Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan:Win32/Tracur.AU


  • This topic is locked This topic is locked
37 replies to this topic

#1 Veul

Veul

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 20 May 2013 - 01:55 PM

Hi I recently picked up this trojan called Tracur.AU.

 

The only anti-virus i have atm is Vipre and MSE. my MBAM is free version but expired well last month.

 

MBAM really never deleted anything because this virus keeps multiplying itself and coming back.

 

Also in Vipre this thing went undetected.

 

Along with this trojan, I have this annoying Find lyrics toolbar extension that CANNOT be disabled or enabled.

 

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16576  BrowserJavaVersion: 10.13.2
Run by Elena at 15:02:25 on 2013-05-20
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4061.2315 [GMT -5:00]
.
AV: Sunbelt VIPRE *Enabled/Updated* {BE5DD172-7F42-7948-1A60-E6A720288F81}
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
AV: Norton AntiVirus *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Sunbelt VIPRE *Enabled/Updated* {053C3096-5978-76C6-20D0-DDD55BAFC53C}
SP: Norton AntiVirus *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe
C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\mspaint.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.yahoo.com/
uWindow Title = Internet Explorer, optimized for Bing and MSN
mStart Page = hxxp://www.google.com
uURLSearchHooks: YTNavAssistPlugin Class: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn4\yt.dll
uURLSearchHooks: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - <orphaned>
uURLSearchHooks: {687578b9-7132-4a7a-80e4-30ee31099e03} - <orphaned>
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: FindLyrics: {44C9CC91-6A4A-4579-B4B5-899ECDC18DC6} - C:\Program Files (x86)\FindLyrics\FindLyrics.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ips\ipsbho.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Updater For XFIN_PORTAL: {bb46be07-13eb-4c49-b0f0-fc78b9ea4983} - 
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - 
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SingleInstance Class: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - 
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Logitech Vid] "C:\Program Files (x86)\Logitech\Vid HD\Vid.exe" -bootmode
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [EPSON WorkForce 630 Series] C:\Windows\System32\spool\DRIVERS\x64\3\E_IATIGBA.EXE /FU "C:\Windows\TEMP\E_SAB9.tmp" /EF "HKCU"
uRun: [Desktop Software] "C:\Program Files (x86)\Common Files\SupportSoft\bin\bcont.exe"  /ini "C:\Program Files (x86)\ComcastUI\Desktop Software\uinstaller.ini" /fromrun /starthidden
uRun: [ComcastAntispyClient] "C:\Program Files (x86)\comcasttb\ComcastSpywareScan\ComcastAntispy.exe" /hide
uRun: [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
uRun: [Google Update] "C:\Users\Elena\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
mRun: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
mRun: [FUFAXSTM] "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
mRun: [LTCM Client] C:\Program Files (x86)\LTCM Client\ltcmClient.exe /startup
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SBAMTray] "C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe"
mRunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe
StartupFolder: C:\Users\Elena\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files\Dell\DellDock\DellDock.exe
StartupFolder: C:\Users\Elena\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} - 
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{8510B5D8-6A13-41ED-9D68-147531C92C4E} : DHCPNameServer = 75.75.75.75 75.75.76.76
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: Easy Photo Print: {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-1-20 230320]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-7-1 55280]
R0 SymDS;Symantec Data Store;C:\Windows\System32\drivers\NAVx64\1309010.00E\symds64.sys [2013-2-5 451192]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\System32\drivers\NAVx64\1309010.00E\symefa64.sys [2013-2-5 1129120]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\BASHDefs\20130116.013\BHDrvx64.sys [2013-1-15 1388120]
R1 ccSet_NAV;Norton AntiVirus Settings Manager;C:\Windows\System32\drivers\NAVx64\1309010.00E\ccsetx64.sys [2013-2-5 167072]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\IPSDefs\20130131.001\IDSviA64.sys [2013-2-1 513184]
R1 SBRE;SBRE;C:\Windows\System32\drivers\sbredrv.sys [2013-5-18 49752]
R1 SbTis;SbTis;C:\Windows\System32\drivers\sbtis.sys [2013-5-18 94296]
R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NAVx64\1309010.00E\ironx64.sys [2013-2-5 190072]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NAVx64\1309010.00E\symnets.sys [2013-2-5 405624]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2010-12-18 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2010-12-18 128512]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-4 13336]
R2 LVPrcS64;Process Monitor;C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-4-30 190488]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-5-20 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-5-20 701512]
R2 NAV;Norton AntiVirus;C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvchst.exe [2013-2-5 138272]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-1-20 130008]
R2 SBAMSvc;VIPRE Antivirus;C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe [2010-8-20 2763080]
R2 sbapifs;sbapifs;C:\Windows\System32\drivers\sbapifs.sys [2010-6-14 64600]
R2 SBPIMSvc;SB Recovery Service;C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe [2010-8-20 181584]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2010-11-4 1692480]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-4-15 3289208]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-2-1 138912]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;C:\Windows\System32\drivers\IntcHdmi.sys [2010-11-4 138752]
R3 LVPr2M64;Logitech LVPr2M64 Driver;C:\Windows\System32\drivers\LVPr2M64.sys [2009-4-30 30232]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2010-12-5 327576]
R3 LVUVC64;Logitech Webcam 200(UVC);C:\Windows\System32\drivers\lvuvc64.sys [2010-12-5 6377496]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-5-20 25928]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-1-27 379360]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-11-4 236544]
R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-4-1 183560]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-3-8 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 hitmanpro37;HitmanPro 3.7 Support Driver;C:\Windows\System32\drivers\hitmanpro37.sys [2013-2-17 32152]
S3 lvpopf64;Logitech POP Suppression Filter;C:\Windows\System32\drivers\lvpopf64.sys [2010-12-5 271640]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-7 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-12-11 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
SUnknown achmqclx;achmqclx; [x]
SUnknown cmqpubxu;cmqpubxu; [x]
SUnknown cpxivbek;cpxivbek; [x]
SUnknown cupmdkxs;cupmdkxs; [x]
SUnknown djofblsw;djofblsw; [x]
SUnknown eyrevvbo;eyrevvbo; [x]
SUnknown ggdvankx;ggdvankx; [x]
SUnknown grgdaqnq;grgdaqnq; [x]
SUnknown henflnsa;henflnsa; [x]
SUnknown hfqzrofm;hfqzrofm; [x]
SUnknown hyknylco;hyknylco; [x]
SUnknown igqrtpkp;igqrtpkp; [x]
SUnknown ikpyslfn;ikpyslfn; [x]
SUnknown jkmnljto;jkmnljto; [x]
SUnknown jmqvyxjm;jmqvyxjm; [x]
SUnknown jpfkyoof;jpfkyoof; [x]
SUnknown jwhqciun;jwhqciun; [x]
SUnknown kapxurwm;kapxurwm; [x]
SUnknown kfmefnpp;kfmefnpp; [x]
SUnknown kpstmnwv;kpstmnwv; [x]
SUnknown kpvbhwrc;kpvbhwrc; [x]
SUnknown kqdinwdi;kqdinwdi; [x]
SUnknown kxbpsdix;kxbpsdix; [x]
SUnknown micicvic;micicvic; [x]
SUnknown mrzdxtax;mrzdxtax; [x]
SUnknown mzeflvkc;mzeflvkc; [x]
SUnknown oesbakkm;oesbakkm; [x]
SUnknown oqquingj;oqquingj; [x]
SUnknown pdwiiwgr;pdwiiwgr; [x]
SUnknown pfopdrrh;pfopdrrh; [x]
SUnknown pkwilkta;pkwilkta; [x]
SUnknown ptdqnoxv;ptdqnoxv; [x]
SUnknown ptuchovq;ptuchovq; [x]
SUnknown qcsaxkql;qcsaxkql; [x]
SUnknown qzvlflug;qzvlflug; [x]
SUnknown rfiyejvb;rfiyejvb; [x]
SUnknown smehujta;smehujta; [x]
SUnknown svdjakmj;svdjakmj; [x]
SUnknown tegzxuix;tegzxuix; [x]
SUnknown tnngkuko;tnngkuko; [x]
SUnknown uhlzfgej;uhlzfgej; [x]
SUnknown vdcgsacg;vdcgsacg; [x]
SUnknown vegqzmin;vegqzmin; [x]
SUnknown vhehhgmh;vhehhgmh; [x]
SUnknown wbvpakqn;wbvpakqn; [x]
SUnknown xbpmvyol;xbpmvyol; [x]
SUnknown xrtafhqa;xrtafhqa; [x]
SUnknown zecxyywo;zecxyywo; [x]
SUnknown zevevnic;zevevnic; [x]
.
=============== Created Last 30 ================
.
2013-05-20 19:45:39 76232 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{021687F7-89C8-4EDA-B898-E5CA0E229610}\offreg.dll
2013-05-20 11:29:23 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-05-20 11:29:23 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-05-20 03:25:48 905296 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{13614FE3-DE0C-4243-A51C-75CC5F82D591}\gapaengine.dll
2013-05-20 03:25:42 9460464 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{021687F7-89C8-4EDA-B898-E5CA0E229610}\mpengine.dll
2013-05-20 03:20:41 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2013-05-20 03:20:30 -------- d-----w- C:\Program Files\Microsoft Security Client
2013-05-20 02:29:59 940544 ----a-w- C:\Users\Elena\AppData\Local\log4cxx.dll
2013-05-20 02:29:59 196608 ----a-w- C:\Users\Elena\AppData\Local\common_functions.dll
2013-05-20 01:50:58 -------- d-----w- C:\Program Files (x86)\FindLyrics
2013-05-19 21:56:25 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2013-05-19 20:53:22 -------- d-----w- C:\Users\Elena\AppData\Local\Macromedia
2013-05-18 18:12:06 -------- d-----w- C:\ProgramData\Sunbelt
2013-05-18 18:12:04 -------- d-----w- C:\Users\Elena\AppData\Roaming\Sunbelt
2013-05-18 18:11:01 94296 ----a-w- C:\Windows\System32\drivers\sbtis.sys
2013-05-18 18:10:56 49752 ----a-w- C:\Windows\System32\drivers\sbredrv.sys
2013-05-18 18:10:56 27472 ----a-w- C:\Windows\System32\sbbd.exe
2013-05-18 18:10:49 -------- d-----w- C:\Program Files (x86)\Sunbelt Software
2013-05-15 08:01:59 2242048 ----a-w- C:\Windows\System32\wininet.dll
2013-05-12 14:28:39 -------- d-----w- C:\Users\Elena\AppData\Local\Valve
2013-05-12 01:18:56 -------- d-----w- C:\Program Files (x86)\GUM2843.tmp
2013-04-23 22:29:08 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2013-04-23 01:23:09 -------- d-----w- C:\Users\Elena\AppData\Roaming\AVG2013
2013-04-23 01:22:43 -------- d-----w- C:\Users\Elena\AppData\Roaming\TuneUp Software
2013-04-23 01:20:37 -------- d--h--w- C:\$AVG
2013-04-23 01:20:37 -------- d-----w- C:\ProgramData\AVG2013
2013-04-23 01:13:01 -------- d--h--w- C:\ProgramData\Common Files
2013-04-23 01:13:01 -------- d-----w- C:\Users\Elena\AppData\Local\MFAData
2013-04-23 01:13:01 -------- d-----w- C:\Users\Elena\AppData\Local\Avg2013
2013-04-23 01:13:01 -------- d-----w- C:\ProgramData\MFAData
.
==================== Find3M  ====================
.
2013-05-15 03:33:15 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-15 03:33:15 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-05-02 15:29:56 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-04-13 05:49:23 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49:19 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49:19 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49:19 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45:16 474624 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-04-13 04:45:15 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-04-10 06:01:54 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-04-10 06:01:53 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-04-10 03:30:50 3153920 ----a-w- C:\Windows\System32\win32k.sys
2013-04-05 06:50:36 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-04-05 06:50:31 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-04-05 06:50:31 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-04-05 05:28:24 1767424 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-04-05 05:26:26 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-04-05 05:26:21 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-04-05 05:26:21 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-04-05 04:43:00 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-04-05 04:29:45 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-04-05 03:51:11 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-04-05 03:38:25 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-03-19 06:04:06 5550424 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-03-19 05:53:58 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2013-03-19 05:53:58 230400 ----a-w- C:\Windows\System32\wwansvc.dll
2013-03-19 05:46:56 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2013-03-19 05:04:13 3968856 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47:50 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2013-03-19 03:06:33 112640 ----a-w- C:\Windows\System32\smss.exe
2013-02-27 06:02:44 111448 ----a-w- C:\Windows\System32\consent.exe
2013-02-27 05:48:00 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-02-27 05:47:10 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-02-27 04:49:24 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2007-02-12 21:13:52 36864 ----a-w- C:\Program Files (x86)\Common Files\AXPrint.exe
.
============= FINISH: 15:03:35.30 ===============
 

 

 


Edited by Veul, 20 May 2013 - 03:51 PM.


BC AdBot (Login to Remove)

 


#2 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 20 May 2013 - 02:17 PM

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume2
Install Date: 12/5/2010 1:08:52 AM
System Uptime: 5/20/2013 12:21:54 PM (3 hours ago)
.
Motherboard: Dell Inc. |  | 018D1Y
Processor: Pentium® Dual-Core  CPU      E5700  @ 3.00GHz | CPU 1 | 1201/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 456 GiB total, 335.919 GiB free.
D: is CDROM ()
E: is Removable
F: is Removable
G: is Removable
H: is Removable
I: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP304: 4/16/2013 5:20:56 PM - Windows Update
RP305: 4/22/2013 8:19:37 PM - Installed AVG 2013
RP306: 4/22/2013 8:20:11 PM - Installed AVG 2013
RP307: 4/23/2013 10:15:04 PM - Windows Update
RP308: 4/30/2013 10:35:50 PM - Windows Update
RP309: 5/15/2013 3:00:32 AM - Windows Update
RP310: 5/18/2013 1:10:06 PM - Installed VIPRE Antivirus.
RP311: 5/18/2013 1:22:15 PM - Removed AVG 2013
RP312: 5/18/2013 1:27:03 PM - Removed AVG 2013
RP315: 5/19/2013 10:14:30 PM - Removed Microsoft Office Outlook Connector
RP316: 5/19/2013 10:24:24 PM - Windows Update
.
==== Installed Programs ======================
.
µTorrent
Adobe AIR
Adobe Download Assistant
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader 9.5.2
Anki
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Best Buy pc app
Bing Bar
Bonjour
CCleaner
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell Dock
Dell Edoc Viewer
Dell Getting Started Guide
Epson CreativeZone
Epson Easy Photo Print 2
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery Setup
Epson Event Manager
Epson FAX Utility
EPSON Scan
EPSON WorkForce 630 Series Printer Uninstall
FindLyrics
GIMP 2.8.0
Google Chrome
Google Earth
Google Talk Plugin
Google Toolbar for Internet Explorer
Google Update Helper
GoToAssist 8.0.0.514
Intel® Control Center
Intel® Graphics Media Accelerator Driver
Intel® Rapid Storage Technology
iTunes
Java 7 Update 13
Java 7 Update 6 (64-bit)
Java SE Development Kit 7 Update 6 (64-bit)
Java™ 6 Update 20 (64-bit)
Java™ 6 Update 31
JavaFX 2.1.1
Junk Mail filter update
K-Lite Codec Pack 6.6.6 (Standard)
Logitech Vid HD
Logitech Webcam Software
Logitech Webcam Software Driver Package
LTCM Client
Malwarebytes Anti-Malware version 1.75.0.1300
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Student 2010
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable - KB2467175
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Windows Journal Viewer
MSVCRT
MSVCRT Redists
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Norton AntiVirus
Pando Media Booster
QuickTime
Real Estate Licensing Tester AutoExam V10.0
Realtek High Definition Audio Driver
Roxio Burn
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft Excel 2010 (KB2597126) 32-Bit Edition
Security Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition
Security Update for Microsoft OneNote 2010 (KB2760600) 32-Bit Edition
Security Update for Microsoft Publisher 2010 (KB2553147) 32-Bit Edition
Security Update for Microsoft Visio 2010 (KB2810068) 32-Bit Edition
Security Update for Microsoft Visio Viewer 2010 (KB2687505) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition
Skype Click to Call
Skype™ 6.3
Unity Web Player
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Vegas Movie Studio HD  11.0
VIPRE Antivirus
Visual Studio 2010 x64 Redistributables
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR 4.01 (32-bit)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
.
==== Event Viewer Messages From Past Week ========
.
5/20/2013 6:10:38 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
5/19/2013 9:17:45 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
5/19/2013 9:17:45 PM, Error: Service Control Manager [7024]  - The Windows Search service terminated with service-specific error %%-1073473535.
5/19/2013 5:07:43 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001]  - The computer has rebooted from a bugcheck.  The bugcheck was: 0x0000009f (0x0000000000000004, 0x0000000000000258, 0xfffffa80039e0040, 0xfffff80000b9c4d0). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 051913-28579-01.
5/19/2013 4:51:53 PM, Error: volsnap [67]  - The shadow copy of volume C: being created failed to install.
5/19/2013 4:03:40 PM, Error: Service Control Manager [7034]  - The Comcast AntiSpyware service terminated unexpectedly.  It has done this 1 time(s).
5/19/2013 11:03:23 PM, Error: Microsoft Antimalware [1119]  - Microsoft Antimalware has encountered a critical error when taking action on malware or other potentially unwanted software.  For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tracur.AU&threatid=2147658191   Name: Trojan:Win32/Tracur.AU   ID: 2147658191   Severity: Severe   Category: Trojan   Path: file:_C:\Users\Elena\AppData\Local\Valve\gqlgemnp.dll   Detection Origin: Local machine   Detection Type: Concrete   Detection Source: Real-Time Protection   User: NT AUTHORITY\SYSTEM   Process Name: C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe   Action: Quarantine   Action Status:  No additional actions required   Error Code: 0x80070021   Error description: The process cannot access the file because another process has locked a portion of the file.   Signature Version: AV: 1.151.445.0, AS: 1.151.445.0, NIS: 101.4.0.0   Engine Version: AM: 1.1.9506.0, NIS: 2.1.9402.0
5/19/2013 10:59:56 PM, Error: Microsoft Antimalware [1119]  - Microsoft Antimalware has encountered a critical error when taking action on malware or other potentially unwanted software.  For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tracur.AU&threatid=2147658191   Name: Trojan:Win32/Tracur.AU   ID: 2147658191   Severity: Severe   Category: Trojan   Path: file:_C:\Users\Elena\AppData\Local\Valve\gqlgemnp.dll   Detection Origin: Local machine   Detection Type: Concrete   Detection Source: Real-Time Protection   User: NT AUTHORITY\SYSTEM   Process Name: C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe   Action: Quarantine   Action Status:  No additional actions required   Error Code: 0x80070021   Error description: The process cannot access the file because another process has locked a portion of the file.   Signature Version: AV: 1.151.445.0, AS: 1.151.445.0, NIS: 101.4.0.0   Engine Version: AM: 1.1.9506.0, NIS: 2.1.9402.0
5/19/2013 10:56:29 PM, Error: Microsoft Antimalware [1119]  - Microsoft Antimalware has encountered a critical error when taking action on malware or other potentially unwanted software.  For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tracur.AU&threatid=2147658191   Name: Trojan:Win32/Tracur.AU   ID: 2147658191   Severity: Severe   Category: Trojan   Path: file:_C:\Users\Elena\AppData\Local\Valve\gqlgemnp.dll   Detection Origin: Local machine   Detection Type: Concrete   Detection Source: Real-Time Protection   User: NT AUTHORITY\SYSTEM   Process Name: C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe   Action: Quarantine   Action Status:  No additional actions required   Error Code: 0x80070021   Error description: The process cannot access the file because another process has locked a portion of the file.   Signature Version: AV: 1.151.445.0, AS: 1.151.445.0, NIS: 101.4.0.0   Engine Version: AM: 1.1.9506.0, NIS: 2.1.9402.0
5/19/2013 10:54:32 PM, Error: Microsoft Antimalware [1119]  - Microsoft Antimalware has encountered a critical error when taking action on malware or other potentially unwanted software.  For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tracur.AU&threatid=2147658191   Name: Trojan:Win32/Tracur.AU   ID: 2147658191   Severity: Severe   Category: Trojan   Path: file:_C:\Users\Elena\AppData\Local\Valve\gqlgemnp.dll   Detection Origin: Local machine   Detection Type: Concrete   Detection Source: Real-Time Protection   User: NT AUTHORITY\SYSTEM   Process Name: C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe   Action: Quarantine   Action Status:  No additional actions required   Error Code: 0x80070021   Error description: The process cannot access the file because another process has locked a portion of the file.   Signature Version: AV: 1.151.445.0, AS: 1.151.445.0, NIS: 101.4.0.0   Engine Version: AM: 1.1.9506.0, NIS: 2.1.9402.0
5/19/2013 10:41:01 PM, Error: Microsoft Antimalware [1119]  - Microsoft Antimalware has encountered a critical error when taking action on malware or other potentially unwanted software.  For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tracur.AU&threatid=2147658191   Name: Trojan:Win32/Tracur.AU   ID: 2147658191   Severity: Severe   Category: Trojan   Path: file:_C:\Users\Elena\AppData\Local\Valve\gqlgemnp.dll   Detection Origin: Local machine   Detection Type: Concrete   Detection Source: Real-Time Protection   User: NT AUTHORITY\SYSTEM   Process Name: C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe   Action: Quarantine   Action Status:  No additional actions required   Error Code: 0x80070021   Error description: The process cannot access the file because another process has locked a portion of the file.   Signature Version: AV: 1.151.445.0, AS: 1.151.445.0, NIS: 101.4.0.0   Engine Version: AM: 1.1.9506.0, NIS: 2.1.9402.0
5/19/2013 10:29:19 PM, Error: Microsoft Antimalware [1119]  - Microsoft Antimalware has encountered a critical error when taking action on malware or other potentially unwanted software.  For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tracur.AU&threatid=2147658191   Name: Trojan:Win32/Tracur.AU   ID: 2147658191   Severity: Severe   Category: Trojan   Path: file:_C:\Users\Elena\AppData\Local\Valve\gqlgemnp.dll;regkey:_HKCU@S-1-5-21-2456405248-4278087893-1159217496-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Valve;runkey:_HKCU@S-1-5-21-2456405248-4278087893-1159217496-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Valve   Detection Origin: Local machine   Detection Type: Concrete   Detection Source: Real-Time Protection   User: NT AUTHORITY\SYSTEM   Process Name: C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe   Action: Quarantine   Action Status:  To finish removing malware and other potentially unwanted software, restart the computer.   Error Code: 0x80070021   Error description: The process cannot access the file because another process has locked a portion of the file.   Signature Version: AV: 1.151.445.0, AS: 1.151.445.0, NIS: 101.4.0.0   Engine Version: AM: 1.1.9506.0, NIS: 2.1.9402.0
5/18/2013 10:11:27 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
5/17/2013 10:19:15 PM, Error: Service Control Manager [7006]  - The ScRegSetValueExW call failed for FailureActions with the following error:  Access is denied.
5/15/2013 4:23:37 PM, Error: Service Control Manager [7000]  - The Google Update Service (gupdate) service failed to start due to the following error:  The pipe has been ended.
5/15/2013 4:23:37 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "109" attempting to start the service gupdate with arguments "/comsvc" in order to run the server: {4EB61BAC-A3B6-4760-9581-655041EF4D69}
5/15/2013 3:00:11 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
.
==== End Of File ===========================
 

 

 

Here are some images of it too.

Attached Files

  • Attached File  d.png   12.89KB   5 downloads
  • Attached File  ff.png   45.16KB   5 downloads
  • Attached File  Untitled.png   106.12KB   5 downloads

Edited by Veul, 20 May 2013 - 04:03 PM.


#3 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:03:46 AM

Posted 20 May 2013 - 06:23 PM


Hello Veul

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
When they are complete let me have the two reports and let me know how things are running.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic


Please Only Copy And Paste Reports Into Topic - Do Not Attach

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:03:46 AM

Posted 24 May 2013 - 12:36 AM



Hello

48 Hour bump

It has been more than 48 hours since my last post.
  • do you still need help with this?
  • do you need more time?
  • are you having problems following my instructions?
  • if after 48hrs you have not replied to this thread then it will have to be closed!
Gringo

Edited by gringo_pr, 24 May 2013 - 12:36 AM.

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic


Please Only Copy And Paste Reports Into Topic - Do Not Attach

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 27 May 2013 - 08:43 PM

I apologize my computer would not even load up until today.



#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:03:46 AM

Posted 27 May 2013 - 09:04 PM

what type of problem are you having


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic


Please Only Copy And Paste Reports Into Topic - Do Not Attach

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 27 May 2013 - 09:15 PM

Well  I got a BSOD and my Pc would restart itself, this happened 3 times in a row until I went into safe mode, anyway Lately my computer is taking really long to load up and everything is EXTREMELY sluggish. Like I mean everything is slow. Anyway heres the ADW scan. I also notice there is a lock on a lot of my folders in the C-Drive.

 

 

# User : Elena - DELL
# Boot Mode : Normal
# Running from : C:\Users\Elena\Downloads\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\\ Google Chrome v27.0.1453.94

File : C:\Users\Elena\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [9916 octets] - [19/05/2013 21:50:42]
AdwCleaner[R2].txt - [9869 octets] - [19/05/2013 21:51:17]
AdwCleaner[S1].txt - [10144 octets] - [19/05/2013 21:52:06]
AdwCleaner[S2].txt - [836 octets] - [27/05/2013 21:54:31]

########## EOF - C:\AdwCleaner[S2].txt - [895 octets] ##########

 

That was the text that appeared after the restart. Here is the one in the C-Drive you said.

 

# AdwCleaner v2.301 - Logfile created 05/19/2013 at 21:52:06
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Elena - DELL
# Boot Mode : Normal
# Running from : C:\Users\Elena\Downloads\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

File Deleted : C:\Users\Elena\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\Elena\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Elena\AppData\Roaming\Mozilla\Firefox\Profiles\miunvj0j.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Users\Elena\AppData\Roaming\Mozilla\Firefox\Profiles\miunvj0j.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Elena\AppData\Roaming\Mozilla\Firefox\Profiles\miunvj0j.default\searchplugins\SweetIm.xml
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\Program Files (x86)\xfin_portal
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\visualbee
Folder Deleted : C:\Users\Elena\AppData\Local\Conduit
Folder Deleted : C:\Users\Elena\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Folder Deleted : C:\Users\Elena\AppData\Local\visualbeeexe
Folder Deleted : C:\Users\Elena\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Elena\AppData\Roaming\Mozilla\Firefox\Profiles\miunvj0j.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\CompeteInc
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\ShoppingReport2
Key Deleted : HKCU\Software\AppDataLow\Software\xfin_portal
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{23B38049-323F-443D-9732-F454E5B15B72}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\Software\Classes\Installer\Features\FB6D58DD787439A4995AF3C00FEA8843
Key Deleted : HKLM\Software\Classes\Installer\Products\FB6D58DD787439A4995AF3C00FEA8843
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072253
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1791C1B5-FFD0-4D4B-ABCD-7A7DF6EAA89C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{004EB151-885B-4A9E-A22D-CA98DD998D75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5F701D7D-C869-41F0-B0E2-8136F02B539C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A786F51D-B3C7-4F52-91EF-E1A892C2A2AE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAB77009-B974-48DF-8229-E70CFAA11C69}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EBAA6283-B61F-4DDD-9659-56635433A307}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFB4F034-3EB5-48D5-84DD-89BBCF9A182F}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10042&barid={DD8A4CE3-C0E4-11E2-947A-B8AC6FDB9C4A} --> hxxp://www.google.com

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Elena\AppData\Roaming\Mozilla\Firefox\Profiles\miunvj0j.default\prefs.js

C:\Users\Elena\AppData\Roaming\Mozilla\Firefox\Profiles\miunvj0j.default\user.js ... Deleted !

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.yahoo.com/search?fr=mkg030&p=")[...]
Deleted : user_pref("keyword.URL", "hxxp://start.sweetpacks.com/?src=2&st=12&crg=3.5000006.10042&barid={DD8A4C[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Yahoo");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.yahoo.com/search?fr=m[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "www.points2shop.com");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.yahoo.com/search?fr=mkg030&p=");
Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.[...]

-\\ Google Chrome v26.0.1410.64

File : C:\Users\Elena\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.2792] : urls_to_restore_on_startup = [ "hxxp://www.google.com", "hxxp://start.sweetpacks.com/?src=10&[...]

*************************

AdwCleaner[R1].txt - [9916 octets] - [19/05/2013 21:50:42]
AdwCleaner[R2].txt - [9869 octets] - [19/05/2013 21:51:17]
AdwCleaner[S1].txt - [10035 octets] - [19/05/2013 21:52:06]

########## EOF - C:\AdwCleaner[S1].txt - [10096 octets] ##########

 

Must I include all 4 of them from the C-Drive?


Edited by Veul, 27 May 2013 - 09:20 PM.


#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:03:46 AM

Posted 27 May 2013 - 09:20 PM

OK we will work on that and hope to get it fixed - go ahead and run the other program and we will move on


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic


Please Only Copy And Paste Reports Into Topic - Do Not Attach

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 27 May 2013 - 09:25 PM

Gringo I will run this next program and post in the morning if possible as I have school, but  I hope we can work together to resolve this issue.

 

Alrifght I just ran it  here is JRT log.

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Elena on Mon 05/27/2013 at 22:25:59.93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\yt.ytnavassistplugin.1
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\visualbee
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\visualbee
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0A824E86-DB60-4951-A590-1624E5512566}

 

~~~ Files

Successfully deleted: [File] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"

 

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\best buy pc app"
Successfully deleted: [Folder] "C:\Users\Elena\appdata\local\best buy pc app"
Successfully deleted: [Folder] "C:\Users\Elena\appdata\local\visi_coupon"
Successfully deleted: [Folder] "C:\Users\Elena\appdata\locallow\comcasttb"
Successfully deleted: [Folder] "C:\Users\Elena\appdata\locallow\couponalert_2pei"
Successfully deleted: [Folder] "C:\Program Files (x86)\comcasttb"
Successfully deleted: [Folder] "C:\Program Files (x86)\couponalert_2pei"
Successfully deleted: [Empty Folder] C:\Users\Elena\appdata\local\{3386CB94-E8EA-4071-BB57-02E1F401FEF2}
Successfully deleted: [Empty Folder] C:\Users\Elena\appdata\local\{45F55F70-8D71-4B55-8B8A-3D3114B6941F}
Successfully deleted: [Empty Folder] C:\Users\Elena\appdata\local\{57C9FD2B-73C8-47DA-A23A-A6BB7373584A}
Successfully deleted: [Empty Folder] C:\Users\Elena\appdata\local\{884A314A-AB66-4BF6-9FF3-3866B7D6E8ED}
Successfully deleted: [Empty Folder] C:\Users\Elena\appdata\local\{B4C50F01-DF72-45C5-901D-471839903707}

 

~~~ Chrome

Dumping contents of C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aadbdidfdggddddegfdbgddfgdgbgege
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aaggdfgdgedadhddgdgedcgedeggdggc
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aadbdidfdggddddegfdbgddfgdgbgege\background.js
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aadbdidfdggddddegfdbgddfgdgbgege\ContentScript.js
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aadbdidfdggddddegfdbgddfgdgbgege\manifest.json
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aaggdfgdgedadhddgdgedcgedeggdggc\background.js
C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default\aaggdfgdgedadhddgdgedcgedeggdggc\manifest.json

Successfully deleted: [Folder] C:\Users\Elena\appdata\local\Google\Chrome\User Data\Default\Default [Default Extension 1.0]

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 05/27/2013 at 22:35:38.43
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Edited by Veul, 27 May 2013 - 09:42 PM.


#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:03:46 AM

Posted 27 May 2013 - 09:48 PM






Hello Veul

No problem and I will look for you then

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?
Gringo

Edited by gringo_pr, 27 May 2013 - 09:49 PM.

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic


Please Only Copy And Paste Reports Into Topic - Do Not Attach

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 28 May 2013 - 02:18 PM

Hi Gringo, I had to run combofix in safe mode because my computer suffered another BSOD. The start up was incredibly slow, opening browsers and files is also very slow. So I have seen no changes still.

 

 

Heres the combofix log.

 

 

ComboFix 13-05-28.02 - Elena 05/28/2013  15:06:11.1.2 - x64 NETWORK
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4061.2852 [GMT -5:00]
Running from: c:\users\Elena\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
AV: Sunbelt VIPRE *Enabled/Outdated* {BE5DD172-7F42-7948-1A60-E6A720288F81}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Sunbelt VIPRE *Enabled/Outdated* {053C3096-5978-76C6-20D0-DDD55BAFC53C}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Created a new restore point
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\BetterCareerSearch_2bEI
c:\programdata\Dell
c:\programdata\Dell\DCUninstall\remove.log
c:\programdata\Dell\DellDock\BaseCategories.xml
c:\programdata\Dell\DellDock\BaseDesktopExclusions.xml
c:\programdata\Dell\DellDock\BaseSettings.xml
c:\programdata\Dell\DellDock\BRZ\BaseCategories.xml
c:\programdata\Dell\DellDock\BRZ\BaseSettings.xml
c:\programdata\Dell\DellDock\BRZ\Default.lang.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\BRZ\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\BRZ\uninstaller.xml
c:\programdata\Dell\DellDock\CHI\BaseCategories.xml
c:\programdata\Dell\DellDock\CHI\BaseSettings.xml
c:\programdata\Dell\DellDock\CHI\Default.lang.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\CHI\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\CHI\uninstaller.xml
c:\programdata\Dell\DellDock\DAN\BaseCategories.xml
c:\programdata\Dell\DellDock\DAN\BaseSettings.xml
c:\programdata\Dell\DellDock\DAN\Default.lang.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\DAN\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\DAN\uninstaller.xml
c:\programdata\Dell\DellDock\Default.lang.xml
c:\programdata\Dell\DellDock\DUT\BaseCategories.xml
c:\programdata\Dell\DellDock\DUT\BaseSettings.xml
c:\programdata\Dell\DellDock\DUT\Default.lang.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-bestofweb.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-trend16.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\DUT\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\DUT\uninstaller.xml
c:\programdata\Dell\DellDock\error_log.txt
c:\programdata\Dell\DellDock\FRN\BaseCategories.xml
c:\programdata\Dell\DellDock\FRN\BaseSettings.xml
c:\programdata\Dell\DellDock\FRN\Default.lang.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-bestofweb.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-trend16.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\FRN\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\FRN\uninstaller.xml
c:\programdata\Dell\DellDock\GER\BaseCategories.xml
c:\programdata\Dell\DellDock\GER\BaseSettings.xml
c:\programdata\Dell\DellDock\GER\Default.lang.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-bestofweb.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-trend16.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\GER\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\GER\uninstaller.xml
c:\programdata\Dell\DellDock\images\aol_icon.jpg
c:\programdata\Dell\DellDock\images\ATT_32x32.JPG
c:\programdata\Dell\DellDock\images\Cozi.png
c:\programdata\Dell\DellDock\images\datasafe_32x32.jpg
c:\programdata\Dell\DellDock\images\DellSupport_32x32.jpg
c:\programdata\Dell\DellDock\images\DellSupportCenter_icon.jpg
c:\programdata\Dell\DellDock\images\dra.png
c:\programdata\Dell\DellDock\images\earthlink_icon.png
c:\programdata\Dell\DellDock\images\ebay_32x32.png
c:\programdata\Dell\DellDock\images\GDS_32x32.png
c:\programdata\Dell\DellDock\images\globe-32x32.png
c:\programdata\Dell\DellDock\images\McAfee_32x32.JPG
c:\programdata\Dell\DellDock\images\mycolors.png
c:\programdata\Dell\DellDock\images\netzero_icon.png
c:\programdata\Dell\DellDock\images\norton_32x32.PNG
c:\programdata\Dell\DellDock\images\pccilin_32x32.png
c:\programdata\Dell\DellDock\images\peoplepc.PNG
c:\programdata\Dell\DellDock\images\Sprint.ICO
c:\programdata\Dell\DellDock\images\syncables_32x32.jpg
c:\programdata\Dell\DellDock\images\THX_32x32.jpg
c:\programdata\Dell\DellDock\images\windows_logo.png
c:\programdata\Dell\DellDock\images\wt.PNG
c:\programdata\Dell\DellDock\images\yp_32x32.JPG
c:\programdata\Dell\DellDock\ITN\BaseCategories.xml
c:\programdata\Dell\DellDock\ITN\BaseSettings.xml
c:\programdata\Dell\DellDock\ITN\Default.lang.XML
c:\programdata\Dell\DellDock\ITN\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\ITN\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\ITN\uninstaller.xml
c:\programdata\Dell\DellDock\JPN\BaseCategories.xml
c:\programdata\Dell\DellDock\JPN\BaseSettings.xml
c:\programdata\Dell\DellDock\JPN\Default.lang.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-aol .xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-bestofweb.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-trend16.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\JPN\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\JPN\uninstaller.xml
c:\programdata\Dell\DellDock\KOR\BaseCategories.xml
c:\programdata\Dell\DellDock\KOR\BaseSettings.xml
c:\programdata\Dell\DellDock\KOR\Default.lang.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\KOR\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\KOR\uninstaller.xml
c:\programdata\Dell\DellDock\langmap.ini
c:\programdata\Dell\DellDock\NOR\BaseCategories.xml
c:\programdata\Dell\DellDock\NOR\BaseSettings.xml
c:\programdata\Dell\DellDock\NOR\Default.lang.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\NOR\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\NOR\uninstaller.xml
c:\programdata\Dell\DellDock\Shortcuts\cozi.xml
c:\programdata\Dell\DellDock\Shortcuts\emailchat-livemgr.xml
c:\programdata\Dell\DellDock\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\Shortcuts\emailchat-skype.xml
c:\programdata\Dell\DellDock\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\Shortcuts\EngXMLs.txt
c:\programdata\Dell\DellDock\Shortcuts\games-ddsgames.xml
c:\programdata\Dell\DellDock\Shortcuts\games-wtgames.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-ddshelp.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-dellsupportcenter30.XML
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-olsupport.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-syncables.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-acm.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-Dellmobilemanager.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-peoplepc.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-remoteaccess.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-SprintSmartView32.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-SprintSmartView64.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\Shortcuts\internet-yp.xml
c:\programdata\Dell\DellDock\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\Shortcuts\music-ddsmusic.xml
c:\programdata\Dell\DellDock\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\Shortcuts\music-sbaudigy.xml
c:\programdata\Dell\DellDock\Shortcuts\music-thx.xml
c:\programdata\Dell\DellDock\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\Shortcuts\music-zingspot.xml
c:\programdata\Dell\DellDock\Shortcuts\office-cozical.xml
c:\programdata\Dell\DellDock\Shortcuts\office-ddsoffice.xml
c:\programdata\Dell\DellDock\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\Shortcuts\office-msOO.xml
c:\programdata\Dell\DellDock\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\Shortcuts\photos-adobephotoshop8.xml
c:\programdata\Dell\DellDock\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\Shortcuts\security-AbsoluteDataProtection32.xml
c:\programdata\Dell\DellDock\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\Shortcuts\security-datalocal.xml
c:\programdata\Dell\DellDock\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\Shortcuts\security-failsafe.xml
c:\programdata\Dell\DellDock\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-adobepremiere8.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-cinemanowxp.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-ddsmovies.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-widi.xml
c:\programdata\Dell\DellDock\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\SPA\BaseCategories.xml
c:\programdata\Dell\DellDock\SPA\BaseSettings.xml
c:\programdata\Dell\DellDock\SPA\Default.lang.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-dellsportcenter.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-bestofweb.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-trend16.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\SPA\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\SPA\uninstaller.xml
c:\programdata\Dell\DellDock\startup_log.txt
c:\programdata\Dell\DellDock\SWE\BaseCategories.xml
c:\programdata\Dell\DellDock\SWE\BaseSettings.xml
c:\programdata\Dell\DellDock\SWE\Default.lang.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\SWE\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\SWE\uninstaller.xml
c:\programdata\Dell\DellDock\uninstaller.exe
c:\programdata\Dell\DellDock\uninstaller.xml
c:\programdata\Dell\DellDock\ZHO\BaseCategories.xml
c:\programdata\Dell\DellDock\ZHO\BaseSettings.xml
c:\programdata\Dell\DellDock\ZHO\Default.lang.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\bestofweb.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\emailchat-outlookmail.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\emailchat-sightspeed.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\emailchat-winmail.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-datasafepctransfer.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-DellCustomize.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-dellsupportcenter.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-hybrid.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-mediareduc.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-ownermanual.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-pctuneup1.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-systemvideo.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-uninstaller.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-vistahelp.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\helpsupport-vistapctransfer.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-aol.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-betterto.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-boxnet.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-bt.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-DellMobileBroadband.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-DellNetworkAssistant.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-earthlink.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-ericssonmgr.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-internetexplorer.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-livewriter.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-netzero.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-tiscali.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internet-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\internetexplorer.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\music-adobesoundbooth.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\music-idt32.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\music-idt64.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\music-vistamediaplayer.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\office-msexcel.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\office-mspowerpoint.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\office-msword.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\office-worksspreadsheet.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\office-worksword.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\photos-adobephotoshop.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\photos-livephoto.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\photos-vistaphotogallery.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\photos-webcamm08.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\photos-webcamm09.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\recyclebin.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-boxnet.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-datasafe.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-facialrecognition.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-fingerprint.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-fingerprintm08.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-lojack.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-mcafee.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-norton2008.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-nortonsave.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-trendm.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-trendmicro.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\security-vistaparentalcontrol.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-adobepremiere.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-roxio10.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-sightspeed.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-vistamediaplayer.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-vistamoviemaker.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-webcamm08.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-webcamm09.xml
c:\programdata\Dell\DellDock\ZHO\Shortcuts\videos-windowsmediacenter.xml
c:\programdata\Dell\DellDock\ZHO\uninstaller.xml
c:\programdata\Dell\uninstd.exe
c:\programdata\Microsoft\Windows\DRM\3276.tmp
c:\programdata\Microsoft\Windows\DRM\3602.tmp
c:\users\Elena\AppData\Local\common_functions.dll
c:\users\Elena\AppData\Local\ie_runner_app.exe
c:\users\Elena\AppData\Roaming\CrashRpt1402.dll
c:\users\Elena\AppData\Roaming\dbghelp.dll
c:\users\Elena\AppData\Roaming\Dell
c:\users\Elena\AppData\Roaming\Dell\DellDock\DockContents.xml
c:\users\Elena\AppData\Roaming\Dell\DellDock\DockContentsBackup.xml
.
.
(((((((((((((((((((((((((   Files Created from 2013-04-28 to 2013-05-28  )))))))))))))))))))))))))))))))
.
.
2013-05-28 20:16 . 2013-05-28 20:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-28 03:25 . 2013-05-28 03:25 -------- d-----w- c:\windows\ERUNT
2013-05-28 03:25 . 2013-05-28 03:25 -------- d-----w- C:\JRT
2013-05-28 03:24 . 2013-05-13 04:37 9460464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A580F39D-1E7E-4F26-9D71-D35803BB1A12}\mpengine.dll
2013-05-27 18:24 . 2013-05-27 18:24 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-05-27 18:18 . 2013-05-27 18:18 997344 ----a-w- c:\users\Elena\AppData\Roaming\CrashSender1402.exe
2013-05-27 18:18 . 2013-05-27 18:18 -------- d-----w- c:\users\Elena\AppData\Local\CrashRpt
2013-05-27 01:20 . 2013-05-13 04:37 9460464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-05-21 19:58 . 2013-05-21 19:58 964552 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{317875A0-4E74-407C-A27C-DDA1B65B5B0D}\gapaengine.dll
2013-05-21 19:58 . 2013-05-20 03:25 905296 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-05-20 11:29 . 2013-05-20 11:29 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-05-20 11:29 . 2013-04-04 19:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-05-20 03:20 . 2013-05-20 03:20 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2013-05-20 03:20 . 2013-05-20 03:20 -------- d-----w- c:\program files\Microsoft Security Client
2013-05-20 02:29 . 2012-06-26 10:59 940544 ----a-w- c:\users\Elena\AppData\Local\log4cxx.dll
2013-05-19 21:56 . 2013-05-19 21:56 -------- d-----w- c:\program files (x86)\MSXML 4.0
2013-05-19 20:53 . 2013-05-19 20:53 -------- d-----w- c:\users\Elena\AppData\Local\Macromedia
2013-05-18 18:12 . 2013-05-18 18:12 -------- d-----w- c:\programdata\Sunbelt
2013-05-18 18:12 . 2013-05-18 18:12 -------- d-----w- c:\users\Elena\AppData\Roaming\Sunbelt
2013-05-18 18:11 . 2010-07-27 09:48 94296 ----a-w- c:\windows\system32\drivers\sbtis.sys
2013-05-18 18:10 . 2010-08-20 14:18 27472 ----a-w- c:\windows\system32\sbbd.exe
2013-05-18 18:10 . 2010-03-22 17:11 49752 ----a-w- c:\windows\system32\drivers\sbredrv.sys
2013-05-18 18:10 . 2013-05-18 18:10 -------- d-----w- c:\program files (x86)\Sunbelt Software
2013-05-15 08:01 . 2013-04-05 06:52 2242048 ----a-w- c:\windows\system32\wininet.dll
2013-05-15 08:01 . 2013-04-05 06:50 19231232 ----a-w- c:\windows\system32\mshtml.dll
2013-05-15 08:01 . 2013-04-05 06:50 15404032 ----a-w- c:\windows\system32\ieframe.dll
2013-05-12 14:28 . 2013-05-20 11:42 -------- d-----w- c:\users\Elena\AppData\Local\Valve
2013-05-12 01:18 . 2013-05-12 01:18 -------- d-----w- c:\program files (x86)\GUM2843.tmp
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 08:06 . 2010-12-19 14:48 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 03:33 . 2012-04-15 16:30 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 03:33 . 2011-07-01 14:23 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-08 22:12 . 2011-03-29 00:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 15:29 . 2011-12-06 23:29 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-15 01:52 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 01:52 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 01:52 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 01:52 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 01:52 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 01:52 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-23 22:29 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 03:46 . 2013-04-19 21:26 9317456 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{729DED76-6716-4792-A923-5BE86886D45A}\mpengine.dll
2013-03-19 06:04 . 2013-04-10 22:26 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 22:26 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 22:26 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 22:26 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 22:26 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 22:26 112640 ----a-w- c:\windows\system32\smss.exe
2007-02-12 21:13 . 2007-02-12 21:13 36864 ----a-w- c:\program files (x86)\Common Files\AXPrint.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}"= "c:\program files (x86)\Yahoo!\Companion\Installs\cpn4\yt.dll" [2013-05-01 1500952]
.
[HKEY_CLASSES_ROOT\clsid\{81017ea9-9aa8-4a6a-9734-7af40e7d593f}]
[HKEY_CLASSES_ROOT\yt.YTNavAssistPlugin.1]
[HKEY_CLASSES_ROOT\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}]
[HKEY_CLASSES_ROOT\yt.YTNavAssistPlugin]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"="c:\program files (x86)\Logitech\Vid HD\Vid.exe" [2010-10-29 5915480]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-12-06 39408]
"Messenger (Yahoo!)"="c:\progra~2\Yahoo!\Messenger\YahooMessenger.exe" [2012-05-25 6595928]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-02-09 3093624]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18642024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-05-08 2780432]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
"FUFAXSTM"="c:\program files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe" [2009-12-03 847872]
"LTCM Client"="c:\program files (x86)\LTCM Client\ltcmClient.exe" [2009-08-05 1596096]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-12-16 498160]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"SBAMTray"="c:\program files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe" [2010-08-20 1348944]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-10-11 559616]
"Launcher"="c:\program files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe" [2011-08-01 165184]
.
c:\users\Elena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2013-1-8 228448]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBPIMSvc]
@="Service"
.
R1 MpKslb0765301;MpKslb0765301;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8B8DA410-A3AF-4BE0-92FB-01C9BC019BD5}\MpKslb0765301.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LVPrcS64;Process Monitor;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-04-30 190488]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys [2010-06-14 64600]
R2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-04-15 3289208]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys [2013-02-18 32152]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-05-26 138752]
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [2009-04-30 271640]
R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2009-04-30 30232]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2009-04-30 327576]
R3 LVUVC64;Logitech Webcam 200(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2009-04-30 6377496]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
R3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
R3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
R3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
R3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-11 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [2010-03-22 49752]
S1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [2010-07-27 94296]
S2 SBAMSvc;VIPRE Antivirus;c:\program files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe [2010-08-20 2763080]
S2 SBPIMSvc;SB Recovery Service;c:\program files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe [2010-08-20 181584]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-07-31 236544]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-05-26 01:21 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-05-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-15 03:33]
.
2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-06 03:33]
.
2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-06 03:33]
.
2013-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2456405248-4278087893-1159217496-1001Core.job
- c:\users\Elena\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-20 11:40]
.
2013-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2456405248-4278087893-1159217496-1001UA.job
- c:\users\Elena\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-20 11:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-21 8306208]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-26 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-26 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-26 415256]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.yahoo.com/
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MIF5BA~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
URLSearchHooks-{687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-Desktop Software - c:\program files (x86)\Common Files\SupportSoft\bin\bcont.exe
Wow6432Node-HKCU-Run-ComcastAntispyClient - c:\program files (x86)\comcasttb\ComcastSpywareScan\ComcastAntispy.exe
Toolbar-Locked - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{687578B9-7132-4A7A-80E4-30EE31099E03} - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-05-28  15:18:17
ComboFix-quarantined-files.txt  2013-05-28 20:18
.
Pre-Run: 368,559,800,320 bytes free
Post-Run: 368,253,464,576 bytes free
.
- - End Of File - - 8F0B1EEEAB4E0A5A94EC0AECE438835C
 



#12 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,281 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:03:46 AM

Posted 28 May 2013 - 05:46 PM


Hello Veul

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================
and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
  • Exit/Close RogueKiller+
send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic


Please Only Copy And Paste Reports Into Topic - Do Not Attach

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#13 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 28 May 2013 - 06:07 PM

TDSSKILLER Log

 

 19:00:15.0489 0156  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:00:15.0817 0156  ============================================================
19:00:15.0817 0156  Current date / time: 2013/05/28 19:00:15.0817
19:00:15.0817 0156  SystemInfo:
19:00:15.0817 0156 
19:00:15.0817 0156  OS Version: 6.1.7601 ServicePack: 1.0
19:00:15.0817 0156  Product type: Workstation
19:00:15.0817 0156  ComputerName: DELL
19:00:15.0817 0156  UserName: Elena
19:00:15.0817 0156  Windows directory: C:\Windows
19:00:15.0817 0156  System windows directory: C:\Windows
19:00:15.0817 0156  Running under WOW64
19:00:15.0817 0156  Processor architecture: Intel x64
19:00:15.0817 0156  Number of processors: 2
19:00:15.0817 0156  Page size: 0x1000
19:00:15.0817 0156  Boot type: Normal boot
19:00:15.0817 0156  ============================================================
19:00:28.0372 0156  BG loaded
19:00:30.0389 0156  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:00:30.0563 0156  ============================================================
19:00:30.0563 0156  \Device\Harddisk0\DR0:
19:00:30.0563 0156  MBR partitions:
19:00:30.0563 0156  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x13C3000
19:00:30.0563 0156  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13D7000, BlocksNum 0x38FAE800
19:00:30.0563 0156  ============================================================
19:00:30.0625 0156  C: <-> \Device\Harddisk0\DR0\Partition2
19:00:30.0625 0156  ============================================================
19:00:30.0625 0156  Initialize success
19:00:30.0625 0156  ============================================================
19:03:30.0158 4740  ============================================================
19:03:30.0159 4740  Scan started
19:03:30.0159 4740  Mode: Manual; SigCheck; TDLFS;
19:03:30.0159 4740  ============================================================
19:03:30.0831 4740  ================ Scan system memory ========================
19:03:30.0831 4740  System memory - ok
19:03:30.0832 4740  ================ Scan services =============================
19:03:30.0937 4740  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:03:31.0074 4740  1394ohci - ok
19:03:31.0105 4740  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:03:31.0121 4740  ACPI - ok
19:03:31.0147 4740  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:03:31.0224 4740  AcpiPmi - ok
19:03:31.0336 4740  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:03:31.0369 4740  AdobeFlashPlayerUpdateSvc - ok
19:03:31.0420 4740  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
19:03:31.0450 4740  adp94xx - ok
19:03:31.0475 4740  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
19:03:31.0492 4740  adpahci - ok
19:03:31.0504 4740  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
19:03:31.0519 4740  adpu320 - ok
19:03:31.0552 4740  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:03:31.0644 4740  AeLookupSvc - ok
19:03:31.0688 4740  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
19:03:31.0765 4740  AFD - ok
19:03:31.0800 4740  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:03:31.0828 4740  agp440 - ok
19:03:31.0872 4740  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
19:03:31.0918 4740  ALG - ok
19:03:31.0945 4740  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:03:31.0958 4740  aliide - ok
19:03:31.0971 4740  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
19:03:31.0984 4740  amdide - ok
19:03:32.0014 4740  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
19:03:32.0064 4740  AmdK8 - ok
19:03:32.0073 4740  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
19:03:32.0109 4740  AmdPPM - ok
19:03:32.0133 4740  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:03:32.0147 4740  amdsata - ok
19:03:32.0173 4740  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
19:03:32.0188 4740  amdsbs - ok
19:03:32.0199 4740  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:03:32.0212 4740  amdxata - ok
19:03:32.0255 4740  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
19:03:32.0377 4740  AppID - ok
19:03:32.0405 4740  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:03:32.0459 4740  AppIDSvc - ok
19:03:32.0479 4740  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
19:03:32.0535 4740  Appinfo - ok
19:03:32.0659 4740  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:03:32.0688 4740  Apple Mobile Device - ok
19:03:32.0722 4740  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
19:03:32.0738 4740  arc - ok
19:03:32.0750 4740  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
19:03:32.0766 4740  arcsas - ok
19:03:32.0792 4740  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:03:32.0839 4740  AsyncMac - ok
19:03:32.0878 4740  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
19:03:32.0903 4740  atapi - ok
19:03:32.0960 4740  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:03:33.0012 4740  AudioEndpointBuilder - ok
19:03:33.0023 4740  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:03:33.0057 4740  AudioSrv - ok
19:03:33.0109 4740  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:03:33.0156 4740  AxInstSV - ok
19:03:33.0194 4740  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
19:03:33.0228 4740  b06bdrv - ok
19:03:33.0256 4740  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:03:33.0289 4740  b57nd60a - ok
19:03:33.0378 4740  [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
19:03:33.0428 4740  BBSvc - ok
19:03:33.0444 4740  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:03:33.0460 4740  BDESVC - ok
19:03:33.0474 4740  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:03:33.0515 4740  Beep - ok
19:03:33.0566 4740  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
19:03:33.0602 4740  BFE - ok
19:03:33.0758 4740  [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
19:03:33.0853 4740  BHDrvx64 - ok
19:03:33.0891 4740  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
19:03:33.0940 4740  BITS - ok
19:03:33.0979 4740  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:03:34.0016 4740  blbdrive - ok
19:03:34.0133 4740  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:03:34.0170 4740  Bonjour Service - ok
19:03:34.0207 4740  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:03:34.0268 4740  bowser - ok
19:03:34.0301 4740  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:03:34.0406 4740  BrFiltLo - ok
19:03:34.0422 4740  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:03:34.0439 4740  BrFiltUp - ok
19:03:34.0492 4740  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
19:03:34.0524 4740  Browser - ok
19:03:34.0546 4740  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:03:34.0591 4740  Brserid - ok
19:03:34.0613 4740  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:03:34.0638 4740  BrSerWdm - ok
19:03:34.0655 4740  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:03:34.0704 4740  BrUsbMdm - ok
19:03:34.0711 4740  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:03:34.0725 4740  BrUsbSer - ok
19:03:34.0748 4740  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:03:34.0783 4740  BTHMODEM - ok
19:03:34.0822 4740  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
19:03:34.0896 4740  bthserv - ok
19:03:34.0975 4740  [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NAV       C:\Windows\system32\drivers\NAVx64\1309010.00E\ccSetx64.sys
19:03:35.0047 4740  ccSet_NAV - ok
19:03:35.0071 4740  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:03:35.0103 4740  cdfs - ok
19:03:35.0147 4740  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
19:03:35.0189 4740  cdrom - ok
19:03:35.0248 4740  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
19:03:35.0321 4740  CertPropSvc - ok
19:03:35.0350 4740  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
19:03:35.0367 4740  circlass - ok
19:03:35.0394 4740  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
19:03:35.0411 4740  CLFS - ok
19:03:35.0488 4740  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:03:35.0504 4740  clr_optimization_v2.0.50727_32 - ok
19:03:35.0554 4740  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:03:35.0568 4740  clr_optimization_v2.0.50727_64 - ok
19:03:35.0695 4740  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:03:35.0718 4740  clr_optimization_v4.0.30319_32 - ok
19:03:35.0743 4740  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:03:35.0756 4740  clr_optimization_v4.0.30319_64 - ok
19:03:35.0802 4740  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:03:35.0828 4740  CmBatt - ok
19:03:35.0848 4740  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:03:35.0859 4740  cmdide - ok
19:03:35.0963 4740  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
19:03:36.0042 4740  CNG - ok
19:03:36.0100 4740  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:03:36.0126 4740  Compbatt - ok
19:03:36.0171 4740  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:03:36.0202 4740  CompositeBus - ok
19:03:36.0223 4740  COMSysApp - ok
19:03:36.0244 4740  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
19:03:36.0256 4740  crcdisk - ok
19:03:36.0335 4740  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:03:36.0373 4740  CryptSvc - ok
19:03:36.0579 4740  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:03:36.0614 4740  cvhsvc - ok
19:03:36.0677 4740  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:03:36.0727 4740  DcomLaunch - ok
19:03:36.0794 4740  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
19:03:36.0863 4740  defragsvc - ok
19:03:36.0897 4740  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:03:36.0967 4740  DfsC - ok
19:03:37.0024 4740  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:03:37.0059 4740  Dhcp - ok
19:03:37.0088 4740  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
19:03:37.0128 4740  discache - ok
19:03:37.0167 4740  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
19:03:37.0194 4740  Disk - ok
19:03:37.0224 4740  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:03:37.0267 4740  Dnscache - ok
19:03:37.0325 4740  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
19:03:37.0363 4740  DockLoginService ( UnsignedFile.Multi.Generic ) - warning
19:03:37.0363 4740  DockLoginService - detected UnsignedFile.Multi.Generic (1)
19:03:37.0418 4740  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:03:37.0473 4740  dot3svc - ok
19:03:37.0495 4740  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
19:03:37.0541 4740  DPS - ok
19:03:37.0581 4740  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:03:37.0618 4740  drmkaud - ok
19:03:37.0678 4740  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:03:37.0705 4740  DXGKrnl - ok
19:03:37.0720 4740  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
19:03:37.0767 4740  EapHost - ok
19:03:38.0057 4740  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
19:03:38.0159 4740  ebdrv - ok
19:03:38.0286 4740  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:03:38.0374 4740  eeCtrl - ok
19:03:38.0400 4740  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
19:03:38.0425 4740  EFS - ok
19:03:38.0535 4740  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:03:38.0601 4740  ehRecvr - ok
19:03:38.0624 4740  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
19:03:38.0656 4740  ehSched - ok
19:03:38.0723 4740  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
19:03:38.0773 4740  elxstor - ok
19:03:38.0855 4740  [ 7DB097F4F6786307168C0DDDEC43A565 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
19:03:38.0880 4740  EPSON_EB_RPCV4_04 - ok
19:03:38.0899 4740  [ 258AA65A0862E19B7DE6981FDA3758AD ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
19:03:38.0929 4740  EPSON_PM_RPCV4_04 - ok
19:03:38.0955 4740  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:03:38.0985 4740  ErrDev - ok
19:03:39.0016 4740  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
19:03:39.0068 4740  EventSystem - ok
19:03:39.0086 4740  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
19:03:39.0133 4740  exfat - ok
19:03:39.0164 4740  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:03:39.0208 4740  fastfat - ok
19:03:39.0255 4740  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
19:03:39.0287 4740  Fax - ok
19:03:39.0310 4740  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:03:39.0341 4740  fdc - ok
19:03:39.0367 4740  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
19:03:39.0401 4740  fdPHost - ok
19:03:39.0427 4740  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:03:39.0469 4740  FDResPub - ok
19:03:39.0493 4740  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:03:39.0506 4740  FileInfo - ok
19:03:39.0529 4740  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:03:39.0565 4740  Filetrace - ok
19:03:39.0581 4740  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:03:39.0595 4740  flpydisk - ok
19:03:39.0642 4740  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:03:39.0667 4740  FltMgr - ok
19:03:39.0716 4740  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
19:03:39.0756 4740  FontCache - ok
19:03:39.0798 4740  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:03:39.0809 4740  FontCache3.0.0.0 - ok
19:03:39.0826 4740  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:03:39.0839 4740  FsDepends - ok
19:03:39.0865 4740  [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
19:03:39.0882 4740  fssfltr - ok
19:03:39.0930 4740  [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:03:40.0007 4740  fsssvc - ok
19:03:40.0042 4740  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:03:40.0054 4740  Fs_Rec - ok
19:03:40.0088 4740  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:03:40.0106 4740  fvevol - ok
19:03:40.0123 4740  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
19:03:40.0136 4740  gagp30kx - ok
19:03:40.0179 4740  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:03:40.0200 4740  GEARAspiWDM - ok
19:03:40.0270 4740  [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
19:03:40.0294 4740  GoToAssist - ok
19:03:40.0332 4740  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
19:03:40.0386 4740  gpsvc - ok
19:03:40.0432 4740  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:03:40.0444 4740  gupdate - ok
19:03:40.0475 4740  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:03:40.0496 4740  gupdatem - ok
19:03:40.0527 4740  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:03:40.0553 4740  gusvc - ok
19:03:40.0590 4740  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
19:03:40.0612 4740  hamachi - ok
19:03:40.0647 4740  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:03:40.0682 4740  hcw85cir - ok
19:03:40.0718 4740  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:03:40.0761 4740  HDAudBus - ok
19:03:40.0781 4740  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
19:03:40.0823 4740  HidBatt - ok
19:03:40.0842 4740  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
19:03:40.0860 4740  HidBth - ok
19:03:40.0870 4740  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
19:03:40.0886 4740  HidIr - ok
19:03:40.0907 4740  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
19:03:40.0965 4740  hidserv - ok
19:03:41.0006 4740  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:03:41.0020 4740  HidUsb - ok
19:03:41.0071 4740  [ DD9C88B116408B30F855A76E09DD2962 ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
19:03:41.0096 4740  hitmanpro37 - ok
19:03:41.0142 4740  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:03:41.0184 4740  hkmsvc - ok
19:03:41.0216 4740  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:03:41.0246 4740  HomeGroupListener - ok
19:03:41.0273 4740  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:03:41.0305 4740  HomeGroupProvider - ok
19:03:41.0366 4740  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:03:41.0381 4740  HpSAMD - ok
19:03:41.0442 4740  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:03:41.0527 4740  HTTP - ok
19:03:41.0560 4740  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:03:41.0572 4740  hwpolicy - ok
19:03:41.0607 4740  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
19:03:41.0623 4740  i8042prt - ok
19:03:41.0664 4740  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
19:03:41.0678 4740  iaStor - ok
19:03:41.0734 4740  [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:03:41.0753 4740  IAStorDataMgrSvc - ok
19:03:41.0788 4740  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:03:41.0823 4740  iaStorV - ok
19:03:41.0871 4740  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:03:41.0897 4740  idsvc - ok
19:03:41.0975 4740  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\IPSDefs\20130131.001\IDSvia64.sys
19:03:42.0029 4740  IDSVia64 - ok
19:03:42.0235 4740  [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:03:42.0375 4740  igfx - ok
19:03:42.0404 4740  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
19:03:42.0417 4740  iirsp - ok
19:03:42.0463 4740  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
19:03:42.0508 4740  IKEEXT - ok
19:03:42.0580 4740  [ 492CD3A94913D753B4591CD9E29EC843 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:03:42.0625 4740  IntcAzAudAddService - ok
19:03:42.0661 4740  [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
19:03:42.0704 4740  IntcHdmiAddService - ok
19:03:42.0731 4740  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
19:03:42.0744 4740  intelide - ok
19:03:42.0794 4740  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:03:42.0835 4740  intelppm - ok
19:03:42.0871 4740  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:03:42.0925 4740  IPBusEnum - ok
19:03:42.0976 4740  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:03:43.0035 4740  IpFilterDriver - ok
19:03:43.0078 4740  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:03:43.0129 4740  iphlpsvc - ok
19:03:43.0164 4740  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:03:43.0202 4740  IPMIDRV - ok
19:03:43.0243 4740  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:03:43.0306 4740  IPNAT - ok
19:03:43.0368 4740  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:03:43.0405 4740  iPod Service - ok
19:03:43.0454 4740  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:03:43.0489 4740  IRENUM - ok
19:03:43.0518 4740  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:03:43.0532 4740  isapnp - ok
19:03:43.0567 4740  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:03:43.0583 4740  iScsiPrt - ok
19:03:43.0612 4740  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
19:03:43.0623 4740  kbdclass - ok
19:03:43.0632 4740  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:03:43.0663 4740  kbdhid - ok
19:03:43.0678 4740  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
19:03:43.0690 4740  KeyIso - ok
19:03:43.0729 4740  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:03:43.0743 4740  KSecDD - ok
19:03:43.0794 4740  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:03:43.0808 4740  KSecPkg - ok
19:03:43.0841 4740  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:03:43.0884 4740  ksthunk - ok
19:03:43.0924 4740  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:03:43.0985 4740  KtmRm - ok
19:03:44.0021 4740  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:03:44.0063 4740  LanmanServer - ok
19:03:44.0097 4740  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:03:44.0150 4740  LanmanWorkstation - ok
19:03:44.0187 4740  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:03:44.0236 4740  lltdio - ok
19:03:44.0267 4740  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:03:44.0314 4740  lltdsvc - ok
19:03:44.0331 4740  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:03:44.0364 4740  lmhosts - ok
19:03:44.0403 4740  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
19:03:44.0417 4740  LSI_FC - ok
19:03:44.0429 4740  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
19:03:44.0443 4740  LSI_SAS - ok
19:03:44.0457 4740  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:03:44.0471 4740  LSI_SAS2 - ok
19:03:44.0482 4740  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:03:44.0496 4740  LSI_SCSI - ok
19:03:44.0531 4740  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
19:03:44.0579 4740  luafv - ok
19:03:44.0619 4740  [ 4DB7D24F69354073A1C13F5889E63208 ] lvpopf64        C:\Windows\system32\DRIVERS\lvpopf64.sys
19:03:44.0644 4740  lvpopf64 - ok
19:03:44.0673 4740  [ 7717A2CB550267860D3933F3FBA0216F ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
19:03:44.0698 4740  LVPr2M64 - ok
19:03:44.0719 4740  [ 7717A2CB550267860D3933F3FBA0216F ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
19:03:44.0728 4740  LVPr2Mon - ok
19:03:44.0766 4740  [ 8EBEB7E7A0C3D295CA6BBCFA942C6AA8 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
19:03:44.0778 4740  LVPrcS64 - ok

19:03:44.0826 4740  [ 125AE13C293889001B8456CF3EB04A40 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
19:03:44.0852 4740  LVRS64 - ok
19:03:44.0970 4740  [ A5B0494409FB08DCDC42A216C6EAB0F7 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
19:03:45.0073 4740  LVUVC64 - ok
19:03:45.0156 4740  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
19:03:45.0174 4740  MBAMProtector - ok
19:03:45.0241 4740  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:03:45.0259 4740  MBAMScheduler - ok
19:03:45.0280 4740  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:03:45.0305 4740  MBAMService - ok
19:03:45.0335 4740  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:03:45.0426 4740  Mcx2Svc - ok
19:03:45.0442 4740  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
19:03:45.0459 4740  megasas - ok
19:03:45.0481 4740  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
19:03:45.0506 4740  MegaSR - ok
19:03:45.0544 4740  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
19:03:45.0594 4740  MMCSS - ok
19:03:45.0621 4740  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
19:03:45.0682 4740  Modem - ok
19:03:45.0712 4740  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:03:45.0744 4740  monitor - ok
19:03:45.0770 4740  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:03:45.0783 4740  mouclass - ok
19:03:45.0792 4740  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:03:45.0821 4740  mouhid - ok
19:03:45.0866 4740  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:03:45.0884 4740  mountmgr - ok
19:03:45.0943 4740  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:03:46.0005 4740  MozillaMaintenance - ok
19:03:46.0046 4740  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
19:03:46.0075 4740  MpFilter - ok
19:03:46.0092 4740  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:03:46.0108 4740  mpio - ok
19:03:46.0148 4740  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:03:46.0187 4740  mpsdrv - ok
19:03:46.0228 4740  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:03:46.0283 4740  MpsSvc - ok
19:03:46.0314 4740  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:03:46.0344 4740  MRxDAV - ok
19:03:46.0375 4740  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:03:46.0420 4740  mrxsmb - ok
19:03:46.0454 4740  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:03:46.0480 4740  mrxsmb10 - ok
19:03:46.0504 4740  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:03:46.0521 4740  mrxsmb20 - ok
19:03:46.0550 4740  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:03:46.0563 4740  msahci - ok
19:03:46.0590 4740  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:03:46.0606 4740  msdsm - ok
19:03:46.0628 4740  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
19:03:46.0668 4740  MSDTC - ok
19:03:46.0698 4740  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:03:46.0730 4740  Msfs - ok
19:03:46.0740 4740  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:03:46.0788 4740  mshidkmdf - ok
19:03:46.0808 4740  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:03:46.0820 4740  msisadrv - ok
19:03:46.0857 4740  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:03:46.0902 4740  MSiSCSI - ok
19:03:46.0910 4740  msiserver - ok
19:03:46.0940 4740  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:03:46.0989 4740  MSKSSRV - ok
19:03:47.0213 4740  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:03:47.0229 4740  MsMpSvc - ok
19:03:47.0257 4740  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:03:47.0294 4740  MSPCLOCK - ok
19:03:47.0320 4740  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:03:47.0406 4740  MSPQM - ok
19:03:47.0448 4740  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:03:47.0466 4740  MsRPC - ok
19:03:47.0489 4740  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:03:47.0501 4740  mssmbios - ok
19:03:47.0526 4740  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:03:47.0578 4740  MSTEE - ok
19:03:47.0606 4740  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
19:03:47.0625 4740  MTConfig - ok
19:03:47.0750 4740  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:03:47.0782 4740  Mup - ok
19:03:47.0842 4740  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
19:03:47.0890 4740  napagent - ok
19:03:47.0945 4740  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:03:48.0032 4740  NativeWifiP - ok
19:03:48.0336 4740  [ F2840DBFE9322F35557219AE82CC4597 ] NAV             C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe
19:03:48.0348 4740  NAV - ok
19:03:48.0503 4740  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\VirusDefs\20130201.004\ENG64.SYS
19:03:48.0538 4740  NAVENG - ok
19:03:48.0582 4740  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\VirusDefs\20130201.004\EX64.SYS
19:03:48.0773 4740  NAVEX15 - ok
19:03:48.0817 4740  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:03:48.0853 4740  NDIS - ok
19:03:48.0888 4740  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:03:48.0945 4740  NdisCap - ok
19:03:48.0973 4740  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:03:49.0004 4740  NdisTapi - ok
19:03:49.0039 4740  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:03:49.0095 4740  Ndisuio - ok
19:03:49.0129 4740  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:03:49.0176 4740  NdisWan - ok
19:03:49.0205 4740  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:03:49.0245 4740  NDProxy - ok
19:03:49.0267 4740  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:03:49.0331 4740  NetBIOS - ok
19:03:49.0356 4740  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:03:49.0401 4740  NetBT - ok
19:03:49.0422 4740  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
19:03:49.0435 4740  Netlogon - ok
19:03:49.0470 4740  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
19:03:49.0531 4740  Netman - ok
19:03:49.0540 4740  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
19:03:49.0606 4740  netprofm - ok
19:03:49.0632 4740  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:03:49.0644 4740  NetTcpPortSharing - ok
19:03:49.0667 4740  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
19:03:49.0680 4740  nfrd960 - ok
19:03:49.0735 4740  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:03:49.0780 4740  NisDrv - ok
19:03:49.0819 4740  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
19:03:49.0850 4740  NisSrv - ok
19:03:49.0887 4740  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:03:49.0916 4740  NlaSvc - ok
19:03:49.0938 4740  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:03:49.0970 4740  Npfs - ok
19:03:50.0039 4740  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
19:03:50.0085 4740  nsi - ok
19:03:50.0115 4740  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:03:50.0163 4740  nsiproxy - ok
19:03:50.0214 4740  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:03:50.0290 4740  Ntfs - ok
19:03:50.0317 4740  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
19:03:50.0347 4740  Null - ok
19:03:50.0388 4740  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:03:50.0402 4740  nvraid - ok
19:03:50.0429 4740  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:03:50.0443 4740  nvstor - ok
19:03:50.0455 4740  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:03:50.0470 4740  nv_agp - ok
19:03:50.0493 4740  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:03:50.0508 4740  ohci1394 - ok
19:03:50.0544 4740  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:03:50.0557 4740  ose - ok
19:03:50.0703 4740  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:03:50.0871 4740  osppsvc - ok
19:03:50.0910 4740  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:03:50.0939 4740  p2pimsvc - ok
19:03:50.0970 4740  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:03:51.0001 4740  p2psvc - ok
19:03:51.0033 4740  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:03:51.0049 4740  Parport - ok
19:03:51.0077 4740  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:03:51.0090 4740  partmgr - ok
19:03:51.0104 4740  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:03:51.0135 4740  PcaSvc - ok
19:03:51.0164 4740  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
19:03:51.0178 4740  pci - ok
19:03:51.0197 4740  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
19:03:51.0209 4740  pciide - ok
19:03:51.0225 4740  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:03:51.0241 4740  pcmcia - ok
19:03:51.0252 4740  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:03:51.0266 4740  pcw - ok
19:03:51.0288 4740  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:03:51.0341 4740  PEAUTH - ok
19:03:51.0390 4740  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:03:51.0424 4740  PerfHost - ok
19:03:51.0472 4740  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
19:03:51.0544 4740  pla - ok
19:03:51.0594 4740  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:03:51.0625 4740  PlugPlay - ok
19:03:51.0650 4740  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:03:51.0680 4740  PNRPAutoReg - ok
19:03:51.0701 4740  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:03:51.0716 4740  PNRPsvc - ok
19:03:51.0756 4740  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:03:51.0809 4740  PolicyAgent - ok
19:03:51.0856 4740  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
19:03:51.0920 4740  Power - ok
19:03:51.0955 4740  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:03:52.0001 4740  PptpMiniport - ok
19:03:52.0022 4740  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
19:03:52.0047 4740  Processor - ok
19:03:52.0080 4740  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:03:52.0106 4740  ProfSvc - ok
19:03:52.0127 4740  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:03:52.0141 4740  ProtectedStorage - ok
19:03:52.0183 4740  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:03:52.0243 4740  Psched - ok
19:03:52.0272 4740  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
19:03:52.0283 4740  PxHlpa64 - ok
19:03:52.0334 4740  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
19:03:52.0398 4740  ql2300 - ok
19:03:52.0417 4740  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
19:03:52.0431 4740  ql40xx - ok
19:03:52.0454 4740  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
19:03:52.0475 4740  QWAVE - ok
19:03:52.0484 4740  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:03:52.0517 4740  QWAVEdrv - ok
19:03:52.0534 4740  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:03:52.0582 4740  RasAcd - ok
19:03:52.0608 4740  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:03:52.0641 4740  RasAgileVpn - ok
19:03:52.0653 4740  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
19:03:52.0697 4740  RasAuto - ok
19:03:52.0720 4740  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:03:52.0783 4740  Rasl2tp - ok
19:03:52.0821 4740  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
19:03:52.0857 4740  RasMan - ok
19:03:52.0874 4740  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:03:52.0915 4740  RasPppoe - ok
19:03:52.0932 4740  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:03:52.0995 4740  RasSstp - ok
19:03:53.0025 4740  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:03:53.0074 4740  rdbss - ok
19:03:53.0091 4740  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:03:53.0107 4740  rdpbus - ok
19:03:53.0120 4740  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:03:53.0151 4740  RDPCDD - ok
19:03:53.0165 4740  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:03:53.0213 4740  RDPENCDD - ok
19:03:53.0228 4740  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:03:53.0259 4740  RDPREFMP - ok
19:03:53.0287 4740  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:03:53.0303 4740  RDPWD - ok
19:03:53.0342 4740  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:03:53.0373 4740  rdyboost - ok
19:03:53.0396 4740  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:03:53.0439 4740  RemoteAccess - ok
19:03:53.0456 4740  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:03:53.0503 4740  RemoteRegistry - ok
19:03:53.0526 4740  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:03:53.0593 4740  RpcEptMapper - ok
19:03:53.0610 4740  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
19:03:53.0640 4740  RpcLocator - ok
19:03:53.0673 4740  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
19:03:53.0707 4740  RpcSs - ok
19:03:53.0749 4740  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:03:53.0781 4740  rspndr - ok
19:03:53.0827 4740  [ F65F171165FBB613F7AA3CC78E8CAB42 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
19:03:53.0876 4740  RTL8167 - ok
19:03:53.0892 4740  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
19:03:53.0904 4740  SamSs - ok
19:03:54.0028 4740  [ AD720D4D463B72C58DA9FF5933723A66 ] SBAMSvc         C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe
19:03:54.0072 4740  SBAMSvc - ok
19:03:54.0104 4740  [ F90431C321F42F0E647B0C6A49644D97 ] sbapifs         C:\Windows\system32\DRIVERS\sbapifs.sys
19:03:54.0114 4740  sbapifs - ok
19:03:54.0142 4740  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:03:54.0156 4740  sbp2port - ok
19:03:54.0178 4740  [ 9FFBE1A6D3A919D83AD7984DBC012F8C ] SBPIMSvc        C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe
19:03:54.0189 4740  SBPIMSvc - ok
19:03:54.0223 4740  [ 7E07D2A5B910C71D6474E9AA0EAA1825 ] SBRE            C:\Windows\system32\drivers\SBREdrv.sys
19:03:54.0233 4740  SBRE - ok
19:03:54.0266 4740  [ C470FA779D0BD9A2309A04E49DD0EB8C ] SbTis           C:\Windows\system32\drivers\sbtis.sys
19:03:54.0277 4740  SbTis - ok
19:03:54.0306 4740  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:03:54.0341 4740  SCardSvr - ok
19:03:54.0369 4740  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:03:54.0415 4740  scfilter - ok
19:03:54.0468 4740  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
19:03:54.0516 4740  Schedule - ok
19:03:54.0552 4740  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:03:54.0583 4740  SCPolicySvc - ok
19:03:54.0602 4740  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:03:54.0632 4740  SDRSVC - ok
19:03:54.0714 4740  [ 78779EE07231C658B483B1F38B5088DF ] SeaPort         C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
19:03:54.0728 4740  SeaPort - ok
19:03:54.0746 4740  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:03:54.0794 4740  secdrv - ok
19:03:54.0822 4740  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
19:03:54.0875 4740  seclogon - ok
19:03:54.0896 4740  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
19:03:54.0936 4740  SENS - ok
19:03:54.0958 4740  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:03:54.0974 4740  SensrSvc - ok
19:03:55.0002 4740  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:03:55.0029 4740  Serenum - ok
19:03:55.0053 4740  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:03:55.0069 4740  Serial - ok
19:03:55.0096 4740  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
19:03:55.0125 4740  sermouse - ok
19:03:55.0162 4740  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:03:55.0206 4740  SessionEnv - ok
19:03:55.0220 4740  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:03:55.0245 4740  sffdisk - ok
19:03:55.0260 4740  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:03:55.0285 4740  sffp_mmc - ok
19:03:55.0303 4740  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:03:55.0334 4740  sffp_sd - ok
19:03:55.0339 4740  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:03:55.0353 4740  sfloppy - ok
19:03:55.0400 4740  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
19:03:55.0420 4740  Sftfs - ok
19:03:55.0484 4740  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:03:55.0508 4740  sftlist - ok
19:03:55.0532 4740  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
19:03:55.0546 4740  Sftplay - ok
19:03:55.0557 4740  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
19:03:55.0567 4740  Sftredir - ok
19:03:55.0678 4740  [ 74EC60E20516AAA573BE74F31175270F ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
19:03:55.0717 4740  SftService - ok
19:03:55.0747 4740  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
19:03:55.0757 4740  Sftvol - ok
19:03:55.0776 4740  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:03:55.0788 4740  sftvsa - ok
19:03:55.0808 4740  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:03:55.0857 4740  SharedAccess - ok
19:03:55.0900 4740  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:03:55.0949 4740  ShellHWDetection - ok
19:03:55.0979 4740  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:03:56.0005 4740  SiSRaid2 - ok
19:03:56.0025 4740  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
19:03:56.0038 4740  SiSRaid4 - ok
19:03:56.0159 4740  [ 0C1B2E3A897397738D9F81CD3D152AF0 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:03:56.0209 4740  Skype C2C Service - ok
19:03:56.0272 4740  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
19:03:56.0295 4740  SkypeUpdate - ok
19:03:56.0335 4740  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:03:56.0384 4740  Smb - ok
19:03:56.0416 4740  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:03:56.0454 4740  SNMPTRAP - ok
19:03:56.0480 4740  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:03:56.0493 4740  spldr - ok
19:03:56.0529 4740  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
19:03:56.0549 4740  Spooler - ok
19:03:56.0635 4740  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
19:03:56.0701 4740  sppsvc - ok
19:03:56.0718 4740  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:03:56.0751 4740  sppuinotify - ok
19:03:56.0808 4740  [ 891793E00432FA055CF040605C260E49 ] SRTSP           C:\Windows\System32\Drivers\NAVx64\1309010.00E\SRTSP64.SYS
19:03:56.0900 4740  SRTSP - ok
19:03:56.0932 4740  [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX          C:\Windows\system32\drivers\NAVx64\1309010.00E\SRTSPX64.SYS
19:03:56.0956 4740  SRTSPX - ok
19:03:56.0993 4740  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:03:57.0035 4740  srv - ok
19:03:57.0058 4740  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:03:57.0086 4740  srv2 - ok
19:03:57.0107 4740  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:03:57.0121 4740  srvnet - ok
19:03:57.0161 4740  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:03:57.0207 4740  SSDPSRV - ok
19:03:57.0230 4740  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:03:57.0263 4740  SstpSvc - ok
19:03:57.0279 4740  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
19:03:57.0293 4740  stexstor - ok
19:03:57.0323 4740  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
19:03:57.0358 4740  stisvc - ok
19:03:57.0393 4740  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:03:57.0420 4740  swenum - ok
19:03:57.0458 4740  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
19:03:57.0509 4740  swprv - ok
19:03:57.0555 4740  [ 8B2430762099598DA40686F754632EFD ] SymDS           C:\Windows\system32\drivers\NAVx64\1309010.00E\SYMDS64.SYS
19:03:57.0637 4740  SymDS - ok
19:03:57.0679 4740  [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA          C:\Windows\system32\drivers\NAVx64\1309010.00E\SYMEFA64.SYS
19:03:57.0752 4740  SymEFA - ok
19:03:57.0782 4740  [ 894579207E39C465737E850A252CE4F2 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
19:03:57.0822 4740  SymEvent - ok
19:03:57.0837 4740  [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON         C:\Windows\system32\drivers\NAVx64\1309010.00E\Ironx64.SYS
19:03:57.0889 4740  SymIRON - ok
19:03:57.0911 4740  [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS         C:\Windows\System32\Drivers\NAVx64\1309010.00E\SYMNETS.SYS
19:03:57.0956 4740  SymNetS - ok
19:03:58.0013 4740  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
19:03:58.0079 4740  SysMain - ok
19:03:58.0109 4740  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:03:58.0129 4740  TabletInputService - ok
19:03:58.0161 4740  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:03:58.0208 4740  TapiSrv - ok
19:03:58.0228 4740  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
19:03:58.0260 4740  TBS - ok
19:03:58.0318 4740  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:03:58.0372 4740  Tcpip - ok
19:03:58.0427 4740  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:03:58.0459 4740  TCPIP6 - ok
19:03:58.0495 4740  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:03:58.0510 4740  tcpipreg - ok
19:03:58.0555 4740  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:03:58.0586 4740  TDPIPE - ok
19:03:58.0632 4740  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:03:58.0657 4740  TDTCP - ok
19:03:58.0692 4740  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:03:58.0722 4740  tdx - ok
19:03:58.0755 4740  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:03:58.0767 4740  TermDD - ok
19:03:58.0821 4740  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
19:03:58.0875 4740  TermService - ok
19:03:58.0900 4740  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
19:03:58.0933 4740  Themes - ok
19:03:58.0954 4740  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
19:03:58.0985 4740  THREADORDER - ok
19:03:59.0000 4740  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
19:03:59.0048 4740  TrkWks - ok
19:03:59.0091 4740  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:03:59.0122 4740  TrustedInstaller - ok
19:03:59.0154 4740  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:03:59.0198 4740  tssecsrv - ok
19:03:59.0243 4740  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:03:59.0257 4740  TsUsbFlt - ok
19:03:59.0285 4740  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:03:59.0316 4740  tunnel - ok
19:03:59.0337 4740  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
19:03:59.0350 4740  uagp35 - ok
19:03:59.0423 4740  [ A17C58C0582EE560C72F60764ED63224 ] UCOREW64        C:\FlashTmp\UCOREW64.SYS
19:03:59.0467 4740  UCOREW64 - ok
19:03:59.0506 4740  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:03:59.0540 4740  udfs - ok
19:03:59.0570 4740  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:03:59.0588 4740  UI0Detect - ok
19:03:59.0622 4740  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:03:59.0636 4740  uliagpkx - ok
19:03:59.0688 4740  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
19:03:59.0728 4740  umbus - ok
19:03:59.0756 4740  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
19:03:59.0793 4740  UmPass - ok
19:03:59.0823 4740  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
19:03:59.0867 4740  upnphost - ok
19:03:59.0930 4740  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
19:03:59.0970 4740  USBAAPL64 - ok
19:04:00.0019 4740  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
19:04:00.0056 4740  usbaudio - ok
19:04:00.0086 4740  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:04:00.0124 4740  usbccgp - ok
19:04:00.0158 4740  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:04:00.0176 4740  usbcir - ok
19:04:00.0190 4740  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
19:04:00.0217 4740  usbehci - ok
19:04:00.0273 4740  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:04:00.0316 4740  usbhub - ok
19:04:00.0332 4740  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:04:00.0353 4740  usbohci - ok
19:04:00.0382 4740  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:04:00.0408 4740  usbprint - ok
19:04:00.0433 4740  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:04:00.0466 4740  usbscan - ok
19:04:00.0482 4740  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
19:04:00.0512 4740  USBSTOR - ok
19:04:00.0534 4740  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
19:04:00.0568 4740  usbuhci - ok
19:04:00.0594 4740  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:04:00.0612 4740  usbvideo - ok
19:04:00.0641 4740  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
19:04:00.0685 4740  UxSms - ok
19:04:00.0701 4740  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
19:04:00.0714 4740  VaultSvc - ok
19:04:00.0748 4740  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:04:00.0774 4740  vdrvroot - ok
19:04:00.0828 4740  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
19:04:00.0881 4740  vds - ok
19:04:00.0933 4740  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:04:00.0953 4740  vga - ok
19:04:00.0969 4740  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:04:01.0011 4740  VgaSave - ok
19:04:01.0046 4740  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:04:01.0076 4740  vhdmp - ok
19:04:01.0118 4740  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:04:01.0143 4740  viaide - ok
19:04:01.0151 4740  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:04:01.0164 4740  volmgr - ok
19:04:01.0190 4740  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:04:01.0208 4740  volmgrx - ok
19:04:01.0226 4740  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:04:01.0242 4740  volsnap - ok
19:04:01.0260 4740  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
19:04:01.0276 4740  vsmraid - ok
19:04:01.0331 4740  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
19:04:01.0465 4740  VSS - ok
19:04:01.0482 4740  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
19:04:01.0525 4740  vwifibus - ok
19:04:01.0557 4740  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
19:04:01.0595 4740  W32Time - ok
19:04:01.0621 4740  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
19:04:01.0636 4740  WacomPen - ok
19:04:01.0670 4740  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:04:01.0711 4740  WANARP - ok
19:04:01.0715 4740  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:04:01.0745 4740  Wanarpv6 - ok
19:04:01.0815 4740  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:04:01.0872 4740  WatAdminSvc - ok
19:04:01.0929 4740  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
19:04:01.0974 4740  wbengine - ok
19:04:02.0012 4740  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:04:02.0048 4740  WbioSrvc - ok
19:04:02.0082 4740  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:04:02.0119 4740  wcncsvc - ok
19:04:02.0142 4740  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:04:02.0157 4740  WcsPlugInService - ok
19:04:02.0179 4740  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
19:04:02.0192 4740  Wd - ok
19:04:02.0232 4740  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:04:02.0265 4740  Wdf01000 - ok
19:04:02.0275 4740  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:04:02.0310 4740  WdiServiceHost - ok
19:04:02.0313 4740  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:04:02.0333 4740  WdiSystemHost - ok
19:04:02.0360 4740  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
19:04:02.0395 4740  WebClient - ok
19:04:02.0414 4740  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:04:02.0468 4740  Wecsvc - ok
19:04:02.0489 4740  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:04:02.0532 4740  wercplsupport - ok
19:04:02.0554 4740  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:04:02.0600 4740  WerSvc - ok
19:04:02.0634 4740  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:04:02.0678 4740  WfpLwf - ok
19:04:02.0709 4740  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
19:04:02.0723 4740  WimFltr - ok
19:04:02.0735 4740  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:04:02.0747 4740  WIMMount - ok
19:04:02.0768 4740  WinDefend - ok
19:04:02.0783 4740  WinHttpAutoProxySvc - ok
19:04:02.0829 4740  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:04:02.0878 4740  Winmgmt - ok
19:04:02.0928 4740  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
19:04:02.0998 4740  WinRM - ok
19:04:03.0045 4740  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:04:03.0088 4740  WinUsb - ok
19:04:03.0124 4740  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:04:03.0198 4740  Wlansvc - ok
19:04:03.0251 4740  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:04:03.0273 4740  wlcrasvc - ok
19:04:03.0368 4740  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:04:03.0414 4740  wlidsvc - ok
19:04:03.0430 4740  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:04:03.0459 4740  WmiAcpi - ok
19:04:03.0496 4740  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:04:03.0525 4740  wmiApSrv - ok
19:04:03.0551 4740  WMPNetworkSvc - ok
19:04:03.0571 4740  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:04:03.0586 4740  WPCSvc - ok
19:04:03.0609 4740  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:04:03.0626 4740  WPDBusEnum - ok
19:04:03.0646 4740  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:04:03.0705 4740  ws2ifsl - ok
19:04:03.0721 4740  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
19:04:03.0757 4740  wscsvc - ok
19:04:03.0761 4740  WSearch - ok
19:04:03.0901 4740  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:04:03.0948 4740  wuauserv - ok
19:04:03.0986 4740  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:04:04.0012 4740  WudfPf - ok
19:04:04.0047 4740  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:04:04.0064 4740  WUDFRd - ok
19:04:04.0093 4740  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:04:04.0119 4740  wudfsvc - ok
19:04:04.0145 4740  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:04:04.0164 4740  WwanSvc - ok
19:04:04.0234 4740  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:04:04.0252 4740  YahooAUService - ok
19:04:04.0271 4740  ================ Scan global ===============================
19:04:04.0300 4740  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:04:04.0332 4740  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:04:04.0347 4740  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:04:04.0365 4740  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:04:04.0390 4740  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:04:04.0394 4740  [Global] - ok
19:04:04.0395 4740  ================ Scan MBR ==================================
19:04:04.0405 4740  [ 03FD8DB771253D88F17BBE2DF5008AFA ] \Device\Harddisk0\DR0
19:04:04.0405 4740  Suspicious mbr (Forged): \Device\Harddisk0\DR0
19:04:04.0453 4740  \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - infected
19:04:04.0453 4740  \Device\Harddisk0\DR0 - detected Rootkit.Boot.Harbinger.a (0)
19:04:04.0514 4740  ================ Scan VBR ==================================
19:04:04.0519 4740  [ 1D8B95D9ACCB12C38D15A45120445C74 ] \Device\Harddisk0\DR0\Partition1
19:04:04.0521 4740  \Device\Harddisk0\DR0\Partition1 - ok
19:04:04.0549 4740  [ BA992933C69633A82D7588D45386D4CC ] \Device\Harddisk0\DR0\Partition2
19:04:04.0568 4740  \Device\Harddisk0\DR0\Partition2 - ok
19:04:04.0569 4740  ================ Scan active images ========================
19:04:04.0573 4740  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
19:04:04.0573 4740  C:\Windows\System32\drivers\crashdmp.sys - ok
19:04:04.0586 4740  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
19:04:04.0586 4740  C:\Windows\System32\drivers\iaStor.sys - ok
19:04:04.0591 4740  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
19:04:04.0591 4740  C:\Windows\System32\drivers\dumpfve.sys - ok
19:04:04.0596 4740  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
19:04:04.0596 4740  C:\Windows\System32\drivers\cdrom.sys - ok
19:04:04.0602 4740  [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] C:\Windows\System32\drivers\NAVx64\1309010.00E\ccsetx64.sys
19:04:04.0602 4740  C:\Windows\System32\drivers\NAVx64\1309010.00E\ccsetx64.sys - ok
19:04:04.0607 4740  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
19:04:04.0607 4740  C:\Windows\System32\drivers\beep.sys - ok
19:04:04.0612 4740  [ 5013A76CAAA1D7CF1C55214B490B4E35 ] C:\Windows\System32\drivers\NAVx64\1309010.00E\ironx64.sys
19:04:04.0612 4740  C:\Windows\System32\drivers\NAVx64\1309010.00E\ironx64.sys - ok
19:04:04.0617 4740  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
19:04:04.0617 4740  C:\Windows\System32\drivers\null.sys - ok
19:04:04.0623 4740  [ 7E07D2A5B910C71D6474E9AA0EAA1825 ] C:\Windows\System32\drivers\sbredrv.sys
19:04:04.0623 4740  C:\Windows\System32\drivers\sbredrv.sys - ok
19:04:04.0628 4740  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
19:04:04.0628 4740  C:\Windows\System32\drivers\msfs.sys - ok
19:04:04.0633 4740  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
19:04:04.0633 4740  C:\Windows\System32\drivers\RDPCDD.sys - ok
19:04:04.0639 4740  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:04:04.0639 4740  C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:04:04.0644 4740  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
19:04:04.0644 4740  C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:04:04.0649 4740  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
19:04:04.0649 4740  C:\Windows\System32\drivers\vga.sys - ok
19:04:04.0655 4740  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
19:04:04.0655 4740  C:\Windows\System32\drivers\videoprt.sys - ok
19:04:04.0660 4740  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
19:04:04.0660 4740  C:\Windows\System32\drivers\watchdog.sys - ok
19:04:04.0665 4740  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
19:04:04.0666 4740  C:\Windows\System32\drivers\npfs.sys - ok
19:04:04.0669 4740  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
19:04:04.0669 4740  C:\Windows\System32\drivers\tdi.sys - ok
19:04:04.0674 4740  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
19:04:04.0674 4740  C:\Windows\System32\drivers\tdx.sys - ok
19:04:04.0679 4740  [ C470FA779D0BD9A2309A04E49DD0EB8C ] C:\Windows\System32\drivers\sbtis.sys


Edited by Veul, 28 May 2013 - 06:08 PM.


#14 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 28 May 2013 - 06:11 PM

19:04:04.0679 4740  C:\Windows\System32\drivers\sbtis.sys - ok
19:04:04.0684 4740  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
19:04:04.0684 4740  C:\Windows\System32\drivers\netbt.sys - ok
19:04:04.0690 4740  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
19:04:04.0690 4740  C:\Windows\System32\drivers\afd.sys - ok
19:04:04.0695 4740  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
19:04:04.0695 4740  C:\Windows\System32\drivers\wfplwf.sys - ok
19:04:04.0700 4740  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
19:04:04.0700 4740  C:\Windows\System32\drivers\netbios.sys - ok
19:04:04.0706 4740  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
19:04:04.0706 4740  C:\Windows\System32\drivers\pacer.sys - ok
19:04:04.0711 4740  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
19:04:04.0711 4740  C:\Windows\System32\drivers\termdd.sys - ok
19:04:04.0717 4740  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
19:04:04.0717 4740  C:\Windows\System32\drivers\wanarp.sys - ok
19:04:04.0723 4740  [ 3911BD0E68C010E5438A87706ABBE9AB ] C:\Windows\System32\drivers\NAVx64\1309010.00E\symnets.sys
19:04:04.0723 4740  C:\Windows\System32\drivers\NAVx64\1309010.00E\symnets.sys - ok
19:04:04.0728 4740  [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] C:\Windows\System32\drivers\NAVx64\1309010.00E\srtspx64.sys
19:04:04.0728 4740  C:\Windows\System32\drivers\NAVx64\1309010.00E\srtspx64.sys - ok
19:04:04.0734 4740  [ 894579207E39C465737E850A252CE4F2 ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
19:04:04.0734 4740  C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
19:04:04.0740 4740  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
19:04:04.0740 4740  C:\Windows\System32\drivers\mssmbios.sys - ok
19:04:04.0745 4740  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
19:04:04.0745 4740  C:\Windows\System32\drivers\nsiproxy.sys - ok
19:04:04.0751 4740  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
19:04:04.0751 4740  C:\Windows\System32\drivers\rdbss.sys - ok
19:04:04.0757 4740  [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\IPSDefs\20130131.001\IDSviA64.sys
19:04:04.0757 4740  C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\IPSDefs\20130131.001\IDSviA64.sys - ok
19:04:04.0762 4740  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:04:04.0762 4740  C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
19:04:04.0769 4740  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
19:04:04.0769 4740  C:\Windows\System32\drivers\dfsc.sys - ok
19:04:04.0774 4740  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
19:04:04.0774 4740  C:\Windows\System32\drivers\discache.sys - ok
19:04:04.0778 4740  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
19:04:04.0779 4740  C:\Windows\System32\drivers\blbdrive.sys - ok
19:04:04.0784 4740  [ 866335C9C0E6733C753FB472C539A6B9 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
19:04:04.0785 4740  C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.0.28\Definitions\BASHDefs\20130116.013\BHDrvx64.sys - ok
19:04:04.0790 4740  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
19:04:04.0791 4740  C:\Windows\System32\drivers\intelppm.sys - ok
19:04:04.0795 4740  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
19:04:04.0795 4740  C:\Windows\System32\drivers\tunnel.sys - ok
19:04:04.0800 4740  [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
19:04:04.0800 4740  C:\Windows\System32\drivers\igdkmd64.sys - ok
19:04:04.0806 4740  [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
19:04:04.0806 4740  C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:04:04.0811 4740  [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
19:04:04.0811 4740  C:\Windows\System32\drivers\dxgmms1.sys - ok
19:04:04.0816 4740  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
19:04:04.0816 4740  C:\Windows\System32\drivers\usbport.sys - ok
19:04:04.0822 4740  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
19:04:04.0822 4740  C:\Windows\System32\drivers\usbuhci.sys - ok
19:04:04.0826 4740  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
19:04:04.0827 4740  C:\Windows\System32\drivers\usbehci.sys - ok
19:04:04.0832 4740  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
19:04:04.0832 4740  C:\Windows\System32\drivers\hdaudbus.sys - ok
19:04:04.0837 4740  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
19:04:04.0837 4740  C:\Windows\System32\drivers\CompositeBus.sys - ok
19:04:04.0842 4740  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
19:04:04.0842 4740  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
19:04:04.0847 4740  [ F65F171165FBB613F7AA3CC78E8CAB42 ] C:\Windows\System32\drivers\Rt64win7.sys
19:04:04.0847 4740  C:\Windows\System32\drivers\Rt64win7.sys - ok
19:04:04.0852 4740  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
19:04:04.0852 4740  C:\Windows\System32\drivers\agilevpn.sys - ok
19:04:04.0857 4740  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
19:04:04.0857 4740  C:\Windows\System32\drivers\rasl2tp.sys - ok
19:04:04.0862 4740  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
19:04:04.0862 4740  C:\Windows\System32\drivers\ndistapi.sys - ok
19:04:04.0867 4740  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
19:04:04.0867 4740  C:\Windows\System32\drivers\ndiswan.sys - ok
19:04:04.0872 4740  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
19:04:04.0872 4740  C:\Windows\System32\drivers\raspppoe.sys - ok
19:04:04.0877 4740  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
19:04:04.0877 4740  C:\Windows\System32\drivers\raspptp.sys - ok
19:04:04.0881 4740  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
19:04:04.0882 4740  C:\Windows\System32\drivers\kbdclass.sys - ok
19:04:04.0887 4740  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
19:04:04.0887 4740  C:\Windows\System32\drivers\mouclass.sys - ok
19:04:04.0892 4740  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
19:04:04.0892 4740  C:\Windows\System32\drivers\rassstp.sys - ok
19:04:04.0896 4740  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
19:04:04.0896 4740  C:\Windows\System32\drivers\ks.sys - ok
19:04:04.0901 4740  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
19:04:04.0901 4740  C:\Windows\System32\drivers\swenum.sys - ok
19:04:04.0906 4740  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
19:04:04.0906 4740  C:\Windows\System32\drivers\umbus.sys - ok
19:04:04.0911 4740  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
19:04:04.0911 4740  C:\Windows\System32\drivers\usbhub.sys - ok
19:04:04.0916 4740  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
19:04:04.0916 4740  C:\Windows\System32\drivers\ndproxy.sys - ok
19:04:04.0919 4740  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
19:04:04.0919 4740  C:\Windows\System32\drivers\drmk.sys - ok
19:04:04.0924 4740  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
19:04:04.0924 4740  C:\Windows\System32\drivers\portcls.sys - ok
19:04:04.0929 4740  [ 492CD3A94913D753B4591CD9E29EC843 ] C:\Windows\System32\drivers\RTKVHD64.sys
19:04:04.0929 4740  C:\Windows\System32\drivers\RTKVHD64.sys - ok
19:04:04.0933 4740  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
19:04:04.0933 4740  C:\Windows\System32\drivers\ksthunk.sys - ok
19:04:04.0939 4740  [ D485D3BD3E2179AA86853A182F70699F ] C:\Windows\System32\drivers\IntcHdmi.sys
19:04:04.0939 4740  C:\Windows\System32\drivers\IntcHdmi.sys - ok
19:04:04.0943 4740  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
19:04:04.0943 4740  C:\Windows\System32\ntdll.dll - ok
19:04:04.0948 4740  [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
19:04:04.0948 4740  C:\Windows\System32\smss.exe - ok
19:04:04.0953 4740  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
19:04:04.0953 4740  C:\Windows\System32\autochk.exe - ok
19:04:04.0958 4740  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
19:04:04.0958 4740  C:\Windows\System32\drivers\hidparse.sys - ok
19:04:04.0962 4740  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
19:04:04.0962 4740  C:\Windows\System32\drivers\hidclass.sys - ok
19:04:04.0967 4740  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
19:04:04.0967 4740  C:\Windows\System32\drivers\usbd.sys - ok
19:04:04.0972 4740  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
19:04:04.0972 4740  C:\Windows\System32\drivers\hidusb.sys - ok
19:04:04.0977 4740  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
19:04:04.0977 4740  C:\Windows\System32\normaliz.dll - ok
19:04:04.0982 4740  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
19:04:04.0982 4740  C:\Windows\System32\advapi32.dll - ok
19:04:04.0988 4740  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
19:04:04.0988 4740  C:\Windows\System32\rpcrt4.dll - ok
19:04:04.0994 4740  [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
19:04:04.0994 4740  C:\Windows\System32\shell32.dll - ok
19:04:04.0999 4740  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
19:04:04.0999 4740  C:\Windows\System32\drivers\kbdhid.sys - ok
19:04:05.0004 4740  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
19:04:05.0005 4740  C:\Windows\System32\drivers\usbccgp.sys - ok
19:04:05.0010 4740  [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
19:04:05.0010 4740  C:\Windows\System32\drivers\USBSTOR.SYS - ok
19:04:05.0014 4740  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
19:04:05.0014 4740  C:\Windows\System32\drivers\mouhid.sys - ok
19:04:05.0020 4740  [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
19:04:05.0020 4740  C:\Windows\System32\drivers\usbprint.sys - ok
19:04:05.0026 4740  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys
19:04:05.0026 4740  C:\Windows\System32\drivers\usbscan.sys - ok
19:04:05.0031 4740  [ A5B0494409FB08DCDC42A216C6EAB0F7 ] C:\Windows\System32\drivers\lvuvc64.sys
19:04:05.0031 4740  C:\Windows\System32\drivers\lvuvc64.sys - ok
19:04:05.0038 4740  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] C:\Windows\System32\drivers\USBAUDIO.sys
19:04:05.0038 4740  C:\Windows\System32\drivers\USBAUDIO.sys - ok
19:04:05.0045 4740  [ 125AE13C293889001B8456CF3EB04A40 ] C:\Windows\System32\drivers\lvrs64.sys
19:04:05.0046 4740  C:\Windows\System32\drivers\lvrs64.sys - ok
19:04:05.0049 4740  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
19:04:05.0049 4740  C:\Windows\System32\ws2_32.dll - ok
19:04:05.0057 4740  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
19:04:05.0057 4740  C:\Windows\System32\difxapi.dll - ok
19:04:05.0063 4740  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
19:04:05.0063 4740  C:\Windows\System32\lpk.dll - ok
19:04:05.0066 4740  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
19:04:05.0066 4740  C:\Windows\System32\nsi.dll - ok
19:04:05.0071 4740  [ E34F0440799F9A0F9DC4265F4ADA75C1 ] C:\Windows\System32\urlmon.dll
19:04:05.0071 4740  C:\Windows\System32\urlmon.dll - ok
19:04:05.0076 4740  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
19:04:05.0076 4740  C:\Windows\System32\ole32.dll - ok
19:04:05.0081 4740  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
19:04:05.0081 4740  C:\Windows\System32\shlwapi.dll - ok
19:04:05.0086 4740  [ 27A9000C534AA9BADC9EE74940F50C6D ] C:\Windows\System32\wininet.dll
19:04:05.0086 4740  C:\Windows\System32\wininet.dll - ok
19:04:05.0091 4740  [ 9D6B9124B582F0FBF275B434CE5A672C ] C:\Windows\System32\iertutil.dll
19:04:05.0091 4740  C:\Windows\System32\iertutil.dll - ok
19:04:05.0096 4740  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
19:04:05.0096 4740  C:\Windows\System32\kernel32.dll - ok
19:04:05.0102 4740  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
19:04:05.0102 4740  C:\Windows\System32\oleaut32.dll - ok
19:04:05.0107 4740  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
19:04:05.0107 4740  C:\Windows\System32\msvcrt.dll - ok
19:04:05.0111 4740  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
19:04:05.0111 4740  C:\Windows\System32\msctf.dll - ok
19:04:05.0116 4740  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
19:04:05.0116 4740  C:\Windows\System32\gdi32.dll - ok
19:04:05.0123 4740  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
19:04:05.0123 4740  C:\Windows\System32\user32.dll - ok
19:04:05.0129 4740  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
19:04:05.0129 4740  C:\Windows\System32\Wldap32.dll - ok
19:04:05.0134 4740  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
19:04:05.0134 4740  C:\Windows\System32\imagehlp.dll - ok
19:04:05.0139 4740  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
19:04:05.0139 4740  C:\Windows\System32\psapi.dll - ok
19:04:05.0144 4740  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
19:04:05.0144 4740  C:\Windows\System32\sechost.dll - ok
19:04:05.0150 4740  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
19:04:05.0150 4740  C:\Windows\System32\setupapi.dll - ok
19:04:05.0156 4740  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
19:04:05.0156 4740  C:\Windows\System32\clbcatq.dll - ok
19:04:05.0160 4740  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
19:04:05.0161 4740  C:\Windows\System32\imm32.dll - ok
19:04:05.0166 4740  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
19:04:05.0166 4740  C:\Windows\System32\usp10.dll - ok
19:04:05.0171 4740  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
19:04:05.0172 4740  C:\Windows\System32\comdlg32.dll - ok
19:04:05.0174 4740  [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
19:04:05.0174 4740  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
19:04:05.0179 4740  [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
19:04:05.0179 4740  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
19:04:05.0185 4740  [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
19:04:05.0185 4740  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
19:04:05.0190 4740  [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
19:04:05.0190 4740  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
19:04:05.0195 4740  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
19:04:05.0195 4740  C:\Windows\System32\crypt32.dll - ok
19:04:05.0200 4740  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
19:04:05.0200 4740  C:\Windows\System32\devobj.dll - ok
19:04:05.0205 4740  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
19:04:05.0205 4740  C:\Windows\System32\KernelBase.dll - ok
19:04:05.0210 4740  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
19:04:05.0210 4740  C:\Windows\System32\comctl32.dll - ok
19:04:05.0215 4740  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
19:04:05.0215 4740  C:\Windows\System32\cfgmgr32.dll - ok
19:04:05.0221 4740  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
19:04:05.0221 4740  C:\Windows\System32\wintrust.dll - ok
19:04:05.0226 4740  [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
19:04:05.0226 4740  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
19:04:05.0231 4740  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
19:04:05.0231 4740  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
19:04:05.0236 4740  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
19:04:05.0236 4740  C:\Windows\System32\msasn1.dll - ok
19:04:05.0241 4740  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
19:04:05.0241 4740  C:\Windows\SysWOW64\normaliz.dll - ok
19:04:05.0246 4740  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
19:04:05.0246 4740  C:\Windows\System32\drivers\dxapi.sys - ok
19:04:05.0252 4740  [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys
19:04:05.0252 4740  C:\Windows\System32\win32k.sys - ok
19:04:05.0257 4740  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
19:04:05.0257 4740  C:\Windows\System32\basesrv.dll - ok
19:04:05.0261 4740  [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
19:04:05.0262 4740  C:\Windows\System32\csrsrv.dll - ok
19:04:05.0267 4740  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
19:04:05.0267 4740  C:\Windows\System32\csrss.exe - ok
19:04:05.0272 4740  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
19:04:05.0272 4740  C:\Windows\System32\winsrv.dll - ok
19:04:05.0277 4740  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
19:04:05.0277 4740  C:\Windows\System32\drivers\monitor.sys - ok
19:04:05.0282 4740  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
19:04:05.0282 4740  C:\Windows\System32\tsddd.dll - ok
19:04:05.0288 4740  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
19:04:05.0288 4740  C:\Windows\System32\sxssrv.dll - ok
19:04:05.0292 4740  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
19:04:05.0292 4740  C:\Windows\System32\wininit.exe - ok
19:04:05.0298 4740  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
19:04:05.0298 4740  C:\Windows\System32\profapi.dll - ok
19:04:05.0303 4740  [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
19:04:05.0304 4740  C:\Windows\System32\cdd.dll - ok
19:04:05.0308 4740  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
19:04:05.0308 4740  C:\Windows\System32\KBDUS.DLL - ok
19:04:05.0315 4740  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
19:04:05.0315 4740  C:\Windows\System32\RpcRtRemote.dll - ok
19:04:05.0321 4740  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
19:04:05.0321 4740  C:\Windows\System32\version.dll - ok
19:04:05.0327 4740  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
19:04:05.0327 4740  C:\Windows\System32\WlS0WndH.dll - ok
19:04:05.0332 4740  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
19:04:05.0332 4740  C:\Windows\System32\sxs.dll - ok
19:04:05.0339 4740  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
19:04:05.0339 4740  C:\Windows\System32\cryptbase.dll - ok
19:04:05.0344 4740  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
19:04:05.0344 4740  C:\Windows\System32\apphelp.dll - ok
19:04:05.0349 4740  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
19:04:05.0349 4740  C:\Windows\System32\lsass.exe - ok
19:04:05.0356 4740  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
19:04:05.0356 4740  C:\Windows\System32\services.exe - ok
19:04:05.0361 4740  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
19:04:05.0361 4740  C:\Windows\System32\winlogon.exe - ok
19:04:05.0369 4740  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
19:04:05.0369 4740  C:\Windows\System32\lsm.exe - ok
19:04:05.0375 4740  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
19:04:05.0375 4740  C:\Windows\System32\winsta.dll - ok
19:04:05.0381 4740  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
19:04:05.0381 4740  C:\Windows\System32\sspicli.dll - ok
19:04:05.0387 4740  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
19:04:05.0387 4740  C:\Windows\System32\sspisrv.dll - ok
19:04:05.0392 4740  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
19:04:05.0392 4740  C:\Windows\System32\sysntfy.dll - ok
19:04:05.0395 4740  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
19:04:05.0395 4740  C:\Windows\System32\wmsgapi.dll - ok
19:04:05.0400 4740  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
19:04:05.0400 4740  C:\Windows\System32\lsasrv.dll - ok
19:04:05.0406 4740  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
19:04:05.0406 4740  C:\Windows\System32\samsrv.dll - ok
19:04:05.0410 4740  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
19:04:05.0410 4740  C:\Windows\System32\scesrv.dll - ok
19:04:05.0415 4740  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
19:04:05.0415 4740  C:\Windows\System32\scext.dll - ok
19:04:05.0421 4740  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
19:04:05.0421 4740  C:\Windows\System32\secur32.dll - ok
19:04:05.0424 4740  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
19:04:05.0424 4740  C:\Windows\System32\srvcli.dll - ok
19:04:05.0428 4740  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
19:04:05.0429 4740  C:\Windows\System32\authz.dll - ok
19:04:05.0433 4740  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
19:04:05.0433 4740  C:\Windows\System32\cngaudit.dll - ok
19:04:05.0439 4740  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
19:04:05.0439 4740  C:\Windows\System32\cryptdll.dll - ok
19:04:05.0443 4740  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
19:04:05.0443 4740  C:\Windows\System32\wevtapi.dll - ok
19:04:05.0448 4740  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
19:04:05.0448 4740  C:\Windows\System32\bcrypt.dll - ok
19:04:05.0455 4740  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
19:04:05.0456 4740  C:\Windows\System32\ncrypt.dll - ok
19:04:05.0461 4740  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
19:04:05.0461 4740  C:\Windows\System32\msprivs.dll - ok
19:04:05.0466 4740  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
19:04:05.0466 4740  C:\Windows\System32\negoexts.dll - ok
19:04:05.0472 4740  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
19:04:05.0472 4740  C:\Windows\System32\netjoin.dll - ok
19:04:05.0477 4740  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
19:04:05.0477 4740  C:\Windows\System32\kerberos.dll - ok
19:04:05.0482 4740  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
19:04:05.0482 4740  C:\Windows\System32\cryptsp.dll - ok
19:04:05.0488 4740  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
19:04:05.0488 4740  C:\Windows\System32\mswsock.dll - ok
19:04:05.0493 4740  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
19:04:05.0493 4740  C:\Windows\System32\msv1_0.dll - ok
19:04:05.0498 4740  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
19:04:05.0498 4740  C:\Windows\System32\netlogon.dll - ok
19:04:05.0504 4740  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
19:04:05.0505 4740  C:\Windows\System32\wship6.dll - ok
19:04:05.0510 4740  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
19:04:05.0510 4740  C:\Windows\System32\dnsapi.dll - ok
19:04:05.0515 4740  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
19:04:05.0515 4740  C:\Windows\System32\logoncli.dll - ok
19:04:05.0521 4740  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
19:04:05.0521 4740  C:\Windows\System32\schannel.dll - ok
19:04:05.0526 4740  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
19:04:05.0527 4740  C:\Windows\System32\rsaenh.dll - ok
19:04:05.0531 4740  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
19:04:05.0532 4740  C:\Windows\System32\TSpkg.dll - ok
19:04:05.0538 4740  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
19:04:05.0538 4740  C:\Windows\System32\wdigest.dll - ok
19:04:05.0543 4740  [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
19:04:05.0543 4740  C:\Windows\System32\LIVESSP.DLL - ok
19:04:05.0548 4740  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
19:04:05.0548 4740  C:\Windows\System32\pku2u.dll - ok
19:04:05.0554 4740  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
19:04:05.0554 4740  C:\Windows\System32\bcryptprimitives.dll - ok
19:04:05.0559 4740  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
19:04:05.0560 4740  C:\Windows\System32\credssp.dll - ok
19:04:05.0565 4740  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
19:04:05.0565 4740  C:\Windows\System32\efslsaext.dll - ok
19:04:05.0571 4740  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
19:04:05.0571 4740  C:\Windows\System32\scecli.dll - ok
19:04:05.0575 4740  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
19:04:05.0576 4740  C:\Windows\System32\ubpm.dll - ok
19:04:05.0580 4740  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
19:04:05.0580 4740  C:\Windows\System32\svchost.exe - ok
19:04:05.0586 4740  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
19:04:05.0586 4740  C:\Windows\System32\umpnpmgr.dll - ok
19:04:05.0591 4740  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
19:04:05.0591 4740  C:\Windows\System32\SPInf.dll - ok
19:04:05.0596 4740  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
19:04:05.0596 4740  C:\Windows\System32\devrtl.dll - ok
19:04:05.0602 4740  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
19:04:05.0602 4740  C:\Windows\System32\gpapi.dll - ok
19:04:05.0607 4740  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
19:04:05.0608 4740  C:\Windows\System32\userenv.dll - ok
19:04:05.0612 4740  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
19:04:05.0612 4740  C:\Windows\System32\pcwum.dll - ok
19:04:05.0618 4740  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
19:04:05.0619 4740  C:\Windows\System32\umpo.dll - ok
19:04:05.0624 4740  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
19:04:05.0624 4740  C:\Windows\System32\powrprof.dll - ok
19:04:05.0629 4740  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
19:04:05.0629 4740  C:\Windows\System32\drivers\luafv.sys - ok
19:04:05.0634 4740  [ 0BB97D43299910CBFBA59C461B99B910 ] C:\Windows\System32\drivers\mbam.sys
19:04:05.0634 4740  C:\Windows\System32\drivers\mbam.sys - ok
19:04:05.0640 4740  [ F90431C321F42F0E647B0C6A49644D97 ] C:\Windows\System32\drivers\sbapifs.sys
19:04:05.0640 4740  C:\Windows\System32\drivers\sbapifs.sys - ok
19:04:05.0645 4740  [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
19:04:05.0645 4740  C:\Windows\System32\drivers\Sftvollh.sys - ok
19:04:05.0650 4740  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
19:04:05.0650 4740  C:\Windows\System32\rpcss.dll - ok
19:04:05.0656 4740  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
19:04:05.0656 4740  C:\Windows\System32\RpcEpMap.dll - ok
19:04:05.0661 4740  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
19:04:05.0661 4740  C:\Windows\System32\wshqos.dll - ok
19:04:05.0666 4740  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
19:04:05.0666 4740  C:\Windows\System32\WSHTCPIP.DLL - ok
19:04:05.0672 4740  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
19:04:05.0672 4740  C:\Windows\System32\FirewallAPI.dll - ok
19:04:05.0675 4740  [ E07DEC52FF801841BA9B6878A60304FB ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:04:05.0675 4740  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
19:04:05.0680 4740  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
19:04:05.0680 4740  C:\Windows\System32\LogonUI.exe - ok
19:04:05.0686 4740  [ 905601FFF40D8DA9FA82CBE77D1F5EB1 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
19:04:05.0686 4740  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
19:04:05.0691 4740  [ 2D4230F2F1D204A523998DF93F9DF066 ] C:\Program Files\Microsoft Security Client\MpClient.dll
19:04:05.0691 4740  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
19:04:05.0696 4740  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
19:04:05.0696 4740  C:\Windows\System32\wtsapi32.dll - ok
19:04:05.0702 4740  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
19:04:05.0702 4740  C:\Windows\System32\ntmarta.dll - ok
19:04:05.0707 4740  [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
19:04:05.0707 4740  C:\Windows\System32\authui.dll - ok
19:04:05.0712 4740  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
19:04:05.0712 4740  C:\Windows\System32\cryptui.dll - ok
19:04:05.0719 4740  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
19:04:05.0719 4740  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
19:04:05.0724 4740  [ 9121C2E2507AD0BCBF9A7438051BEF34 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
19:04:05.0724 4740  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
19:04:05.0728 4740  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
19:04:05.0729 4740  C:\Windows\System32\samlib.dll - ok
19:04:05.0733 4740  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
19:04:05.0733 4740  C:\Windows\System32\shacct.dll - ok
19:04:05.0739 4740  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
19:04:05.0739 4740  C:\Windows\System32\propsys.dll - ok
19:04:05.0744 4740  [ 2F034150ECCBC498C53B61F98C5378AC ] C:\Program Files\Microsoft Security Client\MpRTP.dll
19:04:05.0744 4740  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
19:04:05.0749 4740  [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
19:04:05.0749 4740  C:\Windows\System32\fltLib.dll - ok
19:04:05.0755 4740  [ C4C1947985144721A809965A19D616BC ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
19:04:05.0755 4740  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
19:04:05.0760 4740  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] C:\Windows\System32\drivers\MpFilter.sys
19:04:05.0760 4740  C:\Windows\System32\drivers\MpFilter.sys - ok
19:04:05.0765 4740  [ 967BC3664DDC26959BD43A7B1681FF86 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
19:04:05.0765 4740  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
19:04:05.0771 4740  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
19:04:05.0771 4740  C:\Windows\System32\uxtheme.dll - ok
19:04:05.0776 4740  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
19:04:05.0776 4740  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
19:04:05.0781 4740  [ 75C6A1BC1E47BC5B5E2EF503F8A7CE8F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpengine.dll
19:04:05.0781 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpengine.dll - ok
19:04:05.0787 4740  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
19:04:05.0787 4740  C:\Windows\System32\dui70.dll - ok
19:04:05.0792 4740  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
19:04:05.0792 4740  C:\Windows\System32\duser.dll - ok
19:04:05.0797 4740  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
19:04:05.0797 4740  C:\Windows\System32\SndVolSSO.dll - ok
19:04:05.0803 4740  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
19:04:05.0803 4740  C:\Windows\System32\hid.dll - ok
19:04:05.0808 4740  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
19:04:05.0808 4740  C:\Windows\System32\MMDevAPI.dll - ok
19:04:05.0813 4740  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
19:04:05.0813 4740  C:\Windows\System32\dwmapi.dll - ok
19:04:05.0818 4740  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
19:04:05.0819 4740  C:\Windows\System32\xmllite.dll - ok
19:04:05.0823 4740  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
19:04:05.0824 4740  C:\Windows\System32\WindowsCodecs.dll - ok
19:04:05.0828 4740  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
19:04:05.0828 4740  C:\Windows\System32\winbrand.dll - ok
19:04:05.0834 4740  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
19:04:05.0834 4740  C:\Windows\System32\VaultCredProvider.dll - ok
19:04:05.0839 4740  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:04:05.0840 4740  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:04:05.0844 4740  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
19:04:05.0844 4740  C:\Windows\System32\BioCredProv.dll - ok
19:04:05.0849 4740  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
19:04:05.0849 4740  C:\Windows\System32\winbio.dll - ok
19:04:05.0855 4740  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
19:04:05.0855 4740  C:\Windows\System32\credui.dll - ok
19:04:05.0859 4740  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
19:04:05.0859 4740  C:\Windows\System32\netapi32.dll - ok
19:04:05.0866 4740  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
19:04:05.0866 4740  C:\Windows\System32\netutils.dll - ok
19:04:05.0871 4740  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
19:04:05.0871 4740  C:\Windows\System32\vaultcli.dll - ok
19:04:05.0875 4740  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
19:04:05.0875 4740  C:\Windows\System32\wkscli.dll - ok
19:04:05.0880 4740  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
19:04:05.0880 4740  C:\Windows\System32\samcli.dll - ok
19:04:05.0886 4740  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
19:04:05.0886 4740  C:\Windows\System32\certCredProvider.dll - ok
19:04:05.0891 4740  [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
19:04:05.0891 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
19:04:05.0896 4740  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
19:04:05.0896 4740  C:\Windows\System32\rasplap.dll - ok
19:04:05.0902 4740  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
19:04:05.0902 4740  C:\Windows\System32\rasapi32.dll - ok
19:04:05.0906 4740  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
19:04:05.0906 4740  C:\Windows\System32\rasman.dll - ok
19:04:05.0911 4740  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
19:04:05.0911 4740  C:\Windows\System32\rtutils.dll - ok
19:04:05.0916 4740  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
19:04:05.0916 4740  C:\Windows\System32\oleacc.dll - ok
19:04:05.0922 4740  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
19:04:05.0922 4740  C:\Windows\System32\UIAutomationCore.dll - ok
19:04:05.0925 4740  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
19:04:05.0925 4740  C:\Windows\System32\wevtsvc.dll - ok
19:04:05.0930 4740  [ BBE908D577A51C6D684CAB6126FBF7F2 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpasbase.vdm
19:04:05.0930 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpasbase.vdm - ok
19:04:05.0936 4740  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
19:04:05.0936 4740  C:\Windows\System32\profsvc.dll - ok
19:04:05.0940 4740  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
19:04:05.0941 4740  C:\Windows\System32\adtschema.dll - ok
19:04:05.0945 4740  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
19:04:05.0945 4740  C:\Windows\System32\drivers\fltMgr.sys - ok
19:04:05.0950 4740  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:04:05.0951 4740  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:04:05.0956 4740  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
19:04:05.0956 4740  C:\Windows\System32\netprofm.dll - ok
19:04:05.0961 4740  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
19:04:05.0961 4740  C:\Windows\System32\PSHED.DLL - ok
19:04:05.0966 4740  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
19:04:05.0966 4740  C:\Windows\System32\MPSSVC.dll - ok
19:04:05.0972 4740  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:04:05.0972 4740  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:04:05.0976 4740  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
19:04:05.0976 4740  C:\Windows\System32\audiosrv.dll - ok
19:04:05.0981 4740  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
19:04:05.0981 4740  C:\Windows\System32\avrt.dll - ok
19:04:05.0986 4740  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
19:04:05.0986 4740  C:\Windows\System32\FntCache.dll - ok
19:04:05.0991 4740  [ 67432E4164C1338F58B1EA12B042BBC9 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpasdlta.vdm
19:04:05.0991 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpasdlta.vdm - ok
19:04:05.0996 4740  [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpavbase.vdm
19:04:05.0996 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpavbase.vdm - ok
19:04:06.0002 4740  [ 22708214E4F1439B7EF9681BAC94E527 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpavdlta.vdm
19:04:06.0002 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEBF1AC4-0E58-4DEF-9C34-8FF3C2EAFE5C}\mpavdlta.vdm - ok
19:04:06.0007 4740  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
19:04:06.0007 4740  C:\Windows\System32\mmcss.dll - ok
19:04:06.0012 4740  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
19:04:06.0012 4740  C:\Windows\System32\audiodg.exe - ok
19:04:06.0017 4740  [ E3BF12C68F844E689D1A9D7E6B54742A ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
19:04:06.0017 4740  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
19:04:06.0022 4740  [ 0BEB0C931BC24F610EE87179F31A8A42 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
19:04:06.0022 4740  C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
19:04:06.0027 4740  [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
19:04:06.0027 4740  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
19:04:06.0031 4740  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
19:04:06.0032 4740  C:\Windows\System32\wscapi.dll - ok
19:04:06.0039 4740  [ 11338E0557B07BC32CDB980B6EDB35AA ] C:\Windows\System32\ci.dll
19:04:06.0039 4740  C:\Windows\System32\ci.dll - ok
19:04:06.0042 4740  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
19:04:06.0042 4740  C:\Windows\System32\conhost.exe - ok
19:04:06.0046 4740  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
19:04:06.0046 4740  C:\Windows\System32\winmm.dll - ok
19:04:06.0052 4740  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
19:04:06.0052 4740  C:\Windows\System32\dsound.dll - ok
19:04:06.0056 4740  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
19:04:06.0056 4740  C:\Windows\System32\winhttp.dll - ok
19:04:06.0060 4740  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
19:04:06.0061 4740  C:\Windows\System32\webio.dll - ok
19:04:06.0065 4740  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
19:04:06.0065 4740  C:\Windows\System32\IPHLPAPI.DLL - ok
19:04:06.0070 4740  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
19:04:06.0071 4740  C:\Windows\System32\dhcpcsvc6.dll - ok
19:04:06.0075 4740  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
19:04:06.0075 4740  C:\Windows\System32\winnsi.dll - ok
19:04:06.0079 4740  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
19:04:06.0080 4740  C:\Windows\System32\dhcpcsvc.dll - ok
19:04:06.0085 4740  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
19:04:06.0085 4740  C:\Program Files\Bonjour\mdnsNSP.dll - ok
19:04:06.0089 4740  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
19:04:06.0090 4740  C:\Windows\System32\nlaapi.dll - ok
19:04:06.0094 4740  [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
19:04:06.0094 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
19:04:06.0099 4740  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
19:04:06.0099 4740  C:\Windows\System32\rasadhlp.dll - ok
19:04:06.0105 4740  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
19:04:06.0105 4740  C:\Windows\System32\cabinet.dll - ok
19:04:06.0109 4740  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
19:04:06.0109 4740  C:\Windows\System32\p2pcollab.dll - ok
19:04:06.0114 4740  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
19:04:06.0114 4740  C:\Windows\System32\QAGENTRT.DLL - ok
19:04:06.0119 4740  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
19:04:06.0119 4740  C:\Windows\System32\fveui.dll - ok
19:04:06.0124 4740  [ 577D0DC85524A16FE29D7956B22974C4 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
19:04:06.0124 4740  C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
19:04:06.0129 4740  [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
19:04:06.0129 4740  C:\Windows\System32\slwga.dll - ok
19:04:06.0133 4740  [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
19:04:06.0133 4740  C:\Windows\System32\sppc.dll - ok
19:04:06.0138 4740  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
19:04:06.0138 4740  C:\Windows\System32\slc.dll - ok
19:04:06.0143 4740  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
19:04:06.0143 4740  C:\Windows\System32\gpsvc.dll - ok
19:04:06.0147 4740  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
19:04:06.0147 4740  C:\Windows\System32\atl.dll - ok
19:04:06.0152 4740  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
19:04:06.0152 4740  C:\Windows\System32\themeservice.dll - ok
19:04:06.0157 4740  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
19:04:06.0157 4740  C:\Windows\System32\dsrole.dll - ok
19:04:06.0161 4740  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
19:04:06.0161 4740  C:\Windows\System32\es.dll - ok
19:04:06.0166 4740  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
19:04:06.0166 4740  C:\Windows\System32\comres.dll - ok
19:04:06.0171 4740  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
19:04:06.0171 4740  C:\Windows\System32\Sens.dll - ok
19:04:06.0176 4740  [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
19:04:06.0176 4740  C:\Program Files\Dell\DellDock\DockLogin.exe - ok
19:04:06.0179 4740  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
19:04:06.0179 4740  C:\Windows\SysWOW64\ntdll.dll - ok
19:04:06.0183 4740  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
19:04:06.0183 4740  C:\Windows\System32\wow64.dll - ok
19:04:06.0188 4740  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
19:04:06.0188 4740  C:\Windows\System32\wow64win.dll - ok
19:04:06.0193 4740  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
19:04:06.0193 4740  C:\Windows\System32\wow64cpu.dll - ok
19:04:06.0197 4740  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
19:04:06.0198 4740  C:\Windows\SysWOW64\kernel32.dll - ok
19:04:06.0203 4740  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
19:04:06.0203 4740  C:\Windows\SysWOW64\KernelBase.dll - ok
19:04:06.0207 4740  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
19:04:06.0207 4740  C:\Windows\SysWOW64\msvcrt.dll - ok
19:04:06.0211 4740  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
19:04:06.0212 4740  C:\Windows\SysWOW64\wtsapi32.dll - ok
19:04:06.0216 4740  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
19:04:06.0216 4740  C:\Windows\SysWOW64\advapi32.dll - ok
19:04:06.0221 4740  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
19:04:06.0222 4740  C:\Windows\SysWOW64\cryptbase.dll - ok
19:04:06.0226 4740  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
19:04:06.0226 4740  C:\Windows\SysWOW64\rpcrt4.dll - ok
19:04:06.0231 4740  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
19:04:06.0231 4740  C:\Windows\SysWOW64\sechost.dll - ok
19:04:06.0237 4740  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
19:04:06.0237 4740  C:\Windows\SysWOW64\shlwapi.dll - ok
19:04:06.0241 4740  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
19:04:06.0241 4740  C:\Windows\SysWOW64\sspicli.dll - ok
19:04:06.0246 4740  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
19:04:06.0246 4740  C:\Windows\SysWOW64\gdi32.dll - ok
19:04:06.0251 4740  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
19:04:06.0251 4740  C:\Windows\SysWOW64\user32.dll - ok
19:04:06.0256 4740  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
19:04:06.0256 4740  C:\Windows\System32\UXInit.dll - ok
19:04:06.0261 4740  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
19:04:06.0261 4740  C:\Windows\SysWOW64\lpk.dll - ok
19:04:06.0266 4740  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
19:04:06.0266 4740  C:\Windows\SysWOW64\usp10.dll - ok
19:04:06.0271 4740  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
19:04:06.0272 4740  C:\Windows\SysWOW64\imm32.dll - ok
19:04:06.0276 4740  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
19:04:06.0276 4740  C:\Windows\SysWOW64\msctf.dll - ok
19:04:06.0281 4740  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
19:04:06.0281 4740  C:\Windows\SysWOW64\ole32.dll - ok
19:04:06.0287 4740  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
19:04:06.0287 4740  C:\Windows\SysWOW64\oleaut32.dll - ok
19:04:06.0291 4740  [ 65C95886E1B17001ADDF163AC18C5525 ] C:\Windows\SysWOW64\urlmon.dll
19:04:06.0292 4740  C:\Windows\SysWOW64\urlmon.dll - ok
19:04:06.0297 4740  [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
19:04:06.0297 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
19:04:06.0303 4740  [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
19:04:06.0303 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
19:04:06.0308 4740  [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
19:04:06.0308 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
19:04:06.0313 4740  [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
19:04:06.0313 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
19:04:06.0318 4740  [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
19:04:06.0319 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
19:04:06.0324 4740  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
19:04:06.0324 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
19:04:06.0329 4740  [ F59A16A9418044C1D505C53DA370B099 ] C:\Windows\SysWOW64\iertutil.dll
19:04:06.0329 4740  C:\Windows\SysWOW64\iertutil.dll - ok
19:04:06.0335 4740  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
19:04:06.0335 4740  C:\Windows\SysWOW64\version.dll - ok
19:04:06.0340 4740  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
19:04:06.0340 4740  C:\Windows\System32\imageres.dll - ok
19:04:06.0345 4740  [ 5ABB3F36AF17007F33FA275E96A2C95E ] C:\Windows\SysWOW64\wininet.dll
19:04:06.0345 4740  C:\Windows\SysWOW64\wininet.dll - ok
19:04:06.0350 4740  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
19:04:06.0351 4740  C:\Windows\System32\drivers\lltdio.sys - ok
19:04:06.0356 4740  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
19:04:06.0357 4740  C:\Windows\System32\drivers\rspndr.sys - ok
19:04:06.0362 4740  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
19:04:06.0362 4740  C:\Windows\System32\uxsms.dll - ok
19:04:06.0369 4740  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
19:04:06.0369 4740  C:\Windows\System32\dhcpcore.dll - ok
19:04:06.0374 4740  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
19:04:06.0374 4740  C:\Windows\System32\lmhsvc.dll - ok
19:04:06.0379 4740  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
19:04:06.0379 4740  C:\Windows\System32\nrpsrv.dll - ok
19:04:06.0385 4740  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
19:04:06.0385 4740  C:\Windows\System32\nsisvc.dll - ok
19:04:06.0390 4740  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
19:04:06.0390 4740  C:\Windows\System32\dhcpcore6.dll - ok
19:04:06.0396 4740  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
19:04:06.0396 4740  C:\Windows\System32\dnsrslvr.dll - ok
19:04:06.0402 4740  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
19:04:06.0402 4740  C:\Windows\System32\FWPUCLNT.DLL - ok
19:04:06.0407 4740  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
19:04:06.0407 4740  C:\Windows\System32\dnsext.dll - ok
19:04:06.0413 4740  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
19:04:06.0414 4740  C:\Windows\System32\shsvcs.dll - ok
19:04:06.0419 4740  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
19:04:06.0420 4740  C:\Windows\System32\schedsvc.dll - ok
19:04:06.0425 4740  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
19:04:06.0425 4740  C:\Windows\System32\ktmw32.dll - ok
19:04:06.0428 4740  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
19:04:06.0428 4740  C:\Windows\System32\taskcomp.dll - ok
19:04:06.0435 4740  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
19:04:06.0435 4740  C:\Windows\System32\fveapi.dll - ok
19:04:06.0439 4740  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
19:04:06.0439 4740  C:\Windows\System32\fvecerts.dll - ok
19:04:06.0444 4740  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
19:04:06.0444 4740  C:\Windows\System32\tbs.dll - ok
19:04:06.0449 4740  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
19:04:06.0449 4740  C:\Windows\System32\drivers\http.sys - ok
19:04:06.0455 4740  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
19:04:06.0456 4740  C:\Windows\System32\spoolsv.exe - ok
19:04:06.0460 4740  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
19:04:06.0461 4740  C:\Windows\System32\wiarpc.dll - ok
19:04:06.0467 4740  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
19:04:06.0467 4740  C:\Windows\System32\dllhost.exe - ok
19:04:06.0472 4740  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
19:04:06.0473 4740  C:\Windows\System32\BFE.DLL - ok
19:04:06.0478 4740  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
19:04:06.0478 4740  C:\Windows\System32\drivers\bowser.sys - ok
19:04:06.0482 4740  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
19:04:06.0483 4740  C:\Windows\System32\drivers\mpsdrv.sys - ok
19:04:06.0488 4740  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
19:04:06.0488 4740  C:\Windows\System32\drivers\mrxsmb.sys - ok
19:04:06.0493 4740  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
19:04:06.0494 4740  C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:04:06.0499 4740  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
19:04:06.0499 4740  C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:04:06.0504 4740  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
19:04:06.0504 4740  C:\Windows\System32\wkssvc.dll - ok
19:04:06.0509 4740  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
19:04:06.0510 4740  C:\Windows\System32\wfapigp.dll - ok
19:04:06.0515 4740  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:04:06.0515 4740  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
19:04:06.0521 4740  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
19:04:06.0521 4740  C:\Windows\System32\mscms.dll - ok
19:04:06.0526 4740  [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
19:04:06.0526 4740  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
19:04:06.0532 4740  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
19:04:06.0532 4740  C:\Windows\System32\pcasvc.dll - ok
19:04:06.0538 4740  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
19:04:06.0538 4740  C:\Windows\System32\snmptrap.exe - ok
19:04:06.0543 4740  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
19:04:06.0543 4740  C:\Windows\System32\provsvc.dll - ok
19:04:06.0549 4740  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
19:04:06.0549 4740  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
19:04:06.0554 4740  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
19:04:06.0555 4740  C:\Windows\System32\sstpsvc.dll - ok
19:04:06.0560 4740  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
19:04:06.0560 4740  C:\Windows\System32\IDStore.dll - ok
19:04:06.0565 4740  [ 5E36F8E4034A4B148CBA14EB535C47CA ] C:\Windows\System32\KBDRU.DLL
19:04:06.0565 4740  C:\Windows\System32\KBDRU.DLL - ok
19:04:06.0571 4740  [ 61B66B12FD57E008B872B16D2187EB85 ] C:\Windows\System32\KBDRU1.DLL
19:04:06.0572 4740  C:\Windows\System32\KBDRU1.DLL - ok
19:04:06.0577 4740  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
19:04:06.0577 4740  C:\Windows\System32\taskhost.exe - ok
19:04:06.0582 4740  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
19:04:06.0582 4740  C:\Windows\System32\AtBroker.exe - ok
19:04:06.0589 4740  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
19:04:06.0589 4740  C:\Windows\System32\mpr.dll - ok
19:04:06.0594 4740  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
19:04:06.0595 4740  C:\Windows\System32\userinit.exe - ok
19:04:06.0600 4740  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
19:04:06.0600 4740  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
19:04:06.0606 4740  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
19:04:06.0606 4740  C:\Windows\System32\MsCtfMonitor.dll - ok
19:04:06.0610 4740  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
19:04:06.0611 4740  C:\Windows\System32\msutb.dll - ok
19:04:06.0616 4740  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
19:04:06.0616 4740  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
19:04:06.0622 4740  [ 848BC9A0BB2361E549FD4C22D7548FB8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
19:04:06.0622 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
19:04:06.0627 4740  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
19:04:06.0627 4740  C:\Windows\System32\PlaySndSrv.dll - ok
19:04:06.0632 4740  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
19:04:06.0632 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
19:04:06.0638 4740  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
19:04:06.0638 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
19:04:06.0643 4740  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
19:04:06.0643 4740  C:\Windows\System32\esent.dll - ok
19:04:06.0648 4740  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
19:04:06.0648 4740  C:\Windows\System32\HotStartUserAgent.dll - ok
19:04:06.0654 4740  [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
19:04:06.0654 4740  C:\Windows\SysWOW64\shell32.dll - ok
19:04:06.0659 4740  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
19:04:06.0659 4740  C:\Windows\SysWOW64\ws2_32.dll - ok
19:04:06.0666 4740  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
19:04:06.0667 4740  C:\Windows\SysWOW64\winsta.dll - ok
19:04:06.0671 4740  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
19:04:06.0671 4740  C:\Windows\SysWOW64\profapi.dll - ok
19:04:06.0680 4740  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
19:04:06.0680 4740  C:\Windows\SysWOW64\userenv.dll - ok
19:04:06.0685 4740  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
19:04:06.0685 4740  C:\Windows\System32\localspl.dll - ok
19:04:06.0690 4740  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
19:04:06.0690 4740  C:\Windows\System32\umb.dll - ok
19:04:06.0696 4740  [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
19:04:06.0696 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
19:04:06.0702 4740  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
19:04:06.0702 4740  C:\Windows\SysWOW64\nsi.dll - ok
19:04:06.0708 4740  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
19:04:06.0708 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
19:04:06.0715 4740  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
19:04:06.0715 4740  C:\Windows\SysWOW64\wsock32.dll - ok
19:04:06.0722 4740  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
19:04:06.0722 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
19:04:06.0727 4740  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
19:04:06.0727 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
19:04:06.0733 4740  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
19:04:06.0733 4740  C:\Windows\SysWOW64\winmm.dll - ok
19:04:06.0740 4740  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
19:04:06.0740 4740  C:\Windows\System32\taskeng.exe - ok
19:04:06.0744 4740  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
19:04:06.0744 4740  C:\Windows\System32\spoolss.dll - ok
19:04:06.0750 4740  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
19:04:06.0750 4740  C:\Windows\System32\winspool.drv - ok
19:04:06.0756 4740  [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGBA.DLL
19:04:06.0756 4740  C:\Windows\System32\E_ILMGBA.DLL - ok
19:04:06.0762 4740  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
19:04:06.0762 4740  C:\Windows\System32\PrintIsolationProxy.dll - ok
19:04:06.0768 4740  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
19:04:06.0768 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
19:04:06.0773 4740  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
19:04:06.0773 4740  C:\Windows\System32\FXSMON.dll - ok
19:04:06.0778 4740  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
19:04:06.0778 4740  C:\Windows\System32\tcpmon.dll - ok
19:04:06.0783 4740  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
19:04:06.0783 4740  C:\Windows\System32\snmpapi.dll - ok
19:04:06.0788 4740  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
19:04:06.0788 4740  C:\Windows\System32\wsnmp32.dll - ok
19:04:06.0793 4740  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
19:04:06.0793 4740  C:\Windows\System32\msxml6.dll - ok
19:04:06.0798 4740  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
19:04:06.0798 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
19:04:06.0804 4740  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
19:04:06.0804 4740  C:\Windows\System32\usbmon.dll - ok
19:04:06.0808 4740  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
19:04:06.0808 4740  C:\Windows\System32\WSDMon.dll - ok
19:04:06.0814 4740  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
19:04:06.0814 4740  C:\Windows\System32\WSDApi.dll - ok
19:04:06.0819 4740  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
19:04:06.0819 4740  C:\Windows\System32\webservices.dll - ok
19:04:06.0824 4740  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
19:04:06.0824 4740  C:\Windows\System32\fundisc.dll - ok
19:04:06.0832 4740  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
19:04:06.0832 4740  C:\Windows\System32\fdPnp.dll - ok
19:04:06.0840 4740  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
19:04:06.0840 4740  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
19:04:06.0843 4740  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
19:04:06.0843 4740  C:\Windows\System32\win32spl.dll - ok
19:04:06.0848 4740  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
19:04:06.0848 4740  C:\Windows\System32\inetpp.dll - ok
19:04:06.0854 4740  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
19:04:06.0854 4740  C:\Windows\System32\cscapi.dll - ok
19:04:06.0859 4740  [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
19:04:06.0859 4740  C:\Windows\System32\ntprint.dll - ok
19:04:06.0864 4740  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
19:04:06.0864 4740  C:\Windows\System32\dwm.exe - ok
19:04:06.0869 4740  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
19:04:06.0869 4740  C:\Windows\explorer.exe - ok
19:04:06.0874 4740  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
19:04:06.0874 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
19:04:06.0879 4740  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
19:04:06.0879 4740  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
19:04:06.0884 4740  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
19:04:06.0885 4740  C:\Windows\SysWOW64\setupapi.dll - ok
19:04:06.0889 4740  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
19:04:06.0889 4740  C:\Windows\SysWOW64\cfgmgr32.dll - ok
19:04:06.0894 4740  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
19:04:06.0894 4740  C:\Windows\SysWOW64\devobj.dll - ok
19:04:06.0899 4740  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
19:04:06.0899 4740  C:\Windows\SysWOW64\dnssd.dll - ok
19:04:06.0904 4740  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
19:04:06.0904 4740  C:\Windows\SysWOW64\ntmarta.dll - ok
19:04:06.0909 4740  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
19:04:06.0909 4740  C:\Windows\SysWOW64\Wldap32.dll - ok
19:04:06.0913 4740  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
19:04:06.0914 4740  C:\Windows\SysWOW64\mswsock.dll - ok
19:04:06.0919 4740  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
19:04:06.0919 4740  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
19:04:06.0924 4740  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
19:04:06.0924 4740  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
19:04:06.0929 4740  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
19:04:06.0929 4740  C:\Program Files\Bonjour\mDNSResponder.exe - ok
19:04:06.0934 4740  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
19:04:06.0935 4740  C:\Windows\System32\TSChannel.dll - ok
19:04:06.0940 4740  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:04:06.0940 4740  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
19:04:06.0944 4740  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
19:04:06.0945 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
19:04:06.0950 4740  [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
19:04:06.0950 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
19:04:06.0955 4740  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
19:04:06.0955 4740  C:\Windows\SysWOW64\crypt32.dll - ok
19:04:06.0960 4740  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
19:04:06.0960 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
19:04:06.0965 4740  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
19:04:06.0965 4740  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
19:04:06.0970 4740  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
19:04:06.0970 4740  C:\Windows\SysWOW64\msasn1.dll - ok
19:04:06.0975 4740  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
19:04:06.0975 4740  C:\Windows\SysWOW64\winnsi.dll - ok
19:04:06.0980 4740  [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
19:04:06.0980 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
19:04:06.0986 4740  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
19:04:06.0986 4740  C:\Windows\SysWOW64\wintrust.dll - ok
19:04:06.0990 4740  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
19:04:06.0991 4740  C:\Windows\System32\dwmredir.dll - ok
19:04:06.0995 4740  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
19:04:06.0995 4740  C:\Windows\System32\ExplorerFrame.dll - ok
19:04:07.0000 4740  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
19:04:07.0000 4740  C:\Windows\System32\dwmcore.dll - ok
19:04:07.0006 4740  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
19:04:07.0006 4740  C:\Windows\System32\d3d10_1.dll - ok
19:04:07.0011 4740  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
19:04:07.0011 4740  C:\Windows\System32\d3d10_1core.dll - ok
19:04:07.0016 4740  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
19:04:07.0016 4740  C:\Windows\System32\EhStorShell.dll - ok
19:04:07.0021 4740  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
19:04:07.0021 4740  C:\Windows\System32\dxgi.dll - ok
19:04:07.0026 4740  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
19:04:07.0026 4740  C:\Windows\System32\ntshrui.dll - ok
19:04:07.0031 4740  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
19:04:07.0031 4740  C:\Windows\System32\d3d11.dll - ok
19:04:07.0037 4740  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
19:04:07.0037 4740  C:\Windows\System32\IconCodecService.dll - ok
19:04:07.0041 4740  [ F0C6A924CAED0D26E7150F4009384AA6 ] C:\Windows\System32\desk.cpl
19:04:07.0042 4740  C:\Windows\System32\desk.cpl - ok
19:04:07.0047 4740  [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
19:04:07.0047 4740  C:\Windows\System32\themeui.dll - ok
19:04:07.0052 4740  [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
19:04:07.0053 4740  C:\Windows\System32\igd10umd64.dll - ok
19:04:07.0057 4740  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
19:04:07.0057 4740  C:\Windows\System32\uDWM.dll - ok
19:04:07.0062 4740  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
19:04:07.0063 4740  C:\Windows\System32\rundll32.exe - ok
19:04:07.0068 4740  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
19:04:07.0068 4740  C:\Windows\System32\cryptsvc.dll - ok
19:04:07.0073 4740  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
19:04:07.0073 4740  C:\Windows\System32\dps.dll - ok
19:04:07.0078 4740  [ 7DB097F4F6786307168C0DDDEC43A565 ] C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
19:04:07.0078 4740  C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE - ok
19:04:07.0083 4740  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
19:04:07.0083 4740  C:\Windows\System32\cryptnet.dll - ok
19:04:07.0089 4740  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
19:04:07.0089 4740  C:\Windows\System32\taskschd.dll - ok
19:04:07.0094 4740  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
19:04:07.0094 4740  C:\Windows\System32\vssapi.dll - ok
19:04:07.0098 4740  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
19:04:07.0099 4740  C:\Windows\System32\vsstrace.dll - ok
19:04:07.0104 4740  [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
19:04:07.0104 4740  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
19:04:07.0109 4740  [ D222579C912E5871100838F5A4FCCA77 ] C:\Windows\System32\RpcNs4.dll
19:04:07.0109 4740  C:\Windows\System32\RpcNs4.dll - ok
19:04:07.0114 4740  [ 258AA65A0862E19B7DE6981FDA3758AD ] C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
19:04:07.0115 4740  C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE - ok
19:04:07.0120 4740  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
19:04:07.0120 4740  C:\Windows\SysWOW64\netapi32.dll - ok
19:04:07.0125 4740  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
19:04:07.0125 4740  C:\Windows\SysWOW64\netutils.dll - ok
19:04:07.0130 4740  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
19:04:07.0130 4740  C:\Windows\SysWOW64\srvcli.dll - ok
19:04:07.0136 4740  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
19:04:07.0136 4740  C:\Windows\SysWOW64\wkscli.dll - ok
19:04:07.0141 4740  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:04:07.0141 4740  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:04:07.0146 4740  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
19:04:07.0146 4740  C:\Windows\SysWOW64\imagehlp.dll - ok
19:04:07.0151 4740  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
19:04:07.0151 4740  C:\Windows\SysWOW64\msi.dll - ok
19:04:07.0156 4740  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
19:04:07.0156 4740  C:\Windows\SysWOW64\cscapi.dll - ok
19:04:07.0161 4740  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
19:04:07.0161 4740  C:\Windows\SysWOW64\dbghelp.dll - ok
19:04:07.0166 4740  [ 7F4F74880E0B586EB7A9E225C34B1296 ] C:\Windows\System32\ieframe.dll
19:04:07.0166 4740  C:\Windows\System32\ieframe.dll - ok
19:04:07.0172 4740  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
19:04:07.0172 4740  C:\Windows\SysWOW64\apphelp.dll - ok
19:04:07.0177 4740  [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
19:04:07.0177 4740  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
19:04:07.0181 4740  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
19:04:07.0182 4740  C:\Windows\System32\FDResPub.dll - ok
19:04:07.0185 4740  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
19:04:07.0185 4740  C:\Windows\System32\httpapi.dll - ok
19:04:07.0190 4740  [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
19:04:07.0190 4740  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
19:04:07.0195 4740  [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
19:04:07.0195 4740  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
19:04:07.0200 4740  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
19:04:07.0200 4740  C:\Windows\System32\IKEEXT.DLL - ok
19:04:07.0206 4740  [ 8EBEB7E7A0C3D295CA6BBCFA942C6AA8 ] C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
19:04:07.0206 4740  C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe - ok
19:04:07.0211 4740  [ C56EF4C50A1FEED0CC9B7AE068CBBBBB ] C:\Windows\System32\mshtml.dll
19:04:07.0211 4740  C:\Windows\System32\mshtml.dll - ok
19:04:07.0216 4740  [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:04:07.0216 4740  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
19:04:07.0222 4740  [ 5B1F7C0EE4C968D0DAE6736AF328B502 ] C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
19:04:07.0222 4740  C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe - ok
19:04:07.0227 4740  [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
19:04:07.0227 4740  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
19:04:07.0232 4740  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
19:04:07.0232 4740  C:\Windows\SysWOW64\clbcatq.dll - ok
19:04:07.0238 4740  [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
19:04:07.0238 4740  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
19:04:07.0243 4740  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
19:04:07.0243 4740  C:\Windows\SysWOW64\cryptsp.dll - ok
19:04:07.0248 4740  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
19:04:07.0248 4740  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
19:04:07.0254 4740  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
19:04:07.0254 4740  C:\Windows\SysWOW64\rsaenh.dll - ok
19:04:07.0259 4740  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:04:07.0259 4740  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
19:04:07.0264 4740  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
19:04:07.0264 4740  C:\Windows\SysWOW64\sxs.dll - ok
19:04:07.0270 4740  [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
19:04:07.0270 4740  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
19:04:07.0275 4740  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
19:04:07.0275 4740  C:\Windows\System32\vpnikeapi.dll - ok
19:04:07.0280 4740  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
19:04:07.0280 4740  C:\Windows\SysWOW64\mpr.dll - ok
19:04:07.0285 4740  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
19:04:07.0286 4740  C:\Windows\SysWOW64\psapi.dll - ok
19:04:07.0290 4740  [ D1D5DAB39DCB4BE0359943738D87409B ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
19:04:07.0290 4740  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
19:04:07.0296 4740  [ F2840DBFE9322F35557219AE82CC4597 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvchst.exe
19:04:07.0296 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvchst.exe - ok
19:04:07.0302 4740  [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
19:04:07.0302 4740  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
19:04:07.0307 4740  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
19:04:07.0307 4740  C:\Windows\SysWOW64\mstask.dll - ok
19:04:07.0312 4740  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
19:04:07.0312 4740  C:\Windows\SysWOW64\uxtheme.dll - ok
19:04:07.0317 4740  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
19:04:07.0318 4740  C:\Windows\SysWOW64\dwmapi.dll - ok
19:04:07.0323 4740  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
19:04:07.0323 4740  C:\Windows\System32\dbghelp.dll - ok
19:04:07.0330 4740  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:04:07.0330 4740  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:04:07.0338 4740  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:04:07.0338 4740  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:04:07.0348 4740  [ 4853FAA23868E66FD66DC81B8DD42333 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccl110u.dll
19:04:07.0348 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccl110u.dll - ok
19:04:07.0352 4740  [ 162100E0BC8377710F9D170631921C03 ] C:\Windows\System32\drivers\NisDrvWFP.sys
19:04:07.0352 4740  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
19:04:07.0358 4740  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
19:04:07.0358 4740  C:\Windows\System32\nlasvc.dll - ok
19:04:07.0365 4740  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
19:04:07.0365 4740  C:\Windows\System32\aepic.dll - ok
19:04:07.0374 4740  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
19:04:07.0374 4740  C:\Windows\System32\drivers\PEAuth.sys - ok
19:04:07.0380 4740  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
19:04:07.0380 4740  C:\Windows\System32\ncsi.dll - ok
19:04:07.0387 4740  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
19:04:07.0387 4740  C:\Windows\System32\sfc.dll - ok
19:04:07.0393 4740  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
19:04:07.0393 4740  C:\Windows\System32\sfc_os.dll - ok
19:04:07.0396 4740  [ 9FFBE1A6D3A919D83AD7984DBC012F8C ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe
19:04:07.0396 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBPIMSvc.exe - ok
19:04:07.0403 4740  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
19:04:07.0403 4740  C:\Windows\System32\ssdpapi.dll - ok
19:04:07.0407 4740  [ 2257C98561EBAC594A8BB797970D6D54 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccvrtrst.dll
19:04:07.0407 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccvrtrst.dll - ok
19:04:07.0412 4740  [ A5FE51B8CE661A935A165803C65A4BF1 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\unrar.dll
19:04:07.0412 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\unrar.dll - ok
19:04:07.0418 4740  [ 52364B2BBA5D1CB4E6A55076EB184D90 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\efacli.dll
19:04:07.0418 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\efacli.dll - ok
19:04:07.0423 4740  [ D4C554FB3C0EA417B25AD52DC75533AE ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Plugins\PI_PatchMonitor.dll
19:04:07.0423 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Plugins\PI_PatchMonitor.dll - ok
19:04:07.0428 4740  [ 846F59FE15F26FD051D46B0B2DD8C8A8 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SpursDownload.dll
19:04:07.0428 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SpursDownload.dll - ok
19:04:07.0435 4740  [ 78779EE07231C658B483B1F38B5088DF ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
19:04:07.0435 4740  C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok
19:04:07.0440 4740  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
19:04:07.0440 4740  C:\Windows\SysWOW64\winhttp.dll - ok
19:04:07.0445 4740  [ 8B8EEDA3D4B9C32170918B4EB8EF023B ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvc.dll
19:04:07.0445 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccsvc.dll - ok
19:04:07.0450 4740  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
19:04:07.0450 4740  C:\Windows\SysWOW64\webio.dll - ok
19:04:07.0456 4740  [ 65D64BB840ABF8AA317E1A56595C5E28 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\srtsp32.dll
19:04:07.0456 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\srtsp32.dll - ok
19:04:07.0461 4740  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
19:04:07.0461 4740  C:\Windows\SysWOW64\msxml3.dll - ok
19:04:07.0466 4740  [ 79ED7408D94471522D5C34BA10BCC7B9 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccipc.dll
19:04:07.0466 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccipc.dll - ok
19:04:07.0472 4740  [ 81AAD8956BE0603C4C373EC2AE5CDFFF ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Plugins\PI_Recovery.dll
19:04:07.0472 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Plugins\PI_Recovery.dll - ok
19:04:07.0477 4740  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
19:04:07.0477 4740  C:\Windows\SysWOW64\SensApi.dll - ok
19:04:07.0483 4740  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
19:04:07.0483 4740  C:\Windows\SysWOW64\msxml6.dll - ok
19:04:07.0488 4740  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
19:04:07.0488 4740  C:\Windows\System32\aeevts.dll - ok
19:04:07.0493 4740  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
19:04:07.0493 4740  C:\Windows\System32\drivers\secdrv.sys - ok
19:04:07.0498 4740  [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
19:04:07.0498 4740  C:\Windows\System32\drivers\Sftfslh.sys - ok
19:04:07.0504 4740  [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
19:04:07.0504 4740  C:\Windows\System32\drivers\Sftplaylh.sys - ok
19:04:07.0509 4740  [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
19:04:07.0509 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
19:04:07.0515 4740  [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:04:07.0515 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
19:04:07.0522 4740  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
19:04:07.0522 4740  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
19:04:07.0526 4740  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
19:04:07.0527 4740  C:\Windows\SysWOW64\wbemcomn.dll - ok
19:04:07.0532 4740  [ 284DAE55DED345F240DF806D45711E0B ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\dimaster.dll
19:04:07.0532 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\dimaster.dll - ok
19:04:07.0538 4740  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
19:04:07.0538 4740  C:\Windows\SysWOW64\secur32.dll - ok
19:04:07.0543 4740  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
19:04:07.0543 4740  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
19:04:07.0554 4740  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
19:04:07.0554 4740  C:\Windows\SysWOW64\credssp.dll - ok
19:04:07.0558 4740  [ 0C1B2E3A897397738D9F81CD3D152AF0 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:04:07.0558 4740  C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
19:04:07.0568 4740  [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
19:04:07.0568 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
19:04:07.0572 4740  [ 7C15061CD0372487903B07B9BB03AFAD ] C:\Program Files (x86)\Skype\Updater\Updater.exe
19:04:07.0572 4740  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
19:04:07.0580 4740  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
19:04:07.0580 4740  C:\Windows\System32\drivers\srvnet.sys - ok
19:04:07.0587 4740  [ 5684762CF40116976A0007EECD5A587D ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccset.dll
19:04:07.0587 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\ccset.dll - ok
19:04:07.0592 4740  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
19:04:07.0592 4740  C:\Windows\System32\drivers\tcpipreg.sys - ok
19:04:07.0596 4740  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
19:04:07.0597 4740  C:\Windows\System32\sysmain.dll - ok
19:04:07.0602 4740  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
19:04:07.0602 4740  C:\Windows\System32\wiaservc.dll - ok
19:04:07.0607 4740  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
19:04:07.0607 4740  C:\Windows\System32\wiatrace.dll - ok
19:04:07.0613 4740  [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
19:04:07.0613 4740  C:\Windows\System32\wsdchngr.dll - ok
19:04:07.0619 4740  [ DBB3DCBF6EE7788F9149F14C0B911EC9 ] C:\Windows\System32\esxw2ud.dll
19:04:07.0619 4740  C:\Windows\System32\esxw2ud.dll - ok
19:04:07.0624 4740  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
19:04:07.0624 4740  C:\Windows\System32\trkwks.dll - ok
19:04:07.0629 4740  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
19:04:07.0630 4740  C:\Windows\System32\wbem\WMIsvc.dll - ok
19:04:07.0635 4740  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
19:04:07.0636 4740  C:\Windows\System32\wbemcomn.dll - ok
19:04:07.0641 4740  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:04:07.0641 4740  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:04:07.0646 4740  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
19:04:07.0646 4740  C:\Windows\System32\wbem\wbemcore.dll - ok
19:04:07.0652 4740  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:04:07.0652 4740  C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:04:07.0658 4740  [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:04:07.0658 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
19:04:07.0665 4740  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
19:04:07.0665 4740  C:\Windows\System32\wbem\fastprox.dll - ok
19:04:07.0671 4740  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
19:04:07.0672 4740  C:\Windows\System32\ntdsapi.dll - ok
19:04:07.0677 4740  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
19:04:07.0677 4740  C:\Windows\System32\wbem\esscli.dll - ok
19:04:07.0682 4740  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
19:04:07.0682 4740  C:\Windows\System32\wbem\wbemprox.dll - ok
19:04:07.0686 4740  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
19:04:07.0686 4740  C:\Windows\System32\wbem\wbemsvc.dll - ok
19:04:07.0691 4740  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
19:04:07.0691 4740  C:\Windows\System32\wbem\wmiutils.dll - ok
19:04:07.0696 4740  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
19:04:07.0696 4740  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
19:04:07.0702 4740  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
19:04:07.0702 4740  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
19:04:07.0707 4740  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
19:04:07.0707 4740  C:\Windows\System32\wbem\repdrvfs.dll - ok
19:04:07.0711 4740  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
19:04:07.0711 4740  C:\Windows\SysWOW64\ntdsapi.dll - ok
19:04:07.0718 4740  [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
19:04:07.0718 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
19:04:07.0723 4740  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:04:07.0723 4740  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:04:07.0728 4740  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
19:04:07.0728 4740  C:\Windows\System32\ncobjapi.dll - ok
19:04:07.0735 4740  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
19:04:07.0735 4740  C:\Windows\System32\wbem\wbemess.dll - ok
19:04:07.0739 4740  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
19:04:07.0739 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
19:04:07.0744 4740  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
19:04:07.0744 4740  C:\Windows\System32\SensApi.dll - ok
19:04:07.0750 4740  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:04:07.0750 4740  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:04:07.0756 4740  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
19:04:07.0756 4740  C:\Windows\System32\wer.dll - ok
19:04:07.0760 4740  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
19:04:07.0760 4740  C:\Windows\System32\WinSCard.dll - ok
19:04:07.0766 4740  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
19:04:07.0766 4740  C:\Windows\System32\wbem\cimwin32.dll - ok
19:04:07.0771 4740  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:04:07.0771 4740  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
19:04:07.0776 4740  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
19:04:07.0776 4740  C:\Windows\System32\framedynos.dll - ok
19:04:07.0781 4740  [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
19:04:07.0782 4740  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
19:04:07.0787 4740  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
19:04:07.0787 4740  C:\Windows\System32\wmi.dll - ok
19:04:07.0792 4740  [ DD502A2E7B85EA7A3814C1034E6C23D3 ] C:\Windows\AppPatch\AcGenral.dll
19:04:07.0792 4740  C:\Windows\AppPatch\AcGenral.dll - ok
19:04:07.0797 4740  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
19:04:07.0797 4740  C:\Windows\SysWOW64\msacm32.dll - ok
19:04:07.0803 4740  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
19:04:07.0803 4740  C:\Windows\SysWOW64\samcli.dll - ok
19:04:07.0807 4740  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
19:04:07.0808 4740  C:\Windows\SysWOW64\sfc.dll - ok
19:04:07.0813 4740  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
19:04:07.0813 4740  C:\Windows\SysWOW64\sfc_os.dll - ok
19:04:07.0818 4740  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
19:04:07.0819 4740  C:\Windows\System32\iphlpsvc.dll - ok
19:04:07.0823 4740  [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:04:07.0824 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
19:04:07.0829 4740  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
19:04:07.0829 4740  C:\Windows\System32\sqmapi.dll - ok
19:04:07.0835 4740  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
19:04:07.0835 4740  C:\Windows\System32\wdscore.dll - ok
19:04:07.0840 4740  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
19:04:07.0840 4740  C:\Windows\System32\netcfgx.dll - ok
19:04:07.0845 4740  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
19:04:07.0845 4740  C:\Windows\System32\hnetcfg.dll - ok
19:04:07.0850 4740  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
19:04:07.0851 4740  C:\Windows\System32\nci.dll - ok
19:04:07.0856 4740  [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
19:04:07.0856 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
19:04:07.0861 4740  [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
19:04:07.0861 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
19:04:07.0866 4740  [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
19:04:07.0867 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
19:04:07.0872 4740  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
19:04:07.0872 4740  C:\Windows\System32\msxml3.dll - ok
19:04:07.0877 4740  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
19:04:07.0877 4740  C:\Windows\SysWOW64\propsys.dll - ok
19:04:07.0882 4740  [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
19:04:07.0882 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
19:04:07.0887 4740  [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
19:04:07.0887 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
19:04:07.0895 4740  [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
19:04:07.0895 4740  C:\Windows\System32\msimtf.dll - ok
19:04:07.0901 4740  [ D5E5A86F49ACC11768D8339094C3AFD8 ] C:\Windows\SysWOW64\ieframe.dll
19:04:07.0901 4740  C:\Windows\SysWOW64\ieframe.dll - ok
19:04:07.0904 4740  [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
19:04:07.0904 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
19:04:07.0909 4740  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
19:04:07.0910 4740  C:\Windows\System32\mlang.dll - ok
19:04:07.0914 4740  [ 2C96C695B6015042AC867EA419A45C20 ] C:\Windows\System32\jscript9.dll
19:04:07.0914 4740  C:\Windows\System32\jscript9.dll - ok
19:04:07.0920 4740  [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
19:04:07.0920 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
19:04:07.0925 4740  [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
19:04:07.0926 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
19:04:07.0931 4740  [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
19:04:07.0931 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
19:04:07.0937 4740  [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
19:04:07.0937 4740  C:\Windows\SysWOW64\logoncli.dll - ok
19:04:07.0941 4740  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
19:04:07.0942 4740  C:\Windows\System32\drivers\srv2.sys - ok
19:04:07.0946 4740  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
19:04:07.0946 4740  C:\Windows\System32\drivers\srv.sys - ok
19:04:07.0952 4740  [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
19:04:07.0952 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
19:04:07.0957 4740  [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
19:04:07.0957 4740  C:\Windows\System32\drivers\Sftredirlh.sys - ok
19:04:07.0962 4740  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
19:04:07.0962 4740  C:\Windows\SysWOW64\fltLib.dll - ok
19:04:07.0966 4740  [ 7E8A672B7B06A6EB11960C22E0360C59 ] C:\Windows\System32\d2d1.dll
19:04:07.0966 4740  C:\Windows\System32\d2d1.dll - ok
19:04:07.0972 4740  [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
19:04:07.0972 4740  C:\Windows\SysWOW64\schannel.dll - ok
19:04:07.0976 4740  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
19:04:07.0977 4740  C:\Windows\System32\dssenh.dll - ok
19:04:07.0981 4740  [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
19:04:07.0981 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
19:04:07.0987 4740  [ 63BB89DED1E9104E68D33E54DE4D340D ] C:\Windows\System32\DWrite.dll
19:04:07.0987 4740  C:\Windows\System32\DWrite.dll - ok
19:04:07.0992 4740  [ C498EF41B93986BCBD483597573EB96D ] C:\Windows\System32\d3d10warp.dll
19:04:07.0992 4740  C:\Windows\System32\d3d10warp.dll - ok
19:04:07.0997 4740  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
19:04:07.0997 4740  C:\Windows\SysWOW64\ncrypt.dll - ok
19:04:08.0002 4740  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
19:04:08.0002 4740  C:\Windows\SysWOW64\bcrypt.dll - ok
19:04:08.0007 4740  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
19:04:08.0007 4740  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
19:04:08.0012 4740  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
19:04:08.0012 4740  C:\Windows\SysWOW64\gpapi.dll - ok
19:04:08.0018 4740  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
19:04:08.0018 4740  C:\Windows\SysWOW64\cryptnet.dll - ok
19:04:08.0023 4740  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
19:04:08.0023 4740  C:\Windows\SysWOW64\wship6.dll - ok
19:04:08.0028 4740  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
19:04:08.0028 4740  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
19:04:08.0033 4740  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
19:04:08.0033 4740  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
19:04:08.0039 4740  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
19:04:08.0039 4740  C:\Windows\SysWOW64\dnsapi.dll - ok
19:04:08.0043 4740  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
19:04:08.0043 4740  C:\Windows\SysWOW64\mscoree.dll - ok
19:04:08.0049 4740  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
19:04:08.0049 4740  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
19:04:08.0054 4740  [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
19:04:08.0055 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
19:04:08.0059 4740  [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
19:04:08.0059 4740  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
19:04:08.0065 4740  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
19:04:08.0065 4740  C:\Windows\SysWOW64\comdlg32.dll - ok
19:04:08.0070 4740  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
19:04:08.0070 4740  C:\Windows\SysWOW64\msimg32.dll - ok
19:04:08.0075 4740  [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
19:04:08.0075 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
19:04:08.0080 4740  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
19:04:08.0080 4740  C:\Windows\SysWOW64\devrtl.dll - ok
19:04:08.0086 4740  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
19:04:08.0086 4740  C:\Windows\SysWOW64\winspool.drv - ok
19:04:08.0091 4740  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
19:04:08.0091 4740  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
19:04:08.0097 4740  [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
19:04:08.0097 4740  C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
19:04:08.0102 4740  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
19:04:08.0102 4740  C:\Windows\SysWOW64\oleacc.dll - ok
19:04:08.0106 4740  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
19:04:08.0106 4740  C:\Windows\AppPatch\AcLayers.dll - ok
19:04:08.0110 4740  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
19:04:08.0111 4740  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
19:04:08.0115 4740  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
19:04:08.0116 4740  C:\Windows\SysWOW64\oledlg.dll - ok
19:04:08.0121 4740  [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
19:04:08.0121 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
19:04:08.0127 4740  [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
19:04:08.0127 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
19:04:08.0132 4740  [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
19:04:08.0132 4740  C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
19:04:08.0138 4740  [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
19:04:08.0138 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
19:04:08.0143 4740  [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
19:04:08.0144 4740  C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
19:04:08.0149 4740  [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
19:04:08.0149 4740  C:\Windows\SysWOW64\credui.dll - ok
19:04:08.0155 4740  [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
19:04:08.0155 4740  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
19:04:08.0160 4740  [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
19:04:08.0160 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
19:04:08.0165 4740  [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
19:04:08.0166 4740  C:\Windows\SysWOW64\hlink.dll - ok
19:04:08.0171 4740  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
19:04:08.0171 4740  C:\Windows\SysWOW64\rasadhlp.dll - ok
19:04:08.0176 4740  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
19:04:08.0176 4740  C:\Windows\SysWOW64\riched20.dll - ok
19:04:08.0181 4740  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
19:04:08.0181 4740  C:\Windows\System32\browser.dll - ok
19:04:08.0187 4740  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
19:04:08.0187 4740  C:\Windows\System32\clusapi.dll - ok
19:04:08.0190 4740  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
19:04:08.0190 4740  C:\Windows\System32\netmsg.dll - ok
19:04:08.0195 4740  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
19:04:08.0195 4740  C:\Windows\System32\srvsvc.dll - ok
19:04:08.0201 4740  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
19:04:08.0201 4740  C:\Windows\System32\sscore.dll - ok
19:04:08.0206 4740  [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
19:04:08.0206 4740  C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
19:04:08.0211 4740  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
19:04:08.0211 4740  C:\Windows\System32\resutils.dll - ok
19:04:08.0217 4740  [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
19:04:08.0217 4740  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
19:04:08.0223 4740  [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
19:04:08.0223 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
19:04:08.0228 4740  [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
19:04:08.0228 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
19:04:08.0233 4740  [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
19:04:08.0233 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
19:04:08.0239 4740  [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
19:04:08.0239 4740  C:\Windows\SysWOW64\msv1_0.dll - ok
19:04:08.0244 4740  [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
19:04:08.0244 4740  C:\Windows\SysWOW64\cryptdll.dll - ok
19:04:08.0249 4740  [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
19:04:08.0249 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
19:04:08.0255 4740  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
19:04:08.0255 4740  C:\Windows\System32\NapiNSP.dll - ok
19:04:08.0260 4740  [ 7717A2CB550267860D3933F3FBA0216F ] C:\Windows\System32\drivers\LVPr2M64.sys
19:04:08.0260 4740  C:\Windows\System32\drivers\LVPr2M64.sys - ok
19:04:08.0265 4740  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
19:04:08.0265 4740  C:\Windows\System32\pnrpnsp.dll - ok
19:04:08.0271 4740  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
19:04:08.0271 4740  C:\Windows\System32\npmproxy.dll - ok
19:04:08.0276 4740  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
19:04:08.0276 4740  C:\Windows\System32\winrnr.dll - ok
19:04:08.0281 4740  [ C6E15F2F95F9C0A6098D43510B604E52 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
19:04:08.0281 4740  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
19:04:08.0287 4740  [ A6E760F81643E39DF7F24FE8A914FF6C ] C:\Windows\Temp\logishrd\LVPrcInj04.dll
19:04:08.0287 4740  C:\Windows\Temp\logishrd\LVPrcInj04.dll - ok
19:04:08.0294 4740  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
19:04:08.0294 4740  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
19:04:08.0299 4740  [ 7F683A346C425ACD4F098BAA7C5792FC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll
19:04:08.0299 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll - ok
19:04:08.0305 4740  [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
19:04:08.0305 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
19:04:08.0311 4740  [ B7A68C8F0EA038CB13E7B99AF9CDE513 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll
19:04:08.0312 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll - ok
19:04:08.0317 4740  [ C6458BF42FD8A9194EA4B2C81AA3B157 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll
19:04:08.0318 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll - ok
19:04:08.0323 4740  [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
19:04:08.0323 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
19:04:08.0328 4740  [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
19:04:08.0329 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
19:04:08.0334 4740  [ 6BF27D309C6077F1E8A7747B49F7B17F ] C:\Program Files\Microsoft Security Client\NisLog.dll
19:04:08.0334 4740  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
19:04:08.0339 4740  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
19:04:08.0339 4740  C:\Windows\System32\hidserv.dll - ok
19:04:08.0345 4740  [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
19:04:08.0345 4740  C:\Windows\System32\qmgr.dll - ok
19:04:08.0350 4740  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
19:04:08.0351 4740  C:\Windows\System32\wdi.dll - ok
19:04:08.0356 4740  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
19:04:08.0356 4740  C:\Windows\System32\wpdbusenum.dll - ok
19:04:08.0361 4740  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
19:04:08.0362 4740  C:\Windows\System32\PortableDeviceApi.dll - ok
19:04:08.0368 4740  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:04:08.0368 4740  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:04:08.0374 4740  [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
19:04:08.0374 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
19:04:08.0379 4740  [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
19:04:08.0379 4740  C:\Windows\System32\bcdedit.exe - ok
19:04:08.0385 4740  [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
19:04:08.0385 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
19:04:08.0390 4740  [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
19:04:08.0390 4740  C:\Windows\System32\appinfo.dll - ok
19:04:08.0395 4740  [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
19:04:08.0395 4740  C:\Windows\System32\bitsperf.dll - ok
19:04:08.0401 4740  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
19:04:08.0401 4740  C:\Windows\System32\wbem\NCProv.dll - ok
19:04:08.0406 4740  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
19:04:08.0406 4740  C:\Windows\System32\bitsigd.dll - ok
19:04:08.0411 4740  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
19:04:08.0411 4740  C:\Windows\System32\upnp.dll - ok
19:04:08.0416 4740  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
19:04:08.0416 4740  C:\Windows\System32\Apphlpdm.dll - ok
19:04:08.0422 4740  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
19:04:08.0422 4740  C:\Windows\System32\perftrack.dll - ok
19:04:08.0427 4740  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
19:04:08.0427 4740  C:\Windows\System32\ssdpsrv.dll - ok
19:04:08.0432 4740  [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
19:04:08.0432 4740  C:\Windows\System32\msls31.dll - ok
19:04:08.0438 4740  [ 6E554E354E04FBFFDBA41C98AD5FE12F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317875A0-4E74-407C-A27C-DDA1B65B5B0D}\gapaengine.dll
19:04:08.0438 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317875A0-4E74-407C-A27C-DDA1B65B5B0D}\gapaengine.dll - ok
19:04:08.0441 4740  [ 49CB1663DE50092C842DBE510A9B63FC ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317875A0-4E74-407C-A27C-DDA1B65B5B0D}\nisfull.vdm
19:04:08.0441 4740  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317875A0-4E74-407C-A27C-DDA1B65B5B0D}\nisfull.vdm - ok
19:04:08.0446 4740  [ 1C083F4B871FB5CE740DE4302310E956 ] C:\Windows\System32\Macromed\Flash\Flash64_11_7_700_202.ocx
19:04:08.0446 4740  C:\Windows\System32\Macromed\Flash\Flash64_11_7_700_202.ocx - ok
19:04:08.0452 4740  [ 88DC26C8BC98DFF1B55985E25DF53262 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll
19:04:08.0453 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll - ok
19:04:08.0458 4740  [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
19:04:08.0458 4740  C:\Windows\System32\drivers\WUDFRd.sys - ok
19:04:08.0463 4740  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
19:04:08.0463 4740  C:\Windows\System32\drivers\WUDFPf.sys - ok
19:04:08.0468 4740  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
19:04:08.0468 4740  C:\Windows\System32\WUDFPlatform.dll - ok
19:04:08.0473 4740  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
19:04:08.0473 4740  C:\Windows\System32\WUDFSvc.dll - ok
19:04:08.0478 4740  [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
19:04:08.0478 4740  C:\Windows\System32\WUDFHost.exe - ok
19:04:08.0484 4740  [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
19:04:08.0484 4740  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
19:04:08.0489 4740  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
19:04:08.0490 4740  C:\Windows\System32\IPSECSVC.DLL - ok
19:04:08.0494 4740  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
19:04:08.0495 4740  C:\Windows\System32\diagperf.dll - ok
19:04:08.0502 4740  [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
19:04:08.0502 4740  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
19:04:08.0507 4740  [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
19:04:08.0507 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
19:04:08.0511 4740  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
19:04:08.0511 4740  C:\Windows\System32\msimg32.dll - ok
19:04:08.0517 4740  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
19:04:08.0518 4740  C:\Windows\System32\runonce.exe - ok
19:04:08.0522 4740  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
19:04:08.0523 4740  C:\Windows\System32\qmgrprxy.dll - ok
19:04:08.0527 4740  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
19:04:08.0527 4740  C:\Windows\SysWOW64\qmgrprxy.dll - ok
19:04:08.0532 4740  [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
19:04:08.0532 4740  C:\Windows\System32\WUDFx.dll - ok
19:04:08.0537 4740  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
19:04:08.0538 4740  C:\Windows\SysWOW64\runonce.exe - ok
19:04:08.0542 4740  [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
19:04:08.0542 4740  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
19:04:08.0547 4740  [ 6FF2FC6CF5D0206F6D30CD4D255AB811 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe
19:04:08.0547 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe - ok
19:04:08.0554 4740  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
19:04:08.0554 4740  C:\Windows\System32\pnpts.dll - ok
19:04:08.0558 4740  [ FF365358A01E77197C225521DD4B7F35 ] C:\Windows\System32\pots.dll
19:04:08.0558 4740  C:\Windows\System32\pots.dll - ok
19:04:08.0563 4740  [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
19:04:08.0563 4740  C:\Windows\System32\tdh.dll - ok
19:04:08.0568 4740  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
19:04:08.0569 4740  C:\Windows\System32\radardt.dll - ok
19:04:08.0573 4740  [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
19:04:08.0573 4740  C:\Program Files\Windows Defender\MpClient.dll - ok
19:04:08.0578 4740  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
19:04:08.0578 4740  C:\Windows\SysWOW64\cmd.exe - ok
19:04:08.0583 4740  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
19:04:08.0583 4740  C:\Windows\System32\aelupsvc.dll - ok
19:04:08.0588 4740  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
19:04:08.0588 4740  C:\Windows\System32\FwRemoteSvr.dll - ok
19:04:08.0593 4740  [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
19:04:08.0593 4740  C:\Windows\System32\WMVCORE.DLL - ok
19:04:08.0598 4740  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
19:04:08.0598 4740  C:\Windows\SysWOW64\winbrand.dll - ok
19:04:08.0604 4740  [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
19:04:08.0604 4740  C:\Windows\SysWOW64\shdocvw.dll - ok
19:04:08.0609 4740  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
19:04:08.0609 4740  C:\Windows\System32\dimsjob.dll - ok
19:04:08.0614 4740  [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
19:04:08.0614 4740  C:\Windows\System32\WMASF.DLL - ok
19:04:08.0620 4740  [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
19:04:08.0620 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
19:04:08.0625 4740  [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
19:04:08.0625 4740  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
19:04:08.0630 4740  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
19:04:08.0630 4740  C:\Windows\System32\pautoenr.dll - ok
19:04:08.0636 4740  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
19:04:08.0636 4740  C:\Windows\System32\PortableDeviceTypes.dll - ok
19:04:08.0641 4740  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
19:04:08.0641 4740  C:\Windows\System32\certcli.dll - ok
19:04:08.0646 4740  [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
19:04:08.0646 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
19:04:08.0652 4740  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
19:04:08.0652 4740  C:\Windows\System32\CertEnroll.dll - ok
19:04:08.0657 4740  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Elena\AppData\Local\Temp\6620FD18-FDA4-4CAB-A361-105C8D3BAD59.exe
19:04:08.0657 4740  C:\Users\Elena\AppData\Local\Temp\6620FD18-FDA4-4CAB-A361-105C8D3BAD59.exe - ok
19:04:08.0662 4740  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
19:04:08.0663 4740  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
19:04:08.0668 4740  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
19:04:08.0668 4740  C:\Windows\SysWOW64\EhStorShell.dll - ok
19:04:08.0673 4740  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
19:04:08.0673 4740  C:\Windows\SysWOW64\ntshrui.dll - ok
19:04:08.0678 4740  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
19:04:08.0678 4740  C:\Windows\SysWOW64\slc.dll - ok
19:04:08.0684 4740  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
19:04:08.0684 4740  C:\Windows\SysWOW64\imageres.dll - ok
19:04:08.0689 4740  [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
19:04:08.0689 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
19:04:08.0692 4740  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
19:04:08.0692 4740  C:\Windows\SysWOW64\d3d9.dll - ok
19:04:08.0697 4740  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
19:04:08.0697 4740  C:\Windows\SysWOW64\d3d8thk.dll - ok
19:04:08.0703 4740  [ BA38C50F523DC053488AC3F9EF99AA0B ] C:\Windows\SysWOW64\igdumdx32.dll
19:04:08.0703 4740  C:\Windows\SysWOW64\igdumdx32.dll - ok
19:04:08.0707 4740  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
19:04:08.0708 4740  C:\Windows\System32\wdiasqmmodule.dll - ok
 



19:04:08.0713 4740  [ 10AB9C9ADB89816BEFB077E72659D029 ] C:\Windows\SysWOW64\igdumd32.dll
19:04:08.0713 4740  C:\Windows\SysWOW64\igdumd32.dll - ok
19:04:08.0718 4740  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
19:04:08.0718 4740  C:\Windows\SysWOW64\IconCodecService.dll - ok
19:04:08.0723 4740  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
19:04:08.0723 4740  C:\Windows\SysWOW64\powrprof.dll - ok
19:04:08.0728 4740  [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
19:04:08.0728 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
19:04:08.0734 4740  [ 8D17F8532958E0AC4A32B0E7E3C94EF2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll
19:04:08.0734 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll - ok
19:04:08.0739 4740  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
19:04:08.0739 4740  C:\Windows\System32\drivers\fastfat.sys - ok
19:04:08.0744 4740  [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
19:04:08.0744 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
19:04:08.0749 4740  [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
19:04:08.0749 4740  C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
19:04:08.0755 4740  [ D66E000EF14A2F45EC7F350A21994A12 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll
19:04:08.0755 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll - ok
19:04:08.0760 4740  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
19:04:08.0760 4740  C:\Windows\System32\timedate.cpl - ok
19:04:08.0765 4740  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
19:04:08.0765 4740  C:\Windows\System32\actxprxy.dll - ok
19:04:08.0771 4740  [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
19:04:08.0771 4740  C:\Windows\System32\shdocvw.dll - ok
19:04:08.0776 4740  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
19:04:08.0776 4740  C:\Windows\System32\linkinfo.dll - ok
19:04:08.0781 4740  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
19:04:08.0782 4740  C:\Windows\System32\msiltcfg.dll - ok
19:04:08.0787 4740  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
19:04:08.0787 4740  C:\Windows\System32\msi.dll - ok
19:04:08.0792 4740  [ CEA304830B4770BDA3572B87D0841848 ] C:\Program Files\Internet Explorer\iexplore.exe
19:04:08.0792 4740  C:\Program Files\Internet Explorer\iexplore.exe - ok
19:04:08.0797 4740  [ 661CEEDE98A2E0E5CDD7DE239EB38353 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
19:04:08.0797 4740  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
19:04:08.0803 4740  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
19:04:08.0803 4740  C:\Windows\System32\msftedit.dll - ok
19:04:08.0808 4740  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
19:04:08.0809 4740  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
19:04:08.0813 4740  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
19:04:08.0814 4740  C:\Windows\System32\gameux.dll - ok
19:04:08.0819 4740  [ 307C54B0DA2E3705943E62C754D305BA ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
19:04:08.0819 4740  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
19:04:08.0824 4740  [ 0BBFE08ECCE8A209D07C3B68D63FC293 ] C:\Windows\System32\igfxtray.exe
19:04:08.0824 4740  C:\Windows\System32\igfxtray.exe - ok
19:04:08.0829 4740  [ 2F16207A65B62001FC73E6798D0B8F2A ] C:\Windows\System32\hkcmd.exe
19:04:08.0829 4740  C:\Windows\System32\hkcmd.exe - ok
19:04:08.0835 4740  [ B69A01794D44C769C2575AE75E2EB31F ] C:\Windows\System32\igfxpers.exe
19:04:08.0835 4740  C:\Windows\System32\igfxpers.exe - ok
19:04:08.0840 4740  [ 3911917B93DD9023DAA8258147AA7BCF ] C:\Program Files\Microsoft Security Client\msseces.exe
19:04:08.0840 4740  C:\Program Files\Microsoft Security Client\msseces.exe - ok
19:04:08.0845 4740  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
19:04:08.0845 4740  C:\Windows\System32\DeviceCenter.dll - ok
19:04:08.0853 4740  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
19:04:08.0853 4740  C:\Windows\System32\thumbcache.dll - ok
19:04:08.0857 4740  [ F3F743635E8158E0D06614FBE2A7E6CD ] C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
19:04:08.0857 4740  C:\Program Files (x86)\Logitech\Vid HD\Vid.exe - ok
19:04:08.0862 4740  [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
19:04:08.0862 4740  C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
19:04:08.0868 4740  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
19:04:08.0868 4740  C:\Windows\System32\networkexplorer.dll - ok
19:04:08.0873 4740  [ 6D9C544ECF1D56AFDA3C03C19E75FE8B ] C:\Windows\System32\spool\drivers\x64\3\E_IATIGBA.EXE
19:04:08.0873 4740  C:\Windows\System32\spool\drivers\x64\3\E_IATIGBA.EXE - ok
19:04:08.0878 4740  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
19:04:08.0878 4740  C:\Windows\System32\wdmaud.drv - ok
19:04:08.0883 4740  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
19:04:08.0883 4740  C:\Windows\System32\oledlg.dll - ok
19:04:08.0888 4740  [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe
19:04:08.0889 4740  C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe - ok
19:04:08.0893 4740  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
19:04:08.0894 4740  C:\Windows\System32\AudioSes.dll - ok
19:04:08.0898 4740  [ 310BF2973A951EC302ED8F8E9B3AF056 ] C:\Windows\System32\RtkCfg64.dll
19:04:08.0899 4740  C:\Windows\System32\RtkCfg64.dll - ok
19:04:08.0904 4740  [ BBAEA44775912F5929F5EC0083A11380 ] C:\Windows\System32\RtkAPO64.dll
19:04:08.0905 4740  C:\Windows\System32\RtkAPO64.dll - ok
19:04:08.0909 4740  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
19:04:08.0909 4740  C:\Windows\System32\ksuser.dll - ok
19:04:08.0914 4740  [ 127CD00925C1A2B759765C5B9600DE30 ] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
19:04:08.0915 4740  C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe - ok
19:04:08.0920 4740  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
19:04:08.0920 4740  C:\Windows\System32\msacm32.drv - ok
19:04:08.0925 4740  [ 05EA520BFB1D3085CB12A4355598081D ] C:\Windows\System32\hccutils.dll
19:04:08.0925 4740  C:\Windows\System32\hccutils.dll - ok
19:04:08.0930 4740  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
19:04:08.0930 4740  C:\Windows\System32\msacm32.dll - ok
19:04:08.0936 4740  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
19:04:08.0936 4740  C:\Windows\System32\midimap.dll - ok
19:04:08.0941 4740  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Users\Elena\AppData\Local\Google\Update\GoogleUpdate.exe
19:04:08.0941 4740  C:\Users\Elena\AppData\Local\Google\Update\GoogleUpdate.exe - ok
19:04:08.0944 4740  [ D890EDDD0528E04049C9D524FBA1C506 ] C:\Windows\System32\igfxsrvc.exe
19:04:08.0944 4740  C:\Windows\System32\igfxsrvc.exe - ok
19:04:08.0949 4740  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
19:04:08.0949 4740  C:\Windows\System32\AudioEng.dll - ok
19:04:08.0954 4740  [ 40EEDE4EE98C716827148172ECC898D4 ] C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\iTunesIco.exe
19:04:08.0954 4740  C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\iTunesIco.exe - ok
19:04:08.0959 4740  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
19:04:08.0959 4740  C:\Windows\System32\AUDIOKSE.dll - ok
19:04:08.0966 4740  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
19:04:08.0966 4740  C:\Windows\System32\stobject.dll - ok
19:04:08.0971 4740  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
19:04:08.0971 4740  C:\Windows\System32\batmeter.dll - ok
19:04:08.0976 4740  [ 31A6D4B8803CCBA44271F05E08C4955A ] C:\Windows\System32\igfxsrvc.dll
19:04:08.0976 4740  C:\Windows\System32\igfxsrvc.dll - ok
19:04:08.0981 4740  [ F51059EE3C543CB364A069CAFB252031 ] C:\Windows\System32\igfxdev.dll
19:04:08.0981 4740  C:\Windows\System32\igfxdev.dll - ok
19:04:08.0987 4740  [ E877D921A20E311F0627A48EEFAB1849 ] C:\Windows\System32\MBWrp64.dll
19:04:08.0987 4740  C:\Windows\System32\MBWrp64.dll - ok
19:04:08.0992 4740  [ A1D91A4C75AD34849DF223B8D11E4D59 ] C:\Windows\System32\MBTHX64.dll
19:04:08.0992 4740  C:\Windows\System32\MBTHX64.dll - ok
19:04:08.0997 4740  [ 352C7C2470C03AFD41889236D849D75C ] C:\Windows\System32\igfxrenu.lrc
19:04:08.0997 4740  C:\Windows\System32\igfxrenu.lrc - ok
19:04:09.0003 4740  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
19:04:09.0003 4740  C:\Windows\System32\prnfldr.dll - ok
19:04:09.0009 4740  [ 9FA8752358E1F6C5C7DBC48F3B025F2F ] C:\Windows\System32\MBAPO64.dll
19:04:09.0009 4740  C:\Windows\System32\MBAPO64.dll - ok
19:04:09.0015 4740  [ C7F22545C0C424265E57AA1D220090C6 ] C:\Windows\System32\igfxress.dll
19:04:09.0015 4740  C:\Windows\System32\igfxress.dll - ok
19:04:09.0021 4740  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
19:04:09.0021 4740  C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:04:09.0026 4740  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
19:04:09.0026 4740  C:\Windows\System32\DXP.dll - ok
19:04:09.0031 4740  [ AA6D2D76D9E629F7E47F7EA6F4DE7E66 ] C:\Program Files\Internet Explorer\sqmapi.dll
19:04:09.0031 4740  C:\Program Files\Internet Explorer\sqmapi.dll - ok
19:04:09.0037 4740  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
19:04:09.0037 4740  C:\Windows\System32\Syncreg.dll - ok
19:04:09.0042 4740  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
19:04:09.0042 4740  C:\Windows\ehome\ehSSO.dll - ok
19:04:09.0047 4740  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
19:04:09.0047 4740  C:\Windows\System32\mfplat.dll - ok
19:04:09.0052 4740  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
19:04:09.0053 4740  C:\Windows\System32\netshell.dll - ok
19:04:09.0058 4740  [ 75838AB28CC1318345DA62B6C339068C ] C:\Windows\System32\GfxUI.exe
19:04:09.0058 4740  C:\Windows\System32\GfxUI.exe - ok
19:04:09.0063 4740  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
19:04:09.0063 4740  C:\Windows\System32\mscoree.dll - ok
19:04:09.0068 4740  [ 4458989C34FA84B5A75DD3ABCFBE786A ] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
19:04:09.0069 4740  C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe - ok
19:04:09.0074 4740  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
19:04:09.0074 4740  C:\Windows\System32\WPDShServiceObj.dll - ok
19:04:09.0081 4740  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
19:04:09.0081 4740  C:\Windows\System32\srchadmin.dll - ok
19:04:09.0091 4740  [ B67F316DE1EEFB0DADC1AF30633A9D83 ] C:\Program Files\CCleaner\CCleaner64.exe
19:04:09.0091 4740  C:\Program Files\CCleaner\CCleaner64.exe - ok
19:04:09.0095 4740  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
19:04:09.0095 4740  C:\Windows\System32\ActionCenter.dll - ok
19:04:09.0102 4740  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
19:04:09.0102 4740  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
19:04:09.0107 4740  [ 34FC081BBE79294807A99A1442D02210 ] C:\Program Files (x86)\Norton AntiVirus\Engine64\19.9.1.14\uistub.exe
19:04:09.0107 4740  C:\Program Files (x86)\Norton AntiVirus\Engine64\19.9.1.14\uistub.exe - ok
19:04:09.0115 4740  [ 01300E303C7A5426FC21C479CE3E1B18 ] C:\Users\Elena\Desktop\RogueKillerX64.exe
19:04:09.0115 4740  C:\Users\Elena\Desktop\RogueKillerX64.exe - ok
19:04:09.0119 4740  [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
19:04:09.0120 4740  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
19:04:09.0125 4740  [ 458F4590F80563EB2A0A72709BFC2BD9 ] C:\Windows\System32\mspaint.exe
19:04:09.0125 4740  C:\Windows\System32\mspaint.exe - ok
19:04:09.0130 4740  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
19:04:09.0130 4740  C:\Windows\System32\SearchIndexer.exe - ok
19:04:09.0136 4740  [ A905E156A7D52B55892C3255670FE97B ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
19:04:09.0136 4740  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
19:04:09.0140 4740  [ 7E4AD8220AF0B281274F9785DD53E25C ] C:\Program Files (x86)\Skype\Phone\Skype.exe
19:04:09.0141 4740  C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
19:04:09.0146 4740  [ 2DFC55060450E8661CA12040CB54FFA1 ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe
19:04:09.0146 4740  C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe - ok
19:04:09.0151 4740  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
19:04:09.0152 4740  C:\Windows\System32\FXSST.dll - ok
19:04:09.0156 4740  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\31592546.sys
19:04:09.0156 4740  C:\Windows\System32\drivers\31592546.sys - ok
19:04:09.0162 4740  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
19:04:09.0162 4740  C:\Windows\System32\FXSAPI.dll - ok
19:04:09.0168 4740  [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
19:04:09.0168 4740  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
19:04:09.0174 4740  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\SqmApi.dll
19:04:09.0174 4740  C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
19:04:09.0181 4740  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
19:04:09.0181 4740  C:\Windows\System32\tquery.dll - ok
19:04:09.0187 4740  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
19:04:09.0187 4740  C:\Windows\System32\FXSRESM.dll - ok
19:04:09.0193 4740  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
19:04:09.0193 4740  C:\Windows\System32\FXSSVC.exe - ok
19:04:09.0197 4740  [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
19:04:09.0197 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
19:04:09.0204 4740  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
19:04:09.0204 4740  C:\Windows\System32\mssrch.dll - ok
19:04:09.0209 4740  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
19:04:09.0209 4740  C:\Windows\System32\AltTab.dll - ok
19:04:09.0214 4740  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
19:04:09.0215 4740  C:\Windows\System32\pnidui.dll - ok
19:04:09.0221 4740  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
19:04:09.0221 4740  C:\Windows\System32\msidle.dll - ok
19:04:09.0225 4740  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
19:04:09.0226 4740  C:\Windows\System32\QUTIL.DLL - ok
19:04:09.0230 4740  [ 2809F6A69068C6C56860E6B8B8DB4AFB ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe
19:04:09.0230 4740  C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe - ok
19:04:09.0236 4740  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
19:04:09.0236 4740  C:\Windows\System32\mssprxy.dll - ok
19:04:09.0242 4740  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
19:04:09.0242 4740  C:\Windows\System32\bthprops.cpl - ok
19:04:09.0248 4740  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
19:04:09.0248 4740  C:\Windows\System32\en-US\tquery.dll.mui - ok
19:04:09.0253 4740  [ 609B1EC328B30D5DE438DCCE0732649C ] C:\Program Files\Dell\DellDock\DellDock.exe
19:04:09.0253 4740  C:\Program Files\Dell\DellDock\DellDock.exe - ok
19:04:09.0258 4740  [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
19:04:09.0258 4740  C:\Windows\System32\notepad.exe - ok
19:04:09.0263 4740  [ 76E7410B3A308F6960D3CE06DC7874AD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll
19:04:09.0263 4740  C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll - ok
19:04:09.0269 4740  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
19:04:09.0269 4740  C:\Windows\System32\netman.dll - ok
19:04:09.0274 4740  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
19:04:09.0274 4740  C:\Windows\SysWOW64\rasapi32.dll - ok
19:04:09.0278 4740  [ E84DA43E726D043CA2DEE71F01DB261A ] C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
19:04:09.0279 4740  C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE - ok
19:04:09.0284 4740  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
19:04:09.0284 4740  C:\Windows\SysWOW64\rasman.dll - ok
19:04:09.0289 4740  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
19:04:09.0289 4740  C:\Windows\SysWOW64\rtutils.dll - ok
19:04:09.0294 4740  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
19:04:09.0294 4740  C:\Windows\System32\rasdlg.dll - ok
19:04:09.0299 4740  [ 917A728A12F25FCF4636858FAC9979FA ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
19:04:09.0299 4740  C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll - ok
19:04:09.0304 4740  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
19:04:09.0305 4740  C:\Windows\System32\mprapi.dll - ok
19:04:09.0309 4740  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
19:04:09.0310 4740  C:\Windows\System32\dot3api.dll - ok
19:04:09.0314 4740  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
19:04:09.0314 4740  C:\Windows\System32\eappcfg.dll - ok
19:04:09.0320 4740  [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
19:04:09.0320 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
19:04:09.0325 4740  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
19:04:09.0325 4740  C:\Windows\System32\wlanhlp.dll - ok
19:04:09.0331 4740  [ AAD90795E84E710543C6C7C2F7048E30 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
19:04:09.0331 4740  C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
19:04:09.0336 4740  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
19:04:09.0337 4740  C:\Windows\System32\wlanapi.dll - ok
19:04:09.0342 4740  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
19:04:09.0342 4740  C:\Windows\System32\wlanutil.dll - ok
19:04:09.0347 4740  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
19:04:09.0347 4740  C:\Windows\System32\onex.dll - ok
19:04:09.0353 4740  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
19:04:09.0353 4740  C:\Windows\System32\eappprxy.dll - ok
19:04:09.0360 4740  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:04:09.0360 4740  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:04:09.0368 4740  [ A6147C8F475489A28854F278970F3909 ] C:\Program Files\GIMP 2\bin\gimp-2.8.exe
19:04:09.0368 4740  C:\Program Files\GIMP 2\bin\gimp-2.8.exe - ok
19:04:09.0372 4740  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
19:04:09.0372 4740  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
19:04:09.0378 4740  [ 20DC6DCAEB3C750C54C2A09CA044C8DA ] C:\Program Files (x86)\Yahoo!\Messenger\YImage.dll
19:04:09.0378 4740  C:\Program Files (x86)\Yahoo!\Messenger\YImage.dll - ok
19:04:09.0384 4740  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
19:04:09.0384 4740  C:\Windows\SysWOW64\duser.dll - ok
19:04:09.0388 4740  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
19:04:09.0388 4740  C:\Windows\System32\WWanAPI.dll - ok
19:04:09.0393 4740  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
19:04:09.0393 4740  C:\Windows\SysWOW64\dui70.dll - ok
19:04:09.0398 4740  [ 38A683644592E99FAF0D1882EC014C3B ] C:\Program Files (x86)\Yahoo!\Messenger\ylog.dll
19:04:09.0398 4740  C:\Program Files (x86)\Yahoo!\Messenger\ylog.dll - ok
19:04:09.0403 4740  [ E295326C79DB2CD4CC1DD5A929490109 ] C:\Program Files (x86)\Yahoo!\Messenger\YCPFoundation.dll
19:04:09.0403 4740  C:\Program Files (x86)\Yahoo!\Messenger\YCPFoundation.dll - ok
19:04:09.0408 4740  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
19:04:09.0408 4740  C:\Windows\System32\wwapi.dll - ok
19:04:09.0413 4740  [ 327477FD1853EDD05E8A02E1960092BD ] C:\Program Files (x86)\Pando Networks\Media Booster\nspr4.dll
19:04:09.0413 4740  C:\Program Files (x86)\Pando Networks\Media Booster\nspr4.dll - ok
19:04:09.0419 4740  [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
19:04:09.0419 4740  C:\Windows\System32\webcheck.dll - ok
19:04:09.0424 4740  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
19:04:09.0424 4740  C:\Windows\System32\SyncCenter.dll - ok
19:04:09.0428 4740  [ 904991696B997C540EFF553B5E775809 ] C:\Program Files (x86)\Pando Networks\Media Booster\plc4.dll
19:04:09.0429 4740  C:\Program Files (x86)\Pando Networks\Media Booster\plc4.dll - ok
19:04:09.0434 4740  [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
19:04:09.0434 4740  C:\Windows\System32\SearchProtocolHost.exe - ok
19:04:09.0439 4740  [ 83E624D0986FA920AFB69EB71D79942D ] C:\Program Files (x86)\Yahoo!\Messenger\nspr4.dll
19:04:09.0440 4740  C:\Program Files (x86)\Yahoo!\Messenger\nspr4.dll - ok
19:04:09.0444 4740  [ ADB0C499E90EAAFB0FC4FE031CF3F87F ] C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
19:04:09.0444 4740  C:\Program Files (x86)\Yahoo!\Messenger\yui.dll - ok
19:04:09.0448 4740  [ E67D2876E0892FFF0CF3B4B4630C8E4C ] C:\Program Files (x86)\Pando Networks\Media Booster\BugSplat.dll
19:04:09.0448 4740  C:\Program Files (x86)\Pando Networks\Media Booster\BugSplat.dll - ok
19:04:09.0454 4740  [ 4804BF25E3E67F5B1A868A5C731C468E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll
19:04:09.0454 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll - ok
19:04:09.0459 4740  [ 4752A325E7CA1CADFCAAB831E6CF4587 ] C:\Program Files (x86)\Yahoo!\Messenger\ymsglite.dll
19:04:09.0459 4740  C:\Program Files (x86)\Yahoo!\Messenger\ymsglite.dll - ok
19:04:09.0465 4740  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
19:04:09.0465 4740  C:\Windows\System32\UIAnimation.dll - ok
19:04:09.0470 4740  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
19:04:09.0471 4740  C:\Windows\System32\imapi2.dll - ok
19:04:09.0475 4740  [ C0FD64EB5824071B6B5683AAFDB2C60C ] C:\Program Files (x86)\Pando Networks\Media Booster\nss3.dll
19:04:09.0476 4740  C:\Program Files (x86)\Pando Networks\Media Booster\nss3.dll - ok
19:04:09.0480 4740  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
19:04:09.0480 4740  C:\Windows\System32\QAGENT.DLL - ok
19:04:09.0486 4740  [ D1AE6648BB68F9275652E8EDBC32B914 ] C:\Program Files (x86)\Pando Networks\Media Booster\softokn3.dll
19:04:09.0486 4740  C:\Program Files (x86)\Pando Networks\Media Booster\softokn3.dll - ok
19:04:09.0491 4740  [ 82C2CEA9AFA85E483481374621DAE39E ] C:\Program Files (x86)\Pando Networks\Media Booster\plds4.dll
19:04:09.0491 4740  C:\Program Files (x86)\Pando Networks\Media Booster\plds4.dll - ok
19:04:09.0496 4740  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
19:04:09.0496 4740  C:\Windows\System32\hgcpl.dll - ok
19:04:09.0501 4740  [ E37857FF2E9B95D1C70DF2F68DBBBD2F ] C:\Program Files (x86)\Pando Networks\Media Booster\ssl3.dll
19:04:09.0501 4740  C:\Program Files (x86)\Pando Networks\Media Booster\ssl3.dll - ok
19:04:09.0507 4740  [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
19:04:09.0507 4740  C:\Windows\SysWOW64\pdh.dll - ok
19:04:09.0511 4740  [ E52C84483710797C56D72A751275A3A8 ] C:\Program Files (x86)\Yahoo!\Messenger\YHTTP.dll
19:04:09.0511 4740  C:\Program Files (x86)\Yahoo!\Messenger\YHTTP.dll - ok
19:04:09.0516 4740  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
19:04:09.0516 4740  C:\Windows\System32\fdPHost.dll - ok
19:04:09.0521 4740  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
19:04:09.0521 4740  C:\Windows\System32\fdWSD.dll - ok
19:04:09.0526 4740  [ A238CE7CE547499629F8C80F43DD56FA ] C:\Program Files (x86)\Yahoo!\Messenger\RGX.dll
19:04:09.0526 4740  C:\Program Files (x86)\Yahoo!\Messenger\RGX.dll - ok
19:04:09.0530 4740  [ 5D7542A68AA96C3B69AF1086318AAC54 ] C:\Program Files (x86)\Pando Networks\Media Booster\smime3.dll
19:04:09.0530 4740  C:\Program Files (x86)\Pando Networks\Media Booster\smime3.dll - ok
19:04:09.0536 4740  [ 2ACF02F2AE84B6FA383328F564A88599 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll
19:04:09.0537 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll - ok
19:04:09.0541 4740  [ 11E16C171F97D389A2E8BC1C3560EC34 ] C:\Program Files (x86)\Yahoo!\Messenger\YCPSSL.dll
19:04:09.0542 4740  C:\Program Files (x86)\Yahoo!\Messenger\YCPSSL.dll - ok
19:04:09.0547 4740  [ 885A585519842651F9F7F42C620B48E7 ] C:\Program Files (x86)\Yahoo!\Messenger\yalertcenterM.dll
19:04:09.0547 4740  C:\Program Files (x86)\Yahoo!\Messenger\yalertcenterM.dll - ok
19:04:09.0555 4740  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
19:04:09.0555 4740  C:\Windows\System32\fdSSDP.dll - ok
19:04:09.0560 4740  [ 455D14F7F7455FEE0886BA545F0E6617 ] C:\Program Files (x86)\Yahoo!\Messenger\ymdm_audio.dll
19:04:09.0560 4740  C:\Program Files (x86)\Yahoo!\Messenger\ymdm_audio.dll - ok
19:04:09.0564 4740  [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
19:04:09.0564 4740  C:\Windows\System32\fdProxy.dll - ok
19:04:09.0569 4740  [ EE3920731FDEAA8CD2D4B218B03B23D0 ] C:\Program Files (x86)\Pando Networks\Media Booster\freebl3.dll
19:04:09.0570 4740  C:\Program Files (x86)\Pando Networks\Media Booster\freebl3.dll - ok
19:04:09.0574 4740  [ 76EF51AB610C80348CA7990788D57EB8 ] C:\Program Files (x86)\Yahoo!\Messenger\rmc_audio.dll
19:04:09.0575 4740  C:\Program Files (x86)\Yahoo!\Messenger\rmc_audio.dll - ok
19:04:09.0579 4740  [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
19:04:09.0579 4740  C:\Windows\System32\ListSvc.dll - ok
19:04:09.0585 4740  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
19:04:09.0585 4740  C:\Windows\System32\P2P.dll - ok
19:04:09.0590 4740  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
19:04:09.0590 4740  C:\Windows\System32\IdListen.dll - ok
19:04:09.0595 4740  [ 533631FE7DB9FF2A1D456A3D15A2DD46 ] C:\Windows\SysWOW64\icmp.dll
19:04:09.0595 4740  C:\Windows\SysWOW64\icmp.dll - ok
19:04:09.0601 4740  [ 87D233EC2D421BF2C9F193177B8AD0A0 ] C:\Program Files (x86)\Yahoo!\Messenger\ymdm_video.dll
19:04:09.0601 4740  C:\Program Files (x86)\Yahoo!\Messenger\ymdm_video.dll - ok
19:04:09.0606 4740  [ C1F9A46A92D6E2A452C4252599573A0A ] C:\Program Files (x86)\Yahoo!\Messenger\core_video.dll
19:04:09.0606 4740  C:\Program Files (x86)\Yahoo!\Messenger\core_video.dll - ok
19:04:09.0611 4740  [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
19:04:09.0611 4740  C:\Windows\System32\hgprint.dll - ok
19:04:09.0617 4740  [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
19:04:09.0617 4740  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
19:04:09.0622 4740  [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
19:04:09.0622 4740  C:\Windows\System32\riched20.dll - ok
19:04:09.0627 4740  [ 97C6AE7F9BE52FC348CB2E2B72C7D27D ] C:\Program Files\Internet Explorer\ieproxy.dll
19:04:09.0627 4740  C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:04:09.0632 4740  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
19:04:09.0632 4740  C:\Windows\SysWOW64\netprofm.dll - ok
19:04:09.0637 4740  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
19:04:09.0637 4740  C:\Windows\SysWOW64\nlaapi.dll - ok
19:04:09.0642 4740  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
19:04:09.0642 4740  C:\Windows\SysWOW64\npmproxy.dll - ok
19:04:09.0647 4740  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
19:04:09.0647 4740  C:\Windows\SysWOW64\NapiNSP.dll - ok
19:04:09.0653 4740  [ 38BCB6FC639E980406DBF5C163DC033C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\e31d3d59af811b8afb30a61775ec2b81\MyDock.Util.ni.dll
19:04:09.0653 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\e31d3d59af811b8afb30a61775ec2b81\MyDock.Util.ni.dll - ok
19:04:09.0658 4740  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
19:04:09.0658 4740  C:\Windows\SysWOW64\pnrpnsp.dll - ok
19:04:09.0663 4740  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
19:04:09.0663 4740  C:\Windows\SysWOW64\winrnr.dll - ok
19:04:09.0668 4740  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
19:04:09.0668 4740  C:\Windows\SysWOW64\ddraw.dll - ok
19:04:09.0673 4740  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
19:04:09.0673 4740  C:\Windows\SysWOW64\dciman32.dll - ok
19:04:09.0678 4740  [ 05E07A93F6920323B0B4732953C5ECB4 ] C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll
19:04:09.0678 4740  C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll - ok
19:04:09.0684 4740  [ 0FF26AF3ECFEC5768F0B56BD252BFAC0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\19f30827ef9a53834b602a9116eae5c3\DellDock.ni.exe
19:04:09.0684 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\19f30827ef9a53834b602a9116eae5c3\DellDock.ni.exe - ok
19:04:09.0689 4740  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
19:04:09.0689 4740  C:\Windows\SysWOW64\xmllite.dll - ok
19:04:09.0694 4740  [ 738B5ABCCF24F9ADAEFE0D28CFF40583 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll
19:04:09.0694 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll - ok
19:04:09.0696 4740  [ F40DD3104A3D5CDB708D66D5AA8C3A00 ] C:\Program Files (x86)\Yahoo!\Messenger\ConnectionWizard.dll
19:04:09.0696 4740  C:\Program Files (x86)\Yahoo!\Messenger\ConnectionWizard.dll - ok
19:04:09.0702 4740  [ 8504944851DF6175CC489A8F3328459E ] C:\Windows\SysWOW64\d3d10.dll
19:04:09.0703 4740  C:\Windows\SysWOW64\d3d10.dll - ok
19:04:09.0707 4740  [ FB3F036EF6A467F7AF46C821FF5D198D ] C:\Windows\SysWOW64\d3d10core.dll
19:04:09.0707 4740  C:\Windows\SysWOW64\d3d10core.dll - ok
19:04:09.0712 4740  [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
19:04:09.0712 4740  C:\Windows\SysWOW64\dxgi.dll - ok
19:04:09.0718 4740  [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
19:04:09.0718 4740  C:\Windows\SysWOW64\d3d11.dll - ok
19:04:09.0723 4740  [ 3D5FC38C054768CAE8A4DDF3FFE814EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\31d00047df434bb77fa029b3299f8493\VistaBridgeLibrary.ni.dll
19:04:09.0723 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\31d00047df434bb77fa029b3299f8493\VistaBridgeLibrary.ni.dll - ok
19:04:09.0730 4740  [ EDD2AD141DEBD425D74A52A4D7BE6AC4 ] C:\Windows\SysWOW64\perfctrs.dll
19:04:09.0730 4740  C:\Windows\SysWOW64\perfctrs.dll - ok
19:04:09.0734 4740  [ 752F8E96BAB993517838315508FB82CB ] C:\Windows\SysWOW64\perfproc.dll
19:04:09.0734 4740  C:\Windows\SysWOW64\perfproc.dll - ok
19:04:09.0739 4740  [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
19:04:09.0739 4740  C:\Windows\SysWOW64\perfos.dll - ok
19:04:09.0743 4740  [ EA46C8E03D199DA8B150EF8264C4C54C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\4ef28ccafc7f177085a19d8605e0ac04\MenuSkinning.ni.dll
19:04:09.0744 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\4ef28ccafc7f177085a19d8605e0ac04\MenuSkinning.ni.dll - ok
19:04:09.0749 4740  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
19:04:09.0749 4740  C:\Windows\System32\browcli.dll - ok
19:04:09.0755 4740  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
19:04:09.0755 4740  C:\Windows\System32\schedcli.dll - ok
19:04:09.0759 4740  [ BA527972762A3FD975CA2D7BCB467B76 ] C:\Windows\Temp\logishrd\LVPrcInj03.dll
19:04:09.0759 4740  C:\Windows\Temp\logishrd\LVPrcInj03.dll - ok
19:04:09.0764 4740  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
19:04:09.0765 4740  C:\Windows\System32\security.dll - ok
19:04:09.0770 4740  [ 119B5D041D9A18293A90953375044441 ] C:\Program Files (x86)\Yahoo!\Messenger\resources\en-US\res_msgr.dll
19:04:09.0770 4740  C:\Program Files (x86)\Yahoo!\Messenger\resources\en-US\res_msgr.dll - ok
19:04:09.0775 4740  [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
19:04:09.0776 4740  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
19:04:09.0781 4740  [ 0A8E209F3C1D1FB6889465D1019CC5BF ] C:\Windows\SysWOW64\shunimpl.dll
19:04:09.0781 4740  C:\Windows\SysWOW64\shunimpl.dll - ok
19:04:09.0787 4740  [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
19:04:09.0787 4740  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
19:04:09.0792 4740  [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
19:04:09.0792 4740  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
19:04:09.0798 4740  [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
19:04:09.0798 4740  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
19:04:09.0804 4740  [ 0EC4190B22A0E37010CC69371432FC0C ] C:\Windows\System32\gfxSrvc.dll
19:04:09.0804 4740  C:\Windows\System32\gfxSrvc.dll - ok
19:04:09.0808 4740  [ 58957A04853F47B791D68B960258043C ] C:\Windows\System32\IGFXDEVLib.dll
19:04:09.0808 4740  C:\Windows\System32\IGFXDEVLib.dll - ok
19:04:09.0814 4740  [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
19:04:09.0814 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
19:04:09.0820 4740  [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
19:04:09.0820 4740  C:\Windows\System32\d3d9.dll - ok
19:04:09.0825 4740  [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
19:04:09.0825 4740  C:\Windows\System32\d3d8thk.dll - ok
19:04:09.0830 4740  [ 9C253164E7016B42591F08BEB90FB494 ] C:\Windows\System32\igdumd64.dll
19:04:09.0830 4740  C:\Windows\System32\igdumd64.dll - ok
19:04:09.0837 4740  [ 41D113966CAFEE905864259B7D4ECD65 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\18f31a371a986b6f6b968530d8b89e25\System.Windows.Forms.ni.dll
19:04:09.0837 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\18f31a371a986b6f6b968530d8b89e25\System.Windows.Forms.ni.dll - ok
19:04:09.0842 4740  [ FC19F3D46E21EF65EEA990B8AF2076F6 ] C:\Program Files (x86)\Microsoft Office\Office14\1033\ONINTL.DLL
19:04:09.0842 4740  C:\Program Files (x86)\Microsoft Office\Office14\1033\ONINTL.DLL - ok
19:04:09.0847 4740  [ F4C47A84F1E3CCA8142B0634E14054CA ] C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll
19:04:09.0847 4740  C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll - ok
19:04:09.0853 4740  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:04:09.0853 4740  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:04:09.0858 4740  [ B3624BC426E6D2796EE63FEAF47AAFAA ] C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll
19:04:09.0858 4740  C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll - ok
19:04:09.0864 4740  [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
19:04:09.0864 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
19:04:09.0870 4740  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
19:04:09.0870 4740  C:\Windows\SysWOW64\shfolder.dll - ok
19:04:09.0875 4740  [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
19:04:09.0875 4740  C:\Windows\SysWOW64\olepro32.dll - ok
19:04:09.0880 4740  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
19:04:09.0881 4740  C:\Windows\SysWOW64\avrt.dll - ok
19:04:09.0886 4740  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
19:04:09.0887 4740  C:\Windows\SysWOW64\cryptui.dll - ok
19:04:09.0891 4740  [ 4F06062DC74BFFCC42B16B7D42991DDE ] C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll
19:04:09.0891 4740  C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll - ok
19:04:09.0897 4740  [ 342193AFA8B38B3EF6F1670B67654A85 ] C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll
19:04:09.0897 4740  C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll - ok
19:04:09.0902 4740  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
19:04:09.0902 4740  C:\Windows\SysWOW64\mapi32.dll - ok
19:04:09.0907 4740  [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
19:04:09.0907 4740  C:\Windows\SysWOW64\opengl32.dll - ok
19:04:09.0912 4740  [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
19:04:09.0912 4740  C:\Windows\SysWOW64\glu32.dll - ok
19:04:09.0920 4740  [ D9709FA638B789C1C961F028135CC696 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll
19:04:09.0920 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll - ok
19:04:09.0923 4740  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
19:04:09.0923 4740  C:\Windows\SysWOW64\wlanapi.dll - ok
19:04:09.0929 4740  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
19:04:09.0929 4740  C:\Windows\SysWOW64\wlanutil.dll - ok
19:04:09.0934 4740  [ EAEC910B3F123EFA14E0588C69F1792D ] C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll
19:04:09.0935 4740  C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll - ok
19:04:09.0939 4740  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
19:04:09.0940 4740  C:\Windows\System32\shfolder.dll - ok
19:04:09.0945 4740  [ 271BBCB4793F4BA65A98CF7653F564F5 ] C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll
19:04:09.0945 4740  C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll - ok
19:04:09.0948 4740  [ 3103F95DB2EFEA79CF0544D76D1664BA ] C:\Program Files (x86)\Logitech\Vid HD\SDL.dll
19:04:09.0948 4740  C:\Program Files (x86)\Logitech\Vid HD\SDL.dll - ok
19:04:09.0954 4740  [ F1C19F0AA151B90A7416FA1D50DDB582 ] C:\Windows\System32\WindowsCodecsExt.dll
19:04:09.0954 4740  C:\Windows\System32\WindowsCodecsExt.dll - ok
19:04:09.0959 4740  [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
19:04:09.0959 4740  C:\Windows\System32\icm32.dll - ok
19:04:09.0964 4740  [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
19:04:09.0964 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
19:04:09.0971 4740  [ 68E1D09FC5F2214F712FBB0340998A34 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll
19:04:09.0971 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll - ok
19:04:09.0976 4740  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
19:04:09.0976 4740  C:\Windows\SysWOW64\devenum.dll - ok
19:04:09.0981 4740  [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
19:04:09.0981 4740  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
19:04:09.0987 4740  [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
19:04:09.0987 4740  C:\Windows\SysWOW64\msdmo.dll - ok
19:04:09.0992 4740  [ 7E94F62FB970E09E019FF4BD25284868 ] C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll
19:04:09.0993 4740  C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll - ok
19:04:09.0997 4740  [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
19:04:09.0998 4740  C:\Windows\SysWOW64\avicap32.dll - ok
19:04:10.0003 4740  [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
19:04:10.0004 4740  C:\Windows\SysWOW64\msvfw32.dll - ok
19:04:10.0009 4740  [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
19:04:10.0009 4740  C:\Windows\SysWOW64\vfwwdm32.dll - ok
19:04:10.0014 4740  [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
19:04:10.0014 4740  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
19:04:10.0020 4740  [ CDCB65B20F6A36B77F1C016C2523AC75 ] C:\Program Files\Dell\DellDock\MyDockLib.dll
19:04:10.0020 4740  C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
19:04:10.0025 4740  [ 7A468BC721C1D34E60389D3F2F87BBEA ] C:\Windows\SysWOW64\mshtml.dll
19:04:10.0025 4740  C:\Windows\SysWOW64\mshtml.dll - ok
19:04:10.0030 4740  [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
19:04:10.0030 4740  C:\Windows\System32\pnrpsvc.dll - ok
19:04:10.0036 4740  [ 1E520B31DF83A8CE167231CCDDEC8C2F ] C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll
19:04:10.0036 4740  C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll - ok
19:04:10.0041 4740  [ E15E12A4C82E60F72E7D812A9A051EC6 ] C:\Program Files (x86)\Logitech\Vid HD\avutil-49.dll
19:04:10.0042 4740  C:\Program Files (x86)\Logitech\Vid HD\avutil-49.dll - ok
19:04:10.0046 4740  [ 67F2D7FC74DE68F725A6B6C8B325A3AE ] C:\Program Files (x86)\Logitech\Vid HD\avcodec-52.dll
19:04:10.0046 4740  C:\Program Files (x86)\Logitech\Vid HD\avcodec-52.dll - ok
19:04:10.0052 4740  [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
19:04:10.0052 4740  C:\Windows\System32\p2psvc.dll - ok
19:04:10.0057 4740  [ 758D99511FD82B6C55E70494039E9F1A ] C:\Users\Elena\AppData\Local\Google\Update\1.3.21.145\goopdate.dll
19:04:10.0057 4740  C:\Users\Elena\AppData\Local\Google\Update\1.3.21.145\goopdate.dll - ok
19:04:10.0062 4740  [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
19:04:10.0062 4740  C:\Windows\System32\P2PGraph.dll - ok
19:04:10.0068 4740  [ BF254FF79BB6742A5030765E2B9DC93B ] C:\Program Files (x86)\Logitech\Vid HD\avformat-52.dll
19:04:10.0068 4740  C:\Program Files (x86)\Logitech\Vid HD\avformat-52.dll - ok
19:04:10.0073 4740  [ 951C447A1F9F8F4FB4841C47A55A9B8E ] C:\Program Files (x86)\Logitech\Vid HD\H264VidEncodeAPI.dll
19:04:10.0073 4740  C:\Program Files (x86)\Logitech\Vid HD\H264VidEncodeAPI.dll - ok
19:04:10.0078 4740  [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:04:10.0078 4740  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:04:10.0084 4740  [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
19:04:10.0084 4740  C:\Windows\System32\msshooks.dll - ok
19:04:10.0089 4740  [ 009520CDF77FD8EFA0ACAA3198A402BF ] C:\Program Files (x86)\Logitech\Vid HD\StreamIO2.dll
19:04:10.0089 4740  C:\Program Files (x86)\Logitech\Vid HD\StreamIO2.dll - ok
19:04:10.0094 4740  [ E6F4BFF7769D102A5CB382868B7AD827 ] C:\Program Files (x86)\Logitech\Vid HD\H264NvidiaVidDecodeAPI.dll
19:04:10.0094 4740  C:\Program Files (x86)\Logitech\Vid HD\H264NvidiaVidDecodeAPI.dll - ok
19:04:10.0101 4740  [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
19:04:10.0101 4740  C:\Windows\System32\SearchFilterHost.exe - ok
19:04:10.0106 4740  [ A42DC84312F433D87F7D2E57251B6D62 ] C:\Program Files (x86)\Logitech\Vid HD\H264VidDecodeAPI.dll
19:04:10.0106 4740  C:\Program Files (x86)\Logitech\Vid HD\H264VidDecodeAPI.dll - ok
19:04:10.0111 4740  [ C483B56017C5BE6657C990E79E1C37BD ] C:\Program Files (x86)\Logitech\Vid HD\lwf_jp2.dll
19:04:10.0111 4740  C:\Program Files (x86)\Logitech\Vid HD\lwf_jp2.dll - ok
19:04:10.0118 4740  [ B92E9318F7E4AEF633B8EC3A873565AF ] C:\Windows\SysWOW64\perfdisk.dll
19:04:10.0118 4740  C:\Windows\SysWOW64\perfdisk.dll - ok
19:04:10.0124 4740  [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\SysWOW64\gameux.dll
19:04:10.0124 4740  C:\Windows\SysWOW64\gameux.dll - ok
19:04:10.0130 4740  [ EF6F6DF28B14D1ECC79263B2ACF48A20 ] C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll
19:04:10.0130 4740  C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll - ok
19:04:10.0136 4740  [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
19:04:10.0136 4740  C:\Windows\System32\l3codeca.acm - ok
19:04:10.0141 4740  [ EC4A8CDEA23B3BEFE34E705538B354CD ] C:\Program Files (x86)\Logitech\Vid HD\libmmd.dll
19:04:10.0141 4740  C:\Program Files (x86)\Logitech\Vid HD\libmmd.dll - ok
19:04:10.0147 4740  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
19:04:10.0147 4740  C:\Windows\SysWOW64\wer.dll - ok
19:04:10.0153 4740  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
19:04:10.0153 4740  C:\Windows\SysWOW64\linkinfo.dll - ok
19:04:10.0158 4740  [ 20BC757D80E37FF81000ECF9625E1323 ] C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll
19:04:10.0159 4740  C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll - ok
19:04:10.0164 4740  [ C1B99E70FE9E2DE54651B5D750B14E14 ] C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll
19:04:10.0164 4740  C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll - ok
19:04:10.0170 4740  [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
19:04:10.0170 4740  C:\Windows\System32\drttransport.dll - ok
19:04:10.0175 4740  [ 018614EA44E195A62242DB6D2BC62AD4 ] C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll
19:04:10.0175 4740  C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll - ok
19:04:10.0180 4740  [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
19:04:10.0180 4740  C:\Windows\System32\drt.dll - ok
19:04:10.0188 4740  [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
19:04:10.0188 4740  C:\Windows\SysWOW64\FirewallAPI.dll - ok
19:04:10.0192 4740  [ DA7CB9EB8C4CBCA180FF17334F1FACC4 ] C:\Program Files (x86)\Logitech\Vid HD\ssleay32.dll
19:04:10.0192 4740  C:\Program Files (x86)\Logitech\Vid HD\ssleay32.dll - ok
19:04:10.0201 4740  [ F234839F597BC789382E9A69141EB167 ] C:\Program Files (x86)\Logitech\Vid HD\libeay32.dll
19:04:10.0201 4740  C:\Program Files (x86)\Logitech\Vid HD\libeay32.dll - ok
19:04:10.0204 4740  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
19:04:10.0204 4740  C:\Windows\SysWOW64\MMDevAPI.dll - ok
19:04:10.0209 4740  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
19:04:10.0210 4740  C:\Windows\SysWOW64\AudioSes.dll - ok
19:04:10.0214 4740  [ 3B8C106587A57159639713EEE074EF83 ] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
19:04:10.0214 4740  C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe - ok
19:04:10.0220 4740  [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\SysWOW64\ksproxy.ax
19:04:10.0220 4740  C:\Windows\SysWOW64\ksproxy.ax - ok
19:04:10.0225 4740  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
19:04:10.0225 4740  C:\Windows\SysWOW64\ksuser.dll - ok
19:04:10.0230 4740  [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
19:04:10.0230 4740  C:\Windows\SysWOW64\vidcap.ax - ok
19:04:10.0235 4740  [ 630A31F277349109299E590856A4B004 ] C:\Windows\SysWOW64\Kswdmcap.ax
19:04:10.0236 4740  C:\Windows\SysWOW64\Kswdmcap.ax - ok
19:04:10.0240 4740  [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
19:04:10.0241 4740  C:\Windows\SysWOW64\mfc42.dll - ok
19:04:10.0245 4740  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
19:04:10.0245 4740  C:\Windows\SysWOW64\odbc32.dll - ok
19:04:10.0251 4740  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
19:04:10.0251 4740  C:\Windows\SysWOW64\odbcint.dll - ok
19:04:10.0256 4740  [ 1FFBD0D362D4F3EC63C1814472A9B1FC ] C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll
19:04:10.0256 4740  C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll - ok
19:04:10.0261 4740  [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
19:04:10.0261 4740  C:\Windows\System32\NaturalLanguage6.dll - ok
19:04:10.0267 4740  [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
19:04:10.0267 4740  C:\Windows\System32\NlsData0009.dll - ok
19:04:10.0272 4740  [ C85E9B1DF4A7E61AF9B02110EABC296D ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_202.ocx
19:04:10.0272 4740  C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_202.ocx - ok
19:04:10.0277 4740  [ 25107F58D1B8F60D67D1EE95798C0DE8 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
19:04:10.0277 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
19:04:10.0283 4740  [ 1568FF282E268082C67CF0C3EBCC9179 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
19:04:10.0284 4740  C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe - ok
19:04:10.0289 4740  [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
19:04:10.0289 4740  C:\Windows\System32\NlsLexicons0009.dll - ok
19:04:10.0293 4740  [ CC5BF60E9D3F181C0B62AC91AD8634B8 ] C:\Windows\SysWOW64\qcap.dll
19:04:10.0294 4740  C:\Windows\SysWOW64\qcap.dll - ok
19:04:10.0299 4740  [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
19:04:10.0299 4740  C:\Windows\SysWOW64\quartz.dll - ok
19:04:10.0306 4740  [ F80FFD4517C0B8025ECC54FBB30F88C4 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
19:04:10.0306 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe - ok
19:04:10.0310 4740  [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
19:04:10.0310 4740  C:\Windows\SysWOW64\wshqos.dll - ok
19:04:10.0317 4740  [ E30B5056C874308F22CF155CE3BAE3D2 ] C:\Program Files (x86)\LTCM Client\ltcmClient.exe
19:04:10.0317 4740  C:\Program Files (x86)\LTCM Client\ltcmClient.exe - ok
19:04:10.0324 4740  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
19:04:10.0324 4740  C:\Windows\SysWOW64\dsound.dll - ok
19:04:10.0331 4740  [ 0CE025436A9B94D28EEA7EC45BDD67B6 ] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
19:04:10.0331 4740  C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe - ok
19:04:10.0336 4740  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
19:04:10.0336 4740  C:\Windows\SysWOW64\mscms.dll - ok
19:04:10.0341 4740  [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:04:10.0341 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
19:04:10.0346 4740  [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Users\Elena\AppData\Local\Google\Update\1.3.21.145\GoogleCrashHandler.exe
19:04:10.0346 4740  C:\Users\Elena\AppData\Local\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
19:04:10.0352 4740  [ 0600CB2613BEA0C6C0987B58D56D77B9 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
19:04:10.0352 4740  C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
19:04:10.0358 4740  [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:04:10.0358 4740  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
19:04:10.0364 4740  [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
19:04:10.0364 4740  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
19:04:10.0370 4740  [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
19:04:10.0370 4740  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
19:04:10.0376 4740  [ CAB8C731BBF7268C26EA9B54A719EFB7 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe
19:04:10.0376 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMTray.exe - ok
19:04:10.0381 4740  [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
19:04:10.0381 4740  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
19:04:10.0387 4740  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
19:04:10.0387 4740  C:\Windows\System32\wsock32.dll - ok
19:04:10.0391 4740  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
19:04:10.0392 4740  C:\Windows\System32\keyiso.dll - ok
19:04:10.0396 4740  [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
19:04:10.0396 4740  C:\Windows\System32\mssph.dll - ok
19:04:10.0402 4740  [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
19:04:10.0402 4740  C:\Windows\System32\wmdrmdev.dll - ok
19:04:10.0407 4740  [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
19:04:10.0407 4740  C:\Windows\System32\mapi32.dll - ok
19:04:10.0411 4740  [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
19:04:10.0412 4740  C:\Windows\SysWOW64\es.dll - ok
19:04:10.0418 4740  [ 885A88C268C23618AFB937F1ECE56A20 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
19:04:10.0418 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
19:04:10.0423 4740  [ C490E31E7F1006E1DA62C5021C56E165 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\f7cb3ae5de64f8cbde3ccc57c780743a\IAStorUtil.ni.dll
19:04:10.0423 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\f7cb3ae5de64f8cbde3ccc57c780743a\IAStorUtil.ni.dll - ok
19:04:10.0428 4740  [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
19:04:10.0428 4740  C:\Windows\System32\Query.dll - ok
19:04:10.0434 4740  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
19:04:10.0434 4740  C:\Windows\System32\drmv2clt.dll - ok
19:04:10.0439 4740  [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
19:04:10.0439 4740  C:\Windows\System32\wmp.dll - ok
19:04:10.0443 4740  [ 027D0500A592CAED765B9E450129D89E ] C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe
19:04:10.0443 4740  C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe - ok
19:04:10.0449 4740  [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
19:04:10.0449 4740  C:\Windows\System32\wmploc.DLL - ok
19:04:10.0452 4740  [ 1A6A313D8495E6EB8DD3B20F995F9261 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
19:04:10.0452 4740  C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
19:04:10.0457 4740  [ 3760F9063D5F3AFAC23FE9F120ECDDBB ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXLDB.dll
19:04:10.0457 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXLDB.dll - ok
19:04:10.0462 4740  [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
19:04:10.0462 4740  C:\Windows\System32\ELSCore.dll - ok
19:04:10.0468 4740  [ 60F58070E56145B8B2CCB264D5E53136 ] C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll
19:04:10.0468 4740  C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll - ok
19:04:10.0473 4740  [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
19:04:10.0473 4740  C:\Windows\System32\elsTrans.dll - ok
19:04:10.0477 4740  [ 9130CCE19B5DB3D2E31F9F789263FC4A ] C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2\Lib\X86\capicom.dll
19:04:10.0478 4740  C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2\Lib\X86\capicom.dll - ok
19:04:10.0483 4740  [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
19:04:10.0483 4740  C:\Windows\System32\elslad.dll - ok
19:04:10.0488 4740  [ FA579B5272957DAF6CFD0E10EEFBF5AC ] C:\Windows\SysWOW64\mssign32.dll
19:04:10.0488 4740  C:\Windows\SysWOW64\mssign32.dll - ok
19:04:10.0493 4740  [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
19:04:10.0493 4740  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
19:04:10.0498 4740  [ C4D597818006FEABD48782F47E5477F6 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCFG.dll
19:04:10.0498 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCFG.dll - ok
19:04:10.0504 4740  [ D37F42709D6ECC7642EEC8843A676A7B ] C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll
19:04:10.0505 4740  C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll - ok
19:04:10.0510 4740  [ 5243C11B1F5DDCCBD47863A1FBE5B798 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCSR.dll
19:04:10.0510 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCSR.dll - ok
19:04:10.0515 4740  [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
19:04:10.0515 4740  C:\Windows\System32\wmpps.dll - ok
19:04:10.0521 4740  [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
19:04:10.0521 4740  C:\Windows\System32\wmpmde.dll - ok
19:04:10.0527 4740  [ C872062D371AEBFBE88C8F60CB84EE18 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUIMGCDC.dll
19:04:10.0527 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUIMGCDC.dll - ok
19:04:10.0532 4740  [ CCEDEFBA1645A5806484731846E29877 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUSVCCLT.dll
19:04:10.0532 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUSVCCLT.dll - ok
19:04:10.0538 4740  [ 3BDD9E0105254F161783CBF260424223 ] C:\Program Files (x86)\Epson Software\FAX Utility\EbpD4Fax.dll
19:04:10.0538 4740  C:\Program Files (x86)\Epson Software\FAX Utility\EbpD4Fax.dll - ok
19:04:10.0543 4740  [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
19:04:10.0543 4740  C:\Windows\System32\WinSATAPI.dll - ok
19:04:10.0548 4740  [ C87369B9CC03E0A35493D5FE5B81FFFA ] C:\Program Files (x86)\Epson Software\FAX Utility\FUADRFIL.dll
19:04:10.0548 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUADRFIL.dll - ok
19:04:10.0554 4740  [ 23F9A42FFEDA413ACF28593E71C6FF49 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUSTMMSG.dll
19:04:10.0554 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUSTMMSG.dll - ok
19:04:10.0559 4740  [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
19:04:10.0559 4740  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
19:04:10.0565 4740  [ 0D7BE936A44E6B70F822D272A5CEBC22 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
19:04:10.0565 4740  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok
19:04:10.0571 4740  [ A84657FDDF46ECD976117BB200B9F711 ] C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
19:04:10.0571 4740  C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe - ok
19:04:10.0576 4740  [ 61A2C38402D3EDF4BC35F9AD2D81E0A8 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUVERDLG.dll
19:04:10.0576 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUVERDLG.dll - ok
19:04:10.0581 4740  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:04:10.0581 4740  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
19:04:10.0587 4740  [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
19:04:10.0587 4740  C:\Windows\System32\MSMPEG2ENC.DLL - ok
19:04:10.0592 4740  [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
19:04:10.0592 4740  C:\Windows\System32\devenum.dll - ok
19:04:10.0597 4740  [ E5A97B3D75580123CED37E04EA0E8B57 ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll
19:04:10.0597 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll - ok
19:04:10.0603 4740  [ 5CC018909101824A267F82E91467E00C ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll
19:04:10.0603 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll - ok
19:04:10.0608 4740  [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
19:04:10.0608 4740  C:\Windows\System32\msdmo.dll - ok
19:04:10.0613 4740  [ 0783550457EE1AD211086538A941C575 ] C:\Program Files (x86)\Epson Software\FAX Utility\fufaxtif.dll
19:04:10.0613 4740  C:\Program Files (x86)\Epson Software\FAX Utility\fufaxtif.dll - ok
19:04:10.0619 4740  [ 3BDDD476E42C19FC895C0F9B8FF9FD8E ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUPRBDEV.dll
19:04:10.0619 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUPRBDEV.dll - ok
19:04:10.0624 4740  [ 11DFC66A5B97A561B35328F75B997443 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENUTIL.dll
19:04:10.0624 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENUTIL.dll - ok
19:04:10.0629 4740  [ 4641DA1F5EF8A2C68AF4B20CEDB6297B ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENCM.dll
19:04:10.0629 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENCM.dll - ok
19:04:10.0635 4740  [ 5082BC510FAD849630D09DA626BB7CDA ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
19:04:10.0635 4740  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
19:04:10.0640 4740  [ 2031DCC0083A134AF9451CD1402FFCE3 ] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
19:04:10.0640 4740  C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll - ok
19:04:10.0645 4740  [ 8C0F0B722864F2D139DE7E5922063F33 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENNW.dll
19:04:10.0645 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENNW.dll - ok
19:04:10.0651 4740  [ 0B81540A7A179F2C3A4ABF904E0B5B21 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
19:04:10.0651 4740  C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
19:04:10.0656 4740  [ 67B3549F33E8BEC8B67EAE42B124789C ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDEVCOM.dll
19:04:10.0656 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDEVCOM.dll - ok
19:04:10.0660 4740  [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
19:04:10.0661 4740  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
19:04:10.0666 4740  [ BE643CD44DD06DA283634A3E51DC22BC ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
19:04:10.0667 4740  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
19:04:10.0671 4740  [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
19:04:10.0672 4740  C:\Windows\SysWOW64\sti.dll - ok
19:04:10.0676 4740  [ 4956C57498AD08724AE41920A81B6963 ] C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll
19:04:10.0676 4740  C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll - ok
19:04:10.0681 4740  [ 5397E32E882C0148CEC13D9EACFB7157 ] C:\Program Files (x86)\Internet Explorer\ielowutil.exe
19:04:10.0681 4740  C:\Program Files (x86)\Internet Explorer\ielowutil.exe - ok
19:04:10.0687 4740  [ 17386C6E17A26BB0C9765577E446E7D9 ] C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll
19:04:10.0687 4740  C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll - ok
19:04:10.0692 4740  [ F173B50366DB1028A8F6CBE6A029A204 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUSNMPUT.dll
19:04:10.0692 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUSNMPUT.dll - ok
19:04:10.0695 4740  [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\SysWOW64\wsnmp32.dll
19:04:10.0695 4740  C:\Windows\SysWOW64\wsnmp32.dll - ok
19:04:10.0700 4740  [ EEE49DE32144A313550A4438BC81A23E ] C:\Program Files (x86)\Epson Software\FAX Utility\FUUSBHLP.dll
19:04:10.0701 4740  C:\Program Files (x86)\Epson Software\FAX Utility\FUUSBHLP.dll - ok
19:04:10.0703 4740  [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
19:04:10.0703 4740  C:\Windows\SysWOW64\msisip.dll - ok
19:04:10.0708 4740  [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
19:04:10.0708 4740  C:\Windows\twain_32.dll - ok
19:04:10.0713 4740  [ 04BC8F4B434C637F8984E1229264084A ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll
19:04:10.0713 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll - ok
19:04:10.0719 4740  [ AF1477E04A3BE501CE263BE68DA7D9C2 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDRVUTL.dll
19:04:10.0719 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDRVUTL.dll - ok
19:04:10.0724 4740  [ EA9166A15B74A02A15A1A360B65EC236 ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll
19:04:10.0724 4740  C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll - ok
19:04:10.0729 4740  [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
19:04:10.0729 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
19:04:10.0734 4740  [ 535010EEE51B6F8D029167F5C0A8589E ] C:\Windows\twain_32\escndv\wor630.ds
19:04:10.0734 4740  C:\Windows\twain_32\escndv\wor630.ds - ok
19:04:10.0739 4740  [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
19:04:10.0739 4740  C:\Windows\twain_32\wiatwain.ds - ok
19:04:10.0744 4740  [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
19:04:10.0744 4740  C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
19:04:10.0750 4740  [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
19:04:10.0750 4740  C:\Windows\SysWOW64\wiadss.dll - ok
19:04:10.0754 4740  [ DEC1426BF15A07E4B26DC7F479EDAA60 ] C:\Program Files (x86)\Common Files\System\ado\msado15.dll
19:04:10.0755 4740  C:\Program Files (x86)\Common Files\System\ado\msado15.dll - ok
19:04:10.0760 4740  [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
19:04:10.0760 4740  C:\Windows\System32\sti.dll - ok
19:04:10.0766 4740  [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
19:04:10.0766 4740  C:\Windows\SysWOW64\wiatrace.dll - ok
19:04:10.0771 4740  [ A99C4D1B5E7E794EC5779CF14F431932 ] C:\Windows\SysWOW64\msdart.dll
19:04:10.0772 4740  C:\Windows\SysWOW64\msdart.dll - ok
19:04:10.0776 4740  [ E2095C5CBE19CB17F8C6B07A5805B784 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
19:04:10.0776 4740  C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll - ok
19:04:10.0781 4740  [ 8859C0357D3C1499BEF65C7D5BBF7A40 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll
19:04:10.0781 4740  C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll - ok
19:04:10.0787 4740  [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
19:04:10.0787 4740  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
19:04:10.0792 4740  [ ED12110CD5BFE686F645E145A7DD28C5 ] C:\Windows\SysWOW64\comsvcs.dll
19:04:10.0792 4740  C:\Windows\SysWOW64\comsvcs.dll - ok
19:04:10.0796 4740  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
19:04:10.0797 4740  C:\Windows\SysWOW64\atl.dll - ok
19:04:10.0802 4740  [ 5A72F87F75A5EA7B46DC3AD87302FE00 ] C:\Windows\SysWOW64\msjetoledb40.dll
19:04:10.0802 4740  C:\Windows\SysWOW64\msjetoledb40.dll - ok
19:04:10.0807 4740  [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
19:04:10.0807 4740  C:\Windows\SysWOW64\msjet40.dll - ok
19:04:10.0812 4740  [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
19:04:10.0812 4740  C:\Windows\SysWOW64\mswstr10.dll - ok
19:04:10.0818 4740  [ FB8B3E6BF6445C22F30DFC26B200E569 ] C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll
19:04:10.0818 4740  C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll - ok
19:04:10.0823 4740  [ 870285A6C2429CFC47FF95DA49313664 ] C:\Windows\SysWOW64\msjter40.dll
19:04:10.0823 4740  C:\Windows\SysWOW64\msjter40.dll - ok
19:04:10.0828 4740  [ 637124CDBFF5819CB8A8478838A33048 ] C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll
19:04:10.0828 4740  C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll - ok
19:04:10.0834 4740  [ 0219B6F2329F4C1BC24580C83D0F3645 ] C:\Windows\SysWOW64\msjint40.dll
19:04:10.0834 4740  C:\Windows\SysWOW64\msjint40.dll - ok
19:04:10.0839 4740  [ 3147D4C14BB47E75369772B68ACF3079 ] C:\Windows\System32\wiawow64.exe
19:04:10.0839 4740  C:\Windows\System32\wiawow64.exe - ok
19:04:10.0844 4740  [ FC877611E178FA17E23F99D9694590A0 ] C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll
19:04:10.0844 4740  C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll - ok
19:04:10.0849 4740  [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
19:04:10.0850 4740  C:\Windows\SysWOW64\vbajet32.dll - ok
19:04:10.0855 4740  [ EFF10B20A6F094BC75385791C526546D ] C:\Windows\SysWOW64\expsrv.dll
19:04:10.0855 4740  C:\Windows\SysWOW64\expsrv.dll - ok
19:04:10.0860 4740  [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
19:04:10.0860 4740  C:\Windows\SysWOW64\msjtes40.dll - ok
19:04:10.0865 4740  [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Users\Elena\AppData\Local\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
19:04:10.0865 4740  C:\Users\Elena\AppData\Local\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
19:04:10.0871 4740  [ 4AA2D136F89C55DC28799107AC40B3C9 ] C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManagerPS.dll
19:04:10.0871 4740  C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManagerPS.dll - ok
19:04:10.0876 4740  [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
19:04:10.0876 4740  C:\Windows\SysWOW64\wdmaud.drv - ok
19:04:10.0881 4740  [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
19:04:10.0882 4740  C:\Windows\SysWOW64\msacm32.drv - ok
19:04:10.0887 4740  [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
19:04:10.0887 4740  C:\Windows\SysWOW64\midimap.dll - ok
19:04:10.0892 4740  [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
19:04:10.0892 4740  C:\Windows\System32\RacEngn.dll - ok
19:04:10.0897 4740  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
19:04:10.0897 4740  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
19:04:10.0903 4740  [ F62B62E3CAAB44E6C6056955954AE86F ] C:\Windows\System32\scansetting.dll
19:04:10.0903 4740  C:\Windows\System32\scansetting.dll - ok
19:04:10.0907 4740  [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
19:04:10.0908 4740  C:\Windows\System32\mfc42u.dll - ok
19:04:10.0912 4740  [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
19:04:10.0913 4740  C:\Windows\System32\sqlceoledb30.dll - ok
19:04:10.0918 4740  [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
19:04:10.0919 4740  C:\Windows\System32\upnphost.dll - ok
19:04:10.0923 4740  [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
19:04:10.0923 4740  C:\Windows\System32\sqlcese30.dll - ok
19:04:10.0928 4740  [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
19:04:10.0928 4740  C:\Windows\System32\sqlceqp30.dll - ok
19:04:10.0934 4740  [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
19:04:10.0934 4740  C:\Windows\System32\odbc32.dll - ok
19:04:10.0938 4740  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
19:04:10.0939 4740  C:\Windows\System32\odbcint.dll - ok
19:04:10.0943 4740  [ AD720D4D463B72C58DA9FF5933723A66 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe
19:04:10.0944 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvc.exe - ok
19:04:10.0949 4740  [ 17AD6A5E8A3E68D3F77894B02B88BF92 ] C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll
19:04:10.0950 4740  C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll - ok
19:04:10.0955 4740  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
19:04:10.0955 4740  C:\Windows\System32\wbem\wmiprov.dll - ok
19:04:10.0958 4740  [ 97A8968A66F15FD3B2F09C6F56B2170D ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
19:04:10.0958 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
19:04:10.0964 4740  [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
19:04:10.0964 4740  C:\Windows\System32\msimsg.dll - ok
19:04:10.0969 4740  [ DC4382E93770B3BF0774DB7FE46C8239 ] C:\Windows\System32\netevent.dll
19:04:10.0969 4740  C:\Windows\System32\netevent.dll - ok
19:04:10.0975 4740  [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
19:04:10.0975 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
19:04:10.0980 4740  [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
19:04:10.0980 4740  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
19:04:10.0986 4740  [ 8784236EED5079493DA9FC95B28B89F8 ] C:\Windows\System32\WerFault.exe
19:04:10.0986 4740  C:\Windows\System32\WerFault.exe - ok
19:04:10.0991 4740  [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
19:04:10.0992 4740  C:\Windows\System32\udhisapi.dll - ok
19:04:10.0996 4740  [ 5C694FA52B6A9A71C8B1D1D749548B55 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
19:04:10.0997 4740  C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
19:04:11.0002 4740  [ AEFA48B4DB11B7AB758046A7966AE1BF ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBTE.dll
19:04:11.0002 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBTE.dll - ok
19:04:11.0008 4740  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
19:04:11.0008 4740  C:\Windows\System32\drprov.dll - ok
19:04:11.0013 4740  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
19:04:11.0013 4740  C:\Windows\System32\ntlanman.dll - ok
19:04:11.0019 4740  [ 9B96AECA9EA952EE5B62894B1DAB9F64 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\sbap.dll
19:04:11.0019 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\sbap.dll - ok
19:04:11.0024 4740  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
19:04:11.0024 4740  C:\Windows\System32\davclnt.dll - ok
19:04:11.0030 4740  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
19:04:11.0030 4740  C:\Windows\System32\davhlpr.dll - ok
19:04:11.0036 4740  [ 050C3F6E9572328B6ABD10466EE9B583 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBArva.dll
19:04:11.0036 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBArva.dll - ok
19:04:11.0041 4740  [ 9CE7BD04EDF43A81685030FF09E7F4D7 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\mimepp.dll
19:04:11.0042 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\mimepp.dll - ok
19:04:11.0047 4740  [ A29A1A840FB4B0B28C1EB817EE48D915 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SbHips.dll
19:04:11.0048 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SbHips.dll - ok
19:04:11.0053 4740  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
19:04:11.0053 4740  C:\Program Files\iPod\bin\iPodService.exe - ok
19:04:11.0058 4740  [ 62297E937F0199D9BFD799F7FE30947D ] C:\Program Files (x86)\Sunbelt Software\VIPRE\vipre.dll
19:04:11.0059 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\vipre.dll - ok
19:04:11.0064 4740  [ 3E7BB22F1B7EF9D660CDDEC62C18473D ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\vcore.dll
19:04:11.0064 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\vcore.dll - ok
19:04:11.0072 4740  [ CF6C96DE451A13F2B1EC64346463E9FC ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\remediation.dll
19:04:11.0072 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\remediation.dll - ok
19:04:11.0076 4740  [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\SysWOW64\schedcli.dll
19:04:11.0076 4740  C:\Windows\SysWOW64\schedcli.dll - ok
19:04:11.0081 4740  [ D1B01B7933F26211E80EAC667A909E1B ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\patchw32.dll
19:04:11.0081 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\patchw32.dll - ok
19:04:11.0087 4740  [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
19:04:11.0087 4740  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
19:04:11.0092 4740  [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
19:04:11.0092 4740  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
19:04:11.0098 4740  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:04:11.0098 4740  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
19:04:11.0103 4740  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
19:04:11.0103 4740  C:\Windows\System32\msvcr100_clr0400.dll - ok
19:04:11.0109 4740  [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll
19:04:11.0109 4740  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll - ok
19:04:11.0114 4740  [ 7B33E611511197DFD27B37A444FB4014 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\lgpl.dll
19:04:11.0114 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\lgpl.dll - ok
19:04:11.0120 4740  [ 7DC7D177B59D55B1A09F3A8E14FDFB58 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\lib7zip.dll
19:04:11.0120 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\lib7zip.dll - ok
19:04:11.0125 4740  [ 31A0E93CDF29007D6C6FFFB632F375ED ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:04:11.0125 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
19:04:11.0131 4740  [ 50BC994B5BD8A2F905A69F601FC3DC1D ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libBase64.dll
19:04:11.0131 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libBase64.dll - ok
19:04:11.0136 4740  [ 0EFC248A61B604DC84C89F400CA1C1F0 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libCHM.dll
19:04:11.0137 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libCHM.dll - ok
19:04:11.0142 4740  [ C8EA2E332EC6884D08CE2D5EEFCB8440 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libEmail.dll
19:04:11.0142 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libEmail.dll - ok
19:04:11.0147 4740  [ BF47C9A5372E4DF8F435AB2F03BE3C32 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libMachoUniv.dll
19:04:11.0147 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libMachoUniv.dll - ok
19:04:11.0153 4740  [ 28188263A5D451261ECBFA6303D4D702 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libMsCab.dll
19:04:11.0154 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libMsCab.dll - ok
19:04:11.0159 4740  [ 3225B53B1C53672E97295861947ED3DE ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libMsi.dll
19:04:11.0159 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libMsi.dll - ok
19:04:11.0165 4740  [ 5798D98B64240F18A012AA76F632734A ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libNSIS.dll
19:04:11.0166 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libNSIS.dll - ok
19:04:11.0171 4740  [ 1F8A4BE6C00F689A6FE3A678B5C2B603 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libOleA.dll
19:04:11.0171 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libOleA.dll - ok
19:04:11.0177 4740  [ FB5C1ED6BBA79291FDA664CF142EEA4D ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libRar.dll
19:04:11.0177 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libRar.dll - ok
19:04:11.0182 4740  [ 56DD7D9679A86EFC4C31A03A92C3237D ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libRTF.dll
19:04:11.0182 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libRTF.dll - ok
19:04:11.0188 4740  [ 5D2638498DEA94F0D65136D49625A8DC ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libtd.dll
19:04:11.0188 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libtd.dll - ok
19:04:11.0193 4740  [ 477E3D0DF9DC60957CB9E0C0D8B47019 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libVvs.dll
19:04:11.0193 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libVvs.dll - ok
19:04:11.0199 4740  [ 0E47902C881A09DC64D5DEBA611B370A ] C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libZip.dll
19:04:11.0200 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\Definitions\libZip.dll - ok
19:04:11.0205 4740  [ 45589E89343FDF8171E3DB802EEDFD37 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
19:04:11.0206 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
19:04:11.0210 4740  [ 291509EA0561948888E41BD17176A2F0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\ca7e342fcf00b94f89bb332ec4ea03f5\IAStorDataMgrSvc.ni.exe
19:04:11.0210 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\ca7e342fcf00b94f89bb332ec4ea03f5\IAStorDataMgrSvc.ni.exe - ok
19:04:11.0215 4740  [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
19:04:11.0215 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
19:04:11.0220 4740  [ 760C39AB75B456B86C926B04DEDA9D80 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
19:04:11.0221 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
19:04:11.0226 4740  [ 1B78B3C8B9F30FF7060E3FA46E946730 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\6aa310d29389daab7d490cfffef5e803\IAStorDataMgr.ni.dll
19:04:11.0226 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\6aa310d29389daab7d490cfffef5e803\IAStorDataMgr.ni.dll - ok
19:04:11.0231 4740  [ 1572A25B31B8A555757ED6E6D09C6F16 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1ad8638fee6b8f2152118441b9554d18\IsdiInterop.ni.dll
19:04:11.0231 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1ad8638fee6b8f2152118441b9554d18\IsdiInterop.ni.dll - ok
19:04:11.0237 4740  [ A093ED015173A0952817B05ADE79E5C0 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
19:04:11.0237 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
19:04:11.0242 4740  [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
19:04:11.0243 4740  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
19:04:11.0248 4740  [ DD80D3894F5E1D36864D9727214605CD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
19:04:11.0248 4740  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
19:04:11.0254 4740  [ 8E79090CB0987CA102E845341E052537 ] C:\Windows\SysWOW64\vdmdbg.dll
19:04:11.0254 4740  C:\Windows\SysWOW64\vdmdbg.dll - ok
19:04:11.0258 4740  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
19:04:11.0259 4740  C:\Windows\SysWOW64\msiltcfg.dll - ok
19:04:11.0263 4740  [ BBEE9BBFD1F3C339059D96C4C42B455F ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
19:04:11.0263 4740  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
19:04:11.0269 4740  [ 92CBB3232BFE10359955F182C5967E16 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvcPS.dll
19:04:11.0269 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMSvcPS.dll - ok
19:04:11.0275 4740  [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
19:04:11.0275 4740  C:\Windows\System32\sppsvc.exe - ok
19:04:11.0280 4740  [ 1EC45EFB2654ECAD06096D0575E89C83 ] C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMRes.dll
19:04:11.0280 4740  C:\Program Files (x86)\Sunbelt Software\VIPRE\SBAMRes.dll - ok
19:04:11.0286 4740  [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
19:04:11.0286 4740  C:\Windows\System32\drivers\spsys.sys - ok
19:04:11.0290 4740  [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
19:04:11.0291 4740  C:\Windows\System32\wscsvc.dll - ok
19:04:11.0295 4740  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
19:04:11.0295 4740  C:\Windows\System32\wuaueng.dll - ok
19:04:11.0301 4740  [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
19:04:11.0301 4740  C:\Windows\System32\mspatcha.dll - ok
19:04:11.0306 4740  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
19:04:11.0306 4740  C:\Windows\System32\wuapi.dll - ok
19:04:11.0311 4740  [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
19:04:11.0311 4740  C:\Windows\SysWOW64\wscisvif.dll - ok
19:04:11.0317 4740  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
19:04:11.0317 4740  C:\Windows\System32\wups.dll - ok
19:04:11.0322 4740  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
19:04:11.0322 4740  C:\Windows\SysWOW64\wscapi.dll - ok
19:04:11.0327 4740  [ EA1145006C441864FB0E434FE7D0BF79 ] C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\wscstub.exe
19:04:11.0327 4740  C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.1.14\wscstub.exe - ok
19:04:11.0333 4740  [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
19:04:11.0333 4740  C:\Windows\System32\sppwinob.dll - ok
19:04:11.0338 4740  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
19:04:11.0338 4740  C:\Windows\System32\wups2.dll - ok
19:04:11.0342 4740  [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
19:04:11.0342 4740  C:\Windows\System32\sppobjs.dll - ok
19:04:11.0348 4740  [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
19:04:11.0348 4740  C:\Windows\SysWOW64\wscproxystub.dll - ok
19:04:11.0354 4740  [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
19:04:11.0354 4740  C:\Windows\System32\wscisvif.dll - ok
19:04:11.0358 4740  [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
19:04:11.0358 4740  C:\Windows\System32\wscproxystub.dll - ok
19:04:11.0365 4740  [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
19:04:11.0365 4740  C:\Windows\System32\NlsData0000.dll - ok
19:04:11.0371 4740  [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
19:04:11.0371 4740  C:\Windows\System32\NlsData000c.dll - ok
19:04:11.0375 4740  [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
19:04:11.0375 4740  C:\Windows\System32\NlsLexicons000c.dll - ok
19:04:11.0381 4740  [ 164647BBD819458CE5AA8A8C097B83AC ] C:\Windows\System32\NlsData0007.dll
19:04:11.0381 4740  C:\Windows\System32\NlsData0007.dll - ok
19:04:11.0386 4740  [ 37A2FBCBD0AF846BEF609CBEB61EEA68 ] C:\Windows\System32\NlsLexicons0007.dll
19:04:11.0386 4740  C:\Windows\System32\NlsLexicons0007.dll - ok
19:04:11.0391 4740  [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
19:04:11.0391 4740  C:\Windows\System32\wscinterop.dll - ok
19:04:11.0396 4740  [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
19:04:11.0397 4740  C:\Windows\System32\wscui.cpl - ok
19:04:11.0402 4740  [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
19:04:11.0402 4740  C:\Windows\System32\werconcpl.dll - ok
19:04:11.0407 4740  [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
19:04:11.0407 4740  C:\Windows\System32\wercplsupport.dll - ok
19:04:11.0412 4740  [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
19:04:11.0412 4740  C:\Windows\System32\hcproviders.dll - ok
19:04:11.0417 4740  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
19:04:11.0417 4740  C:\Windows\System32\wersvc.dll - ok
19:04:11.0422 4740  [ F152755F131ADFE452D534F4E9383590 ] C:\Windows\System32\Faultrep.dll
19:04:11.0422 4740  C:\Windows\System32\Faultrep.dll - ok
19:04:11.0427 4740  [ 990EA3103E06D68CE0E755A9C3D70107 ] C:\Windows\System32\dbgeng.dll
19:04:11.0427 4740  C:\Windows\System32\dbgeng.dll - ok
19:04:11.0433 4740  [ EDF4DEC1041EEAF78A0B1E16C1BB4CC4 ] C:\Windows\System32\fthsvc.dll
19:04:11.0433 4740  C:\Windows\System32\fthsvc.dll - ok
19:04:11.0438 4740  [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
19:04:11.0438 4740  C:\Windows\System32\wermgr.exe - ok
19:04:11.0442 4740  [ 0819EF7DB96DAB8AC3DACE567ED1B99E ] C:\Windows\System32\werui.dll
19:04:11.0443 4740  C:\Windows\System32\werui.dll - ok
19:04:11.0448 4740  [ 20308CF0675AD7CE5AAA6712DB823216 ] C:\Program Files (x86)\Windows Defender\MpClient.dll
19:04:11.0448 4740  C:\Program Files (x86)\Windows Defender\MpClient.dll - ok
19:04:11.0452 4740  ============================================================
19:04:11.0452 4740  Scan finished
19:04:11.0452 4740  ============================================================
19:04:11.0461 3388  Detected object count: 2
19:04:11.0461 3388  Actual detected object count: 2
19:04:40.0302 3388  DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
19:04:40.0302 3388  DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:04:41.0577 3388  \Device\Harddisk0\DR0\# - copied to quarantine
19:04:41.0712 3388  \Device\Harddisk0\DR0 - copied to quarantine
19:04:41.0970 3388  \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - will be cured on reboot
19:04:41.0971 3388  \Device\Harddisk0\DR0 - ok
19:04:42.0195 3388  \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - User select action: Cure
19:04:54.0405 4056  Deinitialize success
 



#15 Veul

Veul
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:02:46 AM

Posted 28 May 2013 - 06:22 PM

Here is Rogue Killer report, I would like to mention my computer feels like it has some life in it now, but I still notice very long start ups. Also I would like to say I have an issue that arose from TDSSKiller where upon startup I have a Kaspersky Antivirus and a system 32commandprompt. 

 

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Elena [Admin rights]
Mode : Remove -- Date : 05/28/2013 19:18:50
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 11 ¤¤¤
[RUN][SUSP PATH] HKUS\S-1-5-21-2456405248-4278087893-1159217496-1001_Classes[...]\Run : Conduit (rundll32.exe "C:\Users\Elena\AppData\Local\Diagnostics\Conduit\kmzzqbu.dll",svn_lock_createW) [x] -> DELETED
[RUN][SUSP PATH] HKUS\S-1-5-21-2456405248-4278087893-1159217496-1001_Classes[...]\Run : Apple (rundll32.exe "C:\Users\Elena\AppData\Local\Apple Computer\Apple\padwjsfut.dll",CreateTzanShellW) [x] -> DELETED
[RUN][SUSP PATH] HKUS\S-1-5-21-2456405248-4278087893-1159217496-1001_Classes[...]\Run : ABBYY (rundll32 "C:\Users\Elena\AppData\Local\Apple\ABBYY\ebvbnzoc.dll",DllRegisterServerW) [x] -> DELETED
[RUN][SUSP PATH] HKUS\S-1-5-21-2456405248-4278087893-1159217496-1001_Classes[...]\Run : Microsoft Help (rundll32 "C:\Users\Elena\AppData\Local\Adobe\Microsoft Help\uvjmn.dll",DllRegisterServer) [x] -> DELETED
[STARTUP][SUSP PATH] Best Buy pc app.lnk @Default : C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe [-] -> DELETED
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

 

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST3500418AS +++++
--- User ---
[MBR] b1a56b34d67b0bc54a2c1f754f66db2a
[BSP] bd88243ba1753a8780c06e4eb19307c6 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 10118 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 20803584 | Size: 466781 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_05282013_02d1918.txt >>
RKreport[1]_S_05282013_02d1917.txt ; RKreport[2]_D_05282013_02d1918.txt






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users