Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Had ice ransomeware, think there are remnants


  • This topic is locked This topic is locked
28 replies to this topic

#1 bkyota

bkyota

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 15 July 2013 - 09:47 PM

Running windows 7. I used hitman to remove the ice ransomeware virus but i just want to make sure there aren't any remnants of the virus left. I ran mbam and it removed a few things. Thanks in advance

BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:13 PM

Posted 15 July 2013 - 10:37 PM



Hello bkyota

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.





I need to get some reports to get a base to start from so I need you to run these programs first.



-Download DDS-
  • Please download DDS from one of the links below and save it to your desktop:

    dds_scr.gif
    Download DDS and save it to your desktop

    Link1
    Link2
    Link3
    • Double-Click on dds.scr and a command window will appear. This is normal.
    • Shortly after two logs will appear:
      • DDS.txt
      • Attach.txt
    • A window will open instructing you save & post the logs
    • Save the logs to a convenient place such as your desktop
    • Copy the contents of both logs & post in your next reply
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 06:40 AM

Thanks Gringo, below are the logs that you wanted.  I don't know if its from the ransomeware but now it seems that MBAM, DDS, and a few other programs on the desktop have a blue and gold sheild on them.  They may not be related.  Thanks for the help. 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16635  BrowserJavaVersion: 1.6.0_38
Run by Ste at 7:33:04 on 2013-07-16
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4003.2556 [GMT -4:00]
.
AV: McAfee VirusScan Enterprise *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
SP: McAfee VirusScan Enterprise Antispyware Module *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe
C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunesHelper.exe
C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\McAfee\Common Framework\McTray.exe
C:\Program Files (x86)\Common Files\Teleca Shared\logger.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\Program Files (x86)\Common Files\Teleca Shared\Generic.exe
C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\ClientInitiatedStarter.exe
C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\epmworker.exe
C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\HTCVBTServer.exe
C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\FsynSrvStarter.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.aol.com/
mWinlogon: Userinit = userinit.exe,
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20130511221356.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [HLBackupScheduler] C:\Program Files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [RoxWatchTray] "c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
mRun: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [Mobile Connectivity Suite] "C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe" /startoptions
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [iTunesHelper] "C:\Program Files\iTunesHelper.exe"
mRun: [McAfeeUpdaterUI] "C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey
mRun: [ShStatEXE] "C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
mRunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
TCP: NameServer = 192.168.254.254
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E} : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\3334F6D6 : DHCPNameServer = 24.25.5.60 24.25.5.61 4.2.2.1
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\34163756970284F6573756 : DHCPNameServer = 208.67.222.222 208.67.220.220
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\378627F65627F6 : DHCPNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\646414 : DHCPNameServer = 24.25.5.60 24.25.5.61 192.168.1.1
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\65562796A7F6E60214442563430303C40293534434 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\755637472627F6F6B6 : DHCPNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{DB8890D8-3E62-490D-A06C-8879B69AD14E}\C696E6B6379737 : DHCPNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{E4870DE0-DFB1-4A26-825F-E7AA890C1F55} : DHCPNameServer = 209.18.47.61 209.18.47.62
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
x64-BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20130511221355.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
x64-Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
x64-Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
x64-Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - <orphaned>
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\896\G2AWinLogon_x64.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\Mozilla Plugins\npitunes.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll
FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2013-5-11 666152]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2013-5-11 303464]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-4-18 55856]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2011-4-18 89600]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2010-11-3 897088]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.EXE [2012-2-10 240408]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2010-11-3 1298496]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\drivers\btmaux.sys [2010-11-4 58128]
R3 btmhsf;btmhsf;C:\Windows\System32\drivers\btmhsf.sys [2010-10-19 274432]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2011-4-18 175168]
R3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\drivers\iBtFltCoex.sys [2010-11-4 59904]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-4-18 317440]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2013-5-11 274880]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-12-10 181248]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-4-18 406632]
R3 wdkmd;Intel WiDi KMD;C:\Windows\System32\drivers\WDKMD.sys [2010-12-1 42392]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE [2012-2-10 193816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 FlyUsb;FLY Fusion;C:\Windows\System32\drivers\FlyUsb.sys [2012-7-5 24576]
S3 HTCAND64;HTC Device Driver;C:\Windows\System32\drivers\ANDROIDUSB.sys [2009-10-26 32768]
S3 Leapfrog-USBLAN;Leapfrog-USBLAN;C:\Windows\System32\drivers\btblan.sys [2011-11-12 40320]
S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\drivers\mferkdet.sys [2013-5-11 101200]
S3 NWUSBCDFIL64;Novatel Wireless Installation CD;C:\Windows\System32\drivers\NwUsbCdFil64.sys [2008-7-7 25600]
S3 NWUSBPort2;Novatel Wireless USB Status2 Port Driver;C:\Windows\System32\drivers\nwusbser2.sys [2008-5-9 213120]
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\Dell Support Center\pcdsrvc_x64.pkms [2010-7-30 25072]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-4-18 250984]
S3 SMSIVZAM5X64;SMSIVZAM5X64 NDIS Protocol Driver;C:\PROGRA~2\VERIZO~1\VZACCE~1\SMSIVZAM5X64.SYS [2009-3-20 43032]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2008-5-6 14464]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
.
=============== Created Last 30 ================
.
2013-07-16 00:26:25    12872    ----a-w-    C:\Windows\System32\bootdelete.exe
2013-07-15 07:35:23    1887744    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2013-07-15 07:35:23    1620480    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-15 01:00:05    --------    d-----w-    C:\Users\Ste\AppData\Local\Programs
2013-07-15 00:58:24    --------    d-----w-    C:\ProgramData\Malwarebytes
2013-07-15 00:58:20    25928    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2013-07-15 00:58:19    --------    d-----w-    C:\Program Files\Malwarebytes' Anti-Malware
2013-07-14 23:48:43    1011712    ----a-w-    C:\Program Files\Windows Defender\MpSvc.dll
2013-07-14 23:48:42    571904    ----a-w-    C:\Program Files\Windows Defender\MpClient.dll
2013-07-14 23:48:42    392704    ----a-w-    C:\Program Files (x86)\Windows Defender\MpClient.dll
2013-07-14 23:48:41    54784    ----a-w-    C:\Program Files (x86)\Windows Defender\MpOAV.dll
2013-07-14 23:48:41    314880    ----a-w-    C:\Program Files\Windows Defender\MpCommu.dll
2013-07-14 23:48:40    9216    ----a-w-    C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2013-07-14 23:48:40    4608    ----a-w-    C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2013-07-14 23:48:35    624128    ----a-w-    C:\Windows\System32\qedit.dll
2013-07-14 23:48:35    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
2013-07-14 23:47:59    3153920    ----a-w-    C:\Windows\System32\win32k.sys
2013-07-14 23:47:53    1732608    ----a-w-    C:\Program Files\Windows Journal\NBDoc.DLL
2013-07-14 23:47:53    1367040    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-07-14 23:47:52    1402880    ----a-w-    C:\Program Files\Windows Journal\JNWDRV.dll
2013-07-14 23:47:52    1393152    ----a-w-    C:\Program Files\Windows Journal\JNTFiltr.dll
2013-07-14 23:47:51    936448    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-07-14 23:12:18    1643520    ----a-w-    C:\Windows\System32\DWrite.dll
2013-07-14 22:59:34    --------    d-----w-    C:\ProgramData\HitmanPro
2013-07-09 21:22:30    1247744    ----a-w-    C:\Windows\SysWow64\DWrite.dll
2013-06-21 21:50:38    13081608    ----a-w-    C:\Users\Ste\Silverlight_x64.exe
.
==================== Find3M  ====================
.
2013-06-12 19:10:29    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-12 19:10:29    692104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-11 23:43:37    1767936    ----a-w-    C:\Windows\SysWow64\wininet.dll
2013-06-11 23:43:00    2877440    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2013-06-11 23:42:58    61440    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2013-06-11 23:42:58    109056    ----a-w-    C:\Windows\SysWow64\iesysprep.dll
2013-06-11 23:26:20    2241024    ----a-w-    C:\Windows\System32\wininet.dll
2013-06-11 23:25:16    3958784    ----a-w-    C:\Windows\System32\jscript9.dll
2013-06-11 23:25:13    67072    ----a-w-    C:\Windows\System32\iesetup.dll
2013-06-11 23:25:13    136704    ----a-w-    C:\Windows\System32\iesysprep.dll
2013-06-11 22:51:45    71680    ----a-w-    C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-06-11 22:50:58    89600    ----a-w-    C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-07 03:22:18    2706432    ----a-w-    C:\Windows\System32\mshtml.tlb
2013-06-07 02:37:52    2706432    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2013-06-05 07:10:14    1054720    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2013-06-05 07:10:12    226304    ----a-w-    C:\Windows\System32\elshyph.dll
2013-06-05 07:10:12    185344    ----a-w-    C:\Windows\SysWow64\elshyph.dll
2013-06-05 07:10:11    158720    ----a-w-    C:\Windows\SysWow64\msls31.dll
2013-06-05 07:10:09    719360    ----a-w-    C:\Windows\SysWow64\mshtmlmedia.dll
2013-06-05 07:10:09    150528    ----a-w-    C:\Windows\SysWow64\iexpress.exe
2013-06-05 07:10:09    138752    ----a-w-    C:\Windows\SysWow64\wextract.exe
2013-06-05 07:10:02    523264    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2013-05-13 05:51:01    184320    ----a-w-    C:\Windows\System32\cryptsvc.dll
2013-05-13 05:51:00    1464320    ----a-w-    C:\Windows\System32\crypt32.dll
2013-05-13 05:51:00    139776    ----a-w-    C:\Windows\System32\cryptnet.dll
2013-05-13 05:50:40    52224    ----a-w-    C:\Windows\System32\certenc.dll
2013-05-13 04:45:55    140288    ----a-w-    C:\Windows\SysWow64\cryptsvc.dll
2013-05-13 04:45:55    1160192    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2013-05-13 04:45:55    103936    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2013-05-13 03:43:55    1192448    ----a-w-    C:\Windows\System32\certutil.exe
2013-05-13 03:08:10    903168    ----a-w-    C:\Windows\SysWow64\certutil.exe
2013-05-13 03:08:06    43008    ----a-w-    C:\Windows\SysWow64\certenc.dll
2013-05-10 05:49:27    30720    ----a-w-    C:\Windows\System32\cryptdlg.dll
2013-05-10 03:20:54    24576    ----a-w-    C:\Windows\SysWow64\cryptdlg.dll
2013-05-08 06:39:01    1910632    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2013-04-26 05:51:36    751104    ----a-w-    C:\Windows\System32\win32spl.dll
2013-04-26 04:55:21    492544    ----a-w-    C:\Windows\SysWow64\win32spl.dll
2013-04-25 23:30:32    1505280    ----a-w-    C:\Windows\SysWow64\d3d11.dll
2013-02-20 18:16:00    112968    ----a-w-    C:\Program Files\ITDetector.ocx
2013-02-20 17:35:30    293192    ----a-w-    C:\Program Files\iTunesOutlookAddIn.dll
2013-02-20 17:35:28    152392    ----a-w-    C:\Program Files\iTunesHelper.exe
2013-02-20 17:35:26    412488    ----a-w-    C:\Program Files\iTunesAdmin.dll
2013-02-20 17:35:26    148808    ----a-w-    C:\Program Files\iTunesHelper.dll
2013-02-20 17:35:24    9789256    ----a-w-    C:\Program Files\iTunes.exe
2013-02-20 17:35:08    22970184    ----a-w-    C:\Program Files\iTunes.dll
2013-02-20 17:35:04    782688    ----a-w-    C:\Program Files\gnsdk_sdkmanager.dll
2013-02-20 17:35:04    3015008    ----a-w-    C:\Program Files\gnsdk_dsp.dll
2013-02-20 17:35:04    269152    ----a-w-    C:\Program Files\gnsdk_submit.dll
2013-02-20 17:35:04    226144    ----a-w-    C:\Program Files\gnsdk_musicid.dll
2012-08-10 23:03:30    739824    ----a-w-    C:\Program Files (x86)\GoogleEarthSetup.exe
2012-06-12 01:30:47    10249568    ----a-w-    C:\Program Files (x86)\LeapFrogConnectSetup_LeapPadExplorer.exe
2012-05-10 23:27:48    4283656    ----a-w-    C:\Program Files (x86)\McAfeeSetup.exe
2012-03-10 01:27:09    22829232    ----a-w-    C:\Program Files (x86)\media.player.codec.pack.v4.1.8.setup.exe
2011-11-12 01:03:57    9852544    ----a-w-    C:\Program Files\mbam-setup-1.51.2.1300.exe
.
============= FINISH:  7:34:00.16 ===============
 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 6/8/2011 10:17:18 PM
System Uptime: 7/15/2013 11:15:56 PM (8 hours ago)
.
Motherboard: Dell Inc. |  | 034W60
Processor: Intel® Core™ i3-2310M CPU @ 2.10GHz | CPU 1 | 2100/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 348.303 GiB free.
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP139: 6/24/2013 3:04:19 AM - Windows Update
RP140: 7/2/2013 12:00:02 AM - Scheduled Checkpoint
RP141: 7/10/2013 12:00:01 AM - Scheduled Checkpoint
RP142: 7/10/2013 3:04:00 AM - Windows Update
RP143: 7/15/2013 3:04:17 AM - Windows Update
RP144: 7/16/2013 3:00:22 AM - Windows Update
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.7) MUI
Advanced Audio FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bing Bar
Bing Rewards Client Installer
Bonjour
Consumer In-Home Service Agreement
Cozi
D3DX10
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Edoc Viewer
Dell Getting Started Guide
Dell Home Systems Service Agreement
Dell MusicStage
Dell Perks Webslice IE8
Dell PhotoStage
Dell Stage
Dell Support Center
Dell Touchpad
Dell VideoStage
Dell Webcam Central
DirectX 9 Runtime
DivX Setup
eBay
ffdshow [rev 2527] [2008-12-19]
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
GoToAssist Corporate
HTC Driver Installer
HTC Sync
IDT Audio
Intel PROSet Wireless
Intel® Control Center
Intel® Management Engine Components
Intel® Processor Graphics
Intel® PROSet/Wireless Software for Bluetooth® Technology
Intel® PROSet/Wireless WiFi Software
Intel® Rapid Storage Technology
Intel® Wireless Display
Internet Explorer
iTunes
Java Auto Updater
Java™ 6 Update 24 (64-bit)
Java™ 6 Update 38
Junk Mail filter update
LeapFrog Connect
LeapFrog LeapPad Explorer Plugin
LeapFrog Tag Plugin
Malwarebytes Anti-Malware version 1.75.0.1300
McAfee Agent
McAfee VirusScan Enterprise
Media Player Codec Pack 4.1.8
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Default Manager
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
Mobile Broadband Generic Drivers
Mozilla Firefox 19.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
PhotoShowExpress
Quickset64
QuickTime
RBVirtualFolder64Inst
RealFA$T® Forms for North Carolina
Realtek Ethernet Controller Driver
Realtek USB 2.0 Card Reader
Renesas Electronics USB 3.0 Host Controller Driver
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Roxio File Backup
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Shared C Run-time for x64
Skype Toolbars
Skype™ 5.10
Sonic CinePlayer Decoder Pack
TrustedID
TurboTax 2011
TurboTax 2011 WinPerFedFormset
TurboTax 2011 WinPerReleaseEngine
TurboTax 2011 WinPerTaxSupport
TurboTax 2011 wnciper
TurboTax 2011 wneiper
TurboTax 2011 wrapper
TurboTax 2012
TurboTax 2012 WinPerFedFormset
TurboTax 2012 WinPerReleaseEngine
TurboTax 2012 WinPerTaxSupport
TurboTax 2012 wnciper
TurboTax 2012 wrapper
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
VC80CRTRedist - 8.0.50727.6195
Verizon V CAST Media Manager
VZAccess Manager
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WModem Driver Installer
.
==== Event Viewer Messages From Past Week ========
.
7/16/2013 2:13:14 AM, Error: Service Control Manager [7031]  - The McAfee McShield service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
7/16/2013 2:12:49 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.
7/15/2013 8:12:32 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Intuit Update Service v4 service to connect.
7/15/2013 8:12:32 PM, Error: Service Control Manager [7000]  - The Intuit Update Service v4 service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
7/15/2013 8:12:30 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Intel® Rapid Storage Technology service to connect.
7/15/2013 8:12:30 PM, Error: Service Control Manager [7000]  - The Intel® Rapid Storage Technology service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
7/15/2013 8:10:19 PM, Error: Service Control Manager [7034]  - The BingBar Service service terminated unexpectedly.  It has done this 1 time(s).
7/15/2013 8:10:06 PM, Error: Service Control Manager [7000]  - The Bluetooth Device Monitor service failed to start due to the following error:  The executable program that this service is configured to run in does not implement the service.
7/15/2013 6:42:31 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
7/15/2013 10:53:41 PM, Error: Service Control Manager [7000]  - The HitmanPro 3.7 Crusader (Boot) service failed to start due to the following error:  The system cannot find the file specified.
7/14/2013 7:21:53 PM, Error: Service Control Manager [7034]  - The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).
.
==== End Of File ===========================
 



#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:13 PM

Posted 16 July 2013 - 12:35 PM



Hello bkyota

These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
When they are complete let me have the two reports and let me know how things are running.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 01:40 PM

Gringo,

 

Below are the logs that you wanted.

 

Thanks

 

# AdwCleaner v2.305 - Logfile created 07/16/2013 at 14:16:18
# Updated 11/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Ste - STE-PC
# Boot Mode : Normal
# Running from : C:\Users\Ste\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Public\Desktop\eBay.lnk

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\prefs.js

Deleted : user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir[...]

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Ste\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1963 octets] - [16/07/2013 14:14:49]
AdwCleaner[S1].txt - [1918 octets] - [16/07/2013 14:16:18]

########## EOF - C:\AdwCleaner[S1].txt - [1978 octets] ##########
 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.1.1 (07.15.2013:2)
OS: Windows 7 Home Premium x64
Ran by Ste on Tue 07/16/2013 at 14:27:18.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Ste\appdata\local\{EECE8390-61C4-428F-BE2C-6A55BB6CE70C}



~~~ FireFox

Emptied folder: C:\Users\Ste\AppData\Roaming\mozilla\firefox\profiles\qn8fd04c.default\minidumps [133 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 07/16/2013 at 14:32:57.07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:13 PM

Posted 16 July 2013 - 08:54 PM


Hello bkyota

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 09:26 PM

Combofix log below,

 

Something weird happened when I opened the browser.  It sounded like a ad was playing in the background without anything except the google search page opened. 

 

Thanks

 

ComboFix 13-07-15.01 - Ste 07/16/2013  22:09:34.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4003.2432 [GMT -4:00]
Running from: c:\users\Ste\Desktop\ComboFix.exe
AV: McAfee VirusScan Enterprise *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
SP: McAfee VirusScan Enterprise Antispyware Module *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\programdata\Roaming
c:\users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\extensions\{8ca522ae-c710-4c48-9436-c55fb85fe013}
c:\users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\extensions\{8ca522ae-c710-4c48-9436-c55fb85fe013}\chrome\xulcache.jar
c:\users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\extensions\{8ca522ae-c710-4c48-9436-c55fb85fe013}\install.rdf
c:\users\Ste\GoToAssistDownloadHelper.exe
c:\users\Ste\office_enterprise_w_sp2_pk.exe
c:\users\Ste\Silverlight_x64.exe
.
.
(((((((((((((((((((((((((   Files Created from 2013-06-17 to 2013-07-17  )))))))))))))))))))))))))))))))
.
.
2013-07-17 02:17 . 2013-07-17 02:17    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-07-16 18:27 . 2013-07-16 18:27    --------    d-----w-    c:\windows\ERUNT
2013-07-16 00:26 . 2013-07-16 00:26    12872    ----a-w-    c:\windows\system32\bootdelete.exe
2013-07-15 07:35 . 2013-05-06 06:03    1887744    ----a-w-    c:\windows\system32\WMVDECOD.DLL
2013-07-15 07:35 . 2013-05-06 04:56    1620480    ----a-w-    c:\windows\SysWow64\WMVDECOD.DLL
2013-07-15 01:00 . 2013-07-15 01:00    --------    d-----w-    c:\users\Ste\AppData\Local\Programs
2013-07-15 00:58 . 2013-07-15 00:58    --------    d-----w-    c:\programdata\Malwarebytes
2013-07-15 00:58 . 2013-04-04 18:50    25928    ----a-w-    c:\windows\system32\drivers\mbam.sys
2013-07-15 00:58 . 2013-07-15 01:00    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2013-07-14 23:48 . 2013-05-27 05:50    1011712    ----a-w-    c:\program files\Windows Defender\MpSvc.dll
2013-07-14 23:48 . 2013-05-27 05:50    571904    ----a-w-    c:\program files\Windows Defender\MpClient.dll
2013-07-14 23:48 . 2013-05-27 04:57    392704    ----a-w-    c:\program files (x86)\Windows Defender\MpClient.dll
2013-07-14 23:48 . 2013-05-27 05:50    314880    ----a-w-    c:\program files\Windows Defender\MpCommu.dll
2013-07-14 23:48 . 2013-05-27 04:57    54784    ----a-w-    c:\program files (x86)\Windows Defender\MpOAV.dll
2013-07-14 23:48 . 2013-05-27 04:57    4608    ----a-w-    c:\program files (x86)\Windows Defender\MsMpLics.dll
2013-07-14 23:48 . 2013-05-27 03:15    9216    ----a-w-    c:\program files (x86)\Windows Defender\MpAsDesc.dll
2013-07-14 23:48 . 2013-06-04 06:00    624128    ----a-w-    c:\windows\system32\qedit.dll
2013-07-14 23:48 . 2013-06-04 04:53    509440    ----a-w-    c:\windows\SysWow64\qedit.dll
2013-07-14 23:47 . 2013-06-05 03:34    3153920    ----a-w-    c:\windows\system32\win32k.sys
2013-07-14 23:47 . 2013-04-10 05:48    1732608    ----a-w-    c:\program files\Windows Journal\NBDoc.DLL
2013-07-14 23:47 . 2013-04-10 05:46    1367040    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-07-14 23:47 . 2013-04-10 05:46    1402880    ----a-w-    c:\program files\Windows Journal\JNWDRV.dll
2013-07-14 23:47 . 2013-04-10 05:46    1393152    ----a-w-    c:\program files\Windows Journal\JNTFiltr.dll
2013-07-14 23:47 . 2013-04-10 05:03    936448    ----a-w-    c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-07-14 23:12 . 2013-04-02 22:51    1643520    ----a-w-    c:\windows\system32\DWrite.dll
2013-07-14 22:59 . 2013-07-16 00:26    --------    d-----w-    c:\programdata\HitmanPro
2013-07-09 21:22 . 2013-04-09 23:34    1247744    ----a-w-    c:\windows\SysWow64\DWrite.dll
2013-06-22 01:34 . 2013-06-22 01:34    --------    d-----w-    c:\program files (x86)\Common Files\Skype
2013-06-22 01:32 . 2013-06-22 01:32    --------    d-----w-    c:\users\Default\AppData\Local\Microsoft Help
2013-06-21 21:51 . 2013-07-15 07:46    --------    d-----w-    c:\program files\Microsoft Silverlight
2013-06-21 21:51 . 2013-07-15 07:46    --------    d-----w-    c:\program files (x86)\Microsoft Silverlight
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-15 07:22 . 2011-11-16 16:59    78185248    ----a-w-    c:\windows\system32\MRT.exe
2013-06-12 19:10 . 2012-04-12 21:17    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 19:10 . 2011-12-08 21:55    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-05 07:10 . 2013-06-05 07:10    1054720    ----a-w-    c:\windows\system32\MsSpellCheckingFacility.exe
2013-06-05 07:10 . 2013-06-05 07:10    226304    ----a-w-    c:\windows\system32\elshyph.dll
2013-06-05 07:10 . 2013-06-05 07:10    185344    ----a-w-    c:\windows\SysWow64\elshyph.dll
2013-06-05 07:10 . 2013-06-05 07:10    158720    ----a-w-    c:\windows\SysWow64\msls31.dll
2013-06-05 07:10 . 2013-06-05 07:10    719360    ----a-w-    c:\windows\SysWow64\mshtmlmedia.dll
2013-06-05 07:10 . 2013-06-05 07:10    150528    ----a-w-    c:\windows\SysWow64\iexpress.exe
2013-06-05 07:10 . 2013-06-05 07:10    138752    ----a-w-    c:\windows\SysWow64\wextract.exe
2013-06-05 07:10 . 2013-06-05 07:10    523264    ----a-w-    c:\windows\SysWow64\vbscript.dll
2013-06-05 07:09 . 2013-06-05 07:09    38400    ----a-w-    c:\windows\SysWow64\imgutil.dll
2013-06-05 07:09 . 2013-06-05 07:09    137216    ----a-w-    c:\windows\SysWow64\ieUnatt.exe
2013-06-05 07:09 . 2013-06-05 07:09    12800    ----a-w-    c:\windows\SysWow64\mshta.exe
2013-06-05 07:09 . 2013-06-05 07:09    110592    ----a-w-    c:\windows\SysWow64\IEAdvpack.dll
2013-06-05 07:09 . 2013-06-05 07:09    73728    ----a-w-    c:\windows\SysWow64\SetIEInstalledDate.exe
2013-06-05 07:09 . 2013-06-05 07:09    48640    ----a-w-    c:\windows\SysWow64\mshtmler.dll
2013-06-05 07:09 . 2013-06-05 07:09    61952    ----a-w-    c:\windows\SysWow64\tdc.ocx
2013-06-05 07:09 . 2013-06-05 07:09    361984    ----a-w-    c:\windows\SysWow64\html.iec
2013-06-05 07:09 . 2013-06-05 07:09    1441280    ----a-w-    c:\windows\SysWow64\inetcpl.cpl
2013-06-05 07:09 . 2013-06-05 07:09    23040    ----a-w-    c:\windows\SysWow64\licmgr10.dll
2013-06-05 07:09 . 2013-06-05 07:09    441856    ----a-w-    c:\windows\system32\html.iec
2013-06-05 07:09 . 2013-06-05 07:09    281600    ----a-w-    c:\windows\system32\dxtrans.dll
2013-06-05 07:09 . 2013-06-05 07:09    216064    ----a-w-    c:\windows\system32\msls31.dll
2013-06-05 07:09 . 2013-06-05 07:09    197120    ----a-w-    c:\windows\system32\msrating.dll
2013-06-05 07:09 . 2013-06-05 07:09    452096    ----a-w-    c:\windows\system32\dxtmsft.dll
2013-06-05 07:09 . 2013-06-05 07:09    905728    ----a-w-    c:\windows\system32\mshtmlmedia.dll
2013-06-05 07:09 . 2013-06-05 07:09    81408    ----a-w-    c:\windows\system32\icardie.dll
2013-06-05 07:09 . 2013-06-05 07:09    762368    ----a-w-    c:\windows\system32\ieapfltr.dll
2013-06-05 07:09 . 2013-06-05 07:09    270848    ----a-w-    c:\windows\system32\iedkcs32.dll
2013-06-05 07:09 . 2013-06-05 07:09    235008    ----a-w-    c:\windows\system32\url.dll
2013-06-05 07:09 . 2013-06-05 07:09    1400416    ----a-w-    c:\windows\system32\ieapfltr.dat
2013-06-05 07:09 . 2013-06-05 07:09    1509376    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-06-05 07:09 . 2013-06-05 07:09    97280    ----a-w-    c:\windows\system32\mshtmled.dll
2013-06-05 07:09 . 2013-06-05 07:09    27648    ----a-w-    c:\windows\system32\licmgr10.dll
2013-06-05 07:09 . 2013-06-05 07:09    247296    ----a-w-    c:\windows\system32\webcheck.dll
2013-06-05 07:09 . 2013-06-05 07:09    167424    ----a-w-    c:\windows\system32\iexpress.exe
2013-06-05 07:09 . 2013-06-05 07:09    144896    ----a-w-    c:\windows\system32\wextract.exe
2013-06-05 07:09 . 2013-06-05 07:09    102912    ----a-w-    c:\windows\system32\inseng.dll
2013-06-05 07:09 . 2013-06-05 07:09    599552    ----a-w-    c:\windows\system32\vbscript.dll
2013-06-05 07:09 . 2013-06-05 07:09    173568    ----a-w-    c:\windows\system32\ieUnatt.exe
2013-06-05 07:09 . 2013-06-05 07:09    92160    ----a-w-    c:\windows\system32\SetIEInstalledDate.exe
2013-06-05 07:09 . 2013-06-05 07:09    62976    ----a-w-    c:\windows\system32\pngfilt.dll
2013-06-05 07:09 . 2013-06-05 07:09    52224    ----a-w-    c:\windows\system32\msfeedsbs.dll
2013-06-05 07:09 . 2013-06-05 07:09    51200    ----a-w-    c:\windows\system32\imgutil.dll
2013-06-05 07:09 . 2013-06-05 07:09    149504    ----a-w-    c:\windows\system32\occache.dll
2013-06-05 07:09 . 2013-06-05 07:09    13824    ----a-w-    c:\windows\system32\mshta.exe
2013-06-05 07:09 . 2013-06-05 07:09    136192    ----a-w-    c:\windows\system32\iepeers.dll
2013-06-05 07:09 . 2013-06-05 07:09    135680    ----a-w-    c:\windows\system32\IEAdvpack.dll
2013-06-05 07:09 . 2013-06-05 07:09    12800    ----a-w-    c:\windows\system32\msfeedssync.exe
2013-06-05 07:09 . 2013-06-05 07:09    48640    ----a-w-    c:\windows\system32\mshtmler.dll
2013-06-05 07:09 . 2013-06-05 07:09    77312    ----a-w-    c:\windows\system32\tdc.ocx
2013-05-13 05:51 . 2013-06-12 04:27    184320    ----a-w-    c:\windows\system32\cryptsvc.dll
2013-05-13 05:51 . 2013-06-12 04:27    1464320    ----a-w-    c:\windows\system32\crypt32.dll
2013-05-13 05:51 . 2013-06-12 04:27    139776    ----a-w-    c:\windows\system32\cryptnet.dll
2013-05-13 05:50 . 2013-06-12 04:27    52224    ----a-w-    c:\windows\system32\certenc.dll
2013-05-13 04:45 . 2013-06-12 04:27    1160192    ----a-w-    c:\windows\SysWow64\crypt32.dll
2013-05-13 04:45 . 2013-06-12 04:27    103936    ----a-w-    c:\windows\SysWow64\cryptnet.dll
2013-05-13 04:45 . 2013-06-12 04:27    140288    ----a-w-    c:\windows\SysWow64\cryptsvc.dll
2013-05-13 03:43 . 2013-06-12 04:27    1192448    ----a-w-    c:\windows\system32\certutil.exe
2013-05-13 03:08 . 2013-06-12 04:27    903168    ----a-w-    c:\windows\SysWow64\certutil.exe
2013-05-13 03:08 . 2013-06-12 04:27    43008    ----a-w-    c:\windows\SysWow64\certenc.dll
2013-05-10 05:49 . 2013-06-12 04:27    30720    ----a-w-    c:\windows\system32\cryptdlg.dll
2013-05-10 03:20 . 2013-06-12 04:27    24576    ----a-w-    c:\windows\SysWow64\cryptdlg.dll
2013-05-08 06:39 . 2013-06-12 04:28    1910632    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-04-26 05:51 . 2013-06-12 04:28    751104    ----a-w-    c:\windows\system32\win32spl.dll
2013-04-26 04:55 . 2013-06-12 04:28    492544    ----a-w-    c:\windows\SysWow64\win32spl.dll
2013-04-25 23:30 . 2013-06-12 04:26    1505280    ----a-w-    c:\windows\SysWow64\d3d11.dll
2013-02-20 18:16 . 2013-02-20 18:16    112968    ----a-w-    c:\program files\ITDetector.ocx
2013-02-20 17:35 . 2013-02-20 17:35    293192    ----a-w-    c:\program files\iTunesOutlookAddIn.dll
2013-02-20 17:35 . 2013-02-20 17:35    152392    ----a-w-    c:\program files\iTunesHelper.exe
2013-02-20 17:35 . 2013-02-20 17:35    412488    ----a-w-    c:\program files\iTunesAdmin.dll
2013-02-20 17:35 . 2013-02-20 17:35    148808    ----a-w-    c:\program files\iTunesHelper.dll
2013-02-20 17:35 . 2013-02-20 17:35    9789256    ----a-w-    c:\program files\iTunes.exe
2013-02-20 17:35 . 2013-02-20 17:35    22970184    ----a-w-    c:\program files\iTunes.dll
2013-02-20 17:35 . 2013-02-20 17:35    782688    ----a-w-    c:\program files\gnsdk_sdkmanager.dll
2013-02-20 17:35 . 2013-02-20 17:35    3015008    ----a-w-    c:\program files\gnsdk_dsp.dll
2013-02-20 17:35 . 2013-02-20 17:35    269152    ----a-w-    c:\program files\gnsdk_submit.dll
2013-02-20 17:35 . 2013-02-20 17:35    226144    ----a-w-    c:\program files\gnsdk_musicid.dll
2012-08-10 23:03 . 2012-08-10 23:03    739824    ----a-w-    c:\program files (x86)\GoogleEarthSetup.exe
2012-06-12 01:30 . 2012-06-12 01:30    10249568    ----a-w-    c:\program files (x86)\LeapFrogConnectSetup_LeapPadExplorer.exe
2012-05-10 23:27 . 2012-05-10 23:27    4283656    ----a-w-    c:\program files (x86)\McAfeeSetup.exe
2012-03-10 01:27 . 2012-03-10 01:26    22829232    ----a-w-    c:\program files (x86)\media.player.codec.pack.v4.1.8.setup.exe
2011-11-12 01:03 . 2011-11-12 01:03    9852544    ----a-w-    c:\program files\mbam-setup-1.51.2.1300.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HLBackupScheduler"="c:\program files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe" [2011-06-28 4950664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-08-19 487562]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-11-06 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-05-10 37960]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Mobile Connectivity Suite"="c:\program files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe" [2009-11-19 598016]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"Monitor"="c:\program files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe" [2012-09-28 298376]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2012-11-13 450560]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2012-11-30 1263512]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
"iTunesHelper"="c:\program files\iTunesHelper.exe" [2013-02-20 152392]
"McAfeeUpdaterUI"="c:\program files (x86)\McAfee\Common Framework\udaterui.exe" [2012-09-05 333416]
"ShStatEXE"="c:\program files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2012-08-15 215656]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-11-04 559616]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HitmanPro37CrusaderBoot;HitmanPro 3.7 Crusader (Boot);d:\hitmanpro_x64.exe;d:\HitmanPro_x64.exe [x]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
R3 FlyUsb;FLY Fusion;c:\windows\system32\DRIVERS\FlyUsb.sys;c:\windows\SYSNATIVE\DRIVERS\FlyUsb.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 Leapfrog-USBLAN;Leapfrog-USBLAN;c:\windows\system32\DRIVERS\btblan.sys;c:\windows\SYSNATIVE\DRIVERS\btblan.sys [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NWUSBCDFIL64;Novatel Wireless Installation CD;c:\windows\system32\DRIVERS\NwUsbCdFil64.sys;c:\windows\SYSNATIVE\DRIVERS\NwUsbCdFil64.sys [x]
R3 NWUSBPort2;Novatel Wireless USB Status2 Port Driver;c:\windows\system32\DRIVERS\nwusbser2.sys;c:\windows\SYSNATIVE\DRIVERS\nwusbser2.sys [x]
R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms;c:\program files\dell support center\pcdsrvc_x64.pkms [x]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 SMSIVZAM5X64;SMSIVZAM5X64 NDIS Protocol Driver;c:\progra~2\VERIZO~1\VZACCE~1\SMSIVZAM5X64.SYS;c:\progra~2\VERIZO~1\VZACCE~1\SMSIVZAM5X64.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe;c:\program files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys;c:\windows\SYSNATIVE\DRIVERS\WDKMD.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - mfeavfk01
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 19:10]
.
2013-07-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-10 23:04]
.
2013-07-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-10 23:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-20 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-20 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-20 418328]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-25 525312]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-01-05 592240]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2010-11-03 10228224]
"DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-01-25 1802472]
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.aol.com/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
FF - ProfilePath - c:\users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\HitmanPro37CrusaderBoot]
"ImagePath"="\"d:\hitmanpro_x64.exe\" /crusader:boot"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-07-16  22:20:47
ComboFix-quarantined-files.txt  2013-07-17 02:20
.
Pre-Run: 373,736,419,328 bytes free
Post-Run: 373,891,452,928 bytes free
.
- - End Of File - - F78FA94F0DD357F1117C7F0BA669DE7B
D41D8CD98F00B204E9800998ECF8427E
 



#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:13 PM

Posted 16 July 2013 - 09:31 PM


Hello bkyota

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================
and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
  • Exit/Close RogueKiller+
send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 10:06 PM

The Rogue Killer reports were not named [2] so I included both because I didn't know which one you wanted. The Kapersky file was too long to attach or post.
 
Thanks

 

22:43:40.0909 6380  Scan finished
22:43:40.0909 6380  ============================================================
22:43:40.0924 6372  Detected object count: 0
22:43:40.0924 6372  Actual detected object count: 0
22:45:34.0844 4400  Deinitialize success

 

 
RogueKiller V8.6.2 _x64_ [Jul  2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : hxxp://www.adlice.com/forum/
Website : hxxp://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Ste [Admin rights]
Mode : Scan -- Date : 07/16/2013 22:48:31
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1       localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 3a4722faeb4c197b96c6f82f5c70d749
[BSP] 7a830983e6b361a88d1030bef2225588 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_S_07162013_224831.txt >>

RogueKiller V8.6.2 _x64_ [Jul  2 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : hxxp://www.adlice.com/forum/
Website : hxxp://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Ste [Admin rights]
Mode : Remove -- Date : 07/16/2013 22:48:48
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> [0x2] The system cannot find the file specified.
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1       localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 3a4722faeb4c197b96c6f82f5c70d749
[BSP] 7a830983e6b361a88d1030bef2225588 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_07162013_224848.txt >>
RKreport[0]_S_07162013_224831.txt



#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:13 PM

Posted 16 July 2013 - 10:18 PM

If the forum still complains about it being to long send me everything that is at the end of the report after where it says

==================
Scan finished
==================
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 10:24 PM

That was everything after scan finished. 

 

22:43:40.0909 6380  ============================================================
22:43:40.0909 6380  Scan finished
22:43:40.0909 6380  ============================================================
22:43:40.0924 6372  Detected object count: 0
22:43:40.0924 6372  Actual detected object count: 0
22:45:34.0844 4400  Deinitialize success

 



#12 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 10:32 PM

I seperated it in 2 posts so I can get you everything you want.

 

Thanks

 1 pg

 

22:41:14.0935 4464  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:41:16.0949 4464  ============================================================
22:41:16.0949 4464  Current date / time: 2013/07/16 22:41:16.0949
22:41:16.0949 4464  SystemInfo:
22:41:16.0949 4464  
22:41:16.0949 4464  OS Version: 6.1.7601 ServicePack: 1.0
22:41:16.0949 4464  Product type: Workstation
22:41:16.0949 4464  ComputerName: STE-PC
22:41:18.0836 4464  UserName: Ste
22:41:18.0836 4464  Windows directory: C:\Windows
22:41:18.0836 4464  System windows directory: C:\Windows
22:41:18.0836 4464  Running under WOW64
22:41:18.0836 4464  Processor architecture: Intel x64
22:41:18.0836 4464  Number of processors: 4
22:41:18.0836 4464  Page size: 0x1000
22:41:18.0836 4464  Boot type: Normal boot
22:41:18.0836 4464  ============================================================
22:41:49.0676 4464  BG loaded
22:41:51.0906 4464  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:41:51.0922 4464  ============================================================
22:41:51.0922 4464  \Device\Harddisk0\DR0:
22:41:51.0922 4464  MBR partitions:
22:41:51.0922 4464  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
22:41:51.0922 4464  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
22:41:51.0922 4464  ============================================================
22:41:51.0969 4464  C: <-> \Device\Harddisk0\DR0\Partition2
22:41:51.0969 4464  ============================================================
22:41:51.0969 4464  Initialize success
22:41:51.0969 4464  ============================================================
22:42:37.0678 6380  ============================================================
22:42:37.0678 6380  Scan started
22:42:37.0678 6380  Mode: Manual;
22:42:37.0678 6380  ============================================================
22:42:44.0230 6380  ================ Scan system memory ========================
22:42:44.0230 6380  System memory - ok
22:42:44.0230 6380  ================ Scan services =============================
22:42:44.0511 6380  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:42:44.0620 6380  1394ohci - ok
22:42:44.0807 6380  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:42:44.0854 6380  ACPI - ok
22:42:44.0916 6380  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:42:44.0916 6380  AcpiPmi - ok
22:42:45.0181 6380  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:42:45.0181 6380  AdobeARMservice - ok
22:42:47.0053 6380  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:42:47.0194 6380  AdobeFlashPlayerUpdateSvc - ok
22:42:47.0631 6380  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
22:42:47.0693 6380  adp94xx - ok
22:42:47.0787 6380  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
22:42:47.0849 6380  adpahci - ok
22:42:47.0943 6380  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
22:42:47.0943 6380  adpu320 - ok
22:42:48.0114 6380  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:42:48.0114 6380  AeLookupSvc - ok
22:42:48.0364 6380  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
22:42:48.0364 6380  AESTFilters - ok
22:42:48.0504 6380  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:42:48.0645 6380  AFD - ok
22:42:48.0972 6380  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:42:48.0988 6380  agp440 - ok
22:42:49.0144 6380  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:42:49.0159 6380  ALG - ok
22:42:49.0393 6380  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:42:49.0393 6380  aliide - ok
22:42:49.0440 6380  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:42:49.0440 6380  amdide - ok
22:42:49.0596 6380  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
22:42:49.0596 6380  AmdK8 - ok
22:42:49.0643 6380  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:42:49.0643 6380  AmdPPM - ok
22:42:49.0783 6380  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:42:49.0783 6380  amdsata - ok
22:42:49.0815 6380  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
22:42:49.0815 6380  amdsbs - ok
22:42:49.0877 6380  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:42:49.0877 6380  amdxata - ok
22:42:49.0955 6380  [ 7380B9072EBC65A54DA3074E14BF34B9 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
22:42:49.0955 6380  ApfiltrService - ok
22:42:50.0080 6380  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:42:50.0080 6380  AppID - ok
22:42:50.0111 6380  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:42:50.0127 6380  AppIDSvc - ok
22:42:50.0173 6380  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
22:42:50.0173 6380  Appinfo - ok
22:42:50.0345 6380  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:42:50.0345 6380  Apple Mobile Device - ok
22:42:50.0423 6380  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
22:42:50.0439 6380  arc - ok
22:42:50.0470 6380  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
22:42:50.0470 6380  arcsas - ok
22:42:50.0517 6380  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:42:50.0532 6380  AsyncMac - ok
22:42:50.0610 6380  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:42:50.0610 6380  atapi - ok
22:42:50.0797 6380  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:42:50.0813 6380  AudioEndpointBuilder - ok
22:42:50.0922 6380  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:42:50.0922 6380  AudioSrv - ok
22:42:51.0031 6380  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:42:51.0031 6380  AxInstSV - ok
22:42:51.0187 6380  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
22:42:51.0234 6380  b06bdrv - ok
22:42:51.0297 6380  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:42:51.0343 6380  b57nd60a - ok
22:42:51.0577 6380  [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
22:42:51.0577 6380  BBSvc - ok
22:42:51.0702 6380  [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
22:42:51.0702 6380  BBUpdate - ok
22:42:51.0765 6380  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:42:51.0765 6380  BDESVC - ok
22:42:51.0827 6380  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:42:51.0827 6380  Beep - ok
22:42:51.0999 6380  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:42:52.0092 6380  BFE - ok
22:42:52.0248 6380  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
22:42:52.0311 6380  BITS - ok
22:42:52.0373 6380  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:42:52.0373 6380  blbdrive - ok
22:42:52.0607 6380  [ 093B1B419EF25B15D3A1CA6953F41AFB ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
22:42:52.0607 6380  Bluetooth Device Monitor - ok
22:42:52.0888 6380  [ 03A7341E94ACD92E0831336D4F3ACE92 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
22:42:52.0888 6380  Bluetooth Media Service - ok
22:42:53.0153 6380  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:42:53.0169 6380  Bonjour Service - ok
22:42:53.0231 6380  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:42:53.0231 6380  bowser - ok
22:42:53.0325 6380  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:42:53.0325 6380  BrFiltLo - ok
22:42:53.0371 6380  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:42:53.0387 6380  BrFiltUp - ok
22:42:53.0449 6380  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
22:42:53.0465 6380  BridgeMP - ok
22:42:53.0512 6380  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:42:53.0512 6380  Browser - ok
22:42:53.0590 6380  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:42:53.0621 6380  Brserid - ok
22:42:53.0652 6380  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:42:53.0652 6380  BrSerWdm - ok
22:42:53.0761 6380  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:42:53.0761 6380  BrUsbMdm - ok
22:42:53.0793 6380  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:42:53.0808 6380  BrUsbSer - ok
22:42:53.0902 6380  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
22:42:53.0902 6380  BthEnum - ok
22:42:53.0933 6380  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:42:53.0949 6380  BTHMODEM - ok
22:42:54.0011 6380  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:42:54.0011 6380  BthPan - ok
22:42:54.0120 6380  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
22:42:54.0136 6380  BTHPORT - ok
22:42:54.0198 6380  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:42:54.0198 6380  bthserv - ok
22:42:54.0229 6380  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
22:42:54.0229 6380  BTHUSB - ok
22:42:54.0276 6380  [ 16C1BAC9760C9FA85A30F3FA0FBB1B7A ] btmaux          C:\Windows\system32\DRIVERS\btmaux.sys
22:42:54.0276 6380  btmaux - ok
22:42:54.0323 6380  [ 0C468D8DA95BE16BFDD380BB9DE88259 ] btmhsf          C:\Windows\system32\DRIVERS\btmhsf.sys
22:42:54.0339 6380  btmhsf - ok
22:42:54.0401 6380  catchme - ok
22:42:54.0479 6380  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:42:54.0495 6380  cdfs - ok
22:42:54.0588 6380  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
22:42:54.0588 6380  cdrom - ok
22:42:54.0651 6380  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:42:54.0666 6380  CertPropSvc - ok
22:42:54.0697 6380  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:42:54.0697 6380  circlass - ok
22:42:54.0760 6380  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:42:54.0775 6380  CLFS - ok
22:42:54.0947 6380  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:42:54.0947 6380  clr_optimization_v2.0.50727_32 - ok
22:42:55.0009 6380  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:42:55.0025 6380  clr_optimization_v2.0.50727_64 - ok
22:42:55.0150 6380  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:42:55.0165 6380  clr_optimization_v4.0.30319_32 - ok
22:42:55.0290 6380  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:42:55.0306 6380  clr_optimization_v4.0.30319_64 - ok
22:42:55.0368 6380  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:42:55.0368 6380  CmBatt - ok
22:42:55.0399 6380  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:42:55.0399 6380  cmdide - ok
22:42:55.0477 6380  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:42:55.0602 6380  CNG - ok
22:42:55.0789 6380  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:42:55.0805 6380  Compbatt - ok
22:42:55.0914 6380  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:42:56.0023 6380  CompositeBus - ok
22:42:56.0070 6380  COMSysApp - ok
22:42:56.0148 6380  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
22:42:56.0164 6380  crcdisk - ok
22:42:56.0273 6380  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:42:56.0273 6380  CryptSvc - ok
22:42:56.0351 6380  [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:42:56.0367 6380  CtClsFlt - ok
22:42:56.0445 6380  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:42:56.0460 6380  DcomLaunch - ok
22:42:56.0523 6380  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:42:56.0569 6380  defragsvc - ok
22:42:56.0632 6380  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:42:56.0632 6380  DfsC - ok
22:42:56.0741 6380  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:42:56.0757 6380  Dhcp - ok
22:42:56.0819 6380  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:42:56.0819 6380  discache - ok
22:42:56.0835 6380  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
22:42:56.0850 6380  Disk - ok
22:42:56.0881 6380  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:42:56.0881 6380  Dnscache - ok
22:42:56.0959 6380  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:42:56.0959 6380  dot3svc - ok
22:42:57.0022 6380  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:42:57.0022 6380  DPS - ok
22:42:57.0069 6380  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:42:57.0084 6380  drmkaud - ok
22:42:57.0240 6380  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:42:57.0256 6380  DXGKrnl - ok
22:42:57.0303 6380  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:42:57.0303 6380  EapHost - ok
22:42:57.0646 6380  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
22:42:57.0739 6380  ebdrv - ok
22:42:57.0802 6380  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:42:57.0802 6380  EFS - ok
22:42:58.0051 6380  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:42:58.0114 6380  ehRecvr - ok
22:42:58.0145 6380  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:42:58.0161 6380  ehSched - ok
22:42:58.0270 6380  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
22:42:58.0332 6380  elxstor - ok
22:42:58.0363 6380  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:42:58.0379 6380  ErrDev - ok
22:42:58.0504 6380  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:42:58.0504 6380  EventSystem - ok
22:42:58.0629 6380  [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
22:42:58.0629 6380  EvtEng - ok
22:42:58.0707 6380  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:42:58.0707 6380  exfat - ok
22:42:58.0738 6380  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:42:58.0753 6380  fastfat - ok
22:42:58.0894 6380  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:42:58.0909 6380  Fax - ok
22:42:58.0941 6380  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:42:58.0941 6380  fdc - ok
22:42:58.0987 6380  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:42:58.0987 6380  fdPHost - ok
22:42:59.0003 6380  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:42:59.0003 6380  FDResPub - ok
22:42:59.0050 6380  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:42:59.0050 6380  FileInfo - ok
22:42:59.0065 6380  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:42:59.0065 6380  Filetrace - ok
22:42:59.0081 6380  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:42:59.0097 6380  flpydisk - ok
22:42:59.0175 6380  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:42:59.0237 6380  FltMgr - ok
22:42:59.0362 6380  [ 6CD6BB45BD3E0EEF6CE496BF52854FF1 ] FlyUsb          C:\Windows\system32\DRIVERS\FlyUsb.sys
22:42:59.0377 6380  FlyUsb - ok
22:42:59.0689 6380  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
22:42:59.0705 6380  FontCache - ok
22:42:59.0892 6380  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:42:59.0970 6380  FontCache3.0.0.0 - ok
22:43:00.0001 6380  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:43:00.0001 6380  FsDepends - ok
22:43:00.0048 6380  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:43:00.0189 6380  Fs_Rec - ok
22:43:00.0267 6380  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:43:00.0267 6380  fvevol - ok
22:43:00.0329 6380  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
22:43:00.0345 6380  gagp30kx - ok
22:43:00.0423 6380  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:43:00.0423 6380  GEARAspiWDM - ok
22:43:00.0563 6380  [ C6B9F48D46C13389EA2AF2065AE66612 ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\896\g2aservice.exe
22:43:00.0657 6380  GoToAssist - ok
22:43:00.0750 6380  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:43:00.0766 6380  gpsvc - ok
22:43:00.0875 6380  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:00.0875 6380  gupdate - ok
22:43:00.0969 6380  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:00.0969 6380  gupdatem - ok
22:43:01.0047 6380  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:43:01.0187 6380  gusvc - ok
22:43:01.0203 6380  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:43:01.0203 6380  hcw85cir - ok
22:43:01.0296 6380  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:43:01.0312 6380  HdAudAddService - ok
22:43:01.0390 6380  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
22:43:01.0405 6380  HDAudBus - ok
22:43:01.0468 6380  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
22:43:01.0468 6380  HidBatt - ok
22:43:01.0530 6380  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
22:43:01.0546 6380  HidBth - ok
22:43:01.0577 6380  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:43:01.0577 6380  HidIr - ok
22:43:01.0608 6380  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
22:43:01.0624 6380  hidserv - ok
22:43:01.0717 6380  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
22:43:01.0717 6380  HidUsb - ok
22:43:01.0811 6380  HitmanPro37CrusaderBoot - ok
22:43:01.0873 6380  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:43:01.0873 6380  hkmsvc - ok
22:43:01.0936 6380  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:43:01.0936 6380  HomeGroupListener - ok
22:43:02.0014 6380  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:43:02.0014 6380  HomeGroupProvider - ok
22:43:02.0061 6380  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:43:02.0076 6380  HpSAMD - ok
22:43:02.0170 6380  [ CF44B25AE808765D7308F412AD492DDB ] HTCAND64        C:\Windows\system32\Drivers\ANDROIDUSB.sys
22:43:02.0170 6380  HTCAND64 - ok
22:43:02.0248 6380  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:43:02.0248 6380  HTTP - ok
22:43:02.0279 6380  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:43:02.0295 6380  hwpolicy - ok
22:43:02.0357 6380  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
22:43:02.0357 6380  i8042prt - ok
22:43:02.0435 6380  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
22:43:02.0435 6380  iaStor - ok
22:43:02.0544 6380  [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:43:02.0544 6380  IAStorDataMgrSvc - ok
22:43:02.0622 6380  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:43:02.0669 6380  iaStorV - ok
22:43:02.0716 6380  [ FC85972037815FA7B413E790B426ACB2 ] iBtFltCoex      C:\Windows\system32\DRIVERS\iBtFltCoex.sys
22:43:02.0716 6380  iBtFltCoex - ok
22:43:02.0872 6380  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:43:03.0012 6380  idsvc - ok
22:43:03.0933 6380  [ 78527E6A4D78B1153925914C55872BEB ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:43:04.0057 6380  igfx - ok
22:43:04.0089 6380  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
22:43:04.0089 6380  iirsp - ok
22:43:04.0198 6380  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:43:04.0213 6380  IKEEXT - ok
22:43:04.0307 6380  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
22:43:04.0307 6380  IntcDAud - ok
22:43:04.0354 6380  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:43:04.0354 6380  intelide - ok
22:43:04.0416 6380  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:43:04.0416 6380  intelppm - ok
22:43:04.0619 6380  [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
22:43:04.0619 6380  IntuitUpdateServiceV4 - ok
22:43:04.0666 6380  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:43:04.0666 6380  IPBusEnum - ok
22:43:04.0697 6380  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:43:04.0697 6380  IpFilterDriver - ok
22:43:04.0775 6380  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:43:04.0791 6380  iphlpsvc - ok
22:43:04.0837 6380  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:43:04.0837 6380  IPMIDRV - ok
22:43:04.0884 6380  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:43:04.0900 6380  IPNAT - ok
22:43:05.0009 6380  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:43:05.0025 6380  iPod Service - ok
22:43:05.0071 6380  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:43:05.0071 6380  IRENUM - ok
22:43:05.0103 6380  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:43:05.0118 6380  isapnp - ok
22:43:05.0196 6380  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:43:05.0259 6380  iScsiPrt - ok
22:43:05.0274 6380  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
22:43:05.0274 6380  kbdclass - ok
22:43:05.0321 6380  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:43:05.0430 6380  kbdhid - ok
22:43:05.0477 6380  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:43:05.0477 6380  KeyIso - ok
22:43:05.0539 6380  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:43:05.0539 6380  KSecDD - ok
22:43:05.0586 6380  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:43:05.0586 6380  KSecPkg - ok
22:43:05.0633 6380  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:43:05.0633 6380  ksthunk - ok
22:43:05.0680 6380  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:43:05.0711 6380  KtmRm - ok
22:43:05.0805 6380  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
22:43:05.0820 6380  LanmanServer - ok
22:43:05.0898 6380  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:43:05.0914 6380  LanmanWorkstation - ok
22:43:06.0990 6380  [ 32F1B95C60042F3D95FC8AB43559B3B1 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
22:43:07.0115 6380  LeapFrog Connect Device Service - ok
22:43:07.0209 6380  [ 797289607A5EBF31353AA5EAD141F872 ] Leapfrog-USBLAN C:\Windows\system32\DRIVERS\btblan.sys
22:43:07.0209 6380  Leapfrog-USBLAN - ok
22:43:07.0287 6380  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:43:07.0302 6380  lltdio - ok
22:43:07.0380 6380  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:43:07.0489 6380  lltdsvc - ok
22:43:07.0552 6380  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:43:07.0552 6380  lmhosts - ok
22:43:07.0692 6380  [ 0803906D607A9B83184447B75B60ECC2 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:43:07.0723 6380  LMS - ok
22:43:07.0786 6380  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
22:43:07.0786 6380  LSI_FC - ok
22:43:07.0848 6380  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
22:43:07.0864 6380  LSI_SAS - ok
22:43:07.0895 6380  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:43:07.0895 6380  LSI_SAS2 - ok
22:43:07.0926 6380  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:43:07.0942 6380  LSI_SCSI - ok
22:43:07.0989 6380  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:43:07.0989 6380  luafv - ok
22:43:08.0207 6380  [ 5ABAFA1322D7746AB5CDB64E089F8498 ] McAfeeFramework C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
22:43:08.0347 6380  McAfeeFramework - ok
22:43:08.0472 6380  [ 99D3C3EA203880925C9BF233BE3424E4 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:43:08.0488 6380  McShield - ok
22:43:08.0550 6380  [ 2CB697CCB48C77B17BE022A32F9B87F3 ] McTaskManager   C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
22:43:08.0550 6380  McTaskManager - ok
22:43:08.0597 6380  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:43:08.0769 6380  Mcx2Svc - ok
22:43:08.0784 6380  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
22:43:08.0784 6380  megasas - ok
22:43:08.0815 6380  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
22:43:08.0815 6380  MegaSR - ok
22:43:08.0878 6380  [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
22:43:08.0878 6380  MEIx64 - ok
22:43:08.0940 6380  [ B291D19323E145FE05FBDF22862984F8 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
22:43:08.0940 6380  mfeapfk - ok
22:43:08.0987 6380  [ E7AE369CB2794CAEC66617209CE9EA83 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
22:43:09.0003 6380  mfeavfk - ok
22:43:09.0018 6380  mfeavfk01 - ok
22:43:09.0127 6380  [ 1A58E86EFBB0AFB49DD537CFF7DF0B2E ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
22:43:09.0159 6380  mfehidk - ok
22:43:09.0221 6380  [ B9DEFEEAB0B733EC17F98BDEB5FEC9F3 ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
22:43:09.0237 6380  mferkdet - ok
22:43:09.0283 6380  [ A4C946A30993E290DA27556709F5B060 ] mfevtp          C:\Windows\system32\mfevtps.exe
22:43:09.0283 6380  mfevtp - ok
22:43:09.0377 6380  [ 8A7179114730544704EBFDB3E6B0669A ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
22:43:09.0377 6380  mfewfpk - ok
22:43:09.0580 6380  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:43:09.0673 6380  Microsoft Office Groove Audit Service - ok
22:43:09.0751 6380  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:43:09.0751 6380  MMCSS - ok
22:43:09.0783 6380  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:43:09.0783 6380  Modem - ok
22:43:09.0814 6380  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:43:09.0814 6380  monitor - ok
22:43:09.0845 6380  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
22:43:09.0845 6380  mouclass - ok
22:43:09.0861 6380  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:43:09.0861 6380  mouhid - ok
22:43:09.0907 6380  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:43:09.0970 6380  mountmgr - ok
22:43:10.0079 6380  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:43:10.0157 6380  MozillaMaintenance - ok
22:43:10.0173 6380  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:43:10.0173 6380  mpio - ok
22:43:10.0235 6380  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:43:10.0235 6380  mpsdrv - ok
22:43:10.0329 6380  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:43:10.0344 6380  MpsSvc - ok
22:43:10.0407 6380  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:43:10.0500 6380  MRxDAV - ok
22:43:10.0547 6380  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:43:10.0547 6380  mrxsmb - ok
22:43:10.0656 6380  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:43:10.0656 6380  mrxsmb10 - ok
22:43:10.0703 6380  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:43:10.0703 6380  mrxsmb20 - ok
22:43:10.0797 6380  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:43:10.0797 6380  msahci - ok
22:43:10.0843 6380  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:43:10.0921 6380  msdsm - ok
22:43:10.0953 6380  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:43:10.0968 6380  MSDTC - ok
22:43:10.0984 6380  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:43:10.0984 6380  Msfs - ok
22:43:10.0999 6380  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:43:10.0999 6380  mshidkmdf - ok
22:43:11.0046 6380  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:43:11.0046 6380  msisadrv - ok
22:43:11.0062 6380  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:43:11.0077 6380  MSiSCSI - ok
22:43:11.0077 6380  msiserver - ok
22:43:11.0109 6380  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:43:11.0109 6380  MSKSSRV - ok
22:43:11.0124 6380  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:43:11.0140 6380  MSPCLOCK - ok
22:43:11.0155 6380  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:43:11.0155 6380  MSPQM - ok
22:43:11.0187 6380  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:43:11.0202 6380  MsRPC - ok
22:43:11.0233 6380  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:43:11.0233 6380  mssmbios - ok
22:43:11.0249 6380  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:43:11.0249 6380  MSTEE - ok
22:43:11.0265 6380  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
22:43:11.0265 6380  MTConfig - ok
22:43:11.0296 6380  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:43:11.0311 6380  Mup - ok
22:43:11.0358 6380  [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
22:43:11.0436 6380  MyWiFiDHCPDNS - ok
22:43:11.0561 6380  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:43:11.0577 6380  napagent - ok
22:43:11.0639 6380  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:43:11.0639 6380  NativeWifiP - ok
22:43:11.0811 6380  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:43:11.0826 6380  NDIS - ok
22:43:11.0857 6380  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:43:11.0857 6380  NdisCap - ok
22:43:11.0904 6380  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:43:11.0904 6380  NdisTapi - ok
22:43:11.0935 6380  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:43:11.0935 6380  Ndisuio - ok
22:43:11.0982 6380  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:43:11.0982 6380  NdisWan - ok
22:43:12.0013 6380  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:43:12.0013 6380  NDProxy - ok
22:43:12.0045 6380  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:43:12.0045 6380  NetBIOS - ok
22:43:12.0076 6380  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:43:12.0076 6380  NetBT - ok
22:43:12.0091 6380  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:43:12.0091 6380  Netlogon - ok
22:43:12.0138 6380  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:43:12.0138 6380  Netman - ok
22:43:12.0169 6380  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:43:12.0185 6380  netprofm - ok
22:43:12.0216 6380  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:43:12.0232 6380  NetTcpPortSharing - ok
22:43:13.0043 6380  [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
22:43:13.0090 6380  NETwNs64 - ok
22:43:13.0121 6380  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
22:43:13.0121 6380  nfrd960 - ok
22:43:13.0184 6380  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:43:13.0200 6380  NlaSvc - ok
22:43:13.0652 6380  [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
22:43:13.0668 6380  NOBU - ok
22:43:13.0762 6380  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:43:13.0762 6380  Npfs - ok
22:43:13.0793 6380  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:43:13.0793 6380  nsi - ok
22:43:13.0808 6380  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:43:13.0808 6380  nsiproxy - ok
22:43:14.0089 6380  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:43:14.0136 6380  Ntfs - ok
22:43:14.0183 6380  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:43:14.0183 6380  Null - ok
22:43:14.0245 6380  [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
22:43:14.0245 6380  nusb3hub - ok
22:43:14.0276 6380  [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:43:14.0276 6380  nusb3xhc - ok
22:43:14.0370 6380  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:43:14.0386 6380  nvraid - ok
22:43:14.0401 6380  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:43:14.0401 6380  nvstor - ok
22:43:14.0432 6380  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:43:14.0432 6380  nv_agp - ok
22:43:14.0495 6380  [ 952AB3BDEF38A7391AA05BC8C6028F15 ] NWADI           C:\Windows\system32\DRIVERS\NWADIenum.sys
22:43:14.0495 6380  NWADI - ok
22:43:14.0557 6380  [ DE3ABD010D9734CD4AD4E0BA81F50B63 ] NWUSBCDFIL64    C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
22:43:14.0557 6380  NWUSBCDFIL64 - ok
22:43:14.0651 6380  [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBModem      C:\Windows\system32\DRIVERS\nwusbmdm.sys
22:43:14.0651 6380  NWUSBModem - ok
22:43:14.0760 6380  [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort       C:\Windows\system32\DRIVERS\nwusbser.sys
22:43:14.0760 6380  NWUSBPort - ok
22:43:14.0776 6380  [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort2      C:\Windows\system32\DRIVERS\nwusbser2.sys
22:43:14.0776 6380  NWUSBPort2 - ok
22:43:14.0916 6380  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:43:15.0025 6380  odserv - ok
22:43:15.0072 6380  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:43:15.0072 6380  ohci1394 - ok
22:43:15.0134 6380  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:43:15.0212 6380  ose - ok
22:43:15.0259 6380  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:43:15.0259 6380  p2pimsvc - ok
22:43:15.0290 6380  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:43:15.0306 6380  p2psvc - ok
22:43:15.0353 6380  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:43:15.0353 6380  Parport - ok
22:43:15.0384 6380  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:43:15.0400 6380  partmgr - ok
22:43:15.0415 6380  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:43:15.0415 6380  PcaSvc - ok
22:43:15.0493 6380  [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
22:43:15.0556 6380  PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
22:43:15.0571 6380  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:43:15.0587 6380  pci - ok
22:43:15.0634 6380  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:43:15.0634 6380  pciide - ok
22:43:15.0665 6380  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:43:15.0680 6380  pcmcia - ok
22:43:15.0696 6380  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:43:15.0696 6380  pcw - ok
22:43:15.0727 6380  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:43:15.0743 6380  PEAUTH - ok
22:43:15.0868 6380  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:43:15.0868 6380  PerfHost - ok
22:43:16.0055 6380  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:43:16.0117 6380  pla - ok
22:43:16.0242 6380  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:43:16.0258 6380  PlugPlay - ok
22:43:16.0273 6380  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:43:16.0289 6380  PNRPAutoReg - ok
22:43:16.0382 6380  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:43:16.0382 6380  PNRPsvc - ok
22:43:16.0445 6380  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:43:16.0460 6380  PolicyAgent - ok
22:43:16.0570 6380  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:43:16.0585 6380  Power - ok
22:43:16.0648 6380  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:43:16.0648 6380  PptpMiniport - ok
22:43:16.0694 6380  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:43:16.0694 6380  Processor - ok
22:43:16.0757 6380  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:43:16.0944 6380  ProfSvc - ok
22:43:16.0975 6380  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:43:16.0975 6380  ProtectedStorage - ok
22:43:17.0038 6380  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:43:17.0038 6380  Psched - ok
22:43:17.0084 6380  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
22:43:17.0084 6380  PxHlpa64 - ok
22:43:17.0318 6380  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
22:43:17.0365 6380  ql2300 - ok
22:43:17.0412 6380  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
22:43:17.0412 6380  ql40xx - ok
22:43:17.0490 6380  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:43:17.0506 6380  QWAVE - ok
22:43:17.0521 6380  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:43:17.0537 6380  QWAVEdrv - ok
22:43:17.0552 6380  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:43:17.0568 6380  RasAcd - ok
22:43:17.0646 6380  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:43:17.0646 6380  RasAgileVpn - ok
22:43:17.0677 6380  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:43:17.0693 6380  RasAuto - ok
22:43:17.0724 6380  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:43:17.0724 6380  Rasl2tp - ok
22:43:17.0802 6380  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:43:17.0802 6380  RasMan - ok
22:43:17.0833 6380  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:43:17.0833 6380  RasPppoe - ok
22:43:17.0849 6380  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:43:17.0849 6380  RasSstp - ok
22:43:17.0942 6380  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:43:17.0942 6380  rdbss - ok
22:43:17.0958 6380  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:43:17.0974 6380  rdpbus - ok
22:43:18.0020 6380  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:43:18.0020 6380  RDPCDD - ok
22:43:18.0052 6380  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:43:18.0052 6380  RDPENCDD - ok
22:43:18.0083 6380  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:43:18.0083 6380  RDPREFMP - ok
22:43:18.0130 6380  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:43:18.0208 6380  RDPWD - ok
22:43:18.0254 6380  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:43:18.0364 6380  rdyboost - ok
22:43:18.0582 6380  [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:43:18.0598 6380  RegSrvc - ok
22:43:18.0629 6380  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:43:18.0629 6380  RemoteAccess - ok
22:43:18.0660 6380  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:43:18.0676 6380  RemoteRegistry - ok
22:43:18.0691 6380  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:43:18.0707 6380  RFCOMM - ok
22:43:19.0034 6380  [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
22:43:19.0268 6380  RoxMediaDB12OEM - ok
22:43:19.0315 6380  [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12      c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
22:43:19.0315 6380  RoxWatch12 - ok
22:43:19.0362 6380  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:43:19.0378 6380  RpcEptMapper - ok
22:43:19.0393 6380  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:43:19.0409 6380  RpcLocator - ok
22:43:19.0440 6380  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:43:19.0456 6380  RpcSs - ok
22:43:19.0502 6380  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:43:19.0502 6380  rspndr - ok
22:43:19.0549 6380  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
22:43:19.0549 6380  RSUSBSTOR - ok
22:43:19.0596 6380  [ 2777226EE8BF50B059D7A7C90177E99C ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:43:19.0596 6380  RTL8167 - ok
22:43:19.0612 6380  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:43:19.0612 6380  SamSs - ok
22:43:19.0658 6380  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:43:19.0674 6380  sbp2port - ok
22:43:19.0721 6380  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:43:19.0736 6380  SCardSvr - ok
22:43:19.0783 6380  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:43:19.0783 6380  scfilter - ok
22:43:19.0846 6380  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:43:19.0861 6380  Schedule - ok
22:43:19.0908 6380  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:43:19.0908 6380  SCPolicySvc - ok
22:43:19.0939 6380  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:43:19.0955 6380  SDRSVC - ok
22:43:19.0970 6380  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:43:19.0970 6380  secdrv - ok
22:43:20.0017 6380  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:43:20.0017 6380  seclogon - ok
22:43:20.0048 6380  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
22:43:20.0048 6380  SENS - ok
22:43:20.0080 6380  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:43:20.0095 6380  SensrSvc - ok
22:43:20.0126 6380  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:43:20.0126 6380  Serenum - ok
22:43:20.0158 6380  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:43:20.0158 6380  Serial - ok
22:43:20.0204 6380  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
22:43:20.0204 6380  sermouse - ok
22:43:20.0267 6380  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:43:20.0267 6380  SessionEnv - ok
22:43:20.0298 6380  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:43:20.0298 6380  sffdisk - ok
22:43:20.0314 6380  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:43:20.0329 6380  sffp_mmc - ok
22:43:20.0345 6380  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:43:20.0345 6380  sffp_sd - ok
22:43:20.0360 6380  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
22:43:20.0360 6380  sfloppy - ok
22:43:20.0454 6380  [ 74EC60E20516AAA573BE74F31175270F ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:43:20.0485 6380  SftService - ok
22:43:20.0516 6380  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:43:20.0532 6380  SharedAccess - ok
22:43:20.0579 6380  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:43:20.0579 6380  ShellHWDetection - ok
22:43:20.0594 6380  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:43:20.0610 6380  SiSRaid2 - ok
22:43:20.0610 6380  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
22:43:20.0626 6380  SiSRaid4 - ok
22:43:20.0672 6380  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:43:26.0463 6380  SkypeUpdate - ok
22:43:26.0494 6380  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:43:26.0510 6380  Smb - ok
22:43:26.0557 6380  [ B5D3C24E4EA8E6D4850E83DAD8C510D4 ] SMSIVZAM5X64    C:\PROGRA~2\VERIZO~1\VZACCE~1\SMSIVZAM5X64.SYS
22:43:26.0557 6380  SMSIVZAM5X64 - ok
22:43:26.0635 6380  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:43:26.0635 6380  SNMPTRAP - ok
22:43:26.0650 6380  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:43:26.0650 6380  spldr - ok
22:43:26.0697 6380  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
22:43:26.0713 6380  Spooler - ok
22:43:27.0103 6380  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:43:27.0134 6380  sppsvc - ok
22:43:27.0165 6380  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:43:27.0165 6380  sppuinotify - ok
22:43:27.0228 6380  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:43:27.0228 6380  srv - ok
22:43:27.0306 6380  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:43:27.0368 6380  srv2 - ok
22:43:27.0384 6380  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:43:27.0384 6380  srvnet - ok
22:43:27.0430 6380  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:43:27.0430 6380  SSDPSRV - ok
22:43:27.0446 6380  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:43:27.0462 6380  SstpSvc - ok
22:43:27.0508 6380  [ B2D8B364A831427A5741F6C408FA8AE3 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
22:43:27.0508 6380  STacSV - ok
22:43:27.0540 6380  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
22:43:27.0555 6380  stexstor - ok
22:43:27.0602 6380  [ EF5ACDE92BA3F691BBFEF781CB063501 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
22:43:27.0602 6380  STHDA - ok
22:43:27.0664 6380  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:43:27.0664 6380  stisvc - ok
22:43:27.0758 6380  [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:43:27.0883 6380  stllssvr - ok
22:43:27.0914 6380  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:43:27.0914 6380  swenum - ok
22:43:28.0023 6380  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:43:28.0054 6380  swprv - ok
22:43:28.0242 6380  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:43:28.0257 6380  SysMain - ok
22:43:28.0304 6380  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:43:28.0320 6380  TabletInputService - ok
22:43:28.0351 6380  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:43:28.0351 6380  TapiSrv - ok
22:43:28.0382 6380  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:43:28.0398 6380  TBS - ok
22:43:28.0476 6380  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:43:28.0554 6380  Tcpip - ok
22:43:28.0616 6380  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:43:28.0647 6380  TCPIP6 - ok
22:43:28.0694 6380  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:43:28.0694 6380  tcpipreg - ok
22:43:28.0710 6380  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:43:28.0725 6380  TDPIPE - ok
22:43:28.0756 6380  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:43:28.0756 6380  TDTCP - ok
22:43:28.0819 6380  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:43:28.0928 6380  tdx - ok
22:43:28.0959 6380  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:43:28.0959 6380  TermDD - ok
22:43:28.0990 6380  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:43:29.0022 6380  TermService - ok
22:43:29.0037 6380  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:43:29.0037 6380  Themes - ok
22:43:29.0068 6380  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:43:29.0068 6380  THREADORDER - ok
22:43:29.0100 6380  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:43:29.0100 6380  TrkWks - ok
22:43:29.0178 6380  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:43:29.0193 6380  TrustedInstaller - ok
22:43:29.0209 6380  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:43:29.0224 6380  tssecsrv - ok
22:43:29.0256 6380  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:43:29.0271 6380  TsUsbFlt - ok
22:43:29.0334 6380  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:43:29.0334 6380  tunnel - ok
22:43:29.0380 6380  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
22:43:29.0396 6380  uagp35 - ok
22:43:29.0427 6380  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:43:29.0490 6380  udfs - ok
22:43:29.0505 6380  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:43:29.0505 6380  UI0Detect - ok
22:43:29.0536 6380  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:43:29.0536 6380  uliagpkx - ok
22:43:29.0583 6380  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
22:43:29.0599 6380  umbus - ok
22:43:29.0630 6380  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:43:29.0630 6380  UmPass - ok
22:43:29.0989 6380  [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:43:30.0004 6380  UNS - ok
22:43:30.0082 6380  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:43:30.0098 6380  upnphost - ok
22:43:30.0145 6380  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
22:43:30.0145 6380  USBAAPL64 - ok
22:43:30.0192 6380  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:43:30.0192 6380  usbccgp - ok
22:43:30.0207 6380  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:43:30.0207 6380  usbcir - ok
22:43:30.0238 6380  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:43:30.0238 6380  usbehci - ok
22:43:30.0270 6380  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:43:30.0285 6380  usbhub - ok
22:43:30.0285 6380  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:43:30.0285 6380  usbohci - ok
22:43:30.0316 6380  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:43:30.0316 6380  usbprint - ok
22:43:30.0332 6380  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:43:30.0332 6380  USBSTOR - ok
22:43:30.0363 6380  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:43:30.0441 6380  usbuhci - ok
22:43:30.0504 6380  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
22:43:30.0504 6380  usbvideo - ok
22:43:30.0535 6380  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:43:30.0535 6380  UxSms - ok
22:43:30.0566 6380  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:43:30.0566 6380  VaultSvc - ok
22:43:30.0597 6380  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:43:30.0597 6380  vdrvroot - ok
22:43:30.0660 6380  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:43:30.0691 6380  vds - ok
22:43:30.0722 6380  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:43:30.0722 6380  vga - ok
22:43:30.0738 6380  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:43:30.0753 6380  VgaSave - ok
22:43:30.0784 6380  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:43:30.0800 6380  vhdmp - ok
22:43:30.0816 6380  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:43:30.0816 6380  viaide - ok
22:43:30.0847 6380  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:43:30.0847 6380  volmgr - ok
22:43:30.0878 6380  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:43:30.0894 6380  volmgrx - ok
22:43:30.0925 6380  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:43:30.0925 6380  volsnap - ok
22:43:30.0972 6380  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
22:43:30.0987 6380  vsmraid - ok
22:43:31.0065 6380  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:43:31.0237 6380  VSS - ok
22:43:31.0252 6380  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:43:31.0252 6380  vwifibus - ok
22:43:31.0284 6380  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:43:31.0284 6380  vwififlt - ok
22:43:31.0315 6380  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:43:31.0315 6380  vwifimp - ok
22:43:31.0377 6380  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:43:31.0408 6380  W32Time - ok
22:43:31.0455 6380  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
22:43:31.0455 6380  WacomPen - ok
22:43:31.0502 6380  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:43:31.0611 6380  WANARP - ok
22:43:31.0642 6380  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:43:31.0642 6380  Wanarpv6 - ok
22:43:31.0830 6380  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:43:32.0173 6380  WatAdminSvc - ok
22:43:32.0360 6380  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:43:32.0422 6380  wbengine - ok
22:43:32.0438 6380  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:43:32.0454 6380  WbioSrvc - ok
22:43:32.0532 6380  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:43:32.0547 6380  wcncsvc - ok
22:43:32.0578 6380  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:43:32.0594 6380  WcsPlugInService - ok
22:43:32.0625 6380  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
22:43:32.0625 6380  Wd - ok
22:43:32.0750 6380  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
22:43:32.0750 6380  WDC_SAM - ok
22:43:32.0812 6380  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:43:32.0844 6380  Wdf01000 - ok
22:43:32.0875 6380  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:43:32.0875 6380  WdiServiceHost - ok
22:43:32.0875 6380  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:43:32.0875 6380  WdiSystemHost - ok
22:43:32.0906 6380  [ 94DC2BF6CBAAA95E369C3756D3115A76 ] wdkmd           C:\Windows\system32\DRIVERS\WDKMD.sys
22:43:32.0906 6380  wdkmd - ok
22:43:32.0953 6380  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:43:32.0953 6380  WebClient - ok
22:43:32.0984 6380  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:43:32.0984 6380  Wecsvc - ok
22:43:33.0000 6380  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:43:33.0000 6380  wercplsupport - ok
22:43:33.0015 6380  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:43:33.0015 6380  WerSvc - ok
22:43:33.0031 6380  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:43:33.0031 6380  WfpLwf - ok
22:43:33.0062 6380  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
22:43:33.0078 6380  WimFltr - ok
22:43:33.0093 6380  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:43:33.0093 6380  WIMMount - ok
22:43:33.0124 6380  WinDefend - ok
22:43:33.0140 6380  WinHttpAutoProxySvc - ok
22:43:33.0202 6380  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:43:33.0202 6380  Winmgmt - ok
22:43:33.0343 6380  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:43:33.0421 6380  WinRM - ok
22:43:33.0483 6380  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:43:33.0483 6380  WinUsb - ok
22:43:33.0561 6380  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:43:33.0577 6380  Wlansvc - ok
22:43:33.0608 6380  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:43:33.0702 6380  wlcrasvc - ok
22:43:33.0826 6380  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:43:33.0842 6380  wlidsvc - ok
22:43:33.0904 6380  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:43:33.0904 6380  WmiAcpi - ok
22:43:33.0967 6380  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:43:33.0982 6380  wmiApSrv - ok
22:43:33.0998 6380  WMPNetworkSvc - ok
22:43:34.0029 6380  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:43:34.0029 6380  WPCSvc - ok
22:43:34.0060 6380  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:43:34.0076 6380  WPDBusEnum - ok
22:43:34.0092 6380  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:43:34.0092 6380  ws2ifsl - ok
22:43:34.0107 6380  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
22:43:34.0123 6380  wscsvc - ok
22:43:34.0123 6380  WSearch - ok
22:43:34.0248 6380  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:43:34.0263 6380  wuauserv - ok
22:43:34.0294 6380  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:43:34.0294 6380  WudfPf - ok
22:43:34.0372 6380  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:43:34.0372 6380  WUDFRd - ok
22:43:34.0419 6380  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:43:34.0435 6380  wudfsvc - ok
22:43:34.0466 6380  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:43:34.0482 6380  WwanSvc - ok
22:43:34.0528 6380  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
22:43:34.0544 6380  yukonw7 - ok
22:43:34.0560 6380  ================ Scan global ===============================
22:43:34.0575 6380  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:43:34.0622 6380  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:43:34.0638 6380  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:43:34.0684 6380  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:43:34.0747 6380  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:43:34.0762 6380  [Global] - ok
22:43:34.0762 6380  ================ Scan MBR ==================================
22:43:34.0762 6380  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:43:35.0542 6380  \Device\Harddisk0\DR0 - ok
22:43:35.0542 6380  ================ Scan VBR ==================================
22:43:35.0558 6380  [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
22:43:35.0574 6380  \Device\Harddisk0\DR0\Partition1 - ok
22:43:35.0589 6380  [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
22:43:35.0605 6380  \Device\Harddisk0\DR0\Partition2 - ok
22:43:35.0605 6380  ================ Scan active images ========================
22:43:35.0605 6380  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
22:43:35.0605 6380  C:\Windows\System32\drivers\crashdmp.sys - ok
22:43:35.0620 6380  [ D7921D5A870B11CC1ADAB198A519D50A ] C:\Windows\System32\drivers\iaStor.sys
22:43:35.0620 6380  C:\Windows\System32\drivers\iaStor.sys - ok
22:43:35.0636 6380  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
22:43:35.0636 6380  C:\Windows\System32\drivers\dumpfve.sys - ok
22:43:35.0636 6380  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
22:43:35.0636 6380  C:\Windows\System32\drivers\beep.sys - ok
22:43:35.0636 6380  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
22:43:35.0636 6380  C:\Windows\System32\drivers\cdrom.sys - ok
22:43:35.0636 6380  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
22:43:35.0636 6380  C:\Windows\System32\drivers\null.sys - ok
22:43:35.0652 6380  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
22:43:35.0652 6380  C:\Windows\System32\drivers\RDPCDD.sys - ok
22:43:35.0652 6380  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
22:43:35.0652 6380  C:\Windows\System32\drivers\vga.sys - ok
22:43:35.0652 6380  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
22:43:35.0652 6380  C:\Windows\System32\drivers\videoprt.sys - ok
22:43:35.0652 6380  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
22:43:35.0652 6380  C:\Windows\System32\drivers\watchdog.sys - ok
22:43:35.0667 6380  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
22:43:35.0667 6380  C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:43:35.0667 6380  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
22:43:35.0667 6380  C:\Windows\System32\drivers\msfs.sys - ok
22:43:35.0667 6380  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
22:43:35.0667 6380  C:\Windows\System32\drivers\npfs.sys - ok
22:43:35.0667 6380  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
22:43:35.0667 6380  C:\Windows\System32\drivers\RDPREFMP.sys - ok
22:43:35.0683 6380  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
22:43:35.0683 6380  C:\Windows\System32\drivers\tdi.sys - ok
22:43:35.0683 6380  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
22:43:35.0683 6380  C:\Windows\System32\drivers\tdx.sys - ok
22:43:35.0683 6380  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
22:43:35.0683 6380  C:\Windows\System32\drivers\netbt.sys - ok
22:43:35.0683 6380  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
22:43:35.0683 6380  C:\Windows\System32\drivers\afd.sys - ok
22:43:35.0698 6380  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
22:43:35.0698 6380  C:\Windows\System32\drivers\ws2ifsl.sys - ok
22:43:35.0698 6380  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
22:43:35.0698 6380  C:\Windows\System32\drivers\wfplwf.sys - ok
22:43:35.0698 6380  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
22:43:35.0698 6380  C:\Windows\System32\drivers\netbios.sys - ok
22:43:35.0714 6380  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
22:43:35.0714 6380  C:\Windows\System32\drivers\pacer.sys - ok
22:43:35.0714 6380  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
22:43:35.0714 6380  C:\Windows\System32\drivers\vwififlt.sys - ok
22:43:35.0714 6380  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
22:43:35.0714 6380  C:\Windows\System32\drivers\termdd.sys - ok
22:43:35.0714 6380  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
22:43:35.0714 6380  C:\Windows\System32\drivers\wanarp.sys - ok
22:43:35.0714 6380  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
22:43:35.0714 6380  C:\Windows\System32\drivers\rdbss.sys - ok
22:43:35.0730 6380  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
22:43:35.0730 6380  C:\Windows\System32\drivers\mssmbios.sys - ok
22:43:35.0730 6380  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
22:43:35.0730 6380  C:\Windows\System32\drivers\nsiproxy.sys - ok
22:43:35.0730 6380  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
22:43:35.0730 6380  C:\Windows\System32\drivers\blbdrive.sys - ok
22:43:35.0745 6380  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
22:43:35.0745 6380  C:\Windows\System32\drivers\dfsc.sys - ok
22:43:35.0745 6380  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
22:43:35.0745 6380  C:\Windows\System32\drivers\discache.sys - ok
22:43:35.0745 6380  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
22:43:35.0745 6380  C:\Windows\System32\drivers\tunnel.sys - ok
22:43:35.0761 6380  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
22:43:35.0761 6380  C:\Windows\System32\ntdll.dll - ok
22:43:35.0761 6380  [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
22:43:35.0761 6380  C:\Windows\System32\smss.exe - ok
22:43:35.0761 6380  [ 78527E6A4D78B1153925914C55872BEB ] C:\Windows\System32\drivers\igdkmd64.sys
22:43:35.0761 6380  C:\Windows\System32\drivers\igdkmd64.sys - ok
22:43:35.0761 6380  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
22:43:35.0761 6380  C:\Windows\System32\autochk.exe - ok
22:43:35.0776 6380  [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
22:43:35.0776 6380  C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:43:35.0776 6380  [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
22:43:35.0776 6380  C:\Windows\System32\drivers\dxgmms1.sys - ok
22:43:35.0776 6380  [ 1C6E73FC46B509EFF9D0086AA37132DF ] C:\Windows\System32\drivers\HECIx64.sys
22:43:35.0776 6380  C:\Windows\System32\drivers\HECIx64.sys - ok
22:43:35.0776 6380  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
22:43:35.0776 6380  C:\Windows\System32\advapi32.dll - ok
22:43:35.0792 6380  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
22:43:35.0792 6380  C:\Windows\System32\drivers\usbport.sys - ok
22:43:35.0792 6380  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
22:43:35.0792 6380  C:\Windows\System32\drivers\hdaudbus.sys - ok
22:43:35.0792 6380  [ 2777226EE8BF50B059D7A7C90177E99C ] C:\Windows\System32\drivers\Rt64win7.sys
22:43:35.0792 6380  C:\Windows\System32\drivers\Rt64win7.sys - ok
22:43:35.0808 6380  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
22:43:35.0808 6380  C:\Windows\System32\drivers\usbehci.sys - ok
22:43:35.0808 6380  [ 5D262402B0634C998F8CBCEAD7DD8676 ] C:\Windows\System32\drivers\NETwNs64.sys
22:43:35.0808 6380  C:\Windows\System32\drivers\NETwNs64.sys - ok
22:43:35.0808 6380  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
22:43:35.0808 6380  C:\Windows\System32\drivers\usbd.sys - ok
22:43:35.0808 6380  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
22:43:35.0808 6380  C:\Windows\System32\drivers\vwifibus.sys - ok
22:43:35.0823 6380  [ D40A13B2C0891E218F9523B376955DB6 ] C:\Windows\System32\drivers\nusb3xhc.sys
22:43:35.0823 6380  C:\Windows\System32\drivers\nusb3xhc.sys - ok
22:43:35.0823 6380  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
22:43:35.0823 6380  C:\Windows\System32\drivers\i8042prt.sys - ok
22:43:35.0823 6380  [ 7380B9072EBC65A54DA3074E14BF34B9 ] C:\Windows\System32\drivers\Apfiltr.sys
22:43:35.0823 6380  C:\Windows\System32\drivers\Apfiltr.sys - ok
22:43:35.0823 6380  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
22:43:35.0823 6380  C:\Windows\System32\drivers\kbdclass.sys - ok
22:43:35.0839 6380  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
22:43:35.0839 6380  C:\Windows\System32\drivers\mouclass.sys - ok
22:43:35.0839 6380  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
22:43:35.0839 6380  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
22:43:35.0839 6380  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
22:43:35.0839 6380  C:\Windows\System32\drivers\intelppm.sys - ok
22:43:35.0839 6380  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
22:43:35.0839 6380  C:\Windows\System32\drivers\agilevpn.sys - ok
22:43:35.0854 6380  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
22:43:35.0854 6380  C:\Windows\System32\drivers\CmBatt.sys - ok
22:43:35.0854 6380  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
22:43:35.0854 6380  C:\Windows\System32\drivers\CompositeBus.sys - ok
22:43:35.0854 6380  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
22:43:35.0854 6380  C:\Windows\System32\drivers\ndistapi.sys - ok
22:43:35.0854 6380  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
22:43:35.0854 6380  C:\Windows\System32\drivers\rasl2tp.sys - ok
22:43:35.0870 6380  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
22:43:35.0870 6380  C:\Windows\System32\drivers\wmiacpi.sys - ok
22:43:35.0870 6380  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
22:43:35.0870 6380  C:\Windows\System32\drivers\ndiswan.sys - ok
22:43:35.0870 6380  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
22:43:35.0870 6380  C:\Windows\System32\drivers\raspppoe.sys - ok
22:43:35.0886 6380  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
22:43:35.0886 6380  C:\Windows\System32\drivers\raspptp.sys - ok
22:43:35.0886 6380  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
22:43:35.0886 6380  C:\Windows\System32\drivers\ks.sys - ok
22:43:35.0886 6380  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
22:43:35.0886 6380  C:\Windows\System32\drivers\rassstp.sys - ok
22:43:35.0886 6380  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
22:43:35.0886 6380  C:\Windows\System32\drivers\swenum.sys - ok
22:43:35.0901 6380  [ 952AB3BDEF38A7391AA05BC8C6028F15 ] C:\Windows\System32\drivers\NWADIenum.sys
22:43:35.0901 6380  C:\Windows\System32\drivers\NWADIenum.sys - ok
22:43:35.0901 6380  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
22:43:35.0901 6380  C:\Windows\System32\drivers\umbus.sys - ok
22:43:35.0901 6380  [ 94DC2BF6CBAAA95E369C3756D3115A76 ] C:\Windows\System32\drivers\WDKMD.sys
22:43:35.0901 6380  C:\Windows\System32\drivers\WDKMD.sys - ok
22:43:35.0901 6380  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
22:43:35.0901 6380  C:\Windows\System32\drivers\usbhub.sys - ok
22:43:35.0917 6380  [ 158AD24745BD85BA9BE3C51C38F48C32 ] C:\Windows\System32\drivers\nusb3hub.sys
22:43:35.0917 6380  C:\Windows\System32\drivers\nusb3hub.sys - ok
22:43:35.0917 6380  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
22:43:35.0917 6380  C:\Windows\System32\drivers\ndproxy.sys - ok
22:43:35.0917 6380  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
22:43:35.0917 6380  C:\Windows\System32\drivers\drmk.sys - ok
22:43:35.0932 6380  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
22:43:35.0932 6380  C:\Windows\System32\drivers\ksthunk.sys - ok
22:43:35.0932 6380  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
22:43:35.0932 6380  C:\Windows\System32\drivers\portcls.sys - ok
22:43:35.0932 6380  [ EF5ACDE92BA3F691BBFEF781CB063501 ] C:\Windows\System32\drivers\stwrt64.sys
22:43:35.0932 6380  C:\Windows\System32\drivers\stwrt64.sys - ok
22:43:35.0948 6380  [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
22:43:35.0948 6380  C:\Windows\System32\drivers\IntcDAud.sys - ok
22:43:35.0948 6380  [ E7AE369CB2794CAEC66617209CE9EA83 ] C:\Windows\System32\drivers\mfeavfk.sys
22:43:35.0948 6380  C:\Windows\System32\drivers\mfeavfk.sys - ok
22:43:35.0948 6380  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
22:43:35.0948 6380  C:\Windows\System32\msvcrt.dll - ok
22:43:35.0964 6380  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
22:43:35.0964 6380  C:\Windows\System32\setupapi.dll - ok
22:43:35.0964 6380  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
22:43:35.0964 6380  C:\Windows\System32\usp10.dll - ok
22:43:35.0964 6380  [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
22:43:35.0964 6380  C:\Windows\System32\shell32.dll - ok
22:43:35.0979 6380  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
22:43:35.0979 6380  C:\Windows\System32\msctf.dll - ok
22:43:35.0979 6380  [ 792685A9538424CC1F3FA6A816FE147C ] C:\Windows\System32\urlmon.dll
22:43:35.0979 6380  C:\Windows\System32\urlmon.dll - ok
22:43:35.0979 6380  [ 9E0D8010D7368856617D3FE0FA5DA58F ] C:\Windows\System32\iertutil.dll
22:43:35.0979 6380  C:\Windows\System32\iertutil.dll - ok
22:43:35.0979 6380  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
22:43:35.0979 6380  C:\Windows\System32\lpk.dll - ok
22:43:35.0995 6380  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
22:43:35.0995 6380  C:\Windows\System32\kernel32.dll - ok
22:43:35.0995 6380  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
22:43:35.0995 6380  C:\Windows\System32\nsi.dll - ok
22:43:35.0995 6380  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
22:43:35.0995 6380  C:\Windows\System32\shlwapi.dll - ok
22:43:36.0010 6380  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
22:43:36.0010 6380  C:\Windows\System32\difxapi.dll - ok
22:43:36.0010 6380  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
22:43:36.0010 6380  C:\Windows\System32\oleaut32.dll - ok
22:43:36.0010 6380  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
22:43:36.0010 6380  C:\Windows\System32\comdlg32.dll - ok
22:43:36.0026 6380  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
22:43:36.0026 6380  C:\Windows\System32\sechost.dll - ok
22:43:36.0026 6380  [ FAF6EC2460AD5FBBD38D8E1AE28B0D77 ] C:\Windows\System32\wininet.dll
22:43:36.0026 6380  C:\Windows\System32\wininet.dll - ok
22:43:36.0026 6380  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
22:43:36.0026 6380  C:\Windows\System32\imagehlp.dll - ok
22:43:36.0026 6380  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
22:43:36.0026 6380  C:\Windows\System32\normaliz.dll - ok
22:43:36.0042 6380  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
22:43:36.0042 6380  C:\Windows\System32\ws2_32.dll - ok
22:43:36.0042 6380  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
22:43:36.0042 6380  C:\Windows\System32\imm32.dll - ok
22:43:36.0042 6380  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
22:43:36.0042 6380  C:\Windows\System32\user32.dll - ok
22:43:36.0042 6380  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
22:43:36.0042 6380  C:\Windows\System32\rpcrt4.dll - ok
22:43:36.0057 6380  [ FC85972037815FA7B413E790B426ACB2 ] C:\Windows\System32\drivers\iBtFltCoex.sys
22:43:36.0057 6380  C:\Windows\System32\drivers\iBtFltCoex.sys - ok
22:43:36.0057 6380  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
22:43:36.0057 6380  C:\Windows\System32\clbcatq.dll - ok
22:43:36.0057 6380  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
22:43:36.0057 6380  C:\Windows\System32\gdi32.dll - ok
22:43:36.0073 6380  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
22:43:36.0073 6380  C:\Windows\System32\Wldap32.dll - ok
22:43:36.0073 6380  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
22:43:36.0073 6380  C:\Windows\System32\psapi.dll - ok
22:43:36.0073 6380  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
22:43:36.0073 6380  C:\Windows\System32\ole32.dll - ok
22:43:36.0088 6380  [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
22:43:36.0088 6380  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
22:43:36.0088 6380  [ 0C468D8DA95BE16BFDD380BB9DE88259 ] C:\Windows\System32\drivers\btmhsf.sys
22:43:36.0088 6380  C:\Windows\System32\drivers\btmhsf.sys - ok
22:43:36.0088 6380  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] C:\Windows\System32\drivers\bthport.sys
22:43:36.0088 6380  C:\Windows\System32\drivers\bthport.sys - ok
22:43:36.0088 6380  [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS
22:43:36.0088 6380  C:\Windows\System32\drivers\BTHUSB.SYS - ok
22:43:36.0104 6380  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
22:43:36.0104 6380  C:\Windows\System32\drivers\usbccgp.sys - ok
22:43:36.0104 6380  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
22:43:36.0104 6380  C:\Windows\System32\comctl32.dll - ok
22:43:36.0104 6380  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
22:43:36.0104 6380  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
22:43:36.0120 6380  [ A96D5ECA5742603E0E345C4F6B801F5E ] C:\Windows\System32\crypt32.dll
22:43:36.0120 6380  C:\Windows\System32\crypt32.dll - ok
22:43:36.0120 6380  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
22:43:36.0120 6380  C:\Windows\System32\KernelBase.dll - ok
22:43:36.0120 6380  [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
22:43:36.0120 6380  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
22:43:36.0120 6380  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
22:43:36.0120 6380  C:\Windows\System32\cfgmgr32.dll - ok
22:43:36.0135 6380  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
22:43:36.0135 6380  C:\Windows\System32\wintrust.dll - ok
22:43:36.0135 6380  [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
22:43:36.0135 6380  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
22:43:36.0135 6380  [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
22:43:36.0135 6380  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
22:43:36.0151 6380  [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
22:43:36.0151 6380  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
22:43:36.0151 6380  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
22:43:36.0151 6380  C:\Windows\System32\devobj.dll - ok
22:43:36.0151 6380  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
22:43:36.0151 6380  C:\Windows\System32\msasn1.dll - ok
22:43:36.0151 6380  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
22:43:36.0151 6380  C:\Windows\SysWOW64\normaliz.dll - ok
22:43:36.0166 6380  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
22:43:36.0166 6380  C:\Windows\System32\drivers\hidclass.sys - ok
22:43:36.0166 6380  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
22:43:36.0166 6380  C:\Windows\System32\drivers\hidparse.sys - ok
22:43:36.0166 6380  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
22:43:36.0166 6380  C:\Windows\System32\drivers\hidusb.sys - ok
22:43:36.0182 6380  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
22:43:36.0182 6380  C:\Windows\System32\drivers\dxapi.sys - ok
22:43:36.0182 6380  [ 73601028E7C44154318AE91D2EB2EDB3 ] C:\Windows\System32\win32k.sys
22:43:36.0182 6380  C:\Windows\System32\win32k.sys - ok
22:43:36.0182 6380  [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
22:43:36.0182 6380  C:\Windows\System32\csrsrv.dll - ok
22:43:36.0182 6380  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
22:43:36.0182 6380  C:\Windows\System32\csrss.exe - ok
22:43:36.0198 6380  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
22:43:36.0198 6380  C:\Windows\System32\basesrv.dll - ok
22:43:36.0198 6380  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
22:43:36.0198 6380  C:\Windows\System32\winsrv.dll - ok
22:43:36.0198 6380  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
22:43:36.0198 6380  C:\Windows\System32\drivers\usbvideo.sys - ok
22:43:36.0198 6380  [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] C:\Windows\System32\drivers\CtClsFlt.sys
22:43:36.0198 6380  C:\Windows\System32\drivers\CtClsFlt.sys - ok
22:43:36.0213 6380  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
22:43:36.0213 6380  C:\Windows\System32\drivers\mouhid.sys - ok
22:43:36.0213 6380  [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
22:43:36.0213 6380  C:\Windows\System32\drivers\bthenum.sys - ok
22:43:36.0213 6380  [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
22:43:36.0213 6380  C:\Windows\System32\drivers\bthpan.sys - ok
22:43:36.0229 6380  [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
22:43:36.0229 6380  C:\Windows\System32\drivers\rfcomm.sys - ok
22:43:36.0229 6380  [ 16C1BAC9760C9FA85A30F3FA0FBB1B7A ] C:\Windows\System32\drivers\btmaux.sys
22:43:36.0229 6380  C:\Windows\System32\drivers\btmaux.sys - ok
22:43:36.0229 6380  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
22:43:36.0229 6380  C:\Windows\System32\drivers\monitor.sys - ok
22:43:36.0244 6380  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
22:43:36.0244 6380  C:\Windows\System32\sxssrv.dll - ok
22:43:36.0244 6380  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
22:43:36.0244 6380  C:\Windows\System32\tsddd.dll - ok
22:43:36.0244 6380  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
22:43:36.0244 6380  C:\Windows\System32\wininit.exe - ok
22:43:36.0244 6380  [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
22:43:36.0244 6380  C:\Windows\System32\cdd.dll - ok
22:43:36.0260 6380  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
22:43:36.0260 6380  C:\Windows\System32\profapi.dll - ok
22:43:36.0260 6380  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
22:43:36.0260 6380  C:\Windows\System32\RpcRtRemote.dll - ok
22:43:36.0260 6380  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
22:43:36.0260 6380  C:\Windows\System32\KBDUS.DLL - ok
22:43:36.0260 6380  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
22:43:36.0260 6380  C:\Windows\System32\sxs.dll - ok
22:43:36.0276 6380  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
22:43:36.0276 6380  C:\Windows\System32\WlS0WndH.dll - ok
22:43:36.0276 6380  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
22:43:36.0276 6380  C:\Windows\System32\cryptbase.dll - ok
22:43:36.0276 6380  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
22:43:36.0276 6380  C:\Windows\System32\apphelp.dll - ok
22:43:36.0291 6380  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
22:43:36.0291 6380  C:\Windows\System32\lsass.exe - ok
22:43:36.0291 6380  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
22:43:36.0291 6380  C:\Windows\System32\lsm.exe - ok
22:43:36.0291 6380  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
22:43:36.0291 6380  C:\Windows\System32\services.exe - ok
22:43:36.0307 6380  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
22:43:36.0307 6380  C:\Windows\System32\sspisrv.dll - ok
22:43:36.0307 6380  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
22:43:36.0307 6380  C:\Windows\System32\lsasrv.dll - ok
22:43:36.0307 6380  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
22:43:36.0307 6380  C:\Windows\System32\sspicli.dll - ok
22:43:36.0307 6380  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
22:43:36.0307 6380  C:\Windows\System32\scesrv.dll - ok
22:43:36.0322 6380  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
22:43:36.0322 6380  C:\Windows\System32\scext.dll - ok
22:43:36.0322 6380  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
22:43:36.0322 6380  C:\Windows\System32\secur32.dll - ok
22:43:36.0322 6380  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
22:43:36.0322 6380  C:\Windows\System32\samsrv.dll - ok
22:43:36.0322 6380  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
22:43:36.0322 6380  C:\Windows\System32\cryptdll.dll - ok
22:43:36.0338 6380  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
22:43:36.0338 6380  C:\Windows\System32\sysntfy.dll - ok
22:43:36.0338 6380  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
22:43:36.0338 6380  C:\Windows\System32\wevtapi.dll - ok
22:43:36.0338 6380  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
22:43:36.0338 6380  C:\Windows\System32\wmsgapi.dll - ok
22:43:36.0354 6380  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
22:43:36.0354 6380  C:\Windows\System32\srvcli.dll - ok
22:43:36.0354 6380  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
22:43:36.0354 6380  C:\Windows\System32\authz.dll - ok
22:43:36.0354 6380  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
22:43:36.0354 6380  C:\Windows\System32\cngaudit.dll - ok
22:43:36.0354 6380  [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
22:43:36.0369 6380  C:\Windows\System32\bridgeres.dll - ok
22:43:36.0369 6380  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
22:43:36.0369 6380  C:\Windows\System32\ncrypt.dll - ok
22:43:36.0369 6380  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
22:43:36.0369 6380  C:\Windows\System32\bcrypt.dll - ok
22:43:36.0369 6380  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
22:43:36.0369 6380  C:\Windows\System32\msprivs.dll - ok
22:43:36.0385 6380  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
22:43:36.0385 6380  C:\Windows\System32\netjoin.dll - ok
22:43:36.0385 6380  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
22:43:36.0385 6380  C:\Windows\System32\negoexts.dll - ok
22:43:36.0385 6380  [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
22:43:36.0385 6380  C:\Windows\System32\atmfd.dll - ok
22:43:36.0385 6380  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
22:43:36.0385 6380  C:\Windows\System32\kerberos.dll - ok
22:43:36.0400 6380  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
22:43:36.0400 6380  C:\Windows\System32\cryptsp.dll - ok
22:43:36.0400 6380  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
22:43:36.0400 6380  C:\Windows\System32\mswsock.dll - ok
22:43:36.0400 6380  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
22:43:36.0400 6380  C:\Windows\System32\msv1_0.dll - ok
22:43:36.0400 6380  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
22:43:36.0400 6380  C:\Windows\System32\wship6.dll - ok
22:43:36.0416 6380  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
22:43:36.0416 6380  C:\Windows\System32\netlogon.dll - ok
22:43:36.0416 6380  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
22:43:36.0416 6380  C:\Windows\System32\winlogon.exe - ok
22:43:36.0416 6380  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
22:43:36.0416 6380  C:\Windows\System32\dnsapi.dll - ok
22:43:36.0416 6380  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
22:43:36.0432 6380  C:\Windows\System32\logoncli.dll - ok
22:43:36.0432 6380  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
22:43:36.0432 6380  C:\Windows\System32\schannel.dll - ok
22:43:36.0432 6380  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
22:43:36.0432 6380  C:\Windows\System32\wdigest.dll - ok
22:43:36.0432 6380  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
22:43:36.0432 6380  C:\Windows\System32\pku2u.dll - ok
22:43:36.0447 6380  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
22:43:36.0447 6380  C:\Windows\System32\rsaenh.dll - ok
22:43:36.0447 6380  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
22:43:36.0447 6380  C:\Windows\System32\TSpkg.dll - ok
22:43:36.0447 6380  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
22:43:36.0447 6380  C:\Windows\System32\LIVESSP.DLL - ok
22:43:36.0447 6380  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
22:43:36.0447 6380  C:\Windows\System32\bcryptprimitives.dll - ok
22:43:36.0463 6380  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
22:43:36.0463 6380  C:\Windows\System32\credssp.dll - ok
22:43:36.0463 6380  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
22:43:36.0463 6380  C:\Windows\System32\efslsaext.dll - ok
22:43:36.0463 6380  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
22:43:36.0463 6380  C:\Windows\System32\scecli.dll - ok
22:43:36.0478 6380  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
22:43:36.0478 6380  C:\Windows\System32\winsta.dll - ok
22:43:36.0478 6380  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
22:43:36.0478 6380  C:\Windows\System32\ubpm.dll - ok
22:43:36.0478 6380  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
22:43:36.0478 6380  C:\Windows\System32\svchost.exe - ok
22:43:36.0478 6380  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
22:43:36.0478 6380  C:\Windows\System32\umpnpmgr.dll - ok
22:43:36.0494 6380  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
22:43:36.0494 6380  C:\Windows\System32\SPInf.dll - ok
22:43:36.0494 6380  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
22:43:36.0494 6380  C:\Windows\System32\devrtl.dll - ok
22:43:36.0494 6380  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
22:43:36.0494 6380  C:\Windows\System32\userenv.dll - ok
22:43:36.0494 6380  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
22:43:36.0494 6380  C:\Windows\System32\gpapi.dll - ok
22:43:36.0510 6380  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
22:43:36.0510 6380  C:\Windows\System32\umpo.dll - ok
22:43:36.0510 6380  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
22:43:36.0510 6380  C:\Windows\System32\pcwum.dll - ok
22:43:36.0510 6380  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
22:43:36.0510 6380  C:\Windows\System32\powrprof.dll - ok
22:43:36.0525 6380  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
22:43:36.0525 6380  C:\Windows\System32\drivers\luafv.sys - ok
22:43:36.0525 6380  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
22:43:36.0525 6380  C:\Windows\System32\rpcss.dll - ok
22:43:36.0525 6380  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
22:43:36.0525 6380  C:\Windows\System32\RpcEpMap.dll - ok
22:43:36.0525 6380  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
22:43:36.0525 6380  C:\Windows\System32\wshqos.dll - ok
22:43:36.0541 6380  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
22:43:36.0541 6380  C:\Windows\System32\WSHTCPIP.DLL - ok
22:43:36.0541 6380  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
22:43:36.0541 6380  C:\Windows\System32\FirewallAPI.dll - ok
22:43:36.0556 6380  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
22:43:36.0556 6380  C:\Windows\System32\LogonUI.exe - ok
22:43:36.0556 6380  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
22:43:36.0556 6380  C:\Windows\System32\version.dll - ok
22:43:36.0556 6380  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
22:43:36.0556 6380  C:\Windows\System32\wevtsvc.dll - ok
22:43:36.0556 6380  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
22:43:36.0556 6380  C:\Windows\System32\avrt.dll - ok
22:43:36.0572 6380  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
22:43:36.0572 6380  C:\Windows\System32\mmcss.dll - ok
22:43:36.0572 6380  [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
22:43:36.0572 6380  C:\Windows\System32\authui.dll - ok
22:43:36.0588 6380  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
22:43:36.0588 6380  C:\Windows\System32\radardt.dll - ok
22:43:36.0588 6380  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
22:43:36.0588 6380  C:\Windows\System32\audiosrv.dll - ok
22:43:36.0588 6380  [ B2D8B364A831427A5741F6C408FA8AE3 ] C:\Program Files\IDT\WDM\stacsv64.exe
22:43:36.0588 6380  C:\Program Files\IDT\WDM\stacsv64.exe - ok
22:43:36.0588 6380  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
22:43:36.0588 6380  C:\Windows\System32\atl.dll - ok
22:43:36.0603 6380  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
22:43:36.0603 6380  C:\Windows\System32\MMDevAPI.dll - ok
22:43:36.0603 6380  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
22:43:36.0603 6380  C:\Windows\System32\cryptui.dll - ok
22:43:36.0603 6380  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
22:43:36.0603 6380  C:\Windows\System32\propsys.dll - ok
22:43:36.0603 6380  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
22:43:36.0603 6380  C:\Windows\System32\FntCache.dll - ok
22:43:36.0619 6380  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
22:43:36.0619 6380  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
22:43:36.0619 6380  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
22:43:36.0619 6380  C:\Windows\System32\dsound.dll - ok
22:43:36.0619 6380  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
22:43:36.0619 6380  C:\Windows\System32\winmm.dll - ok
22:43:36.0619 6380  [ 08C51283030681670AAF0975E34D1852 ] C:\Windows\System32\stapi64.dll
22:43:36.0619 6380  C:\Windows\System32\stapi64.dll - ok
22:43:36.0634 6380  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
22:43:36.0634 6380  C:\Windows\System32\netprofm.dll - ok
22:43:36.0634 6380  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
22:43:36.0634 6380  C:\Windows\System32\adtschema.dll - ok
22:43:36.0634 6380  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
22:43:36.0634 6380  C:\Windows\System32\MPSSVC.dll - ok
22:43:36.0634 6380  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
22:43:36.0634 6380  C:\Windows\System32\profsvc.dll - ok
22:43:36.0650 6380  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
22:43:36.0650 6380  C:\Windows\System32\wlansvc.dll - ok
22:43:36.0650 6380  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
22:43:36.0650 6380  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
22:43:36.0650 6380  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
22:43:36.0650 6380  C:\Windows\System32\drivers\fltMgr.sys - ok
22:43:36.0650 6380  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
22:43:36.0650 6380  C:\Windows\System32\PSHED.DLL - ok
22:43:36.0666 6380  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
22:43:36.0666 6380  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
22:43:36.0666 6380  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
22:43:36.0666 6380  C:\Windows\System32\audiodg.exe - ok
22:43:36.0666 6380  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
22:43:36.0666 6380  C:\Windows\System32\ntmarta.dll - ok
22:43:36.0666 6380  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
22:43:36.0666 6380  C:\Windows\System32\samlib.dll - ok
22:43:36.0681 6380  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
22:43:36.0681 6380  C:\Windows\System32\shacct.dll - ok
22:43:36.0681 6380  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
22:43:36.0681 6380  C:\Windows\System32\uxtheme.dll - ok
22:43:36.0681 6380  [ 18CAAF21CBA3EAEE17BBA5D3807F29B8 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
22:43:36.0681 6380  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
22:43:36.0697 6380  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
22:43:36.0697 6380  C:\Windows\System32\dui70.dll - ok
22:43:36.0697 6380  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
22:43:36.0697 6380  C:\Windows\System32\duser.dll - ok
22:43:36.0697 6380  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
22:43:36.0697 6380  C:\Windows\System32\SndVolSSO.dll - ok
22:43:36.0697 6380  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
22:43:36.0697 6380  C:\Windows\System32\hid.dll - ok
22:43:36.0712 6380  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
22:43:36.0712 6380  C:\Windows\System32\dwmapi.dll - ok
22:43:36.0712 6380  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
22:43:36.0712 6380  C:\Windows\System32\xmllite.dll - ok
22:43:36.0712 6380  [ 8F4C253E8191FAB93446EFAAE4847189 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slapoi64.dll
22:43:36.0712 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slapoi64.dll - ok
22:43:36.0728 6380  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
22:43:36.0728 6380  C:\Windows\System32\AudioSes.dll - ok
22:43:36.0728 6380  [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
22:43:36.0728 6380  C:\Windows\System32\WindowsCodecs.dll - ok
22:43:36.0728 6380  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
22:43:36.0728 6380  C:\Windows\System32\AudioEng.dll - ok
22:43:36.0728 6380  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
22:43:36.0728 6380  C:\Windows\System32\wdmaud.drv - ok
22:43:36.0744 6380  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
22:43:36.0744 6380  C:\Windows\System32\ksuser.dll - ok
22:43:36.0744 6380  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
22:43:36.0744 6380  C:\Windows\System32\winbrand.dll - ok
22:43:36.0759 6380  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:43:36.0759 6380  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:43:36.0759 6380  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
22:43:36.0759 6380  C:\Windows\System32\VaultCredProvider.dll - ok
22:43:36.0759 6380  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
22:43:36.0759 6380  C:\Windows\System32\wtsapi32.dll - ok
22:43:36.0775 6380  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
22:43:36.0775 6380  C:\Windows\System32\BioCredProv.dll - ok
22:43:36.0775 6380  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
22:43:36.0775 6380  C:\Windows\System32\winbio.dll - ok
22:43:36.0775 6380  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
22:43:36.0775 6380  C:\Windows\System32\credui.dll - ok
22:43:36.0775 6380  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
22:43:36.0775 6380  C:\Windows\System32\vaultcli.dll - ok
22:43:36.0790 6380  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
22:43:36.0790 6380  C:\Windows\System32\netapi32.dll - ok
22:43:36.0790 6380  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
22:43:36.0790 6380  C:\Windows\System32\netutils.dll - ok
22:43:36.0790 6380  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
22:43:36.0790 6380  C:\Windows\System32\samcli.dll - ok
22:43:36.0806 6380  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
22:43:36.0806 6380  C:\Windows\System32\wkscli.dll - ok
22:43:36.0806 6380  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
22:43:36.0806 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
22:43:36.0806 6380  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
22:43:36.0806 6380  C:\Windows\System32\certCredProvider.dll - ok
22:43:36.0806 6380  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
22:43:36.0806 6380  C:\Windows\System32\AUDIOKSE.dll - ok
22:43:36.0822 6380  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
22:43:36.0822 6380  C:\Windows\System32\rasplap.dll - ok
22:43:36.0822 6380  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
22:43:36.0822 6380  C:\Windows\System32\rasapi32.dll - ok
22:43:36.0822 6380  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
22:43:36.0822 6380  C:\Windows\System32\rasman.dll - ok
22:43:36.0837 6380  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
22:43:36.0837 6380  C:\Windows\System32\rtutils.dll - ok
22:43:36.0837 6380  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
22:43:36.0837 6380  C:\Windows\System32\oleacc.dll - ok
22:43:36.0837 6380  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
22:43:36.0837 6380  C:\Windows\System32\UIAutomationCore.dll - ok
22:43:36.0837 6380  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
22:43:36.0837 6380  C:\Windows\System32\msacm32.drv - ok
22:43:36.0853 6380  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
22:43:36.0853 6380  C:\Windows\System32\midimap.dll - ok
22:43:36.0853 6380  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
22:43:36.0853 6380  C:\Windows\System32\msacm32.dll - ok
22:43:36.0853 6380  [ 0ED7C82943956E2B6F24F97A047692DD ] C:\Windows\System32\stapo64.dll
22:43:36.0853 6380  C:\Windows\System32\stapo64.dll - ok
22:43:36.0868 6380  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
22:43:36.0868 6380  C:\Windows\System32\WMALFXGFXDSP.dll - ok
22:43:36.0868 6380  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
22:43:36.0868 6380  C:\Windows\System32\mfplat.dll - ok
22:43:36.0868 6380  [ 5AA23E8DEF8D777A997D7357E1A722D9 ] C:\Windows\System32\imapo64.dll
22:43:36.0868 6380  C:\Windows\System32\imapo64.dll - ok
22:43:36.0884 6380  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
22:43:36.0884 6380  C:\Windows\System32\IPHLPAPI.DLL - ok
22:43:36.0884 6380  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
22:43:36.0884 6380  C:\Windows\System32\winnsi.dll - ok
22:43:36.0884 6380  [ 90F4D286C592EE0AD634A87EE4DAF24E ] C:\Windows\System32\imthx64.dll
22:43:36.0884 6380  C:\Windows\System32\imthx64.dll - ok
22:43:36.0884 6380  [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
22:43:36.0884 6380  C:\Windows\System32\AESTAR64.dll - ok
22:43:36.0900 6380  [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
22:43:36.0900 6380  C:\Windows\System32\msdmo.dll - ok
22:43:36.0900 6380  [ BCCF175A78C61FBF67F790CEBFB6A728 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
22:43:36.0900 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
22:43:36.0900 6380  [ C4A70E6F579B2608050953A063632188 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll
22:43:36.0900 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll - ok
22:43:36.0900 6380  [ AF0A120BC5627F976B0204B97CA6DA1C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
22:43:36.0915 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
22:43:36.0915 6380  [ 016D12E022FF2E2B3CD1722F98D2EB2E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll
22:43:36.0915 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll - ok
22:43:36.0915 6380  [ 1461D162739C37F6E34B88E1F162890C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll
22:43:36.0915 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll - ok
22:43:36.0915 6380  [ 8EB045D6EBB1DECB5A5AE210FDBBE556 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
22:43:36.0915 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
22:43:36.0931 6380  [ A0045693F0D778EC6ACF91D2603DF801 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slhlim64.dll
22:43:36.0931 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slhlim64.dll - ok
22:43:36.0931 6380  [ B671D12EFA1DC9797B7C87F99D0D05DD ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slinit64.dll
22:43:36.0931 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slinit64.dll - ok
22:43:36.0931 6380  [ 3B62D08FB160A87FB2120A2B954C3D38 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll
22:43:36.0931 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll - ok
22:43:36.0946 6380  [ 9DFF52A8CA8BEE122F2BA2135FDB08DD ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slprop64.dll
22:43:36.0946 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slprop64.dll - ok
22:43:36.0946 6380  [ F5AEE0FB07C39D2A5812B7F02C17365F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
22:43:36.0946 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
22:43:36.0962 6380  [ 5C931DA850514236ECB3D2582EE7855D ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll
22:43:36.0962 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll - ok
22:43:36.0962 6380  [ 10CE97D8A334E2962E9FAECA2CBCB8AB ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll
22:43:36.0962 6380  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll - ok
22:43:36.0962 6380  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
22:43:36.0962 6380  C:\Windows\System32\gpsvc.dll - ok
22:43:36.0962 6380  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
22:43:36.0962 6380  C:\Windows\System32\nlaapi.dll - ok
22:43:36.0978 6380  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
22:43:36.0978 6380  C:\Windows\System32\themeservice.dll - ok
22:43:36.0978 6380  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
22:43:36.0978 6380  C:\Windows\System32\dsrole.dll - ok
22:43:36.0978 6380  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
22:43:36.0978 6380  C:\Windows\System32\slc.dll - ok
22:43:36.0978 6380  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
22:43:36.0978 6380  C:\Windows\System32\es.dll - ok
22:43:36.0993 6380  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
22:43:36.0993 6380  C:\Windows\System32\comres.dll - ok
22:43:36.0993 6380  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
22:43:36.0993 6380  C:\Windows\System32\Sens.dll - ok
22:43:36.0993 6380  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
22:43:36.0993 6380  C:\Windows\System32\uxsms.dll - ok
22:43:37.0009 6380  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
22:43:37.0009 6380  C:\Windows\System32\drivers\lltdio.sys - ok
22:43:37.0009 6380  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
22:43:37.0009 6380  C:\Windows\System32\UXInit.dll - ok
22:43:37.0009 6380  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
22:43:37.0009 6380  C:\Windows\System32\drivers\nwifi.sys - ok
22:43:37.0009 6380  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
22:43:37.0009 6380  C:\Windows\System32\drivers\ndisuio.sys - ok
22:43:37.0024 6380  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
22:43:37.0024 6380  C:\Windows\System32\drivers\rspndr.sys - ok
22:43:37.0024 6380  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
22:43:37.0024 6380  C:\Windows\System32\lmhsvc.dll - ok
22:43:37.0024 6380  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
22:43:37.0024 6380  C:\Windows\System32\nrpsrv.dll - ok
22:43:37.0024 6380  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
22:43:37.0024 6380  C:\Windows\System32\nsisvc.dll - ok
22:43:37.0040 6380  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
22:43:37.0040 6380  C:\Windows\System32\dhcpcore.dll - ok
22:43:37.0040 6380  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
22:43:37.0040 6380  C:\Windows\System32\keyiso.dll - ok
22:43:37.0040 6380  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
22:43:37.0040 6380  C:\Windows\System32\eapsvc.dll - ok
22:43:37.0040 6380  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
22:43:37.0040 6380  C:\Windows\System32\dnsrslvr.dll - ok
22:43:37.0056 6380  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
22:43:37.0056 6380  C:\Windows\System32\dhcpcore6.dll - ok
22:43:37.0056 6380  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
22:43:37.0056 6380  C:\Windows\System32\eapphost.dll - ok
22:43:37.0056 6380  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
22:43:37.0056 6380  C:\Windows\System32\FWPUCLNT.DLL - ok
22:43:37.0056 6380  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
22:43:37.0071 6380  C:\Windows\System32\dnsext.dll - ok
22:43:37.0071 6380  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
22:43:37.0071 6380  C:\Windows\System32\dhcpcsvc.dll - ok
22:43:37.0071 6380  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
22:43:37.0071 6380  C:\Windows\System32\dhcpcsvc6.dll - ok
22:43:37.0071 6380  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
22:43:37.0071 6380  C:\Windows\System32\umb.dll - ok
22:43:37.0087 6380  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
22:43:37.0087 6380  C:\Windows\System32\wlanmsm.dll - ok
22:43:37.0087 6380  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
22:43:37.0087 6380  C:\Windows\System32\wlansec.dll - ok
22:43:37.0087 6380  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
22:43:37.0087 6380  C:\Windows\System32\onex.dll - ok



#13 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 10:33 PM

pg 2

 

22:43:37.0102 6380  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
22:43:37.0102 6380  C:\Windows\System32\eappprxy.dll - ok
22:43:37.0102 6380  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
22:43:37.0102 6380  C:\Windows\System32\eappcfg.dll - ok
22:43:37.0102 6380  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
22:43:37.0102 6380  C:\Windows\System32\imageres.dll - ok
22:43:37.0102 6380  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
22:43:37.0102 6380  C:\Windows\System32\l2gpstore.dll - ok
22:43:37.0118 6380  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
22:43:37.0118 6380  C:\Windows\System32\wlanutil.dll - ok
22:43:37.0118 6380  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
22:43:37.0118 6380  C:\Windows\System32\wlgpclnt.dll - ok
22:43:37.0118 6380  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
22:43:37.0118 6380  C:\Windows\System32\WinSCard.dll - ok
22:43:37.0118 6380  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
22:43:37.0118 6380  C:\Windows\System32\msxml6.dll - ok
22:43:37.0134 6380  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
22:43:37.0134 6380  C:\Windows\System32\wlanext.exe - ok
22:43:37.0134 6380  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
22:43:37.0134 6380  C:\Windows\System32\shsvcs.dll - ok
22:43:37.0134 6380  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
22:43:37.0134 6380  C:\Windows\System32\conhost.exe - ok
22:43:37.0134 6380  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
22:43:37.0134 6380  C:\Windows\System32\schedsvc.dll - ok
22:43:37.0149 6380  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
22:43:37.0149 6380  C:\Windows\System32\ktmw32.dll - ok
22:43:37.0149 6380  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
22:43:37.0149 6380  C:\Windows\System32\fveapi.dll - ok
22:43:37.0149 6380  [ D00D44AEB6AF48BF81EE76B209AB0143 ] C:\Windows\System32\iwmssvc.dll
22:43:37.0149 6380  C:\Windows\System32\iwmssvc.dll - ok
22:43:37.0165 6380  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
22:43:37.0165 6380  C:\Windows\System32\fvecerts.dll - ok
22:43:37.0165 6380  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
22:43:37.0165 6380  C:\Windows\System32\tbs.dll - ok
22:43:37.0165 6380  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
22:43:37.0165 6380  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
22:43:37.0180 6380  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
22:43:37.0180 6380  C:\Windows\System32\taskcomp.dll - ok
22:43:37.0180 6380  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
22:43:37.0180 6380  C:\Windows\System32\wiarpc.dll - ok
22:43:37.0180 6380  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
22:43:37.0180 6380  C:\Windows\System32\winspool.drv - ok
22:43:37.0196 6380  [ D844B11545F53AA0C10F78763381D9EC ] C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
22:43:37.0196 6380  C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll - ok
22:43:37.0196 6380  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
22:43:37.0196 6380  C:\Windows\System32\wlanapi.dll - ok
22:43:37.0196 6380  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
22:43:37.0196 6380  C:\Windows\System32\wsock32.dll - ok
22:43:37.0196 6380  [ 5DF2CF44F663D4FAD0BA30E8F41D65E4 ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
22:43:37.0196 6380  C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
22:43:37.0212 6380  [ 8AA0CB526AA26B5E8EAD473703772B26 ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll
22:43:37.0212 6380  C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll - ok
22:43:37.0212 6380  [ 337D0075256F8266989A648C2EB3391D ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
22:43:37.0212 6380  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
22:43:37.0212 6380  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
22:43:37.0212 6380  C:\Windows\System32\drivers\http.sys - ok
22:43:37.0227 6380  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
22:43:37.0227 6380  C:\Windows\System32\spoolsv.exe - ok
22:43:37.0227 6380  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
22:43:37.0227 6380  C:\Windows\System32\BFE.DLL - ok
22:43:37.0227 6380  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
22:43:37.0227 6380  C:\Windows\System32\drivers\bowser.sys - ok
22:43:37.0243 6380  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
22:43:37.0243 6380  C:\Windows\System32\drivers\mpsdrv.sys - ok
22:43:37.0243 6380  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
22:43:37.0243 6380  C:\Windows\System32\drivers\mrxsmb.sys - ok
22:43:37.0243 6380  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
22:43:37.0243 6380  C:\Windows\System32\wfapigp.dll - ok
22:43:37.0243 6380  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
22:43:37.0243 6380  C:\Windows\System32\mscms.dll - ok
22:43:37.0258 6380  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
22:43:37.0258 6380  C:\Windows\System32\pcasvc.dll - ok
22:43:37.0258 6380  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
22:43:37.0258 6380  C:\Windows\System32\snmptrap.exe - ok
22:43:37.0258 6380  [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
22:43:37.0258 6380  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
22:43:37.0258 6380  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
22:43:37.0274 6380  C:\Windows\System32\provsvc.dll - ok
22:43:37.0274 6380  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
22:43:37.0274 6380  C:\Windows\System32\sstpsvc.dll - ok
22:43:37.0274 6380  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
22:43:37.0274 6380  C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:43:37.0274 6380  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
22:43:37.0274 6380  C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:43:37.0290 6380  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
22:43:37.0290 6380  C:\Windows\System32\wkssvc.dll - ok
22:43:37.0290 6380  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:43:37.0290 6380  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
22:43:37.0290 6380  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
22:43:37.0290 6380  C:\Windows\SysWOW64\ntdll.dll - ok
22:43:37.0305 6380  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
22:43:37.0305 6380  C:\Windows\System32\wow64.dll - ok
22:43:37.0305 6380  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
22:43:37.0305 6380  C:\Windows\System32\wow64win.dll - ok
22:43:37.0305 6380  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
22:43:37.0305 6380  C:\Windows\System32\wow64cpu.dll - ok
22:43:37.0305 6380  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
22:43:37.0305 6380  C:\Windows\SysWOW64\kernel32.dll - ok
22:43:37.0321 6380  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
22:43:37.0321 6380  C:\Windows\SysWOW64\KernelBase.dll - ok
22:43:37.0321 6380  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
22:43:37.0321 6380  C:\Windows\SysWOW64\user32.dll - ok
22:43:37.0321 6380  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
22:43:37.0321 6380  C:\Windows\SysWOW64\gdi32.dll - ok
22:43:37.0321 6380  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
22:43:37.0321 6380  C:\Windows\SysWOW64\lpk.dll - ok
22:43:37.0336 6380  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
22:43:37.0336 6380  C:\Windows\SysWOW64\usp10.dll - ok
22:43:37.0336 6380  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
22:43:37.0336 6380  C:\Windows\SysWOW64\msvcrt.dll - ok
22:43:37.0336 6380  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
22:43:37.0336 6380  C:\Windows\SysWOW64\advapi32.dll - ok
22:43:37.0352 6380  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
22:43:37.0352 6380  C:\Windows\SysWOW64\rpcrt4.dll - ok
22:43:37.0352 6380  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
22:43:37.0352 6380  C:\Windows\SysWOW64\sechost.dll - ok
22:43:37.0352 6380  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
22:43:37.0352 6380  C:\Windows\SysWOW64\cryptbase.dll - ok
22:43:37.0352 6380  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
22:43:37.0352 6380  C:\Windows\SysWOW64\sspicli.dll - ok
22:43:37.0368 6380  [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
22:43:37.0368 6380  C:\Windows\SysWOW64\shell32.dll - ok
22:43:37.0368 6380  [ 47FBC576560C0032A841BDCDD6B2FF68 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
22:43:37.0368 6380  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
22:43:37.0368 6380  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
22:43:37.0368 6380  C:\Windows\SysWOW64\shlwapi.dll - ok
22:43:37.0383 6380  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
22:43:37.0383 6380  C:\Windows\SysWOW64\ole32.dll - ok
22:43:37.0383 6380  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
22:43:37.0383 6380  C:\Windows\SysWOW64\oleaut32.dll - ok
22:43:37.0383 6380  [ 92245C959E5BC378809D2CC5E9F6E9C7 ] C:\Windows\SysWOW64\crypt32.dll
22:43:37.0383 6380  C:\Windows\SysWOW64\crypt32.dll - ok
22:43:37.0399 6380  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
22:43:37.0399 6380  C:\Windows\SysWOW64\msasn1.dll - ok
22:43:37.0399 6380  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
22:43:37.0399 6380  C:\Windows\SysWOW64\wintrust.dll - ok
22:43:37.0399 6380  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
22:43:37.0399 6380  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
22:43:37.0399 6380  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
22:43:37.0399 6380  C:\Windows\SysWOW64\imm32.dll - ok
22:43:37.0414 6380  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
22:43:37.0414 6380  C:\Windows\SysWOW64\msctf.dll - ok
22:43:37.0414 6380  [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
22:43:37.0414 6380  C:\Program Files\IDT\WDM\AESTSr64.exe - ok
22:43:37.0414 6380  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:43:37.0414 6380  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
22:43:37.0430 6380  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
22:43:37.0430 6380  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
22:43:37.0430 6380  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
22:43:37.0430 6380  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
22:43:37.0430 6380  [ 848BC9A0BB2361E549FD4C22D7548FB8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
22:43:37.0430 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
22:43:37.0446 6380  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
22:43:37.0446 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
22:43:37.0446 6380  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
22:43:37.0446 6380  C:\Windows\SysWOW64\version.dll - ok
22:43:37.0446 6380  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
22:43:37.0446 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
22:43:37.0446 6380  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
22:43:37.0446 6380  C:\Windows\SysWOW64\ws2_32.dll - ok
22:43:37.0461 6380  [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
22:43:37.0461 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
22:43:37.0461 6380  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
22:43:37.0461 6380  C:\Windows\SysWOW64\nsi.dll - ok
22:43:37.0461 6380  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
22:43:37.0461 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
22:43:37.0477 6380  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
22:43:37.0477 6380  C:\Windows\SysWOW64\wsock32.dll - ok
22:43:37.0477 6380  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
22:43:37.0477 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
22:43:37.0477 6380  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
22:43:37.0477 6380  C:\Windows\SysWOW64\winmm.dll - ok
22:43:37.0492 6380  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
22:43:37.0492 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
22:43:37.0492 6380  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
22:43:37.0492 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
22:43:37.0492 6380  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
22:43:37.0492 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
22:43:37.0492 6380  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
22:43:37.0492 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
22:43:37.0508 6380  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
22:43:37.0508 6380  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
22:43:37.0508 6380  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
22:43:37.0508 6380  C:\Windows\SysWOW64\profapi.dll - ok
22:43:37.0508 6380  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
22:43:37.0508 6380  C:\Windows\SysWOW64\setupapi.dll - ok
22:43:37.0508 6380  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
22:43:37.0508 6380  C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:43:37.0524 6380  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
22:43:37.0524 6380  C:\Windows\SysWOW64\devobj.dll - ok
22:43:37.0524 6380  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
22:43:37.0524 6380  C:\Windows\SysWOW64\userenv.dll - ok
22:43:37.0524 6380  [ 346F4A6F625B3F8C31E19B6B5E306878 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll
22:43:37.0524 6380  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok
22:43:37.0539 6380  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
22:43:37.0539 6380  C:\Windows\SysWOW64\wtsapi32.dll - ok
22:43:37.0539 6380  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
22:43:37.0539 6380  C:\Windows\SysWOW64\dnssd.dll - ok
22:43:37.0539 6380  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
22:43:37.0539 6380  C:\Windows\SysWOW64\ntmarta.dll - ok
22:43:37.0539 6380  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
22:43:37.0539 6380  C:\Windows\SysWOW64\Wldap32.dll - ok
22:43:37.0555 6380  [ A2494901E7226B356B8C1005C45F1C5F ] C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
22:43:37.0555 6380  C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE - ok
22:43:37.0555 6380  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
22:43:37.0555 6380  C:\Windows\SysWOW64\mswsock.dll - ok
22:43:37.0570 6380  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:43:37.0570 6380  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:43:37.0570 6380  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
22:43:37.0570 6380  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
22:43:37.0570 6380  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
22:43:37.0570 6380  C:\Windows\SysWOW64\msi.dll - ok
22:43:37.0570 6380  [ 9BF7C7654EFD098EE3A27B49492A382A ] C:\Windows\SysWOW64\wininet.dll
22:43:37.0570 6380  C:\Windows\SysWOW64\wininet.dll - ok
22:43:37.0586 6380  [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
22:43:37.0586 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
22:43:37.0586 6380  [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
22:43:37.0586 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
22:43:37.0586 6380  [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
22:43:37.0586 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
22:43:37.0602 6380  [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
22:43:37.0602 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
22:43:37.0602 6380  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
22:43:37.0602 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
22:43:37.0602 6380  [ FE29131E35902038066C924CF9C59DF8 ] C:\Windows\SysWOW64\iertutil.dll
22:43:37.0602 6380  C:\Windows\SysWOW64\iertutil.dll - ok
22:43:37.0602 6380  [ C6443D159F145B5D812C8B0469DB0979 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
22:43:37.0602 6380  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
22:43:37.0617 6380  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
22:43:37.0617 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
22:43:37.0617 6380  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:43:37.0617 6380  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:43:37.0617 6380  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
22:43:37.0617 6380  C:\Windows\SysWOW64\SensApi.dll - ok
22:43:37.0633 6380  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
22:43:37.0633 6380  C:\Windows\SysWOW64\winnsi.dll - ok
22:43:37.0633 6380  [ 093B1B419EF25B15D3A1CA6953F41AFB ] C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
22:43:37.0633 6380  C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe - ok
22:43:37.0633 6380  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
22:43:37.0633 6380  C:\Windows\SysWOW64\clbcatq.dll - ok
22:43:37.0633 6380  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
22:43:37.0633 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
22:43:37.0648 6380  [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\SysWOW64\bthprops.cpl
22:43:37.0648 6380  C:\Windows\SysWOW64\bthprops.cpl - ok
22:43:37.0648 6380  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
22:43:37.0648 6380  C:\Windows\SysWOW64\cryptsp.dll - ok
22:43:37.0648 6380  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
22:43:37.0648 6380  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
22:43:37.0664 6380  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
22:43:37.0664 6380  C:\Windows\SysWOW64\rsaenh.dll - ok
22:43:37.0664 6380  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
22:43:37.0664 6380  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
22:43:37.0664 6380  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
22:43:37.0664 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
22:43:37.0680 6380  [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
22:43:37.0680 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
22:43:37.0680 6380  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
22:43:37.0680 6380  C:\Program Files\Bonjour\mDNSResponder.exe - ok
22:43:37.0680 6380  [ 8B6C9924B0D333DBF76086B8258A0891 ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe
22:43:37.0680 6380  C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok
22:43:37.0680 6380  [ 2C4C22EA1735F21F355EB1A39832F7DF ] C:\Windows\System32\cryptnet.dll
22:43:37.0680 6380  C:\Windows\System32\cryptnet.dll - ok
22:43:37.0695 6380  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] C:\Windows\System32\cryptsvc.dll
22:43:37.0695 6380  C:\Windows\System32\cryptsvc.dll - ok
22:43:37.0695 6380  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
22:43:37.0695 6380  C:\Windows\System32\dps.dll - ok
22:43:37.0695 6380  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
22:43:37.0695 6380  C:\Windows\System32\vssapi.dll - ok
22:43:37.0695 6380  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
22:43:37.0695 6380  C:\Windows\System32\taskschd.dll - ok
22:43:37.0711 6380  [ 12257B3991C9FE858D9EA4652FF281AC ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
22:43:37.0711 6380  C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok
22:43:37.0711 6380  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
22:43:37.0711 6380  C:\Windows\System32\vsstrace.dll - ok
22:43:37.0711 6380  [ 57E4BB38BA56F4307E16542977A60525 ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
22:43:37.0711 6380  C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
22:43:37.0726 6380  [ 32F1B95C60042F3D95FC8AB43559B3B1 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
22:43:37.0726 6380  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe - ok
22:43:37.0726 6380  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
22:43:37.0726 6380  C:\Windows\System32\FDResPub.dll - ok
22:43:37.0726 6380  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
22:43:37.0726 6380  C:\Windows\System32\IKEEXT.DLL - ok
22:43:37.0726 6380  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
22:43:37.0726 6380  C:\Windows\System32\WSDApi.dll - ok
22:43:37.0742 6380  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
22:43:37.0742 6380  C:\Windows\System32\webservices.dll - ok
22:43:37.0742 6380  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
22:43:37.0742 6380  C:\Windows\System32\fundisc.dll - ok
22:43:37.0742 6380  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
22:43:37.0742 6380  C:\Windows\System32\vpnikeapi.dll - ok
22:43:37.0742 6380  [ 5ABAFA1322D7746AB5CDB64E089F8498 ] C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
22:43:37.0742 6380  C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe - ok
22:43:37.0758 6380  [ FCEC94FF161ACFA9B208A513C0B9344C ] C:\Program Files (x86)\McAfee\Common Framework\cryptshim.dll
22:43:37.0758 6380  C:\Program Files (x86)\McAfee\Common Framework\cryptshim.dll - ok
22:43:37.0758 6380  [ 8CBDED44E34ECD83347F8466265378EF ] C:\Program Files (x86)\McAfee\Common Framework\nailog3.dll
22:43:37.0758 6380  C:\Program Files (x86)\McAfee\Common Framework\nailog3.dll - ok
22:43:37.0773 6380  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
22:43:37.0773 6380  C:\Windows\System32\winhttp.dll - ok
22:43:37.0773 6380  [ B5C3441D624453854994D9F49EB0D8DB ] C:\Program Files (x86)\McAfee\Common Framework\mfecryptc.dll
22:43:37.0773 6380  C:\Program Files (x86)\McAfee\Common Framework\mfecryptc.dll - ok
22:43:37.0773 6380  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
22:43:37.0773 6380  C:\Windows\System32\webio.dll - ok
22:43:37.0773 6380  [ 459485E9C0BA261524F7A41EC318F6CA ] C:\Program Files (x86)\McAfee\Common Framework\naxml3_71.dll
22:43:37.0773 6380  C:\Program Files (x86)\McAfee\Common Framework\naxml3_71.dll - ok
22:43:37.0789 6380  [ 135F3CB88991FA716059449FD8E45A12 ] C:\Program Files (x86)\McAfee\Common Framework\naCmnLib3_71.dll
22:43:37.0789 6380  C:\Program Files (x86)\McAfee\Common Framework\naCmnLib3_71.dll - ok
22:43:37.0789 6380  [ 6F34C7D803A2713CF54F03CEA3721099 ] C:\Program Files (x86)\McAfee\Common Framework\AppLib.dll
22:43:37.0789 6380  C:\Program Files (x86)\McAfee\Common Framework\AppLib.dll - ok
22:43:37.0789 6380  [ 3D265AB88A89D2CE0EA4D39A6F8629DB ] C:\Program Files (x86)\McAfee\Common Framework\0409\AgentRes.Dll
22:43:37.0789 6380  C:\Program Files (x86)\McAfee\Common Framework\0409\AgentRes.Dll - ok
22:43:37.0804 6380  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
22:43:37.0804 6380  C:\Windows\SysWOW64\msiltcfg.dll - ok
22:43:37.0804 6380  [ 2CB697CCB48C77B17BE022A32F9B87F3 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
22:43:37.0804 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe - ok
22:43:37.0804 6380  [ E6D90C5853D18876AF5DA5EDE768A1A2 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\condl.dll
22:43:37.0804 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\condl.dll - ok
22:43:37.0804 6380  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
22:43:37.0804 6380  C:\Windows\System32\dllhost.exe - ok
22:43:37.0820 6380  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
22:43:37.0820 6380  C:\Windows\System32\IDStore.dll - ok
22:43:37.0820 6380  [ AC1C9CBB2D1BAF7F526BD9DFA0D82CB5 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\shutil.dll
22:43:37.0820 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\shutil.dll - ok
22:43:37.0820 6380  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
22:43:37.0820 6380  C:\Windows\System32\taskhost.exe - ok
22:43:37.0820 6380  [ 5C99F92B3C4CFCDF928258C2E838D000 ] C:\Windows\SysWOW64\lz32.dll
22:43:37.0820 6380  C:\Windows\SysWOW64\lz32.dll - ok
22:43:37.0836 6380  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
22:43:37.0836 6380  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
22:43:37.0836 6380  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
22:43:37.0836 6380  C:\Windows\SysWOW64\comdlg32.dll - ok
22:43:37.0836 6380  [ B579E1C48F73E10EA38DA0DED1768FD6 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\WscAv.dll
22:43:37.0836 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\WscAv.dll - ok
22:43:37.0836 6380  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
22:43:37.0836 6380  C:\Windows\System32\AtBroker.exe - ok
22:43:37.0851 6380  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
22:43:37.0851 6380  C:\Windows\System32\mpr.dll - ok
22:43:37.0851 6380  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
22:43:37.0851 6380  C:\Windows\SysWOW64\psapi.dll - ok
22:43:37.0851 6380  [ 87673DE37ECCDDADD51E4897B396ADF3 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\traceapp.dll
22:43:37.0851 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\traceapp.dll - ok
22:43:37.0867 6380  [ 4D1924F4C21FE707CF381A7956462077 ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\lockdown.dll
22:43:37.0867 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\lockdown.dll - ok
22:43:37.0867 6380  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
22:43:37.0867 6380  C:\Windows\System32\userinit.exe - ok
22:43:37.0867 6380  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
22:43:37.0867 6380  C:\Windows\System32\dwm.exe - ok
22:43:37.0867 6380  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
22:43:37.0867 6380  C:\Windows\System32\dwmredir.dll - ok
22:43:37.0882 6380  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
22:43:37.0882 6380  C:\Windows\System32\dwmcore.dll - ok
22:43:37.0882 6380  [ B5C03116A3E3131560342B5DF82545E2 ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\mytilus3_worker.dll
22:43:37.0882 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\mytilus3_worker.dll - ok
22:43:37.0882 6380  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
22:43:37.0882 6380  C:\Windows\SysWOW64\shfolder.dll - ok
22:43:37.0882 6380  [ 2972B840BCD55D1ADBEFCEEBD5987FE5 ] C:\Program Files (x86)\McAfee\Common Framework\Logging.dll
22:43:37.0882 6380  C:\Program Files (x86)\McAfee\Common Framework\Logging.dll - ok
22:43:37.0898 6380  [ 63DBAF8058BE20B56DF95C075E63FD23 ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
22:43:37.0898 6380  C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok
22:43:37.0898 6380  [ 353EE39D90D372AAF3753D695A5CA6B5 ] C:\Program Files (x86)\McAfee\Common Framework\UserSpace.Dll
22:43:37.0898 6380  C:\Program Files (x86)\McAfee\Common Framework\UserSpace.Dll - ok
22:43:37.0898 6380  [ E91B3C5CE18490B47C8A13488BBE432B ] C:\Program Files (x86)\McAfee\Common Framework\SecureFrameworkFactory3.dll
22:43:37.0898 6380  C:\Program Files (x86)\McAfee\Common Framework\SecureFrameworkFactory3.dll - ok
22:43:37.0898 6380  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
22:43:37.0898 6380  C:\Windows\explorer.exe - ok
22:43:37.0914 6380  [ 7B70C998CEDF0C5FB405CDD77DBBF956 ] C:\Program Files (x86)\McAfee\Common Framework\Management.dll
22:43:37.0914 6380  C:\Program Files (x86)\McAfee\Common Framework\Management.dll - ok
22:43:37.0914 6380  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
22:43:37.0914 6380  C:\Windows\System32\netcfgx.dll - ok
22:43:37.0914 6380  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
22:43:37.0914 6380  C:\Windows\SysWOW64\secur32.dll - ok
22:43:37.0914 6380  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
22:43:37.0914 6380  C:\Windows\System32\ExplorerFrame.dll - ok
22:43:37.0929 6380  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
22:43:37.0929 6380  C:\Windows\System32\EhStorShell.dll - ok
22:43:37.0929 6380  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
22:43:37.0929 6380  C:\Windows\System32\ntshrui.dll - ok
22:43:37.0929 6380  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
22:43:37.0929 6380  C:\Windows\System32\cscapi.dll - ok
22:43:37.0945 6380  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
22:43:37.0945 6380  C:\Windows\System32\IconCodecService.dll - ok
22:43:37.0945 6380  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
22:43:37.0945 6380  C:\Windows\SysWOW64\dnsapi.dll - ok
22:43:37.0945 6380  [ 9018C3E1A4FAE4303241A06FCCFF77DC ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\Res0900\McShield.DLL
22:43:37.0945 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\Res0900\McShield.DLL - ok
22:43:37.0945 6380  [ 1771F1C755EEEB20BC051828B9312170 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\nailite.dll
22:43:37.0945 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\nailite.dll - ok
22:43:37.0960 6380  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
22:43:37.0960 6380  C:\Windows\SysWOW64\propsys.dll - ok
22:43:37.0960 6380  [ 225D276C730DF08CC83EABAC407F0D75 ] C:\Windows\SysWOW64\urlmon.dll
22:43:37.0960 6380  C:\Windows\SysWOW64\urlmon.dll - ok
22:43:37.0960 6380  [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
22:43:37.0960 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
22:43:37.0976 6380  [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
22:43:37.0976 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
22:43:37.0976 6380  [ 3BD878E1F6CB6E5F345A73CA206AD290 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
22:43:37.0976 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe - ok
22:43:37.0976 6380  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
22:43:37.0976 6380  C:\Windows\System32\httpapi.dll - ok
22:43:37.0976 6380  [ A4C946A30993E290DA27556709F5B060 ] C:\Windows\System32\mfevtps.exe
22:43:37.0976 6380  C:\Windows\System32\mfevtps.exe - ok
22:43:37.0992 6380  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
22:43:37.0992 6380  C:\Windows\System32\sfc.dll - ok
22:43:37.0992 6380  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
22:43:37.0992 6380  C:\Windows\System32\sfc_os.dll - ok
22:43:37.0992 6380  [ A190DA6546501CB4146BBCC0B6A3F48B ] C:\Windows\System32\msiexec.exe
22:43:37.0992 6380  C:\Windows\System32\msiexec.exe - ok
22:43:38.0007 6380  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
22:43:38.0007 6380  C:\Windows\System32\msi.dll - ok
22:43:38.0007 6380  [ 124D74013A8D62FEB73BBD9D7279BC3B ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
22:43:38.0007 6380  C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
22:43:38.0007 6380  [ DA2EECEDD3AA57011295B67CBD888B68 ] C:\Windows\AppPatch\AppPatch64\AcLayers.dll
22:43:38.0007 6380  C:\Windows\AppPatch\AppPatch64\AcLayers.dll - ok
22:43:38.0007 6380  [ B6A17555D2CB159A47E910670DE6F7AF ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
22:43:38.0007 6380  C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
22:43:38.0023 6380  [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
22:43:38.0023 6380  C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe - ok
22:43:38.0023 6380  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
22:43:38.0023 6380  C:\Windows\System32\netman.dll - ok
22:43:38.0023 6380  [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll
22:43:38.0023 6380  C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll - ok
22:43:38.0023 6380  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
22:43:38.0023 6380  C:\Windows\System32\d3d10_1.dll - ok
22:43:38.0038 6380  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
22:43:38.0038 6380  C:\Windows\System32\d3d10_1core.dll - ok
22:43:38.0038 6380  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
22:43:38.0038 6380  C:\Windows\System32\dxgi.dll - ok
22:43:38.0038 6380  [ 4C92EB7535CAA1681A77D928FBF9771F ] C:\Windows\System32\d3d11.dll
22:43:38.0038 6380  C:\Windows\System32\d3d11.dll - ok
22:43:38.0054 6380  [ 74EA6A489DAC61C4228CE8D9E982CB52 ] C:\Windows\System32\igd10umd64.dll
22:43:38.0054 6380  C:\Windows\System32\igd10umd64.dll - ok
22:43:38.0054 6380  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
22:43:38.0054 6380  C:\Windows\System32\uDWM.dll - ok
22:43:38.0054 6380  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
22:43:38.0054 6380  C:\Windows\SysWOW64\winsta.dll - ok
22:43:38.0054 6380  [ AECF3C321C9594098C7AA8443B249B80 ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\mfeavfa.dll
22:43:38.0054 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\mfeavfa.dll - ok
22:43:38.0070 6380  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
22:43:38.0070 6380  C:\Windows\SysWOW64\apphelp.dll - ok
22:43:38.0070 6380  [ B921D478D84EBA9B815AC4556E044A3C ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\mfehida.dll
22:43:38.0070 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\mfehida.dll - ok
22:43:38.0070 6380  [ 4D1924F4C21FE707CF381A7956462077 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\lockdown.dll
22:43:38.0070 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\lockdown.dll - ok
22:43:38.0070 6380  [ A7582391126AFB13C514BEC6533B759A ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\naiann.dll
22:43:38.0070 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\naiann.dll - ok
22:43:38.0085 6380  [ 9A774206ADB30E217E42990EB7B47809 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsEvntUI.DLL
22:43:38.0085 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsEvntUI.DLL - ok
22:43:38.0085 6380  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
22:43:38.0085 6380  C:\Windows\SysWOW64\netapi32.dll - ok
22:43:38.0085 6380  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
22:43:38.0085 6380  C:\Windows\SysWOW64\netutils.dll - ok
22:43:38.0101 6380  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
22:43:38.0101 6380  C:\Windows\SysWOW64\srvcli.dll - ok
22:43:38.0101 6380  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
22:43:38.0101 6380  C:\Windows\SysWOW64\wkscli.dll - ok
22:43:38.0101 6380  [ 5D4305BEF07F01CB699EEE06762DA758 ] C:\Program Files (x86)\McAfee\Common Framework\mfeCmnLib71.dll
22:43:38.0101 6380  C:\Program Files (x86)\McAfee\Common Framework\mfeCmnLib71.dll - ok
22:43:38.0101 6380  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
22:43:38.0101 6380  C:\Windows\System32\nlasvc.dll - ok
22:43:38.0116 6380  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
22:43:38.0116 6380  C:\Windows\System32\ncsi.dll - ok
22:43:38.0116 6380  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
22:43:38.0116 6380  C:\Windows\System32\ssdpapi.dll - ok
22:43:38.0116 6380  [ 427CC657E67F5A9E8E19D5901387B1C4 ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\naevent.dll
22:43:38.0116 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\naevent.dll - ok
22:43:38.0116 6380  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
22:43:38.0116 6380  C:\Windows\System32\aepic.dll - ok
22:43:38.0132 6380  [ 86481A51B84170C2B805E290908E6524 ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\mytilus3.dll
22:43:38.0132 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\mytilus3.dll - ok
22:43:38.0132 6380  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
22:43:38.0132 6380  C:\Windows\System32\drivers\PEAuth.sys - ok
22:43:38.0132 6380  [ 189C5A8D2098E0AA14FD157A954B34FC ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:43:38.0132 6380  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok
22:43:38.0148 6380  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
22:43:38.0148 6380  C:\Windows\System32\drivers\secdrv.sys - ok
22:43:38.0148 6380  [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
22:43:38.0148 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
22:43:38.0148 6380  [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
22:43:38.0148 6380  C:\Windows\System32\seclogon.dll - ok
22:43:38.0148 6380  [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
22:43:38.0148 6380  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
22:43:38.0163 6380  [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
22:43:38.0163 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
22:43:38.0163 6380  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
22:43:38.0163 6380  C:\Windows\System32\drivers\vwifimp.sys - ok
22:43:38.0163 6380  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
22:43:38.0163 6380  C:\Windows\System32\aeevts.dll - ok
22:43:38.0179 6380  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
22:43:38.0179 6380  C:\Windows\System32\HotStartUserAgent.dll - ok
22:43:38.0179 6380  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
22:43:38.0179 6380  C:\Windows\System32\MsCtfMonitor.dll - ok
22:43:38.0179 6380  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
22:43:38.0179 6380  C:\Windows\System32\PlaySndSrv.dll - ok
22:43:38.0179 6380  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
22:43:38.0179 6380  C:\Windows\System32\msutb.dll - ok
22:43:38.0194 6380  [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
22:43:38.0194 6380  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
22:43:38.0194 6380  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
22:43:38.0194 6380  C:\Windows\System32\esent.dll - ok
22:43:38.0194 6380  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
22:43:38.0194 6380  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
22:43:38.0194 6380  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
22:43:38.0194 6380  C:\Windows\SysWOW64\msxml3.dll - ok
22:43:38.0210 6380  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
22:43:38.0210 6380  C:\Windows\SysWOW64\wbemcomn.dll - ok
22:43:38.0210 6380  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
22:43:38.0210 6380  C:\Windows\System32\drivers\srvnet.sys - ok
22:43:38.0210 6380  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
22:43:38.0210 6380  C:\Windows\System32\drivers\tcpipreg.sys - ok
22:43:38.0226 6380  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
22:43:38.0226 6380  C:\Windows\System32\tapisrv.dll - ok
22:43:38.0226 6380  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
22:43:38.0226 6380  C:\Windows\System32\wbem\WMIsvc.dll - ok
22:43:38.0226 6380  [ 7CBB1D4D13DC62D7F529D87151FD3CD3 ] C:\Program Files\Windows Defender\MpSvc.dll
22:43:38.0226 6380  C:\Program Files\Windows Defender\MpSvc.dll - ok
22:43:38.0226 6380  [ 662BA98309818AF2C17D4E48BF4021C4 ] C:\Program Files\Windows Defender\MpClient.dll
22:43:38.0226 6380  C:\Program Files\Windows Defender\MpClient.dll - ok
22:43:38.0241 6380  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
22:43:38.0241 6380  C:\Windows\System32\wiaservc.dll - ok
22:43:38.0241 6380  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
22:43:38.0241 6380  C:\Windows\System32\wiatrace.dll - ok
22:43:38.0241 6380  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
22:43:38.0241 6380  C:\Windows\System32\sysmain.dll - ok
22:43:38.0241 6380  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
22:43:38.0241 6380  C:\Windows\System32\netshell.dll - ok
22:43:38.0257 6380  [ 94DC95B5FDC29C4B2930CB0B5F8B95B7 ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
22:43:38.0257 6380  C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok
22:43:38.0257 6380  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
22:43:38.0257 6380  C:\Windows\System32\wbem\wbemprox.dll - ok
22:43:38.0257 6380  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
22:43:38.0257 6380  C:\Windows\System32\trkwks.dll - ok
22:43:38.0272 6380  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
22:43:38.0272 6380  C:\Windows\System32\wbemcomn.dll - ok
22:43:38.0272 6380  [ E2C22DBC09036C97E62088B9793B2F90 ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
22:43:38.0272 6380  C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok
22:43:38.0272 6380  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
22:43:38.0272 6380  C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:43:38.0272 6380  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
22:43:38.0272 6380  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
22:43:38.0288 6380  [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
22:43:38.0288 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
22:43:38.0288 6380  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
22:43:38.0288 6380  C:\Program Files\Bonjour\mdnsNSP.dll - ok
22:43:38.0288 6380  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
22:43:38.0288 6380  C:\Windows\System32\rasadhlp.dll - ok
22:43:38.0304 6380  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
22:43:38.0304 6380  C:\Windows\System32\localspl.dll - ok
22:43:38.0304 6380  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
22:43:38.0304 6380  C:\Windows\System32\spoolss.dll - ok
22:43:38.0304 6380  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
22:43:38.0304 6380  C:\Windows\System32\FXSMON.dll - ok
22:43:38.0304 6380  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
22:43:38.0304 6380  C:\Windows\System32\PrintIsolationProxy.dll - ok
22:43:38.0319 6380  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
22:43:38.0319 6380  C:\Windows\System32\snmpapi.dll - ok
22:43:38.0319 6380  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
22:43:38.0319 6380  C:\Windows\System32\tcpmon.dll - ok
22:43:38.0319 6380  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
22:43:38.0319 6380  C:\Windows\System32\wsnmp32.dll - ok
22:43:38.0319 6380  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:43:38.0319 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
22:43:38.0335 6380  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
22:43:38.0335 6380  C:\Windows\System32\wbem\fastprox.dll - ok
22:43:38.0335 6380  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
22:43:38.0335 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
22:43:38.0335 6380  [ 40D04315344B1035642591339BB82F3D ] C:\Windows\System32\dlxblzil.dll
22:43:38.0335 6380  C:\Windows\System32\dlxblzil.dll - ok
22:43:38.0335 6380  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
22:43:38.0335 6380  C:\Windows\System32\ntdsapi.dll - ok
22:43:38.0350 6380  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
22:43:38.0350 6380  C:\Windows\System32\SensApi.dll - ok
22:43:38.0350 6380  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
22:43:38.0350 6380  C:\Windows\System32\usbmon.dll - ok
22:43:38.0350 6380  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
22:43:38.0350 6380  C:\Windows\System32\wer.dll - ok
22:43:38.0350 6380  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
22:43:38.0350 6380  C:\Windows\System32\WSDMon.dll - ok
22:43:38.0366 6380  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
22:43:38.0366 6380  C:\Windows\System32\fdPnp.dll - ok
22:43:38.0366 6380  [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
22:43:38.0366 6380  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
22:43:38.0366 6380  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
22:43:38.0366 6380  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
22:43:38.0382 6380  [ 1A7887B100386A0B7983F5A1FFDFF7C8 ] C:\Program Files (x86)\McAfee\Common Framework\Genevtinf3.dll
22:43:38.0382 6380  C:\Program Files (x86)\McAfee\Common Framework\Genevtinf3.dll - ok
22:43:38.0382 6380  [ 521325E83574EEB853AA5AECAE321F9B ] C:\Program Files (x86)\McAfee\Common Framework\mfelpc.dll
22:43:38.0382 6380  C:\Program Files (x86)\McAfee\Common Framework\mfelpc.dll - ok
22:43:38.0382 6380  [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
22:43:38.0382 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
22:43:38.0397 6380  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
22:43:38.0397 6380  C:\Windows\SysWOW64\uxtheme.dll - ok
22:43:38.0397 6380  [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
22:43:38.0397 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
22:43:38.0397 6380  [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
22:43:38.0397 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
22:43:38.0397 6380  [ 9B303458CDDAA21828AAD6AF567DE9C3 ] C:\Program Files\Intel\WiFi\bin\iWrap.exe
22:43:38.0397 6380  C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok
22:43:38.0413 6380  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
22:43:38.0413 6380  C:\Windows\SysWOW64\msimg32.dll - ok
22:43:38.0413 6380  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
22:43:38.0413 6380  C:\Windows\SysWOW64\winspool.drv - ok
22:43:38.0413 6380  [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
22:43:38.0413 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
22:43:38.0413 6380  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
22:43:38.0413 6380  C:\Windows\System32\oledlg.dll - ok
22:43:38.0428 6380  [ CC3FD6DEEE458D0BE9A69241E0749717 ] C:\Windows\SysWOW64\ieframe.dll
22:43:38.0428 6380  C:\Windows\SysWOW64\ieframe.dll - ok
22:43:38.0428 6380  [ 84174CA0E190BB9D1EFD0F005FE13B35 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
22:43:38.0428 6380  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
22:43:38.0428 6380  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
22:43:38.0428 6380  C:\Windows\SysWOW64\mscoree.dll - ok
22:43:38.0428 6380  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
22:43:38.0428 6380  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
22:43:38.0444 6380  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
22:43:38.0444 6380  C:\Windows\SysWOW64\oleacc.dll - ok
22:43:38.0444 6380  [ 37B6EBA4E783A0B25F3FE05EF86722CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
22:43:38.0444 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
22:43:38.0444 6380  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
22:43:38.0444 6380  C:\Windows\AppPatch\AcLayers.dll - ok
22:43:38.0444 6380  [ E75E05B939A8F350E063F2E11992850C ] C:\Program Files (x86)\McAfee\Common Framework\cryptocme2.dll
22:43:38.0444 6380  C:\Program Files (x86)\McAfee\Common Framework\cryptocme2.dll - ok
22:43:38.0460 6380  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
22:43:38.0460 6380  C:\Windows\SysWOW64\dwmapi.dll - ok
22:43:38.0460 6380  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
22:43:38.0460 6380  C:\Windows\SysWOW64\mpr.dll - ok
22:43:38.0460 6380  [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
22:43:38.0460 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
22:43:38.0475 6380  [ 33A77D477EF9D7A5C65A950129DF2E47 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
22:43:38.0475 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll - ok
22:43:38.0475 6380  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
22:43:38.0475 6380  C:\Windows\System32\wbem\wbemcore.dll - ok
22:43:38.0475 6380  [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
22:43:38.0475 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
22:43:38.0475 6380  [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
22:43:38.0475 6380  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
22:43:38.0491 6380  [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
22:43:38.0491 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
22:43:38.0491 6380  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
22:43:38.0491 6380  C:\Windows\SysWOW64\sfc.dll - ok
22:43:38.0491 6380  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
22:43:38.0491 6380  C:\Windows\SysWOW64\sfc_os.dll - ok
22:43:38.0506 6380  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
22:43:38.0506 6380  C:\Windows\SysWOW64\devrtl.dll - ok
22:43:38.0506 6380  [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
22:43:38.0506 6380  C:\Windows\System32\win32spl.dll - ok
22:43:38.0506 6380  [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
22:43:38.0506 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
22:43:38.0506 6380  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
22:43:38.0506 6380  C:\Windows\SysWOW64\riched20.dll - ok
22:43:38.0522 6380  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
22:43:38.0522 6380  C:\Windows\SysWOW64\imagehlp.dll - ok
22:43:38.0522 6380  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
22:43:38.0522 6380  C:\Windows\SysWOW64\ncrypt.dll - ok
22:43:38.0522 6380  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
22:43:38.0522 6380  C:\Windows\SysWOW64\bcrypt.dll - ok
22:43:38.0522 6380  [ 99D3C3EA203880925C9BF233BE3424E4 ] C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
22:43:38.0522 6380  C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe - ok
22:43:38.0538 6380  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
22:43:38.0538 6380  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
22:43:38.0538 6380  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
22:43:38.0538 6380  C:\Windows\SysWOW64\gpapi.dll - ok
22:43:38.0538 6380  [ 8A8B277067C22F4BF6AA9A31692FC4D3 ] C:\Windows\SysWOW64\cryptnet.dll
22:43:38.0538 6380  C:\Windows\SysWOW64\cryptnet.dll - ok
22:43:38.0538 6380  [ D1877CC37907DB1087E6B40BD7C4A8F8 ] C:\Program Files\Common Files\McAfee\SystemCore\lockdown.dll
22:43:38.0538 6380  C:\Program Files\Common Files\McAfee\SystemCore\lockdown.dll - ok
22:43:38.0553 6380  [ 295657F93F6B19DEEA804048E1CB4FF9 ] C:\Windows\System32\lz32.dll
22:43:38.0553 6380  C:\Windows\System32\lz32.dll - ok
22:43:38.0553 6380  [ D6E3950A381F62056605E9B58558A585 ] C:\Program Files\Common Files\McAfee\SystemCore\mytilus3.dll
22:43:38.0553 6380  C:\Program Files\Common Files\McAfee\SystemCore\mytilus3.dll - ok
22:43:38.0553 6380  [ C20C88E96046567DEB6B8E7454043D4A ] C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_worker.dll
22:43:38.0553 6380  C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_worker.dll - ok
22:43:38.0569 6380  [ C8C357F5B5A74ADA46847CC00643BADA ] C:\Program Files\Common Files\McAfee\SystemCore\ftl.dll
22:43:38.0569 6380  C:\Program Files\Common Files\McAfee\SystemCore\ftl.dll - ok
22:43:38.0569 6380  [ 799141D93369308C528059E514699867 ] C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_server.dll
22:43:38.0569 6380  C:\Program Files\Common Files\McAfee\SystemCore\mytilus3_server.dll - ok
22:43:38.0584 6380  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
22:43:38.0584 6380  C:\Windows\System32\shfolder.dll - ok
22:43:38.0584 6380  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
22:43:38.0584 6380  C:\Windows\SysWOW64\oledlg.dll - ok
22:43:38.0584 6380  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
22:43:38.0584 6380  C:\Windows\System32\wbem\esscli.dll - ok
22:43:38.0584 6380  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
22:43:38.0584 6380  C:\Windows\System32\iphlpsvc.dll - ok
22:43:38.0600 6380  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
22:43:38.0600 6380  C:\Windows\System32\taskeng.exe - ok
22:43:38.0600 6380  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
22:43:38.0600 6380  C:\Windows\System32\sqmapi.dll - ok
22:43:38.0600 6380  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
22:43:38.0600 6380  C:\Windows\System32\wdscore.dll - ok
22:43:38.0600 6380  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
22:43:38.0600 6380  C:\Windows\System32\msxml3.dll - ok
22:43:38.0616 6380  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
22:43:38.0616 6380  C:\Windows\System32\TSChannel.dll - ok
22:43:38.0616 6380  [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
22:43:38.0616 6380  C:\Windows\System32\rasmans.dll - ok
22:43:38.0616 6380  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
22:43:38.0616 6380  C:\Windows\System32\wbem\wbemsvc.dll - ok
22:43:38.0616 6380  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
22:43:38.0616 6380  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
22:43:38.0631 6380  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:43:38.0631 6380  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:43:38.0631 6380  [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
22:43:38.0631 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
22:43:38.0631 6380  [ FF60B8C5BBE73B0790B3332783B6FD81 ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll
22:43:38.0631 6380  C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll - ok
22:43:38.0631 6380  [ 96FAF00A7ADC61AF68192445623402FA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\187c13e8967097d2ed1e5f123e7d890a\System.ni.dll
22:43:38.0631 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\187c13e8967097d2ed1e5f123e7d890a\System.ni.dll - ok
22:43:38.0647 6380  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
22:43:38.0647 6380  C:\Windows\SysWOW64\cscapi.dll - ok
22:43:38.0647 6380  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
22:43:38.0647 6380  C:\Windows\SysWOW64\dbghelp.dll - ok
22:43:38.0647 6380  [ 8726802EA4FBFFA3FD54FD2449BF51D4 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
22:43:38.0647 6380  C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe - ok
22:43:38.0662 6380  [ D9A08472D8D0218A0AE2C9D9F63EA531 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
22:43:38.0662 6380  C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe - ok
22:43:38.0662 6380  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
22:43:38.0662 6380  C:\Windows\SysWOW64\mstask.dll - ok
22:43:38.0662 6380  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
22:43:38.0662 6380  C:\Windows\System32\dbghelp.dll - ok
22:43:38.0662 6380  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
22:43:38.0662 6380  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
22:43:38.0678 6380  [ E11AE58B6D040AE7E1E55741CB9C6694 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c25666b99761bc42322bae2e59968df8\WindowsBase.ni.dll
22:43:38.0678 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c25666b99761bc42322bae2e59968df8\WindowsBase.ni.dll - ok
22:43:38.0678 6380  [ A3484A0159763330160FD820DE8C4624 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\32066405eb9ab14056b2af3115d2a6de\System.Xml.ni.dll
22:43:38.0678 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\32066405eb9ab14056b2af3115d2a6de\System.Xml.ni.dll - ok
22:43:38.0678 6380  [ AAB33D004B74EE052F65A414E7D87F7E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\ef17be93e209cc95b9768c7822530432\PresentationCore.ni.dll
22:43:38.0678 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\ef17be93e209cc95b9768c7822530432\PresentationCore.ni.dll - ok
22:43:38.0678 6380  [ 8D4DADEA2E49AAE2AF092E06F38EB98C ] C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll
22:43:38.0678 6380  C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll - ok
22:43:38.0694 6380  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
22:43:38.0694 6380  C:\Windows\System32\wbem\wmiutils.dll - ok
22:43:38.0694 6380  [ 05A321CF65AB46D8E29E717D13662519 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\9e24b9ffd816c0c90efc4d3fc9fd745f\System.Configuration.ni.dll
22:43:38.0694 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\9e24b9ffd816c0c90efc4d3fc9fd745f\System.Configuration.ni.dll - ok
22:43:38.0694 6380  [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
22:43:38.0694 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
22:43:38.0694 6380  [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
22:43:38.0694 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
22:43:38.0709 6380  [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
22:43:38.0709 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
22:43:38.0709 6380  [ B56404C9648B8CF0BABEACFC67451137 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\midutil.dll
22:43:38.0709 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\midutil.dll - ok
22:43:38.0709 6380  [ 884B64A8C26FC3AD6F5BCB07BFE0EE49 ] C:\Program Files (x86)\Common Files\mcafee\SystemCore\scriptsn.dll
22:43:38.0709 6380  C:\Program Files (x86)\Common Files\mcafee\SystemCore\scriptsn.dll - ok
22:43:38.0725 6380  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
22:43:38.0725 6380  C:\Windows\SysWOW64\wscapi.dll - ok
22:43:38.0725 6380  [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
22:43:38.0725 6380  C:\Windows\SysWOW64\wscisvif.dll - ok
22:43:38.0725 6380  [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
22:43:38.0725 6380  C:\Windows\SysWOW64\wscproxystub.dll - ok
22:43:38.0725 6380  [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
22:43:38.0725 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
22:43:38.0740 6380  [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
22:43:38.0740 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
22:43:38.0740 6380  [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
22:43:38.0740 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
22:43:38.0740 6380  [ 21DDC4F742DE59B1BB761C57DD2EECF3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc4a8709f71eba20cc71c7905bba3dee\PresentationFramework.ni.dll
22:43:38.0740 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc4a8709f71eba20cc71c7905bba3dee\PresentationFramework.ni.dll - ok
22:43:38.0740 6380  [ 8DFB5078508924FA725C203CE179B10C ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
22:43:38.0740 6380  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
22:43:38.0756 6380  [ E0E5BB58A4C43F7DBB83352785F32DEF ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
22:43:38.0756 6380  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
22:43:38.0756 6380  [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
22:43:38.0756 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
22:43:38.0756 6380  [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
22:43:38.0756 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
22:43:38.0756 6380  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
22:43:38.0756 6380  C:\Windows\SysWOW64\d3d9.dll - ok
22:43:38.0772 6380  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
22:43:38.0772 6380  C:\Windows\SysWOW64\d3d8thk.dll - ok
22:43:38.0772 6380  [ 2CBAECC6D1EE9A8467B42E984B3C9941 ] C:\Windows\SysWOW64\igdumdx32.dll
22:43:38.0772 6380  C:\Windows\SysWOW64\igdumdx32.dll - ok
22:43:38.0772 6380  [ A53F60B44FC968D0F47A2D57A34B35E2 ] C:\Windows\SysWOW64\igdumd32.dll
22:43:38.0772 6380  C:\Windows\SysWOW64\igdumd32.dll - ok
22:43:38.0787 6380  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
22:43:38.0787 6380  C:\Windows\SysWOW64\powrprof.dll - ok
22:43:38.0787 6380  [ 2A51D284FD9495682A525D843A71D661 ] C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll
22:43:38.0787 6380  C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll - ok
22:43:38.0787 6380  [ A9B36CAB809EF486D456FA1A3B204152 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\bfa7a95284aec941f4b03bae0debe07c\System.Drawing.ni.dll
22:43:38.0787 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\bfa7a95284aec941f4b03bae0debe07c\System.Drawing.ni.dll - ok
22:43:38.0803 6380  [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
22:43:38.0803 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
22:43:38.0803 6380  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
22:43:38.0803 6380  C:\Windows\System32\drivers\srv2.sys - ok
22:43:38.0803 6380  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
22:43:38.0803 6380  C:\Windows\SysWOW64\ntdsapi.dll - ok
22:43:38.0803 6380  [ B59226741551434E8B8A89A97FF339C4 ] C:\Program Files (x86)\McAfee\Common Framework\ccme_base.dll
22:43:38.0803 6380  C:\Program Files (x86)\McAfee\Common Framework\ccme_base.dll - ok
22:43:38.0818 6380  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
22:43:38.0818 6380  C:\Windows\System32\wbem\repdrvfs.dll - ok
22:43:38.0818 6380  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
22:43:38.0818 6380  C:\Windows\System32\drivers\srv.sys - ok
22:43:38.0818 6380  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
22:43:38.0818 6380  C:\Windows\System32\inetpp.dll - ok
22:43:38.0818 6380  [ 28D3B545FBFB83276191BA0002D620D8 ] C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll
22:43:38.0818 6380  C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll - ok
22:43:38.0834 6380  [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
22:43:38.0834 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
22:43:38.0834 6380  [ B77C180E119FD9CE0BA2B7F02E1D432B ] C:\Program Files (x86)\Common Files\mcafee\Engine\x64\Mscan64a.dll
22:43:38.0834 6380  C:\Program Files (x86)\Common Files\mcafee\Engine\x64\Mscan64a.dll - ok
22:43:38.0834 6380  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
22:43:38.0834 6380  C:\Windows\System32\FXSRESM.dll - ok
22:43:38.0850 6380  [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
22:43:38.0850 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
22:43:38.0850 6380  [ F79E29F04093B0926E44EBBAB71B0A9B ] C:\Program Files (x86)\McAfee\Common Framework\naPolicyManager.dll
22:43:38.0850 6380  C:\Program Files (x86)\McAfee\Common Framework\naPolicyManager.dll - ok
22:43:38.0850 6380  [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
22:43:38.0850 6380  C:\Windows\System32\rastapi.dll - ok
22:43:38.0850 6380  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
22:43:38.0850 6380  C:\Windows\System32\drprov.dll - ok
22:43:38.0865 6380  [ 62F7DF0D4E8CF7997C9861F5BE13DF8E ] C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
22:43:38.0865 6380  C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe - ok
22:43:38.0865 6380  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
22:43:38.0865 6380  C:\Windows\System32\dssenh.dll - ok
22:43:38.0865 6380  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
22:43:38.0865 6380  C:\Windows\System32\tapi32.dll - ok
22:43:38.0865 6380  [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
22:43:38.0865 6380  C:\Windows\System32\bcdedit.exe - ok
22:43:38.0881 6380  [ 42251362E097134CCA9FC60A1B932EF8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\178644ab40108f3becd8b91049a254c3\System.Windows.Forms.ni.dll
22:43:38.0881 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\178644ab40108f3becd8b91049a254c3\System.Windows.Forms.ni.dll - ok
22:43:38.0881 6380  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
22:43:38.0881 6380  C:\Windows\System32\hnetcfg.dll - ok
22:43:38.0881 6380  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
22:43:38.0881 6380  C:\Windows\System32\ntlanman.dll - ok
22:43:38.0896 6380  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
22:43:38.0896 6380  C:\Windows\System32\davclnt.dll - ok
22:43:38.0896 6380  [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
22:43:38.0896 6380  C:\Windows\System32\unimdm.tsp - ok
22:43:38.0896 6380  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
22:43:38.0896 6380  C:\Windows\System32\davhlpr.dll - ok
22:43:38.0896 6380  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
22:43:38.0896 6380  C:\Windows\SysWOW64\sxs.dll - ok
22:43:38.0912 6380  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
22:43:38.0912 6380  C:\Windows\System32\nci.dll - ok
22:43:38.0912 6380  [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
22:43:38.0912 6380  C:\Windows\SysWOW64\es.dll - ok
22:43:38.0912 6380  [ 3EBEA0E0CC1043AD1C4EE9B5B157D81D ] C:\Program Files (x86)\McAfee\Common Framework\UpdateSubSys.Dll
22:43:38.0912 6380  C:\Program Files (x86)\McAfee\Common Framework\UpdateSubSys.Dll - ok
22:43:38.0912 6380  [ 4E05594FA05A620E882BF44B8266348A ] C:\Program Files (x86)\McAfee\Common Framework\updater.Dll
22:43:38.0912 6380  C:\Program Files (x86)\McAfee\Common Framework\updater.Dll - ok
22:43:38.0928 6380  [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
22:43:38.0928 6380  C:\Windows\System32\ntprint.dll - ok
22:43:38.0928 6380  [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
22:43:38.0928 6380  C:\Windows\System32\uniplat.dll - ok
22:43:38.0928 6380  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:43:38.0928 6380  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:43:38.0943 6380  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
22:43:38.0943 6380  C:\Windows\System32\ncobjapi.dll - ok
22:43:38.0943 6380  [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
22:43:38.0943 6380  C:\Windows\System32\kmddsp.tsp - ok
22:43:38.0943 6380  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
22:43:38.0943 6380  C:\Windows\System32\wbem\wbemess.dll - ok
22:43:38.0943 6380  [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
22:43:38.0943 6380  C:\Windows\System32\ndptsp.tsp - ok
22:43:38.0959 6380  [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
22:43:38.0959 6380  C:\Windows\System32\wbem\unsecapp.exe - ok
22:43:38.0959 6380  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:43:38.0959 6380  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:43:38.0959 6380  [ CDCB7EEFBDEE50090CF9439E7F1460CB ] C:\Program Files (x86)\McAfee\Common Framework\ipcchannel.dll
22:43:38.0959 6380  C:\Program Files (x86)\McAfee\Common Framework\ipcchannel.dll - ok
22:43:38.0959 6380  [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
22:43:38.0959 6380  C:\Windows\System32\hidphone.tsp - ok
22:43:38.0974 6380  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
22:43:38.0974 6380  C:\Windows\System32\wbem\NCProv.dll - ok
22:43:38.0974 6380  [ D3D17625451863652819ADDC326C1250 ] C:\Program Files (x86)\McAfee\Common Framework\Nainet.dll
22:43:38.0974 6380  C:\Program Files (x86)\McAfee\Common Framework\Nainet.dll - ok
22:43:38.0974 6380  [ BE82F1F28912653193EB5AD42651481D ] C:\Program Files (x86)\McAfee\Common Framework\mfecurl.dll
22:43:38.0974 6380  C:\Program Files (x86)\McAfee\Common Framework\mfecurl.dll - ok
22:43:38.0990 6380  [ 72E49912E7E40D26EEDF0E669FA3C20B ] C:\Program Files (x86)\McAfee\Common Framework\mfezlib.dll
22:43:38.0990 6380  C:\Program Files (x86)\McAfee\Common Framework\mfezlib.dll - ok
22:43:38.0990 6380  [ 93404139C96D29853338CA68F26513CA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a2920ed81e097f8551231a9350697bbd\PresentationFramework.Aero.ni.dll
22:43:38.0990 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a2920ed81e097f8551231a9350697bbd\PresentationFramework.Aero.ni.dll - ok
22:43:38.0990 6380  [ 6A987D5E8C72321454369B1CA0EED2F7 ] C:\Program Files (x86)\McAfee\Common Framework\Scheduler.dll
22:43:38.0990 6380  C:\Program Files (x86)\McAfee\Common Framework\Scheduler.dll - ok
22:43:39.0006 6380  [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
22:43:39.0006 6380  C:\Windows\System32\rasppp.dll - ok
22:43:39.0006 6380  [ FD7CE88DDA29C09EA1273178D7773AD0 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\vsplugin.dll
22:43:39.0006 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\vsplugin.dll - ok
22:43:39.0006 6380  [ 1AAF5DF5AB52360EED25684BA77FBA93 ] C:\Program Files (x86)\McAfee\Common Framework\Agent.dll
22:43:39.0006 6380  C:\Program Files (x86)\McAfee\Common Framework\Agent.dll - ok
22:43:39.0021 6380  [ 5B2E4E90C04FB9AE9F2C5E99FF59B283 ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:43:39.0021 6380  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:43:39.0021 6380  [ 6AC05024DBAB7DEB685728452380EEB9 ] C:\Program Files (x86)\McAfee\Common Framework\CMALib.dll
22:43:39.0021 6380  C:\Program Files (x86)\McAfee\Common Framework\CMALib.dll - ok
22:43:39.0021 6380  [ A6D29B329AD94D3C06B0E341CEFCC29D ] C:\Program Files (x86)\McAfee\Common Framework\inetmgr.dll
22:43:39.0021 6380  C:\Program Files (x86)\McAfee\Common Framework\inetmgr.dll - ok
22:43:39.0021 6380  [ 591EF23D667A9198A31E301F2C832E7F ] C:\Program Files (x86)\McAfee\Common Framework\naSPIPE.dll
22:43:39.0021 6380  C:\Program Files (x86)\McAfee\Common Framework\naSPIPE.dll - ok
22:43:39.0037 6380  [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
22:43:39.0037 6380  C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
22:43:39.0037 6380  [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
22:43:39.0037 6380  C:\Windows\System32\vpnike.dll - ok
22:43:39.0037 6380  [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
22:43:39.0037 6380  C:\Windows\System32\raschap.dll - ok
22:43:39.0037 6380  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
22:43:39.0037 6380  C:\Windows\System32\browser.dll - ok
22:43:39.0052 6380  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
22:43:39.0052 6380  C:\Windows\System32\srvsvc.dll - ok
22:43:39.0052 6380  [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
22:43:39.0052 6380  C:\Windows\System32\ipnathlp.dll - ok
22:43:39.0052 6380  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
22:43:39.0052 6380  C:\Windows\System32\mprapi.dll - ok
22:43:39.0068 6380  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
22:43:39.0068 6380  C:\Windows\System32\clusapi.dll - ok
22:43:39.0068 6380  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
22:43:39.0068 6380  C:\Windows\System32\netmsg.dll - ok
22:43:39.0068 6380  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
22:43:39.0068 6380  C:\Windows\System32\sscore.dll - ok
22:43:39.0084 6380  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
22:43:39.0084 6380  C:\Windows\System32\resutils.dll - ok
22:43:39.0084 6380  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
22:43:39.0084 6380  C:\Windows\System32\wbem\wmiprov.dll - ok
22:43:39.0084 6380  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
22:43:39.0084 6380  C:\Windows\System32\wbem\cimwin32.dll - ok
22:43:39.0084 6380  [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
22:43:39.0084 6380  C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
22:43:39.0099 6380  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
22:43:39.0099 6380  C:\Windows\System32\framedynos.dll - ok
22:43:39.0099 6380  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
22:43:39.0099 6380  C:\Windows\System32\npmproxy.dll - ok
22:43:39.0099 6380  [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
22:43:39.0099 6380  C:\Windows\System32\appinfo.dll - ok
22:43:39.0115 6380  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
22:43:39.0115 6380  C:\Windows\System32\wdi.dll - ok
22:43:39.0115 6380  [ CBF785DC658EA55E9F1F5CD0E1EF3CF7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\2c5c86bb5156ff508ca8045aff50a482\System.Core.ni.dll
22:43:39.0115 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\2c5c86bb5156ff508ca8045aff50a482\System.Core.ni.dll - ok
22:43:39.0115 6380  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
22:43:39.0115 6380  C:\Windows\System32\wmi.dll - ok
22:43:39.0115 6380  [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
22:43:39.0115 6380  C:\Windows\System32\bthserv.dll - ok
22:43:39.0130 6380  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
22:43:39.0130 6380  C:\Windows\System32\diagperf.dll - ok
22:43:39.0130 6380  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
22:43:39.0130 6380  C:\Windows\System32\NapiNSP.dll - ok
22:43:39.0130 6380  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
22:43:39.0130 6380  C:\Windows\System32\wpdbusenum.dll - ok
22:43:39.0146 6380  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
22:43:39.0146 6380  C:\Windows\System32\PortableDeviceApi.dll - ok
22:43:39.0146 6380  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
22:43:39.0146 6380  C:\Windows\System32\IPSECSVC.DLL - ok
22:43:39.0146 6380  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
22:43:39.0146 6380  C:\Windows\System32\ndiscapCfg.dll - ok
22:43:39.0162 6380  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
22:43:39.0162 6380  C:\Windows\System32\pnrpnsp.dll - ok
22:43:39.0162 6380  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
22:43:39.0162 6380  C:\Windows\System32\rascfg.dll - ok
22:43:39.0162 6380  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
22:43:39.0162 6380  C:\Windows\System32\Apphlpdm.dll - ok
22:43:39.0162 6380  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
22:43:39.0162 6380  C:\Windows\System32\perftrack.dll - ok
22:43:39.0162 6380  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
22:43:39.0162 6380  C:\Windows\System32\pnpts.dll - ok
22:43:39.0177 6380  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
22:43:39.0177 6380  C:\Windows\System32\wdiasqmmodule.dll - ok
22:43:39.0177 6380  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
22:43:39.0177 6380  C:\Windows\System32\FwRemoteSvr.dll - ok
22:43:39.0177 6380  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
22:43:39.0177 6380  C:\Windows\System32\mprmsg.dll - ok
22:43:39.0193 6380  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:43:39.0193 6380  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:43:39.0193 6380  [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
22:43:39.0193 6380  C:\Windows\System32\tcpipcfg.dll - ok
22:43:39.0193 6380  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
22:43:39.0193 6380  C:\Windows\System32\runonce.exe - ok
22:43:39.0193 6380  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
22:43:39.0193 6380  C:\Windows\SysWOW64\runonce.exe - ok
22:43:39.0208 6380  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
22:43:39.0208 6380  C:\Windows\System32\dimsjob.dll - ok
22:43:39.0208 6380  [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
22:43:39.0208 6380  C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
22:43:39.0208 6380  [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
22:43:39.0208 6380  C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
22:43:39.0224 6380  [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
22:43:39.0224 6380  C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
22:43:39.0224 6380  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
22:43:39.0224 6380  C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
22:43:39.0224 6380  [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
22:43:39.0224 6380  C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
22:43:39.0240 6380  [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
22:43:39.0240 6380  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
22:43:39.0240 6380  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
22:43:39.0240 6380  C:\Windows\SysWOW64\cmd.exe - ok
22:43:39.0240 6380  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
22:43:39.0240 6380  C:\Windows\SysWOW64\winbrand.dll - ok
22:43:39.0240 6380  [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
22:43:39.0240 6380  C:\Windows\SysWOW64\shdocvw.dll - ok
22:43:39.0255 6380  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Ste\AppData\Local\Temp\915D9E0E-B4F3-4378-9704-E2ED85017332.exe
22:43:39.0255 6380  C:\Users\Ste\AppData\Local\Temp\915D9E0E-B4F3-4378-9704-E2ED85017332.exe - ok
22:43:39.0255 6380  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
22:43:39.0255 6380  C:\Windows\SysWOW64\EhStorShell.dll - ok
22:43:39.0255 6380  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
22:43:39.0255 6380  C:\Windows\SysWOW64\ntshrui.dll - ok
22:43:39.0271 6380  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
22:43:39.0271 6380  C:\Windows\SysWOW64\slc.dll - ok
22:43:39.0271 6380  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
22:43:39.0271 6380  C:\Windows\SysWOW64\imageres.dll - ok
22:43:39.0271 6380  [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
22:43:39.0271 6380  C:\Windows\System32\wshbth.dll - ok
22:43:39.0271 6380  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
22:43:39.0271 6380  C:\Windows\System32\pautoenr.dll - ok
22:43:39.0286 6380  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
22:43:39.0286 6380  C:\Windows\System32\aelupsvc.dll - ok
22:43:39.0286 6380  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
22:43:39.0286 6380  C:\Windows\System32\winrnr.dll - ok
22:43:39.0286 6380  [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
22:43:39.0286 6380  C:\Windows\System32\wlaninst.dll - ok
22:43:39.0302 6380  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
22:43:39.0302 6380  C:\Windows\System32\wwaninst.dll - ok
22:43:39.0302 6380  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
22:43:39.0302 6380  C:\Windows\System32\certcli.dll - ok
22:43:39.0302 6380  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
22:43:39.0302 6380  C:\Windows\System32\CertEnroll.dll - ok
22:43:39.0318 6380  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
22:43:39.0318 6380  C:\Windows\System32\rundll32.exe - ok
22:43:39.0318 6380  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
22:43:39.0318 6380  C:\Windows\System32\actxprxy.dll - ok
22:43:39.0318 6380  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
22:43:39.0318 6380  C:\Windows\SysWOW64\NapiNSP.dll - ok
22:43:39.0318 6380  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
22:43:39.0318 6380  C:\Windows\SysWOW64\nlaapi.dll - ok
22:43:39.0333 6380  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
22:43:39.0333 6380  C:\Windows\SysWOW64\pnrpnsp.dll - ok
22:43:39.0333 6380  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
22:43:39.0333 6380  C:\Windows\SysWOW64\wshbth.dll - ok
22:43:39.0333 6380  [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
22:43:39.0333 6380  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
22:43:39.0333 6380  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
22:43:39.0333 6380  C:\Windows\SysWOW64\winrnr.dll - ok
22:43:39.0349 6380  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
22:43:39.0349 6380  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
22:43:39.0349 6380  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
22:43:39.0349 6380  C:\Windows\SysWOW64\rasadhlp.dll - ok
22:43:39.0349 6380  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
22:43:39.0349 6380  C:\Windows\SysWOW64\wship6.dll - ok
22:43:39.0349 6380  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
22:43:39.0349 6380  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
22:43:39.0364 6380  [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
22:43:39.0364 6380  C:\Windows\System32\spfileq.dll - ok
22:43:39.0364 6380  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
22:43:39.0364 6380  C:\Windows\System32\drivers\fastfat.sys - ok
22:43:39.0364 6380  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
22:43:39.0364 6380  C:\Windows\System32\timedate.cpl - ok
22:43:39.0380 6380  [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
22:43:39.0380 6380  C:\Windows\System32\shdocvw.dll - ok
22:43:39.0380 6380  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
22:43:39.0380 6380  C:\Windows\System32\linkinfo.dll - ok
22:43:39.0380 6380  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
22:43:39.0380 6380  C:\Windows\SysWOW64\winhttp.dll - ok
22:43:39.0396 6380  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
22:43:39.0396 6380  C:\Windows\SysWOW64\webio.dll - ok
22:43:39.0396 6380  [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
22:43:39.0396 6380  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
22:43:39.0396 6380  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
22:43:39.0396 6380  C:\Windows\System32\msftedit.dll - ok
22:43:39.0396 6380  [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
22:43:39.0396 6380  C:\Windows\System32\msls31.dll - ok
22:43:39.0411 6380  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:43:39.0411 6380  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:43:39.0411 6380  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
22:43:39.0411 6380  C:\Windows\System32\DeviceCenter.dll - ok
22:43:39.0427 6380  [ CC88789EB77639D96F26075F31C07738 ] C:\Windows\System32\igfxtray.exe
22:43:39.0427 6380  C:\Windows\System32\igfxtray.exe - ok
22:43:39.0427 6380  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
22:43:39.0427 6380  C:\Windows\System32\gameux.dll - ok
22:43:39.0427 6380  [ 482C112E36DDFE49342B1B7B2F4E5338 ] C:\Windows\System32\hkcmd.exe
22:43:39.0427 6380  C:\Windows\System32\hkcmd.exe - ok
22:43:39.0442 6380  [ 97EE7257797513A997CEF092A8B4F255 ] C:\Windows\System32\hccutils.dll
22:43:39.0442 6380  C:\Windows\System32\hccutils.dll - ok
22:43:39.0442 6380  [ 2BAA60FB18DC8A0287D06BC44BD2D94C ] C:\Windows\System32\igfxpers.exe
22:43:39.0442 6380  C:\Windows\System32\igfxpers.exe - ok
22:43:39.0442 6380  [ 759CDFE07A593142AD7FD5029E582FE3 ] C:\Program Files\IDT\WDM\sttray64.exe
22:43:39.0442 6380  C:\Program Files\IDT\WDM\sttray64.exe - ok
22:43:39.0458 6380  [ F571B595BF4D7FB7F7C97D60029CE1DE ] C:\Windows\System32\igfxsrvc.exe
22:43:39.0458 6380  C:\Windows\System32\igfxsrvc.exe - ok
22:43:39.0458 6380  [ B2E0F764B4FE3176FBC47B6B7880E47D ] C:\Program Files\DellTPad\Apoint.exe
22:43:39.0458 6380  C:\Program Files\DellTPad\Apoint.exe - ok
22:43:39.0458 6380  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
22:43:39.0458 6380  C:\Windows\SysWOW64\credssp.dll - ok
22:43:39.0474 6380  [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
22:43:39.0474 6380  C:\Windows\System32\mfc42u.dll - ok
22:43:39.0474 6380  [ 23E6E5C5061A44C32E9922B4AF22D895 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
22:43:39.0474 6380  C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe - ok
22:43:39.0474 6380  [ DD142B6BAC48A3031F2C1E3E055E7C84 ] C:\Program Files\DellTPad\Apoint.dll
22:43:39.0474 6380  C:\Program Files\DellTPad\Apoint.dll - ok
22:43:39.0474 6380  [ 2123BD3D4812D50339ED9149F923534D ] C:\Windows\System32\igfxsrvc.dll
22:43:39.0474 6380  C:\Windows\System32\igfxsrvc.dll - ok
22:43:39.0489 6380  [ 7ED7838D8E28952F73331A3D418CC88B ] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
22:43:39.0489 6380  C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll - ok
22:43:39.0489 6380  [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
22:43:39.0489 6380  C:\Windows\System32\odbc32.dll - ok
22:43:39.0489 6380  [ 44600D48C7B9B21F62F235E2B5A8F5B9 ] C:\Windows\System32\igfxdev.dll
22:43:39.0489 6380  C:\Windows\System32\igfxdev.dll - ok
22:43:39.0489 6380  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
22:43:39.0489 6380  C:\Windows\System32\networkexplorer.dll - ok
22:43:39.0505 6380  [ 65F3F7216B1306D1184544FCB07E22C3 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
22:43:39.0505 6380  C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe - ok
22:43:39.0505 6380  [ EB218DC806F587968EDAC6800EDAB48A ] C:\Windows\System32\Vxdif.dll
22:43:39.0505 6380  C:\Windows\System32\Vxdif.dll - ok
22:43:39.0505 6380  [ 78506F306C9BB2323B73F0ED7A3CEAA2 ] C:\Program Files\IDT\WDM\stlang64.dll
22:43:39.0505 6380  C:\Program Files\IDT\WDM\stlang64.dll - ok
22:43:39.0520 6380  [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
22:43:39.0520 6380  C:\Windows\System32\IccLibDll_x64.dll - ok
22:43:39.0520 6380  [ 4C069D0F2534C10D89E1DDB6330213A0 ] C:\Windows\System32\igfxrenu.lrc
22:43:39.0520 6380  C:\Windows\System32\igfxrenu.lrc - ok
22:43:39.0520 6380  [ 65BD23863A82034E6BC9DB5100B8E182 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll
22:43:39.0520 6380  C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll - ok
22:43:39.0536 6380  [ 156DE171FFDC0182BCA9D139ED1C941C ] C:\Program Files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe
22:43:39.0536 6380  C:\Program Files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe - ok
22:43:39.0536 6380  [ 8CF38068B59C2983E10A93994639AB94 ] C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll
22:43:39.0536 6380  C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll - ok
22:43:39.0536 6380  [ 6BEB9E7BC40775B8DA3BB2A3B5128F02 ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll
22:43:39.0536 6380  C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll - ok
22:43:39.0536 6380  [ F3DCED5400D006C80F7B08CC3515647B ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
22:43:39.0536 6380  C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll - ok
22:43:39.0552 6380  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
22:43:39.0552 6380  C:\Windows\System32\odbcint.dll - ok
22:43:39.0552 6380  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
22:43:39.0552 6380  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
22:43:39.0552 6380  [ B0934465C0BC6AD61B1C497DEDB0D042 ] C:\Program Files\Verizon V CAST Media Manager\libexpat.dll
22:43:39.0552 6380  C:\Program Files\Verizon V CAST Media Manager\libexpat.dll - ok
22:43:39.0567 6380  [ F83108362C55F1EFE13A6761133320B0 ] C:\Program Files\Verizon V CAST Media Manager\sqlite3.dll
22:43:39.0567 6380  C:\Program Files\Verizon V CAST Media Manager\sqlite3.dll - ok
22:43:39.0567 6380  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
22:43:39.0567 6380  C:\Windows\System32\msimg32.dll - ok
22:43:39.0567 6380  [ 67611DEA70471375E1913A4CFC6A6575 ] C:\Program Files\DellTPad\EzAuto.dll
22:43:39.0567 6380  C:\Program Files\DellTPad\EzAuto.dll - ok
22:43:39.0567 6380  [ 974DEA63BB264BBC8A4191DCEC7A3E11 ] C:\Program Files\Verizon V CAST Media Manager\avutil-50.dll
22:43:39.0567 6380  C:\Program Files\Verizon V CAST Media Manager\avutil-50.dll - ok
22:43:39.0583 6380  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
22:43:39.0583 6380  C:\Windows\System32\stobject.dll - ok
22:43:39.0583 6380  [ B03F39264477EC8A979C67C789A7B62A ] C:\Program Files\DellTPad\ApMsgFwd.exe
22:43:39.0583 6380  C:\Program Files\DellTPad\ApMsgFwd.exe - ok
22:43:39.0583 6380  [ F12F93EC4BB3DE452F31925F03724ADC ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
22:43:39.0583 6380  C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok
22:43:39.0598 6380  [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
22:43:39.0598 6380  C:\Windows\System32\consent.exe - ok
22:43:39.0598 6380  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
22:43:39.0598 6380  C:\Windows\System32\bthprops.cpl - ok
22:43:39.0598 6380  [ F571AD7F5E6B8196356355F59927D92A ] C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL
22:43:39.0598 6380  C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL - ok
22:43:39.0614 6380  [ 9DBB1DD00E013907A875A7A433E9AAE2 ] C:\Program Files\Intel\WiFi\bin\PanApi.dll
22:43:39.0614 6380  C:\Program Files\Intel\WiFi\bin\PanApi.dll - ok
22:43:39.0614 6380  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
22:43:39.0614 6380  C:\Windows\System32\batmeter.dll - ok
22:43:39.0614 6380  [ 3B13C3FA70498492CF512FF7D3FADF9F ] C:\Program Files\Intel\WiFi\bin\DbEngine.dll
22:43:39.0614 6380  C:\Program Files\Intel\WiFi\bin\DbEngine.dll - ok
22:43:39.0614 6380  [ 391CD109EF28629644C267C855314DEE ] C:\Windows\System32\ieframe.dll
22:43:39.0614 6380  C:\Windows\System32\ieframe.dll - ok
22:43:39.0630 6380  [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll
22:43:39.0630 6380  C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll - ok
22:43:39.0630 6380  [ FD97807051658AE27799BE3A557D3776 ] C:\Program Files\DellTPad\ApntEx.exe
22:43:39.0630 6380  C:\Program Files\DellTPad\ApntEx.exe - ok
22:43:39.0630 6380  [ 1B0E5412AB8F30B8ED2AEAC2C530EB90 ] C:\Program Files\DellTPad\hidfind.exe
22:43:39.0630 6380  C:\Program Files\DellTPad\hidfind.exe - ok
22:43:39.0630 6380  [ 5972B401CCC2054387B9F51FC093470E ] C:\Program Files\Intel\WiFi\bin\LangResources\enu\PanTrENU.dll
22:43:39.0630 6380  C:\Program Files\Intel\WiFi\bin\LangResources\enu\PanTrENU.dll - ok
22:43:39.0645 6380  [ 4C312A09E91A48C26317AAF6EFF93310 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
22:43:39.0645 6380  C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll - ok
22:43:39.0645 6380  [ 30293898C1A9DFBCFE38EB6A2F7D555A ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
22:43:39.0645 6380  C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
22:43:39.0645 6380  [ 544013C383833189A61C2F72B8814319 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
22:43:39.0645 6380  C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
22:43:39.0661 6380  [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
22:43:39.0661 6380  C:\Windows\SysWOW64\Nlsdl.dll - ok
22:43:39.0661 6380  [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
22:43:39.0661 6380  C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
22:43:39.0661 6380  [ 4A73AB8412D3AA6CFAD24051FF9DBFA7 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
22:43:39.0661 6380  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
22:43:39.0661 6380  [ 9D51EA92A612B37E76E5E4621650C50A ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
22:43:39.0661 6380  C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe - ok
22:43:39.0676 6380  [ 1F36981C4DEEAA88858317C1642CE160 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
22:43:39.0676 6380  C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll - ok
22:43:39.0676 6380  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
22:43:39.0676 6380  C:\Windows\System32\dot3api.dll - ok
22:43:39.0676 6380  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
22:43:39.0676 6380  C:\Windows\System32\wlanhlp.dll - ok
22:43:39.0692 6380  [ A7749965A3923D024922A86BAAECAFF4 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
22:43:39.0692 6380  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe - ok
22:43:39.0692 6380  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
22:43:39.0692 6380  C:\Windows\SysWOW64\msvcp71.dll - ok
22:43:39.0692 6380  [ F6A4C495CF98D918AE290D1E87A8B97A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
22:43:39.0692 6380  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
22:43:39.0708 6380  [ CE058AD307B80A5C0F2789E4EF43EEA3 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
22:43:39.0708 6380  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
22:43:39.0708 6380  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
22:43:39.0708 6380  C:\Windows\System32\browcli.dll - ok
22:43:39.0708 6380  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
22:43:39.0708 6380  C:\Windows\SysWOW64\msvcr71.dll - ok
22:43:39.0723 6380  [ 4164A47F3A2DA7EA44572904C3DF44A4 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
22:43:39.0723 6380  C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe - ok
22:43:39.0723 6380  [ 227D3A6622F6D8085F2DE13912D9B5F6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\bf97db1b84277902561096c62d42ee22\IAStorUtil.ni.dll
22:43:39.0723 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\bf97db1b84277902561096c62d42ee22\IAStorUtil.ni.dll - ok
22:43:39.0723 6380  [ B9E362680ADB83F0E0134F4567DBF656 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll
22:43:39.0723 6380  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll - ok
22:43:39.0723 6380  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
22:43:39.0723 6380  C:\Windows\System32\schedcli.dll - ok
22:43:39.0739 6380  [ 53E81C75B3C260C8FE9FD9ED4D8DB8F0 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll
22:43:39.0739 6380  C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll - ok
22:43:39.0739 6380  [ B7FB481F897D05BA9560C0F86542807E ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl
22:43:39.0739 6380  C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl - ok
22:43:39.0739 6380  [ EBE1962DC5EEFC13D20543013A891ABC ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
22:43:39.0739 6380  C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe - ok
22:43:39.0739 6380  [ A51A7D0C82C93827532DF3B8FE7804EA ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll
22:43:39.0739 6380  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll - ok
22:43:39.0754 6380  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
22:43:39.0754 6380  C:\Windows\SysWOW64\devenum.dll - ok
22:43:39.0754 6380  [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
22:43:39.0754 6380  C:\Windows\SysWOW64\avicap32.dll - ok
22:43:39.0754 6380  [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
22:43:39.0754 6380  C:\Windows\SysWOW64\msvfw32.dll - ok
22:43:39.0770 6380  [ 8A7F55E5B5543C95D8AF191BCBF6D125 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
22:43:39.0770 6380  C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe - ok
22:43:39.0770 6380  [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
22:43:39.0770 6380  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
22:43:39.0770 6380  [ A33452A42BDF214E7FC40CB470515605 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
22:43:39.0770 6380  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
22:43:39.0770 6380  [ 3B1247FC09F82A1ECD1294EA13C79C3E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll
22:43:39.0770 6380  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll - ok
22:43:39.0786 6380  [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
22:43:39.0786 6380  C:\Windows\SysWOW64\vfwwdm32.dll - ok
22:43:39.0786 6380  [ D6E46FE21CC8E662A7A88000FDD77DAF ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
22:43:39.0786 6380  C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
22:43:39.0801 6380  [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
22:43:39.0801 6380  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
22:43:39.0801 6380  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:43:39.0801 6380  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
22:43:39.0801 6380  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
22:43:39.0801 6380  C:\Windows\System32\msiltcfg.dll - ok
22:43:39.0801 6380  [ 03A7341E94ACD92E0831336D4F3ACE92 ] C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
22:43:39.0801 6380  C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe - ok
22:43:39.0817 6380  [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
22:43:39.0817 6380  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
22:43:39.0817 6380  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
22:43:39.0817 6380  C:\Windows\System32\prnfldr.dll - ok
22:43:39.0817 6380  [ 7849250D8EC5FEEA33A3C37331F56793 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll
22:43:39.0817 6380  C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll - ok
22:43:39.0832 6380  [ 2038D8DBC7C3B8BC978E684258D7B87E ] C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe
22:43:39.0832 6380  C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe - ok
22:43:39.0832 6380  [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:43:39.0832 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
22:43:39.0832 6380  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
22:43:39.0832 6380  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
22:43:39.0848 6380  [ 36FDB8C775B1F7D2069B8C8D0CD09084 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
22:43:39.0848 6380  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
22:43:39.0848 6380  [ AF43C4F7F3C8BC95DAD95024F96CDC4A ] C:\Program Files (x86)\QuickTime\QTTask.exe
22:43:39.0848 6380  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
22:43:39.0848 6380  [ 304AEF86D74CC76FF803876C95890507 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
22:43:39.0848 6380  C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll - ok
22:43:39.0848 6380  [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
22:43:39.0848 6380  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
22:43:39.0864 6380  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
22:43:39.0864 6380  C:\Windows\SysWOW64\msacm32.dll - ok
22:43:39.0864 6380  [ CF8D43B5CE132414CC0667E9C5EB5574 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll
22:43:39.0864 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll - ok
22:43:39.0864 6380  [ 3704A15FD5FFA27F3E5ABA30DA07BA0D ] C:\Program Files (x86)\Common Files\Teleca Shared\tlib_log.dll
22:43:39.0864 6380  C:\Program Files (x86)\Common Files\Teleca Shared\tlib_log.dll - ok
22:43:39.0879 6380  [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
22:43:39.0879 6380  C:\Windows\SysWOW64\opengl32.dll - ok
22:43:39.0879 6380  [ 1BC8A289BFDE02DF0DA6C06689FA89C3 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll
22:43:39.0879 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll - ok
22:43:39.0879 6380  [ F46EFAC723C66F03B042FC334859A39F ] C:\Program Files (x86)\Common Files\Teleca Shared\boost_log-vc80-mt-1_33.dll
22:43:39.0879 6380  C:\Program Files (x86)\Common Files\Teleca Shared\boost_log-vc80-mt-1_33.dll - ok
22:43:39.0879 6380  [ 38FBB26EC0E2136046E8C355400704A8 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
22:43:39.0879 6380  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe - ok
22:43:39.0895 6380  [ 837115C004022C7C9317848645D714FD ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
22:43:39.0895 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
22:43:39.0895 6380  [ 8B48C4B595124DD248EAB46A11E7BBAC ] C:\Program Files (x86)\Common Files\Teleca Shared\tlib_cmndlgs2.dll
22:43:39.0895 6380  C:\Program Files (x86)\Common Files\Teleca Shared\tlib_cmndlgs2.dll - ok
22:43:39.0895 6380  [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
22:43:39.0895 6380  C:\Windows\SysWOW64\glu32.dll - ok
22:43:39.0910 6380  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
22:43:39.0910 6380  C:\Windows\System32\DXP.dll - ok
22:43:39.0910 6380  [ 6046C98205A35C2CEC330B15F88D4443 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
22:43:39.0910 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
22:43:39.0910 6380  [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
22:43:39.0910 6380  C:\Windows\SysWOW64\snmpapi.dll - ok
22:43:39.0926 6380  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
22:43:39.0926 6380  C:\Windows\SysWOW64\ddraw.dll - ok
22:43:39.0926 6380  [ 5BD85ABB12E057257D9D93C0838ABC0B ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
22:43:39.0926 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
22:43:39.0926 6380  [ 363C29784A259D60B44596CD5B0091D7 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
22:43:39.0926 6380  C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe - ok
22:43:39.0926 6380  [ 72E6BB97A33137004FAC46CA43938F6C ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll
22:43:39.0926 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll - ok
22:43:39.0942 6380  [ E325D1DB76B13B33692D6318F67DC4EC ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll
22:43:39.0942 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll - ok
22:43:39.0942 6380  [ 8189D2FDFF0BA4F507834FCD34422DE5 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
22:43:39.0942 6380  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
22:43:39.0942 6380  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
22:43:39.0942 6380  C:\Windows\SysWOW64\dciman32.dll - ok
22:43:39.0957 6380  [ 8F17CA7CD61AF4602FC88647BAEA9F54 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll
22:43:39.0957 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll - ok
22:43:39.0957 6380  [ 132AB9DB9A673FC20EE2D786E8CEC447 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll
22:43:39.0957 6380  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll - ok
22:43:39.0957 6380  [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
22:43:39.0957 6380  C:\Windows\SysWOW64\WMVCORE.DLL - ok
22:43:39.0957 6380  [ 735623AAED32285D47FE6716D92ABC40 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll
22:43:39.0957 6380  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll - ok
22:43:39.0973 6380  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
22:43:39.0973 6380  C:\Windows\System32\thumbcache.dll - ok
22:43:39.0973 6380  [ E7E435A8E358B1FCF1788B76A8227C98 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll
22:43:39.0973 6380  C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll - ok
22:43:39.0973 6380  [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Windows\SysWOW64\msvcp100.dll
22:43:39.0973 6380  C:\Windows\SysWOW64\msvcp100.dll - ok
22:43:39.0973 6380  [ 5298ED7C7C56A683EDCC2A8AA1A4C475 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtCore4.dll
22:43:39.0973 6380  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtCore4.dll - ok
22:43:39.0988 6380  [ 807B6562009E5858C93E1C0F435C0382 ] C:\Windows\SysWOW64\netbios.dll
22:43:39.0988 6380  C:\Windows\SysWOW64\netbios.dll - ok
22:43:39.0988 6380  [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Windows\SysWOW64\msvcr100.dll
22:43:39.0988 6380  C:\Windows\SysWOW64\msvcr100.dll - ok
22:43:40.0004 6380  [ F773D2886EDF879860F220EB59C4552B ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
22:43:40.0004 6380  C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe - ok
22:43:40.0004 6380  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
22:43:40.0004 6380  C:\Windows\System32\ActionCenter.dll - ok
22:43:40.0004 6380  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
22:43:40.0004 6380  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
22:43:40.0004 6380  [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
22:43:40.0004 6380  C:\Windows\SysWOW64\WMASF.DLL - ok
22:43:40.0020 6380  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
22:43:40.0020 6380  C:\Windows\System32\Syncreg.dll - ok
22:43:40.0020 6380  [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
22:43:40.0020 6380  C:\Windows\SysWOW64\cabinet.dll - ok
22:43:40.0020 6380  [ D0DDA0B796FB5F9BB486EEB4F796D6BE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\89fe719039385377f6b5ad8d0070aa6b\System.Runtime.Remoting.ni.dll
22:43:40.0020 6380  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\89fe719039385377f6b5ad8d0070aa6b\System.Runtime.Remoting.ni.dll - ok
22:43:40.0035 6380  [ B77081F8221968C7DAB794B0BA55C43E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
22:43:40.0035 6380  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
22:43:40.0035 6380  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
22:43:40.0035 6380  C:\Windows\SysWOW64\rasapi32.dll - ok
22:43:40.0035 6380  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
22:43:40.0035 6380  C:\Windows\System32\FXSST.dll - ok
22:43:40.0051 6380  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
22:43:40.0051 6380  C:\Windows\SysWOW64\rasman.dll - ok
22:43:40.0051 6380  [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
22:43:40.0051 6380  C:\Windows\System32\wbem\wmipcima.dll - ok
22:43:40.0051 6380  [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] C:\Program Files\iTunesHelper.exe
22:43:40.0051 6380  C:\Program Files\iTunesHelper.exe - ok
22:43:40.0051 6380  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
22:43:40.0051 6380  C:\Windows\SysWOW64\rtutils.dll - ok
22:43:40.0066 6380  [ FADA81E20462E276D991E2C1920A7ED7 ] C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application LauncherLg.dll
22:43:40.0066 6380  C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application LauncherLg.dll - ok
22:43:40.0066 6380  [ 868C5BD058D684F028015DED5542F0A8 ] C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application LauncherBmp.dll
22:43:40.0066 6380  C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application LauncherBmp.dll - ok
22:43:40.0066 6380  [ 6C64B7C3D109169BF6007B90D41DAA2E ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
22:43:40.0066 6380  C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll - ok
22:43:40.0082 6380  [ 778D6ADBA6D49578EA45F600DAF4687B ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtGui4.dll
22:43:40.0082 6380  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtGui4.dll - ok
22:43:40.0082 6380  [ 5082BC510FAD849630D09DA626BB7CDA ] C:\Program Files\iTunesHelper.dll
22:43:40.0082 6380  C:\Program Files\iTunesHelper.dll - ok
22:43:40.0082 6380  [ 8504944851DF6175CC489A8F3328459E ] C:\Windows\SysWOW64\d3d10.dll
22:43:40.0082 6380  C:\Windows\SysWOW64\d3d10.dll - ok
22:43:40.0098 6380  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
22:43:40.0098 6380  C:\Windows\System32\FXSAPI.dll - ok
22:43:40.0098 6380  [ FB3F036EF6A467F7AF46C821FF5D198D ] C:\Windows\SysWOW64\d3d10core.dll
22:43:40.0098 6380  C:\Windows\SysWOW64\d3d10core.dll - ok
22:43:40.0098 6380  [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
22:43:40.0098 6380  C:\Windows\SysWOW64\dxgi.dll - ok
22:43:40.0113 6380  [ 6DE66FE7C526637E74CD066461C7C871 ] C:\Windows\SysWOW64\d3d11.dll
22:43:40.0113 6380  C:\Windows\SysWOW64\d3d11.dll - ok
22:43:40.0113 6380  [ FEE9CAB7EE2A63E89917DA97D6C8F22A ] C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe
22:43:40.0113 6380  C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe - ok
22:43:40.0113 6380  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
22:43:40.0113 6380  C:\Windows\System32\AltTab.dll - ok
22:43:40.0113 6380  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
22:43:40.0113 6380  C:\Windows\ehome\ehSSO.dll - ok
22:43:40.0129 6380  [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
22:43:40.0129 6380  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
22:43:40.0129 6380  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:43:40.0129 6380  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:43:40.0129 6380  [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] C:\Program Files\iTunesHelper.Resources\iTunesHelper.dll
22:43:40.0129 6380  C:\Program Files\iTunesHelper.Resources\iTunesHelper.dll - ok
22:43:40.0144 6380  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
22:43:40.0144 6380  C:\Windows\System32\pnidui.dll - ok
22:43:40.0144 6380  [ 559408FB6822A4B84D220E23BF56AD2F ] C:\Windows\SysWOW64\igd10umd32.dll
22:43:40.0144 6380  C:\Windows\SysWOW64\igd10umd32.dll - ok
22:43:40.0144 6380  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
22:43:40.0144 6380  C:\Windows\SysWOW64\netprofm.dll - ok
22:43:40.0144 6380  [ 8C3A34613A462646785B4A3AB16F8471 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe
22:43:40.0144 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe - ok
22:43:40.0160 6380  [ BC520B5696F8A6CEB7396341673540C8 ] C:\Program Files (x86)\McAfee\Common Framework\0409\UpdRes.Dll
22:43:40.0160 6380  C:\Program Files (x86)\McAfee\Common Framework\0409\UpdRes.Dll - ok
22:43:40.0160 6380  [ BE643CD44DD06DA283634A3E51DC22BC ] C:\Program Files\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
22:43:40.0160 6380  C:\Program Files\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
22:43:40.0160 6380  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:43:40.0160 6380  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:43:40.0176 6380  [ E393C4565884934EA634B03AA29FF1EC ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\ftcfg.dll
22:43:40.0176 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\ftcfg.dll - ok
22:43:40.0176 6380  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
22:43:40.0176 6380  C:\Windows\SysWOW64\npmproxy.dll - ok
22:43:40.0176 6380  [ C546236C916866371B0A0B1E71F4153F ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\wmain.dll
22:43:40.0176 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\wmain.dll - ok
22:43:40.0176 6380  [ 2E3E3FCD64BA4468B04F88E9B932050D ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\graphics.dll
22:43:40.0176 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\graphics.dll - ok
22:43:40.0191 6380  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
22:43:40.0191 6380  C:\Windows\System32\QUTIL.DLL - ok
22:43:40.0191 6380  [ 8D53EB2FDA0DE7607EB549D6ECE268DD ] C:\Program Files (x86)\McAfee\Common Framework\McTray.exe
22:43:40.0191 6380  C:\Program Files (x86)\McAfee\Common Framework\McTray.exe - ok
22:43:40.0207 6380  [ 97544E08AEFF5DB53A3C045502ADE272 ] C:\Program Files (x86)\McAfee\Common Framework\McAfeeWin32GUISupportDLL.dll
22:43:40.0207 6380  C:\Program Files (x86)\McAfee\Common Framework\McAfeeWin32GUISupportDLL.dll - ok
22:43:40.0207 6380  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
22:43:40.0207 6380  C:\Windows\System32\WPDShServiceObj.dll - ok
22:43:40.0207 6380  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
22:43:40.0207 6380  C:\Windows\System32\FXSSVC.exe - ok
22:43:40.0207 6380  [ 8DE9258DC72E476AFA2F665045647560 ] C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
22:43:40.0207 6380  C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe - ok
22:43:40.0222 6380  [ 05F2AABF74534FCC6C3A8D3BA03116E3 ] C:\Program Files (x86)\McAfee\Common Framework\McTrayInterfaceLib.dll
22:43:40.0222 6380  C:\Program Files (x86)\McAfee\Common Framework\McTrayInterfaceLib.dll - ok
22:43:40.0222 6380  [ 964B05EE97D3E71F585F97FD93C2CD6B ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll
22:43:40.0222 6380  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll - ok
22:43:40.0222 6380  [ A6E69E7ABAF9815390C4E3F45836CE5B ] C:\Program Files\Internet Explorer\sqmapi.dll
22:43:40.0222 6380  C:\Program Files\Internet Explorer\sqmapi.dll - ok
22:43:40.0238 6380  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
22:43:40.0238 6380  C:\Windows\System32\PortableDeviceTypes.dll - ok
22:43:40.0238 6380  [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
22:43:40.0238 6380  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
22:43:40.0238 6380  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
22:43:40.0238 6380  C:\Windows\System32\srchadmin.dll - ok
22:43:40.0238 6380  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
22:43:40.0238 6380  C:\Windows\System32\SearchIndexer.exe - ok
22:43:40.0254 6380  [ 89F375B01CCC7EA7BA55D040AA135F3A ] C:\Program Files (x86)\McAfee\Common Framework\McTrayErrorLoggingPlugin.dll
22:43:40.0254 6380  C:\Program Files (x86)\McAfee\Common Framework\McTrayErrorLoggingPlugin.dll - ok
22:43:40.0254 6380  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
22:43:40.0254 6380  C:\Windows\System32\rasdlg.dll - ok
22:43:40.0254 6380  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
22:43:40.0254 6380  C:\Windows\System32\tquery.dll - ok
22:43:40.0254 6380  [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
22:43:40.0254 6380  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
22:43:40.0269 6380  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
22:43:40.0269 6380  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
22:43:40.0269 6380  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
22:43:40.0269 6380  C:\Windows\System32\WWanAPI.dll - ok
22:43:40.0269 6380  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
22:43:40.0269 6380  C:\Windows\System32\wwapi.dll - ok
22:43:40.0285 6380  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
22:43:40.0285 6380  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
22:43:40.0285 6380  [ AAA1D7C3C3D8E41BDB0E6985D167EAC4 ] C:\Program Files (x86)\McAfee\Common Framework\mfevtpa.dll
22:43:40.0285 6380  C:\Program Files (x86)\McAfee\Common Framework\mfevtpa.dll - ok
22:43:40.0285 6380  [ 12B13A613946D2ACCA05AAB8DD716331 ] C:\Program Files (x86)\McAfee\Common Framework\McTrayLegacySupportPlugin.dll
22:43:40.0285 6380  C:\Program Files (x86)\McAfee\Common Framework\McTrayLegacySupportPlugin.dll - ok
22:43:40.0285 6380  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
22:43:40.0285 6380  C:\Windows\System32\QAGENT.DLL - ok
22:43:40.0300 6380  [ 8CD6CD1D01AD0C3E27855F9CE72FD03D ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeapPadExplorerDeviceHook.dll
22:43:40.0300 6380  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeapPadExplorerDeviceHook.dll - ok
22:43:40.0300 6380  [ 59A27C18DA03EF10317707BF922BEFA1 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
22:43:40.0300 6380  C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe - ok
22:43:40.0300 6380  [ 443C5C000A776DC84E41F06401F4B577 ] C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.dll
22:43:40.0300 6380  C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.dll - ok
22:43:40.0316 6380  [ E54BA411272A9750D475F48747A48E5E ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\TagDeviceHook.dll
22:43:40.0316 6380  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\TagDeviceHook.dll - ok
22:43:40.0316 6380  [ 75EB974222F293159427F9A77A5F3C6A ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
22:43:40.0316 6380  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll - ok
22:43:40.0316 6380  [ F3A2884486592608DF618101B0AB8148 ] C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application LauncherMainDlg.dll
22:43:40.0316 6380  C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application LauncherMainDlg.dll - ok
22:43:40.0316 6380  [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Windows\SysWOW64\mfc71.dll
22:43:40.0316 6380  C:\Windows\SysWOW64\mfc71.dll - ok
22:43:40.0332 6380  [ 87673DE37ECCDDADD51E4897B396ADF3 ] C:\Program Files (x86)\McAfee\Common Framework\traceapp.dll
22:43:40.0332 6380  C:\Program Files (x86)\McAfee\Common Framework\traceapp.dll - ok
22:43:40.0332 6380  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
22:43:40.0332 6380  C:\Windows\System32\mssrch.dll - ok
22:43:40.0332 6380  [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\SysWOW64\thumbcache.dll
22:43:40.0332 6380  C:\Windows\SysWOW64\thumbcache.dll - ok
22:43:40.0347 6380  [ 9D18C01DB929E266BEF674BAF05327F7 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll
22:43:40.0347 6380  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll - ok
22:43:40.0347 6380  [ 07DD9DCD1CC2840751A1F8772F3C0195 ] C:\Program Files\Microsoft Games\Chess\Chess.exe
22:43:40.0347 6380  C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
22:43:40.0347 6380  [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\Windows\SysWOW64\MFC71ENU.DLL
22:43:40.0347 6380  C:\Windows\SysWOW64\MFC71ENU.DLL - ok
22:43:40.0347 6380  [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
22:43:40.0347 6380  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
22:43:40.0363 6380  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
22:43:40.0363 6380  C:\Windows\System32\msidle.dll - ok
22:43:40.0363 6380  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
22:43:40.0363 6380  C:\Windows\System32\mssprxy.dll - ok
22:43:40.0363 6380  [ 7646CB9C5A4FF8BA647E0912A3568C41 ] C:\Program Files (x86)\Common Files\Teleca Shared\CapabilityManager.exe
22:43:40.0363 6380  C:\Program Files (x86)\Common Files\Teleca Shared\CapabilityManager.exe - ok
22:43:40.0378 6380  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
22:43:40.0378 6380  C:\Windows\SysWOW64\mssprxy.dll - ok
22:43:40.0378 6380  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
22:43:40.0378 6380  C:\Program Files\iPod\bin\iPodService.exe - ok
22:43:40.0378 6380  [ 932AB689DEC89CDC52706E49FEB96443 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll
22:43:40.0378 6380  C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll - ok
22:43:40.0394 6380  [ 50366E69A3C7CA0A4359BD469B60D686 ] C:\Program Files (x86)\Common Files\Teleca Shared\PCCLS.DLL
22:43:40.0394 6380  C:\Program Files (x86)\Common Files\Teleca Shared\PCCLS.DLL - ok
22:43:40.0394 6380  [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
22:43:40.0394 6380  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
22:43:40.0394 6380  [ CBA29D7C16A56A701C0B3D7A68D84128 ] C:\Program Files (x86)\Common Files\Teleca Shared\logger.exe
22:43:40.0410 6380  C:\Program Files (x86)\Common Files\Teleca Shared\logger.exe - ok
22:43:40.0410 6380  [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
22:43:40.0410 6380  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
22:43:40.0410 6380  [ 27D882FD844B409FF86E9420D11A7B50 ] C:\Program Files (x86)\Common Files\Teleca Shared\logger.dll
22:43:40.0410 6380  C:\Program Files (x86)\Common Files\Teleca Shared\logger.dll - ok
22:43:40.0425 6380  [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
22:43:40.0425 6380  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
22:43:40.0425 6380  [ A8C05DD686FD7521914AAE742DECB0DA ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll
22:43:40.0425 6380  C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok
22:43:40.0425 6380  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
22:43:40.0425 6380  C:\Windows\System32\en-US\tquery.dll.mui - ok
22:43:40.0441 6380  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
22:43:40.0441 6380  C:\Windows\SysWOW64\msxml6.dll - ok
22:43:40.0441 6380  [ B695D2F73404ACFA872E92199389842E ] C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll
22:43:40.0441 6380  C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok
22:43:40.0441 6380  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
22:43:40.0441 6380  C:\Windows\SysWOW64\IconCodecService.dll - ok
22:43:40.0456 6380  [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
22:43:40.0456 6380  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
22:43:40.0456 6380  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
22:43:40.0456 6380  C:\Windows\System32\UIAnimation.dll - ok
22:43:40.0456 6380  [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
22:43:40.0456 6380  C:\Windows\System32\wmdrmdev.dll - ok
22:43:40.0456 6380  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\15514829.sys
22:43:40.0456 6380  C:\Windows\System32\drivers\15514829.sys - ok
22:43:40.0472 6380  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
22:43:40.0472 6380  C:\Windows\System32\drmv2clt.dll - ok
22:43:40.0472 6380  [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
22:43:40.0472 6380  C:\Windows\System32\wmp.dll - ok
22:43:40.0472 6380  [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
22:43:40.0472 6380  C:\Windows\System32\perfos.dll - ok
22:43:40.0488 6380  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
22:43:40.0488 6380  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
22:43:40.0488 6380  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
22:43:40.0488 6380  C:\Windows\SysWOW64\duser.dll - ok
22:43:40.0488 6380  [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
22:43:40.0488 6380  C:\Windows\System32\wmploc.DLL - ok
22:43:40.0503 6380  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
22:43:40.0503 6380  C:\Windows\SysWOW64\dui70.dll - ok
22:43:40.0503 6380  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
22:43:40.0503 6380  C:\Windows\SysWOW64\mscms.dll - ok
22:43:40.0503 6380  [ 719F8B85BC9F3F228ED5C5A2278BC2A5 ] C:\Program Files (x86)\Common Files\Teleca Shared\Generic.exe
22:43:40.0503 6380  C:\Program Files (x86)\Common Files\Teleca Shared\Generic.exe - ok
22:43:40.0503 6380  [ CB942CA446EC2B8A9965B195AA9A5554 ] C:\Program Files (x86)\Common Files\Teleca Shared\TC Device Mgmt.dll
22:43:40.0503 6380  C:\Program Files (x86)\Common Files\Teleca Shared\TC Device Mgmt.dll - ok
22:43:40.0519 6380  [ F4E810FC6A0BD8EE88F928BD059CB88D ] C:\Program Files (x86)\Common Files\Teleca Shared\HookStarter.dll
22:43:40.0519 6380  C:\Program Files (x86)\Common Files\Teleca Shared\HookStarter.dll - ok
22:43:40.0519 6380  [ CC26C6C26C1FE3FFA74DD733E9B8BB90 ] C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\ClientInitiatedStarter.exe
22:43:40.0519 6380  C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\ClientInitiatedStarter.exe - ok
22:43:40.0519 6380  [ 07CF7A706C2A9B54542D395C7AD76E0B ] C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\fsync.dll
22:43:40.0519 6380  C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\fsync.dll - ok
22:43:40.0534 6380  [ BC81A15890467BC1371FDDE3A4324FF3 ] C:\Program Files (x86)\HTC\HTC Sync\Device Manager\SpecificMPM.dll
22:43:40.0534 6380  C:\Program Files (x86)\HTC\HTC Sync\Device Manager\SpecificMPM.dll - ok
22:43:40.0534 6380  [ 47A6EE3F186B2C2F5057028906BAC0C6 ] C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\AdbWinApi.dll
22:43:40.0534 6380  C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\AdbWinApi.dll - ok
22:43:40.0534 6380  [ A6B8EAFB1760B198FE7CAE7773D1FF96 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\epmworker.exe
22:43:40.0534 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\epmworker.exe - ok
22:43:40.0550 6380  [ 5F3718FFD2E692EA57B9B28060DA55A6 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\ShowMfcDialog.dll
22:43:40.0550 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\ShowMfcDialog.dll - ok
22:43:40.0550 6380  [ C1F55D66386F9F8C6F14A0ECB275F23D ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\db_objects.dll
22:43:40.0550 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\db_objects.dll - ok
22:43:40.0550 6380  [ A7D83CC4563303F632BFAB13A71DF0FB ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\capires0409.dll
22:43:40.0550 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\capires0409.dll - ok
22:43:40.0550 6380  [ 6FCA18FDFC1E95D41492348B2E2A4FDF ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\msirsock_object.dll
22:43:40.0550 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\msirsock_object.dll - ok
22:43:40.0566 6380  [ 9A636AEA6D9A41EA92A1743C3E2F1D11 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\cellphone_object.dll
22:43:40.0566 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\cellphone_object.dll - ok
22:43:40.0581 6380  [ 1A032AA431836D9A24DBBC1E441C9901 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\ecsmoddata.dll
22:43:40.0581 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\ecsmoddata.dll - ok
22:43:40.0581 6380  [ E518565817A0BE915C8D2078A98EDC0E ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\cabmain.dll
22:43:40.0581 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\cabmain.dll - ok
22:43:40.0581 6380  [ 976E3B7A9D69071704A324E9DCAA25A8 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\xpbtsock_2_object.dll
22:43:40.0581 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\xpbtsock_2_object.dll - ok
22:43:40.0581 6380  [ BC5525C19F79B6099B085D0C00C4EF46 ] C:\Windows\SysWOW64\irprops.cpl
22:43:40.0581 6380  C:\Windows\SysWOW64\irprops.cpl - ok
22:43:40.0597 6380  [ 3BE48FAB593363CAD365DFEE8E2AE151 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\HTCVBTConnector.dll
22:43:40.0597 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\HTCVBTConnector.dll - ok
22:43:40.0597 6380  [ 411E4F7D3B27655BC7115832D8C1C717 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\anubisutils.dll
22:43:40.0597 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\anubisutils.dll - ok
22:43:40.0597 6380  [ A4ADC41D2AD56E8E4EF7A7023BE551CD ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\HTCVBTServer.exe
22:43:40.0597 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\HTCVBTServer.exe - ok
22:43:40.0612 6380  [ 07CF7A706C2A9B54542D395C7AD76E0B ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\fsync.dll
22:43:40.0612 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\fsync.dll - ok
22:43:40.0612 6380  [ 47A6EE3F186B2C2F5057028906BAC0C6 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\AdbWinApi.dll
22:43:40.0612 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\AdbWinApi.dll - ok
22:43:40.0612 6380  [ F8EB8D927A3E48F1CB3FDC94C7DF58FE ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\tcpsock_object.dll
22:43:40.0612 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\tcpsock_object.dll - ok
22:43:40.0628 6380  [ 5F23F2F936BDFAC90BB0A4970AD365CF ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\AdbWinUsbApi.dll
22:43:40.0628 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\AdbWinUsbApi.dll - ok
22:43:40.0628 6380  [ 843D21A20736016E5613E4B51EA60D46 ] C:\Windows\SysWOW64\winusb.dll
22:43:40.0628 6380  C:\Windows\SysWOW64\winusb.dll - ok
22:43:40.0628 6380  [ DE0395F217E671E2E2E7CC7BAD352DD8 ] C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\FsynSrvStarter.exe
22:43:40.0628 6380  C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\FsynSrvStarter.exe - ok
22:43:40.0628 6380  [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
22:43:40.0628 6380  C:\Windows\System32\webcheck.dll - ok
22:43:40.0644 6380  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
22:43:40.0644 6380  C:\Windows\System32\mlang.dll - ok
22:43:40.0644 6380  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
22:43:40.0644 6380  C:\Windows\System32\SyncCenter.dll - ok
22:43:40.0644 6380  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
22:43:40.0644 6380  C:\Windows\System32\imapi2.dll - ok
22:43:40.0644 6380  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
22:43:40.0644 6380  C:\Windows\System32\hgcpl.dll - ok
22:43:40.0659 6380  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
22:43:40.0659 6380  C:\Windows\System32\fdPHost.dll - ok
22:43:40.0659 6380  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
22:43:40.0659 6380  C:\Windows\System32\fdWSD.dll - ok
22:43:40.0659 6380  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
22:43:40.0659 6380  C:\Windows\System32\fdSSDP.dll - ok
22:43:40.0659 6380  [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
22:43:40.0659 6380  C:\Windows\System32\fdProxy.dll - ok
22:43:40.0675 6380  [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
22:43:40.0675 6380  C:\Windows\System32\ListSvc.dll - ok
22:43:40.0675 6380  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
22:43:40.0675 6380  C:\Windows\System32\P2P.dll - ok
22:43:40.0675 6380  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
22:43:40.0675 6380  C:\Windows\System32\IdListen.dll - ok
22:43:40.0675 6380  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
22:43:40.0675 6380  C:\Windows\System32\p2pcollab.dll - ok
22:43:40.0690 6380  [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
22:43:40.0690 6380  C:\Windows\System32\hgprint.dll - ok
22:43:40.0690 6380  [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
22:43:40.0690 6380  C:\Windows\System32\pnrpsvc.dll - ok
22:43:40.0690 6380  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
22:43:40.0690 6380  C:\Windows\System32\QAGENTRT.DLL - ok
22:43:40.0690 6380  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
22:43:40.0690 6380  C:\Windows\System32\fveui.dll - ok
22:43:40.0706 6380  [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
22:43:40.0706 6380  C:\Windows\System32\p2psvc.dll - ok
22:43:40.0706 6380  [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
22:43:40.0706 6380  C:\Windows\System32\P2PGraph.dll - ok
22:43:40.0706 6380  [ 916A020A8C88A48B7F67AEE1D8F9CECD ] C:\Program Files\Internet Explorer\ieproxy.dll
22:43:40.0706 6380  C:\Program Files\Internet Explorer\ieproxy.dll - ok
22:43:40.0722 6380  [ DE3C24ED141873272F7BD7BF32BF2AE4 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
22:43:40.0722 6380  C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
22:43:40.0722 6380  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
22:43:40.0722 6380  C:\Windows\System32\upnp.dll - ok
22:43:40.0722 6380  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
22:43:40.0722 6380  C:\Windows\System32\ssdpsrv.dll - ok
22:43:40.0722 6380  [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
22:43:40.0722 6380  C:\Windows\System32\wmpps.dll - ok
22:43:40.0737 6380  [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
22:43:40.0737 6380  C:\Windows\System32\wmpmde.dll - ok
22:43:40.0737 6380  [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
22:43:40.0737 6380  C:\Windows\System32\WinSATAPI.dll - ok
22:43:40.0737 6380  [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
22:43:40.0737 6380  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
22:43:40.0737 6380  [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
22:43:40.0737 6380  C:\Windows\System32\MSMPEG2ENC.DLL - ok
22:43:40.0753 6380  [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
22:43:40.0753 6380  C:\Windows\System32\devenum.dll - ok
22:43:40.0753 6380  [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
22:43:40.0753 6380  C:\Windows\System32\upnphost.dll - ok
22:43:40.0753 6380  [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
22:43:40.0753 6380  C:\Windows\System32\udhisapi.dll - ok
22:43:40.0753 6380  [ DD7589185CA94FEDFE4106F9C8A077C8 ] C:\Program Files (x86)\Dell\VideoStage\UserAgent.exe
22:43:40.0753 6380  C:\Program Files (x86)\Dell\VideoStage\UserAgent.exe - ok
22:43:40.0768 6380  [ 5C09821AAD0F7A40A39BE71D0D4BF6EE ] C:\Program Files (x86)\Dell\VideoStage\RFCom.dll
22:43:40.0768 6380  C:\Program Files (x86)\Dell\VideoStage\RFCom.dll - ok
22:43:40.0768 6380  [ 6E087B1CDBE342D8CA485711B31C9165 ] C:\Program Files (x86)\Dell\VideoStage\Koan\python25.dll
22:43:40.0768 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\python25.dll - ok
22:43:40.0768 6380  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Dell\VideoStage\msvcr71.dll
22:43:40.0768 6380  C:\Program Files (x86)\Dell\VideoStage\msvcr71.dll - ok
22:43:40.0768 6380  [ 11B2658BF30EC6401BC1B924C0E89DB8 ] C:\Program Files (x86)\Dell\VideoStage\Koan\_wingdi.pyd
22:43:40.0768 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_wingdi.pyd - ok
22:43:40.0784 6380  [ CD3F3F40C03F65802F52F6740654D15A ] C:\Program Files (x86)\Dell\VideoStage\Koan\_image.pyd
22:43:40.0784 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_image.pyd - ok
22:43:40.0784 6380  [ 195544898FB5619A0EFD37537C9C9B31 ] C:\Program Files (x86)\Dell\VideoStage\Koan\_Interpolator.pyd
22:43:40.0784 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_Interpolator.pyd - ok
22:43:40.0784 6380  [ 3C1E94D7BF899939043FBE85049E731C ] C:\Program Files (x86)\Dell\VideoStage\Koan\_font.pyd
22:43:40.0784 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_font.pyd - ok
22:43:40.0800 6380  [ E58347361C4E9D47C796EDFFA745BA9D ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PySWCommunicator.pyd
22:43:40.0800 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PySWCommunicator.pyd - ok
22:43:40.0800 6380  [ 79B90EFE436F1E626B35823A47E78199 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PyWMI.pyd
22:43:40.0800 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PyWMI.pyd - ok
22:43:40.0800 6380  [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
22:43:40.0800 6380  C:\Windows\System32\drt.dll - ok
22:43:40.0815 6380  [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
22:43:40.0815 6380  C:\Windows\System32\drttransport.dll - ok
22:43:40.0815 6380  [ 4DC7345657EFC069D301496DC5B66ECD ] C:\Program Files (x86)\Dell\VideoStage\Koan\_ctypes.pyd
22:43:40.0815 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_ctypes.pyd - ok
22:43:40.0815 6380  [ 60F40BDDB9C6F96A2372798128607342 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PyImage.pyd
22:43:40.0815 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PyImage.pyd - ok
22:43:40.0831 6380  [ C026BA0704430C3AE86CA5B82F120A3C ] C:\Program Files (x86)\Dell\VideoStage\Koan\_render3d.pyd
22:43:40.0831 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_render3d.pyd - ok
22:43:40.0831 6380  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
22:43:40.0831 6380  C:\Windows\SysWOW64\avrt.dll - ok
22:43:40.0831 6380  [ BF7851B9FA891839FA908A1449DDA35E ] C:\Program Files (x86)\Dell\VideoStage\Koan\_bsddb.pyd
22:43:40.0831 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_bsddb.pyd - ok
22:43:40.0831 6380  [ FA66391C0AE835BE859F4703B6FFAEE6 ] C:\Program Files (x86)\Dell\VideoStage\Koan\_sqlite3.pyd
22:43:40.0831 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\_sqlite3.pyd - ok
22:43:40.0846 6380  [ 6D13BF99A2205FCB0492C994EF4013BB ] C:\Program Files (x86)\Dell\VideoStage\Koan\sqlite3.dll
22:43:40.0846 6380  C:\Program Files (x86)\Dell\VideoStage\Koan\sqlite3.dll - ok
22:43:40.0846 6380  [ 55E495C41D213062358288FD8F025E61 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PyCinemaNowLib.pyd
22:43:40.0846 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PyCinemaNowLib.pyd - ok
22:43:40.0846 6380  [ 25EAEF3900AF6866C9F5BD60850647B4 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\CinemaNowAPI.dll
22:43:40.0846 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\CinemaNowAPI.dll - ok
22:43:40.0846 6380  [ CCA06C649FC480524FB0826F78E7F396 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\RealTimeBrowsingAPI.dll
22:43:40.0846 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\RealTimeBrowsingAPI.dll - ok
22:43:40.0862 6380  [ 8EAE03A0F0BF13AF27702E29460D7B47 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\ssleay32.dll
22:43:40.0862 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\ssleay32.dll - ok
22:43:40.0862 6380  [ D5405DD640E870B1DD4F5B4BD08865BB ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\libeay32.dll
22:43:40.0862 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\libeay32.dll - ok
22:43:40.0862 6380  [ E2BEB2B6577EAB8A0AAC04A617C7F8B7 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\StreamingAPI.dll
22:43:40.0862 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\StreamingAPI.dll - ok
22:43:40.0862 6380  [ 04E2714D623E9C7BA4BB39E4F99F39E0 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\WebServicesAPI.dll
22:43:40.0862 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\WebServicesAPI.dll - ok
22:43:40.0878 6380  [ 31E432D7AC416CDD0A836686BA1F3988 ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\DownloadAPI.dll
22:43:40.0878 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\Core\CinemaNowLib\DownloadAPI.dll - ok
22:43:40.0878 6380  [ E8C062E08041CD7A95060F572434758F ] C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PySystemDetector.pyd
22:43:40.0878 6380  C:\Program Files (x86)\Dell\VideoStage\System\KernelCtrl\_PySystemDetector.pyd - ok
22:43:40.0878 6380  [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
22:43:40.0878 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
22:43:40.0893 6380  [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
22:43:40.0893 6380  C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
22:43:40.0893 6380  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:43:40.0893 6380  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
22:43:40.0893 6380  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
22:43:40.0893 6380  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
22:43:40.0909 6380  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:43:40.0909 6380  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
22:43:40.0909 6380  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
22:43:40.0909 6380  C:\Windows\System32\msvcr100_clr0400.dll - ok
22:43:40.0909 6380  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
22:43:40.0909 6380  C:\Windows\System32\mscoree.dll - ok
22:43:40.0909 6380  [ 690AC6BBC42258593E829FB27A80575A ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll
22:43:40.0909 6380  C:\Program Files (x86)\Google\Update\1.3.21.153\goopdateres_en.dll - ok
22:43:40.0909 6380  ============================================================
22:43:40.0909 6380  Scan finished
22:43:40.0909 6380  ============================================================
22:43:40.0924 6372  Detected object count: 0
22:43:40.0924 6372  Actual detected object count: 0
22:45:34.0844 4400  Deinitialize success



#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:13 PM

Posted 16 July 2013 - 10:36 PM


Hello bkyota

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::


 
Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
CFScriptB-4.gif
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
    • report from Combofix
    • let me know of any problems you may have had
    • How is the computer doing now after running the script?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 bkyota

bkyota
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:13 PM

Posted 16 July 2013 - 11:00 PM

Below is the combfix log.  Computer seems to be running good.  Do you think a virus/malware was causing the speaker with the ad to play?  Also was hitman ineffective removing the ICE ransomware or was it other infections.   Just curious.  Its getting late here, so forgive me for not responding until the morning.  I'll carry my computer to work with me tomorrow so I can run other scans that you want.

 

Thanks for the help.

 

ComboFix 13-07-15.01 - Ste 07/16/2013  23:47:00.2.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4003.2457 [GMT -4:00]
Running from: c:\users\Ste\Desktop\ComboFix.exe
Command switches used :: c:\users\Ste\Desktop\CFScript.txt
AV: McAfee VirusScan Enterprise *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
SP: McAfee VirusScan Enterprise Antispyware Module *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Files Created from 2013-06-17 to 2013-07-17  )))))))))))))))))))))))))))))))
.
.
2013-07-17 03:52 . 2013-07-17 03:52    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-07-16 18:27 . 2013-07-16 18:27    --------    d-----w-    c:\windows\ERUNT
2013-07-16 00:26 . 2013-07-16 00:26    12872    ----a-w-    c:\windows\system32\bootdelete.exe
2013-07-15 07:35 . 2013-05-06 06:03    1887744    ----a-w-    c:\windows\system32\WMVDECOD.DLL
2013-07-15 07:35 . 2013-05-06 04:56    1620480    ----a-w-    c:\windows\SysWow64\WMVDECOD.DLL
2013-07-15 01:00 . 2013-07-15 01:00    --------    d-----w-    c:\users\Ste\AppData\Local\Programs
2013-07-15 00:58 . 2013-07-15 00:58    --------    d-----w-    c:\programdata\Malwarebytes
2013-07-15 00:58 . 2013-04-04 18:50    25928    ----a-w-    c:\windows\system32\drivers\mbam.sys
2013-07-15 00:58 . 2013-07-15 01:00    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2013-07-14 23:48 . 2013-05-27 05:50    1011712    ----a-w-    c:\program files\Windows Defender\MpSvc.dll
2013-07-14 23:48 . 2013-05-27 05:50    571904    ----a-w-    c:\program files\Windows Defender\MpClient.dll
2013-07-14 23:48 . 2013-05-27 04:57    392704    ----a-w-    c:\program files (x86)\Windows Defender\MpClient.dll
2013-07-14 23:48 . 2013-05-27 05:50    314880    ----a-w-    c:\program files\Windows Defender\MpCommu.dll
2013-07-14 23:48 . 2013-05-27 04:57    54784    ----a-w-    c:\program files (x86)\Windows Defender\MpOAV.dll
2013-07-14 23:48 . 2013-05-27 04:57    4608    ----a-w-    c:\program files (x86)\Windows Defender\MsMpLics.dll
2013-07-14 23:48 . 2013-05-27 03:15    9216    ----a-w-    c:\program files (x86)\Windows Defender\MpAsDesc.dll
2013-07-14 23:48 . 2013-06-04 06:00    624128    ----a-w-    c:\windows\system32\qedit.dll
2013-07-14 23:48 . 2013-06-04 04:53    509440    ----a-w-    c:\windows\SysWow64\qedit.dll
2013-07-14 23:47 . 2013-06-05 03:34    3153920    ----a-w-    c:\windows\system32\win32k.sys
2013-07-14 23:47 . 2013-04-10 05:48    1732608    ----a-w-    c:\program files\Windows Journal\NBDoc.DLL
2013-07-14 23:47 . 2013-04-10 05:46    1367040    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-07-14 23:47 . 2013-04-10 05:46    1402880    ----a-w-    c:\program files\Windows Journal\JNWDRV.dll
2013-07-14 23:47 . 2013-04-10 05:46    1393152    ----a-w-    c:\program files\Windows Journal\JNTFiltr.dll
2013-07-14 23:47 . 2013-04-10 05:03    936448    ----a-w-    c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-07-14 23:12 . 2013-04-02 22:51    1643520    ----a-w-    c:\windows\system32\DWrite.dll
2013-07-14 22:59 . 2013-07-16 00:26    --------    d-----w-    c:\programdata\HitmanPro
2013-07-09 21:22 . 2013-04-09 23:34    1247744    ----a-w-    c:\windows\SysWow64\DWrite.dll
2013-06-22 01:34 . 2013-06-22 01:34    --------    d-----w-    c:\program files (x86)\Common Files\Skype
2013-06-22 01:32 . 2013-06-22 01:32    --------    d-----w-    c:\users\Default\AppData\Local\Microsoft Help
2013-06-21 21:51 . 2013-07-15 07:46    --------    d-----w-    c:\program files\Microsoft Silverlight
2013-06-21 21:51 . 2013-07-15 07:46    --------    d-----w-    c:\program files (x86)\Microsoft Silverlight
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-15 07:22 . 2011-11-16 16:59    78185248    ----a-w-    c:\windows\system32\MRT.exe
2013-06-12 19:10 . 2012-04-12 21:17    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 19:10 . 2011-12-08 21:55    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-05 07:10 . 2013-06-05 07:10    1054720    ----a-w-    c:\windows\system32\MsSpellCheckingFacility.exe
2013-06-05 07:10 . 2013-06-05 07:10    226304    ----a-w-    c:\windows\system32\elshyph.dll
2013-06-05 07:10 . 2013-06-05 07:10    185344    ----a-w-    c:\windows\SysWow64\elshyph.dll
2013-06-05 07:10 . 2013-06-05 07:10    158720    ----a-w-    c:\windows\SysWow64\msls31.dll
2013-06-05 07:10 . 2013-06-05 07:10    719360    ----a-w-    c:\windows\SysWow64\mshtmlmedia.dll
2013-06-05 07:10 . 2013-06-05 07:10    150528    ----a-w-    c:\windows\SysWow64\iexpress.exe
2013-06-05 07:10 . 2013-06-05 07:10    138752    ----a-w-    c:\windows\SysWow64\wextract.exe
2013-06-05 07:10 . 2013-06-05 07:10    523264    ----a-w-    c:\windows\SysWow64\vbscript.dll
2013-06-05 07:09 . 2013-06-05 07:09    38400    ----a-w-    c:\windows\SysWow64\imgutil.dll
2013-06-05 07:09 . 2013-06-05 07:09    137216    ----a-w-    c:\windows\SysWow64\ieUnatt.exe
2013-06-05 07:09 . 2013-06-05 07:09    12800    ----a-w-    c:\windows\SysWow64\mshta.exe
2013-06-05 07:09 . 2013-06-05 07:09    110592    ----a-w-    c:\windows\SysWow64\IEAdvpack.dll
2013-06-05 07:09 . 2013-06-05 07:09    73728    ----a-w-    c:\windows\SysWow64\SetIEInstalledDate.exe
2013-06-05 07:09 . 2013-06-05 07:09    48640    ----a-w-    c:\windows\SysWow64\mshtmler.dll
2013-06-05 07:09 . 2013-06-05 07:09    61952    ----a-w-    c:\windows\SysWow64\tdc.ocx
2013-06-05 07:09 . 2013-06-05 07:09    361984    ----a-w-    c:\windows\SysWow64\html.iec
2013-06-05 07:09 . 2013-06-05 07:09    1441280    ----a-w-    c:\windows\SysWow64\inetcpl.cpl
2013-06-05 07:09 . 2013-06-05 07:09    23040    ----a-w-    c:\windows\SysWow64\licmgr10.dll
2013-06-05 07:09 . 2013-06-05 07:09    441856    ----a-w-    c:\windows\system32\html.iec
2013-06-05 07:09 . 2013-06-05 07:09    281600    ----a-w-    c:\windows\system32\dxtrans.dll
2013-06-05 07:09 . 2013-06-05 07:09    216064    ----a-w-    c:\windows\system32\msls31.dll
2013-06-05 07:09 . 2013-06-05 07:09    197120    ----a-w-    c:\windows\system32\msrating.dll
2013-06-05 07:09 . 2013-06-05 07:09    452096    ----a-w-    c:\windows\system32\dxtmsft.dll
2013-06-05 07:09 . 2013-06-05 07:09    905728    ----a-w-    c:\windows\system32\mshtmlmedia.dll
2013-06-05 07:09 . 2013-06-05 07:09    81408    ----a-w-    c:\windows\system32\icardie.dll
2013-06-05 07:09 . 2013-06-05 07:09    762368    ----a-w-    c:\windows\system32\ieapfltr.dll
2013-06-05 07:09 . 2013-06-05 07:09    270848    ----a-w-    c:\windows\system32\iedkcs32.dll
2013-06-05 07:09 . 2013-06-05 07:09    235008    ----a-w-    c:\windows\system32\url.dll
2013-06-05 07:09 . 2013-06-05 07:09    1400416    ----a-w-    c:\windows\system32\ieapfltr.dat
2013-06-05 07:09 . 2013-06-05 07:09    1509376    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-06-05 07:09 . 2013-06-05 07:09    97280    ----a-w-    c:\windows\system32\mshtmled.dll
2013-06-05 07:09 . 2013-06-05 07:09    27648    ----a-w-    c:\windows\system32\licmgr10.dll
2013-06-05 07:09 . 2013-06-05 07:09    247296    ----a-w-    c:\windows\system32\webcheck.dll
2013-06-05 07:09 . 2013-06-05 07:09    167424    ----a-w-    c:\windows\system32\iexpress.exe
2013-06-05 07:09 . 2013-06-05 07:09    144896    ----a-w-    c:\windows\system32\wextract.exe
2013-06-05 07:09 . 2013-06-05 07:09    102912    ----a-w-    c:\windows\system32\inseng.dll
2013-06-05 07:09 . 2013-06-05 07:09    599552    ----a-w-    c:\windows\system32\vbscript.dll
2013-06-05 07:09 . 2013-06-05 07:09    173568    ----a-w-    c:\windows\system32\ieUnatt.exe
2013-06-05 07:09 . 2013-06-05 07:09    92160    ----a-w-    c:\windows\system32\SetIEInstalledDate.exe
2013-06-05 07:09 . 2013-06-05 07:09    62976    ----a-w-    c:\windows\system32\pngfilt.dll
2013-06-05 07:09 . 2013-06-05 07:09    52224    ----a-w-    c:\windows\system32\msfeedsbs.dll
2013-06-05 07:09 . 2013-06-05 07:09    51200    ----a-w-    c:\windows\system32\imgutil.dll
2013-06-05 07:09 . 2013-06-05 07:09    149504    ----a-w-    c:\windows\system32\occache.dll
2013-06-05 07:09 . 2013-06-05 07:09    13824    ----a-w-    c:\windows\system32\mshta.exe
2013-06-05 07:09 . 2013-06-05 07:09    136192    ----a-w-    c:\windows\system32\iepeers.dll
2013-06-05 07:09 . 2013-06-05 07:09    135680    ----a-w-    c:\windows\system32\IEAdvpack.dll
2013-06-05 07:09 . 2013-06-05 07:09    12800    ----a-w-    c:\windows\system32\msfeedssync.exe
2013-06-05 07:09 . 2013-06-05 07:09    48640    ----a-w-    c:\windows\system32\mshtmler.dll
2013-06-05 07:09 . 2013-06-05 07:09    77312    ----a-w-    c:\windows\system32\tdc.ocx
2013-05-13 05:51 . 2013-06-12 04:27    184320    ----a-w-    c:\windows\system32\cryptsvc.dll
2013-05-13 05:51 . 2013-06-12 04:27    1464320    ----a-w-    c:\windows\system32\crypt32.dll
2013-05-13 05:51 . 2013-06-12 04:27    139776    ----a-w-    c:\windows\system32\cryptnet.dll
2013-05-13 05:50 . 2013-06-12 04:27    52224    ----a-w-    c:\windows\system32\certenc.dll
2013-05-13 04:45 . 2013-06-12 04:27    1160192    ----a-w-    c:\windows\SysWow64\crypt32.dll
2013-05-13 04:45 . 2013-06-12 04:27    103936    ----a-w-    c:\windows\SysWow64\cryptnet.dll
2013-05-13 04:45 . 2013-06-12 04:27    140288    ----a-w-    c:\windows\SysWow64\cryptsvc.dll
2013-05-13 03:43 . 2013-06-12 04:27    1192448    ----a-w-    c:\windows\system32\certutil.exe
2013-05-13 03:08 . 2013-06-12 04:27    903168    ----a-w-    c:\windows\SysWow64\certutil.exe
2013-05-13 03:08 . 2013-06-12 04:27    43008    ----a-w-    c:\windows\SysWow64\certenc.dll
2013-05-10 05:49 . 2013-06-12 04:27    30720    ----a-w-    c:\windows\system32\cryptdlg.dll
2013-05-10 03:20 . 2013-06-12 04:27    24576    ----a-w-    c:\windows\SysWow64\cryptdlg.dll
2013-05-08 06:39 . 2013-06-12 04:28    1910632    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-04-26 05:51 . 2013-06-12 04:28    751104    ----a-w-    c:\windows\system32\win32spl.dll
2013-04-26 04:55 . 2013-06-12 04:28    492544    ----a-w-    c:\windows\SysWow64\win32spl.dll
2013-04-25 23:30 . 2013-06-12 04:26    1505280    ----a-w-    c:\windows\SysWow64\d3d11.dll
2013-02-20 18:16 . 2013-02-20 18:16    112968    ----a-w-    c:\program files\ITDetector.ocx
2013-02-20 17:35 . 2013-02-20 17:35    293192    ----a-w-    c:\program files\iTunesOutlookAddIn.dll
2013-02-20 17:35 . 2013-02-20 17:35    152392    ----a-w-    c:\program files\iTunesHelper.exe
2013-02-20 17:35 . 2013-02-20 17:35    412488    ----a-w-    c:\program files\iTunesAdmin.dll
2013-02-20 17:35 . 2013-02-20 17:35    148808    ----a-w-    c:\program files\iTunesHelper.dll
2013-02-20 17:35 . 2013-02-20 17:35    9789256    ----a-w-    c:\program files\iTunes.exe
2013-02-20 17:35 . 2013-02-20 17:35    22970184    ----a-w-    c:\program files\iTunes.dll
2013-02-20 17:35 . 2013-02-20 17:35    782688    ----a-w-    c:\program files\gnsdk_sdkmanager.dll
2013-02-20 17:35 . 2013-02-20 17:35    3015008    ----a-w-    c:\program files\gnsdk_dsp.dll
2013-02-20 17:35 . 2013-02-20 17:35    269152    ----a-w-    c:\program files\gnsdk_submit.dll
2013-02-20 17:35 . 2013-02-20 17:35    226144    ----a-w-    c:\program files\gnsdk_musicid.dll
2012-08-10 23:03 . 2012-08-10 23:03    739824    ----a-w-    c:\program files (x86)\GoogleEarthSetup.exe
2012-06-12 01:30 . 2012-06-12 01:30    10249568    ----a-w-    c:\program files (x86)\LeapFrogConnectSetup_LeapPadExplorer.exe
2012-05-10 23:27 . 2012-05-10 23:27    4283656    ----a-w-    c:\program files (x86)\McAfeeSetup.exe
2012-03-10 01:27 . 2012-03-10 01:26    22829232    ----a-w-    c:\program files (x86)\media.player.codec.pack.v4.1.8.setup.exe
2011-11-12 01:03 . 2011-11-12 01:03    9852544    ----a-w-    c:\program files\mbam-setup-1.51.2.1300.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HLBackupScheduler"="c:\program files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe" [2011-06-28 4950664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-08-19 487562]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-11-06 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-05-10 37960]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Mobile Connectivity Suite"="c:\program files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe" [2009-11-19 598016]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"Monitor"="c:\program files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe" [2012-09-28 298376]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2012-11-13 450560]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2012-11-30 1263512]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
"iTunesHelper"="c:\program files\iTunesHelper.exe" [2013-02-20 152392]
"McAfeeUpdaterUI"="c:\program files (x86)\McAfee\Common Framework\udaterui.exe" [2012-09-05 333416]
"ShStatEXE"="c:\program files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2012-08-15 215656]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-11-04 559616]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HitmanPro37CrusaderBoot;HitmanPro 3.7 Crusader (Boot);d:\hitmanpro_x64.exe;d:\HitmanPro_x64.exe [x]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
R3 FlyUsb;FLY Fusion;c:\windows\system32\DRIVERS\FlyUsb.sys;c:\windows\SYSNATIVE\DRIVERS\FlyUsb.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 Leapfrog-USBLAN;Leapfrog-USBLAN;c:\windows\system32\DRIVERS\btblan.sys;c:\windows\SYSNATIVE\DRIVERS\btblan.sys [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NWUSBCDFIL64;Novatel Wireless Installation CD;c:\windows\system32\DRIVERS\NwUsbCdFil64.sys;c:\windows\SYSNATIVE\DRIVERS\NwUsbCdFil64.sys [x]
R3 NWUSBPort2;Novatel Wireless USB Status2 Port Driver;c:\windows\system32\DRIVERS\nwusbser2.sys;c:\windows\SYSNATIVE\DRIVERS\nwusbser2.sys [x]
R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms;c:\program files\dell support center\pcdsrvc_x64.pkms [x]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 SMSIVZAM5X64;SMSIVZAM5X64 NDIS Protocol Driver;c:\progra~2\VERIZO~1\VZACCE~1\SMSIVZAM5X64.SYS;c:\progra~2\VERIZO~1\VZACCE~1\SMSIVZAM5X64.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe;c:\program files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys;c:\windows\SYSNATIVE\DRIVERS\WDKMD.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 89941613
*NewlyCreated* - 92817126
*NewlyCreated* - WS2IFSL
*Deregistered* - 89941613
*Deregistered* - 92817126
*Deregistered* - mfeavfk01
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 19:10]
.
2013-07-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-10 23:04]
.
2013-07-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-10 23:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-20 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-20 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-20 418328]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-25 525312]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-01-05 592240]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2010-11-03 10228224]
"DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-01-25 1802472]
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.aol.com/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
FF - ProfilePath - c:\users\Ste\AppData\Roaming\Mozilla\Firefox\Profiles\qn8fd04c.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
SafeBoot-89941613.sys
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\HitmanPro37CrusaderBoot]
"ImagePath"="\"d:\hitmanpro_x64.exe\" /crusader:boot"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-07-16  23:54:33
ComboFix-quarantined-files.txt  2013-07-17 03:54
.
Pre-Run: 373,950,455,808 bytes free
Post-Run: 373,884,424,192 bytes free
.
- - End Of File - - EE53A432CD74A734713281ADE9C3AA89
D41D8CD98F00B204E9800998ECF8427E
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users