Last_Ditch Posted June 21, 2013 ID:693845 Share Posted June 21, 2013 Hey Awesome People Who Know How To Fix Stuff, My PC is older, but I love it, and I mostly use it as a word-processor and photo-editor. Last week my pictures wouldn't show any Previews all of a sudden in Windows Photo Gallery, then it (the Gallery) started resetting itself without starting; then the Windows Explorer started shutting down/restarting itself whenever I tried opening MSE; and Then Windows Explorer started doing the same thing about four days ago whenever I opened almost any program! What kind of freaky virus thing have I caught?! I feel like I'm stranded on a techno-island of strings of numbers and letters I don't understand or recognize and everyone speaks ancient Sumerian, while I only know Ebonics...yeah, frightening. ...I guess I should mention that I was on Pixlr.com before all this happened and had recently downloaded some fonts from a few websites (though my web protection was up-to-date and running at the time), but that was days before all this started. So, I can surf the web and run Scannow (whatever that actually does), but that's about the length of my technical computer savvy. I have updated and run my anti-virus stuff since this happened but nothing seems to work. Could there be something I'm missing or not doing right? If a virus has destroyed my computer I think I might Literally crawl into a corner and weep. Literally. This is my last (Ditch) effort before resetting/reinstalling windows. Someone Help Me! [p.s.: thanks in advance for listening to me whine...] Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 21, 2013 Root Admin ID:693891 Share Posted June 21, 2013 Please download Malwarebytes Anti-Rootkit from HEREUnzip the contents to a folder in a convenient location.Open the folder where the contents were unzipped and run mbar.exeFollow the instructions in the wizard to update and allow the program to scan your computer for threats.Click on the Cleanup button to remove any threats and reboot if prompted to do so.Wait while the system shuts down and the cleanup process is performed.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.When done, please post the two logs produced they will be in the MBAR folder... mbar-log.txt and system-log.txt Link to post Share on other sites More sharing options...
Last_Ditch Posted June 21, 2013 Author ID:694118 Share Posted June 21, 2013 Sorry it took so long to reply, had to work, but here ya go--- (I'm not sure if it's relevant but a few months after I got the PC it wouldn't start so I have been booting it from a CD my friend made me. It's been almost a year and totally never take the disk out so I completely forgot about it.) MBAR-LOG.txt ---------------------------------------------------------------------------------- Database version: v2013.06.21.04Windows Vista Service Pack 2 x86 NTFSInternet Explorer 9.0.8112.16421Ken :: KEN-PC [administrator]6/21/2013 12:07:36 PMmbar-log-2013-06-21 (12-07-36).txtScan type: Quick scanScan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | Deep Anti-Rootkit Scan | PUM | P2PScan options disabled: PUPObjects scanned: 260306Time elapsed: 21 minute(s), 22 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 0(No malicious items detected)Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected)Files Detected: 0(No malicious items detected)Physical Sectors Detected: 0(No malicious items detected)(end) SYSTEM-LOG.txt -------------------------------------------------------------------------------------------------------- OS version: 6.0.6002 Windows Vista Service Pack 2 x86Account is AdministrativeInternet Explorer version: 9.0.8112.16421File system is: NTFSDisk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, Q:\ DRIVE_FIXEDCPU speed: 2.104000 GHzMemory total: 2078023680, free: 914075648Downloaded database version: v2013.06.21.04Downloaded database version: v2013.05.22.01Initializing...------------ Kernel report ------------ 06/21/2013 12:07:27------------ Loaded modules -----------\SystemRoot\system32\ntkrnlpa.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\BOOTVID.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\System32\Drivers\sptd.sys\SystemRoot\system32\drivers\acpi.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\gfibto.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\drivers\nvraid.sys\SystemRoot\system32\drivers\CLASSPNP.SYS\SystemRoot\system32\drivers\nvstor.sys\SystemRoot\system32\drivers\storport.sys\SystemRoot\system32\DRIVERS\nvstor32.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\system32\DRIVERS\MpFilter.sys\SystemRoot\System32\Drivers\PxHelp20.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\msrpc.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\drivers\ecache.sys\SystemRoot\system32\drivers\disk.sys\SystemRoot\system32\drivers\crcdisk.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\tunmp.sys\SystemRoot\system32\DRIVERS\amdk8.sys\SystemRoot\system32\DRIVERS\nvlddmkm.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\system32\DRIVERS\usbohci.sys\SystemRoot\system32\DRIVERS\USBPORT.SYS\SystemRoot\system32\DRIVERS\usbehci.sys\SystemRoot\system32\DRIVERS\cdrom.sys\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys\SystemRoot\system32\DRIVERS\bcm4sbxp.sys\SystemRoot\system32\DRIVERS\HSXHWBS2.sys\SystemRoot\system32\DRIVERS\ks.sys\SystemRoot\system32\DRIVERS\HSX_DPV.sys\SystemRoot\system32\DRIVERS\HSX_CNXT.sys\SystemRoot\system32\drivers\modem.sys\SystemRoot\system32\DRIVERS\HDAudBus.sys\SystemRoot\System32\Drivers\aztfmytb.SYS\SystemRoot\System32\Drivers\SCSIPORT.SYS\SystemRoot\system32\DRIVERS\msiscsi.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\DRIVERS\termdd.sys\SystemRoot\system32\DRIVERS\kbdclass.sys\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\DRIVERS\swenum.sys\SystemRoot\system32\DRIVERS\mssmbios.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\DRIVERS\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\stwrt.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\System32\Drivers\Fs_Rec.SYS\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\SystemRoot\system32\DRIVERS\HIDPARSE.SYS\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\System32\DRIVERS\rasacd.sys\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\smb.sys\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\system32\drivers\ws2ifsl.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\RTL8187B.sys\SystemRoot\system32\DRIVERS\hidusb.sys\SystemRoot\system32\DRIVERS\HIDCLASS.SYS\SystemRoot\system32\DRIVERS\USBD.SYS\SystemRoot\system32\DRIVERS\kbdhid.sys\SystemRoot\system32\DRIVERS\mouhid.sys\SystemRoot\system32\DRIVERS\rtlprot.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\DRIVERS\rdbss.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\DRIVERS\udfs.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_diskdump.sys\SystemRoot\System32\Drivers\dump_nvstor32.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\System32\cdd.dll\SystemRoot\System32\ATMFD.DLL\SystemRoot\system32\drivers\luafv.sys\SystemRoot\system32\DRIVERS\Sftvollh.sys\SystemRoot\system32\drivers\WudfPf.sys\SystemRoot\system32\drivers\spsys.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\drivers\mrxdav.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\System32\DRIVERS\srv.sys\??\C:\Program Files\PogoplugBackup\dokance.sys\SystemRoot\system32\DRIVERS\dsunidrv.sys\SystemRoot\system32\DRIVERS\mdmxsdk.sys\SystemRoot\system32\DRIVERS\NisDrvWFP.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\system32\DRIVERS\Sftfslh.sys\SystemRoot\system32\DRIVERS\Sftplaylh.sys\SystemRoot\System32\Drivers\fastfat.SYS\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\system32\DRIVERS\xaudio.sys\SystemRoot\system32\DRIVERS\Sftredirlh.sys\SystemRoot\system32\DRIVERS\ipnat.sys\SystemRoot\system32\DRIVERS\cdfs.sys\??\C:\Windows\system32\drivers\mbam.sys\??\C:\Windows\system32\drivers\mbamchameleon.sys\??\C:\Windows\system32\drivers\mbamswissarmy.sys\Windows\System32\ntdll.dll\Program Files\DAEMON Tools Lite\Engine.dll----------- End -----------Done!<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xffffffff85f884e0Upper Device Driver Name: \Driver\disk\Lower Device Name: \Device\0000005d\Lower Device Object: 0xffffffff8521b928Lower Device Driver Name: \Driver\nvstor32\IRP handler 0 of \Driver\nvstor32 points to an unknown moduleUnhooking enabled.<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xffffffff85f884e0Upper Device Driver Name: \Driver\disk\Lower Device Name: \Device\0000005d\Lower Device Object: 0xffffffff8521b928Lower Device Driver Name: \Driver\nvstor32\Driver name found: nvstor32Initialization returned 0x0Port sub-driver loaded: \??\C:\Windows\System32\drivers\Storport.sys (0x0)Load Function returned 0x0<<<2>>>Device number: 0, partition: 3Physical Sector Size: 512Drive: 0, DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\--------- Disk Stack ------DevicePointer: 0xffffffff85f88160, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\DevicePointer: 0xffffffff855cbf08, DeviceName: Unknown, DriverName: \Driver\ACPI\DevicePointer: 0xffffffff8521b928, DeviceName: \Device\0000005d\, DriverName: \Driver\nvstor32\------------ End ----------Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\Upper DeviceData: 0xffffffffb4e796b0, 0xffffffff85f884e0, 0xffffffff85df6ac8Lower DeviceData: 0xffffffffb526d5f0, 0xffffffff8521b928, 0xffffffff85dc0350<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\Windows\system32\drivers...<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesDone!Drive 0Scanning MBR on drive 0...Inspecting partition table:MBR Signature: 55AADisk Signature: 30000000Partition information: Partition 0 type is Other (0xde) Partition is NOT ACTIVE. Partition starts at LBA: 63 Numsec = 112392 Partition 1 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 112640 Numsec = 20971520 Partition 2 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 21084160 Numsec = 467193856 Partition file system is NTFS Partition is bootable Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0Disk Size: 250000000000 bytesSector size: 512 bytesScanning physical sectors of unpartitioned space on drive 0 (1-62-488261250-488281250)...Done!Scan finished=======================================Removal queue found; removal startedRemoving c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_2_21084160_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...Removal finished Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 21, 2013 Root Admin ID:694154 Share Posted June 21, 2013 Okay let me have you run another scanner that can both find and fix some oddities that other scanners don't do. Please visit this webpage for instructions on downloading and running ComboFix: How to use ComboFixPlease make sure you disable your security applications before running ComboFix.Once Combofix has completed it will produce and open a log file. Please attach that log file to your next reply.If needed the file can be located here: C:\combofix.txt NOTE:!! If you get an error about "this key has been marked for deletion" please ignore it and restart the computer and send back the log. Link to post Share on other sites More sharing options...
Last_Ditch Posted June 21, 2013 Author ID:694192 Share Posted June 21, 2013 ok, sorry to keep being such a pain, but my friend told me that he had disabled all my "something or other with MSConfig" so he re-enabled it and I re-ran the Malwarebytes Anti-Rootkit-thing and the system-log was a little bigger so I'm posting that too in case it changes anything you need to know...sorry again if I messed something up. Also, I tried running the Combofix program but it says to deactivate MSE and press ok, which I did but MSE is still active and I can't open/access it to turn it off, and Combofix said it could damage my PC if I continue to run it so I shut it off. Should I redo it and let it run or is there some other way of turning MSE off so it'll run the way it should. Sorry again but I'm just not sure how I should proceed. Re-Run System-Log.txt ================================================ ---------------------------------------Malwarebytes Anti-Rootkit BETA 1.06.0.1003© Malwarebytes Corporation 2011-2012OS version: 6.0.6002 Windows Vista Service Pack 2 x86Account is AdministrativeInternet Explorer version: 9.0.8112.16421File system is: NTFSDisk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, Q:\ DRIVE_FIXEDCPU speed: 2.104000 GHzMemory total: 2078023680, free: 914075648Downloaded database version: v2013.06.21.04Downloaded database version: v2013.05.22.01Initializing...------------ Kernel report ------------ 06/21/2013 12:07:27------------ Loaded modules -----------\SystemRoot\system32\ntkrnlpa.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\BOOTVID.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\System32\Drivers\sptd.sys\SystemRoot\system32\drivers\acpi.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\gfibto.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\drivers\nvraid.sys\SystemRoot\system32\drivers\CLASSPNP.SYS\SystemRoot\system32\drivers\nvstor.sys\SystemRoot\system32\drivers\storport.sys\SystemRoot\system32\DRIVERS\nvstor32.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\system32\DRIVERS\MpFilter.sys\SystemRoot\System32\Drivers\PxHelp20.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\msrpc.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\drivers\ecache.sys\SystemRoot\system32\drivers\disk.sys\SystemRoot\system32\drivers\crcdisk.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\tunmp.sys\SystemRoot\system32\DRIVERS\amdk8.sys\SystemRoot\system32\DRIVERS\nvlddmkm.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\system32\DRIVERS\usbohci.sys\SystemRoot\system32\DRIVERS\USBPORT.SYS\SystemRoot\system32\DRIVERS\usbehci.sys\SystemRoot\system32\DRIVERS\cdrom.sys\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys\SystemRoot\system32\DRIVERS\bcm4sbxp.sys\SystemRoot\system32\DRIVERS\HSXHWBS2.sys\SystemRoot\system32\DRIVERS\ks.sys\SystemRoot\system32\DRIVERS\HSX_DPV.sys\SystemRoot\system32\DRIVERS\HSX_CNXT.sys\SystemRoot\system32\drivers\modem.sys\SystemRoot\system32\DRIVERS\HDAudBus.sys\SystemRoot\System32\Drivers\aztfmytb.SYS\SystemRoot\System32\Drivers\SCSIPORT.SYS\SystemRoot\system32\DRIVERS\msiscsi.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\DRIVERS\termdd.sys\SystemRoot\system32\DRIVERS\kbdclass.sys\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\DRIVERS\swenum.sys\SystemRoot\system32\DRIVERS\mssmbios.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\DRIVERS\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\stwrt.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\System32\Drivers\Fs_Rec.SYS\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\SystemRoot\system32\DRIVERS\HIDPARSE.SYS\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\System32\DRIVERS\rasacd.sys\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\smb.sys\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\system32\drivers\ws2ifsl.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\RTL8187B.sys\SystemRoot\system32\DRIVERS\hidusb.sys\SystemRoot\system32\DRIVERS\HIDCLASS.SYS\SystemRoot\system32\DRIVERS\USBD.SYS\SystemRoot\system32\DRIVERS\kbdhid.sys\SystemRoot\system32\DRIVERS\mouhid.sys\SystemRoot\system32\DRIVERS\rtlprot.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\DRIVERS\rdbss.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\DRIVERS\udfs.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_diskdump.sys\SystemRoot\System32\Drivers\dump_nvstor32.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\System32\cdd.dll\SystemRoot\System32\ATMFD.DLL\SystemRoot\system32\drivers\luafv.sys\SystemRoot\system32\DRIVERS\Sftvollh.sys\SystemRoot\system32\drivers\WudfPf.sys\SystemRoot\system32\drivers\spsys.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\drivers\mrxdav.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\System32\DRIVERS\srv.sys\??\C:\Program Files\PogoplugBackup\dokance.sys\SystemRoot\system32\DRIVERS\dsunidrv.sys\SystemRoot\system32\DRIVERS\mdmxsdk.sys\SystemRoot\system32\DRIVERS\NisDrvWFP.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\system32\DRIVERS\Sftfslh.sys\SystemRoot\system32\DRIVERS\Sftplaylh.sys\SystemRoot\System32\Drivers\fastfat.SYS\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\system32\DRIVERS\xaudio.sys\SystemRoot\system32\DRIVERS\Sftredirlh.sys\SystemRoot\system32\DRIVERS\ipnat.sys\SystemRoot\system32\DRIVERS\cdfs.sys\??\C:\Windows\system32\drivers\mbam.sys\??\C:\Windows\system32\drivers\mbamchameleon.sys\??\C:\Windows\system32\drivers\mbamswissarmy.sys\Windows\System32\ntdll.dll\Program Files\DAEMON Tools Lite\Engine.dll----------- End -----------Done!<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xffffffff85f884e0Upper Device Driver Name: \Driver\disk\Lower Device Name: \Device\0000005d\Lower Device Object: 0xffffffff8521b928Lower Device Driver Name: \Driver\nvstor32\IRP handler 0 of \Driver\nvstor32 points to an unknown moduleUnhooking enabled.<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xffffffff85f884e0Upper Device Driver Name: \Driver\disk\Lower Device Name: \Device\0000005d\Lower Device Object: 0xffffffff8521b928Lower Device Driver Name: \Driver\nvstor32\Driver name found: nvstor32Initialization returned 0x0Port sub-driver loaded: \??\C:\Windows\System32\drivers\Storport.sys (0x0)Load Function returned 0x0<<<2>>>Device number: 0, partition: 3Physical Sector Size: 512Drive: 0, DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\--------- Disk Stack ------DevicePointer: 0xffffffff85f88160, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xffffffff85f884e0, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\DevicePointer: 0xffffffff855cbf08, DeviceName: Unknown, DriverName: \Driver\ACPI\DevicePointer: 0xffffffff8521b928, DeviceName: \Device\0000005d\, DriverName: \Driver\nvstor32\------------ End ----------Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\Upper DeviceData: 0xffffffffb4e796b0, 0xffffffff85f884e0, 0xffffffff85df6ac8Lower DeviceData: 0xffffffffb526d5f0, 0xffffffff8521b928, 0xffffffff85dc0350<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\Windows\system32\drivers...<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesDone!Drive 0Scanning MBR on drive 0...Inspecting partition table:MBR Signature: 55AADisk Signature: 30000000Partition information: Partition 0 type is Other (0xde) Partition is NOT ACTIVE. Partition starts at LBA: 63 Numsec = 112392 Partition 1 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 112640 Numsec = 20971520 Partition 2 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 21084160 Numsec = 467193856 Partition file system is NTFS Partition is bootable Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0Disk Size: 250000000000 bytesSector size: 512 bytesScanning physical sectors of unpartitioned space on drive 0 (1-62-488261250-488281250)...Done!Scan finished=======================================Removal queue found; removal startedRemoving c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_2_21084160_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...Removal finished---------------------------------------Malwarebytes Anti-Rootkit BETA 1.06.0.1003© Malwarebytes Corporation 2011-2012OS version: 6.0.6002 Windows Vista Service Pack 2 x86Account is AdministrativeInternet Explorer version: 9.0.8112.16421File system is: NTFSDisk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, Q:\ DRIVE_FIXEDCPU speed: 2.104000 GHzMemory total: 2078023680, free: 1175822336Downloaded database version: v2013.06.21.05Downloaded database version: v2013.06.21.06Initializing...------------ Kernel report ------------ 06/21/2013 14:16:22------------ Loaded modules -----------\SystemRoot\system32\ntkrnlpa.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\BOOTVID.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\System32\Drivers\sptd.sys\SystemRoot\system32\drivers\acpi.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\gfibto.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\drivers\nvraid.sys\SystemRoot\system32\drivers\CLASSPNP.SYS\SystemRoot\system32\drivers\nvstor.sys\SystemRoot\system32\drivers\storport.sys\SystemRoot\system32\DRIVERS\nvstor32.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\system32\DRIVERS\MpFilter.sys\SystemRoot\System32\Drivers\PxHelp20.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\msrpc.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\drivers\ecache.sys\SystemRoot\system32\drivers\disk.sys\SystemRoot\system32\drivers\crcdisk.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\tunmp.sys\SystemRoot\system32\DRIVERS\amdk8.sys\SystemRoot\system32\DRIVERS\nvlddmkm.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\system32\DRIVERS\usbohci.sys\SystemRoot\system32\DRIVERS\USBPORT.SYS\SystemRoot\system32\DRIVERS\usbehci.sys\SystemRoot\system32\DRIVERS\cdrom.sys\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys\SystemRoot\system32\DRIVERS\bcm4sbxp.sys\SystemRoot\system32\DRIVERS\HSXHWBS2.sys\SystemRoot\system32\DRIVERS\ks.sys\SystemRoot\system32\DRIVERS\HSX_DPV.sys\SystemRoot\system32\DRIVERS\HSX_CNXT.sys\SystemRoot\system32\drivers\modem.sys\SystemRoot\system32\DRIVERS\HDAudBus.sys\SystemRoot\System32\Drivers\azysvx8d.SYS\SystemRoot\System32\Drivers\SCSIPORT.SYS\SystemRoot\system32\DRIVERS\msiscsi.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\DRIVERS\termdd.sys\SystemRoot\system32\DRIVERS\kbdclass.sys\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\DRIVERS\swenum.sys\SystemRoot\system32\DRIVERS\mssmbios.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\DRIVERS\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\stwrt.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\System32\Drivers\Fs_Rec.SYS\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\SystemRoot\system32\DRIVERS\HIDPARSE.SYS\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\System32\DRIVERS\rasacd.sys\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\smb.sys\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\system32\drivers\ws2ifsl.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\RTL8187B.sys\SystemRoot\system32\DRIVERS\hidusb.sys\SystemRoot\system32\DRIVERS\HIDCLASS.SYS\SystemRoot\system32\DRIVERS\USBD.SYS\SystemRoot\system32\DRIVERS\kbdhid.sys\SystemRoot\system32\DRIVERS\mouhid.sys\SystemRoot\system32\DRIVERS\rtlprot.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\DRIVERS\rdbss.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\DRIVERS\udfs.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_diskdump.sys\SystemRoot\System32\Drivers\dump_nvstor32.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\System32\cdd.dll\SystemRoot\System32\ATMFD.DLL\SystemRoot\system32\drivers\luafv.sys\??\C:\Windows\system32\drivers\mbam.sys\SystemRoot\system32\DRIVERS\Sftvollh.sys\SystemRoot\system32\drivers\WudfPf.sys\SystemRoot\system32\drivers\spsys.sys\??\C:\Program Files\Sandboxie\SbieDrv.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\drivers\mrxdav.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\System32\DRIVERS\srv.sys\??\C:\Program Files\PogoplugBackup\dokance.sys\SystemRoot\system32\DRIVERS\dsunidrv.sys\SystemRoot\System32\Drivers\fastfat.SYS\SystemRoot\system32\DRIVERS\mdmxsdk.sys\SystemRoot\system32\DRIVERS\NisDrvWFP.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\system32\DRIVERS\Sftfslh.sys\SystemRoot\system32\DRIVERS\Sftplaylh.sys\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\system32\DRIVERS\xaudio.sys\SystemRoot\system32\DRIVERS\Sftredirlh.sys\SystemRoot\system32\DRIVERS\ipnat.sys\??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\MpKsl82c6b15a.sys\SystemRoot\system32\DRIVERS\cdfs.sys\??\C:\Windows\system32\drivers\mbamchameleon.sys\??\C:\Windows\system32\drivers\mbamswissarmy.sys\Windows\System32\ntdll.dll\Program Files\DAEMON Tools Lite\Engine.dll----------- End -----------Done!<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xffffffff85fd0ac8Upper Device Driver Name: \Driver\disk\Lower Device Name: \Device\0000005d\Lower Device Object: 0xffffffff851b4c90Lower Device Driver Name: \Driver\nvstor32\IRP handler 0 of \Driver\nvstor32 points to an unknown moduleUnhooking enabled.<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xffffffff85fd0ac8Upper Device Driver Name: \Driver\disk\Lower Device Name: \Device\0000005d\Lower Device Object: 0xffffffff851b4c90Lower Device Driver Name: \Driver\nvstor32\Driver name found: nvstor32Initialization returned 0x0Port sub-driver loaded: \??\C:\Windows\System32\drivers\Storport.sys (0x0)Load Function returned 0x0<<<2>>>Device number: 0, partition: 3Physical Sector Size: 512Drive: 0, DevicePointer: 0xffffffff85fd0ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\--------- Disk Stack ------DevicePointer: 0xffffffff85b7a108, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xffffffff85fd0ac8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\DevicePointer: 0xffffffff855c8ad0, DeviceName: Unknown, DriverName: \Driver\ACPI\DevicePointer: 0xffffffff851b4c90, DeviceName: \Device\0000005d\, DriverName: \Driver\nvstor32\------------ End ----------Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\Upper DeviceData: 0xffffffffa94950c8, 0xffffffff85fd0ac8, 0xffffffffa3e3eac8Lower DeviceData: 0xffffffff99b2d398, 0xffffffff851b4c90, 0xffffffff84e07360<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\Windows\system32\drivers...<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesDone!Drive 0Scanning MBR on drive 0...Inspecting partition table:MBR Signature: 55AADisk Signature: 30000000Partition information: Partition 0 type is Other (0xde) Partition is NOT ACTIVE. Partition starts at LBA: 63 Numsec = 112392 Partition 1 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 112640 Numsec = 20971520 Partition 2 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 21084160 Numsec = 467193856 Partition file system is NTFS Partition is bootable Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0Disk Size: 250000000000 bytesSector size: 512 bytesScanning physical sectors of unpartitioned space on drive 0 (1-62-488261250-488281250)...Done!Scan finished=======================================Removal queue found; removal startedRemoving c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_2_21084160_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...Removal finished END System-Log.txt ============================================================================= Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 21, 2013 Root Admin ID:694195 Share Posted June 21, 2013 Yes, please proceed and run Combofix - when it alerts about MSE click on OK to continue Link to post Share on other sites More sharing options...
Last_Ditch Posted June 22, 2013 Author ID:694295 Share Posted June 22, 2013 here ya go, Combofix Log.txt --------------------- ComboFix 13-06-21.02 - Ken 06/21/2013 19:04:45.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.1982.1013 [GMT -4:00] Running from: c:\users\Ken\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5} SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\Install.exe c:\program files\TelevisionFanaticEI c:\program files\TelevisionFanaticEI\Installr\1.bin\64EIPlug.dll c:\program files\TelevisionFanaticEI\Installr\1.bin\NP64EISb.dll c:\programdata\Codecv c:\programdata\Codecv\background.html c:\programdata\Codecv\content.js c:\programdata\Codecv\data\content.js c:\programdata\Codecv\data\jsondb.js c:\programdata\Codecv\jpnnbfjmbmmkploieoehdbkkjebfceae.crx c:\programdata\Codecv\settings.ini c:\programdata\Codecv\uninstall.exe c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD} c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome.manifest c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome\content\overlay.xul c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\install.rdf c:\users\Ken\AppData\Roaming\CA3206 c:\windows\system32\drivers\etc\hosts.ics c:\windows\system32\roboot.exe c:\windows\system32\system c:\windows\wininit.ini . . ((((((((((((((((((((((((( Files Created from 2013-05-21 to 2013-06-21 ))))))))))))))))))))))))))))))) . . 2013-06-21 23:16 . 2013-06-21 23:17 -------- d-----w- c:\users\Ken\AppData\Local\temp 2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Cass\AppData\Local\temp 2013-06-21 17:39 . 2013-06-21 17:39 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\MpKsl82c6b15a.sys 2013-06-21 16:07 . 2013-06-21 19:24 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2013-06-21 16:02 . 2013-06-17 11:08 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll 2013-06-21 16:02 . 2013-06-21 16:01 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll 2013-06-21 16:01 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\mpengine.dll 2013-06-20 03:51 . 2013-06-20 03:51 -------- d-----w- c:\users\Ken\AppData\Roaming\Oracle 2013-06-20 02:33 . 2013-06-20 02:33 -------- d-----w- c:\program files\Common Files\Java 2013-06-20 02:32 . 2013-06-20 02:32 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2013-06-20 01:59 . 2013-06-20 01:59 -------- d-----w- c:\program files\Belarc 2013-06-20 00:31 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2013-06-19 15:41 . 2013-06-19 15:41 -------- d-----w- C:\TDSSKiller_Quarantine 2013-06-19 02:35 . 2013-06-19 02:35 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1 2013-06-19 01:03 . 2013-06-19 01:03 -------- d-----w- c:\windows\CheckSur 2013-06-18 07:26 . 2013-06-18 07:26 -------- d-----w- c:\users\Ken\AppData\Local\MigWiz 2013-06-17 11:05 . 2013-06-17 11:05 -------- d-----w- c:\program files\Microsoft Security Client 2013-06-17 11:02 . 2013-06-11 04:59 7016152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{339C4D5B-747E-4CDD-94ED-43775B133887}\mpengine.dll 2013-06-16 19:07 . 2013-06-16 19:44 -------- d-----w- c:\users\Ken\AppData\Roaming\Systweak 2013-06-15 00:45 . 2013-06-15 00:46 -------- d-----w- c:\users\UpdatusUser 2013-06-14 18:07 . 2013-06-14 18:07 12872 ----a-w- c:\windows\system32\bootdelete.exe 2013-06-14 17:55 . 2013-06-14 17:55 -------- d-----w- c:\program files\HitmanPro 2013-06-14 17:40 . 2013-06-14 18:07 -------- d-----w- c:\programdata\HitmanPro 2013-06-14 17:27 . 2013-06-16 18:52 -------- d-----w- c:\users\Ken\AppData\Local\LogMeIn Rescue Applet 2013-06-14 04:07 . 2013-06-14 04:11 -------- d-----w- c:\programdata\Ad-Aware Antivirus 2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Lavasoft 2013-06-14 03:52 . 2013-06-14 18:12 -------- d-----w- c:\program files\Ad-Aware Antivirus 2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Downloaded Installations 2013-06-14 03:48 . 2013-06-14 03:48 -------- d-----w- c:\users\Ken\AppData\Roaming\LavasoftStatistics 2013-06-14 03:45 . 2013-06-14 03:50 44424 ----a-w- c:\windows\system32\sbbd.exe 2013-06-14 03:45 . 2013-06-14 03:50 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys 2013-06-14 03:45 . 2013-06-14 16:01 -------- d-----w- c:\users\Ken\AppData\Roaming\Ad-Aware Antivirus 2013-06-14 03:42 . 2013-06-14 03:47 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2013-06-12 15:46 . 2013-05-08 03:40 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-06-12 15:46 . 2013-05-08 01:58 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2013-06-12 15:46 . 2013-05-02 04:04 443904 ----a-w- c:\windows\system32\win32spl.dll 2013-06-12 15:46 . 2013-05-02 04:03 37376 ----a-w- c:\windows\system32\printcom.dll 2013-06-12 15:45 . 2013-04-24 04:00 985600 ----a-w- c:\windows\system32\crypt32.dll 2013-06-12 15:45 . 2013-04-24 04:00 98304 ----a-w- c:\windows\system32\cryptnet.dll 2013-06-12 15:45 . 2013-04-24 04:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll 2013-06-12 15:45 . 2013-04-24 04:00 41984 ----a-w- c:\windows\system32\certenc.dll 2013-06-12 15:45 . 2013-04-24 01:46 812544 ----a-w- c:\windows\system32\certutil.exe 2013-06-12 15:45 . 2013-05-02 22:03 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-06-12 15:45 . 2013-05-02 22:03 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-06-12 15:45 . 2013-04-17 12:30 24576 ----a-w- c:\windows\system32\cryptdlg.dll 2013-06-09 15:03 . 2013-06-09 15:03 -------- d-----w- c:\program files\iPod 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin5.dll 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin5.dll 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin4.dll 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin4.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin3.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin3.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin2.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin2.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin.dll 2013-06-09 14:56 . 2013-06-09 14:56 -------- d-----w- c:\program files\QuickTime 2013-06-07 01:36 . 2013-06-19 02:40 -------- d-----w- c:\program files\7-Zip 2013-05-28 01:35 . 2013-05-21 12:28 632656 ----a-w- c:\windows\system32\msvcr80.dll 2013-05-28 01:35 . 2013-05-21 12:28 554832 ----a-w- c:\windows\system32\msvcp80.dll 2013-05-28 01:35 . 2013-05-21 12:28 479232 ----a-w- c:\windows\system32\msvcm80.dll 2013-05-28 01:31 . 2013-05-28 01:31 -------- d-----w- c:\program files\DAEMON Tools Lite . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-12 18:53 . 2012-05-04 01:23 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-06-12 18:53 . 2011-08-27 14:39 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-05-28 01:32 . 2010-04-22 16:16 466008 ----a-w- c:\windows\system32\drivers\sptd.sys 2013-05-18 15:17 . 2010-06-24 16:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-05-02 06:06 . 2009-12-25 03:55 238872 ------w- c:\windows\system32\MpSigStub.exe 2013-05-01 07:59 . 2013-05-01 07:59 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2013-05-01 07:59 . 2013-05-01 07:59 69632 ----a-w- c:\windows\system32\QuickTime.qts 2013-04-27 14:01 . 2013-05-22 02:47 339784 ----a-w- c:\windows\system32\WPShellExt32.dll 2013-04-15 14:20 . 2013-05-15 00:12 638328 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-04-13 10:56 . 2013-05-15 00:12 37376 ----a-w- c:\windows\system32\cdd.dll 2013-04-09 01:36 . 2013-05-15 00:13 2049024 ----a-w- c:\windows\system32\win32k.sys 2013-04-04 18:50 . 2012-09-20 21:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\system32\GPhotos.scr 2013-03-25 14:57 . 2013-05-22 02:46 727952 ----a-w- c:\windows\system32\WSCM64.dll 2013-03-25 14:57 . 2013-05-22 02:46 153088 ----a-w- c:\windows\system32\WSCM32.dll 2013-03-07 14:31 . 2013-03-08 05:08 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 2010-12-09 17:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}] 2010-12-09 17:51 3911776 ----a-w- c:\program files\Vuze_Remote\tbVuze.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192] "{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] . [HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192] "{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] . [HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192] "Steam"="c:\program files\Steam\Steam.exe" [2013-02-15 1597864] "Spotify Web Helper"="c:\users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-21 1104384] "Spotify"="c:\users\Ken\AppData\Roaming\Spotify\Spotify.exe" [2013-06-21 4643328] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 545552] "Pogoplug Backup"="c:\program files\PogoplugBackup\Pogoplug.exe" [2012-10-31 416768] "Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2010-09-24 2969496] "ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032] "DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640] "Akamai NetSession Interface"="c:\users\Ken\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WPCUMI"="c:\windows\system32\WpcUmi.exe" [2006-11-02 176128] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 947152] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "Wondershare Helper Compact.exe"="c:\program files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2013-06-13 1743648] "TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2013-03-22 295512] "SigmatelSysTrayApp"="sttray.exe" [2007-02-08 303104] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2013-05-01 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-05-31 152392] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952] "DivXMediaServer"="c:\program files\DivX\DivX Media Server\DivXMediaServer.exe" [2013-04-15 450560] "BrowserPlugInHelper"="c:\program files\Wondershare\Video Converter Ultimate\BrowserPlugInHelper.exe" [2013-05-14 1969440] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2009-4-30 50688] McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.1.121\SSScheduler.exe [2010-9-3 255536] Wireless Configuration Utility.lnk - c:\program files\TRENDnet\TEW-424UB\WlanCU.exe [2009-12-24 499712] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux6"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3501597266-4077889590-3413061231-1000] "EnableNotificationsRef"=dword:00000001 . --- Other Services/Drivers In Memory --- . *NewlyCreated* - MPKSL82C6B15A . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Akamai REG_MULTI_SZ Akamai LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr . Contents of the 'Scheduled Tasks' folder . 2013-06-21 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 18:53] . 2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40] . 2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40] . 2013-06-20 c:\windows\Tasks\ReclaimerUpdateFiles_Ken.job - c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59] . 2013-06-21 c:\windows\Tasks\ReclaimerUpdateXML_Ken.job - c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59] . 2013-06-21 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Ken.job - c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59] . . ------- Supplementary Scan ------- . uInternet Settings,ProxyOverride = <local> IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 LSP: c:\windows\system32\wpclsp.dll Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: real.com\rhap-app-4-0 Trusted Zone: real.com\rhapreg Trusted Zone: rhapsody.com\rhap-app-4-0 Trusted Zone: rhapsody.com\rhapreg Trusted Zone: soe.com Trusted Zone: sony.com TCP: DhcpNameServer = 72.28.160.35 72.28.160.36 FF - ProfilePath - c:\users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\4hdp37ux.default\ FF - prefs.js: browser.search.selectedEngine - Bing FF - prefs.js: browser.search.defaulturl - FF - prefs.js: browser.search.selectedEngine - SecureSearch . - - - - ORPHANS REMOVED - - - - . Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A} - (no file) WebBrowser-{2D922B81-34C7-4AAB-9C5D-433E79FC9445} - (no file) HKLM-Run-%PROVIDERID% - bin\sprtcmd.exe SafeBoot-32180213.sys SafeBoot-59253419.sys SafeBoot-WudfPf SafeBoot-WudfRd AddRemove-{2EF17083-57D4-4D64-AE4F-55F32A2C4571} - c:\programdata\Codecv\uninstall.exe AddRemove-Plex - c:\program files\Plex\Plex Media Center\uninstall.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-06-21 19:17 Windows 6.0.6002 Service Pack 2 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Completion time: 2013-06-21 19:19:20 ComboFix-quarantined-files.txt 2013-06-21 23:19 . Pre-Run: 51,239,202,816 bytes free Post-Run: 51,236,732,928 bytes free . - - End Of File - - 63B657D860221DC7BF16BCE02E5B2E53 5C616939100B85E558DA92B899A0FC36 Link to post Share on other sites More sharing options...
Last_Ditch Posted June 22, 2013 Author ID:694296 Share Posted June 22, 2013 sorry for the wait, I did try about five times to post the results but for some reason it wouldn't let me paste the file info after I copied it...I'm telling ya, this has gotta be one "Mother Brain" of a virus (i would imagine). It's even trying to keep me from getting your help on here. Freaky. Link to post Share on other sites More sharing options...
Last_Ditch Posted June 22, 2013 Author ID:694314 Share Posted June 22, 2013 oh.....just realized after all that, that that was the wrong file. Ugh, sorry, I'm trying. Ok here ya go. Combofix.txt -------------------------- ComboFix 13-06-21.02 - Ken 06/21/2013 19:04:45.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.1982.1013 [GMT -4:00] Running from: c:\users\Ken\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5} SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\Install.exe c:\program files\TelevisionFanaticEI c:\program files\TelevisionFanaticEI\Installr\1.bin\64EIPlug.dll c:\program files\TelevisionFanaticEI\Installr\1.bin\NP64EISb.dll c:\programdata\Codecv c:\programdata\Codecv\background.html c:\programdata\Codecv\content.js c:\programdata\Codecv\data\content.js c:\programdata\Codecv\data\jsondb.js c:\programdata\Codecv\jpnnbfjmbmmkploieoehdbkkjebfceae.crx c:\programdata\Codecv\settings.ini c:\programdata\Codecv\uninstall.exe c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD} c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome.manifest c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\chrome\content\overlay.xul c:\users\Ken\AppData\Local\{7563C37D-E625-4D42-81FF-C63D9B4015FD}\install.rdf c:\users\Ken\AppData\Roaming\CA3206 c:\windows\system32\drivers\etc\hosts.ics c:\windows\system32\roboot.exe c:\windows\system32\system c:\windows\wininit.ini . . ((((((((((((((((((((((((( Files Created from 2013-05-21 to 2013-06-21 ))))))))))))))))))))))))))))))) . . 2013-06-21 23:16 . 2013-06-21 23:17 -------- d-----w- c:\users\Ken\AppData\Local\temp 2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-06-21 23:16 . 2013-06-21 23:16 -------- d-----w- c:\users\Cass\AppData\Local\temp 2013-06-21 17:39 . 2013-06-21 17:39 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\MpKsl82c6b15a.sys 2013-06-21 16:07 . 2013-06-21 19:24 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2013-06-21 16:02 . 2013-06-17 11:08 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll 2013-06-21 16:02 . 2013-06-21 16:01 724464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll 2013-06-21 16:01 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{596E9B63-64E3-41D8-AE93-8B2985C5773B}\mpengine.dll 2013-06-20 03:51 . 2013-06-20 03:51 -------- d-----w- c:\users\Ken\AppData\Roaming\Oracle 2013-06-20 02:33 . 2013-06-20 02:33 -------- d-----w- c:\program files\Common Files\Java 2013-06-20 02:32 . 2013-06-20 02:32 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2013-06-20 01:59 . 2013-06-20 01:59 -------- d-----w- c:\program files\Belarc 2013-06-20 00:31 . 2013-06-12 04:18 7068072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2013-06-19 15:41 . 2013-06-19 15:41 -------- d-----w- C:\TDSSKiller_Quarantine 2013-06-19 02:35 . 2013-06-19 02:35 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1 2013-06-19 01:03 . 2013-06-19 01:03 -------- d-----w- c:\windows\CheckSur 2013-06-18 07:26 . 2013-06-18 07:26 -------- d-----w- c:\users\Ken\AppData\Local\MigWiz 2013-06-17 11:05 . 2013-06-17 11:05 -------- d-----w- c:\program files\Microsoft Security Client 2013-06-17 11:02 . 2013-06-11 04:59 7016152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{339C4D5B-747E-4CDD-94ED-43775B133887}\mpengine.dll 2013-06-16 19:07 . 2013-06-16 19:44 -------- d-----w- c:\users\Ken\AppData\Roaming\Systweak 2013-06-15 00:45 . 2013-06-15 00:46 -------- d-----w- c:\users\UpdatusUser 2013-06-14 18:07 . 2013-06-14 18:07 12872 ----a-w- c:\windows\system32\bootdelete.exe 2013-06-14 17:55 . 2013-06-14 17:55 -------- d-----w- c:\program files\HitmanPro 2013-06-14 17:40 . 2013-06-14 18:07 -------- d-----w- c:\programdata\HitmanPro 2013-06-14 17:27 . 2013-06-16 18:52 -------- d-----w- c:\users\Ken\AppData\Local\LogMeIn Rescue Applet 2013-06-14 04:07 . 2013-06-14 04:11 -------- d-----w- c:\programdata\Ad-Aware Antivirus 2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Lavasoft 2013-06-14 03:52 . 2013-06-14 18:12 -------- d-----w- c:\program files\Ad-Aware Antivirus 2013-06-14 03:52 . 2013-06-14 03:52 -------- d-----w- c:\programdata\Downloaded Installations 2013-06-14 03:48 . 2013-06-14 03:48 -------- d-----w- c:\users\Ken\AppData\Roaming\LavasoftStatistics 2013-06-14 03:45 . 2013-06-14 03:50 44424 ----a-w- c:\windows\system32\sbbd.exe 2013-06-14 03:45 . 2013-06-14 03:50 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys 2013-06-14 03:45 . 2013-06-14 16:01 -------- d-----w- c:\users\Ken\AppData\Roaming\Ad-Aware Antivirus 2013-06-14 03:42 . 2013-06-14 03:47 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2013-06-12 15:46 . 2013-05-08 03:40 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-06-12 15:46 . 2013-05-08 01:58 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2013-06-12 15:46 . 2013-05-02 04:04 443904 ----a-w- c:\windows\system32\win32spl.dll 2013-06-12 15:46 . 2013-05-02 04:03 37376 ----a-w- c:\windows\system32\printcom.dll 2013-06-12 15:45 . 2013-04-24 04:00 985600 ----a-w- c:\windows\system32\crypt32.dll 2013-06-12 15:45 . 2013-04-24 04:00 98304 ----a-w- c:\windows\system32\cryptnet.dll 2013-06-12 15:45 . 2013-04-24 04:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll 2013-06-12 15:45 . 2013-04-24 04:00 41984 ----a-w- c:\windows\system32\certenc.dll 2013-06-12 15:45 . 2013-04-24 01:46 812544 ----a-w- c:\windows\system32\certutil.exe 2013-06-12 15:45 . 2013-05-02 22:03 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-06-12 15:45 . 2013-05-02 22:03 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-06-12 15:45 . 2013-04-17 12:30 24576 ----a-w- c:\windows\system32\cryptdlg.dll 2013-06-09 15:03 . 2013-06-09 15:03 -------- d-----w- c:\program files\iPod 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin5.dll 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin5.dll 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin4.dll 2013-06-09 14:57 . 2013-06-09 14:57 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin4.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin3.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin3.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin2.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin2.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Mozilla Firefox\plugins\npqtplugin.dll 2013-06-09 14:57 . 2013-06-09 14:56 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin.dll 2013-06-09 14:56 . 2013-06-09 14:56 -------- d-----w- c:\program files\QuickTime 2013-06-07 01:36 . 2013-06-19 02:40 -------- d-----w- c:\program files\7-Zip 2013-05-28 01:35 . 2013-05-21 12:28 632656 ----a-w- c:\windows\system32\msvcr80.dll 2013-05-28 01:35 . 2013-05-21 12:28 554832 ----a-w- c:\windows\system32\msvcp80.dll 2013-05-28 01:35 . 2013-05-21 12:28 479232 ----a-w- c:\windows\system32\msvcm80.dll 2013-05-28 01:31 . 2013-05-28 01:31 -------- d-----w- c:\program files\DAEMON Tools Lite . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-12 18:53 . 2012-05-04 01:23 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-06-12 18:53 . 2011-08-27 14:39 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-05-28 01:32 . 2010-04-22 16:16 466008 ----a-w- c:\windows\system32\drivers\sptd.sys 2013-05-18 15:17 . 2010-06-24 16:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-05-02 06:06 . 2009-12-25 03:55 238872 ------w- c:\windows\system32\MpSigStub.exe 2013-05-01 07:59 . 2013-05-01 07:59 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2013-05-01 07:59 . 2013-05-01 07:59 69632 ----a-w- c:\windows\system32\QuickTime.qts 2013-04-27 14:01 . 2013-05-22 02:47 339784 ----a-w- c:\windows\system32\WPShellExt32.dll 2013-04-15 14:20 . 2013-05-15 00:12 638328 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-04-13 10:56 . 2013-05-15 00:12 37376 ----a-w- c:\windows\system32\cdd.dll 2013-04-09 01:36 . 2013-05-15 00:13 2049024 ----a-w- c:\windows\system32\win32k.sys 2013-04-04 18:50 . 2012-09-20 21:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-04-02 14:09 . 2013-04-02 14:09 4550656 ----a-w- c:\windows\system32\GPhotos.scr 2013-03-25 14:57 . 2013-05-22 02:46 727952 ----a-w- c:\windows\system32\WSCM64.dll 2013-03-25 14:57 . 2013-05-22 02:46 153088 ----a-w- c:\windows\system32\WSCM32.dll 2013-03-07 14:31 . 2013-03-08 05:08 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 2010-12-09 17:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}] 2010-12-09 17:51 3911776 ----a-w- c:\program files\Vuze_Remote\tbVuze.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192] "{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] . [HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192] "{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\tbVuze.dll" [2010-12-09 3911776] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] . [HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "Xvid"="c:\program files\Xvid\CheckUpdate.exe" [2011-01-17 8192] "Steam"="c:\program files\Steam\Steam.exe" [2013-02-15 1597864] "Spotify Web Helper"="c:\users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-21 1104384] "Spotify"="c:\users\Ken\AppData\Roaming\Spotify\Spotify.exe" [2013-06-21 4643328] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 545552] "Pogoplug Backup"="c:\program files\PogoplugBackup\Pogoplug.exe" [2012-10-31 416768] "Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2010-09-24 2969496] "ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032] "DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640] "Akamai NetSession Interface"="c:\users\Ken\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WPCUMI"="c:\windows\system32\WpcUmi.exe" [2006-11-02 176128] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 947152] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "Wondershare Helper Compact.exe"="c:\program files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2013-06-13 1743648] "TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2013-03-22 295512] "SigmatelSysTrayApp"="sttray.exe" [2007-02-08 303104] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2013-05-01 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-05-31 152392] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952] "DivXMediaServer"="c:\program files\DivX\DivX Media Server\DivXMediaServer.exe" [2013-04-15 450560] "BrowserPlugInHelper"="c:\program files\Wondershare\Video Converter Ultimate\BrowserPlugInHelper.exe" [2013-05-14 1969440] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2009-4-30 50688] McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.1.121\SSScheduler.exe [2010-9-3 255536] Wireless Configuration Utility.lnk - c:\program files\TRENDnet\TEW-424UB\WlanCU.exe [2009-12-24 499712] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux6"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3501597266-4077889590-3413061231-1000] "EnableNotificationsRef"=dword:00000001 . --- Other Services/Drivers In Memory --- . *NewlyCreated* - MPKSL82C6B15A . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Akamai REG_MULTI_SZ Akamai LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr . Contents of the 'Scheduled Tasks' folder . 2013-06-21 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 18:53] . 2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40] . 2013-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-05-23 13:40] . 2013-06-20 c:\windows\Tasks\ReclaimerUpdateFiles_Ken.job - c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59] . 2013-06-21 c:\windows\Tasks\ReclaimerUpdateXML_Ken.job - c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59] . 2013-06-21 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Ken.job - c:\users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-20 00:59] . . ------- Supplementary Scan ------- . uInternet Settings,ProxyOverride = <local> IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 LSP: c:\windows\system32\wpclsp.dll Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: real.com\rhap-app-4-0 Trusted Zone: real.com\rhapreg Trusted Zone: rhapsody.com\rhap-app-4-0 Trusted Zone: rhapsody.com\rhapreg Trusted Zone: soe.com Trusted Zone: sony.com TCP: DhcpNameServer = 72.28.160.35 72.28.160.36 FF - ProfilePath - c:\users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\4hdp37ux.default\ FF - prefs.js: browser.search.selectedEngine - Bing FF - prefs.js: browser.search.defaulturl - FF - prefs.js: browser.search.selectedEngine - SecureSearch . - - - - ORPHANS REMOVED - - - - . Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A} - (no file) WebBrowser-{2D922B81-34C7-4AAB-9C5D-433E79FC9445} - (no file) HKLM-Run-%PROVIDERID% - bin\sprtcmd.exe SafeBoot-32180213.sys SafeBoot-59253419.sys SafeBoot-WudfPf SafeBoot-WudfRd AddRemove-{2EF17083-57D4-4D64-AE4F-55F32A2C4571} - c:\programdata\Codecv\uninstall.exe AddRemove-Plex - c:\program files\Plex\Plex Media Center\uninstall.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-06-21 19:17 Windows 6.0.6002 Service Pack 2 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Completion time: 2013-06-21 19:19:20 ComboFix-quarantined-files.txt 2013-06-21 23:19 . Pre-Run: 51,239,202,816 bytes free Post-Run: 51,236,732,928 bytes free . - - End Of File - - 63B657D860221DC7BF16BCE02E5B2E53 5C616939100B85E558DA92B899A0FC36 Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 22, 2013 Root Admin ID:694391 Share Posted June 22, 2013 I'm going to be in and out most of the weekend but I'll check back with you as soon as I can.STEP 01Please download Junkware Removal Tool to your desktop.Shutdown your antivirus to avoid any conflicts.Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP.The tool will open and start scanning your system.Please be patient as this can take a while to complete.On completion, a log (JRT.txt) is saved to your desktop and will automatically open.Post the contents of JRT.txt into your next reply messageWhen completed make sure to re-enable your antivirusSTEP 02Please download AdwCleaner by Xplode to your desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.If prompted by the User Account Control click Yes to allow it to run.Under Actions click on the Delete button.Click OK on all prompts.You will be prompted to restart your computer. A text file will open after the restart.Please post the entire contents of that logfile to your next reply.You can find the logfile at C:\AdwCleaner[s1].txt where the number in brackets indicates how often it was run.STEP 03Please go here to run the online antivirus scannner from ESET.Turn off the real time scanner of any existing antivirus program while performing the online scanTick the box next to YES, I accept the Terms of Use.Click StartWhen asked, allow the activex control to installClick StartMake sure that the option Remove found threats is untickedClick on Advanced Settings and ensure these options are ticked:Scan for potentially unwanted applicationsScan for potentially unsafe applicationsEnable Anti-Stealth TechnologyClick ScanWait for the scan to finishIf any threats were found, click the 'List of found threats' , then click Export to text file....Save it to your desktop, then please copy and paste that log as a reply to this topic. Link to post Share on other sites More sharing options...
Last_Ditch Posted June 24, 2013 Author ID:695286 Share Posted June 24, 2013 ok, here are the logs you requested... JRT : ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 4.9.4 (05.06.2013:1) OS: Windows Vista Home Premium x86 Ran by Ken on Sun 06/23/2013 at 20:25:57.37 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services Successfully stopped: [service] AskService Successfully deleted: [service] AskService Successfully stopped: [service] AskUpgrade Successfully deleted: [service] AskUpgrade ~~~ Registry Values Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\New Windows\Allow\\*.crossrider.com Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{3041D03E-FD4B-44E0-B742-2D9B88305F98} ~~~ Registry Keys Successfully deleted: [Registry Key] "HKEY_CURRENT_USER\Software\Microsoft\internet explorer\internetregistry\registry\user\S-1-5-21-3501597266-4077889590-3413061231-1000\software\web assistant" Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduitengine Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\freeze.com Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\web assistant Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduit Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduitengine Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\conduitsearchscopes Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\Software\pricegong Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\toolbar Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escort.dll Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr.1 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\conduit.engine Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT2504091 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT3150609 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\classes\Toolbar.CT3177532 Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2329355B-9777-40FE-8E0B-7885E323383D} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{8b0d31e7-0331-43cc-87cd-a472317f1305} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC} Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{201F27D4-3704-41D6-89C1-AA35E39143ED} Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Successfully deleted: [Registry Key] "hkey_current_user\software\appdatalow\askbardis" ~~~ Files Successfully deleted: [File] "C:\end" Successfully deleted: [File] C:\eula.1028.txt Successfully deleted: [File] C:\eula.1031.txt Successfully deleted: [File] C:\eula.1033.txt Successfully deleted: [File] C:\eula.1036.txt Successfully deleted: [File] C:\eula.1040.txt Successfully deleted: [File] C:\eula.1041.txt Successfully deleted: [File] C:\eula.1042.txt Successfully deleted: [File] C:\eula.1049.txt Successfully deleted: [File] C:\eula.2052.txt Successfully deleted: [File] C:\install.res.1028.dll Successfully deleted: [File] C:\install.res.1031.dll Successfully deleted: [File] C:\install.res.1033.dll Successfully deleted: [File] C:\install.res.1036.dll Successfully deleted: [File] C:\install.res.1040.dll Successfully deleted: [File] C:\install.res.1041.dll Successfully deleted: [File] C:\install.res.1042.dll Successfully deleted: [File] C:\install.res.1049.dll Successfully deleted: [File] C:\install.res.2052.dll Successfully deleted: [File] C:\install.res.3082.dll ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\babylon" Successfully deleted: [Folder] "C:\ProgramData\codeccheck" Successfully deleted: [Folder] "C:\ProgramData\drivercure" Successfully deleted: [Folder] "C:\ProgramData\installmate" Successfully deleted: [Folder] "C:\ProgramData\premium" Successfully deleted: [Folder] "C:\ProgramData\wecarereminder" Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\babylon" Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\drivercure" Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\file scout" Successfully deleted: [Folder] "C:\Users\Ken\AppData\Roaming\systweak" Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\babylon" Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\conduit" Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\premiumplay codec-c" Successfully deleted: [Folder] "C:\Users\Ken\appdata\local\wondershare" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\babylontoolbar" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\boost_interprocess" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\codecv" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\conduit" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\conduitengine" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\pricegong" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\televisionfanaticei" Successfully deleted: [Folder] "C:\Users\Ken\appdata\locallow\vuze_remote" Successfully deleted: [Folder] "C:\Program Files\conduit" Successfully deleted: [Folder] "C:\Program Files\conduitengine" Successfully deleted: [Folder] "C:\Program Files\crossriderwebapps" Successfully deleted: [Folder] "C:\Program Files\file scout" Successfully deleted: [Folder] "C:\Program Files\premiumplay codec-c" Successfully deleted: [Folder] "C:\Program Files\vuze_remote" Successfully deleted: [Folder] "C:\Program Files\wondershare" Successfully deleted: [Folder] "C:\Program Files\Common Files\Wondershare" Successfully deleted: [Folder] "C:\Windows\system32\ai_recyclebin" Successfully deleted: [Empty Folder] C:\Users\Ken\appdata\local\{7961EBE3-B0C4-4AAD-AD71-869A144EF5BF} Successfully deleted: [Empty Folder] C:\Users\Ken\appdata\local\{AFD9C368-BB43-4980-AAF3-E458839FA9BA} Successfully deleted: [Empty Folder] C:\Users\Ken\appdata\local\{C5C15B8F-A785-4349-A496-9177F35A4B06} Successfully deleted: [Folder] "C:\Program Files\askbardis\bar\bin" Successfully deleted: [Folder] "C:\Program Files\askbardis\bar" Successfully deleted: [Folder] "C:\Program Files\askbardis" ~~~ FireFox Successfully deleted: [File] C:\user.js Successfully deleted: [File] "C:\Program Files\Mozilla Firefox\searchplugins\adawaretb.xml" Successfully deleted: [File] C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\extensions\{eee6c361-6118-11dc-9c72-001320c79847}.xpi Successfully deleted: [File] C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\searchplugins\sweetim.xml Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{336D0C35-8A85-403A-B9D2-65C292C39087} Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD} Successfully deleted the following from C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\prefs.js user_pref("sweetim.toolbar.previous.browser.startup.homepage", ""); user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", ""); user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", ""); user_pref("sweetim.toolbar.previous.keyword.URL", ""); user_pref("browser.search.selectedEngine", "SecureSearch"); Emptied folder: C:\Users\Ken\AppData\Roaming\mozilla\firefox\profiles\4hdp37ux.default\minidumps [2 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Sun 06/23/2013 at 20:28:31.43 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AdwCleaner : # AdwCleaner v2.303 - Logfile created 06/24/2013 at 08:07:03 # Updated 08/06/2013 by Xplode # Operating system : Windows Vista Home Premium Service Pack 2 (32 bits) # User : Ken - KEN-PC # Boot Mode : Normal # Running from : C:\Users\Ken\Desktop\AdwCleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codecv Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare Folder Deleted : C:\ProgramData\ParetoLogic Folder Deleted : C:\Users\Cass\AppData\LocalLow\Codecv Folder Deleted : C:\Users\Cass\AppData\LocalLow\Conduit Folder Deleted : C:\Users\Cass\AppData\LocalLow\ConduitEngine Folder Deleted : C:\Users\Cass\AppData\LocalLow\Vuze_Remote ***** [Registry] ***** Key Deleted : HKCU\Software\AppDataLow\Software\bflixtoolbar Key Deleted : HKCU\Software\AppDataLow\Software\Vuze_Remote Key Deleted : HKCU\Software\InstallCore Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{2EF17083-57D4-4D64-AE4F-55F32A2C4571} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1 Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6EFDBA50-4ABE-4194-86F7-F3BD0A011F5B}_is1 Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\adawaretb Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1 Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bflixtoolbar Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Vuze_Remote Toolbar Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B0DE3308-5D5A-470D-81B9-634FC078393B} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0702A2B6-13AA-4090-9E01-BCDC85DD933F} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC} Key Deleted : HKCU\Software\wecarereminder Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKLM\Software\bflixtoolbar Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E708A355-705F-477C-A01C-61287EF8550E} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2} Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8C27E4F-5753-4EF1-AFBC-2C946D6298B0} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E708A355-705F-477C-A01C-61287EF8550E} Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar Key Deleted : HKLM\Software\Vuze_Remote Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}] ***** [internet Browsers] ***** -\\ Internet Explorer v9.0.8112.16490 [OK] Registry is clean. -\\ Mozilla Firefox v19.0.2 (en-US) File : C:\Users\Ken\AppData\Roaming\Mozilla\Firefox\Profiles\4hdp37ux.default\prefs.js [OK] File is clean. -\\ Google Chrome v [unable to get version] File : C:\Users\Ken\AppData\Local\Google\Chrome\User Data\Default\Preferences ************************* AdwCleaner[R1].txt - [7236 octets] - [24/06/2013 08:06:33] AdwCleaner[s1].txt - [6287 octets] - [24/06/2013 08:07:03] ########## EOF - C:\AdwCleaner[s1].txt - [6347 octets] ########## and finally, ESET online scanner : C:\Program Files\SmileyCentral_1vEI\Installr\1.bin\1vEIPlug.dll Win32/Toolbar.MyWebSearch application C:\Program Files\SmileyCentral_1vEI\Installr\1.bin\NP1vEISb.dll Win32/Toolbar.MyWebSearch application C:\Program Files\Veoh Networks\VeohWebPlayer\OCSetupHlp.dll Win32/OpenCandy application C:\Program Files\Veoh Networks\VeohWebPlayer\qlps-qlipso-sntb.exe Win32/Toolbar.Zugo application C:\Qoobox\Quarantine\C\Program Files\TelevisionFanaticEI\Installr\1.bin\64EIPlug.dll.vir a variant of Win32/Toolbar.MyWebSearch application C:\Qoobox\Quarantine\C\ProgramData\Codecv\uninstall.exe.vir Win32/Adware.MultiPlug.A application Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 25, 2013 Root Admin ID:695347 Share Posted June 25, 2013 Please run MBAM and check for updates. Then do a Quick Scan and post back the log. Next please run the following. Please download the following scanner from Kaspersky and save it to your computer: TDSSkiller Then watch the following video on how to use the tool and make sure to temporarily disable your security applications before running TDSSkiller. PC Winvids - How to run Kaspersky TDSSKiller If any infection is found please make sure to choose SKIP and post back the log in case of a False Positive detection. Once the tool has completed scanning make sure to re-enable your other security applications. Link to post Share on other sites More sharing options...
Last_Ditch Posted June 25, 2013 Author ID:695468 Share Posted June 25, 2013 Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.orgDatabase version: v2013.06.25.01Windows Vista Service Pack 2 x86 NTFSInternet Explorer 9.0.8112.16421Ken :: KEN-PC [administrator]Protection: Enabled6/24/2013 8:46:53 PMmbam-log-2013-06-24 (20-46-53).txt Scan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2PScan options disabled:Objects scanned: 260995Time elapsed: 9 minute(s), 11 second(s) Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected)Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected)(end) Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 25, 2013 Root Admin ID:695470 Share Posted June 25, 2013 Great - now please post the TDSSKiller log, thanks Link to post Share on other sites More sharing options...
Last_Ditch Posted June 25, 2013 Author ID:695667 Share Posted June 25, 2013 I keep trying...but for some reason it won't paste, Ugh!!! Link to post Share on other sites More sharing options...
Last_Ditch Posted June 25, 2013 Author ID:695668 Share Posted June 25, 2013 I'm gonna try part in each reply, maybe that'll keep it from freezing... 02:42:33.0793 1212 TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:1902:42:33.0855 1212 ============================================================02:42:33.0855 1212 Current date / time: 2013/06/25 02:42:33.085502:42:33.0855 1212 SystemInfo:02:42:33.0855 1212 02:42:33.0855 1212 OS Version: 6.0.6002 ServicePack: 2.002:42:33.0855 1212 Product type: Workstation02:42:33.0855 1212 ComputerName: KEN-PC02:42:33.0855 1212 UserName: Ken02:42:33.0855 1212 Windows directory: C:\Windows02:42:33.0855 1212 System windows directory: C:\Windows02:42:33.0855 1212 Processor architecture: Intel x8602:42:33.0855 1212 Number of processors: 202:42:33.0855 1212 Page size: 0x100002:42:33.0855 1212 Boot type: Normal boot02:42:33.0855 1212 ============================================================02:42:33.0855 1212 BG loaded02:42:34.0152 1212 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000005002:42:34.0167 1212 ============================================================02:42:34.0167 1212 \Device\Harddisk0\DR0:02:42:34.0167 1212 MBR partitions:02:42:34.0167 1212 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B800, BlocksNum 0x140000002:42:34.0167 1212 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x141B800, BlocksNum 0x1BD8D00002:42:34.0167 1212 ============================================================02:42:34.0245 1212 C: <-> \Device\Harddisk0\DR0\Partition202:42:34.0308 1212 D: <-> \Device\Harddisk0\DR0\Partition102:42:34.0308 1212 ============================================================02:42:34.0308 1212 Initialize success02:42:34.0308 1212 ============================================================02:47:35.0668 0364 ============================================================02:47:35.0668 0364 Scan started02:47:35.0668 0364 Mode: Manual; SigCheck; TDLFS;02:47:35.0668 0364 ============================================================02:47:36.0113 0364 ================ Scan system memory ========================02:47:36.0113 0364 System memory - ok02:47:36.0114 0364 ================ Scan services =============================02:47:36.0274 0364 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys02:47:36.0393 0364 ACPI - ok02:47:36.0473 0364 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe02:47:36.0489 0364 AdobeARMservice - ok02:47:36.0545 0364 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe02:47:36.0562 0364 AdobeFlashPlayerUpdateSvc - ok02:47:36.0607 0364 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys02:47:36.0630 0364 adp94xx - ok02:47:36.0668 0364 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys02:47:36.0686 0364 adpahci - ok02:47:36.0715 0364 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys02:47:36.0730 0364 adpu160m - ok02:47:36.0761 0364 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys02:47:36.0780 0364 adpu320 - ok02:47:36.0850 0364 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll02:47:36.0996 0364 AeLookupSvc - ok02:47:37.0037 0364 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys02:47:37.0099 0364 AFD - ok02:47:37.0128 0364 [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4 ] agp440 C:\Windows\system32\drivers\agp440.sys02:47:37.0143 0364 agp440 - ok02:47:37.0168 0364 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys02:47:37.0183 0364 aic78xx - ok02:47:37.0211 0364 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe02:47:37.0381 0364 ALG - ok02:47:37.0401 0364 [ E32A92E1574A467F7C762922F6162D76 ] aliide C:\Windows\system32\drivers\aliide.sys02:47:37.0416 0364 aliide - ok02:47:37.0468 0364 [ 848F27E5B27C1C253F6CEFDC1A5D8F21 ] amdagp C:\Windows\system32\drivers\amdagp.sys02:47:37.0481 0364 amdagp - ok02:47:37.0496 0364 [ B52B576CB0099A62F87214F371031561 ] amdide C:\Windows\system32\drivers\amdide.sys02:47:37.0515 0364 amdide - ok02:47:37.0532 0364 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys02:47:37.0766 0364 AmdK7 - ok02:47:37.0802 0364 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys02:47:37.0872 0364 AmdK8 - ok02:47:37.0898 0364 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll02:47:37.0959 0364 Appinfo - ok02:47:38.0031 0364 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe02:47:38.0052 0364 Apple Mobile Device - ok02:47:38.0102 0364 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys02:47:38.0122 0364 arc - ok02:47:38.0146 0364 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys02:47:38.0169 0364 arcsas - ok02:47:38.0223 0364 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys02:47:38.0267 0364 AsyncMac - ok02:47:38.0306 0364 [ E03E8C99D15D0381E02743C36AFC7C6F ] atapi C:\Windows\system32\drivers\atapi.sys02:47:38.0330 0364 atapi - ok02:47:38.0376 0364 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll02:47:38.0480 0364 AudioEndpointBuilder - ok02:47:38.0530 0364 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll02:47:38.0559 0364 Audiosrv - ok02:47:38.0604 0364 [ CD4646067CC7DCBA1907FA0ACF7E3966 ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys02:47:38.0666 0364 bcm4sbxp - ok02:47:38.0725 0364 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys02:47:38.0774 0364 Beep - ok02:47:38.0806 0364 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll02:47:38.0877 0364 BFE - ok02:47:38.0914 0364 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll02:47:38.0982 0364 BITS - ok02:47:38.0993 0364 blbdrive - ok02:47:39.0049 0364 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe02:47:39.0075 0364 Bonjour Service - ok02:47:39.0110 0364 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys02:47:39.0168 0364 bowser - ok02:47:39.0200 0364 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys02:47:39.0232 0364 BrFiltLo - ok02:47:39.0265 0364 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll02:47:39.0305 0364 Browser - ok02:47:39.0330 0364 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys02:47:39.0395 0364 Brserid - ok02:47:39.0414 0364 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys02:47:39.0476 0364 BrSerWdm - ok02:47:39.0495 0364 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys02:47:39.0564 0364 BrUsbMdm - ok02:47:39.0585 0364 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys02:47:39.0637 0364 BrUsbSer - ok02:47:39.0655 0364 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys02:47:39.0714 0364 BTHMODEM - ok02:47:39.0814 0364 catchme - ok02:47:39.0840 0364 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys02:47:39.0878 0364 cdfs - ok02:47:39.0903 0364 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys02:47:39.0937 0364 cdrom - ok02:47:39.0970 0364 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll02:47:40.0006 0364 CertPropSvc - ok02:47:40.0032 0364 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys02:47:40.0094 0364 circlass - ok02:47:40.0130 0364 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys02:47:40.0153 0364 CLFS - ok02:47:40.0199 0364 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe02:47:40.0216 0364 clr_optimization_v2.0.50727_32 - ok02:47:40.0275 0364 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe02:47:40.0291 0364 clr_optimization_v4.0.30319_32 - ok02:47:40.0317 0364 [ C177DD90B5DC1DCAA96CCECE752E6F0F ] cmdide C:\Windows\system32\drivers\cmdide.sys02:47:40.0331 0364 cmdide - ok02:47:40.0348 0364 [ F66B956E390275639869A546DD1101B0 ] Compbatt C:\Windows\system32\drivers\compbatt.sys02:47:40.0362 0364 Compbatt - ok02:47:40.0370 0364 COMSysApp - ok02:47:40.0393 0364 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys02:47:40.0406 0364 crcdisk - ok02:47:40.0469 0364 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys02:47:40.0530 0364 Crusoe - ok02:47:40.0557 0364 [ 3EDE4C1F9672C972479201544969ADCB ] CryptSvc C:\Windows\system32\cryptsvc.dll02:47:40.0580 0364 CryptSvc - ok02:47:40.0642 0364 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE02:47:40.0704 0364 cvhsvc - ok02:47:40.0754 0364 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll02:47:40.0803 0364 DcomLaunch - ok02:47:40.0832 0364 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys02:47:40.0887 0364 DfsC - ok02:47:40.0973 0364 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe02:47:41.0140 0364 DFSR - ok02:47:41.0172 0364 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll02:47:41.0209 0364 Dhcp - ok02:47:41.0234 0364 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys02:47:41.0251 0364 disk - ok02:47:41.0285 0364 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll02:47:41.0343 0364 Dnscache - ok02:47:41.0411 0364 [ 1A11EF6E4606F604C479D604B81D04DB ] DokanCEDriver C:\Program Files\PogoplugBackup\dokance.sys02:47:41.0531 0364 DokanCEDriver - ok02:47:41.0547 0364 [ 95F0941685F65C27C783AF301E5DAE78 ] DokanCEMounter C:\Program Files\PogoplugBackup\dokanmnt.exe02:47:41.0622 0364 DokanCEMounter - ok02:47:41.0668 0364 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll02:47:41.0707 0364 dot3svc - ok02:47:41.0734 0364 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll02:47:41.0778 0364 DPS - ok02:47:41.0804 0364 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys02:47:41.0833 0364 drmkaud - ok02:47:41.0875 0364 [ 245F62A2AA67F4A61F10174BF1017327 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe02:47:42.0076 0364 DSBrokerService ( UnsignedFile.Multi.Generic ) - warning02:47:42.0077 0364 DSBrokerService - detected UnsignedFile.Multi.Generic (1)02:47:42.0121 0364 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys02:47:42.0141 0364 DSproct ( UnsignedFile.Multi.Generic ) - warning02:47:42.0141 0364 DSproct - detected UnsignedFile.Multi.Generic (1)02:47:42.0166 0364 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\Windows\system32\DRIVERS\dsunidrv.sys02:47:42.0206 0364 dsunidrv - ok02:47:42.0250 0364 [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys02:47:42.0284 0364 DXGKrnl - ok02:47:42.0314 0364 [ 7505290504C8E2D172FA378CC0497BCC ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys02:47:42.0387 0364 e1express - ok02:47:42.0407 0364 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys02:47:42.0472 0364 E1G60 - ok02:47:42.0494 0364 EagleNT - ok02:47:42.0520 0364 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll02:47:42.0549 0364 EapHost - ok02:47:42.0576 0364 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys02:47:42.0594 0364 Ecache - ok02:47:42.0642 0364 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe02:47:42.0675 0364 ehRecvr - ok02:47:42.0695 0364 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe02:47:42.0762 0364 ehSched - ok02:47:42.0782 0364 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll02:47:42.0802 0364 ehstart - ok02:47:42.0828 0364 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys02:47:42.0849 0364 elxstor - ok02:47:42.0896 0364 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll02:47:43.0029 0364 EMDMgmt - ok02:47:43.0080 0364 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll02:47:43.0115 0364 EventSystem - ok02:47:43.0134 0364 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys02:47:43.0185 0364 exfat - ok02:47:43.0213 0364 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys02:47:43.0243 0364 fastfat - ok02:47:43.0272 0364 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys02:47:43.0335 0364 fdc - ok02:47:43.0359 0364 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll02:47:43.0389 0364 fdPHost - ok02:47:43.0407 0364 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll02:47:43.0468 0364 FDResPub - ok02:47:43.0488 0364 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys02:47:43.0508 0364 FileInfo - ok02:47:43.0532 0364 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys02:47:43.0568 0364 Filetrace - ok02:47:43.0605 0364 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe02:47:43.0641 0364 FLEXnet Licensing Service - ok02:47:43.0670 0364 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys02:47:43.0729 0364 flpydisk - ok02:47:43.0762 0364 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys02:47:43.0781 0364 FltMgr - ok02:47:43.0816 0364 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll02:47:43.0883 0364 FontCache - ok02:47:43.0929 0364 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe02:47:43.0943 0364 FontCache3.0.0.0 - ok02:47:43.0981 0364 [ D909075FA72C090F27AA926C32CB4612 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys02:47:43.0994 0364 fssfltr - ok02:47:44.0095 0364 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe02:47:44.0251 0364 fsssvc - ok02:47:44.0281 0364 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys02:47:44.0316 0364 Fs_Rec - ok02:47:44.0346 0364 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys02:47:44.0384 0364 gagp30kx - ok02:47:44.0428 0364 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys02:47:44.0439 0364 GEARAspiWDM - ok02:47:44.0471 0364 [ 483924F92E55A5F9423201EC635E2CED ] gfibto C:\Windows\system32\drivers\gfibto.sys02:47:44.0484 0364 gfibto - ok02:47:44.0534 0364 Giraffic - ok02:47:44.0580 0364 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll02:47:44.0630 0364 gpsvc - ok02:47:44.0700 0364 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe02:47:44.0716 0364 gupdate - ok02:47:44.0725 0364 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe02:47:44.0739 0364 gupdatem - ok02:47:44.0778 0364 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe02:47:44.0796 0364 gusvc - ok02:47:44.0821 0364 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys02:47:44.0887 0364 HdAudAddService - ok02:47:44.0920 0364 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys02:47:45.0017 0364 HDAudBus - ok02:47:45.0040 0364 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys02:47:45.0090 0364 HidBth - ok02:47:45.0106 0364 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys02:47:45.0162 0364 HidIr - ok02:47:45.0188 0364 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll02:47:45.0225 0364 hidserv - ok02:47:45.0247 0364 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys02:47:45.0269 0364 HidUsb - ok02:47:45.0290 0364 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll02:47:45.0335 0364 hkmsvc - ok02:47:45.0363 0364 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys02:47:45.0378 0364 HpCISSs - ok02:47:45.0417 0364 [ 99F85640054BA65190B860D878A7C9AE ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys02:47:45.0510 0364 HSF_DPV - ok02:47:45.0540 0364 [ FE440536BD98AF772130DC3A6FE1915F ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys02:47:45.0558 0364 HSXHWBS2 - ok02:47:45.0588 0364 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys02:47:45.0648 0364 HTTP - ok02:47:45.0691 0364 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys02:47:45.0704 0364 i2omp - ok02:47:45.0740 0364 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys02:47:45.0786 0364 i8042prt - ok02:47:45.0812 0364 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys02:47:45.0832 0364 iaStorV - ok02:47:45.0892 0364 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe02:47:45.0900 0364 IDriverT ( UnsignedFile.Multi.Generic ) - warning02:47:45.0901 0364 IDriverT - detected UnsignedFile.Multi.Generic (1)02:47:45.0969 0364 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe02:47:46.0018 0364 idsvc - ok02:47:46.0077 0364 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys02:47:46.0091 0364 iirsp - ok02:47:46.0132 0364 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll02:47:46.0178 0364 IKEEXT - ok02:47:46.0208 0364 [ 59B00EFB24EAD979BECF413703BB1FAC ] intelide C:\Windows\system32\drivers\intelide.sys02:47:46.0223 0364 intelide - ok02:47:46.0240 0364 [ CE44CC04262F28216DD4341E9E36A16F ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys02:47:46.0303 0364 intelppm - ok02:47:46.0328 0364 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll02:47:46.0362 0364 IPBusEnum - ok02:47:46.0397 0364 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys02:47:46.0445 0364 IpFilterDriver - ok02:47:46.0475 0364 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll02:47:46.0522 0364 iphlpsvc - ok02:47:46.0529 0364 IpInIp - ok02:47:46.0575 0364 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys02:47:46.0670 0364 IPMIDRV - ok02:47:46.0712 0364 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys02:47:46.0746 0364 IPNAT - ok02:47:46.0795 0364 [ FE56897B27ED266F9C4E7D90A0B5DA47 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe02:47:46.0846 0364 iPod Service - ok02:47:46.0908 0364 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys02:47:46.0937 0364 IRENUM - ok02:47:46.0970 0364 [ 2F8ECE2699E7E2070545E9B0960A8ED2 ] isapnp C:\Windows\system32\drivers\isapnp.sys02:47:46.0989 0364 isapnp - ok02:47:47.0026 0364 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys02:47:47.0045 0364 iScsiPrt - ok02:47:47.0071 0364 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys02:47:47.0085 0364 iteatapi - ok02:47:47.0116 0364 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys02:47:47.0130 0364 iteraid - ok02:47:47.0160 0364 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys02:47:47.0175 0364 kbdclass - ok02:47:47.0203 0364 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys02:47:47.0239 0364 kbdhid - ok02:47:47.0267 0364 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe02:47:47.0298 0364 KeyIso - ok02:47:47.0340 0364 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys02:47:47.0385 0364 KSecDD - ok02:47:47.0416 0364 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll02:47:47.0474 0364 KtmRm - ok02:47:47.0503 0364 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll02:47:47.0559 0364 LanmanServer - ok02:47:47.0588 0364 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll02:47:47.0640 0364 LanmanWorkstation - ok02:47:47.0674 0364 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys02:47:47.0716 0364 lltdio - ok02:47:47.0773 0364 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll02:47:47.0825 0364 lltdsvc - ok02:47:47.0853 0364 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll02:47:47.0905 0364 lmhosts - ok02:47:47.0915 0364 lmimirr - ok02:47:47.0954 0364 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys02:47:47.0970 0364 LSI_FC - ok02:47:47.0993 0364 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys02:47:48.0010 0364 LSI_SAS - ok02:47:48.0029 0364 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys02:47:48.0044 0364 LSI_SCSI - ok02:47:48.0070 0364 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys02:47:48.0115 0364 luafv - ok02:47:48.0151 0364 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\Windows\system32\drivers\mbam.sys02:47:48.0165 0364 MBAMProtector - ok02:47:48.0204 0364 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe02:47:48.0233 0364 MBAMScheduler - ok02:47:48.0270 0364 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe02:47:48.0317 0364 MBAMService - ok02:47:48.0383 0364 [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe02:47:48.0401 0364 McComponentHostService - ok02:47:48.0422 0364 MCSTRM - ok02:47:48.0448 0364 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll02:47:48.0476 0364 Mcx2Svc - ok02:47:48.0500 0364 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys02:47:48.0516 0364 mdmxsdk - ok02:47:48.0541 0364 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys02:47:48.0555 0364 megasas - ok02:47:48.0584 0364 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll02:47:48.0614 0364 MMCSS - ok02:47:48.0638 0364 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys02:47:48.0705 0364 Modem - ok02:47:48.0733 0364 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys02:47:48.0761 0364 monitor - ok02:47:48.0791 0364 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys02:47:48.0807 0364 mouclass - ok02:47:48.0822 0364 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys02:47:48.0858 0364 mouhid - ok02:47:48.0880 0364 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys02:47:48.0895 0364 MountMgr - ok02:47:48.0933 0364 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe02:47:48.0952 0364 MozillaMaintenance - ok02:47:48.0993 0364 [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys02:47:49.0017 0364 MpFilter - ok02:47:49.0045 0364 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys02:47:49.0059 0364 mpio - ok02:47:49.0149 0364 [ A69630D039C38018689190234F866D77 ] MpKsl080172f5 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\MpKsl080172f5.sys02:47:49.0219 0364 MpKsl080172f5 - ok02:47:49.0259 0364 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys02:47:49.0294 0364 mpsdrv - ok02:47:49.0324 0364 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll02:47:49.0368 0364 MpsSvc - ok02:47:49.0390 0364 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys02:47:49.0404 0364 Mraid35x - ok02:47:49.0437 0364 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys02:47:49.0464 0364 MRxDAV - ok02:47:49.0490 0364 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys02:47:49.0522 0364 mrxsmb - ok02:47:49.0563 0364 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys02:47:49.0591 0364 mrxsmb10 - ok02:47:49.0619 0364 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys02:47:49.0635 0364 mrxsmb20 - ok02:47:49.0663 0364 [ 2681302B63B318CBEA6C82902AC5428C ] msahci C:\Windows\system32\drivers\msahci.sys02:47:49.0687 0364 msahci - ok02:47:49.0704 0364 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys02:47:49.0720 0364 msdsm - ok02:47:49.0747 0364 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe02:47:49.0802 0364 MSDTC - ok02:47:49.0848 0364 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys02:47:49.0886 0364 Msfs - ok02:47:49.0914 0364 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys02:47:49.0929 0364 msisadrv - ok02:47:49.0956 0364 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll02:47:49.0999 0364 MSiSCSI - ok02:47:50.0016 0364 msiserver - ok02:47:50.0044 0364 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys02:47:50.0089 0364 MSKSSRV - ok02:47:50.0118 0364 [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe02:47:50.0134 0364 MsMpSvc - ok02:47:50.0158 0364 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys02:47:50.0196 0364 MSPCLOCK - ok02:47:50.0208 0364 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys02:47:50.0253 0364 MSPQM - ok02:47:50.0283 0364 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys02:47:50.0303 0364 MsRPC - ok02:47:50.0337 0364 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys02:47:50.0351 0364 mssmbios - ok02:47:50.0379 0364 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys02:47:50.0413 0364 MSTEE - ok02:47:50.0438 0364 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys02:47:50.0455 0364 Mup - ok02:47:50.0481 0364 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll02:47:50.0516 0364 napagent - ok02:47:50.0551 0364 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys02:47:50.0577 0364 NativeWifiP - ok02:47:50.0614 0364 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys02:47:50.0646 0364 NDIS - ok02:47:50.0694 0364 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys02:47:50.0728 0364 NdisTapi - ok02:47:50.0756 0364 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys02:47:50.0802 0364 Ndisuio - ok02:47:50.0838 0364 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys02:47:50.0863 0364 NdisWan - ok02:47:50.0889 0364 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys02:47:50.0913 0364 NDProxy - ok02:47:50.0940 0364 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys02:47:50.0980 0364 NetBIOS - ok02:47:51.0008 0364 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys02:47:51.0035 0364 netbt - ok02:47:51.0049 0364 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe02:47:51.0064 0364 Netlogon - ok02:47:51.0097 0364 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll02:47:51.0148 0364 Netman - ok02:47:51.0174 0364 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll02:47:51.0220 0364 netprofm - ok02:47:51.0241 0364 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe02:47:51.0258 0364 NetTcpPortSharing - ok02:47:51.0286 0364 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys02:47:51.0301 0364 nfrd960 - ok02:47:51.0322 0364 [ 832E098BCA8235436FE2D8AE50AC3718 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys02:47:51.0339 0364 NisDrv - ok02:47:51.0366 0364 [ E570ECA850F30EB740C2E9699DF3D2BD ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe02:47:51.0390 0364 NisSrv - ok02:47:51.0419 0364 [ 6C459D3113565D8E016E443DD5B23097 ] nk_bus C:\Windows\system32\Drivers\nk_bus.sys02:47:51.0447 0364 nk_bus - ok02:47:51.0475 0364 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll02:47:51.0524 0364 NlaSvc - ok02:47:51.0556 0364 [ 71575EB97D4E87712DC98ECEFF575F62 ] nokusbser C:\Windows\system32\DRIVERS\nokusbser.sys02:47:51.0588 0364 nokusbser - ok02:47:51.0617 0364 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys02:47:51.0647 0364 Npfs - ok02:47:51.0659 0364 npggsvc - ok02:47:51.0680 0364 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll02:47:51.0720 0364 nsi - ok02:47:51.0750 0364 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys02:47:51.0791 0364 nsiproxy - ok02:47:51.0857 0364 [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys02:47:51.0914 0364 Ntfs - ok02:47:51.0938 0364 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys02:47:52.0003 0364 ntrigdigi - ok02:47:52.0024 0364 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys02:47:52.0069 0364 Null - ok02:47:52.0340 0364 [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys02:47:53.0177 0364 nvlddmkm - ok02:47:53.0213 0364 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys02:47:53.0229 0364 nvraid - ok02:47:53.0261 0364 [ 1988AF02F581EE0A0A0C4D920B7E272F ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys02:47:53.0277 0364 nvrd32 - ok02:47:53.0297 0364 [ 4A5FCAB82D9BF6AF8A023A66802FE9E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys02:47:53.0344 0364 nvstor - ok02:47:53.0380 0364 [ DC5F166422BEEBF195E3E4BB8AB4EE22 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys02:47:53.0395 0364 nvstor32 - ok02:47:53.0438 0364 [ 31B8835B003CAA6D31BEAD83DDBF98E5 ] nvsvc C:\Windows\system32\nvvsvc.exe02:47:53.0481 0364 nvsvc - ok02:47:53.0567 0364 [ 53C847F33D51E21CAC27923D18092B49 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe02:47:53.0609 0364 nvUpdatusService - ok02:47:53.0624 0364 [ 055081FD5076401C1EE1BCAB08D81911 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys02:47:53.0641 0364 nv_agp - ok02:47:53.0647 0364 NwlnkFlt - ok02:47:53.0659 0364 NwlnkFwd - ok02:47:53.0686 0364 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys02:47:53.0771 0364 ohci1394 - ok02:47:53.0800 0364 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE02:47:53.0818 0364 ose - ok02:47:53.0989 0364 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE02:47:54.0195 0364 osppsvc - ok02:47:54.0236 0364 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll02:47:54.0326 0364 p2pimsvc - ok02:47:54.0371 0364 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll02:47:54.0402 0364 p2psvc - ok02:47:54.0454 0364 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys02:47:54.0506 0364 Parport - ok02:47:54.0536 0364 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys02:47:54.0559 0364 partmgr - ok02:47:54.0585 0364 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys02:47:54.0652 0364 Parvdm - ok02:47:54.0677 0364 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll02:47:54.0723 0364 PcaSvc - ok02:47:54.0751 0364 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys02:47:54.0770 0364 pci - ok02:47:54.0796 0364 [ B2FC76090EF1003463CCB07CABB35CFF ] pciide C:\Windows\system32\drivers\pciide.sys02:47:54.0813 0364 pciide - ok02:47:54.0836 0364 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys02:47:54.0854 0364 pcmcia - ok02:47:54.0896 0364 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys02:47:55.0052 0364 PEAUTH - ok02:47:55.0154 0364 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll02:47:55.0317 0364 pla - ok02:47:55.0350 0364 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll02:47:55.0396 0364 PlugPlay - ok02:47:55.0437 0364 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll02:47:55.0466 0364 PNRPAutoReg - ok02:47:55.0512 0364 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll02:47:55.0544 0364 PNRPsvc - ok02:47:55.0595 0364 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll02:47:55.0639 0364 PolicyAgent - ok02:47:55.0669 0364 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys02:47:55.0699 0364 PptpMiniport - ok02:47:55.0728 0364 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys02:47:55.0792 0364 Processor - ok02:47:55.0825 0364 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll02:47:55.0853 0364 ProfSvc - ok02:47:55.0864 0364 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe02:47:55.0886 0364 ProtectedStorage - ok02:47:55.0927 0364 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys02:47:55.0959 0364 PSched - ok02:47:55.0986 0364 [ D24DFD16A1E2A76034DF5AA18125C35D ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys02:47:56.0040 0364 PSI - ok02:47:56.0065 0364 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys02:47:56.0079 0364 PxHelp20 - ok02:47:56.0123 0364 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys02:47:56.0190 0364 ql2300 - ok02:47:56.0224 0364 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys02:47:56.0240 0364 ql40xx - ok02:47:56.0264 0364 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll02:47:56.0306 0364 QWAVE - ok02:47:56.0330 0364 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys02:47:56.0355 0364 QWAVEdrv - ok02:47:56.0426 0364 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys02:47:56.0602 0364 R300 - ok02:47:56.0642 0364 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll02:47:56.0662 0364 RapiMgr - ok02:47:56.0684 0364 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys02:47:56.0718 0364 RasAcd - ok02:47:56.0747 0364 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll02:47:56.0787 0364 RasAuto - ok02:47:56.0813 0364 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys02:47:56.0854 0364 Rasl2tp - ok02:47:56.0884 0364 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll02:47:56.0936 0364 RasMan - ok02:47:56.0960 0364 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys02:47:56.0990 0364 RasPppoe - ok02:47:57.0023 0364 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys02:47:57.0042 0364 RasSstp - ok02:47:57.0086 0364 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys02:47:57.0135 0364 rdbss - ok02:47:57.0182 0364 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys02:47:57.0226 0364 RDPCDD - ok02:47:57.0255 0364 [ 0245418224CFA77BF4B41C2FE0622258 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys02:47:57.0292 0364 rdpdr - ok02:47:57.0312 0364 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys02:47:57.0357 0364 RDPENCDD - ok02:47:57.0389 0364 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys02:47:57.0484 0364 RDPWD - ok02:47:57.0523 0364 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe02:47:57.0537 0364 RealNetworks Downloader Resolver Service - ok02:47:57.0568 0364 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll02:47:57.0608 0364 RemoteAccess - ok02:47:57.0637 0364 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll02:47:57.0681 0364 RemoteRegistry - ok02:47:57.0705 0364 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe02:47:57.0744 0364 RpcLocator - ok02:47:57.0765 0364 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll02:47:57.0805 0364 RpcSs - ok02:47:57.0832 0364 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys02:47:57.0871 0364 rspndr - ok02:47:57.0907 0364 [ 661AF6A63DFF9F23B1DC3FB7B3E7A917 ] RTL8187B C:\Windows\system32\DRIVERS\RTL8187B.sys02:47:57.0965 0364 RTL8187B - ok02:47:57.0994 0364 [ 0D60B8C10A2C5E8DD620B3FDEB1CDA64 ] RtlProt C:\Windows\system32\DRIVERS\rtlprot.sys02:47:58.0006 0364 RtlProt - ok02:47:58.0021 0364 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe02:47:58.0039 0364 SamSs - ok02:47:58.0087 0364 [ CA57D847403633D0D97114071B59C2B2 ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys02:47:58.0110 0364 SbieDrv - ok02:47:58.0135 0364 [ 5CC11034A2E22DFF623BC922090AEBAB ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe02:47:58.0150 0364 SbieSvc - ok02:47:58.0171 0364 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys02:47:58.0187 0364 sbp2port - ok02:47:58.0212 0364 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll02:47:58.0252 0364 SCardSvr - ok02:47:58.0284 0364 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll02:47:58.0352 0364 Schedule - ok02:47:58.0380 0364 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll02:47:58.0403 0364 SCPolicySvc - ok02:47:58.0431 0364 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll02:47:58.0511 0364 SDRSVC - ok02:47:58.0540 0364 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys02:47:58.0602 0364 secdrv - ok02:47:58.0621 0364 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll02:47:58.0675 0364 seclogon - ok02:47:58.0763 0364 [ F70A51EB03EE7046784EF62EFCE9528E ] Secunia PSI Agent C:\Program Files\Secunia\PSI\PSIA.exe02:47:59.0314 0364 Secunia PSI Agent - ok02:47:59.0360 0364 [ AD56CEB08EEB517332355FDE9E5939C8 ] Secunia Update Agent C:\Program Files\Secunia\PSI\sua.exe02:47:59.0639 0364 Secunia Update Agent - ok02:47:59.0711 0364 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll02:47:59.0761 0364 SENS - ok02:47:59.0779 0364 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys02:47:59.0844 0364 Serenum - ok02:47:59.0862 0364 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys02:47:59.0923 0364 Serial - ok02:47:59.0950 0364 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys02:48:00.0001 0364 sermouse - ok02:48:00.0038 0364 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll02:48:00.0070 0364 SessionEnv - ok02:48:00.0097 0364 [ 51CF56AA8BCC241F134B420B8F850406 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys02:48:00.0141 0364 sffdisk - ok02:48:00.0151 0364 [ 96DED8B20C734AC41641CE275250E55D ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys02:48:00.0182 0364 sffp_mmc - ok02:48:00.0202 0364 [ 8B08CAB1267B2C377883FC9E56981F90 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys02:48:00.0215 0364 sffp_sd - ok02:48:00.0228 0364 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys02:48:00.0284 0364 sfloppy - ok02:48:00.0335 0364 [ D9B734638DD8DBA9D59AAD3189CD0FAD ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys02:48:00.0365 0364 Sftfs - ok02:48:00.0424 0364 [ CB73BC422C07FB611F194DA18D1E7F36 ] sftlist C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe02:48:00.0452 0364 sftlist - ok02:48:00.0491 0364 [ 2F61BD46C0BFF4EB36E1E359CA17BFC5 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys02:48:00.0509 0364 Sftplay - ok02:48:00.0521 0364 [ 518BAC0179F94304F422696B47C0EC12 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys02:48:00.0535 0364 Sftredir - ok02:48:00.0545 0364 [ 747325236D88B3F05FFD27FF9EC711C5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys02:48:00.0558 0364 Sftvol - ok02:48:00.0574 0364 [ A5812F0281CA5081BF696626F9BF324D ] sftvsa C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe02:48:00.0594 0364 sftvsa - ok02:48:00.0622 0364 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll02:48:00.0685 0364 SharedAccess - ok02:48:00.0711 0364 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll02:48:00.0776 0364 ShellHWDetection - ok02:48:00.0799 0364 [ 08072B2FB92477FC813271A84B3A8698 ] sisagp C:\Windows\system32\drivers\sisagp.sys02:48:00.0815 0364 sisagp - ok02:48:00.0836 0364 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys02:48:00.0850 0364 SiSRaid2 - ok02:48:00.0872 0364 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys02:48:00.0888 0364 SiSRaid4 - ok02:48:01.0006 0364 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe02:48:01.0157 0364 slsvc - ok02:48:01.0195 0364 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll02:48:01.0230 0364 SLUINotify - ok02:48:01.0257 0364 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys02:48:01.0291 0364 Smb - ok02:48:01.0340 0364 [ 1E715247EFFFDDA938C085913045D599 ] SMSIVZAM5 C:\PROGRA~1\VERIZO~1\VZACCE~1\SMSIVZAM5.SYS02:48:01.0353 0364 SMSIVZAM5 - ok02:48:01.0394 0364 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe02:48:01.0409 0364 SNMPTRAP - ok02:48:01.0480 0364 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys02:48:01.0495 0364 spldr - ok02:48:01.0516 0364 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe02:48:01.0569 0364 Spooler - ok02:48:01.0606 0364 sprtsvc_dellsupportcenter - ok02:48:01.0646 0364 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\Windows\System32\Drivers\sptd.sys02:48:01.0680 0364 sptd - ok02:48:01.0712 0364 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys02:48:01.0778 0364 srv - ok02:48:01.0811 0364 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys02:48:01.0847 0364 srv2 - ok02:48:01.0878 0364 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys02:48:01.0908 0364 srvnet - ok02:48:01.0930 0364 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll02:48:01.0975 0364 SSDPSRV - ok02:48:02.0003 0364 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll02:48:02.0022 0364 SstpSvc - ok02:48:02.0032 0364 Steam Client Service - ok02:48:02.0075 0364 [ 9CEA131B5EB0EA653F6B3EA80B54956D ] STHDA C:\Windows\system32\drivers\stwrt.sys02:48:02.0126 0364 STHDA - ok02:48:02.0196 0364 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll02:48:02.0273 0364 stisvc - ok02:48:02.0296 0364 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys02:48:02.0311 0364 swenum - ok02:48:02.0348 0364 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll02:48:02.0399 0364 swprv - ok02:48:02.0419 0364 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys02:48:02.0434 0364 Symc8xx - ok02:48:02.0457 0364 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys02:48:02.0473 0364 Sym_hi - ok02:48:02.0489 0364 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys02:48:02.0503 0364 Sym_u3 - ok02:48:02.0536 0364 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll02:48:02.0606 0364 SysMain - ok02:48:02.0633 0364 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll02:48:02.0682 0364 TabletInputService - ok02:48:02.0710 0364 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll02:48:02.0749 0364 TapiSrv - ok02:48:02.0789 0364 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll02:48:02.0823 0364 TBS - ok02:48:02.0876 0364 [ 078218D74C4EFC2CE7E4C6DF22A94F2F ] Tcpip C:\Windows\system32\drivers\tcpip.sys02:48:02.0934 0364 Tcpip - ok02:48:03.0011 0364 [ 078218D74C4EFC2CE7E4C6DF22A94F2F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys02:48:03.0049 0364 Tcpip6 - ok02:48:03.0076 0364 [ 4C11A1820DDC37FA653913AD680ACCAE ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys02:48:03.0120 0364 tcpipreg - ok02:48:03.0147 0364 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys02:48:03.0177 0364 TDPIPE - ok02:48:03.0202 0364 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys02:48:03.0244 0364 TDTCP - ok02:48:03.0268 0364 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys02:48:03.0309 0364 tdx - ok02:48:03.0328 0364 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys02:48:03.0346 0364 TermDD - ok02:48:03.0396 0364 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll02:48:03.0439 0364 TermService - ok02:48:03.0461 0364 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll02:48:03.0484 0364 Themes - ok02:48:03.0504 0364 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll02:48:03.0539 0364 THREADORDER - ok02:48:03.0565 0364 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll02:48:03.0605 0364 TrkWks - ok02:48:03.0658 0364 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe02:48:03.0682 0364 TrustedInstaller - ok02:48:03.0712 0364 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys02:48:03.0754 0364 tssecsrv - ok02:48:03.0787 0364 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys02:48:03.0817 0364 tunmp - ok02:48:03.0828 0364 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys02:48:03.0861 0364 tunnel - ok02:48:03.0890 0364 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys02:48:03.0908 0364 uagp35 - ok02:48:03.0945 0364 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys02:48:03.0973 0364 udfs - ok02:48:04.0007 0364 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe02:48:04.0051 0364 UI0Detect - ok02:48:04.0074 0364 [ 6D72EF05921ABDF59FC45C7EBFE7E8DD ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys02:48:04.0092 0364 uliagpkx - ok02:48:04.0115 0364 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys02:48:04.0144 0364 uliahci - ok02:48:04.0163 0364 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys02:48:04.0193 0364 UlSata - ok02:48:04.0209 0364 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys02:48:04.0226 0364 ulsata2 - ok02:48:04.0256 0364 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys02:48:04.0297 0364 umbus - ok02:48:04.0332 0364 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll02:48:04.0374 0364 upnphost - ok02:48:04.0403 0364 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys02:48:04.0435 0364 USBAAPL - ok02:48:04.0466 0364 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys02:48:04.0491 0364 usbaudio - ok02:48:04.0516 0364 usbbus - ok02:48:04.0533 0364 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys02:48:04.0566 0364 usbccgp - ok02:48:04.0588 0364 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys02:48:04.0656 0364 usbcir - ok02:48:04.0667 0364 UsbDiag - ok02:48:04.0702 0364 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys02:48:04.0732 0364 usbehci - ok02:48:04.0754 0364 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys02:48:04.0792 0364 usbhub - ok02:48:04.0801 0364 USBModem - ok02:48:04.0829 0364 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys02:48:04.0859 0364 usbohci - ok02:48:04.0885 0364 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys02:48:04.0930 0364 usbprint - ok02:48:04.0955 0364 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS02:48:04.0992 0364 USBSTOR - ok02:48:05.0025 0364 [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys02:48:05.0077 0364 usbuhci - ok02:48:05.0100 0364 [ 35C9095FA7076466AFBFC5B9EC4B779E ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys02:48:05.0125 0364 usb_rndisx - ok02:48:05.0158 0364 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll02:48:05.0195 0364 UxSms - ok02:48:05.0240 0364 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe02:48:05.0286 0364 vds - ok02:48:05.0324 0364 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys02:48:05.0393 0364 vga - ok02:48:05.0421 0364 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys02:48:05.0465 0364 VgaSave - ok02:48:05.0480 0364 [ D5929A28BDFF4367A12CAF06AF901971 ] viaagp C:\Windows\system32\drivers\viaagp.sys02:48:05.0496 0364 viaagp - ok02:48:05.0521 0364 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys02:48:05.0584 0364 ViaC7 - ok02:48:05.0603 0364 [ 689547CE911998D1E0DA7A5992E025FC ] viaide C:\Windows\system32\drivers\viaide.sys02:48:05.0619 0364 viaide - ok02:48:05.0649 0364 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys02:48:05.0665 0364 volmgr - ok02:48:05.0699 0364 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys02:48:05.0724 0364 volmgrx - ok02:48:05.0753 0364 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys02:48:05.0777 0364 volsnap - ok02:48:05.0804 0364 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys02:48:05.0821 0364 vsmraid - ok02:48:05.0870 0364 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe02:48:05.0998 0364 VSS - ok02:48:06.0040 0364 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll02:48:06.0076 0364 W32Time - ok02:48:06.0098 0364 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys02:48:06.0162 0364 WacomPen - ok02:48:06.0195 0364 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys02:48:06.0235 0364 Wanarp - ok02:48:06.0252 0364 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys02:48:06.0275 0364 Wanarpv6 - ok02:48:06.0312 0364 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll02:48:06.0352 0364 WcesComm - ok02:48:06.0414 0364 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll02:48:06.0463 0364 wcncsvc - ok02:48:06.0513 0364 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll02:48:06.0556 0364 WcsPlugInService - ok02:48:06.0583 0364 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys02:48:06.0598 0364 Wd - ok02:48:06.0629 0364 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys02:48:06.0665 0364 Wdf01000 - ok02:48:06.0710 0364 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll02:48:06.0785 0364 WdiServiceHost - ok02:48:06.0802 0364 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll02:48:06.0836 0364 WdiSystemHost - ok02:48:06.0867 0364 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll02:48:06.0903 0364 WebClient - ok02:48:06.0989 0364 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll02:48:07.0059 0364 Wecsvc - ok02:48:07.0087 0364 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll02:48:07.0116 0364 wercplsupport - ok02:48:07.0176 0364 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll02:48:07.0226 0364 WerSvc - ok02:48:07.0277 0364 [ 72CC6A8CA7891031D6380DB5025C773C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys02:48:07.0363 0364 winachsf - ok02:48:07.0473 0364 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll02:48:07.0498 0364 WinDefend - ok02:48:07.0512 0364 WinHttpAutoProxySvc - ok02:48:07.0793 0364 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll02:48:07.0844 0364 Winmgmt - ok02:48:07.0972 0364 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll02:48:08.0119 0364 WinRM - ok02:48:08.0170 0364 [ 676F4B665BDD8053EAA53AC1695B8074 ] WINUSB C:\Windows\system32\DRIVERS\WinUSB.SYS02:48:08.0260 0364 WINUSB - ok02:48:08.0367 0364 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll02:48:08.0450 0364 Wlansvc - ok02:48:08.0557 0364 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe02:48:08.0597 0364 wlcrasvc - ok02:48:08.0941 0364 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE02:48:09.0483 0364 wlidsvc - ok02:48:09.0517 0364 [ E552DBABDB60866C8D4C2C0054F27469 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys02:48:09.0550 0364 WmiAcpi - ok02:48:09.0637 0364 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe02:48:09.0671 0364 wmiApSrv - ok02:48:09.0833 0364 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe02:48:10.0295 0364 WMPNetworkSvc - ok02:48:10.0350 0364 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll02:48:10.0502 0364 WPCSvc - ok02:48:10.0548 0364 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll02:48:10.0678 0364 WPDBusEnum - ok02:48:10.0737 0364 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys02:48:10.0754 0364 WpdUsb - ok02:48:11.0177 0364 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe02:48:11.0221 0364 WPFFontCache_v0400 - ok02:48:11.0258 0364 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys02:48:11.0329 0364 ws2ifsl - ok02:48:11.0400 0364 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll02:48:11.0450 0364 wscsvc - ok02:48:11.0457 0364 WSearch - ok02:48:11.0726 0364 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll02:48:12.0092 0364 wuauserv - ok02:48:12.0148 0364 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys02:48:12.0204 0364 WudfPf - ok02:48:12.0230 0364 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys02:48:12.0248 0364 WUDFRd - ok02:48:12.0269 0364 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll02:48:12.0299 0364 wudfsvc - ok02:48:12.0325 0364 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys02:48:12.0344 0364 XAudio - ok02:48:12.0370 0364 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe02:48:12.0428 0364 XAudioService - ok02:48:12.0437 0364 XDva320 - ok02:48:12.0447 0364 XDva391 - ok Link to post Share on other sites More sharing options...
Last_Ditch Posted June 25, 2013 Author ID:695670 Share Posted June 25, 2013 02:48:12.0481 0364 ================ Scan global ===============================02:48:12.0529 0364 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll02:48:12.0575 0364 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll02:48:12.0616 0364 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll02:48:12.0651 0364 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe02:48:12.0660 0364 [Global] - ok02:48:12.0660 0364 ================ Scan MBR ==================================02:48:12.0694 0364 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR002:48:13.0041 0364 \Device\Harddisk0\DR0 - ok02:48:13.0041 0364 ================ Scan VBR ==================================02:48:13.0071 0364 [ E1F82C90BDCA99EAAA87C1817851E78F ] \Device\Harddisk0\DR0\Partition102:48:13.0081 0364 \Device\Harddisk0\DR0\Partition1 - ok02:48:13.0094 0364 [ BDB0552CB3BD13371C49527CD3DAF520 ] \Device\Harddisk0\DR0\Partition202:48:13.0096 0364 \Device\Harddisk0\DR0\Partition2 - ok02:48:13.0101 0364 ================ Scan active images ========================02:48:13.0103 0364 [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys02:48:13.0103 0364 C:\Windows\System32\drivers\crashdmp.sys - ok02:48:13.0108 0364 [ 494075282E23D838F43A4C9FB7143959 ] C:\Windows\System32\drivers\Diskdump.sys02:48:13.0108 0364 C:\Windows\System32\drivers\Diskdump.sys - ok02:48:13.0118 0364 [ DC5F166422BEEBF195E3E4BB8AB4EE22 ] C:\Windows\System32\drivers\nvstor32.sys02:48:13.0118 0364 C:\Windows\System32\drivers\nvstor32.sys - ok02:48:13.0126 0364 [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys02:48:13.0126 0364 C:\Windows\System32\drivers\tunnel.sys - ok02:48:13.0136 0364 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] C:\Windows\System32\drivers\amdk8.sys02:48:13.0136 0364 C:\Windows\System32\drivers\amdk8.sys - ok02:48:13.0146 0364 [ CAECC0120AC49E3D2F758B9169872D38 ] C:\Windows\System32\drivers\TUNMP.SYS02:48:13.0146 0364 C:\Windows\System32\drivers\TUNMP.SYS - ok02:48:13.0155 0364 [ 9A77B1C13BCCEDDF78DFD7AFC25B4F5E ] C:\Windows\System32\drivers\nvlddmkm.sys02:48:13.0155 0364 C:\Windows\System32\drivers\nvlddmkm.sys - ok02:48:13.0167 0364 [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] C:\Windows\System32\drivers\dxgkrnl.sys02:48:13.0167 0364 C:\Windows\System32\drivers\dxgkrnl.sys - ok02:48:13.0177 0364 [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys02:48:13.0177 0364 C:\Windows\System32\drivers\watchdog.sys - ok02:48:13.0186 0364 [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys02:48:13.0186 0364 C:\Windows\System32\drivers\usbport.sys - ok02:48:13.0196 0364 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys02:48:13.0196 0364 C:\Windows\System32\drivers\usbehci.sys - ok02:48:13.0204 0364 [ CE697FEE0D479290D89BEC80DFE793B7 ] C:\Windows\System32\drivers\usbohci.sys02:48:13.0204 0364 C:\Windows\System32\drivers\usbohci.sys - ok02:48:13.0214 0364 [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys02:48:13.0214 0364 C:\Windows\System32\drivers\cdrom.sys - ok02:48:13.0224 0364 [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys02:48:13.0224 0364 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok02:48:13.0232 0364 [ CD4646067CC7DCBA1907FA0ACF7E3966 ] C:\Windows\System32\drivers\bcm4sbxp.sys02:48:13.0232 0364 C:\Windows\System32\drivers\bcm4sbxp.sys - ok02:48:13.0242 0364 [ FE440536BD98AF772130DC3A6FE1915F ] C:\Windows\System32\drivers\HSXHWBS2.sys02:48:13.0242 0364 C:\Windows\System32\drivers\HSXHWBS2.sys - ok02:48:13.0255 0364 [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys02:48:13.0255 0364 C:\Windows\System32\drivers\ks.sys - ok02:48:13.0268 0364 [ 99F85640054BA65190B860D878A7C9AE ] C:\Windows\System32\drivers\HSX_DPV.sys02:48:13.0268 0364 C:\Windows\System32\drivers\HSX_DPV.sys - ok02:48:13.0279 0364 [ 72CC6A8CA7891031D6380DB5025C773C ] C:\Windows\System32\drivers\HSX_CNXT.sys02:48:13.0279 0364 C:\Windows\System32\drivers\HSX_CNXT.sys - ok02:48:13.0288 0364 [ E13B5EA0F51BA5B1512EC671393D09BA ] C:\Windows\System32\drivers\modem.sys02:48:13.0288 0364 C:\Windows\System32\drivers\modem.sys - ok02:48:13.0297 0364 [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys02:48:13.0297 0364 C:\Windows\System32\drivers\hdaudbus.sys - ok02:48:13.0314 0364 [ 6F5CA34AE885645ACF8A20D564DB976C ] C:\Windows\System32\drivers\scsiport.sys02:48:13.0314 0364 C:\Windows\System32\drivers\scsiport.sys - ok02:48:13.0331 0364 [ EB2708876D52F94BA199B2A8F774D50C ] \Device\370823570502:48:13.0331 0364 \Device\3708235705 - ok02:48:13.0340 0364 [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys02:48:13.0340 0364 C:\Windows\System32\drivers\msiscsi.sys - ok02:48:13.0349 0364 [ 77937EFF009AC696B90E09F671F9D0A4 ] C:\Windows\System32\drivers\tdi.sys02:48:13.0350 0364 C:\Windows\System32\drivers\tdi.sys - ok02:48:13.0359 0364 [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys02:48:13.0359 0364 C:\Windows\System32\drivers\rasl2tp.sys - ok02:48:13.0366 0364 [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys02:48:13.0366 0364 C:\Windows\System32\drivers\ndistapi.sys - ok02:48:13.0377 0364 [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys02:48:13.0377 0364 C:\Windows\System32\drivers\ndiswan.sys - ok02:48:13.0391 0364 [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys02:48:13.0391 0364 C:\Windows\System32\drivers\raspppoe.sys - ok02:48:13.0404 0364 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys02:48:13.0404 0364 C:\Windows\System32\drivers\raspptp.sys - ok02:48:13.0415 0364 [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys02:48:13.0415 0364 C:\Windows\System32\drivers\rassstp.sys - ok02:48:13.0422 0364 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys02:48:13.0422 0364 C:\Windows\System32\drivers\termdd.sys - ok02:48:13.0432 0364 [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys02:48:13.0432 0364 C:\Windows\System32\drivers\kbdclass.sys - ok02:48:13.0440 0364 [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys02:48:13.0440 0364 C:\Windows\System32\drivers\mouclass.sys - ok02:48:13.0451 0364 [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys02:48:13.0451 0364 C:\Windows\System32\drivers\mssmbios.sys - ok02:48:13.0461 0364 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys02:48:13.0461 0364 C:\Windows\System32\drivers\swenum.sys - ok02:48:13.0469 0364 [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys02:48:13.0469 0364 C:\Windows\System32\drivers\umbus.sys - ok02:48:13.0485 0364 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys02:48:13.0485 0364 C:\Windows\System32\drivers\usbhub.sys - ok02:48:13.0492 0364 [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys02:48:13.0492 0364 C:\Windows\System32\drivers\ndproxy.sys - ok02:48:13.0502 0364 [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys02:48:13.0502 0364 C:\Windows\System32\drivers\drmk.sys - ok02:48:13.0516 0364 [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys02:48:13.0516 0364 C:\Windows\System32\drivers\portcls.sys - ok02:48:13.0526 0364 [ 9CEA131B5EB0EA653F6B3EA80B54956D ] C:\Windows\System32\drivers\stwrt.sys02:48:13.0526 0364 C:\Windows\System32\drivers\stwrt.sys - ok02:48:13.0534 0364 [ B972A66758577E0BFD1DE0F91AAA27B5 ] C:\Windows\System32\drivers\fs_rec.sys02:48:13.0534 0364 C:\Windows\System32\drivers\fs_rec.sys - ok02:48:13.0544 0364 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys02:48:13.0544 0364 C:\Windows\System32\drivers\beep.sys - ok02:48:13.0555 0364 [ 175444D3A01CA45D0E1C5DC5F48DF7CD ] C:\Windows\System32\drivers\hidparse.sys02:48:13.0555 0364 C:\Windows\System32\drivers\hidparse.sys - ok02:48:13.0564 0364 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] C:\Windows\System32\drivers\kbdhid.sys02:48:13.0564 0364 C:\Windows\System32\drivers\kbdhid.sys - ok02:48:13.0577 0364 [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys02:48:13.0577 0364 C:\Windows\System32\drivers\null.sys - ok02:48:13.0585 0364 [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys02:48:13.0585 0364 C:\Windows\System32\drivers\vga.sys - ok02:48:13.0594 0364 [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys02:48:13.0594 0364 C:\Windows\System32\drivers\videoprt.sys - ok02:48:13.0607 0364 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys02:48:13.0607 0364 C:\Windows\System32\drivers\RDPCDD.sys - ok02:48:13.0610 0364 [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys02:48:13.0610 0364 C:\Windows\System32\drivers\RDPENCDD.sys - ok02:48:13.0620 0364 [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys02:48:13.0621 0364 C:\Windows\System32\drivers\msfs.sys - ok02:48:13.0629 0364 [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys02:48:13.0629 0364 C:\Windows\System32\drivers\npfs.sys - ok02:48:13.0638 0364 [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys02:48:13.0638 0364 C:\Windows\System32\drivers\rasacd.sys - ok02:48:13.0653 0364 [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys02:48:13.0654 0364 C:\Windows\System32\drivers\tdx.sys - ok02:48:13.0661 0364 [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys02:48:13.0661 0364 C:\Windows\System32\drivers\smb.sys - ok02:48:13.0672 0364 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys02:48:13.0672 0364 C:\Windows\System32\drivers\netbt.sys - ok02:48:13.0681 0364 [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys02:48:13.0681 0364 C:\Windows\System32\drivers\afd.sys - ok02:48:13.0690 0364 [ E3A3CB253C0EC2494D4A61F5E43A389C ] C:\Windows\System32\drivers\ws2ifsl.sys02:48:13.0690 0364 C:\Windows\System32\drivers\ws2ifsl.sys - ok02:48:13.0700 0364 [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys02:48:13.0700 0364 C:\Windows\System32\drivers\pacer.sys - ok02:48:13.0710 0364 [ 661AF6A63DFF9F23B1DC3FB7B3E7A917 ] C:\Windows\System32\drivers\RTL8187B.sys02:48:13.0710 0364 C:\Windows\System32\drivers\RTL8187B.sys - ok02:48:13.0720 0364 [ 5961CADB7CAD938368D2028725EF771D ] C:\Windows\System32\drivers\hidclass.sys02:48:13.0720 0364 C:\Windows\System32\drivers\hidclass.sys - ok02:48:13.0728 0364 [ CCA4B519B17E23A00B826C55716809CC ] C:\Windows\System32\drivers\hidusb.sys02:48:13.0729 0364 C:\Windows\System32\drivers\hidusb.sys - ok02:48:13.0743 0364 [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys02:48:13.0743 0364 C:\Windows\System32\drivers\usbd.sys - ok02:48:13.0756 0364 [ 93B8D4869E12CFBE663915502900876F ] C:\Windows\System32\drivers\mouhid.sys02:48:13.0756 0364 C:\Windows\System32\drivers\mouhid.sys - ok02:48:13.0769 0364 [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys02:48:13.0770 0364 C:\Windows\System32\drivers\netbios.sys - ok02:48:13.0779 0364 [ 0D60B8C10A2C5E8DD620B3FDEB1CDA64 ] C:\Windows\System32\drivers\RtlProt.sys02:48:13.0779 0364 C:\Windows\System32\drivers\RtlProt.sys - ok02:48:13.0796 0364 [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys02:48:13.0796 0364 C:\Windows\System32\drivers\wanarp.sys - ok02:48:13.0808 0364 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys02:48:13.0808 0364 C:\Windows\System32\drivers\rdbss.sys - ok02:48:13.0818 0364 [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys02:48:13.0818 0364 C:\Windows\System32\drivers\dfsc.sys - ok02:48:13.0829 0364 [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys02:48:13.0829 0364 C:\Windows\System32\drivers\nsiproxy.sys - ok02:48:13.0837 0364 [ DDA770BBD7C2ED024D6F50E279D90E5B ] C:\Windows\System32\ntdll.dll02:48:13.0837 0364 C:\Windows\System32\ntdll.dll - ok02:48:13.0845 0364 [ BE7480C91E89EB82FC080F772C220AE4 ] C:\Windows\System32\smss.exe02:48:13.0845 0364 C:\Windows\System32\smss.exe - ok02:48:13.0855 0364 [ 10761177A6EBE45843F443E99509F5E7 ] C:\Windows\System32\autochk.exe02:48:13.0855 0364 C:\Windows\System32\autochk.exe - ok02:48:13.0861 0364 [ D9728AF68C4C7693CB100B8441CBDEC6 ] C:\Windows\System32\drivers\udfs.sys02:48:13.0861 0364 C:\Windows\System32\drivers\udfs.sys - ok02:48:13.0874 0364 [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\System32\imagehlp.dll02:48:13.0874 0364 C:\Windows\System32\imagehlp.dll - ok02:48:13.0885 0364 [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll02:48:13.0885 0364 C:\Windows\System32\lpk.dll - ok02:48:13.0893 0364 [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\System32\shell32.dll02:48:13.0893 0364 C:\Windows\System32\shell32.dll - ok02:48:13.0902 0364 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll02:48:13.0903 0364 C:\Windows\System32\ws2_32.dll - ok02:48:13.0913 0364 [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll02:48:13.0913 0364 C:\Windows\System32\gdi32.dll - ok02:48:13.0923 0364 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll02:48:13.0923 0364 C:\Windows\System32\ole32.dll - ok02:48:13.0934 0364 [ 6057AA7FDF03309A18FAE4E9FCFE7D8F ] C:\Windows\System32\iertutil.dll02:48:13.0934 0364 C:\Windows\System32\iertutil.dll - ok02:48:13.0944 0364 [ 420B075CD71AB9E58D15DD258958FBA3 ] C:\Windows\System32\shlwapi.dll02:48:13.0944 0364 C:\Windows\System32\shlwapi.dll - ok02:48:13.0954 0364 [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll02:48:13.0954 0364 C:\Windows\System32\rpcrt4.dll - ok02:48:13.0962 0364 [ 71D8D1FD4989932674CD1F5743191286 ] C:\Windows\System32\urlmon.dll02:48:13.0962 0364 C:\Windows\System32\urlmon.dll - ok02:48:13.0970 0364 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll02:48:13.0971 0364 C:\Windows\System32\comdlg32.dll - ok02:48:13.0985 0364 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll02:48:13.0985 0364 C:\Windows\System32\Wldap32.dll - ok02:48:13.0993 0364 [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\System32\msvcrt.dll02:48:13.0993 0364 C:\Windows\System32\msvcrt.dll - ok02:48:14.0003 0364 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll02:48:14.0003 0364 C:\Windows\System32\setupapi.dll - ok02:48:14.0015 0364 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll02:48:14.0015 0364 C:\Windows\System32\clbcatq.dll - ok02:48:14.0025 0364 [ DC3105CC925A0D47F61B54E66AB730FC ] C:\Windows\System32\kernel32.dll02:48:14.0025 0364 C:\Windows\System32\kernel32.dll - ok02:48:14.0036 0364 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll02:48:14.0036 0364 C:\Windows\System32\normaliz.dll - ok02:48:14.0050 0364 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll02:48:14.0050 0364 C:\Windows\System32\nsi.dll - ok02:48:14.0056 0364 [ 6A25377A76479A0C0BF3DB6FC42FE09A ] C:\Windows\System32\wininet.dll02:48:14.0056 0364 C:\Windows\System32\wininet.dll - ok02:48:14.0069 0364 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll02:48:14.0069 0364 C:\Windows\System32\usp10.dll - ok02:48:14.0079 0364 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll02:48:14.0079 0364 C:\Windows\System32\msctf.dll - ok02:48:14.0087 0364 [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll02:48:14.0088 0364 C:\Windows\System32\imm32.dll - ok02:48:14.0101 0364 [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\System32\oleaut32.dll02:48:14.0101 0364 C:\Windows\System32\oleaut32.dll - ok02:48:14.0112 0364 [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll02:48:14.0113 0364 C:\Windows\System32\user32.dll - ok02:48:14.0117 0364 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll02:48:14.0117 0364 C:\Windows\System32\advapi32.dll - ok02:48:14.0127 0364 [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll02:48:14.0127 0364 C:\Windows\System32\comctl32.dll - ok02:48:14.0134 0364 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll02:48:14.0134 0364 C:\Windows\System32\psapi.dll - ok02:48:14.0148 0364 [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys02:48:14.0148 0364 C:\Windows\System32\drivers\dxapi.sys - ok02:48:14.0158 0364 [ C2DD5271193B4CCF11D63319DA0CA7AE ] C:\Windows\System32\win32k.sys02:48:14.0159 0364 C:\Windows\System32\win32k.sys - ok02:48:14.0173 0364 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll02:48:14.0173 0364 C:\Windows\System32\basesrv.dll - ok02:48:14.0189 0364 [ 33F84B64D4765BCDFA0AB8464122DA14 ] C:\Windows\System32\csrsrv.dll02:48:14.0189 0364 C:\Windows\System32\csrsrv.dll - ok02:48:14.0200 0364 [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe02:48:14.0200 0364 C:\Windows\System32\csrss.exe - ok02:48:14.0216 0364 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\System32\winsrv.dll02:48:14.0216 0364 C:\Windows\System32\winsrv.dll - ok02:48:14.0227 0364 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys02:48:14.0227 0364 C:\Windows\System32\drivers\monitor.sys - ok02:48:14.0238 0364 [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll02:48:14.0238 0364 C:\Windows\System32\tsddd.dll - ok02:48:14.0260 0364 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll02:48:14.0261 0364 C:\Windows\System32\userenv.dll - ok02:48:14.0272 0364 [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe02:48:14.0272 0364 C:\Windows\System32\wininit.exe - ok02:48:14.0280 0364 [ D602FEDBD9155FC2DED6863FB60C950F ] C:\Windows\System32\secur32.dll02:48:14.0281 0364 C:\Windows\System32\secur32.dll - ok02:48:14.0290 0364 [ 12C8D6C564702B0776512932290A3F6B ] C:\Windows\System32\KBDUS.DLL02:48:14.0290 0364 C:\Windows\System32\KBDUS.DLL - ok02:48:14.0300 0364 [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll02:48:14.0300 0364 C:\Windows\System32\WlS0WndH.dll - ok02:48:14.0310 0364 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll02:48:14.0310 0364 C:\Windows\System32\apphelp.dll - ok02:48:14.0335 0364 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\services.exe02:48:14.0335 0364 C:\Windows\System32\services.exe - ok02:48:14.0340 0364 [ 6F0D2FBABC62E39413C836B8DAE888E1 ] C:\Windows\System32\cdd.dll02:48:14.0340 0364 C:\Windows\System32\cdd.dll - ok02:48:14.0355 0364 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll02:48:14.0355 0364 C:\Windows\System32\sxs.dll - ok02:48:14.0363 0364 [ A3E186B4B935905B829219502557314E ] C:\Windows\System32\lsass.exe02:48:14.0363 0364 C:\Windows\System32\lsass.exe - ok02:48:14.0382 0364 [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll02:48:14.0382 0364 C:\Windows\System32\scesrv.dll - ok02:48:14.0395 0364 [ 178FAC2B7C66E9A4400CE7AC37623E3F ] C:\Windows\System32\lsasrv.dll02:48:14.0395 0364 C:\Windows\System32\lsasrv.dll - ok02:48:14.0404 0364 [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe02:48:14.0404 0364 C:\Windows\System32\lsm.exe - ok02:48:14.0414 0364 [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll02:48:14.0414 0364 C:\Windows\System32\sysntfy.dll - ok02:48:14.0428 0364 [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll02:48:14.0429 0364 C:\Windows\System32\wmsgapi.dll - ok02:48:14.0437 0364 [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll02:48:14.0437 0364 C:\Windows\System32\authz.dll - ok02:48:14.0449 0364 [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\System32\netapi32.dll02:48:14.0450 0364 C:\Windows\System32\netapi32.dll - ok02:48:14.0459 0364 [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll02:48:14.0459 0364 C:\Windows\System32\samsrv.dll - ok02:48:14.0468 0364 [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll02:48:14.0468 0364 C:\Windows\System32\ncobjapi.dll - ok02:48:14.0483 0364 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll02:48:14.0483 0364 C:\Windows\System32\cryptdll.dll - ok02:48:14.0495 0364 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll02:48:14.0495 0364 C:\Windows\System32\dnsapi.dll - ok02:48:14.0508 0364 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll02:48:14.0508 0364 C:\Windows\System32\msasn1.dll - ok02:48:14.0518 0364 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll02:48:14.0518 0364 C:\Windows\System32\ntdsapi.dll - ok02:48:14.0527 0364 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll02:48:14.0527 0364 C:\Windows\System32\samlib.dll - ok02:48:14.0535 0364 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] C:\Windows\System32\aelupsvc.dll02:48:14.0536 0364 C:\Windows\System32\aelupsvc.dll - ok02:48:14.0547 0364 [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe02:48:14.0547 0364 C:\Windows\System32\alg.exe - ok02:48:14.0557 0364 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll02:48:14.0557 0364 C:\Windows\System32\appinfo.dll - ok02:48:14.0572 0364 [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll02:48:14.0572 0364 C:\Windows\System32\audiosrv.dll - ok02:48:14.0580 0364 [ 54289361E9150C2D03E68AA6DEEF171F ] C:\Windows\System32\crypt32.dll02:48:14.0580 0364 C:\Windows\System32\crypt32.dll - ok02:48:14.0590 0364 [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll02:48:14.0590 0364 C:\Windows\System32\feclient.dll - ok02:48:14.0599 0364 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll02:48:14.0600 0364 C:\Windows\System32\mpr.dll - ok02:48:14.0614 0364 [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe02:48:14.0614 0364 C:\Windows\System32\winlogon.exe - ok02:48:14.0617 0364 [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL02:48:14.0617 0364 C:\Windows\System32\BFE.DLL - ok02:48:14.0625 0364 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll02:48:14.0625 0364 C:\Windows\System32\winsta.dll - ok02:48:14.0634 0364 [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll02:48:14.0634 0364 C:\Windows\System32\qmgr.dll - ok02:48:14.0648 0364 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll02:48:14.0648 0364 C:\Windows\System32\SLC.dll - ok02:48:14.0655 0364 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll02:48:14.0655 0364 C:\Windows\System32\dhcpcsvc.dll - ok02:48:14.0664 0364 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL02:48:14.0664 0364 C:\Windows\System32\IPHLPAPI.DLL - ok02:48:14.0673 0364 [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll02:48:14.0673 0364 C:\Windows\System32\wevtapi.dll - ok02:48:14.0683 0364 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll02:48:14.0683 0364 C:\Windows\System32\browser.dll - ok02:48:14.0692 0364 [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll02:48:14.0692 0364 C:\Windows\System32\certprop.dll - ok02:48:14.0702 0364 [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll02:48:14.0702 0364 C:\Windows\System32\cngaudit.dll - ok02:48:14.0718 0364 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll02:48:14.0718 0364 C:\Windows\System32\dhcpcsvc6.dll - ok02:48:14.0726 0364 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll02:48:14.0726 0364 C:\Windows\System32\winnsi.dll - ok02:48:14.0735 0364 [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll02:48:14.0735 0364 C:\Windows\System32\comres.dll - ok02:48:14.0746 0364 [ 13CC59C1B04E9F20A87987C68CD4BE3F ] C:\Windows\System32\ncrypt.dll02:48:14.0746 0364 C:\Windows\System32\ncrypt.dll - ok02:48:14.0767 0364 [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll02:48:14.0767 0364 C:\Windows\System32\bcrypt.dll - ok02:48:14.0776 0364 [ 3EDE4C1F9672C972479201544969ADCB ] C:\Windows\System32\cryptsvc.dll02:48:14.0776 0364 C:\Windows\System32\cryptsvc.dll - ok02:48:14.0783 0364 [ 74F380C8EC8813626C670D46E8A714D1 ] C:\Windows\System32\dfsrres.dll02:48:14.0784 0364 C:\Windows\System32\dfsrres.dll - ok02:48:14.0793 0364 [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll02:48:14.0793 0364 C:\Windows\System32\oleres.dll - ok02:48:14.0809 0364 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll02:48:14.0809 0364 C:\Windows\System32\credssp.dll - ok02:48:14.0819 0364 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll02:48:14.0819 0364 C:\Windows\System32\dot3svc.dll - ok02:48:14.0828 0364 [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll02:48:14.0828 0364 C:\Windows\System32\kerberos.dll - ok02:48:14.0837 0364 [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll02:48:14.0837 0364 C:\Windows\System32\msprivs.dll - ok02:48:14.0851 0364 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll02:48:14.0851 0364 C:\Windows\System32\dps.dll - ok02:48:14.0858 0364 [ 9BE3744D295A7701EB425332014F0797 ] C:\Windows\ehome\ehrecvr.exe02:48:14.0858 0364 C:\Windows\ehome\ehrecvr.exe - ok02:48:14.0866 0364 [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll02:48:14.0866 0364 C:\Windows\System32\eapsvc.dll - ok02:48:14.0877 0364 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll02:48:14.0877 0364 C:\Windows\System32\wship6.dll - ok02:48:14.0887 0364 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL02:48:14.0887 0364 C:\Windows\System32\WSHTCPIP.DLL - ok02:48:14.0895 0364 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll02:48:14.0895 0364 C:\Windows\System32\wshqos.dll - ok02:48:14.0906 0364 [ D4152EB9099917EE50329447EAC0BD62 ] C:\Windows\System32\atmfd.dll02:48:14.0906 0364 C:\Windows\System32\atmfd.dll - ok02:48:14.0922 0364 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll02:48:14.0923 0364 C:\Windows\System32\nlasvc.dll - ok02:48:14.0933 0364 [ AD1870C8E5D6DD340C829E6074BF3C3F ] C:\Windows\ehome\ehsched.exe02:48:14.0933 0364 C:\Windows\ehome\ehsched.exe - ok02:48:14.0948 0364 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll02:48:14.0948 0364 C:\Windows\System32\mswsock.dll - ok02:48:14.0961 0364 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll02:48:14.0961 0364 C:\Windows\System32\NapiNSP.dll - ok02:48:14.0973 0364 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll02:48:14.0973 0364 C:\Windows\System32\pnrpnsp.dll - ok02:48:14.0985 0364 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] C:\Windows\ehome\ehstart.dll02:48:14.0985 0364 C:\Windows\ehome\ehstart.dll - ok02:48:14.0995 0364 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll02:48:14.0995 0364 C:\Windows\System32\msv1_0.dll - ok02:48:15.0010 0364 [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll02:48:15.0010 0364 C:\Windows\System32\emdmgmt.dll - ok02:48:15.0022 0364 [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll02:48:15.0023 0364 C:\Windows\System32\netlogon.dll - ok02:48:15.0034 0364 [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll02:48:15.0034 0364 C:\Windows\System32\wevtsvc.dll - ok02:48:15.0044 0364 [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll02:48:15.0044 0364 C:\Windows\System32\winbrand.dll - ok02:48:15.0052 0364 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] C:\Windows\System32\fdPHost.dll02:48:15.0052 0364 C:\Windows\System32\fdPHost.dll - ok02:48:15.0067 0364 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] C:\Windows\System32\FDResPub.dll02:48:15.0067 0364 C:\Windows\System32\FDResPub.dll - ok02:48:15.0078 0364 [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll02:48:15.0079 0364 C:\Windows\System32\FntCache.dll - ok02:48:15.0087 0364 [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\System32\schannel.dll02:48:15.0087 0364 C:\Windows\System32\schannel.dll - ok02:48:15.0095 0364 [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll02:48:15.0095 0364 C:\Windows\System32\wdigest.dll - ok02:48:15.0104 0364 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll02:48:15.0104 0364 C:\Windows\System32\rsaenh.dll - ok02:48:15.0115 0364 [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll02:48:15.0115 0364 C:\Windows\System32\TSpkg.dll - ok02:48:15.0125 0364 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll02:48:15.0125 0364 C:\Windows\System32\gpapi.dll - ok02:48:15.0129 0364 [ 302964DCAC79D618CC7B72C778DA9FD2 ] C:\Windows\System32\PresentationHost.exe02:48:15.0129 0364 C:\Windows\System32\PresentationHost.exe - ok02:48:15.0139 0364 [ 84067081F3318162797385E11A8F0582 ] C:\Windows\System32\hidserv.dll02:48:15.0139 0364 C:\Windows\System32\hidserv.dll - ok02:48:15.0158 0364 [ D8AD255B37DA92434C26E4876DB7D418 ] C:\Windows\System32\KMSVC.DLL02:48:15.0158 0364 C:\Windows\System32\KMSVC.DLL - ok02:48:15.0168 0364 [ 05586F5438AB0DA4F5149159E0E5FD4B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll02:48:15.0168 0364 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok02:48:15.0179 0364 [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL02:48:15.0179 0364 C:\Windows\System32\IKEEXT.DLL - ok02:48:15.0192 0364 [ 9AC218C6E6105477484C6FDBE7D409A4 ] C:\Windows\System32\IPBusEnum.dll02:48:15.0192 0364 C:\Windows\System32\IPBusEnum.dll - ok02:48:15.0205 0364 [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll02:48:15.0205 0364 C:\Windows\System32\rascfg.dll - ok02:48:15.0213 0364 [ 1998BD97F950680BB55F55A7244679C2 ] C:\Windows\System32\iphlpsvc.dll02:48:15.0213 0364 C:\Windows\System32\iphlpsvc.dll - ok02:48:15.0222 0364 [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll02:48:15.0222 0364 C:\Windows\System32\keyiso.dll - ok02:48:15.0231 0364 [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll02:48:15.0231 0364 C:\Windows\System32\srvsvc.dll - ok02:48:15.0241 0364 [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll02:48:15.0241 0364 C:\Windows\System32\wkssvc.dll - ok02:48:15.0252 0364 [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll02:48:15.0252 0364 C:\Windows\ehome\ehres.dll - ok02:48:15.0260 0364 [ FA0593D936C9B95FB6FAA32AD1595D49 ] C:\Windows\System32\lltdres.dll02:48:15.0260 0364 C:\Windows\System32\lltdres.dll - ok02:48:15.0269 0364 [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll02:48:15.0269 0364 C:\Windows\System32\lmhsvc.dll - ok02:48:15.0282 0364 [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll02:48:15.0282 0364 C:\Windows\System32\FirewallAPI.dll - ok02:48:15.0293 0364 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll02:48:15.0293 0364 C:\Windows\System32\mmcss.dll - ok02:48:15.0300 0364 [ EA822412BBBA9B7D2B1A3748AD50EFB8 ] C:\Windows\System32\iscsidsc.dll02:48:15.0300 0364 C:\Windows\System32\iscsidsc.dll - ok02:48:15.0310 0364 [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll02:48:15.0311 0364 C:\Windows\System32\msimsg.dll - ok02:48:15.0320 0364 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL02:48:15.0320 0364 C:\Windows\System32\QAGENTRT.DLL - ok02:48:15.0330 0364 [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll02:48:15.0330 0364 C:\Windows\System32\netman.dll - ok02:48:15.0338 0364 [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll02:48:15.0338 0364 C:\Windows\System32\netprof.dll - ok02:48:15.0352 0364 [ 983B356504D443E61B9012EA9F36496B ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll02:48:15.0352 0364 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok02:48:15.0362 0364 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll02:48:15.0362 0364 C:\Windows\System32\nsisvc.dll - ok02:48:15.0371 0364 [ 0C8E8E61AD1EB0B250B846712C917506 ] C:\Windows\System32\p2psvc.dll02:48:15.0371 0364 C:\Windows\System32\p2psvc.dll - ok02:48:15.0380 0364 [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll02:48:15.0380 0364 C:\Windows\System32\pcasvc.dll - ok02:48:15.0389 0364 [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll02:48:15.0389 0364 C:\Windows\System32\pla.dll - ok02:48:15.0398 0364 [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll02:48:15.0398 0364 C:\Windows\System32\umpnpmgr.dll - ok02:48:15.0412 0364 [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll02:48:15.0412 0364 C:\Windows\System32\polstore.dll - ok02:48:15.0420 0364 [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll02:48:15.0420 0364 C:\Windows\System32\profsvc.dll - ok02:48:15.0429 0364 [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll02:48:15.0429 0364 C:\Windows\System32\psbase.dll - ok02:48:15.0438 0364 [ E9ECAE663F47E6CB43962D18AB18890F ] C:\Windows\System32\qwave.dll02:48:15.0438 0364 C:\Windows\System32\qwave.dll - ok02:48:15.0458 0364 [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys02:48:15.0458 0364 C:\Windows\System32\drivers\qwavedrv.sys - ok02:48:15.0468 0364 [ 8F97D374AD1857E1EED85A79F29A1D3D ] C:\Windows\WindowsMobile\rapimgr.dll02:48:15.0468 0364 C:\Windows\WindowsMobile\rapimgr.dll - ok02:48:15.0478 0364 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll02:48:15.0478 0364 C:\Windows\System32\rasauto.dll - ok02:48:15.0489 0364 [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll02:48:15.0489 0364 C:\Windows\System32\rasmans.dll - ok02:48:15.0501 0364 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll02:48:15.0502 0364 C:\Windows\System32\sstpsvc.dll - ok02:48:15.0508 0364 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll02:48:15.0508 0364 C:\Windows\System32\mprdim.dll - ok02:48:15.0518 0364 [ 5123F83CBC4349D065534EEB6BBDC42B ] C:\Windows\System32\Locator.exe02:48:15.0518 0364 C:\Windows\System32\Locator.exe - ok02:48:15.0525 0364 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] C:\Windows\System32\regsvc.dll02:48:15.0525 0364 C:\Windows\System32\regsvc.dll - ok02:48:15.0537 0364 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll02:48:15.0537 0364 C:\Windows\System32\SCardSvr.dll - ok02:48:15.0550 0364 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll02:48:15.0550 0364 C:\Windows\System32\schedsvc.dll - ok02:48:15.0561 0364 [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll02:48:15.0561 0364 C:\Windows\System32\sdrsvc.dll - ok02:48:15.0572 0364 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll02:48:15.0573 0364 C:\Windows\System32\seclogon.dll - ok02:48:15.0583 0364 [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll02:48:15.0583 0364 C:\Windows\System32\Sens.dll - ok02:48:15.0593 0364 [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll02:48:15.0593 0364 C:\Windows\System32\SessEnv.dll - ok02:48:15.0608 0364 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] C:\Windows\System32\ipnathlp.dll02:48:15.0609 0364 C:\Windows\System32\ipnathlp.dll - ok02:48:15.0618 0364 [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll02:48:15.0618 0364 C:\Windows\System32\shsvcs.dll - ok02:48:15.0630 0364 [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe02:48:15.0630 0364 C:\Windows\System32\SLsvc.exe - ok02:48:15.0635 0364 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll02:48:15.0635 0364 C:\Windows\System32\SLUINotify.dll - ok02:48:15.0643 0364 [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll02:48:15.0643 0364 C:\Windows\System32\tcpipcfg.dll - ok02:48:15.0651 0364 [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe02:48:15.0651 0364 C:\Windows\System32\snmptrap.exe - ok02:48:15.0660 0364 [ 8554097E5136C3BF9F69FE578A1B35F4 ] C:\Windows\System32\spoolsv.exe02:48:15.0660 0364 C:\Windows\System32\spoolsv.exe - ok02:48:15.0671 0364 [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll02:48:15.0671 0364 C:\Windows\System32\ssdpsrv.dll - ok02:48:15.0689 0364 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll02:48:15.0689 0364 C:\Windows\System32\wiaservc.dll - ok02:48:15.0694 0364 [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll02:48:15.0694 0364 C:\Windows\System32\swprv.dll - ok02:48:15.0708 0364 [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll02:48:15.0708 0364 C:\Windows\System32\sysmain.dll - ok02:48:15.0715 0364 [ 2DCA225EAE15F42C0933E998EE0231C3 ] C:\Windows\System32\TabSvc.dll02:48:15.0715 0364 C:\Windows\System32\TabSvc.dll - ok02:48:15.0725 0364 [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll02:48:15.0725 0364 C:\Windows\System32\tapisrv.dll - ok02:48:15.0732 0364 [ CB05822CD9CC6C688168E113C603DBE7 ] C:\Windows\System32\tbssvc.dll02:48:15.0733 0364 C:\Windows\System32\tbssvc.dll - ok02:48:15.0742 0364 [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll02:48:15.0742 0364 C:\Windows\System32\termsrv.dll - ok02:48:15.0756 0364 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] C:\Windows\System32\trkwks.dll02:48:15.0756 0364 C:\Windows\System32\trkwks.dll - ok02:48:15.0764 0364 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe02:48:15.0764 0364 C:\Windows\servicing\TrustedInstaller.exe - ok02:48:15.0772 0364 [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe02:48:15.0772 0364 C:\Windows\System32\UI0Detect.exe - ok02:48:15.0784 0364 [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll02:48:15.0784 0364 C:\Windows\System32\upnphost.dll - ok02:48:15.0793 0364 [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe02:48:15.0793 0364 C:\Windows\System32\dwm.exe - ok02:48:15.0802 0364 [ CD88D1B7776DC17A119049742EC07EB4 ] C:\Windows\System32\vds.exe02:48:15.0802 0364 C:\Windows\System32\vds.exe - ok02:48:15.0819 0364 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe02:48:15.0819 0364 C:\Windows\System32\VSSVC.exe - ok02:48:15.0833 0364 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll02:48:15.0833 0364 C:\Windows\System32\w32time.dll - ok02:48:15.0841 0364 [ 59E19BD13C3BDB857646B9E436BA27F7 ] C:\Windows\WindowsMobile\wcescomm.dll02:48:15.0842 0364 C:\Windows\WindowsMobile\wcescomm.dll - ok02:48:15.0851 0364 [ A3CD60FD826381B49F03832590E069AF ] C:\Windows\System32\wcncsvc.dll02:48:15.0851 0364 C:\Windows\System32\wcncsvc.dll - ok02:48:15.0863 0364 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] C:\Windows\System32\drivers\Wdf01000.sys02:48:15.0863 0364 C:\Windows\System32\drivers\Wdf01000.sys - ok02:48:15.0875 0364 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll02:48:15.0875 0364 C:\Windows\System32\WcsPlugInService.dll - ok02:48:15.0884 0364 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll02:48:15.0884 0364 C:\Windows\System32\wdi.dll - ok02:48:15.0893 0364 [ 04C37D8107320312FBAE09926103D5E2 ] C:\Windows\System32\WebClnt.dll02:48:15.0893 0364 C:\Windows\System32\WebClnt.dll - ok02:48:15.0907 0364 [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll02:48:15.0907 0364 C:\Windows\System32\wecsvc.dll - ok02:48:15.0917 0364 [ 670FF720071ED741206D69BD995EA453 ] C:\Windows\System32\wercplsupport.dll02:48:15.0917 0364 C:\Windows\System32\wercplsupport.dll - ok02:48:15.0926 0364 [ 62DB790A860CDFC4278D2F03CC5675D8 ] C:\Program Files\Windows Defender\MsMpRes.dll02:48:15.0926 0364 C:\Program Files\Windows Defender\MsMpRes.dll - ok02:48:15.0935 0364 [ 32B88481D3B326DA6DEB07B1D03481E7 ] C:\Windows\System32\wersvc.dll02:48:15.0935 0364 C:\Windows\System32\wersvc.dll - ok02:48:15.0948 0364 [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\System32\winhttp.dll02:48:15.0949 0364 C:\Windows\System32\winhttp.dll - ok02:48:15.0957 0364 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll02:48:15.0957 0364 C:\Windows\System32\wbem\WMIsvc.dll - ok02:48:15.0966 0364 [ 7CFE68BDC065E55AA5E8421607037511 ] C:\Windows\System32\WsmSvc.dll02:48:15.0966 0364 C:\Windows\System32\WsmSvc.dll - ok02:48:15.0977 0364 [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll02:48:15.0977 0364 C:\Windows\System32\wlansvc.dll - ok02:48:15.0991 0364 [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe02:48:15.0991 0364 C:\Windows\System32\wbem\WmiApSrv.exe - ok02:48:16.0003 0364 [ 3978704576A121A9204F8CC49A301A9B ] C:\Program Files\Windows Media Player\wmpnetwk.exe02:48:16.0003 0364 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok02:48:16.0014 0364 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] C:\Windows\System32\wpcsvc.dll02:48:16.0014 0364 C:\Windows\System32\wpcsvc.dll - ok02:48:16.0026 0364 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe02:48:16.0026 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe - ok02:48:16.0039 0364 [ 801FBDB89D472B3C467EB112A0FC9246 ] C:\Windows\System32\wpdbusenum.dll02:48:16.0040 0364 C:\Windows\System32\wpdbusenum.dll - ok02:48:16.0048 0364 [ AED0DFF80C6B3914769407E78D7AB21A ] C:\Windows\System32\SearchIndexer.exe02:48:16.0048 0364 C:\Windows\System32\SearchIndexer.exe - ok02:48:16.0062 0364 [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll02:48:16.0062 0364 C:\Windows\System32\wscsvc.dll - ok02:48:16.0072 0364 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll02:48:16.0072 0364 C:\Windows\System32\wuaueng.dll - ok02:48:16.0081 0364 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] C:\Windows\System32\drivers\WUDFPf.sys02:48:16.0081 0364 C:\Windows\System32\drivers\WUDFPf.sys - ok02:48:16.0091 0364 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] C:\Windows\System32\WUDFSvc.dll02:48:16.0091 0364 C:\Windows\System32\WUDFSvc.dll - ok02:48:16.0106 0364 [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll02:48:16.0107 0364 C:\Windows\System32\scecli.dll - ok02:48:16.0117 0364 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll02:48:16.0117 0364 C:\Windows\System32\ntmarta.dll - ok02:48:16.0132 0364 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll02:48:16.0133 0364 C:\Windows\System32\powrprof.dll - ok02:48:16.0137 0364 [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe02:48:16.0137 0364 C:\Windows\System32\svchost.exe - ok02:48:16.0146 0364 [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys02:48:16.0147 0364 C:\Windows\System32\drivers\luafv.sys - ok02:48:16.0157 0364 [ 4470E3C1E0C3378E4CAB137893C12C3A ] C:\Windows\System32\drivers\mbam.sys02:48:16.0157 0364 C:\Windows\System32\drivers\mbam.sys - ok02:48:16.0167 0364 [ 747325236D88B3F05FFD27FF9EC711C5 ] C:\Windows\System32\drivers\Sftvollh.sys02:48:16.0167 0364 C:\Windows\System32\drivers\Sftvollh.sys - ok02:48:16.0181 0364 [ 31B8835B003CAA6D31BEAD83DDBF98E5 ] C:\Windows\System32\nvvsvc.exe02:48:16.0182 0364 C:\Windows\System32\nvvsvc.exe - ok02:48:16.0189 0364 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll02:48:16.0190 0364 C:\Windows\System32\wtsapi32.dll - ok02:48:16.0199 0364 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll02:48:16.0199 0364 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok02:48:16.0210 0364 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll02:48:16.0211 0364 C:\Windows\System32\rpcss.dll - ok02:48:16.0218 0364 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll02:48:16.0218 0364 C:\Windows\System32\version.dll - ok02:48:16.0229 0364 [ DD1D685D387A8AC666BA3B7539C774E8 ] C:\Windows\System32\wpclsp.dll02:48:16.0229 0364 C:\Windows\System32\wpclsp.dll - ok02:48:16.0239 0364 [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe02:48:16.0239 0364 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok02:48:16.0253 0364 [ F556912E70B22D740C9C99E310E3C11F ] C:\Program Files\Microsoft Security Client\MpSvc.dll02:48:16.0253 0364 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok02:48:16.0263 0364 [ 3D9381A332E4373F8811C71BA5078B31 ] C:\Program Files\Microsoft Security Client\MpClient.dll02:48:16.0263 0364 C:\Program Files\Microsoft Security Client\MpClient.dll - ok02:48:16.0272 0364 [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe02:48:16.0272 0364 C:\Windows\System32\LogonUI.exe - ok02:48:16.0286 0364 [ B2E569EF26DAC9D6994A2AFF4F601B7A ] C:\Windows\System32\wintrust.dll02:48:16.0286 0364 C:\Windows\System32\wintrust.dll - ok02:48:16.0296 0364 [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll02:48:16.0296 0364 C:\Windows\System32\authui.dll - ok02:48:16.0306 0364 [ 4575AA12561C5648483403541D0D7F2B ] C:\Program Files\Windows Defender\MpSvc.dll02:48:16.0306 0364 C:\Program Files\Windows Defender\MpSvc.dll - ok02:48:16.0315 0364 [ 1BD363738B672A394EBE3B8A78EAB9D3 ] C:\Program Files\Windows Defender\MpClient.dll02:48:16.0315 0364 C:\Program Files\Windows Defender\MpClient.dll - ok02:48:16.0324 0364 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll02:48:16.0325 0364 C:\Windows\System32\msimg32.dll - ok02:48:16.0332 0364 [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll02:48:16.0332 0364 C:\Windows\System32\uxtheme.dll - ok02:48:16.0345 0364 [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll02:48:16.0345 0364 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok02:48:16.0356 0364 [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll02:48:16.0356 0364 C:\Windows\System32\duser.dll - ok02:48:16.0365 0364 [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\System32\xmllite.dll02:48:16.0365 0364 C:\Windows\System32\xmllite.dll - ok02:48:16.0376 0364 [ 118D81523EA80B9E252CB840E94754C6 ] C:\Program Files\Microsoft Security Client\EppManifest.dll02:48:16.0376 0364 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok02:48:16.0394 0364 [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll02:48:16.0394 0364 C:\Windows\System32\SmartcardCredentialProvider.dll - ok02:48:16.0401 0364 [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll02:48:16.0401 0364 C:\Windows\System32\rasplap.dll - ok02:48:16.0411 0364 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll02:48:16.0411 0364 C:\Windows\System32\rasapi32.dll - ok02:48:16.0422 0364 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll02:48:16.0422 0364 C:\Windows\System32\rasman.dll - ok02:48:16.0429 0364 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll02:48:16.0430 0364 C:\Windows\System32\tapi32.dll - ok02:48:16.0442 0364 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll02:48:16.0442 0364 C:\Windows\System32\rtutils.dll - ok02:48:16.0452 0364 [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\System32\winmm.dll02:48:16.0452 0364 C:\Windows\System32\winmm.dll - ok02:48:16.0460 0364 [ AA87D7709021503687326432DC59590D ] C:\Program Files\Microsoft Security Client\MpRTP.dll02:48:16.0460 0364 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok02:48:16.0474 0364 [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\System32\oleacc.dll02:48:16.0474 0364 C:\Windows\System32\oleacc.dll - ok02:48:16.0485 0364 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll02:48:16.0486 0364 C:\Windows\System32\MMDevAPI.dll - ok02:48:16.0493 0364 [ EE38212D3630819A6293A5BAE2D5C9A8 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll02:48:16.0493 0364 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok02:48:16.0505 0364 [ A9542FF2E9A82CF100E5729EC79068F0 ] C:\Windows\System32\fltLib.dll02:48:16.0506 0364 C:\Windows\System32\fltLib.dll - ok02:48:16.0515 0364 [ CF105EE42E3F71E648CEBB3F666E1CF0 ] C:\Windows\System32\drivers\MpFilter.sys02:48:16.0515 0364 C:\Windows\System32\drivers\MpFilter.sys - ok02:48:16.0523 0364 [ 801F1E963F7EEFFDA3F9EF89DB3EF133 ] C:\Windows\System32\radardt.dll02:48:16.0523 0364 C:\Windows\System32\radardt.dll - ok02:48:16.0532 0364 [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll02:48:16.0532 0364 C:\Windows\System32\WinSCard.dll - ok02:48:16.0553 0364 [ AC66A87B91D548D8DBDA58D00FA21547 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll02:48:16.0554 0364 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok02:48:16.0562 0364 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll02:48:16.0562 0364 C:\Windows\System32\cabinet.dll - ok02:48:16.0569 0364 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll02:48:16.0569 0364 C:\Windows\System32\avrt.dll - ok02:48:16.0579 0364 [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll02:48:16.0579 0364 C:\Windows\System32\shgina.dll - ok02:48:16.0588 0364 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys02:48:16.0589 0364 C:\Windows\System32\drivers\fltMgr.sys - ok02:48:16.0598 0364 [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll02:48:16.0598 0364 C:\Windows\System32\shacct.dll - ok02:48:16.0609 0364 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll02:48:16.0609 0364 C:\Windows\System32\propsys.dll - ok02:48:16.0633 0364 [ 22F73612087430A94DBE912AB58E0C79 ] C:\Windows\System32\ci.dll02:48:16.0633 0364 C:\Windows\System32\ci.dll - ok02:48:16.0644 0364 [ 97FEF831AB90BEE128C9AF390E243F80 ] C:\Windows\System32\drivers\drmkaud.sys02:48:16.0644 0364 C:\Windows\System32\drivers\drmkaud.sys - ok02:48:16.0649 0364 [ 3E4F7CEF4D814584D3E9E390CA59DE5F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpengine.dll02:48:16.0649 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpengine.dll - ok02:48:16.0658 0364 [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll02:48:16.0658 0364 C:\Windows\System32\adtschema.dll - ok02:48:16.0673 0364 [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe02:48:16.0673 0364 C:\Windows\System32\audiodg.exe - ok02:48:16.0681 0364 [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL02:48:16.0681 0364 C:\Windows\System32\PSHED.DLL - ok02:48:16.0693 0364 [ 70C6489D56008D75DEDF73226FA63C11 ] C:\Windows\System32\dimsjob.dll02:48:16.0693 0364 C:\Windows\System32\dimsjob.dll - ok02:48:16.0702 0364 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv02:48:16.0702 0364 C:\Windows\System32\wdmaud.drv - ok02:48:16.0711 0364 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll02:48:16.0711 0364 C:\Windows\System32\atl.dll - ok02:48:16.0722 0364 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll02:48:16.0722 0364 C:\Windows\System32\gpsvc.dll - ok02:48:16.0736 0364 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll02:48:16.0736 0364 C:\Windows\System32\ksuser.dll - ok02:48:16.0749 0364 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll02:48:16.0749 0364 C:\Windows\System32\nlaapi.dll - ok02:48:16.0756 0364 [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll02:48:16.0756 0364 C:\Windows\System32\AudioEng.dll - ok02:48:16.0765 0364 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll02:48:16.0765 0364 C:\Windows\System32\AudioSes.dll - ok02:48:16.0773 0364 [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll02:48:16.0773 0364 C:\Windows\System32\es.dll - ok02:48:16.0786 0364 [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys02:48:16.0786 0364 C:\Windows\System32\drivers\spsys.sys - ok02:48:16.0796 0364 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll02:48:16.0796 0364 C:\Windows\System32\midimap.dll - ok02:48:16.0806 0364 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll02:48:16.0806 0364 C:\Windows\System32\msacm32.dll - ok02:48:16.0817 0364 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv02:48:16.0817 0364 C:\Windows\System32\msacm32.drv - ok02:48:16.0825 0364 [ 5CC11034A2E22DFF623BC922090AEBAB ] C:\Program Files\Sandboxie\SbieSvc.exe02:48:16.0825 0364 C:\Program Files\Sandboxie\SbieSvc.exe - ok02:48:16.0833 0364 [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll02:48:16.0833 0364 C:\Windows\System32\AUDIOKSE.dll - ok02:48:16.0843 0364 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll02:48:16.0844 0364 C:\Windows\System32\WindowsCodecs.dll - ok02:48:16.0853 0364 [ DD749A6F27E53F003DE6177C96904D81 ] C:\Windows\System32\stapo.dll02:48:16.0853 0364 C:\Windows\System32\stapo.dll - ok02:48:16.0863 0364 [ 0C3DEE30C0CD6E416B52B7329E8FF7CF ] C:\Program Files\Sandboxie\SbieDll.dll02:48:16.0864 0364 C:\Program Files\Sandboxie\SbieDll.dll - ok02:48:16.0877 0364 [ 26535C8F7105D7C2767C93FDFC49CF57 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasbase.vdm02:48:16.0877 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasbase.vdm - ok02:48:16.0887 0364 [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll02:48:16.0887 0364 C:\Windows\System32\hid.dll - ok02:48:16.0897 0364 [ F654842D0653472BB37BBD016CFED0E3 ] C:\Windows\System32\ctapo32.dll02:48:16.0897 0364 C:\Windows\System32\ctapo32.dll - ok02:48:16.0903 0364 [ 0727200F10320A6BA7E59433094FBBA7 ] C:\Windows\System32\WMALFXGFXDSP.dll02:48:16.0903 0364 C:\Windows\System32\WMALFXGFXDSP.dll - ok02:48:16.0912 0364 [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll02:48:16.0913 0364 C:\Windows\System32\mfplat.dll - ok02:48:16.0925 0364 [ 158C8F7319E1376976FD2CCBBB94A74F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasdlta.vdm02:48:16.0925 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpasdlta.vdm - ok02:48:16.0937 0364 [ 1ED58DA041A992EEEC934290508B6B71 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe02:48:16.0937 0364 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok02:48:16.0945 0364 [ CA57D847403633D0D97114071B59C2B2 ] C:\Program Files\Sandboxie\SbieDrv.sys02:48:16.0945 0364 C:\Program Files\Sandboxie\SbieDrv.sys - ok02:48:16.0960 0364 [ DED3E3640A25F3E1C49ABF2AACB2E379 ] C:\Windows\System32\nvsvc.dll02:48:16.0960 0364 C:\Windows\System32\nvsvc.dll - ok02:48:16.0972 0364 [ 1509E705F3AC1D474C92454A5C2DD81F ] C:\Windows\System32\uxsms.dll02:48:16.0972 0364 C:\Windows\System32\uxsms.dll - ok02:48:16.0982 0364 [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavbase.vdm02:48:16.0982 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavbase.vdm - ok02:48:16.0991 0364 [ D5CF1536137026ACDED95BF6CBF849F6 ] C:\Windows\System32\WUDFPlatform.dll02:48:16.0991 0364 C:\Windows\System32\WUDFPlatform.dll - ok02:48:17.0001 0364 [ FFBB4DA6BBEF3509E799E4A16544AA9E ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavdlta.vdm02:48:17.0001 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\mpavdlta.vdm - ok02:48:17.0016 0364 [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys02:48:17.0016 0364 C:\Windows\System32\drivers\lltdio.sys - ok02:48:17.0023 0364 [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\System32\mscms.dll02:48:17.0023 0364 C:\Windows\System32\mscms.dll - ok02:48:17.0031 0364 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] C:\Windows\System32\drivers\nwifi.sys02:48:17.0031 0364 C:\Windows\System32\drivers\nwifi.sys - ok02:48:17.0044 0364 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv02:48:17.0044 0364 C:\Windows\System32\winspool.drv - ok02:48:17.0059 0364 [ D6973AA34C4D5D76C0430B181C3CD389 ] C:\Windows\System32\drivers\ndisuio.sys02:48:17.0059 0364 C:\Windows\System32\drivers\ndisuio.sys - ok02:48:17.0072 0364 [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys02:48:17.0072 0364 C:\Windows\System32\drivers\rspndr.sys - ok02:48:17.0080 0364 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll02:48:17.0080 0364 C:\Windows\System32\dwmapi.dll - ok02:48:17.0089 0364 [ 9932C1981EC2E481DBA7DFDDB1C1C0D2 ] C:\Windows\System32\nvapi.dll02:48:17.0089 0364 C:\Windows\System32\nvapi.dll - ok02:48:17.0100 0364 [ 45EE8E18EDD84E38B77C68A55E2C4245 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll02:48:17.0101 0364 C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok02:48:17.0113 0364 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll02:48:17.0113 0364 C:\Windows\System32\dnsrslvr.dll - ok02:48:17.0122 0364 [ DAA1B96073C79C84F8D28FBF55580415 ] C:\Windows\System32\pstorec.dll02:48:17.0122 0364 C:\Windows\System32\pstorec.dll - ok02:48:17.0132 0364 [ 3AB4023CBD406AC33AB8CDFF6C8079A0 ] C:\Windows\System32\eapphost.dll02:48:17.0133 0364 C:\Windows\System32\eapphost.dll - ok02:48:17.0141 0364 [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll02:48:17.0141 0364 C:\Windows\System32\rastls.dll - ok02:48:17.0149 0364 [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll02:48:17.0149 0364 C:\Windows\System32\raschap.dll - ok02:48:17.0157 0364 [ 60307769C577A2924F787DCD761EFFB0 ] C:\Windows\System32\nvsvcr.dll02:48:17.0157 0364 C:\Windows\System32\nvsvcr.dll - ok02:48:17.0166 0364 [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll02:48:17.0166 0364 C:\Windows\System32\umb.dll - ok02:48:17.0176 0364 [ 3727F8B85E24BBDD325BFF75F029DDE3 ] C:\Windows\System32\wlanmsm.dll02:48:17.0176 0364 C:\Windows\System32\wlanmsm.dll - ok02:48:17.0186 0364 [ 4662AF853DFAD5648CE3814E7D9EF3D6 ] C:\Windows\System32\wlansec.dll02:48:17.0186 0364 C:\Windows\System32\wlansec.dll - ok02:48:17.0196 0364 [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll02:48:17.0196 0364 C:\Windows\System32\onex.dll - ok02:48:17.0209 0364 [ 977B05E1577442422575D37D5E5A6571 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll02:48:17.0209 0364 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok02:48:17.0217 0364 [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll02:48:17.0217 0364 C:\Windows\System32\eappprxy.dll - ok02:48:17.0228 0364 [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll02:48:17.0229 0364 C:\Windows\System32\eappcfg.dll - ok02:48:17.0238 0364 [ 91D995A67D9447592A1BF21CBC15C628 ] C:\Windows\System32\wlgpclnt.dll02:48:17.0238 0364 C:\Windows\System32\wlgpclnt.dll - ok02:48:17.0252 0364 [ 19FFAD68A02AF1BF0BC336EE26CD6767 ] C:\Windows\System32\l2gpstore.dll02:48:17.0252 0364 C:\Windows\System32\l2gpstore.dll - ok02:48:17.0262 0364 [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll02:48:17.0262 0364 C:\Windows\System32\wlanutil.dll - ok02:48:17.0273 0364 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll02:48:17.0273 0364 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok02:48:17.0281 0364 [ 0296DAEB5555A248E8ABF7E5012A37A6 ] C:\Windows\System32\msxml6.dll02:48:17.0281 0364 C:\Windows\System32\msxml6.dll - ok02:48:17.0295 0364 [ 85466C0757A23D9A9AECDC0755203CB2 ] C:\Windows\System32\iscsiexe.dll02:48:17.0296 0364 C:\Windows\System32\iscsiexe.dll - ok02:48:17.0312 0364 [ 2FA5D2644DF077AA9BEC63B19A179823 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll02:48:17.0312 0364 C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok02:48:17.0321 0364 [ DD348DA5669282C80A3DE4D8991DB717 ] C:\Windows\System32\iscsium.dll02:48:17.0321 0364 C:\Windows\System32\iscsium.dll - ok02:48:17.0341 0364 [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll02:48:17.0341 0364 C:\Windows\System32\netcfgx.dll - ok02:48:17.0350 0364 [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll02:48:17.0351 0364 C:\Windows\System32\cfgmgr32.dll - ok02:48:17.0361 0364 [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL02:48:17.0361 0364 C:\Windows\System32\FWPUCLNT.DLL - ok02:48:17.0383 0364 [ 61C5507090E036D647E4FAC1F5ACB1C6 ] C:\Windows\System32\iscsied.dll02:48:17.0383 0364 C:\Windows\System32\iscsied.dll - ok02:48:17.0393 0364 [ 0F40F1FE4BE3C3B88EA719F393382634 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll02:48:17.0393 0364 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok02:48:17.0401 0364 [ 054E058EB59212BE229C516258DFC5FF ] C:\Windows\System32\nvcpl.dll02:48:17.0401 0364 C:\Windows\System32\nvcpl.dll - ok02:48:17.0413 0364 [ 880681B274E1C8B643B2C92BF59BE5E2 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll02:48:17.0413 0364 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok02:48:17.0427 0364 [ 4B555106290BD117334E9A08761C035A ] C:\Windows\System32\rundll32.exe02:48:17.0427 0364 C:\Windows\System32\rundll32.exe - ok02:48:17.0451 0364 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll02:48:17.0451 0364 C:\Windows\System32\shimeng.dll - ok02:48:17.0461 0364 [ D6804F089CBB6749E95124E7C4D80900 ] C:\Windows\AppPatch\AcLayers.dll02:48:17.0461 0364 C:\Windows\AppPatch\AcLayers.dll - ok02:48:17.0471 0364 [ CB6B671ED6D97F2E9F2274EADB7517B2 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe02:48:17.0471 0364 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok02:48:17.0481 0364 [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll02:48:17.0481 0364 C:\Windows\System32\wscapi.dll - ok02:48:17.0490 0364 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll02:48:17.0491 0364 C:\Windows\System32\p2pcollab.dll - ok02:48:17.0506 0364 [ 42DD9011D54C3A91F14BDBBF50791DA9 ] C:\Program Files\Microsoft Security Client\MsseWat.dll02:48:17.0506 0364 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok02:48:17.0518 0364 [ DA887F28054D78EE8637BEBB924A2DB5 ] C:\Windows\System32\slwga.dll02:48:17.0518 0364 C:\Windows\System32\slwga.dll - ok02:48:17.0525 0364 [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll02:48:17.0526 0364 C:\Windows\System32\ktmw32.dll - ok02:48:17.0534 0364 [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll02:48:17.0534 0364 C:\Windows\System32\wiarpc.dll - ok02:48:17.0542 0364 [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll02:48:17.0542 0364 C:\Windows\System32\taskcomp.dll - ok02:48:17.0556 0364 [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys02:48:17.0557 0364 C:\Windows\System32\drivers\http.sys - ok02:48:17.0564 0364 [ E79FDA8D320147FDC347C504B3487F87 ] C:\Windows\System32\spoolss.dll02:48:17.0564 0364 C:\Windows\System32\spoolss.dll - ok02:48:17.0574 0364 [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys02:48:17.0574 0364 C:\Windows\System32\drivers\srvnet.sys - ok02:48:17.0586 0364 [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys02:48:17.0586 0364 C:\Windows\System32\drivers\bowser.sys - ok02:48:17.0597 0364 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys02:48:17.0597 0364 C:\Windows\System32\drivers\mpsdrv.sys - ok02:48:17.0608 0364 [ 82CEA0395524AACFEB58BA1448E8325C ] C:\Windows\System32\drivers\mrxdav.sys02:48:17.0608 0364 C:\Windows\System32\drivers\mrxdav.sys - ok02:48:17.0619 0364 [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll02:48:17.0619 0364 C:\Windows\System32\MPSSVC.dll - ok02:48:17.0632 0364 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys02:48:17.0632 0364 C:\Windows\System32\drivers\mrxsmb.sys - ok02:48:17.0641 0364 [ 4FCCB34D793B116423209C0F8B7A3B03 ] C:\Windows\System32\drivers\mrxsmb10.sys02:48:17.0641 0364 C:\Windows\System32\drivers\mrxsmb10.sys - ok02:48:17.0653 0364 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys02:48:17.0653 0364 C:\Windows\System32\drivers\mrxsmb20.sys - ok02:48:17.0658 0364 [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys02:48:17.0658 0364 C:\Windows\System32\drivers\srv2.sys - ok02:48:17.0669 0364 [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys02:48:17.0669 0364 C:\Windows\System32\drivers\srv.sys - ok02:48:17.0679 0364 [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll02:48:17.0679 0364 C:\Windows\System32\netmsg.dll - ok02:48:17.0694 0364 [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll02:48:17.0694 0364 C:\Windows\System32\activeds.dll - ok02:48:17.0702 0364 [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll02:48:17.0703 0364 C:\Windows\System32\clusapi.dll - ok02:48:17.0714 0364 [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll02:48:17.0715 0364 C:\Windows\System32\sscore.dll - ok02:48:17.0724 0364 [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll02:48:17.0724 0364 C:\Windows\System32\adsldpc.dll - ok02:48:17.0733 0364 [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll02:48:17.0733 0364 C:\Windows\System32\credui.dll - ok02:48:17.0747 0364 [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll02:48:17.0747 0364 C:\Windows\System32\wfapigp.dll - ok02:48:17.0756 0364 [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll02:48:17.0756 0364 C:\Windows\System32\resutils.dll - ok02:48:17.0772 0364 [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\WindowsMobile\wmdcBase.exe02:48:17.0772 0364 C:\Windows\WindowsMobile\wmdcBase.exe - ok02:48:17.0783 0364 [ F845CB13B1D1FC68C97900FEF94D03CC ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll02:48:17.0783 0364 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok02:48:17.0794 0364 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe02:48:17.0795 0364 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok02:48:17.0817 0364 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll02:48:17.0817 0364 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok02:48:17.0828 0364 [ 1311171CF8F6D2954441EF2A42693035 ] C:\Windows\System32\WsmRes.dll02:48:17.0828 0364 C:\Windows\System32\WsmRes.dll - ok02:48:17.0837 0364 [ A952D0DED445F26AEFCF593A935AB300 ] C:\Windows\System32\hnetcfg.dll02:48:17.0837 0364 C:\Windows\System32\hnetcfg.dll - ok02:48:17.0848 0364 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe02:48:17.0848 0364 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok02:48:17.0860 0364 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll02:48:17.0861 0364 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok02:48:17.0874 0364 [ E230F3776F373F4C5E788794B53101E4 ] C:\Windows\System32\plasrv.exe02:48:17.0874 0364 C:\Windows\System32\plasrv.exe - ok02:48:17.0883 0364 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll02:48:17.0883 0364 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok02:48:17.0895 0364 [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll02:48:17.0895 0364 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok02:48:17.0909 0364 [ 6D41F6AA35220E7A54543075B27E8F83 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll02:48:17.0909 0364 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok02:48:17.0917 0364 [ 6953E980ADCA0BE816C7FF463695499A ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll02:48:17.0917 0364 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok02:48:17.0925 0364 [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll02:48:17.0925 0364 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok02:48:17.0934 0364 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll02:48:17.0934 0364 C:\Windows\System32\wsock32.dll - ok02:48:17.0943 0364 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll02:48:17.0943 0364 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok02:48:17.0957 0364 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll02:48:17.0957 0364 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok02:48:17.0967 0364 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll02:48:17.0968 0364 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok02:48:17.0978 0364 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll02:48:17.0978 0364 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok02:48:17.0990 0364 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll02:48:17.0990 0364 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok02:48:18.0002 0364 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll02:48:18.0002 0364 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok02:48:18.0013 0364 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll02:48:18.0013 0364 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok02:48:18.0023 0364 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll02:48:18.0023 0364 C:\Windows\System32\dnssd.dll - ok02:48:18.0032 0364 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe02:48:18.0032 0364 C:\Program Files\Bonjour\mDNSResponder.exe - ok02:48:18.0040 0364 [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll02:48:18.0040 0364 C:\Windows\System32\vssapi.dll - ok02:48:18.0053 0364 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll02:48:18.0053 0364 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok02:48:18.0064 0364 [ 9340105C246B16EE661FD8FCE579B117 ] C:\Windows\System32\cryptnet.dll Link to post Share on other sites More sharing options...
Last_Ditch Posted June 25, 2013 Author ID:695672 Share Posted June 25, 2013 02:48:18.0064 0364 C:\Windows\System32\cryptnet.dll - ok02:48:18.0072 0364 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll02:48:18.0072 0364 C:\Windows\System32\SensApi.dll - ok02:48:18.0085 0364 [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll02:48:18.0085 0364 C:\Windows\System32\vsstrace.dll - ok02:48:18.0095 0364 [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll02:48:18.0095 0364 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok02:48:18.0110 0364 [ A7DDDDE163F16AB49DF3DE9EEC715495 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll02:48:18.0110 0364 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok02:48:18.0119 0364 [ 1A11EF6E4606F604C479D604B81D04DB ] C:\Program Files\PogoplugBackup\dokance.sys02:48:18.0119 0364 C:\Program Files\PogoplugBackup\dokance.sys - ok02:48:18.0130 0364 [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll02:48:18.0130 0364 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok02:48:18.0140 0364 [ 95F0941685F65C27C783AF301E5DAE78 ] C:\Program Files\PogoplugBackup\dokanmnt.exe02:48:18.0140 0364 C:\Program Files\PogoplugBackup\dokanmnt.exe - ok02:48:18.0156 0364 [ E8F932E855CBF23ED4632439A35E7354 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll02:48:18.0156 0364 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok02:48:18.0162 0364 [ B96C2E38F3D528E1C5E926557CC8D8CC ] C:\Program Files\PogoplugBackup\dokance.dll02:48:18.0162 0364 C:\Program Files\PogoplugBackup\dokance.dll - ok02:48:18.0170 0364 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] C:\Windows\System32\drivers\dsunidrv.sys02:48:18.0170 0364 C:\Windows\System32\drivers\dsunidrv.sys - ok02:48:18.0181 0364 [ F86293D93760C70ADF4F19E66E3FA5E8 ] C:\Windows\System32\httpapi.dll02:48:18.0181 0364 C:\Windows\System32\httpapi.dll - ok02:48:18.0193 0364 [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll02:48:18.0193 0364 C:\Windows\System32\taskschd.dll - ok02:48:18.0201 0364 [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll02:48:18.0201 0364 C:\Windows\System32\wdscore.dll - ok02:48:18.0216 0364 [ AD48183027CAFCEBC322CB9CAC60F9B8 ] C:\Windows\System32\WSDApi.dll02:48:18.0216 0364 C:\Windows\System32\WSDApi.dll - ok02:48:18.0226 0364 [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll02:48:18.0226 0364 C:\Windows\System32\fundisc.dll - ok02:48:18.0234 0364 [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\System32\msxml3.dll02:48:18.0234 0364 C:\Windows\System32\msxml3.dll - ok02:48:18.0245 0364 [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll02:48:18.0245 0364 C:\Windows\System32\diagperf.dll - ok02:48:18.0266 0364 [ 1E9B9A70D332103C52995E957DC09EF8 ] C:\Windows\System32\drivers\fastfat.sys02:48:18.0266 0364 C:\Windows\System32\drivers\fastfat.sys - ok02:48:18.0275 0364 [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll02:48:18.0275 0364 C:\Windows\System32\esent.dll - ok02:48:18.0285 0364 [ 1B9100ACCFC9FD8B1D991F4BB80EC401 ] C:\Program Files\Giraffic\Veoh_GirafficWatchdog.exe02:48:18.0285 0364 C:\Program Files\Giraffic\Veoh_GirafficWatchdog.exe - ok02:48:18.0299 0364 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll02:48:18.0299 0364 C:\Windows\System32\dbghelp.dll - ok02:48:18.0311 0364 [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe02:48:18.0311 0364 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok02:48:18.0322 0364 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll02:48:18.0322 0364 C:\Program Files\Bonjour\mdnsNSP.dll - ok02:48:18.0331 0364 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll02:48:18.0331 0364 C:\Windows\System32\winrnr.dll - ok02:48:18.0341 0364 [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll02:48:18.0341 0364 C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok02:48:18.0356 0364 [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll02:48:18.0356 0364 C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok02:48:18.0367 0364 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll02:48:18.0367 0364 C:\Windows\System32\rasadhlp.dll - ok02:48:18.0375 0364 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe02:48:18.0375 0364 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe - ok02:48:18.0398 0364 [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll02:48:18.0399 0364 C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll - ok02:48:18.0421 0364 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] C:\Windows\System32\drivers\mdmxsdk.sys02:48:18.0421 0364 C:\Windows\System32\drivers\mdmxsdk.sys - ok02:48:18.0432 0364 [ 8A7C8F4C713E70D73946833D76B77035 ] C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe02:48:18.0432 0364 C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe - ok02:48:18.0438 0364 [ 832E098BCA8235436FE2D8AE50AC3718 ] C:\Windows\System32\drivers\NisDrvWFP.sys02:48:18.0438 0364 C:\Windows\System32\drivers\NisDrvWFP.sys - ok02:48:18.0452 0364 [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll02:48:18.0452 0364 C:\Windows\System32\ncsi.dll - ok02:48:18.0464 0364 [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys02:48:18.0465 0364 C:\Windows\System32\drivers\PEAuth.sys - ok02:48:18.0479 0364 [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll02:48:18.0479 0364 C:\Windows\System32\ssdpapi.dll - ok02:48:18.0487 0364 [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL02:48:18.0487 0364 C:\Windows\System32\IPSECSVC.DLL - ok02:48:18.0501 0364 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe02:48:18.0501 0364 C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe - ok02:48:18.0512 0364 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\System32\msvcr100.dll02:48:18.0513 0364 C:\Windows\System32\msvcr100.dll - ok02:48:18.0526 0364 [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll02:48:18.0526 0364 C:\Windows\System32\FwRemoteSvr.dll - ok02:48:18.0535 0364 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys02:48:18.0535 0364 C:\Windows\System32\drivers\secdrv.sys - ok02:48:18.0545 0364 [ AD56CEB08EEB517332355FDE9E5939C8 ] C:\Program Files\Secunia\PSI\sua.exe02:48:18.0545 0364 C:\Program Files\Secunia\PSI\sua.exe - ok02:48:18.0555 0364 [ D9B734638DD8DBA9D59AAD3189CD0FAD ] C:\Windows\System32\drivers\Sftfslh.sys02:48:18.0555 0364 C:\Windows\System32\drivers\Sftfslh.sys - ok02:48:18.0564 0364 [ A5812F0281CA5081BF696626F9BF324D ] C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe02:48:18.0564 0364 C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe - ok02:48:18.0574 0364 [ 2F61BD46C0BFF4EB36E1E359CA17BFC5 ] C:\Windows\System32\drivers\Sftplaylh.sys02:48:18.0574 0364 C:\Windows\System32\drivers\Sftplaylh.sys - ok02:48:18.0585 0364 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll02:48:18.0585 0364 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok02:48:18.0594 0364 [ 4C11A1820DDC37FA653913AD680ACCAE ] C:\Windows\System32\drivers\tcpipreg.sys02:48:18.0594 0364 C:\Windows\System32\drivers\tcpipreg.sys - ok02:48:18.0603 0364 [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll02:48:18.0603 0364 C:\Windows\System32\wiatrace.dll - ok02:48:18.0613 0364 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE02:48:18.0613 0364 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok02:48:18.0624 0364 [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll02:48:18.0624 0364 C:\Windows\System32\wbemcomn.dll - ok02:48:18.0635 0364 [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll02:48:18.0636 0364 C:\Windows\System32\wsdchngr.dll - ok02:48:18.0645 0364 [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll02:48:18.0645 0364 C:\Windows\System32\wbem\WinMgmtR.dll - ok02:48:18.0654 0364 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL02:48:18.0654 0364 C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok02:48:18.0663 0364 [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\System32\wer.dll02:48:18.0663 0364 C:\Windows\System32\wer.dll - ok02:48:18.0672 0364 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll02:48:18.0673 0364 C:\Windows\System32\PortableDeviceApi.dll - ok02:48:18.0686 0364 [ DEB9D08750423069647C3A066CEC7A1B ] C:\Windows\System32\tquery.dll02:48:18.0686 0364 C:\Windows\System32\tquery.dll - ok02:48:18.0696 0364 [ A9662BCF218BC76869A8D91635D5F93A ] C:\Windows\System32\Wpc.dll02:48:18.0696 0364 C:\Windows\System32\Wpc.dll - ok02:48:18.0701 0364 [ 218B73EA8341EA9FDF018D43052E790A ] C:\Windows\System32\mssrch.dll02:48:18.0701 0364 C:\Windows\System32\mssrch.dll - ok02:48:18.0711 0364 [ 9C879E1C3B27085FB46EFECCD7120D51 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE02:48:18.0711 0364 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok02:48:18.0725 0364 [ DAB33CFA9DD24251AAA389FF36B64D4B ] C:\Windows\System32\drivers\XAudio.sys02:48:18.0725 0364 C:\Windows\System32\drivers\XAudio.sys - ok02:48:18.0735 0364 [ B53BD9E63867CD9FD853F666CA172713 ] C:\Windows\System32\PortableDeviceConnectApi.dll02:48:18.0735 0364 C:\Windows\System32\PortableDeviceConnectApi.dll - ok02:48:18.0743 0364 [ AAB5FEAABF4CB6F76D794203831C8D94 ] C:\Windows\System32\msidle.dll02:48:18.0743 0364 C:\Windows\System32\msidle.dll - ok02:48:18.0753 0364 [ CD5F291A1161F15896D1A4D63DAFF5DF ] C:\Windows\System32\drivers\XAudio.exe02:48:18.0753 0364 C:\Windows\System32\drivers\XAudio.exe - ok02:48:18.0762 0364 [ B458B58F7BB97C48D01AC3CF5805AAAC ] C:\Windows\System32\Query.dll02:48:18.0762 0364 C:\Windows\System32\Query.dll - ok02:48:18.0771 0364 [ BF7E4D6F60A6D9E866432855C6F8C262 ] C:\Windows\System32\sqmapi.dll02:48:18.0771 0364 C:\Windows\System32\sqmapi.dll - ok02:48:18.0783 0364 [ CB73BC422C07FB611F194DA18D1E7F36 ] C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe02:48:18.0783 0364 C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe - ok02:48:18.0792 0364 [ 1D6B95871DC006190964B04E5657E35F ] C:\Windows\System32\rastapi.dll02:48:18.0793 0364 C:\Windows\System32\rastapi.dll - ok02:48:18.0804 0364 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll02:48:18.0804 0364 C:\Windows\System32\netprofm.dll - ok02:48:18.0816 0364 [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll02:48:18.0816 0364 C:\Windows\System32\wbem\wbemprox.dll - ok02:48:18.0827 0364 [ 2B92C5A385978D5CD9C72F51A495862E ] C:\Program Files\Microsoft Application Virtualization Client\sftsync.dll02:48:18.0827 0364 C:\Program Files\Microsoft Application Virtualization Client\sftsync.dll - ok02:48:18.0837 0364 [ B96B60EC821F86D445C9739A0F3DED59 ] C:\Windows\System32\unimdm.tsp02:48:18.0837 0364 C:\Windows\System32\unimdm.tsp - ok02:48:18.0847 0364 [ DFBAADF1B624DC71E88D34D86B3595BE ] C:\Windows\System32\uniplat.dll02:48:18.0847 0364 C:\Windows\System32\uniplat.dll - ok02:48:18.0859 0364 [ 5A09E46B9F9B49CCD6E7565EB213B357 ] C:\Program Files\Microsoft Application Virtualization Client\sftuser.dll02:48:18.0859 0364 C:\Program Files\Microsoft Application Virtualization Client\sftuser.dll - ok02:48:18.0872 0364 [ 3ADA468CBA9A9DA3F9425E4F2434B781 ] C:\Program Files\Microsoft Application Virtualization Client\sftcore.dll02:48:18.0872 0364 C:\Program Files\Microsoft Application Virtualization Client\sftcore.dll - ok02:48:18.0881 0364 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll02:48:18.0881 0364 C:\Windows\System32\npmproxy.dll - ok02:48:18.0890 0364 [ A05EF62D7340CD92CA053A9A12E60504 ] C:\Program Files\Microsoft Application Virtualization Client\sftpsr.dll02:48:18.0891 0364 C:\Program Files\Microsoft Application Virtualization Client\sftpsr.dll - ok02:48:18.0900 0364 [ 979580F2BDFF2AA06F50EC44723A760D ] C:\Program Files\Microsoft Application Virtualization Client\sftfsi.dll02:48:18.0900 0364 C:\Program Files\Microsoft Application Virtualization Client\sftfsi.dll - ok02:48:18.0910 0364 [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll02:48:18.0910 0364 C:\Windows\System32\wbem\wbemcore.dll - ok02:48:18.0920 0364 [ 2E837F3D406224DF131C34BC8F71621E ] C:\Windows\System32\modemui.dll02:48:18.0920 0364 C:\Windows\System32\modemui.dll - ok02:48:18.0928 0364 [ 0B71899E60D1265229BF3D080EAB573D ] C:\Windows\System32\unimdmat.dll02:48:18.0928 0364 C:\Windows\System32\unimdmat.dll - ok02:48:18.0995 0364 [ B4B59AC042EE3733A862F26CBC0B17FC ] C:\Windows\System32\hidphone.tsp02:48:18.0995 0364 C:\Windows\System32\hidphone.tsp - ok02:48:19.0004 0364 [ 953193A9DEA40348C1086D171F6440AE ] C:\Windows\System32\kmddsp.tsp02:48:19.0005 0364 C:\Windows\System32\kmddsp.tsp - ok02:48:19.0010 0364 [ 2F6776ACEFE41EE889C464EA407918F2 ] C:\Windows\System32\ndptsp.tsp02:48:19.0010 0364 C:\Windows\System32\ndptsp.tsp - ok02:48:19.0021 0364 [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll02:48:19.0021 0364 C:\Windows\System32\wbem\esscli.dll - ok02:48:19.0030 0364 [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll02:48:19.0030 0364 C:\Windows\System32\wbem\fastprox.dll - ok02:48:19.0039 0364 [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll02:48:19.0039 0364 C:\Windows\System32\wbem\wbemsvc.dll - ok02:48:19.0048 0364 [ 8B645890A93F1FBBC7DA3E07CC72D762 ] C:\Windows\System32\rasppp.dll02:48:19.0048 0364 C:\Windows\System32\rasppp.dll - ok02:48:19.0057 0364 [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll02:48:19.0057 0364 C:\Windows\System32\wbem\wmiutils.dll - ok02:48:19.0076 0364 [ 32D4A228986BF7656C8A0B50ACEE684C ] C:\Program Files\Microsoft Application Virtualization Client\sftcomp.dll02:48:19.0076 0364 C:\Program Files\Microsoft Application Virtualization Client\sftcomp.dll - ok02:48:19.0086 0364 [ B8A21907FE2F1A113F3487D9AB60BEF9 ] C:\Windows\System32\en-US\tquery.dll.mui02:48:19.0086 0364 C:\Windows\System32\en-US\tquery.dll.mui - ok02:48:19.0096 0364 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll02:48:19.0096 0364 C:\Windows\System32\msi.dll - ok02:48:19.0105 0364 [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll02:48:19.0106 0364 C:\Windows\System32\mprapi.dll - ok02:48:19.0121 0364 [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll02:48:19.0121 0364 C:\Windows\System32\wbem\repdrvfs.dll - ok02:48:19.0138 0364 [ F85134BF76CB335A39F8D7BC4173D4FB ] C:\Windows\System32\msscb.dll02:48:19.0138 0364 C:\Windows\System32\msscb.dll - ok02:48:19.0173 0364 [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL02:48:19.0173 0364 C:\Windows\System32\QUTIL.DLL - ok02:48:19.0197 0364 [ 88225070DD2F7B0B2ED51E7935078641 ] C:\Windows\System32\rasqec.dll02:48:19.0197 0364 C:\Windows\System32\rasqec.dll - ok02:48:19.0206 0364 [ 248A1F31ABB58DDDDC01490EF0BDC777 ] C:\Windows\System32\cryptui.dll02:48:19.0206 0364 C:\Windows\System32\cryptui.dll - ok02:48:19.0221 0364 [ E98E402067978DB38282158F9E8609CA ] C:\Windows\System32\netshell.dll02:48:19.0221 0364 C:\Windows\System32\netshell.dll - ok02:48:19.0231 0364 [ 518BAC0179F94304F422696B47C0EC12 ] C:\Windows\System32\drivers\Sftredirlh.sys02:48:19.0231 0364 C:\Windows\System32\drivers\Sftredirlh.sys - ok02:48:19.0240 0364 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll02:48:19.0240 0364 C:\Windows\System32\dssenh.dll - ok02:48:19.0250 0364 [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll02:48:19.0250 0364 C:\Windows\System32\wbem\WmiPrvSD.dll - ok02:48:19.0260 0364 [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll02:48:19.0260 0364 C:\Windows\System32\wbem\wbemess.dll - ok02:48:19.0268 0364 [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe02:48:19.0268 0364 C:\Windows\System32\dllhost.exe - ok02:48:19.0281 0364 [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll02:48:19.0282 0364 C:\Windows\System32\upnp.dll - ok02:48:19.0291 0364 [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe02:48:19.0291 0364 C:\Windows\System32\taskeng.exe - ok02:48:19.0296 0364 [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll02:48:19.0296 0364 C:\Windows\System32\TSChannel.dll - ok02:48:19.0306 0364 [ 3CD1B69551236977918E60F9543C89A2 ] C:\Windows\System32\AtBroker.exe02:48:19.0306 0364 C:\Windows\System32\AtBroker.exe - ok02:48:19.0315 0364 [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe02:48:19.0316 0364 C:\Windows\System32\userinit.exe - ok02:48:19.0326 0364 [ E08281DCDE69DD9E5EBBF9B3F0454D42 ] C:\Users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe02:48:19.0326 0364 C:\Users\Ken\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe - ok02:48:19.0336 0364 [ D1C8ADF4140E20B9D575A7763F2902AD ] C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe02:48:19.0336 0364 C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe - ok02:48:19.0348 0364 [ 63396CBB1365769D520E0FD89C2419F2 ] C:\Windows\System32\localspl.dll02:48:19.0348 0364 C:\Windows\System32\localspl.dll - ok02:48:19.0358 0364 [ D80C6539C00CB4F5D59066865479C308 ] C:\Windows\System32\dwmredir.dll02:48:19.0358 0364 C:\Windows\System32\dwmredir.dll - ok02:48:19.0368 0364 [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe02:48:19.0368 0364 C:\Windows\explorer.exe - ok02:48:19.0377 0364 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll02:48:19.0377 0364 C:\Windows\System32\sfc.dll - ok02:48:19.0393 0364 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll02:48:19.0393 0364 C:\Windows\System32\shdocvw.dll - ok02:48:19.0401 0364 [ C99403A5B641520DAED0021DDA06F272 ] C:\Windows\System32\milcore.dll02:48:19.0401 0364 C:\Windows\System32\milcore.dll - ok02:48:19.0416 0364 [ BB0EB921877A1A7EF15AE2D97A71CBA9 ] C:\Windows\System32\tcpmon.dll02:48:19.0416 0364 C:\Windows\System32\tcpmon.dll - ok02:48:19.0427 0364 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll02:48:19.0427 0364 C:\Windows\System32\d3d9.dll - ok02:48:19.0440 0364 [ 56D1D4BA99D1A18CDFE35D65F1752B52 ] C:\Program Files\real\realplayer\realplay.exe02:48:19.0440 0364 C:\Program Files\real\realplayer\realplay.exe - ok02:48:19.0451 0364 [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll02:48:19.0451 0364 C:\Windows\System32\browseui.dll - ok02:48:19.0464 0364 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll02:48:19.0464 0364 C:\Windows\System32\d3d8thk.dll - ok02:48:19.0474 0364 [ AF24A9DF84637BF9858EC6FB88EBA7B2 ] C:\Windows\System32\snmpapi.dll02:48:19.0474 0364 C:\Windows\System32\snmpapi.dll - ok02:48:19.0489 0364 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files\Google\Update\GoogleUpdate.exe02:48:19.0489 0364 C:\Program Files\Google\Update\GoogleUpdate.exe - ok02:48:19.0499 0364 [ FEA6D21F78922D641A0C9346D885133B ] C:\Windows\System32\mssprxy.dll02:48:19.0499 0364 C:\Windows\System32\mssprxy.dll - ok02:48:19.0513 0364 [ 1EDE113859276E4B0F19B80F39E2CC95 ] C:\Windows\System32\wsnmp32.dll02:48:19.0513 0364 C:\Windows\System32\wsnmp32.dll - ok02:48:19.0521 0364 [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll02:48:19.0521 0364 C:\Windows\System32\HotStartUserAgent.dll - ok02:48:19.0534 0364 [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files\Google\Update\1.3.21.145\goopdate.dll02:48:19.0534 0364 C:\Program Files\Google\Update\1.3.21.145\goopdate.dll - ok02:48:19.0546 0364 [ 5091452DC719281CF1DD69367E13B494 ] C:\Windows\System32\tcpmib.dll02:48:19.0546 0364 C:\Windows\System32\tcpmib.dll - ok02:48:19.0552 0364 [ BF45D1E087B701D5215EBE57E2EDCA47 ] C:\Program Files\Giraffic\Veoh_Giraffic.exe02:48:19.0552 0364 C:\Program Files\Giraffic\Veoh_Giraffic.exe - ok02:48:19.0563 0364 [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll02:48:19.0563 0364 C:\Windows\System32\TMM.dll - ok02:48:19.0578 0364 [ B4F5DE3DAD8E6B97272F45DB97674878 ] C:\Windows\System32\mgmtapi.dll02:48:19.0578 0364 C:\Windows\System32\mgmtapi.dll - ok02:48:19.0590 0364 [ 0BF0BB276F17B6AD61A8694D2551EC28 ] C:\Windows\System32\usbmon.dll02:48:19.0590 0364 C:\Windows\System32\usbmon.dll - ok02:48:19.0605 0364 [ 0EB1CC5EBFCAAB7DBAEE881E2887F7F9 ] C:\Windows\System32\WSDMon.dll02:48:19.0605 0364 C:\Windows\System32\WSDMon.dll - ok02:48:19.0612 0364 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll02:48:19.0612 0364 C:\Windows\System32\EhStorShell.dll - ok02:48:19.0623 0364 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll02:48:19.0623 0364 C:\Windows\System32\imageres.dll - ok02:48:19.0631 0364 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll02:48:19.0631 0364 C:\Windows\System32\cscapi.dll - ok02:48:19.0639 0364 [ A4E7946B71BBDF8708C7AC97FD9E9008 ] C:\Windows\System32\win32spl.dll02:48:19.0639 0364 C:\Windows\System32\win32spl.dll - ok02:48:19.0653 0364 [ 4BF053944E973C073339BE841C9ECF28 ] C:\Windows\System32\netrap.dll02:48:19.0653 0364 C:\Windows\System32\netrap.dll - ok02:48:19.0661 0364 [ B04ABC47319CB3C808A3A5525F2F3F2F ] C:\Program Files\real\RealUpgrade\realupgrade.exe02:48:19.0661 0364 C:\Program Files\real\RealUpgrade\realupgrade.exe - ok02:48:19.0670 0364 [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll02:48:19.0670 0364 C:\Windows\System32\PlaySndSrv.dll - ok02:48:19.0678 0364 [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll02:48:19.0678 0364 C:\Windows\System32\MsCtfMonitor.dll - ok02:48:19.0690 0364 [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll02:48:19.0690 0364 C:\Windows\System32\msutb.dll - ok02:48:19.0704 0364 [ 2D3D47B93E0BE86EEBB261734AB5B6A1 ] C:\Windows\System32\printcom.dll02:48:19.0704 0364 C:\Windows\System32\printcom.dll - ok02:48:19.0711 0364 [ 2E8E30F3B318A9FDA5A2485723F4C2B3 ] C:\Windows\System32\inetpp.dll02:48:19.0712 0364 C:\Windows\System32\inetpp.dll - ok02:48:19.0721 0364 [ 53D0A06B7A71FFA9851D49CE71AA2610 ] C:\Windows\System32\nvd3dum.dll02:48:19.0721 0364 C:\Windows\System32\nvd3dum.dll - ok02:48:19.0730 0364 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\System32\msvcp100.dll02:48:19.0730 0364 C:\Windows\System32\msvcp100.dll - ok02:48:19.0739 0364 [ 898ABECCD5F0B9A8E8F1318DDB234685 ] C:\Windows\System32\dot3api.dll02:48:19.0739 0364 C:\Windows\System32\dot3api.dll - ok02:48:19.0751 0364 [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll02:48:19.0751 0364 C:\Windows\System32\wlanapi.dll - ok02:48:19.0761 0364 [ 8D544AC1B7AA7FB9DFF0C3E7DA6AD295 ] C:\Windows\System32\wlanhlp.dll02:48:19.0761 0364 C:\Windows\System32\wlanhlp.dll - ok02:48:19.0768 0364 [ 8793643A67B42CEC66490B2A0CF92D68 ] C:\Windows\System32\drivers\ipnat.sys02:48:19.0769 0364 C:\Windows\System32\drivers\ipnat.sys - ok02:48:19.0777 0364 [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll02:48:19.0777 0364 C:\Windows\System32\IconCodecService.dll - ok02:48:19.0788 0364 [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe02:48:19.0788 0364 C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok02:48:19.0798 0364 [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL02:48:19.0799 0364 C:\Windows\System32\QAGENT.DLL - ok02:48:19.0814 0364 [ 0EDAACBC028C1B50A57899E64EE60E9B ] C:\Program Files\real\RealUpgrade\Common\hxmedpltfm.dll02:48:19.0814 0364 C:\Program Files\real\RealUpgrade\Common\hxmedpltfm.dll - ok02:48:19.0818 0364 [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\System32\mstask.dll02:48:19.0818 0364 C:\Windows\System32\mstask.dll - ok02:48:19.0828 0364 [ 1290853C52D8BD47683FED043D79BC21 ] C:\Program Files\real\RealUpgrade\Plugins\upgrade.dll02:48:19.0828 0364 C:\Program Files\real\RealUpgrade\Plugins\upgrade.dll - ok02:48:19.0836 0364 [ A6F5B25905CD01AE714990E02C7205A5 ] C:\Windows\System32\mshtml.dll02:48:19.0837 0364 C:\Windows\System32\mshtml.dll - ok02:48:19.0847 0364 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE02:48:19.0847 0364 C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok02:48:19.0860 0364 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL02:48:19.0860 0364 C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok02:48:19.0869 0364 [ 70F60DE5F06CDF8E0B8B48E3BCE82987 ] C:\Windows\System32\hlink.dll02:48:19.0869 0364 C:\Windows\System32\hlink.dll - ok02:48:19.0882 0364 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll02:48:19.0882 0364 C:\Program Files\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok02:48:19.0897 0364 [ C3180C93AB352C03B27723F94C0B4AA2 ] C:\Program Files\Microsoft Application Virtualization Client\sftintf.dll02:48:19.0897 0364 C:\Program Files\Microsoft Application Virtualization Client\sftintf.dll - ok02:48:19.0910 0364 [ 790222D6CCFC576F0D07D418E6115D85 ] C:\Program Files\Windows Calendar\WinCal.exe02:48:19.0910 0364 C:\Program Files\Windows Calendar\WinCal.exe - ok02:48:19.0921 0364 [ B776DFE408E415AA901030C022EEB7DA ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe02:48:19.0921 0364 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok02:48:19.0931 0364 [ FD130C0517A4BCD7E07EA4B5669CCC6D ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll02:48:19.0931 0364 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok02:48:19.0942 0364 [ 23B564B4DF0ADE8C0B81B78602B9B639 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll02:48:19.0942 0364 C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll - ok02:48:19.0956 0364 [ 81D393F61123915248FB1B8D7C17AE39 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll02:48:19.0956 0364 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok02:48:19.0970 0364 [ B5EF1DA337DB9859709A387638AC5E07 ] C:\Windows\System32\SearchProtocolHost.exe02:48:19.0970 0364 C:\Windows\System32\SearchProtocolHost.exe - ok02:48:19.0978 0364 [ 582BE479E7E286BB3B31C5A4C3DC3987 ] C:\Windows\System32\msshooks.dll02:48:19.0978 0364 C:\Windows\System32\msshooks.dll - ok02:48:19.0995 0364 [ 771AF583BC58373A84496CCD52C36E33 ] C:\Windows\System32\mssvp.dll02:48:19.0995 0364 C:\Windows\System32\mssvp.dll - ok02:48:20.0005 0364 [ 98C77FD99F3DB37B2C03F32B8F837B65 ] C:\Windows\System32\mapi32.dll02:48:20.0006 0364 C:\Windows\System32\mapi32.dll - ok02:48:20.0018 0364 [ 351319EF11C263C95FB721AC76F436D6 ] C:\Windows\System32\mssph.dll02:48:20.0018 0364 C:\Windows\System32\mssph.dll - ok02:48:20.0025 0364 [ 07ACE87D978985460F248CBD33F2D2C1 ] C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL02:48:20.0025 0364 C:\Program Files\Microsoft Office\Office14\MAPIPH.DLL - ok02:48:20.0035 0364 [ E9CD450487B7E2EFA5E8B16DA4085450 ] C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL02:48:20.0035 0364 C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL - ok02:48:20.0045 0364 [ 911F487F7DD6538AC9FB17DEDFD5117F ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSO.DLL02:48:20.0046 0364 C:\Program Files\Common Files\microsoft shared\OFFICE14\MSO.DLL - ok02:48:20.0056 0364 [ B81388E9FE895065FD5CEAF3C11FDC3F ] C:\Windows\System32\ieframe.dll02:48:20.0056 0364 C:\Windows\System32\ieframe.dll - ok02:48:20.0066 0364 [ C2CDBB424CF2461199322D6825F7B426 ] C:\Windows\System32\msfeeds.dll02:48:20.0066 0364 C:\Windows\System32\msfeeds.dll - ok02:48:20.0070 0364 [ F9CCA77443DF0A9F79FC585C8D705D54 ] C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL02:48:20.0070 0364 C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL - ok02:48:20.0082 0364 [ C9EE7FF225EAC1CB9C78C413667CDB80 ] C:\Windows\System32\SearchFilterHost.exe02:48:20.0082 0364 C:\Windows\System32\SearchFilterHost.exe - ok02:48:20.0090 0364 [ 7C0FC379D4B066C2D2189792DED0E4AA ] C:\Windows\System32\xmlfilter.dll02:48:20.0090 0364 C:\Windows\System32\xmlfilter.dll - ok02:48:20.0105 0364 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll02:48:20.0105 0364 C:\Windows\System32\ntshrui.dll - ok02:48:20.0116 0364 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll02:48:20.0116 0364 C:\Windows\System32\actxprxy.dll - ok02:48:20.0126 0364 [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll02:48:20.0126 0364 C:\Windows\System32\NaturalLanguage6.dll - ok02:48:20.0139 0364 [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll02:48:20.0139 0364 C:\Windows\System32\NlsData0009.dll - ok02:48:20.0151 0364 [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll02:48:20.0151 0364 C:\Windows\System32\NlsLexicons0009.dll - ok02:48:20.0162 0364 [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll02:48:20.0162 0364 C:\Windows\System32\wbem\NCProv.dll - ok02:48:20.0178 0364 [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll02:48:20.0179 0364 C:\Windows\System32\wbem\wbemcons.dll - ok02:48:20.0187 0364 [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll02:48:20.0187 0364 C:\Windows\System32\shfolder.dll - ok02:48:20.0198 0364 [ 254AC97C9AF4DDF3F5F57855198527B7 ] C:\Windows\System32\wermgr.exe02:48:20.0198 0364 C:\Windows\System32\wermgr.exe - ok02:48:20.0209 0364 [ E570ECA850F30EB740C2E9699DF3D2BD ] C:\Program Files\Microsoft Security Client\NisSrv.exe02:48:20.0209 0364 C:\Program Files\Microsoft Security Client\NisSrv.exe - ok02:48:20.0228 0364 [ 6D01259214D1E815613ECA3CD81679EC ] C:\Windows\System32\pstorsvc.dll02:48:20.0228 0364 C:\Windows\System32\pstorsvc.dll - ok02:48:20.0236 0364 [ 3E81E93CBAD69FD0112F88148913B5FC ] C:\Program Files\Microsoft Security Client\NisLog.dll02:48:20.0237 0364 C:\Program Files\Microsoft Security Client\NisLog.dll - ok02:48:20.0244 0364 [ F0062778F50838145AC46B384FFB4FA3 ] C:\Windows\System32\pcadm.dll02:48:20.0244 0364 C:\Windows\System32\pcadm.dll - ok02:48:20.0253 0364 [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll02:48:20.0253 0364 C:\Windows\System32\pnpts.dll - ok02:48:20.0265 0364 [ A69630D039C38018689190234F866D77 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\MpKsl080172f5.sys02:48:20.0266 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5ADF705-C3A9-475F-A126-694C0211ED0E}\MpKsl080172f5.sys - ok02:48:20.0276 0364 [ 1BFAE531CB5DD89A0D1A935E307CC7F2 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll02:48:20.0276 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\gapaengine.dll - ok02:48:20.0292 0364 [ 2F50B262AF349C3B6F8D659C15241E26 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\nisfull.vdm02:48:20.0292 0364 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{696BDE72-EFD0-4C39-AB26-C81E12C96D4C}\nisfull.vdm - ok02:48:20.0305 0364 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe02:48:20.0305 0364 C:\Windows\System32\runonce.exe - ok02:48:20.0315 0364 [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll02:48:20.0315 0364 C:\Windows\System32\rasdlg.dll - ok02:48:20.0323 0364 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe02:48:20.0323 0364 C:\Windows\System32\cmd.exe - ok02:48:20.0335 0364 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL02:48:20.0335 0364 C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok02:48:20.0343 0364 [ 80A9ADB30ABDF99A8B5A6C233DB3F1D8 ] C:\Users\Ken\AppData\Local\temp\5B018A68-8AD3-4351-85C7-35CA42D5612A.exe02:48:20.0343 0364 C:\Users\Ken\AppData\Local\temp\5B018A68-8AD3-4351-85C7-35CA42D5612A.exe - ok02:48:20.0368 0364 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll02:48:20.0368 0364 C:\Windows\System32\sfc_os.dll - ok02:48:20.0379 0364 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe02:48:20.0379 0364 C:\Windows\System32\ie4uinit.exe - ok02:48:20.0389 0364 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll02:48:20.0389 0364 C:\Windows\System32\iedkcs32.dll - ok02:48:20.0400 0364 [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl02:48:20.0400 0364 C:\Windows\System32\timedate.cpl - ok02:48:20.0422 0364 [ FF41E1AC301F51E16F61AD7C0F45467C ] C:\Windows\System32\msshsq.dll02:48:20.0422 0364 C:\Windows\System32\msshsq.dll - ok02:48:20.0432 0364 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll02:48:20.0432 0364 C:\Windows\System32\riched20.dll - ok02:48:20.0442 0364 [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\System32\linkinfo.dll02:48:20.0443 0364 C:\Windows\System32\linkinfo.dll - ok02:48:20.0453 0364 [ C456658AF90F42BE3CDF1048F9CDB5CA ] C:\Windows\System32\wpcumi.exe02:48:20.0453 0364 C:\Windows\System32\wpcumi.exe - ok02:48:20.0464 0364 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll02:48:20.0464 0364 C:\PROGRA~1\WI1F86~1\MESSEN~1\msgslang.dll - ok02:48:20.0476 0364 [ DE7F813217EC88C0A6D4D8F2F39D7949 ] C:\Windows\System32\msiltcfg.dll02:48:20.0476 0364 C:\Windows\System32\msiltcfg.dll - ok02:48:20.0490 0364 [ 4D2F7561D8A840450AABFAD3740B0E6B ] C:\Program Files\Microsoft Security Client\msseces.exe02:48:20.0490 0364 C:\Program Files\Microsoft Security Client\msseces.exe - ok02:48:20.0500 0364 [ 036687BA050CF6666057B9081646748B ] C:\Program Files\GRETECH\GomPlayer\GOM.exe02:48:20.0500 0364 C:\Program Files\GRETECH\GomPlayer\GOM.exe - ok02:48:20.0508 0364 [ 9495FCC01D7AB7B60E5B8BA7AEFE9E3D ] C:\Windows\System32\wbem\WmiPrvSE.exe02:48:20.0508 0364 C:\Windows\System32\wbem\WmiPrvSE.exe - ok02:48:20.0518 0364 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe02:48:20.0518 0364 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok02:48:20.0527 0364 [ 027E5E14C9CFF810377701BDEAD8210F ] C:\Windows\System32\control.exe02:48:20.0527 0364 C:\Windows\System32\control.exe - ok02:48:20.0545 0364 [ 7F2691FD961C9A704DA221745CCE6295 ] C:\Program Files\real\realplayer\Update\realsched.exe02:48:20.0545 0364 C:\Program Files\real\realplayer\Update\realsched.exe - ok02:48:20.0566 0364 [ 67EE46FD4D3B56531C5DD1BDC149275A ] C:\Program Files\Internet Explorer\iexplore.exe02:48:20.0566 0364 C:\Program Files\Internet Explorer\iexplore.exe - ok02:48:20.0575 0364 [ 733DA847D5C3E32C40BA831BEAA8DC93 ] C:\Windows\sttray.exe02:48:20.0575 0364 C:\Windows\sttray.exe - ok02:48:20.0588 0364 [ 5EFB30F030B913DAAE7218B5815EBE54 ] C:\Program Files\real\realplayer\Update\setu3270.dll02:48:20.0588 0364 C:\Program Files\real\realplayer\Update\setu3270.dll - ok02:48:20.0598 0364 [ 21221CD7C7C844F6F0E0B7BC69CBA36B ] C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE02:48:20.0599 0364 C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE - ok02:48:20.0622 0364 [ 26DE50A7F668F541B8130A0E26EFF3D8 ] C:\Program Files\Microsoft Works\MSWorks.exe02:48:20.0622 0364 C:\Program Files\Microsoft Works\MSWorks.exe - ok02:48:20.0631 0364 [ 9ACCBC5891BA51B5B29C1A88F80D4CE3 ] C:\Program Files\QuickTime\QTTask.exe02:48:20.0631 0364 C:\Program Files\QuickTime\QTTask.exe - ok02:48:20.0640 0364 [ C37571F7C79C3972D641804F1DF7C0F5 ] C:\Program Files\Microsoft Works\wksdb.exe02:48:20.0640 0364 C:\Program Files\Microsoft Works\wksdb.exe - ok02:48:20.0648 0364 [ A9F9D081518AC03A51C1195986076F42 ] C:\Program Files\iTunes\iTunesHelper.exe02:48:20.0648 0364 C:\Program Files\iTunes\iTunesHelper.exe - ok02:48:20.0658 0364 [ 81800928E0F713DF31F3393CC26F4013 ] C:\Program Files\DivX\DivX Update\DivXUpdate.exe02:48:20.0658 0364 C:\Program Files\DivX\DivX Update\DivXUpdate.exe - ok02:48:20.0670 0364 [ 61216539E55DDF2F78E421E7EF140650 ] C:\Windows\System32\ExplorerFrame.dll02:48:20.0670 0364 C:\Windows\System32\ExplorerFrame.dll - ok02:48:20.0684 0364 [ C6235EF491612EF3BFAFACEC7FC0C254 ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe02:48:20.0684 0364 C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe - ok02:48:20.0695 0364 [ 901AA7A38CE13F14B6BBEC38C0595698 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe02:48:20.0695 0364 C:\Program Files\Microsoft Office\Office14\BCSSync.exe - ok02:48:20.0706 0364 [ BF08674925F151BD4537B89A493E3E0C ] C:\Windows\ehome\ehtray.exe02:48:20.0706 0364 C:\Windows\ehome\ehtray.exe - ok02:48:20.0716 0364 [ 6D9E1356A9C1B5F36698FAFF9205E34A ] C:\Program Files\Xvid\CheckUpdate.exe02:48:20.0716 0364 C:\Program Files\Xvid\CheckUpdate.exe - ok02:48:20.0732 0364 [ BCC412AC5943584ED691BA5715DF46EF ] C:\Program Files\V CAST Music with Rhapsody\rhapsody.exe02:48:20.0733 0364 C:\Program Files\V CAST Music with Rhapsody\rhapsody.exe - ok02:48:20.0747 0364 [ 61E4289E91E88C90478D7F4BEB10DCF7 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe02:48:20.0747 0364 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok02:48:20.0757 0364 [ 9F0A78629F451BAAFE21DFCCD887F087 ] C:\Program Files\Steam\steam.exe02:48:20.0757 0364 C:\Program Files\Steam\steam.exe - ok02:48:20.0767 0364 [ 06164026C38AA5366E4D127E2E36FDE8 ] C:\Program Files\Windows Mail\wab.exe02:48:20.0767 0364 C:\Program Files\Windows Mail\wab.exe - ok02:48:20.0780 0364 [ B5950DF243837D8217F4E597919B224A ] C:\Windows\System32\stobject.dll02:48:20.0780 0364 C:\Windows\System32\stobject.dll - ok02:48:20.0790 0364 [ EC69B16644C613F41A57169F8D068F1D ] C:\Windows\System32\batmeter.dll02:48:20.0790 0364 C:\Windows\System32\batmeter.dll - ok02:48:20.0801 0364 [ 395335431AD55C167CFDBBAB8420DA73 ] C:\Program Files\Movie Maker\DVDMaker.exe02:48:20.0801 0364 C:\Program Files\Movie Maker\DVDMaker.exe - ok02:48:20.0811 0364 [ 6F0DAB13529BCB7C0F8A3082A8B1CDE9 ] C:\Program Files\Windows Live\Messenger\msnmsgr.exe02:48:20.0811 0364 C:\Program Files\Windows Live\Messenger\msnmsgr.exe - ok02:48:20.0825 0364 [ 7F27323E0BA892B12C52E686E09F39D6 ] C:\Users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe02:48:20.0825 0364 C:\Users\Ken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok02:48:20.0830 0364 [ C2FB797884D9CC30AC0B5FB28146FE7A ] C:\Program Files\Windows Live\Messenger\uccapi.dll02:48:20.0830 0364 C:\Program Files\Windows Live\Messenger\uccapi.dll - ok02:48:20.0843 0364 [ CA55D2F9F9FC2708DD6BD26E8FEA76D8 ] C:\Program Files\Windows Live\Messenger\vvpltfrm.dll02:48:20.0843 0364 C:\Program Files\Windows Live\Messenger\vvpltfrm.dll - ok02:48:20.0853 0364 [ E08C81ABB98956BA1F571138BE8983FA ] C:\Program Files\Windows Live\Messenger\shareanything.dll02:48:20.0853 0364 C:\Program Files\Windows Live\Messenger\shareanything.dll - ok02:48:20.0863 0364 [ 30F02D9C55053367E26A11482F51E255 ] C:\Windows\System32\SndVolSSO.dll02:48:20.0863 0364 C:\Windows\System32\SndVolSSO.dll - ok02:48:20.0873 0364 [ B7ED332A57FC78CA29E40D3619550225 ] C:\Windows\ehome\ehshell.exe02:48:20.0873 0364 C:\Windows\ehome\ehshell.exe - ok02:48:20.0882 0364 [ 313B30189557A2E2793F845DE0F0A4D5 ] C:\Windows\ehome\ehSSO.dll02:48:20.0882 0364 C:\Windows\ehome\ehSSO.dll - ok02:48:20.0894 0364 [ 75AD59B9B12EB194486BE8D97B062994 ] C:\Windows\System32\pnidui.dll02:48:20.0894 0364 C:\Windows\System32\pnidui.dll - ok02:48:20.0903 0364 [ 52BC119E49F88F2A5D1466230B1275C7 ] C:\Program Files\Windows Collaboration\WinCollab.exe02:48:20.0903 0364 C:\Program Files\Windows Collaboration\WinCollab.exe - ok02:48:20.0917 0364 [ C4AB08459CD7B59B410ACFC04D90E87B ] C:\Program Files\Movie Maker\MOVIEMK.exe02:48:20.0917 0364 C:\Program Files\Movie Maker\MOVIEMK.exe - ok02:48:20.0932 0364 [ ABAEAEE763E287BDD39094C4165E1F3F ] C:\Windows\System32\fdProxy.dll02:48:20.0932 0364 C:\Windows\System32\fdProxy.dll - ok02:48:20.0943 0364 [ 4BAEC13BCAA595639EBB5185278DEFEA ] C:\Windows\System32\fdWSD.dll02:48:20.0943 0364 C:\Windows\System32\fdWSD.dll - ok02:48:20.0951 0364 [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\System32\mlang.dll02:48:20.0951 0364 C:\Windows\System32\mlang.dll - ok02:48:20.0960 0364 [ 4A839160ED1963F9A1526DDA2D1233B2 ] C:\Windows\System32\AltTab.dll02:48:20.0960 0364 C:\Windows\System32\AltTab.dll - ok02:48:20.0974 0364 [ C03AC1FBCD625F93D2C245D97E06F270 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe02:48:20.0974 0364 C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok02:48:20.0990 0364 [ 443C5961CACD4ABC16648874AF06E4A0 ] C:\Windows\System32\fdSSDP.dll02:48:20.0990 0364 C:\Windows\System32\fdSSDP.dll - ok02:48:20.0998 0364 [ 6B5C53E0932C510606D700B7A896EF73 ] C:\Windows\System32\WPDShServiceObj.dll02:48:20.0998 0364 C:\Windows\System32\WPDShServiceObj.dll - ok02:48:21.0009 0364 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll02:48:21.0009 0364 C:\Windows\System32\PortableDeviceTypes.dll - ok02:48:21.0017 0364 [ 069385484EA57B663D688894C88975C5 ] C:\Windows\System32\wuapp.exe02:48:21.0017 0364 C:\Windows\System32\wuapp.exe - ok02:48:21.0027 0364 [ 744F08CF9ACFFB1C715191D04DEEE907 ] C:\Windows\System32\srchadmin.dll02:48:21.0028 0364 C:\Windows\System32\srchadmin.dll - ok02:48:21.0036 0364 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll02:48:21.0037 0364 C:\Windows\System32\webcheck.dll - ok02:48:21.0045 0364 [ 4ACEA0C4BB15ACE55E3AE5EC4E88DD55 ] C:\Windows\System32\SyncCenter.dll02:48:21.0045 0364 C:\Windows\System32\SyncCenter.dll - ok02:48:21.0055 0364 [ 0B5AC46982E77CAF3EC1D55C9AC6AB56 ] C:\Windows\System32\wscntfy.dll02:48:21.0055 0364 C:\Windows\System32\wscntfy.dll - ok02:48:21.0067 0364 [ 7ADD03E75BEB9E6DD102C3081D29840A ] C:\Windows\System32\drivers\cdfs.sys02:48:21.0067 0364 C:\Windows\System32\drivers\cdfs.sys - ok02:48:21.0076 0364 [ 9B0726A03B790E5B82BED44D24009BEF ] C:\Windows\System32\imapi2.dll02:48:21.0076 0364 C:\Windows\System32\imapi2.dll - ok02:48:21.0087 0364 [ C653D7F4BDC08A06A187BF48050FE23C ] C:\Program Files\iTunes\iTunesHelper.dll02:48:21.0087 0364 C:\Program Files\iTunes\iTunesHelper.dll - ok02:48:21.0097 0364 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll02:48:21.0097 0364 C:\Windows\System32\mscoree.dll - ok02:48:21.0114 0364 [ ED3F7B4548A13561278BF6018D1364A0 ] C:\Windows\System32\stlang.dll02:48:21.0114 0364 C:\Windows\System32\stlang.dll - ok02:48:21.0130 0364 [ 36FDB8C775B1F7D2069B8C8D0CD09084 ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe02:48:21.0130 0364 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok02:48:21.0137 0364 [ C0ABD66F31C0B84CD944802E6D3D02C2 ] C:\Windows\System32\bthprops.cpl02:48:21.0137 0364 C:\Windows\System32\bthprops.cpl - ok02:48:21.0150 0364 [ 1B593FBB763150BD225DF266C69A9329 ] C:\Windows\System32\mfc42u.dll02:48:21.0151 0364 C:\Windows\System32\mfc42u.dll - ok02:48:21.0160 0364 [ CD5CF90696C0EDF98C80B8DF69F58062 ] C:\Program Files\Internet Explorer\sqmapi.dll02:48:21.0160 0364 C:\Program Files\Internet Explorer\sqmapi.dll - ok02:48:21.0168 0364 [ A1400CCB4D99E0B9E76EB45782D5C7FC ] C:\Windows\System32\ieui.dll02:48:21.0168 0364 C:\Windows\System32\ieui.dll - ok02:48:21.0177 0364 [ F15D2768A9DE5079727A3BEAD2164096 ] C:\Program Files\Internet Explorer\IEShims.dll02:48:21.0177 0364 C:\Program Files\Internet Explorer\IEShims.dll - ok02:48:21.0188 0364 [ A371EE84C0C5081ACC013B687D08D83C ] C:\Program Files\Internet Explorer\ieproxy.dll02:48:21.0188 0364 C:\Program Files\Internet Explorer\ieproxy.dll - ok02:48:21.0202 0364 [ 7659BE31CF936C49E3E59E3D40D755BA ] C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll02:48:21.0203 0364 C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll - ok02:48:21.0213 0364 [ CC5835E8F89B4355BCCA3B2603AC0679 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll02:48:21.0213 0364 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll - ok02:48:21.0222 0364 [ 49F948CC887587CA8F933CB0B6F2C8AC ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll02:48:21.0222 0364 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll - ok02:48:21.0232 0364 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\msvcr100.dll02:48:21.0232 0364 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\msvcr100.dll - ok02:48:21.0242 0364 [ 9BD7053026B4435E882C7161DF5DADFA ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\deploy.dll02:48:21.0243 0364 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\deploy.dll - ok02:48:21.0256 0364 [ 5CB17097A5752337977A9A7FED3A06E5 ] C:\Users\Ken\AppData\Roaming\Spotify\spotify.exe02:48:21.0256 0364 C:\Users\Ken\AppData\Roaming\Spotify\spotify.exe - ok02:48:21.0265 0364 [ 7E6EA9CB72B5DE84A5D700BED877E5F9 ] C:\Program Files\Windows Mail\WinMail.exe02:48:21.0265 0364 C:\Program Files\Windows Mail\WinMail.exe - ok02:48:21.0274 0364 [ 9E35FF7F943AE0FB89192BFE058B7FD4 ] C:\Program Files\Windows Sidebar\sidebar.exe02:48:21.0274 0364 C:\Program Files\Windows Sidebar\sidebar.exe - ok02:48:21.0288 0364 [ F77650C58484D6B1F27829E08A282AA0 ] C:\Program Files\Sandboxie\SbieCtrl.exe02:48:21.0288 0364 C:\Program Files\Sandboxie\SbieCtrl.exe - ok02:48:21.0295 0364 [ 57E68AE0BCEB0F70C8AA1C4A6D5C2050 ] C:\Windows\System32\jscript9.dll02:48:21.0295 0364 C:\Windows\System32\jscript9.dll - ok02:48:21.0306 0364 [ 2D821AFA5A1A9CA7F9F997A1AAD09E72 ] C:\Program Files\Windows Media Player\wmplayer.exe02:48:21.0306 0364 C:\Program Files\Windows Media Player\wmplayer.exe - ok02:48:21.0316 0364 [ AC6B8F8058EE27932F9AF8A2D959D201 ] C:\Windows\System32\msimtf.dll02:48:21.0316 0364 C:\Windows\System32\msimtf.dll - ok02:48:21.0327 0364 [ E47C854A28A81F2939F42CBE9FEA994C ] C:\Windows\System32\Magnify.exe02:48:21.0328 0364 C:\Windows\System32\Magnify.exe - ok02:48:21.0337 0364 [ F0CB496BE3D8E43DA8D9505ED8DC7CC1 ] C:\Program Files\PogoplugBackup\Pogoplug.exe02:48:21.0337 0364 C:\Program Files\PogoplugBackup\Pogoplug.exe - ok02:48:21.0350 0364 [ 27BB54357A51594D9F9B6257B5B9A879 ] C:\Windows\System32\Narrator.exe02:48:21.0350 0364 C:\Windows\System32\Narrator.exe - ok02:48:21.0360 0364 [ 37C23556FA5ED4066E9328A2281EB76F ] C:\Program Files\Pando Networks\Media Booster\PMB.exe02:48:21.0360 0364 C:\Program Files\Pando Networks\Media Booster\PMB.exe - ok02:48:21.0369 0364 [ 43D083268A0919F3527A2837390BAF63 ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe02:48:21.0369 0364 C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe - ok02:48:21.0381 0364 [ 877F2939794EBA4F3D1BB967007E99E8 ] C:\Windows\System32\osk.exe02:48:21.0381 0364 C:\Windows\System32\osk.exe - ok02:48:21.0391 0364 [ B75FDBF14073D72C50624CC8338DD534 ] C:\Program Files\DellSupport\DSAgnt.exe02:48:21.0391 0364 C:\Program Files\DellSupport\DSAgnt.exe - ok02:48:21.0401 0364 [ AFE3883FB37A5567C913E7DFCF2924A5 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe02:48:21.0401 0364 C:\Program Files\DAEMON Tools Lite\DTLite.exe - ok02:48:21.0415 0364 [ AAB979089E192ACC0FE1E3C018F8B591 ] C:\Users\Ken\AppData\Local\Akamai\netsession_win.exe02:48:21.0415 0364 C:\Users\Ken\AppData\Local\Akamai\netsession_win.exe - ok02:48:21.0426 0364 [ F03FFC962E18F36A922E61F96BE09925 ] C:\Program Files\Digital Line Detect\DLG.exe02:48:21.0426 0364 C:\Program Files\Digital Line Detect\DLG.exe - ok02:48:21.0436 0364 [ 0930656E3154516E19E9A5C5309023E6 ] C:\Program Files\McAfee Security Scan\2.1.121\SSScheduler.exe02:48:21.0436 0364 C:\Program Files\McAfee Security Scan\2.1.121\SSScheduler.exe - ok02:48:21.0446 0364 [ AC00643FA6E5E7AB035C1DA0105A396D ] C:\Program Files\Plex\Plex Media Center\Plex.exe02:48:21.0446 0364 C:\Program Files\Plex\Plex Media Center\Plex.exe - ok02:48:21.0456 0364 [ 104A6DC38776E3D84BBF2C879A85423C ] C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe02:48:21.0456 0364 C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe - ok02:48:21.0467 0364 [ CDE97F5441FD3416D79989564622727F ] C:\Users\Ken\AppData\Roaming\Pokémon Trading Card Game Online\Pokemon Trading Card Game Online.exe02:48:21.0467 0364 C:\Users\Ken\AppData\Roaming\Pokémon Trading Card Game Online\Pokemon Trading Card Game Online.exe - ok02:48:21.0475 0364 [ C559672F31ABE6BA7277DD73C4502238 ] C:\Windows\System32\msiexec.exe02:48:21.0476 0364 C:\Windows\System32\msiexec.exe - ok02:48:21.0498 0364 [ 0424B6097CD758E5DE492881E1F7619E ] C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe02:48:21.0498 0364 C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe - ok02:48:21.0504 0364 [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe02:48:21.0504 0364 C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok02:48:21.0514 0364 [ 584A5A6B2C9F63354FA294B1A5A198A5 ] C:\Program Files\Belarc\BelarcAdvisor\BelarcAdvisor.exe02:48:21.0514 0364 C:\Program Files\Belarc\BelarcAdvisor\BelarcAdvisor.exe - ok02:48:21.0527 0364 [ BF2F2717C13A4BD4FD73F2788534E86B ] C:\Program Files\Mozilla Firefox\firefox.exe02:48:21.0527 0364 C:\Program Files\Mozilla Firefox\firefox.exe - ok02:48:21.0535 0364 [ 7A316864F87CDD15DA91981D4C7EDDC0 ] C:\Program Files\Secunia\PSI\psi.exe02:48:21.0535 0364 C:\Program Files\Secunia\PSI\psi.exe - ok02:48:21.0544 0364 [ EA31DAF6E297C961F8B07906E5CF87C7 ] C:\Windows\Installer\{EE55714B-B67C-4D08-97AE-0CF4AC5A3A77}\SitExpander.exe_57DC898073DA481EAFD45E2D44B7F1AD.exe02:48:21.0545 0364 C:\Windows\Installer\{EE55714B-B67C-4D08-97AE-0CF4AC5A3A77}\SitExpander.exe_57DC898073DA481EAFD45E2D44B7F1AD.exe - ok02:48:21.0559 0364 [ C4A0673606F8A4D912646E2778630BDD ] C:\Program Files\Vuze\Azureus.exe02:48:21.0559 0364 C:\Program Files\Vuze\Azureus.exe - ok02:48:21.0568 0364 [ 75EDADF84D749D7792B9F2CB19F8C8B4 ] C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe02:48:21.0568 0364 C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe - ok02:48:21.0578 0364 [ 0D392EDE3B97E0B3131B2F63EF1DB94E ] C:\Program Files\Windows Defender\MSASCui.exe02:48:21.0579 0364 C:\Program Files\Windows Defender\MSASCui.exe - ok02:48:21.0589 0364 [ 000B70598782452D2EBD26918F551041 ] C:\Program Files\Windows Live\Mail\wlmail.exe02:48:21.0589 0364 C:\Program Files\Windows Live\Mail\wlmail.exe - ok02:48:21.0600 0364 [ FCBE52C7410791791EB1EF066D54FA1C ] C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe02:48:21.0600 0364 C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe - ok02:48:21.0617 0364 [ A00D5FBFABBF281FD059BB0CDA55B6E8 ] C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe02:48:21.0617 0364 C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok02:48:21.0630 0364 [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe02:48:21.0631 0364 C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe - ok02:48:21.0646 0364 [ 1ED2124313CCE34C877247574212EFC8 ] C:\Windows\System32\calc.exe02:48:21.0646 0364 C:\Windows\System32\calc.exe - ok02:48:21.0658 0364 [ 338104E0E18307CD65604FE317B5FB8D ] C:\Windows\System32\mblctr.exe02:48:21.0658 0364 C:\Windows\System32\mblctr.exe - ok02:48:21.0666 0364 [ B1AFF0B6DED627A1D22A6817DD58AC0F ] C:\Windows\System32\NetProj.exe02:48:21.0666 0364 C:\Windows\System32\NetProj.exe - ok02:48:21.0677 0364 [ 16FEE292E95EDC274385103E6B498019 ] C:\Windows\System32\mstsc.exe02:48:21.0677 0364 C:\Windows\System32\mstsc.exe - ok02:48:21.0689 0364 [ E80DB295132C5EF0C623935422BD0FC7 ] C:\Windows\System32\SnippingTool.exe02:48:21.0689 0364 C:\Windows\System32\SnippingTool.exe - ok02:48:21.0697 0364 [ 248F33A6C2380757BC1E20E34D9E827B ] C:\Windows\System32\SoundRecorder.exe02:48:21.0697 0364 C:\Windows\System32\SoundRecorder.exe - ok02:48:21.0708 0364 [ 9B89B3BB79EA1ACF041F40A7B6FC5827 ] C:\Windows\System32\mobsync.exe02:48:21.0708 0364 C:\Windows\System32\mobsync.exe - ok02:48:21.0721 0364 [ 19D0FC69D4E68D5CE2E4B34940529727 ] C:\Program Files\Windows NT\Accessories\wordpad.exe02:48:21.0721 0364 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok02:48:21.0727 0364 [ 105A4D87C8DCF2CF5DB042830B203E5F ] C:\Windows\Speech\Common\sapisvr.exe02:48:21.0727 0364 C:\Windows\Speech\Common\sapisvr.exe - ok02:48:21.0736 0364 [ A623666C8A8EC9A57DCA07915A3F1EC6 ] C:\Windows\System32\sdclt.exe02:48:21.0736 0364 C:\Windows\System32\sdclt.exe - ok02:48:21.0749 0364 [ BB4910DE8B6C5E30DF39EC97308D44BA ] C:\Windows\System32\charmap.exe02:48:21.0749 0364 C:\Windows\System32\charmap.exe - ok02:48:21.0765 0364 [ 2327C11B043FCEB80BE00CC8D077E9AA ] C:\Windows\System32\dfrgui.exe02:48:21.0765 0364 C:\Windows\System32\dfrgui.exe - ok02:48:21.0774 0364 [ 86AB3F6C784197DC1D994A83AF4259CD ] C:\Windows\System32\cleanmgr.exe02:48:21.0774 0364 C:\Windows\System32\cleanmgr.exe - ok02:48:21.0782 0364 [ FBF628702A408977FEB0845D48F4F154 ] C:\Windows\System32\migwiz\migwiz.exe02:48:21.0783 0364 C:\Windows\System32\migwiz\migwiz.exe - ok02:48:21.0790 0364 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll02:48:21.0790 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok02:48:21.0802 0364 [ F273D5F339F528A7B0C000F1AB82EA34 ] C:\Program Files\real\realplayer\realjbox.exe02:48:21.0802 0364 C:\Program Files\real\realplayer\realjbox.exe - ok02:48:21.0814 0364 [ 6EA0A7B3E030DAD132956538F75400B8 ] C:\Program Files\Steam\crashhandler.dll02:48:21.0814 0364 C:\Program Files\Steam\crashhandler.dll - ok02:48:21.0823 0364 [ 52C66C4AA985D962855056C5D9C644BB ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.dll02:48:21.0823 0364 C:\Program Files\DivX\DivX Media Server\DivXMediaServer.dll - ok02:48:21.0833 0364 [ F70A554333BCFAF67D20F1EC4D6A44B6 ] C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll02:48:21.0834 0364 C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll - ok02:48:21.0842 0364 [ 862363973DCBCC31DD161EF41A69153C ] C:\Windows\System32\odbc32.dll02:48:21.0842 0364 C:\Windows\System32\odbc32.dll - ok02:48:21.0848 0364 [ 34ED4524A7EBD74F4B8F4134E31EAEE1 ] C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll02:48:21.0848 0364 C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll - ok02:48:21.0858 0364 [ B9B5C142C75E7E2A95E7E958CF6EAB3A ] C:\Program Files\Xvid\autoupdate-windows.exe02:48:21.0858 0364 C:\Program Files\Xvid\autoupdate-windows.exe - ok02:48:21.0867 0364 [ D3D1CE8FF30786D50272DA3085149904 ] C:\Windows\System32\msinfo32.exe02:48:21.0867 0364 C:\Windows\System32\msinfo32.exe - ok02:48:21.0877 0364 [ A85BF26968E112EAA04FDD2E9585B297 ] C:\Program Files\Pando Networks\Media Booster\nspr4.dll02:48:21.0877 0364 C:\Program Files\Pando Networks\Media Booster\nspr4.dll - ok02:48:21.0887 0364 [ 295363D4317820AED0D527E15B90A8ED ] C:\Windows\System32\pdh.dll02:48:21.0887 0364 C:\Windows\System32\pdh.dll - ok02:48:21.0898 0364 [ 0D9EC40AF01938BEF0DBBF9F33660222 ] C:\Program Files\TRENDnet\TEW-424UB\WlanDll.dll02:48:21.0898 0364 C:\Program Files\TRENDnet\TEW-424UB\WlanDll.dll - ok02:48:21.0907 0364 [ CB1135906D951B574F9F2498BE8F11F9 ] C:\Program Files\Digital Line Detect\BVRPDiag.dll02:48:21.0907 0364 C:\Program Files\Digital Line Detect\BVRPDiag.dll - ok02:48:21.0918 0364 [ E9B39C81C87E5B790FCE121DA9E02701 ] C:\Windows\System32\d2d1.dll02:48:21.0918 0364 C:\Windows\System32\d2d1.dll - ok02:48:21.0928 0364 [ 1E5B9201721D9B687546A982323C030E ] C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe02:48:21.0928 0364 C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe - ok02:48:21.0937 0364 [ 80BD4B26E2CBC0D65445D0463DFF6FC2 ] C:\Windows\System32\oledlg.dll02:48:21.0937 0364 C:\Windows\System32\oledlg.dll - ok02:48:21.0948 0364 [ 0F4195B9B348DE5CF9B822F81704B20E ] C:\Windows\ehome\ehmsas.exe02:48:21.0948 0364 C:\Windows\ehome\ehmsas.exe - ok02:48:21.0959 0364 [ 0DAAF8032546D1B4543D7B101B53FD6C ] C:\Windows\System32\odbcint.dll02:48:21.0959 0364 C:\Windows\System32\odbcint.dll - ok02:48:21.0966 0364 [ 95D5AC5CCBE10E8B4B8A0DF41022568D ] C:\Windows\System32\rstrui.exe02:48:21.0966 0364 C:\Windows\System32\rstrui.exe - ok02:48:21.0974 0364 [ CABD1B34BD05C986B4DBC18BC0E947EE ] C:\Windows\System32\DWrite.dll Link to post Share on other sites More sharing options...
Last_Ditch Posted June 25, 2013 Author ID:695673 Share Posted June 25, 2013 02:48:21.0975 0364 C:\Windows\System32\DWrite.dll - ok 02:48:21.0984 0364 [ C9B520028498E5DA23651619F8A556D4 ] C:\Windows\System32\StikyNot.exe 02:48:21.0984 0364 C:\Windows\System32\StikyNot.exe - ok 02:48:21.0995 0364 [ 7122B0AA2212B07BBFC49BD22215BF3B ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 02:48:21.0995 0364 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok 02:48:22.0006 0364 [ C20436B4F0596ACD5569749206F99265 ] C:\Program Files\Windows Journal\Journal.exe 02:48:22.0006 0364 C:\Program Files\Windows Journal\Journal.exe - ok 02:48:22.0016 0364 [ 4A938E44BEB41641B70175DACAB1BBB0 ] C:\Windows\ehome\ehProxy.dll 02:48:22.0016 0364 C:\Windows\ehome\ehProxy.dll - ok 02:48:22.0026 0364 [ 36B6F71B6D7D280302B348145DB05A9F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe 02:48:22.0026 0364 C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe - ok 02:48:22.0035 0364 [ DF4217DDB34A0B73DC7AAC7829371C0C ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe 02:48:22.0035 0364 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok 02:48:22.0043 0364 [ AAAE543C535ED596ECAD2AB8761C2C6F ] C:\Windows\System32\dxgi.dll 02:48:22.0043 0364 C:\Windows\System32\dxgi.dll - ok 02:48:22.0054 0364 [ 4CAAD229A00C0DEFFF51841AE2B93B46 ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll 02:48:22.0054 0364 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll - ok 02:48:22.0068 0364 [ 1C474C0C4CB5F15A555FE912CBF4549C ] C:\Windows\System32\odbcad32.exe 02:48:22.0068 0364 C:\Windows\System32\odbcad32.exe - ok 02:48:22.0074 0364 [ 5256383D1D266A9EEFCDB270340C0E5C ] C:\Windows\System32\d3d10_1.dll 02:48:22.0074 0364 C:\Windows\System32\d3d10_1.dll - ok 02:48:22.0084 0364 [ A441F5B43EAF4BD4E3ACFBE38841B46B ] C:\Windows\System32\d3d10_1core.dll 02:48:22.0084 0364 C:\Windows\System32\d3d10_1core.dll - ok 02:48:22.0092 0364 [ 4A4C71376ECA305D6DEA021F1A44816D ] C:\Windows\System32\d3d10warp.dll 02:48:22.0092 0364 C:\Windows\System32\d3d10warp.dll - ok 02:48:22.0101 0364 [ 1CB1B95D67BC380FBCCFAEA3CF2DDA80 ] C:\Windows\System32\iscsicpl.exe 02:48:22.0101 0364 C:\Windows\System32\iscsicpl.exe - ok 02:48:22.0112 0364 [ 8D865A3E7E2C78317EDE4EAE8316284F ] C:\Windows\System32\MdSched.exe 02:48:22.0112 0364 C:\Windows\System32\MdSched.exe - ok 02:48:22.0122 0364 [ 7629E9BB2FF06EACA62580A2C1D4FE6A ] C:\Windows\System32\msconfig.exe 02:48:22.0122 0364 C:\Windows\System32\msconfig.exe - ok 02:48:22.0132 0364 [ 8B02D2ECC7EF6E1F6AF08459E3F741F6 ] C:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.22573_none_e3504f4b6f0c972b\d3d10.dll 02:48:22.0132 0364 C:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.22573_none_e3504f4b6f0c972b\d3d10.dll - ok 02:48:22.0140 0364 [ 518545E8CBD79EBF42891A6066578118 ] C:\Program Files\CCleaner\CCleaner.exe 02:48:22.0140 0364 C:\Program Files\CCleaner\CCleaner.exe - ok 02:48:22.0153 0364 [ 9C7094F537782A82B6A29B4A7172E180 ] C:\Windows\System32\d3d10core.dll 02:48:22.0153 0364 C:\Windows\System32\d3d10core.dll - ok 02:48:22.0160 0364 [ 413E667E7BC59B5C3AFB2D3216694F0C ] C:\Program Files\CCleaner\uninst.exe 02:48:22.0160 0364 C:\Program Files\CCleaner\uninst.exe - ok 02:48:22.0170 0364 [ 0B0296FDC8A4AC5B395A7B0AF9059342 ] C:\Program Files\Dell\Music Photos Videos Launcher\Launcher.exe 02:48:22.0170 0364 C:\Program Files\Dell\Music Photos Videos Launcher\Launcher.exe - ok 02:48:22.0178 0364 [ 7511E2588A373C8B6AA2FBDE267A5708 ] C:\Program Files\DivX\DivX Converter\DivX Converter.exe 02:48:22.0179 0364 C:\Program Files\DivX\DivX Converter\DivX Converter.exe - ok 02:48:22.0189 0364 [ C1A9A5A649D5F678FAAFA14F1D9095D1 ] C:\Program Files\DivX\DivX Control Panel\DivXControlPanelLauncher.exe 02:48:22.0189 0364 C:\Program Files\DivX\DivX Control Panel\DivXControlPanelLauncher.exe - ok 02:48:22.0200 0364 [ 5CDABA3D16072FFF5EA30C9AD0BAE708 ] C:\Program Files\DivX\DivX Plus Converter\DivXConverterLauncher.exe 02:48:22.0200 0364 C:\Program Files\DivX\DivX Plus Converter\DivXConverterLauncher.exe - ok 02:48:22.0216 0364 [ 9955B059A7245857B322A48D28EFCA4B ] C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe 02:48:22.0216 0364 C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe - ok 02:48:22.0221 0364 [ 4462E06B2EAA5387EA20A61E4B3B5CC3 ] C:\Program Files\DVD Decrypter\DVDDecrypter.exe 02:48:22.0221 0364 C:\Program Files\DVD Decrypter\DVDDecrypter.exe - ok 02:48:22.0231 0364 [ 50DC642234539AB3D014A6598EA02A86 ] C:\Program Files\DVD Decrypter\uninstall.exe 02:48:22.0231 0364 C:\Program Files\DVD Decrypter\uninstall.exe - ok 02:48:22.0242 0364 [ 0A87198FACE29466307AEC11AE1AFC6B ] C:\Program Files\DVD Shrink\DVD Shrink 3.2.exe 02:48:22.0242 0364 C:\Program Files\DVD Shrink\DVD Shrink 3.2.exe - ok 02:48:22.0253 0364 [ ADA23DCD5DD87CA957AAF1DE9D6CE292 ] C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL 02:48:22.0253 0364 C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL - ok 02:48:22.0263 0364 [ 984CFEA6CBC8E5EDD9498CD7AFCD18EC ] C:\Program Files\Pando Networks\Media Booster\plc4.dll 02:48:22.0264 0364 C:\Program Files\Pando Networks\Media Booster\plc4.dll - ok 02:48:22.0273 0364 [ BF15CE70E055955FAFD81A18EC1C0771 ] C:\Program Files\DVD Shrink\unins000.exe 02:48:22.0274 0364 C:\Program Files\DVD Shrink\unins000.exe - ok 02:48:22.0287 0364 [ 4A8D768B66471C80DB22E2B5B4A213B3 ] C:\Program Files\DVDFab 8 Qt\ProfileEditor.exe 02:48:22.0287 0364 C:\Program Files\DVDFab 8 Qt\ProfileEditor.exe - ok 02:48:22.0301 0364 [ 670337623FB4EBF08FF440CEAC465A98 ] C:\Program Files\DVDFab 8 Qt\DVDFab.exe 02:48:22.0301 0364 C:\Program Files\DVDFab 8 Qt\DVDFab.exe - ok 02:48:22.0308 0364 [ A5B932A139B02793E3E4A826678646C5 ] C:\Program Files\DVDFab 8 Qt\unins000.exe 02:48:22.0308 0364 C:\Program Files\DVDFab 8 Qt\unins000.exe - ok 02:48:22.0319 0364 [ 626F198768F67A0FEB3AD909E638F551 ] C:\Windows\System32\WindowsAnytimeUpgrade.exe 02:48:22.0319 0364 C:\Windows\System32\WindowsAnytimeUpgrade.exe - ok 02:48:22.0329 0364 [ B6774F04D769864408ECF7B48F78D942 ] C:\Program Files\ffdshow\makeAVIS.exe 02:48:22.0329 0364 C:\Program Files\ffdshow\makeAVIS.exe - ok 02:48:22.0337 0364 [ A33452A42BDF214E7FC40CB470515605 ] C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe 02:48:22.0338 0364 C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe - ok 02:48:22.0350 0364 [ EF868F732847BDD031B8CDFD8D0BA26C ] C:\Program Files\ffdshow\unins000.exe 02:48:22.0350 0364 C:\Program Files\ffdshow\unins000.exe - ok 02:48:22.0355 0364 [ 507F75E56E453B6956E05DB6FB1FF682 ] C:\Program Files\Steam\steamerrorreporter.exe 02:48:22.0355 0364 C:\Program Files\Steam\steamerrorreporter.exe - ok 02:48:22.0363 0364 [ 4304D04DFDAAE621171A2F955981016E ] C:\Program Files\Microsoft Games\Chess\Chess.exe 02:48:22.0367 0364 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok 02:48:22.0378 0364 [ 21AD332BE723EFE40D9F32AD97BA8376 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe 02:48:22.0378 0364 C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok 02:48:22.0390 0364 [ 6ED28075D6D9E0C0464048A30432A142 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe 02:48:22.0390 0364 C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok 02:48:22.0402 0364 [ EFF7DBEE92519EB96F70E1E31FDE7098 ] C:\Program Files\Microsoft Games\inkball\inkball.exe 02:48:22.0402 0364 C:\Program Files\Microsoft Games\inkball\inkball.exe - ok 02:48:22.0415 0364 [ 7A88900F2F11882FFCE3BF3D4EAEFB4B ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe 02:48:22.0415 0364 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok 02:48:22.0425 0364 [ C8C383E6AA546780B2AD3034D6F6ACEF ] C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe 02:48:22.0425 0364 C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe - ok 02:48:22.0433 0364 [ 3F903BDD206EB3C688651048B5E304E1 ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe 02:48:22.0433 0364 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok 02:48:22.0443 0364 [ 07302F014858D038CB93CC349505D0E6 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe 02:48:22.0443 0364 C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok 02:48:22.0454 0364 [ 401A203AB058DEC44BD44AA81BF2CB64 ] C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe 02:48:22.0454 0364 C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe - ok 02:48:22.0463 0364 [ 8ADC47F0897DCCA57FF0D58738028521 ] C:\Program Files\GRETECH\GomPlayer\GomWiz.exe 02:48:22.0463 0364 C:\Program Files\GRETECH\GomPlayer\GomWiz.exe - ok 02:48:22.0473 0364 [ B309C18F9A0D94B61A433CA6DD29FE40 ] C:\Program Files\TRENDnet\TEW-424UB\WPSCtrl.dll 02:48:22.0473 0364 C:\Program Files\TRENDnet\TEW-424UB\WPSCtrl.dll - ok 02:48:22.0489 0364 [ 471D6BFD9AA2F5A1880CB1D959CEB229 ] C:\Program Files\GRETECH\GomPlayer\Uninstall.exe 02:48:22.0489 0364 C:\Program Files\GRETECH\GomPlayer\Uninstall.exe - ok 02:48:22.0512 0364 [ BF9E83CB6E790A2D619E2A3600CB6237 ] C:\Program Files\Haali\MatroskaSplitter\gdsmux.exe 02:48:22.0512 0364 C:\Program Files\Haali\MatroskaSplitter\gdsmux.exe - ok 02:48:22.0522 0364 [ 403AEE57E3D28289A9C50B1EB50D9810 ] C:\Program Files\Haali\MatroskaSplitter\uninstall.exe 02:48:22.0523 0364 C:\Program Files\Haali\MatroskaSplitter\uninstall.exe - ok 02:48:22.0533 0364 [ 0011AC7B83C557D3273A1E093BD46F8E ] C:\Program Files\HitmanPro\HitmanPro.exe 02:48:22.0533 0364 C:\Program Files\HitmanPro\HitmanPro.exe - ok 02:48:22.0560 0364 [ 88D3F73B4125328C4E79FE89F5068CC1 ] C:\Program Files\iTunes\iTunes.exe 02:48:22.0560 0364 C:\Program Files\iTunes\iTunes.exe - ok 02:48:22.0569 0364 [ 9658E2BD6D67AAC42B8A906E01129E85 ] C:\Program Files\MagicISO\MagicISO.exe 02:48:22.0569 0364 C:\Program Files\MagicISO\MagicISO.exe - ok 02:48:22.0578 0364 [ 3A938ED2427DF10E571041069E6980CB ] C:\Program Files\MagicISO\UNWISE.EXE 02:48:22.0578 0364 C:\Program Files\MagicISO\UNWISE.EXE - ok 02:48:22.0591 0364 [ BF899F57858B8C6F162D9EEB2370641C ] C:\Windows\System32\wercon.exe 02:48:22.0591 0364 C:\Windows\System32\wercon.exe - ok 02:48:22.0600 0364 [ 3141224EEBA075BC085175E60CD14782 ] C:\Windows\System32\msra.exe 02:48:22.0600 0364 C:\Windows\System32\msra.exe - ok 02:48:22.0610 0364 [ CD18E303B47E126EAACDEFAD26B006B2 ] C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe 02:48:22.0610 0364 C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe - ok 02:48:22.0616 0364 [ C22983E20481AA2E07E564632C82B81E ] C:\Program Files\DAEMON Tools Lite\Engine.dll 02:48:22.0616 0364 C:\Program Files\DAEMON Tools Lite\Engine.dll - ok 02:48:22.0628 0364 [ 0486B27A7A31EDFA9F92A7F6BBC964E5 ] C:\Windows\System32\stapi32.dll 02:48:22.0629 0364 C:\Windows\System32\stapi32.dll - ok 02:48:22.0637 0364 [ 6793734153D6FD3C4E81D1F12D88957F ] C:\Program Files\McAfee Security Scan\uninstall.exe 02:48:22.0637 0364 C:\Program Files\McAfee Security Scan\uninstall.exe - ok 02:48:22.0647 0364 [ 8367988DC0585700CFA758F18A2EF1AC ] C:\Windows\System32\ac3config.exe 02:48:22.0647 0364 C:\Windows\System32\ac3config.exe - ok 02:48:22.0661 0364 [ 8C04DFEC2438CF43D575B2B03F23E24A ] C:\Windows\System32\C2MP\DivXConfig.exe 02:48:22.0661 0364 C:\Windows\System32\C2MP\DivXConfig.exe - ok 02:48:22.0675 0364 [ 2D7C1F659699D6DA65E1F9B70B84C2C4 ] C:\Windows\System32\C2MP\GSpot.exe 02:48:22.0675 0364 C:\Windows\System32\C2MP\GSpot.exe - ok 02:48:22.0686 0364 [ 7CD104D7791EC5DC4EE6FA1AE57325D4 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtCore4.dll 02:48:22.0686 0364 C:\Program Files\Common Files\DivX Shared\Qt4.8\QtCore4.dll - ok 02:48:22.0695 0364 [ 82A98D0EB83505529AD81E4C1FADC37D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll 02:48:22.0695 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok 02:48:22.0706 0364 [ A2CC385D7BD26001AF002E8BD98E05AE ] C:\Program Files\Pando Networks\Media Booster\BugSplat.dll 02:48:22.0707 0364 C:\Program Files\Pando Networks\Media Booster\BugSplat.dll - ok 02:48:22.0724 0364 [ D9963D39F6711E9A1C14C939C3A25605 ] C:\Windows\System32\mdmxsdk.dll 02:48:22.0724 0364 C:\Windows\System32\mdmxsdk.dll - ok 02:48:22.0733 0364 [ CADBD5403066F0FFB5780E7EC7F941CA ] C:\Windows\System32\C2MP\Uninst.exe 02:48:22.0733 0364 C:\Windows\System32\C2MP\Uninst.exe - ok 02:48:22.0742 0364 [ C39AD6299E0E1F7AA3F5B51AC9B5CD0E ] C:\Windows\System32\C2MP\AviC.exe 02:48:22.0742 0364 C:\Windows\System32\C2MP\AviC.exe - ok 02:48:22.0751 0364 [ 7CE40A557359849EA374E0E4DDE52E26 ] C:\Windows\System32\C2MP\MiniCalc.exe 02:48:22.0751 0364 C:\Windows\System32\C2MP\MiniCalc.exe - ok 02:48:22.0767 0364 [ 95CAEF9DA6E9AEE1ECD627527CFA0F38 ] C:\Windows\System32\C2MP\OGMCalc.exe 02:48:22.0767 0364 C:\Windows\System32\C2MP\OGMCalc.exe - ok 02:48:22.0781 0364 [ 487AF46145B81C5BC54873E764F93636 ] C:\Windows\System32\C2MP\StatsReader.exe 02:48:22.0781 0364 C:\Windows\System32\C2MP\StatsReader.exe - ok 02:48:22.0790 0364 [ 625020DE1DBE6A19EDF26916A127AD3D ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\outicon.exe 02:48:22.0790 0364 C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\outicon.exe - ok 02:48:22.0801 0364 [ D75E7F29044AC6713AEABE3936490D30 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\misc.exe 02:48:22.0801 0364 C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\misc.exe - ok 02:48:22.0813 0364 [ E85D3155D40F86279E6A5A3489ACC095 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\cagicon.exe 02:48:22.0813 0364 C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\cagicon.exe - ok 02:48:22.0823 0364 [ 0AE8BFCD467ED749575EBF2A5CC7E732 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\msouc.exe 02:48:22.0823 0364 C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\msouc.exe - ok 02:48:22.0840 0364 [ B61315F9701F911648524F77308899A5 ] C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\oisicon.exe 02:48:22.0840 0364 C:\Windows\Installer\{91140000-001A-0000-0000-0000000FF1CE}\oisicon.exe - ok 02:48:22.0852 0364 [ 859642746B575ECE7DEAE9915631CB87 ] C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE 02:48:22.0852 0364 C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE - ok 02:48:22.0866 0364 [ F721DA9797379AD77617E754E3334376 ] C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe 02:48:22.0866 0364 C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe - ok 02:48:22.0872 0364 [ B6384C99ED7472F39977B1A2663C2BE2 ] C:\Program Files\Common Files\microsoft shared\Works Shared\WksCal.exe 02:48:22.0872 0364 C:\Program Files\Common Files\microsoft shared\Works Shared\WksCal.exe - ok 02:48:22.0888 0364 [ FE01A9088D1E62B0A4A31084CC6E43FC ] C:\Program Files\Microsoft Works\WksSb.exe 02:48:22.0888 0364 C:\Program Files\Microsoft Works\WksSb.exe - ok 02:48:22.0899 0364 [ CE56C2B2D0EE4669F2C193147A83E6B7 ] C:\Program Files\Microsoft Works\wksss.exe 02:48:22.0899 0364 C:\Program Files\Microsoft Works\wksss.exe - ok 02:48:22.0910 0364 [ B11DC3D321AA003E6BEB770DC2911D2A ] C:\Program Files\Microsoft Works\WksWP.exe 02:48:22.0910 0364 C:\Program Files\Microsoft Works\WksWP.exe - ok 02:48:22.0920 0364 [ F4BCC0C5F6E88F9C9A18DBCE748963B1 ] C:\Program Files\NetWaiting\NetWaiting.exe 02:48:22.0920 0364 C:\Program Files\NetWaiting\NetWaiting.exe - ok 02:48:22.0930 0364 [ 99818062462065F94DC8AB2FB44068BE ] C:\Program Files\Steam\tier0_s.dll 02:48:22.0930 0364 C:\Program Files\Steam\tier0_s.dll - ok 02:48:22.0941 0364 [ 8F6117E54499AC5ED54E8DD43C35EB84 ] C:\Program Files\Notepad++\notepad++.exe 02:48:22.0941 0364 C:\Program Files\Notepad++\notepad++.exe - ok 02:48:22.0952 0364 [ B5D7BBD83870C9D59D1F6160DD3D71E0 ] C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe 02:48:22.0952 0364 C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe - ok 02:48:22.0965 0364 [ 9CECDDA4EDD0D37499B862DC14C1B65C ] C:\Program Files\real\realplayer\rpwa3260.dll 02:48:22.0965 0364 C:\Program Files\real\realplayer\rpwa3260.dll - ok 02:48:22.0976 0364 [ 74B2D4C4DAEAF401C73DE8F7A5491331 ] C:\Program Files\TRENDnet\TEW-424UB\WlanWPS.dll 02:48:22.0976 0364 C:\Program Files\TRENDnet\TEW-424UB\WlanWPS.dll - ok 02:48:22.0985 0364 [ A7532E66EA2F168A0970E829D8986423 ] C:\Program Files\Steam\dbghelp.dll 02:48:22.0985 0364 C:\Program Files\Steam\dbghelp.dll - ok 02:48:22.0995 0364 [ 5FDB273EC4A139CC7F58A4F9FF4A08F7 ] C:\Program Files\Pando Networks\Media Booster\nss3.dll 02:48:22.0995 0364 C:\Program Files\Pando Networks\Media Booster\nss3.dll - ok 02:48:23.0007 0364 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll 02:48:23.0007 0364 C:\Windows\System32\msvcr100_clr0400.dll - ok 02:48:23.0021 0364 [ 966D8AC2491FF009B6BB3F335F6EF8A5 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtGui4.dll 02:48:23.0021 0364 C:\Program Files\Common Files\DivX Shared\Qt4.8\QtGui4.dll - ok 02:48:23.0032 0364 [ 1FB67269E80F7F831445915D43120157 ] C:\Program Files\Steam\vstdlib_s.dll 02:48:23.0032 0364 C:\Program Files\Steam\vstdlib_s.dll - ok 02:48:23.0043 0364 [ 7F3A97D8DE1F044FDE1C7BC66BC4BE4F ] C:\Program Files\TRENDnet\TEW-424UB\RtlLib.dll 02:48:23.0043 0364 C:\Program Files\TRENDnet\TEW-424UB\RtlLib.dll - ok 02:48:23.0054 0364 [ 142BBD9373F7F278C5D9ECA6756BA8A8 ] C:\Users\Ken\AppData\Roaming\Spotify\Data\libcef.dll 02:48:23.0054 0364 C:\Users\Ken\AppData\Roaming\Spotify\Data\libcef.dll - ok 02:48:23.0065 0364 [ 68EC8AB5E5E4D3E29589C8D2FB6DC96D ] C:\Program Files\Pando Networks\Media Booster\softokn3.dll 02:48:23.0065 0364 C:\Program Files\Pando Networks\Media Booster\softokn3.dll - ok 02:48:23.0077 0364 [ 564E468E1422FDD64A958A66B05B4D91 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll 02:48:23.0077 0364 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok 02:48:23.0086 0364 [ 0A990AFB9F2726323D61C8ECB8B70B17 ] C:\Windows\System32\security.dll 02:48:23.0087 0364 C:\Windows\System32\security.dll - ok 02:48:23.0095 0364 [ 22E04A8AE1ABA831026F8F3328F85995 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll 02:48:23.0096 0364 C:\Program Files\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll - ok 02:48:23.0104 0364 [ 3A84E46897EA16D0EF2FAE3B9E4C9B07 ] C:\Program Files\Google\Picasa3\Uninstall.exe 02:48:23.0105 0364 C:\Program Files\Google\Picasa3\Uninstall.exe - ok 02:48:23.0120 0364 [ E98D0D64BD25EDCFD3AE0B90514099BA ] C:\Windows\Installer\{EA1FAE0F-2354-4E32-B423-ABAE8E358F91}\recordingmanager.exe 02:48:23.0120 0364 C:\Windows\Installer\{EA1FAE0F-2354-4E32-B423-ABAE8E358F91}\recordingmanager.exe - ok 02:48:23.0132 0364 [ 3EEEF4496535D442A3940A9009186B12 ] C:\Program Files\real\realplayer\realconverter.exe 02:48:23.0132 0364 C:\Program Files\real\realplayer\realconverter.exe - ok 02:48:23.0141 0364 [ E799DC41BB87DCA823233BC984379AAA ] C:\Program Files\real\realplayer\realtrimmer.exe 02:48:23.0141 0364 C:\Program Files\real\realplayer\realtrimmer.exe - ok 02:48:23.0151 0364 [ 80F943DC6E1E7B0D89BA07ADA9DC120C ] C:\Program Files\Common Files\Real\Plugins\basi3260.dll 02:48:23.0151 0364 C:\Program Files\Common Files\Real\Plugins\basi3260.dll - ok 02:48:23.0162 0364 [ E26EBBF5B1FE277C8FCAFBEBB9585EC2 ] C:\Program Files\Recuva\Recuva.exe 02:48:23.0162 0364 C:\Program Files\Recuva\Recuva.exe - ok 02:48:23.0193 0364 [ FB4EEB0360929CBA3196FBF053CDCFB9 ] C:\Program Files\Recuva\uninst.exe 02:48:23.0193 0364 C:\Program Files\Recuva\uninst.exe - ok 02:48:23.0210 0364 [ E2A5F51D91B0A10381747A97983DC5A1 ] C:\Users\Ken\AppData\Roaming\Spotify\Data\icudt.dll 02:48:23.0210 0364 C:\Users\Ken\AppData\Roaming\Spotify\Data\icudt.dll - ok 02:48:23.0220 0364 [ 336BD49193BAA48546421DAC30E3344A ] C:\Windows\Installer\{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}\MainIcon.exe 02:48:23.0220 0364 C:\Windows\Installer\{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}\MainIcon.exe - ok 02:48:23.0240 0364 [ 493F0AC5E6E8ABB4E58690249146C5B0 ] C:\Program Files\Sandboxie\Start.exe 02:48:23.0240 0364 C:\Program Files\Sandboxie\Start.exe - ok 02:48:23.0249 0364 [ 64B82BE29788FE667BA19913D176E5CB ] C:\Windows\Installer\SandboxieInstall32.exe 02:48:23.0249 0364 C:\Windows\Installer\SandboxieInstall32.exe - ok 02:48:23.0258 0364 [ 94FF7D87E0639701DF79A40C436149C5 ] C:\Windows\System32\wlanui.dll 02:48:23.0258 0364 C:\Windows\System32\wlanui.dll - ok 02:48:23.0268 0364 [ 1108B166160D6023AF76435B074052B6 ] C:\Program Files\InstallShield Installation Information\{B1BDEA80-95CE-4DFB-B9D3-DC800E7F87B4}\setup.exe 02:48:23.0268 0364 C:\Program Files\InstallShield Installation Information\{B1BDEA80-95CE-4DFB-B9D3-DC800E7F87B4}\setup.exe - ok 02:48:23.0285 0364 [ F24DC728A5284121B87B7C4314582A75 ] C:\Program Files\Pando Networks\Media Booster\plds4.dll 02:48:23.0285 0364 C:\Program Files\Pando Networks\Media Booster\plds4.dll - ok 02:48:23.0295 0364 [ 10980B501F20F9CBA822127BA9CC00DA ] C:\Program Files\V CAST Music with Rhapsody\WiseUpd2.exe 02:48:23.0295 0364 C:\Program Files\V CAST Music with Rhapsody\WiseUpd2.exe - ok 02:48:23.0310 0364 [ 3A938ED2427DF10E571041069E6980CB ] C:\Program Files\V CAST Music with Rhapsody\Unwise32.exe 02:48:23.0311 0364 C:\Program Files\V CAST Music with Rhapsody\Unwise32.exe - ok 02:48:23.0322 0364 [ 60EDF8622CAD337A3629E9E6561EAC73 ] C:\Program Files\VideoLAN\VLC\vlc.exe 02:48:23.0322 0364 C:\Program Files\VideoLAN\VLC\vlc.exe - ok 02:48:23.0331 0364 [ F6D5B1943A0C5D31FD9132C530A4B031 ] C:\Program Files\WinAce\winace.exe 02:48:23.0331 0364 C:\Program Files\WinAce\winace.exe - ok 02:48:23.0343 0364 [ ADE3384FBF2314072424F01F45E17067 ] C:\Program Files\Common Files\DivX Shared\Qt4.8\QtXml4.dll 02:48:23.0343 0364 C:\Program Files\Common Files\DivX Shared\Qt4.8\QtXml4.dll - ok 02:48:23.0353 0364 [ 09EFB6439C76E94059C5E22409926B48 ] C:\Users\Ken\AppData\Local\temp\BRC5BE.tmp 02:48:23.0353 0364 C:\Users\Ken\AppData\Local\temp\BRC5BE.tmp - ok 02:48:23.0368 0364 [ 10B7FDBEC25B646FC0D9D0B9C2AA8DFB ] C:\Program Files\WinAce\order.exe 02:48:23.0368 0364 C:\Program Files\WinAce\order.exe - ok 02:48:23.0390 0364 [ FDA1BA7B2179F29D6DEB3DEC9C9037D0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll 02:48:23.0390 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll - ok 02:48:23.0401 0364 [ FF0ACA55FDCFCCF444F5F40E0D0E69C0 ] C:\Program Files\WinAce\sxuninst.exe 02:48:23.0401 0364 C:\Program Files\WinAce\sxuninst.exe - ok 02:48:23.0411 0364 [ 0D2D1D85D299A43A9076FCB4C7ECEE81 ] C:\Program Files\Windows Live\Mesh\WLSync.exe 02:48:23.0411 0364 C:\Program Files\Windows Live\Mesh\WLSync.exe - ok 02:48:23.0428 0364 [ 091014DF9AD0C0C3D6C1F3DDAE5867D6 ] C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe 02:48:23.0428 0364 C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe - ok 02:48:23.0436 0364 [ 97BACFD757C2F626D2B98ACAECA44C08 ] C:\Program Files\Wizards of the Coast\Magic Online\Renamer.exe 02:48:23.0436 0364 C:\Program Files\Wizards of the Coast\Magic Online\Renamer.exe - ok 02:48:23.0447 0364 [ 885B26318B25D30C50A8E42937ED983D ] C:\Program Files\InstallShield Installation Information\{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}\setup.exe 02:48:23.0447 0364 C:\Program Files\InstallShield Installation Information\{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}\setup.exe - ok 02:48:23.0464 0364 [ C83470111578D3039DB619529AF40720 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll 02:48:23.0464 0364 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok 02:48:23.0472 0364 [ 3A72AB0BAF2DC1AE0BA6E1EE28FFCC0B ] C:\Windows\System32\msftedit.dll 02:48:23.0472 0364 C:\Windows\System32\msftedit.dll - ok 02:48:23.0482 0364 [ 8795AFF4BD4A5EC1ED81B7A469F20919 ] C:\Program Files\TRENDnet\TEW-424UB\IpLib.dll 02:48:23.0482 0364 C:\Program Files\TRENDnet\TEW-424UB\IpLib.dll - ok 02:48:23.0493 0364 [ A924D39668F9618F3843D2FA6669378F ] C:\Program Files\Pando Networks\Media Booster\ssl3.dll 02:48:23.0493 0364 C:\Program Files\Pando Networks\Media Booster\ssl3.dll - ok 02:48:23.0503 0364 [ 479268EE20B9EB00B2300EF211D05B7B ] C:\Program Files\DivX\DivX Media Server\mc_net_tools.dll 02:48:23.0503 0364 C:\Program Files\DivX\DivX Media Server\mc_net_tools.dll - ok 02:48:23.0519 0364 [ BFDEDA37DE512BDEE122F8339DBFE711 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll 02:48:23.0519 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll - ok 02:48:23.0528 0364 [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Windows\System32\D3DCompiler_43.dll 02:48:23.0528 0364 C:\Windows\System32\D3DCompiler_43.dll - ok 02:48:23.0540 0364 [ 81322F09E392689B2AF50C65714175D6 ] C:\Program Files\DellSupport\gtagnt.dll 02:48:23.0540 0364 C:\Program Files\DellSupport\gtagnt.dll - ok 02:48:23.0553 0364 [ 5E21285DA720664CEC9B57664D4D2407 ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll 02:48:23.0553 0364 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok 02:48:23.0568 0364 [ F1ED09F4F1FE819031F9140B76F20395 ] C:\Program Files\TRENDnet\TEW-424UB\libeay32.dll 02:48:23.0568 0364 C:\Program Files\TRENDnet\TEW-424UB\libeay32.dll - ok 02:48:23.0583 0364 [ FD6218D4831F7A9D59313606F28FDCA8 ] C:\Program Files\Pando Networks\Media Booster\smime3.dll 02:48:23.0584 0364 C:\Program Files\Pando Networks\Media Booster\smime3.dll - ok 02:48:23.0592 0364 [ 55C5164E03D707AEFC8B7C97B7074564 ] C:\Program Files\DivX\DivX Media Server\mc_net_source.dll 02:48:23.0592 0364 C:\Program Files\DivX\DivX Media Server\mc_net_source.dll - ok 02:48:23.0602 0364 [ 86E39E9161C3D930D93822F1563C280D ] C:\Windows\System32\D3DX9_43.dll 02:48:23.0602 0364 C:\Windows\System32\D3DX9_43.dll - ok 02:48:23.0612 0364 [ 9A1ED0B28AD9CFB5E506BD51439F3F17 ] C:\Program Files\DellSupport\cfgdata.dll 02:48:23.0612 0364 C:\Program Files\DellSupport\cfgdata.dll - ok 02:48:23.0620 0364 [ FA54697620A923BACA6FE897B971BB28 ] C:\Program Files\DivX\DivX Media Server\mc_parser_sdp.dll 02:48:23.0621 0364 C:\Program Files\DivX\DivX Media Server\mc_parser_sdp.dll - ok 02:48:23.0631 0364 [ 08AD4CD2A940379F1DCDBDB9884A1375 ] C:\Users\Ken\AppData\Local\temp\BRE540.tmp 02:48:23.0631 0364 C:\Users\Ken\AppData\Local\temp\BRE540.tmp - ok 02:48:23.0641 0364 [ E5BC8D93CDCB957146D971647849A154 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll 02:48:23.0641 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok 02:48:23.0657 0364 [ 8DB479E065F2B546BFBD7323E5EE5B02 ] C:\Windows\System32\Macromed\Flash\Flash32_11_7_700_224.ocx 02:48:23.0657 0364 C:\Windows\System32\Macromed\Flash\Flash32_11_7_700_224.ocx - ok 02:48:23.0669 0364 [ 4235107CAA0BCE7E872C4355329FC06E ] C:\Program Files\DellSupport\actmgr.dll 02:48:23.0669 0364 C:\Program Files\DellSupport\actmgr.dll - ok 02:48:23.0679 0364 [ 46D0CD070F09596DC5ECC3BF88DABD5D ] C:\Program Files\Xvid\uninstall.exe 02:48:23.0679 0364 C:\Program Files\Xvid\uninstall.exe - ok 02:48:23.0692 0364 [ FA31E5F1D353649141D3C78278DD7579 ] C:\Program Files\Xvid\MiniConvert.exe 02:48:23.0692 0364 C:\Program Files\Xvid\MiniConvert.exe - ok 02:48:23.0701 0364 [ 3A2EEE8444A8E5C1A454C57B2198F5FC ] C:\Windows\System32\ntlanman.dll 02:48:23.0701 0364 C:\Windows\System32\ntlanman.dll - ok 02:48:23.0711 0364 [ C39AD6299E0E1F7AA3F5B51AC9B5CD0E ] C:\Program Files\Xvid\AviC.exe 02:48:23.0711 0364 C:\Program Files\Xvid\AviC.exe - ok 02:48:23.0725 0364 [ CFBD2E1FE18B50748A76703A2DC6D4E3 ] C:\Windows\System32\davclnt.dll 02:48:23.0725 0364 C:\Windows\System32\davclnt.dll - ok 02:48:23.0741 0364 [ 582EFE56FC0858E58A6CEBA2A64B02C7 ] C:\Windows\System32\drprov.dll 02:48:23.0742 0364 C:\Windows\System32\drprov.dll - ok 02:48:23.0746 0364 [ 7CE40A557359849EA374E0E4DDE52E26 ] C:\Program Files\Xvid\MiniCalc.exe 02:48:23.0746 0364 C:\Program Files\Xvid\MiniCalc.exe - ok 02:48:23.0757 0364 [ 487AF46145B81C5BC54873E764F93636 ] C:\Program Files\Xvid\StatsReader.exe 02:48:23.0757 0364 C:\Program Files\Xvid\StatsReader.exe - ok 02:48:23.0772 0364 [ A5013F152486A54234133DFA5DA4FC3B ] C:\Program Files\DivX\DivX Media Server\mc_upnp_dlna_stack.dll 02:48:23.0772 0364 C:\Program Files\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok 02:48:23.0781 0364 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll 02:48:23.0781 0364 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok 02:48:23.0793 0364 [ 13820B972D74B3DE4F6552A57AC799A7 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll 02:48:23.0793 0364 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok 02:48:23.0806 0364 [ 979C780C57D5099DFA4F00E23EDB64D5 ] C:\Program Files\DivX\DivX Media Server\mc_mux_mp2.dll 02:48:23.0806 0364 C:\Program Files\DivX\DivX Media Server\mc_mux_mp2.dll - ok 02:48:23.0822 0364 [ 07BBB3CBB86D2626B46BC1D210C4781B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll 02:48:23.0822 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok 02:48:23.0834 0364 [ CE2E76F684D2AB30CB03CCEC73FFA269 ] C:\Program Files\DivX\DivX Media Server\mc_enc_mp2v.dll 02:48:23.0834 0364 C:\Program Files\DivX\DivX Media Server\mc_enc_mp2v.dll - ok 02:48:23.0843 0364 [ C19068FF2E23CBC394C7984844795B95 ] C:\Program Files\PogoplugBackup\PPCommon.dll 02:48:23.0843 0364 C:\Program Files\PogoplugBackup\PPCommon.dll - ok 02:48:23.0854 0364 [ 91F90CF9DA4C3F5B634BB72511FF2614 ] C:\Program Files\Pando Networks\Media Booster\freebl3.dll 02:48:23.0854 0364 C:\Program Files\Pando Networks\Media Booster\freebl3.dll - ok 02:48:23.0867 0364 [ FCE0F4575E9D27AF0085A19E454E2C45 ] C:\Program Files\DivX\DivX Media Server\mc_enc_mpa.dll 02:48:23.0867 0364 C:\Program Files\DivX\DivX Media Server\mc_enc_mpa.dll - ok 02:48:23.0875 0364 [ CBB7256D634B0DDEC801196620FC6EDC ] C:\Program Files\PogoplugBackup\CefSharp.dll 02:48:23.0875 0364 C:\Program Files\PogoplugBackup\CefSharp.dll - ok 02:48:23.0890 0364 [ E35514FC402F6268333529384CFD7B20 ] C:\Users\Ken\AppData\Local\temp\BRED6C.tmp 02:48:23.0890 0364 C:\Users\Ken\AppData\Local\temp\BRED6C.tmp - ok 02:48:23.0900 0364 [ 015E99A7634B93E8BB0380C70F3D2CC3 ] C:\Windows\System32\wmp.dll 02:48:23.0900 0364 C:\Windows\System32\wmp.dll - ok 02:48:23.0906 0364 [ EACACA0F2FF4CC54A909E3C5721FCDE8 ] C:\Windows\System32\msvfw32.dll 02:48:23.0906 0364 C:\Windows\System32\msvfw32.dll - ok 02:48:23.0920 0364 [ FE56897B27ED266F9C4E7D90A0B5DA47 ] C:\Program Files\iPod\bin\iPodService.exe 02:48:23.0920 0364 C:\Program Files\iPod\bin\iPodService.exe - ok 02:48:23.0929 0364 [ FA9AA80A151D0E5365EFB722D4B2A2F3 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll 02:48:23.0929 0364 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok 02:48:23.0939 0364 [ 9F12AAB1AE134DB2628C46BCF556AC78 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll 02:48:23.0939 0364 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok 02:48:23.0953 0364 [ F2533D0A9C2F344B9DAFEDF9ED3BE754 ] C:\Program Files\DellSupport\GTAction\handlers\brkrsvch.dll 02:48:23.0953 0364 C:\Program Files\DellSupport\GTAction\handlers\brkrsvch.dll - ok 02:48:23.0965 0364 [ 9441A231C0AA0712F7CF3B10D9CFCF76 ] C:\Windows\System32\wmploc.DLL 02:48:23.0965 0364 C:\Windows\System32\wmploc.DLL - ok 02:48:23.0975 0364 [ B7B74ED585689A98360E77D85313C523 ] C:\Program Files\PogoplugBackup\libcef.dll 02:48:23.0975 0364 C:\Program Files\PogoplugBackup\libcef.dll - ok 02:48:23.0984 0364 [ 4C96E5B53EAF63BCBEA6FA79C9A0AE59 ] C:\Windows\System32\VAN.dll 02:48:23.0985 0364 C:\Windows\System32\VAN.dll - ok 02:48:23.0996 0364 [ 4EC8572B3E74DB47F45A1BC9750950EF ] C:\Windows\System32\xwizards.dll 02:48:23.0996 0364 C:\Windows\System32\xwizards.dll - ok 02:48:24.0004 0364 [ D1B995DD331CC987CF5AF255DFC4D417 ] C:\Windows\System32\xwtpw32.dll 02:48:24.0005 0364 C:\Windows\System32\xwtpw32.dll - ok 02:48:24.0019 0364 [ 1017DC8EA498A5CDBBBBB482FBF36333 ] C:\Windows\System32\RASMM.dll 02:48:24.0019 0364 C:\Windows\System32\RASMM.dll - ok 02:48:24.0029 0364 [ 63E3520ADC155653CB86E5FC37EB32DD ] C:\Windows\System32\WlanMM.dll 02:48:24.0029 0364 C:\Windows\System32\WlanMM.dll - ok 02:48:24.0040 0364 [ 8CBE8BB8E439B8DCAA4978510619118C ] C:\Windows\System32\ndfapi.dll 02:48:24.0040 0364 C:\Windows\System32\ndfapi.dll - ok 02:48:24.0058 0364 [ 896F1DAE48558CE96AF012C7E594CCC6 ] C:\Program Files\DellSupport\GTAction\handlers\grouph.dll 02:48:24.0058 0364 C:\Program Files\DellSupport\GTAction\handlers\grouph.dll - ok 02:48:24.0068 0364 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll 02:48:24.0070 0364 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok 02:48:24.0078 0364 [ F61EFF66EEDEFEAAD0601EB701CCEA12 ] C:\Program Files\DellSupport\GTAction\handlers\pnph.dll 02:48:24.0078 0364 C:\Program Files\DellSupport\GTAction\handlers\pnph.dll - ok 02:48:24.0088 0364 [ 214E09E68CBCB03502EAFC6A4360A91C ] C:\Program Files\PogoplugBackup\PPAPI.dll 02:48:24.0088 0364 C:\Program Files\PogoplugBackup\PPAPI.dll - ok 02:48:24.0102 0364 [ 2C064074F387C64A46081424D3A2A7E0 ] C:\Program Files\PogoplugBackup\NLog.dll 02:48:24.0102 0364 C:\Program Files\PogoplugBackup\NLog.dll - ok 02:48:24.0112 0364 [ D7999068E94589045BB8C5380AC79937 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\15872842e3e63ddf0f720f406706198e\System.ni.dll 02:48:24.0112 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\15872842e3e63ddf0f720f406706198e\System.ni.dll - ok 02:48:24.0123 0364 [ DEC08D7B15E3C1722F6575946D2B5D01 ] C:\Program Files\DellSupport\GTAction\handlers\qdiagh.dll 02:48:24.0123 0364 C:\Program Files\DellSupport\GTAction\handlers\qdiagh.dll - ok 02:48:24.0132 0364 [ B45F3D98A83B6E17599FD8E70ED5D9AE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b573c6a62bb88df0ee2af59b6a8ca910\System.Drawing.ni.dll 02:48:24.0133 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b573c6a62bb88df0ee2af59b6a8ca910\System.Drawing.ni.dll - ok 02:48:24.0144 0364 [ 755AD13D0042329925E2FAF3D070326D ] C:\Program Files\DellSupport\GTAction\handlers\trgloadh.dll 02:48:24.0144 0364 C:\Program Files\DellSupport\GTAction\handlers\trgloadh.dll - ok 02:48:24.0155 0364 [ 027491B39A7B16B116E780F55ABC288E ] C:\Users\Ken\AppData\Local\temp\BR273.tmp 02:48:24.0155 0364 C:\Users\Ken\AppData\Local\temp\BR273.tmp - ok 02:48:24.0166 0364 [ 6472D141970830F856778DE71EB93319 ] C:\Program Files\DellSupport\GTAction\handlers\trgregh.dll 02:48:24.0166 0364 C:\Program Files\DellSupport\GTAction\handlers\trgregh.dll - ok 02:48:24.0184 0364 [ F3B40E8216522857BDFAC50E78586551 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\153143f74d840484b510d8cf5187796b\System.Windows.Forms.ni.dll 02:48:24.0184 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\153143f74d840484b510d8cf5187796b\System.Windows.Forms.ni.dll - ok 02:48:24.0194 0364 [ A210F1AC135E5331C314CE5F394FB5A5 ] C:\Users\Ken\AppData\Local\temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll 02:48:24.0194 0364 C:\Users\Ken\AppData\Local\temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll - ok 02:48:24.0204 0364 [ 7D1A10A1F3562CCA1FD38E9BADA8FEC0 ] C:\Windows\System32\perfos.dll 02:48:24.0204 0364 C:\Windows\System32\perfos.dll - ok 02:48:24.0216 0364 [ 65D09D8BC91D74C8800725EB33D1EE1B ] C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll 02:48:24.0216 0364 C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll - ok 02:48:24.0231 0364 [ 7D1913E59C79AB565A73020F8BD13B40 ] C:\Program Files\DellSupport\trgmgr.dll 02:48:24.0231 0364 C:\Program Files\DellSupport\trgmgr.dll - ok 02:48:24.0241 0364 [ 2B88728D15315DED15598F87A018294B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\233661f3a2b632e9553915c8639637d0\System.Configuration.ni.dll 02:48:24.0241 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\233661f3a2b632e9553915c8639637d0\System.Configuration.ni.dll - ok 02:48:24.0251 0364 [ 2310A32BB0164552A311BFA02102A3D6 ] C:\Windows\System32\msvcp60.dll 02:48:24.0252 0364 C:\Windows\System32\msvcp60.dll - ok 02:48:24.0262 0364 [ 65D09D8BC91D74C8800725EB33D1EE1B ] C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll 02:48:24.0262 0364 C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - ok 02:48:24.0275 0364 [ 5CA2A1DBE29AEA7F0B5D2848A8D03F58 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43cd41484df96d15df949eb17dd88152\System.Xml.ni.dll 02:48:24.0275 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43cd41484df96d15df949eb17dd88152\System.Xml.ni.dll - ok 02:48:24.0289 0364 [ 7C5393905B52C3DC56A810C823DA4211 ] C:\Program Files\DellSupport\qdiagd.ocx 02:48:24.0289 0364 C:\Program Files\DellSupport\qdiagd.ocx - ok 02:48:24.0301 0364 [ E50A1DB5DE70D656287511297B42F9F2 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll 02:48:24.0301 0364 C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - ok 02:48:24.0312 0364 [ 85A2F736D68412184C41AFCC185F0584 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\2f9e0112e10f9e70d3430d0be9863976\System.Core.ni.dll 02:48:24.0312 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\2f9e0112e10f9e70d3430d0be9863976\System.Core.ni.dll - ok 02:48:24.0329 0364 [ 9E4F520270BF7301CC24E8FA67791C22 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll 02:48:24.0329 0364 C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - ok 02:48:24.0340 0364 [ 72FAB2C90296330ECA3787DC4093E208 ] C:\Users\Ken\AppData\Local\temp\BR3F54.tmp 02:48:24.0340 0364 C:\Users\Ken\AppData\Local\temp\BR3F54.tmp - ok 02:48:24.0348 0364 [ 3C3947042FD2D375CEFCE24C6F733A5B ] C:\Program Files\DellSupport\gdql_d.dll 02:48:24.0348 0364 C:\Program Files\DellSupport\gdql_d.dll - ok 02:48:24.0359 0364 [ 5A75521F155B0BAD159CD1B40125EFAD ] C:\Program Files\DellSupport\AUInst.dll 02:48:24.0359 0364 C:\Program Files\DellSupport\AUInst.dll - ok 02:48:24.0375 0364 [ F7A7FC8BBE03E2F0F2D6B1A5AF67217B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\be692307d47b83000bba8bb6b484aff0\System.ServiceModel.ni.dll 02:48:24.0375 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\be692307d47b83000bba8bb6b484aff0\System.ServiceModel.ni.dll - ok 02:48:24.0384 0364 [ D11F24E1FE46A1F97F878AF20F56BA26 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6f120c76113dc5166d2a5a5d21900f39\System.Data.ni.dll 02:48:24.0384 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\6f120c76113dc5166d2a5a5d21900f39\System.Data.ni.dll - ok 02:48:24.0394 0364 [ 29B86B3C8253280151EEBE843A9648CD ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll 02:48:24.0394 0364 C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll - ok 02:48:24.0407 0364 [ 7B0A5601AE4B785BBCCDC521AC5CB28C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\2609614ca03927f7a99418c74844059b\System.Runtime.Serialization.ni.dll 02:48:24.0407 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\2609614ca03927f7a99418c74844059b\System.Runtime.Serialization.ni.dll - ok 02:48:24.0412 0364 [ 5178E8D74A2AC625C0489972099BC38F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\ac9e3eca6c148504588e7c6d09fe83e3\System.Management.ni.dll 02:48:24.0412 0364 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\ac9e3eca6c148504588e7c6d09fe83e3\System.Management.ni.dll - ok 02:48:24.0423 0364 [ BCED95C3424E3316D455E19B671ACEEC ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll 02:48:24.0423 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll - ok 02:48:24.0437 0364 [ F723422A11CD6FA13036746272200993 ] C:\Windows\System32\wbem\cimwin32.dll 02:48:24.0438 0364 C:\Windows\System32\wbem\cimwin32.dll - ok 02:48:24.0447 0364 [ 67BB7141F7F5F37411F796943B3418B6 ] C:\Windows\System32\framedynos.dll 02:48:24.0447 0364 C:\Windows\System32\framedynos.dll - ok 02:48:24.0456 0364 [ 18DC21CC80856AB7CA10F51B19CEEA2A ] C:\Program Files\PogoplugBackup\PogoplugMonitor.exe 02:48:24.0456 0364 C:\Program Files\PogoplugBackup\PogoplugMonitor.exe - ok 02:48:24.0466 0364 [ AC5DB309B4390402044066F4D3E8B787 ] C:\Program Files\PogoplugBackup\avcodec-53.dll 02:48:24.0466 0364 C:\Program Files\PogoplugBackup\avcodec-53.dll - ok 02:48:24.0481 0364 [ B4EB1E7438DC099078CE8FE6E5A2C99D ] C:\Users\Ken\AppData\Local\temp\BR5313.tmp 02:48:24.0481 0364 C:\Users\Ken\AppData\Local\temp\BR5313.tmp - ok 02:48:24.0492 0364 [ B70B9C4E47FF1F0E1F95FBDFD8B74A8A ] C:\Program Files\PogoplugBackup\avutil-51.dll 02:48:24.0492 0364 C:\Program Files\PogoplugBackup\avutil-51.dll - ok 02:48:24.0507 0364 [ B24BF80927D3D0A391CB8426F7CB290D ] C:\Users\Ken\AppData\Local\temp\BR5575.tmp 02:48:24.0507 0364 C:\Users\Ken\AppData\Local\temp\BR5575.tmp - ok 02:48:24.0518 0364 [ D1B495032F5760EDB341C43D4732FD19 ] C:\Program Files\PogoplugBackup\avformat-53.dll 02:48:24.0518 0364 C:\Program Files\PogoplugBackup\avformat-53.dll - ok 02:48:24.0530 0364 [ 360B5E2C91140CCA141B5CF51969F5B0 ] C:\Program Files\PogoplugBackup\icudt.dll 02:48:24.0530 0364 C:\Program Files\PogoplugBackup\icudt.dll - ok 02:48:24.0542 0364 [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Program Files\PogoplugBackup\d3dcompiler_43.dll 02:48:24.0543 0364 C:\Program Files\PogoplugBackup\d3dcompiler_43.dll - ok 02:48:24.0558 0364 [ 86E39E9161C3D930D93822F1563C280D ] C:\Program Files\PogoplugBackup\d3dx9_43.dll 02:48:24.0558 0364 C:\Program Files\PogoplugBackup\d3dx9_43.dll - ok 02:48:24.0569 0364 [ 4C17E41BF444F453CC5FB553A85EC930 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll 02:48:24.0569 0364 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok 02:48:24.0578 0364 [ 059491AB94E76A651E41A2BBA80783AC ] C:\Program Files\PogoplugBackup\libGLESv2.dll 02:48:24.0578 0364 C:\Program Files\PogoplugBackup\libGLESv2.dll - ok 02:48:24.0588 0364 [ 159C77F7F995D0E27A51E8D9EEF11B30 ] C:\Program Files\PogoplugBackup\libEGL.dll 02:48:24.0588 0364 C:\Program Files\PogoplugBackup\libEGL.dll - ok 02:48:24.0599 0364 [ 06A4D5EA68AF9D86AA9406B4C0E54176 ] C:\Program Files\PogoplugBackup\PPLocale.dll 02:48:24.0599 0364 C:\Program Files\PogoplugBackup\PPLocale.dll - ok 02:48:24.0609 0364 [ 1153F58FACBC9731AF6CDF313F76DF29 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll 02:48:24.0609 0364 C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - ok 02:48:24.0620 0364 [ BADFB0DCCD9B7E9F2F6EB7954D24EED1 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll 02:48:24.0620 0364 C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - ok 02:48:24.0634 0364 [ EEEB86077BB4682B3FCFEDA5AED3E396 ] C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll 02:48:24.0634 0364 C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - ok 02:48:24.0644 0364 [ E50A1DB5DE70D656287511297B42F9F2 ] C:\Program Files\QuickTime\Plugins\npqtplugin.dll 02:48:24.0645 0364 C:\Program Files\QuickTime\Plugins\npqtplugin.dll - ok 02:48:24.0653 0364 [ 13C1E611F3C3758BB2E4249A712900FE ] C:\Windows\System32\nvshext.dll 02:48:24.0653 0364 C:\Windows\System32\nvshext.dll - ok 02:48:24.0659 0364 [ 9E4F520270BF7301CC24E8FA67791C22 ] C:\Program Files\QuickTime\Plugins\npqtplugin2.dll 02:48:24.0659 0364 C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - ok 02:48:24.0669 0364 [ 1153F58FACBC9731AF6CDF313F76DF29 ] C:\Program Files\QuickTime\Plugins\npqtplugin3.dll 02:48:24.0669 0364 C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - ok 02:48:24.0686 0364 [ BADFB0DCCD9B7E9F2F6EB7954D24EED1 ] C:\Program Files\QuickTime\Plugins\npqtplugin4.dll 02:48:24.0686 0364 C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - ok 02:48:24.0696 0364 [ EEEB86077BB4682B3FCFEDA5AED3E396 ] C:\Program Files\QuickTime\Plugins\npqtplugin5.dll 02:48:24.0696 0364 C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - ok 02:48:24.0706 0364 [ 7E2B763CF671ADB558D5F7110889D469 ] C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL 02:48:24.0706 0364 C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL - ok 02:48:24.0716 0364 [ 7B882AEBC5F6DBEA4E0361C0FC3E36D4 ] C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL 02:48:24.0716 0364 C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL - ok 02:48:24.0725 0364 [ F833DD5D8F959819F44BC98F47B1B6BB ] C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll 02:48:24.0725 0364 C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - ok 02:48:24.0738 0364 [ B938C1AE3ADCE166190895685B0BEB0D ] C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll 02:48:24.0739 0364 C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll - ok 02:48:24.0750 0364 [ 55F213A61B82B6174B02881562FE20A0 ] C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll 02:48:24.0750 0364 C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll - ok 02:48:24.0760 0364 [ DCA3FA9F9DD103DC39C24C85EF073DB1 ] C:\Windows\System32\icmp.dll 02:48:24.0760 0364 C:\Windows\System32\icmp.dll - ok 02:48:24.0771 0364 [ BA7C3E9DD6B1A632124C8659E8014028 ] C:\Windows\System32\perfctrs.dll 02:48:24.0771 0364 C:\Windows\System32\perfctrs.dll - ok 02:48:24.0786 0364 [ 64DD7FB3C0FDFFDC853835739E271FF9 ] C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcpluir.dll 02:48:24.0786 0364 C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcpluir.dll - ok 02:48:24.0803 0364 [ F3B302C554FCA6C3BE17164A159BE29E ] C:\Program Files\DAEMON Tools Lite\imgengine.dll 02:48:24.0804 0364 C:\Program Files\DAEMON Tools Lite\imgengine.dll - ok 02:48:24.0813 0364 [ C548328E9DE5EB73350EF292D7140662 ] C:\Program Files\Google\Picasa3\npPicasa3.dll 02:48:24.0814 0364 C:\Program Files\Google\Picasa3\npPicasa3.dll - ok 02:48:24.0836 0364 [ 3D928B3FE97C403A33F803B3D1A260C9 ] C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll 02:48:24.0836 0364 C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll - ok 02:48:24.0845 0364 [ D0DA6B2FB50A0667CF4BACC2AEFEA009 ] C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll 02:48:24.0845 0364 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll - ok 02:48:24.0856 0364 [ FED935F9471C4F28CDFBCA604D08BD65 ] C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll 02:48:24.0856 0364 C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll - ok 02:48:24.0868 0364 [ D40B9183C149CE2CBBE93AC1A275BDA9 ] C:\Program Files\VideoLAN\VLC\npvlc.dll 02:48:24.0868 0364 C:\Program Files\VideoLAN\VLC\npvlc.dll - ok 02:48:24.0879 0364 [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll 02:48:24.0879 0364 C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - ok 02:48:24.0904 0364 [ 270EE43CC00609B9937AAF94E1E970D4 ] C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll 02:48:24.0904 0364 C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - ok 02:48:24.0910 0364 [ 6D657ABADF217DBB17CF0A0AF44A7E29 ] C:\ProgramData\NexonUS\NGM\npNxGameUS.dll 02:48:24.0910 0364 C:\ProgramData\NexonUS\NGM\npNxGameUS.dll - ok 02:48:24.0923 0364 [ F7015E6C5FE1E74C0E029A291E732787 ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll 02:48:24.0923 0364 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - ok 02:48:24.0933 0364 [ 395BB0421E1C57D201DCE4D48E05E0BA ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll 02:48:24.0933 0364 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - ok 02:48:24.0944 0364 [ BF115DE08783E9FA8A9BB83DAA39149B ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll 02:48:24.0944 0364 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - ok 02:48:24.0955 0364 [ A56B8E622037E6D57480F16F4B8F472C ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll 02:48:24.0955 0364 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - ok 02:48:24.0965 0364 [ 6D48C42BF2DC4225353B86F2E2B90CFA ] C:\Windows\System32\WLanConn.dll 02:48:24.0965 0364 C:\Windows\System32\WLanConn.dll - ok 02:48:24.0975 0364 [ 3D76B5C0E02ECC19C1F5756E8FD97F72 ] C:\Windows\System32\Macromed\Flash\NPSWF32_11_7_700_224.dll 02:48:24.0975 0364 C:\Windows\System32\Macromed\Flash\NPSWF32_11_7_700_224.dll - ok 02:48:24.0985 0364 [ 7A1E2AF50DDCDD49C114C1099DBEF6E1 ] C:\Windows\System32\npDeployJava1.dll 02:48:24.0985 0364 C:\Windows\System32\npDeployJava1.dll - ok 02:48:25.0001 0364 [ A5C14075B571AF1C9592595BE724D9D2 ] C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll 02:48:25.0001 0364 C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll - ok 02:48:25.0013 0364 [ AB87EEFFD18F2BAAFC274E7075EA6C67 ] C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll 02:48:25.0013 0364 C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - ok 02:48:25.0025 0364 [ 9F01950A89FF64D16CEC2836785FA600 ] C:\Program Files\real\realplayer\Netscape6\nppl3260.dll 02:48:25.0025 0364 C:\Program Files\real\realplayer\Netscape6\nppl3260.dll - ok 02:48:25.0033 0364 [ B90EE25DEF386CD4D8D8D4CEFB7B5E9C ] C:\Program Files\real\realplayer\Netscape6\nprpplugin.dll 02:48:25.0034 0364 C:\Program Files\real\realplayer\Netscape6\nprpplugin.dll - ok 02:48:25.0043 0364 [ 35937EAD711207544E219C2A19A78A7D ] C:\Program Files\Windows Media Player\wmpnscfg.exe 02:48:25.0043 0364 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok 02:48:25.0056 0364 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 02:48:25.0056 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok 02:48:25.0065 0364 [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files\Google\Update\1.3.21.145\goopdateres_en.dll 02:48:25.0065 0364 C:\Program Files\Google\Update\1.3.21.145\goopdateres_en.dll - ok 02:48:25.0074 0364 [ 8078F8F8F7A79E2E6B494523A828C585 ] C:\Windows\System32\msdtckrm.dll 02:48:25.0074 0364 C:\Windows\System32\msdtckrm.dll - ok 02:48:25.0084 0364 [ 555A69C1886EAAA8235D699F989BE874 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\dw20.exe 02:48:25.0084 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\dw20.exe - ok 02:48:25.0097 0364 [ 77784A2BD5912A4EC6284255865526BC ] C:\Windows\System32\Faultrep.dll 02:48:25.0097 0364 C:\Windows\System32\Faultrep.dll - ok 02:48:25.0112 0364 [ 7BEDD051B53821B040EAD42DB0724848 ] C:\Windows\System32\WerFault.exe 02:48:25.0116 0364 C:\Windows\System32\WerFault.exe - ok 02:48:25.0121 0364 [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\System32\dsound.dll 02:48:25.0121 0364 C:\Windows\System32\dsound.dll - ok 02:48:25.0129 0364 [ 447983959A8CF49C4CC3B65DED69AF28 ] C:\Windows\System32\dbgeng.dll 02:48:25.0129 0364 C:\Windows\System32\dbgeng.dll - ok 02:48:25.0138 0364 [ 350C07726EB6C4BF05224E6327BDDC8B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll 02:48:25.0138 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll - ok 02:48:25.0150 0364 [ 53C847F33D51E21CAC27923D18092B49 ] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 02:48:25.0150 0364 C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe - ok 02:48:25.0158 0364 [ FD647CA82ACF232DBE5F20345647B948 ] C:\Windows\AppPatch\AcGenral.dll 02:48:25.0158 0364 C:\Windows\AppPatch\AcGenral.dll - ok 02:48:25.0170 0364 [ FD435DF8C9CA7A49CCBF7CD2F7627739 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll 02:48:25.0170 0364 C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll - ok 02:48:25.0180 0364 [ F8D8BB3F6173FFF00128612F33D3197A ] C:\Windows\System32\wbem\WMIADAP.exe 02:48:25.0180 0364 C:\Windows\System32\wbem\WMIADAP.exe - ok 02:48:25.0194 0364 [ 8B2D61CA83825CEAD423228ACD40CFBC ] C:\Windows\System32\loadperf.dll 02:48:25.0194 0364 C:\Windows\System32\loadperf.dll - ok 02:48:25.0203 0364 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll 02:48:25.0203 0364 C:\Windows\System32\msls31.dll - ok 02:48:25.0214 0364 [ 012A965F34414458075EF4F0EDC11536 ] C:\Windows\winsxs\x86_microsoft-windows-windowscodecext_31bf3856ad364e35_7.0.6002.18107_none_86efc43840ac1e52\WindowsCodecsExt.dll 02:48:25.0214 0364 C:\Windows\winsxs\x86_microsoft-windows-windowscodecext_31bf3856ad364e35_7.0.6002.18107_none_86efc43840ac1e52\WindowsCodecsExt.dll - ok 02:48:25.0227 0364 [ 2C7B4E944A48B9A07B7BF2AB262F197E ] C:\Windows\System32\icm32.dll 02:48:25.0227 0364 C:\Windows\System32\icm32.dll - ok 02:48:25.0237 0364 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\System32\dxtrans.dll 02:48:25.0237 0364 C:\Windows\System32\dxtrans.dll - ok 02:48:25.0247 0364 [ 734DAA4FEAC6905BCFB30410D6C7E003 ] C:\Windows\System32\ddrawex.dll 02:48:25.0248 0364 C:\Windows\System32\ddrawex.dll - ok 02:48:25.0260 0364 [ FA2A3AFADC4FB47DBC234A4E57F92CDB ] C:\Windows\System32\ddraw.dll 02:48:25.0260 0364 C:\Windows\System32\ddraw.dll - ok 02:48:25.0271 0364 [ EF764E33878B3A4A9E5A2FB5D0D031D0 ] C:\Windows\System32\dciman32.dll 02:48:25.0271 0364 C:\Windows\System32\dciman32.dll - ok 02:48:25.0282 0364 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\System32\dxtmsft.dll 02:48:25.0282 0364 C:\Windows\System32\dxtmsft.dll - ok 02:48:25.0291 0364 [ 98638A4CA187245C469DA0DEC4F04A45 ] C:\Windows\System32\pautoenr.dll 02:48:25.0291 0364 C:\Windows\System32\pautoenr.dll - ok 02:48:25.0311 0364 [ AC48FD62E22C4425879FCA5A63F50497 ] C:\Windows\System32\certcli.dll 02:48:25.0311 0364 C:\Windows\System32\certcli.dll - ok 02:48:25.0324 0364 [ 0053319C4438CDE659AA75C19BBD22F1 ] C:\Windows\System32\CertEnroll.dll 02:48:25.0324 0364 C:\Windows\System32\CertEnroll.dll - ok 02:48:25.0334 0364 [ 6631A497282972C1C4AD44FC948CC46A ] C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe 02:48:25.0334 0364 C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe - ok 02:48:25.0344 0364 [ 7E38DA8C11833B99766A97CEE3F80F07 ] C:\Windows\System32\oleaccrc.dll 02:48:25.0344 0364 C:\Windows\System32\oleaccrc.dll - ok 02:48:25.0355 0364 [ 1A3CDEB8DD26216DD2017F31A4BCCC9E ] C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.dll 02:48:25.0355 0364 C:\Windows\System32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.dll - ok 02:48:25.0369 0364 [ D5F991812FBDAF65AB3DA8783ED9BDBF ] C:\ProgramData\NVIDIA\Updatus\Packages\00000eaf\drsupdate.13728286_RUNASUSER.exe 02:48:25.0369 0364 C:\ProgramData\NVIDIA\Updatus\Packages\00000eaf\drsupdate.13728286_RUNASUSER.exe - ok 02:48:25.0380 0364 [ 8CC053D87B788241CDFBE1DC28F934F0 ] C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe 02:48:25.0380 0364 C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe - ok 02:48:25.0394 0364 [ C17103AE9072A06DA581DEC998343FC1 ] C:\Users\UPDATU~1\AppData\Local\temp\nsm6BDD.tmp\System.dll 02:48:25.0394 0364 C:\Users\UPDATU~1\AppData\Local\temp\nsm6BDD.tmp\System.dll - ok 02:48:25.0407 0364 [ EFD278F8129EE12F1D4AE0250494B791 ] C:\Windows\System32\dxva2.dll 02:48:25.0407 0364 C:\Windows\System32\dxva2.dll - ok 02:48:25.0416 0364 [ B0B4C590C0CAE7741DA17E3DC86CC828 ] C:\Windows\System32\ceutil.dll 02:48:25.0416 0364 C:\Windows\System32\ceutil.dll - ok 02:48:25.0428 0364 [ 648AB74D9C104FB500B6C4EEDC6A8772 ] C:\Windows\System32\wmpmde.dll 02:48:25.0428 0364 C:\Windows\System32\wmpmde.dll - ok 02:48:25.0438 0364 [ 67D16247C56C26A4F0D79D1A7F272B8F ] C:\Windows\System32\mf.dll 02:48:25.0439 0364 C:\Windows\System32\mf.dll - ok 02:48:25.0446 0364 [ 2495C4204C63678F8FD5D488CA7DAD26 ] C:\Windows\System32\evr.dll 02:48:25.0446 0364 C:\Windows\System32\evr.dll - ok 02:48:25.0459 0364 [ 4DF10CE50010D70152944B51E03588B0 ] C:\Windows\System32\wmdrmsdk.dll 02:48:25.0465 0364 C:\Windows\System32\wmdrmsdk.dll - ok 02:48:25.0471 0364 [ 5016B8FC59AD616F03813FBE63295081 ] C:\Windows\System32\thumbcache.dll 02:48:25.0471 0364 C:\Windows\System32\thumbcache.dll - ok 02:48:25.0483 0364 [ 617F9A5813E69F6E9ED94B811EC75396 ] C:\Windows\System32\wmpps.dll 02:48:25.0483 0364 C:\Windows\System32\wmpps.dll - ok 02:48:25.0498 0364 [ F1ECEC53B9FFC30E123D14E087C49111 ] C:\Windows\System32\wmdrmdev.dll 02:48:25.0498 0364 C:\Windows\System32\wmdrmdev.dll - ok 02:48:25.0507 0364 [ 7C7C620860819A62F926D7EC0B72C50B ] C:\Windows\System32\drmv2clt.dll 02:48:25.0507 0364 C:\Windows\System32\drmv2clt.dll - ok 02:48:25.0527 0364 [ 02F0BE91B0F2B1C30F6F48334F47D625 ] C:\Windows\System32\blackbox.dll 02:48:25.0527 0364 C:\Windows\System32\blackbox.dll - ok 02:48:25.0536 0364 [ D571295B71C60A67F6F2EA987E5CC3B0 ] C:\Windows\System32\wmdrmnet.dll 02:48:25.0536 0364 C:\Windows\System32\wmdrmnet.dll - ok 02:48:25.0548 0364 [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\System32\WMVCORE.DLL 02:48:25.0548 0364 C:\Windows\System32\WMVCORE.DLL - ok 02:48:25.0556 0364 [ 5E41139EC6EFBCAFFD96D46925E544AB ] C:\Windows\System32\mspatcha.dll 02:48:25.0556 0364 C:\Windows\System32\mspatcha.dll - ok 02:48:25.0565 0364 [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\System32\WMASF.DLL 02:48:25.0565 0364 C:\Windows\System32\WMASF.DLL - ok 02:48:25.0575 0364 [ 6EAED354F4CDB9CF230AFD88A88D9D66 ] C:\Program Files\Steam\steam.dll 02:48:25.0575 0364 C:\Program Files\Steam\steam.dll - ok 02:48:25.0586 0364 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll 02:48:25.0586 0364 C:\Windows\System32\wuapi.dll - ok 02:48:25.0595 0364 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll 02:48:25.0595 0364 C:\Windows\System32\wups.dll - ok 02:48:25.0609 0364 [ E6021036DD3D1E45AE7BBD249D1C2795 ] C:\Program Files\Steam\steamui.dll 02:48:25.0609 0364 C:\Program Files\Steam\steamui.dll - ok 02:48:25.0614 0364 [ 2884DA0E5CE6D42F31FC4476A8947F1B ] C:\Program Files\Steam\sdl.dll 02:48:25.0614 0364 C:\Program Files\Steam\sdl.dll - ok 02:48:25.0624 0364 [ D0A95E567224B4C347CBDD6541E5D928 ] C:\Windows\System32\wscisvif.dll 02:48:25.0624 0364 C:\Windows\System32\wscisvif.dll - ok 02:48:25.0632 0364 [ FE3702015BE4D214808A2FBC07B8E5FF ] C:\Windows\System32\wscproxystub.dll 02:48:25.0632 0364 C:\Windows\System32\wscproxystub.dll - ok 02:48:25.0643 0364 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll 02:48:25.0643 0364 C:\Windows\System32\wups2.dll - ok 02:48:25.0653 0364 [ 173C217E677C4B0C4F8A6D54BA13BF9B ] C:\Program Files\Steam\cserhelper.dll 02:48:25.0653 0364 C:\Program Files\Steam\cserhelper.dll - ok 02:48:25.0666 0364 [ 7D77F7A4090ED01FDA52DAEFCE4EE28A ] C:\Program Files\Steam\bin\filesystem_steam.dll 02:48:25.0666 0364 C:\Program Files\Steam\bin\filesystem_steam.dll - ok 02:48:25.0678 0364 [ 09E5B3C06157BD26F9B0363FBCEB0DED ] C:\Program Files\Steam\bin\vgui2_s.dll 02:48:25.0678 0364 C:\Program Files\Steam\bin\vgui2_s.dll - ok 02:48:25.0688 0364 [ B55E77BB01E85D2CA2C4B8424E1DF345 ] C:\Windows\System32\opengl32.dll 02:48:25.0688 0364 C:\Windows\System32\opengl32.dll - ok 02:48:25.0697 0364 [ 7A137514F4E48ECDBDD1F29CF7E8D5A4 ] C:\Windows\System32\glu32.dll 02:48:25.0698 0364 C:\Windows\System32\glu32.dll - ok 02:48:25.0708 0364 [ 5123D70FBFE1F1BDB9A3776037F140ED ] C:\Program Files\Steam\bin\chromehtml.dll 02:48:25.0708 0364 C:\Program Files\Steam\bin\chromehtml.dll - ok 02:48:25.0727 0364 [ 1906E4DF53BEE0493F5B68AA74071EA4 ] C:\Program Files\Steam\bin\libcef.dll 02:48:25.0727 0364 C:\Program Files\Steam\bin\libcef.dll - ok 02:48:25.0738 0364 [ 938ACF2A4F7FDAFF322FD36F0B14D45A ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 02:48:25.0738 0364 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok 02:48:25.0748 0364 [ 58FF2910C998D943CF0C4B98E6DCD08C ] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll 02:48:25.0748 0364 C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll - ok 02:48:25.0762 0364 [ E92143D1B2E32FAF6CC56FD97B908F6A ] C:\Windows\System32\wpdshext.dll 02:48:25.0763 0364 C:\Windows\System32\wpdshext.dll - ok 02:48:25.0773 0364 [ 67C30FAFA58BD7E02A9DA8BE28512934 ] C:\Windows\System32\audiodev.dll 02:48:25.0773 0364 C:\Windows\System32\audiodev.dll - ok 02:48:25.0783 0364 [ 9E5C1D19851FAE2ACDBA118AB20D55AC ] C:\Windows\System32\EhStorAPI.dll 02:48:25.0783 0364 C:\Windows\System32\EhStorAPI.dll - ok 02:48:25.0794 0364 [ 045D0F4F41CA53D4CB22BDC814A22B64 ] C:\Program Files\Steam\bin\icudt.dll 02:48:25.0794 0364 C:\Program Files\Steam\bin\icudt.dll - ok 02:48:25.0805 0364 [ BBA1FE328CEA501FCCE1E5DF16276439 ] C:\Program Files\Steam\bin\avcodec-53.dll 02:48:25.0805 0364 C:\Program Files\Steam\bin\avcodec-53.dll - ok 02:48:25.0817 0364 [ 2A8B8A15A58EDF3B443083EC29894E54 ] C:\Program Files\Steam\bin\avutil-51.dll 02:48:25.0817 0364 C:\Program Files\Steam\bin\avutil-51.dll - ok 02:48:25.0825 0364 [ C5CCB86CD745746B9908031A54315F90 ] C:\Program Files\Steam\bin\avformat-53.dll 02:48:25.0825 0364 C:\Program Files\Steam\bin\avformat-53.dll - ok 02:48:25.0835 0364 [ FDDBF6AE6A659A7F269C3F5AAE199C32 ] C:\Program Files\Steam\steamclient.dll 02:48:25.0835 0364 C:\Program Files\Steam\steamclient.dll - ok 02:48:25.0844 0364 [ 62C19B78555EFC35FEC72C285233A250 ] C:\Program Files\Common Files\Steam\SteamService.exe 02:48:25.0844 0364 C:\Program Files\Common Files\Steam\SteamService.exe - ok 02:48:25.0865 0364 [ 3AC188AC65C5C01A2769DCF51E0E975D ] C:\Program Files\Steam\bin\steamservice.dll 02:48:25.0865 0364 C:\Program Files\Steam\bin\steamservice.dll - ok 02:48:25.0873 0364 [ 76FD230DEAB73D2826458617DBB56A63 ] C:\Windows\System32\winusb.dll 02:48:25.0873 0364 C:\Windows\System32\winusb.dll - ok 02:48:25.0882 0364 [ 8C8C82633A7E90A33E8D7D9617B2B46C ] C:\Windows\WindowsMobile\tcp2udp.dll 02:48:25.0882 0364 C:\Windows\WindowsMobile\tcp2udp.dll - ok 02:48:25.0890 0364 [ 3379989F06B31347792836DCF028A325 ] C:\Windows\System32\rapiproxystub.dll 02:48:25.0891 0364 C:\Windows\System32\rapiproxystub.dll - ok 02:48:25.0903 0364 [ 5FA382106B145A920E2A4F7087AF1B90 ] C:\Windows\System32\wbem\wmipcima.dll 02:48:25.0903 0364 C:\Windows\System32\wbem\wmipcima.dll - ok 02:48:25.0924 0364 [ 523DF3B590D8A353A49235B1B7C571AD ] C:\Windows\WindowsMobile\dtptdns.dll 02:48:25.0925 0364 C:\Windows\WindowsMobile\dtptdns.dll - ok 02:48:25.0936 0364 [ E270B78C30A4795978B8067E6A2252A2 ] C:\Windows\WindowsMobile\wmdsyncman.dll 02:48:25.0936 0364 C:\Windows\WindowsMobile\wmdsyncman.dll - ok 02:48:25.0945 0364 [ 7599E425947A595448DA778B610923BC ] C:\Program Files\Windows Media Player\wmpsyncmgr.dll 02:48:25.0946 0364 C:\Program Files\Windows Media Player\wmpsyncmgr.dll - ok 02:48:25.0969 0364 [ 6D0569AFF6C075D2F8D431A46525DDF0 ] C:\Program Files\WinAce\arcicons.dll 02:48:25.0969 0364 C:\Program Files\WinAce\arcicons.dll - ok 02:48:25.0977 0364 [ 87CDFFCBD09C1CA03A068343D5D93250 ] C:\Windows\System32\wmi.dll 02:48:25.0977 0364 C:\Windows\System32\wmi.dll - ok 02:48:25.0989 0364 ============================================================ 02:48:25.0989 0364 Scan finished 02:48:25.0989 0364 ============================================================ 02:48:26.0010 0392 Detected object count: 3 02:48:26.0010 0392 Actual detected object count: 3 02:49:07.0488 0392 DSBrokerService ( UnsignedFile.Multi.Generic ) - skipped by user 02:49:07.0489 0392 DSBrokerService ( UnsignedFile.Multi.Generic ) - User select action: Skip 02:49:07.0489 0392 DSproct ( UnsignedFile.Multi.Generic ) - skipped by user 02:49:07.0489 0392 DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip 02:49:07.0489 0392 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user 02:49:07.0489 0392 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 03:02:09.0763 1796 Deinitialize success that's all of it... Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted June 25, 2013 Root Admin ID:695681 Share Posted June 25, 2013 Okay that log looks good. So are you still having an issue opening Microsoft Security Essentials ? Link to post Share on other sites More sharing options...
Last_Ditch Posted June 26, 2013 Author ID:695693 Share Posted June 26, 2013 Oh yeah. I just tried it and it didn't work, then I tried PhotoGallery and it closed/restarted Windows Explorer...I thought things were good but now, again, i'm so very sad. What should I do? Link to post Share on other sites More sharing options...
Recommended Posts