Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Flash player installer virus and firewall won't stay on!


  • Please log in to reply
21 replies to this topic

#1 DutchMaster22

DutchMaster22

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 14 February 2013 - 02:34 PM

So I'm sure I have the flash player installer virus that's been going around, keep getting pop-ups telling me my player is out of date. I also have two small flash enabled boxes that keep popping up in the lower right and left corners of my pc that will not go away. My browser keeps redirecting me randomly and my mcafee security center firewall will not stay on. I've ran my virus scan and malware bytes several times in normal mode and safe mode and it does detect issues but they seem to keep repopulating. I'm on windows 7 64bit I believe and I'm pretty sure I have the latest windows and virus updates. Help!? :)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:22 PM

Posted 14 February 2013 - 03:02 PM


  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 


Edited by narenxp, 15 February 2013 - 05:48 AM.


#3 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 15 February 2013 - 01:59 AM

Thank you for the reply! Here are the logs

 

15:18:22.0102 3412  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:18:22.0851 3412  ============================================================
15:18:22.0851 3412  Current date / time: 2013/02/14 15:18:22.0851
15:18:22.0851 3412  SystemInfo:
15:18:22.0851 3412 
15:18:22.0851 3412  OS Version: 6.1.7601 ServicePack: 1.0
15:18:22.0851 3412  Product type: Workstation
15:18:22.0851 3412  ComputerName: WINDOWS7
15:18:22.0851 3412  UserName: Diz
15:18:22.0851 3412  Windows directory: C:\Windows
15:18:22.0851 3412  System windows directory: C:\Windows
15:18:22.0851 3412  Running under WOW64
15:18:22.0851 3412  Processor architecture: Intel x64
15:18:22.0851 3412  Number of processors: 4
15:18:22.0851 3412  Page size: 0x1000
15:18:22.0851 3412  Boot type: Normal boot
15:18:22.0851 3412  ============================================================
15:18:23.0038 3412  BG loaded
15:18:24.0523 3412  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:18:24.0523 3412  Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:18:24.0523 3412  Drive \Device\Harddisk2\DR2 - Size: 0xE8B6F00000 (930.86 Gb), SectorSize: 0x200, Cylinders: 0x1DAAB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:18:25.0056 3412  ============================================================
15:18:25.0056 3412  \Device\Harddisk0\DR0:
15:18:25.0103 3412  MBR partitions:
15:18:25.0103 3412  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
15:18:25.0103 3412  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
15:18:25.0103 3412  \Device\Harddisk1\DR1:
15:18:25.0119 3412  MBR partitions:
15:18:25.0119 3412  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
15:18:25.0119 3412  \Device\Harddisk2\DR2:
15:18:25.0119 3412  MBR partitions:
15:18:25.0119 3412  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x745B7000
15:18:25.0119 3412  ============================================================
15:18:25.0275 3412  C: <-> \Device\Harddisk0\DR0\Partition2
15:18:25.0306 3412  E: <-> \Device\Harddisk1\DR1\Partition1
15:18:25.0337 3412  K: <-> \Device\Harddisk2\DR2\Partition1
15:18:25.0337 3412  ============================================================
15:18:25.0337 3412  Initialize success
15:18:25.0337 3412  ============================================================
15:19:59.0191 0672  ============================================================
15:19:59.0191 0672  Scan started
15:19:59.0191 0672  Mode: Manual; TDLFS;
15:19:59.0191 0672  ============================================================
15:20:02.0967 0672  ================ Scan system memory ========================
15:20:02.0967 0672  System memory - ok
15:20:02.0967 0672  ================ Scan services =============================
15:20:04.0105 0672  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:20:04.0105 0672  1394ohci - ok
15:20:04.0168 0672  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:20:04.0183 0672  ACPI - ok
15:20:04.0293 0672  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:20:04.0293 0672  AcpiPmi - ok
15:20:04.0651 0672  [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs            C:\Windows\system32\drivers\adfs.sys
15:20:04.0667 0672  adfs - ok
15:20:05.0104 0672  [ 4AE327C9C375D985FF2A2AAB92765218 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
15:20:05.0151 0672  Adobe LM Service - ok
15:20:05.0868 0672  [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:20:05.0868 0672  AdobeFlashPlayerUpdateSvc - ok
15:20:06.0024 0672  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:20:06.0024 0672  adp94xx - ok
15:20:06.0211 0672  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:20:06.0211 0672  adpahci - ok
15:20:06.0274 0672  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:20:06.0289 0672  adpu320 - ok
15:20:06.0430 0672  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:20:06.0445 0672  AeLookupSvc - ok
15:20:06.0648 0672  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:20:06.0648 0672  AFD - ok
15:20:06.0757 0672  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:20:06.0773 0672  agp440 - ok
15:20:06.0960 0672  [ FC264420777E9E635CDEF986AF8B98CF ] AirDisplay      C:\Windows\system32\DRIVERS\AVVideoCard.sys
15:20:06.0960 0672  AirDisplay - ok
15:20:07.0069 0672  [ B4BE5BDE887E806428C2C446C4FB89C2 ] AirDisplayMirror C:\Windows\system32\DRIVERS\AVVideoCardMirror.sys
15:20:07.0069 0672  AirDisplayMirror - ok
15:20:07.0210 0672  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:20:07.0210 0672  ALG - ok
15:20:07.0397 0672  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:20:07.0413 0672  aliide - ok
15:20:07.0506 0672  [ 41A0813F22D3330C0CA71CE5BBD42B12 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:20:07.0537 0672  AMD External Events Utility - ok
15:20:07.0584 0672  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:20:07.0584 0672  amdide - ok
15:20:07.0849 0672  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:20:07.0849 0672  AmdK8 - ok
15:20:08.0021 0672  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:20:08.0021 0672  AmdPPM - ok
15:20:08.0161 0672  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:20:08.0161 0672  amdsata - ok
15:20:08.0177 0672  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:20:08.0177 0672  amdsbs - ok
15:20:08.0239 0672  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:20:08.0239 0672  amdxata - ok
15:20:08.0551 0672  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:20:08.0551 0672  AppID - ok
15:20:08.0614 0672  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:20:08.0614 0672  AppIDSvc - ok
15:20:08.0785 0672  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
15:20:08.0785 0672  Appinfo - ok
15:20:09.0487 0672  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:20:09.0534 0672  Apple Mobile Device - ok
15:20:09.0768 0672  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:20:09.0768 0672  arc - ok
15:20:09.0877 0672  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:20:09.0877 0672  arcsas - ok
15:20:10.0330 0672  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:20:10.0361 0672  aspnet_state - ok
15:20:10.0455 0672  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:20:10.0470 0672  AsyncMac - ok
15:20:10.0611 0672  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:20:10.0611 0672  atapi - ok
15:20:10.0798 0672  [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
15:20:10.0813 0672  AtiHdmiService - ok
15:20:12.0405 0672  [ 37456BE85384E4CC38DC899F07F88C45 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:20:12.0436 0672  atikmdag - ok
15:20:12.0654 0672  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:20:12.0654 0672  AudioEndpointBuilder - ok
15:20:12.0670 0672  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:20:12.0685 0672  AudioSrv - ok
15:20:12.0857 0672  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:20:12.0873 0672  AxInstSV - ok
15:20:13.0060 0672  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:20:13.0091 0672  b06bdrv - ok
15:20:13.0231 0672  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:20:13.0231 0672  b57nd60a - ok
15:20:13.0325 0672  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:20:13.0325 0672  BDESVC - ok
15:20:13.0450 0672  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:20:13.0465 0672  Beep - ok
15:20:13.0715 0672  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
15:20:13.0715 0672  BITS - ok
15:20:13.0777 0672  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:20:13.0777 0672  blbdrive - ok
15:20:14.0058 0672  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:20:14.0058 0672  Bonjour Service - ok
15:20:14.0136 0672  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:20:14.0152 0672  bowser - ok
15:20:14.0199 0672  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:20:14.0199 0672  BrFiltLo - ok
15:20:14.0230 0672  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:20:14.0230 0672  BrFiltUp - ok
15:20:14.0261 0672  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
15:20:14.0277 0672  BridgeMP - ok
15:20:14.0339 0672  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:20:14.0339 0672  Browser - ok
15:20:14.0417 0672  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:20:14.0433 0672  Brserid - ok
15:20:14.0448 0672  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:20:14.0479 0672  BrSerWdm - ok
15:20:14.0542 0672  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:20:14.0557 0672  BrUsbMdm - ok
15:20:14.0604 0672  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:20:14.0620 0672  BrUsbSer - ok
15:20:14.0682 0672  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:20:14.0698 0672  BTHMODEM - ok
15:20:14.0760 0672  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:20:14.0760 0672  bthserv - ok
15:20:14.0963 0672  catchme - ok
15:20:14.0994 0672  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:20:14.0994 0672  cdfs - ok
15:20:15.0103 0672  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:20:15.0119 0672  cdrom - ok
15:20:15.0213 0672  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:20:15.0213 0672  CertPropSvc - ok
15:20:15.0431 0672  [ A73276435F75025DA6E67B2470E1FE16 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
15:20:15.0431 0672  cfwids - ok
15:20:15.0540 0672  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:20:15.0556 0672  circlass - ok
15:20:15.0665 0672  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:20:15.0681 0672  CLFS - ok
15:20:16.0055 0672  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:20:16.0071 0672  clr_optimization_v2.0.50727_32 - ok
15:20:16.0351 0672  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:20:16.0351 0672  clr_optimization_v2.0.50727_64 - ok
15:20:16.0710 0672  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:20:16.0866 0672  clr_optimization_v4.0.30319_32 - ok
15:20:17.0007 0672  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:20:17.0007 0672  clr_optimization_v4.0.30319_64 - ok
15:20:17.0069 0672  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:20:17.0069 0672  CmBatt - ok
15:20:17.0116 0672  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:20:17.0131 0672  cmdide - ok
15:20:17.0287 0672  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:20:17.0303 0672  CNG - ok
15:20:17.0334 0672  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:20:17.0334 0672  Compbatt - ok
15:20:17.0397 0672  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:20:17.0397 0672  CompositeBus - ok
15:20:17.0428 0672  COMSysApp - ok
15:20:17.0459 0672  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:20:17.0459 0672  crcdisk - ok
15:20:17.0553 0672  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:20:17.0553 0672  CryptSvc - ok
15:20:17.0709 0672  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:20:17.0709 0672  DcomLaunch - ok
15:20:17.0818 0672  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:20:17.0818 0672  defragsvc - ok
15:20:17.0880 0672  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:20:17.0896 0672  DfsC - ok
15:20:18.0021 0672  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:20:18.0021 0672  Dhcp - ok
15:20:18.0052 0672  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:20:18.0052 0672  discache - ok
15:20:18.0177 0672  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:20:18.0177 0672  Disk - ok
15:20:18.0286 0672  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:20:18.0301 0672  Dnscache - ok
15:20:18.0473 0672  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
15:20:18.0489 0672  DockLoginService - ok
15:20:18.0567 0672  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:20:18.0582 0672  dot3svc - ok
15:20:18.0645 0672  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
15:20:18.0660 0672  Dot4 - ok
15:20:18.0738 0672  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
15:20:18.0738 0672  Dot4Print - ok
15:20:18.0785 0672  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
15:20:18.0785 0672  dot4usb - ok
15:20:18.0847 0672  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:20:18.0847 0672  DPS - ok
15:20:18.0910 0672  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:20:18.0910 0672  drmkaud - ok
15:20:19.0144 0672  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:20:19.0159 0672  DXGKrnl - ok
15:20:19.0191 0672  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:20:19.0191 0672  EapHost - ok
15:20:19.0893 0672  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:20:20.0095 0672  ebdrv - ok
15:20:20.0142 0672  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:20:20.0142 0672  EFS - ok
15:20:20.0501 0672  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:20:20.0517 0672  ehRecvr - ok
15:20:20.0548 0672  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:20:20.0563 0672  ehSched - ok
15:20:20.0704 0672  [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
15:20:20.0704 0672  ElbyCDIO - ok
15:20:20.0875 0672  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:20:20.0907 0672  elxstor - ok
15:20:20.0922 0672  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:20:20.0938 0672  ErrDev - ok
15:20:21.0125 0672  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:20:21.0125 0672  EventSystem - ok
15:20:21.0234 0672  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:20:21.0265 0672  exfat - ok
15:20:21.0312 0672  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:20:21.0312 0672  fastfat - ok
15:20:21.0531 0672  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:20:21.0546 0672  Fax - ok
15:20:21.0562 0672  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:20:21.0577 0672  fdc - ok
15:20:21.0655 0672  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:20:21.0655 0672  fdPHost - ok
15:20:21.0687 0672  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:20:21.0687 0672  FDResPub - ok
15:20:21.0733 0672  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:20:21.0733 0672  FileInfo - ok
15:20:21.0749 0672  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:20:21.0765 0672  Filetrace - ok
15:20:21.0936 0672  [ 8669BE94F63944E4F899C3950B520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:20:21.0967 0672  FLEXnet Licensing Service - ok
15:20:22.0311 0672  [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
15:20:22.0342 0672  FLEXnet Licensing Service 64 - ok
15:20:22.0389 0672  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:20:22.0389 0672  flpydisk - ok
15:20:22.0513 0672  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:20:22.0513 0672  FltMgr - ok
15:20:22.0638 0672  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
15:20:22.0654 0672  FontCache - ok
15:20:22.0779 0672  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:20:22.0779 0672  FontCache3.0.0.0 - ok
15:20:22.0825 0672  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:20:22.0825 0672  FsDepends - ok
15:20:22.0872 0672  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:20:22.0872 0672  Fs_Rec - ok
15:20:22.0966 0672  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:20:22.0966 0672  fvevol - ok
15:20:23.0075 0672  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:20:23.0091 0672  gagp30kx - ok
15:20:23.0184 0672  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:20:23.0184 0672  GEARAspiWDM - ok
15:20:23.0293 0672  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:20:23.0293 0672  gpsvc - ok
15:20:23.0481 0672  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:20:23.0496 0672  gupdate - ok
15:20:23.0605 0672  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:20:23.0605 0672  gupdatem - ok
15:20:23.0746 0672  [ C3096D7F9D0C529D538BC53A8B2895C7 ] HabuFltr        C:\Windows\system32\drivers\habu.sys
15:20:23.0761 0672  HabuFltr - ok
15:20:23.0839 0672  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:20:23.0839 0672  hcw85cir - ok
15:20:23.0917 0672  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
15:20:23.0917 0672  HDAudBus - ok
15:20:23.0995 0672  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
15:20:23.0995 0672  HECIx64 - ok
15:20:24.0027 0672  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:20:24.0027 0672  HidBatt - ok
15:20:24.0058 0672  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:20:24.0058 0672  HidBth - ok
15:20:24.0089 0672  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:20:24.0089 0672  HidIr - ok
15:20:24.0136 0672  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
15:20:24.0136 0672  hidserv - ok
15:20:24.0229 0672  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:20:24.0229 0672  HidUsb - ok
15:20:24.0417 0672  [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
15:20:24.0432 0672  HipShieldK - ok
15:20:24.0479 0672  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:20:24.0479 0672  hkmsvc - ok
15:20:24.0541 0672  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:20:24.0541 0672  HomeGroupListener - ok
15:20:24.0604 0672  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:20:24.0619 0672  HomeGroupProvider - ok
15:20:24.0682 0672  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:20:24.0697 0672  HpSAMD - ok
15:20:24.0775 0672  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:20:24.0807 0672  HTTP - ok
15:20:24.0838 0672  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:20:24.0838 0672  hwpolicy - ok
15:20:24.0931 0672  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:20:24.0947 0672  i8042prt - ok
15:20:25.0025 0672  [ 631FA8935163B01FC0C02966CB3ADB92 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
15:20:25.0025 0672  iaStor - ok
15:20:25.0243 0672  [ 7493EA4DE41348F7D3EDBF9DB298F56A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:20:25.0243 0672  IAStorDataMgrSvc - ok
15:20:25.0368 0672  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:20:25.0384 0672  iaStorV - ok
15:20:25.0696 0672  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:20:26.0273 0672  idsvc - ok
15:20:26.0335 0672  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:20:26.0335 0672  iirsp - ok
15:20:26.0476 0672  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:20:26.0507 0672  IKEEXT - ok
15:20:27.0028 0672  [ EE64207F2F5C20BFE5F73DB2566C4601 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:20:27.0044 0672  IntcAzAudAddService - ok
15:20:27.0137 0672  [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
15:20:27.0137 0672  IntcDAud - ok
15:20:27.0184 0672  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:20:27.0200 0672  intelide - ok
15:20:27.0262 0672  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:20:27.0262 0672  intelppm - ok
15:20:27.0325 0672  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:20:27.0325 0672  IPBusEnum - ok
15:20:27.0371 0672  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:20:27.0387 0672  IpFilterDriver - ok
15:20:27.0403 0672  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:20:27.0403 0672  IPMIDRV - ok
15:20:27.0496 0672  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:20:27.0496 0672  IPNAT - ok
15:20:27.0730 0672  [ 0F261EC4F514926177C70C1832374231 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:20:27.0730 0672  iPod Service - ok
15:20:27.0793 0672  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:20:27.0793 0672  IRENUM - ok
15:20:27.0855 0672  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:20:27.0855 0672  isapnp - ok
15:20:27.0949 0672  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:20:27.0964 0672  iScsiPrt - ok
15:20:28.0089 0672  [ CCB39C7006D436D238AC75D2ABFDE1FE ] jumi            C:\Windows\system32\DRIVERS\jumi.sys
15:20:28.0089 0672  jumi - ok
15:20:28.0229 0672  [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
15:20:28.0245 0672  k57nd60a - ok
15:20:28.0307 0672  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:20:28.0307 0672  kbdclass - ok
15:20:28.0370 0672  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:20:28.0370 0672  kbdhid - ok
15:20:28.0432 0672  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:20:28.0432 0672  KeyIso - ok
15:20:28.0479 0672  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:20:28.0479 0672  KSecDD - ok
15:20:28.0541 0672  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:20:28.0557 0672  KSecPkg - ok
15:20:28.0588 0672  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:20:28.0588 0672  ksthunk - ok
15:20:28.0713 0672  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:20:28.0729 0672  KtmRm - ok
15:20:28.0838 0672  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
15:20:28.0853 0672  LanmanServer - ok
15:20:28.0916 0672  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:20:28.0931 0672  LanmanWorkstation - ok
15:20:29.0025 0672  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:20:29.0025 0672  lltdio - ok
15:20:29.0134 0672  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:20:29.0150 0672  lltdsvc - ok
15:20:29.0197 0672  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:20:29.0197 0672  lmhosts - ok
15:20:29.0259 0672  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:20:29.0275 0672  LSI_FC - ok
15:20:29.0337 0672  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:20:29.0337 0672  LSI_SAS - ok
15:20:29.0384 0672  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:20:29.0384 0672  LSI_SAS2 - ok
15:20:29.0462 0672  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:20:29.0462 0672  LSI_SCSI - ok
15:20:29.0493 0672  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:20:29.0509 0672  luafv - ok
15:20:29.0540 0672  [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
15:20:29.0540 0672  MBAMProtector - ok
15:20:29.0711 0672  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:20:29.0743 0672  MBAMScheduler - ok
15:20:29.0883 0672  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:20:29.0914 0672  MBAMService - ok
15:20:30.0101 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:30.0101 0672  McAfee SiteAdvisor Service - ok
15:20:30.0148 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:30.0148 0672  McMPFSvc - ok
15:20:30.0304 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:30.0304 0672  mcmscsvc - ok
15:20:30.0335 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:30.0335 0672  McNaiAnn - ok
15:20:30.0445 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:30.0445 0672  McNASvc - ok
15:20:30.0679 0672  [ 1814532DB0404C5FB65AA3EB051B2BE5 ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
15:20:30.0694 0672  McODS - ok
15:20:30.0819 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:30.0819 0672  McProxy - ok
15:20:31.0053 0672  [ 23EA22ACADD66D7F1E18A4AA72BE6158 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
15:20:31.0053 0672  McShield - ok
15:20:31.0084 0672  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:20:31.0084 0672  Mcx2Svc - ok
15:20:31.0131 0672  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:20:31.0131 0672  megasas - ok
15:20:31.0214 0672  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:20:31.0224 0672  MegaSR - ok
15:20:31.0384 0672  [ 19323081FA4018C9C1AEBF08114BEA11 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
15:20:31.0394 0672  mfeapfk - ok
15:20:31.0564 0672  [ EF1D39A70CAD1B7BEDC220480F26815C ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
15:20:31.0584 0672  mfeavfk - ok
15:20:31.0734 0672  mfeavfk01 - ok
15:20:31.0894 0672  [ 3CBBB569730EFD069B4BD253DDD4AD58 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
15:20:31.0914 0672  mfefire - ok
15:20:32.0074 0672  [ 67972BFC8F23054BD23E1DE1450E40BD ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
15:20:32.0084 0672  mfefirek - ok
15:20:32.0333 0672  [ 5C0EE849C03C37071FABDAA6B58D3D94 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
15:20:32.0348 0672  mfehidk - ok
15:20:32.0489 0672  [ 450B77CAC7384A9C1BAF476AC302CD4C ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
15:20:32.0504 0672  mferkdet - ok
15:20:32.0629 0672  [ 74CE2EBE64AB78904E33DD4C5F21611F ] mfevtp          C:\Windows\system32\mfevtps.exe
15:20:32.0629 0672  mfevtp - ok
15:20:32.0676 0672  [ F55F9742BFA88D02F96516B80AB400EC ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
15:20:32.0676 0672  mfewfpk - ok
15:20:32.0707 0672  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:20:32.0707 0672  MMCSS - ok
15:20:32.0754 0672  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:20:32.0754 0672  Modem - ok
15:20:32.0832 0672  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:20:32.0832 0672  monitor - ok
15:20:32.0879 0672  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:20:32.0879 0672  mouclass - ok
15:20:32.0988 0672  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:20:32.0988 0672  mouhid - ok
15:20:33.0175 0672  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:20:33.0175 0672  mountmgr - ok
15:20:33.0253 0672  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:20:33.0253 0672  mpio - ok
15:20:33.0284 0672  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:20:33.0300 0672  mpsdrv - ok
15:20:33.0362 0672  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:20:33.0362 0672  MRxDAV - ok
15:20:33.0425 0672  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:20:33.0425 0672  mrxsmb - ok
15:20:33.0518 0672  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:20:33.0518 0672  mrxsmb10 - ok
15:20:33.0549 0672  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:20:33.0565 0672  mrxsmb20 - ok
15:20:33.0581 0672  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:20:33.0581 0672  msahci - ok
15:20:33.0627 0672  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:20:33.0627 0672  msdsm - ok
15:20:33.0690 0672  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:20:33.0705 0672  MSDTC - ok
15:20:33.0752 0672  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:20:33.0752 0672  Msfs - ok
15:20:33.0815 0672  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:20:33.0815 0672  mshidkmdf - ok
15:20:33.0846 0672  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:20:33.0846 0672  msisadrv - ok
15:20:33.0924 0672  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:20:33.0924 0672  MSiSCSI - ok
15:20:33.0939 0672  msiserver - ok
15:20:34.0064 0672  [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:20:34.0064 0672  MSK80Service - ok
15:20:34.0111 0672  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:20:34.0111 0672  MSKSSRV - ok
15:20:34.0158 0672  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:20:34.0158 0672  MSPCLOCK - ok
15:20:34.0205 0672  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:20:34.0220 0672  MSPQM - ok
15:20:34.0314 0672  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:20:34.0329 0672  MsRPC - ok
15:20:34.0361 0672  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:20:34.0361 0672  mssmbios - ok
15:20:34.0423 0672  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:20:34.0423 0672  MSTEE - ok
15:20:34.0439 0672  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:20:34.0439 0672  MTConfig - ok
15:20:34.0470 0672  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:20:34.0470 0672  Mup - ok
15:20:34.0579 0672  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:20:34.0595 0672  napagent - ok
15:20:34.0688 0672  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:20:34.0704 0672  NativeWifiP - ok
15:20:34.0969 0672  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:20:34.0969 0672  NDIS - ok
15:20:35.0016 0672  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:20:35.0016 0672  NdisCap - ok
15:20:35.0063 0672  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:20:35.0063 0672  NdisTapi - ok
15:20:35.0125 0672  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:20:35.0141 0672  Ndisuio - ok
15:20:35.0203 0672  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:20:35.0203 0672  NdisWan - ok
15:20:35.0250 0672  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:20:35.0250 0672  NDProxy - ok
15:20:35.0312 0672  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:20:35.0312 0672  NetBIOS - ok
15:20:35.0375 0672  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:20:35.0375 0672  NetBT - ok
15:20:35.0437 0672  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:20:35.0437 0672  Netlogon - ok
15:20:35.0546 0672  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:20:35.0546 0672  Netman - ok
15:20:35.0609 0672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:20:35.0671 0672  NetMsmqActivator - ok
15:20:35.0671 0672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:20:35.0671 0672  NetPipeActivator - ok
15:20:35.0780 0672  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:20:35.0796 0672  netprofm - ok
15:20:35.0811 0672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:20:35.0811 0672  NetTcpActivator - ok
15:20:35.0811 0672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:20:35.0811 0672  NetTcpPortSharing - ok
15:20:35.0874 0672  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:20:35.0874 0672  nfrd960 - ok
15:20:35.0967 0672  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:20:35.0983 0672  NlaSvc - ok
15:20:35.0999 0672  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:20:35.0999 0672  Npfs - ok
15:20:36.0077 0672  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:20:36.0077 0672  nsi - ok
15:20:36.0108 0672  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:20:36.0108 0672  nsiproxy - ok
15:20:36.0482 0672  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:20:36.0498 0672  Ntfs - ok
15:20:36.0545 0672  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:20:36.0545 0672  Null - ok
15:20:36.0638 0672  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:20:36.0654 0672  nvraid - ok
15:20:36.0701 0672  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:20:36.0701 0672  nvstor - ok
15:20:36.0763 0672  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:20:36.0779 0672  nv_agp - ok
15:20:36.0794 0672  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:20:36.0810 0672  ohci1394 - ok
15:20:36.0903 0672  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:20:36.0903 0672  p2pimsvc - ok
15:20:37.0013 0672  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:20:37.0013 0672  p2psvc - ok
15:20:37.0059 0672  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:20:37.0059 0672  Parport - ok
15:20:37.0091 0672  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:20:37.0091 0672  partmgr - ok
15:20:37.0137 0672  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:20:37.0153 0672  PcaSvc - ok
15:20:37.0559 0672  [ 4B5F5774FF1C577B9515FDD2B5C535C5 ] PCDSRVC{1E208CE0-FB7451FF-06020200}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
15:20:38.0105 0672  PCDSRVC{1E208CE0-FB7451FF-06020200}_0 - ok
15:20:38.0167 0672  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:20:38.0167 0672  pci - ok
15:20:38.0198 0672  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:20:38.0198 0672  pciide - ok
15:20:38.0276 0672  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:20:38.0276 0672  pcmcia - ok
15:20:38.0292 0672  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:20:38.0292 0672  pcw - ok
15:20:38.0432 0672  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:20:38.0448 0672  PEAUTH - ok
15:20:39.0509 0672  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:20:39.0509 0672  PerfHost - ok
15:20:39.0837 0672  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:20:39.0853 0672  pla - ok
15:20:39.0978 0672  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:20:39.0978 0672  PlugPlay - ok
15:20:40.0024 0672  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:20:40.0024 0672  PNRPAutoReg - ok
15:20:40.0102 0672  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:20:40.0118 0672  PNRPsvc - ok
15:20:40.0149 0672  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:20:40.0165 0672  PolicyAgent - ok
15:20:40.0196 0672  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:20:40.0196 0672  Power - ok
15:20:40.0243 0672  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:20:40.0243 0672  PptpMiniport - ok
15:20:40.0305 0672  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:20:40.0305 0672  Processor - ok
15:20:40.0383 0672  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:20:40.0399 0672  ProfSvc - ok
15:20:40.0430 0672  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:20:40.0430 0672  ProtectedStorage - ok
15:20:40.0570 0672  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:20:40.0586 0672  Psched - ok
15:20:40.0726 0672  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:20:40.0726 0672  PxHlpa64 - ok
15:20:40.0820 0672  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:20:40.0851 0672  ql2300 - ok
15:20:40.0867 0672  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:20:40.0867 0672  ql40xx - ok
15:20:40.0945 0672  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:20:40.0945 0672  QWAVE - ok
15:20:40.0976 0672  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:20:40.0992 0672  QWAVEdrv - ok
15:20:41.0163 0672  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
15:20:41.0163 0672  RapiMgr - ok
15:20:41.0179 0672  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:20:41.0179 0672  RasAcd - ok
15:20:41.0241 0672  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:20:41.0241 0672  RasAgileVpn - ok
15:20:41.0257 0672  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:20:41.0257 0672  RasAuto - ok
15:20:41.0319 0672  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:20:41.0319 0672  Rasl2tp - ok
15:20:41.0366 0672  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:20:41.0366 0672  RasMan - ok
15:20:41.0397 0672  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:20:41.0413 0672  RasPppoe - ok
15:20:41.0460 0672  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:20:41.0475 0672  RasSstp - ok
15:20:41.0569 0672  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:20:41.0569 0672  rdbss - ok
15:20:41.0600 0672  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:20:41.0600 0672  rdpbus - ok
15:20:41.0647 0672  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:20:41.0647 0672  RDPCDD - ok
15:20:41.0725 0672  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:20:41.0740 0672  RDPENCDD - ok
15:20:41.0756 0672  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:20:41.0756 0672  RDPREFMP - ok
15:20:41.0896 0672  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:20:41.0912 0672  RdpVideoMiniport - ok
15:20:41.0974 0672  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:20:41.0990 0672  RDPWD - ok
15:20:42.0068 0672  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:20:42.0068 0672  rdyboost - ok
15:20:42.0177 0672  [ 038CF37253FFCA7F339989D050EED076 ] RecFltr         C:\Windows\system32\drivers\RecFltr.sys
15:20:42.0177 0672  RecFltr - ok
15:20:42.0255 0672  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:20:42.0271 0672  RemoteAccess - ok
15:20:42.0333 0672  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:20:42.0333 0672  RemoteRegistry - ok
15:20:43.0066 0672  [ 05FC44D32A144925EAE45570029FD6E1 ] RoxMediaDB10    c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
15:20:43.0082 0672  RoxMediaDB10 - ok
15:20:43.0129 0672  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:20:43.0144 0672  RpcEptMapper - ok
15:20:43.0176 0672  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:20:43.0191 0672  RpcLocator - ok
15:20:43.0300 0672  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:20:43.0300 0672  RpcSs - ok
15:20:43.0378 0672  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:20:43.0378 0672  rspndr - ok
15:20:43.0378 0672  RxFilter - ok
15:20:43.0394 0672  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:20:43.0394 0672  SamSs - ok
15:20:43.0425 0672  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:20:43.0441 0672  sbp2port - ok
15:20:43.0488 0672  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:20:43.0503 0672  SCardSvr - ok
15:20:43.0534 0672  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:20:43.0534 0672  scfilter - ok
15:20:43.0612 0672  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:20:43.0628 0672  Schedule - ok
15:20:43.0659 0672  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:20:43.0659 0672  SCPolicySvc - ok
15:20:43.0737 0672  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:20:43.0737 0672  SDRSVC - ok
15:20:43.0878 0672  [ 16A252022535B680046F6E34E136D378 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
15:20:43.0893 0672  SeaPort - ok
15:20:43.0956 0672  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:20:43.0956 0672  secdrv - ok
15:20:43.0987 0672  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:20:43.0987 0672  seclogon - ok
15:20:44.0034 0672  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
15:20:44.0034 0672  SENS - ok
15:20:44.0065 0672  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:20:44.0065 0672  SensrSvc - ok
15:20:44.0080 0672  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:20:44.0080 0672  Serenum - ok
15:20:44.0143 0672  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:20:44.0158 0672  Serial - ok
15:20:44.0252 0672  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:20:44.0252 0672  sermouse - ok
15:20:44.0283 0672  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:20:44.0299 0672  SessionEnv - ok
15:20:44.0408 0672  SessionLauncher - ok
15:20:44.0439 0672  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:20:44.0439 0672  sffdisk - ok
15:20:44.0455 0672  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:20:44.0470 0672  sffp_mmc - ok
15:20:44.0486 0672  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:20:44.0486 0672  sffp_sd - ok
15:20:44.0517 0672  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:20:44.0517 0672  sfloppy - ok
15:20:44.0923 0672  [ 16A5CC62F79A32A974B55110A898945C ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
15:20:44.0923 0672  SftService - ok
15:20:45.0032 0672  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:20:45.0032 0672  ShellHWDetection - ok
15:20:45.0079 0672  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:20:45.0094 0672  SiSRaid2 - ok
15:20:45.0126 0672  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:20:45.0126 0672  SiSRaid4 - ok
15:20:45.0172 0672  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:20:45.0172 0672  Smb - ok
15:20:45.0250 0672  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:20:45.0250 0672  SNMPTRAP - ok
15:20:45.0266 0672  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:20:45.0266 0672  spldr - ok
15:20:45.0422 0672  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:20:45.0422 0672  Spooler - ok
15:20:45.0984 0672  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:20:45.0999 0672  sppsvc - ok
15:20:46.0046 0672  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:20:46.0046 0672  sppuinotify - ok
15:20:46.0186 0672  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:20:46.0186 0672  srv - ok
15:20:46.0249 0672  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:20:46.0249 0672  srv2 - ok
15:20:46.0311 0672  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:20:46.0311 0672  srvnet - ok
15:20:46.0452 0672  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
15:20:46.0452 0672  ssadbus - ok
15:20:46.0498 0672  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
15:20:46.0498 0672  ssadmdfl - ok
15:20:46.0576 0672  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
15:20:46.0576 0672  ssadmdm - ok
15:20:46.0639 0672  [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd        C:\Windows\system32\DRIVERS\ssadserd.sys
15:20:46.0639 0672  ssadserd - ok
15:20:46.0701 0672  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:20:46.0701 0672  SSDPSRV - ok
15:20:46.0732 0672  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:20:46.0732 0672  SstpSvc - ok
15:20:46.0857 0672  [ 99913A55BAD22DF154873BBACA4B01D7 ] stdriver        C:\Windows\system32\DRIVERS\stdriver64.sys
15:20:46.0857 0672  stdriver - ok
15:20:46.0935 0672  Steam Client Service - ok
15:20:46.0998 0672  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:20:46.0998 0672  stexstor - ok
15:20:47.0138 0672  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:20:47.0154 0672  stisvc - ok
15:20:47.0263 0672  [ FF5EB78AF7DFB68C2FB363537AAF753E ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
15:20:47.0294 0672  stllssvr - ok
15:20:47.0341 0672  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:20:47.0341 0672  swenum - ok
15:20:47.0450 0672  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:20:47.0466 0672  swprv - ok
15:20:47.0590 0672  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:20:47.0606 0672  SysMain - ok
15:20:47.0622 0672  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:20:47.0637 0672  TabletInputService - ok
15:20:47.0715 0672  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:20:47.0731 0672  TapiSrv - ok
15:20:47.0778 0672  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:20:47.0793 0672  TBS - ok
15:20:47.0980 0672  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:20:47.0996 0672  Tcpip - ok
15:20:48.0058 0672  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:20:48.0074 0672  TCPIP6 - ok
15:20:48.0121 0672  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:20:48.0121 0672  tcpipreg - ok
15:20:48.0183 0672  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:20:48.0183 0672  TDPIPE - ok
15:20:48.0230 0672  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:20:48.0246 0672  TDTCP - ok
15:20:48.0292 0672  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:20:48.0308 0672  tdx - ok
15:20:48.0355 0672  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:20:48.0355 0672  TermDD - ok
15:20:48.0417 0672  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:20:48.0433 0672  TermService - ok
15:20:48.0480 0672  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:20:48.0480 0672  Themes - ok
15:20:48.0542 0672  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:20:48.0542 0672  THREADORDER - ok
15:20:48.0589 0672  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:20:48.0589 0672  TrkWks - ok
15:20:48.0729 0672  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:20:48.0729 0672  TrustedInstaller - ok
15:20:48.0792 0672  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:20:48.0792 0672  tssecsrv - ok
15:20:48.0916 0672  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:20:48.0916 0672  TsUsbFlt - ok
15:20:49.0010 0672  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:20:49.0010 0672  tunnel - ok
15:20:49.0088 0672  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:20:49.0088 0672  uagp35 - ok
15:20:49.0135 0672  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:20:49.0150 0672  udfs - ok
15:20:49.0197 0672  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:20:49.0213 0672  UI0Detect - ok
15:20:49.0306 0672  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:20:49.0322 0672  uliagpkx - ok
15:20:49.0416 0672  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:20:49.0416 0672  umbus - ok
15:20:49.0525 0672  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:20:49.0540 0672  UmPass - ok
15:20:49.0572 0672  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:20:49.0572 0672  upnphost - ok
15:20:49.0650 0672  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:20:49.0650 0672  USBAAPL64 - ok
15:20:49.0774 0672  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:20:49.0774 0672  usbaudio - ok
15:20:49.0821 0672  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:20:49.0821 0672  usbccgp - ok
15:20:49.0868 0672  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:20:49.0868 0672  usbcir - ok
15:20:49.0930 0672  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
15:20:49.0930 0672  usbehci - ok
15:20:50.0040 0672  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:20:50.0040 0672  usbhub - ok
15:20:50.0086 0672  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:20:50.0086 0672  usbohci - ok
15:20:50.0118 0672  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:20:50.0133 0672  usbprint - ok
15:20:50.0180 0672  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:20:50.0180 0672  USBSTOR - ok
15:20:50.0227 0672  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:20:50.0242 0672  usbuhci - ok
15:20:50.0352 0672  [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
15:20:50.0352 0672  usb_rndisx - ok
15:20:50.0414 0672  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:20:50.0430 0672  UxSms - ok
15:20:50.0461 0672  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:20:50.0476 0672  VaultSvc - ok
15:20:50.0570 0672  [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
15:20:50.0570 0672  VClone - ok
15:20:50.0648 0672  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:20:50.0648 0672  vdrvroot - ok
15:20:50.0695 0672  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:20:50.0710 0672  vds - ok
15:20:50.0788 0672  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:20:50.0788 0672  vga - ok
15:20:50.0820 0672  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:20:50.0820 0672  VgaSave - ok
15:20:50.0929 0672  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:20:50.0960 0672  vhdmp - ok
15:20:51.0007 0672  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:20:51.0007 0672  viaide - ok
15:20:51.0069 0672  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:20:51.0069 0672  volmgr - ok
15:20:51.0178 0672  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:20:51.0194 0672  volmgrx - ok
15:20:51.0225 0672  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:20:51.0241 0672  volsnap - ok
15:20:51.0475 0672  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:20:51.0490 0672  vsmraid - ok
15:20:51.0756 0672  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:20:51.0771 0672  VSS - ok
15:20:51.0818 0672  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:20:51.0818 0672  vwifibus - ok
15:20:51.0943 0672  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:20:51.0958 0672  W32Time - ok
15:20:51.0990 0672  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:20:51.0990 0672  WacomPen - ok
15:20:52.0083 0672  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:20:52.0083 0672  WANARP - ok
15:20:52.0083 0672  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:20:52.0083 0672  Wanarpv6 - ok
15:20:52.0567 0672  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:20:53.0050 0672  WatAdminSvc - ok
15:20:53.0160 0672  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:20:53.0175 0672  wbengine - ok
15:20:53.0269 0672  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:20:53.0284 0672  WbioSrvc - ok
15:20:53.0503 0672  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
15:20:53.0503 0672  WcesComm - ok
15:20:53.0596 0672  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:20:53.0612 0672  wcncsvc - ok
15:20:53.0690 0672  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:20:53.0690 0672  WcsPlugInService - ok
15:20:53.0737 0672  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:20:53.0737 0672  Wd - ok
15:20:53.0831 0672  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
15:20:53.0831 0672  WDC_SAM - ok
15:20:53.0987 0672  [ 11BBA4630B97C3F33B5DA85FB7F81995 ] WDDMService.exe C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
15:20:53.0987 0672  WDDMService.exe - ok
15:20:54.0096 0672  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:20:54.0111 0672  Wdf01000 - ok
15:20:54.0174 0672  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:20:54.0174 0672  WdiServiceHost - ok
15:20:54.0174 0672  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:20:54.0174 0672  WdiSystemHost - ok
15:20:54.0377 0672  [ 138AB06ADBBF300AA804D7974A5AEC82 ] WDSmartWareBackgroundService C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
15:20:54.0377 0672  WDSmartWareBackgroundService - ok
15:20:54.0423 0672  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:20:54.0439 0672  WebClient - ok
15:20:54.0517 0672  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:20:54.0533 0672  Wecsvc - ok
15:20:54.0579 0672  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:20:54.0579 0672  wercplsupport - ok
15:20:54.0642 0672  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:20:54.0657 0672  WerSvc - ok
15:20:54.0720 0672  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:20:54.0735 0672  WfpLwf - ok
15:20:54.0813 0672  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
15:20:54.0829 0672  WimFltr - ok
15:20:54.0876 0672  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:20:54.0876 0672  WIMMount - ok
15:20:54.0891 0672  WinHttpAutoProxySvc - ok
15:20:55.0063 0672  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:20:55.0063 0672  Winmgmt - ok
15:20:55.0531 0672  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:20:55.0593 0672  WinRM - ok
15:20:55.0749 0672  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:20:55.0749 0672  WinUsb - ok
15:20:55.0827 0672  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:20:55.0843 0672  Wlansvc - ok
15:20:56.0405 0672  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:20:56.0420 0672  wlidsvc - ok
15:20:56.0483 0672  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:20:56.0498 0672  WmiAcpi - ok
15:20:56.0576 0672  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:20:56.0576 0672  wmiApSrv - ok
15:20:56.0654 0672  WMPNetworkSvc - ok
15:20:56.0732 0672  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:20:56.0732 0672  WPCSvc - ok
15:20:56.0810 0672  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:20:56.0810 0672  WPDBusEnum - ok
15:20:56.0873 0672  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:20:56.0873 0672  ws2ifsl - ok
15:20:56.0888 0672  WSearch - ok
15:20:57.0247 0672  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:20:57.0247 0672  wuauserv - ok
15:20:57.0387 0672  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:20:57.0387 0672  WudfPf - ok
15:20:57.0465 0672  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:20:57.0465 0672  WUDFRd - ok
15:20:57.0528 0672  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:20:57.0528 0672  wudfsvc - ok
15:20:57.0606 0672  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:20:57.0606 0672  WwanSvc - ok
15:20:57.0762 0672  [ 2C6BC21B2D5B58D8B1D638C1704CB494 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
15:20:57.0762 0672  xusb21 - ok
15:20:57.0855 0672  ================ Scan global ===============================
15:20:57.0902 0672  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:20:58.0058 0672  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:20:58.0058 0672  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:20:58.0136 0672  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:20:58.0245 0672  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:20:58.0245 0672  [Global] - ok
15:20:58.0245 0672  ================ Scan MBR ==================================
15:20:58.0277 0672  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
15:21:13.0346 0672  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:21:13.0346 0672  \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:21:13.0362 0672  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
15:21:13.0424 0672  \Device\Harddisk1\DR1 - ok
15:21:13.0970 0672  [ 4E80629B6C7872483847D5D39642B0BB ] \Device\Harddisk2\DR2
15:21:14.0189 0672  \Device\Harddisk2\DR2 - ok
15:21:14.0189 0672  ================ Scan VBR ==================================
15:21:14.0220 0672  [ D4B12FAAC0C8C956CCB39B9CCA175E62 ] \Device\Harddisk0\DR0\Partition1
15:21:14.0220 0672  \Device\Harddisk0\DR0\Partition1 - ok
15:21:14.0298 0672  [ 975564C2DCC6ACE313928B0235AE1677 ] \Device\Harddisk0\DR0\Partition2
15:21:14.0298 0672  \Device\Harddisk0\DR0\Partition2 - ok
15:21:14.0298 0672  [ 750F5E0D698232F96152633D86369D45 ] \Device\Harddisk1\DR1\Partition1
15:21:14.0298 0672  \Device\Harddisk1\DR1\Partition1 - ok
15:21:14.0313 0672  [ B808668AE3F1F7F5EB99DCD9773644D2 ] \Device\Harddisk2\DR2\Partition1
15:21:14.0313 0672  \Device\Harddisk2\DR2\Partition1 - ok
15:21:14.0313 0672  ================ Scan active images ========================
15:21:14.0313 0672  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
15:21:14.0313 0672  C:\Windows\System32\drivers\crashdmp.sys - ok
15:21:14.0313 0672  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
15:21:14.0313 0672  C:\Windows\System32\drivers\dumpfve.sys - ok
15:21:14.0329 0672  [ 631FA8935163B01FC0C02966CB3ADB92 ] C:\Windows\System32\drivers\iaStor.sys
15:21:14.0329 0672  C:\Windows\System32\drivers\iaStor.sys - ok
15:21:14.0329 0672  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
15:21:14.0329 0672  C:\Windows\System32\drivers\beep.sys - ok
15:21:14.0329 0672  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
15:21:14.0329 0672  C:\Windows\System32\drivers\cdrom.sys - ok
15:21:14.0329 0672  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
15:21:14.0329 0672  C:\Windows\System32\drivers\null.sys - ok
15:21:14.0329 0672  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
15:21:14.0329 0672  C:\Windows\System32\drivers\RDPCDD.sys - ok
15:21:14.0345 0672  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
15:21:14.0345 0672  C:\Windows\System32\drivers\vga.sys - ok
15:21:14.0345 0672  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
15:21:14.0345 0672  C:\Windows\System32\drivers\videoprt.sys - ok
15:21:14.0345 0672  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
15:21:14.0345 0672  C:\Windows\System32\drivers\watchdog.sys - ok
15:21:14.0345 0672  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
15:21:14.0345 0672  C:\Windows\System32\drivers\msfs.sys - ok
15:21:14.0345 0672  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
15:21:14.0345 0672  C:\Windows\System32\drivers\netbt.sys - ok
15:21:14.0360 0672  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
15:21:14.0360 0672  C:\Windows\System32\drivers\npfs.sys - ok
15:21:14.0360 0672  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
15:21:14.0360 0672  C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:21:14.0360 0672  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
15:21:14.0360 0672  C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:21:14.0360 0672  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
15:21:14.0360 0672  C:\Windows\System32\drivers\tdi.sys - ok
15:21:14.0360 0672  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
15:21:14.0360 0672  C:\Windows\System32\drivers\tdx.sys - ok
15:21:14.0376 0672  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\afd.sys - ok
15:21:14.0376 0672  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\netbios.sys - ok
15:21:14.0376 0672  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\pacer.sys - ok
15:21:14.0376 0672  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\termdd.sys - ok
15:21:14.0376 0672  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\wanarp.sys - ok
15:21:14.0376 0672  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\wfplwf.sys - ok
15:21:14.0376 0672  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
15:21:14.0376 0672  C:\Windows\System32\drivers\ws2ifsl.sys - ok
15:21:14.0391 0672  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
15:21:14.0391 0672  C:\Windows\System32\drivers\blbdrive.sys - ok
15:21:14.0391 0672  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
15:21:14.0391 0672  C:\Windows\System32\drivers\dfsc.sys - ok
15:21:14.0391 0672  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
15:21:14.0391 0672  C:\Windows\System32\drivers\discache.sys - ok
15:21:14.0391 0672  [ A05FC7ECA0966EBB70E4D17B855A853B ] C:\Windows\System32\drivers\ElbyCDIO.sys
15:21:14.0391 0672  C:\Windows\System32\drivers\ElbyCDIO.sys - ok
15:21:14.0391 0672  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
15:21:14.0391 0672  C:\Windows\System32\drivers\mssmbios.sys - ok
15:21:14.0391 0672  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
15:21:14.0391 0672  C:\Windows\System32\drivers\nsiproxy.sys - ok
15:21:14.0407 0672  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
15:21:14.0407 0672  C:\Windows\System32\drivers\rdbss.sys - ok
15:21:14.0407 0672  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
15:21:14.0407 0672  C:\Windows\System32\drivers\intelppm.sys - ok
15:21:14.0407 0672  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
15:21:14.0407 0672  C:\Windows\System32\drivers\tunnel.sys - ok
15:21:14.0407 0672  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
15:21:14.0407 0672  C:\Windows\System32\ntdll.dll - ok
15:21:14.0407 0672  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
15:21:14.0407 0672  C:\Windows\System32\smss.exe - ok
15:21:14.0407 0672  [ 37456BE85384E4CC38DC899F07F88C45 ] C:\Windows\System32\drivers\atikmdag.sys
15:21:14.0407 0672  C:\Windows\System32\drivers\atikmdag.sys - ok
15:21:14.0423 0672  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
15:21:14.0423 0672  C:\Windows\System32\autochk.exe - ok
15:21:14.0423 0672  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
15:21:14.0423 0672  C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:21:14.0423 0672  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
15:21:14.0423 0672  C:\Windows\System32\drivers\dxgmms1.sys - ok
15:21:14.0423 0672  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
15:21:14.0423 0672  C:\Windows\System32\drivers\hdaudbus.sys - ok
15:21:14.0423 0672  [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
15:21:14.0423 0672  C:\Windows\System32\drivers\HECIx64.sys - ok
15:21:14.0423 0672  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
15:21:14.0423 0672  C:\Windows\System32\drivers\usbehci.sys - ok
15:21:14.0438 0672  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
15:21:14.0438 0672  C:\Windows\System32\drivers\usbport.sys - ok
15:21:14.0438 0672  [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
15:21:14.0438 0672  C:\Windows\System32\drivers\1394ohci.sys - ok
15:21:14.0438 0672  [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] C:\Windows\System32\drivers\k57nd60a.sys
15:21:14.0438 0672  C:\Windows\System32\drivers\k57nd60a.sys - ok
15:21:14.0438 0672  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
15:21:14.0438 0672  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
15:21:14.0438 0672  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
15:21:14.0438 0672  C:\Windows\System32\drivers\CompositeBus.sys - ok
15:21:14.0454 0672  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\hidclass.sys - ok
15:21:14.0454 0672  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\hidparse.sys - ok
15:21:14.0454 0672  [ CCB39C7006D436D238AC75D2ABFDE1FE ] C:\Windows\System32\drivers\jumi.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\jumi.sys - ok
15:21:14.0454 0672  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\agilevpn.sys - ok
15:21:14.0454 0672  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\ndistapi.sys - ok
15:21:14.0454 0672  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\rasl2tp.sys - ok
15:21:14.0454 0672  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
15:21:14.0454 0672  C:\Windows\System32\drivers\ndiswan.sys - ok
15:21:14.0469 0672  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
15:21:14.0469 0672  C:\Windows\System32\drivers\raspppoe.sys - ok
15:21:14.0469 0672  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
15:21:14.0469 0672  C:\Windows\System32\drivers\raspptp.sys - ok
15:21:14.0469 0672  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
15:21:14.0469 0672  C:\Windows\System32\drivers\rassstp.sys - ok
15:21:14.0469 0672  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
15:21:14.0469 0672  C:\Windows\System32\drivers\kbdclass.sys - ok
15:21:14.0469 0672  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
15:21:14.0469 0672  C:\Windows\System32\drivers\mouclass.sys - ok
15:21:14.0485 0672  [ 1B1E264203D4EF9D3DA1987AD70355AB ] C:\Windows\System32\drivers\scsiport.sys
15:21:14.0485 0672  C:\Windows\System32\drivers\scsiport.sys - ok
15:21:14.0485 0672  [ FD911873C0BB6945FA38C16E9A2B58F9 ] C:\Windows\System32\drivers\VClone.sys
15:21:14.0485 0672  C:\Windows\System32\drivers\VClone.sys - ok
15:21:14.0485 0672  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
15:21:14.0485 0672  C:\Windows\System32\drivers\ks.sys - ok
15:21:14.0485 0672  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
15:21:14.0485 0672  C:\Windows\System32\drivers\swenum.sys - ok
15:21:14.0485 0672  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
15:21:14.0485 0672  C:\Windows\System32\drivers\umbus.sys - ok
15:21:14.0485 0672  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
15:21:14.0485 0672  C:\Windows\System32\drivers\usbhub.sys - ok
15:21:14.0485 0672  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
15:21:14.0501 0672  C:\Windows\System32\kernel32.dll - ok
15:21:14.0501 0672  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
15:21:14.0501 0672  C:\Windows\System32\drivers\kbdhid.sys - ok
15:21:14.0501 0672  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
15:21:14.0501 0672  C:\Windows\System32\drivers\mouhid.sys - ok
15:21:14.0501 0672  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
15:21:14.0501 0672  C:\Windows\System32\drivers\ndproxy.sys - ok
15:21:14.0501 0672  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
15:21:14.0501 0672  C:\Windows\System32\drivers\drmk.sys - ok
15:21:14.0501 0672  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
15:21:14.0501 0672  C:\Windows\System32\drivers\portcls.sys - ok
15:21:14.0516 0672  [ FB7602C5C508BE281368AAE0B61B51C6 ] C:\Windows\System32\drivers\AtiHdmi.sys
15:21:14.0516 0672  C:\Windows\System32\drivers\AtiHdmi.sys - ok
15:21:14.0516 0672  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
15:21:14.0516 0672  C:\Windows\System32\drivers\ksthunk.sys - ok
15:21:14.0516 0672  [ 99913A55BAD22DF154873BBACA4B01D7 ] C:\Windows\System32\drivers\stdriver64.sys
15:21:14.0516 0672  C:\Windows\System32\drivers\stdriver64.sys - ok
15:21:14.0516 0672  [ EE64207F2F5C20BFE5F73DB2566C4601 ] C:\Windows\System32\drivers\RTKVHD64.sys
15:21:14.0516 0672  C:\Windows\System32\drivers\RTKVHD64.sys - ok
15:21:14.0516 0672  [ 49072EDBC5C2F964917D1B585C90ED0A ] C:\Windows\System32\drivers\IntcDAud.sys
15:21:14.0516 0672  C:\Windows\System32\drivers\IntcDAud.sys - ok
15:21:14.0516 0672  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
15:21:14.0516 0672  C:\Windows\System32\normaliz.dll - ok
15:21:14.0532 0672  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
15:21:14.0532 0672  C:\Windows\System32\shell32.dll - ok
15:21:14.0532 0672  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
15:21:14.0532 0672  C:\Windows\System32\shlwapi.dll - ok
15:21:14.0532 0672  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
15:21:14.0532 0672  C:\Windows\System32\advapi32.dll - ok
15:21:14.0532 0672  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
15:21:14.0532 0672  C:\Windows\System32\imagehlp.dll - ok
15:21:14.0532 0672  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
15:21:14.0532 0672  C:\Windows\System32\nsi.dll - ok
15:21:14.0547 0672  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
15:21:14.0547 0672  C:\Windows\System32\gdi32.dll - ok
15:21:14.0547 0672  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
15:21:14.0547 0672  C:\Windows\System32\imm32.dll - ok
15:21:14.0547 0672  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
15:21:14.0547 0672  C:\Windows\System32\urlmon.dll - ok
15:21:14.0547 0672  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
15:21:14.0547 0672  C:\Windows\System32\setupapi.dll - ok
15:21:14.0547 0672  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
15:21:14.0547 0672  C:\Windows\System32\comdlg32.dll - ok
15:21:14.0547 0672  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
15:21:14.0547 0672  C:\Windows\System32\oleaut32.dll - ok
15:21:14.0563 0672  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
15:21:14.0563 0672  C:\Windows\System32\sechost.dll - ok
15:21:14.0563 0672  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
15:21:14.0563 0672  C:\Windows\System32\msvcrt.dll - ok
15:21:14.0563 0672  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
15:21:14.0563 0672  C:\Windows\System32\Wldap32.dll - ok
15:21:14.0563 0672  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
15:21:14.0563 0672  C:\Windows\System32\psapi.dll - ok
15:21:14.0563 0672  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
15:21:14.0563 0672  C:\Windows\System32\ws2_32.dll - ok
15:21:14.0563 0672  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
15:21:14.0563 0672  C:\Windows\System32\iertutil.dll - ok
15:21:14.0563 0672  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
15:21:14.0563 0672  C:\Windows\System32\usp10.dll - ok
15:21:14.0579 0672  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
15:21:14.0579 0672  C:\Windows\System32\lpk.dll - ok
15:21:14.0579 0672  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
15:21:14.0579 0672  C:\Windows\System32\rpcrt4.dll - ok
15:21:14.0579 0672  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
15:21:14.0579 0672  C:\Windows\System32\wininet.dll - ok
15:21:14.0579 0672  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
15:21:14.0579 0672  C:\Windows\System32\clbcatq.dll - ok
15:21:14.0579 0672  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
15:21:14.0579 0672  C:\Windows\System32\msctf.dll - ok
15:21:14.0594 0672  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
15:21:14.0594 0672  C:\Windows\System32\difxapi.dll - ok
15:21:14.0594 0672  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
15:21:14.0594 0672  C:\Windows\System32\ole32.dll - ok
15:21:14.0594 0672  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
15:21:14.0594 0672  C:\Windows\System32\user32.dll - ok
15:21:14.0594 0672  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
15:21:14.0594 0672  C:\Windows\System32\KernelBase.dll - ok
15:21:14.0594 0672  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
15:21:14.0594 0672  C:\Windows\System32\cfgmgr32.dll - ok
15:21:14.0594 0672  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
15:21:14.0594 0672  C:\Windows\System32\devobj.dll - ok
15:21:14.0610 0672  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
15:21:14.0610 0672  C:\Windows\System32\comctl32.dll - ok
15:21:14.0610 0672  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
15:21:14.0610 0672  C:\Windows\System32\wintrust.dll - ok
15:21:14.0610 0672  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
15:21:14.0610 0672  C:\Windows\System32\crypt32.dll - ok
15:21:14.0610 0672  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
15:21:14.0610 0672  C:\Windows\System32\msasn1.dll - ok
15:21:14.0610 0672  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
15:21:14.0610 0672  C:\Windows\SysWOW64\normaliz.dll - ok
15:21:14.0610 0672  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
15:21:14.0610 0672  C:\Windows\System32\drivers\usbd.sys - ok
15:21:14.0610 0672  [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
15:21:14.0610 0672  C:\Windows\System32\drivers\USBSTOR.SYS - ok
15:21:14.0625 0672  [ A3D04EBF5227886029B4532F20D026F7 ] C:\Windows\System32\drivers\wdcsam64.sys
15:21:14.0625 0672  C:\Windows\System32\drivers\wdcsam64.sys - ok
15:21:14.0625 0672  [ C3096D7F9D0C529D538BC53A8B2895C7 ] C:\Windows\System32\drivers\habu.sys
15:21:14.0625 0672  C:\Windows\System32\drivers\habu.sys - ok
15:21:14.0625 0672  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
15:21:14.0625 0672  C:\Windows\System32\drivers\hidusb.sys - ok
15:21:14.0625 0672  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] C:\Windows\System32\drivers\usbaapl64.sys
15:21:14.0625 0672  C:\Windows\System32\drivers\usbaapl64.sys - ok
15:21:14.0625 0672  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
15:21:14.0625 0672  C:\Windows\System32\drivers\usbccgp.sys - ok
15:21:14.0625 0672  [ EF1D39A70CAD1B7BEDC220480F26815C ] C:\Windows\System32\drivers\mfeavfk.sys
15:21:14.0625 0672  C:\Windows\System32\drivers\mfeavfk.sys - ok
15:21:14.0641 0672  [ 67972BFC8F23054BD23E1DE1450E40BD ] C:\Windows\System32\drivers\mfefirek.sys
15:21:14.0641 0672  C:\Windows\System32\drivers\mfefirek.sys - ok
15:21:14.0641 0672  [ 038CF37253FFCA7F339989D050EED076 ] C:\Windows\System32\drivers\RecFltr.sys
15:21:14.0641 0672  C:\Windows\System32\drivers\RecFltr.sys - ok
15:21:14.0641 0672  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
15:21:14.0641 0672  C:\Windows\System32\drivers\dxapi.sys - ok
15:21:14.0641 0672  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
15:21:14.0641 0672  C:\Windows\System32\win32k.sys - ok
15:21:14.0641 0672  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
15:21:14.0641 0672  C:\Windows\System32\csrsrv.dll - ok
15:21:14.0641 0672  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
15:21:14.0641 0672  C:\Windows\System32\csrss.exe - ok
15:21:14.0657 0672  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
15:21:14.0657 0672  C:\Windows\System32\basesrv.dll - ok
15:21:14.0657 0672  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
15:21:14.0657 0672  C:\Windows\System32\winsrv.dll - ok
15:21:14.0657 0672  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
15:21:14.0657 0672  C:\Windows\System32\drivers\monitor.sys - ok
15:21:14.0657 0672  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
15:21:14.0657 0672  C:\Windows\System32\sxssrv.dll - ok
15:21:14.0657 0672  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
15:21:14.0657 0672  C:\Windows\System32\tsddd.dll - ok
15:21:14.0657 0672  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
15:21:14.0657 0672  C:\Windows\System32\wininit.exe - ok
15:21:14.0672 0672  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
15:21:14.0672 0672  C:\Windows\System32\cdd.dll - ok
15:21:14.0672 0672  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
15:21:14.0672 0672  C:\Windows\System32\KBDUS.DLL - ok
15:21:14.0672 0672  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
15:21:14.0672 0672  C:\Windows\System32\profapi.dll - ok
15:21:14.0672 0672  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
15:21:14.0672 0672  C:\Windows\System32\RpcRtRemote.dll - ok
15:21:14.0672 0672  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
15:21:14.0672 0672  C:\Windows\System32\WlS0WndH.dll - ok
15:21:14.0672 0672  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
15:21:14.0672 0672  C:\Windows\System32\sxs.dll - ok
15:21:14.0672 0672  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
15:21:14.0688 0672  C:\Windows\System32\cryptbase.dll - ok
15:21:14.0688 0672  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
15:21:14.0688 0672  C:\Windows\System32\apphelp.dll - ok
15:21:14.0688 0672  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
15:21:14.0688 0672  C:\Windows\System32\winlogon.exe - ok
15:21:14.0688 0672  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
15:21:14.0688 0672  C:\Windows\System32\winsta.dll - ok
15:21:14.0688 0672  [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
15:21:14.0688 0672  C:\Windows\System32\lsasrv.dll - ok
15:21:14.0688 0672  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
15:21:14.0688 0672  C:\Windows\System32\lsass.exe - ok
15:21:14.0688 0672  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
15:21:14.0688 0672  C:\Windows\System32\lsm.exe - ok
15:21:14.0703 0672  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
15:21:14.0703 0672  C:\Windows\System32\services.exe - ok
15:21:14.0703 0672  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
15:21:14.0703 0672  C:\Windows\System32\sspisrv.dll - ok
15:21:14.0703 0672  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
15:21:14.0703 0672  C:\Windows\System32\sspicli.dll - ok
15:21:14.0703 0672  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
15:21:14.0703 0672  C:\Windows\System32\scext.dll - ok
15:21:14.0703 0672  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
15:21:14.0703 0672  C:\Windows\System32\secur32.dll - ok
15:21:14.0703 0672  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
15:21:14.0703 0672  C:\Windows\System32\sysntfy.dll - ok
15:21:14.0719 0672  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
15:21:14.0719 0672  C:\Windows\System32\wmsgapi.dll - ok
15:21:14.0719 0672  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
15:21:14.0719 0672  C:\Windows\System32\samsrv.dll - ok
15:21:14.0719 0672  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
15:21:14.0719 0672  C:\Windows\System32\scesrv.dll - ok
15:21:14.0719 0672  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
15:21:14.0719 0672  C:\Windows\System32\srvcli.dll - ok
15:21:14.0719 0672  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
15:21:14.0719 0672  C:\Windows\System32\cryptdll.dll - ok
15:21:14.0719 0672  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
15:21:14.0719 0672  C:\Windows\System32\wevtapi.dll - ok
15:21:14.0735 0672  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
15:21:14.0735 0672  C:\Windows\System32\authz.dll - ok
15:21:14.0735 0672  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
15:21:14.0735 0672  C:\Windows\System32\cngaudit.dll - ok
15:21:14.0735 0672  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
15:21:14.0735 0672  C:\Windows\System32\bcrypt.dll - ok
15:21:14.0735 0672  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
15:21:14.0735 0672  C:\Windows\System32\ncrypt.dll - ok
15:21:14.0735 0672  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
15:21:14.0735 0672  C:\Windows\System32\msprivs.dll - ok
15:21:14.0735 0672  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
15:21:14.0735 0672  C:\Windows\System32\netjoin.dll - ok
15:21:14.0750 0672  [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
15:21:14.0750 0672  C:\Windows\System32\atmfd.dll - ok
15:21:14.0750 0672  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
15:21:14.0750 0672  C:\Windows\System32\kerberos.dll - ok
15:21:14.0750 0672  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
15:21:14.0750 0672  C:\Windows\System32\negoexts.dll - ok
15:21:14.0750 0672  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
15:21:14.0750 0672  C:\Windows\System32\cryptsp.dll - ok
15:21:14.0750 0672  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
15:21:14.0750 0672  C:\Windows\System32\mswsock.dll - ok
15:21:14.0750 0672  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
15:21:14.0750 0672  C:\Windows\System32\msv1_0.dll - ok
15:21:14.0766 0672  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
15:21:14.0766 0672  C:\Windows\System32\netlogon.dll - ok
15:21:14.0766 0672  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
15:21:14.0766 0672  C:\Windows\System32\wship6.dll - ok
15:21:14.0766 0672  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
15:21:14.0766 0672  C:\Windows\System32\dnsapi.dll - ok
15:21:14.0766 0672  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
15:21:14.0766 0672  C:\Windows\System32\logoncli.dll - ok
15:21:14.0766 0672  [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
15:21:14.0766 0672  C:\Windows\System32\schannel.dll - ok
15:21:14.0766 0672  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
15:21:14.0766 0672  C:\Windows\System32\wdigest.dll - ok
15:21:14.0766 0672  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
15:21:14.0766 0672  C:\Windows\System32\rsaenh.dll - ok
15:21:14.0781 0672  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
15:21:14.0781 0672  C:\Windows\System32\pku2u.dll - ok
15:21:14.0781 0672  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
15:21:14.0781 0672  C:\Windows\System32\TSpkg.dll - ok
15:21:14.0781 0672  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
15:21:14.0781 0672  C:\Windows\System32\LIVESSP.DLL - ok
15:21:14.0781 0672  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
15:21:14.0781 0672  C:\Windows\System32\bcryptprimitives.dll - ok
15:21:14.0781 0672  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
15:21:14.0781 0672  C:\Windows\System32\credssp.dll - ok
15:21:14.0781 0672  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
15:21:14.0781 0672  C:\Windows\System32\efslsaext.dll - ok
15:21:14.0797 0672  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
15:21:14.0797 0672  C:\Windows\System32\scecli.dll - ok
15:21:14.0797 0672  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
15:21:14.0797 0672  C:\Windows\System32\ubpm.dll - ok
15:21:14.0797 0672  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
15:21:14.0797 0672  C:\Windows\System32\SPInf.dll - ok
15:21:14.0797 0672  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
15:21:14.0797 0672  C:\Windows\System32\svchost.exe - ok
15:21:14.0797 0672  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
15:21:14.0797 0672  C:\Windows\System32\umpnpmgr.dll - ok
15:21:14.0797 0672  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
15:21:14.0797 0672  C:\Windows\System32\devrtl.dll - ok
15:21:14.0813 0672  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
15:21:14.0813 0672  C:\Windows\System32\gpapi.dll - ok
15:21:14.0813 0672  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
15:21:14.0813 0672  C:\Windows\System32\userenv.dll - ok
15:21:14.0813 0672  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
15:21:14.0813 0672  C:\Windows\System32\umpo.dll - ok
15:21:14.0813 0672  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
15:21:14.0813 0672  C:\Windows\System32\pcwum.dll - ok
15:21:14.0813 0672  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
15:21:14.0813 0672  C:\Windows\System32\powrprof.dll - ok
15:21:14.0813 0672  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
15:21:14.0813 0672  C:\Windows\System32\drivers\luafv.sys - ok
15:21:14.0828 0672  [ 92EB844D90615CB266F84C3202B8786E ] C:\Windows\System32\drivers\mbam.sys
15:21:14.0828 0672  C:\Windows\System32\drivers\mbam.sys - ok
15:21:14.0828 0672  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
15:21:14.0828 0672  C:\Windows\System32\rpcss.dll - ok
15:21:14.0828 0672  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
15:21:14.0828 0672  C:\Windows\System32\RpcEpMap.dll - ok
15:21:14.0828 0672  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
15:21:14.0828 0672  C:\Windows\System32\wshqos.dll - ok
15:21:14.0828 0672  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
15:21:14.0828 0672  C:\Windows\System32\WSHTCPIP.DLL - ok
15:21:14.0828 0672  [ 41A0813F22D3330C0CA71CE5BBD42B12 ] C:\Windows\System32\atiesrxx.exe
15:21:14.0828 0672  C:\Windows\System32\atiesrxx.exe - ok
15:21:14.0828 0672  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
15:21:14.0828 0672  C:\Windows\System32\FirewallAPI.dll - ok
15:21:14.0844 0672  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
15:21:14.0844 0672  C:\Windows\System32\ntmarta.dll - ok
15:21:14.0844 0672  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
15:21:14.0844 0672  C:\Windows\System32\wtsapi32.dll - ok
15:21:14.0844 0672  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
15:21:14.0844 0672  C:\Windows\System32\LogonUI.exe - ok
15:21:14.0844 0672  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
15:21:14.0844 0672  C:\Windows\System32\version.dll - ok
15:21:14.0844 0672  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
15:21:14.0844 0672  C:\Windows\System32\authui.dll - ok
15:21:14.0844 0672  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
15:21:14.0844 0672  C:\Windows\System32\wevtsvc.dll - ok
15:21:14.0859 0672  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
15:21:14.0859 0672  C:\Windows\System32\cryptui.dll - ok
15:21:14.0859 0672  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
15:21:14.0859 0672  C:\Windows\System32\netprofm.dll - ok
15:21:14.0859 0672  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
15:21:14.0859 0672  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
15:21:14.0859 0672  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
15:21:14.0859 0672  C:\Windows\System32\audiosrv.dll - ok
15:21:14.0859 0672  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
15:21:14.0859 0672  C:\Windows\System32\avrt.dll - ok
15:21:14.0859 0672  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
15:21:14.0859 0672  C:\Windows\System32\mmcss.dll - ok
15:21:14.0875 0672  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
15:21:14.0875 0672  C:\Windows\System32\adtschema.dll - ok
15:21:14.0875 0672  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
15:21:14.0875 0672  C:\Windows\System32\MMDevAPI.dll - ok
15:21:14.0875 0672  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:21:14.0875 0672  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:21:14.0875 0672  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
15:21:14.0875 0672  C:\Windows\System32\propsys.dll - ok
15:21:14.0875 0672  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
15:21:14.0875 0672  C:\Windows\System32\WUDFPlatform.dll - ok
15:21:14.0875 0672  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
15:21:14.0875 0672  C:\Windows\System32\profsvc.dll - ok
15:21:14.0891 0672  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
15:21:14.0891 0672  C:\Windows\System32\drivers\fltMgr.sys - ok
15:21:14.0891 0672  [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
15:21:14.0891 0672  C:\Windows\System32\termsrv.dll - ok
15:21:14.0891 0672  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
15:21:14.0891 0672  C:\Windows\System32\PSHED.DLL - ok
15:21:14.0891 0672  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:21:14.0891 0672  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:21:14.0891 0672  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
15:21:14.0891 0672  C:\Windows\System32\samlib.dll - ok
15:21:14.0891 0672  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
15:21:14.0891 0672  C:\Windows\System32\shacct.dll - ok
15:21:14.0906 0672  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
15:21:14.0906 0672  C:\Windows\System32\audiodg.exe - ok
15:21:14.0906 0672  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
15:21:14.0906 0672  C:\Windows\System32\uxtheme.dll - ok
15:21:14.0906 0672  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
15:21:14.0906 0672  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
15:21:14.0906 0672  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
15:21:14.0906 0672  C:\Windows\System32\dui70.dll - ok
15:21:14.0906 0672  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
15:21:14.0906 0672  C:\Windows\System32\atl.dll - ok
15:21:14.0906 0672  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
15:21:14.0906 0672  C:\Windows\System32\duser.dll - ok
15:21:14.0922 0672  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
15:21:14.0922 0672  C:\Windows\System32\gpsvc.dll - ok
15:21:14.0922 0672  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
15:21:14.0922 0672  C:\Windows\System32\themeservice.dll - ok
15:21:14.0922 0672  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
15:21:14.0922 0672  C:\Windows\System32\es.dll - ok
15:21:14.0922 0672  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
15:21:14.0922 0672  C:\Windows\System32\hid.dll - ok
15:21:14.0922 0672  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
15:21:14.0922 0672  C:\Windows\System32\SndVolSSO.dll - ok
15:21:14.0922 0672  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
15:21:14.0922 0672  C:\Windows\System32\winmm.dll - ok
15:21:14.0922 0672  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
15:21:14.0922 0672  C:\Windows\System32\comres.dll - ok
15:21:14.0937 0672  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
15:21:14.0937 0672  C:\Windows\System32\dsrole.dll - ok
15:21:14.0937 0672  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
15:21:14.0937 0672  C:\Windows\System32\dwmapi.dll - ok
15:21:14.0937 0672  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
15:21:14.0937 0672  C:\Windows\System32\ksuser.dll - ok
15:21:14.0937 0672  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
15:21:14.0937 0672  C:\Windows\System32\nlaapi.dll - ok
15:21:14.0937 0672  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
15:21:14.0937 0672  C:\Windows\System32\Sens.dll - ok
15:21:14.0937 0672  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
15:21:14.0937 0672  C:\Windows\System32\slc.dll - ok
15:21:14.0937 0672  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
15:21:14.0937 0672  C:\Windows\System32\wdmaud.drv - ok
15:21:14.0953 0672  [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
15:21:14.0953 0672  C:\Program Files\Dell\DellDock\DockLogin.exe - ok
15:21:14.0953 0672  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
15:21:14.0953 0672  C:\Windows\System32\xmllite.dll - ok
15:21:14.0953 0672  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
15:21:14.0953 0672  C:\Windows\System32\AudioSes.dll - ok
15:21:14.0953 0672  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
15:21:14.0953 0672  C:\Windows\SysWOW64\ntdll.dll - ok
15:21:14.0953 0672  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
15:21:14.0953 0672  C:\Windows\System32\midimap.dll - ok
15:21:14.0953 0672  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
15:21:14.0953 0672  C:\Windows\System32\msacm32.dll - ok
15:21:14.0969 0672  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
15:21:14.0969 0672  C:\Windows\System32\msacm32.drv - ok
15:21:14.0969 0672  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
15:21:14.0969 0672  C:\Windows\System32\wow64.dll - ok
15:21:14.0969 0672  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
15:21:14.0969 0672  C:\Windows\System32\AudioEng.dll - ok
15:21:14.0969 0672  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
15:21:14.0969 0672  C:\Windows\System32\wow64cpu.dll - ok
15:21:14.0969 0672  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
15:21:14.0969 0672  C:\Windows\System32\wow64win.dll - ok
15:21:14.0984 0672  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
15:21:14.0984 0672  C:\Windows\System32\WindowsCodecs.dll - ok
15:21:14.0984 0672  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
15:21:14.0984 0672  C:\Windows\SysWOW64\kernel32.dll - ok
15:21:14.0984 0672  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
15:21:14.0984 0672  C:\Windows\System32\AUDIOKSE.dll - ok
15:21:14.0984 0672  [ FE88B288356E7B47B74B13372ADD906D ] C:\Windows\System32\drivers\winusb.sys
15:21:14.0984 0672  C:\Windows\System32\drivers\winusb.sys - ok
15:21:14.0984 0672  [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
15:21:14.0984 0672  C:\Windows\System32\drivers\WUDFRd.sys - ok
15:21:14.0984 0672  [ E877D921A20E311F0627A48EEFAB1849 ] C:\Windows\System32\MBWrp64.dll
15:21:14.0984 0672  C:\Windows\System32\MBWrp64.dll - ok
15:21:15.0000 0672  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
15:21:15.0000 0672  C:\Windows\SysWOW64\KernelBase.dll - ok
15:21:15.0000 0672  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
15:21:15.0000 0672  C:\Windows\SysWOW64\msvcrt.dll - ok
15:21:15.0000 0672  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
15:21:15.0000 0672  C:\Windows\SysWOW64\wtsapi32.dll - ok
15:21:15.0000 0672  [ B8C027CED964C859E4E2ACC7066F6668 ] C:\Windows\System32\MBTHX64.dll
15:21:15.0000 0672  C:\Windows\System32\MBTHX64.dll - ok
15:21:15.0000 0672  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
15:21:15.0000 0672  C:\Windows\SysWOW64\advapi32.dll - ok
15:21:15.0000 0672  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
15:21:15.0000 0672  C:\Windows\SysWOW64\rpcrt4.dll - ok
15:21:15.0015 0672  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
15:21:15.0015 0672  C:\Windows\SysWOW64\sechost.dll - ok
15:21:15.0015 0672  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
15:21:15.0015 0672  C:\Windows\System32\IPHLPAPI.DLL - ok
15:21:15.0015 0672  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
15:21:15.0015 0672  C:\Windows\System32\winnsi.dll - ok
15:21:15.0015 0672  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
15:21:15.0015 0672  C:\Windows\SysWOW64\cryptbase.dll - ok
15:21:15.0015 0672  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
15:21:15.0015 0672  C:\Windows\SysWOW64\gdi32.dll - ok
15:21:15.0015 0672  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
15:21:15.0015 0672  C:\Windows\SysWOW64\shlwapi.dll - ok
15:21:15.0031 0672  [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
15:21:15.0031 0672  C:\Windows\SysWOW64\sspicli.dll - ok
15:21:15.0031 0672  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
15:21:15.0031 0672  C:\Windows\System32\dhcpcsvc.dll - ok
15:21:15.0031 0672  [ 9FA8752358E1F6C5C7DBC48F3B025F2F ] C:\Windows\System32\MBAPO64.dll
15:21:15.0031 0672  C:\Windows\System32\MBAPO64.dll - ok
15:21:15.0031 0672  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
15:21:15.0031 0672  C:\Windows\SysWOW64\user32.dll - ok
15:21:15.0031 0672  [ 2BA7A515B90FCBA1629E0261E60F5F82 ] C:\Windows\System32\RtkAPO64.dll
15:21:15.0031 0672  C:\Windows\System32\RtkAPO64.dll - ok
15:21:15.0031 0672  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
15:21:15.0031 0672  C:\Windows\System32\winbrand.dll - ok
15:21:15.0031 0672  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
15:21:15.0031 0672  C:\Windows\SysWOW64\lpk.dll - ok
15:21:15.0047 0672  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
15:21:15.0047 0672  C:\Windows\SysWOW64\usp10.dll - ok
15:21:15.0047 0672  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
15:21:15.0047 0672  C:\Windows\System32\VaultCredProvider.dll - ok
15:21:15.0047 0672  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:21:15.0047 0672  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:21:15.0047 0672  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
15:21:15.0047 0672  C:\Windows\System32\BioCredProv.dll - ok
15:21:15.0047 0672  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
15:21:15.0047 0672  C:\Windows\SysWOW64\imm32.dll - ok
15:21:15.0062 0672  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
15:21:15.0062 0672  C:\Windows\SysWOW64\msctf.dll - ok
15:21:15.0062 0672  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
15:21:15.0062 0672  C:\Windows\System32\credui.dll - ok
15:21:15.0062 0672  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
15:21:15.0062 0672  C:\Windows\System32\winbio.dll - ok
15:21:15.0062 0672  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
15:21:15.0062 0672  C:\Windows\System32\netapi32.dll - ok
15:21:15.0062 0672  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
15:21:15.0062 0672  C:\Windows\System32\netutils.dll - ok
15:21:15.0062 0672  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
15:21:15.0062 0672  C:\Windows\System32\vaultcli.dll - ok
15:21:15.0062 0672  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
15:21:15.0062 0672  C:\Windows\System32\wkscli.dll - ok
15:21:15.0078 0672  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
15:21:15.0078 0672  C:\Windows\System32\WMALFXGFXDSP.dll - ok
15:21:15.0078 0672  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
15:21:15.0078 0672  C:\Windows\System32\samcli.dll - ok
15:21:15.0078 0672  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
15:21:15.0078 0672  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
15:21:15.0078 0672  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
15:21:15.0078 0672  C:\Windows\System32\certCredProvider.dll - ok
15:21:15.0078 0672  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
15:21:15.0078 0672  C:\Windows\System32\dhcpcore.dll - ok
15:21:15.0078 0672  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
15:21:15.0078 0672  C:\Windows\System32\drivers\lltdio.sys - ok
15:21:15.0093 0672  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
15:21:15.0093 0672  C:\Windows\System32\drivers\rspndr.sys - ok
15:21:15.0093 0672  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
15:21:15.0093 0672  C:\Windows\System32\lmhsvc.dll - ok
15:21:15.0093 0672  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
15:21:15.0093 0672  C:\Windows\System32\nrpsrv.dll - ok
15:21:15.0093 0672  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
15:21:15.0093 0672  C:\Windows\System32\nsisvc.dll - ok
15:21:15.0093 0672  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
15:21:15.0093 0672  C:\Windows\System32\uxsms.dll - ok
15:21:15.0093 0672  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
15:21:15.0093 0672  C:\Windows\System32\dnsrslvr.dll - ok
15:21:15.0109 0672  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
15:21:15.0109 0672  C:\Windows\System32\rasplap.dll - ok
15:21:15.0109 0672  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
15:21:15.0109 0672  C:\Windows\System32\dhcpcore6.dll - ok
15:21:15.0109 0672  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
15:21:15.0109 0672  C:\Windows\System32\FWPUCLNT.DLL - ok
15:21:15.0109 0672  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
15:21:15.0109 0672  C:\Windows\System32\rasapi32.dll - ok
15:21:15.0109 0672  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
15:21:15.0109 0672  C:\Windows\System32\dhcpcsvc6.dll - ok
15:21:15.0109 0672  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
15:21:15.0109 0672  C:\Windows\System32\mfplat.dll - ok
15:21:15.0125 0672  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
15:21:15.0125 0672  C:\Windows\System32\rasman.dll - ok
15:21:15.0125 0672  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
15:21:15.0125 0672  C:\Windows\System32\rtutils.dll - ok
15:21:15.0125 0672  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
15:21:15.0125 0672  C:\Windows\System32\UXInit.dll - ok
15:21:15.0125 0672  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
15:21:15.0125 0672  C:\Windows\System32\dnsext.dll - ok
15:21:15.0125 0672  [ C68960B91F93850AECC34D93EB2B2B56 ] C:\Windows\System32\atieclxx.exe
15:21:15.0125 0672  C:\Windows\System32\atieclxx.exe - ok
15:21:15.0125 0672  [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
15:21:15.0125 0672  C:\Windows\System32\drivers\cdfs.sys - ok
15:21:15.0125 0672  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
15:21:15.0125 0672  C:\Windows\System32\shsvcs.dll - ok
15:21:15.0140 0672  [ 2EFB1243833B85B40A2EA2128AE2DB4A ] C:\Windows\System32\atiadlxx.dll
15:21:15.0140 0672  C:\Windows\System32\atiadlxx.dll - ok
15:21:15.0140 0672  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
15:21:15.0140 0672  C:\Windows\System32\schedsvc.dll - ok
15:21:15.0140 0672  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
15:21:15.0140 0672  C:\Windows\System32\ktmw32.dll - ok
15:21:15.0140 0672  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
15:21:15.0140 0672  C:\Windows\System32\imageres.dll - ok
15:21:15.0140 0672  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
15:21:15.0140 0672  C:\Windows\System32\taskcomp.dll - ok
15:21:15.0140 0672  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
15:21:15.0140 0672  C:\Windows\System32\drivers\http.sys - ok
15:21:15.0156 0672  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
15:21:15.0156 0672  C:\Windows\System32\spoolsv.exe - ok
15:21:15.0156 0672  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
15:21:15.0156 0672  C:\Windows\System32\drivers\bowser.sys - ok
15:21:15.0156 0672  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
15:21:15.0156 0672  C:\Windows\System32\drivers\srvnet.sys - ok
15:21:15.0156 0672  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
15:21:15.0156 0672  C:\Windows\System32\drivers\mrxsmb.sys - ok
15:21:15.0156 0672  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:21:15.0156 0672  C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:21:15.0156 0672  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
15:21:15.0156 0672  C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:21:15.0171 0672  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
15:21:15.0171 0672  C:\Windows\System32\drivers\srv2.sys - ok
15:21:15.0171 0672  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
15:21:15.0171 0672  C:\Windows\System32\wkssvc.dll - ok
15:21:15.0171 0672  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
15:21:15.0171 0672  C:\Windows\System32\drivers\srv.sys - ok
15:21:15.0171 0672  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
15:21:15.0171 0672  C:\Windows\System32\srvsvc.dll - ok
15:21:15.0171 0672  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
15:21:15.0171 0672  C:\Windows\System32\browser.dll - ok
15:21:15.0171 0672  [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
15:21:15.0171 0672  C:\Windows\System32\drivers\udfs.sys - ok
15:21:15.0187 0672  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
15:21:15.0187 0672  C:\Windows\System32\netmsg.dll - ok
15:21:15.0187 0672  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
15:21:15.0187 0672  C:\Windows\System32\clusapi.dll - ok
15:21:15.0187 0672  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
15:21:15.0187 0672  C:\Windows\System32\sscore.dll - ok
15:21:15.0187 0672  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
15:21:15.0187 0672  C:\Windows\System32\resutils.dll - ok
15:21:15.0187 0672  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
15:21:15.0187 0672  C:\Windows\System32\fveapi.dll - ok
15:21:15.0187 0672  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
15:21:15.0187 0672  C:\Windows\System32\fvecerts.dll - ok
15:21:15.0187 0672  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
15:21:15.0187 0672  C:\Windows\System32\tbs.dll - ok
15:21:15.0203 0672  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
15:21:15.0203 0672  C:\Windows\System32\wiarpc.dll - ok
15:21:15.0203 0672  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:21:15.0203 0672  C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:21:15.0203 0672  [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
15:21:15.0203 0672  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
15:21:15.0203 0672  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
15:21:15.0203 0672  C:\Windows\System32\rasadhlp.dll - ok
15:21:15.0203 0672  [ E7A2D42DDFE1AF501E06D27A11C170DE ] C:\Windows\temp\027379~1.EXE
15:21:15.0203 0672  C:\Windows\temp\027379~1.EXE - ok
15:21:15.0203 0672  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
15:21:15.0203 0672  C:\Windows\SysWOW64\crypt32.dll - ok
15:21:15.0218 0672  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
15:21:15.0218 0672  C:\Windows\SysWOW64\wintrust.dll - ok
15:21:15.0218 0672  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
15:21:15.0218 0672  C:\Windows\SysWOW64\msasn1.dll - ok
15:21:15.0218 0672  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
15:21:15.0218 0672  C:\Windows\SysWOW64\version.dll - ok
15:21:15.0218 0672  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
 



15:21:15.0218 0672 C:\Windows\SysWOW64\shell32.dll - ok
15:21:15.0218 0672 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
15:21:15.0218 0672 C:\Windows\SysWOW64\ole32.dll - ok
15:21:15.0218 0672 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
15:21:15.0218 0672 C:\Windows\SysWOW64\oleaut32.dll - ok
15:21:15.0234 0672 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] C:\Windows\System32\drivers\adfs.sys
15:21:15.0234 0672 C:\Windows\System32\drivers\adfs.sys - ok
15:21:15.0234 0672 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
15:21:15.0234 0672 C:\Windows\SysWOW64\psapi.dll - ok
15:21:15.0234 0672 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
15:21:15.0234 0672 C:\Windows\SysWOW64\shfolder.dll - ok
15:21:15.0234 0672 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:21:15.0234 0672 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
15:21:15.0234 0672 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
15:21:15.0234 0672 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
15:21:15.0234 0672 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:21:15.0234 0672 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
15:21:15.0249 0672 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
15:21:15.0249 0672 C:\Windows\SysWOW64\apphelp.dll - ok
15:21:15.0249 0672 [ 1104A3A552D1D249A6AB5ACCBDEFB5EF ] C:\PROGRA~2\McAfee\SITEAD~1\mcsacore.exe
15:21:15.0249 0672 C:\PROGRA~2\McAfee\SITEAD~1\mcsacore.exe - ok
15:21:15.0249 0672 [ 605C6370240FC79CADBCD34960A741D2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
15:21:15.0249 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:21:15.0249 0672 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:21:15.0249 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:21:15.0249 0672 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:21:15.0249 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:21:15.0249 0672 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
15:21:15.0249 0672 C:\Windows\SysWOW64\ws2_32.dll - ok
15:21:15.0265 0672 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
15:21:15.0265 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
15:21:15.0265 0672 [ 15530639789C990827E594344EACC465 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:21:15.0265 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:21:15.0265 0672 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
15:21:15.0265 0672 C:\Windows\SysWOW64\nsi.dll - ok
15:21:15.0265 0672 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
15:21:15.0265 0672 C:\Windows\SysWOW64\wsock32.dll - ok
15:21:15.0265 0672 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
15:21:15.0265 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:21:15.0265 0672 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
15:21:15.0265 0672 C:\Windows\SysWOW64\winmm.dll - ok
15:21:15.0265 0672 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
15:21:15.0265 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:21:15.0281 0672 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
15:21:15.0281 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:21:15.0281 0672 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
15:21:15.0281 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
15:21:15.0281 0672 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
15:21:15.0281 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:21:15.0281 0672 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
15:21:15.0281 0672 C:\Windows\SysWOW64\profapi.dll - ok
15:21:15.0281 0672 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
15:21:15.0281 0672 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
15:21:15.0296 0672 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\setupapi.dll - ok
15:21:15.0296 0672 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:21:15.0296 0672 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\devobj.dll - ok
15:21:15.0296 0672 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\dnssd.dll - ok
15:21:15.0296 0672 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\userenv.dll - ok
15:21:15.0296 0672 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\ntmarta.dll - ok
15:21:15.0296 0672 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
15:21:15.0296 0672 C:\Windows\SysWOW64\Wldap32.dll - ok
15:21:15.0312 0672 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
15:21:15.0312 0672 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
15:21:15.0312 0672 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
15:21:15.0312 0672 C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:21:15.0312 0672 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
15:21:15.0312 0672 C:\Windows\SysWOW64\mswsock.dll - ok
15:21:15.0312 0672 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:21:15.0312 0672 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:21:15.0312 0672 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
15:21:15.0312 0672 C:\Windows\System32\cryptsvc.dll - ok
15:21:15.0312 0672 [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
15:21:15.0312 0672 C:\Windows\SysWOW64\wininet.dll - ok
15:21:15.0327 0672 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:21:15.0327 0672 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
15:21:15.0327 0672 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
15:21:15.0327 0672 C:\Windows\System32\cryptnet.dll - ok
15:21:15.0327 0672 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
15:21:15.0327 0672 C:\Windows\System32\dps.dll - ok
15:21:15.0327 0672 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
15:21:15.0327 0672 C:\Windows\System32\efscore.dll - ok
15:21:15.0327 0672 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
15:21:15.0327 0672 C:\Windows\System32\efssvc.dll - ok
15:21:15.0327 0672 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
15:21:15.0327 0672 C:\Windows\System32\fdPHost.dll - ok
15:21:15.0327 0672 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
15:21:15.0327 0672 C:\Windows\System32\fdWSD.dll - ok
15:21:15.0343 0672 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
15:21:15.0343 0672 C:\Windows\System32\efsutil.dll - ok
15:21:15.0343 0672 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
15:21:15.0343 0672 C:\Windows\System32\mlang.dll - ok
15:21:15.0343 0672 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
15:21:15.0343 0672 C:\Windows\System32\vssapi.dll - ok
15:21:15.0343 0672 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
15:21:15.0343 0672 C:\Windows\System32\taskschd.dll - ok
15:21:15.0343 0672 [ 8624E0E2418413614EE1FECDB7B76B88 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
15:21:15.0343 0672 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
15:21:15.0359 0672 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
15:21:15.0359 0672 C:\Windows\System32\vsstrace.dll - ok
15:21:15.0359 0672 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
15:21:15.0359 0672 C:\Windows\System32\WSDApi.dll - ok
15:21:15.0359 0672 [ D4467A285C91752018F67CDBA8680BAB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
15:21:15.0359 0672 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
15:21:15.0359 0672 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
15:21:15.0359 0672 C:\Windows\System32\webservices.dll - ok
15:21:15.0359 0672 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
15:21:15.0359 0672 C:\Windows\System32\winhttp.dll - ok
15:21:15.0359 0672 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:21:15.0359 0672 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:21:15.0374 0672 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
15:21:15.0374 0672 C:\Windows\SysWOW64\winnsi.dll - ok
15:21:15.0374 0672 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:21:15.0374 0672 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
15:21:15.0374 0672 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
15:21:15.0374 0672 C:\Windows\System32\webio.dll - ok
15:21:15.0374 0672 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
15:21:15.0374 0672 C:\Windows\SysWOW64\cryptsp.dll - ok
15:21:15.0374 0672 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
15:21:15.0374 0672 C:\Windows\SysWOW64\rsaenh.dll - ok
15:21:15.0374 0672 [ 4BE1DCAD76BE96D1EC887A41E570C404 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
15:21:15.0374 0672 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
15:21:15.0374 0672 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
15:21:15.0374 0672 C:\Windows\System32\fdSSDP.dll - ok
15:21:15.0390 0672 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
15:21:15.0390 0672 C:\Windows\System32\ssdpapi.dll - ok
15:21:15.0390 0672 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
15:21:15.0390 0672 C:\Windows\SysWOW64\mpr.dll - ok
15:21:15.0390 0672 [ F928E5E72BBA15DD0CE9A26E0413D236 ] C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:21:15.0390 0672 C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe - ok
15:21:15.0390 0672 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Windows\System32\msvcr100.dll
15:21:15.0390 0672 C:\Windows\System32\msvcr100.dll - ok
15:21:15.0390 0672 [ 2C0D7AA2DACF6E11C71F22BFC0050147 ] C:\Program Files\Common Files\McAfee\MSC\LogCntrl.dll
15:21:15.0390 0672 C:\Program Files\Common Files\McAfee\MSC\LogCntrl.dll - ok
15:21:15.0390 0672 [ 74CE2EBE64AB78904E33DD4C5F21611F ] C:\Windows\System32\mfevtps.exe
15:21:15.0390 0672 C:\Windows\System32\mfevtps.exe - ok
15:21:15.0390 0672 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
15:21:15.0390 0672 C:\Windows\System32\nlasvc.dll - ok
15:21:15.0405 0672 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
15:21:15.0405 0672 C:\Windows\System32\pcasvc.dll - ok
15:21:15.0405 0672 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
15:21:15.0405 0672 C:\Windows\System32\sfc.dll - ok
15:21:15.0405 0672 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
15:21:15.0405 0672 C:\Windows\System32\sfc_os.dll - ok
15:21:15.0405 0672 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
15:21:15.0405 0672 C:\Windows\SysWOW64\winsta.dll - ok
15:21:15.0405 0672 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
15:21:15.0405 0672 C:\Windows\System32\aepic.dll - ok
15:21:15.0405 0672 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
15:21:15.0405 0672 C:\Windows\System32\drivers\PEAuth.sys - ok
15:21:15.0405 0672 [ 16A252022535B680046F6E34E136D378 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
15:21:15.0405 0672 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe - ok
15:21:15.0405 0672 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
15:21:15.0405 0672 C:\Windows\System32\ncsi.dll - ok
15:21:15.0421 0672 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
15:21:15.0421 0672 C:\Windows\SysWOW64\winhttp.dll - ok
15:21:15.0421 0672 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
15:21:15.0421 0672 C:\Windows\SysWOW64\webio.dll - ok
15:21:15.0421 0672 [ F4AB66EC2FB7D1DF0219D59C7CF38BCC ] C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll
15:21:15.0421 0672 C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll - ok
15:21:15.0421 0672 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
15:21:15.0421 0672 C:\Windows\SysWOW64\SensApi.dll - ok
15:21:15.0421 0672 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
15:21:15.0421 0672 C:\Windows\SysWOW64\clbcatq.dll - ok
15:21:15.0421 0672 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
15:21:15.0421 0672 C:\Windows\SysWOW64\msxml6.dll - ok
15:21:15.0421 0672 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
15:21:15.0421 0672 C:\Windows\System32\aeevts.dll - ok
15:21:15.0421 0672 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
15:21:15.0421 0672 C:\Windows\System32\drivers\secdrv.sys - ok
15:21:15.0437 0672 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
15:21:15.0437 0672 C:\Windows\System32\seclogon.dll - ok
15:21:15.0437 0672 [ 16A5CC62F79A32A974B55110A898945C ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
15:21:15.0437 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
15:21:15.0437 0672 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:21:15.0437 0672 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:21:15.0437 0672 [ 1210635FE7BB2DCDB87163DD4436D3FC ] C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll
15:21:15.0437 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll - ok
15:21:15.0437 0672 [ 893C44082C97F7AED3E7C180FA1F93D8 ] C:\Windows\System32\mpnotify.exe
15:21:15.0437 0672 C:\Windows\System32\mpnotify.exe - ok
15:21:15.0452 0672 [ E2D9D08FE16AD85EBB9B09016B8BCDA2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll
15:21:15.0452 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll - ok
15:21:15.0452 0672 [ 41A2BD933772A423D76FC47103506D49 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll
15:21:15.0452 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll - ok
15:21:15.0452 0672 [ E4913D50B902E69814DAB9921D4A3283 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll
15:21:15.0452 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll - ok
15:21:15.0452 0672 [ 2B18B181DB588112BF2C53667892C918 ] C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
15:21:15.0452 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll - ok
15:21:15.0452 0672 [ 634C04EB2A7F58B65D0F5DBF9FD5F784 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
15:21:15.0452 0672 C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll - ok
15:21:15.0468 0672 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
15:21:15.0468 0672 C:\Windows\System32\ssdpsrv.dll - ok
15:21:15.0468 0672 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
15:21:15.0468 0672 C:\Windows\System32\drivers\tcpipreg.sys - ok
15:21:15.0468 0672 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
15:21:15.0468 0672 C:\Windows\System32\icaapi.dll - ok
15:21:15.0468 0672 [ 988121D083B7AB61D4A7E244290BAAB0 ] C:\Windows\System32\lsmproxy.dll
15:21:15.0468 0672 C:\Windows\System32\lsmproxy.dll - ok
15:21:15.0468 0672 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
15:21:15.0468 0672 C:\Windows\System32\sysmain.dll - ok
15:21:15.0468 0672 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
15:21:15.0468 0672 C:\Windows\System32\wiaservc.dll - ok
15:21:15.0468 0672 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
15:21:15.0468 0672 C:\Windows\SysWOW64\wbemcomn.dll - ok
15:21:15.0483 0672 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:21:15.0483 0672 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:21:15.0483 0672 [ E377BBA01F34E4183C32E5BBD688CE83 ] C:\Windows\System32\regapi.dll
15:21:15.0483 0672 C:\Windows\System32\regapi.dll - ok
15:21:15.0483 0672 [ 6D5DCC1579B3961D791ABDE286A1CB5E ] C:\Windows\System32\rdpwsx.dll
15:21:15.0483 0672 C:\Windows\System32\rdpwsx.dll - ok
15:21:15.0483 0672 [ 1B4A711265FEA91259553D7B4E83394B ] C:\Windows\System32\tlscsp.dll
15:21:15.0483 0672 C:\Windows\System32\tlscsp.dll - ok
15:21:15.0483 0672 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
15:21:15.0483 0672 C:\Windows\System32\wiatrace.dll - ok
15:21:15.0499 0672 [ F0C3B543A95006ED2B2D07E1DA426813 ] C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll
15:21:15.0499 0672 C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll - ok
15:21:15.0499 0672 [ 11BBA4630B97C3F33B5DA85FB7F81995 ] C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
15:21:15.0499 0672 C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe - ok
15:21:15.0499 0672 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
15:21:15.0499 0672 C:\Windows\System32\trkwks.dll - ok
15:21:15.0499 0672 [ EA42F79A76F4795E0930FB1E9FFFA5CF ] C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\mfc80u.dll
15:21:15.0499 0672 C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\mfc80u.dll - ok
15:21:15.0499 0672 [ 8F69EE5E0EB0779DC3E90DFD8D8E8683 ] C:\Windows\System32\rdpcorets.dll
15:21:15.0499 0672 C:\Windows\System32\rdpcorets.dll - ok
15:21:15.0499 0672 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
15:21:15.0499 0672 C:\Windows\System32\d3d9.dll - ok
15:21:15.0515 0672 [ 8BC7F8F0B7AE856D910B3FDD895EC50E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
15:21:15.0515 0672 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
15:21:15.0515 0672 [ 9935F595C9B80BC40723042B43086549 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll
15:21:15.0515 0672 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll - ok
15:21:15.0515 0672 [ 138AB06ADBBF300AA804D7974A5AEC82 ] C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
15:21:15.0515 0672 C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe - ok
15:21:15.0515 0672 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
15:21:15.0515 0672 C:\Windows\System32\mscoree.dll - ok
15:21:15.0515 0672 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
15:21:15.0515 0672 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
15:21:15.0530 0672 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
15:21:15.0530 0672 C:\Windows\System32\rundll32.exe - ok
15:21:15.0530 0672 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
15:21:15.0530 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
15:21:15.0530 0672 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
15:21:15.0530 0672 C:\Windows\System32\mpr.dll - ok
15:21:15.0530 0672 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
15:21:15.0530 0672 C:\Windows\System32\msxml3.dll - ok
15:21:15.0530 0672 [ BB1D82C70960FC9F28BAD16A5D7D010D ] C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll
15:21:15.0530 0672 C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll - ok
15:21:15.0546 0672 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
15:21:15.0546 0672 C:\Windows\System32\d3d8thk.dll - ok
15:21:15.0546 0672 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] C:\Windows\System32\drivers\tdtcp.sys
15:21:15.0546 0672 C:\Windows\System32\drivers\tdtcp.sys - ok
15:21:15.0546 0672 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
15:21:15.0546 0672 C:\Windows\System32\umb.dll - ok
15:21:15.0546 0672 [ E61608AA35E98999AF9AAEEEA6114B0A ] C:\Windows\System32\drivers\rdpwd.sys
15:21:15.0546 0672 C:\Windows\System32\drivers\rdpwd.sys - ok
15:21:15.0546 0672 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] C:\Windows\System32\drivers\tssecsrv.sys
15:21:15.0546 0672 C:\Windows\System32\drivers\tssecsrv.sys - ok
15:21:15.0546 0672 [ 5B236296E233CAA6BF86BE0C6501A224 ] C:\Windows\System32\rdpcorekmts.dll
15:21:15.0546 0672 C:\Windows\System32\rdpcorekmts.dll - ok
15:21:15.0561 0672 [ 5B960B90785B947942AA7341FE67221F ] C:\PROGRA~2\McAfee\SITEAD~1\x64\MCSACO~1.DLL
15:21:15.0561 0672 C:\PROGRA~2\McAfee\SITEAD~1\x64\MCSACO~1.DLL - ok
15:21:15.0561 0672 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
15:21:15.0561 0672 C:\Windows\SysWOW64\imagehlp.dll - ok
15:21:15.0561 0672 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
15:21:15.0561 0672 C:\Windows\SysWOW64\rundll32.exe - ok
15:21:15.0561 0672 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
15:21:15.0561 0672 C:\Windows\System32\msxml6.dll - ok
15:21:15.0561 0672 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
15:21:15.0561 0672 C:\Windows\AppPatch\AcLayers.dll - ok
15:21:15.0561 0672 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
15:21:15.0561 0672 C:\Windows\SysWOW64\winspool.drv - ok
15:21:15.0561 0672 [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
15:21:15.0561 0672 C:\Windows\AppPatch\acwow64.dll - ok
15:21:15.0577 0672 [ 43EF8CA8FA9DC5F998FBC4C12C9556E2 ] C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll
15:21:15.0577 0672 C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll - ok
15:21:15.0577 0672 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
15:21:15.0577 0672 C:\Windows\SysWOW64\dwmapi.dll - ok
15:21:15.0577 0672 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
15:21:15.0577 0672 C:\Windows\SysWOW64\uxtheme.dll - ok
15:21:15.0577 0672 [ 2B957F5CEC60636C4DCED9689F560E93 ] C:\PROGRA~2\McAfee\SITEAD~1\saUpd.exe
15:21:15.0577 0672 C:\PROGRA~2\McAfee\SITEAD~1\saUpd.exe - ok
15:21:15.0577 0672 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
15:21:15.0577 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
15:21:15.0577 0672 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
15:21:15.0577 0672 C:\Windows\System32\dllhost.exe - ok
15:21:15.0577 0672 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
15:21:15.0577 0672 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
15:21:15.0593 0672 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
15:21:15.0593 0672 C:\Windows\System32\IDStore.dll - ok
15:21:15.0593 0672 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
15:21:15.0593 0672 C:\Windows\System32\taskhost.exe - ok
15:21:15.0593 0672 [ 7853D2AB445C10F97610B2B05FA4CF0A ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
15:21:15.0593 0672 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
15:21:15.0593 0672 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
15:21:15.0593 0672 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
15:21:15.0593 0672 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
15:21:15.0593 0672 C:\Windows\System32\AtBroker.exe - ok
15:21:15.0593 0672 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
15:21:15.0593 0672 C:\Windows\System32\userinit.exe - ok
15:21:15.0593 0672 [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
15:21:15.0593 0672 C:\Windows\SysWOW64\iertutil.dll - ok
15:21:15.0608 0672 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
15:21:15.0608 0672 C:\Windows\explorer.exe - ok
15:21:15.0608 0672 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
15:21:15.0608 0672 C:\Windows\System32\ExplorerFrame.dll - ok
15:21:15.0608 0672 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
15:21:15.0608 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
15:21:15.0608 0672 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
15:21:15.0608 0672 C:\Windows\System32\EhStorShell.dll - ok
15:21:15.0608 0672 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
15:21:15.0608 0672 C:\Windows\System32\cscapi.dll - ok
15:21:15.0608 0672 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
15:21:15.0608 0672 C:\Windows\System32\ntshrui.dll - ok
15:21:15.0608 0672 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
15:21:15.0608 0672 C:\Windows\System32\IconCodecService.dll - ok
15:21:15.0608 0672 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
15:21:15.0608 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
15:21:15.0624 0672 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
15:21:15.0624 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
15:21:15.0624 0672 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
15:21:15.0624 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
15:21:15.0624 0672 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
15:21:15.0624 0672 C:\Windows\System32\shfolder.dll - ok
15:21:15.0624 0672 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
15:21:15.0624 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
15:21:15.0624 0672 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
15:21:15.0624 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
15:21:15.0624 0672 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:21:15.0624 0672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
15:21:15.0639 0672 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
15:21:15.0639 0672 C:\Windows\System32\wbem\WMIsvc.dll - ok
15:21:15.0639 0672 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
15:21:15.0639 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
15:21:15.0639 0672 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
15:21:15.0639 0672 C:\Windows\System32\wbemcomn.dll - ok
15:21:15.0639 0672 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
15:21:15.0639 0672 C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:21:15.0639 0672 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:21:15.0639 0672 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:21:15.0639 0672 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
15:21:15.0639 0672 C:\Windows\System32\wbem\wbemcore.dll - ok
15:21:15.0639 0672 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
15:21:15.0639 0672 C:\Windows\System32\ntdsapi.dll - ok
15:21:15.0655 0672 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
15:21:15.0655 0672 C:\Windows\System32\wbem\fastprox.dll - ok
15:21:15.0655 0672 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
15:21:15.0655 0672 C:\Windows\System32\wbem\wbemprox.dll - ok
15:21:15.0655 0672 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
15:21:15.0655 0672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
15:21:15.0655 0672 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
15:21:15.0655 0672 C:\Windows\System32\SensApi.dll - ok
15:21:15.0655 0672 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
15:21:15.0655 0672 C:\Windows\System32\wbem\esscli.dll - ok
15:21:15.0655 0672 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
15:21:15.0655 0672 C:\Windows\System32\wbem\wbemsvc.dll - ok
15:21:15.0655 0672 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
15:21:15.0671 0672 C:\Windows\System32\wer.dll - ok
15:21:15.0671 0672 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
15:21:15.0671 0672 C:\Windows\System32\wbem\repdrvfs.dll - ok
15:21:15.0671 0672 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
15:21:15.0671 0672 C:\Windows\System32\wbem\wmiutils.dll - ok
15:21:15.0671 0672 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
15:21:15.0671 0672 C:\Windows\System32\WinSCard.dll - ok
15:21:15.0671 0672 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
15:21:15.0671 0672 C:\Windows\SysWOW64\ntdsapi.dll - ok
15:21:15.0671 0672 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:21:15.0671 0672 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:21:15.0671 0672 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:21:15.0671 0672 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:21:15.0686 0672 [ 7493EA4DE41348F7D3EDBF9DB298F56A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:21:15.0686 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
15:21:15.0686 0672 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:21:15.0686 0672 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:21:15.0686 0672 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
15:21:15.0686 0672 C:\Windows\SysWOW64\mscoree.dll - ok
15:21:15.0686 0672 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:21:15.0686 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:21:15.0686 0672 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
15:21:15.0686 0672 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
15:21:15.0686 0672 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
15:21:15.0686 0672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
15:21:15.0686 0672 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:21:15.0686 0672 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:21:15.0686 0672 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
15:21:15.0686 0672 C:\Windows\System32\ncobjapi.dll - ok
15:21:15.0702 0672 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
15:21:15.0702 0672 C:\Windows\System32\wbem\wbemess.dll - ok
15:21:15.0702 0672 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:21:15.0702 0672 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:21:15.0702 0672 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
15:21:15.0702 0672 C:\Windows\System32\wbem\cimwin32.dll - ok
15:21:15.0702 0672 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
15:21:15.0702 0672 C:\Windows\System32\dssenh.dll - ok
15:21:15.0702 0672 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
15:21:15.0702 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
15:21:15.0702 0672 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
15:21:15.0702 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
15:21:15.0702 0672 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
15:21:15.0702 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
15:21:15.0717 0672 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
15:21:15.0717 0672 C:\Windows\System32\PlaySndSrv.dll - ok
15:21:15.0717 0672 [ 40F55C563961C01C466E011B6AA61E27 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
15:21:15.0717 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
15:21:15.0717 0672 [ 23EA22ACADD66D7F1E18A4AA72BE6158 ] C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
15:21:15.0717 0672 C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe - ok
15:21:15.0717 0672 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
15:21:15.0717 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
15:21:15.0717 0672 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
15:21:15.0717 0672 C:\Windows\System32\fundisc.dll - ok
15:21:15.0717 0672 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
15:21:15.0717 0672 C:\Windows\System32\HotStartUserAgent.dll - ok
15:21:15.0717 0672 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
15:21:15.0717 0672 C:\Windows\System32\IPBusEnum.dll - ok
15:21:15.0717 0672 [ 7FF74FECE8C0E7B0207D3629AE2A3D16 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
15:21:15.0717 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
15:21:15.0733 0672 [ 1F4070CD7B8AFFC4E8E4204277ABBC0D ] C:\Program Files\Common Files\McAfee\SystemCore\lockdown.dll
15:21:15.0733 0672 C:\Program Files\Common Files\McAfee\SystemCore\lockdown.dll - ok
15:21:15.0733 0672 [ 295657F93F6B19DEEA804048E1CB4FF9 ] C:\Windows\System32\lz32.dll
15:21:15.0733 0672 C:\Windows\System32\lz32.dll - ok
15:21:15.0733 0672 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
15:21:15.0733 0672 C:\Windows\System32\MsCtfMonitor.dll - ok
15:21:15.0733 0672 [ B2F557D8A8DE88CD5A5241DE740CBA28 ] C:\Program Files\Common Files\McAfee\SystemCore\mytilus3.dll
15:21:15.0733 0672 C:\Program Files\Common Files\McAfee\SystemCore\mytilus3.dll - ok
15:21:15.0733 0672 [ EA866D30F01676C3BE9FA83888DF8A02 ] C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_worker.dll
15:21:15.0733 0672 C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_worker.dll - ok
15:21:15.0733 0672 [ 992D1AA9D6B8B36F975509A1F878447A ] C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_server.dll
15:21:15.0733 0672 C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_server.dll - ok
15:21:15.0733 0672 [ BAE7CF8793626723452C2F3E966BE2EA ] C:\Program Files\Common Files\McAfee\SystemCore\mcshield.dll
15:21:15.0733 0672 C:\Program Files\Common Files\McAfee\SystemCore\mcshield.dll - ok
15:21:15.0733 0672 [ B37B3C1A2B92921CBC0A460A07324298 ] C:\Program Files\Common Files\McAfee\SystemCore\ftl.dll
15:21:15.0733 0672 C:\Program Files\Common Files\McAfee\SystemCore\ftl.dll - ok
15:21:15.0749 0672 [ 3E5B586603599C04C2F44C56CA37744A ] C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll
15:21:15.0749 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll - ok
15:21:15.0749 0672 [ 3CBBB569730EFD069B4BD253DDD4AD58 ] C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
15:21:15.0749 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe - ok
15:21:15.0749 0672 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] C:\Windows\System32\Mcx2Svc.dll
15:21:15.0749 0672 C:\Windows\System32\Mcx2Svc.dll - ok
15:21:15.0749 0672 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
15:21:15.0749 0672 C:\Windows\System32\wmi.dll - ok
15:21:15.0749 0672 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
15:21:15.0749 0672 C:\Windows\ehome\ehtrace.dll - ok
15:21:15.0749 0672 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
15:21:15.0749 0672 C:\Windows\System32\fdPnp.dll - ok
15:21:15.0749 0672 [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
15:21:15.0749 0672 C:\Windows\SysWOW64\urlmon.dll - ok
15:21:15.0749 0672 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
15:21:15.0749 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:21:15.0764 0672 [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:21:15.0764 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:21:15.0764 0672 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
15:21:15.0764 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:21:15.0764 0672 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
15:21:15.0764 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:21:15.0764 0672 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
15:21:15.0764 0672 C:\Windows\System32\fdProxy.dll - ok
15:21:15.0764 0672 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
15:21:15.0764 0672 C:\Windows\System32\dwm.exe - ok
15:21:15.0780 0672 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
15:21:15.0780 0672 C:\Windows\System32\dwmcore.dll - ok
15:21:15.0780 0672 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
15:21:15.0780 0672 C:\Windows\System32\dwmredir.dll - ok
15:21:15.0780 0672 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
15:21:15.0780 0672 C:\Windows\System32\framedynos.dll - ok
15:21:15.0780 0672 [ 140B7A235B0623D3891BEC74D633CBEC ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ssleay32.dll
15:21:15.0780 0672 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ssleay32.dll - ok
15:21:15.0780 0672 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
15:21:15.0780 0672 C:\Windows\System32\d3d10_1.dll - ok
15:21:15.0780 0672 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
15:21:15.0780 0672 C:\Windows\System32\msutb.dll - ok
15:21:15.0780 0672 [ 5225207BDE8C090CE92A18C61180650C ] C:\Windows\System32\vdsldr.exe
15:21:15.0780 0672 C:\Windows\System32\vdsldr.exe - ok
15:21:15.0795 0672 [ B6F9B45112E56992EF3EFA369FB7F047 ] C:\Windows\System32\vdsutil.dll
15:21:15.0795 0672 C:\Windows\System32\vdsutil.dll - ok
15:21:15.0795 0672 [ 94082E1E52D8BC63F4D6F57E8CD4E4F9 ] C:\Windows\System32\vds_ps.dll
15:21:15.0795 0672 C:\Windows\System32\vds_ps.dll - ok
15:21:15.0795 0672 [ F509B44D94DB9C832CA26297BE0CC04D ] C:\Windows\SysWOW64\vds_ps.dll
15:21:15.0795 0672 C:\Windows\SysWOW64\vds_ps.dll - ok
15:21:15.0795 0672 [ B6F1513C78CC8ECE1AC2B74C8206F025 ] C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll
15:21:15.0795 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll - ok
15:21:15.0795 0672 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
15:21:15.0795 0672 C:\Windows\System32\d3d10_1core.dll - ok
15:21:15.0795 0672 [ 89002AFDEA5BFF12CF92A1007B584998 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\libeay32.dll
15:21:15.0795 0672 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\libeay32.dll - ok
15:21:15.0811 0672 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
15:21:15.0811 0672 C:\Windows\SysWOW64\netapi32.dll - ok
15:21:15.0811 0672 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
15:21:15.0811 0672 C:\Windows\SysWOW64\netutils.dll - ok
15:21:15.0811 0672 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
15:21:15.0811 0672 C:\Windows\SysWOW64\srvcli.dll - ok
15:21:15.0811 0672 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
15:21:15.0811 0672 C:\Windows\SysWOW64\wkscli.dll - ok
15:21:15.0811 0672 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
15:21:15.0811 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
15:21:15.0811 0672 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
15:21:15.0811 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
15:21:15.0827 0672 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
15:21:15.0827 0672 C:\Windows\System32\dxgi.dll - ok
15:21:15.0827 0672 [ 56816AC3D7998B33A868FBE3117448FC ] C:\Windows\System32\atidxx64.dll
15:21:15.0827 0672 C:\Windows\System32\atidxx64.dll - ok
15:21:15.0827 0672 [ 49F9973C0745C42E0D974AEB75A5DAF2 ] C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll
15:21:15.0827 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll - ok
15:21:15.0827 0672 [ 494DC8A189A5191BB9F8B527C0369901 ] C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll
15:21:15.0827 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll - ok
15:21:15.0827 0672 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
15:21:15.0827 0672 C:\Windows\System32\uDWM.dll - ok
15:21:15.0827 0672 [ 7760899D95C2D1AAC5C1D34AF41A11C7 ] C:\Program Files\McAfee\VirusScan\Engine\5500.1093\mscan64a.dll
15:21:15.0827 0672 C:\Program Files\McAfee\VirusScan\Engine\5500.1093\mscan64a.dll - ok
15:21:15.0842 0672 [ A62EDFFE66C0D7916D73A6DE75758024 ] C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll
15:21:15.0842 0672 C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll - ok
15:21:15.0842 0672 [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Windows\System32\atl100.dll
15:21:15.0842 0672 C:\Windows\System32\atl100.dll - ok
15:21:15.0842 0672 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Windows\System32\msvcp100.dll
15:21:15.0842 0672 C:\Windows\System32\msvcp100.dll - ok
15:21:15.0842 0672 [ 2DBB4E43F9553756350947E4AF41F9C4 ] C:\PROGRA~1\McAfee\MSK\msksrvr.dll
15:21:15.0842 0672 C:\PROGRA~1\McAfee\MSK\msksrvr.dll - ok
15:21:15.0842 0672 [ 7625F3667DFC3B00B8BFFCA013B99E42 ] C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll
15:21:15.0842 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll - ok
15:21:15.0842 0672 [ C97C8EC408AC6F2453EB9417E5EF355A ] C:\Program Files\Common Files\McAfee\MSC\McRTMui.dll
15:21:15.0842 0672 C:\Program Files\Common Files\McAfee\MSC\McRTMui.dll - ok
15:21:15.0842 0672 [ 57FA62B72A77EA12B95EB73501D92B63 ] C:\Program Files\Common Files\McAfee\MSC\LangSel.dll
15:21:15.0842 0672 C:\Program Files\Common Files\McAfee\MSC\LangSel.dll - ok
15:21:15.0858 0672 [ 75F40B422E78C5B9D4D0A59EC0AA2B38 ] C:\PROGRA~1\McAfee\MPS\mps.dll
15:21:15.0858 0672 C:\PROGRA~1\McAfee\MPS\mps.dll - ok
15:21:15.0858 0672 [ 1FA5C7F6E7296AEC651489AD07BAB866 ] C:\PROGRA~1\McAfee\MPS\mpscfg.dll
15:21:15.0858 0672 C:\PROGRA~1\McAfee\MPS\mpscfg.dll - ok
15:21:15.0858 0672 [ 8A80968A897BCFC38512AEE1D7B73501 ] C:\PROGRA~1\McAfee\MSK\mskengn.dll
15:21:15.0858 0672 C:\PROGRA~1\McAfee\MSK\mskengn.dll - ok
15:21:15.0858 0672 [ 1CD479BBDB6714D58C76B26912FF2327 ] C:\PROGRA~1\McAfee\MSK\mskupd.dll
15:21:15.0858 0672 C:\PROGRA~1\McAfee\MSK\mskupd.dll - ok
15:21:15.0858 0672 [ 19B8FEB9455D9D63425514271F5752E6 ] C:\PROGRA~1\McAfee\MSC\mclwapi.dll
15:21:15.0858 0672 C:\PROGRA~1\McAfee\MSC\mclwapi.dll - ok
15:21:15.0858 0672 [ 254C46A466484D4169DFF44B29F6A979 ] C:\PROGRA~1\COMMON~1\McAfee\MSC\mcutil\11_6_2~1\mcutil.dll
15:21:15.0858 0672 C:\PROGRA~1\COMMON~1\McAfee\MSC\mcutil\11_6_2~1\mcutil.dll - ok
15:21:15.0858 0672 [ 89E9ABC86EB600565D24516B170B0E39 ] C:\PROGRA~1\McAfee\MSK\mskwm.dll
15:21:15.0858 0672 C:\PROGRA~1\McAfee\MSK\mskwm.dll - ok
15:21:15.0873 0672 [ 4742F810686D2C7883CD69036CE15542 ] C:\PROGRA~1\McAfee\MSK\mskxaif.dll
15:21:15.0873 0672 C:\PROGRA~1\McAfee\MSK\mskxaif.dll - ok
15:21:15.0873 0672 [ 8ED06C74B9BC9CE0E24EA0CB0C5CF2A7 ] C:\PROGRA~1\COMMON~1\McAfee\Core\McEvtBrk.dll
15:21:15.0873 0672 C:\PROGRA~1\COMMON~1\McAfee\Core\McEvtBrk.dll - ok
15:21:15.0873 0672 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
15:21:15.0873 0672 C:\Windows\System32\netcfgx.dll - ok
15:21:15.0873 0672 [ 9FFD32E56D61E1514892EB170186DC0A ] C:\PROGRA~1\McAfee\MPS\mpsevh.dll
15:21:15.0873 0672 C:\PROGRA~1\McAfee\MPS\mpsevh.dll - ok
15:21:15.0873 0672 [ 5E3FDBD96C880A600C7E4B60D091D4E1 ] C:\PROGRA~1\McAfee\MPS\MPSMisp.dll
15:21:15.0873 0672 C:\PROGRA~1\McAfee\MPS\MPSMisp.dll - ok
15:21:15.0873 0672 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
15:21:15.0873 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
15:21:15.0889 0672 [ E8969A2864A30B2168F25A896088DE10 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
15:21:15.0889 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
15:21:15.0889 0672 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
15:21:15.0889 0672 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
15:21:15.0889 0672 [ 19323081FA4018C9C1AEBF08114BEA11 ] C:\Windows\System32\drivers\mfeapfk.sys
15:21:15.0889 0672 C:\Windows\System32\drivers\mfeapfk.sys - ok
15:21:15.0889 0672 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
15:21:15.0889 0672 C:\Windows\System32\taskeng.exe - ok
15:21:15.0889 0672 [ 7E964A50D95F0BDE2472EF6A77D5B33E ] C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll
15:21:15.0889 0672 C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll - ok
15:21:15.0889 0672 [ D0FFF1F89431A60A2CC077452B53A50D ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
15:21:15.0889 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
15:21:15.0889 0672 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
15:21:15.0889 0672 C:\Windows\System32\localspl.dll - ok
15:21:15.0905 0672 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
15:21:15.0905 0672 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
15:21:15.0905 0672 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
15:21:15.0905 0672 C:\Windows\System32\spoolss.dll - ok
15:21:15.0905 0672 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
15:21:15.0905 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
15:21:15.0905 0672 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
15:21:15.0905 0672 C:\Windows\System32\PrintIsolationProxy.dll - ok
15:21:15.0905 0672 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
15:21:15.0905 0672 C:\Windows\System32\winspool.drv - ok
15:21:15.0905 0672 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
15:21:15.0905 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
15:21:15.0920 0672 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
15:21:15.0920 0672 C:\Windows\System32\FXSMON.dll - ok
15:21:15.0920 0672 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
15:21:15.0920 0672 C:\Windows\System32\hpz3lw71.dll - ok
15:21:15.0920 0672 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
15:21:15.0920 0672 C:\Windows\System32\snmpapi.dll - ok
15:21:15.0920 0672 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
15:21:15.0920 0672 C:\Windows\System32\tcpmon.dll - ok
15:21:15.0920 0672 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
15:21:15.0920 0672 C:\Windows\System32\TSChannel.dll - ok
15:21:15.0920 0672 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
15:21:15.0920 0672 C:\Windows\System32\wsnmp32.dll - ok
15:21:15.0936 0672 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:21:15.0936 0672 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:21:15.0936 0672 [ 9C49165F7D6C2E1FCA69236C564B457E ] C:\PROGRA~2\McAfee\SITEAD~1\saOemMgr.exe
15:21:15.0936 0672 C:\PROGRA~2\McAfee\SITEAD~1\saOemMgr.exe - ok
15:21:15.0936 0672 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
15:21:15.0936 0672 C:\Windows\System32\usbmon.dll - ok
15:21:15.0936 0672 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
15:21:15.0936 0672 C:\Windows\System32\WSDMon.dll - ok
15:21:15.0936 0672 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:21:15.0936 0672 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:21:15.0936 0672 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
15:21:15.0936 0672 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
15:21:15.0951 0672 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
15:21:15.0951 0672 C:\Windows\System32\wpdbusenum.dll - ok
15:21:15.0951 0672 [ 8D6B481601D01A456E75C3210F1830BE ] C:\Windows\System32\vds.exe
15:21:15.0951 0672 C:\Windows\System32\vds.exe - ok
15:21:15.0951 0672 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
15:21:15.0951 0672 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
15:21:15.0951 0672 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
15:21:15.0951 0672 C:\Windows\System32\win32spl.dll - ok
15:21:15.0951 0672 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
15:21:15.0951 0672 C:\Windows\System32\inetpp.dll - ok
15:21:15.0951 0672 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
15:21:15.0951 0672 C:\Windows\SysWOW64\ncrypt.dll - ok
15:21:15.0951 0672 [ 38A834E92B90146C4CB0154B23CD9538 ] C:\PROGRA~2\McAfee\SITEAD~1\saUI.exe
15:21:15.0951 0672 C:\PROGRA~2\McAfee\SITEAD~1\saUI.exe - ok
15:21:15.0967 0672 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
15:21:15.0967 0672 C:\Windows\System32\PortableDeviceApi.dll - ok
15:21:15.0967 0672 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
15:21:15.0967 0672 C:\Windows\SysWOW64\bcrypt.dll - ok
15:21:15.0967 0672 [ 020DDBA420E020F84BDEDCC8C65B3A56 ] C:\Windows\System32\osuninst.dll
15:21:15.0967 0672 C:\Windows\System32\osuninst.dll - ok
15:21:15.0967 0672 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:21:15.0967 0672 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:21:15.0967 0672 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:21:15.0967 0672 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:21:15.0967 0672 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
15:21:15.0983 0672 C:\Windows\SysWOW64\msi.dll - ok
15:21:15.0983 0672 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
15:21:15.0983 0672 C:\Windows\System32\appinfo.dll - ok
15:21:15.0983 0672 [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
15:21:15.0983 0672 C:\Windows\System32\certprop.dll - ok
15:21:15.0983 0672 [ E060CAF6D6C303A2C9BC13435F7F81A1 ] C:\Windows\System32\ifsutil.dll
15:21:15.0983 0672 C:\Windows\System32\ifsutil.dll - ok
15:21:15.0983 0672 [ 3D1AE0543DD9FBA55409BF0A5103CA3D ] C:\Windows\System32\uexfat.dll
15:21:15.0983 0672 C:\Windows\System32\uexfat.dll - ok
15:21:15.0983 0672 [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
15:21:15.0983 0672 C:\Windows\System32\ulib.dll - ok
15:21:15.0998 0672 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
15:21:15.0998 0672 C:\Windows\System32\aelupsvc.dll - ok
15:21:15.0998 0672 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
15:21:15.0998 0672 C:\Windows\System32\drivers\WUDFPf.sys - ok
15:21:15.0998 0672 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
15:21:15.0998 0672 C:\Windows\System32\hidserv.dll - ok
15:21:15.0998 0672 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
15:21:15.0998 0672 C:\Windows\System32\NapiNSP.dll - ok
15:21:15.0998 0672 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
15:21:15.0998 0672 C:\Windows\System32\wdi.dll - ok
15:21:15.0998 0672 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
15:21:15.0998 0672 C:\Windows\System32\WUDFSvc.dll - ok
15:21:15.0998 0672 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
15:21:15.0998 0672 C:\Windows\System32\pnrpnsp.dll - ok
15:21:16.0014 0672 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
15:21:16.0014 0672 C:\Windows\System32\winrnr.dll - ok
15:21:16.0014 0672 [ C3804346CDF9A8744084EEBA6BA739AF ] C:\Windows\System32\uudf.dll
15:21:16.0014 0672 C:\Windows\System32\uudf.dll - ok
15:21:16.0014 0672 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
15:21:16.0014 0672 C:\Windows\System32\WUDFHost.exe - ok
15:21:16.0014 0672 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
15:21:16.0014 0672 C:\Windows\SysWOW64\gpapi.dll - ok
15:21:16.0014 0672 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
15:21:16.0014 0672 C:\Windows\SysWOW64\cryptnet.dll - ok
15:21:16.0014 0672 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
15:21:16.0014 0672 C:\Windows\System32\diagperf.dll - ok
15:21:16.0029 0672 [ 0B6231BF38174A1628C4AC812CC75804 ] C:\Windows\System32\SessEnv.dll
15:21:16.0029 0672 C:\Windows\System32\SessEnv.dll - ok
15:21:16.0029 0672 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
15:21:16.0029 0672 C:\Windows\System32\perftrack.dll - ok
15:21:16.0029 0672 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
15:21:16.0029 0672 C:\Windows\SysWOW64\cscapi.dll - ok
15:21:16.0029 0672 [ B4CE0CAB186EBF4DF54BD34B4F0C0A06 ] C:\Windows\System32\untfs.dll
15:21:16.0029 0672 C:\Windows\System32\untfs.dll - ok
15:21:16.0029 0672 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
15:21:16.0029 0672 C:\Windows\SysWOW64\dbghelp.dll - ok
15:21:16.0029 0672 [ B89910DBAD3A7C4782ECFD5F582D37D3 ] C:\PROGRA~1\McAfee\MSC\mcmscsub.dll
15:21:16.0029 0672 C:\PROGRA~1\McAfee\MSC\mcmscsub.dll - ok
15:21:16.0045 0672 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
15:21:16.0045 0672 C:\Windows\System32\Apphlpdm.dll - ok
15:21:16.0045 0672 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
15:21:16.0045 0672 C:\Windows\System32\pnpts.dll - ok
15:21:16.0045 0672 [ CC37D9A25FF8D8CF12FC2F512C100F45 ] C:\Windows\System32\ufat.dll
15:21:16.0045 0672 C:\Windows\System32\ufat.dll - ok
15:21:16.0045 0672 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
15:21:16.0045 0672 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
15:21:16.0045 0672 [ 491DA8248209835532DAABF18B0215DA ] C:\Windows\System32\fmifs.dll
15:21:16.0045 0672 C:\Windows\System32\fmifs.dll - ok
15:21:16.0045 0672 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
15:21:16.0045 0672 C:\Windows\System32\radardt.dll - ok
15:21:16.0061 0672 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
15:21:16.0061 0672 C:\Windows\System32\wdiasqmmodule.dll - ok
15:21:16.0061 0672 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
15:21:16.0061 0672 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
15:21:16.0061 0672 [ FFB6E1AACCF286EBD549DFDAA93BC940 ] C:\PROGRA~1\McAfee\MSC\mcregobj\11_6_4~1\mcregobj.dll
15:21:16.0061 0672 C:\PROGRA~1\McAfee\MSC\mcregobj\11_6_4~1\mcregobj.dll - ok
15:21:16.0061 0672 [ D065827C0915CCBA48D47B4E4F855E54 ] C:\Program Files\McAfee\MSC\mcoemres.dll
15:21:16.0061 0672 C:\Program Files\McAfee\MSC\mcoemres.dll - ok
15:21:16.0061 0672 [ 432BE6CF7311062633459EEF6B242FB5 ] C:\Windows\SysWOW64\regsvr32.exe
15:21:16.0061 0672 C:\Windows\SysWOW64\regsvr32.exe - ok
15:21:16.0061 0672 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
15:21:16.0061 0672 C:\Windows\System32\dimsjob.dll - ok
15:21:16.0076 0672 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
15:21:16.0076 0672 C:\Windows\System32\runonce.exe - ok
15:21:16.0076 0672 [ 1565AEDA55469D030E35801ECD17E1A5 ] C:\PROGRA~1\COMMON~1\McAfee\Core\mccoreps.dll
15:21:16.0076 0672 C:\PROGRA~1\COMMON~1\McAfee\Core\mccoreps.dll - ok
15:21:16.0076 0672 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
15:21:16.0076 0672 C:\Windows\System32\npmproxy.dll - ok
15:21:16.0076 0672 [ 86F8145F5FD182F8C36337A351889F92 ] C:\Windows\System32\vdsdyn.dll
15:21:16.0076 0672 C:\Windows\System32\vdsdyn.dll - ok
15:21:16.0076 0672 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
15:21:16.0076 0672 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
15:21:16.0076 0672 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
15:21:16.0076 0672 C:\Windows\System32\WUDFx.dll - ok
15:21:16.0092 0672 [ AC3D7EE5F9EC2AB4BE0CDDE362D026A4 ] C:\Windows\System32\vdsbas.dll
15:21:16.0092 0672 C:\Windows\System32\vdsbas.dll - ok
15:21:16.0092 0672 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
15:21:16.0092 0672 C:\Windows\SysWOW64\runonce.exe - ok
15:21:16.0092 0672 [ A444C15772749F572E61DAFED66F51C4 ] C:\Program Files\McAfee\MSC\oemui.dll
15:21:16.0092 0672 C:\Program Files\McAfee\MSC\oemui.dll - ok
15:21:16.0092 0672 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
15:21:16.0092 0672 C:\Windows\System32\WMVCORE.DLL - ok
15:21:16.0092 0672 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
15:21:16.0092 0672 C:\Windows\AppPatch\AcGenral.dll - ok
15:21:16.0092 0672 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
15:21:16.0092 0672 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
15:21:16.0092 0672 [ 3C5AE07EECF8CF0A69E0D9E9AB3D06C1 ] C:\Program Files\McAfee\MSC\mcprlres.dll
15:21:16.0092 0672 C:\Program Files\McAfee\MSC\mcprlres.dll - ok
15:21:16.0107 0672 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
15:21:16.0107 0672 C:\Windows\SysWOW64\mstask.dll - ok
15:21:16.0107 0672 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
15:21:16.0107 0672 C:\Windows\System32\dbghelp.dll - ok
15:21:16.0107 0672 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
15:21:16.0107 0672 C:\Windows\SysWOW64\propsys.dll - ok
15:21:16.0107 0672 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
15:21:16.0107 0672 C:\Windows\SysWOW64\samcli.dll - ok
15:21:16.0107 0672 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
15:21:16.0107 0672 C:\Windows\SysWOW64\msacm32.dll - ok
15:21:16.0123 0672 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
15:21:16.0123 0672 C:\Windows\SysWOW64\sfc.dll - ok
15:21:16.0123 0672 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
15:21:16.0123 0672 C:\Windows\SysWOW64\sfc_os.dll - ok
15:21:16.0123 0672 [ 59BCE9F07985F8A4204F4D6554CFF708 ] C:\Windows\System32\regsvr32.exe
15:21:16.0123 0672 C:\Windows\System32\regsvr32.exe - ok
15:21:16.0123 0672 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
15:21:16.0123 0672 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
15:21:16.0123 0672 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
15:21:16.0123 0672 C:\Windows\System32\WMASF.DLL - ok
15:21:16.0123 0672 [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
15:21:16.0123 0672 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
15:21:16.0123 0672 [ AA59306D5EB1D78E0911183B3AFBC6F5 ] C:\PROGRA~1\COMMON~1\McAfee\MSC\sqlite3.dll
15:21:16.0123 0672 C:\PROGRA~1\COMMON~1\McAfee\MSC\sqlite3.dll - ok
15:21:16.0139 0672 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
15:21:16.0139 0672 C:\Windows\System32\fltLib.dll - ok
15:21:16.0139 0672 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
15:21:16.0139 0672 C:\Windows\System32\PortableDeviceTypes.dll - ok
15:21:16.0139 0672 [ D2D154D1842219A0620459C3C34EFD9D ] C:\Windows\System32\vdsvd.dll
15:21:16.0139 0672 C:\Windows\System32\vdsvd.dll - ok
15:21:16.0139 0672 [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
15:21:16.0139 0672 C:\Windows\System32\virtdisk.dll - ok
15:21:16.0139 0672 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
15:21:16.0139 0672 C:\Windows\SysWOW64\secur32.dll - ok
15:21:16.0139 0672 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
15:21:16.0139 0672 C:\Windows\SysWOW64\cmd.exe - ok
15:21:16.0154 0672 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
15:21:16.0154 0672 C:\Windows\System32\conhost.exe - ok
15:21:16.0154 0672 [ C418F8085C61D3B6911EE82157CA3775 ] C:\Windows\System32\hbaapi.dll
15:21:16.0154 0672 C:\Windows\System32\hbaapi.dll - ok
15:21:16.0154 0672 [ C97BBC1F50B859CD729DD8FED715CCB1 ] C:\Windows\System32\drivers\UMDF\WpdMtpDr.dll
15:21:16.0154 0672 C:\Windows\System32\drivers\UMDF\WpdMtpDr.dll - ok
15:21:16.0154 0672 [ 5D0F03EEF3205F66ECFBE72A7CBBAD1F ] C:\Windows\System32\winusb.dll
15:21:16.0154 0672 C:\Windows\System32\winusb.dll - ok
15:21:16.0154 0672 [ 8AF921B8072B495E02E42825D7D3AEC2 ] C:\Windows\System32\WpdMtp.dll
15:21:16.0154 0672 C:\Windows\System32\WpdMtp.dll - ok
15:21:16.0154 0672 [ 8652C38F5028E1E987DAD6FBEF4DA55F ] C:\Windows\System32\WpdMtpUS.dll
15:21:16.0154 0672 C:\Windows\System32\WpdMtpUS.dll - ok
15:21:16.0154 0672 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
15:21:16.0154 0672 C:\Windows\System32\actxprxy.dll - ok
15:21:16.0170 0672 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
15:21:16.0170 0672 C:\Windows\System32\wsdchngr.dll - ok
15:21:16.0170 0672 [ 9CC775039F97621927B06352F0B7346B ] C:\Windows\System32\PortableDeviceWiaCompat.dll
15:21:16.0170 0672 C:\Windows\System32\PortableDeviceWiaCompat.dll - ok
15:21:16.0170 0672 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
15:21:16.0170 0672 C:\Windows\SysWOW64\winbrand.dll - ok
15:21:16.0170 0672 [ 5FC0D3B6A145DCB0274541F7F6C0A400 ] C:\PROGRA~2\McAfee\SITEAD~1\x64\McBrwCtl.dll
15:21:16.0170 0672 C:\PROGRA~2\McAfee\SITEAD~1\x64\McBrwCtl.dll - ok
15:21:16.0170 0672 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
15:21:16.0170 0672 C:\Windows\System32\wbem\wmiprov.dll - ok
15:21:16.0170 0672 [ 7E2EB3A4AE11190EF4C8A9B9A9123234 ] C:\Windows\System32\DeviceDisplayObjectProvider.exe
15:21:16.0170 0672 C:\Windows\System32\DeviceDisplayObjectProvider.exe - ok
15:21:16.0185 0672 [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
15:21:16.0185 0672 C:\Windows\SysWOW64\ieframe.dll - ok
15:21:16.0185 0672 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
15:21:16.0185 0672 C:\Windows\System32\iscsidsc.dll - ok
15:21:16.0185 0672 [ 22D98BF27F3DAE2B3E9559B9C40D49A1 ] C:\Windows\System32\iscsium.dll
15:21:16.0185 0672 C:\Windows\System32\iscsium.dll - ok
15:21:16.0185 0672 [ D56D9920713D72C9A3DA697FF6DAFB1D ] C:\PROGRA~2\McAfee\SITEAD~1\x64\McIEPlg.dll
15:21:16.0185 0672 C:\PROGRA~2\McAfee\SITEAD~1\x64\McIEPlg.dll - ok
15:21:16.0185 0672 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
15:21:16.0185 0672 C:\Windows\System32\msimg32.dll - ok
15:21:16.0185 0672 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
15:21:16.0185 0672 C:\Windows\System32\ntprint.dll - ok
15:21:16.0185 0672 [ F41831D2A3D6E2152525EA3F75316ACD ] C:\Windows\System32\wpd_ci.dll
15:21:16.0185 0672 C:\Windows\System32\wpd_ci.dll - ok
15:21:16.0201 0672 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
15:21:16.0201 0672 C:\Windows\System32\cabinet.dll - ok
15:21:16.0201 0672 [ 8D88F7083A9195BCF8B04C88E275A978 ] C:\Windows\System32\dmrc.dll
15:21:16.0201 0672 C:\Windows\System32\dmrc.dll - ok
15:21:16.0201 0672 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
15:21:16.0201 0672 C:\Windows\SysWOW64\oleacc.dll - ok
15:21:16.0201 0672 [ BBF9112CB6F98BA498A59FFEEA177178 ] C:\Windows\System32\DDORes.dll
15:21:16.0201 0672 C:\Windows\System32\DDORes.dll - ok
15:21:16.0201 0672 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
15:21:16.0201 0672 C:\Windows\SysWOW64\shdocvw.dll - ok
15:21:16.0201 0672 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Diz\AppData\Local\Temp\4684D260-BB6B-4345-8166-CDDF3BE72978.exe
15:21:16.0201 0672 C:\Users\Diz\AppData\Local\Temp\4684D260-BB6B-4345-8166-CDDF3BE72978.exe - ok
15:21:16.0201 0672 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
15:21:16.0201 0672 C:\Windows\System32\bthprops.cpl - ok
15:21:16.0217 0672 [ 21BA4C7EB740C697451EF0941DDD2F5F ] C:\Windows\System32\fdBth.dll
15:21:16.0217 0672 C:\Windows\System32\fdBth.dll - ok
15:21:16.0217 0672 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
15:21:16.0217 0672 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
15:21:16.0217 0672 [ EEAAA8F44C7DAD4D1131B0705BEC6FD4 ] C:\Windows\System32\fdprint.dll
15:21:16.0217 0672 C:\Windows\System32\fdprint.dll - ok
15:21:16.0217 0672 [ A1CDE92DDC170D307DB3C5BAA348811B ] C:\Windows\System32\prncache.dll
15:21:16.0217 0672 C:\Windows\System32\prncache.dll - ok
15:21:16.0217 0672 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
15:21:16.0217 0672 C:\Windows\SysWOW64\EhStorShell.dll - ok
15:21:16.0217 0672 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:21:16.0217 0672 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:21:16.0217 0672 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
15:21:16.0217 0672 C:\Windows\SysWOW64\ntshrui.dll - ok
15:21:16.0232 0672 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
15:21:16.0232 0672 C:\Windows\SysWOW64\slc.dll - ok
15:21:16.0232 0672 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
15:21:16.0232 0672 C:\Windows\SysWOW64\imageres.dll - ok
15:21:16.0232 0672 [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
15:21:16.0232 0672 C:\Program Files\Internet Explorer\ieproxy.dll - ok
15:21:16.0232 0672 [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll
15:21:16.0232 0672 C:\Windows\System32\wpdshext.dll - ok
15:21:16.0232 0672 [ DACEAA108D78054D14B29E9DEEDEC265 ] C:\PROGRA~2\McAfee\SITEAD~1\saSubMgr.dll
15:21:16.0232 0672 C:\PROGRA~2\McAfee\SITEAD~1\saSubMgr.dll - ok
15:21:16.0232 0672 [ ADC02773875F9813EB67798F77D344DB ] C:\PROGRA~2\McAfee\SITEAD~1\saplugin.dll
15:21:16.0232 0672 C:\PROGRA~2\McAfee\SITEAD~1\saplugin.dll - ok
15:21:16.0248 0672 [ 96A6697BE287BE007B8307BA35175551 ] C:\PROGRA~2\McAfee\SITEAD~1\mcbrwctl.dll
15:21:16.0248 0672 C:\PROGRA~2\McAfee\SITEAD~1\mcbrwctl.dll - ok
15:21:16.0248 0672 [ 413C38653015CD8DA2612436685DC2E9 ] C:\PROGRA~2\McAfee\SITEAD~1\McIEPlg.dll
15:21:16.0248 0672 C:\PROGRA~2\McAfee\SITEAD~1\McIEPlg.dll - ok
15:21:16.0248 0672 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
15:21:16.0248 0672 C:\Windows\SysWOW64\msimg32.dll - ok
15:21:16.0248 0672 [ 77B31F68988E3CE16D49313A3B67C49F ] C:\Program Files (x86)\McAfee\SiteAdvisor\McSACorePS.dll
15:21:16.0248 0672 C:\Program Files (x86)\McAfee\SiteAdvisor\McSACorePS.dll - ok
15:21:16.0248 0672 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
15:21:16.0248 0672 C:\Windows\SysWOW64\devrtl.dll - ok
15:21:16.0248 0672 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
15:21:16.0248 0672 C:\Windows\System32\ie4uinit.exe - ok
15:21:16.0263 0672 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
15:21:16.0263 0672 C:\Windows\System32\iedkcs32.dll - ok
15:21:16.0263 0672 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
15:21:16.0263 0672 C:\Windows\System32\timedate.cpl - ok
15:21:16.0263 0672 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
15:21:16.0263 0672 C:\Windows\SysWOW64\credssp.dll - ok
15:21:16.0263 0672 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
15:21:16.0263 0672 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
15:21:16.0263 0672 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
15:21:16.0263 0672 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
15:21:16.0263 0672 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
15:21:16.0263 0672 C:\Windows\SysWOW64\dnsapi.dll - ok
15:21:16.0279 0672 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
15:21:16.0279 0672 C:\Windows\SysWOW64\rasadhlp.dll - ok
15:21:16.0279 0672 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
15:21:16.0279 0672 C:\Windows\SysWOW64\wship6.dll - ok
15:21:16.0279 0672 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
15:21:16.0279 0672 C:\Windows\System32\shdocvw.dll - ok
15:21:16.0279 0672 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
15:21:16.0279 0672 C:\Windows\System32\linkinfo.dll - ok
15:21:16.0279 0672 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
15:21:16.0279 0672 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
15:21:16.0279 0672 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
15:21:16.0279 0672 C:\Windows\System32\msftedit.dll - ok
15:21:16.0279 0672 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:21:16.0279 0672 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:21:16.0295 0672 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
15:21:16.0295 0672 C:\Windows\System32\msls31.dll - ok
15:21:16.0295 0672 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
15:21:16.0295 0672 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
15:21:16.0295 0672 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
15:21:16.0295 0672 C:\Windows\System32\gameux.dll - ok
15:21:16.0295 0672 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
15:21:16.0295 0672 C:\Windows\System32\DeviceCenter.dll - ok
15:21:16.0295 0672 [ 08E5D3F98F80E5B7A2E965DFD42C4D21 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:21:16.0295 0672 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
15:21:16.0295 0672 [ ED43758BF94B8A5221D69F1B7F63F13D ] C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
15:21:16.0295 0672 C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe - ok
15:21:16.0310 0672 [ 044EEC41BB39C3F8FC6175DAEAADDB35 ] C:\Windows\System32\EptMon64.dll
15:21:16.0310 0672 C:\Windows\System32\EptMon64.dll - ok
15:21:16.0310 0672 [ 76B59C460C95503032E35F00BE125F7D ] C:\Windows\System32\THXCfg64.dll
15:21:16.0310 0672 C:\Windows\System32\THXCfg64.dll - ok
15:21:16.0310 0672 [ BFB3091B167550EC6E6454813D3DB244 ] C:\Windows\System32\xinput1_3.dll
15:21:16.0310 0672 C:\Windows\System32\xinput1_3.dll - ok
15:21:16.0310 0672 [ 233A10D4B3F6897899112E4EC60F1906 ] C:\Windows\WindowsMobile\wmdc.exe
15:21:16.0310 0672 C:\Windows\WindowsMobile\wmdc.exe - ok
15:21:16.0310 0672 [ 6E86E6BD2778A3D8428688C3D1BF053A ] C:\Program Files\Microsoft Xbox 360 Accessories\Xboxres.dll
15:21:16.0310 0672 C:\Program Files\Microsoft Xbox 360 Accessories\Xboxres.dll - ok
15:21:16.0310 0672 [ 393F021E2A9FA19AC94BA4482E32FC6C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
15:21:16.0310 0672 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
15:21:16.0310 0672 [ 6C457C8E7D16A708F7818877F570ADFC ] C:\Windows\System32\rapistub.dll
15:21:16.0310 0672 C:\Windows\System32\rapistub.dll - ok
15:21:16.0326 0672 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
15:21:16.0326 0672 C:\Windows\System32\wsock32.dll - ok
15:21:16.0326 0672 [ E3CD0A561F3AABE8607BF1474F4AE1DD ] C:\Program Files (x86)\Steam\Steam.exe
15:21:16.0326 0672 C:\Program Files (x86)\Steam\Steam.exe - ok
15:21:16.0326 0672 [ 56312836FE23FADC4F838656D7477A93 ] C:\Windows\System32\ceutil.dll
15:21:16.0326 0672 C:\Windows\System32\ceutil.dll - ok
15:21:16.0326 0672 [ 2978388067E79B781BFF6DD2AB565376 ] C:\Windows\System32\rapi.dll
15:21:16.0326 0672 C:\Windows\System32\rapi.dll - ok
15:21:16.0326 0672 [ DCCA4B04AF87E52EF9EAA2190E06CBAC ] C:\Program Files (x86)\Windows Sidebar\sidebar.exe
15:21:16.0326 0672 C:\Program Files (x86)\Windows Sidebar\sidebar.exe - ok
15:21:16.0326 0672 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
15:21:16.0326 0672 C:\Windows\System32\networkexplorer.dll - ok
15:21:16.0341 0672 [ A55E7D0D873B2C97585B3B5926AC6ADE ] C:\Windows\WindowsMobile\rapimgr.dll
15:21:16.0341 0672 C:\Windows\WindowsMobile\rapimgr.dll - ok
15:21:16.0341 0672 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
15:21:16.0341 0672 C:\Windows\System32\msvcp60.dll - ok
15:21:16.0341 0672 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
15:21:16.0341 0672 C:\Windows\SysWOW64\atl.dll - ok
15:21:16.0341 0672 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
15:21:16.0341 0672 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
15:21:16.0341 0672 [ 7B40621518648A67E8F543904696A219 ] C:\Windows\System32\rapiproxystub.dll
15:21:16.0341 0672 C:\Windows\System32\rapiproxystub.dll - ok
15:21:16.0341 0672 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
15:21:16.0341 0672 C:\Windows\SysWOW64\cryptui.dll - ok
15:21:16.0341 0672 [ F76DE9FC66F049AE7DCC2C6AA082CA90 ] C:\Windows\WindowsMobile\tcp2udp.dll
15:21:16.0341 0672 C:\Windows\WindowsMobile\tcp2udp.dll - ok
15:21:16.0357 0672 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] C:\Windows\WindowsMobile\wcescomm.dll
15:21:16.0357 0672 C:\Windows\WindowsMobile\wcescomm.dll - ok
15:21:16.0357 0672 [ B44A28651149D885FCD33FEC08A7733C ] C:\Windows\System32\wcescommproxy.dll
15:21:16.0357 0672 C:\Windows\System32\wcescommproxy.dll - ok
15:21:16.0357 0672 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
15:21:16.0357 0672 C:\Windows\SysWOW64\taskschd.dll - ok
15:21:16.0357 0672 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
15:21:16.0357 0672 C:\Windows\SysWOW64\msxml3.dll - ok
15:21:16.0357 0672 [ F2FD94A4F1E5400DB959A2987B8081E9 ] C:\Windows\WindowsMobile\dtptdns.dll
15:21:16.0357 0672 C:\Windows\WindowsMobile\dtptdns.dll - ok
15:21:16.0357 0672 [ 19951B1AF3F684B1293FB633D3BA73B6 ] C:\Windows\WindowsMobile\BthASPlugin.dll
15:21:16.0357 0672 C:\Windows\WindowsMobile\BthASPlugin.dll - ok
15:21:16.0357 0672 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
15:21:16.0357 0672 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
15:21:16.0373 0672 [ C97434C851C4821BD92D2831FDF1ECBE ] C:\Windows\SysWOW64\mshtml.dll
15:21:16.0373 0672 C:\Windows\SysWOW64\mshtml.dll - ok
15:21:16.0373 0672 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\32384847.sys
15:21:16.0373 0672 C:\Windows\System32\drivers\32384847.sys - ok
15:21:16.0373 0672 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
15:21:16.0373 0672 C:\Windows\System32\dsound.dll - ok
15:21:16.0373 0672 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
15:21:16.0373 0672 C:\Windows\System32\oledlg.dll - ok
15:21:16.0373 0672 [ FC0D459F423A5966054DDA1DB12457C8 ] C:\Windows\System32\RtkCfg64.dll
15:21:16.0373 0672 C:\Windows\System32\RtkCfg64.dll - ok
15:21:16.0388 0672 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
15:21:16.0388 0672 C:\Windows\System32\thumbcache.dll - ok
15:21:16.0388 0672 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
15:21:16.0388 0672 C:\Windows\System32\msiltcfg.dll - ok
15:21:16.0388 0672 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
15:21:16.0388 0672 C:\Windows\System32\msi.dll - ok
15:21:16.0388 0672 [ EC65036E0FF022152EA81EB8361D9EAA ] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
15:21:16.0388 0672 C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe - ok
15:21:16.0388 0672 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
15:21:16.0388 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
15:21:16.0388 0672 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
15:21:16.0388 0672 C:\Windows\System32\UIAnimation.dll - ok
15:21:16.0404 0672 [ 8B1590C627138166C015A5680ABF6BB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
15:21:16.0404 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll - ok
15:21:16.0404 0672 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
15:21:16.0404 0672 C:\Windows\SysWOW64\msimtf.dll - ok
15:21:16.0404 0672 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
15:21:16.0404 0672 C:\Windows\System32\SyncCenter.dll - ok
15:21:16.0404 0672 [ C079169E6A07FC4412475C02969EB9CE ] C:\Windows\SysWOW64\jscript9.dll
15:21:16.0404 0672 C:\Windows\SysWOW64\jscript9.dll - ok
15:21:16.0404 0672 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
15:21:16.0404 0672 C:\Windows\SysWOW64\riched20.dll - ok
15:21:16.0404 0672 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:21:16.0404 0672 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:21:16.0419 0672 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
15:21:16.0419 0672 C:\Windows\SysWOW64\duser.dll - ok
15:21:16.0419 0672 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
15:21:16.0419 0672 C:\Windows\SysWOW64\dui70.dll - ok
15:21:16.0419 0672 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
15:21:16.0419 0672 C:\Windows\SysWOW64\rasapi32.dll - ok
15:21:16.0419 0672 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
15:21:16.0419 0672 C:\Windows\SysWOW64\rasman.dll - ok
15:21:16.0419 0672 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
15:21:16.0419 0672 C:\Windows\SysWOW64\rtutils.dll - ok
15:21:16.0419 0672 [ BE210318FA6DA2A862BD41EA87E8CBE6 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
15:21:16.0419 0672 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
15:21:16.0419 0672 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
15:21:16.0419 0672 C:\Windows\SysWOW64\sxs.dll - ok
15:21:16.0435 0672 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
15:21:16.0435 0672 C:\Windows\System32\drivers\fastfat.sys - ok
15:21:16.0435 0672 [ B5D4429FBBF86A05AC2E3A247E32E97F ] C:\Windows\SysWOW64\wshom.ocx
15:21:16.0435 0672 C:\Windows\SysWOW64\wshom.ocx - ok
15:21:16.0435 0672 [ 69A1D7C29CFF256BECBD4E39E2159636 ] C:\Windows\SysWOW64\scrrun.dll
15:21:16.0435 0672 C:\Windows\SysWOW64\scrrun.dll - ok
15:21:16.0435 0672 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
15:21:16.0435 0672 C:\Windows\SysWOW64\d2d1.dll - ok
15:21:16.0435 0672 [ E3CD0A561F3AABE8607BF1474F4AE1DD ] C:\Program Files (x86)\Steam\SteamTmp.exe
15:21:16.0435 0672 C:\Program Files (x86)\Steam\SteamTmp.exe - ok
15:21:16.0451 0672 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
15:21:16.0451 0672 C:\Windows\System32\FntCache.dll - ok
15:21:16.0451 0672 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
15:21:16.0451 0672 C:\Windows\SysWOW64\DWrite.dll - ok
15:21:16.0451 0672 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
15:21:16.0451 0672 C:\Windows\System32\batmeter.dll - ok
15:21:16.0451 0672 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
15:21:16.0451 0672 C:\Windows\System32\stobject.dll - ok
15:21:16.0451 0672 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
15:21:16.0451 0672 C:\Windows\SysWOW64\dxgi.dll - ok
15:21:16.0451 0672 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
15:21:16.0451 0672 C:\Windows\SysWOW64\d3d10_1.dll - ok
15:21:16.0451 0672 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
15:21:16.0451 0672 C:\Windows\SysWOW64\d3d10_1core.dll - ok
15:21:16.0466 0672 [ AEBF6D1557F5169F15861F4102578B0A ] C:\Program Files (x86)\Remote Mouse\AutoUpdater.NET.dll
15:21:16.0466 0672 C:\Program Files (x86)\Remote Mouse\AutoUpdater.NET.dll - ok
15:21:16.0466 0672 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
15:21:16.0466 0672 C:\Windows\System32\prnfldr.dll - ok
15:21:16.0466 0672 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
15:21:16.0466 0672 C:\Windows\SysWOW64\d3d10warp.dll - ok
15:21:16.0466 0672 [ 207C1F9F65723A46751589FDACB28850 ] C:\Windows\SysWOW64\atiumdag.dll
15:21:16.0466 0672 C:\Windows\SysWOW64\atiumdag.dll - ok
15:21:16.0466 0672 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
15:21:16.0466 0672 C:\Windows\System32\DXP.dll - ok
15:21:16.0466 0672 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
15:21:16.0466 0672 C:\Windows\System32\Syncreg.dll - ok
15:21:16.0482 0672 [ C9FC1C964526A676F13E3805322EC5BD ] C:\Program Files (x86)\Steam\crashhandler.dll
15:21:16.0482 0672 C:\Program Files (x86)\Steam\crashhandler.dll - ok
15:21:16.0482 0672 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
15:21:16.0482 0672 C:\Windows\ehome\ehSSO.dll - ok
15:21:16.0482 0672 [ BF4CE9A1BED94AEE1BFF737725F73CCE ] C:\Program Files (x86)\Steam\steamerrorreporter.exe
15:21:16.0482 0672 C:\Program Files (x86)\Steam\steamerrorreporter.exe - ok
15:21:16.0482 0672 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
15:21:16.0482 0672 C:\Windows\System32\netshell.dll - ok
15:21:16.0482 0672 [ 6CBBD891B3397E921C81B6A4F52799D5 ] C:\Program Files (x86)\Steam\tier0_s.dll
15:21:16.0482 0672 C:\Program Files (x86)\Steam\tier0_s.dll - ok
15:21:16.0482 0672 [ 7C8BFD0842184B15BBF352E23FB97170 ] C:\Program Files (x86)\Steam\vstdlib_s.dll
15:21:16.0482 0672 C:\Program Files (x86)\Steam\vstdlib_s.dll - ok
15:21:16.0497 0672 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
15:21:16.0497 0672 C:\Windows\System32\AltTab.dll - ok
15:21:16.0497 0672 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
15:21:16.0497 0672 C:\Windows\System32\WPDShServiceObj.dll - ok
15:21:16.0497 0672 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
15:21:16.0497 0672 C:\Windows\System32\pnidui.dll - ok
15:21:16.0497 0672 [ E74C018279BB3FB2596AA4CEEA97EC0C ] C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll
15:21:16.0497 0672 C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll - ok
15:21:16.0497 0672 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
15:21:16.0497 0672 C:\Windows\System32\QUTIL.DLL - ok
15:21:16.0497 0672 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
15:21:16.0497 0672 C:\Windows\System32\srchadmin.dll - ok
15:21:16.0513 0672 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
15:21:16.0513 0672 C:\Windows\SysWOW64\msls31.dll - ok
15:21:16.0513 0672 [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
15:21:16.0513 0672 C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
15:21:16.0513 0672 [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
15:21:16.0513 0672 C:\Windows\System32\ieframe.dll - ok
15:21:16.0513 0672 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
15:21:16.0513 0672 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
15:21:16.0513 0672 [ C3E3480987CCF20DC9A4A3DC7501AA85 ] C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\CoreTempReader.dll
15:21:16.0513 0672 C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\CoreTempReader.dll - ok
15:21:16.0513 0672 [ 3011BB9D5688AA040076715D806F01E1 ] C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\GetCoreTempInfoNET.dll
15:21:16.0513 0672 C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\GetCoreTempInfoNET.dll - ok
15:21:16.0529 0672 [ 02B56D50B180AE484B0C9D8E4D981D8F ] C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\SystemInfo.dll
15:21:16.0529 0672 C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\SystemInfo.dll - ok
15:21:16.0529 0672 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
15:21:16.0529 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
15:21:16.0529 0672 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
15:21:16.0529 0672 C:\Windows\SysWOW64\d3d10.dll - ok
15:21:16.0529 0672 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
15:21:16.0529 0672 C:\Windows\SysWOW64\d3d10core.dll - ok
15:21:16.0529 0672 [ 3A03C691171C00DED82355B814719EFD ] C:\Program Files (x86)\Steam\Steam.dll
15:21:16.0529 0672 C:\Program Files (x86)\Steam\Steam.dll - ok
15:21:16.0529 0672 [ 207EDF03958ED11E03D72C6569B37D5A ] C:\Program Files (x86)\Steam\SteamUI.dll
15:21:16.0529 0672 C:\Program Files (x86)\Steam\SteamUI.dll - ok
15:21:16.0544 0672 [ 2884DA0E5CE6D42F31FC4476A8947F1B ] C:\Program Files (x86)\Steam\sdl.dll
15:21:16.0544 0672 C:\Program Files (x86)\Steam\sdl.dll - ok
15:21:16.0544 0672 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
15:21:16.0544 0672 C:\Windows\SysWOW64\comdlg32.dll - ok
15:21:16.0544 0672 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
15:21:16.0544 0672 C:\Windows\SysWOW64\NapiNSP.dll - ok
15:21:16.0544 0672 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
15:21:16.0544 0672 C:\Windows\SysWOW64\nlaapi.dll - ok
15:21:16.0544 0672 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
15:21:16.0544 0672 C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:21:16.0544 0672 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
15:21:16.0544 0672 C:\Windows\SysWOW64\winrnr.dll - ok
15:21:16.0560 0672 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
15:21:16.0560 0672 C:\Windows\System32\oleacc.dll - ok
15:21:16.0560 0672 [ A7532E66EA2F168A0970E829D8986423 ] C:\Program Files (x86)\Steam\dbghelp.dll
15:21:16.0560 0672 C:\Program Files (x86)\Steam\dbghelp.dll - ok
15:21:16.0560 0672 [ 173C217E677C4B0C4F8A6D54BA13BF9B ] C:\Program Files (x86)\Steam\CSERHelper.dll
15:21:16.0560 0672 C:\Program Files (x86)\Steam\CSERHelper.dll - ok
15:21:16.0560 0672 [ F4D475E113AD5F50C1FF1DC240DA42DA ] C:\Program Files (x86)\Steam\bin\FileSystem_Steam.dll
15:21:16.0560 0672 C:\Program Files (x86)\Steam\bin\FileSystem_Steam.dll - ok
15:21:16.0560 0672 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
15:21:16.0560 0672 C:\Windows\System32\FXSST.dll - ok
15:21:16.0560 0672 [ 4CCBBA2978F50F93223CBD1BB23FECF4 ] C:\Program Files (x86)\Steam\bin\vgui2_s.dll
15:21:16.0560 0672 C:\Program Files (x86)\Steam\bin\vgui2_s.dll - ok
15:21:16.0575 0672 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
15:21:16.0575 0672 C:\Windows\System32\FXSAPI.dll - ok
15:21:16.0575 0672 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
15:21:16.0575 0672 C:\Windows\SysWOW64\opengl32.dll - ok
15:21:16.0575 0672 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
15:21:16.0575 0672 C:\Windows\System32\FXSRESM.dll - ok
15:21:16.0575 0672 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
15:21:16.0575 0672 C:\Windows\SysWOW64\dciman32.dll - ok
15:21:16.0575 0672 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
15:21:16.0575 0672 C:\Windows\SysWOW64\ddraw.dll - ok
15:21:16.0591 0672 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
15:21:16.0591 0672 C:\Windows\SysWOW64\glu32.dll - ok
15:21:16.0591 0672 [ 8D350E2B5ED44D65F789B587D3FA3916 ] C:\Program Files (x86)\Steam\bin\chromehtml.dll
15:21:16.0591 0672 C:\Program Files (x86)\Steam\bin\chromehtml.dll - ok
15:21:16.0591 0672 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
15:21:16.0591 0672 C:\Windows\System32\SearchIndexer.exe - ok
15:21:16.0591 0672 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
15:21:16.0591 0672 C:\Windows\System32\tquery.dll - ok
15:21:16.0591 0672 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
15:21:16.0591 0672 C:\Windows\System32\FXSSVC.exe - ok
15:21:16.0591 0672 [ D7CEBD8FC276E5F3EDE863A5CE052BCD ] C:\Program Files (x86)\WinSCP\DragExt64.dll
15:21:16.0591 0672 C:\Program Files (x86)\WinSCP\DragExt64.dll - ok
15:21:16.0607 0672 [ 60BE2CEC0D95BB135D4452F39AAC6805 ] C:\Program Files (x86)\Steam\bin\libcef.dll
15:21:16.0607 0672 C:\Program Files (x86)\Steam\bin\libcef.dll - ok
15:21:16.0607 0672 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
15:21:16.0607 0672 C:\Windows\System32\mssrch.dll - ok
15:21:16.0607 0672 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
15:21:16.0607 0672 C:\Windows\System32\esent.dll - ok
15:21:16.0607 0672 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
15:21:16.0607 0672 C:\Windows\System32\msidle.dll - ok
15:21:16.0607 0672 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
15:21:16.0607 0672 C:\Windows\System32\netman.dll - ok
15:21:16.0607 0672 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
15:21:16.0607 0672 C:\Windows\System32\mssprxy.dll - ok
15:21:16.0607 0672 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
15:21:16.0607 0672 C:\Windows\System32\rasdlg.dll - ok
15:21:16.0622 0672 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
15:21:16.0622 0672 C:\Windows\System32\mprapi.dll - ok
15:21:16.0622 0672 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
15:21:16.0622 0672 C:\Windows\System32\dot3api.dll - ok
15:21:16.0622 0672 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
15:21:16.0622 0672 C:\Windows\System32\eappcfg.dll - ok
15:21:16.0622 0672 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
15:21:16.0622 0672 C:\Windows\System32\wlanhlp.dll - ok
15:21:16.0622 0672 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
15:21:16.0622 0672 C:\Windows\System32\wlanapi.dll - ok
15:21:16.0622 0672 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
15:21:16.0622 0672 C:\Windows\System32\wlanutil.dll - ok
15:21:16.0638 0672 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
15:21:16.0638 0672 C:\Windows\System32\onex.dll - ok
15:21:16.0638 0672 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:21:16.0638 0672 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:21:16.0638 0672 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:21:16.0638 0672 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:21:16.0638 0672 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
15:21:16.0638 0672 C:\Windows\System32\eappprxy.dll - ok
15:21:16.0638 0672 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
15:21:16.0638 0672 C:\Windows\System32\en-US\tquery.dll.mui - ok
15:21:16.0638 0672 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
15:21:16.0638 0672 C:\Windows\System32\hnetcfg.dll - ok
15:21:16.0638 0672 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
15:21:16.0638 0672 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
15:21:16.0653 0672 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
15:21:16.0653 0672 C:\Windows\System32\WWanAPI.dll - ok
15:21:16.0653 0672 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
15:21:16.0653 0672 C:\Windows\System32\wwapi.dll - ok
15:21:16.0653 0672 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
15:21:16.0653 0672 C:\Windows\System32\QAGENT.DLL - ok
15:21:16.0653 0672 [ 045D0F4F41CA53D4CB22BDC814A22B64 ] C:\Program Files (x86)\Steam\bin\icudt.dll
15:21:16.0653 0672 C:\Program Files (x86)\Steam\bin\icudt.dll - ok
15:21:16.0653 0672 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
15:21:16.0653 0672 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
15:21:16.0653 0672 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
15:21:16.0653 0672 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
15:21:16.0669 0672 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
15:21:16.0669 0672 C:\Windows\System32\wmdrmdev.dll - ok
15:21:16.0669 0672 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
15:21:16.0669 0672 C:\Windows\System32\drmv2clt.dll - ok
15:21:16.0669 0672 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
15:21:16.0669 0672 C:\Windows\System32\wmp.dll - ok
15:21:16.0669 0672 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
15:21:16.0669 0672 C:\Windows\System32\wmploc.DLL - ok
15:21:16.0669 0672 [ BBA1FE328CEA501FCCE1E5DF16276439 ] C:\Program Files (x86)\Steam\bin\avcodec-53.dll
15:21:16.0669 0672 C:\Program Files (x86)\Steam\bin\avcodec-53.dll - ok
15:21:16.0669 0672 [ 2A8B8A15A58EDF3B443083EC29894E54 ] C:\Program Files (x86)\Steam\bin\avutil-51.dll
15:21:16.0669 0672 C:\Program Files (x86)\Steam\bin\avutil-51.dll - ok
15:21:16.0685 0672 [ B2A6D3916851411B42069746C84420F6 ] C:\Program Files (x86)\Air Mouse\Air Mouse\Air Mouse.exe
15:21:16.0685 0672 C:\Program Files (x86)\Air Mouse\Air Mouse\Air Mouse.exe - ok
15:21:16.0685 0672 [ 852F12CA7C4FC7E3D77B606492435556 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
15:21:16.0685 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
15:21:16.0685 0672 [ C5CCB86CD745746B9908031A54315F90 ] C:\Program Files (x86)\Steam\bin\avformat-53.dll
15:21:16.0685 0672 C:\Program Files (x86)\Steam\bin\avformat-53.dll - ok
15:21:16.0685 0672 [ C098BF3845C738DD4F6F76B55B442D29 ] C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
15:21:16.0685 0672 C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe - ok
15:21:16.0685 0672 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
15:21:16.0685 0672 C:\Windows\System32\consent.exe - ok
15:21:16.0685 0672 [ 55F5ADBF2855EC827DFDEF18325ED75F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
15:21:16.0685 0672 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
15:21:16.0700 0672 [ 2CF5E618B5CAB2B3DA0EEED1CBA173D8 ] C:\Windows\SysWOW64\atiadlxy.dll
15:21:16.0700 0672 C:\Windows\SysWOW64\atiadlxy.dll - ok
15:21:16.0700 0672 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
15:21:16.0700 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
15:21:16.0700 0672 [ E977A3AF3D7B55C2E88D6489D7AFD467 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
15:21:16.0700 0672 C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe - ok
15:21:16.0700 0672 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
15:21:16.0700 0672 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
15:21:16.0700 0672 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
15:21:16.0700 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
15:21:16.0716 0672 [ E706236E8FF4D97EC9F5C2614BC78646 ] C:\Program Files (x86)\Steam\steamclient.dll
15:21:16.0716 0672 C:\Program Files (x86)\Steam\steamclient.dll - ok
15:21:16.0716 0672 [ 76BF13E24442B4A3314379ABEAD51C99 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
15:21:16.0716 0672 C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe - ok
15:21:16.0716 0672 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
15:21:16.0716 0672 C:\Windows\SysWOW64\pdh.dll - ok
15:21:16.0716 0672 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
15:21:16.0716 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
15:21:16.0716 0672 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
15:21:16.0716 0672 C:\Windows\SysWOW64\d3d9.dll - ok
15:21:16.0716 0672 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
15:21:16.0716 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
15:21:16.0731 0672 [ 2A5E8DBC310C2FB7511B9AB8E7CFB297 ] C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe
15:21:16.0731 0672 C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe - ok
15:21:16.0731 0672 [ 08F68996C35C0DD6A1CE0581025B275A ] C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
15:21:16.0731 0672 C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe - ok
15:21:16.0731 0672 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
15:21:16.0731 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
15:21:16.0731 0672 [ C419DF63E0121D72411285780C2FC6CC ] C:\Windows\Updreg.EXE
15:21:16.0731 0672 C:\Windows\Updreg.EXE - ok
15:21:16.0731 0672 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
15:21:16.0731 0672 C:\Windows\SysWOW64\d3d8thk.dll - ok
15:21:16.0731 0672 [ 4DDC1D6FA6FAFA950AF7C5BD5FB8CF19 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\7366a39c36523a084bc11c230929ff92\Microsoft.VisualBasic.ni.dll
15:21:16.0731 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\7366a39c36523a084bc11c230929ff92\Microsoft.VisualBasic.ni.dll - ok
15:21:16.0747 0672 [ 3208A5B6157D0D4EE0117B99AAF28A68 ] C:\Program Files (x86)\Razer\Reclusa\razerhid.exe
15:21:16.0747 0672 C:\Program Files (x86)\Razer\Reclusa\razerhid.exe - ok
15:21:16.0747 0672 [ 6F6C5AC05135904F39223EE2455D4959 ] C:\Program Files (x86)\Razer\Reclusa\razerlan.dll
15:21:16.0747 0672 C:\Program Files (x86)\Razer\Reclusa\razerlan.dll - ok
15:21:16.0747 0672 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll
15:21:16.0747 0672 C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll - ok
15:21:16.0747 0672 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll
15:21:16.0747 0672 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll - ok
15:21:16.0747 0672 [ 3D32EA9BAD5ED5482557FC57AF4E16A6 ] C:\Program Files (x86)\RemoteX\remotex.exe
15:21:16.0747 0672 C:\Program Files (x86)\RemoteX\remotex.exe - ok
15:21:16.0747 0672 [ 49640D6577E605E289E9B731B515B0A9 ] C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe
15:21:16.0747 0672 C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe - ok
15:21:16.0763 0672 [ 9D6C8CE611C3F093B901A148C1921DF1 ] C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll
15:21:16.0763 0672 C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll - ok
15:21:16.0763 0672 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
15:21:16.0763 0672 C:\Windows\SysWOW64\powrprof.dll - ok
15:21:16.0763 0672 [ 9A5C9CAB7D90D93D23047BA38BA5D3F0 ] C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:21:16.0763 0672 C:\Program Files (x86)\Common Files\Steam\SteamService.exe - ok
15:21:16.0763 0672 [ CAE692AE26B7F117CD32644DCAC52FF7 ] C:\Program Files (x86)\Steam\bin\SteamService.dll
15:21:16.0763 0672 C:\Program Files (x86)\Steam\bin\SteamService.dll - ok
15:21:16.0763 0672 [ E43A851F7B12DE589424D6C656155CFC ] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
15:21:16.0763 0672 C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe - ok
15:21:16.0778 0672 [ 8EE7DC9A6CC9AB5DEE2346F5972A4F0C ] C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll
15:21:16.0778 0672 C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll - ok
15:21:16.0778 0672 [ 7CEC5F257019FAED31B07FCA8922A33E ] C:\Program Files (x86)\Razer\Reclusa\razertra.exe
15:21:16.0778 0672 C:\Program Files (x86)\Razer\Reclusa\razertra.exe - ok
15:21:16.0778 0672 [ 826DDBBCA98F2E6CD1DFE33CEF33994C ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
15:21:16.0778 0672 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
15:21:16.0778 0672 [ DCFF4DC6B6AAFFD5206786BB1D938974 ] C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll
15:21:16.0778 0672 C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll - ok
15:21:16.0778 0672 [ F99720108277BD6E946548D065798DBB ] C:\Program Files (x86)\Air Mouse\Air Mouse\BonjourService.dll
15:21:16.0778 0672 C:\Program Files (x86)\Air Mouse\Air Mouse\BonjourService.dll - ok
15:21:16.0778 0672 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll
15:21:16.0778 0672 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll - ok
15:21:16.0794 0672 [ 7EA9113EBB954F309679E9D28ECAEDD6 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.exe
15:21:16.0794 0672 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.exe - ok
15:21:16.0794 0672 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
15:21:16.0794 0672 C:\Windows\SysWOW64\FirewallAPI.dll - ok
15:21:16.0794 0672 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
15:21:16.0794 0672 C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:21:16.0794 0672 [ A3F51E726D98510C0A9B3D9F92D0686A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\64cf6c356be66bb17c4667d6d8aa467b\System.Web.Services.ni.dll
15:21:16.0794 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\64cf6c356be66bb17c4667d6d8aa467b\System.Web.Services.ni.dll - ok
15:21:16.0794 0672 [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\Windows\SysWOW64\MFC71ENU.DLL
15:21:16.0794 0672 C:\Windows\SysWOW64\MFC71ENU.DLL - ok
15:21:16.0794 0672 [ 47C1DE0A890613FFCFF1D67648EEDF90 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:21:16.0794 0672 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:21:16.0809 0672 [ 1E3CB1435EC745058628AE40FEA9F471 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
15:21:16.0809 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll - ok
15:21:16.0809 0672 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
15:21:16.0809 0672 C:\Windows\SysWOW64\wdmaud.drv - ok
15:21:16.0809 0672 [ 3F2B8FB2306857805BB5550FEC0F821A ] C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll
15:21:16.0809 0672 C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll - ok
15:21:16.0809 0672 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:21:16.0809 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
15:21:16.0809 0672 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
15:21:16.0809 0672 C:\Windows\SysWOW64\oledlg.dll - ok
15:21:16.0809 0672 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
15:21:16.0809 0672 C:\Windows\SysWOW64\ksuser.dll - ok
15:21:16.0825 0672 [ AF43C4F7F3C8BC95DAD95024F96CDC4A ] C:\Program Files (x86)\QuickTime\QTTask.exe
15:21:16.0825 0672 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
15:21:16.0825 0672 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
15:21:16.0825 0672 C:\Windows\SysWOW64\dsound.dll - ok
15:21:16.0825 0672 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
15:21:16.0825 0672 C:\Windows\SysWOW64\avrt.dll - ok
15:21:16.0825 0672 [ 5ACBDA6136C110E0615671F4A7ECB03B ] C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll
15:21:16.0825 0672 C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll - ok
15:21:16.0825 0672 [ 069C4BCD0F6558DEF1CE24D04BB81E13 ] C:\Windows\SysWOW64\atiumdva.dll
15:21:16.0825 0672 C:\Windows\SysWOW64\atiumdva.dll - ok
15:21:16.0825 0672 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
15:21:16.0825 0672 C:\Windows\SysWOW64\mscms.dll - ok
15:21:16.0841 0672 [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
15:21:16.0841 0672 C:\Windows\SysWOW64\oleaccrc.dll - ok
15:21:16.0841 0672 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
15:21:16.0841 0672 C:\Windows\SysWOW64\AudioSes.dll - ok
15:21:16.0841 0672 [ 4F5627A1777E75AC742DDE26F86B5D48 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
15:21:16.0841 0672 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
15:21:16.0841 0672 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
15:21:16.0841 0672 C:\Windows\SysWOW64\msacm32.drv - ok
15:21:16.0841 0672 [ 6E3245DF783E58375B3465F03274743E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
15:21:16.0841 0672 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
15:21:16.0841 0672 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
15:21:16.0841 0672 C:\Windows\SysWOW64\midimap.dll - ok
15:21:16.0856 0672 [ 2A21FE60A9BC5247BD8C57409A2B97F8 ] C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
15:21:16.0856 0672 C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe - ok
15:21:16.0856 0672 [ 6BCB0ADA4DFAC36A24854D344F0A0ACF ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.dll
15:21:16.0856 0672 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.dll - ok
15:21:16.0856 0672 [ ADCB9A3CC1DB2F027BE463824A1D6F42 ] C:\Program Files\McAfee.com\Agent\mcagent.exe
15:21:16.0856 0672 C:\Program Files\McAfee.com\Agent\mcagent.exe - ok
15:21:16.0856 0672 [ 0EDFDC3E969526203CF0F19226216F5E ] C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll
15:21:16.0856 0672 C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll - ok
15:21:16.0856 0672 [ 698EB1E5F8C66344D97C00B5699E871D ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
15:21:16.0856 0672 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
15:21:16.0856 0672 [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:21:16.0856 0672 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
15:21:16.0872 0672 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
15:21:16.0872 0672 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
15:21:16.0872 0672 [ 0D7D58F63A079CE865915CF64458851C ] C:\Windows\SysWOW64\ElbyVCD.dll
15:21:16.0872 0672 C:\Windows\SysWOW64\ElbyVCD.dll - ok
15:21:16.0872 0672 [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
15:21:16.0872 0672 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
15:21:16.0872 0672 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
15:21:16.0872 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
15:21:16.0872 0672 [ 735F6D1D9EB8A6C76EFD55E7182DE272 ] C:\Windows\SysWOW64\ElbyCDIO.dll
15:21:16.0872 0672 C:\Windows\SysWOW64\ElbyCDIO.dll - ok
15:21:16.0887 0672 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
15:21:16.0887 0672 C:\Windows\SysWOW64\security.dll - ok
15:21:16.0887 0672 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
15:21:16.0887 0672 C:\Windows\System32\qmgr.dll - ok
15:21:16.0887 0672 [ 6B8A2ED3775D50F838BEB49CA24F9089 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll
15:21:16.0887 0672 C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll - ok
15:21:16.0887 0672 [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
15:21:16.0887 0672 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
15:21:16.0887 0672 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
15:21:16.0887 0672 C:\Windows\SysWOW64\schannel.dll - ok
15:21:16.0887 0672 [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
15:21:16.0887 0672 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
15:21:16.0903 0672 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
15:21:16.0903 0672 C:\Windows\System32\bitsperf.dll - ok
15:21:16.0903 0672 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
15:21:16.0903 0672 C:\Windows\System32\bitsigd.dll - ok
15:21:16.0903 0672 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
15:21:16.0903 0672 C:\Windows\System32\upnp.dll - ok
15:21:16.0903 0672 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
15:21:16.0903 0672 C:\Windows\System32\qmgrprxy.dll - ok
15:21:16.0903 0672 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
15:21:16.0903 0672 C:\Windows\SysWOW64\qmgrprxy.dll - ok
15:21:16.0903 0672 [ 51D2F66C0C55419CA4A797C8D1B0AD8D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
15:21:16.0903 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll - ok
15:21:16.0919 0672 [ 74EF310FAC89341CE2897B7F2C4A7B0F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
15:21:16.0919 0672 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
15:21:16.0919 0672 [ BD75759509FCD3488CEB39197F552575 ] C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll
15:21:16.0919 0672 C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll - ok
15:21:16.0919 0672 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
15:21:16.0919 0672 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
15:21:16.0919 0672 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
15:21:16.0919 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
15:21:16.0919 0672 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
15:21:16.0919 0672 C:\Windows\SysWOW64\netprofm.dll - ok
15:21:16.0934 0672 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
15:21:16.0934 0672 C:\Windows\SysWOW64\npmproxy.dll - ok
15:21:16.0934 0672 [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
15:21:16.0934 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
15:21:16.0934 0672 [ 7F73235D527DCF16C38578CD1CD9F7A8 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
15:21:16.0934 0672 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
15:21:16.0934 0672 [ F4F69652E9EC8E4ED6A082DB865D5375 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeUpdater.exe
15:21:16.0934 0672 C:\Program Files (x86)\Dell DataSafe Online\DataSafeUpdater.exe - ok
15:21:16.0934 0672 [ EE74A0FF7C5752E49911986F22BBAEEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
15:21:16.0934 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll - ok
15:21:16.0934 0672 [ F8D269134EEC097B7E47C818AF4862A7 ] C:\Windows\SysWOW64\ieui.dll
15:21:16.0934 0672 C:\Windows\SysWOW64\ieui.dll - ok
15:21:16.0934 0672 [ 0F261EC4F514926177C70C1832374231 ] C:\Program Files\iPod\bin\iPodService.exe
15:21:16.0934 0672 C:\Program Files\iPod\bin\iPodService.exe - ok
15:21:16.0950 0672 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
15:21:16.0950 0672 C:\Windows\SysWOW64\mssprxy.dll - ok
15:21:16.0950 0672 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
15:21:16.0950 0672 C:\Windows\SysWOW64\xmllite.dll - ok
15:21:16.0950 0672 [ F7BC1D90C3A976A5259BD1A5D7D43038 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
15:21:16.0950 0672 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
15:21:16.0950 0672 [ CBC39CAD3421AB71966BDD98ABF847E0 ] C:\Windows\SysWOW64\msfeeds.dll
15:21:16.0950 0672 C:\Windows\SysWOW64\msfeeds.dll - ok
15:21:16.0950 0672 [ 5EF8A000C7927E87332D8CB6B7970067 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
15:21:16.0950 0672 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
15:21:16.0950 0672 [ 86766A1BBF0E5993E2283ECE0B454177 ] C:\Program Files\McAfee\MSK\MskSet64.dll
15:21:16.0950 0672 C:\Program Files\McAfee\MSK\MskSet64.dll - ok
15:21:16.0965 0672 [ F47D9A5BB0F2A15E0539111D5DEA0B48 ] C:\Windows\SysWOW64\atidxx32.dll
15:21:16.0965 0672 C:\Windows\SysWOW64\atidxx32.dll - ok
15:21:16.0965 0672 [ 763E2BBEFCD523AB3B7163A5671BF5EF ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
15:21:16.0965 0672 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
15:21:16.0965 0672 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
15:21:16.0965 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
15:21:16.0965 0672 [ 54A744E346ECE4DC9B27CDCAA5EA05CF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\b1ca9cc1413a22d44a7b7ecb6df84a8c\Microsoft.VisualBasic.ni.dll
15:21:16.0965 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\b1ca9cc1413a22d44a7b7ecb6df84a8c\Microsoft.VisualBasic.ni.dll - ok
15:21:16.0965 0672 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
15:21:16.0965 0672 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
15:21:16.0981 0672 [ ADFF528CA09752078F26B620A6F42760 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
15:21:16.0981 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
15:21:16.0981 0672 [ DD80D3894F5E1D36864D9727214605CD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
15:21:16.0981 0672 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
15:21:16.0981 0672 [ C2A12B061F591E093E3FD99D75811398 ] C:\Windows\SysWOW64\imaadp32.acm
15:21:16.0981 0672 C:\Windows\SysWOW64\imaadp32.acm - ok
15:21:16.0981 0672 [ 4D79D8F95143184B9C05F21396DE7645 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\ef8150a4b9439bd8fe200670681db670\System.Data.ni.dll
15:21:16.0981 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\ef8150a4b9439bd8fe200670681db670\System.Data.ni.dll - ok
15:21:16.0981 0672 [ BF3D6F7D929E018703BE2D4556DD679A ] C:\Windows\SysWOW64\msg711.acm
15:21:16.0981 0672 C:\Windows\SysWOW64\msg711.acm - ok
15:21:16.0981 0672 [ AE796D3FD1C69CE62BB6AFACDFB950AA ] C:\Windows\SysWOW64\msgsm32.acm
15:21:16.0981 0672 C:\Windows\SysWOW64\msgsm32.acm - ok
15:21:16.0997 0672 [ 8EE566982477BC5886FE622CEBEE9C86 ] C:\Windows\SysWOW64\msadp32.acm
15:21:16.0997 0672 C:\Windows\SysWOW64\msadp32.acm - ok
15:21:16.0997 0672 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
15:21:16.0997 0672 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
15:21:16.0997 0672 [ 1C7F1C3EA5894995E6C563E9AE9F029F ] C:\Windows\SysWOW64\l3codeca.acm
15:21:16.0997 0672 C:\Windows\SysWOW64\l3codeca.acm - ok
15:21:16.0997 0672 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
15:21:16.0997 0672 C:\Windows\SysWOW64\mlang.dll - ok
15:21:16.0997 0672 [ 164C6CBA43431D7F767174FD3D99A0A4 ] C:\Windows\SysWOW64\sirenacm.dll
15:21:16.0997 0672 C:\Windows\SysWOW64\sirenacm.dll - ok
15:21:16.0997 0672 [ 203A74767EB81F96A5166B1933DB46D0 ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
15:21:16.0997 0672 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
15:21:17.0012 0672 [ 9D26E14C0F3E5B081DAE517B99D36F70 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
15:21:17.0012 0672 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
15:21:17.0012 0672 [ C3104BE7D2B689EBE47E2AAC64C07530 ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
15:21:17.0012 0672 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
15:21:17.0012 0672 [ A4AD1AA4C57409480C1D84BBCA6BECF0 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
15:21:17.0012 0672 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll - ok
15:21:17.0012 0672 [ 2B66F8AF35FA5D7B312C38623CDE3E7F ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll
15:21:17.0012 0672 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll - ok
15:21:17.0012 0672 [ 99B6CE3840F5AD5C4B13B666249AA467 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
15:21:17.0012 0672 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe - ok
15:21:17.0028 0672 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
15:21:17.0028 0672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
15:21:17.0028 0672 [ 7FC1FB17882ABC73C85C1FEB0B9357DD ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Box Extension\SrchBxEx.dll
15:21:17.0028 0672 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Box Extension\SrchBxEx.dll - ok
15:21:17.0028 0672 [ 98D53BB2DB8E11762D30C3CF41FA140B ] C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
15:21:17.0028 0672 C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
15:21:17.0028 0672 [ 6BF01E200063D7274F3AF06D226671F5 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll
15:21:17.0028 0672 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll - ok
15:21:17.0028 0672 [ DA579734B4375740EFEE86FFDFED57A7 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
15:21:17.0028 0672 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
15:21:17.0028 0672 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
15:21:17.0028 0672 C:\Windows\SysWOW64\WinSCard.dll - ok
15:21:17.0043 0672 [ E9B6D3D950A60BF719FF2BC81F918355 ] C:\Windows\System32\atipdl64.dll
15:21:17.0043 0672 C:\Windows\System32\atipdl64.dll - ok
15:21:17.0043 0672 [ 5C0E3F4FF5FD1CBAED1F9F3E8145064A ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
15:21:17.0043 0672 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
15:21:17.0043 0672 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
15:21:17.0043 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
15:21:17.0043 0672 [ F2121482C2968CD3B53ED53ACC9277A5 ] C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
15:21:17.0043 0672 C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll - ok
15:21:17.0043 0672 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll
15:21:17.0043 0672 C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll - ok
15:21:17.0043 0672 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
15:21:17.0043 0672 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
15:21:17.0059 0672 [ A1184192BCAA5B2F57231030D064B5C6 ] C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\sqlite3.dll
15:21:17.0059 0672 C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\sqlite3.dll - ok
15:21:17.0059 0672 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
15:21:17.0059 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
15:21:17.0059 0672 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
15:21:17.0059 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
15:21:17.0059 0672 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
15:21:17.0059 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
15:21:17.0059 0672 [ 9352AF851D98380738161620C916A042 ] C:\Windows\SysWOW64\url.dll
15:21:17.0059 0672 C:\Windows\SysWOW64\url.dll - ok
15:21:17.0059 0672 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
15:21:17.0059 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
15:21:17.0075 0672 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
15:21:17.0075 0672 C:\Windows\System32\webcheck.dll - ok
15:21:17.0075 0672 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
15:21:17.0075 0672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
15:21:17.0075 0672 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
15:21:17.0075 0672 C:\Windows\System32\imapi2.dll - ok
15:21:17.0075 0672 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
15:21:17.0075 0672 C:\Windows\System32\SearchProtocolHost.exe - ok
15:21:17.0075 0672 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
15:21:17.0075 0672 C:\Windows\System32\msshooks.dll - ok
15:21:17.0075 0672 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
15:21:17.0075 0672 C:\Windows\System32\SearchFilterHost.exe - ok
15:21:17.0090 0672 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
15:21:17.0090 0672 C:\Windows\System32\hgcpl.dll - ok
15:21:17.0090 0672 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
15:21:17.0090 0672 C:\Windows\System32\provsvc.dll - ok
15:21:17.0090 0672 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
15:21:17.0090 0672 C:\Windows\System32\FDResPub.dll - ok
15:21:17.0090 0672 [ 4158324326206AA3A0264842593E0F0B ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_149.ocx
15:21:17.0090 0672 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_149.ocx - ok
15:21:17.0090 0672 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
15:21:17.0090 0672 C:\Windows\System32\wbem\NCProv.dll - ok
15:21:17.0090 0672 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
15:21:17.0090 0672 C:\Windows\SysWOW64\msisip.dll - ok
15:21:17.0106 0672 [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\Windows\SysWOW64\Wpc.dll
15:21:17.0106 0672 C:\Windows\SysWOW64\Wpc.dll - ok
15:21:17.0106 0672 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
15:21:17.0106 0672 C:\Windows\SysWOW64\wevtapi.dll - ok
15:21:17.0106 0672 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
15:21:17.0106 0672 C:\Windows\SysWOW64\samlib.dll - ok
15:21:17.0106 0672 [ EC971A8E4CA132D6F8482B0C8B79A9AD ] C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll
15:21:17.0106 0672 C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll - ok
15:21:17.0106 0672 [ 87BB82DF2F05C86982F52C47C812A546 ] C:\Windows\WindowsMobile\INetRepl.dll
15:21:17.0106 0672 C:\Windows\WindowsMobile\INetRepl.dll - ok
15:21:17.0106 0672 [ 439A21A155928DC616611CB6F3E9371D ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeExtractFiles.dll
15:21:17.0106 0672 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeExtractFiles.dll - ok
15:21:17.0121 0672 [ CDBFCB9A88E130F1138F80B01C56B680 ] C:\Windows\SysWOW64\vbscript.dll
15:21:17.0121 0672 C:\Windows\SysWOW64\vbscript.dll - ok
15:21:17.0121 0672 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
15:21:17.0121 0672 C:\Windows\SysWOW64\dxtrans.dll - ok
15:21:17.0121 0672 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
15:21:17.0121 0672 C:\Windows\SysWOW64\ddrawex.dll - ok
15:21:17.0121 0672 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
15:21:17.0121 0672 C:\Windows\SysWOW64\dxtmsft.dll - ok
15:21:17.0121 0672 [ E3F64395D5AF93AD64978A276AF04848 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
15:21:17.0121 0672 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
15:21:17.0121 0672 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
15:21:17.0121 0672 C:\Windows\System32\wmpps.dll - ok
15:21:17.0137 0672 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
15:21:17.0137 0672 C:\Windows\System32\wmpmde.dll - ok
15:21:17.0137 0672 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
15:21:17.0137 0672 C:\Windows\System32\httpapi.dll - ok
15:21:17.0137 0672 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
15:21:17.0137 0672 C:\Windows\System32\WinSATAPI.dll - ok
15:21:17.0137 0672 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
15:21:17.0137 0672 C:\Windows\System32\MSMPEG2ENC.DLL - ok
15:21:17.0137 0672 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
15:21:17.0137 0672 C:\Windows\System32\devenum.dll - ok
15:21:17.0137 0672 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
15:21:17.0137 0672 C:\Windows\System32\msdmo.dll - ok
15:21:17.0153 0672 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
15:21:17.0153 0672 C:\Windows\System32\upnphost.dll - ok
15:21:17.0153 0672 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
15:21:17.0153 0672 C:\Windows\System32\udhisapi.dll - ok
15:21:17.0153 0672 [ 0EB43D82D41D3B9386A8A193B2A01799 ] C:\Program Files\McAfee\MSK\masecore64.dll
15:21:17.0153 0672 C:\Program Files\McAfee\MSK\masecore64.dll - ok
15:21:17.0153 0672 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
15:21:17.0153 0672 C:\Windows\System32\drprov.dll - ok
15:21:17.0153 0672 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
15:21:17.0153 0672 C:\Windows\System32\ntlanman.dll - ok
15:21:17.0153 0672 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
15:21:17.0153 0672 C:\Windows\System32\davclnt.dll - ok
15:21:17.0168 0672 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
15:21:17.0168 0672 C:\Windows\System32\davhlpr.dll - ok
15:21:17.0168 0672 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:21:17.0168 0672 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
15:21:17.0168 0672 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
15:21:17.0168 0672 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
15:21:17.0168 0672 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:21:17.0168 0672 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
15:21:17.0168 0672 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
15:21:17.0168 0672 C:\Windows\System32\msvcr100_clr0400.dll - ok
15:21:17.0168 0672 [ 77FAB5FF8BF12A6FDDAA94C6D9F7A6E4 ] C:\PROGRA~1\McAfee\VIRUSS~1\NaiAnn.dll
15:21:17.0168 0672 C:\PROGRA~1\McAfee\VIRUSS~1\NaiAnn.dll - ok
15:21:17.0168 0672 [ 72F76CF50488E0300537DE3126ABBF95 ] C:\PROGRA~1\McAfee\VIRUSS~1\McVsPs.dll
15:21:17.0168 0672 C:\PROGRA~1\McAfee\VIRUSS~1\McVsPs.dll - ok
15:21:17.0184 0672 [ 295BCA8361AD333E0ACAE5C82D28D6AE ] C:\PROGRA~1\McAfee\VIRUSS~1\mvsap.dll
15:21:17.0184 0672 C:\PROGRA~1\McAfee\VIRUSS~1\mvsap.dll - ok
15:21:17.0184 0672 ============================================================
15:21:17.0184 0672 Scan finished
15:21:17.0184 0672 ============================================================
15:21:17.0184 4180 Detected object count: 1
15:21:17.0184 4180 Actual detected object count: 1
15:21:29.0567 4180 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:21:29.0567 4180 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
15:22:05.0071 3920 Deinitialize success
 



#4 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 15 February 2013 - 02:00 AM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-14 15:28:19
-----------------------------
15:28:19.245    OS Version: Windows x64 6.1.7601 Service Pack 1
15:28:19.245    Number of processors: 4 586 0x2502
15:28:19.245    ComputerName: WINDOWS7  UserName: Diz
15:28:20.042    Initialize success
15:33:03.400    AVAST engine defs: 13021400
15:33:23.446    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:33:23.446    Disk 0 Vendor: WDC_WD50 05.0 Size: 476940MB BusType: 8
15:33:23.461    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
15:33:23.461    Disk 1 Vendor: WDC_WD25 08.0 Size: 238475MB BusType: 8
15:33:23.461    Disk 0 MBR read successfully
15:33:23.461    Disk 0 MBR scan
15:33:23.477    Disk 0 Windows VISTA default MBR code
15:33:23.477    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       39 MB offset 63
15:33:23.492    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        15000 MB offset 81920
15:33:23.492    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       461899 MB offset 30801920
15:33:23.524    Disk 0 scanning C:\Windows\system32\drivers
15:33:33.197    Service scanning
15:33:54.023    Modules scanning
15:33:54.023    Disk 0 trace - called modules:
15:33:54.038    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
15:33:54.038    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80065ff060]
15:33:54.038    3 CLASSPNP.SYS[fffff880017be43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80062b4050]
15:33:55.692    AVAST engine scan C:\Windows
15:33:58.063    AVAST engine scan C:\Windows\system32
15:36:26.434    AVAST engine scan C:\Windows\system32\drivers
15:36:37.853    AVAST engine scan C:\Users\Diz
16:20:15.043    AVAST engine scan C:\ProgramData
16:26:51.971    Scan finished successfully
16:28:06.805    Disk 0 MBR has been saved successfully to "C:\Users\Diz\Desktop\MBR.dat"
16:28:06.820    The log file has been saved successfully to "C:\Users\Diz\Desktop\aswMBR.txt"

 

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\Diz\AppData\Local\Downloaded Installations\{9D59AA5B-65C9-49F4-9F69-B638F406F427}\Mobile Mouse Server.msi a variant of Win32/HiddenStart.A application deleted - quarantined
C:\Users\Diz\AppData\Local\Temp\jar_cache5435585698376420226.tmp multiple threats deleted - quarantined
C:\Windows\Installer\a17e335.msi a variant of Win32/HiddenStart.A application deleted - quarantined
E:\iPod Touch\Comics\hfs.exe a variant of Win32/Server-Web.HFS.A application cleaned by deleting - quarantined
K:\iPhone - iPod\Comics\hfs.exe a variant of Win32/Server-Web.HFS.A application cleaned by deleting - quarantined
K:\Programs\Adobe.Photoshop.CS4.Extended.Read.Nfo-ENGiNE.[sharethefiles.com].zip a variant of Win32/HackTool.Patcher.D application deleted - quarantined
K:\Programs\Adobe.Photoshop.CS4.Extended.Read.Nfo-ENGiNE\Adobe_PS_CS4.iso a variant of Win32/HackTool.Patcher.D application deleted - quarantined



#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:22 PM

Posted 15 February 2013 - 05:49 AM

Run TDSSkiller again and select DELETE for TDSSfilesystem

 

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

 



#6 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 17 February 2013 - 08:23 PM

Here are all the logs except for Junkware. Everytime i ran it i got an error saying "Find string (QGREP) Utility has stopped working"

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.15.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Diz :: WINDOWS7 [administrator]

2/15/2013 3:30:31 PM
mbam-log-2013-02-15 (15-30-31).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 296736
Time elapsed: 5 minute(s), 50 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 2
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (PUM.UserWLoad) -> Data: C:\Users\Diz\LOCALS~1\Temp\msraiyr.com -> Delete on reboot.
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (Trojan.Ransom) -> Data: C:\Users\Diz\LOCALS~1\Temp\msraiyr.com -> Delete on reboot.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

 

MiniToolBox by Farbar  Version:10-01-2013
Ran by Diz (administrator) on 15-02-2013 at 15:41:46
Running from "C:\Users\Diz\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1             localhost

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 


192.157.56.28 www.google-analytics.com.
192.157.56.28 ad-emea.doubleclick.net.
192.157.56.28 www.statcounter.com.
93.115.241.27 www.google-analytics.com.
93.115.241.27 ad-emea.doubleclick.net.
93.115.241.27 www.statcounter.com.

127.0.0.1       localhost

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection 2 (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Windows7
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet #2
   Physical Address. . . . . . . . . : 00-10-18-00-00-00
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::748f:3c69:a6f6:4e05%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.81(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, February 15, 2013 3:38:51 PM
   Lease Expires . . . . . . . . . . : Saturday, February 16, 2013 3:38:50 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 402657304
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-36-60-4E-00-10-18-00-00-00
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.gateway.2wire.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4006:800::1003
   74.125.226.230
   74.125.226.231
   74.125.226.232
   74.125.226.233
   74.125.226.238
   74.125.226.224
   74.125.226.225
   74.125.226.226
   74.125.226.227
   74.125.226.228
   74.125.226.229


Pinging google.com [74.125.226.233] with 32 bytes of data:
Reply from 74.125.226.233: bytes=32 time=27ms TTL=53
Reply from 74.125.226.233: bytes=32 time=25ms TTL=53

Ping statistics for 74.125.226.233:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 25ms, Maximum = 27ms, Average = 26ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=141ms TTL=45
Reply from 206.190.36.45: bytes=32 time=157ms TTL=45

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 141ms, Maximum = 157ms, Average = 149ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...00 10 18 00 00 00 ......Broadcom NetLink ™ Gigabit Ethernet #2
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.81     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.81    276
     192.168.1.81  255.255.255.255         On-link      192.168.1.81    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.81    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.81    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.81    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    276 fe80::/64                On-link
 13    276 fe80::748f:3c69:a6f6:4e05/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/15/2013 00:32:40 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/13/2013 11:30:01 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 13

Error: (02/11/2013 07:50:42 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(4c:8d:79:0f:0f:52@fe80::4e8d:79ff:fe0f:f52._apple-mobdev._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (02/11/2013 07:39:39 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(4c:8d:79:0f:0f:52@fe80::4e8d:79ff:fe0f:f52._apple-mobdev._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (02/11/2013 00:03:14 AM) (Source: Application Error) (User: )
Description: Faulting application name: ATH.exe, version: 17.283.0.3, time stamp: 0x4fb5bca5
Faulting module name: SSLEAY32.dll, version: 0.9.9.1, time stamp: 0x4bf6e5fe
Exception code: 0xc0000005
Fault offset: 0x0000ca0a
Faulting process id: 0x2bb4
Faulting application start time: 0xATH.exe0
Faulting application path: ATH.exe1
Faulting module path: ATH.exe2
Report Id: ATH.exe3

Error: (02/10/2013 06:56:43 PM) (Source: Application Error) (User: )
Description: Faulting application name: ATH.exe, version: 17.283.0.3, time stamp: 0x4fb5bca5
Faulting module name: SSLEAY32.dll, version: 0.9.9.1, time stamp: 0x4bf6e5fe
Exception code: 0xc0000005
Fault offset: 0x0000ca0a
Faulting process id: 0x2144
Faulting application start time: 0xATH.exe0
Faulting application path: ATH.exe1
Faulting module path: ATH.exe2
Report Id: ATH.exe3

Error: (02/08/2013 07:59:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 749039

Error: (02/08/2013 07:59:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 749039

Error: (02/08/2013 07:59:41 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/06/2013 09:22:30 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16457, time stamp: 0x50a2f9e3
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e066
Faulting process id: 0xa5c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (02/15/2013 03:41:42 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (02/15/2013 03:41:42 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (02/15/2013 03:39:21 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (02/15/2013 03:39:21 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (02/15/2013 03:38:59 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (02/15/2013 03:38:59 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (02/15/2013 03:38:59 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (02/15/2013 03:38:59 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (02/15/2013 03:38:57 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
RxFilter

Error: (02/15/2013 03:38:55 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060


Microsoft Office Sessions:
=========================
Error: (02/15/2013 00:32:40 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (02/13/2013 11:30:01 AM) (Source: Bonjour Service)(User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 13

Error: (02/11/2013 07:50:42 PM) (Source: Bonjour Service)(User: )
Description: Client application bug: DNSServiceResolve(4c:8d:79:0f:0f:52@fe80::4e8d:79ff:fe0f:f52._apple-mobdev._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (02/11/2013 07:39:39 PM) (Source: Bonjour Service)(User: )
Description: Client application bug: DNSServiceResolve(4c:8d:79:0f:0f:52@fe80::4e8d:79ff:fe0f:f52._apple-mobdev._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (02/11/2013 00:03:14 AM) (Source: Application Error)(User: )
Description: ATH.exe17.283.0.34fb5bca5SSLEAY32.dll0.9.9.14bf6e5fec00000050000ca0a2bb401ce0811e4f5d608C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ATH.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SSLEAY32.dll56611fe6-7408-11e2-ab80-001018000000

Error: (02/10/2013 06:56:43 PM) (Source: Application Error)(User: )
Description: ATH.exe17.283.0.34fb5bca5SSLEAY32.dll0.9.9.14bf6e5fec00000050000ca0a214401ce07dca40266ebC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ATH.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SSLEAY32.dll84807277-73dd-11e2-ab80-001018000000

Error: (02/08/2013 07:59:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 749039

Error: (02/08/2013 07:59:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 749039

Error: (02/08/2013 07:59:41 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/06/2013 09:22:30 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.1645750a2f9e3ntdll.dll6.1.7601.177254ec49b8fc00000050002e066a5c01ce04d35253903dC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\SysWOW64\ntdll.dll38e09a2b-70cd-11e2-b01c-001018000000


CodeIntegrity Errors:
===================================
  Date: 2013-02-11 18:13:12.452
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-11 18:13:12.452
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-11 18:13:12.452
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-11 14:22:20.999
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-11 14:22:20.999
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-11 14:22:20.999
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-06 13:36:19.795
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-06 13:36:19.791
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-06 13:36:19.788
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2012-09-27 12:37:34.799
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe AIR (Version: 2.5.1.17730)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Audition 3.0 (Version: 3.0)
Adobe Audition 3.0 Vista Compatibility
Adobe Audition CS5.5 (Version: 4.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Community Help (Version: 3.4.980)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
Adobe Flash Player 11 Plugin (Version: 11.5.502.149)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Reader 9.4.6 (Version: 9.4.6)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Any Video Converter Professional 2.7.0
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Control Center (Version: 2.009.1209.2334)
Audacity 1.3.12 (Unicode)
Banctec Service Agreement (Version: 2.0.0)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Full Existing (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Full New (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Light (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Previews Common (Version: 2009.1209.2335.42329)
Catalyst Control Center Graphics Previews Vista (Version: 2009.1209.2335.42329)
Catalyst Control Center InstallProxy (Version: 2009.1209.2335.42329)
Catalyst Control Center Localization All (Version: 2009.1209.2335.42329)
ccc-core-static (Version: 2009.1209.2335.42329)
ccc-utility64 (Version: 2009.1209.2335.42329)
CCC Help Chinese Standard (Version: 2009.1209.2334.42329)
CCC Help Chinese Traditional (Version: 2009.1209.2334.42329)
CCC Help Czech (Version: 2009.1209.2334.42329)
CCC Help Danish (Version: 2009.1209.2334.42329)
CCC Help Dutch (Version: 2009.1209.2334.42329)
CCC Help English (Version: 2009.1209.2334.42329)
CCC Help Finnish (Version: 2009.1209.2334.42329)
CCC Help French (Version: 2009.1209.2334.42329)
CCC Help German (Version: 2009.1209.2334.42329)
CCC Help Greek (Version: 2009.1209.2334.42329)
CCC Help Hungarian (Version: 2009.1209.2334.42329)
CCC Help Italian (Version: 2009.1209.2334.42329)
CCC Help Japanese (Version: 2009.1209.2334.42329)
CCC Help Korean (Version: 2009.1209.2334.42329)
CCC Help Norwegian (Version: 2009.1209.2334.42329)
CCC Help Polish (Version: 2009.1209.2334.42329)
CCC Help Portuguese (Version: 2009.1209.2334.42329)
CCC Help Russian (Version: 2009.1209.2334.42329)
CCC Help Spanish (Version: 2009.1209.2334.42329)
CCC Help Swedish (Version: 2009.1209.2334.42329)
CCC Help Thai (Version: 2009.1209.2334.42329)
CCC Help Turkish (Version: 2009.1209.2334.42329)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Connect (Version: 1.0.0.1)
D3DX10 (Version: 15.4.2368.0902)
Dance eJay 6 - Deinstallation
Dell DataSafe Local Backup - Support Software (Version: 2.34)
Dell DataSafe Local Backup (Version: 9.3.74)
Dell DataSafe Online (Version: 1.2.0009)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.2.6032.102)
DirectXInstallService (Version: 9.0.2)
Easy GIF Animator 5.3 (Version: Easy GIF Animator 5.0)
EMC 10 Content (Version: 1.0.035)
EMCGadgets64 (Version: 1.0.302)
eMule
ESET Online Scanner v3
GameSalad Creator (Version: 0.10.00)
GIMP 2.6.8
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.123)
Haali Media Splitter
HipHop 6 (Version: 6.1.55)
HipHop eJay 5 - Deinstallation
iCloud (Version: 2.1.1.3)
Intel® Control Center (Version: 1.2.0.1006)
Intel® Rapid Storage Technology (Version: 9.5.0.1037)
iTunes (Version: 11.0.1.12)
Jagged Alliance - Back in Action
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 17 (64-bit) (Version: 6.0.170)
Java™ 6 Update 30 (Version: 6.0.300)
Junk Mail filter update (Version: 15.4.3502.0922)
kuler (Version: 2.0)
LAME v3.98.3 for Audacity
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
McAfee SecurityCenter (Version: 11.6.477)
Media Go (Version: 1.6.508)
Media Go Video Playback Engine 1.48.101.10090 (Version: 1.48.101.10090)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Mobile Mouse Server (Version: 2.0.3.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Card Reader (Version: 1.4.915.1)
NVIDIA PhysX (Version: 9.10.0513)
OpenAL
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
PlayStation®Network Downloader (Version: 2.04.00651)
PlayStation®Store (Version: 4.0.14.10643)
PowerDVD DX (Version: 8.3.6029)
QuickTime (Version: 7.71.80.42)
Razer Reclusa Config (Version: 5.01)
Realtek High Definition Audio Driver (Version: 6.0.1.5953)
Remote Mouse version 2.00 (Version: 2.00)
RemoteX 2.5.1.39 (Version: 2.5.1.39)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.0)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Easy CD and DVD Burning (Version: 10.3)
Roxio Easy CD and DVD Burning (Version: 10.3.106)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio File Backup (Version: 1.3.0)
Roxio Update Manager (Version: 6.0.0)
Shared C Run-time for x64 (Version: 10.0.0)
Skins (Version: 2009.1209.2335.42329)
Soldier of Fortune II - Double Helix MP TEST
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
SoundTap Streaming Audio Recorder
SPORE™ (Version: 1.00.0000)
Steam (Version: 1.0.0.0)
Suite Shared Configuration CS4 (Version: 1.0)
Switch Sound File Converter
The Walking Dead © 3 version 1 (Version: 1)
THX TruStudio PC (Version: 1.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VD64Inst (Version: 1.00.0000)
VirtualCloneDrive
VLC media player 1.1.4 (Version: 1.1.4)
VoiceOver Kit (Version: 1.42.128.0)
WD SmartWare (Version: 1.1.0.7)
Widevine Media Transformer Plugin 4.5.0 (Version: 4.5.0.3913)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows SideShow Managed Runtime 1.0 (Version: 1.0.1.0)
WinRAR archiver
WinSCP 4.2.9 (Version: 4.2.9)
XBMC

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 6071.08 MB
Available physical RAM: 4015.22 MB
Total Pagefile: 12140.34 MB
Available Pagefile: 9706.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.46 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:329.15 GB) NTFS
3 Drive e: () (Fixed) (Total:232.88 GB) (Free:34.43 GB) NTFS
8 Drive j: (WD SmartWare) (CDROM) (Total:0.56 GB) (Free:0 GB) UDF
9 Drive k: (My Book) (Fixed) (Total:930.86 GB) (Free:659.74 GB) NTFS

========================= Users: ========================================

User accounts for \\WINDOWS7

Administrator            Diz                      Guest                   
Mcx1-WINDOWS7            Mcx2-WINDOWS7            Mcx3-WINDOWS7           


**** End of log ****

 

 

Farbar Service Scanner Version: 15-02-2013
Ran by Diz (administrator) on 15-02-2013 at 15:43:53
Running from "C:\Users\Diz\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-02-12 16:37] - [2013-01-03 01:00] - 1913192 ____A (Microsoft Corporation) B62A953F2BF3922C8764A29C34A22899

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#7 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 17 February 2013 - 08:25 PM

# AdwCleaner v2.112 - Logfile created 02/15/2013 at 15:48:46
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Diz - WINDOWS7
# Boot Mode : Normal
# Running from : C:\Users\Diz\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Diz\AppData\Local\SanctionedMedia

***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\SanctionedMedia
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [1107 octets] - [15/02/2013 15:48:46]

########## EOF - C:\AdwCleaner[S1].txt - [1167 octets] ##########

 

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/17/2013 08:16:01 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKLM\Software\Classes\exefile\shell\open\command\\IsolatedCommand was changed. It was reset to "%1" %*!

  * HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!


Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

 * ALERT: ZEROACCESS rootkit symptoms found!

     * HKEY_CLASSES_ROOT\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32 [ZA Reg Hijack]
     * C:\Users\Diz\AppData\Local\{c8ec1f45-ba17-d39f-eb4e-c2ba1cb08ee4}\ [ZA Dir]
     * C:\Users\Diz\AppData\Local\{c8ec1f45-ba17-d39f-eb4e-c2ba1cb08ee4}\L\ [ZA Dir]
     * C:\Users\Diz\AppData\Local\{c8ec1f45-ba17-d39f-eb4e-c2ba1cb08ee4}\U\ [ZA Dir]

Checking Windows Service Integrity:

 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: Manual

 * BFE [Missing Service]
 * iphlpsvc [Missing Service]
 * MpsSvc [Missing Service]
 * WinDefend [Missing Service]
 * wscsvc [Missing Service]

 * SharedAccess [Missing ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * Cannot edit the HOSTS file.
 * Permissions Fixed. Administrators can now edit the HOSTS file.

 * HOSTS file entries found:

  127.0.0.1       localhost
  ::1             localhost
  192.157.56.28 www.google-analytics.com.
  192.157.56.28 ad-emea.doubleclick.net.
  192.157.56.28 www.statcounter.com.
  93.115.241.27 www.google-analytics.com.
  93.115.241.27 ad-emea.doubleclick.net.
  93.115.241.27 www.statcounter.com.

Program finished at: 02/17/2013 08:16:18 PM
Execution time: 0 hours(s), 0 minute(s), and 17 seconds(s)



"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "RtHDVCpl" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravcpl64.exe"
+ "RunDLLEntry_EptMon" "" "Creative Technology Ltd." "c:\windows\system32\eptmon64.dll"
+ "RunDLLEntry_THXCfg" "" "Creative Technology Ltd." "c:\windows\system32\thxcfg64.dll"
+ "XboxStat" "XBoxStat.exe" "Microsoft Corporation" "c:\program files\microsoft xbox 360 accessories\xboxstat.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe"
+ "AdobeCS4ServiceManager" "Adobe CS4 Service Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "Dell DataSafe Online" "DataSafeOnline" "" "c:\program files (x86)\dell datasafe online\datasafeonline.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "mcui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
+ "PDVDDXSrv" "CyberLink PowerDVD Resident Program" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\pdvddxsrv.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "Reclusa" "razerhid MFC Application" "Razer USA Ltd." "c:\program files (x86)\razer\reclusa\razerhid.exe"
+ "RemoteX" "Server service for RemoteX" "PEEPLEware" "c:\program files (x86)\remotex\remotex.exe"
+ "ShwiconXP9106" "IconUtility ShwiconXP Application" "Alcor Micro Corp." "c:\program files (x86)\multimedia card reader(9106)\shwiconxp9106.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "THX Audio Control Panel" "THXAudio" "Creative Technology Ltd" "c:\program files (x86)\creative\thx trustudio pc\thxaudiocp\thxaudio.exe"
+ "UpdReg" "Creative UpdReg" "Creative Technology Ltd." "c:\windows\updreg.exe"
+ "VirtualCloneDrive" "Virtual CloneDrive Daemon" "Elaborate Bytes AG" "c:\program files (x86)\elaborate bytes\virtualclonedrive\vcddaemon.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Air Mouse.lnk" "AirMouse" "" "c:\program files (x86)\air mouse\air mouse\air mouse.exe"
+ "WDDMStatus.lnk" "WD Drive Manager" "WDC" "c:\program files\western digital\wd smartware\wd drive manager\wddmstatus.exe"
+ "WDSmartWare.lnk" "WD SmartWare" "Western Digital" "c:\program files (x86)\western digital\wd smartware\front parlor\wdsmartware.exe"
"HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Load" "" "" ""
+ "C:\Users\Diz\LOCALS~1\Temp\msraiyr.com" "" "" "File not found: C:\Users\Diz\LOCALS~1\Temp\msraiyr.com"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Apple Computer, Inc." "" "" "File not found: C:\Users\Diz\AppData\Roaming\B532EF\B532EF.exe"
+ "HotKeysCmds" "" "" "File not found: C:\Users\Diz\AppData\Local\Temp\A589.EXE"
+ "iFunBoxConnector" "" "" "c:\users\diz\desktop\ifunbox.win\ifb_conn.exe"
+ "Remote Mouse" "Remote Mouse" "RemoteMouse.net" "c:\program files (x86)\remote mouse\remotemouse.exe"
+ "Sidebar" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sidebar.exe"
+ "Steam" "Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win32@winslave04)" "Valve Corporation" "c:\program files (x86)\steam\steam.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "application/x-mfe-ipt" "McAfee MSC IE plugin DLL" "McAfee, Inc." "c:\program files\mcafee\msc\mcsniepl64.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "dssrequest" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "sacore" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files (x86)\magiciso\misosh64.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "PhotoStreamsExt" "" "" "c:\program files\common files\apple\internet services\shellstreams64.dll"
+ "RXDCExtSvr" "Roxio Disc Copier Shell Extension (AMD64)" "Sonic Solutions" "c:\program files\roxio\virtual drive 10\dc_shellext64.dll"
+ "VirtualCloneDrive" "CloseTray" "Elaborate Bytes AG" "c:\program files (x86)\elaborate bytes\virtualclonedrive\elbyvcdshell.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "PhotoStreamsExt" "ShellStreams.dll" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\shellstreams.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe drive cs4\adfsmenu.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files (x86)\magiciso\misosh64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "WinSCPCopyHook" "Drag&Drop shell extension for WinSCP (64-bit)" "Martin Prikryl" "c:\program files (x86)\winscp\dragext64.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files (x86)\magiciso\misosh64.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "RXDCExtSvr" "Roxio Disc Copier Shell Extension (AMD64)" "Sonic Solutions" "c:\program files\roxio\virtual drive 10\dc_shellext64.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
+ "Search Helper" "Search Helper for Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\microsoft\search enhancement pack\search helper\sepsearchhelperie.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" ""
+ "McAfee SiteAdvisor Toolbar" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.5 r502" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\AdobeAAMUpdater-1.0-WINDOWS7-Diz" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\JavaUpdateSched" "" "" "File not found: C:\Windows\System32\jusched.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\NCH Swift Sound\switchDowngrade" "Switch Sound File Converter" "NCH Software" "c:\program files (x86)\nch swift sound\switch\switch.exe"
+ "\PCDEventLauncher" "PC-Doctor Module" "PC-Doctor, Inc." "c:\program files\dell support center\sessionchecker.exe"
+ "\PCDoctorBackgroundMonitorTask" "PC-Doctor Module" "PC-Doctor, Inc." "c:\program files\dell support center\uaclauncher.exe"
+ "\SystemToolsDailyTest" "" "" "File not found: uaclauncher.exe"
+ "\XboxStatTask" "XBoxStat.exe" "Microsoft Corporation" "c:\program files\microsoft xbox 360 accessories\xboxstat.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Adobe LM Service" "AdobeLM Service" "Adobe Systems" "c:\program files (x86)\common files\adobe systems shared\service\adobelmsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "DockLoginService" "Dock Login Service" "Stardock Corporation" "c:\program files\dell\delldock\docklogin.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "FLEXnet Licensing Service 64" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice64.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "McAfee SiteAdvisor Service" "McAfee SiteAdvisor Service" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McMPFSvc" "Helps protect your computer from intrusion and let's you manage your computer's trusted programs." "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "mcmscsvc" "McAfee Services" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McNaiAnn" "McAfee VirusScan Announcer" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McNASvc" "McAfee Network Agent" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McODS" "McAfee Scanner" "McAfee, Inc." "c:\program files\mcafee\virusscan\mcods.exe"
+ "McProxy" "McAfee Proxy Service" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McShield" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mcshield.exe"
+ "mfefire" "Provides firewall services to McAfee products" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "MSK80Service" "This service filters e-mail messages on your computer" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "RoxMediaDB10" "Roxio RoxMediaDB10 Service" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\roxmediadb10.exe"
+ "SeaPort" "Enables the detection, download and installation of up-to-date configuration files for Microsoft Search Enhancement applications. Also provides server communication for the customer experience improvement program. If this service is disabled, search enhancement features such as search history may not work correctly." "Microsoft Corporation" "c:\program files (x86)\microsoft\search enhancement pack\seaport\seaport.exe"
+ "SessionLauncher" "Sonic" "" "File not found: c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe"
+ "SftService" "SoftThinks Agent Service" "SoftThinks" "c:\program files (x86)\dell datasafe local backup\sftservice.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "stllssvr" "SureThing Labelflash Disc Printer Service Module" "MicroVision Development, Inc." "c:\program files (x86)\common files\surething shared\stllssvr.exe"
+ "WDDMService.exe" "Provides functionality for Western Digital disk drives." "WDC" "c:\program files\western digital\wd smartware\wd drive manager\wddmservice.exe"
+ "WDSmartWareBackgroundService" "Manages background tasks for WDSmartWare Applications" "Memeo" "c:\program files (x86)\western digital\wd smartware\front parlor\wdsmartwarebackgroundservice.exe"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adfs" "Adobe Drive File System Driver" "Adobe Systems, Inc." "c:\windows\system32\drivers\adfs.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "AirDisplay" "AVVideoCard Miniport Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\avvideocard.sys"
+ "AirDisplayMirror" "AVVideoCard Miniport Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\avvideocardmirror.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHdmiService" "ATI High Definition Audio Function Driver" "ATI Technologies, Inc." "c:\windows\system32\drivers\atihdmi.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "catchme" "" "" "File not found: C:\ComboFix\catchme.sys"
+ "cfwids" "McAfee Personal Firewall IDS Plugin" "McAfee, Inc." "c:\windows\system32\drivers\cfwids.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "ElbyCDIO" "ElbyCD Windows x64 I/O driver" "Elaborate Bytes AG" "c:\windows\system32\drivers\elbycdio.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "HabuFltr" "Diamondback USB Optical Mouse Driver" "Razer (Asia-Pacific) Pte Ltd" "c:\windows\system32\drivers\habu.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "HipShieldK" "McAfee HIP IPS Driver" "McAfee, Inc." "c:\windows\system32\drivers\hipshieldk.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IntcDAud" "Intel® Display HD Audio driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "jumi" "Jumi Virtual Hid Device" "Windows ® Codename Longhorn DDK provider" "c:\windows\system32\drivers\jumi.sys"
+ "k57nd60a" "Broadcom NetLink ™ Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\k57nd60a.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01" "" "" "File not found: C:\Windows\System32\Drivers\mfeavfk01.sys"
+ "mfefirek" "McAfee Core Firewall Engine Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mferkdet" "McAfee Code Analysis Driver" "McAfee, Inc." "c:\windows\system32\drivers\mferkdet.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RecFltr" "" "" "c:\windows\system32\drivers\recfltr.sys"
+ "RxFilter" "RxFilter mini-filter driver" "" "File not found: system32\DRIVERS\RxFilter.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Serial" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "ssadbus" "SAMSUNG Android USB Composite Device Driver" "MCCI Corporation" "c:\windows\system32\drivers\ssadbus.sys"
+ "ssadmdfl" "SAMSUNG Android USB Modem (Filter)" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdfl.sys"
+ "ssadmdm" "SAMSUNG Android USB Modem Drivers" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdm.sys"
+ "ssadserd" "SAMSUNG Android USB Diagnostic Serial Port (WDM)" "MCCI Corporation" "c:\windows\system32\drivers\ssadserd.sys"
+ "stdriver" "stdriver.sys" "NCH Software" "c:\windows\system32\drivers\stdriver64.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "VClone" "VirtualCloneCD Driver" "Elaborate Bytes AG" "c:\windows\system32\drivers\vclone.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "msacm.voxacm160" "Voxware Audio Compression Manager Driver" "Voxware, Inc." "c:\windows\syswow64\vct3216.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.x64.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.x64.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.x64.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.x64.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\haali\matroskasplitter\dxr.x64.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.x64.ax"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax"
+ "Audio Source" "Windows Media Preview Object" "Microsoft Corporation" "c:\program files (x86)\windows media components\encoder\wmprevu.dll"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CuttlefishSubtitleParser Filter" "Sony MP4 SMF Subtitle Stream Parser" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.48.101.10090\cuttlefishsubtitleparser.ax"
+ "CyberLink Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\claud.ax"
+ "CyberLink Audio Effect" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\claudfx.ax"
+ "CyberLink Audio Spectrum Analyzer" "CLAudSpa.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\claudspa.ax"
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\claudwizard.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\claudiocd.ax"
+ "CyberLink Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\cldemuxer.ax"
+ "CyberLink DVD Navigator" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\clnavx.ax"
+ "CyberLink Line21 Decoder Filter" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\clline21.ax"
+ "Cyberlink SubTitle Importor" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\clsubtitle.ax"
+ "CyberLink TimeStretch Filter" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\clauts.ax"
+ "CyberLink Tzan Filter" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\cltzan.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\clvidfx.ax"
+ "CyberLink Video/SP Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd dx\kernel\movie\clvsd.ax"
+ "eJayQuellFilter" "" "" "c:\windows\syswow64\ejayxquell.ax"
+ "eJayxAudio" "eJayxAudio" "eJay Entertainment GmbH" "c:\windows\syswow64\ejayxaudio.ax"
+ "eJWaveDest" "" "" "c:\windows\syswow64\ejayxwavedest.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\haali\matroskasplitter\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\haali\matroskasplitter\splitter.ax"
+ "LVMWriter" "LVMWriter" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\lvmwriter.ax"
+ "Media Analyser" "analyse Filter (Sample)" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\mediaanalyser.ax"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "PSI Parser" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "ROXIO Audio Source 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "Roxio Audio Source Filter" "Roxio Audio Source Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiosource.ax"
+ "Roxio Audio Stream Reader Filter" "Roxio Audio Stream Reader Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamreader.ax"
+ "Roxio Audio Stream Writer Filter" "Roxio Audio Stream Writer Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamwriter.ax"
+ "ROXIO Audio VCFChunker 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO Audio VCFLooper 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO AudioConvert 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO AudioGrabber 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO ColorSpace Converter 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO CPU Regulator" "CPURegulator.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\cpuregulator.ax"
+ "ROXIO CrossGraphEx Renderer 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO CrossGraphEx Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "roxio DCFilters Audio Sync Filter 2 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Dragons Lair 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters DVD Muxer 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters DVDStream Reader 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters DVDStream Splitter 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Mpeg I/II Decoder 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Smart Resizer 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "roxio DCFilters Subpicture Mixer 10" "roxio DiscCopier DirectShow Filter Collection" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\dllshared\dcfilters10.dll"
+ "ROXIO Deinterlace 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO DV Scene Detector Tee 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO DVDCrossGraphEx Renderer 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO DVDCrossGraphEx Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Field Combiner 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Field Splitter 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Image/Colour Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO ListImage Source 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO LPCMSyncFilter" "LPCMSync Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\lpcmsyncfilter.dll"
+ "Roxio LVM File Source (Async.)" "LVMAsync" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\lvmasync.ax"
+ "Roxio MPEG Analyzer Filter" "MPEG File Analyzer Dynamic Link Library" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxiompegprop.dll"
+ "Roxio MPEG Stream Analyzer" "Roxio MPEG Stream Splitter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpegstreamanalyzer.dll"
+ "Roxio MPEG1 Audio Encoder" "ROXIO MPEG Audio Encoder" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxioaudioenc.dll"
+ "Roxio MPEG1 Encoder" "ROXIO MPEG1 Codec" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg1vidcodec.dll"
+ "Roxio MPEG1 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg1muxer.dll"
+ "Roxio MPEG2 Demuxer" "ROXIO MPEG Demuxer" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxiompegdemuxer.dll"
+ "Roxio MPEG2 Encoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "Roxio MPEG2 Muxer" "ROXIO MPEG MUXER" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg2muxer.dll"
+ "Roxio MPEG2 Video Decoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "ROXIO Pan Zoom 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Pin Tee" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "Roxio Plasma CrossGraph Renderer" "MGICGFilter.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\plasmacgfilter.ax"
+ "Roxio Plasma CrossGraph Source" "MGICGFilter.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\plasmacgfilter.ax"
+ "ROXIO QT Source" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO QuickGrabber 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Raw Writer" "ROXIO Raw Writer" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mgirawwriter.dll"
+ "Roxio Repack Filter" "Repack Filter" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\repackfilter.dll"
+ "ROXIO Scene Detector 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO SceneRecorder 1.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "Roxio Smart Decoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "Roxio Smart Encoder" "ROXIO MPEG2 Codec" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg2vidcodec.dll"
+ "ROXIO SpyPos 3.0" "Null-In-Place (Sample)" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\mginullip.ax"
+ "ROXIO ThumbnailGrabber 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "Roxio Transport Stream Source" "ListFrameSource" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\tsmpegsource.dll"
+ "ROXIO VCFAlphaSplitter 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFAudioMixer 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO VCFDvrSupport 3.0" "DVR support filter" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\dvrsupportfilt.ax"
+ "ROXIO VCFDVSceneDetect 1.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFLatency 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO VCFpeakmeter 3.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO VCFStationLogo 1.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFVideoCutList 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VCFWaveform 1.0" "Roxio Audio Filters" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxaudio.ax"
+ "ROXIO Video Effect 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Video Resampler 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO Video VCFLooper 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "ROXIO VideoCombine 3.0" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "Roxio VOB Formatter" "VOBFormatter" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\vobformatter.ax"
+ "Roxio Vob Loader" "VOBLoader" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\vobloader.ax"
+ "Screen capture Filter" "WMESrcWp Module" "Microsoft Corporation" "c:\program files (x86)\windows media components\encoder\wmesrcwp.dll"
+ "Sewer" "MVWcDSutil" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\mvwcdsutil.dll"
+ "Sonic Cinemaster® Audio Decoder 4.3" "SonicHDAudio" "Sonic Solutions" "c:\program files (x86)\common files\sonic shared\cinemasteraudio.dll"
+ "Sonic Cinemaster® VideoDecoder 4.3" "CinemasterVideo" "Sonic Solutions" "c:\program files (x86)\common files\sonic shared\cinemastervideo.dll"
+ "Sonic HD Demuxer" "Sonic HD Demuxer" "" "c:\program files (x86)\roxio\sonichddemuxer.dll"
+ "Sonic HD Nav" "SonicHDNav" "" "c:\program files (x86)\common files\sonic shared\sonichdnav.dll"
+ "Sonic MPEG-2 Video Decoder" "MPEG-2 Video Decoder" "Sonic Solutions Inc." "c:\program files (x86)\common files\sonic shared\sonicmc02\sonic7m2vd.ax"
+ "Sony CF AAC decoder" "Sony FhG AAC Decoder" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.48.101.10090\cfaac.ax"
+ "Sony CF AVC Decoder" "Sony AVC Decoder Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.48.101.10090\sjvtdfcf.ax"
+ "Sony MP4 File Source" "Sony MP4 File Source Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.48.101.10090\mp4filesource.ax"
+ "SubPicture Encoder" "ROXIO SubPicture Encoder" "Sonic Solutions" "c:\program files (x86)\common files\roxio shared\10.0\mpeg\subpictenc.dll"
+ "VCG Null Renderer 3.0" "VideoCompositing Module" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\videocompositing.ax"
+ "VCG Video Mixer 3.0" "VideoCompositing Module" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\videocompositing.ax"
+ "VCGImageSource" "VideoCompositing Module" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\videocompositing.ax"
+ "Video Source" "Windows Media Preview Object" "Microsoft Corporation" "c:\program files (x86)\windows media components\encoder\wmprevu.dll"
+ "VMR9 Wrapper 3.0" "VideoCompositing Module" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\videocompositing.ax"
+ "VW Input Selector" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "VW Video Transition" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "VW Video Transition" "CrossGraphEx.ax" "Sonic Solutions" "c:\program files (x86)\roxio\videocore 10\roxvideo.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMEncSourceSink" "WMESrcWp Module" "Microsoft Corporation" "c:\program files (x86)\windows media components\encoder\wmesrcwp.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "AdobeDriveCS4_NP" "Adobe Drive CS4 Network" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe drive cs4\adobedrivecs4_np.dll"
"C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "All CPU Meter" "The All Cpu Meter will show you all core cpu usage(24 Core, 16 Core, 12 Core, 8 Core, 6 Core, 4 Core, 3 Core, 2 Core, 1 Core),Temperatures and RAM usage. It also displayes all core usage history." "AddGadget.com" "C:\Users\Diz\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.3[1].gadget\Gadget.xml"
 



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:22 PM

Posted 17 February 2013 - 08:30 PM

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log
 


Edited by narenxp, 12 March 2013 - 12:29 AM.


#9 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 17 February 2013 - 10:26 PM

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/17/2013 10:15:02 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: Manual

 * BFE [Missing Service]
 * iphlpsvc [Missing Service]
 * MpsSvc [Missing Service]
 * WinDefend [Missing Service]
 * wscsvc [Missing Service]

 * SharedAccess [Missing ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * Cannot edit the HOSTS file.
 * Permissions Fixed. Administrators can now edit the HOSTS file.

 * HOSTS file entries found:

  127.0.0.1       localhost
  ::1             localhost
  192.157.56.28 www.google-analytics.com.
  192.157.56.28 ad-emea.doubleclick.net.
  192.157.56.28 www.statcounter.com.
  93.115.241.27 www.google-analytics.com.
  93.115.241.27 ad-emea.doubleclick.net.
  93.115.241.27 www.statcounter.com.

Program finished at: 02/17/2013 10:15:09 PM
Execution time: 0 hours(s), 0 minute(s), and 6 seconds(s)

 

 

 

Farbar Service Scanner Version: 15-02-2013
Ran by Diz (administrator) on 17-02-2013 at 22:18:36
Running from "C:\Users\Diz\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-02-12 16:37] - [2013-01-03 01:00] - 1913192 ____A (Microsoft Corporation) B62A953F2BF3922C8764A29C34A22899

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

 

 

MiniToolBox by Farbar  Version:10-01-2013
Ran by Diz (administrator) on 17-02-2013 at 22:24:51
Running from "C:\Users\Diz\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

#       ::1             localhost


**** End of log ****



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:22 PM

Posted 17 February 2013 - 10:31 PM

Restart the PC and run farbar service scanner from normal mode,post the log

 

Press Windows+R key and type

regedit and click ok

Go to

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Now on  right side you should find a key called LOAD

Delete it,if you receive access denied error

 

go to HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows

right click on Windows key

Click on permissions

CLick on Everyone

Under permissions ,select FULL CONTROL and click ok,now you should be able to delete the LOAD key

 

Run malwarebytes again and post the log



#11 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 17 February 2013 - 10:44 PM

Heres the log for Farbar but i dont see HKCU anywhere in my regedit window

 

Farbar Service Scanner Version: 15-02-2013
Ran by Diz (administrator) on 17-02-2013 at 22:36:39
Running from "C:\Users\Diz\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-02-12 16:37] - [2013-01-03 01:00] - 1913192 ____A (Microsoft Corporation) B62A953F2BF3922C8764A29C34A22899

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:22 PM

Posted 17 February 2013 - 10:51 PM

HKCU is HKEY_CURRENT_USER



#13 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 17 February 2013 - 10:54 PM

Ok. All i have on the right side is (default), Device, and UserSelectedDefault, no LOAD key



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:22 PM

Posted 17 February 2013 - 10:59 PM

Are you looking at this key?

 

HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows



#15 DutchMaster22

DutchMaster22
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 17 February 2013 - 11:06 PM

Yes




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users