Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

EasyLife App and possibily other viruses on Parent's Vista machine


  • This topic is locked This topic is locked
12 replies to this topic

#1 atdavidson

atdavidson

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 31 August 2013 - 10:58 AM

Hi bleeping computer experts!

 

I'm currently visiting my parents and they've asked me to look at their computer which is running slowly, showing lots of popups and had the homepage of browsers changed to EasyLifeApp?

 

They've tried to uninstall a few things that they thought were viruses, but have now asked me to take a look.  I'm no computer expert, but I've been told this forum is the best place to go for help.

 

I've read through the preperation guide so hopefully I've provided the information required.

 

Below is the text from my DDS.txt file and I've attached the Attach.txt file.

 

Many thanks in advance for your help :-)

 

Adam

 

-----------------------------------------------

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660
Run by Kath at 16:48:34 on 2013-08-31
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.44.1033.18.1966.394 [GMT 1:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\Kath\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe
C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Sony\VAIO Power Management\SPMService.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Apoint\Apvfb.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Sony\VCM Manager Settings\VcmMgrNotification64.exe
C:\Program Files\Sony\VAIO Update\VUAgent.exe
C:\Program Files\Sony\VAIO Care\VCPerfService.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files\Sony\VAIO Care\VCsystray.exe
C:\Program Files\Sony\VAIO Care\VCService.exe
C:\Program Files\Sony\VAIO Care\VCAgent.exe
C:\Windows\System32\vds.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Sony\VAIO Care\Admload.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\taskeng.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.co.uk/?gws_rd=cr
mStart Page = hxxp://searchy.easylifeapp.com/?pid=34&src=ie1&r=2013/08/25&hid=1815907041&lg=EN&cc=GB
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: SearchNewTab: {2A4A099A-6527-1151-22E6-8B12BCA42000} - C:\ProgramData\SearchNewTab\yZ.dll
BHO: SearchNewTab: {36508893-8518-E609-E9D6-9E18AFB0EA16} - C:\ProgramData\SearchNewTab\6elL.dll
BHO: sauveneshhAre.: {4E27A2A6-40B0-0A82-C215-C9C3E07E9206} - C:\ProgramData\sauveneshhAre\PdDPXP.dll
BHO: SearchNewTab: {6153BF3B-1444-77B6-308B-EF5C2A2E1832} - C:\ProgramData\SearchNewTab\Z.dll
BHO: savenasharre.: {62EAA59F-B188-8705-F607-957AAF105CE7} - C:\ProgramData\savenasharre\Dl6.dll
BHO: SearchNewTab: {6B7139C9-68E5-CA80-97C0-FB4FB61E1F9E} - C:\ProgramData\SearchNewTab\I.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: savensHoare: {9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8} - C:\ProgramData\savensHoare\5da_7e.dll
BHO: SearchNewTab: {D0B3752E-4C7D-E671-2704-191934F9E0FA} - C:\ProgramData\SearchNewTab\NbwiHy.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: sAvenshare: {E482BE60-BDCF-EBFF-75D9-D809D34AC9E8} - C:\ProgramData\sAvenshare\YL75Xh.dll
BHO: sAvenshare o: {E5652C57-FE93-D49E-3668-EC66E470D8FB} - C:\ProgramData\sAvenshare o\C7xl3a.dll
BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
uRun: [MyTomTomSA.exe] "C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"
uRun: [Elbserver] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe /Stay
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Conime] C:\Windows\System32\conime.exe
mRun: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
mRun: [EKIJ5000StatusMonitor] C:\Windows\System32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [EKStatusMonitor] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe
dRunOnce: [KodakHomeCenter] "C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe"
StartupFolder: C:\Users\Kath\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Kath\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - {BC0E0A5D-AB5A-4fa4-A5FA-280E1D58EEEE} - c:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll
IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
TCP: NameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{EB67E911-867D-4C13-AE00-E3C7ECA0A89B} : DHCPNameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{EB67E911-867D-4C13-AE00-E3C7ECA0A89B}\144616D6723702960586F6E656 : DHCPNameServer = 172.30.139.17 172.31.139.17
TCP: Interfaces\{EB67E911-867D-4C13-AE00-E3C7ECA0A89B}\244584572633D2641583E4 : DHCPNameServer = 192.168.1.254 192.168.1.254
TCP: Interfaces\{EB67E911-867D-4C13-AE00-E3C7ECA0A89B}\A556078697275737 : DHCPNameServer = 192.168.0.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs= c:\progra~3\browse~1\261070~1.41\{c16c1~1\browse~1.dll c:\progra~2\savesh~1\sprote~1.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Apoint] C:\Program Files (x86)\Apoint\Apoint.exe
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [EKIJ5000StatusMonitor] C:\Windows\System32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\
FF - prefs.js: browser.search.defaulturl - hxxp://searchy.easylifeapp.com/?pid=34&src=ff2&r=2013/08/25&hid=1815907041&lg=EN&cc=GB&l=1&q=
FF - prefs.js: browser.search.selectedEngine - EasyLife
FF - prefs.js: browser.startup.homepage - hxxp://searchy.easylifeapp.com/?pid=34&src=ff1&r=2013/08/25&hid=1815907041&lg=EN&cc=GB
FF - prefs.js: keyword.URL - hxxp://searchy.easylifeapp.com/?pid=34&src=ff2&r=2013/08/25&hid=1815907041&lg=EN&cc=GB&l=1&q=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10174.dll
FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll
FF - plugin: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
FF - ExtSQL: 2013-08-25 15:15; {ACAA314B-EEBA-48e4-AD47-84E31C44796C}; C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF - ExtSQL: 2013-08-25 16:16; uyoedg4q@afrqpd.org; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org
FF - ExtSQL: 2013-08-25 16:16; r0eful_iadz@wcb-oyaysczh.net; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net
FF - ExtSQL: 2013-08-25 16:16; pkaohm8alak@jaszhjgpwtqiye.net; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net
FF - ExtSQL: 2013-08-25 16:16; i0v6x@rzgsaj.com; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com
FF - ExtSQL: 2013-08-25 16:16; gnltpvrh@uty-.net; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net
FF - ExtSQL: 2013-08-25 16:16; aooeeey_k6@lwko-.net; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net
FF - ExtSQL: 2013-08-25 16:16; 3tze7nap7@uu-qdjh.co.uk; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk
FF - ExtSQL: 2013-08-25 16:16; 2twv0rgtb@ougwrb.edu; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu
FF - ExtSQL: 2013-08-25 16:40; eiuaacmac@h-oueo.com; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com
FF - ExtSQL: 2013-08-25 16:40; dwtzrbdnchzjm@luai-oky.org; C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-1-20 230320]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-9-5 55280]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-10-8 202752]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2011-4-27 130008]
R2 rimspci;rimspci;C:\Windows\System32\drivers\rimssne64.sys [2009-12-25 93696]
R2 risdsnpe;risdsnpe;C:\Windows\System32\drivers\risdsne64.sys [2009-12-25 75776]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\System32\drivers\ArcSoftKsUFilter.sys [2011-9-5 19968]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2009-12-25 56344]
R3 SFEP;Sony Firmware Extension Parser;C:\Windows\System32\drivers\SFEP.sys [2009-12-25 11392]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-12-25 395264]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-25 13336]
S3 btusbflt;Bluetooth USB Filter;C:\Windows\System32\drivers\btusbflt.sys [2009-12-25 52264]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2009-12-25 35104]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-6-23 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2009-12-25 151936]
S3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2009-12-25 244736]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-9-5 59392]
.
=============== Created Last 30 ================
.
2013-08-31 09:20:02    9515512    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A10598D3-3B11-40CF-8C80-1FCDD0164890}\mpengine.dll
2013-08-29 19:35:22    9515512    ------w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-08-26 20:40:39    --------    d-----w-    C:\Program Files (x86)\VS Revo Group
2013-08-25 15:46:57    --------    d-----w-    C:\MaxAVLiveUpdate
2013-08-25 15:22:48    --------    d-----w-    C:\ProgramData\sAvenshare o
2013-08-25 15:19:20    --------    d-----w-    C:\ProgramData\Max Secure
2013-08-25 15:17:03    --------    d-----w-    C:\ProgramData\DoctoAntivirus
2013-08-25 15:16:06    --------    d-----w-    C:\ProgramData\savenasharre
2013-08-25 15:14:57    --------    d-----w-    C:\Users\Kath\AppData\Local\DoctoAntivirus
2013-08-25 15:14:39    --------    d-----w-    C:\ProgramData\savensHoare
2013-08-25 15:09:55    --------    d-----w-    C:\ProgramData\sAvenshare
2013-08-25 15:08:50    --------    d-----w-    C:\ProgramData\StarApp
2013-08-25 15:08:27    --------    d-----w-    C:\Users\Kath\AppData\Roaming\SendSpace
2013-08-25 15:08:23    --------    d-----w-    C:\ProgramData\SearchNewTab
2013-08-25 15:08:02    --------    d-----w-    C:\Program Files (x86)\Optimizer Pro
2013-08-25 15:07:45    --------    d-----w-    C:\Program Files (x86)\SaveShare
2013-08-25 15:07:41    --------    d-----w-    C:\ProgramData\sauveneshhAre
2013-08-25 15:07:18    --------    d-----w-    C:\ProgramData\InstallMate
2013-08-25 14:16:14    --------    d-----w-    C:\Users\Kath\AppData\Roaming\DVDVideoSoftIEHelpers
2013-08-25 14:14:39    --------    d-----w-    C:\Program Files (x86)\Common Files\DVDVideoSoft
2013-08-25 14:14:38    --------    d-----w-    C:\Users\Kath\AppData\Roaming\DVDVideoSoft
2013-08-25 14:14:37    --------    d-----w-    C:\Program Files (x86)\DVDVideoSoft
2013-08-25 14:13:36    --------    d-----w-    C:\Users\Kath\AppData\Local\Programs
2013-08-22 20:55:12    17737608    ----a-w-    C:\Windows\SysWow64\FlashPlayerInstaller.exe
2013-08-22 19:49:47    941720    ------w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49A5710C-33E9-478E-A87E-9CCF78DEDBAB}\gapaengine.dll
2013-08-15 20:00:59    89600    ----a-w-    C:\Windows\System32\RegisterIEPKEYs.exe
2013-08-15 15:30:54    1472512    ----a-w-    C:\Windows\System32\crypt32.dll
2013-08-05 21:13:13    --------    d-----w-    C:\Users\Kath\AppData\Local\{B98E3416-B32B-4B13-BDA0-A104904B9FC5}
2013-08-03 09:20:44    --------    d-----w-    C:\Users\Kath\AppData\Local\{ADDFD24C-BB83-4554-9834-22BC55CD6783}
2013-08-02 08:53:23    --------    d-----w-    C:\Users\Kath\AppData\Local\{097ACD76-2176-4658-B7BD-95C60C9B33EE}
.
==================== Find3M  ====================
.
2013-08-22 20:55:33    692104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-08-22 20:55:32    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-26 05:13:37    2241024    ----a-w-    C:\Windows\System32\wininet.dll
2013-07-26 05:12:08    3958784    ----a-w-    C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04    136704    ----a-w-    C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03    67072    ----a-w-    C:\Windows\System32\iesetup.dll
2013-07-26 03:35:08    2706432    ----a-w-    C:\Windows\System32\mshtml.tlb
2013-07-26 03:13:24    1767936    ----a-w-    C:\Windows\SysWow64\wininet.dll
2013-07-26 03:12:04    2877440    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00    61440    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00    109056    ----a-w-    C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:49:14    2706432    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2013-07-26 01:59:38    71680    ----a-w-    C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-07-25 09:25:54    1888768    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27    1620992    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-19 01:58:42    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-07-19 01:41:01    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2013-07-09 06:03:30    5550528    ----a-w-    C:\Windows\System32\ntoskrnl.exe
2013-07-09 05:54:22    1732032    ----a-w-    C:\Windows\System32\ntdll.dll
2013-07-09 05:53:12    243712    ----a-w-    C:\Windows\System32\wow64.dll
2013-07-09 05:52:52    224256    ----a-w-    C:\Windows\System32\wintrust.dll
2013-07-09 05:51:16    1217024    ----a-w-    C:\Windows\System32\rpcrt4.dll
2013-07-09 05:46:20    184320    ----a-w-    C:\Windows\System32\cryptsvc.dll
2013-07-09 05:46:20    139776    ----a-w-    C:\Windows\System32\cryptnet.dll
2013-07-09 05:03:34    3968960    ----a-w-    C:\Windows\SysWow64\ntkrnlpa.exe
2013-07-09 05:03:34    3913664    ----a-w-    C:\Windows\SysWow64\ntoskrnl.exe
2013-07-09 04:53:47    1292192    ----a-w-    C:\Windows\SysWow64\ntdll.dll
2013-07-09 04:52:33    663552    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
2013-07-09 04:52:33    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2013-07-09 04:52:10    175104    ----a-w-    C:\Windows\SysWow64\wintrust.dll
2013-07-09 04:46:31    140288    ----a-w-    C:\Windows\SysWow64\cryptsvc.dll
2013-07-09 04:46:31    1166848    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2013-07-09 04:46:31    103936    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2013-07-09 04:45:07    44032    ----a-w-    C:\Windows\apppatch\acwow64.dll
2013-07-09 02:49:42    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2013-07-09 02:49:41    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2013-07-09 02:49:39    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2013-07-09 02:49:38    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2013-07-06 06:03:53    1910208    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2013-06-15 04:32:16    39936    ----a-w-    C:\Windows\System32\drivers\tssecsrv.sys
2013-06-05 03:34:27    3153920    ----a-w-    C:\Windows\System32\win32k.sys
2013-06-04 21:03:48    9728    ---ha-w-    C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-04 06:00:13    624128    ----a-w-    C:\Windows\System32\qedit.dll
2013-06-04 04:53:07    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
.
============= FINISH: 16:53:47.91 ===============
 

 

Attached Files



BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:13 PM

Posted 31 August 2013 - 11:04 AM

Hello atdavidson,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the Post button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
1.
Download AdwCleaner
  • Double click on AdwCleaner.exe to run the tool.
    ***Note: Windows Vista and Windows 7 users:
    Right click in the adwCleaner.exe and select
    Run%20as%20admin.png
  • Click the Delete button.
  • A logfile will automatically open after the scan has finished.
  • Please post the content of that logfile in your next reply.
  • Or you can find the logfile at C:\AdwCleaner[R1].txt.
2.
  • Download RogueKiller on the desktop
  • Close all the running processes
  • Under Vista/Seven, right click -> Run as Administrator
  • Otherwise just double-click on RogueKiller.exe
  • When prompted, Click Scan
  • A report should open, give its content to your helper. (RKreport could also be found next to the executable)
  • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename in winlogon.exe (or winlogon.com) and try again
Things to include in your next reply::
AdwCleaner log
Roguekiller log
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 atdavidson

atdavidson
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 31 August 2013 - 11:40 AM

Hi fireman4it, many thanks for your quick reply.

 

Please find the logs from AdwCleaner and RougeKiller below.  Apologies, I was a little confused, should I have used these programs to Clean the computer?  I've only used them to scan and report so far, so please let me know if I should have selected the clean option (there didn't seem to be a "delete" button in AdwCleaner as your post described).

 

Here is the log from AdwCleaner:

---------------------------------------

# AdwCleaner v3.001 - Report created 31/08/2013 at 17:14:35
# Updated 24/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Kath - KATH-VAIO
# Running from : C:\Users\Kath\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
File Found : C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\searchplugins\EasyLife.xml
File Found : C:\Windows\System32\roboot64.exe
File Found : C:\Windows\System32\Tasks\PC Optimizer Pro Updates
File Found : C:\Windows\Tasks\PC Optimizer Pro Updates.job
Folder Found C:\Program Files (x86)\file scout
Folder Found C:\Program Files (x86)\optimizer pro
Folder Found C:\ProgramData\apn
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\InstallMate
Folder Found C:\ProgramData\Partner
Folder Found C:\ProgramData\PC Optimizer Pro
Folder Found C:\ProgramData\sauveneshhAre
Folder Found C:\ProgramData\savenasharre
Folder Found C:\ProgramData\savenasharre
Folder Found C:\ProgramData\sAvenshare
Folder Found C:\ProgramData\sAvenshare o
Folder Found C:\ProgramData\savensHoare
Folder Found C:\ProgramData\SearchNewTab
Folder Found C:\ProgramData\StarApp
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\ProgramData\Uniblue\DriverScanner
Folder Found C:\Users\Kath\AppData\LocalLow\sauveneshhAre
Folder Found C:\Users\Kath\AppData\LocalLow\savenasharre
Folder Found C:\Users\Kath\AppData\LocalLow\savenasharre
Folder Found C:\Users\Kath\AppData\LocalLow\sAvenshare
Folder Found C:\Users\Kath\AppData\LocalLow\sAvenshare o
Folder Found C:\Users\Kath\AppData\LocalLow\savensHoare
Folder Found C:\Users\Kath\AppData\LocalLow\SearchNewTab
Folder Found C:\Users\Kath\AppData\Roaming\Babylon
Folder Found C:\Users\Kath\AppData\Roaming\DefaultTab
Folder Found C:\Users\Kath\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\Kath\AppData\Roaming\file scout
Folder Found C:\Users\Kath\AppData\Roaming\PerformerSoft
Folder Found C:\Users\Kath\AppData\Roaming\SendSpace

***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\savesh~1\sprote~1.dll
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\browse~1\261070~1.41\{c16c1~1\browse~1.dll
Key Found : HKCU\Software\59e8dd9bd3ce940
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\Default Tab
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{01BD49D7-C76B-4310-8BEB-14D7E5F322C6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\performersoft llc
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\DataMngr_Toolbar
Key Found : [x64] HKCU\Software\Default Tab
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{01BD49D7-C76B-4310-8BEB-14D7E5F322C6}
Key Found : [x64] HKCU\Software\performersoft llc
Key Found : HKLM\SOFTWARE\59e8dd9bd3ce940
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\Default Tab
Key Found : HKLM\Software\DeviceVM
Key Found : HKLM\Software\Freeze.com
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{01BD49D7-C76B-4310-8BEB-14D7E5F322C6}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_703c874a
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\Uniblue\DriverScanner
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\DeviceVM
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://searchy.easylifeapp.com/?pid=34&src=ie1&r=2013/08/25&hid=1815907041&lg=EN&cc=GB

-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\prefs.js ]

Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("browser.search.defaultenginename", "EasyLife");
Line Found : user_pref("browser.search.defaultenginename,S", "EasyLife");
Line Found : user_pref("browser.search.defaulturl", "hxxp://searchy.easylifeapp.com/?pid=34&src=ff2&r=2013/08/25&hid=1815907041&lg=EN&cc=GB&l=1&q=");
Line Found : user_pref("browser.search.order.1", "EasyLife");
Line Found : user_pref("browser.search.order.1,S", "EasyLife");
Line Found : user_pref("browser.search.selectedEngine", "EasyLife");
Line Found : user_pref("browser.search.selectedEngine,S", "EasyLife");
Line Found : user_pref("browser.startup.homepage", "hxxp://searchy.easylifeapp.com/?pid=34&src=ff1&r=2013/08/25&hid=1815907041&lg=EN&cc=GB");
Line Found : user_pref("extensions.3c63I.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74055[...]
Line Found : user_pref("extensions.7dN8.scode", "(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.setIt[...]
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.LExNoQc9.scode", "(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.s[...]
Line Found : user_pref("extensions.USS.scode", "(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.setIte[...]
Line Found : user_pref("extensions.ZuiPYshy.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Found : user_pref("extensions.fA3.scode", "(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.setIte[...]
Line Found : user_pref("extensions.hjLOZL.scode", "(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.set[...]
Line Found : user_pref("extensions.kxadESpJ.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Found : user_pref("extensions.ozFHtLIe.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Found : user_pref("extensions.weylfIxn.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Found : user_pref("keyword.URL", "hxxp://searchy.easylifeapp.com/?pid=34&src=ff2&r=2013/08/25&hid=1815907041&lg=EN&cc=GB&l=1&q=");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v29.0.1547.62

[ File : C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : homepage
Found : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [14823 octets] - [31/08/2013 17:14:35]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [14884 octets] ##########
 

 

 

 

 

 

 

---------------------------

And here is the log from RougeKiller:

-------------------------------

RogueKiller V8.6.7 [Aug 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Kath [Admin rights]
Mode : Scan -- Date : 08/31/2013 17:32:22
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK5055GSX +++++
--- User ---
[MBR] 7b249393c71ffacaf1cfffe950bbd286
[BSP] bfa8a52c7f6b425fb322c74022b96224 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10870 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 22263808 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 22468608 | Size: 465967 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: TOSHIBA MK5055GSX +++++
--- User ---
[MBR] ca5da364d7fd96f7329fc088decfb259
[BSP] 6eac287ebd357558dd42f26f024b7bdb : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 1907726 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[0]_S_08312013_173222.txt >>



 

Thanks again for your help!



#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:13 PM

Posted 31 August 2013 - 06:40 PM

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

 

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 atdavidson

atdavidson
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 01 September 2013 - 05:29 AM

Thanks again for your help.

 

As I said in my previous post, there is no "Delete" button in Adwcleaner so I've assumed you mean the "Clean" button.  Apologies for seeming pedantic, but I'm trying to follow instructions exactly so I won't break anything.

 

The homepage of browsers seems to be back to Google and EasyLifeApp has been removed from the quick search option, but there are still popups appearing whenever I navigate to a website (including this one).  I briefly saw the message "this advert brought to you by a webextension" when the popup first loaded, then an advert appeared.

 

Here is the log from Adwcleaner:

 

# AdwCleaner v3.001 - Report created 01/09/2013 at 11:17:08
# Updated 24/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Kath - KATH-VAIO
# Running from : C:\Users\Kath\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\PC Optimizer Pro
Folder Deleted : C:\ProgramData\StarApp
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Uniblue\DriverScanner
Folder Deleted : C:\ProgramData\sauveneshhAre
Folder Deleted : C:\ProgramData\savenasharre
Folder Deleted : C:\ProgramData\sAvenshare
Folder Deleted : C:\ProgramData\sAvenshare o
Folder Deleted : C:\ProgramData\savensHoare
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\Program Files (x86)\file scout
Folder Deleted : C:\Program Files (x86)\optimizer pro
Folder Deleted : C:\Users\Kath\AppData\LocalLow\sauveneshhAre
Folder Deleted : C:\Users\Kath\AppData\LocalLow\savenasharre
Folder Deleted : C:\Users\Kath\AppData\LocalLow\sAvenshare
Folder Deleted : C:\Users\Kath\AppData\LocalLow\sAvenshare o
Folder Deleted : C:\Users\Kath\AppData\LocalLow\savensHoare
Folder Deleted : C:\Users\Kath\AppData\LocalLow\SearchNewTab
Folder Deleted : C:\Users\Kath\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Kath\AppData\Roaming\DefaultTab
Folder Deleted : C:\Users\Kath\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Kath\AppData\Roaming\file scout
Folder Deleted : C:\Users\Kath\AppData\Roaming\PerformerSoft
Folder Deleted : C:\Users\Kath\AppData\Roaming\SendSpace
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\searchplugins\EasyLife.xml
File Deleted : C:\Windows\Tasks\PC Optimizer Pro Updates.job
File Deleted : C:\Windows\System32\Tasks\PC Optimizer Pro Updates

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_703c874a
Key Deleted : HKCU\Software\59e8dd9bd3ce940
Key Deleted : HKLM\SOFTWARE\59e8dd9bd3ce940
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4E27A2A6-40B0-0A82-C215-C9C3E07E9206}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{62EAA59F-B188-8705-F607-957AAF105CE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E482BE60-BDCF-EBFF-75D9-D809D34AC9E8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E5652C57-FE93-D49E-3668-EC66E470D8FB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9F548D0B-18C2-4B2B-D5F9-1E172D3C05A8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6153BF3B-1444-77B6-308B-EF5C2A2E1832}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{01BD49D7-C76B-4310-8BEB-14D7E5F322C6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{01BD49D7-C76B-4310-8BEB-14D7E5F322C6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\performersoft llc
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\DeviceVM
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Uniblue\DriverScanner
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Deleted : [x64] HKLM\SOFTWARE\DeviceVM
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\browse~1\261070~1.41\{c16c1~1\browse~1.dll
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\savesh~1\sprote~1.dll

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\prefs.js ]

Line Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Line Deleted : user_pref("aol_toolbar.default.search.check", false);
Line Deleted : user_pref("browser.search.defaultenginename", "EasyLife");
Line Deleted : user_pref("browser.search.defaultenginename,S", "EasyLife");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://searchy.easylifeapp.com/?pid=34&src=ff2&r=2013/08/25&hid=1815907041&lg=EN&cc=GB&l=1&q=");
Line Deleted : user_pref("browser.search.order.1", "EasyLife");
Line Deleted : user_pref("browser.search.order.1,S", "EasyLife");
Line Deleted : user_pref("browser.search.selectedEngine", "EasyLife");
Line Deleted : user_pref("browser.search.selectedEngine,S", "EasyLife");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://searchy.easylifeapp.com/?pid=34&src=ff1&r=2013/08/25&hid=1815907041&lg=EN&cc=GB");
Line Deleted : user_pref("extensions.3c63I.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74055[...]
Line Deleted : user_pref("extensions.7dN8.scode", "(function(){try{if(window.opener&&window.self==window.top&&-1==document.cookie.indexOf(\"xcddsa\")&&-1==window.self.location.href.indexOf(\"px.pluginh\")&&window.se[...]
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("extensions.LExNoQc9.scode", "(function(){try{if(window.opener&&window.self==window.top&&-1==document.cookie.indexOf(\"xcddsa\")&&-1==window.self.location.href.indexOf(\"px.pluginh\")&&windo[...]
Line Deleted : user_pref("extensions.USS.scode", "(function(){try{if(window.opener&&window.self==window.top&&-1==document.cookie.indexOf(\"xcddsa\")&&-1==window.self.location.href.indexOf(\"px.pluginh\")&&window.sel[...]
Line Deleted : user_pref("extensions.ZuiPYshy.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Deleted : user_pref("extensions.fA3.scode", "(function(){try{if(window.opener&&window.self==window.top&&-1==document.cookie.indexOf(\"xcddsa\")&&-1==window.self.location.href.indexOf(\"px.pluginh\")&&window.sel[...]
Line Deleted : user_pref("extensions.hjLOZL.scode", "(function(){try{if(window.opener&&window.self==window.top&&-1==document.cookie.indexOf(\"xcddsa\")&&-1==window.self.location.href.indexOf(\"px.pluginh\")&&window.[...]
Line Deleted : user_pref("extensions.kxadESpJ.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Deleted : user_pref("extensions.ozFHtLIe.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Deleted : user_pref("extensions.weylfIxn.scode", "if(window.self==window.top){var script=document.createElement('script');script.type='text/javascript';script.src='//www.superfish.com/ws/sf_main.jsp?dlsource=74[...]
Line Deleted : user_pref("keyword.URL", "hxxp://searchy.easylifeapp.com/?pid=34&src=ff2&r=2013/08/25&hid=1815907041&lg=EN&cc=GB&l=1&q=");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v29.0.1547.62

[ File : C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [15009 octets] - [31/08/2013 17:14:35]
AdwCleaner[R1].txt - [15070 octets] - [01/09/2013 10:17:21]
AdwCleaner[S0].txt - [14253 octets] - [01/09/2013 11:17:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14314 octets] ##########
 



#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:13 PM

Posted 01 September 2013 - 11:51 AM

1.
Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    image000q.png
  • Put a checkmark beside loaded modules.
    2012081514h0118.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    2012081517h0349.png
  • Click the Start Scan button.
    19695967.jpg
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    67776163.jpg
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
2.
Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • RcAuto1.gif
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.
  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    whatnext.png
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


Things to include in your next reply::
TdssKiller log
Combofix.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 atdavidson

atdavidson
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 03 September 2013 - 12:37 AM

Thanks again Fireman4it!

 

The computer seems a lot healthier now.

 

Here is the TDSKiller log 1 (I've had to split the post as it's too long)

 

----------------------------

21:26:42.0401 0x127c  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
21:26:42.0611 0x127c  ============================================================
21:26:42.0611 0x127c  Current date / time: 2013/09/02 21:26:42.0611
21:26:42.0611 0x127c  SystemInfo:
21:26:42.0611 0x127c  
21:26:42.0611 0x127c  OS Version: 6.1.7601 ServicePack: 1.0
21:26:42.0611 0x127c  Product type: Workstation
21:26:42.0611 0x127c  ComputerName: KATH-VAIO
21:26:42.0611 0x127c  UserName: Kath
21:26:42.0611 0x127c  Windows directory: C:\Windows
21:26:42.0611 0x127c  System windows directory: C:\Windows
21:26:42.0611 0x127c  Running under WOW64
21:26:42.0611 0x127c  Processor architecture: Intel x64
21:26:42.0611 0x127c  Number of processors: 4
21:26:42.0611 0x127c  Page size: 0x1000
21:26:42.0611 0x127c  Boot type: Normal boot
21:26:42.0611 0x127c  ============================================================
21:26:44.0951 0x127c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:26:45.0061 0x127c  ============================================================
21:26:45.0061 0x127c  \Device\Harddisk0\DR0:
21:26:45.0101 0x127c  MBR partitions:
21:26:45.0101 0x127c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x153B800, BlocksNum 0x32000
21:26:45.0101 0x127c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x156D800, BlocksNum 0x38E17FF0
21:26:45.0101 0x127c  ============================================================
21:26:45.0161 0x127c  C: <-> \Device\Harddisk0\DR0\Partition2
21:26:45.0161 0x127c  ============================================================
21:26:45.0161 0x127c  Initialize success
21:26:45.0161 0x127c  ============================================================
21:27:29.0618 0x1710  Deinitialize success
 



#8 atdavidson

atdavidson
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 03 September 2013 - 12:43 AM

TDS Log 2 is too big to attach or post so her it is in parts:

21:29:49.0664 0x11fc  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
21:29:49.0867 0x11fc  ============================================================
21:29:49.0867 0x11fc  Current date / time: 2013/09/02 21:29:49.0867
21:29:49.0867 0x11fc  SystemInfo:
21:29:49.0867 0x11fc  
21:29:49.0867 0x11fc  OS Version: 6.1.7601 ServicePack: 1.0
21:29:49.0867 0x11fc  Product type: Workstation
21:29:49.0867 0x11fc  ComputerName: KATH-VAIO
21:29:49.0867 0x11fc  UserName: Kath
21:29:49.0867 0x11fc  Windows directory: C:\Windows
21:29:49.0867 0x11fc  System windows directory: C:\Windows
21:29:49.0867 0x11fc  Running under WOW64
21:29:49.0867 0x11fc  Processor architecture: Intel x64
21:29:49.0867 0x11fc  Number of processors: 4
21:29:49.0867 0x11fc  Page size: 0x1000
21:29:49.0867 0x11fc  Boot type: Normal boot
21:29:49.0867 0x11fc  ============================================================
21:29:49.0867 0x11fc  BG loaded
21:29:50.0959 0x11fc  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:29:51.0068 0x11fc  ============================================================
21:29:51.0068 0x11fc  \Device\Harddisk0\DR0:
21:29:51.0068 0x11fc  MBR partitions:
21:29:51.0068 0x11fc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x153B800, BlocksNum 0x32000
21:29:51.0068 0x11fc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x156D800, BlocksNum 0x38E17FF0
21:29:51.0068 0x11fc  ============================================================
21:29:51.0115 0x11fc  C: <-> \Device\Harddisk0\DR0\Partition2
21:29:51.0115 0x11fc  ============================================================
21:29:51.0115 0x11fc  Initialize success
21:29:51.0115 0x11fc  ============================================================
21:30:03.0080 0x11fc  ============================================================
21:30:03.0080 0x11fc  Scan started
21:30:03.0080 0x11fc  Mode: Manual; SigCheck; TDLFS;
21:30:03.0080 0x11fc  ============================================================
21:30:19.0181 0x11fc  ================ Scan system memory ========================
21:30:19.0181 0x11fc  System memory - ok
21:30:19.0181 0x11fc  ================ Scan services =============================
21:30:20.0481 0x11fc  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:30:20.0991 0x11fc  1394ohci - ok
21:30:21.0801 0x11fc  [ 769DB4F484957CC98153B3C1B5D1162F ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:30:21.0881 0x11fc  ACDaemon - ok
21:30:22.0521 0x11fc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:30:22.0753 0x11fc  ACPI - ok
21:30:23.0081 0x11fc  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:30:24.0096 0x11fc  AcpiPmi - ok
21:30:24.0798 0x11fc  [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:30:24.0813 0x11fc  AdobeARMservice - ok
21:30:26.0295 0x11fc  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:30:27.0434 0x11fc  AdobeFlashPlayerUpdateSvc - ok
21:30:27.0996 0x11fc  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:30:28.0105 0x11fc  adp94xx - ok
21:30:28.0542 0x11fc  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:30:29.0602 0x11fc  adpahci - ok
21:30:29.0665 0x11fc  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:30:29.0696 0x11fc  adpu320 - ok
21:30:29.0914 0x11fc  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:30:35.0764 0x11fc  AeLookupSvc - ok
21:30:36.0170 0x11fc  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
21:30:36.0264 0x11fc  AFD - ok
21:30:36.0716 0x11fc  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:30:36.0747 0x11fc  agp440 - ok
21:30:37.0168 0x11fc  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
21:30:37.0262 0x11fc  ALG - ok
21:30:37.0995 0x11fc  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:30:38.0245 0x11fc  aliide - ok
21:30:38.0479 0x11fc  [ 3F9B03B72577A6A7405BF30801CBD159 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:30:38.0588 0x11fc  AMD External Events Utility - ok
21:30:38.0916 0x11fc  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
21:30:38.0978 0x11fc  amdide - ok
21:30:39.0274 0x11fc  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:30:39.0430 0x11fc  AmdK8 - ok
21:30:41.0739 0x11fc  [ EA244A8B88DE8B5986BF3B7903B063AF ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
21:30:43.0720 0x11fc  amdkmdag - ok
21:30:43.0767 0x11fc  [ DCA6E341A4A7C31EA8A14C6166C9B249 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
21:30:44.0844 0x11fc  amdkmdap - ok
21:30:46.0404 0x11fc  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
21:30:47.0184 0x11fc  AmdPPM - ok
21:30:47.0542 0x11fc  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:30:47.0620 0x11fc  amdsata - ok
21:30:48.0120 0x11fc  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:30:48.0229 0x11fc  amdsbs - ok
21:30:48.0759 0x11fc  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:30:48.0868 0x11fc  amdxata - ok
21:30:49.0477 0x11fc  [ 1661F9C9E4B0049FA0A5E30264375A87 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
21:30:49.0524 0x11fc  ApfiltrService - ok
21:30:49.0602 0x11fc  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
21:30:57.0105 0x11fc  AppID - ok
21:30:57.0168 0x11fc  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:30:57.0589 0x11fc  AppIDSvc - ok
21:30:58.0275 0x11fc  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
21:30:58.0759 0x11fc  Appinfo - ok
21:30:58.0915 0x11fc  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:30:59.0024 0x11fc  Apple Mobile Device - ok
21:30:59.0149 0x11fc  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
21:30:59.0320 0x11fc  arc - ok
21:31:00.0007 0x11fc  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:31:00.0085 0x11fc  arcsas - ok
21:31:00.0194 0x11fc  [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
21:31:00.0366 0x11fc  ArcSoftKsUFilter - ok
21:31:00.0522 0x11fc  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:31:01.0224 0x11fc  AsyncMac - ok
21:31:01.0380 0x11fc  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
21:31:01.0598 0x11fc  atapi - ok
21:31:02.0565 0x11fc  [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
21:31:03.0860 0x11fc  athr - ok
21:31:04.0890 0x11fc  [ EA244A8B88DE8B5986BF3B7903B063AF ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
21:31:05.0420 0x11fc  atikmdag - ok
21:31:05.0763 0x11fc  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:31:06.0621 0x11fc  AudioEndpointBuilder - ok
21:31:06.0808 0x11fc  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:31:07.0276 0x11fc  AudioSrv - ok
21:31:07.0542 0x11fc  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:31:08.0197 0x11fc  AxInstSV - ok
21:31:09.0117 0x11fc  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
21:31:11.0254 0x11fc  b06bdrv - ok
21:31:11.0676 0x11fc  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:31:12.0097 0x11fc  b57nd60a - ok
21:31:12.0237 0x11fc  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:31:12.0596 0x11fc  BDESVC - ok
21:31:13.0173 0x11fc  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:31:13.0610 0x11fc  Beep - ok
21:31:13.0813 0x11fc  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
21:31:14.0562 0x11fc  BFE - ok
21:31:14.0952 0x11fc  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
21:31:16.0824 0x11fc  BITS - ok
21:31:16.0917 0x11fc  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:31:16.0964 0x11fc  blbdrive - ok
21:31:18.0321 0x11fc  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:31:18.0430 0x11fc  Bonjour Service - ok
21:31:18.0805 0x11fc  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:31:19.0288 0x11fc  bowser - ok
21:31:19.0413 0x11fc  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
21:31:20.0443 0x11fc  BrFiltLo - ok
21:31:20.0490 0x11fc  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
21:31:20.0724 0x11fc  BrFiltUp - ok
21:31:21.0051 0x11fc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
21:31:21.0394 0x11fc  Browser - ok
21:31:21.0535 0x11fc  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:31:21.0940 0x11fc  Brserid - ok
21:31:22.0689 0x11fc  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:31:23.0157 0x11fc  BrSerWdm - ok
21:31:23.0282 0x11fc  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:31:23.0563 0x11fc  BrUsbMdm - ok
21:31:24.0000 0x11fc  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:31:24.0624 0x11fc  BrUsbSer - ok
21:31:25.0123 0x11fc  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
21:31:26.0028 0x11fc  BthEnum - ok
21:31:26.0215 0x11fc  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:31:26.0402 0x11fc  BTHMODEM - ok
21:31:26.0480 0x11fc  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:31:26.0542 0x11fc  BthPan - ok
21:31:26.0823 0x11fc  [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
21:31:27.0057 0x11fc  BTHPORT - ok
21:31:27.0307 0x11fc  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
21:31:28.0118 0x11fc  bthserv - ok
21:31:28.0258 0x11fc  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
21:31:28.0742 0x11fc  BTHUSB - ok
21:31:28.0882 0x11fc  [ 6E04458E98DAF28826482E41A7A62DF5 ] btusbflt        C:\Windows\system32\drivers\btusbflt.sys
21:31:29.0912 0x11fc  btusbflt - ok
21:31:30.0037 0x11fc  [ 4BDBDB86ABBA924E029FB2683BE7C505 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
21:31:30.0598 0x11fc  btwaudio - ok
21:31:30.0988 0x11fc  [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
21:31:31.0316 0x11fc  btwavdt - ok
21:31:31.0815 0x11fc  [ 31DA517946FFE416442E864592548F8A ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:31:31.0846 0x11fc  btwdins - ok
21:31:31.0956 0x11fc  [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
21:31:32.0174 0x11fc  btwl2cap - ok
21:31:32.0236 0x11fc  [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid        C:\Windows\system32\drivers\btwrchid.sys
21:31:32.0283 0x11fc  btwrchid - ok
21:31:32.0408 0x11fc  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:31:32.0611 0x11fc  cdfs - ok
21:31:33.0063 0x11fc  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
21:31:33.0172 0x11fc  cdrom - ok
21:31:33.0235 0x11fc  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
21:31:33.0579 0x11fc  CertPropSvc - ok
21:31:33.0751 0x11fc  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
21:31:34.0624 0x11fc  circlass - ok
21:31:34.0827 0x11fc  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
21:31:35.0030 0x11fc  CLFS - ok
21:31:35.0685 0x11fc  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:31:35.0732 0x11fc  clr_optimization_v2.0.50727_32 - ok
21:31:35.0966 0x11fc  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:31:35.0997 0x11fc  clr_optimization_v2.0.50727_64 - ok
21:31:36.0169 0x11fc  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
21:31:36.0418 0x11fc  CmBatt - ok
21:31:36.0449 0x11fc  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:31:36.0512 0x11fc  cmdide - ok
21:31:36.0855 0x11fc  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
21:31:37.0354 0x11fc  CNG - ok
21:31:37.0463 0x11fc  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
21:31:37.0479 0x11fc  Compbatt - ok
21:31:37.0807 0x11fc  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
21:31:38.0025 0x11fc  CompositeBus - ok
21:31:38.0056 0x11fc  COMSysApp - ok
21:31:38.0228 0x11fc  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:31:38.0275 0x11fc  crcdisk - ok
21:31:38.0431 0x11fc  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:31:38.0961 0x11fc  CryptSvc - ok
21:31:39.0382 0x11fc  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:31:39.0538 0x11fc  DcomLaunch - ok
21:31:39.0803 0x11fc  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
21:31:40.0069 0x11fc  defragsvc - ok
21:31:40.0162 0x11fc  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:31:40.0225 0x11fc  DfsC - ok
21:31:40.0381 0x11fc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:31:40.0443 0x11fc  Dhcp - ok
21:31:40.0817 0x11fc  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
21:31:40.0895 0x11fc  discache - ok
21:31:41.0192 0x11fc  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
21:31:41.0223 0x11fc  Disk - ok
21:31:41.0519 0x11fc  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:31:42.0299 0x11fc  Dnscache - ok
21:31:42.0596 0x11fc  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:31:42.0814 0x11fc  dot3svc - ok
21:31:43.0251 0x11fc  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
21:31:43.0501 0x11fc  DPS - ok
21:31:44.0078 0x11fc  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:31:44.0125 0x11fc  drmkaud - ok
21:31:44.0390 0x11fc  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:31:44.0452 0x11fc  DXGKrnl - ok
21:31:44.0764 0x11fc  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
21:31:44.0827 0x11fc  EapHost - ok
21:31:46.0184 0x11fc  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
21:31:46.0652 0x11fc  ebdrv - ok
21:31:46.0699 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
21:31:47.0198 0x11fc  EFS - ok
21:31:47.0884 0x11fc  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:31:48.0836 0x11fc  ehRecvr - ok
21:31:48.0976 0x11fc  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
21:31:49.0663 0x11fc  ehSched - ok
21:31:50.0021 0x11fc  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:31:50.0068 0x11fc  elxstor - ok
21:31:50.0162 0x11fc  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:31:50.0583 0x11fc  ErrDev - ok
21:31:50.0942 0x11fc  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
21:31:51.0129 0x11fc  EventSystem - ok
21:31:51.0847 0x11fc  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
21:31:51.0987 0x11fc  exfat - ok
21:31:52.0502 0x11fc  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:31:52.0595 0x11fc  fastfat - ok
21:31:53.0001 0x11fc  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
21:31:53.0687 0x11fc  Fax - ok
21:31:54.0218 0x11fc  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
21:31:54.0483 0x11fc  fdc - ok
21:31:54.0826 0x11fc  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:31:55.0497 0x11fc  fdPHost - ok
21:31:55.0731 0x11fc  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:31:55.0918 0x11fc  FDResPub - ok
21:31:56.0043 0x11fc  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:31:56.0074 0x11fc  FileInfo - ok
21:31:56.0121 0x11fc  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:31:56.0277 0x11fc  Filetrace - ok
21:31:56.0324 0x11fc  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
21:31:56.0340 0x11fc  flpydisk - ok
21:31:56.0496 0x11fc  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:31:56.0542 0x11fc  FltMgr - ok
21:31:57.0182 0x11fc  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
21:31:57.0634 0x11fc  FontCache - ok
21:31:57.0790 0x11fc  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:31:57.0806 0x11fc  FontCache3.0.0.0 - ok
21:31:58.0227 0x11fc  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:31:58.0258 0x11fc  FsDepends - ok
21:31:58.0633 0x11fc  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
21:31:58.0648 0x11fc  fssfltr - ok
21:31:59.0272 0x11fc  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:31:59.0397 0x11fc  fsssvc - ok
21:31:59.0725 0x11fc  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:31:59.0756 0x11fc  Fs_Rec - ok
21:31:59.0865 0x11fc  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:31:59.0912 0x11fc  fvevol - ok
21:32:00.0021 0x11fc  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:32:00.0037 0x11fc  gagp30kx - ok
21:32:00.0349 0x11fc  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:32:00.0364 0x11fc  GEARAspiWDM - ok
21:32:00.0598 0x11fc  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
21:32:00.0973 0x11fc  gpsvc - ok
21:32:01.0581 0x11fc  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:32:01.0612 0x11fc  gupdate - ok
21:32:01.0846 0x11fc  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:32:01.0846 0x11fc  gupdatem - ok
21:32:01.0909 0x11fc  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:32:01.0987 0x11fc  hcw85cir - ok
21:32:02.0205 0x11fc  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:32:02.0268 0x11fc  HdAudAddService - ok
21:32:02.0439 0x11fc  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
21:32:02.0486 0x11fc  HDAudBus - ok
21:32:02.0642 0x11fc  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\drivers\HECIx64.sys
21:32:02.0658 0x11fc  HECIx64 - ok
21:32:02.0798 0x11fc  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
21:32:02.0892 0x11fc  HidBatt - ok
21:32:02.0923 0x11fc  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:32:03.0001 0x11fc  HidBth - ok
21:32:03.0063 0x11fc  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:32:03.0126 0x11fc  HidIr - ok
21:32:03.0297 0x11fc  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
21:32:03.0391 0x11fc  hidserv - ok
21:32:03.0562 0x11fc  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
21:32:03.0578 0x11fc  HidUsb - ok
21:32:03.0703 0x11fc  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:32:03.0843 0x11fc  hkmsvc - ok
21:32:03.0906 0x11fc  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:32:04.0015 0x11fc  HomeGroupListener - ok
21:32:04.0093 0x11fc  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:32:04.0140 0x11fc  HomeGroupProvider - ok
21:32:04.0218 0x11fc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:32:04.0233 0x11fc  HpSAMD - ok
21:32:04.0374 0x11fc  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:32:04.0545 0x11fc  HTTP - ok
21:32:04.0592 0x11fc  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:32:04.0608 0x11fc  hwpolicy - ok
21:32:04.0795 0x11fc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:32:04.0826 0x11fc  i8042prt - ok
21:32:04.0873 0x11fc  [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
21:32:04.0904 0x11fc  iaStor - ok
21:32:05.0138 0x11fc  [ CC800D2D9FD467542BAC7C186C4774AD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:32:05.0154 0x11fc  IAStorDataMgrSvc - ok
21:32:05.0325 0x11fc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:32:05.0356 0x11fc  iaStorV - ok
21:32:05.0731 0x11fc  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:32:05.0996 0x11fc  idsvc - ok
21:32:07.0119 0x11fc  [ 31D1AFF484D8A0906CF8D44251EC390F ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
21:32:08.0414 0x11fc  igfx ( UnsignedFile.Multi.Generic ) - warning
21:32:08.0414 0x11fc  igfx - detected UnsignedFile.Multi.Generic (1)
21:32:08.0617 0x11fc  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:32:08.0632 0x11fc  iirsp - ok
21:32:08.0773 0x11fc  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
21:32:08.0882 0x11fc  IKEEXT - ok
21:32:09.0100 0x11fc  [ 36FDF367A1DABFF903E2214023D71368 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
21:32:09.0132 0x11fc  Impcd - ok
21:32:09.0849 0x11fc  [ 0F144E5F46CB9043004B5E84AA4BCA6A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:32:09.0974 0x11fc  IntcAzAudAddService - ok
21:32:10.0208 0x11fc  [ 408B401CD7CDB075C7470B0FF7BA8D0B ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
21:32:10.0442 0x11fc  IntcDAud ( UnsignedFile.Multi.Generic ) - warning
21:32:10.0442 0x11fc  IntcDAud - detected UnsignedFile.Multi.Generic (1)
21:32:10.0536 0x11fc  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
21:32:10.0536 0x11fc  intelide - ok
21:32:10.0614 0x11fc  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:32:10.0707 0x11fc  intelppm - ok
21:32:10.0832 0x11fc  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:32:11.0019 0x11fc  IPBusEnum - ok
21:32:11.0222 0x11fc  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:32:11.0300 0x11fc  IpFilterDriver - ok
21:32:11.0550 0x11fc  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:32:11.0830 0x11fc  iphlpsvc - ok
21:32:11.0908 0x11fc  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:32:11.0940 0x11fc  IPMIDRV - ok
21:32:12.0049 0x11fc  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:32:12.0111 0x11fc  IPNAT - ok
21:32:12.0283 0x11fc  [ 0F261EC4F514926177C70C1832374231 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:32:12.0314 0x11fc  iPod Service - ok
21:32:12.0392 0x11fc  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:32:12.0454 0x11fc  IRENUM - ok
21:32:12.0579 0x11fc  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:32:12.0595 0x11fc  isapnp - ok
21:32:12.0657 0x11fc  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:32:12.0688 0x11fc  iScsiPrt - ok
21:32:12.0798 0x11fc  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
21:32:12.0813 0x11fc  kbdclass - ok
21:32:12.0969 0x11fc  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
21:32:13.0016 0x11fc  kbdhid - ok
21:32:13.0047 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
21:32:13.0063 0x11fc  KeyIso - ok
21:32:13.0687 0x11fc  [ 140692763A50BFFF322CDC076300587E ] Kodak AiO Network Discovery Service C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
21:32:13.0718 0x11fc  Kodak AiO Network Discovery Service - ok
21:32:14.0014 0x11fc  [ E29F999616D7C08B0E91296908C47CAF ] Kodak AiO Status Monitor Service C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
21:32:14.0046 0x11fc  Kodak AiO Status Monitor Service - ok
21:32:14.0155 0x11fc  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:32:14.0170 0x11fc  KSecDD - ok
21:32:14.0264 0x11fc  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:32:14.0280 0x11fc  KSecPkg - ok
21:32:14.0342 0x11fc  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:32:14.0436 0x11fc  ksthunk - ok
21:32:14.0514 0x11fc  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:32:14.0607 0x11fc  KtmRm - ok
21:32:14.0826 0x11fc  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:32:15.0060 0x11fc  LanmanServer - ok
21:32:15.0122 0x11fc  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:32:15.0216 0x11fc  LanmanWorkstation - ok
21:32:15.0434 0x11fc  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:32:15.0512 0x11fc  lltdio - ok
21:32:15.0699 0x11fc  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:32:15.0793 0x11fc  lltdsvc - ok
21:32:15.0840 0x11fc  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:32:15.0902 0x11fc  lmhosts - ok
21:32:16.0042 0x11fc  [ 5460828F8951D310B42B442877603B8D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:32:16.0074 0x11fc  LMS - ok
21:32:16.0136 0x11fc  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:32:16.0183 0x11fc  LSI_FC - ok
21:32:16.0308 0x11fc  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:32:16.0323 0x11fc  LSI_SAS - ok
21:32:16.0386 0x11fc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:32:16.0401 0x11fc  LSI_SAS2 - ok
21:32:16.0542 0x11fc  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:32:16.0557 0x11fc  LSI_SCSI - ok
21:32:16.0620 0x11fc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:32:16.0729 0x11fc  luafv - ok
21:32:16.0838 0x11fc  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:32:16.0854 0x11fc  Mcx2Svc - ok
21:32:16.0963 0x11fc  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:32:16.0994 0x11fc  megasas - ok
21:32:17.0041 0x11fc  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
21:32:17.0088 0x11fc  MegaSR - ok
21:32:17.0181 0x11fc  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
21:32:17.0306 0x11fc  MMCSS - ok
21:32:17.0415 0x11fc  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
21:32:17.0493 0x11fc  Modem - ok
21:32:17.0556 0x11fc  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:32:17.0587 0x11fc  monitor - ok
21:32:17.0634 0x11fc  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
21:32:17.0665 0x11fc  mouclass - ok
21:32:17.0805 0x11fc  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:32:17.0883 0x11fc  mouhid - ok
21:32:17.0992 0x11fc  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:32:18.0008 0x11fc  mountmgr - ok
21:32:18.0211 0x11fc  [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:32:18.0242 0x11fc  MozillaMaintenance - ok
21:32:18.0398 0x11fc  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
21:32:18.0429 0x11fc  MpFilter - ok
21:32:18.0476 0x11fc  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:32:18.0492 0x11fc  mpio - ok
21:32:18.0585 0x11fc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:32:18.0648 0x11fc  mpsdrv - ok
21:32:18.0819 0x11fc  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:32:18.0975 0x11fc  MpsSvc - ok
21:32:19.0116 0x11fc  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:32:19.0178 0x11fc  MRxDAV - ok
21:32:19.0240 0x11fc  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:32:19.0381 0x11fc  mrxsmb - ok
21:32:19.0521 0x11fc  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:32:19.0615 0x11fc  mrxsmb10 - ok
21:32:19.0864 0x11fc  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:32:19.0880 0x11fc  mrxsmb20 - ok
21:32:20.0083 0x11fc  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:32:20.0083 0x11fc  msahci - ok
21:32:20.0239 0x11fc  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:32:20.0254 0x11fc  msdsm - ok
21:32:20.0317 0x11fc  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
21:32:20.0364 0x11fc  MSDTC - ok
21:32:20.0457 0x11fc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:32:20.0520 0x11fc  Msfs - ok
21:32:20.0676 0x11fc  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:32:20.0738 0x11fc  mshidkmdf - ok
21:32:20.0800 0x11fc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:32:20.0816 0x11fc  msisadrv - ok
21:32:20.0878 0x11fc  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:32:20.0972 0x11fc  MSiSCSI - ok
21:32:20.0972 0x11fc  msiserver - ok
21:32:21.0066 0x11fc  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:32:21.0144 0x11fc  MSKSSRV - ok
21:32:21.0362 0x11fc  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:32:21.0378 0x11fc  MsMpSvc - ok
21:32:21.0643 0x11fc  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:32:21.0736 0x11fc  MSPCLOCK - ok
21:32:21.0892 0x11fc  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:32:22.0017 0x11fc  MSPQM - ok
21:32:22.0158 0x11fc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:32:22.0173 0x11fc  MsRPC - ok
21:32:22.0298 0x11fc  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
21:32:22.0314 0x11fc  mssmbios - ok
21:32:22.0376 0x11fc  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:32:22.0454 0x11fc  MSTEE - ok
21:32:22.0532 0x11fc  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
21:32:22.0610 0x11fc  MTConfig - ok
21:32:22.0688 0x11fc  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:32:22.0719 0x11fc  Mup - ok
21:32:23.0031 0x11fc  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
21:32:23.0265 0x11fc  napagent - ok
21:32:23.0452 0x11fc  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:32:23.0593 0x11fc  NativeWifiP - ok
21:32:23.0796 0x11fc  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:32:23.0967 0x11fc  NDIS - ok
21:32:24.0030 0x11fc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:32:24.0123 0x11fc  NdisCap - ok
21:32:24.0217 0x11fc  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:32:24.0357 0x11fc  NdisTapi - ok
21:32:24.0420 0x11fc  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:32:24.0498 0x11fc  Ndisuio - ok
21:32:24.0669 0x11fc  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:32:24.0810 0x11fc  NdisWan - ok
21:32:24.0903 0x11fc  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:32:24.0950 0x11fc  NDProxy - ok
21:32:25.0059 0x11fc  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:32:25.0215 0x11fc  NetBIOS - ok
21:32:25.0434 0x11fc  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:32:25.0512 0x11fc  NetBT - ok
21:32:25.0574 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
21:32:25.0761 0x11fc  Netlogon - ok
21:32:25.0980 0x11fc  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
21:32:26.0120 0x11fc  Netman - ok
21:32:26.0229 0x11fc  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
21:32:26.0448 0x11fc  netprofm - ok
21:32:26.0510 0x11fc  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:32:26.0510 0x11fc  NetTcpPortSharing - ok
21:32:26.0666 0x11fc  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:32:26.0682 0x11fc  nfrd960 - ok
21:32:26.0838 0x11fc  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:32:26.0869 0x11fc  NisDrv - ok
21:32:26.0978 0x11fc  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
21:32:27.0009 0x11fc  NisSrv - ok
21:32:27.0040 0x11fc  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:32:27.0368 0x11fc  NlaSvc - ok
21:32:27.0493 0x11fc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:32:27.0571 0x11fc  Npfs - ok
21:32:27.0727 0x11fc  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
21:32:27.0820 0x11fc  nsi - ok
21:32:27.0883 0x11fc  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:32:27.0945 0x11fc  nsiproxy - ok
21:32:29.0037 0x11fc  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:32:29.0131 0x11fc  Ntfs - ok
21:32:29.0474 0x11fc  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
21:32:29.0568 0x11fc  Null - ok
21:32:29.0802 0x11fc  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:32:29.0848 0x11fc  nvraid - ok
21:32:29.0895 0x11fc  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:32:29.0926 0x11fc  nvstor - ok
21:32:30.0051 0x11fc  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:32:30.0082 0x11fc  nv_agp - ok
21:32:31.0112 0x11fc  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:32:31.0705 0x11fc  odserv - ok
21:32:31.0814 0x11fc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:32:31.0892 0x11fc  ohci1394 - ok
21:32:32.0376 0x11fc  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:32:32.0407 0x11fc  ose - ok
21:32:32.0750 0x11fc  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:32:33.0140 0x11fc  p2pimsvc - ok
21:32:33.0218 0x11fc  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:32:33.0249 0x11fc  p2psvc - ok
21:32:33.0405 0x11fc  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
21:32:33.0436 0x11fc  Parport - ok
21:32:33.0733 0x11fc  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:32:33.0748 0x11fc  partmgr - ok
21:32:33.0889 0x11fc  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:32:34.0060 0x11fc  PcaSvc - ok
21:32:34.0170 0x11fc  pccsmcfd - ok
21:32:34.0528 0x11fc  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
21:32:34.0560 0x11fc  pci - ok
21:32:34.0731 0x11fc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
21:32:34.0762 0x11fc  pciide - ok
21:32:34.0825 0x11fc  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:32:34.0856 0x11fc  pcmcia - ok
21:32:34.0918 0x11fc  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:32:34.0950 0x11fc  pcw - ok
21:32:35.0137 0x11fc  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:32:35.0433 0x11fc  PEAUTH - ok
21:32:36.0806 0x11fc  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:32:36.0853 0x11fc  PerfHost - ok
21:32:37.0102 0x11fc  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
21:32:37.0586 0x11fc  pla - ok
21:32:38.0397 0x11fc  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:32:38.0740 0x11fc  PlugPlay - ok
21:32:39.0271 0x11fc  [ 627FA58ADC043704F9D14CA44340956F ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
21:32:41.0720 0x11fc  PMBDeviceInfoProvider - ok
21:32:41.0954 0x11fc  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:32:42.0406 0x11fc  PNRPAutoReg - ok
21:32:42.0843 0x11fc  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:32:42.0874 0x11fc  PNRPsvc - ok
21:32:43.0093 0x11fc  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:32:43.0249 0x11fc  PolicyAgent - ok
21:32:43.0748 0x11fc  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
21:32:43.0888 0x11fc  Power - ok
21:32:44.0434 0x11fc  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:32:44.0512 0x11fc  PptpMiniport - ok
21:32:44.0590 0x11fc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
21:32:44.0731 0x11fc  Processor - ok
21:32:44.0887 0x11fc  [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc         C:\Windows\system32\profsvc.dll
21:32:45.0152 0x11fc  ProfSvc - ok
21:32:45.0355 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:32:45.0526 0x11fc  ProtectedStorage - ok
21:32:45.0558 0x11fc  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:32:45.0838 0x11fc  Psched - ok
21:32:46.0104 0x11fc  [ AED797CCA02783296C68AA10D0CFF8A9 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
21:32:46.0135 0x11fc  PxHlpa64 - ok
21:32:46.0759 0x11fc  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:32:47.0242 0x11fc  ql2300 - ok
21:32:47.0289 0x11fc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:32:47.0320 0x11fc  ql40xx - ok
21:32:47.0695 0x11fc  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
21:32:47.0742 0x11fc  QWAVE - ok
21:32:47.0773 0x11fc  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:32:47.0898 0x11fc  QWAVEdrv - ok
21:32:48.0085 0x11fc  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:32:48.0210 0x11fc  RasAcd - ok
21:32:48.0600 0x11fc  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:32:48.0662 0x11fc  RasAgileVpn - ok
21:32:48.0709 0x11fc  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
21:32:48.0958 0x11fc  RasAuto - ok
21:32:49.0255 0x11fc  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:32:49.0380 0x11fc  Rasl2tp - ok
21:32:49.0754 0x11fc  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
21:32:49.0957 0x11fc  RasMan - ok
21:32:50.0347 0x11fc  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:32:50.0596 0x11fc  RasPppoe - ok
21:32:50.0924 0x11fc  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:32:51.0142 0x11fc  RasSstp - ok
21:32:51.0532 0x11fc  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:32:51.0704 0x11fc  rdbss - ok
21:32:51.0938 0x11fc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
21:32:52.0063 0x11fc  rdpbus - ok
21:32:52.0203 0x11fc  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:32:52.0515 0x11fc  RDPCDD - ok
21:32:52.0780 0x11fc  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:32:53.0108 0x11fc  RDPENCDD - ok
21:32:53.0451 0x11fc  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:32:53.0529 0x11fc  RDPREFMP - ok
21:32:53.0841 0x11fc  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:32:54.0060 0x11fc  RDPWD - ok
21:32:54.0309 0x11fc  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:32:54.0340 0x11fc  rdyboost - ok
21:32:54.0465 0x11fc  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:32:54.0637 0x11fc  RemoteAccess - ok
21:32:54.0980 0x11fc  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:32:55.0198 0x11fc  RemoteRegistry - ok
21:32:55.0292 0x11fc  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:32:55.0432 0x11fc  RFCOMM - ok
21:32:55.0760 0x11fc  [ 5CA4ABD888B602551B59BAA26941C167 ] rimspci         C:\Windows\system32\drivers\rimssne64.sys
21:32:56.0041 0x11fc  rimspci - ok
21:32:56.0400 0x11fc  [ BB6E138AEB351728959DA5E2731D8140 ] risdsnpe        C:\Windows\system32\drivers\risdsne64.sys
21:32:56.0493 0x11fc  risdsnpe - ok
21:32:57.0289 0x11fc  [ D151224BC11078895A60FA970728FF59 ] Roxio UPnP Renderer 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
21:32:57.0414 0x11fc  Roxio UPnP Renderer 10 - ok
21:32:57.0507 0x11fc  [ 5022A927944878BD750960BD21E751AF ] Roxio Upnp Server 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
21:32:57.0538 0x11fc  Roxio Upnp Server 10 - ok
21:32:57.0710 0x11fc  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:32:57.0975 0x11fc  RpcEptMapper - ok
21:32:58.0084 0x11fc  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
21:32:58.0162 0x11fc  RpcLocator - ok
21:32:58.0568 0x11fc  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
21:32:58.0646 0x11fc  RpcSs - ok
21:32:59.0020 0x11fc  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:32:59.0098 0x11fc  rspndr - ok
21:32:59.0613 0x11fc  [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
21:32:59.0644 0x11fc  RTHDMIAzAudService - ok
21:33:00.0034 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
21:33:00.0066 0x11fc  SamSs - ok
21:33:00.0144 0x11fc  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:33:00.0159 0x11fc  sbp2port - ok
21:33:00.0315 0x11fc  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:33:00.0393 0x11fc  SCardSvr - ok
21:33:00.0736 0x11fc  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:33:01.0064 0x11fc  scfilter - ok
21:33:01.0719 0x11fc  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
21:33:01.0984 0x11fc  Schedule - ok
21:33:02.0078 0x11fc  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:33:02.0140 0x11fc  SCPolicySvc - ok
21:33:02.0733 0x11fc  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
21:33:02.0858 0x11fc  sdbus - ok
21:33:02.0936 0x11fc  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:33:03.0139 0x11fc  SDRSVC - ok
21:33:03.0264 0x11fc  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:33:03.0420 0x11fc  secdrv - ok
21:33:03.0576 0x11fc  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
21:33:03.0732 0x11fc  seclogon - ok
21:33:03.0825 0x11fc  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
21:33:03.0903 0x11fc  SENS - ok
21:33:03.0966 0x11fc  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:33:04.0044 0x11fc  SensrSvc - ok
21:33:04.0480 0x11fc  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:33:04.0839 0x11fc  Serenum - ok
21:33:04.0902 0x11fc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
21:33:04.0933 0x11fc  Serial - ok
21:33:05.0182 0x11fc  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:33:05.0526 0x11fc  sermouse - ok
21:33:05.0572 0x11fc  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:33:05.0916 0x11fc  SessionEnv - ok
21:33:06.0430 0x11fc  [ 70F9C476B62DE4F2823E918A6C181ADE ] SFEP            C:\Windows\system32\drivers\SFEP.sys
21:33:06.0602 0x11fc  SFEP - ok
21:33:06.0805 0x11fc  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:33:07.0164 0x11fc  sffdisk - ok
21:33:07.0382 0x11fc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:33:07.0725 0x11fc  sffp_mmc - ok
21:33:07.0928 0x11fc  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:33:08.0022 0x11fc  sffp_sd - ok
21:33:08.0880 0x11fc  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:33:08.0895 0x11fc  sfloppy - ok
21:33:09.0238 0x11fc  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:33:09.0348 0x11fc  SharedAccess - ok
21:33:09.0722 0x11fc  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:33:09.0831 0x11fc  ShellHWDetection - ok
21:33:09.0878 0x11fc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:33:09.0894 0x11fc  SiSRaid2 - ok
21:33:09.0972 0x11fc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:33:10.0003 0x11fc  SiSRaid4 - ok
21:33:10.0065 0x11fc  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:33:10.0143 0x11fc  Smb - ok
21:33:10.0455 0x11fc  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:33:10.0596 0x11fc  SNMPTRAP - ok
21:33:11.0142 0x11fc  [ 98886C88A1CB13D61672AE2C638B7E1C ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:33:11.0157 0x11fc  SOHCImp - ok
21:33:11.0251 0x11fc  [ 442A13F395546F4564C377296D43B564 ] SOHDBSvr        C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
21:33:11.0282 0x11fc  SOHDBSvr - ok
21:33:12.0514 0x11fc  [ 556681BE668D71DC162391A45422B52C ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
21:33:12.0561 0x11fc  SOHDms - ok
21:33:12.0686 0x11fc  [ 72B46103E4111439109ACF5882627C24 ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:33:12.0702 0x11fc  SOHDs - ok
21:33:12.0842 0x11fc  [ 725B6E9CD1959271AC993DC035E1606D ] SOHPlMgr        C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
21:33:12.0858 0x11fc  SOHPlMgr - ok
21:33:12.0889 0x11fc  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:33:12.0920 0x11fc  spldr - ok
21:33:13.0201 0x11fc  [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler         C:\Windows\System32\spoolsv.exe
21:33:13.0326 0x11fc  Spooler - ok
21:33:15.0338 0x11fc  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
21:33:15.0822 0x11fc  sppsvc - ok
21:33:15.0853 0x11fc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:33:16.0134 0x11fc  sppuinotify - ok
21:33:16.0992 0x11fc  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:33:17.0460 0x11fc  srv - ok
21:33:17.0569 0x11fc  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:33:17.0647 0x11fc  srv2 - ok
21:33:17.0834 0x11fc  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:33:17.0896 0x11fc  srvnet - ok
21:33:18.0255 0x11fc  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:33:18.0411 0x11fc  SSDPSRV - ok
21:33:18.0692 0x11fc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:33:18.0723 0x11fc  SstpSvc - ok
21:33:18.0957 0x11fc  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:33:18.0988 0x11fc  stexstor - ok
21:33:19.0191 0x11fc  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
21:33:19.0269 0x11fc  StillCam - ok
21:33:19.0815 0x11fc  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
21:33:20.0018 0x11fc  stisvc - ok
21:33:20.0252 0x11fc  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
21:33:20.0283 0x11fc  swenum - ok
21:33:20.0517 0x11fc  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
21:33:20.0907 0x11fc  swprv - ok
21:33:22.0077 0x11fc  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
21:33:22.0280 0x11fc  SysMain - ok
21:33:22.0436 0x11fc  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:33:22.0514 0x11fc  TabletInputService - ok
21:33:22.0623 0x11fc  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:33:22.0732 0x11fc  TapiSrv - ok
21:33:22.0857 0x11fc  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
21:33:22.0935 0x11fc  TBS - ok
21:33:23.0684 0x11fc  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:33:23.0887 0x11fc  Tcpip - ok
21:33:24.0823 0x11fc  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:33:24.0870 0x11fc  TCPIP6 - ok
21:33:25.0275 0x11fc  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:33:25.0478 0x11fc  tcpipreg - ok
21:33:25.0774 0x11fc  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:33:25.0868 0x11fc  TDPIPE - ok
21:33:25.0930 0x11fc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:33:25.0962 0x11fc  TDTCP - ok
21:33:26.0071 0x11fc  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:33:26.0149 0x11fc  tdx - ok
21:33:26.0461 0x11fc  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
21:33:26.0476 0x11fc  TermDD - ok
21:33:26.0710 0x11fc  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
21:33:27.0007 0x11fc  TermService - ok
21:33:27.0210 0x11fc  TFsExDisk - ok
21:33:27.0256 0x11fc  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
21:33:27.0303 0x11fc  Themes - ok
21:33:27.0366 0x11fc  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
21:33:27.0428 0x11fc  THREADORDER - ok
21:33:27.0568 0x11fc  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
21:33:27.0693 0x11fc  TrkWks - ok
21:33:27.0990 0x11fc  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:33:28.0130 0x11fc  TrustedInstaller - ok
21:33:28.0239 0x11fc  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:33:28.0364 0x11fc  tssecsrv - ok
21:33:28.0504 0x11fc  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:33:28.0816 0x11fc  TsUsbFlt - ok
21:33:29.0004 0x11fc  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:33:29.0097 0x11fc  tunnel - ok
21:33:29.0144 0x11fc  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:33:29.0175 0x11fc  uagp35 - ok
21:33:29.0362 0x11fc  [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor     C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
21:33:29.0378 0x11fc  uCamMonitor - ok
21:33:29.0534 0x11fc  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:33:29.0628 0x11fc  udfs - ok
21:33:29.0721 0x11fc  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:33:29.0752 0x11fc  UI0Detect - ok
21:33:29.0784 0x11fc  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:33:29.0799 0x11fc  uliagpkx - ok
21:33:30.0002 0x11fc  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
21:33:30.0049 0x11fc  umbus - ok
21:33:30.0189 0x11fc  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
21:33:30.0283 0x11fc  UmPass - ok
21:33:31.0531 0x11fc  [ 9E89C2D6945389270DE067CE51FF7425 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:33:31.0812 0x11fc  UNS - ok
21:33:31.0999 0x11fc  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
21:33:32.0108 0x11fc  upnphost - ok
21:33:32.0233 0x11fc  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:33:32.0295 0x11fc  usbccgp - ok
21:33:32.0373 0x11fc  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:33:32.0389 0x11fc  usbcir - ok
21:33:32.0560 0x11fc  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
21:33:32.0592 0x11fc  usbehci - ok
21:33:32.0841 0x11fc  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:33:32.0997 0x11fc  usbhub - ok
21:33:33.0434 0x11fc  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:33:33.0543 0x11fc  usbohci - ok
21:33:33.0637 0x11fc  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
21:33:33.0840 0x11fc  usbprint - ok
21:33:33.0918 0x11fc  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:33:34.0105 0x11fc  USBSTOR - ok
21:33:34.0245 0x11fc  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
21:33:34.0292 0x11fc  usbuhci - ok
21:33:34.0682 0x11fc  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
21:33:34.0729 0x11fc  usbvideo - ok
21:33:35.0556 0x11fc  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
21:33:35.0618 0x11fc  usb_rndisx - ok
21:33:35.0821 0x11fc  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
21:33:35.0899 0x11fc  UxSms - ok
21:33:35.0992 0x11fc  [ 4E7135D6D0127067E4CFEE12259F895D ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
21:33:36.0086 0x11fc  VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
21:33:36.0086 0x11fc  VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic (1)
21:33:36.0226 0x11fc  [ 6B31C9CB94927DBEEB62E15275F4CC54 ] VAIO Event Service C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
21:33:36.0258 0x11fc  VAIO Event Service - ok
21:33:36.0694 0x11fc  [ B8C9A7010AFD5CBBE194CB9EF7C4FD14 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
21:33:36.0772 0x11fc  VAIO Power Management - ok
21:33:36.0819 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
21:33:36.0850 0x11fc  VaultSvc - ok
21:33:37.0147 0x11fc  [ 6A740F5FF3246C3BE3DD317299EFC88E ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
21:33:37.0194 0x11fc  VCFw - ok
21:33:37.0849 0x11fc  [ 10E212BFB7EAB152A64C1AAEC2F7F4E0 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
21:33:38.0067 0x11fc  VcmIAlzMgr - ok
21:33:38.0800 0x11fc  [ 9D9B34B430B4DC683112F59C80D20AB8 ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
21:33:38.0832 0x11fc  VcmINSMgr - ok
21:33:39.0050 0x11fc  [ 8EFAACCC7BFA1E9031EFDFB01A1B0D69 ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
21:33:39.0081 0x11fc  VcmXmlIfHelper - ok
21:33:39.0424 0x11fc  [ D347D3ABE070AA09C22FC37121555D52 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
21:33:39.0471 0x11fc  VCService - ok
21:33:39.0830 0x11fc  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:33:39.0892 0x11fc  vdrvroot - ok
21:33:40.0033 0x11fc  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
21:33:40.0189 0x11fc  vds - ok
21:33:40.0345 0x11fc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:33:40.0392 0x11fc  vga - ok
21:33:40.0454 0x11fc  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:33:40.0984 0x11fc  VgaSave - ok
21:33:41.0406 0x11fc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:33:41.0452 0x11fc  vhdmp - ok
21:33:41.0733 0x11fc  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:33:41.0749 0x11fc  viaide - ok
21:33:41.0874 0x11fc  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:33:41.0889 0x11fc  volmgr - ok
21:33:42.0154 0x11fc  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:33:42.0201 0x11fc  volmgrx - ok
21:33:42.0357 0x11fc  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:33:42.0700 0x11fc  volsnap - ok
21:33:42.0763 0x11fc  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:33:42.0810 0x11fc  vsmraid - ok
21:33:43.0371 0x11fc  [ 047F22BDFDAE6DF6F1E47E747A1237A2 ] VSNService      C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
21:33:44.0432 0x11fc  VSNService ( UnsignedFile.Multi.Generic ) - warning
21:33:44.0432 0x11fc  VSNService - detected UnsignedFile.Multi.Generic (1)
21:33:44.0635 0x11fc  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
21:33:45.0321 0x11fc  VSS - ok
21:33:46.0148 0x11fc  [ D2D646D4D686C6996BA1FF96E11BE570 ] VUAgent         C:\Program Files\Sony\VAIO Update\VUAgent.exe
21:33:46.0195 0x11fc  VUAgent - ok
21:33:46.0226 0x11fc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:33:46.0413 0x11fc  vwifibus - ok
21:33:46.0522 0x11fc  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:33:46.0647 0x11fc  vwififlt - ok
21:33:46.0944 0x11fc  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
21:33:47.0037 0x11fc  vwifimp - ok
21:33:47.0084 0x11fc  [ D8BEF4AC1EAC809DBDBD441D6CFF6C4C ] VzCdbSvc        C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
21:33:47.0146 0x11fc  VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
21:33:47.0146 0x11fc  VzCdbSvc - detected UnsignedFile.Multi.Generic (1)
21:33:47.0458 0x11fc  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
21:33:47.0552 0x11fc  W32Time - ok
21:33:47.0630 0x11fc  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:33:47.0677 0x11fc  WacomPen - ok
21:33:47.0942 0x11fc  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:33:48.0036 0x11fc  WANARP - ok
21:33:48.0160 0x11fc  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:33:48.0238 0x11fc  Wanarpv6 - ok
21:33:48.0410 0x11fc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:33:48.0738 0x11fc  WatAdminSvc - ok
21:33:49.0128 0x11fc  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
21:33:49.0440 0x11fc  wbengine - ok
21:33:49.0596 0x11fc  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:33:49.0627 0x11fc  WbioSrvc - ok
21:33:49.0908 0x11fc  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:33:50.0017 0x11fc  wcncsvc - ok
21:33:50.0064 0x11fc  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:33:50.0267 0x11fc  WcsPlugInService - ok
21:33:50.0329 0x11fc  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
21:33:50.0345 0x11fc  Wd - ok
21:33:50.0454 0x11fc  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:33:50.0610 0x11fc  Wdf01000 - ok
21:33:50.0657 0x11fc  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:33:50.0891 0x11fc  WdiServiceHost - ok
21:33:50.0922 0x11fc  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:33:50.0937 0x11fc  WdiSystemHost - ok
21:33:51.0000 0x11fc  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
21:33:51.0062 0x11fc  WebClient - ok
21:33:51.0125 0x11fc  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:33:51.0187 0x11fc  Wecsvc - ok
21:33:51.0203 0x11fc  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:33:51.0265 0x11fc  wercplsupport - ok
21:33:51.0374 0x11fc  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:33:51.0437 0x11fc  WerSvc - ok
21:33:51.0483 0x11fc  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:33:51.0530 0x11fc  WfpLwf - ok
21:33:51.0577 0x11fc  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:33:51.0593 0x11fc  WIMMount - ok
21:33:51.0639 0x11fc  WinDefend - ok
21:33:51.0671 0x11fc  WinHttpAutoProxySvc - ok
21:33:51.0780 0x11fc  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:33:51.0873 0x11fc  Winmgmt - ok
21:33:52.0123 0x11fc  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
21:33:52.0310 0x11fc  WinRM - ok
21:33:52.0451 0x11fc  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:33:52.0482 0x11fc  WinUsb - ok
21:33:52.0575 0x11fc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:33:52.0716 0x11fc  Wlansvc - ok
21:33:53.0075 0x11fc  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:33:53.0168 0x11fc  wlidsvc - ok
21:33:53.0231 0x11fc  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:33:53.0293 0x11fc  WmiAcpi - ok
21:33:53.0371 0x11fc  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:33:53.0402 0x11fc  wmiApSrv - ok
21:33:53.0433 0x11fc  WMPNetworkSvc - ok
21:33:53.0527 0x11fc  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:33:53.0605 0x11fc  WPCSvc - ok
21:33:53.0761 0x11fc  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:33:53.0792 0x11fc  WPDBusEnum - ok
21:33:53.0823 0x11fc  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:33:53.0933 0x11fc  ws2ifsl - ok
21:33:54.0057 0x11fc  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
21:33:54.0120 0x11fc  wscsvc - ok
21:33:54.0120 0x11fc  WSearch - ok
21:33:54.0385 0x11fc  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:33:54.0479 0x11fc  wuauserv - ok
21:33:54.0525 0x11fc  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:33:54.0603 0x11fc  WudfPf - ok
21:33:54.0666 0x11fc  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:33:54.0759 0x11fc  WUDFRd - ok
21:33:54.0822 0x11fc  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:33:54.0869 0x11fc  wudfsvc - ok
21:33:54.0962 0x11fc  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:33:55.0025 0x11fc  WwanSvc - ok
21:33:55.0087 0x11fc  [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
21:33:55.0149 0x11fc  yukonw7 - ok
 



21:33:55.0212 0x11fc  ================ Scan global ===============================
21:33:55.0274 0x11fc  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:33:55.0383 0x11fc  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:33:55.0399 0x11fc  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:33:55.0461 0x11fc  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:33:55.0555 0x11fc  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:33:55.0555 0x11fc  [Global] - ok
21:33:55.0555 0x11fc  ================ Scan MBR ==================================
21:33:55.0602 0x11fc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:33:57.0567 0x11fc  \Device\Harddisk0\DR0 - ok
21:33:57.0567 0x11fc  ================ Scan VBR ==================================
21:33:57.0630 0x11fc  [ 9772E3285622C7BD58BE25D62A8DE15E ] \Device\Harddisk0\DR0\Partition1
21:33:57.0630 0x11fc  \Device\Harddisk0\DR0\Partition1 - ok
21:33:57.0723 0x11fc  [ FD3E1D5598E2D40BC8D637BE2AD0413C ] \Device\Harddisk0\DR0\Partition2
21:33:57.0723 0x11fc  \Device\Harddisk0\DR0\Partition2 - ok
21:33:57.0723 0x11fc  ================ Scan active images ========================
21:33:57.0723 0x11fc  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
21:33:57.0723 0x11fc  C:\Windows\System32\drivers\crashdmp.sys - ok
21:33:57.0739 0x11fc  [ 073A606333B6F7BBF20AA856DF7F0997 ] C:\Windows\System32\drivers\iaStor.sys
21:33:57.0739 0x11fc  C:\Windows\System32\drivers\iaStor.sys - ok
21:33:57.0739 0x11fc  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
21:33:57.0739 0x11fc  C:\Windows\System32\drivers\dumpfve.sys - ok
21:33:57.0755 0x11fc  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
21:33:57.0755 0x11fc  C:\Windows\System32\drivers\cdrom.sys - ok
21:33:57.0755 0x11fc  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
21:33:57.0755 0x11fc  C:\Windows\System32\drivers\null.sys - ok
21:33:57.0770 0x11fc  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
21:33:57.0770 0x11fc  C:\Windows\System32\drivers\beep.sys - ok
21:33:57.0770 0x11fc  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
21:33:57.0770 0x11fc  C:\Windows\System32\drivers\RDPCDD.sys - ok
21:33:57.0770 0x11fc  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
21:33:57.0770 0x11fc  C:\Windows\System32\drivers\vga.sys - ok
21:33:57.0786 0x11fc  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
21:33:57.0786 0x11fc  C:\Windows\System32\drivers\videoprt.sys - ok
21:33:57.0786 0x11fc  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
21:33:57.0786 0x11fc  C:\Windows\System32\drivers\watchdog.sys - ok
21:33:57.0786 0x11fc  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
21:33:57.0786 0x11fc  C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:33:57.0801 0x11fc  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
21:33:57.0801 0x11fc  C:\Windows\System32\drivers\RDPREFMP.sys - ok
21:33:57.0801 0x11fc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
21:33:57.0801 0x11fc  C:\Windows\System32\drivers\msfs.sys - ok
21:33:57.0801 0x11fc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
21:33:57.0801 0x11fc  C:\Windows\System32\drivers\npfs.sys - ok
21:33:57.0817 0x11fc  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
21:33:57.0817 0x11fc  C:\Windows\System32\drivers\tdi.sys - ok
21:33:57.0817 0x11fc  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
21:33:57.0817 0x11fc  C:\Windows\System32\drivers\tdx.sys - ok
21:33:57.0817 0x11fc  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
21:33:57.0817 0x11fc  C:\Windows\System32\drivers\afd.sys - ok
21:33:57.0833 0x11fc  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
21:33:57.0833 0x11fc  C:\Windows\System32\drivers\netbt.sys - ok
21:33:57.0833 0x11fc  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
21:33:57.0833 0x11fc  C:\Windows\System32\drivers\wfplwf.sys - ok
21:33:57.0833 0x11fc  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
21:33:57.0833 0x11fc  C:\Windows\System32\drivers\pacer.sys - ok
21:33:57.0848 0x11fc  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
21:33:57.0848 0x11fc  C:\Windows\System32\drivers\vwififlt.sys - ok
21:33:57.0848 0x11fc  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
21:33:57.0848 0x11fc  C:\Windows\System32\drivers\netbios.sys - ok
21:33:57.0848 0x11fc  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
21:33:57.0848 0x11fc  C:\Windows\System32\drivers\wanarp.sys - ok
21:33:57.0864 0x11fc  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
21:33:57.0864 0x11fc  C:\Windows\System32\drivers\termdd.sys - ok
21:33:57.0864 0x11fc  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
21:33:57.0864 0x11fc  C:\Windows\System32\drivers\nsiproxy.sys - ok
21:33:57.0864 0x11fc  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
21:33:57.0864 0x11fc  C:\Windows\System32\drivers\rdbss.sys - ok
21:33:57.0879 0x11fc  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
21:33:57.0879 0x11fc  C:\Windows\System32\drivers\discache.sys - ok
21:33:57.0879 0x11fc  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
21:33:57.0879 0x11fc  C:\Windows\System32\drivers\mssmbios.sys - ok
21:33:57.0879 0x11fc  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
21:33:57.0879 0x11fc  C:\Windows\System32\drivers\dfsc.sys - ok
21:33:57.0895 0x11fc  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
21:33:57.0895 0x11fc  C:\Windows\System32\drivers\blbdrive.sys - ok
21:33:57.0895 0x11fc  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
21:33:57.0895 0x11fc  C:\Windows\System32\drivers\tunnel.sys - ok
21:33:57.0895 0x11fc  [ DCA6E341A4A7C31EA8A14C6166C9B249 ] C:\Windows\System32\drivers\atikmpag.sys
21:33:57.0895 0x11fc  C:\Windows\System32\drivers\atikmpag.sys - ok
21:33:57.0911 0x11fc  [ 8E45DD84F8F786B2DB94AD95225B9246 ] C:\Windows\System32\ntdll.dll
21:33:57.0911 0x11fc  C:\Windows\System32\ntdll.dll - ok
21:33:57.0911 0x11fc  [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
21:33:57.0911 0x11fc  C:\Windows\System32\smss.exe - ok
21:33:57.0911 0x11fc  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
21:33:57.0911 0x11fc  C:\Windows\System32\autochk.exe - ok
21:33:57.0926 0x11fc  [ EA244A8B88DE8B5986BF3B7903B063AF ] C:\Windows\System32\drivers\atikmdag.sys
21:33:57.0926 0x11fc  C:\Windows\System32\drivers\atikmdag.sys - ok
21:33:57.0926 0x11fc  [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
21:33:57.0926 0x11fc  C:\Windows\System32\drivers\dxgkrnl.sys - ok
21:33:57.0926 0x11fc  [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
21:33:57.0926 0x11fc  C:\Windows\System32\drivers\dxgmms1.sys - ok
21:33:57.0942 0x11fc  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
21:33:57.0942 0x11fc  C:\Windows\System32\drivers\hdaudbus.sys - ok
21:33:57.0942 0x11fc  [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
21:33:57.0942 0x11fc  C:\Windows\System32\drivers\HECIx64.sys - ok
21:33:57.0942 0x11fc  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
21:33:57.0942 0x11fc  C:\Windows\System32\drivers\usbehci.sys - ok
21:33:57.0957 0x11fc  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
21:33:57.0957 0x11fc  C:\Windows\System32\drivers\usbport.sys - ok
21:33:57.0957 0x11fc  [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] C:\Windows\System32\drivers\athrx.sys
21:33:57.0957 0x11fc  C:\Windows\System32\drivers\athrx.sys - ok
21:33:57.0957 0x11fc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
21:33:57.0957 0x11fc  C:\Windows\System32\drivers\vwifibus.sys - ok
21:33:57.0973 0x11fc  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] C:\Windows\System32\drivers\sdbus.sys
21:33:57.0973 0x11fc  C:\Windows\System32\drivers\sdbus.sys - ok
21:33:57.0973 0x11fc  [ 5CA4ABD888B602551B59BAA26941C167 ] C:\Windows\System32\drivers\rimssne64.sys
21:33:57.0973 0x11fc  C:\Windows\System32\drivers\rimssne64.sys - ok
21:33:57.0973 0x11fc  [ BB6E138AEB351728959DA5E2731D8140 ] C:\Windows\System32\drivers\risdsne64.sys
21:33:57.0973 0x11fc  C:\Windows\System32\drivers\risdsne64.sys - ok
21:33:57.0989 0x11fc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
21:33:57.0989 0x11fc  C:\Windows\System32\drivers\i8042prt.sys - ok
21:33:57.0989 0x11fc  [ 64F88AF327AA74E03658AE32B48CCB8B ] C:\Windows\System32\drivers\yk62x64.sys
21:33:57.0989 0x11fc  C:\Windows\System32\drivers\yk62x64.sys - ok
21:33:57.0989 0x11fc  [ 1661F9C9E4B0049FA0A5E30264375A87 ] C:\Windows\System32\drivers\Apfiltr.sys
21:33:57.0989 0x11fc  C:\Windows\System32\drivers\Apfiltr.sys - ok
21:33:58.0004 0x11fc  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
21:33:58.0004 0x11fc  C:\Windows\System32\drivers\kbdclass.sys - ok
21:33:58.0004 0x11fc  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
21:33:58.0004 0x11fc  C:\Windows\System32\drivers\mouclass.sys - ok
21:33:58.0020 0x11fc  [ 70F9C476B62DE4F2823E918A6C181ADE ] C:\Windows\System32\drivers\SFEP.sys
21:33:58.0020 0x11fc  C:\Windows\System32\drivers\SFEP.sys - ok
21:33:58.0020 0x11fc  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
21:33:58.0020 0x11fc  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
21:33:58.0020 0x11fc  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
21:33:58.0020 0x11fc  C:\Windows\System32\drivers\CmBatt.sys - ok
21:33:58.0035 0x11fc  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
21:33:58.0035 0x11fc  C:\Windows\System32\drivers\intelppm.sys - ok
21:33:58.0035 0x11fc  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
21:33:58.0035 0x11fc  C:\Windows\System32\drivers\CompositeBus.sys - ok
21:33:58.0035 0x11fc  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
21:33:58.0035 0x11fc  C:\Windows\System32\drivers\agilevpn.sys - ok
21:33:58.0051 0x11fc  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
21:33:58.0051 0x11fc  C:\Windows\System32\drivers\ndistapi.sys - ok
21:33:58.0051 0x11fc  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
21:33:58.0051 0x11fc  C:\Windows\System32\drivers\rasl2tp.sys - ok
21:33:58.0051 0x11fc  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
21:33:58.0051 0x11fc  C:\Windows\System32\drivers\ndiswan.sys - ok
21:33:58.0067 0x11fc  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
21:33:58.0067 0x11fc  C:\Windows\System32\drivers\raspppoe.sys - ok
21:33:58.0067 0x11fc  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
21:33:58.0067 0x11fc  C:\Windows\System32\drivers\raspptp.sys - ok
21:33:58.0082 0x11fc  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
21:33:58.0082 0x11fc  C:\Windows\System32\drivers\rassstp.sys - ok
21:33:58.0082 0x11fc  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
21:33:58.0082 0x11fc  C:\Windows\System32\drivers\ks.sys - ok
21:33:58.0082 0x11fc  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
21:33:58.0082 0x11fc  C:\Windows\System32\drivers\swenum.sys - ok
21:33:58.0098 0x11fc  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
21:33:58.0098 0x11fc  C:\Windows\System32\drivers\umbus.sys - ok
21:33:58.0098 0x11fc  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
21:33:58.0098 0x11fc  C:\Windows\System32\drivers\usbhub.sys - ok
21:33:58.0098 0x11fc  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
21:33:58.0098 0x11fc  C:\Windows\System32\setupapi.dll - ok
21:33:58.0113 0x11fc  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
21:33:58.0113 0x11fc  C:\Windows\System32\ws2_32.dll - ok
21:33:58.0113 0x11fc  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
21:33:58.0113 0x11fc  C:\Windows\System32\nsi.dll - ok
21:33:58.0113 0x11fc  [ AC155DD9BD1E6D3B740826A4D1C68AAE ] C:\Windows\System32\wininet.dll
21:33:58.0113 0x11fc  C:\Windows\System32\wininet.dll - ok
21:33:58.0129 0x11fc  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
21:33:58.0129 0x11fc  C:\Windows\System32\sechost.dll - ok
21:33:58.0129 0x11fc  [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
21:33:58.0129 0x11fc  C:\Windows\System32\shell32.dll - ok
21:33:58.0129 0x11fc  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
21:33:58.0129 0x11fc  C:\Windows\System32\msvcrt.dll - ok
21:33:58.0129 0x11fc  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
21:33:58.0129 0x11fc  C:\Windows\System32\kernel32.dll - ok
21:33:58.0145 0x11fc  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
21:33:58.0145 0x11fc  C:\Windows\System32\drivers\ndproxy.sys - ok
21:33:58.0145 0x11fc  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
21:33:58.0145 0x11fc  C:\Windows\System32\drivers\drmk.sys - ok
21:33:58.0145 0x11fc  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
21:33:58.0145 0x11fc  C:\Windows\System32\drivers\ksthunk.sys - ok
21:33:58.0160 0x11fc  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
21:33:58.0160 0x11fc  C:\Windows\System32\drivers\portcls.sys - ok
21:33:58.0160 0x11fc  [ 4E821C740A675F6D040BE41D59A62B1D ] C:\Windows\System32\drivers\RtHDMIVX.sys
21:33:58.0160 0x11fc  C:\Windows\System32\drivers\RtHDMIVX.sys - ok
21:33:58.0176 0x11fc  [ 0F144E5F46CB9043004B5E84AA4BCA6A ] C:\Windows\System32\drivers\RTKVHD64.sys
21:33:58.0176 0x11fc  C:\Windows\System32\drivers\RTKVHD64.sys - ok
21:33:58.0176 0x11fc  [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
21:33:58.0176 0x11fc  C:\Windows\System32\usp10.dll - ok
21:33:58.0176 0x11fc  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
21:33:58.0176 0x11fc  C:\Windows\System32\drivers\usbccgp.sys - ok
21:33:58.0191 0x11fc  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
21:33:58.0191 0x11fc  C:\Windows\System32\drivers\usbd.sys - ok
21:33:58.0191 0x11fc  [ C130BC4A51B1382B2BE8E44579EC4C0A ] C:\Windows\System32\drivers\ArcSoftKsUFilter.sys
21:33:58.0191 0x11fc  C:\Windows\System32\drivers\ArcSoftKsUFilter.sys - ok
21:33:58.0191 0x11fc  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
21:33:58.0191 0x11fc  C:\Windows\System32\drivers\usbvideo.sys - ok
21:33:58.0207 0x11fc  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
21:33:58.0207 0x11fc  C:\Windows\System32\drivers\hidparse.sys - ok
21:33:58.0207 0x11fc  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
21:33:58.0207 0x11fc  C:\Windows\System32\drivers\hidclass.sys - ok
21:33:58.0207 0x11fc  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
21:33:58.0207 0x11fc  C:\Windows\System32\drivers\hidusb.sys - ok
21:33:58.0223 0x11fc  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
21:33:58.0223 0x11fc  C:\Windows\System32\drivers\kbdhid.sys - ok
21:33:58.0223 0x11fc  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
21:33:58.0223 0x11fc  C:\Windows\System32\drivers\mouhid.sys - ok
21:33:58.0223 0x11fc  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
21:33:58.0223 0x11fc  C:\Windows\System32\difxapi.dll - ok
21:33:58.0238 0x11fc  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
21:33:58.0238 0x11fc  C:\Windows\System32\advapi32.dll - ok
21:33:58.0238 0x11fc  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
21:33:58.0238 0x11fc  C:\Windows\System32\lpk.dll - ok
21:33:58.0254 0x11fc  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
21:33:58.0254 0x11fc  C:\Windows\System32\psapi.dll - ok
21:33:58.0254 0x11fc  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
21:33:58.0254 0x11fc  C:\Windows\System32\user32.dll - ok
21:33:58.0254 0x11fc  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
21:33:58.0254 0x11fc  C:\Windows\System32\ole32.dll - ok
21:33:58.0269 0x11fc  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
21:33:58.0269 0x11fc  C:\Windows\System32\shlwapi.dll - ok
21:33:58.0269 0x11fc  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
21:33:58.0269 0x11fc  C:\Windows\System32\Wldap32.dll - ok
21:33:58.0269 0x11fc  [ 65546D87F7A78AB31841A536456CB94D ] C:\Windows\System32\iertutil.dll
21:33:58.0269 0x11fc  C:\Windows\System32\iertutil.dll - ok
21:33:58.0285 0x11fc  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
21:33:58.0285 0x11fc  C:\Windows\System32\clbcatq.dll - ok
21:33:58.0285 0x11fc  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
21:33:58.0285 0x11fc  C:\Windows\System32\gdi32.dll - ok
21:33:58.0285 0x11fc  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
21:33:58.0285 0x11fc  C:\Windows\System32\msctf.dll - ok
21:33:58.0301 0x11fc  [ 26036E228D2467DE6975AD819C22C043 ] C:\Windows\System32\rpcrt4.dll
21:33:58.0301 0x11fc  C:\Windows\System32\rpcrt4.dll - ok
21:33:58.0301 0x11fc  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
21:33:58.0301 0x11fc  C:\Windows\System32\comdlg32.dll - ok
21:33:58.0316 0x11fc  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
21:33:58.0316 0x11fc  C:\Windows\System32\imagehlp.dll - ok
21:33:58.0316 0x11fc  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
21:33:58.0316 0x11fc  C:\Windows\System32\imm32.dll - ok
21:33:58.0316 0x11fc  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
21:33:58.0316 0x11fc  C:\Windows\System32\normaliz.dll - ok
21:33:58.0332 0x11fc  [ 289C5E0A386E7B6CA9539D66D15E22CC ] C:\Windows\System32\urlmon.dll
21:33:58.0332 0x11fc  C:\Windows\System32\urlmon.dll - ok
21:33:58.0332 0x11fc  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
21:33:58.0332 0x11fc  C:\Windows\System32\oleaut32.dll - ok
21:33:58.0332 0x11fc  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
21:33:58.0332 0x11fc  C:\Windows\System32\comctl32.dll - ok
21:33:58.0347 0x11fc  [ 959041D7014C97133D859B45BCA0FC58 ] C:\Windows\System32\wintrust.dll
21:33:58.0347 0x11fc  C:\Windows\System32\wintrust.dll - ok
21:33:58.0347 0x11fc  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
21:33:58.0347 0x11fc  C:\Windows\System32\cfgmgr32.dll - ok
21:33:58.0347 0x11fc  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
21:33:58.0347 0x11fc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
21:33:58.0363 0x11fc  [ 287998A9BA0140ABB59792CDEB2F8483 ] C:\Windows\System32\crypt32.dll
21:33:58.0363 0x11fc  C:\Windows\System32\crypt32.dll - ok
21:33:58.0363 0x11fc  [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
21:33:58.0363 0x11fc  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
21:33:58.0379 0x11fc  [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
21:33:58.0379 0x11fc  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
21:33:58.0379 0x11fc  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
21:33:58.0379 0x11fc  C:\Windows\System32\KernelBase.dll - ok
21:33:58.0379 0x11fc  [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
21:33:58.0379 0x11fc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
21:33:58.0394 0x11fc  [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
21:33:58.0394 0x11fc  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
21:33:58.0394 0x11fc  [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
21:33:58.0394 0x11fc  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
21:33:58.0394 0x11fc  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
21:33:58.0394 0x11fc  C:\Windows\System32\devobj.dll - ok
21:33:58.0410 0x11fc  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
21:33:58.0410 0x11fc  C:\Windows\System32\msasn1.dll - ok
21:33:58.0410 0x11fc  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
21:33:58.0410 0x11fc  C:\Windows\SysWOW64\normaliz.dll - ok
21:33:58.0410 0x11fc  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
21:33:58.0410 0x11fc  C:\Windows\System32\drivers\dxapi.sys - ok
21:33:58.0425 0x11fc  [ 73601028E7C44154318AE91D2EB2EDB3 ] C:\Windows\System32\win32k.sys
21:33:58.0425 0x11fc  C:\Windows\System32\win32k.sys - ok
21:33:58.0425 0x11fc  [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
21:33:58.0425 0x11fc  C:\Windows\System32\csrsrv.dll - ok
21:33:58.0425 0x11fc  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
21:33:58.0425 0x11fc  C:\Windows\System32\csrss.exe - ok
21:33:58.0441 0x11fc  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
21:33:58.0441 0x11fc  C:\Windows\System32\basesrv.dll - ok
21:33:58.0441 0x11fc  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
21:33:58.0441 0x11fc  C:\Windows\System32\winsrv.dll - ok
21:33:58.0441 0x11fc  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
21:33:58.0441 0x11fc  C:\Windows\System32\drivers\monitor.sys - ok
21:33:58.0457 0x11fc  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
21:33:58.0457 0x11fc  C:\Windows\System32\sxssrv.dll - ok
21:33:58.0457 0x11fc  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
21:33:58.0457 0x11fc  C:\Windows\System32\tsddd.dll - ok
21:33:58.0472 0x11fc  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
21:33:58.0472 0x11fc  C:\Windows\System32\wininit.exe - ok
21:33:58.0472 0x11fc  [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
21:33:58.0472 0x11fc  C:\Windows\System32\cdd.dll - ok
21:33:58.0472 0x11fc  [ 1A83FACA2135AF076E8EA73A30B3B26C ] C:\Windows\System32\KBDUK.DLL
21:33:58.0472 0x11fc  C:\Windows\System32\KBDUK.DLL - ok
21:33:58.0488 0x11fc  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
21:33:58.0488 0x11fc  C:\Windows\System32\profapi.dll - ok
21:33:58.0488 0x11fc  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
21:33:58.0488 0x11fc  C:\Windows\System32\RpcRtRemote.dll - ok
21:33:58.0488 0x11fc  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
21:33:58.0488 0x11fc  C:\Windows\System32\sxs.dll - ok
21:33:58.0503 0x11fc  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
21:33:58.0503 0x11fc  C:\Windows\System32\WlS0WndH.dll - ok
21:33:58.0503 0x11fc  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
21:33:58.0503 0x11fc  C:\Windows\System32\cryptbase.dll - ok
21:33:58.0503 0x11fc  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
21:33:58.0503 0x11fc  C:\Windows\System32\apphelp.dll - ok
21:33:58.0519 0x11fc  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
21:33:58.0519 0x11fc  C:\Windows\System32\lsass.exe - ok
21:33:58.0519 0x11fc  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
21:33:58.0519 0x11fc  C:\Windows\System32\lsm.exe - ok
21:33:58.0519 0x11fc  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
21:33:58.0519 0x11fc  C:\Windows\System32\services.exe - ok
21:33:58.0535 0x11fc  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
21:33:58.0535 0x11fc  C:\Windows\System32\lsasrv.dll - ok
21:33:58.0535 0x11fc  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
21:33:58.0535 0x11fc  C:\Windows\System32\sspisrv.dll - ok
21:33:58.0535 0x11fc  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
21:33:58.0535 0x11fc  C:\Windows\System32\sspicli.dll - ok
21:33:58.0550 0x11fc  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
21:33:58.0550 0x11fc  C:\Windows\System32\scext.dll - ok
21:33:58.0550 0x11fc  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
21:33:58.0550 0x11fc  C:\Windows\System32\secur32.dll - ok
21:33:58.0550 0x11fc  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
21:33:58.0550 0x11fc  C:\Windows\System32\sysntfy.dll - ok
21:33:58.0566 0x11fc  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
21:33:58.0566 0x11fc  C:\Windows\System32\wmsgapi.dll - ok
21:33:58.0566 0x11fc  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
21:33:58.0566 0x11fc  C:\Windows\System32\samsrv.dll - ok
21:33:58.0566 0x11fc  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
21:33:58.0566 0x11fc  C:\Windows\System32\scesrv.dll - ok
21:33:58.0581 0x11fc  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
21:33:58.0581 0x11fc  C:\Windows\System32\srvcli.dll - ok
21:33:58.0581 0x11fc  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
21:33:58.0581 0x11fc  C:\Windows\System32\cryptdll.dll - ok
21:33:58.0581 0x11fc  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
21:33:58.0581 0x11fc  C:\Windows\System32\wevtapi.dll - ok
21:33:58.0597 0x11fc  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
21:33:58.0597 0x11fc  C:\Windows\System32\authz.dll - ok
21:33:58.0597 0x11fc  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
21:33:58.0597 0x11fc  C:\Windows\System32\cngaudit.dll - ok
21:33:58.0597 0x11fc  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
21:33:58.0597 0x11fc  C:\Windows\System32\ncrypt.dll - ok
21:33:58.0613 0x11fc  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
21:33:58.0613 0x11fc  C:\Windows\System32\bcrypt.dll - ok
21:33:58.0613 0x11fc  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
21:33:58.0613 0x11fc  C:\Windows\System32\msprivs.dll - ok
21:33:58.0628 0x11fc  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
21:33:58.0628 0x11fc  C:\Windows\System32\netjoin.dll - ok
21:33:58.0628 0x11fc  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
21:33:58.0628 0x11fc  C:\Windows\System32\kerberos.dll - ok
21:33:58.0628 0x11fc  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
21:33:58.0628 0x11fc  C:\Windows\System32\negoexts.dll - ok
21:33:58.0644 0x11fc  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
21:33:58.0644 0x11fc  C:\Windows\System32\cryptsp.dll - ok
21:33:58.0644 0x11fc  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
21:33:58.0644 0x11fc  C:\Windows\System32\msv1_0.dll - ok
21:33:58.0644 0x11fc  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
21:33:58.0644 0x11fc  C:\Windows\System32\mswsock.dll - ok
21:33:58.0659 0x11fc  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
21:33:58.0659 0x11fc  C:\Windows\System32\wship6.dll - ok
21:33:58.0659 0x11fc  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
21:33:58.0659 0x11fc  C:\Windows\System32\netlogon.dll - ok
21:33:58.0659 0x11fc  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
21:33:58.0659 0x11fc  C:\Windows\System32\dnsapi.dll - ok
21:33:58.0675 0x11fc  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
21:33:58.0675 0x11fc  C:\Windows\System32\logoncli.dll - ok
21:33:58.0675 0x11fc  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
21:33:58.0675 0x11fc  C:\Windows\System32\schannel.dll - ok
21:33:58.0675 0x11fc  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
21:33:58.0675 0x11fc  C:\Windows\System32\wdigest.dll - ok
21:33:58.0691 0x11fc  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
21:33:58.0691 0x11fc  C:\Windows\System32\pku2u.dll - ok
21:33:58.0691 0x11fc  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
21:33:58.0691 0x11fc  C:\Windows\System32\rsaenh.dll - ok
21:33:58.0691 0x11fc  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
21:33:58.0691 0x11fc  C:\Windows\System32\TSpkg.dll - ok
21:33:58.0706 0x11fc  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
21:33:58.0706 0x11fc  C:\Windows\System32\bcryptprimitives.dll - ok
21:33:58.0706 0x11fc  [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
21:33:58.0706 0x11fc  C:\Windows\System32\LIVESSP.DLL - ok
21:33:58.0706 0x11fc  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
21:33:58.0706 0x11fc  C:\Windows\System32\credssp.dll - ok
21:33:58.0722 0x11fc  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
21:33:58.0722 0x11fc  C:\Windows\System32\efslsaext.dll - ok
21:33:58.0722 0x11fc  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
21:33:58.0722 0x11fc  C:\Windows\System32\scecli.dll - ok
21:33:58.0722 0x11fc  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
21:33:58.0722 0x11fc  C:\Windows\System32\ubpm.dll - ok
21:33:58.0737 0x11fc  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
21:33:58.0737 0x11fc  C:\Windows\System32\winlogon.exe - ok
21:33:58.0737 0x11fc  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
21:33:58.0737 0x11fc  C:\Windows\System32\winsta.dll - ok
21:33:58.0737 0x11fc  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
21:33:58.0737 0x11fc  C:\Windows\System32\svchost.exe - ok
21:33:58.0753 0x11fc  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
21:33:58.0753 0x11fc  C:\Windows\System32\umpnpmgr.dll - ok
21:33:58.0753 0x11fc  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
21:33:58.0753 0x11fc  C:\Windows\System32\SPInf.dll - ok
21:33:58.0753 0x11fc  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
21:33:58.0753 0x11fc  C:\Windows\System32\devrtl.dll - ok
21:33:58.0769 0x11fc  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
21:33:58.0769 0x11fc  C:\Windows\System32\gpapi.dll - ok
21:33:58.0769 0x11fc  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
21:33:58.0769 0x11fc  C:\Windows\System32\userenv.dll - ok
21:33:58.0769 0x11fc  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
21:33:58.0769 0x11fc  C:\Windows\System32\umpo.dll - ok
21:33:58.0784 0x11fc  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
21:33:58.0784 0x11fc  C:\Windows\System32\pcwum.dll - ok
21:33:58.0784 0x11fc  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
21:33:58.0784 0x11fc  C:\Windows\System32\powrprof.dll - ok
21:33:58.0784 0x11fc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
21:33:58.0784 0x11fc  C:\Windows\System32\drivers\luafv.sys - ok
21:33:58.0800 0x11fc  [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
21:33:58.0800 0x11fc  C:\Windows\System32\drivers\WUDFPf.sys - ok
21:33:58.0800 0x11fc  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
21:33:58.0800 0x11fc  C:\Windows\System32\rpcss.dll - ok
21:33:58.0800 0x11fc  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
21:33:58.0800 0x11fc  C:\Windows\System32\RpcEpMap.dll - ok
21:33:58.0815 0x11fc  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
21:33:58.0815 0x11fc  C:\Windows\System32\wshqos.dll - ok
21:33:58.0815 0x11fc  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
21:33:58.0815 0x11fc  C:\Windows\System32\WSHTCPIP.DLL - ok
21:33:58.0815 0x11fc  [ E07DEC52FF801841BA9B6878A60304FB ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
21:33:58.0815 0x11fc  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
21:33:58.0831 0x11fc  [ 905601FFF40D8DA9FA82CBE77D1F5EB1 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
21:33:58.0831 0x11fc  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
21:33:58.0831 0x11fc  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
21:33:58.0831 0x11fc  C:\Windows\System32\FirewallAPI.dll - ok
21:33:58.0847 0x11fc  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
21:33:58.0847 0x11fc  C:\Windows\System32\LogonUI.exe - ok
21:33:58.0847 0x11fc  [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
21:33:58.0847 0x11fc  C:\Windows\System32\authui.dll - ok
21:33:58.0847 0x11fc  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
21:33:58.0847 0x11fc  C:\Windows\System32\wtsapi32.dll - ok
21:33:58.0862 0x11fc  [ 2D4230F2F1D204A523998DF93F9DF066 ] C:\Program Files\Microsoft Security Client\MpClient.dll
21:33:58.0862 0x11fc  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
21:33:58.0862 0x11fc  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
21:33:58.0862 0x11fc  C:\Windows\System32\version.dll - ok
21:33:58.0862 0x11fc  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
21:33:58.0862 0x11fc  C:\Windows\System32\ntmarta.dll - ok
21:33:58.0878 0x11fc  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
21:33:58.0878 0x11fc  C:\Windows\System32\cryptui.dll - ok
21:33:58.0878 0x11fc  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
21:33:58.0878 0x11fc  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
21:33:58.0878 0x11fc  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
21:33:58.0878 0x11fc  C:\Windows\System32\samlib.dll - ok
21:33:58.0893 0x11fc  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
21:33:58.0893 0x11fc  C:\Windows\System32\shacct.dll - ok
21:33:58.0893 0x11fc  [ 9121C2E2507AD0BCBF9A7438051BEF34 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
21:33:58.0893 0x11fc  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
21:33:58.0893 0x11fc  [ 3F9B03B72577A6A7405BF30801CBD159 ] C:\Windows\System32\atiesrxx.exe
21:33:58.0893 0x11fc  C:\Windows\System32\atiesrxx.exe - ok
21:33:58.0909 0x11fc  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
21:33:58.0909 0x11fc  C:\Windows\System32\propsys.dll - ok
21:33:58.0909 0x11fc  [ 2F034150ECCBC498C53B61F98C5378AC ] C:\Program Files\Microsoft Security Client\MpRTP.dll
21:33:58.0909 0x11fc  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
21:33:58.0909 0x11fc  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
21:33:58.0909 0x11fc  C:\Windows\System32\wevtsvc.dll - ok
21:33:58.0925 0x11fc  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
21:33:58.0925 0x11fc  C:\Windows\System32\uxtheme.dll - ok
21:33:58.0925 0x11fc  [ C4C1947985144721A809965A19D616BC ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
21:33:58.0925 0x11fc  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
21:33:58.0925 0x11fc  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] C:\Windows\System32\drivers\MpFilter.sys
21:33:58.0925 0x11fc  C:\Windows\System32\drivers\MpFilter.sys - ok
21:33:58.0940 0x11fc  [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
21:33:58.0940 0x11fc  C:\Windows\System32\fltLib.dll - ok
21:33:58.0940 0x11fc  [ 967BC3664DDC26959BD43A7B1681FF86 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
21:33:58.0940 0x11fc  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
21:33:58.0956 0x11fc  [ CF4B80B372F55FFAF93830B3F808304E ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpengine.dll
21:33:58.0956 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpengine.dll - ok
21:33:58.0956 0x11fc  [ 18CAAF21CBA3EAEE17BBA5D3807F29B8 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
21:33:58.0956 0x11fc  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
21:33:58.0956 0x11fc  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
21:33:58.0956 0x11fc  C:\Windows\System32\audiosrv.dll - ok
21:33:58.0971 0x11fc  [ 5C78838B4D166D1A27DB3A8A820C799A ] C:\Windows\System32\profsvc.dll
21:33:58.0971 0x11fc  C:\Windows\System32\profsvc.dll - ok
21:33:58.0971 0x11fc  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
21:33:58.0971 0x11fc  C:\Windows\System32\FntCache.dll - ok
21:33:58.0971 0x11fc  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
21:33:58.0971 0x11fc  C:\Windows\System32\adtschema.dll - ok
21:33:58.0987 0x11fc  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
21:33:58.0987 0x11fc  C:\Windows\System32\avrt.dll - ok
21:33:58.0987 0x11fc  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
21:33:58.0987 0x11fc  C:\Windows\System32\mmcss.dll - ok
21:33:58.0987 0x11fc  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
21:33:58.0987 0x11fc  C:\Windows\System32\MMDevAPI.dll - ok
21:33:59.0003 0x11fc  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
21:33:59.0003 0x11fc  C:\Windows\System32\netprofm.dll - ok
21:33:59.0003 0x11fc  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
21:33:59.0003 0x11fc  C:\Windows\System32\audiodg.exe - ok
21:33:59.0003 0x11fc  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
21:33:59.0003 0x11fc  C:\Windows\System32\dui70.dll - ok
21:33:59.0018 0x11fc  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
21:33:59.0018 0x11fc  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
21:33:59.0018 0x11fc  [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
21:33:59.0018 0x11fc  C:\Windows\System32\WUDFPlatform.dll - ok
21:33:59.0018 0x11fc  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
21:33:59.0018 0x11fc  C:\Windows\System32\gpsvc.dll - ok
21:33:59.0034 0x11fc  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
21:33:59.0034 0x11fc  C:\Windows\System32\atl.dll - ok
21:33:59.0034 0x11fc  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
21:33:59.0034 0x11fc  C:\Windows\System32\duser.dll - ok
21:33:59.0034 0x11fc  [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
21:33:59.0034 0x11fc  C:\Windows\System32\nlaapi.dll - ok
21:33:59.0049 0x11fc  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
21:33:59.0049 0x11fc  C:\Windows\System32\SndVolSSO.dll - ok
21:33:59.0049 0x11fc  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
21:33:59.0049 0x11fc  C:\Windows\System32\themeservice.dll - ok
21:33:59.0065 0x11fc  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
21:33:59.0065 0x11fc  C:\Windows\System32\dsrole.dll - ok
21:33:59.0065 0x11fc  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
21:33:59.0065 0x11fc  C:\Windows\System32\es.dll - ok
21:33:59.0065 0x11fc  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
21:33:59.0065 0x11fc  C:\Windows\System32\slc.dll - ok
21:33:59.0081 0x11fc  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
21:33:59.0081 0x11fc  C:\Windows\System32\dwmapi.dll - ok
21:33:59.0081 0x11fc  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
21:33:59.0081 0x11fc  C:\Windows\System32\hid.dll - ok
21:33:59.0081 0x11fc  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
21:33:59.0081 0x11fc  C:\Windows\System32\comres.dll - ok
21:33:59.0096 0x11fc  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
21:33:59.0096 0x11fc  C:\Windows\System32\Sens.dll - ok
21:33:59.0096 0x11fc  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
21:33:59.0096 0x11fc  C:\Windows\System32\xmllite.dll - ok
21:33:59.0096 0x11fc  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
21:33:59.0096 0x11fc  C:\Windows\System32\uxsms.dll - ok
21:33:59.0112 0x11fc  [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
21:33:59.0112 0x11fc  C:\Windows\System32\WUDFSvc.dll - ok
21:33:59.0112 0x11fc  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
21:33:59.0112 0x11fc  C:\Windows\System32\WindowsCodecs.dll - ok
21:33:59.0112 0x11fc  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
21:33:59.0112 0x11fc  C:\Windows\System32\drivers\lltdio.sys - ok
21:33:59.0127 0x11fc  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
21:33:59.0127 0x11fc  C:\Windows\System32\drivers\nwifi.sys - ok
21:33:59.0127 0x11fc  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
21:33:59.0127 0x11fc  C:\Windows\System32\drivers\ndisuio.sys - ok
21:33:59.0127 0x11fc  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
21:33:59.0127 0x11fc  C:\Windows\System32\drivers\rspndr.sys - ok
21:33:59.0143 0x11fc  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
21:33:59.0143 0x11fc  C:\Windows\System32\IPHLPAPI.DLL - ok
21:33:59.0143 0x11fc  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
21:33:59.0143 0x11fc  C:\Windows\System32\lmhsvc.dll - ok
21:33:59.0143 0x11fc  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
21:33:59.0143 0x11fc  C:\Windows\System32\nsisvc.dll - ok
21:33:59.0159 0x11fc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
21:33:59.0159 0x11fc  C:\Windows\System32\dhcpcore.dll - ok
21:33:59.0159 0x11fc  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
21:33:59.0159 0x11fc  C:\Windows\System32\nrpsrv.dll - ok
21:33:59.0159 0x11fc  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
21:33:59.0159 0x11fc  C:\Windows\System32\winnsi.dll - ok
21:33:59.0174 0x11fc  [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
21:33:59.0174 0x11fc  C:\Windows\System32\dhcpcore6.dll - ok
21:33:59.0174 0x11fc  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
21:33:59.0174 0x11fc  C:\Windows\System32\dnsrslvr.dll - ok
21:33:59.0174 0x11fc  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
21:33:59.0174 0x11fc  C:\Windows\System32\eapphost.dll - ok
21:33:59.0190 0x11fc  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
21:33:59.0190 0x11fc  C:\Windows\System32\eapsvc.dll - ok
21:33:59.0190 0x11fc  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
21:33:59.0190 0x11fc  C:\Windows\System32\keyiso.dll - ok
21:33:59.0190 0x11fc  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
21:33:59.0190 0x11fc  C:\Windows\System32\FWPUCLNT.DLL - ok
21:33:59.0205 0x11fc  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
21:33:59.0205 0x11fc  C:\Windows\System32\dhcpcsvc.dll - ok
21:33:59.0205 0x11fc  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
21:33:59.0205 0x11fc  C:\Windows\System32\dnsext.dll - ok
21:33:59.0205 0x11fc  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
21:33:59.0205 0x11fc  C:\Windows\System32\umb.dll - ok
21:33:59.0221 0x11fc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
21:33:59.0221 0x11fc  C:\Windows\System32\wlansvc.dll - ok
21:33:59.0221 0x11fc  [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
21:33:59.0221 0x11fc  C:\Windows\System32\dhcpcsvc6.dll - ok
21:33:59.0221 0x11fc  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
21:33:59.0221 0x11fc  C:\Windows\System32\wlanmsm.dll - ok
21:33:59.0221 0x11fc  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
21:33:59.0221 0x11fc  C:\Windows\System32\wlansec.dll - ok
21:33:59.0237 0x11fc  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
21:33:59.0237 0x11fc  C:\Windows\System32\onex.dll - ok
21:33:59.0237 0x11fc  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
21:33:59.0237 0x11fc  C:\Windows\System32\eappcfg.dll - ok
21:33:59.0252 0x11fc  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
21:33:59.0252 0x11fc  C:\Windows\System32\eappprxy.dll - ok
21:33:59.0252 0x11fc  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
21:33:59.0252 0x11fc  C:\Windows\System32\l2gpstore.dll - ok
21:33:59.0252 0x11fc  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
21:33:59.0252 0x11fc  C:\Windows\System32\WinSCard.dll - ok
21:33:59.0268 0x11fc  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
21:33:59.0268 0x11fc  C:\Windows\System32\wlanutil.dll - ok
21:33:59.0268 0x11fc  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
21:33:59.0268 0x11fc  C:\Windows\System32\wlgpclnt.dll - ok
21:33:59.0268 0x11fc  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
21:33:59.0268 0x11fc  C:\Windows\System32\msxml6.dll - ok
21:33:59.0283 0x11fc  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
21:33:59.0283 0x11fc  C:\Windows\System32\winbrand.dll - ok
21:33:59.0283 0x11fc  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
21:33:59.0283 0x11fc  C:\Windows\System32\VaultCredProvider.dll - ok
21:33:59.0283 0x11fc  [ AAA38AEADCA8D614C3B842C447366F73 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
21:33:59.0283 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
21:33:59.0299 0x11fc  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
21:33:59.0299 0x11fc  C:\Windows\System32\winspool.drv - ok
21:33:59.0299 0x11fc  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
21:33:59.0299 0x11fc  C:\Windows\System32\bthprops.cpl - ok
21:33:59.0299 0x11fc  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:33:59.0299 0x11fc  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:33:59.0315 0x11fc  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
21:33:59.0315 0x11fc  C:\Windows\System32\BioCredProv.dll - ok
21:33:59.0315 0x11fc  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
21:33:59.0315 0x11fc  C:\Windows\System32\shsvcs.dll - ok
21:33:59.0315 0x11fc  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
21:33:59.0315 0x11fc  C:\Windows\System32\winbio.dll - ok
21:33:59.0330 0x11fc  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
21:33:59.0330 0x11fc  C:\Windows\System32\credui.dll - ok
21:33:59.0330 0x11fc  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
21:33:59.0330 0x11fc  C:\Windows\System32\schedsvc.dll - ok
21:33:59.0330 0x11fc  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
21:33:59.0330 0x11fc  C:\Windows\System32\netapi32.dll - ok
21:33:59.0346 0x11fc  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
21:33:59.0346 0x11fc  C:\Windows\System32\vaultcli.dll - ok
21:33:59.0346 0x11fc  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
21:33:59.0346 0x11fc  C:\Windows\System32\netutils.dll - ok
21:33:59.0346 0x11fc  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
21:33:59.0346 0x11fc  C:\Windows\System32\samcli.dll - ok
21:33:59.0361 0x11fc  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
21:33:59.0361 0x11fc  C:\Windows\System32\wkscli.dll - ok
21:33:59.0361 0x11fc  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
21:33:59.0361 0x11fc  C:\Windows\System32\certCredProvider.dll - ok
21:33:59.0377 0x11fc  [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
21:33:59.0377 0x11fc  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
21:33:59.0377 0x11fc  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
21:33:59.0377 0x11fc  C:\Windows\System32\rasplap.dll - ok
21:33:59.0377 0x11fc  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
21:33:59.0377 0x11fc  C:\Windows\System32\rasapi32.dll - ok
21:33:59.0393 0x11fc  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
21:33:59.0393 0x11fc  C:\Windows\System32\rasman.dll - ok
21:33:59.0393 0x11fc  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
21:33:59.0393 0x11fc  C:\Windows\System32\ktmw32.dll - ok
21:33:59.0408 0x11fc  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
21:33:59.0408 0x11fc  C:\Windows\System32\rtutils.dll - ok
21:33:59.0408 0x11fc  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
21:33:59.0408 0x11fc  C:\Windows\System32\UXInit.dll - ok
21:33:59.0424 0x11fc  [ C236216B4299CF874B4F4AD2D73C58F3 ] C:\Windows\System32\atieclxx.exe
21:33:59.0424 0x11fc  C:\Windows\System32\atieclxx.exe - ok
21:33:59.0424 0x11fc  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
21:33:59.0424 0x11fc  C:\Windows\System32\fveapi.dll - ok
21:33:59.0424 0x11fc  [ 0EC880E5F677EF8DDC9ACCEE9D91E8F0 ] C:\Windows\System32\atiadlxx.dll
21:33:59.0424 0x11fc  C:\Windows\System32\atiadlxx.dll - ok
21:33:59.0439 0x11fc  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
21:33:59.0439 0x11fc  C:\Windows\System32\fvecerts.dll - ok
21:33:59.0439 0x11fc  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
21:33:59.0439 0x11fc  C:\Windows\System32\tbs.dll - ok
21:33:59.0439 0x11fc  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
21:33:59.0439 0x11fc  C:\Windows\System32\taskcomp.dll - ok
21:33:59.0455 0x11fc  [ BF4D2C4C6B5692A0B141433087513056 ] C:\Windows\System32\atimuixx.dll
21:33:59.0455 0x11fc  C:\Windows\System32\atimuixx.dll - ok
21:33:59.0455 0x11fc  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
21:33:59.0455 0x11fc  C:\Windows\System32\netcfgx.dll - ok
21:33:59.0455 0x11fc  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
21:33:59.0455 0x11fc  C:\Windows\System32\drivers\http.sys - ok
21:33:59.0471 0x11fc  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
21:33:59.0471 0x11fc  C:\Windows\System32\taskeng.exe - ok
21:33:59.0471 0x11fc  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
21:33:59.0471 0x11fc  C:\Windows\System32\wiarpc.dll - ok
21:33:59.0471 0x11fc  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
21:33:59.0471 0x11fc  C:\Windows\System32\drivers\vwifimp.sys - ok
21:33:59.0486 0x11fc  [ B96C17B5DC1424D56EEA3A99E97428CD ] C:\Windows\System32\spoolsv.exe
21:33:59.0486 0x11fc  C:\Windows\System32\spoolsv.exe - ok
 



21:33:59.0486 0x11fc  [ 42187A1D9417F397F889C52F8F2AAE82 ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
21:33:59.0486 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
21:33:59.0486 0x11fc  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
21:33:59.0486 0x11fc  C:\Windows\System32\TSChannel.dll - ok
21:33:59.0502 0x11fc  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
21:33:59.0502 0x11fc  C:\Windows\System32\MPSSVC.dll - ok
21:33:59.0502 0x11fc  [ 6061114558D3D1CBE66F2EF2AF148966 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80.dll
21:33:59.0502 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80.dll - ok
21:33:59.0502 0x11fc  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
21:33:59.0502 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
21:33:59.0517 0x11fc  [ 442235AC4F20B195F932990CAE47408E ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll
21:33:59.0517 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll - ok
21:33:59.0517 0x11fc  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
21:33:59.0517 0x11fc  C:\Windows\System32\imageres.dll - ok
21:33:59.0517 0x11fc  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
21:33:59.0517 0x11fc  C:\Windows\System32\BFE.DLL - ok
21:33:59.0533 0x11fc  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
21:33:59.0533 0x11fc  C:\Windows\System32\drivers\bowser.sys - ok
21:33:59.0533 0x11fc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
21:33:59.0533 0x11fc  C:\Windows\System32\drivers\mpsdrv.sys - ok
21:33:59.0549 0x11fc  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
21:33:59.0549 0x11fc  C:\Windows\System32\wfapigp.dll - ok
21:33:59.0549 0x11fc  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
21:33:59.0549 0x11fc  C:\Windows\System32\drivers\fltMgr.sys - ok
21:33:59.0549 0x11fc  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
21:33:59.0549 0x11fc  C:\Windows\System32\PSHED.DLL - ok
21:33:59.0564 0x11fc  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
21:33:59.0564 0x11fc  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
21:33:59.0564 0x11fc  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
21:33:59.0564 0x11fc  C:\Windows\System32\dllhost.exe - ok
21:33:59.0580 0x11fc  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
21:33:59.0580 0x11fc  C:\Windows\System32\mscms.dll - ok
21:33:59.0580 0x11fc  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
21:33:59.0580 0x11fc  C:\Windows\System32\pcasvc.dll - ok
21:33:59.0580 0x11fc  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
21:33:59.0580 0x11fc  C:\Windows\System32\snmptrap.exe - ok
21:33:59.0595 0x11fc  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
21:33:59.0595 0x11fc  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
21:33:59.0595 0x11fc  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
21:33:59.0595 0x11fc  C:\Windows\System32\IDStore.dll - ok
21:33:59.0611 0x11fc  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
21:33:59.0611 0x11fc  C:\Windows\System32\provsvc.dll - ok
21:33:59.0611 0x11fc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
21:33:59.0611 0x11fc  C:\Windows\System32\sstpsvc.dll - ok
21:33:59.0627 0x11fc  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
21:33:59.0627 0x11fc  C:\Windows\System32\mpr.dll - ok
21:33:59.0628 0x11fc  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
21:33:59.0628 0x11fc  C:\Windows\System32\userinit.exe - ok
21:33:59.0628 0x11fc  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
21:33:59.0628 0x11fc  C:\Windows\System32\dwm.exe - ok
21:33:59.0643 0x11fc  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
21:33:59.0643 0x11fc  C:\Windows\System32\dwmredir.dll - ok
21:33:59.0643 0x11fc  [ 6D2CBAE98E51066007D8990265C76AF6 ] C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe
21:33:59.0643 0x11fc  C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe - ok
21:33:59.0643 0x11fc  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
21:33:59.0643 0x11fc  C:\Windows\System32\taskhost.exe - ok
21:33:59.0659 0x11fc  [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
21:33:59.0659 0x11fc  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
21:33:59.0659 0x11fc  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
21:33:59.0659 0x11fc  C:\Windows\System32\PlaySndSrv.dll - ok
21:33:59.0674 0x11fc  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
21:33:59.0674 0x11fc  C:\Windows\System32\HotStartUserAgent.dll - ok
21:33:59.0674 0x11fc  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
21:33:59.0674 0x11fc  C:\Windows\System32\MsCtfMonitor.dll - ok
21:33:59.0674 0x11fc  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
21:33:59.0674 0x11fc  C:\Windows\System32\msutb.dll - ok
21:33:59.0690 0x11fc  [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
21:33:59.0690 0x11fc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
21:33:59.0690 0x11fc  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
21:33:59.0690 0x11fc  C:\Windows\System32\esent.dll - ok
21:33:59.0690 0x11fc  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
21:33:59.0690 0x11fc  C:\Windows\System32\dwmcore.dll - ok
21:33:59.0706 0x11fc  [ 0D7BE936A44E6B70F822D272A5CEBC22 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
21:33:59.0706 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok
21:33:59.0706 0x11fc  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
21:33:59.0706 0x11fc  C:\Windows\System32\d3d10_1.dll - ok
21:33:59.0721 0x11fc  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
21:33:59.0721 0x11fc  C:\Windows\System32\d3d10_1core.dll - ok
21:33:59.0721 0x11fc  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
21:33:59.0721 0x11fc  C:\Windows\System32\dxgi.dll - ok
21:33:59.0721 0x11fc  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
21:33:59.0721 0x11fc  C:\Windows\System32\d3d11.dll - ok
21:33:59.0737 0x11fc  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
21:33:59.0737 0x11fc  C:\Windows\explorer.exe - ok
21:33:59.0737 0x11fc  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
21:33:59.0737 0x11fc  C:\Windows\System32\ExplorerFrame.dll - ok
21:33:59.0752 0x11fc  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
21:33:59.0752 0x11fc  C:\Windows\System32\winmm.dll - ok
21:33:59.0752 0x11fc  [ C00807C1B20D963F6660C60AC830CE5A ] C:\Windows\System32\aticfx64.dll
21:33:59.0752 0x11fc  C:\Windows\System32\aticfx64.dll - ok
21:33:59.0752 0x11fc  [ F5FC62B6D96FE46D66387FAB2AB61C8C ] C:\Windows\System32\atiuxp64.dll
21:33:59.0752 0x11fc  C:\Windows\System32\atiuxp64.dll - ok
21:33:59.0768 0x11fc  [ 21C7B3A763A2667A16BAF2BC2026817E ] C:\Windows\System32\atidxx64.dll
21:33:59.0768 0x11fc  C:\Windows\System32\atidxx64.dll - ok
21:33:59.0768 0x11fc  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
21:33:59.0768 0x11fc  C:\Windows\System32\uDWM.dll - ok
21:33:59.0784 0x11fc  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
21:33:59.0784 0x11fc  C:\Program Files\Bonjour\mdnsNSP.dll - ok
21:33:59.0784 0x11fc  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
21:33:59.0784 0x11fc  C:\Windows\System32\rasadhlp.dll - ok
21:33:59.0784 0x11fc  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
21:33:59.0784 0x11fc  C:\Windows\System32\drivers\mrxsmb.sys - ok
21:33:59.0799 0x11fc  [ ADA4A7FBF8492683CB9E33C23E088FFD ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpasbase.vdm
21:33:59.0799 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpasbase.vdm - ok
21:33:59.0799 0x11fc  [ 4EA5A73CA1AF72327A48A54B19152D23 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpasdlta.vdm
21:33:59.0799 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpasdlta.vdm - ok
21:33:59.0815 0x11fc  [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpavbase.vdm
21:33:59.0815 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpavbase.vdm - ok
21:33:59.0815 0x11fc  [ E45FE0290596BE0F3485774E49B11431 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpavdlta.vdm
21:33:59.0815 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0737A8E-203E-4E2A-B9AB-3FD01CAEFF52}\mpavdlta.vdm - ok
21:33:59.0815 0x11fc  [ 7AACDCCE2CF59AD950139A91C6B29F44 ] C:\Users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
21:33:59.0815 0x11fc  C:\Users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll - ok
21:33:59.0830 0x11fc  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
21:33:59.0830 0x11fc  C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:33:59.0830 0x11fc  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
21:33:59.0830 0x11fc  C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:33:59.0846 0x11fc  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
21:33:59.0846 0x11fc  C:\Windows\System32\wkssvc.dll - ok
21:33:59.0846 0x11fc  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
21:33:59.0846 0x11fc  C:\Windows\System32\dbghelp.dll - ok
21:33:59.0862 0x11fc  [ BE165318E0052A91F7EA36F515B5F2B1 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll
21:33:59.0862 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll - ok
21:33:59.0862 0x11fc  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
21:33:59.0862 0x11fc  C:\Windows\System32\localspl.dll - ok
21:33:59.0862 0x11fc  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
21:33:59.0862 0x11fc  C:\Windows\System32\spoolss.dll - ok
21:33:59.0877 0x11fc  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
21:33:59.0877 0x11fc  C:\Windows\System32\PrintIsolationProxy.dll - ok
21:33:59.0877 0x11fc  [ E3BF12C68F844E689D1A9D7E6B54742A ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
21:33:59.0877 0x11fc  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
21:33:59.0877 0x11fc  [ 0BEB0C931BC24F610EE87179F31A8A42 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
21:33:59.0877 0x11fc  C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
21:33:59.0893 0x11fc  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
21:33:59.0893 0x11fc  C:\Windows\System32\conhost.exe - ok
21:33:59.0893 0x11fc  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
21:33:59.0893 0x11fc  C:\Windows\System32\wscapi.dll - ok
21:33:59.0893 0x11fc  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
21:33:59.0893 0x11fc  C:\Windows\System32\cabinet.dll - ok
21:33:59.0908 0x11fc  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
21:33:59.0908 0x11fc  C:\Windows\System32\p2pcollab.dll - ok
21:33:59.0908 0x11fc  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
21:33:59.0908 0x11fc  C:\Windows\System32\QAGENTRT.DLL - ok
21:33:59.0908 0x11fc  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
21:33:59.0908 0x11fc  C:\Windows\System32\fveui.dll - ok
21:33:59.0924 0x11fc  [ 577D0DC85524A16FE29D7956B22974C4 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
21:33:59.0924 0x11fc  C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
21:33:59.0924 0x11fc  [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
21:33:59.0924 0x11fc  C:\Windows\System32\slwga.dll - ok
21:33:59.0924 0x11fc  [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
21:33:59.0924 0x11fc  C:\Windows\System32\sppc.dll - ok
21:33:59.0940 0x11fc  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
21:33:59.0940 0x11fc  C:\Windows\System32\EhStorShell.dll - ok
21:33:59.0940 0x11fc  [ 7BBF670114373CE6A203FA155A9E0D0A ] C:\Windows\System32\ntshrui.dll
21:33:59.0940 0x11fc  C:\Windows\System32\ntshrui.dll - ok
21:33:59.0940 0x11fc  [ A14D4FF189D4FFABB2719A774049E8E1 ] C:\Windows\System32\EKIJ5000MON.dll
21:33:59.0940 0x11fc  C:\Windows\System32\EKIJ5000MON.dll - ok
21:33:59.0955 0x11fc  [ 11A52CF7B265631DEEB24C6149309EFF ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:33:59.0955 0x11fc  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
21:33:59.0955 0x11fc  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
21:33:59.0955 0x11fc  C:\Windows\System32\cscapi.dll - ok
21:33:59.0955 0x11fc  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
21:33:59.0955 0x11fc  C:\Windows\System32\FXSMON.dll - ok
21:33:59.0971 0x11fc  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
21:33:59.0971 0x11fc  C:\Windows\System32\IconCodecService.dll - ok
21:33:59.0971 0x11fc  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
21:33:59.0971 0x11fc  C:\Windows\System32\tcpmon.dll - ok
21:33:59.0971 0x11fc  [ 528D298F9914C558EA7A9809BE598E65 ] C:\Windows\SysWOW64\ntdll.dll
21:33:59.0971 0x11fc  C:\Windows\SysWOW64\ntdll.dll - ok
21:33:59.0971 0x11fc  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
21:33:59.0971 0x11fc  C:\Windows\System32\snmpapi.dll - ok
21:33:59.0986 0x11fc  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
21:33:59.0986 0x11fc  C:\Windows\System32\wsnmp32.dll - ok
21:33:59.0986 0x11fc  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
21:33:59.0986 0x11fc  C:\Windows\System32\usbmon.dll - ok
21:33:59.0986 0x11fc  [ D6180FBBADA79BC28E5FD8187EBE7F64 ] C:\Windows\System32\wow64.dll
21:33:59.0986 0x11fc  C:\Windows\System32\wow64.dll - ok
21:34:00.0002 0x11fc  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
21:34:00.0002 0x11fc  C:\Windows\System32\wow64win.dll - ok
21:34:00.0002 0x11fc  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
21:34:00.0002 0x11fc  C:\Windows\System32\WSDMon.dll - ok
21:34:00.0002 0x11fc  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
21:34:00.0002 0x11fc  C:\Windows\System32\WSDApi.dll - ok
21:34:00.0018 0x11fc  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
21:34:00.0018 0x11fc  C:\Windows\System32\webservices.dll - ok
21:34:00.0018 0x11fc  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
21:34:00.0018 0x11fc  C:\Windows\System32\fundisc.dll - ok
21:34:00.0033 0x11fc  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
21:34:00.0033 0x11fc  C:\Windows\System32\fdPnp.dll - ok
21:34:00.0033 0x11fc  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
21:34:00.0033 0x11fc  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
21:34:00.0033 0x11fc  [ A6307861451FC3B51D0C867466BDD76D ] C:\Windows\System32\spool\prtprocs\x64\EKIJ5000PPR.dll
21:34:00.0033 0x11fc  C:\Windows\System32\spool\prtprocs\x64\EKIJ5000PPR.dll - ok
21:34:00.0049 0x11fc  [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
21:34:00.0049 0x11fc  C:\Windows\System32\win32spl.dll - ok
21:34:00.0049 0x11fc  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
21:34:00.0049 0x11fc  C:\Windows\System32\inetpp.dll - ok
21:34:00.0049 0x11fc  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
21:34:00.0049 0x11fc  C:\Windows\System32\wow64cpu.dll - ok
21:34:00.0064 0x11fc  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
21:34:00.0064 0x11fc  C:\Windows\SysWOW64\kernel32.dll - ok
21:34:00.0064 0x11fc  [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
21:34:00.0064 0x11fc  C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
21:34:00.0064 0x11fc  [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
21:34:00.0064 0x11fc  C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
21:34:00.0080 0x11fc  [ 408938F3296261B3D11C0851322DCF58 ] C:\Windows\System32\spool\drivers\x64\3\EKIJ5000UIP.dll
21:34:00.0080 0x11fc  C:\Windows\System32\spool\drivers\x64\3\EKIJ5000UIP.dll - ok
21:34:00.0080 0x11fc  [ CDA59C183B3DB8CF35380836ADD74AAD ] C:\Windows\System32\compstui.dll
21:34:00.0080 0x11fc  C:\Windows\System32\compstui.dll - ok
21:34:00.0096 0x11fc  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
21:34:00.0096 0x11fc  C:\Windows\System32\msimg32.dll - ok
21:34:00.0096 0x11fc  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
21:34:00.0096 0x11fc  C:\Windows\SysWOW64\KernelBase.dll - ok
21:34:00.0096 0x11fc  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
21:34:00.0096 0x11fc  C:\Windows\SysWOW64\psapi.dll - ok
21:34:00.0111 0x11fc  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
21:34:00.0111 0x11fc  C:\Windows\SysWOW64\user32.dll - ok
21:34:00.0111 0x11fc  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
21:34:00.0111 0x11fc  C:\Windows\SysWOW64\gdi32.dll - ok
21:34:00.0127 0x11fc  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
21:34:00.0127 0x11fc  C:\Windows\SysWOW64\lpk.dll - ok
21:34:00.0127 0x11fc  [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
21:34:00.0127 0x11fc  C:\Windows\SysWOW64\usp10.dll - ok
21:34:00.0127 0x11fc  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
21:34:00.0127 0x11fc  C:\Windows\SysWOW64\msvcrt.dll - ok
21:34:00.0142 0x11fc  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
21:34:00.0142 0x11fc  C:\Windows\SysWOW64\advapi32.dll - ok
21:34:00.0142 0x11fc  [ 4DC999CED9429939D75682EBD7D48901 ] C:\Windows\SysWOW64\rpcrt4.dll
21:34:00.0142 0x11fc  C:\Windows\SysWOW64\rpcrt4.dll - ok
21:34:00.0142 0x11fc  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
21:34:00.0142 0x11fc  C:\Windows\SysWOW64\sechost.dll - ok
21:34:00.0142 0x11fc  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
21:34:00.0142 0x11fc  C:\Windows\SysWOW64\cryptbase.dll - ok
21:34:00.0158 0x11fc  [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
21:34:00.0158 0x11fc  C:\Windows\SysWOW64\shell32.dll - ok
21:34:00.0158 0x11fc  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
21:34:00.0158 0x11fc  C:\Windows\SysWOW64\sspicli.dll - ok
21:34:00.0158 0x11fc  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
21:34:00.0158 0x11fc  C:\Windows\SysWOW64\shlwapi.dll - ok
21:34:00.0174 0x11fc  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
21:34:00.0174 0x11fc  C:\Windows\SysWOW64\ole32.dll - ok
21:34:00.0174 0x11fc  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
21:34:00.0174 0x11fc  C:\Windows\SysWOW64\oleaut32.dll - ok
21:34:00.0174 0x11fc  [ AE8EB083B050E17A7D6EB5E28AECDDD6 ] C:\Windows\SysWOW64\crypt32.dll
21:34:00.0174 0x11fc  C:\Windows\SysWOW64\crypt32.dll - ok
21:34:00.0189 0x11fc  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
21:34:00.0189 0x11fc  C:\Windows\SysWOW64\msasn1.dll - ok
21:34:00.0189 0x11fc  [ 68EAAEDF0365168B804E8728368FA946 ] C:\Windows\SysWOW64\wintrust.dll
21:34:00.0189 0x11fc  C:\Windows\SysWOW64\wintrust.dll - ok
21:34:00.0205 0x11fc  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
21:34:00.0205 0x11fc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
21:34:00.0205 0x11fc  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
21:34:00.0205 0x11fc  C:\Windows\SysWOW64\imm32.dll - ok
21:34:00.0205 0x11fc  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
21:34:00.0205 0x11fc  C:\Windows\SysWOW64\msctf.dll - ok
21:34:00.0220 0x11fc  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:34:00.0220 0x11fc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
21:34:00.0220 0x11fc  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
21:34:00.0220 0x11fc  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
21:34:00.0220 0x11fc  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
21:34:00.0220 0x11fc  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
21:34:00.0236 0x11fc  [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
21:34:00.0236 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
21:34:00.0236 0x11fc  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
21:34:00.0236 0x11fc  C:\Windows\SysWOW64\version.dll - ok
21:34:00.0236 0x11fc  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
21:34:00.0236 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
21:34:00.0252 0x11fc  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
21:34:00.0252 0x11fc  C:\Windows\System32\wer.dll - ok
21:34:00.0252 0x11fc  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:34:00.0252 0x11fc  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
21:34:00.0252 0x11fc  [ FF60B8C5BBE73B0790B3332783B6FD81 ] C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll
21:34:00.0252 0x11fc  C:\Program Files (x86)\Google\Update\1.3.21.153\goopdate.dll - ok
21:34:00.0267 0x11fc  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
21:34:00.0267 0x11fc  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
21:34:00.0267 0x11fc  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
21:34:00.0267 0x11fc  C:\Windows\SysWOW64\nsi.dll - ok
21:34:00.0267 0x11fc  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
21:34:00.0267 0x11fc  C:\Windows\SysWOW64\winnsi.dll - ok
21:34:00.0283 0x11fc  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
21:34:00.0283 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
21:34:00.0283 0x11fc  [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
21:34:00.0283 0x11fc  C:\Windows\System32\mgmtapi.dll - ok
21:34:00.0298 0x11fc  [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
21:34:00.0298 0x11fc  C:\Windows\System32\tcpmib.dll - ok
21:34:00.0298 0x11fc  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
21:34:00.0298 0x11fc  C:\Windows\SysWOW64\ws2_32.dll - ok
21:34:00.0298 0x11fc  [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
21:34:00.0298 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
21:34:00.0314 0x11fc  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
21:34:00.0314 0x11fc  C:\Windows\SysWOW64\wsock32.dll - ok
21:34:00.0314 0x11fc  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
21:34:00.0314 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
21:34:00.0314 0x11fc  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
21:34:00.0314 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
21:34:00.0330 0x11fc  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
21:34:00.0330 0x11fc  C:\Windows\SysWOW64\winmm.dll - ok
21:34:00.0330 0x11fc  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
21:34:00.0330 0x11fc  C:\Windows\SysWOW64\netapi32.dll - ok
21:34:00.0330 0x11fc  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
21:34:00.0330 0x11fc  C:\Windows\SysWOW64\netutils.dll - ok
21:34:00.0345 0x11fc  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
21:34:00.0345 0x11fc  C:\Windows\SysWOW64\srvcli.dll - ok
21:34:00.0345 0x11fc  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
21:34:00.0345 0x11fc  C:\Windows\SysWOW64\wkscli.dll - ok
21:34:00.0345 0x11fc  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
21:34:00.0345 0x11fc  C:\Windows\System32\SensApi.dll - ok
21:34:00.0361 0x11fc  [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
21:34:00.0361 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
21:34:00.0361 0x11fc  [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
21:34:00.0361 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
21:34:00.0361 0x11fc  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
21:34:00.0376 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
21:34:00.0376 0x11fc  [ C4CE3410C807C16F8B14081B9F00045D ] C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
21:34:00.0376 0x11fc  C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe - ok
21:34:00.0376 0x11fc  [ 5111C2975C5FB818EF6CA7EC36BF818E ] C:\Program Files (x86)\SONY\Setting Utility Series\WBCBatteryCare.exe
21:34:00.0376 0x11fc  C:\Program Files (x86)\SONY\Setting Utility Series\WBCBatteryCare.exe - ok
21:34:00.0392 0x11fc  [ DE855170C93C70921021F0C949B70CFF ] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
21:34:00.0392 0x11fc  C:\Program Files\Sony\VAIO Power Management\SPMgr.exe - ok
21:34:00.0392 0x11fc  [ BECDE11A78BDF621DF2053019DE87307 ] C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll
21:34:00.0392 0x11fc  C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll - ok
21:34:00.0392 0x11fc  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
21:34:00.0392 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
21:34:00.0408 0x11fc  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
21:34:00.0408 0x11fc  C:\Windows\SysWOW64\profapi.dll - ok
21:34:00.0408 0x11fc  [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
21:34:00.0408 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
21:34:00.0423 0x11fc  [ C6CB7CE4CC4CE34E271A46194256D32D ] C:\Program Files\Sony\VAIO Power Management\SPMDrv.dll
21:34:00.0423 0x11fc  C:\Program Files\Sony\VAIO Power Management\SPMDrv.dll - ok
21:34:00.0423 0x11fc  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
21:34:00.0423 0x11fc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
21:34:00.0439 0x11fc  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
21:34:00.0439 0x11fc  C:\Windows\SysWOW64\imagehlp.dll - ok
21:34:00.0439 0x11fc  [ 0CE4D3BD306DA6D1F6F233C403F5B667 ] C:\Windows\SysWOW64\msi.dll
21:34:00.0439 0x11fc  C:\Windows\SysWOW64\msi.dll - ok
21:34:00.0439 0x11fc  [ DAA3903F06116AE9EE7AC1D1B93684A4 ] C:\Windows\SysWOW64\wininet.dll
21:34:00.0439 0x11fc  C:\Windows\SysWOW64\wininet.dll - ok
21:34:00.0454 0x11fc  [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
21:34:00.0454 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
21:34:00.0454 0x11fc  [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
21:34:00.0454 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
21:34:00.0470 0x11fc  [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
21:34:00.0470 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
21:34:00.0470 0x11fc  [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
21:34:00.0470 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
21:34:00.0470 0x11fc  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
21:34:00.0470 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
21:34:00.0486 0x11fc  [ D0E0086BA353C379DCFE8624E8B8F17A ] C:\Windows\SysWOW64\iertutil.dll
21:34:00.0486 0x11fc  C:\Windows\SysWOW64\iertutil.dll - ok
21:34:00.0486 0x11fc  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
21:34:00.0486 0x11fc  C:\Windows\SysWOW64\cscapi.dll - ok
21:34:00.0501 0x11fc  [ 84174CA0E190BB9D1EFD0F005FE13B35 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
21:34:00.0501 0x11fc  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
21:34:00.0501 0x11fc  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
21:34:00.0501 0x11fc  C:\Windows\SysWOW64\comdlg32.dll - ok
21:34:00.0501 0x11fc  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
21:34:00.0501 0x11fc  C:\Windows\SysWOW64\wtsapi32.dll - ok
21:34:00.0517 0x11fc  [ 7E8A672B7B06A6EB11960C22E0360C59 ] C:\Windows\System32\d2d1.dll
21:34:00.0517 0x11fc  C:\Windows\System32\d2d1.dll - ok
21:34:00.0517 0x11fc  [ DD85F00EC31F77315AE992B7B0411D65 ] C:\Windows\System32\DWrite.dll
21:34:00.0517 0x11fc  C:\Windows\System32\DWrite.dll - ok
21:34:00.0517 0x11fc  [ 6A16BCE3C09496650BE881C467611653 ] C:\Windows\System32\msi.dll
21:34:00.0517 0x11fc  C:\Windows\System32\msi.dll - ok
21:34:00.0532 0x11fc  [ 035959D3C1605D6DB6042D4B0190B766 ] C:\Program Files\Sony\VAIO Gate\NotificationWrapper.dll
21:34:00.0532 0x11fc  C:\Program Files\Sony\VAIO Gate\NotificationWrapper.dll - ok
21:34:00.0532 0x11fc  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
21:34:00.0532 0x11fc  C:\Windows\System32\oledlg.dll - ok
21:34:00.0548 0x11fc  [ 1DDA48E17B6CDB717F0D783D5B755141 ] C:\Program Files\Sony\VAIO Gate\MouseHook.dll
21:34:00.0548 0x11fc  C:\Program Files\Sony\VAIO Gate\MouseHook.dll - ok
21:34:00.0548 0x11fc  [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
21:34:00.0548 0x11fc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
21:34:00.0548 0x11fc  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
21:34:00.0548 0x11fc  C:\Windows\SysWOW64\ntmarta.dll - ok
21:34:00.0564 0x11fc  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
21:34:00.0564 0x11fc  C:\Windows\SysWOW64\Wldap32.dll - ok
21:34:00.0564 0x11fc  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
21:34:00.0564 0x11fc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
21:34:00.0579 0x11fc  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
21:34:00.0579 0x11fc  C:\Windows\SysWOW64\dbghelp.dll - ok
21:34:00.0579 0x11fc  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
21:34:00.0579 0x11fc  C:\Windows\SysWOW64\setupapi.dll - ok
21:34:00.0595 0x11fc  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
21:34:00.0595 0x11fc  C:\Windows\SysWOW64\apphelp.dll - ok
21:34:00.0595 0x11fc  [ 8726802EA4FBFFA3FD54FD2449BF51D4 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
21:34:00.0595 0x11fc  C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe - ok
21:34:00.0610 0x11fc  [ D9A08472D8D0218A0AE2C9D9F63EA531 ] C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
21:34:00.0610 0x11fc  C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe - ok
21:34:00.0610 0x11fc  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
21:34:00.0610 0x11fc  C:\Windows\SysWOW64\clbcatq.dll - ok
21:34:00.0626 0x11fc  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
21:34:00.0626 0x11fc  C:\Windows\SysWOW64\cfgmgr32.dll - ok
21:34:00.0626 0x11fc  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
21:34:00.0626 0x11fc  C:\Windows\SysWOW64\mstask.dll - ok
21:34:00.0626 0x11fc  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
21:34:00.0626 0x11fc  C:\Windows\SysWOW64\devobj.dll - ok
21:34:00.0642 0x11fc  [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
21:34:00.0642 0x11fc  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
21:34:00.0642 0x11fc  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
21:34:00.0642 0x11fc  C:\Windows\SysWOW64\userenv.dll - ok
21:34:00.0642 0x11fc  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
21:34:00.0642 0x11fc  C:\Windows\SysWOW64\dnssd.dll - ok
21:34:00.0657 0x11fc  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
21:34:00.0657 0x11fc  C:\Program Files\Bonjour\mDNSResponder.exe - ok
21:34:00.0657 0x11fc  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
21:34:00.0657 0x11fc  C:\Windows\SysWOW64\mswsock.dll - ok
21:34:00.0657 0x11fc  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
21:34:00.0657 0x11fc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
21:34:00.0673 0x11fc  [ 31DA517946FFE416442E864592548F8A ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:34:00.0673 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
21:34:00.0673 0x11fc  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
21:34:00.0673 0x11fc  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
21:34:00.0688 0x11fc  [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
21:34:00.0688 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
21:34:00.0688 0x11fc  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
21:34:00.0688 0x11fc  C:\Windows\SysWOW64\winspool.drv - ok
21:34:00.0688 0x11fc  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
21:34:00.0688 0x11fc  C:\Windows\SysWOW64\oledlg.dll - ok
21:34:00.0704 0x11fc  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
21:34:00.0704 0x11fc  C:\Windows\SysWOW64\uxtheme.dll - ok
21:34:00.0704 0x11fc  [ DDACE49B758D25408E41C44A91CDD758 ] C:\Program Files (x86)\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll
21:34:00.0704 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll - ok
21:34:00.0720 0x11fc  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
21:34:00.0720 0x11fc  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
21:34:00.0720 0x11fc  [ 5ABCE0ECAEFAAEE30CA678B489DC0EFE ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
21:34:00.0720 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
21:34:00.0720 0x11fc  [ 6B400F211BEE880A37A1ED0368776BF4 ] C:\Windows\System32\cryptsvc.dll
21:34:00.0720 0x11fc  C:\Windows\System32\cryptsvc.dll - ok
21:34:00.0735 0x11fc  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
21:34:00.0735 0x11fc  C:\Windows\System32\dps.dll - ok
21:34:00.0735 0x11fc  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
21:34:00.0735 0x11fc  C:\Windows\System32\FDResPub.dll - ok
21:34:00.0751 0x11fc  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
21:34:00.0751 0x11fc  C:\Windows\System32\tapi32.dll - ok
21:34:00.0751 0x11fc  [ 25073E4054E18470C9684CBCFAFF56FE ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
21:34:00.0751 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
21:34:00.0766 0x11fc  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
21:34:00.0766 0x11fc  C:\Windows\System32\IKEEXT.DLL - ok
21:34:00.0766 0x11fc  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
21:34:00.0766 0x11fc  C:\Windows\System32\vpnikeapi.dll - ok
21:34:00.0782 0x11fc  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
21:34:00.0782 0x11fc  C:\Windows\System32\taskschd.dll - ok
21:34:00.0782 0x11fc  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
21:34:00.0782 0x11fc  C:\Windows\System32\wdi.dll - ok
21:34:00.0798 0x11fc  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
21:34:00.0798 0x11fc  C:\Windows\System32\webio.dll - ok
21:34:00.0798 0x11fc  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
21:34:00.0798 0x11fc  C:\Windows\System32\winhttp.dll - ok
21:34:00.0798 0x11fc  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
21:34:00.0798 0x11fc  C:\Windows\System32\httpapi.dll - ok
21:34:00.0813 0x11fc  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
21:34:00.0813 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
21:34:00.0813 0x11fc  [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
21:34:00.0813 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
21:34:00.0813 0x11fc  [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
21:34:00.0829 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
21:34:00.0829 0x11fc  [ A6B726DCA228F7878E38368A1BDC68BE ] C:\Windows\System32\cryptnet.dll
21:34:00.0829 0x11fc  C:\Windows\System32\cryptnet.dll - ok
21:34:00.0829 0x11fc  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
21:34:00.0829 0x11fc  C:\Windows\System32\vssapi.dll - ok
21:34:00.0844 0x11fc  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
21:34:00.0844 0x11fc  C:\Windows\System32\vsstrace.dll - ok
21:34:00.0844 0x11fc  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
21:34:00.0844 0x11fc  C:\Windows\SysWOW64\wbemcomn.dll - ok
21:34:00.0844 0x11fc  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
21:34:00.0844 0x11fc  C:\Windows\SysWOW64\cryptsp.dll - ok
21:34:00.0860 0x11fc  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
21:34:00.0860 0x11fc  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
21:34:00.0860 0x11fc  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
21:34:00.0860 0x11fc  C:\Windows\SysWOW64\rsaenh.dll - ok
21:34:00.0876 0x11fc  [ 140692763A50BFFF322CDC076300587E ] C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
21:34:00.0876 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe - ok
21:34:00.0876 0x11fc  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
21:34:00.0876 0x11fc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
21:34:00.0876 0x11fc  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
21:34:00.0876 0x11fc  C:\Windows\SysWOW64\NapiNSP.dll - ok
21:34:00.0891 0x11fc  [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
21:34:00.0891 0x11fc  C:\Windows\SysWOW64\nlaapi.dll - ok
21:34:00.0891 0x11fc  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
21:34:00.0891 0x11fc  C:\Windows\SysWOW64\pnrpnsp.dll - ok
21:34:00.0907 0x11fc  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
21:34:00.0907 0x11fc  C:\Windows\SysWOW64\wshbth.dll - ok
21:34:00.0907 0x11fc  [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
21:34:00.0907 0x11fc  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
21:34:00.0907 0x11fc  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
21:34:00.0907 0x11fc  C:\Windows\SysWOW64\dnsapi.dll - ok
21:34:00.0922 0x11fc  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
21:34:00.0922 0x11fc  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
21:34:00.0922 0x11fc  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
21:34:00.0922 0x11fc  C:\Windows\SysWOW64\winrnr.dll - ok
21:34:00.0938 0x11fc  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
21:34:00.0938 0x11fc  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
21:34:00.0938 0x11fc  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
21:34:00.0938 0x11fc  C:\Windows\SysWOW64\rasadhlp.dll - ok
21:34:00.0938 0x11fc  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
21:34:00.0938 0x11fc  C:\Windows\SysWOW64\msxml6.dll - ok
21:34:00.0954 0x11fc  [ E29F999616D7C08B0E91296908C47CAF ] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
21:34:00.0954 0x11fc  C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe - ok
21:34:00.0954 0x11fc  [ 059FC59F97A6220C46A612A9470A00B3 ] C:\Windows\SysWOW64\urlmon.dll
21:34:00.0954 0x11fc  C:\Windows\SysWOW64\urlmon.dll - ok
21:34:00.0969 0x11fc  [ 5460828F8951D310B42B442877603B8D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:34:00.0969 0x11fc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
21:34:00.0969 0x11fc  [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
21:34:00.0969 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
21:34:00.0985 0x11fc  [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
21:34:00.0985 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
21:34:00.0985 0x11fc  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
21:34:00.0985 0x11fc  C:\Windows\System32\aepic.dll - ok
21:34:00.0985 0x11fc  [ 162100E0BC8377710F9D170631921C03 ] C:\Windows\System32\drivers\NisDrvWFP.sys
21:34:00.0985 0x11fc  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
21:34:01.0000 0x11fc  [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
21:34:01.0000 0x11fc  C:\Windows\System32\nlasvc.dll - ok
21:34:01.0000 0x11fc  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
21:34:01.0000 0x11fc  C:\Windows\System32\drivers\PEAuth.sys - ok
21:34:01.0016 0x11fc  [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
21:34:01.0016 0x11fc  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
21:34:01.0016 0x11fc  [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
21:34:01.0016 0x11fc  C:\Windows\System32\ncsi.dll - ok
21:34:01.0016 0x11fc  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
21:34:01.0016 0x11fc  C:\Windows\System32\sfc.dll - ok
21:34:01.0032 0x11fc  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
21:34:01.0032 0x11fc  C:\Windows\System32\sfc_os.dll - ok
21:34:01.0032 0x11fc  [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
21:34:01.0032 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
21:34:01.0047 0x11fc  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
21:34:01.0047 0x11fc  C:\Windows\SysWOW64\secur32.dll - ok
21:34:01.0047 0x11fc  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
21:34:01.0047 0x11fc  C:\Windows\System32\ssdpapi.dll - ok
21:34:01.0047 0x11fc  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
21:34:01.0047 0x11fc  C:\Windows\SysWOW64\winsta.dll - ok
21:34:01.0063 0x11fc  [ 627FA58ADC043704F9D14CA44340956F ] C:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe
21:34:01.0063 0x11fc  C:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe - ok
21:34:01.0063 0x11fc  [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
21:34:01.0063 0x11fc  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
21:34:01.0078 0x11fc  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
21:34:01.0078 0x11fc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
21:34:01.0078 0x11fc  [ 5022A927944878BD750960BD21E751AF ] C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
21:34:01.0078 0x11fc  C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe - ok
21:34:01.0094 0x11fc  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
21:34:01.0094 0x11fc  C:\Windows\System32\drivers\secdrv.sys - ok
21:34:01.0094 0x11fc  [ 442A13F395546F4564C377296D43B564 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
21:34:01.0094 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe - ok
21:34:01.0094 0x11fc  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
21:34:01.0094 0x11fc  C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
21:34:01.0110 0x11fc  [ 455C729F40D5520E5C720707C775FC6D ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\dbcore.dll
21:34:01.0110 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\dbcore.dll - ok
21:34:01.0125 0x11fc  [ 4D8F3E8223C16AC0A92BF483E1F3825F ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\sqlite3.dll
21:34:01.0125 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\sqlite3.dll - ok
21:34:01.0125 0x11fc  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
21:34:01.0125 0x11fc  C:\Windows\System32\drivers\srvnet.sys - ok
21:34:01.0141 0x11fc  [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
21:34:01.0141 0x11fc  C:\Windows\System32\drivers\tcpipreg.sys - ok
21:34:01.0141 0x11fc  [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
21:34:01.0141 0x11fc  C:\Windows\System32\termsrv.dll - ok
21:34:01.0141 0x11fc  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
21:34:01.0141 0x11fc  C:\Windows\System32\wiaservc.dll - ok
21:34:01.0156 0x11fc  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
21:34:01.0156 0x11fc  C:\Windows\System32\sysmain.dll - ok
21:34:01.0156 0x11fc  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
21:34:01.0156 0x11fc  C:\Windows\System32\wiatrace.dll - ok
21:34:01.0172 0x11fc  [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
21:34:01.0172 0x11fc  C:\Windows\System32\icaapi.dll - ok
21:34:01.0172 0x11fc  [ 63F6D08C54D5B3C1B12A6172032055C7 ] C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
21:34:01.0172 0x11fc  C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe - ok
21:34:01.0188 0x11fc  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
21:34:01.0188 0x11fc  C:\Windows\System32\trkwks.dll - ok
21:34:01.0188 0x11fc  [ C0A9D0F717484E0F0671CA97102B8776 ] C:\Windows\system\ArcSoftKsUFilter.dll
21:34:01.0188 0x11fc  C:\Windows\system\ArcSoftKsUFilter.dll - ok
21:34:01.0188 0x11fc  [ 6B31C9CB94927DBEEB62E15275F4CC54 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
21:34:01.0188 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe - ok
21:34:01.0203 0x11fc  [ 6A740F5FF3246C3BE3DD317299EFC88E ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
21:34:01.0203 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe - ok
21:34:01.0203 0x11fc  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
21:34:01.0203 0x11fc  C:\Windows\System32\aeevts.dll - ok
21:34:01.0219 0x11fc  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
21:34:01.0219 0x11fc  C:\Windows\SysWOW64\mpr.dll - ok
21:34:01.0219 0x11fc  [ 7269780F3F5DECC1EDD8437F1309BD59 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESStorageProtect.dll
21:34:01.0219 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESStorageProtect.dll - ok
21:34:01.0234 0x11fc  [ 9D9B34B430B4DC683112F59C80D20AB8 ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
21:34:01.0234 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe - ok
21:34:01.0234 0x11fc  [ 2EA0B8689FC9765DDA4BC4AF7696AC09 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESBasePS.dll
21:34:01.0234 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESBasePS.dll - ok
21:34:01.0250 0x11fc  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
21:34:01.0250 0x11fc  C:\Windows\SysWOW64\winhttp.dll - ok
21:34:01.0250 0x11fc  [ 9972A6ED4F2388DBFA8E0A96F6F3FDF1 ] C:\Program Files (x86)\SONY\VAIO Event Service\msvcr70.dll
21:34:01.0250 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\msvcr70.dll - ok
21:34:01.0250 0x11fc  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
21:34:01.0250 0x11fc  C:\Windows\SysWOW64\webio.dll - ok
21:34:01.0266 0x11fc  [ E3D58E603ECD65234FDB2E86A6326320 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESSuEvent.dll
21:34:01.0266 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESSuEvent.dll - ok
21:34:01.0266 0x11fc  [ 15498767088327B14E1541484E15FCC9 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VzCs.dll
21:34:01.0266 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VzCs.dll - ok
21:34:01.0281 0x11fc  [ BF1E6054FEC1B90DC7E86716C95CE176 ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSTimerWapi.dll
21:34:01.0281 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSTimerWapi.dll - ok
21:34:01.0281 0x11fc  [ 3D83EEF25282EF9E5C658ECDB75A8EE1 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DRPMediaObject.dll
21:34:01.0281 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DRPMediaObject.dll - ok
21:34:01.0297 0x11fc  [ 2B4F289A8BE7AE70FAE5D7DD3E20B67C ] C:\Program Files (x86)\SONY\VAIO Event Service\VESUSBKeyboard.dll
21:34:01.0297 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESUSBKeyboard.dll - ok
21:34:01.0297 0x11fc  [ DEC05591A0B09E75B4523B5B96218385 ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSQueueCommunication.dll
21:34:01.0297 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSQueueCommunication.dll - ok
21:34:01.0297 0x11fc  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
21:34:01.0297 0x11fc  C:\Windows\SysWOW64\hid.dll - ok
21:34:01.0312 0x11fc  [ C62BF37866921904CED236AC79C402EB ] C:\Program Files (x86)\SONY\VAIO Event Service\VESWndMsg.dll
21:34:01.0312 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESWndMsg.dll - ok
21:34:01.0312 0x11fc  [ 92408971AD6CD68564E3AA93F5E57D85 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpMP4Object.dll
21:34:01.0312 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpMP4Object.dll - ok
21:34:01.0312 0x11fc  [ D0789349B7B6E4927F29B0215755DB03 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESTransform.dll
21:34:01.0312 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESTransform.dll - ok
21:34:01.0328 0x11fc  [ C0218A2DFD858FBFE192AAF8F96ED201 ] C:\Program Files (x86)\Common Files\Sony Shared\Sony Utilities\SonyInfo.dll
21:34:01.0328 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\Sony Utilities\SonyInfo.dll - ok
21:34:01.0328 0x11fc  [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
21:34:01.0328 0x11fc  C:\Windows\SysWOW64\dllhost.exe - ok
21:34:01.0344 0x11fc  [ D32CBEAB6A5EA85AB8F44FEA7918F59E ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DRPUtility.dll
21:34:01.0344 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DRPUtility.dll - ok
21:34:01.0344 0x11fc  [ 9CE1D125707C80639A3E1E6555BB79FC ] C:\Program Files (x86)\SONY\VAIO Control Center\CommonSetting.dll
21:34:01.0344 0x11fc  C:\Program Files (x86)\SONY\VAIO Control Center\CommonSetting.dll - ok
21:34:01.0344 0x11fc  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
21:34:01.0344 0x11fc  C:\Windows\SysWOW64\sxs.dll - ok
21:34:01.0359 0x11fc  [ 1C57360A19F9587DC38A20CB355F97BB ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\sprcxc.dll
21:34:01.0359 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\sprcxc.dll - ok
21:34:01.0375 0x11fc  [ F3CD07F0254090004A5D8AE6CA35FE0D ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEnginePMDkm.dll
21:34:01.0375 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEnginePMDkm.dll - ok
21:34:01.0375 0x11fc  [ 751A23DAFA5198E7D0193EBCE40737CF ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpCustomIpp2.dll
21:34:01.0375 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpCustomIpp2.dll - ok
21:34:01.0375 0x11fc  [ 01483424384BC6CE98CF5824A07C27E9 ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEngineMMD.dll
21:34:01.0375 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEngineMMD.dll - ok
21:34:01.0390 0x11fc  [ F877F829BD5D1BDC836CB22CFCA5EDF3 ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEngineCM.dll
21:34:01.0390 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEngineCM.dll - ok
21:34:01.0406 0x11fc  [ F17F715FAC6AA2D959A8341DEFEB5611 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpGeneralObject.dll
21:34:01.0406 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpGeneralObject.dll - ok
21:34:01.0406 0x11fc  [ CCBAB9542840DD9A47C2285BC7ABE704 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpSoundObject.dll
21:34:01.0406 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpSoundObject.dll - ok
21:34:01.0406 0x11fc  [ 047F22BDFDAE6DF6F1E47E747A1237A2 ] C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
21:34:01.0406 0x11fc  C:\Program Files\Sony\VAIO Smart Network\VSNService.exe - ok
 



21:34:01.0422 0x11fc  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
21:34:01.0422 0x11fc  C:\Windows\System32\wlanapi.dll - ok
21:34:01.0422 0x11fc  [ 3CBB781AE93811E558CB1EEFC2D15E6F ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpStillObject.dll
21:34:01.0422 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpStillObject.dll - ok
21:34:01.0437 0x11fc  [ B863AA216ADEBDE3F318033EA98B1207 ] C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEngineEpg.dll
21:34:01.0437 0x11fc  C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSEngineEpg.dll - ok
21:34:01.0437 0x11fc  [ 89CAB86626B25EAE9C6C3798B35BEB94 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpMpegObject.dll
21:34:01.0437 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpMpegObject.dll - ok
21:34:01.0453 0x11fc  [ D8BEF4AC1EAC809DBDBD441D6CFF6C4C ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
21:34:01.0453 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe - ok
21:34:01.0453 0x11fc  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
21:34:01.0453 0x11fc  C:\Windows\System32\wbem\WMIsvc.dll - ok
21:34:01.0453 0x11fc  [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:34:01.0453 0x11fc  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
21:34:01.0468 0x11fc  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
21:34:01.0468 0x11fc  C:\Windows\System32\wbemcomn.dll - ok
21:34:01.0468 0x11fc  [ 3E2F9D42647CDC1024511839762ABC0C ] C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
21:34:01.0468 0x11fc  C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe - ok
21:34:01.0468 0x11fc  [ 052DE39D3BE22154B65A73C6E06CC571 ] C:\PROGRA~2\COMMON~1\SONYSH~1\VAIOEN~1\VzCdb\VZCDBV~1.DLL
21:34:01.0468 0x11fc  C:\PROGRA~2\COMMON~1\SONYSH~1\VAIOEN~1\VzCdb\VZCDBV~1.DLL - ok
21:34:01.0484 0x11fc  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
21:34:01.0484 0x11fc  C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:34:01.0484 0x11fc  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
21:34:01.0484 0x11fc  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
21:34:01.0500 0x11fc  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
21:34:01.0500 0x11fc  C:\Windows\System32\wbem\fastprox.dll - ok
21:34:01.0500 0x11fc  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
21:34:01.0500 0x11fc  C:\Windows\System32\wbem\wbemcore.dll - ok
21:34:01.0500 0x11fc  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
21:34:01.0500 0x11fc  C:\Windows\System32\ntdsapi.dll - ok
21:34:01.0515 0x11fc  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
21:34:01.0515 0x11fc  C:\Windows\System32\wbem\wbemprox.dll - ok
21:34:01.0515 0x11fc  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
21:34:01.0515 0x11fc  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
21:34:01.0531 0x11fc  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
21:34:01.0531 0x11fc  C:\Windows\System32\wbem\esscli.dll - ok
21:34:01.0531 0x11fc  [ D905F3C6139405D6A9410ED48944BFD8 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpRawDVObject.dll
21:34:01.0531 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpRawDVObject.dll - ok
21:34:01.0546 0x11fc  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
21:34:01.0546 0x11fc  C:\Windows\System32\wbem\wbemsvc.dll - ok
21:34:01.0546 0x11fc  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
21:34:01.0546 0x11fc  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
21:34:01.0546 0x11fc  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
21:34:01.0546 0x11fc  C:\Windows\System32\rasdlg.dll - ok
21:34:01.0562 0x11fc  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
21:34:01.0562 0x11fc  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
21:34:01.0562 0x11fc  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
21:34:01.0562 0x11fc  C:\Windows\System32\wbem\wmiutils.dll - ok
21:34:01.0562 0x11fc  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
21:34:01.0562 0x11fc  C:\Windows\System32\mprapi.dll - ok
21:34:01.0578 0x11fc  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
21:34:01.0578 0x11fc  C:\Windows\SysWOW64\ntdsapi.dll - ok
21:34:01.0578 0x11fc  [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
21:34:01.0578 0x11fc  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
21:34:01.0593 0x11fc  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
21:34:01.0593 0x11fc  C:\Windows\System32\msxml3.dll - ok
21:34:01.0593 0x11fc  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
21:34:01.0593 0x11fc  C:\Windows\System32\wbem\repdrvfs.dll - ok
21:34:01.0609 0x11fc  [ CC800D2D9FD467542BAC7C186C4774AD ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:34:01.0609 0x11fc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
21:34:01.0609 0x11fc  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
21:34:01.0609 0x11fc  C:\Windows\SysWOW64\mscoree.dll - ok
21:34:01.0609 0x11fc  [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
21:34:01.0609 0x11fc  C:\Windows\SysWOW64\FirewallAPI.dll - ok
21:34:01.0624 0x11fc  [ 37B6EBA4E783A0B25F3FE05EF86722CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
21:34:01.0624 0x11fc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
21:34:01.0624 0x11fc  [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
21:34:01.0624 0x11fc  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
21:34:01.0640 0x11fc  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:34:01.0640 0x11fc  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:34:01.0640 0x11fc  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
21:34:01.0640 0x11fc  C:\Windows\System32\ncobjapi.dll - ok
21:34:01.0656 0x11fc  [ 166D3410A2FBEC6549D7B1B4C0227832 ] C:\PROGRA~2\COMMON~1\SONYSH~1\VAIOEN~1\VzCdb\VZCDBS~1.DLL
21:34:01.0656 0x11fc  C:\PROGRA~2\COMMON~1\SONYSH~1\VAIOEN~1\VzCdb\VZCDBS~1.DLL - ok
21:34:01.0656 0x11fc  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
21:34:01.0656 0x11fc  C:\Windows\System32\wbem\wbemess.dll - ok
21:34:01.0656 0x11fc  [ D64247DED660DCB13E3546E345D5EEC3 ] C:\PROGRA~2\COMMON~1\SONYSH~1\VAIOEN~1\VzCdb\VZCDBL~1.DLL
21:34:01.0656 0x11fc  C:\PROGRA~2\COMMON~1\SONYSH~1\VAIOEN~1\VzCdb\VZCDBL~1.DLL - ok
21:34:01.0671 0x11fc  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
21:34:01.0671 0x11fc  C:\Windows\SysWOW64\msxml3.dll - ok
21:34:01.0671 0x11fc  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
21:34:01.0671 0x11fc  C:\Windows\System32\dssenh.dll - ok
21:34:01.0671 0x11fc  [ 2140C30BAFEA56126619CC589CAADFE8 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESPerform.dll
21:34:01.0687 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESPerform.dll - ok
21:34:01.0687 0x11fc  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
21:34:01.0687 0x11fc  C:\Windows\SysWOW64\powrprof.dll - ok
21:34:01.0687 0x11fc  [ 1D15646488552230577F24ECD45A4ECF ] C:\Program Files (x86)\SONY\VAIO Event Service\VESAppMon.dll
21:34:01.0687 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESAppMon.dll - ok
21:34:01.0702 0x11fc  [ 33A77D477EF9D7A5C65A950129DF2E47 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
21:34:01.0702 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll - ok
21:34:01.0702 0x11fc  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
21:34:01.0702 0x11fc  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
21:34:01.0702 0x11fc  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
21:34:01.0702 0x11fc  C:\Windows\System32\wbem\cimwin32.dll - ok
21:34:01.0718 0x11fc  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
21:34:01.0718 0x11fc  C:\Windows\System32\wbem\wmiprov.dll - ok
21:34:01.0718 0x11fc  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
21:34:01.0718 0x11fc  C:\Windows\System32\framedynos.dll - ok
21:34:01.0734 0x11fc  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
21:34:01.0734 0x11fc  C:\Windows\System32\wmi.dll - ok
21:34:01.0734 0x11fc  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
21:34:01.0734 0x11fc  C:\Windows\System32\browcli.dll - ok
21:34:01.0749 0x11fc  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
21:34:01.0749 0x11fc  C:\Windows\System32\schedcli.dll - ok
21:34:01.0749 0x11fc  [ C41FFA909710AB951C2AC231E20C2ED3 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpRawDvEngine.dll
21:34:01.0749 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpRawDvEngine.dll - ok
21:34:01.0765 0x11fc  [ 466ACC35C3AAD3203B15882DE72F4E32 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpDvEngine.dll
21:34:01.0765 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpDvEngine.dll - ok
21:34:01.0765 0x11fc  [ 1A58DF947F7E1BAD68C0847C69781024 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\sonydvau.dll
21:34:01.0765 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\sonydvau.dll - ok
21:34:01.0780 0x11fc  [ 3E5097D2F01BB823B0C256E64FD2CE78 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\sonydvvd.dll
21:34:01.0780 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\sonydvvd.dll - ok
21:34:01.0780 0x11fc  [ 6DF0B6E237BC907C23E7AC45C9045C46 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpDvAviObject.dll
21:34:01.0780 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpDvAviObject.dll - ok
21:34:01.0780 0x11fc  [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
21:34:01.0780 0x11fc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
21:34:01.0796 0x11fc  [ 7AE03A2C5C2F8C7FD15B05206AEDA2F2 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpDvAviEngine.dll
21:34:01.0796 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\DrpDvAviEngine.dll - ok
21:34:01.0796 0x11fc  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\msvcr71.dll
21:34:01.0796 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\msvcr71.dll - ok
21:34:01.0812 0x11fc  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\msvcp71.dll
21:34:01.0812 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\msvcp71.dll - ok
21:34:01.0812 0x11fc  [ E1BDF4AE0DA3ACDA72090BC75DA3B00B ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Automation.dll
21:34:01.0812 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Automation.dll - ok
21:34:01.0827 0x11fc  [ 93499A4F13711C953215F865C2712370 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESColorMgr.dll
21:34:01.0827 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESColorMgr.dll - ok
21:34:01.0827 0x11fc  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
21:34:01.0827 0x11fc  C:\Windows\SysWOW64\mscms.dll - ok
21:34:01.0827 0x11fc  [ BBAD68852C9D86BCC67631A87B532772 ] C:\Windows\SysWOW64\atipdlxx.dll
21:34:01.0827 0x11fc  C:\Windows\SysWOW64\atipdlxx.dll - ok
21:34:01.0827 0x11fc  [ FC6CDAD204ECF8CF666C7C1E32415E80 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESCommonUI.dll
21:34:01.0827 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESCommonUI.dll - ok
21:34:01.0843 0x11fc  [ D144849E9B48A7DFB942281ED7EDB1C1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
21:34:01.0843 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll - ok
21:34:01.0843 0x11fc  [ DB9E77CDC9864E0E494097B69B1AA591 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESRemoteKey.dll
21:34:01.0843 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESRemoteKey.dll - ok
21:34:01.0858 0x11fc  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
21:34:01.0858 0x11fc  C:\Windows\SysWOW64\ncrypt.dll - ok
21:34:01.0858 0x11fc  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
21:34:01.0858 0x11fc  C:\Windows\SysWOW64\bcrypt.dll - ok
21:34:01.0858 0x11fc  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
21:34:01.0858 0x11fc  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
21:34:01.0874 0x11fc  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
21:34:01.0874 0x11fc  C:\Windows\SysWOW64\gpapi.dll - ok
21:34:01.0874 0x11fc  [ 7CD368DFF5D7D4BA9F8F46F31EA8877D ] C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe
21:34:01.0874 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe - ok
21:34:01.0874 0x11fc  [ 9771BB81FCEDC800313762033AD18A16 ] C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSubPS.dll
21:34:01.0874 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSubPS.dll - ok
21:34:01.0890 0x11fc  [ 63E0296CE0E7D39949153D90C000D36E ] C:\Program Files (x86)\SONY\VAIO Event Service\VESWndMsgHook.dll
21:34:01.0890 0x11fc  C:\Program Files (x86)\SONY\VAIO Event Service\VESWndMsgHook.dll - ok
21:34:01.0890 0x11fc  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
21:34:01.0890 0x11fc  C:\Windows\SysWOW64\d3d9.dll - ok
21:34:01.0905 0x11fc  [ 7FBA7D91D86909CD0314AAB267AAE213 ] C:\Windows\SysWOW64\atiu9pag.dll
21:34:01.0905 0x11fc  C:\Windows\SysWOW64\atiu9pag.dll - ok
21:34:01.0905 0x11fc  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
21:34:01.0905 0x11fc  C:\Windows\SysWOW64\d3d8thk.dll - ok
21:34:01.0905 0x11fc  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
21:34:01.0905 0x11fc  C:\Windows\SysWOW64\dwmapi.dll - ok
21:34:01.0921 0x11fc  [ 455916F57BA7C205169E3E1C55763C7E ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.DeviceSettings.dll
21:34:01.0921 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.DeviceSettings.dll - ok
21:34:01.0921 0x11fc  [ A4E02E10216102DF11F0A67D32E0E946 ] C:\Windows\SysWOW64\atiumdag.dll
21:34:01.0921 0x11fc  C:\Windows\SysWOW64\atiumdag.dll - ok
21:34:01.0936 0x11fc  [ 017637D7C030C7819733875E3614FEE2 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Localization.dll
21:34:01.0936 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Localization.dll - ok
21:34:01.0936 0x11fc  [ 0F115371233581F3F70F5CE82C374919 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Diagnostics.dll
21:34:01.0936 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Diagnostics.dll - ok
21:34:01.0952 0x11fc  [ 3AEC3366E299CBCBC3C18CCD62AD6B13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c664f44617c6a89edcc171fa8596c89d\System.ServiceProcess.ni.dll
21:34:01.0952 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c664f44617c6a89edcc171fa8596c89d\System.ServiceProcess.ni.dll - ok
21:34:01.0952 0x11fc  [ EFD15326A50B34BEB0E01901937D9206 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Utilities.dll
21:34:01.0952 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Utilities.dll - ok
21:34:01.0952 0x11fc  [ 8A3AAD2ABEA785A16900DC481ADC576B ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Configuration.dll
21:34:01.0952 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Configuration.dll - ok
21:34:01.0968 0x11fc  [ 556681BE668D71DC162391A45422B52C ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
21:34:01.0968 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe - ok
21:34:01.0968 0x11fc  [ 645BF5E0A601CF5AEC2B5C8E68FEB5F6 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
21:34:01.0968 0x11fc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
21:34:01.0983 0x11fc  [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
21:34:01.0983 0x11fc  C:\Windows\System32\iphlpsvc.dll - ok
21:34:01.0983 0x11fc  [ 79F1A306B8F247261DF16444069BAC8C ] C:\Program Files (x86)\Kodak\AiO\Center\jabber-net.dll
21:34:01.0983 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\jabber-net.dll - ok
21:34:01.0983 0x11fc  [ F64102D0E960F87A63A66C9D545EF47C ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\sohdb.dll
21:34:01.0983 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\sohdb.dll - ok
21:34:01.0999 0x11fc  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
21:34:01.0999 0x11fc  C:\Windows\System32\sqmapi.dll - ok
21:34:01.0999 0x11fc  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
21:34:01.0999 0x11fc  C:\Windows\System32\wdscore.dll - ok
21:34:02.0014 0x11fc  [ 72B46103E4111439109ACF5882627C24 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:34:02.0014 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe - ok
21:34:02.0014 0x11fc  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
21:34:02.0014 0x11fc  C:\Windows\System32\hnetcfg.dll - ok
21:34:02.0014 0x11fc  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
21:34:02.0014 0x11fc  C:\Windows\System32\nci.dll - ok
21:34:02.0030 0x11fc  [ 6F79DC2B5E41276A85E14FDFFDA0D6A8 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDsDll.dll
21:34:02.0030 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDsDll.dll - ok
21:34:02.0030 0x11fc  [ 725B6E9CD1959271AC993DC035E1606D ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
21:34:02.0030 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe - ok
21:34:02.0046 0x11fc  [ 68FF2B8C4808BB2D174F558C849CE979 ] C:\Windows\SysWOW64\atiumdva.dll
21:34:02.0046 0x11fc  C:\Windows\SysWOW64\atiumdva.dll - ok
21:34:02.0046 0x11fc  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
21:34:02.0046 0x11fc  C:\Windows\System32\drivers\srv2.sys - ok
21:34:02.0046 0x11fc  [ 44E192654A39B57D86DD6F40D257A901 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Statistics.dll
21:34:02.0046 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Statistics.dll - ok
21:34:02.0061 0x11fc  [ 979D2EDD34FD3861F485A5AA8BB2FF0A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
21:34:02.0061 0x11fc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
21:34:02.0061 0x11fc  [ E55D83D70DFBF245CEA7F08FE644DB7B ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\VMpGetResDir.dll
21:34:02.0061 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\VMpGetResDir.dll - ok
21:34:02.0077 0x11fc  [ 6A6ECEBD3CCC011595CC80BDF2307076 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\UK\SOHDmssr.dll
21:34:02.0077 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\UK\SOHDmssr.dll - ok
21:34:02.0077 0x11fc  [ 7E82ADEC975F5792A4A3C799E97E738C ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPDevice.dll
21:34:02.0077 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPDevice.dll - ok
21:34:02.0077 0x11fc  [ 847CACE7DD8BCD0BBED934A14ADF1AF9 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Hardware.dll
21:34:02.0077 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Hardware.dll - ok
21:34:02.0092 0x11fc  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
21:34:02.0092 0x11fc  C:\Windows\System32\drivers\srv.sys - ok
21:34:02.0092 0x11fc  [ 4E8F0BB55515997D74801F10408C2DCF ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\MrsCommon.dll
21:34:02.0092 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\MrsCommon.dll - ok
21:34:02.0092 0x11fc  [ F8DC1D804DA4438A3F4FBF353565FF51 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll
21:34:02.0092 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll - ok
21:34:02.0108 0x11fc  [ 9A5416E189C0A64306C2B17848417FD8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\3556a695dbc5fbf04412334f3f7e0d8f\Inkjet.Automation.ni.dll
21:34:02.0108 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\3556a695dbc5fbf04412334f3f7e0d8f\Inkjet.Automation.ni.dll - ok
21:34:02.0108 0x11fc  [ D9AD5C8D6628B6F7B2FEDC5262E51F19 ] C:\Windows\SysWOW64\atimpc32.dll
21:34:02.0108 0x11fc  C:\Windows\SysWOW64\atimpc32.dll - ok
21:34:02.0124 0x11fc  [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
21:34:02.0124 0x11fc  C:\Windows\SysWOW64\dxva2.dll - ok
21:34:02.0124 0x11fc  [ 547AA7795F54452E5EF210E6B2EF2C97 ] C:\Program Files (x86)\Kodak\AiO\Center\Interop.WIA.dll
21:34:02.0124 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Interop.WIA.dll - ok
21:34:02.0139 0x11fc  [ 2693B2DB419E37221E73E2EAF2E6E183 ] C:\Program Files (x86)\Kodak\AiO\Center\ShellLib.dll
21:34:02.0139 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\ShellLib.dll - ok
21:34:02.0139 0x11fc  [ BD1F8DEA58D2FA709E90F1A13C63C2DF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\dbc5cc176cb8faee35ff1a05109a0c6d\Inkjet.Utilities.ni.dll
21:34:02.0139 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\dbc5cc176cb8faee35ff1a05109a0c6d\Inkjet.Utilities.ni.dll - ok
21:34:02.0139 0x11fc  [ 46D660FFEF2C5219FFE29D3F2A1AA1B7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\4d107eb5d3934d257f3ba5a442ef855b\Inkjet.Configuration.ni.dll
21:34:02.0139 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\4d107eb5d3934d257f3ba5a442ef855b\Inkjet.Configuration.ni.dll - ok
21:34:02.0155 0x11fc  [ 4FD693D4B9AA64EE32BAA9B8D9956ACF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
21:34:02.0155 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll - ok
21:34:02.0155 0x11fc  [ 197E665228DE9C082F688E3CED65B42C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\c22cfd1a2f659c2080f632f1b37eb419\Inkjet.Localization.ni.dll
21:34:02.0155 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\c22cfd1a2f659c2080f632f1b37eb419\Inkjet.Localization.ni.dll - ok
21:34:02.0170 0x11fc  [ 78A41DDD40F2AD2AC3403D009DB1E51D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\dd8f4efb7e81c75fe444a180f6f1aacf\System.Runtime.Remoting.ni.dll
21:34:02.0170 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\dd8f4efb7e81c75fe444a180f6f1aacf\System.Runtime.Remoting.ni.dll - ok
21:34:02.0170 0x11fc  [ CA43F99B9EE60EF46C31EF7605937AE6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\56d66fec202a9f933560ce970b9b8c33\Inkjet.DeviceSettings.ni.dll
21:34:02.0170 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\56d66fec202a9f933560ce970b9b8c33\Inkjet.DeviceSettings.ni.dll - ok
21:34:02.0186 0x11fc  [ 803B460104EBAEADA2534E623CA9BA77 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\c9e0c0c1f1d8051f70a76cbb5425c14e\Inkjet.Diagnostics.ni.dll
21:34:02.0186 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\c9e0c0c1f1d8051f70a76cbb5425c14e\Inkjet.Diagnostics.ni.dll - ok
21:34:02.0186 0x11fc  [ 4D534921D65609114D3F66A27C2D54AA ] C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll
21:34:02.0186 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll - ok
21:34:02.0186 0x11fc  [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
21:34:02.0186 0x11fc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
21:34:02.0202 0x11fc  [ 80DA74576272657B4AB58B8614BD84CF ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
21:34:02.0202 0x11fc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
21:34:02.0202 0x11fc  [ D3A8A678A880CD83CF6BEC3F83DA392A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
21:34:02.0202 0x11fc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
21:34:02.0202 0x11fc  [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
21:34:02.0202 0x11fc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
21:34:02.0217 0x11fc  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
21:34:02.0217 0x11fc  C:\Windows\System32\srvsvc.dll - ok
21:34:02.0217 0x11fc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
21:34:02.0217 0x11fc  C:\Windows\System32\browser.dll - ok
21:34:02.0233 0x11fc  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
21:34:02.0233 0x11fc  C:\Windows\System32\netmsg.dll - ok
21:34:02.0233 0x11fc  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
21:34:02.0233 0x11fc  C:\Windows\System32\sscore.dll - ok
21:34:02.0233 0x11fc  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
21:34:02.0233 0x11fc  C:\Windows\System32\clusapi.dll - ok
21:34:02.0248 0x11fc  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
21:34:02.0248 0x11fc  C:\Windows\System32\resutils.dll - ok
21:34:02.0248 0x11fc  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
21:34:02.0248 0x11fc  C:\Windows\System32\ndiscapCfg.dll - ok
21:34:02.0248 0x11fc  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
21:34:02.0248 0x11fc  C:\Windows\System32\rascfg.dll - ok
21:34:02.0264 0x11fc  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
21:34:02.0264 0x11fc  C:\Windows\System32\mprmsg.dll - ok
21:34:02.0264 0x11fc  [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
21:34:02.0264 0x11fc  C:\Windows\System32\tcpipcfg.dll - ok
21:34:02.0264 0x11fc  [ 6C885DD270446B351257FF0216AB1586 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
21:34:02.0264 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll - ok
21:34:02.0280 0x11fc  [ 69313294C5FF9A2B3FA4151EE1075376 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1f6f220f9efe936d1158c79b9d4b451f\WindowsBase.ni.dll
21:34:02.0280 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1f6f220f9efe936d1158c79b9d4b451f\WindowsBase.ni.dll - ok
21:34:02.0280 0x11fc  [ A2E8CDB3F2AF5235C732D3DD563A31D0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
21:34:02.0280 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll - ok
21:34:02.0295 0x11fc  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
21:34:02.0295 0x11fc  C:\Windows\SysWOW64\shfolder.dll - ok
21:34:02.0295 0x11fc  [ DAFE95AAD841D99A2BE2354FD18218F1 ] C:\Program Files (x86)\Kodak\AiO\Center\en-GB\Inkjet.Localization.resources.dll
21:34:02.0295 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\en-GB\Inkjet.Localization.resources.dll - ok
21:34:02.0295 0x11fc  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
21:34:02.0295 0x11fc  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
21:34:02.0311 0x11fc  [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
21:34:02.0311 0x11fc  C:\Windows\System32\wshbth.dll - ok
21:34:02.0311 0x11fc  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
21:34:02.0311 0x11fc  C:\Windows\SysWOW64\EhStorShell.dll - ok
21:34:02.0311 0x11fc  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
21:34:02.0311 0x11fc  C:\Windows\SysWOW64\propsys.dll - ok
21:34:02.0326 0x11fc  [ EB77DB354791A5932CA559B6F6374E95 ] C:\Windows\SysWOW64\ntshrui.dll
21:34:02.0326 0x11fc  C:\Windows\SysWOW64\ntshrui.dll - ok
21:34:02.0326 0x11fc  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
21:34:02.0326 0x11fc  C:\Windows\SysWOW64\slc.dll - ok
21:34:02.0326 0x11fc  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
21:34:02.0326 0x11fc  C:\Windows\SysWOW64\imageres.dll - ok
21:34:02.0342 0x11fc  [ 6E15C5E6768C9328C9519BF6E55C8026 ] C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe
21:34:02.0342 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe - ok
21:34:02.0342 0x11fc  [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
21:34:02.0342 0x11fc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
21:34:02.0342 0x11fc  [ E97295DE2A9FDE547FEAB4FE41DF16CA ] C:\Windows\SysWOW64\mspaint.exe
21:34:02.0342 0x11fc  C:\Windows\SysWOW64\mspaint.exe - ok
21:34:02.0358 0x11fc  [ 992DEED28A3372628ADC4D8EA72EFC8E ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\MrsMTAMarshall.dll
21:34:02.0358 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\MrsMTAMarshall.dll - ok
21:34:02.0358 0x11fc  [ 1FCCE7EAD491275A1BF43AB59E57813B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\155cb39b8cae6a7535c5914af3090b8b\Inkjet.Statistics.ni.dll
21:34:02.0358 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\155cb39b8cae6a7535c5914af3090b8b\Inkjet.Statistics.ni.dll - ok
21:34:02.0358 0x11fc  [ 84A99FDCE9B5C7457E503C7C47DD5F4F ] C:\Program Files (x86)\Kodak\AiO\Center\Interop.EKAiO2SDKLib.dll
21:34:02.0358 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\Interop.EKAiO2SDKLib.dll - ok
21:34:02.0373 0x11fc  [ 3A87E06AE9B55B7D5409F495A4A57F97 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\5126b2d55397cb908c19ff2eba658ab4\Inkjet.Hardware.ni.dll
21:34:02.0373 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\5126b2d55397cb908c19ff2eba658ab4\Inkjet.Hardware.ni.dll - ok
21:34:02.0373 0x11fc  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
21:34:02.0373 0x11fc  C:\Windows\System32\FXSRESM.dll - ok
21:34:02.0389 0x11fc  [ 49BACF955ED0DD7E3C6B957F568A5D3E ] C:\Program Files (x86)\Kodak\AiO\Center\EKIJ5000SDK.dll
21:34:02.0389 0x11fc  C:\Program Files (x86)\Kodak\AiO\Center\EKIJ5000SDK.dll - ok
21:34:02.0389 0x11fc  [ 17DB044D65390FF693CBB6EE842FD6CE ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPCP.dll
21:34:02.0389 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPCP.dll - ok
21:34:02.0389 0x11fc  [ A5FB837CC19D92B7DE139009D31BF6B7 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPCPProtocol.dll
21:34:02.0389 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPCPProtocol.dll - ok
21:34:02.0404 0x11fc  [ F209BFE3B2B92E4DFA42645F27A81DE2 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\HttpSvr.dll
21:34:02.0404 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\HttpSvr.dll - ok
21:34:02.0404 0x11fc  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
21:34:02.0404 0x11fc  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
21:34:02.0420 0x11fc  [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
21:34:02.0420 0x11fc  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
21:34:02.0420 0x11fc  [ 98886C88A1CB13D61672AE2C638B7E1C ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:34:02.0420 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe - ok
21:34:02.0420 0x11fc  [ 08936070190C2BA75D73CA5AC6F23420 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\LocalImporter.dll
21:34:02.0420 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\LocalImporter.dll - ok
21:34:02.0436 0x11fc  [ 08AF560FB01EC03E82B2919AFD55580A ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCIIF.dll
21:34:02.0436 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCIIF.dll - ok
21:34:02.0436 0x11fc  [ 74D6A6012F246B4BF052E5BBDFCEE063 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHNCI.dll
21:34:02.0436 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHNCI.dll - ok
21:34:02.0436 0x11fc  [ FD3C2F5ACB49821EA977DE73FF003EAE ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\CacheDataBase.dll
21:34:02.0436 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\CacheDataBase.dll - ok
21:34:02.0451 0x11fc  [ B8C9A7010AFD5CBBE194CB9EF7C4FD14 ] C:\Program Files\Sony\VAIO Power Management\SPMService.exe
21:34:02.0451 0x11fc  C:\Program Files\Sony\VAIO Power Management\SPMService.exe - ok
21:34:02.0451 0x11fc  [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
21:34:02.0451 0x11fc  C:\Windows\System32\appinfo.dll - ok
21:34:02.0467 0x11fc  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
21:34:02.0467 0x11fc  C:\Windows\System32\diagperf.dll - ok
21:34:02.0467 0x11fc  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
21:34:02.0467 0x11fc  C:\Windows\System32\perftrack.dll - ok
21:34:02.0467 0x11fc  [ D0D9DB482DC755FEE7FD697E54AA0DBD ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdb.dll
21:34:02.0467 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdb.dll - ok
21:34:02.0482 0x11fc  [ 6422B24421E978B23A7710E8ED84B088 ] C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvcPS.dll
21:34:02.0482 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvcPS.dll - ok
21:34:02.0482 0x11fc  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
21:34:02.0482 0x11fc  C:\Windows\System32\NapiNSP.dll - ok
21:34:02.0482 0x11fc  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
21:34:02.0482 0x11fc  C:\Windows\System32\pnrpnsp.dll - ok
21:34:02.0498 0x11fc  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
21:34:02.0498 0x11fc  C:\Windows\System32\runonce.exe - ok
21:34:02.0498 0x11fc  [ C6E15F2F95F9C0A6098D43510B604E52 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
21:34:02.0498 0x11fc  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
21:34:02.0514 0x11fc  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
21:34:02.0514 0x11fc  C:\Windows\System32\npmproxy.dll - ok
21:34:02.0514 0x11fc  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
21:34:02.0514 0x11fc  C:\Windows\System32\winrnr.dll - ok
21:34:02.0514 0x11fc  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
21:34:02.0514 0x11fc  C:\Windows\SysWOW64\runonce.exe - ok
21:34:02.0529 0x11fc  [ BA53532D322E1364E23821CF19735CE7 ] C:\Program Files\Sony\VAIO Power Management\SPMDam.dll
21:34:02.0529 0x11fc  C:\Program Files\Sony\VAIO Power Management\SPMDam.dll - ok
21:34:02.0529 0x11fc  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
21:34:02.0529 0x11fc  C:\Windows\SysWOW64\cmd.exe - ok
21:34:02.0529 0x11fc  [ 6BF27D309C6077F1E8A7747B49F7B17F ] C:\Program Files\Microsoft Security Client\NisLog.dll
21:34:02.0529 0x11fc  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
21:34:02.0545 0x11fc  [ 10E212BFB7EAB152A64C1AAEC2F7F4E0 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
21:34:02.0545 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe - ok
21:34:02.0545 0x11fc  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
21:34:02.0545 0x11fc  C:\Windows\System32\hidserv.dll - ok
21:34:02.0545 0x11fc  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
21:34:02.0545 0x11fc  C:\Windows\System32\wpdbusenum.dll - ok
21:34:02.0560 0x11fc  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
21:34:02.0560 0x11fc  C:\Windows\System32\PortableDeviceApi.dll - ok
21:34:02.0560 0x11fc  [ 78FF154520E651626046BBB15CDAB16F ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\HttpClnt.dll
21:34:02.0560 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\HttpClnt.dll - ok
21:34:02.0576 0x11fc  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
21:34:02.0576 0x11fc  C:\Windows\System32\pnpts.dll - ok
21:34:02.0576 0x11fc  [ FE5A1BD66D961241C4CE0410FDA5C918 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\HttpMsg.dll
21:34:02.0576 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\HttpMsg.dll - ok
21:34:02.0576 0x11fc  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
21:34:02.0576 0x11fc  C:\Windows\System32\radardt.dll - ok
21:34:02.0592 0x11fc  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
21:34:02.0592 0x11fc  C:\Windows\System32\wdiasqmmodule.dll - ok
21:34:02.0592 0x11fc  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
21:34:02.0592 0x11fc  C:\Windows\System32\Apphlpdm.dll - ok
21:34:02.0592 0x11fc  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:34:02.0592 0x11fc  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:34:02.0607 0x11fc  [ 2BD92A0BD515574A28D69506CE203F6E ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\SoapUtil.dll
21:34:02.0607 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\SoapUtil.dll - ok
21:34:02.0607 0x11fc  [ CF8D590BE3373029D57AF80914190682 ] C:\Windows\System32\drivers\WUDFRd.sys
21:34:02.0607 0x11fc  C:\Windows\System32\drivers\WUDFRd.sys - ok
21:34:02.0623 0x11fc  [ 43C412451306084DDFB58796BD98AFF7 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPDescInfo.dll
21:34:02.0623 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Sony.Mrs\UPnPDescInfo.dll - ok
21:34:02.0623 0x11fc  [ D0FF1CA89D013B94768A289023958F6B ] C:\Windows\System32\WUDFHost.exe
21:34:02.0623 0x11fc  C:\Windows\System32\WUDFHost.exe - ok
21:34:02.0623 0x11fc  [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
21:34:02.0623 0x11fc  C:\Windows\SysWOW64\pdh.dll - ok
21:34:02.0638 0x11fc  [ 1950B1C38AED4154BA79F77E36494D8A ] C:\Windows\System32\WUDFx.dll
21:34:02.0638 0x11fc  C:\Windows\System32\WUDFx.dll - ok
21:34:02.0638 0x11fc  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
21:34:02.0638 0x11fc  C:\Windows\SysWOW64\msiltcfg.dll - ok
21:34:02.0638 0x11fc  [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:34:02.0638 0x11fc  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:34:02.0654 0x11fc  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
21:34:02.0654 0x11fc  C:\Windows\System32\aelupsvc.dll - ok
21:34:02.0654 0x11fc  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
21:34:02.0654 0x11fc  C:\Windows\System32\IPSECSVC.DLL - ok
21:34:02.0654 0x11fc  [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
21:34:02.0654 0x11fc  C:\Windows\System32\WMVCORE.DLL - ok
21:34:02.0670 0x11fc  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
21:34:02.0670 0x11fc  C:\Windows\SysWOW64\winbrand.dll - ok
21:34:02.0670 0x11fc  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
21:34:02.0670 0x11fc  C:\Windows\System32\FwRemoteSvr.dll - ok
21:34:02.0670 0x11fc  [ 4F49EF8070390FA7BF0C9C6C3388F7C2 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49A5710C-33E9-478E-A87E-9CCF78DEDBAB}\gapaengine.dll
21:34:02.0670 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49A5710C-33E9-478E-A87E-9CCF78DEDBAB}\gapaengine.dll - ok
21:34:02.0685 0x11fc  [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
21:34:02.0685 0x11fc  C:\Windows\System32\WMASF.DLL - ok
21:34:02.0685 0x11fc  [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:34:02.0685 0x11fc  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:34:02.0701 0x11fc  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
21:34:02.0701 0x11fc  C:\Windows\System32\PortableDeviceTypes.dll - ok
21:34:02.0701 0x11fc  [ 2098C9398EF1F5ABFA60EFBAEBC5205F ] C:\Program Files\Common Files\Sony Shared\VcmMgr\VcmMgrIf.dll
21:34:02.0701 0x11fc  C:\Program Files\Common Files\Sony Shared\VcmMgr\VcmMgrIf.dll - ok
21:34:02.0701 0x11fc  [ 1CA85AF7046127CAC598070553388F88 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzQueueContents.dll
21:34:02.0701 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzQueueContents.dll - ok
21:34:02.0716 0x11fc  [ F4898E97A52BD3DE4CDE8FF13A5BA7BA ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineThumbnail.dll
21:34:02.0716 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineThumbnail.dll - ok
21:34:02.0716 0x11fc  [ 7248EABE702C5312054E50A28CD2F9A5 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineAVMarker.dll
21:34:02.0716 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineAVMarker.dll - ok
21:34:02.0732 0x11fc  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
21:34:02.0732 0x11fc  C:\Windows\System32\dimsjob.dll - ok
21:34:02.0732 0x11fc  [ 7C9B8932B9902C6FCE8E7333E7F9B01F ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\MpegSysDec.dll
21:34:02.0732 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\MpegSysDec.dll - ok
21:34:02.0732 0x11fc  [ E9BCB6728DD04412BF87F03DB00DE1CF ] C:\Windows\SysWOW64\ieframe.dll
21:34:02.0732 0x11fc  C:\Windows\SysWOW64\ieframe.dll - ok
21:34:02.0748 0x11fc  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
21:34:02.0748 0x11fc  C:\Windows\System32\pautoenr.dll - ok
21:34:02.0748 0x11fc  [ 07161AA10B8F247E08CA7C5810F789A6 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\sonymad2.dll
21:34:02.0748 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\sonymad2.dll - ok
21:34:02.0748 0x11fc  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
21:34:02.0748 0x11fc  C:\Windows\System32\certcli.dll - ok
21:34:02.0763 0x11fc  [ 7EBAC958C570174CE4E23860B77BF66D ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineMMLib.dll
21:34:02.0763 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineMMLib.dll - ok
21:34:02.0763 0x11fc  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
21:34:02.0763 0x11fc  C:\Windows\System32\CertEnroll.dll - ok
21:34:02.0779 0x11fc  [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
21:34:02.0779 0x11fc  C:\Windows\SysWOW64\WMVCORE.DLL - ok
21:34:02.0779 0x11fc  [ 245332FF08225F957DE0A20E8FFB8C76 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49A5710C-33E9-478E-A87E-9CCF78DEDBAB}\nisfull.vdm
21:34:02.0779 0x11fc  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49A5710C-33E9-478E-A87E-9CCF78DEDBAB}\nisfull.vdm - ok
21:34:02.0779 0x11fc  [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
21:34:02.0779 0x11fc  C:\Windows\SysWOW64\WMASF.DLL - ok
21:34:02.0794 0x11fc  [ 662BA98309818AF2C17D4E48BF4021C4 ] C:\Program Files\Windows Defender\MpClient.dll
21:34:02.0794 0x11fc  C:\Program Files\Windows Defender\MpClient.dll - ok
21:34:02.0794 0x11fc  [ EFB55164EE5F7B03B955D7CF130841EF ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineIrfTopic.dll
21:34:02.0794 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineIrfTopic.dll - ok
21:34:02.0810 0x11fc  [ C4E3CFE572B0CD7D51852FDC25B2A223 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\IrfLib.dll
21:34:02.0810 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\IrfLib.dll - ok
21:34:02.0810 0x11fc  [ 9ECD9C809C5C7F1F428DD755EEF9BBE8 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\smvd2.dll
21:34:02.0810 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\smvd2.dll - ok
21:34:02.0810 0x11fc  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
21:34:02.0810 0x11fc  C:\Windows\SysWOW64\msvcr71.dll - ok
21:34:02.0826 0x11fc  [ A39D23E06B2E99FCE07D94BC9D5971FD ] C:\Program Files (x86)\Common Files\Sony Shared\MusicAnalysis\mmlib\mcclib.dll
21:34:02.0826 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\MusicAnalysis\mmlib\mcclib.dll - ok
21:34:02.0826 0x11fc  [ 1CC1609F08A1CFF51259CDFFF961ABC1 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEnginePhotoAlt.dll
21:34:02.0826 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEnginePhotoAlt.dll - ok
21:34:02.0826 0x11fc  [ 4DEB5B2FDE020F3D22A16B1CA3F29F63 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineThumbnailD.dll
21:34:02.0826 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineThumbnailD.dll - ok
21:34:02.0841 0x11fc  [ F3C8D3F21A12CD9D6943095E18C1AEC5 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineSFace.dll
21:34:02.0841 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineSFace.dll - ok
21:34:02.0841 0x11fc  [ 03D05F4CA68A03BD140C7CFDBB2E7878 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEnginePMD.dll
21:34:02.0841 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEnginePMD.dll - ok
21:34:02.0857 0x11fc  [ 70BAF8186384CA38D3F254DFDB66E12D ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineAVMarkerD.dll
21:34:02.0857 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineAVMarkerD.dll - ok
21:34:02.0857 0x11fc  [ 49601173F0F4AF5DE34B677118C87825 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineVideoProp.dll
21:34:02.0857 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineVideoProp.dll - ok
21:34:02.0857 0x11fc  [ 492015AE9756E6EFFE2AB3A16157CBEF ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineMMD.dll
21:34:02.0857 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineMMD.dll - ok
21:34:02.0872 0x11fc  [ 411CFB2A801E036C0B1C0FB4FC744941 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineVMLib2.dll
21:34:02.0872 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineVMLib2.dll - ok
21:34:02.0872 0x11fc  [ 92C6011B78C6CF58C769DFB57AB9DC0E ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineGPS.dll
21:34:02.0872 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineGPS.dll - ok
21:34:02.0888 0x11fc  [ 6828A31EBCE5061E5400ED93177555DE ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineDTVData.dll
21:34:02.0888 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineDTVData.dll - ok
21:34:02.0888 0x11fc  [ 8A5D6B383EE3FF5E36715DFFC1DDA59B ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineEpg.dll
21:34:02.0888 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineEpg.dll - ok
21:34:02.0888 0x11fc  [ C19E69554F11B6B6B444B702106A2892 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineCM.dll
21:34:02.0888 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineCM.dll - ok
21:34:02.0904 0x11fc  [ 14C4DD92CAD39AF83A934CEF710B8A9B ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineHarp.dll
21:34:02.0904 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzEngineHarp.dll - ok
21:34:02.0904 0x11fc  [ 9997F0746F2DD3C4E04E84F3F14B1F01 ] C:\Program Files\Sony\VCM Intelligent Analyzing Manager\harp.dll
21:34:02.0904 0x11fc  C:\Program Files\Sony\VCM Intelligent Analyzing Manager\harp.dll - ok
21:34:02.0904 0x11fc  [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
21:34:02.0904 0x11fc  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
21:34:02.0919 0x11fc  [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
21:34:02.0919 0x11fc  C:\Windows\SysWOW64\shdocvw.dll - ok
21:34:02.0919 0x11fc  [ 93AAFCE5EB0BA6C77E53B892E9440BC4 ] C:\Users\Kath\AppData\Local\Temp\9620C2DD-E992-4FA1-99D0-75F3F2B790FA.exe
21:34:02.0919 0x11fc  C:\Users\Kath\AppData\Local\Temp\9620C2DD-E992-4FA1-99D0-75F3F2B790FA.exe - ok
21:34:02.0919 0x11fc  [ 7B851A8018B1EA00A69707A390004884 ] C:\Windows\SysWOW64\cryptnet.dll
21:34:02.0919 0x11fc  C:\Windows\SysWOW64\cryptnet.dll - ok
21:34:02.0935 0x11fc  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
21:34:02.0935 0x11fc  C:\Windows\SysWOW64\SensApi.dll - ok
21:34:02.0935 0x11fc  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
21:34:02.0935 0x11fc  C:\Windows\SysWOW64\credssp.dll - ok
21:34:02.0950 0x11fc  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
21:34:02.0950 0x11fc  C:\Windows\SysWOW64\wship6.dll - ok
21:34:02.0950 0x11fc  [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
21:34:02.0950 0x11fc  C:\Windows\SysWOW64\cabinet.dll - ok
21:34:02.0950 0x11fc  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
21:34:02.0950 0x11fc  C:\Windows\SysWOW64\devrtl.dll - ok
21:34:02.0966 0x11fc  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
21:34:02.0966 0x11fc  C:\Windows\SysWOW64\sfc.dll - ok
21:34:02.0966 0x11fc  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
21:34:02.0966 0x11fc  C:\Windows\SysWOW64\sfc_os.dll - ok
21:34:02.0966 0x11fc  [ 1FCB1A72BF5C784F7358E6BEF38E4571 ] C:\Windows\System32\timedate.cpl
21:34:02.0966 0x11fc  C:\Windows\System32\timedate.cpl - ok
21:34:02.0982 0x11fc  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
21:34:02.0982 0x11fc  C:\Windows\System32\actxprxy.dll - ok
21:34:02.0982 0x11fc  [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
21:34:02.0982 0x11fc  C:\Windows\System32\shdocvw.dll - ok
21:34:02.0997 0x11fc  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
21:34:02.0997 0x11fc  C:\Windows\System32\linkinfo.dll - ok
21:34:02.0997 0x11fc  [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
21:34:02.0997 0x11fc  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
21:34:02.0997 0x11fc  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
21:34:02.0997 0x11fc  C:\Windows\System32\msftedit.dll - ok
21:34:03.0013 0x11fc  [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
21:34:03.0013 0x11fc  C:\Windows\System32\gameux.dll - ok
21:34:03.0013 0x11fc  [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
21:34:03.0013 0x11fc  C:\Windows\System32\msls31.dll - ok
21:34:03.0013 0x11fc  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
21:34:03.0013 0x11fc  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
21:34:03.0028 0x11fc  [ CA0CB4C6C3EE567C1EF6F37640EE5C12 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
21:34:03.0028 0x11fc  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
21:34:03.0028 0x11fc  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
21:34:03.0028 0x11fc  C:\Windows\System32\msiltcfg.dll - ok
21:34:03.0044 0x11fc  [ 50075B1F5918C8F5E08A55E7658CCF09 ] C:\Program Files\Apoint\Apoint.exe
21:34:03.0044 0x11fc  C:\Program Files\Apoint\Apoint.exe - ok
21:34:03.0044 0x11fc  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
21:34:03.0044 0x11fc  C:\Windows\System32\DeviceCenter.dll - ok
21:34:03.0044 0x11fc  [ 3911917B93DD9023DAA8258147AA7BCF ] C:\Program Files\Microsoft Security Client\msseces.exe
21:34:03.0044 0x11fc  C:\Program Files\Microsoft Security Client\msseces.exe - ok
21:34:03.0060 0x11fc  [ 74E6E1E62E35661679A6CAFF392B96E9 ] C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
21:34:03.0060 0x11fc  C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe - ok
21:34:03.0060 0x11fc  [ A6DE0C4A2F3B15FBE7B382BBA1F2A1E3 ] C:\Program Files\Apoint\ApMsgFwd.exe
21:34:03.0060 0x11fc  C:\Program Files\Apoint\ApMsgFwd.exe - ok
21:34:03.0060 0x11fc  [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
21:34:03.0060 0x11fc  C:\Windows\System32\consent.exe - ok
21:34:03.0075 0x11fc  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
21:34:03.0075 0x11fc  C:\Windows\SysWOW64\riched20.dll - ok
21:34:03.0075 0x11fc  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
21:34:03.0075 0x11fc  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
21:34:03.0075 0x11fc  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
21:34:03.0075 0x11fc  C:\Windows\SysWOW64\duser.dll - ok
21:34:03.0091 0x11fc  [ 8B5F423B85A7DDED6774FF378370A442 ] C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.dll
21:34:03.0091 0x11fc  C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.dll - ok
21:34:03.0091 0x11fc  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
21:34:03.0091 0x11fc  C:\Windows\SysWOW64\dui70.dll - ok
21:34:03.0106 0x11fc  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
21:34:03.0106 0x11fc  C:\Windows\System32\UIAnimation.dll - ok
21:34:03.0106 0x11fc  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
21:34:03.0106 0x11fc  C:\Windows\System32\networkexplorer.dll - ok
21:34:03.0106 0x11fc  [ A4159CBC4FC1EC188948DC5E65DF5150 ] C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
21:34:03.0106 0x11fc  C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe - ok
21:34:03.0122 0x11fc  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
21:34:03.0122 0x11fc  C:\Windows\System32\drprov.dll - ok
21:34:03.0122 0x11fc  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
21:34:03.0122 0x11fc  C:\Windows\System32\ntlanman.dll - ok
21:34:03.0122 0x11fc  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
21:34:03.0122 0x11fc  C:\Windows\System32\dsound.dll - ok
21:34:03.0138 0x11fc  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
21:34:03.0138 0x11fc  C:\Windows\System32\davclnt.dll - ok
21:34:03.0138 0x11fc  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
21:34:03.0138 0x11fc  C:\Windows\System32\davhlpr.dll - ok
21:34:03.0153 0x11fc  [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
21:34:03.0153 0x11fc  C:\Windows\System32\opengl32.dll - ok
21:34:03.0153 0x11fc  [ 6CE965A31A4FA7F1B7E2C3C7F25186CF ] C:\Windows\System32\Vxdif.dll
21:34:03.0153 0x11fc  C:\Windows\System32\Vxdif.dll - ok
21:34:03.0153 0x11fc  [ A2D267AFA46EF57FE7A8290D03168C4E ] C:\Program Files\Apoint\Apoint.dll
21:34:03.0153 0x11fc  C:\Program Files\Apoint\Apoint.dll - ok
21:34:03.0169 0x11fc  [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
21:34:03.0169 0x11fc  C:\Windows\System32\glu32.dll - ok
21:34:03.0169 0x11fc  [ A905E156A7D52B55892C3255670FE97B ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
21:34:03.0169 0x11fc  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
21:34:03.0184 0x11fc  [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
21:34:03.0184 0x11fc  C:\Windows\System32\ddraw.dll - ok
21:34:03.0184 0x11fc  [ 7726CAF9FACA8026D58A4E54F25DCE1D ] C:\Program Files\Apoint\EzAuto.dll
21:34:03.0184 0x11fc  C:\Program Files\Apoint\EzAuto.dll - ok
21:34:03.0184 0x11fc  [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
21:34:03.0184 0x11fc  C:\Windows\System32\dciman32.dll - ok
21:34:03.0200 0x11fc  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
21:34:03.0200 0x11fc  C:\Windows\System32\AudioSes.dll - ok
21:34:03.0200 0x11fc  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
21:34:03.0200 0x11fc  C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
21:34:03.0200 0x11fc  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
21:34:03.0200 0x11fc  C:\Windows\System32\thumbcache.dll - ok
21:34:03.0216 0x11fc  [ 31F3326DCDEA311FA2001ED097C54C85 ] C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe
21:34:03.0216 0x11fc  C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe - ok
21:34:03.0216 0x11fc  [ 1B9F01B3AE42B29483D024346DB8A7DE ] C:\Windows\System32\RtkCfg64.dll
21:34:03.0216 0x11fc  C:\Windows\System32\RtkCfg64.dll - ok
21:34:03.0216 0x11fc  [ 9FBFE0DA99E0590AB50388018B531572 ] C:\Windows\System32\RtkHDM64.dll
21:34:03.0216 0x11fc  C:\Windows\System32\RtkHDM64.dll - ok
21:34:03.0231 0x11fc  [ 53E66112F9321B9031B28D165C82FA11 ] C:\Program Files (x86)\SONY\Media Gallery\ElbRelationManager.dll
21:34:03.0231 0x11fc  C:\Program Files (x86)\SONY\Media Gallery\ElbRelationManager.dll - ok
21:34:03.0231 0x11fc  [ A02446E78561CEC8EB18A93B193144D6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
21:34:03.0231 0x11fc  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
21:34:03.0247 0x11fc  [ 52D4FB1BD8BCEF31B661597DBB446B7F ] C:\Program Files (x86)\SONY\Media Gallery\ElbObjectFactory.dll
21:34:03.0247 0x11fc  C:\Program Files (x86)\SONY\Media Gallery\ElbObjectFactory.dll - ok
21:34:03.0247 0x11fc  [ FC9612FBAEB0206A224F8EB6FF08F4E2 ] C:\Program Files (x86)\SONY\Media Gallery\ElbUtility.dll
21:34:03.0247 0x11fc  C:\Program Files (x86)\SONY\Media Gallery\ElbUtility.dll - ok
21:34:03.0247 0x11fc  [ 7D6D3605CEB50D5DA275EDE9349F549F ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
21:34:03.0247 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe - ok
21:34:03.0262 0x11fc  [ 29296A02440022F067CFE73593734036 ] C:\Program Files (x86)\SONY\Media Gallery\ElbMediaBrowser.dll
21:34:03.0262 0x11fc  C:\Program Files (x86)\SONY\Media Gallery\ElbMediaBrowser.dll - ok
21:34:03.0262 0x11fc  [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
21:34:03.0262 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
21:34:03.0262 0x11fc  [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
21:34:03.0262 0x11fc  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
21:34:03.0278 0x11fc  [ C0985675EC81DE2DAFA65201EF584607 ] C:\Program Files (x86)\SONY\Media Gallery\ElbModelManager.dll
21:34:03.0278 0x11fc  C:\Program Files (x86)\SONY\Media Gallery\ElbModelManager.dll - ok
21:34:03.0278 0x11fc  [ F5B749CBD0C421643306420340631E54 ] C:\Windows\System32\RtkAPO64.dll
21:34:03.0278 0x11fc  C:\Windows\System32\RtkAPO64.dll - ok
21:34:03.0294 0x11fc  [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
21:34:03.0294 0x11fc  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
21:34:03.0294 0x11fc  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
21:34:03.0294 0x11fc  C:\Windows\System32\stobject.dll - ok
21:34:03.0294 0x11fc  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
21:34:03.0294 0x11fc  C:\Windows\System32\batmeter.dll - ok
21:34:03.0309 0x11fc  [ B2C2441F79660CF3A00C1A324CCFE0C0 ] C:\PROGRA~2\SONY\MEDIAG~1\ELBSER~1.DLL
21:34:03.0309 0x11fc  C:\PROGRA~2\SONY\MEDIAG~1\ELBSER~1.DLL - ok
21:34:03.0309 0x11fc  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
21:34:03.0309 0x11fc  C:\Windows\System32\prnfldr.dll - ok
21:34:03.0309 0x11fc  [ 2351FDE50CE31DE7FD2A6677FF9FF057 ] C:\Windows\SysWOW64\atiadlxy.dll
21:34:03.0309 0x11fc  C:\Windows\SysWOW64\atiadlxy.dll - ok
21:34:03.0325 0x11fc  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
21:34:03.0325 0x11fc  C:\Windows\System32\DXP.dll - ok
21:34:03.0325 0x11fc  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
21:34:03.0325 0x11fc  C:\Windows\System32\Syncreg.dll - ok
21:34:03.0340 0x11fc  [ C98B96445945027FD0B7DA2AA325F30A ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
21:34:03.0340 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
21:34:03.0340 0x11fc  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
21:34:03.0340 0x11fc  C:\Windows\ehome\ehSSO.dll - ok
21:34:03.0340 0x11fc  [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
21:34:03.0340 0x11fc  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
21:34:03.0356 0x11fc  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
21:34:03.0356 0x11fc  C:\Windows\System32\netshell.dll - ok
21:34:03.0356 0x11fc  [ 9D9B61AF3DBDC1490CBC508C8380510B ] C:\Program Files\Apoint\ApntEx.exe
21:34:03.0356 0x11fc  C:\Program Files\Apoint\ApntEx.exe - ok
21:34:03.0356 0x11fc  [ C2AA8CA8DD71C7311D0A2B5BEE661A3A ] C:\Program Files\Apoint\Apvfb.exe
21:34:03.0356 0x11fc  C:\Program Files\Apoint\Apvfb.exe - ok
21:34:03.0372 0x11fc  [ 57C9A105AD9C95F6B1C1523850E2A1D9 ] C:\Program Files\Apoint\ApRes.dll
21:34:03.0372 0x11fc  C:\Program Files\Apoint\ApRes.dll - ok
21:34:03.0372 0x11fc  [ 9BEAE74155F4CBE56ED8FD097A9FAF18 ] C:\Program Files\Apoint\EzLaunch.dll
21:34:03.0372 0x11fc  C:\Program Files\Apoint\EzLaunch.dll - ok
21:34:03.0372 0x11fc  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
21:34:03.0372 0x11fc  C:\Windows\System32\WPDShServiceObj.dll - ok
21:34:03.0387 0x11fc  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
21:34:03.0387 0x11fc  C:\Windows\System32\AltTab.dll - ok
21:34:03.0387 0x11fc  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
21:34:03.0387 0x11fc  C:\Windows\System32\ActionCenter.dll - ok
21:34:03.0403 0x11fc  [ D5937F565FD4A1716ED99333C77C4D7A ] C:\Program Files (x86)\MyTomTom 3\DeviceDetection.dll
21:34:03.0403 0x11fc  C:\Program Files (x86)\MyTomTom 3\DeviceDetection.dll - ok
21:34:03.0403 0x11fc  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
21:34:03.0403 0x11fc  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
21:34:03.0403 0x11fc  [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
21:34:03.0403 0x11fc  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
21:34:03.0403 0x11fc  [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
21:34:03.0403 0x11fc  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
21:34:03.0418 0x11fc  [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
21:34:03.0418 0x11fc  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
21:34:03.0418 0x11fc  [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
21:34:03.0418 0x11fc  C:\Windows\SysWOW64\msvcp100.dll - ok
21:34:03.0418 0x11fc  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
21:34:03.0418 0x11fc  C:\Windows\SysWOW64\msvcr100.dll - ok
21:34:03.0434 0x11fc  [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
21:34:03.0434 0x11fc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
21:34:03.0434 0x11fc  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
21:34:03.0434 0x11fc  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
21:34:03.0434 0x11fc  [ 36E2AF5562C986A9DF7C2BF4A18D06DA ] C:\Program Files (x86)\MyTomTom 3\DeviceNavManager.dll
21:34:03.0434 0x11fc  C:\Program Files (x86)\MyTomTom 3\DeviceNavManager.dll - ok
21:34:03.0434 0x11fc  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
21:34:03.0434 0x11fc  C:\Windows\System32\pnidui.dll - ok
21:34:03.0450 0x11fc  [ E67C990BA8E132C480F0D0A937ECA177 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\UK\SHSResource.dll
21:34:03.0450 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\UK\SHSResource.dll - ok
21:34:03.0450 0x11fc  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
21:34:03.0450 0x11fc  C:\Windows\System32\QUTIL.DLL - ok
21:34:03.0450 0x11fc  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
21:34:03.0450 0x11fc  C:\Windows\System32\srchadmin.dll - ok
21:34:03.0450 0x11fc  [ 17BB1E38393BA805A77A1A84C7FEC7BA ] C:\Program Files (x86)\MyTomTom 3\TomTomSupporterBase.dll
21:34:03.0450 0x11fc  C:\Program Files (x86)\MyTomTom 3\TomTomSupporterBase.dll - ok
21:34:03.0465 0x11fc  [ 07155029B505A14D9D858ACB3D9C0FE7 ] C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll
21:34:03.0465 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll - ok
21:34:03.0465 0x11fc  [ F7E1CCBAD109329203AACB1E87BE614C ] C:\Users\Kath\AppData\Roaming\Dropbox\bin\Dropbox.exe
21:34:03.0465 0x11fc  C:\Users\Kath\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
21:34:03.0465 0x11fc  [ 667300FB6B357B357A4B3ACF3DC9E439 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
21:34:03.0465 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
21:34:03.0481 0x11fc  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
21:34:03.0481 0x11fc  C:\Windows\System32\SearchIndexer.exe - ok
21:34:03.0481 0x11fc  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
21:34:03.0481 0x11fc  C:\Windows\System32\mscoree.dll - ok
21:34:03.0481 0x11fc  [ D09261A523A553614DC42CB353358691 ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
21:34:03.0481 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll - ok
21:34:03.0496 0x11fc  [ B10FD8D6D8E29C801D7BF98509C585F5 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll
21:34:03.0496 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll - ok
21:34:03.0496 0x11fc  [ C0FAAE8EC1B4760D3D04844F708DA0F0 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
21:34:03.0496 0x11fc  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
21:34:03.0496 0x11fc  [ B1FDCFFF7609E121C10751A669AB1611 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80u.dll
21:34:03.0496 0x11fc  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80u.dll - ok
21:34:03.0512 0x11fc  [ D6F704C07F88F9C330D0CFF0AD917C9A ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCMgr.dll
21:34:03.0512 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCMgr.dll - ok
21:34:03.0512 0x11fc  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
21:34:03.0512 0x11fc  C:\Windows\System32\FXSST.dll - ok
21:34:03.0512 0x11fc  [ 79952463533E2B573DF9DBCC7509B052 ] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHQFact.dll
21:34:03.0512 0x11fc  C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHQFact.dll - ok
21:34:03.0512 0x11fc  [ D560554BAE63D2A18197B7D2B5DA045B ] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe
21:34:03.0512 0x11fc  C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe - ok
21:34:03.0528 0x11fc  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
21:34:03.0528 0x11fc  C:\Windows\System32\FXSAPI.dll - ok
21:34:03.0528 0x11fc  [ 11BE2933DA0600DE6A644C3A492675F4 ] C:\Windows\System32\irprops.cpl
21:34:03.0528 0x11fc  C:\Windows\System32\irprops.cpl - ok
21:34:03.0528 0x11fc  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
21:34:03.0528 0x11fc  C:\Windows\System32\FXSSVC.exe - ok
21:34:03.0543 0x11fc  [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
21:34:03.0543 0x11fc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
21:34:03.0543 0x11fc  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
21:34:03.0543 0x11fc  C:\Windows\System32\tquery.dll - ok
21:34:03.0543 0x11fc  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
21:34:03.0543 0x11fc  C:\Windows\System32\wsock32.dll - ok
21:34:03.0543 0x11fc  [ 7AE5DA9518AFE972B4F68E31BF0046EC ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll
21:34:03.0543 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok
21:34:03.0559 0x11fc  [ DE082DFECE9B059D8E79B3F9B410D508 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll
21:34:03.0559 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll - ok
21:34:03.0559 0x11fc  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
21:34:03.0559 0x11fc  C:\Windows\SysWOW64\msimg32.dll - ok
21:34:03.0559 0x11fc  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
21:34:03.0559 0x11fc  C:\Windows\System32\mssrch.dll - ok
21:34:03.0574 0x11fc  [ 0C31AF909503B29BA60A877E909E6064 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll
21:34:03.0574 0x11fc  C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll - ok
21:34:03.0574 0x11fc  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
21:34:03.0574 0x11fc  C:\Windows\System32\msidle.dll - ok
21:34:03.0574 0x11fc  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
21:34:03.0574 0x11fc  C:\Windows\System32\netman.dll - ok
21:34:03.0574 0x11fc  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
21:34:03.0574 0x11fc  C:\Windows\System32\mssprxy.dll - ok
21:34:03.0590 0x11fc  [ 0F261EC4F514926177C70C1832374231 ] C:\Program Files\iPod\bin\iPodService.exe
21:34:03.0590 0x11fc  C:\Program Files\iPod\bin\iPodService.exe - ok
21:34:03.0590 0x11fc  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
21:34:03.0590 0x11fc  C:\Windows\System32\dot3api.dll - ok
21:34:03.0590 0x11fc  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
21:34:03.0590 0x11fc  C:\Windows\System32\en-US\tquery.dll.mui - ok
21:34:03.0590 0x11fc  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
21:34:03.0590 0x11fc  C:\Windows\System32\wlanhlp.dll - ok
21:34:03.0606 0x11fc  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
21:34:03.0606 0x11fc  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
21:34:03.0606 0x11fc  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
21:34:03.0606 0x11fc  C:\Windows\System32\WWanAPI.dll - ok
21:34:03.0606 0x11fc  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
21:34:03.0606 0x11fc  C:\Windows\System32\wwapi.dll - ok
21:34:03.0606 0x11fc  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
21:34:03.0606 0x11fc  C:\Windows\System32\QAGENT.DLL - ok
21:34:03.0621 0x11fc  [ 7F9C912B2817076DC0C9C129C90D8914 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\88744044294787b99dd4a8704ab75a79\mscorlib.ni.dll
21:34:03.0621 0x11fc  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\88744044294787b99dd4a8704ab75a79\mscorlib.ni.dll - ok
21:34:03.0621 0x11fc  [ B2479C908317B7C2AEF40C6EE2B2A9E9 ] C:\Program Files (x86)\MyTomTom 3\QtCore4.dll
21:34:03.0621 0x11fc  C:\Program Files (x86)\MyTomTom 3\QtCore4.dll - ok
21:34:03.0621 0x11fc  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
21:34:03.0621 0x11fc  C:\Windows\System32\wbem\NCProv.dll - ok
21:34:03.0637 0x11fc  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
21:34:03.0637 0x11fc  C:\Windows\System32\wdmaud.drv - ok
21:34:03.0637 0x11fc  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
21:34:03.0637 0x11fc  C:\Windows\System32\ksuser.dll - ok
21:34:03.0637 0x11fc  [ B4CF3FB7E9B8EA69757541DCE6CA20ED ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
21:34:03.0637 0x11fc  C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
21:34:03.0637 0x11fc  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
21:34:03.0637 0x11fc  C:\Windows\System32\msacm32.drv - ok
21:34:03.0652 0x11fc  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
21:34:03.0652 0x11fc  C:\Windows\System32\msacm32.dll - ok
21:34:03.0652 0x11fc  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
21:34:03.0652 0x11fc  C:\Windows\System32\midimap.dll - ok
21:34:03.0652 0x11fc  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
21:34:03.0652 0x11fc  C:\Windows\System32\AudioEng.dll - ok
21:34:03.0668 0x11fc  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
21:34:03.0668 0x11fc  C:\Windows\System32\AUDIOKSE.dll - ok
21:34:03.0668 0x11fc  [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
21:34:03.0668 0x11fc  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
21:34:03.0668 0x11fc  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
21:34:03.0668 0x11fc  C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:34:03.0684 0x11fc  [ 614C0467911CD45F0D0CB2F65910083B ] C:\Program Files (x86)\MyTomTom 3\DeviceController.dll
21:34:03.0684 0x11fc  C:\Program Files (x86)\MyTomTom 3\DeviceController.dll - ok
21:34:03.0684 0x11fc  [ 054FFE1B7DECABAC54AC84597B02A119 ] C:\Program Files (x86)\MyTomTom 3\TomTomSupporterProxy.dll
21:34:03.0684 0x11fc  C:\Program Files (x86)\MyTomTom 3\TomTomSupporterProxy.dll - ok
21:34:03.0684 0x11fc  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
21:34:03.0684 0x11fc  C:\Windows\System32\mfplat.dll - ok
21:34:03.0684 0x11fc  [ 5EF8A000C7927E87332D8CB6B7970067 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
21:34:03.0684 0x11fc  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
21:34:03.0699 0x11fc  [ 763E2BBEFCD523AB3B7163A5671BF5EF ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
21:34:03.0699 0x11fc  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
21:34:03.0699 0x11fc  [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
21:34:03.0699 0x11fc  C:\Windows\SysWOW64\security.dll - ok
21:34:03.0699 0x11fc  ============================================================
21:34:03.0699 0x11fc  Scan finished
21:34:03.0699 0x11fc  ============================================================
21:34:03.0715 0x0100  Detected object count: 5
21:34:03.0715 0x0100  Actual detected object count: 5
21:34:26.0882 0x0100  igfx ( UnsignedFile.Multi.Generic ) - skipped by user
21:34:26.0882 0x0100  igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:34:26.0882 0x0100  IntcDAud ( UnsignedFile.Multi.Generic ) - skipped by user
21:34:26.0882 0x0100  IntcDAud ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:34:26.0882 0x0100  VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:34:26.0882 0x0100  VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:34:26.0882 0x0100  VSNService ( UnsignedFile.Multi.Generic ) - skipped by user
21:34:26.0882 0x0100  VSNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:34:26.0897 0x0100  VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:34:26.0897 0x0100  VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:34:33.0577 0x11cc  Deinitialize success
 



-----------------

And the Combofix log:

---
ComboFix 13-09-02.02 - Kath 02/09/2013  21:54:14.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.44.1033.18.1966.428 [GMT 1:00]
Running from: c:\users\Kath\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\SaveShare
c:\program files (x86)\SaveShare\sprotector.dll
c:\program files (x86)\SaveShare\uninstall.exe
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net\install.rdf
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org\bootstrap.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org\chrome.manifest
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org\content\bg.js
c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org\install.rdf
.
.
(((((((((((((((((((((((((   Files Created from 2013-08-02 to 2013-09-02  )))))))))))))))))))))))))))))))
.
.
2013-09-02 21:17 . 2013-09-02 21:17    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-09-02 21:05 . 2013-08-06 08:58    9515512    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{73790FF4-261E-4AAC-948D-44A8ABF3D39E}\mpengine.dll
2013-09-01 09:24 . 2013-08-06 08:58    9515512    ------w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-08-31 16:13 . 2013-09-01 10:17    --------    d-----w-    C:\AdwCleaner
2013-08-26 20:40 . 2013-08-26 20:40    --------    d-----w-    c:\program files (x86)\VS Revo Group
2013-08-25 15:46 . 2013-08-25 15:53    --------    d-----w-    C:\MaxAVLiveUpdate
2013-08-25 15:19 . 2013-08-25 15:19    --------    d-----w-    c:\programdata\Max Secure
2013-08-25 15:17 . 2013-08-25 15:17    --------    d-----w-    c:\programdata\DoctoAntivirus
2013-08-25 15:14 . 2013-08-25 15:14    --------    d-----w-    c:\users\Kath\AppData\Local\DoctoAntivirus
2013-08-25 14:14 . 2013-08-25 14:15    --------    d-----w-    c:\program files (x86)\Common Files\DVDVideoSoft
2013-08-25 14:14 . 2013-08-25 14:36    --------    d-----w-    c:\users\Kath\AppData\Roaming\DVDVideoSoft
2013-08-25 14:14 . 2013-08-25 14:16    --------    d-----w-    c:\program files (x86)\DVDVideoSoft
2013-08-25 14:13 . 2013-08-25 14:13    --------    d-----w-    c:\users\Kath\AppData\Local\Programs
2013-08-22 20:55 . 2013-08-22 20:55    17737608    ----a-w-    c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-08-22 19:49 . 2013-08-22 19:48    941720    ------w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{49A5710C-33E9-478E-A87E-9CCF78DEDBAB}\gapaengine.dll
2013-08-15 20:00 . 2013-07-26 05:13    51712    ----a-w-    c:\windows\system32\ie4uinit.exe
2013-08-15 15:30 . 2013-07-09 05:46    1472512    ----a-w-    c:\windows\system32\crypt32.dll
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-22 20:55 . 2012-08-01 13:26    692104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-22 20:55 . 2011-09-05 20:03    71048    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-15 19:56 . 2011-09-05 20:35    78161360    ----a-w-    c:\windows\system32\MRT.exe
2013-07-17 15:44 . 2011-10-11 05:42    941720    ------w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-07-09 04:45 . 2013-08-15 15:30    44032    ----a-w-    c:\windows\apppatch\acwow64.dll
2013-06-26 14:16 . 2012-01-23 18:26    800824    ----a-w-    c:\users\Default\AppData\Roaming\DPInst.exe
2013-06-26 14:16 . 2012-01-23 18:26    36352    ----a-w-    c:\users\Default\AppData\Roaming\PnPutil.exe
2013-06-26 14:16 . 2012-01-23 18:26    106496    ----a-w-    c:\users\Default\AppData\Roaming\gacutil.exe
2013-06-05 03:34 . 2013-07-11 17:16    3153920    ----a-w-    c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyTomTomSA.exe"="c:\program files (x86)\MyTomTom 3\MyTomTomSA.exe" [2013-05-23 455608]
"Elbserver"="c:\program files (x86)\Sony\Media Gallery\ElbServer.exe" [2009-10-15 72192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-09-20 102400]
"SHTtray.exe"="c:\program files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe" [2009-10-15 99624]
"EKIJ5000StatusMonitor"="c:\windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe" [2012-10-08 3182080]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544]
"EKStatusMonitor"="c:\program files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe" [2013-01-15 2750840]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"KodakHomeCenter"="c:\program files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe" [2013-03-15 2236792]
.
c:\users\Kath\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Kath\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-25 27776968]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 1081632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2009-12-01 21:03    98304    ----a-w-    c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [x]
R2 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys;c:\windows\SYSNATIVE\drivers\btusbflt.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
R3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [x]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys;c:\windows\SYSNATIVE\Drivers\TFsExDisk.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Kodak AiO Network Discovery Service;Kodak AiO Network Discovery Service;c:\program files (x86)\Kodak\AiO\Center\EKAiOHostService.exe;c:\program files (x86)\Kodak\AiO\Center\EKAiOHostService.exe [x]
S2 Kodak AiO Status Monitor Service;Kodak AiO Status Monitor Service;c:\program files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe;c:\program files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [x]
S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys;c:\windows\SYSNATIVE\drivers\rimssne64.sys [x]
S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys;c:\windows\SYSNATIVE\drivers\risdsne64.sys [x]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe;c:\program files\Sony\VAIO Care\VCPerfService.exe [x]
S2 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [x]
S2 SOHDBSvr;VAIO Media plus Database Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [x]
S2 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [x]
S2 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [x]
S2 SOHPlMgr;VAIO Media plus Playlist Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [x]
S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [x]
S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [x]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe;c:\program files\Sony\VAIO Smart Network\VSNService.exe [x]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftKsUFilter.sys [x]
S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys;c:\windows\SYSNATIVE\drivers\HECIx64.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys;c:\windows\SYSNATIVE\drivers\SFEP.sys [x]
S3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe;c:\program files\Sony\VAIO Power Management\SPMService.exe [x]
S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [x]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe;c:\program files\Sony\VAIO Care\VCService.exe [x]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update\VUAgent.exe;c:\program files\Sony\VAIO Update\VUAgent.exe [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-30 05:59    1177552    ----a-w-    c:\program files (x86)\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-09-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-01 20:55]
.
2013-09-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-16 19:27]
.
2013-09-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-16 19:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    164016    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    164016    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    164016    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    164016    ----a-w-    c:\users\Kath\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-16 9636896]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"EKIJ5000StatusMonitor"="c:\windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe" [2012-10-08 3182080]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.co.uk/?gws_rd=cr
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
TCP: DhcpNameServer = 194.168.4.100 194.168.8.100
FF - ProfilePath - c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\
FF - ExtSQL: 2013-08-25 16:16; uyoedg4q@afrqpd.org; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org
FF - ExtSQL: 2013-08-25 16:16; r0eful_iadz@wcb-oyaysczh.net; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net
FF - ExtSQL: 2013-08-25 16:16; pkaohm8alak@jaszhjgpwtqiye.net; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net
FF - ExtSQL: 2013-08-25 16:16; i0v6x@rzgsaj.com; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com
FF - ExtSQL: 2013-08-25 16:16; gnltpvrh@uty-.net; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net
FF - ExtSQL: 2013-08-25 16:16; aooeeey_k6@lwko-.net; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net
FF - ExtSQL: 2013-08-25 16:16; 3tze7nap7@uu-qdjh.co.uk; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk
FF - ExtSQL: 2013-08-25 16:16; 2twv0rgtb@ougwrb.edu; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu
FF - ExtSQL: 2013-08-25 16:40; eiuaacmac@h-oueo.com; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com
FF - ExtSQL: 2013-08-25 16:40; dwtzrbdnchzjm@luai-oky.org; c:\users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{2A4A099A-6527-1151-22E6-8B12BCA42000} - c:\programdata\SearchNewTab\yZ.dll
BHO-{36508893-8518-E609-E9D6-9E18AFB0EA16} - c:\programdata\SearchNewTab\6elL.dll
BHO-{6B7139C9-68E5-CA80-97C0-FB4FB61E1F9E} - c:\programdata\SearchNewTab\I.dll
BHO-{D0B3752E-4C7D-E671-2704-191934F9E0FA} - c:\programdata\SearchNewTab\NbwiHy.dll
Wow6432Node-HKLM-Run-Conime - c:\windows\system32\conime.exe
SafeBoot-51234633.sys
SafeBoot-mcmscsvc
SafeBoot-MCODS
HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe
AddRemove-{0AF09CF4-BBB1-46ED-19C1-CC963D09D8F5} - c:\progra~3\INSTAL~1\{DBEDC~1\Setup.exe
AddRemove-{2D3F1637-BBEB-5EFC-B29E-DEE3FA27D1D0} - c:\progra~3\INSTAL~1\{AB706~1\Setup.exe
AddRemove-{6984C17F-17CE-A3B8-DC86-76779FB70FE1} - c:\progra~3\INSTAL~1\{7D93C~1\Setup.exe
AddRemove-{80E3A1DF-5653-AA3B-274A-E07160CB1B2E} - c:\progra~3\INSTAL~1\{B1C26~1\Setup.exe
AddRemove-{D91E9F28-8D5E-8D62-2CE2-C2B575E549AF} - c:\progra~3\INSTAL~1\{4801A~1\Setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-38382384-2003775250-375447177-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-38382384-2003775250-375447177-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-09-02  22:35:34
ComboFix-quarantined-files.txt  2013-09-02 21:35
.
Pre-Run: 317,898,547,200 bytes free
Post-Run: 318,074,945,536 bytes free
.
- - End Of File - - DE2D2680BE131A42FF1AB545565CA2AD
 



#9 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:13 PM

Posted 03 September 2013 - 04:22 PM

Lets run one more scanner for any leftovers.

 

1.

I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
       icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

 

 

How is the machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#10 atdavidson

atdavidson
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 05 September 2013 - 12:30 AM

Thanks. Here are the results of the scan:

 

C:\AdwCleaner\Quarantine\C\Program Files (x86)\file scout\filescout.exe.vir    a variant of Win32/FileScout.A application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\apn\APN-Stub\W3IV6-G\APNIC.7z.vir    Win32/Bundled.Toolbar.Ask.B application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\apn\APN-Stub\W3IV6-G\APNIC.dll.vir    Win32/Bundled.Toolbar.Ask.B application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\sauveneshhAre\PdDPXP.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\savenasharre\Dl6.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\sAvenshare\YL75Xh.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\sAvenshare o\C7xl3a.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\savensHoare\5da_7e.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\SearchNewTab\6elL.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\SearchNewTab\I.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\SearchNewTab\NbwiHy.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\SearchNewTab\yZ.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\SearchNewTab\Z.dll.vir    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir    a variant of Win32/Adware.Yontoo.B application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Kath\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll.vir    a variant of Win32/Toolbar.DefaultTab.B application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Kath\AppData\Roaming\file scout\filescout.exe.vir    Win32/FileScout.A application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\SaveShare\sprotector.dll.vir    a variant of Win32/SProtector.A application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\2twv0rgtb@ougwrb.edu\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\3tze7nap7@uu-qdjh.co.uk\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\aooeeey_k6@lwko-.net\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\dwtzrbdnchzjm@luai-oky.org\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\eiuaacmac@h-oueo.com\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\gnltpvrh@uty-.net\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\i0v6x@rzgsaj.com\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\pkaohm8alak@jaszhjgpwtqiye.net\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\r0eful_iadz@wcb-oyaysczh.net\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Kath\AppData\Roaming\Mozilla\Firefox\Profiles\q4d2975s.default-1358332376478\extensions\uyoedg4q@afrqpd.org\content\bg.js.vir    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahjnmmnpfmakcjdghodnlkljdjomifmp\5.10\16P8FEr.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\cclldjmhifmjhgiifbdmbkjjceohekcg\5.10\dRvMjJp.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdcgpkelbcabfonkefppapkalicndfng\5.10\ADqeHgx.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\dddpomkpnkdpcjdhggiobbaffhhoaaba\5.10\ED0kEzP.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkihempjockmgpeakocgpdkbopneheda\1.0\jfkXM.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdekepaccbohocpeddgphkbjmhkknkop\1.0\mf.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhdhdmljbmmbaifgncabmpcpilompina\1.0\Zs.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfpjgmmkmjipmdakdfpjlpebkghiif\1.0\ZoGNmKI.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbekpijjldmfihoadfgaakhmihfbonld\1.0\U7h.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\AppData\Local\Google\Chrome\User Data\Default\Extensions\mikjcajcickbhllkfmopopcpgnlcmlfl\5.10\YfQ1.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Kath\Documents\fan fiction\calibre.exe    a variant of Win32/InstallIQ.A application    cleaned by deleting - quarantined
C:\Users\Kath\Downloads\calibrewithtop20ebooks-setup.exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Kath\Downloads\Setup.exe    a variant of Win32/Adware.iBryte.G application    cleaned by deleting - quarantined
 

The computer seems much better now, how do the scan results look?



#11 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:13 PM

Posted 05 September 2013 - 05:00 PM

Hello, atdavidson.

Congratulations! You now appear clean! :cool:

Are things running okay? Do you have any more questions?

System Still Slow?
You may wish to try StartupLite. Simply download this tool to your desktop and run it. It will explain any optional auto-start programs on your system, and offer the option to stop these programs from starting at startup. This will result in fewer programs running when you boot your system, and should improve preformance.
If that does not work, you can try the steps mentioned in Slow Computer/browser? Check Here First; It May Not Be Malware.

We Need to Clean Up Our Mess

 

1.

  • Double click on adwcleaner.exe to run the tool.
  • Click on Uninstall.
  • Confirm with yes.

 

2.

Uninstall Combofix

  •    
  • Make sure that Combofix.exe that you downloaded is on your Desktop but Do not run it!
          o *If it is not on your Desktop, the below will not work.
       
  • Click on StartBtn.gif then Run....
       
  • Now copy & paste the green bolded text in the run-box and click OK.

          ComboFix /Uninstall

    CF_Uninstall-1.jpg

          <Notice the space between the "x" and "/".> <--- It needs to be there
          Windows Vista users: Press the Windows Key + R to bring the Run... Command and then from there you can add in the Combofix /Uninstall


       
  • Please advise if this step is missed for any reason as it performs some important actions:
          "This will uninstall Combofix, delete its related folders and files, reset your clock settings, hide file extensions, hide the system/hidden files and resets System Restore again.
          It also makes a clean Restore Point and flashes all the old restore points in order to prevent possible reinfection from an old one through system restore".

 

3.

  • Download OTC by OldTimer and save it to your desktop.
  • Double click OTC_Icon.jpg icon to start the program. If you are using Vista, please right-click and choose run as administrator
  • Then Click the big CleanUp.jpg button.
  • You will get a prompt saying "Being Cleanup Process". Please select Yes.
  • Restart your computer when prompted.


 

 

 

One of the most common questions found when cleaning malware is "how did my machine get infected?"

There are a variety of reasons, but the most common ones are that you are not practicing Safe Internet, you are not running the proper security software or that your computer's security settings are set too low.

Below I have outlined a series of categories that outline how you can increase the security of your computer to help reduce the chance of being infected again in the future.

Do not use P2P programs
Peer-to-peer or file-sharing programs (such as uTorrent, Limewire and Bitorrent) are probably the primary route of infection nowadays. These programs allow file sharing between users as the name(s) suggest.  It is almost impossible to know whether the file you’re downloading through P2P programs is safe.

It is therefore possible to be infected by downloading infected files via peer-to-peer programs and so I recommend that you do not use these programs. Should you wish to use them, they must be used with extreme care. Some further reading on this subject, along with included links, are as follows: "File-Sharing, otherwise known as Peer To Peer" and "Risks of File-Sharing Technology."

In addition, P2P programs facilitate cyber crime and help distribute pirated software, movies and other illegal material.

Practice Safe Internet
Another one of the main reasons people get infected in the first place is that they are not practicing Safe Internet. You practice Safe Internet when you educate yourself on how to properly use the Internet through the use of security tools and good practice. Knowing how you can get infected and what types of files and sites to avoid will be the most crucial step in keeping your computer malware free. The reality is that the majority of people who are infected with malware are ones who click on things they shouldn't be clicking on.  Whether these things are files or sites it doesn't really matter.  If something is out to get you, and you click on it, it most likely will. 

Below are a list of simple precautions to take to keep your computer clean and running securely:

  • If you receive an attachment from someone you do not know, DO NOT OPEN IT! Simple as that.  Opening attachments from people you do not know is a very common method for viruses or worms to infect your computer.
  • If you receive an attachment and it ends with a .exe, .com, .bat, or .pif do not open the attachment unless you know for a fact that it is clean.  For the casual computer user, you will almost never receive a valid attachment of this type.
  • If you receive an attachment from someone you know, and it looks suspicious, then it probably is.  The email could be from someone you know who is themselves infected with malware which is trying to infect everyone in their address book. A key thing to look out for here is: does the email sound as though it’s from the person you know? Often, the email may simply have a web link or a “Run this file to make your PC run fast” message in it.
  • If you are browsing the Internet and a popup appears saying that you are infected, ignore it!.  These are, as far as I am concerned, scams that are being used to scare you into purchasing a piece of software.  For an example of these types of pop-ups, or Foistware, you should read this article: Foistware, And how to avoid it.
    There are also programs that disguise themselves as Anti-Spyware or security products but are instead scams. Removal instructions for a lot of these "rogues" can be found here.
  • Another tactic to fool you on the web is when a site displays a popup that looks like a normal Windows message  or alert.  When you click on them, though, they instead bring you to another site that is trying to push a product on you, or will download a file to your PC without your knowledge.  You can check to see if it's a real alert by right-clicking on the window.  If there is a menu that comes up saying Add to Favorites... you know it's a fake. DO NOT click on these windows, instead close them by finding the open window on your http://en.wikipedia.org/wiki/Taskbar#Screenshots '>Taskbar, right click and chose close.
  • Do not visit pornographic websites.  I know this may bother some of you, but the fact is that a large amount of malware is pushed through these types of sites.  I am not saying all adult sites do this, but a lot do, as this can often form part of their funding.
  • When using an Instant Messaging program be cautious about clicking on links people send to you.  It is not uncommon for infections to send a message to everyone in the infected person's contact list that contains a link to an infection.  Instead when you receive a message that contains a link you should message back to the person asking if it is legit.
  • Stay away from Warez and Crack sites! As with Peer-2-Peer programs, in addition to the obvious copyright issues, the downloads from these sites are typically overrun with infections.
  • Be careful of what you download off of web sites and Peer-2-Peer networks. Some sites disguise malware as legitimate software to trick you into installing them and Peer-2-Peer networks are crawling with it. If you want to download files from a site, and are not sure if they are legitimate, you can use tools such as BitDefender Traffic Light, Norton Safe Web, or McAfee SiteAdvisor to look up info on the site and stay protected against malicious sites. Please be sure to only choose and install one of those tool bars.
  • DO NOT INSTALL any software without first reading the End User License Agreement, otherwise known as the EULA. A tactic that some developers use is to offer their software for free, but have spyware and other programs you do not want bundled with it. This is where they make their money.  By reading the agreement there is a good chance you can spot this and not install the software.
    Sometimes even legitimate programs will try to bundle extra, unwanted, software with the program you want - this is done to raise money for the program. Be sure to untick any boxes which may indicate that other programs will be downloaded.


Keep Windows up-to-date
Microsoft continually releases security and stability updates for its supported operating systems and you should always apply these to help keep your PC secure.

  • Windows XP users
    You should visit Windows Update to check for the latest updates to your system. The latest service pack (SP3) can be obtained directly from Microsoft here.
  • Windows Vista users
    You should run the Windows Update program from your start menu to access the latest updates to your operating system (information can be found here). The latest service pack (SP2) can be obtained directly from Microsoft here.
  • Windows 7 users
    You should run the Windows Update program from your start menu to access the latest updates to your operating system (information can be found here). The latest service pack (SP1) can be obtained directly from Microsoft here



Keep your browser secure
Most modern browsers have come on in leaps and bounds with their inbuilt, default security. The best way to keep your browser secure nowadays is simply to keep it up-to-date.

The latest versions of the three common browsers can be found below:


Use an AntiVirus Software
It is very important that your computer has an up-to-date anti-virus software on it which has a real-time agent running.  This alone can save you a lot of trouble with malware in the future. 
See this link for a listing of some online & their stand-alone antivirus programs: Virus, Spyware, and Malware Protection and Removal Resources, a couple of free Anti-Virus programs you may be interested in are Microsoft Security Essentials and Avast.

It is imperative that you update your Antivirus software at least once a week (even more if you wish).  If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out.  If you use a commercial antivirus program you must make sure you keep renewing your subscription.  Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.

Use a Firewall
I can not stress how important it is that you use a Firewall on your computer.  Without a firewall your computer is susceptible to being hacked and taken over. Simply using a Firewall in its default configuration can lower your risk greatly.

All versions of Windows starting from XP have an in-built firewall. With Windows XP this firewall will protect you from incoming traffic (i.e. hackers). Starting with Windows Vista, the firewall was beefed up to also protect you against outgoing traffic (i.e. malicious programs installed on your machine should be blocked from sending data, such as your bank details and passwords, out).

In addition, if you connect to the internet via a router, this will normally have a firewall in-built.

Some people will recommend installing a different firewall (instead of the Windows’ built one), this is personal choice, but the message is to definitely have one! For a tutorial on Firewalls and a listing of some available ones see this link: Understanding and Using Firewalls

Install an Anti-Malware program
Recommended, and free, Anti-Malware programs are Malwarebytes Anti-Malware and SuperAntiSpyware.

You should regularly (perhaps once a week) scan your computer with an Anti-Malware program just as you would with an antivirus software.

Make sure your applications have all of their updates
It is also possible for other programs on your computer to have security vulnerability that can allow malware to infect you.  Therefore, it is very important to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities (such as Adobe Reader and Java).  You can check these by visiting Secunia Software Inspector.

Follow this list and your potential for being infected again will reduce dramatically.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#12 atdavidson

atdavidson
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:13 PM

Posted 06 September 2013 - 12:49 PM

Fireman,

 

Many thanks for your help.  The computer doesn't seem to have any problems now (no popups, adverts or unwanted search providers) and seems to run much faster.

 

Thank you very much for sorting it out - my parents are much less frustrated with the computer now :-)



#13 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:13 PM

Posted 08 September 2013 - 08:33 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users