C:\Program Files\DivX\DivX Media Server\mc_mux_mp2.dll - ok

 

02:48:23.0822 0364  [ 07BBB3CBB86D2626B46BC1D210C4781B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll

 

02:48:23.0822 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok

 

02:48:23.0834 0364  [ CE2E76F684D2AB30CB03CCEC73FFA269 ] C:\Program Files\DivX\DivX Media Server\mc_enc_mp2v.dll

 

02:48:23.0834 0364  C:\Program Files\DivX\DivX Media Server\mc_enc_mp2v.dll - ok

 

02:48:23.0843 0364  [ C19068FF2E23CBC394C7984844795B95 ] C:\Program Files\PogoplugBackup\PPCommon.dll

 

02:48:23.0843 0364  C:\Program Files\PogoplugBackup\PPCommon.dll - ok

 

02:48:23.0854 0364  [ 91F90CF9DA4C3F5B634BB72511FF2614 ] C:\Program Files\Pando Networks\Media Booster\freebl3.dll

 

02:48:23.0854 0364  C:\Program Files\Pando Networks\Media Booster\freebl3.dll - ok

 

02:48:23.0867 0364  [ FCE0F4575E9D27AF0085A19E454E2C45 ] C:\Program Files\DivX\DivX Media Server\mc_enc_mpa.dll

 

02:48:23.0867 0364  C:\Program Files\DivX\DivX Media Server\mc_enc_mpa.dll - ok

 

02:48:23.0875 0364  [ CBB7256D634B0DDEC801196620FC6EDC ] C:\Program Files\PogoplugBackup\CefSharp.dll

 

02:48:23.0875 0364  C:\Program Files\PogoplugBackup\CefSharp.dll - ok

 

02:48:23.0890 0364  [ E35514FC402F6268333529384CFD7B20 ] C:\Users\Ken\AppData\Local\temp\BRED6C.tmp

 

02:48:23.0890 0364  C:\Users\Ken\AppData\Local\temp\BRED6C.tmp - ok

 

02:48:23.0900 0364  [ 015E99A7634B93E8BB0380C70F3D2CC3 ] C:\Windows\System32\wmp.dll

 

02:48:23.0900 0364  C:\Windows\System32\wmp.dll - ok

 

02:48:23.0906 0364  [ EACACA0F2FF4CC54A909E3C5721FCDE8 ] C:\Windows\System32\msvfw32.dll

 

02:48:23.0906 0364  C:\Windows\System32\msvfw32.dll - ok

 

02:48:23.0920 0364  [ FE56897B27ED266F9C4E7D90A0B5DA47 ] C:\Program Files\iPod\bin\iPodService.exe

 

02:48:23.0920 0364  C:\Program Files\iPod\bin\iPodService.exe - ok

 

02:48:23.0929 0364  [ FA9AA80A151D0E5365EFB722D4B2A2F3 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll

 

02:48:23.0929 0364  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok

 

02:48:23.0939 0364  [ 9F12AAB1AE134DB2628C46BCF556AC78 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll

 

02:48:23.0939 0364  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok

 

02:48:23.0953 0364  [ F2533D0A9C2F344B9DAFEDF9ED3BE754 ] C:\Program Files\DellSupport\GTAction\handlers\brkrsvch.dll

 

02:48:23.0953 0364  C:\Program Files\DellSupport\GTAction\handlers\brkrsvch.dll - ok

 

02:48:23.0965 0364  [ 9441A231C0AA0712F7CF3B10D9CFCF76 ] C:\Windows\System32\wmploc.DLL

 

02:48:23.0965 0364  C:\Windows\System32\wmploc.DLL - ok

 

02:48:23.0975 0364  [ B7B74ED585689A98360E77D85313C523 ] C:\Program Files\PogoplugBackup\libcef.dll

 

02:48:23.0975 0364  C:\Program Files\PogoplugBackup\libcef.dll - ok

 

02:48:23.0984 0364  [ 4C96E5B53EAF63BCBEA6FA79C9A0AE59 ] C:\Windows\System32\VAN.dll

 

02:48:23.0985 0364  C:\Windows\System32\VAN.dll - ok

 

02:48:23.0996 0364  [ 4EC8572B3E74DB47F45A1BC9750950EF ] C:\Windows\System32\xwizards.dll

 

02:48:23.0996 0364  C:\Windows\System32\xwizards.dll - ok

 

02:48:24.0004 0364  [ D1B995DD331CC987CF5AF255DFC4D417 ] C:\Windows\System32\xwtpw32.dll

 

02:48:24.0005 0364  C:\Windows\System32\xwtpw32.dll - ok

 

02:48:24.0019 0364  [ 1017DC8EA498A5CDBBBBB482FBF36333 ] C:\Windows\System32\RASMM.dll

 

02:48:24.0019 0364  C:\Windows\System32\RASMM.dll - ok

 

02:48:24.0029 0364  [ 63E3520ADC155653CB86E5FC37EB32DD ] C:\Windows\System32\WlanMM.dll

 

02:48:24.0029 0364  C:\Windows\System32\WlanMM.dll - ok

 

02:48:24.0040 0364  [ 8CBE8BB8E439B8DCAA4978510619118C ] C:\Windows\System32\ndfapi.dll

 

02:48:24.0040 0364  C:\Windows\System32\ndfapi.dll - ok

 

02:48:24.0058 0364  [ 896F1DAE48558CE96AF012C7E594CCC6 ] C:\Program Files\DellSupport\GTAction\handlers\grouph.dll

 

02:48:24.0058 0364  C:\Program Files\DellSupport\GTAction\handlers\grouph.dll - ok

 

02:48:24.0068 0364  [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll

 

02:48:24.0070 0364  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok

 

02:48:24.0078 0364  [ F61EFF66EEDEFEAAD0601EB701CCEA12 ] C:\Program Files\DellSupport\GTAction\handlers\pnph.dll

 

02:48:24.0078 0364  C:\Program Files\DellSupport\GTAction\handlers\pnph.dll - ok

 

02:48:24.0088 0364  [ 214E09E68CBCB03502EAFC6A4360A91C ] C:\Program Files\PogoplugBackup\PPAPI.dll

 

02:48:24.0088 0364  C:\Program Files\PogoplugBackup\PPAPI.dll - ok

 

02:48:24.0102 0364  [ 2C064074F387C64A46081424D3A2A7E0 ] C:\Program Files\PogoplugBackup\NLog.dll

 

02:48:24.0102 0364  C:\Program Files\PogoplugBackup\NLog.dll - ok

 

02:48:24.0112 0364  [ D7999068E94589045BB8C5380AC79937 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\15872842e3e63ddf0f720f406706198e\System.ni.dll

 

02:48:24.0112 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\15872842e3e63ddf0f720f406706198e\System.ni.dll - ok

 

02:48:24.0123 0364  [ DEC08D7B15E3C1722F6575946D2B5D01 ] C:\Program Files\DellSupport\GTAction\handlers\qdiagh.dll

 

02:48:24.0123 0364  C:\Program Files\DellSupport\GTAction\handlers\qdiagh.dll - ok

 

02:48:24.0132 0364  [ B45F3D98A83B6E17599FD8E70ED5D9AE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b573c6a62bb88df0ee2af59b6a8ca910\System.Drawing.ni.dll

 

02:48:24.0133 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b573c6a62bb88df0ee2af59b6a8ca910\System.Drawing.ni.dll - ok

 

02:48:24.0144 0364  [ 755AD13D0042329925E2FAF3D070326D ] C:\Program Files\DellSupport\GTAction\handlers\trgloadh.dll

 

02:48:24.0144 0364  C:\Program Files\DellSupport\GTAction\handlers\trgloadh.dll - ok

 

02:48:24.0155 0364  [ 027491B39A7B16B116E780F55ABC288E ] C:\Users\Ken\AppData\Local\temp\BR273.tmp

 

02:48:24.0155 0364  C:\Users\Ken\AppData\Local\temp\BR273.tmp - ok

 

02:48:24.0166 0364  [ 6472D141970830F856778DE71EB93319 ] C:\Program Files\DellSupport\GTAction\handlers\trgregh.dll

 

02:48:24.0166 0364  C:\Program Files\DellSupport\GTAction\handlers\trgregh.dll - ok

 

02:48:24.0184 0364  [ F3B40E8216522857BDFAC50E78586551 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\153143f74d840484b510d8cf5187796b\System.Windows.Forms.ni.dll

 

02:48:24.0184 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\153143f74d840484b510d8cf5187796b\System.Windows.Forms.ni.dll - ok

 

02:48:24.0194 0364  [ A210F1AC135E5331C314CE5F394FB5A5 ] C:\Users\Ken\AppData\Local\temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll

 

02:48:24.0194 0364  C:\Users\Ken\AppData\Local\temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll - ok

 

02:48:24.0204 0364  [ 7D1A10A1F3562CCA1FD38E9BADA8FEC0 ] C:\Windows\System32\perfos.dll

 

02:48:24.0204 0364  C:\Windows\System32\perfos.dll - ok

 

02:48:24.0216 0364  [ 65D09D8BC91D74C8800725EB33D1EE1B ] C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll

 

02:48:24.0216 0364  C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll - ok

 

02:48:24.0231 0364  [ 7D1913E59C79AB565A73020F8BD13B40 ] C:\Program Files\DellSupport\trgmgr.dll

 

02:48:24.0231 0364  C:\Program Files\DellSupport\trgmgr.dll - ok

 

02:48:24.0241 0364  [ 2B88728D15315DED15598F87A018294B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\233661f3a2b632e9553915c8639637d0\System.Configuration.ni.dll

 

02:48:24.0241 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\233661f3a2b632e9553915c8639637d0\System.Configuration.ni.dll - ok

 

02:48:24.0251 0364  [ 2310A32BB0164552A311BFA02102A3D6 ] C:\Windows\System32\msvcp60.dll

 

02:48:24.0252 0364  C:\Windows\System32\msvcp60.dll - ok

 

02:48:24.0262 0364  [ 65D09D8BC91D74C8800725EB33D1EE1B ] C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll

 

02:48:24.0262 0364  C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - ok

 

02:48:24.0275 0364  [ 5CA2A1DBE29AEA7F0B5D2848A8D03F58 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43cd41484df96d15df949eb17dd88152\System.Xml.ni.dll

 

02:48:24.0275 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43cd41484df96d15df949eb17dd88152\System.Xml.ni.dll - ok

 

02:48:24.0289 0364  [ 7C5393905B52C3DC56A810C823DA4211 ] C:\Program Files\DellSupport\qdiagd.ocx

 

02:48:24.0289 0364  C:\Program Files\DellSupport\qdiagd.ocx - ok

 

02:48:24.0301 0364  [ E50A1DB5DE70D656287511297B42F9F2 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll

 

02:48:24.0301 0364  C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - ok

 

02:48:24.0312 0364  [ 85A2F736D68412184C41AFCC185F0584 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\2f9e0112e10f9e70d3430d0be9863976\System.Core.ni.dll

 

02:48:24.0312 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\2f9e0112e10f9e70d3430d0be9863976\System.Core.ni.dll - ok

 

02:48:24.0329 0364  [ 9E4F520270BF7301CC24E8FA67791C22 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll

 

02:48:24.0329 0364  C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - ok

 

02:48:24.0340 0364  [ 72FAB2C90296330ECA3787DC4093E208 ] C:\Users\Ken\AppData\Local\temp\BR3F54.tmp

 

02:48:24.0340 0364  C:\Users\Ken\AppData\Local\temp\BR3F54.tmp - ok

 

02:48:24.0348 0364  [ 3C3947042FD2D375CEFCE24C6F733A5B ] C:\Program Files\DellSupport\gdql_d.dll

 

02:48:24.0348 0364  C:\Program Files\DellSupport\gdql_d.dll - ok

 

02:48:24.0359 0364  [ 5A75521F155B0BAD159CD1B40125EFAD ] C:\Program Files\DellSupport\AUInst.dll

 

02:48:24.0359 0364  C:\Program Files\DellSupport\AUInst.dll - ok

 

02:48:24.0375 0364  [ F7A7FC8BBE03E2F0F2D6B1A5AF67217B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\be692307d47b83000bba8bb6b484aff0\System.ServiceModel.ni.dll

 

02:48:24.0375 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\be692307d47b83000bba8bb6b484aff0\System.ServiceModel.ni.dll - ok

 

02:48:24.0384 0364  [ D11F24E1FE46A1F97F878AF20F56BA26 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6f120c76113dc5166d2a5a5d21900f39\System.Data.ni.dll

 

02:48:24.0384 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6f120c76113dc5166d2a5a5d21900f39\System.Data.ni.dll - ok

 

02:48:24.0394 0364  [ 29B86B3C8253280151EEBE843A9648CD ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll

 

02:48:24.0394 0364  C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll - ok

 

02:48:24.0407 0364  [ 7B0A5601AE4B785BBCCDC521AC5CB28C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\2609614ca03927f7a99418c74844059b\System.Runtime.Serialization.ni.dll

 

02:48:24.0407 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\2609614ca03927f7a99418c74844059b\System.Runtime.Serialization.ni.dll - ok

 

02:48:24.0412 0364  [ 5178E8D74A2AC625C0489972099BC38F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\ac9e3eca6c148504588e7c6d09fe83e3\System.Management.ni.dll

 

02:48:24.0412 0364  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\ac9e3eca6c148504588e7c6d09fe83e3\System.Management.ni.dll - ok

 

02:48:24.0423 0364  [ BCED95C3424E3316D455E19B671ACEEC ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll

 

02:48:24.0423 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll - ok

 

02:48:24.0437 0364  [ F723422A11CD6FA13036746272200993 ] C:\Windows\System32\wbem\cimwin32.dll

 

02:48:24.0438 0364  C:\Windows\System32\wbem\cimwin32.dll - ok

 

02:48:24.0447 0364  [ 67BB7141F7F5F37411F796943B3418B6 ] C:\Windows\System32\framedynos.dll

 

02:48:24.0447 0364  C:\Windows\System32\framedynos.dll - ok

 

02:48:24.0456 0364  [ 18DC21CC80856AB7CA10F51B19CEEA2A ] C:\Program Files\PogoplugBackup\PogoplugMonitor.exe

 

02:48:24.0456 0364  C:\Program Files\PogoplugBackup\PogoplugMonitor.exe - ok

 

02:48:24.0466 0364  [ AC5DB309B4390402044066F4D3E8B787 ] C:\Program Files\PogoplugBackup\avcodec-53.dll

 

02:48:24.0466 0364  C:\Program Files\PogoplugBackup\avcodec-53.dll - ok

 

02:48:24.0481 0364  [ B4EB1E7438DC099078CE8FE6E5A2C99D ] C:\Users\Ken\AppData\Local\temp\BR5313.tmp

 

02:48:24.0481 0364  C:\Users\Ken\AppData\Local\temp\BR5313.tmp - ok

 

02:48:24.0492 0364  [ B70B9C4E47FF1F0E1F95FBDFD8B74A8A ] C:\Program Files\PogoplugBackup\avutil-51.dll

 

02:48:24.0492 0364  C:\Program Files\PogoplugBackup\avutil-51.dll - ok

 

02:48:24.0507 0364  [ B24BF80927D3D0A391CB8426F7CB290D ] C:\Users\Ken\AppData\Local\temp\BR5575.tmp

 

02:48:24.0507 0364  C:\Users\Ken\AppData\Local\temp\BR5575.tmp - ok

 

02:48:24.0518 0364  [ D1B495032F5760EDB341C43D4732FD19 ] C:\Program Files\PogoplugBackup\avformat-53.dll

 

02:48:24.0518 0364  C:\Program Files\PogoplugBackup\avformat-53.dll - ok

 

02:48:24.0530 0364  [ 360B5E2C91140CCA141B5CF51969F5B0 ] C:\Program Files\PogoplugBackup\icudt.dll

 

02:48:24.0530 0364  C:\Program Files\PogoplugBackup\icudt.dll - ok

 

02:48:24.0542 0364  [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Program Files\PogoplugBackup\d3dcompiler_43.dll

 

02:48:24.0543 0364  C:\Program Files\PogoplugBackup\d3dcompiler_43.dll - ok

 

02:48:24.0558 0364  [ 86E39E9161C3D930D93822F1563C280D ] C:\Program Files\PogoplugBackup\d3dx9_43.dll

 

02:48:24.0558 0364  C:\Program Files\PogoplugBackup\d3dx9_43.dll - ok

 

02:48:24.0569 0364  [ 4C17E41BF444F453CC5FB553A85EC930 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll

 

02:48:24.0569 0364  C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok

 

02:48:24.0578 0364  [ 059491AB94E76A651E41A2BBA80783AC ] C:\Program Files\PogoplugBackup\libGLESv2.dll

 

02:48:24.0578 0364  C:\Program Files\PogoplugBackup\libGLESv2.dll - ok

 

02:48:24.0588 0364  [ 159C77F7F995D0E27A51E8D9EEF11B30 ] C:\Program Files\PogoplugBackup\libEGL.dll

 

02:48:24.0588 0364  C:\Program Files\PogoplugBackup\libEGL.dll - ok

 

02:48:24.0599 0364  [ 06A4D5EA68AF9D86AA9406B4C0E54176 ] C:\Program Files\PogoplugBackup\PPLocale.dll

 

02:48:24.0599 0364  C:\Program Files\PogoplugBackup\PPLocale.dll - ok

 

02:48:24.0609 0364  [ 1153F58FACBC9731AF6CDF313F76DF29 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll

 

02:48:24.0609 0364  C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - ok

 

02:48:24.0620 0364  [ BADFB0DCCD9B7E9F2F6EB7954D24EED1 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll

 

02:48:24.0620 0364  C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - ok

 

02:48:24.0634 0364  [ EEEB86077BB4682B3FCFEDA5AED3E396 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll

 

02:48:24.0634 0364  C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - ok

 

02:48:24.0644 0364  [ E50A1DB5DE70D656287511297B42F9F2 ] C:\Program Files\QuickTime\Plugins\npqtplugin.dll

 

02:48:24.0645 0364  C:\Program Files\QuickTime\Plugins\npqtplugin.dll - ok

 

02:48:24.0653 0364  [ 13C1E611F3C3758BB2E4249A712900FE ] C:\Windows\System32\nvshext.dll

 

02:48:24.0653 0364  C:\Windows\System32\nvshext.dll - ok

 

02:48:24.0659 0364  [ 9E4F520270BF7301CC24E8FA67791C22 ] C:\Program Files\QuickTime\Plugins\npqtplugin2.dll

 

02:48:24.0659 0364  C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - ok

 

02:48:24.0669 0364  [ 1153F58FACBC9731AF6CDF313F76DF29 ] C:\Program Files\QuickTime\Plugins\npqtplugin3.dll

 

02:48:24.0669 0364  C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - ok

 

02:48:24.0686 0364  [ BADFB0DCCD9B7E9F2F6EB7954D24EED1 ] C:\Program Files\QuickTime\Plugins\npqtplugin4.dll

 

02:48:24.0686 0364  C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - ok

 

02:48:24.0696 0364  [ EEEB86077BB4682B3FCFEDA5AED3E396 ] C:\Program Files\QuickTime\Plugins\npqtplugin5.dll

 

02:48:24.0696 0364  C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - ok

 

02:48:24.0706 0364  [ 7E2B763CF671ADB558D5F7110889D469 ] C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL

 

02:48:24.0706 0364  C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL - ok

 

02:48:24.0716 0364  [ 7B882AEBC5F6DBEA4E0361C0FC3E36D4 ] C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL

 

02:48:24.0716 0364  C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL - ok

 

02:48:24.0725 0364  [ F833DD5D8F959819F44BC98F47B1B6BB ] C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

 

02:48:24.0725 0364  C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - ok

 

02:48:24.0738 0364  [ B938C1AE3ADCE166190895685B0BEB0D ] C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

 

02:48:24.0739 0364  C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll - ok

 

02:48:24.0750 0364  [ 55F213A61B82B6174B02881562FE20A0 ] C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

 

02:48:24.0750 0364  C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll - ok

 

02:48:24.0760 0364  [ DCA3FA9F9DD103DC39C24C85EF073DB1 ] C:\Windows\System32\icmp.dll

 

02:48:24.0760 0364  C:\Windows\System32\icmp.dll - ok

 

02:48:24.0771 0364  [ BA7C3E9DD6B1A632124C8659E8014028 ] C:\Windows\System32\perfctrs.dll

 

02:48:24.0771 0364  C:\Windows\System32\perfctrs.dll - ok

 

02:48:24.0786 0364  [ 64DD7FB3C0FDFFDC853835739E271FF9 ] C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcpluir.dll

 

02:48:24.0786 0364  C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcpluir.dll - ok

 

02:48:24.0803 0364  [ F3B302C554FCA6C3BE17164A159BE29E ] C:\Program Files\DAEMON Tools Lite\imgengine.dll

 

02:48:24.0804 0364  C:\Program Files\DAEMON Tools Lite\imgengine.dll - ok

 

02:48:24.0813 0364  [ C548328E9DE5EB73350EF292D7140662 ] C:\Program Files\Google\Picasa3\npPicasa3.dll

 

02:48:24.0814 0364  C:\Program Files\Google\Picasa3\npPicasa3.dll - ok

 

02:48:24.0836 0364  [ 3D928B3FE97C403A33F803B3D1A260C9 ] C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll

 

02:48:24.0836 0364  C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll - ok

 

02:48:24.0845 0364  [ D0DA6B2FB50A0667CF4BACC2AEFEA009 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll

 

02:48:24.0845 0364  C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll - ok

 

02:48:24.0856 0364  [ FED935F9471C4F28CDFBCA604D08BD65 ] C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

 

02:48:24.0856 0364  C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll - ok

 

02:48:24.0868 0364  [ D40B9183C149CE2CBBE93AC1A275BDA9 ] C:\Program Files\VideoLAN\VLC\npvlc.dll

 

02:48:24.0868 0364  C:\Program Files\VideoLAN\VLC\npvlc.dll - ok

 

02:48:24.0879 0364  [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

 

02:48:24.0879 0364  C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - ok

 

02:48:24.0904 0364  [ 270EE43CC00609B9937AAF94E1E970D4 ] C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

 

02:48:24.0904 0364  C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - ok

 

02:48:24.0910 0364  [ 6D657ABADF217DBB17CF0A0AF44A7E29 ] C:\ProgramData\NexonUS\NGM\npNxGameUS.dll

 

02:48:24.0910 0364  C:\ProgramData\NexonUS\NGM\npNxGameUS.dll - ok

 

02:48:24.0923 0364  [ F7015E6C5FE1E74C0E029A291E732787 ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

 

02:48:24.0923 0364  C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - ok

 

02:48:24.0933 0364  [ 395BB0421E1C57D201DCE4D48E05E0BA ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

 

02:48:24.0933 0364  C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - ok

 

02:48:24.0944 0364  [ BF115DE08783E9FA8A9BB83DAA39149B ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

 

02:48:24.0944 0364  C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - ok

 

02:48:24.0955 0364  [ A56B8E622037E6D57480F16F4B8F472C ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

 

02:48:24.0955 0364  C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - ok

 

02:48:24.0965 0364  [ 6D48C42BF2DC4225353B86F2E2B90CFA ] C:\Windows\System32\WLanConn.dll

 

02:48:24.0965 0364  C:\Windows\System32\WLanConn.dll - ok

 

02:48:24.0975 0364  [ 3D76B5C0E02ECC19C1F5756E8FD97F72 ] C:\Windows\System32\Macromed\Flash\NPSWF32_11_7_700_224.dll

 

02:48:24.0975 0364  C:\Windows\System32\Macromed\Flash\NPSWF32_11_7_700_224.dll - ok

 

02:48:24.0985 0364  [ 7A1E2AF50DDCDD49C114C1099DBEF6E1 ] C:\Windows\System32\npDeployJava1.dll

 

02:48:24.0985 0364  C:\Windows\System32\npDeployJava1.dll - ok

 

02:48:25.0001 0364  [ A5C14075B571AF1C9592595BE724D9D2 ] C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

 

02:48:25.0001 0364  C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll - ok

 

02:48:25.0013 0364  [ AB87EEFFD18F2BAAFC274E7075EA6C67 ] C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

 

02:48:25.0013 0364  C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - ok

 

02:48:25.0025 0364  [ 9F01950A89FF64D16CEC2836785FA600 ] C:\Program Files\real\realplayer\Netscape6\nppl3260.dll

 

02:48:25.0025 0364  C:\Program Files\real\realplayer\Netscape6\nppl3260.dll - ok

 

02:48:25.0033 0364  [ B90EE25DEF386CD4D8D8D4CEFB7B5E9C ] C:\Program Files\real\realplayer\Netscape6\nprpplugin.dll

 

02:48:25.0034 0364  C:\Program Files\real\realplayer\Netscape6\nprpplugin.dll - ok

 

02:48:25.0043 0364  [ 35937EAD711207544E219C2A19A78A7D ] C:\Program Files\Windows Media Player\wmpnscfg.exe

 

02:48:25.0043 0364  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok

 

02:48:25.0056 0364  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

 

02:48:25.0056 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok

 

02:48:25.0065 0364  [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files\Google\Update\1.3.21.145\goopdateres_en.dll

 

02:48:25.0065 0364  C:\Program Files\Google\Update\1.3.21.145\goopdateres_en.dll - ok

 

02:48:25.0074 0364  [ 8078F8F8F7A79E2E6B494523A828C585 ] C:\Windows\System32\msdtckrm.dll

 

02:48:25.0074 0364  C:\Windows\System32\msdtckrm.dll - ok

 

02:48:25.0084 0364  [ 555A69C1886EAAA8235D699F989BE874 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\dw20.exe

 

02:48:25.0084 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\dw20.exe - ok

 

02:48:25.0097 0364  [ 77784A2BD5912A4EC6284255865526BC ] C:\Windows\System32\Faultrep.dll

 

02:48:25.0097 0364  C:\Windows\System32\Faultrep.dll - ok

 

02:48:25.0112 0364  [ 7BEDD051B53821B040EAD42DB0724848 ] C:\Windows\System32\WerFault.exe

 

02:48:25.0116 0364  C:\Windows\System32\WerFault.exe - ok

 

02:48:25.0121 0364  [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\System32\dsound.dll

 

02:48:25.0121 0364  C:\Windows\System32\dsound.dll - ok

 

02:48:25.0129 0364  [ 447983959A8CF49C4CC3B65DED69AF28 ] C:\Windows\System32\dbgeng.dll

 

02:48:25.0129 0364  C:\Windows\System32\dbgeng.dll - ok

 

02:48:25.0138 0364  [ 350C07726EB6C4BF05224E6327BDDC8B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll

 

02:48:25.0138 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll - ok

 

02:48:25.0150 0364  [ 53C847F33D51E21CAC27923D18092B49 ] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

 

02:48:25.0150 0364  C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe - ok

 

02:48:25.0158 0364  [ FD647CA82ACF232DBE5F20345647B948 ] C:\Windows\AppPatch\AcGenral.dll

 

02:48:25.0158 0364  C:\Windows\AppPatch\AcGenral.dll - ok

 

02:48:25.0170 0364  [ FD435DF8C9CA7A49CCBF7CD2F7627739 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll

 

02:48:25.0170 0364  C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll - ok

 

02:48:25.0180 0364  [ F8D8BB3F6173FFF00128612F33D3197A ] C:\Windows\System32\wbem\WMIADAP.exe

 

02:48:25.0180 0364  C:\Windows\System32\wbem\WMIADAP.exe - ok

 

02:48:25.0194 0364  [ 8B2D61CA83825CEAD423228ACD40CFBC ] C:\Windows\System32\loadperf.dll

 

02:48:25.0194 0364  C:\Windows\System32\loadperf.dll - ok

 

02:48:25.0203 0364  [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll

 

02:48:25.0203 0364  C:\Windows\System32\msls31.dll - ok

 

02:48:25.0214 0364  [ 012A965F34414458075EF4F0EDC11536 ] C:\Windows\winsxs\x86_microsoft-windows-windowscodecext_31bf3856ad364e35_7.0.6002.18107_none_86efc43840ac1e52\WindowsCodecsExt.dll

 

02:48:25.0214 0364  C:\Windows\winsxs\x86_microsoft-windows-windowscodecext_31bf3856ad364e35_7.0.6002.18107_none_86efc43840ac1e52\WindowsCodecsExt.dll - ok

 

02:48:25.0227 0364  [ 2C7B4E944A48B9A07B7BF2AB262F197E ] C:\Windows\System32\icm32.dll

 

02:48:25.0227 0364  C:\Windows\System32\icm32.dll - ok

 

02:48:25.0237 0364  [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\System32\dxtrans.dll

 

02:48:25.0237 0364  C:\Windows\System32\dxtrans.dll - ok

 

02:48:25.0247 0364  [ 734DAA4FEAC6905BCFB30410D6C7E003 ] C:\Windows\System32\ddrawex.dll

 

02:48:25.0248 0364  C:\Windows\System32\ddrawex.dll - ok

 

02:48:25.0260 0364  [ FA2A3AFADC4FB47DBC234A4E57F92CDB ] C:\Windows\System32\ddraw.dll

 

02:48:25.0260 0364  C:\Windows\System32\ddraw.dll - ok

 

02:48:25.0271 0364  [ EF764E33878B3A4A9E5A2FB5D0D031D0 ] C:\Windows\System32\dciman32.dll

 

02:48:25.0271 0364  C:\Windows\System32\dciman32.dll - ok

 

02:48:25.0282 0364  [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\System32\dxtmsft.dll

 

02:48:25.0282 0364  C:\Windows\System32\dxtmsft.dll - ok

 

02:48:25.0291 0364  [ 98638A4CA187245C469DA0DEC4F04A45 ] C:\Windows\System32\pautoenr.dll

 

02:48:25.0291 0364  C:\Windows\System32\pautoenr.dll - ok

 

02:48:25.0311 0364  [ AC48FD62E22C4425879FCA5A63F50497 ] C:\Windows\System32\certcli.dll

 

02:48:25.0311 0364  C:\Windows\System32\certcli.dll - ok

 

02:48:25.0324 0364  [ 0053319C4438CDE659AA75C19BBD22F1 ] C:\Windows\System32\CertEnroll.dll

 

02:48:25.0324 0364  C:\Windows\System32\CertEnroll.dll - ok

 

02:48:25.0334 0364  [ 6631A497282972C1C4AD44FC948CC46A ] C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe

 

02:48:25.0334 0364  C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe - ok

 

02:48:25.0344 0364  [ 7E38DA8C11833B99766A97CEE3F80F07 ] C:\Windows\System32\oleaccrc.dll

 

02:48:25.0344 0364  C:\Windows\System32\oleaccrc.dll - ok

 

02:48:25.0355 0364  [ 1A3CDEB8DD26216DD2017F31A4BCCC9E ] C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.dll

 

02:48:25.0355 0364  C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.dll - ok

 

02:48:25.0369 0364  [ D5F991812FBDAF65AB3DA8783ED9BDBF ] C:\ProgramData\NVIDIA\Updatus\Packages\00000eaf\drsupdate.13728286_RUNASUSER.exe

 

02:48:25.0369 0364  C:\ProgramData\NVIDIA\Updatus\Packages\00000eaf\drsupdate.13728286_RUNASUSER.exe - ok

 

02:48:25.0380 0364  [ 8CC053D87B788241CDFBE1DC28F934F0 ] C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe

 

02:48:25.0380 0364  C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe - ok

 

02:48:25.0394 0364  [ C17103AE9072A06DA581DEC998343FC1 ] C:\Users\UPDATU~1\AppData\Local\temp\nsm6BDD.tmp\System.dll

 

02:48:25.0394 0364  C:\Users\UPDATU~1\AppData\Local\temp\nsm6BDD.tmp\System.dll - ok

 

02:48:25.0407 0364  [ EFD278F8129EE12F1D4AE0250494B791 ] C:\Windows\System32\dxva2.dll

 

02:48:25.0407 0364  C:\Windows\System32\dxva2.dll - ok

 

02:48:25.0416 0364  [ B0B4C590C0CAE7741DA17E3DC86CC828 ] C:\Windows\System32\ceutil.dll

 

02:48:25.0416 0364  C:\Windows\System32\ceutil.dll - ok

 

02:48:25.0428 0364  [ 648AB74D9C104FB500B6C4EEDC6A8772 ] C:\Windows\System32\wmpmde.dll

 

02:48:25.0428 0364  C:\Windows\System32\wmpmde.dll - ok

 

02:48:25.0438 0364  [ 67D16247C56C26A4F0D79D1A7F272B8F ] C:\Windows\System32\mf.dll

 

02:48:25.0439 0364  C:\Windows\System32\mf.dll - ok

 

02:48:25.0446 0364  [ 2495C4204C63678F8FD5D488CA7DAD26 ] C:\Windows\System32\evr.dll

 

02:48:25.0446 0364  C:\Windows\System32\evr.dll - ok

 

02:48:25.0459 0364  [ 4DF10CE50010D70152944B51E03588B0 ] C:\Windows\System32\wmdrmsdk.dll

 

02:48:25.0465 0364  C:\Windows\System32\wmdrmsdk.dll - ok

 

02:48:25.0471 0364  [ 5016B8FC59AD616F03813FBE63295081 ] C:\Windows\System32\thumbcache.dll

 

02:48:25.0471 0364  C:\Windows\System32\thumbcache.dll - ok

 

02:48:25.0483 0364  [ 617F9A5813E69F6E9ED94B811EC75396 ] C:\Windows\System32\wmpps.dll

 

02:48:25.0483 0364  C:\Windows\System32\wmpps.dll - ok

 

02:48:25.0498 0364  [ F1ECEC53B9FFC30E123D14E087C49111 ] C:\Windows\System32\wmdrmdev.dll

 

02:48:25.0498 0364  C:\Windows\System32\wmdrmdev.dll - ok

 

02:48:25.0507 0364  [ 7C7C620860819A62F926D7EC0B72C50B ] C:\Windows\System32\drmv2clt.dll

 

02:48:25.0507 0364  C:\Windows\System32\drmv2clt.dll - ok

 

02:48:25.0527 0364  [ 02F0BE91B0F2B1C30F6F48334F47D625 ] C:\Windows\System32\blackbox.dll

 

02:48:25.0527 0364  C:\Windows\System32\blackbox.dll - ok

 

02:48:25.0536 0364  [ D571295B71C60A67F6F2EA987E5CC3B0 ] C:\Windows\System32\wmdrmnet.dll

 

02:48:25.0536 0364  C:\Windows\System32\wmdrmnet.dll - ok

 

02:48:25.0548 0364  [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\System32\WMVCORE.DLL

 

02:48:25.0548 0364  C:\Windows\System32\WMVCORE.DLL - ok

 

02:48:25.0556 0364  [ 5E41139EC6EFBCAFFD96D46925E544AB ] C:\Windows\System32\mspatcha.dll

 

02:48:25.0556 0364  C:\Windows\System32\mspatcha.dll - ok

 

02:48:25.0565 0364  [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\System32\WMASF.DLL

 

02:48:25.0565 0364  C:\Windows\System32\WMASF.DLL - ok

 

02:48:25.0575 0364  [ 6EAED354F4CDB9CF230AFD88A88D9D66 ] C:\Program Files\Steam\steam.dll

 

02:48:25.0575 0364  C:\Program Files\Steam\steam.dll - ok

 

02:48:25.0586 0364  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll

 

02:48:25.0586 0364  C:\Windows\System32\wuapi.dll - ok

 

02:48:25.0595 0364  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll

 

02:48:25.0595 0364  C:\Windows\System32\wups.dll - ok

 

02:48:25.0609 0364  [ E6021036DD3D1E45AE7BBD249D1C2795 ] C:\Program Files\Steam\steamui.dll

 

02:48:25.0609 0364  C:\Program Files\Steam\steamui.dll - ok

 

02:48:25.0614 0364  [ 2884DA0E5CE6D42F31FC4476A8947F1B ] C:\Program Files\Steam\sdl.dll

 

02:48:25.0614 0364  C:\Program Files\Steam\sdl.dll - ok

 

02:48:25.0624 0364  [ D0A95E567224B4C347CBDD6541E5D928 ] C:\Windows\System32\wscisvif.dll

 

02:48:25.0624 0364  C:\Windows\System32\wscisvif.dll - ok

 

02:48:25.0632 0364  [ FE3702015BE4D214808A2FBC07B8E5FF ] C:\Windows\System32\wscproxystub.dll

 

02:48:25.0632 0364  C:\Windows\System32\wscproxystub.dll - ok

 

02:48:25.0643 0364  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll

 

02:48:25.0643 0364  C:\Windows\System32\wups2.dll - ok

 

02:48:25.0653 0364  [ 173C217E677C4B0C4F8A6D54BA13BF9B ] C:\Program Files\Steam\cserhelper.dll

 

02:48:25.0653 0364  C:\Program Files\Steam\cserhelper.dll - ok

 

02:48:25.0666 0364  [ 7D77F7A4090ED01FDA52DAEFCE4EE28A ] C:\Program Files\Steam\bin\filesystem_steam.dll

 

02:48:25.0666 0364  C:\Program Files\Steam\bin\filesystem_steam.dll - ok

 

02:48:25.0678 0364  [ 09E5B3C06157BD26F9B0363FBCEB0DED ] C:\Program Files\Steam\bin\vgui2_s.dll

 

02:48:25.0678 0364  C:\Program Files\Steam\bin\vgui2_s.dll - ok

 

02:48:25.0688 0364  [ B55E77BB01E85D2CA2C4B8424E1DF345 ] C:\Windows\System32\opengl32.dll

 

02:48:25.0688 0364  C:\Windows\System32\opengl32.dll - ok

 

02:48:25.0697 0364  [ 7A137514F4E48ECDBDD1F29CF7E8D5A4 ] C:\Windows\System32\glu32.dll

 

02:48:25.0698 0364  C:\Windows\System32\glu32.dll - ok

 

02:48:25.0708 0364  [ 5123D70FBFE1F1BDB9A3776037F140ED ] C:\Program Files\Steam\bin\chromehtml.dll

 

02:48:25.0708 0364  C:\Program Files\Steam\bin\chromehtml.dll - ok

 

02:48:25.0727 0364  [ 1906E4DF53BEE0493F5B68AA74071EA4 ] C:\Program Files\Steam\bin\libcef.dll

 

02:48:25.0727 0364  C:\Program Files\Steam\bin\libcef.dll - ok

 

02:48:25.0738 0364  [ 938ACF2A4F7FDAFF322FD36F0B14D45A ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll

 

02:48:25.0738 0364  C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok

 

02:48:25.0748 0364  [ 58FF2910C998D943CF0C4B98E6DCD08C ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll

 

02:48:25.0748 0364  C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll - ok

 

02:48:25.0762 0364  [ E92143D1B2E32FAF6CC56FD97B908F6A ] C:\Windows\System32\wpdshext.dll

 

02:48:25.0763 0364  C:\Windows\System32\wpdshext.dll - ok

 

02:48:25.0773 0364  [ 67C30FAFA58BD7E02A9DA8BE28512934 ] C:\Windows\System32\audiodev.dll

 

02:48:25.0773 0364  C:\Windows\System32\audiodev.dll - ok

 

02:48:25.0783 0364  [ 9E5C1D19851FAE2ACDBA118AB20D55AC ] C:\Windows\System32\EhStorAPI.dll

 

02:48:25.0783 0364  C:\Windows\System32\EhStorAPI.dll - ok

 

02:48:25.0794 0364  [ 045D0F4F41CA53D4CB22BDC814A22B64 ] C:\Program Files\Steam\bin\icudt.dll

 

02:48:25.0794 0364  C:\Program Files\Steam\bin\icudt.dll - ok

 

02:48:25.0805 0364  [ BBA1FE328CEA501FCCE1E5DF16276439 ] C:\Program Files\Steam\bin\avcodec-53.dll

 

02:48:25.0805 0364  C:\Program Files\Steam\bin\avcodec-53.dll - ok

 

02:48:25.0817 0364  [ 2A8B8A15A58EDF3B443083EC29894E54 ] C:\Program Files\Steam\bin\avutil-51.dll

 

02:48:25.0817 0364  C:\Program Files\Steam\bin\avutil-51.dll - ok

 

02:48:25.0825 0364  [ C5CCB86CD745746B9908031A54315F90 ] C:\Program Files\Steam\bin\avformat-53.dll

 

02:48:25.0825 0364  C:\Program Files\Steam\bin\avformat-53.dll - ok

 

02:48:25.0835 0364  [ FDDBF6AE6A659A7F269C3F5AAE199C32 ] C:\Program Files\Steam\steamclient.dll

 

02:48:25.0835 0364  C:\Program Files\Steam\steamclient.dll - ok

 

02:48:25.0844 0364  [ 62C19B78555EFC35FEC72C285233A250 ] C:\Program Files\Common Files\Steam\SteamService.exe

 

02:48:25.0844 0364  C:\Program Files\Common Files\Steam\SteamService.exe - ok

 

02:48:25.0865 0364  [ 3AC188AC65C5C01A2769DCF51E0E975D ] C:\Program Files\Steam\bin\steamservice.dll

 

02:48:25.0865 0364  C:\Program Files\Steam\bin\steamservice.dll - ok

 

02:48:25.0873 0364  [ 76FD230DEAB73D2826458617DBB56A63 ] C:\Windows\System32\winusb.dll

 

02:48:25.0873 0364  C:\Windows\System32\winusb.dll - ok

 

02:48:25.0882 0364  [ 8C8C82633A7E90A33E8D7D9617B2B46C ] C:\Windows\WindowsMobile\tcp2udp.dll

 

02:48:25.0882 0364  C:\Windows\WindowsMobile\tcp2udp.dll - ok

 

02:48:25.0890 0364  [ 3379989F06B31347792836DCF028A325 ] C:\Windows\System32\rapiproxystub.dll

 

02:48:25.0891 0364  C:\Windows\System32\rapiproxystub.dll - ok

 

02:48:25.0903 0364  [ 5FA382106B145A920E2A4F7087AF1B90 ] C:\Windows\System32\wbem\wmipcima.dll

 

02:48:25.0903 0364  C:\Windows\System32\wbem\wmipcima.dll - ok

 

02:48:25.0924 0364  [ 523DF3B590D8A353A49235B1B7C571AD ] C:\Windows\WindowsMobile\dtptdns.dll

 

02:48:25.0925 0364  C:\Windows\WindowsMobile\dtptdns.dll - ok

 

02:48:25.0936 0364  [ E270B78C30A4795978B8067E6A2252A2 ] C:\Windows\WindowsMobile\wmdsyncman.dll

 

02:48:25.0936 0364  C:\Windows\WindowsMobile\wmdsyncman.dll - ok

 

02:48:25.0945 0364  [ 7599E425947A595448DA778B610923BC ] C:\Program Files\Windows Media Player\wmpsyncmgr.dll

 

02:48:25.0946 0364  C:\Program Files\Windows Media Player\wmpsyncmgr.dll - ok

 

02:48:25.0969 0364  [ 6D0569AFF6C075D2F8D431A46525DDF0 ] C:\Program Files\WinAce\arcicons.dll

 

02:48:25.0969 0364  C:\Program Files\WinAce\arcicons.dll - ok

 

02:48:25.0977 0364  [ 87CDFFCBD09C1CA03A068343D5D93250 ] C:\Windows\System32\wmi.dll

 

02:48:25.0977 0364  C:\Windows\System32\wmi.dll - ok

 

02:48:25.0989 0364  ============================================================

 

02:48:25.0989 0364  Scan finished

 

02:48:25.0989 0364  ============================================================

 

02:48:26.0010 0392  Detected object count: 3

 

02:48:26.0010 0392  Actual detected object count: 3

 

02:49:07.0488 0392  DSBrokerService ( UnsignedFile.Multi.Generic ) - skipped by user

 

02:49:07.0489 0392  DSBrokerService ( UnsignedFile.Multi.Generic ) - User select action: Skip

 

02:49:07.0489 0392  DSproct ( UnsignedFile.Multi.Generic ) - skipped by user

 

02:49:07.0489 0392  DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip

 

02:49:07.0489 0392  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user

 

02:49:07.0489 0392  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip

 

03:02:09.0763 1796  Deinitialize success

 

 

 

that's all of it...

Link to post
Share on other sites

  • Root Admin