Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 runs fine in safe mode, but very slow in normal mode


  • This topic is locked This topic is locked
28 replies to this topic

#1 maestrale

maestrale

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 02 March 2014 - 12:40 AM

Hello,

 

all of a sudden Windows 7 became extremely slow in normal mode. This doesn't happen in safe mode.

 

The laptop now also makes 3 beeps on startup, but the beeps disappear when Windows login page comes up. The only thing I did is updating Java and the beeps started.

 

I'm sending in attachment DDS, OTL and ComboFix logs.

 

Thanks in advance for your help!

Attached Files



BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:11:54 AM

Posted 02 March 2014 - 04:50 PM

Hello maestrale,

  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
      
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
      
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

      
  • Finally, please reply using the Post  button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.

 

 

1.

Download AdwCleaner

  • Double click on AdwCleaner.exe to run the tool.
    ***Note: Windows Vista and Windows 7 users:
    Right click in the adwCleaner.exe and select
    "Run as administrator"
  • Click the Scan button.

  • Once the scan complete click Clean to finish cleaning any thing it has found.
  • A logfile will automatically open after the scan has finished.
  • Please post the content of that logfile in your next reply.
  • Or you can find the logfile at C:\AdwCleaner[S1].txt.

 

2.

  •    
  • Download RogueKiller on the desktop
       
  • Close all the running processes
       
  • Under Vista/Seven, right click -> Run as Administrator
       
  • Otherwise just double-click on RogueKiller.exe
       
  • When prompted, Click Scan 
       
  • A report should open, give its content to your helper. (RKreport could also be found next to the executable)
       
  • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename in winlogon.exe (or winlogon.com) and try again


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 03 March 2014 - 12:52 PM

Hi,

 

thanks for your help!

 

AdwCleaner report:

 

# AdwCleaner v3.020 - Report created 03/03/2014 at 09:35:16
# Updated 27/02/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Giuseppe - GIUSEPPE-PC
# Running from : C:\Users\Giuseppe\Desktop\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\Program Files (x86)\myfree codec
Folder Deleted : C:\Users\Giuseppe\AppData\Roaming\Systweak
File Deleted : C:\alotserviceruntime.log
File Deleted : C:\windows\System32\roboot64.exe
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\caphyon
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\Software\caphyon
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKLM\Software\systweak
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16518
 
 
-\\ Mozilla Firefox v27.0.1 (en-US)
 
[ File : C:\Users\Giuseppe\AppData\Roaming\Mozilla\Firefox\Profiles\yxa0yqnt.default\prefs.js ]
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [2899 octets] - [03/03/2014 09:30:08]
AdwCleaner[S0].txt - [2751 octets] - [03/03/2014 09:35:16]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2811 octets] ##########
 
RogueKiller report (I also deleted the items found by the program):
 
RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
 
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Giuseppe [Admin rights]
Mode : Remove -- Date : 03/03/2014 09:49:53
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] DellSystemDetect.exe -- C:\Users\Giuseppe\AppData\Local\Apps\2.0\TK8YEE5Q.N64\TZ6ZVHBG.JT7\dell..tion_0f612f649c4a10af_0005.0005_9914611622934cec\DellSystemDetect.exe [-] -> KILLED [TermProc]
 
¤¤¤ Registry Entries : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : DellSystemDetect (C:\Users\Giuseppe\AppData\Local\Apps\2.0\TK8YEE5Q.N64\TZ6ZVHBG.JT7\dell..tion_0f612f649c4a10af_0005.0005_9914611622934cec\DellSystemDetect.exe [-]) -> DELETED
[RUN][SUSP PATH] HKUS\S-1-5-21-4203985538-3546249214-282815655-1000\[...]\Run : DellSystemDetect (C:\Users\Giuseppe\AppData\Local\Apps\2.0\TK8YEE5Q.N64\TZ6ZVHBG.JT7\dell..tion_0f612f649c4a10af_0005.0005_9914611622934cec\DellSystemDetect.exe [-]) -> [0x2] The system cannot find the file specified. 
[HJ POL][PUM] HKLM\[...]\System : DisableTaskMgr (0) -> DELETED
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> [0x2] The system cannot find the file specified. 
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> [0x2] The system cannot find the file specified. 
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
 
¤¤¤ Scheduled tasks : 0 ¤¤¤
 
¤¤¤ Startup Entries : 0 ¤¤¤
 
¤¤¤ Web browsers : 0 ¤¤¤
 
¤¤¤ Browser Addons : 0 ¤¤¤
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤
 
¤¤¤ External Hives: ¤¤¤
 
¤¤¤ Infection :  ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
 
 
127.0.0.1       localhost
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500325AS +++++
--- User ---
[MBR] 8c279694ce1aedce99566b55902a995e
[BSP] f9cc7016cccc5408ebf81939aec5985a : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo
User = LL1 ... OK!
User = LL2 ... OK!
 
Finished : << RKreport[0]_D_03032014_094953.txt >>
RKreport[0]_S_03032014_094542.txt
 
 
 


#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:11:54 AM

Posted 03 March 2014 - 03:29 PM

How is the machine running now?

 

 

Download and run Junkware Removal Tool. ***Your Anti Virus may see this download as malicious, don't worry continue on. 

Please download Junkware Removal Tool to your desktop.

 

  • shut down your protection software now to avoid potential conflicts.
  • run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator"
    the tool will open and start scanning your system
  • please be patient as this can take a while to complete depending on your system's specifications
  • on completion, a log (JRT.txt) is saved to your desktop and will automatically open
  • post the contents of JRT.txt into your next Reply.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 04 March 2014 - 12:31 PM

It went a little better after running ADWcleaner and RogueKiller, but it would still slow down and eventually freeze. I had to run the Junkware Removal Tool in Safe mode because it would get stuck after few minutes in normal mode.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Home Premium x64
Ran by Giuseppe on Tue 03/04/2014 at  9:22:14.43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 03/04/2014 at  9:25:28.11
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

My other computer, a desktop, is now also in very bad shape after I ran the Junkware Removal Tool on it yesterday. Do you suggest that I open a new topic?



#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:11:54 AM

Posted 04 March 2014 - 02:22 PM

1.

Download Windows Repair (all in one) from this site

Install the program then run it.

Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22001645.gif



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22001646.gif


Go to Step 4 and under "System Restore" click on Create button:

p22001644.gif


Go to Start Repairs tab and click Start button.

p22001166.gif


Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default):

p22001647.gif

Click on box next to the Restart System when Finished. Then click on Start.

 

 

2.

Download 51a5f31352b88-icon_MBAR.pngMalwarebytes Anti-Rootkit to your desktop.

  • Extract the ZIP archive and double-click "mbar.exe" to start the tool.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Click in the introduction screen "next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder and paste the content of the following files in your next reply:
  • "mbar-log-{date} (xx-xx-xx).txt"
  • "system-log.txt"

[/*]


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 04 March 2014 - 07:48 PM

I had to do Windows Repair in Safe mode as it got stuck in normal mode. I also encountered an error as follows:

 

###

Beginning verification phase of system scan.

Verification 38% complete.

 

Windows Resource Protection could not perform the required operation.

Please Restart Your Computer When System File Checker is Finished.

Press any key to continue....

###

 

At that point the program closed after pressing a key. I had this issue in both normal and safe mode.

 

Malwarebite Anti-Rootkit logs (I had to run this in safe mode as it would freeze in normal mode):

 

mbar-log-2014-03-04 (16-06-24):

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
 
Database version: v2014.03.04.11
 
Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 11.0.9600.16518
Giuseppe :: GIUSEPPE-PC [administrator]
 
3/4/2014 4:06:24 PM
mbar-log-2014-03-04 (16-06-24).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 277519
Time elapsed: 17 minute(s), 5 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)
 
system-log:
 
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1009
 
© Malwarebytes Corporation 2011-2012
 
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
 
System is currently in a safe mode
 
Account is Administrative
 
Internet Explorer version: 11.0.9600.16518
 
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.394000 GHz
Memory total: 6343942144, free: 5160620032
 
Downloaded database version: v2014.03.04.11
Downloaded database version: v2014.02.20.01
=======================================
Initializing...
------------ Kernel report ------------
     03/04/2014 15:50:52
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\compbatt.sys
\SystemRoot\system32\drivers\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\DRIVERS\iaStor.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\PxHlpa64.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\HECIx64.sys
\SystemRoot\system32\drivers\usbehci.sys
\SystemRoot\system32\drivers\USBPORT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\Rt64win7.sys
\SystemRoot\system32\DRIVERS\Netwsw00.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\tixhci.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\Apfiltr.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\iwdbus.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\tihub3.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\system32\drivers\hidusb.sys
\SystemRoot\system32\drivers\HIDCLASS.SYS
\SystemRoot\system32\drivers\HIDPARSE.SYS
\SystemRoot\system32\drivers\USBD.SYS
\SystemRoot\System32\TSDDD.dll
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\framebuf.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\mfehidk.sys
\SystemRoot\system32\drivers\mfewfpk.sys
\SystemRoot\system32\drivers\mfefirek.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\drivers\cfwids.sys
\??\C:\windows\system32\drivers\mbamchameleon.sys
\??\C:\windows\system32\drivers\MBAMSwissArmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\ole32.dll
\Windows\System32\sechost.dll
\Windows\System32\advapi32.dll
\Windows\System32\user32.dll
\Windows\System32\msvcrt.dll
\Windows\System32\shell32.dll
\Windows\System32\usp10.dll
\Windows\System32\lpk.dll
\Windows\System32\normaliz.dll
\Windows\System32\shlwapi.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\imm32.dll
\Windows\System32\clbcatq.dll
\Windows\System32\imagehlp.dll
\Windows\System32\wininet.dll
\Windows\System32\urlmon.dll
\Windows\System32\msctf.dll
\Windows\System32\Wldap32.dll
\Windows\System32\iertutil.dll
\Windows\System32\psapi.dll
\Windows\System32\nsi.dll
\Windows\System32\kernel32.dll
\Windows\System32\difxapi.dll
\Windows\System32\comdlg32.dll
\Windows\System32\oleaut32.dll
\Windows\System32\setupapi.dll
\Windows\System32\gdi32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\comctl32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\crypt32.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\wintrust.dll
\Windows\System32\msasn1.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa800680f060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-1\
Lower Device Object: 0xfffffa8005905050
Lower Device Driver Name: \Driver\iaStor\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa800680f060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800680fb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800680f060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8005901550, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa8005905050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 6EB2751
 
Partition information:
 
    Partition 0 type is Other (0xde)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
 
    Partition 1 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 206848  Numsec = 30720000
    Partition file system is NTFS
    Partition is bootable
 
    Partition 2 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 30926848  Numsec = 945844272
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 500107862016 bytes
Sector size: 512 bytes
 
Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
Done!
Scan Interrupted
Scan was aborted.
=======================================
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa800680f060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-1\
Lower Device Object: 0xfffffa8005905050
Lower Device Driver Name: \Driver\iaStor\
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 6EB2751
 
Partition information:
 
    Partition 0 type is Other (0xde)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
 
    Partition 1 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 206848  Numsec = 30720000
    Partition file system is NTFS
    Partition is bootable
 
    Partition 2 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 30926848  Numsec = 945844272
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 500107862016 bytes
Sector size: 512 bytes
 
Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
Done!
Scan finished
=======================================
 
 
Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-206848-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished
 


#8 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:11:54 AM

Posted 04 March 2014 - 09:01 PM

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    image000q.png
  • Put a checkmark beside loaded modules.
    2012081514h0118.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    2012081517h0349.png
  • Click the Start Scan button.
    19695967.jpg
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    67776163.jpg
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

 

 

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#9 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 05 March 2014 - 02:51 PM

The computer still gets very slow after several minutes in normal mode. I'm sending the logs split over several replies as they're big and fitting them into 1 reply is not working.

 

FRST.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2014 02

Ran by Giuseppe (administrator) on GIUSEPPE-PC on 04-03-2014 18:39:28

Running from C:\Users\Giuseppe\Desktop

Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)

Internet Explorer Version 11

Boot Mode: Normal

 

The only official download link for FRST:

Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/

Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

Download link from any site other than Bleeping Computer is unpermitted or outdated.

See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe

(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

(Microsoft Corporation) C:\windows\system32\AUDIODG.EXE

(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe

(Microsoft Corporation) C:\windows\system32\WLANExt.exe

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe

(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Systweak Inc., (www.systweak.com)) C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe

(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe

(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(McAfee, Inc.) C:\Windows\system32\mfevtps.exe

() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

(Systweak) C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe

(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe

() C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe

(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Google) C:\Users\Giuseppe\AppData\Roaming\Google\Google Talk\googletalk.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidFind.exe

(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apntex.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

(SourceForge.net) C:\Program Files (x86)\Password Safe\pwsafe.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe

(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.)

HKLM\...\Run: [IntelTBRunOnce] - wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10365952 2011-05-18] (Intel Corporation)

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 1999-12-31] (IDT, Inc.)

HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)

HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)

HKLM-x32\...\Run: [RoxWatchTray] - c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)

HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)

Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKU\S-1-5-21-4203985538-3546249214-282815655-1000\...\Run: [googletalk] - C:\Users\Giuseppe\AppData\Roaming\Google\Google Talk\googletalk.exe [3739648 2007-01-01] (Google)

HKU\S-1-5-21-4203985538-3546249214-282815655-1000\...\Policies\system: [DisableLockWorkstation] 0

Startup: C:\Users\Giuseppe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Password Safe.lnk

ShortcutTarget: Password Safe.lnk -> C:\Program Files (x86)\Password Safe\pwsafe.exe (SourceForge.net)

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)

BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)

BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)

DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab

DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://akamaicdn.webex.com/client/WBXclient-T27L10NSP25-10481/webex/ieatgpc1.cab

Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} -  No File

Handler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)

Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)

Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

 

FireFox:

========

FF ProfilePath: C:\Users\Giuseppe\AppData\Roaming\Mozilla\Firefox\Profiles\yxa0yqnt.default

FF SelectedSearchEngine: Google

FF Homepage: about:home

FF Keyword.URL: hxxp://www.google.co.in/search?btnG=Google+Search&q=

FF NetworkProxy: "type", 0

FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()

FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw.dll No File

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)

FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)

FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)

FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Giuseppe\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)

FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Giuseppe\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Giuseppe\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)

FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Giuseppe\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Giuseppe\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Giuseppe\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: tdameritrade.com/thinkorswim - C:\Program Files (x86)\thinkTDA\npthinkorswim.dll (TD Ameritrade)

FF Plugin HKCU: tdameritrade.com/tossc - C:\Program Files (x86)\thinkTDA\nptossc.dll (TD Ameritrade)

FF Plugin ProgramFiles/Appdata: C:\Users\Giuseppe\AppData\Roaming\mozilla\plugins\npatgpc.dll (Cisco WebEx LLC)

FF Plugin ProgramFiles/Appdata: C:\Users\Giuseppe\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)

FF Plugin ProgramFiles/Appdata: C:\Users\Giuseppe\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()

FF Plugin ProgramFiles/Appdata: C:\Users\Giuseppe\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

FF Extension: Print pages to PDF - C:\Users\Giuseppe\AppData\Roaming\Mozilla\Firefox\Profiles\yxa0yqnt.default\Extensions\printPages2Pdf@reinhold.ripper [2013-09-11]

FF Extension: mediaplayerconnectivity - C:\Users\Giuseppe\AppData\Roaming\Mozilla\Firefox\Profiles\yxa0yqnt.default\Extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6} [2012-08-06]

FF Extension: Ghostery - C:\Users\Giuseppe\AppData\Roaming\Mozilla\Firefox\Profiles\yxa0yqnt.default\Extensions\firefox@ghostery.com.xpi [2013-08-19]

FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-17]

FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\

FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []

FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-10]

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2011-12-16]

 

Chrome: 

=======

CHR HomePage: hxxp://www.google.com/

CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll No File

CHR Plugin: (Shockwave Flash) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()

CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll ()

CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)

CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)

CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)

CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll No File

CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll No File

CHR Plugin: (Java™ Platform SE 7 U45) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File

CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

CHR Plugin: (thinkorswim) - C:\Program Files (x86)\thinkTDA\npthinkorswim.dll (TD Ameritrade)

CHR Plugin: (tossc) - C:\Program Files (x86)\thinkTDA\nptossc.dll (TD Ameritrade)

CHR Plugin: (RealNetworks™ RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)

CHR Plugin: (RealNetworks™ RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)

CHR Plugin: (RealNetworks™ RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)

CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)

CHR Plugin: (Citrix Online Web Deployment Plugin 1.0.0.104) - C:\Users\Giuseppe\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)

CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll No File

CHR Plugin: (McAfee SecurityCenter) - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()

CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

CHR Plugin: (RealPlayer Download Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)

CHR Extension: (Google Drive) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-07-23]

CHR Extension: (YouTube) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-02-25]

CHR Extension: (Google Search) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-25]

CHR Extension: (Flowdock) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecfaiclpokecdjgdbnoogehobmmgalah [2012-02-25]

CHR Extension: (RealDownloader) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2012-12-30]

CHR Extension: (Google Wallet) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-09]

CHR Extension: (Print Friendly & PDF) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlencieiipommannpdfcmfdpjjmeolj [2013-09-11]

CHR Extension: (Gmail) - C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-02-25]

CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]

CHR StartMenuInternet: Google Chrome - C:\Users\Giuseppe\AppData\Local\Google\Chrome\Application\chrome.exe

 

==================== Services (Whitelisted) =================

 

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2012-09-09] (SUPERAntiSpyware.com)

R2 ASO3DiskOptimizer; C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe [263520 2012-09-07] (Systweak Inc., (www.systweak.com))

R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)

S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [22016 2014-01-31] (Box Inc.)

R2 Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2430304 2009-10-23] (Diskeeper Corporation)

R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)

R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-01-28] (McAfee, Inc.)

S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [224704 2011-03-08] (McAfee, Inc.)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)

R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)

R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)

S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)

S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)

R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)

R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)

R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1025232 2013-12-11] (McAfee, Inc.)

R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-01-27] (McAfee, Inc.)

R2 mfevtp; C:\Windows\system32\mfevtps.exe [185792 2014-01-27] (McAfee, Inc.)

R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)

S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-06-25] ()

S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)

R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()

R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC)

R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3325232 2012-06-25] (Intel® Corporation)

 

==================== Drivers (Whitelisted) ====================

 

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-01-27] (McAfee, Inc.)

R3 DKRtWrt; C:\Windows\System32\DRIVERS\DKRtWrt.sys [51120 2009-10-21] (Diskeeper Corporation)

S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)

R2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [180272 2014-01-27] (McAfee, Inc.)

R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311600 2014-01-27] (McAfee, Inc.)

R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [520696 2014-01-27] (McAfee, Inc.)

R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [783864 2014-01-27] (McAfee, Inc.)

R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [411944 2013-11-26] (McAfee, Inc.)

S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [96112 2013-11-26] (McAfee, Inc.)

R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344688 2014-01-27] (McAfee, Inc.)

R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC)

S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-03-04] ()

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-03-04 18:39 - 2014-03-04 18:40 - 00027796 _____ () C:\Users\Giuseppe\Desktop\FRST.txt

2014-03-04 18:39 - 2014-03-04 18:39 - 00000000 ____D () C:\FRST

2014-03-04 18:24 - 2014-03-04 18:24 - 558195309 _____ () C:\windows\MEMORY.DMP

2014-03-04 18:24 - 2014-03-04 18:24 - 00289512 _____ () C:\windows\Minidump\030414-34476-01.dmp

2014-03-04 18:13 - 2014-03-04 18:13 - 02156544 _____ (Farbar) C:\Users\Giuseppe\Desktop\FRST64.exe

2014-03-04 18:11 - 2014-03-04 18:12 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\Giuseppe\Desktop\tdsskiller.exe

2014-03-04 16:29 - 2014-03-04 18:30 - 00003224 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4203985538-3546249214-282815655-1000

2014-03-04 16:28 - 2014-03-04 18:30 - 00003352 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4203985538-3546249214-282815655-1000

2014-03-04 15:50 - 2014-03-04 16:24 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2014-03-04 15:50 - 2014-03-04 15:50 - 00119000 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys

2014-03-04 15:50 - 2014-03-04 15:50 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys

2014-03-04 13:26 - 2014-03-04 13:30 - 00181064 _____ (Sysinternals) C:\windows\PSEXESVC.EXE

2014-03-04 12:18 - 2014-03-04 13:04 - 00002161 _____ () C:\Users\Giuseppe\Desktop\Tweaking.com - Windows Repair (All in One).lnk

2014-03-04 12:17 - 2014-03-04 12:17 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com

2014-03-04 12:16 - 2014-03-04 12:16 - 05198512 _____ () C:\Users\Giuseppe\tweaking.com_windows_repair_aio_setup.exe

2014-03-04 09:38 - 2014-03-04 18:33 - 00000000 ____D () C:\ProgramData\boost_interprocess

2014-03-04 09:36 - 2014-03-04 18:30 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Systweak

2014-03-04 09:36 - 2014-03-04 18:30 - 00000000 ____D () C:\ProgramData\Systweak

2014-03-04 08:54 - 2014-03-04 08:54 - 01037734 _____ (Thisisu) C:\Users\Giuseppe\Downloads\JRT (1).exe

2014-03-03 19:11 - 2014-03-03 19:11 - 00000000 ____D () C:\windows\ERUNT

2014-03-03 19:10 - 2014-03-03 19:10 - 01037734 _____ (Thisisu) C:\Users\Giuseppe\Downloads\JRT.exe

2014-03-03 09:30 - 2014-03-03 09:36 - 00000000 ____D () C:\AdwCleaner

2014-03-03 09:01 - 2014-03-03 09:01 - 00000000 ____D () C:\Program Files (x86)\AMD APP

2014-03-02 11:16 - 2014-03-02 11:16 - 00000000 ____D () C:\Program Files\ATI Technologies

2014-03-02 11:16 - 2014-03-02 11:16 - 00000000 ____D () C:\Program Files\ATI

2014-03-02 10:52 - 2014-03-02 10:52 - 00404048 _____ () C:\Users\Giuseppe\Downloads\DellSystemDetect (2).exe

2014-03-02 08:33 - 2014-03-02 08:33 - 00404048 _____ () C:\Users\Giuseppe\Downloads\DellSystemDetect (1).exe

2014-03-01 21:55 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\windows\system32\IntelOpenCL64.dll

2014-03-01 21:55 - 2012-05-15 07:13 - 00020992 _____ (Khronos Group) C:\windows\system32\OpenCL.dll

2014-03-01 21:55 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\windows\SysWOW64\IntelOpenCL32.dll

2014-03-01 21:55 - 2012-05-15 06:20 - 00017920 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll

2014-03-01 21:52 - 2012-11-15 06:30 - 05899832 _____ (Intel Corporation) C:\windows\system32\GfxUI.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00510008 _____ (Intel Corporation) C:\windows\system32\igfxsrvc.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00441912 _____ (Intel Corporation) C:\windows\system32\igfxpers.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00399416 _____ (Intel Corporation) C:\windows\system32\hkcmd.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00277048 _____ (Intel Corporation) C:\windows\SysWOW64\IntelCpHeciSvc.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00252472 _____ (Intel Corporation) C:\windows\system32\igfxext.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00185400 _____ (Intel Corporation) C:\windows\system32\difx64.exe

2014-03-01 21:52 - 2012-11-15 06:30 - 00171064 _____ (Intel Corporation) C:\windows\system32\igfxtray.exe

2014-03-01 21:52 - 2012-11-15 02:03 - 12886528 _____ (Intel Corporation) C:\windows\system32\ig4icd64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 12601856 _____ (Intel Corporation) C:\windows\system32\igdumd64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 11155968 _____ (Intel Corporation) C:\windows\SysWOW64\igd10umd32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 10673152 _____ (Intel Corporation) C:\windows\SysWOW64\ig4icd32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 09000256 _____ (Intel Corporation) C:\windows\system32\Drivers\igdkmd64.sys

2014-03-01 21:52 - 2012-11-15 02:03 - 04571136 _____ (Intel Corporation) C:\windows\system32\igfxcmjit64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 03776512 _____ (Intel Corporation) C:\windows\SysWOW64\igfxcmjit32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00963388 _____ () C:\windows\SysWOW64\igcodeckrng600.bin

2014-03-01 21:52 - 2012-11-15 02:03 - 00963388 _____ () C:\windows\system32\igcodeckrng600.bin

2014-03-01 21:52 - 2012-11-15 02:03 - 00604160 _____ (Intel Corporation) C:\windows\SysWOW64\igfxcmrt32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00524800 _____ (Intel Corporation) C:\windows\system32\iglhsip64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00519680 _____ (Intel Corporation) C:\windows\SysWOW64\iglhsip32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00501760 _____ (Intel Corporation) C:\windows\system32\igfxcmrt64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00482304 _____ (Intel Corporation) C:\windows\system32\igfx11cmrt64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00448512 _____ (Intel Corporation) C:\windows\SysWOW64\igfx11cmrt32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00441856 _____ (Intel Corporation) C:\windows\system32\igfxdev.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00440320 _____ (Intel Corporation) C:\windows\system32\igfxrell.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00439808 _____ (Intel Corporation) C:\windows\system32\igfxrfra.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00439808 _____ (Intel Corporation) C:\windows\system32\igfxresn.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00439296 _____ (Intel Corporation) C:\windows\system32\igfxrrus.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00439296 _____ (Intel Corporation) C:\windows\system32\igfxrrom.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrsky.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrptg.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrplk.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrnld.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrita.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrhrv.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438784 _____ (Intel Corporation) C:\windows\system32\igfxrdeu.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438272 _____ (Intel Corporation) C:\windows\system32\igfxrhun.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438272 _____ (Intel Corporation) C:\windows\system32\igfxrfin.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00438272 _____ (Intel Corporation) C:\windows\system32\igfxrcsy.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437760 _____ (Intel Corporation) C:\windows\system32\igfxrtrk.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437760 _____ (Intel Corporation) C:\windows\system32\igfxrsve.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437760 _____ (Intel Corporation) C:\windows\system32\igfxrslv.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437760 _____ (Intel Corporation) C:\windows\system32\igfxrptb.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437760 _____ (Intel Corporation) C:\windows\system32\igfxrnor.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437248 _____ (Intel Corporation) C:\windows\system32\igfxrtha.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00437248 _____ (Intel Corporation) C:\windows\system32\igfxrdan.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00435712 _____ (Intel Corporation) C:\windows\system32\igfxrheb.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00435712 _____ (Intel Corporation) C:\windows\system32\igfxrara.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00432128 _____ (Intel Corporation) C:\windows\system32\igfxrjpn.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00431104 _____ (Intel Corporation) C:\windows\system32\igfxrkor.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00429056 _____ (Intel Corporation) C:\windows\system32\igfxrcht.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00428544 _____ (Intel Corporation) C:\windows\system32\igfxrchs.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00410624 _____ (Intel Corporation) C:\windows\system32\igfxTMM.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00386048 _____ (Intel Corporation) C:\windows\system32\igfxpph.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00330240 _____ (Intel Corporation) C:\windows\SysWOW64\igfxdv32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00286208 _____ (Intel Corporation) C:\windows\system32\igfxrenu.lrc

2014-03-01 21:52 - 2012-11-15 02:03 - 00272928 _____ () C:\windows\SysWOW64\igvpkrng600.bin

2014-03-01 21:52 - 2012-11-15 02:03 - 00272928 _____ () C:\windows\system32\igvpkrng600.bin

2014-03-01 21:52 - 2012-11-15 02:03 - 00223233 _____ () C:\windows\system32\Gfxres.th-TH.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00216064 _____ (Intel Corporation) C:\windows\system32\iglhcp64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00209727 _____ () C:\windows\system32\Gfxres.el-GR.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00193862 _____ () C:\windows\system32\Gfxres.ru-RU.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00180224 _____ (Intel Corporation) C:\windows\SysWOW64\iglhcp32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00173568 _____ (Intel Corporation) C:\windows\system32\gfxSrvc.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00165865 _____ () C:\windows\system32\Gfxres.ar-SA.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00163120 _____ () C:\windows\system32\Gfxres.ja-JP.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00158727 _____ () C:\windows\system32\Gfxres.he-IL.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00149390 _____ () C:\windows\system32\Gfxres.it-IT.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00147759 _____ () C:\windows\system32\Gfxres.ko-KR.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00147101 _____ () C:\windows\system32\Gfxres.de-DE.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00147010 _____ () C:\windows\system32\Gfxres.es-ES.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00145715 _____ () C:\windows\system32\Gfxres.ro-RO.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00145211 _____ () C:\windows\system32\Gfxres.fr-FR.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00144378 _____ () C:\windows\system32\Gfxres.tr-TR.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00143976 _____ () C:\windows\system32\Gfxres.pt-BR.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00143730 _____ () C:\windows\system32\Gfxres.nl-NL.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00143657 _____ () C:\windows\system32\Gfxres.hu-HU.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00142990 _____ () C:\windows\system32\Gfxres.pt-PT.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00142617 _____ () C:\windows\system32\Gfxres.sv-SE.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00142423 _____ () C:\windows\system32\Gfxres.pl-PL.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00142336 _____ (Intel Corporation) C:\windows\system32\igfxdo.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00142008 _____ () C:\windows\system32\Gfxres.cs-CZ.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00141739 _____ () C:\windows\system32\Gfxres.fi-FI.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00141574 _____ () C:\windows\system32\Gfxres.sk-SK.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00140779 _____ () C:\windows\system32\Gfxres.hr-HR.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00137621 _____ () C:\windows\system32\Gfxres.sl-SI.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00137534 _____ () C:\windows\system32\Gfxres.nb-NO.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00136873 _____ () C:\windows\system32\Gfxres.da-DK.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00132360 _____ () C:\windows\system32\Gfxres.en-US.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00126976 _____ (Intel Corporation) C:\windows\system32\igfxcpl.cpl

2014-03-01 21:52 - 2012-11-15 02:03 - 00126035 _____ () C:\windows\system32\Gfxres.zh-TW.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00124403 _____ () C:\windows\system32\Gfxres.zh-CN.resources

2014-03-01 21:52 - 2012-11-15 02:03 - 00116224 _____ (Intel Corporation) C:\windows\system32\igfxCoIn_v2843.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00080384 _____ () C:\windows\system32\igdde64.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00064512 _____ () C:\windows\SysWOW64\igdde32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00059425 _____ () C:\windows\system32\iglhxo64.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00059398 _____ () C:\windows\system32\iglhxg64.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00059230 _____ () C:\windows\system32\iglhxc64.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00059104 _____ () C:\windows\system32\iglhxc64_dev.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00058796 _____ () C:\windows\system32\iglhxg64_dev.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00058109 _____ () C:\windows\system32\iglhxo64_dev.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00028672 _____ (Intel Corporation) C:\windows\system32\igfxexps.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00025088 _____ (Intel Corporation) C:\windows\SysWOW64\igfxexps32.dll

2014-03-01 21:52 - 2012-11-15 02:03 - 00017026 _____ () C:\windows\system32\iglhxs64.vp

2014-03-01 21:52 - 2012-11-15 02:03 - 00009728 _____ ( ) C:\windows\system32\IGFXDEVLib.dll

2014-03-01 21:52 - 2012-06-19 22:40 - 00342528 _____ (Intel® Corporation) C:\windows\system32\Drivers\IntcDAud.sys

2014-03-01 21:52 - 2012-06-19 22:40 - 00016896 _____ (Intel® Corporation) C:\windows\system32\IntcDAuC.dll

2014-03-01 21:44 - 2014-03-01 21:44 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell

2014-03-01 21:43 - 2014-03-01 21:43 - 00404048 _____ () C:\Users\Giuseppe\Downloads\DellSystemDetect.exe

2014-03-01 21:30 - 2014-03-01 21:30 - 01345110 _____ () C:\Users\Giuseppe\Desktop\Fixing PC.zip

2014-03-01 21:01 - 2014-03-01 21:01 - 00312744 _____ (Oracle Corporation) C:\windows\system32\javaws.exe

2014-03-01 21:01 - 2014-03-01 21:01 - 00108968 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll

2014-03-01 20:55 - 2014-03-04 15:43 - 00001568 _____ () C:\windows\PFRO.log

2014-03-01 19:35 - 2014-03-04 18:11 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Fixing PC

2014-03-01 19:33 - 2014-03-01 19:33 - 00030765 _____ () C:\ComboFix.txt

2014-03-01 19:21 - 2011-06-25 22:45 - 00256000 _____ () C:\windows\PEV.exe

2014-03-01 19:21 - 2010-11-07 09:20 - 00208896 _____ () C:\windows\MBR.exe

2014-03-01 19:21 - 2009-04-19 20:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe

2014-03-01 19:21 - 2000-08-30 16:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe

2014-03-01 19:21 - 2000-08-30 16:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe

2014-03-01 19:21 - 2000-08-30 16:00 - 00098816 _____ () C:\windows\sed.exe

2014-03-01 19:21 - 2000-08-30 16:00 - 00080412 _____ () C:\windows\grep.exe

2014-03-01 19:21 - 2000-08-30 16:00 - 00068096 _____ () C:\windows\zip.exe

2014-03-01 19:20 - 2014-03-01 19:33 - 00000000 ____D () C:\Qoobox

2014-03-01 19:20 - 2014-03-01 19:32 - 00000000 ____D () C:\windows\erdnt

2014-03-01 10:50 - 2014-03-01 10:50 - 00000000 ____D () C:\MATS

2014-02-27 19:18 - 2014-03-04 18:29 - 00001839 _____ () C:\windows\setupact.log

2014-02-27 19:18 - 2014-02-27 19:18 - 00000000 _____ () C:\windows\setuperr.log

2014-02-27 19:16 - 2014-03-04 18:35 - 00222043 _____ () C:\windows\WindowsUpdate.log

2014-02-27 17:30 - 2014-02-27 17:30 - 00019286 _____ () C:\Users\Giuseppe\Documents\cc_20140227_173014.reg

2014-02-27 17:25 - 2014-02-27 17:26 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Giuseppe\mbam-setup-1.75.0.1300.exe

2014-02-27 11:30 - 2014-03-01 21:08 - 00000000 ____D () C:\Users\Giuseppe\Desktop\JavaRa-2.5

2014-02-27 10:20 - 2014-02-27 10:20 - 00000000 ____D () C:\Program Files (x86)\ESET

2014-02-27 09:33 - 2014-01-08 18:22 - 05694464 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll

2014-02-27 09:33 - 2014-01-03 14:44 - 06574592 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll

2014-02-26 19:43 - 2014-02-26 19:45 - 00000000 ____D () C:\Users\Giuseppe\Desktop\whatinstartup-x64

2014-02-26 14:20 - 2014-02-26 14:20 - 00000000 ____D () C:\SUPERDelete

2014-02-26 12:16 - 2014-02-26 12:16 - 00016440 _____ () C:\bootsqm.dat

2014-02-26 12:02 - 2013-10-01 18:22 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys

2014-02-26 12:02 - 2013-10-01 18:11 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2014-02-26 12:02 - 2013-10-01 18:08 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2014-02-26 12:02 - 2013-10-01 17:48 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll

2014-02-26 12:02 - 2013-10-01 17:48 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll

2014-02-26 12:02 - 2013-10-01 17:29 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll

2014-02-26 12:02 - 2013-10-01 17:10 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll

2014-02-26 12:02 - 2013-10-01 16:15 - 01057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll

2014-02-26 12:02 - 2013-10-01 16:14 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsRdpWebAccess.dll

2014-02-26 12:02 - 2013-10-01 16:14 - 00017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll

2014-02-26 12:02 - 2013-10-01 16:08 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe

2014-02-26 12:02 - 2013-10-01 16:01 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe

2014-02-26 12:02 - 2013-10-01 15:58 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll

2014-02-26 12:02 - 2013-10-01 15:31 - 01147392 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe

2014-02-26 12:02 - 2013-10-01 15:08 - 00855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll

2014-02-26 12:02 - 2013-10-01 14:34 - 01068544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe

2014-02-26 12:00 - 2013-09-24 18:23 - 01030144 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll

2014-02-26 12:00 - 2013-09-24 17:57 - 00792576 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll

2014-02-25 12:51 - 2014-02-25 12:51 - 00258928 _____ (Cisco WebEx LLC) C:\Users\Giuseppe\Downloads\Cisco_WebEx_Add-On.exe

2014-02-21 16:33 - 2014-02-21 16:33 - 00168368 _____ () C:\Users\Giuseppe\Downloads\voice-message.wav

2014-02-17 16:26 - 2014-03-04 16:31 - 00000868 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000Core1cf2c4030ce01a.job

2014-02-17 16:26 - 2014-02-17 16:26 - 00003500 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000Core1cf2c4030ce01a

2014-02-17 16:20 - 2014-02-17 17:13 - 02330624 _____ () C:\Users\Giuseppe\Desktop\OnePak_Dell_Asset_Return.ppt

2014-02-17 11:17 - 2014-02-17 11:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-02-13 16:15 - 2014-02-13 16:15 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\IsolatedStorage

2014-02-13 16:14 - 2014-02-13 16:14 - 00000148 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

2014-02-13 16:14 - 2014-02-13 16:14 - 00000000 ____D () C:\Users\Giuseppe\Documents\TurboTax

2014-02-13 16:13 - 2014-02-13 16:13 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Intuit

2014-02-13 16:10 - 2014-02-13 16:10 - 00002531 _____ () C:\Users\Public\Desktop\TurboTax 2013.lnk

2014-02-13 16:07 - 2014-02-13 16:09 - 00000000 ____D () C:\ProgramData\Intuit

2014-02-13 16:07 - 2014-02-13 16:07 - 00000000 ____D () C:\Program Files (x86)\TurboTax

2014-02-13 15:59 - 2014-02-13 15:59 - 00000000 ____D () C:\Users\Giuseppe\Documents\NeroVision

2014-02-13 15:57 - 2014-02-13 15:57 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Ahead

2014-02-13 15:56 - 2014-02-13 17:06 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Ahead

2014-02-13 15:56 - 2014-02-13 15:56 - 00000000 ____D () C:\ProgramData\Ahead

2014-02-13 15:48 - 2014-02-13 16:20 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Tasse 2013

2014-02-12 21:44 - 2013-12-21 01:53 - 00548864 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll

2014-02-12 21:44 - 2013-12-21 00:56 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll

2014-02-12 21:43 - 2014-02-06 04:16 - 23170048 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll

2014-02-12 21:43 - 2014-02-06 03:30 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb

2014-02-12 21:43 - 2014-02-06 03:30 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll

2014-02-12 21:43 - 2014-02-06 03:12 - 02765824 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll

2014-02-12 21:43 - 2014-02-06 03:07 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll

2014-02-12 21:43 - 2014-02-06 03:06 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll

2014-02-12 21:43 - 2014-02-06 02:57 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll

2014-02-12 21:43 - 2014-02-06 02:56 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll

2014-02-12 21:43 - 2014-02-06 02:52 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll

2014-02-12 21:43 - 2014-02-06 02:49 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe

2014-02-12 21:43 - 2014-02-06 02:48 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll

2014-02-12 21:43 - 2014-02-06 02:48 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe

2014-02-12 21:43 - 2014-02-06 02:38 - 17103872 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll

2014-02-12 21:43 - 2014-02-06 02:32 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe

2014-02-12 21:43 - 2014-02-06 02:20 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb

2014-02-12 21:43 - 2014-02-06 02:17 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll

2014-02-12 21:43 - 2014-02-06 02:11 - 05768704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll

2014-02-12 21:43 - 2014-02-06 02:01 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll

2014-02-12 21:43 - 2014-02-06 02:00 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll

2014-02-12 21:43 - 2014-02-06 01:57 - 02168320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll

2014-02-12 21:43 - 2014-02-06 01:57 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll

2014-02-12 21:43 - 2014-02-06 01:52 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll

2014-02-12 21:43 - 2014-02-06 01:52 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll

2014-02-12 21:43 - 2014-02-06 01:50 - 02041856 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl

2014-02-12 21:43 - 2014-02-06 01:49 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll

2014-02-12 21:43 - 2014-02-06 01:47 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe

2014-02-12 21:43 - 2014-02-06 01:46 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll

2014-02-12 21:43 - 2014-02-06 01:25 - 04244480 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll

2014-02-12 21:43 - 2014-02-06 01:25 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll

2014-02-12 21:43 - 2014-02-06 01:24 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll

2014-02-12 21:43 - 2014-02-06 01:22 - 13051392 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll

2014-02-12 21:43 - 2014-02-06 01:13 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll

2014-02-12 21:43 - 2014-02-06 01:09 - 01964032 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl

2014-02-12 21:43 - 2014-02-06 01:03 - 11266048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll

2014-02-12 21:43 - 2014-02-06 00:55 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll

2014-02-12 21:43 - 2014-02-06 00:41 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll

2014-02-12 21:43 - 2014-02-06 00:40 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll

2014-02-12 21:43 - 2014-02-06 00:36 - 01156096 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll

2014-02-12 21:43 - 2014-02-06 00:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll

2014-02-12 19:14 - 2013-12-31 15:05 - 00420008 _____ () C:\windows\SysWOW64\locale.nls

2014-02-12 19:14 - 2013-12-31 15:04 - 00420008 _____ () C:\windows\system32\locale.nls

2014-02-12 19:14 - 2013-12-24 15:09 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll

2014-02-12 19:14 - 2013-12-24 14:48 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll

2014-02-12 19:14 - 2013-12-05 18:30 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll

2014-02-12 19:14 - 2013-12-05 18:30 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll

2014-02-12 19:14 - 2013-12-05 18:02 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll

2014-02-12 19:14 - 2013-12-05 18:02 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll

2014-02-12 19:14 - 2013-12-03 18:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll

2014-02-12 19:14 - 2013-12-03 18:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll

2014-02-12 19:14 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll

2014-02-12 19:14 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll

2014-02-12 19:14 - 2013-12-03 18:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll

2014-02-12 19:14 - 2013-12-03 18:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe

2014-02-12 19:14 - 2013-12-03 18:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe

2014-02-12 19:14 - 2013-12-03 18:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe

2014-02-12 19:14 - 2013-12-03 18:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe

2014-02-12 19:14 - 2013-12-03 18:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll

2014-02-12 19:14 - 2013-12-03 18:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll

2014-02-12 19:14 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll

2014-02-12 19:14 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll

2014-02-12 19:14 - 2013-12-03 18:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll

2014-02-12 19:14 - 2013-12-03 17:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe

2014-02-12 19:14 - 2013-12-03 17:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe

2014-02-12 19:14 - 2013-12-03 17:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe

2014-02-12 19:14 - 2013-12-03 17:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe

2014-02-12 19:14 - 2013-11-26 00:16 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll

2014-02-12 19:14 - 2013-11-22 14:48 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll

2014-02-10 10:23 - 2014-02-10 10:26 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Samsung Galaxy backup

2014-02-10 10:16 - 2014-02-10 10:16 - 00000000 ____D () C:\Users\Giuseppe\Documents\SelfMV

2014-02-10 10:08 - 2014-01-22 19:21 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\windows\system32\Drivers\ssudmdm.sys

2014-02-10 10:08 - 2014-01-22 19:21 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\windows\system32\Drivers\ssudbus.sys

2014-02-10 10:04 - 2014-02-10 10:04 - 00000000 ____D () C:\Program Files (x86)\MarkAny

2014-02-10 09:57 - 2014-02-10 09:57 - 00000000 ____D () C:\Users\Public\Documents\CrashDump

2014-02-06 12:03 - 2014-02-06 12:21 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Dell Paychecks

2014-02-06 09:14 - 2014-02-06 09:14 - 00000000 ___HD () C:\Users\Giuseppe\.Box Sync

2014-02-06 09:13 - 2014-03-01 17:13 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Box Sync

2014-02-06 09:13 - 2014-02-22 16:53 - 00000000 ____D () C:\Users\Giuseppe\Box Sync

2014-02-06 09:13 - 2014-02-06 09:13 - 00001549 _____ () C:\Users\Giuseppe\Desktop\Box Sync.lnk

2014-02-06 09:12 - 2014-02-06 09:12 - 00000000 ____D () C:\ProgramData\Package Cache

2014-02-06 09:12 - 2014-02-06 09:12 - 00000000 ____D () C:\Program Files\Box

2014-02-02 22:04 - 2014-02-02 22:04 - 00000000 ____D () C:\Program Files\McAfee Security Scan

 

==================== One Month Modified Files and Folders =======

 

2014-03-04 18:40 - 2014-03-04 18:39 - 00027796 _____ () C:\Users\Giuseppe\Desktop\FRST.txt

2014-03-04 18:39 - 2014-03-04 18:39 - 00000000 ____D () C:\FRST

2014-03-04 18:35 - 2014-02-27 19:16 - 00222043 _____ () C:\windows\WindowsUpdate.log

2014-03-04 18:35 - 2009-07-13 20:45 - 00020928 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-03-04 18:35 - 2009-07-13 20:45 - 00020928 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-03-04 18:34 - 2014-01-19 13:41 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job

2014-03-04 18:34 - 2009-07-13 21:13 - 00782598 _____ () C:\windows\system32\PerfStringBackup.INI

2014-03-04 18:33 - 2014-03-04 09:38 - 00000000 ____D () C:\ProgramData\boost_interprocess

2014-03-04 18:31 - 2013-07-10 20:21 - 00016152 _____ () C:\windows\system32\Drivers\SWDUMon.sys

2014-03-04 18:31 - 2013-07-10 20:21 - 00002848 _____ () C:\windows\System32\Tasks\SlimDrivers Startup

2014-03-04 18:31 - 2013-07-10 20:21 - 00000416 _____ () C:\windows\Tasks\SlimDrivers Startup.job

2014-03-04 18:31 - 2013-07-06 13:03 - 00003108 _____ () C:\windows\System32\Tasks\ASO-System Protector_startup

2014-03-04 18:31 - 2012-03-03 14:22 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\PasswordSafe

2014-03-04 18:31 - 2012-02-25 15:10 - 00000920 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000UA.job

2014-03-04 18:30 - 2014-03-04 16:29 - 00003224 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4203985538-3546249214-282815655-1000

2014-03-04 18:30 - 2014-03-04 16:28 - 00003352 _____ () C:\windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4203985538-3546249214-282815655-1000

2014-03-04 18:30 - 2014-03-04 09:36 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Systweak

2014-03-04 18:30 - 2014-03-04 09:36 - 00000000 ____D () C:\ProgramData\Systweak

2014-03-04 18:30 - 2012-03-18 13:08 - 00000898 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-03-04 18:30 - 2011-12-16 02:27 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks

2014-03-04 18:30 - 2011-12-16 02:27 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks

2014-03-04 18:30 - 2011-12-16 02:17 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup

2014-03-04 18:29 - 2014-02-27 19:18 - 00001839 _____ () C:\windows\setupact.log

2014-03-04 18:29 - 2009-07-13 21:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT

2014-03-04 18:24 - 2014-03-04 18:24 - 558195309 _____ () C:\windows\MEMORY.DMP

2014-03-04 18:24 - 2014-03-04 18:24 - 00289512 _____ () C:\windows\Minidump\030414-34476-01.dmp

2014-03-04 18:24 - 2012-11-10 22:47 - 00000000 ____D () C:\windows\Minidump

2014-03-04 18:13 - 2014-03-04 18:13 - 02156544 _____ (Farbar) C:\Users\Giuseppe\Desktop\FRST64.exe

2014-03-04 18:12 - 2014-03-04 18:11 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\Giuseppe\Desktop\tdsskiller.exe

2014-03-04 18:12 - 2012-01-25 21:31 - 00000000 ____D () C:\Users\Giuseppe

2014-03-04 18:11 - 2014-03-01 19:35 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Fixing PC

2014-03-04 16:51 - 2012-03-18 13:08 - 00000902 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-03-04 16:31 - 2014-02-17 16:26 - 00000868 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000Core1cf2c4030ce01a.job

2014-03-04 16:24 - 2014-03-04 15:50 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2014-03-04 15:50 - 2014-03-04 15:50 - 00119000 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys

2014-03-04 15:50 - 2014-03-04 15:50 - 00091352 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys

2014-03-04 15:44 - 2012-01-25 21:32 - 00130344 _____ () C:\Users\Giuseppe\AppData\Local\GDIPFONTCACHEV1.DAT

2014-03-04 15:44 - 2011-12-16 03:22 - 00000000 ___RD () C:\Users\Public\Recorded TV

2014-03-04 15:43 - 2014-03-01 20:55 - 00001568 _____ () C:\windows\PFRO.log

2014-03-04 15:43 - 2009-07-13 20:45 - 02405480 _____ () C:\windows\system32\FNTCACHE.DAT

2014-03-04 15:07 - 2009-07-13 18:34 - 00000546 _____ () C:\windows\win.ini

2014-03-04 15:02 - 2011-11-16 11:25 - 00782598 _____ () C:\windows\SysWOW64\PerfStringBackup.INI

2014-03-04 13:30 - 2014-03-04 13:26 - 00181064 _____ (Sysinternals) C:\windows\PSEXESVC.EXE

2014-03-04 13:04 - 2014-03-04 12:18 - 00002161 _____ () C:\Users\Giuseppe\Desktop\Tweaking.com - Windows Repair (All in One).lnk

2014-03-04 12:17 - 2014-03-04 12:17 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com

2014-03-04 12:16 - 2014-03-04 12:16 - 05198512 _____ () C:\Users\Giuseppe\tweaking.com_windows_repair_aio_setup.exe

2014-03-04 10:35 - 2011-12-16 02:05 - 00000000 ____D () C:\Program Files (x86)\McAfee

2014-03-04 08:54 - 2014-03-04 08:54 - 01037734 _____ (Thisisu) C:\Users\Giuseppe\Downloads\JRT (1).exe

2014-03-03 19:11 - 2014-03-03 19:11 - 00000000 ____D () C:\windows\ERUNT

2014-03-03 19:10 - 2014-03-03 19:10 - 01037734 _____ (Thisisu) C:\Users\Giuseppe\Downloads\JRT.exe

2014-03-03 09:36 - 2014-03-03 09:30 - 00000000 ____D () C:\AdwCleaner

2014-03-03 09:01 - 2014-03-03 09:01 - 00000000 ____D () C:\Program Files (x86)\AMD APP

2014-03-02 11:16 - 2014-03-02 11:16 - 00000000 ____D () C:\Program Files\ATI Technologies

2014-03-02 11:16 - 2014-03-02 11:16 - 00000000 ____D () C:\Program Files\ATI

2014-03-02 10:52 - 2014-03-02 10:52 - 00404048 _____ () C:\Users\Giuseppe\Downloads\DellSystemDetect (2).exe

2014-03-02 10:52 - 2013-12-18 20:30 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Deployment

2014-03-02 08:33 - 2014-03-02 08:33 - 00404048 _____ () C:\Users\Giuseppe\Downloads\DellSystemDetect (1).exe

2014-03-01 21:58 - 2013-07-10 20:30 - 00015814 _____ () C:\windows\system32\results.xml

2014-03-01 21:55 - 2013-07-10 20:58 - 00000000 ____D () C:\ProgramData\Intel

2014-03-01 21:55 - 2011-12-16 01:34 - 00000000 ____D () C:\Program Files (x86)\Intel

2014-03-01 21:44 - 2014-03-01 21:44 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell

2014-03-01 21:43 - 2014-03-01 21:43 - 00404048 _____ () C:\Users\Giuseppe\Downloads\DellSystemDetect.exe

2014-03-01 21:43 - 2013-12-18 20:31 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Apps\2.0

2014-03-01 21:30 - 2014-03-01 21:30 - 01345110 _____ () C:\Users\Giuseppe\Desktop\Fixing PC.zip

2014-03-01 21:25 - 2011-12-16 04:30 - 00000000 ____D () C:\Dell

2014-03-01 21:08 - 2014-02-27 11:30 - 00000000 ____D () C:\Users\Giuseppe\Desktop\JavaRa-2.5

2014-03-01 21:01 - 2014-03-01 21:01 - 00312744 _____ (Oracle Corporation) C:\windows\system32\javaws.exe

2014-03-01 21:01 - 2014-03-01 21:01 - 00108968 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll

2014-03-01 21:01 - 2011-12-16 01:36 - 00189352 _____ (Oracle Corporation) C:\windows\system32\javaw.exe

2014-03-01 21:01 - 2011-12-16 01:36 - 00189352 _____ (Oracle Corporation) C:\windows\system32\java.exe

2014-03-01 21:01 - 2011-12-16 01:36 - 00000000 ____D () C:\Program Files\Java

2014-03-01 19:33 - 2014-03-01 19:33 - 00030765 _____ () C:\ComboFix.txt

2014-03-01 19:33 - 2014-03-01 19:20 - 00000000 ____D () C:\Qoobox

2014-03-01 19:33 - 2010-11-20 18:50 - 00000000 ____D () C:\Users\Administrator

2014-03-01 19:33 - 2009-07-13 19:20 - 00000000 __RHD () C:\Users\Default

2014-03-01 19:32 - 2014-03-01 19:20 - 00000000 ____D () C:\windows\erdnt

2014-03-01 19:31 - 2009-07-13 18:34 - 00000215 _____ () C:\windows\system.ini

2014-03-01 17:13 - 2014-02-06 09:13 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Box Sync

2014-03-01 10:50 - 2014-03-01 10:50 - 00000000 ____D () C:\MATS

2014-02-27 19:18 - 2014-02-27 19:18 - 00000000 _____ () C:\windows\setuperr.log

2014-02-27 17:30 - 2014-02-27 17:30 - 00019286 _____ () C:\Users\Giuseppe\Documents\cc_20140227_173014.reg

2014-02-27 17:29 - 2013-01-20 22:27 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\CrashDumps

2014-02-27 17:29 - 2011-02-23 05:08 - 00000000 ____D () C:\windows\Panther

2014-02-27 17:26 - 2014-02-27 17:25 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Giuseppe\mbam-setup-1.75.0.1300.exe

2014-02-27 17:26 - 2013-05-29 18:53 - 00001111 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-02-27 17:26 - 2013-05-29 18:53 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-02-27 10:20 - 2014-02-27 10:20 - 00000000 ____D () C:\Program Files (x86)\ESET

2014-02-26 19:45 - 2014-02-26 19:43 - 00000000 ____D () C:\Users\Giuseppe\Desktop\whatinstartup-x64

2014-02-26 14:20 - 2014-02-26 14:20 - 00000000 ____D () C:\SUPERDelete

2014-02-26 12:16 - 2014-02-26 12:16 - 00016440 _____ () C:\bootsqm.dat

2014-02-26 12:01 - 2011-12-16 02:10 - 00000000 ___RD () C:\Program Files (x86)\Skype

2014-02-26 12:01 - 2011-12-16 02:10 - 00000000 ____D () C:\ProgramData\Skype

2014-02-26 11:00 - 2012-01-25 21:36 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Adobe

2014-02-25 16:03 - 2013-05-23 15:08 - 00003440 _____ () C:\windows\System32\Tasks\PCDEventLauncherTask

2014-02-25 12:51 - 2014-02-25 12:51 - 00258928 _____ (Cisco WebEx LLC) C:\Users\Giuseppe\Downloads\Cisco_WebEx_Add-On.exe

2014-02-25 12:51 - 2013-06-07 11:53 - 00000000 ____D () C:\ProgramData\WebEx

2014-02-25 10:19 - 2012-01-25 21:51 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Nero

2014-02-23 17:49 - 2013-01-19 20:23 - 00001528 _____ () C:\windows\Sandboxie.ini

2014-02-22 16:53 - 2014-02-06 09:13 - 00000000 ____D () C:\Users\Giuseppe\Box Sync

2014-02-21 16:33 - 2014-02-21 16:33 - 00168368 _____ () C:\Users\Giuseppe\Downloads\voice-message.wav

2014-02-20 19:10 - 2013-05-23 15:06 - 00000000 ____D () C:\Program Files\My Dell

2014-02-20 19:10 - 2012-02-18 11:00 - 00000000 ____D () C:\ProgramData\PCDr

2014-02-20 15:34 - 2014-01-19 13:41 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater

2014-02-20 15:34 - 2013-12-04 14:31 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe

2014-02-20 15:34 - 2013-12-04 14:31 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl

2014-02-19 18:50 - 2011-12-16 02:06 - 00000000 ____D () C:\Program Files\Common Files\mcafee

2014-02-19 10:30 - 2009-07-13 19:20 - 00000000 ____D () C:\windows\rescache

2014-02-18 14:50 - 2012-06-06 20:44 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Real

2014-02-17 20:33 - 2009-07-13 18:34 - 97517568 _____ () C:\windows\system32\config\SOFTWARE.bak

2014-02-17 20:33 - 2009-07-13 18:34 - 28049408 _____ () C:\windows\system32\config\SYSTEM.bak

2014-02-17 20:33 - 2009-07-13 18:34 - 00024576 _____ () C:\windows\system32\config\SECURITY.bak

2014-02-17 20:32 - 2013-06-22 09:07 - 00001668 _____ () C:\windows\system32\ASOROSet.bin

2014-02-17 20:28 - 2009-07-13 18:34 - 00057344 _____ () C:\windows\system32\config\SAM.bak

2014-02-17 17:13 - 2014-02-17 16:20 - 02330624 _____ () C:\Users\Giuseppe\Desktop\OnePak_Dell_Asset_Return.ppt

2014-02-17 16:26 - 2014-02-17 16:26 - 00003500 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000Core1cf2c4030ce01a

2014-02-17 16:26 - 2012-02-25 15:10 - 00003896 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000UA

2014-02-17 15:34 - 2012-05-10 20:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-02-17 11:45 - 2013-07-10 11:36 - 00000000 ____D () C:\windows\system32\MRT

2014-02-17 11:43 - 2012-01-28 17:23 - 88567024 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

2014-02-17 11:17 - 2014-02-17 11:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-02-13 17:11 - 2012-06-15 20:04 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\vlc

2014-02-13 17:10 - 2013-08-17 07:11 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\dvdcss

2014-02-13 17:06 - 2014-02-13 15:56 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Ahead

2014-02-13 16:20 - 2014-02-13 15:48 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Tasse 2013

2014-02-13 16:15 - 2014-02-13 16:15 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\IsolatedStorage

2014-02-13 16:14 - 2014-02-13 16:14 - 00000148 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

2014-02-13 16:14 - 2014-02-13 16:14 - 00000000 ____D () C:\Users\Giuseppe\Documents\TurboTax

2014-02-13 16:13 - 2014-02-13 16:13 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Intuit

2014-02-13 16:10 - 2014-02-13 16:10 - 00002531 _____ () C:\Users\Public\Desktop\TurboTax 2013.lnk

2014-02-13 16:09 - 2014-02-13 16:07 - 00000000 ____D () C:\ProgramData\Intuit

2014-02-13 16:07 - 2014-02-13 16:07 - 00000000 ____D () C:\Program Files (x86)\TurboTax

2014-02-13 15:59 - 2014-02-13 15:59 - 00000000 ____D () C:\Users\Giuseppe\Documents\NeroVision

2014-02-13 15:57 - 2014-02-13 15:57 - 00000000 ____D () C:\Users\Giuseppe\AppData\Local\Ahead

2014-02-13 15:56 - 2014-02-13 15:56 - 00000000 ____D () C:\ProgramData\Ahead

2014-02-13 15:55 - 2011-12-16 01:47 - 00000000 ____D () C:\ProgramData\Nero

2014-02-13 15:55 - 2011-12-16 01:47 - 00000000 ____D () C:\Program Files (x86)\Nero

2014-02-11 13:46 - 2012-03-18 13:08 - 00003898 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-02-11 13:46 - 2012-03-18 13:08 - 00003646 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-02-10 15:27 - 2012-01-25 21:39 - 00000000 ____D () C:\Users\Giuseppe\AppData\Roaming\Mozilla

2014-02-10 10:26 - 2014-02-10 10:23 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Samsung Galaxy backup

2014-02-10 10:16 - 2014-02-10 10:16 - 00000000 ____D () C:\Users\Giuseppe\Documents\SelfMV

2014-02-10 10:07 - 2013-06-04 14:38 - 00000000 ____D () C:\Program Files (x86)\Samsung

2014-02-10 10:04 - 2014-02-10 10:04 - 00000000 ____D () C:\Program Files (x86)\MarkAny

2014-02-10 10:01 - 2013-06-04 14:38 - 00000000 ____D () C:\ProgramData\Samsung

2014-02-10 09:57 - 2014-02-10 09:57 - 00000000 ____D () C:\Users\Public\Documents\CrashDump

2014-02-09 08:33 - 2009-07-13 21:08 - 00032554 _____ () C:\windows\Tasks\SCHEDLGU.TXT

2014-02-08 10:10 - 2012-08-01 20:46 - 00000000 ____D () C:\Users\Giuseppe\Documents\My Box Files

2014-02-06 12:21 - 2014-02-06 12:03 - 00000000 ____D () C:\Users\Giuseppe\Desktop\Dell Paychecks

2014-02-06 09:14 - 2014-02-06 09:14 - 00000000 ___HD () C:\Users\Giuseppe\.Box Sync

2014-02-06 09:13 - 2014-02-06 09:13 - 00001549 _____ () C:\Users\Giuseppe\Desktop\Box Sync.lnk

2014-02-06 09:12 - 2014-02-06 09:12 - 00000000 ____D () C:\ProgramData\Package Cache

2014-02-06 09:12 - 2014-02-06 09:12 - 00000000 ____D () C:\Program Files\Box

2014-02-06 09:09 - 2012-11-06 18:57 - 00000000 ____D () C:\Program Files\Box Sync

2014-02-06 04:16 - 2014-02-12 21:43 - 23170048 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll

2014-02-06 03:30 - 2014-02-12 21:43 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb

2014-02-06 03:30 - 2014-02-12 21:43 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll

2014-02-06 03:12 - 2014-02-12 21:43 - 02765824 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll

2014-02-06 03:07 - 2014-02-12 21:43 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll

2014-02-06 03:06 - 2014-02-12 21:43 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll

2014-02-06 02:57 - 2014-02-12 21:43 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll

2014-02-06 02:56 - 2014-02-12 21:43 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll

2014-02-06 02:52 - 2014-02-12 21:43 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll

2014-02-06 02:49 - 2014-02-12 21:43 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe

2014-02-06 02:48 - 2014-02-12 21:43 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll

2014-02-06 02:48 - 2014-02-12 21:43 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe

2014-02-06 02:38 - 2014-02-12 21:43 - 17103872 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll

2014-02-06 02:32 - 2014-02-12 21:43 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe

2014-02-06 02:20 - 2014-02-12 21:43 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb

2014-02-06 02:17 - 2014-02-12 21:43 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll

2014-02-06 02:11 - 2014-02-12 21:43 - 05768704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll

2014-02-06 02:01 - 2014-02-12 21:43 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll

2014-02-06 02:00 - 2014-02-12 21:43 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll

2014-02-06 01:57 - 2014-02-12 21:43 - 02168320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll

2014-02-06 01:57 - 2014-02-12 21:43 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll

2014-02-06 01:52 - 2014-02-12 21:43 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll

2014-02-06 01:52 - 2014-02-12 21:43 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll

2014-02-06 01:50 - 2014-02-12 21:43 - 02041856 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl

2014-02-06 01:49 - 2014-02-12 21:43 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll

2014-02-06 01:47 - 2014-02-12 21:43 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe

2014-02-06 01:46 - 2014-02-12 21:43 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll

2014-02-06 01:25 - 2014-02-12 21:43 - 04244480 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll

2014-02-06 01:25 - 2014-02-12 21:43 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll

2014-02-06 01:24 - 2014-02-12 21:43 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll

2014-02-06 01:22 - 2014-02-12 21:43 - 13051392 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll

2014-02-06 01:13 - 2014-02-12 21:43 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll

2014-02-06 01:09 - 2014-02-12 21:43 - 01964032 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl

2014-02-06 01:03 - 2014-02-12 21:43 - 11266048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll

2014-02-06 00:55 - 2014-02-12 21:43 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll

2014-02-06 00:41 - 2014-02-12 21:43 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll

2014-02-06 00:40 - 2014-02-12 21:43 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll

2014-02-06 00:36 - 2014-02-12 21:43 - 01156096 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll

2014-02-06 00:34 - 2014-02-12 21:43 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll

2014-02-02 22:04 - 2014-02-02 22:04 - 00000000 ____D () C:\Program Files\McAfee Security Scan

 

Files to move or delete:

====================

C:\Users\Giuseppe\mbam-setup-1.75.0.1300.exe

C:\Users\Giuseppe\tweaking.com_windows_repair_aio_setup.exe

C:\Users\Public\usbsafeguard.exe

 

 

Some content of TEMP:

====================

C:\Users\Giuseppe\AppData\Local\Temp\java-installer.exe

C:\Users\Giuseppe\AppData\Local\Temp\ntdll_dump.dll

C:\Users\Giuseppe\AppData\Local\Temp\Quarantine.exe

C:\Users\Giuseppe\AppData\Local\Temp\{42664C7D-FA74-49E9-9D17-409DD5EE925F}.exe

C:\Users\Giuseppe\AppData\Local\Temp\{7704B590-EEFB-4D38-AE0D-0775B8DAAB81}.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

 

 

LastRegBack: 2014-02-19 10:19

 

==================== End Of Log ============================



#10 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 05 March 2014 - 02:53 PM

Addition.txt:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-03-2014 02

Ran by Giuseppe at 2014-03-04 18:41:27

Running from C:\Users\Giuseppe\Desktop

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}

AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

 

==================== Installed Programs ======================

 

7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version:  - )

Accidental Damage Services Agreement (HKLM-x32\...\{EF85FEF4-EB92-4075-A6D2-5F519BB30A2C}) (Version: 2.0.0 - Dell Inc.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.5.0.1060 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 3.5.0.1060 - Adobe Systems Incorporated) Hidden

Adobe Anchor Service CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Asset Services CS3 (x32 Version: 3 - Adobe Systems Incorporated) Hidden

Adobe Bridge CS3 (x32 Version: 2 - Adobe Systems Incorporated) Hidden

Adobe Bridge Start Meeting (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Camera Raw 4.0 (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden

Adobe CMaps (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Color - Photoshop Specific (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Color Common Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Color EU Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Color JA Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Color NA Recommended Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)

Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden

Adobe Default Language CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Device Central CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Dreamweaver CS5.5 (HKLM-x32\...\{0215A652-E081-4B09-9333-DC85AAB67FFA}) (Version: 11.5 - Adobe Systems Incorporated)

Adobe ExtendScript Toolkit 2 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)

Adobe Fonts All (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Help Viewer CS3 (x32 Version: 1 - Adobe Systems Incorporated) Hidden

Adobe Linguistics CS3 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden

Adobe PDF Library Files (x32 Version: 8.0 - Adobe Systems Incorporated) Hidden

Adobe Photoshop CS3 (HKLM-x32\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)

Adobe Photoshop CS3 (x32 Version: 10 - Adobe Systems Incorporated) Hidden

Adobe Photoshop Elements 9 (HKLM-x32\...\Adobe Photoshop Elements 9) (Version: 9.0.3.0 - Adobe Systems Incorporated)

Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0 - Adobe Systems Incorporated) Hidden

Adobe Premiere Elements 9 (HKLM-x32\...\PremElem90) (Version: 9.0 - Adobe Systems Incorporated)

Adobe Premiere Elements 9 (x32 Version: 9.0.1 - Adobe Systems Incorporated) Hidden

Adobe Reader X (10.1.9) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)

Adobe Setup (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.4.634 - Adobe Systems, Inc.)

Adobe Stock Photos CS3 (x32 Version: 1.5 - Adobe Systems Incorporated) Hidden

Adobe Type Support (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe Update Manager CS3 (x32 Version: 5.1.0 - Adobe Systems Incorporated) Hidden

Adobe Version Cue CS3 Client (x32 Version: 3 - Adobe Systems Incorporated) Hidden

Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)

Adobe Widget Browser (x32 Version: 2.0.230 - Adobe Systems Incorporated.) Hidden

Adobe WinSoft Linguistics Plugin (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Adobe XMP Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)

Advanced System Optimizer (HKLM-x32\...\{A1E21995-127E-4B7F-8C4D-CB04AA8A58EF}_is1) (Version: 3.5.1000.14284 - Systweak, Inc.)

AMD APP SDK Runtime (Version: 2.4.595.1 - Advanced Micro Devices Inc.) Hidden

Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ATI Catalyst Install Manager (HKLM\...\{57CC96D5-EC41-6CFA-9BBE-2F004C839318}) (Version: 3.0.820.0 - ATI Technologies, Inc.)

Banctec Service Agreement (HKLM-x32\...\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}) (Version: 2.0.0 - Dell Inc.)

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.171.0 - Microsoft Corporation)

Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Blio (HKLM-x32\...\{400182B4-CA55-46A9-9D88-F8413DCFB36D}) (Version: 2.3.7140 - K-NFB Reading Technology, Inc.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden

Box Sync (HKLM\...\{902BC820-8C1B-4CF1-B12F-8FA53CAD0C4C}) (Version: 4.0.4474.0 - Box, Inc.)

Box Sync (x32 Version: 4.0.4336.0 - Box Inc.) Hidden

Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden

CamStudio OSS Desktop Recorder (HKLM-x32\...\{FD9C31B6-F572-414D-81E3-89368C97A125}_is1) (Version: 2.6 Beta r294 - CamStudio Open Source Dev Team)

CCleaner (HKLM\...\CCleaner) (Version: 3.26 - Piriform)

Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Citrix Online Launcher (HKLM-x32\...\{75C7BFBC-5FA8-47C9-9E6C-AD1954F63A53}) (Version: 1.0.109 - Citrix)

Complete Care Business Service Agreement (HKLM-x32\...\{0ECFCB07-9BFE-4970-ACA1-D568D982760B}) (Version: 2.0.0 - Dell Inc.)

Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)

Cozi (HKLM-x32\...\{EA1F3D6C-A6F5-4CDC-B0D3-9C56C06B4D29}) (Version: 1.0.6505.38692 - Cozi Group, Inc.)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{81FB7C60-565A-4869-9D90-3BE1D270E8B7}) (Version:  - Microsoft)

Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)

Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)

Dell DataSafe Online (HKLM-x32\...\{C53BCCBE-9268-4C09-82E9-611444A73B3F}) (Version: 2.8.1.10 - Dell)

Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)

Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)

Dell Home Systems Service Agreement (HKLM-x32\...\{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}) (Version: 2.0.0 - Dell Inc.)

Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)

Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)

Dell Stage (HKLM-x32\...\{FE182796-F6BA-486A-8590-89B7E8D1D60F}) (Version: 1.7.209.0 - Fingertapps)

Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.5.0.19 - Dell)

Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.204 - ALPS ELECTRIC CO., LTD.)

Dell VideoStage  (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)

Dell VideoStage  (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden

Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)

Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden

DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden

Diskeeper 2010 Pro Premier (HKLM\...\{858CCC22-7029-4426-B4D5-58C38742EBD3}) (Version: 14.0.896.64 - Diskeeper Corporation)

Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden

eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)

Elements 9 Organizer (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden

Elements STI Installer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Escape Whisper Valley ™ (x32 Version: 2.2.0.95 - WildTangent) Hidden

ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )

Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden

FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden

FileZilla Client 3.7.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.1 - FileZilla Project)

Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden

Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden

Git version 1.8.4-preview20130916 (HKLM-x32\...\Git_is1) (Version: 1.8.4-preview20130916 - The Git Development Community)

GitHub (HKCU\...\5f7eb300e2ea4ebf) (Version: 1.2.5.0 - GitHub, Inc.)

Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)

Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)

Google Talk (remove only) (HKCU\...\{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk) (Version:  - )

Google Talk Plugin (HKLM-x32\...\{41101F0C-DBD9-321C-A6B1-E0689B495A4E}) (Version: 5.1.4.17398 - Google)

Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden

GoToMeeting 5.7.0.1172 (HKCU\...\GoToMeeting) (Version: 5.7.0.1172 - CitrixOnline)

iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)

IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6421.0 - IDT)

IETester v0.4.11 (remove only) (HKLM-x32\...\IETester) (Version: 0.4.11 - Core Services)

Intel PROSet Wireless (Version:  - ) Hidden

Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.10.1300 - Intel Corporation)

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation)

Intel® PROSet/Wireless for Bluetooth® + High Speed (HKLM\...\{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}) (Version: 15.2.0.0284 - Intel Corporation)

Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{7CE8BE79-ABC3-4B2C-9543-28ED2B0A9EA8}) (Version: 1.2.0.0587 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)

Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)

Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)

Intel® WiDi (HKLM-x32\...\{781A93CD-1608-427D-B7F0-D05C07795B25}) (Version: 2.1.41.0 - Intel Corporation)

Intel® PROSet/Wireless WiFi Software (HKLM\...\{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}) (Version: 15.02.0000.1258 - Intel Corporation)

Intel® Trusted Connect Service Client (Version: 1.26.242.3 - Intel Corporation) Hidden

iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.)

Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

Jewel Quest (x32 Version: 2.2.0.95 - WildTangent) Hidden

Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden

join.me (HKCU\...\JoinMe) (Version: 1.6.0.170 - LogMeIn, Inc.)

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..)

Luxor (x32 Version: 2.2.0.95 - WildTangent) Hidden

Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.130.10 - McAfee, Inc.)

McAfee SecurityCenter (HKLM-x32\...\MSC) (Version: 12.8.934 - McAfee, Inc.)

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)

Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Live Meeting 2007 (HKLM-x32\...\{E30E7561-A466-4393-B8BF-FD93E733EF3C}) (Version: 8.0.6362.202 - Microsoft Corporation)

Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)

Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Office Visio 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{CE144BF4-4950-4CDB-A5F7-CCE1888F49CB}) (Version:  - Microsoft)

Microsoft Office Visio 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden

Microsoft Office Visio MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Visio Professional 2007 (HKLM-x32\...\VISPRO) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office Visio Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden

Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.4734.1000 - Microsoft Corporation) Hidden

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden

Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden

Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden

Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden

Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden

Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden

Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden

Mozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)

MySQL Workbench 5.2 CE (HKLM-x32\...\{23C3EF87-AD08-4F76-982D-1AE137485F08}) (Version: 5.2.44 - Oracle Corporation)

Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden

Nero 10 Movie ThemePack Basic (x32 Version: 10.6.10000.1.0 - Nero AG) Hidden

Nero 7 Ultra Edition (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301033}) (Version: 7.02.9753 - Nero AG)

Nero Blu-ray Player (x32 Version: 12.0.20012 - Nero AG) Hidden

Nero Control Center 10 (x32 Version: 10.6.13000.0.11 - Nero AG) Hidden

Nero ControlCenter 10 Help (CHM) (x32 Version: 10.2.10800 - Nero AG) Hidden

Nero Core Components 10 (x32 Version: 2.0.20000.9.12 - Nero AG) Hidden

Nero Update (x32 Version: 11.0.11500.28.0 - Nero AG) Hidden

neroxml (x32 Version: 1.0.0 - Nero AG) Hidden

Password Safe (HKLM-x32\...\Password Safe) (Version:  - )

PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden

Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden

PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden

Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden

PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)

Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden

Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden

PowerISO (HKLM-x32\...\PowerISO) (Version: 5.5 - Power Software Ltd)

Premium Service Agreement (HKLM-x32\...\{C33AA6D6-F5EC-48F3-AFDC-8141345D473A}) (Version: 2.0.0 - Dell Inc.)

QualxServ Service Agreement (HKLM-x32\...\{903679E8-44C8-4C07-9600-05C92654FC50}) (Version: 2.0.0 - Dell Inc.)

Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.09.25 - Dell Inc.)

QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)

RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden

RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden

RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden

RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden

RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30126 - Realtek Semiconductor Corp.)

RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden

Roxio Activation Module (x32 Version: 1.0 - Roxio) Hidden

Roxio BackOnTrack (x32 Version: 1.3.3 - Roxio) Hidden

Roxio Burn (x32 Version: 1.8 - Roxio) Hidden

Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)

Roxio Creator Starter (x32 Version: 1.0.439 - Roxio) Hidden

Roxio Creator Starter (x32 Version: 5.0.0 - Roxio) Hidden

Roxio Express Labeler 3 (x32 Version: 3.2.2 - Roxio) Hidden

Roxio File Backup (Version: 1.3.2 - Roxio) Hidden

Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)

Samantha Swift (x32 Version: 2.2.0.95 - WildTangent) Hidden

Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)

Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.34.0 - SAMSUNG Electronics Co., Ltd.)

Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)

Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)

Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)

SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)

SmartSound Quicktracks for Premiere Elements 9.0 (HKLM-x32\...\InstallShield_{6748E773-5DA0-4D19-8AA5-273B4133A09B}) (Version: 3.12.3090 - SmartSound Software Inc)

SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090 - SmartSound Software Inc) Hidden

Snagit 11 (HKLM-x32\...\{7CA5C4DF-8327-4035-AE2B-CA76336A04FD}) (Version: 11.0.0 - TechSmith Corporation)

Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden

SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1150 - SUPERAntiSpyware.com)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

SyncUP (HKLM-x32\...\{D92C9CCE-E5F0-4125-977A-0590F3225B74}) (Version: 10.2.15400 - Nero AG)

SyncUP (x32 Version: 1.12.12400.17.102 - Nero AG) Hidden

thinkorswim from TD AMERITRADE (HKLM-x32\...\thinkorswim from TD AMERITRADE) (Version:  - TD AMERITRADE, Inc.)

TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{B1EB7FFF-6E44-43D8-869D-B78E44CD3E0F}) (Version: 1.12.14.0 - Texas Instruments Inc.)

TI USB3 Host Driver (x32 Version: 1.12.14.0 - Texas Instruments Inc.) Hidden

TrustedID (HKLM-x32\...\{C16A92EF-017B-4839-9C75-FBADB5A1FA27}) (Version: 5.0 - TrustedID)

TrustedID IDMonitor Identity Protection (HKLM-x32\...\{0E74474A-1CDF-4249-A507-CE8C1DCEC8BC}) (Version: 1.1.0 - TrustedID Inc)

TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)

TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.1036 - Intuit Inc.) Hidden

TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0312 - Intuit Inc.) Hidden

TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0140 - Intuit Inc.) Hidden

TurboTax 2013 wrapper (x32 Version: 013.000.0128 - Intuit Inc.) Hidden

Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.5.1 - Tweaking.com)

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_VISPRO_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_VISPRO_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)

Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_VISPRO_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)

Update for Microsoft Office Visio 2007 Help (KB963666) (HKLM-x32\...\{90120000-0054-0409-0000-0000000FF1CE}_VISPRO_{D2C4ACC9-12F5-4E1C-81A8-5DC878AC6278}) (Version:  - Microsoft)

Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden

Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden

Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)

VLC media player 2.0.1 (HKLM-x32\...\VLC media player) (Version: 2.0.1 - VideoLAN)

WebEx (HKLM-x32\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)

Wedding Dash - Ready, Aim, Love! (x32 Version: 2.2.0.95 - WildTangent) Hidden

WildTangent Games (HKLM-x32\...\WildTangent dell Master Uninstall) (Version: 1.0.2.5 - WildTangent)

WildTangent Games App (Dell Games) (x32 Version: 4.0.5.36 - WildTangent) Hidden

Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

WinSCP 5.1.5 (HKLM-x32\...\winscp3_is1) (Version: 5.1.5 - Martin Prikryl)

Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)

Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

 

==================== Restore Points  =========================

 

04-03-2014 21:22:07 Tweaking.com - Windows Repair

 

==================== Hosts content: ==========================

 

2009-07-13 18:34 - 2014-03-01 19:31 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts

127.0.0.1       localhost

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {0218C1FB-E9AE-4F85-A550-7AA09692FD33} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-12-19] (Piriform Ltd)

Task: {065492D0-7EEA-4A91-992C-D1B38CC6DCFE} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-4203985538-3546249214-282815655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {1EB2D4BE-C804-42A3-B624-E4A66DE338FA} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe

Task: {368030A4-72CB-41EA-9475-96EB5163EE07} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000UA => C:\Users\Giuseppe\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-25] (Google Inc.)

Task: {38B3A638-4DCE-4971-BBED-C1C87C52F3E9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000Core1cf2c4030ce01a => C:\Users\Giuseppe\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-25] (Google Inc.)

Task: {53A87403-479B-4B72-B476-75E29863DD52} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {647E0D27-68A4-4D81-A29D-C787CDF4E38D} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)

Task: {691E6D77-D839-494C-96CA-F640C1DD5D05} - System32\Tasks\ASO-System Protector_startup => C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe [2012-09-07] (Systweak)

Task: {6A0FE38D-997E-4BB1-87EC-D4DE43C29797} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-18] (Google Inc.)

Task: {70A98D44-5B9D-4271-BDFC-36ECE0B11588} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)

Task: {750321AF-7181-4CBA-9A91-3B418844D4DC} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)

Task: {7E782935-BE28-40E4-BBEF-D2E84E44208E} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4203985538-3546249214-282815655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {A3730DB3-9EE5-4A70-BA4E-5B3BCBDB9B5F} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-4203985538-3546249214-282815655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {A73E596F-EB58-41F0-B5EE-4CF54F40DC64} - System32\Tasks\ASO-AutoCheckUpdate7Days => C:\Program Files (x86)\Advanced System Optimizer 3\CheckUpdate.exe [2012-09-07] (Systweak Inc., (www.systweak.com))

Task: {B342614B-5A70-47D6-973B-5EB02421937E} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)

Task: {C5816A6B-B5F8-4EFE-8AB9-FF2F97FB0D2A} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe

Task: {CF5E769C-E675-49FC-9579-749649C79DEA} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4203985538-3546249214-282815655-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {D4C4A44D-4428-44A3-A43D-BAAED52FBC64} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-18] (Google Inc.)

Task: {E968C3A6-73B2-417C-BAFF-793C395D9F29} - System32\Tasks\ASO-OneClickCare => C:\Program Files (x86)\Advanced System Optimizer 3\ASO3.exe [2012-09-07] (Systweak Inc., (www.systweak.com))

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000Core1cf2c4030ce01a.job => C:\Users\Giuseppe\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4203985538-3546249214-282815655-1000UA.job => C:\Users\Giuseppe\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

 

==================== Loaded Modules (whitelisted) =============

 

2013-07-10 21:05 - 1999-12-31 16:00 - 00158536 _____ () C:\windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll

2013-08-14 14:19 - 2013-08-14 14:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

2010-01-09 20:17 - 2010-01-09 20:17 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF

2010-01-21 01:40 - 2010-01-21 01:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll

2010-01-02 06:42 - 2010-01-02 06:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll

2011-12-16 02:17 - 2011-08-18 08:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

2011-12-16 02:59 - 2011-04-10 10:40 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll

2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2013-06-21 17:40 - 2011-11-11 17:22 - 00886272 _____ () C:\Program Files (x86)\Advanced System Optimizer 3\System.Data.SQLite.dll

2011-12-16 01:34 - 2010-11-05 21:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

2013-07-11 21:56 - 1999-12-31 16:00 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

 

==================== Safe Mode (whitelisted) ===================

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\00152677.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\33136095.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\00152677.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\33136095.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

 

==================== Disabled items from MSCONFIG ==============

 

MSCONFIG\startupfolder: C:^Users^Giuseppe^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HipChat.lnk => C:\windows\pss\HipChat.lnk.Startup

MSCONFIG\startupreg: AccuWeatherWidget => "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

MSCONFIG\startupreg: AdobeCS5.5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

MSCONFIG\startupreg: BingDesktop => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey

MSCONFIG\startupreg: BoxSync => "c:\Program Files\Box\Box Sync\BoxSync.exe" -m

MSCONFIG\startupreg: DellStage => :"C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup

MSCONFIG\startupreg: Desktop Disc Tool => "c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

MSCONFIG\startupreg: KiesTrayAgent => :C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

MSCONFIG\startupreg: mcpltui_exe => :"C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

MSCONFIG\startupreg: mcui_exe => :"C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

MSCONFIG\startupreg: NeroLauncher => :C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900

MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"

MSCONFIG\startupreg: TkBellExe => :"c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot

 

==================== Faulty Device Manager Devices =============

 

Name: McAfee Inc. mfeapfk

Description: McAfee Inc. mfeapfk

Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}

Manufacturer: 

Service: mfeapfk

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (03/04/2014 06:19:24 PM) (Source: Application Error) (User: )

Description: Faulting application name: DkService.exe, version: 14.0.896.0, time stamp: 0x4ae25948

Faulting module name: MJSCR.dll_unloaded, version: 0.0.0.0, time stamp: 0x4ac3ecca

Exception code: 0xc0000005

Fault offset: 0x000007fefaa2dca8

Faulting process id: 0x19d0

Faulting application start time: 0xDkService.exe0

Faulting application path: DkService.exe1

Faulting module path: DkService.exe2

Report Id: DkService.exe3

 

Error: (03/04/2014 06:18:06 PM) (Source: Application Error) (User: )

Description: Faulting application name: ZeroConfigService.exe, version: 15.2.0.3, time stamp: 0x4fe8ea02

Faulting module name: MurocApi.dll, version: 15.2.0.1, time stamp: 0x4fe8e921

Exception code: 0xc0000005

Fault offset: 0x000000000002089b

Faulting process id: 0xe2c

Faulting application start time: 0xZeroConfigService.exe0

Faulting application path: ZeroConfigService.exe1

Faulting module path: ZeroConfigService.exe2

Report Id: ZeroConfigService.exe3

 

Error: (03/04/2014 05:02:39 PM) (Source: AVLogEvent) (User: NT AUTHORITY)

Description: McShield encountered error while stopping.

Error Code:a7f40610

 

Error: (03/04/2014 04:39:42 PM) (Source: Microsoft-Windows-RestartManager) (User: Giuseppe-PC)

Description: Application or service 'Google Chrome' could not be shut down.

 

Error: (03/04/2014 04:28:09 PM) (Source: .NET Runtime Optimization Service) (User: )

Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

 

Error: (03/04/2014 04:28:09 PM) (Source: .NET Runtime Optimization Service) (User: )

Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

 

Error: (03/04/2014 03:02:43 PM) (Source: WinMgmt) (User: )

Description: 0x8004401eC:\WINDOWS\SYSTEM32\WBEM\EN-US\AACLIENT.MFL

 

Error: (03/04/2014 03:02:33 PM) (Source: WinMgmt) (User: )

Description: 0x8004401eC:\WINDOWS\SYSTEM32\WBEM\AACLIENT.MOF

 

Error: (03/04/2014 02:26:34 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/04/2014 01:20:22 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

System errors:

=============

Error: (03/04/2014 06:30:01 PM) (Source: Service Control Manager) (User: )

Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 

%%1243

 

Error: (03/04/2014 06:27:44 PM) (Source: Service Control Manager) (User: )

Description: The Intel® PROSet/Wireless Zero Configuration Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (03/04/2014 06:26:09 PM) (Source: WMPNetworkSvc) (User: )

Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

 

Error: (03/04/2014 06:25:15 PM) (Source: Service Control Manager) (User: )

Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 

%%1243

 

Error: (03/04/2014 06:24:54 PM) (Source: BugCheck) (User: )

Description: 0x0000007e (0xffffffffc0000006, 0xfffff88000fd113e, 0xfffff880033854a8, 0xfffff88003384d00)C:\windows\MEMORY.DMP030414-34476-01

 

Error: (03/04/2014 06:24:54 PM) (Source: EventLog) (User: )

Description: The previous system shutdown at 6:22:53 PM on ‎3/‎4/‎2014 was unexpected.

 

Error: (03/04/2014 06:21:17 PM) (Source: WMPNetworkSvc) (User: )

Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80070420'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

 

Error: (03/04/2014 06:20:29 PM) (Source: Service Control Manager) (User: )

Description: The McAfee Inc. mfeapfk service failed to start due to the following error: 

%%1243

 

Error: (03/04/2014 06:18:49 PM) (Source: Service Control Manager) (User: )

Description: The Intel® PROSet/Wireless Zero Configuration Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (03/04/2014 06:16:49 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.

 

 

Microsoft Office Sessions:

=========================

 

CodeIntegrity Errors:

===================================

  Date: 2014-03-01 19:30:58.550

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2014-03-01 19:30:58.472

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-05-29 19:59:40.184

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

 

  Date: 2013-05-29 19:59:40.180

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

 

  Date: 2013-05-29 19:59:40.167

  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

 

 

==================== Memory info =========================== 

 

Percentage of memory in use: 40%

Total physical RAM: 6050.05 MB

Available physical RAM: 3606.71 MB

Total Pagefile: 12098.29 MB

Available Pagefile: 9585.56 MB

Total Virtual: 8192 MB

Available Virtual: 8191.83 MB

 

==================== Drives ================================

 

Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:335.88 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 06EB2751)

Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)

Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS)

 

==================== End Of Log ============================



#11 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 05 March 2014 - 03:00 PM

TDSKiller log (part 1):

 

18:31:23.0990 0x1584  TDSS rootkit removing tool 3.0.0.25 Feb 27 2014 15:23:02

18:31:25.0113 0x1584  ============================================================

18:31:25.0113 0x1584  Current date / time: 2014/03/04 18:31:25.0113

18:31:25.0113 0x1584  SystemInfo:

18:31:25.0113 0x1584  

18:31:25.0113 0x1584  OS Version: 6.1.7601 ServicePack: 1.0

18:31:25.0113 0x1584  Product type: Workstation

18:31:25.0128 0x1584  ComputerName: GIUSEPPE-PC

18:31:25.0128 0x1584  UserName: Giuseppe

18:31:25.0128 0x1584  Windows directory: C:\windows

18:31:25.0128 0x1584  System windows directory: C:\windows

18:31:25.0128 0x1584  Running under WOW64

18:31:25.0128 0x1584  Processor architecture: Intel x64

18:31:25.0128 0x1584  Number of processors: 4

18:31:25.0128 0x1584  Page size: 0x1000

18:31:25.0128 0x1584  Boot type: Normal boot

18:31:25.0128 0x1584  ============================================================

18:31:25.0128 0x1584  BG loaded

18:31:25.0565 0x1584  System UUID: {FFAF2672-A5B6-2FE6-EEBC-FB776AC0124F}

18:31:28.0156 0x1584  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

18:31:28.0171 0x1584  ============================================================

18:31:28.0171 0x1584  \Device\Harddisk0\DR0:

18:31:28.0171 0x1584  MBR partitions:

18:31:28.0171 0x1584  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000

18:31:28.0171 0x1584  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030

18:31:28.0171 0x1584  ============================================================

18:31:28.0296 0x1584  C: <-> \Device\Harddisk0\DR0\Partition2

18:31:28.0296 0x1584  ============================================================

18:31:28.0296 0x1584  Initialize success

18:31:28.0296 0x1584  ============================================================

18:31:37.0641 0x160c  ============================================================

18:31:37.0641 0x160c  Scan started

18:31:37.0641 0x160c  Mode: Manual; SigCheck; TDLFS; 

18:31:37.0641 0x160c  ============================================================

18:31:37.0641 0x160c  KSN ping started

18:31:42.0433 0x160c  KSN ping finished: true

18:31:52.0890 0x160c  ================ Scan system memory ========================

18:31:52.0890 0x160c  System memory - ok

18:31:52.0890 0x160c  ================ Scan services =============================

18:31:53.0234 0x160c  [ 581D88B25C4D4121824FED2CA38E562F, 838FFC4270ED32858A4AC14B389DEA1ECCCAAFC94BEAF683F8976B5F5A91DD15 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

18:31:53.0536 0x160c  !SASCORE - detected UnsignedFile.Multi.Generic ( 1 )

18:31:56.0547 0x160c  Detect skipped due to KSN trusted

18:31:56.0547 0x160c  !SASCORE - ok

18:31:57.0684 0x160c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys

18:31:57.0882 0x160c  1394ohci - ok

18:31:57.0967 0x160c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys

18:31:57.0991 0x160c  ACPI - ok

18:31:58.0055 0x160c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys

18:31:58.0211 0x160c  AcpiPmi - ok

18:31:58.0564 0x160c  [ 1474F121C3DF1232D3E7239C03691EE6, 26D0F55010CB7C51269D94ECB5C5AA94802607685B9E9791A78B643C6227214F ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe

18:31:58.0596 0x160c  AdobeActiveFileMonitor9.0 - ok

18:31:58.0818 0x160c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

18:31:58.0858 0x160c  AdobeARMservice - ok

18:31:59.0811 0x160c  [ F7AB315A4D400CA876381D1E188A2E20, B6019C2E9B6801BB23C530C66D080F47330F48ADB0DD2813D50BE1408865BD91 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

18:31:59.0854 0x160c  AdobeFlashPlayerUpdateSvc - ok

18:31:59.0950 0x160c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys

18:32:00.0067 0x160c  adp94xx - ok

18:32:00.0192 0x160c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys

18:32:00.0222 0x160c  adpahci - ok

18:32:00.0280 0x160c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys

18:32:00.0391 0x160c  adpu320 - ok

18:32:00.0444 0x160c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll

18:32:01.0491 0x160c  AeLookupSvc - ok

18:32:01.0608 0x160c  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe

18:32:01.0822 0x160c  AESTFilters - ok

18:32:02.0085 0x160c  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys

18:32:02.0222 0x160c  AFD - ok

18:32:02.0267 0x160c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys

18:32:02.0306 0x160c  agp440 - ok

18:32:02.0383 0x160c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe

18:32:02.0601 0x160c  ALG - ok

18:32:02.0674 0x160c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys

18:32:02.0722 0x160c  aliide - ok

18:32:02.0865 0x160c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys

18:32:02.0905 0x160c  amdide - ok

18:32:03.0015 0x160c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys

18:32:03.0143 0x160c  AmdK8 - ok

18:32:03.0197 0x160c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys

18:32:03.0336 0x160c  AmdPPM - ok

18:32:03.0381 0x160c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys

18:32:03.0419 0x160c  amdsata - ok

18:32:03.0465 0x160c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys

18:32:03.0509 0x160c  amdsbs - ok

18:32:03.0526 0x160c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys

18:32:03.0541 0x160c  amdxata - ok

18:32:03.0592 0x160c  [ D46391F209DE0A98A97D1D1765F53438, 4D8C7D90BE3DB348ED4069CE3F4F403FCC6149D60B238E0B5DF9DCE4CF69C995 ] AMPPAL          C:\windows\system32\DRIVERS\AMPPAL.sys

18:32:03.0758 0x160c  AMPPAL - ok

18:32:03.0788 0x160c  [ D46391F209DE0A98A97D1D1765F53438, 4D8C7D90BE3DB348ED4069CE3F4F403FCC6149D60B238E0B5DF9DCE4CF69C995 ] AMPPALP         C:\windows\system32\DRIVERS\amppal.sys

18:32:03.0821 0x160c  AMPPALP - ok

18:32:04.0033 0x160c  [ EDFB061F7D553B84731B8263077FD520, 6A678358AAAB411C2A4911E1DA9E668F801831B8EE95E77977F72A0A5A3F90D9 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

18:32:04.0077 0x160c  AMPPALR3 - ok

18:32:04.0169 0x160c  [ 24ED0EB2B2558970176ECEE680F8F806, 262473534CBFB6DBA5258A981025BA4AB86BB06D9031A7379F1DFE48F69D789D ] ApfiltrService  C:\windows\system32\DRIVERS\Apfiltr.sys

18:32:04.0203 0x160c  ApfiltrService - ok

18:32:04.0226 0x160c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys

18:32:05.0183 0x160c  AppID - ok

18:32:05.0215 0x160c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll

18:32:05.0287 0x160c  AppIDSvc - ok

18:32:05.0393 0x160c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll

18:32:05.0505 0x160c  Appinfo - ok

18:32:05.0767 0x160c  [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

18:32:05.0818 0x160c  Apple Mobile Device - ok

18:32:05.0947 0x160c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys

18:32:05.0995 0x160c  arc - ok

18:32:06.0064 0x160c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys

18:32:06.0098 0x160c  arcsas - ok

18:32:06.0280 0x160c  [ DD09DA7F16575E5402D9891AD1C317CE, 573CA0D26ED687C336895C244913BB1327463A1693A951324AE0DFE892F677D1 ] ASO3DiskOptimizer C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe

18:32:06.0308 0x160c  ASO3DiskOptimizer - ok

18:32:06.0623 0x160c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

18:32:06.0805 0x160c  aspnet_state - ok

18:32:06.0826 0x160c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys

18:32:06.0906 0x160c  AsyncMac - ok

18:32:06.0945 0x160c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys

18:32:06.0985 0x160c  atapi - ok

18:32:07.0159 0x160c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

18:32:07.0246 0x160c  AudioEndpointBuilder - ok

18:32:07.0320 0x160c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll

18:32:07.0374 0x160c  AudioSrv - ok

18:32:07.0425 0x160c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll

18:32:07.0613 0x160c  AxInstSV - ok

18:32:07.0759 0x160c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys

18:32:07.0948 0x160c  b06bdrv - ok

18:32:08.0054 0x160c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys

18:32:08.0194 0x160c  b57nd60a - ok

18:32:08.0269 0x160c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll

18:32:08.0349 0x160c  BDESVC - ok

18:32:08.0398 0x160c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys

18:32:08.0480 0x160c  Beep - ok

18:32:08.0723 0x160c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll

18:32:08.0838 0x160c  BFE - ok

18:32:08.0978 0x160c  [ 65608C44E71D7BA056C9EFCD8A00A7FE, A6B581A8354C7E2902AA1FFDD87C9465EFA2CD75A920CE3098E774292E4825CE ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe

18:32:09.0001 0x160c  BingDesktopUpdate - ok

18:32:09.0144 0x160c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll

18:32:09.0274 0x160c  BITS - ok

18:32:09.0316 0x160c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys

18:32:09.0412 0x160c  blbdrive - ok

18:32:09.0720 0x160c  [ 5FF7B9916A10E8E69E7C0D16F0B4787A, BD4DCCFF789A1899A7A97BCDEB0EF4A448AB2E49FD586742DDBA33905A6D1875 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

18:32:09.0771 0x160c  Bluetooth Device Monitor - detected UnsignedFile.Multi.Generic ( 1 )

18:32:12.0730 0x160c  Detect skipped due to KSN trusted

18:32:12.0731 0x160c  Bluetooth Device Monitor - ok

18:32:12.0958 0x160c  [ E43D73CAF1023976EFBA1D0F0E69E271, 65E721A6FBB5A4E652E34241E7C9A921A9BB76D6C68F20F4BFAC03BC7F87AEF8 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe

18:32:13.0013 0x160c  Bluetooth Media Service - detected UnsignedFile.Multi.Generic ( 1 )

18:32:15.0905 0x160c  Detect skipped due to KSN trusted

18:32:15.0906 0x160c  Bluetooth Media Service - ok

18:32:15.0977 0x160c  [ 20427929646784A482DF34EF8C4FED23, CC57C0ECDA99630F2315C2450EE2CB5A3525A2F825E5344988841710A4DD2BB2 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

18:32:16.0035 0x160c  Bluetooth OBEX Service - detected UnsignedFile.Multi.Generic ( 1 )

18:32:21.0939 0x160c  Detect skipped due to KSN trusted

18:32:21.0939 0x160c  Bluetooth OBEX Service - ok

18:32:22.0262 0x160c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

18:32:22.0279 0x160c  Bonjour Service - ok

18:32:22.0314 0x160c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys

18:32:22.0391 0x160c  bowser - ok

18:32:22.0448 0x160c  [ 6E1A2E1BC13500D1139A9473EDCAF6F4, EEDE0DF10A1C954031FB11BD6FD192EAF3352D230B85ECDEEEC1AB8407A18D97 ] BoxSyncUpdateService C:\Program Files\Box\Box Sync\SyncUpdaterService.exe

18:32:22.0464 0x160c  BoxSyncUpdateService - detected UnsignedFile.Multi.Generic ( 1 )

18:32:25.0538 0x160c  Detect skipped due to KSN trusted

18:32:25.0538 0x160c  BoxSyncUpdateService - ok

18:32:25.0611 0x160c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys

18:32:37.0971 0x160c  BrFiltLo - ok

18:32:37.0989 0x160c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys

18:32:43.0222 0x160c  BrFiltUp - ok

18:32:43.0295 0x160c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\windows\system32\DRIVERS\bridge.sys

18:32:48.0106 0x160c  BridgeMP - ok

18:32:48.0160 0x160c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll

18:32:48.0209 0x160c  Browser - ok

18:32:48.0283 0x160c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys

18:32:48.0359 0x160c  Brserid - ok

18:32:48.0404 0x160c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys

18:32:48.0436 0x160c  BrSerWdm - ok

18:32:48.0449 0x160c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys

18:32:48.0492 0x160c  BrUsbMdm - ok

18:32:48.0509 0x160c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys

18:32:48.0543 0x160c  BrUsbSer - ok

18:32:48.0609 0x160c  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys

18:32:48.0763 0x160c  BthEnum - ok

18:32:48.0882 0x160c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys

18:32:48.0943 0x160c  BTHMODEM - ok

18:32:48.0978 0x160c  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys

18:32:49.0102 0x160c  BthPan - ok

18:32:49.0227 0x160c  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys

18:32:49.0343 0x160c  BTHPORT - ok

18:32:49.0459 0x160c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll

18:32:49.0570 0x160c  bthserv - ok

18:32:49.0669 0x160c  [ A3BC030FC526643DFDCA27299F75544B, A5BB94DBE52746D16CB35EE5311F1660232F6BA840F70420549360A19B7D6F7E ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

18:32:49.0682 0x160c  BTHSSecurityMgr - ok

18:32:49.0735 0x160c  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys

18:32:49.0850 0x160c  BTHUSB - ok

18:32:49.0931 0x160c  [ 274E47BD9C1367BDBFA9DF10C2E6C544, 196D7274AE0A461F58E8D18866DFC5C5ED35740EFEE34C348A7B9B225E4ED438 ] btmaudio        C:\windows\system32\drivers\btmaud.sys

18:32:50.0012 0x160c  btmaudio - ok

18:32:50.0065 0x160c  [ 75EAB5AAF6E9F83739249CE60B4B9C39, 7D6B4CFEC26C1403558153A2484A07C41CB61E6BBEA41A3D5FDDE0FFBD1C75EC ] btmaux          C:\windows\system32\DRIVERS\btmaux.sys

18:32:50.0182 0x160c  btmaux - ok

18:32:50.0448 0x160c  [ 40C6FEC49D1CC4D112368A2BCD2BCBB7, E9ECEAA4F740A667C071EDEA1359491B221E5AA43A990744859CA7CC40E67F6C ] btmhsf          C:\windows\system32\DRIVERS\btmhsf.sys

18:32:50.0723 0x160c  btmhsf - ok

18:32:50.0770 0x160c  catchme - ok

18:32:50.0854 0x160c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys

18:32:50.0932 0x160c  cdfs - ok

18:32:51.0097 0x160c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys

18:32:51.0130 0x160c  cdrom - ok

18:32:51.0171 0x160c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll

18:32:51.0248 0x160c  CertPropSvc - ok

18:32:51.0309 0x160c  [ 27DB8CC56E87042BCAF4668B53618C04, 74499F5692B0C94835D5CDDBB7762C18961FC526E607E1ED68592CBE53B74995 ] cfwids          C:\windows\system32\drivers\cfwids.sys

18:32:51.0340 0x160c  cfwids - ok

18:32:51.0425 0x160c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys

18:32:51.0465 0x160c  circlass - ok

18:32:51.0647 0x160c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys

18:32:51.0679 0x160c  CLFS - ok

18:32:52.0278 0x160c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

18:32:52.0317 0x160c  clr_optimization_v2.0.50727_32 - ok

18:32:52.0532 0x160c  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

18:32:52.0559 0x160c  clr_optimization_v2.0.50727_64 - ok

18:32:53.0000 0x160c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

18:32:54.0980 0x160c  clr_optimization_v4.0.30319_32 - ok

18:32:55.0008 0x160c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

18:32:55.0608 0x160c  clr_optimization_v4.0.30319_64 - ok

18:32:55.0657 0x160c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys

18:32:55.0721 0x160c  CmBatt - ok

18:32:55.0871 0x160c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys

18:32:55.0893 0x160c  cmdide - ok

18:32:56.0146 0x160c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys

18:32:57.0192 0x160c  CNG - ok

18:32:57.0269 0x160c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\drivers\compbatt.sys

18:33:07.0301 0x160c  Compbatt - ok

18:33:07.0334 0x160c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys

18:33:07.0578 0x160c  CompositeBus - ok

18:33:07.0583 0x160c  COMSysApp - ok

18:33:07.0779 0x160c  [ 3A0B0483F93E5B13186C30F7360D9905, DEEC094A4E391097352AF5C30967461D8E345C395DE6728CECB97E1416AFCEDC ] cphs            C:\windows\SysWow64\IntelCpHeciSvc.exe

18:33:12.0961 0x160c  cphs - ok

18:33:13.0147 0x160c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys

18:33:13.0191 0x160c  crcdisk - ok

18:33:13.0360 0x160c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll

18:33:13.0454 0x160c  CryptSvc - ok

18:33:13.0505 0x160c  [ BC3D4F90978CD7C8EABD1BAF3BF7873A, 5978139650FC51BE0CAB12061702C7BC7BEDF6E7C3A047FF0A6328AA674E4226 ] CtClsFlt        C:\windows\system32\DRIVERS\CtClsFlt.sys

18:33:13.0571 0x160c  CtClsFlt - ok

18:33:13.0693 0x160c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll

18:33:13.0835 0x160c  DcomLaunch - ok

18:33:13.0987 0x160c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll

18:33:14.0113 0x160c  defragsvc - ok

18:33:14.0150 0x160c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys

18:33:14.0246 0x160c  DfsC - ok

18:33:14.0358 0x160c  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\windows\system32\DRIVERS\ssudbus.sys

18:33:14.0490 0x160c  dg_ssudbus - ok

18:33:14.0705 0x160c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll

18:33:14.0763 0x160c  Dhcp - ok

18:33:14.0786 0x160c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys

18:33:14.0859 0x160c  discache - ok

18:33:14.0898 0x160c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys

18:33:14.0936 0x160c  Disk - ok

18:33:15.0712 0x160c  [ 1BF61DEC44535EFE98FF20C20BDFF6C2, A34E8B4F7D1F14BFC08D050547A88E98ADD63745516D685514434B34A92289FB ] Diskeeper       C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

18:33:15.0774 0x160c  Diskeeper - ok

18:33:15.0855 0x160c  [ 7297CDE753955F45070D38FEC52C9705, 85E25BD9C8A79CF2FBA2305D835E497DFD6263B6942A0743C55B55D68EBB4DEE ] DKRtWrt         C:\windows\system32\DRIVERS\DKRtWrt.sys

18:33:15.0873 0x160c  DKRtWrt - ok

18:33:15.0948 0x160c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll

18:33:16.0024 0x160c  Dnscache - ok

18:33:16.0081 0x160c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll

18:33:16.0223 0x160c  dot3svc - ok

18:33:16.0278 0x160c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll

18:33:16.0329 0x160c  DPS - ok

18:33:16.0551 0x160c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys

18:33:16.0622 0x160c  drmkaud - ok

18:33:16.0733 0x160c  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys

18:33:16.0775 0x160c  DXGKrnl - ok

18:33:16.0871 0x160c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll

18:33:16.0921 0x160c  EapHost - ok

18:33:17.0363 0x160c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys

18:33:17.0656 0x160c  ebdrv - ok

18:33:17.0834 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\windows\System32\lsass.exe

18:33:17.0887 0x160c  EFS - ok

18:33:18.0199 0x160c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe

18:33:18.0271 0x160c  ehRecvr - ok

18:33:18.0327 0x160c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe

18:33:18.0362 0x160c  ehSched - ok

18:33:18.0550 0x160c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys

18:33:18.0638 0x160c  elxstor - ok

18:33:18.0660 0x160c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys

18:33:18.0700 0x160c  ErrDev - ok

18:33:18.0802 0x160c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll

18:33:18.0864 0x160c  EventSystem - ok

18:33:19.0119 0x160c  [ 6EB16C7286FBCD3AB206743BA813EC48, DF0BEDEF0205C940A4F14E196CDF4626DDCA6C8BEDF2C414CF7BB89303272C0E ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe

18:33:19.0143 0x160c  EvtEng - ok

18:33:19.0181 0x160c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys

18:33:19.0257 0x160c  exfat - ok

18:33:19.0313 0x160c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys

18:33:19.0398 0x160c  fastfat - ok

18:33:19.0562 0x160c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe

18:33:19.0625 0x160c  Fax - ok

18:33:19.0822 0x160c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys

18:33:19.0874 0x160c  fdc - ok

18:33:20.0015 0x160c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll

18:33:20.0072 0x160c  fdPHost - ok

18:33:20.0096 0x160c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll

18:33:20.0190 0x160c  FDResPub - ok

18:33:20.0233 0x160c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys

18:33:20.0276 0x160c  FileInfo - ok

18:33:20.0289 0x160c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys

18:33:20.0401 0x160c  Filetrace - ok

18:33:20.0719 0x160c  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

18:33:21.0000 0x160c  FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )

18:33:24.0359 0x160c  Detect skipped due to KSN trusted

18:33:24.0360 0x160c  FLEXnet Licensing Service - ok

18:33:24.0493 0x160c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys

18:33:24.0556 0x160c  flpydisk - ok

18:33:24.0608 0x160c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys

18:33:24.0635 0x160c  FltMgr - ok

18:33:24.0806 0x160c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll

18:33:24.0918 0x160c  FontCache - ok

18:33:24.0992 0x160c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

18:33:25.0041 0x160c  FontCache3.0.0.0 - ok

18:33:25.0127 0x160c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys

18:33:25.0164 0x160c  FsDepends - ok

18:33:25.0233 0x160c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys

18:33:25.0283 0x160c  Fs_Rec - ok

18:33:25.0341 0x160c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys

18:33:25.0384 0x160c  fvevol - ok

18:33:25.0475 0x160c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys

18:33:25.0502 0x160c  gagp30kx - ok

18:33:25.0591 0x160c  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

18:33:25.0627 0x160c  GamesAppService - ok

18:33:25.0742 0x160c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys

18:33:25.0756 0x160c  GEARAspiWDM - ok

18:33:26.0005 0x160c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll

18:33:26.0103 0x160c  gpsvc - ok

18:33:26.0266 0x160c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

18:33:26.0278 0x160c  gupdate - ok

18:33:26.0286 0x160c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

18:33:26.0296 0x160c  gupdatem - ok

18:33:26.0385 0x160c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys

18:33:26.0511 0x160c  hcw85cir - ok

18:33:26.0583 0x160c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

18:33:26.0680 0x160c  HdAudAddService - ok

18:33:26.0755 0x160c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys

18:33:26.0889 0x160c  HDAudBus - ok

18:33:26.0917 0x160c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys

18:33:26.0960 0x160c  HidBatt - ok

18:33:27.0046 0x160c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys

18:33:27.0095 0x160c  HidBth - ok

18:33:27.0109 0x160c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys

18:33:27.0135 0x160c  HidIr - ok

18:33:27.0204 0x160c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\System32\hidserv.dll

18:33:27.0256 0x160c  hidserv - ok

18:33:27.0428 0x160c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\drivers\hidusb.sys

18:33:27.0557 0x160c  HidUsb - ok

18:33:27.0618 0x160c  [ 29F981739E50305128022CBE10B3659C, 25060937145B0DCA8CD088E78993BFEF1430CDDFF433E606AFC93993CBBF4B3E ] HipShieldK      C:\windows\system32\drivers\HipShieldK.sys

18:33:27.0677 0x160c  HipShieldK - ok

18:33:27.0746 0x160c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll

18:33:27.0871 0x160c  hkmsvc - ok

18:33:27.0962 0x160c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll

18:33:28.0039 0x160c  HomeGroupListener - ok

18:33:28.0126 0x160c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll

18:33:28.0180 0x160c  HomeGroupProvider - ok

18:33:28.0387 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] HomeNetSvc      C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

18:33:28.0411 0x160c  HomeNetSvc - ok

18:33:28.0506 0x160c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys

18:33:28.0553 0x160c  HpSAMD - ok

18:33:28.0732 0x160c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys

18:33:28.0835 0x160c  HTTP - ok

18:33:28.0856 0x160c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys

18:33:28.0875 0x160c  hwpolicy - ok

18:33:28.0921 0x160c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys

18:33:28.0955 0x160c  i8042prt - ok

18:33:28.0994 0x160c  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys

18:33:29.0033 0x160c  iaStor - ok

18:33:29.0223 0x160c  [ 8FFF9083252C16FE3960173722605E9E, 6546FDA34B9AF94C5E86E5269BBC2F02F1E78D6D4BE5B5EC01F4B284CC934994 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

18:33:29.0249 0x160c  IAStorDataMgrSvc - ok

18:33:29.0296 0x160c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys

18:33:29.0339 0x160c  iaStorV - ok

18:33:29.0406 0x160c  [ FC47F5CF561BF0FD897EFD1A9604DCCF, C304737F78A772051993A68BB06F860733A8650013A46946A854E47C892C252E ] iBtFltCoex      C:\windows\system32\DRIVERS\iBtFltCoex.sys

18:33:29.0464 0x160c  iBtFltCoex - ok

18:33:29.0726 0x160c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

18:33:29.0858 0x160c  idsvc - ok

18:33:29.0863 0x160c  IEEtwCollectorService - ok

18:33:31.0114 0x160c  [ B9857625DF8B539ABCB90E15B5716568, 99393C74D6C5BB1D3B7399C628DEF47641563A3A1118988597091B0735805F06 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys

18:33:31.0438 0x160c  igfx - ok

18:33:31.0515 0x160c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys

18:33:31.0555 0x160c  iirsp - ok

18:33:31.0732 0x160c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll

18:33:31.0830 0x160c  IKEEXT - ok

18:33:31.0867 0x160c  [ CADDF0927DAC63EDAE48F5C35A61D87D, C46006461311B1563C1D149B9D60B202F30147265B9D93069B084D03A09D2BEC ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys

18:33:31.0913 0x160c  intaud_WaveExtensible - ok

18:33:32.0018 0x160c  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys

18:33:32.0118 0x160c  IntcDAud - ok

18:33:32.0267 0x160c  [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe

18:33:32.0290 0x160c  Intel® Capability Licensing Service Interface - ok

18:33:32.0405 0x160c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys

18:33:32.0452 0x160c  intelide - ok

18:33:32.0494 0x160c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys

18:33:32.0541 0x160c  intelppm - ok

18:33:32.0707 0x160c  [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe

18:33:32.0724 0x160c  IntuitUpdateServiceV4 - ok

18:33:32.0790 0x160c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll

18:33:32.0941 0x160c  IPBusEnum - ok

18:33:32.0963 0x160c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys

18:33:33.0019 0x160c  IpFilterDriver - ok

18:33:33.0402 0x160c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll

18:33:33.0491 0x160c  iphlpsvc - ok

18:33:33.0532 0x160c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys

18:33:33.0570 0x160c  IPMIDRV - ok

18:33:33.0631 0x160c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys

18:33:33.0729 0x160c  IPNAT - ok

18:33:33.0914 0x160c  [ F7ED08D4BC89D7AC6135C1556A89157F, 8F15F1E528F6513FCEF5D966880CBA8A2C7A4816393393F4B201CDD6227F36A3 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

18:33:34.0059 0x160c  iPod Service - ok

18:33:34.0082 0x160c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys

18:33:34.0135 0x160c  IRENUM - ok

18:33:34.0217 0x160c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys

18:33:34.0256 0x160c  isapnp - ok

18:33:34.0290 0x160c  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys

18:33:34.0316 0x160c  iScsiPrt - ok

18:33:34.0355 0x160c  [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] iwdbus          C:\windows\system32\DRIVERS\iwdbus.sys

18:33:34.0369 0x160c  iwdbus - ok

18:33:34.0396 0x160c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys

18:33:34.0434 0x160c  kbdclass - ok

18:33:34.0465 0x160c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys

18:33:34.0516 0x160c  kbdhid - ok

18:33:34.0539 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\windows\system32\lsass.exe

18:33:34.0570 0x160c  KeyIso - ok

18:33:34.0640 0x160c  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys

18:33:34.0677 0x160c  KSecDD - ok

18:33:34.0732 0x160c  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys

18:33:34.0771 0x160c  KSecPkg - ok

18:33:34.0813 0x160c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys

18:33:34.0920 0x160c  ksthunk - ok

18:33:34.0965 0x160c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll

18:33:35.0036 0x160c  KtmRm - ok

18:33:35.0081 0x160c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\System32\srvsvc.dll

18:33:35.0166 0x160c  LanmanServer - ok

18:33:35.0204 0x160c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll

18:33:35.0284 0x160c  LanmanWorkstation - ok

18:33:35.0312 0x160c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys

18:33:35.0402 0x160c  lltdio - ok

18:33:35.0465 0x160c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll

18:33:35.0611 0x160c  lltdsvc - ok

18:33:35.0632 0x160c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll

18:33:35.0705 0x160c  lmhosts - ok

18:33:35.0784 0x160c  [ 6E137BA2D06434D6B876EF9C18FA4327, A25580113EAA189F367EB9EA0159BA5EAD29499914444953E8C53445574719A7 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

18:33:35.0815 0x160c  LMS - ok

18:33:35.0846 0x160c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys

18:33:35.0873 0x160c  LSI_FC - ok

18:33:35.0918 0x160c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys

18:33:35.0965 0x160c  LSI_SAS - ok

18:33:36.0006 0x160c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys

18:33:36.0037 0x160c  LSI_SAS2 - ok

18:33:36.0069 0x160c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys

18:33:36.0088 0x160c  LSI_SCSI - ok

18:33:36.0107 0x160c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys

18:33:36.0186 0x160c  luafv - ok

18:33:36.0284 0x160c  [ 0C85B2B6FB74B36A251792D45E0EF860, 2E04204560C1159ABC25F273B0B7F81FDF9BA5E88C17929FD924C4E945DE5020 ] LVRS64          C:\windows\system32\DRIVERS\lvrs64.sys

18:33:36.0395 0x160c  LVRS64 - ok

18:33:36.0956 0x160c  [ FF3A488924B0032B1A9CA6948C1FA9E8, 6F05852B75498210926F5CDF49D2A6DD97C39CD93D32E3200D7240AADA3E7BEE ] LVUVC64         C:\windows\system32\DRIVERS\lvuvc64.sys

18:33:37.0314 0x160c  LVUVC64 - ok

18:33:37.0528 0x160c  [ 2D394AB4EF56D0F3FD453637A9C7466F, EFBCA046C4D5B343A86418E9DAD03CF020B530EB000480363EB527AC859B981A ] McAPExe         C:\Program Files\McAfee\MSC\McAPExe.exe

18:33:37.0555 0x160c  McAPExe - ok

18:33:37.0663 0x160c  [ 9504F1DDA1B67FB8D526FD4F8CC882F3, 99B35D5B8879B556CD0D1825F7AECC1124FFAD3EB39C10B77B7522E145FC00B3 ] McAWFwk         c:\PROGRA~1\mcafee\msc\mcawfwk.exe

18:33:37.0768 0x160c  McAWFwk - ok

18:33:37.0863 0x160c  [ 968BFF74AEB683C962960ECE0CAE4135, 3E08B39DE27FE27A27BD3E81486F0FCA1947D4B50BFE0167A0C27CE48DD56793 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe

18:33:37.0896 0x160c  McComponentHostService - ok

18:33:37.0990 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McMPFSvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

18:33:38.0034 0x160c  McMPFSvc - ok

18:33:38.0110 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McNaiAnn        C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

18:33:38.0132 0x160c  McNaiAnn - ok

18:33:38.0272 0x160c  [ 63D93A440E7AC015D85B9A3DA0C1BBAF, 849A13E91B041DEC2A47F5BE65ADBA6CAC8AF01675D0D8E13730724B54B4DD15 ] McODS           C:\Program Files\mcafee\VirusScan\mcods.exe

18:33:38.0381 0x160c  McODS - ok

18:33:38.0516 0x160c  [ F928E5E72BBA15DD0CE9A26E0413D236, D63EFA1408084F524464729C2F3BE16550E07ACE2BF8A00699A8438079AD381B ] McOobeSv        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

18:33:38.0553 0x160c  McOobeSv - ok

18:33:38.0593 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] mcpltsvc        C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

18:33:38.0631 0x160c  mcpltsvc - ok

18:33:38.0686 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McProxy         C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

18:33:38.0704 0x160c  McProxy - ok

18:33:38.0779 0x160c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll

18:33:38.0822 0x160c  Mcx2Svc - ok

18:33:38.0877 0x160c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys

18:33:38.0909 0x160c  megasas - ok

18:33:38.0960 0x160c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys

18:33:39.0001 0x160c  MegaSR - ok

18:33:39.0069 0x160c  [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys

18:33:39.0101 0x160c  MEIx64 - ok

18:33:39.0205 0x160c  [ 5C83E2DE29D603259AF04273D6485A42, 530DA9AEA7D05E4BAA1BF48C6B5D71704931AB27A09B16A301CB162ABC2A2976 ] mfeapfk         C:\windows\system32\drivers\mfeapfk.sys

18:33:39.0240 0x160c  mfeapfk - ok

18:33:39.0356 0x160c  [ E06E9155364C4448B1529FB626256168, 9F7B4B3D23614667BB0C28FA189708648684C71568AB1D7FF0B27E5C8C39DECB ] mfeavfk         C:\windows\system32\drivers\mfeavfk.sys

18:33:39.0393 0x160c  mfeavfk - ok

18:33:39.0713 0x160c  [ 065FED87FC6EEBD129B099476D1406B9, F476B41A119BC88C3085B4E3A6ADCBA6DF588D58628F7CB24CBAEE482347B93D ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

18:33:39.0743 0x160c  mfecore - ok

18:33:39.0849 0x160c  [ E6660233118B02B905A53CA751C98708, A8EC1C1EE176F2132A473325B244AE7A468FB6EF163079577155443941B155DA ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

18:33:39.0890 0x160c  mfefire - ok

18:33:40.0042 0x160c  [ C2DA65EBCA098520CCA33B81343144A2, 9B3A20ED314C6E626618BE4E065F7355B5EF99BD377DE46A516D6E2EB83DDDCE ] mfefirek        C:\windows\system32\drivers\mfefirek.sys

18:33:40.0061 0x160c  mfefirek - ok

18:33:40.0191 0x160c  [ D1895C38D9B1D85557F5514A68A48EC9, 2C39376A49A6FD78678F2ACB0D9F75F3361BC717D980EA7E6630E5BAE26937A6 ] mfehidk         C:\windows\system32\drivers\mfehidk.sys

18:33:45.0320 0x160c  mfehidk - ok

18:33:45.0502 0x160c  [ FDB02B0C2865DBDE9571D57D3ABC6A6B, 9AC814E8FEB1F928582B1AA76DD41B78981C9D211D8DB9F555AD5B334B14E11D ] mfencbdc        C:\windows\system32\DRIVERS\mfencbdc.sys

18:33:55.0532 0x160c  mfencbdc - ok

18:33:55.0609 0x160c  [ C3EE053D6A0CCD75C07FADC73D7BA4E4, 81F2F6716B86B2FE673F1C1252101F5E7AD4BE4258F8086C2F9F848E0B59EAF2 ] mfencrk         C:\windows\system32\DRIVERS\mfencrk.sys

18:33:55.0620 0x160c  mfencrk - ok

18:33:55.0728 0x160c  [ 7CF636B453743A1A9A437AC451F7B819, B5764981567DA846E61B6DDC7EADF15BC9E6882B41205D67A5A91E9EAC0161A8 ] mfevtp          C:\Windows\system32\mfevtps.exe

18:33:55.0747 0x160c  mfevtp - ok

18:33:55.0871 0x160c  [ 4DB07846C1BC5ED4305C6481B6998EF9, 992D9AF39C816C8972DDDC5259E5DB5E18E0078696AC4967EEFA9924DB47920E ] mfewfpk         C:\windows\system32\drivers\mfewfpk.sys

18:34:05.0903 0x160c  mfewfpk - ok

18:34:06.0000 0x160c  Microsoft SharePoint Workspace Audit Service - ok

18:34:06.0058 0x160c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll

18:34:06.0101 0x160c  MMCSS - ok

18:34:06.0124 0x160c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys

18:34:06.0186 0x160c  Modem - ok

18:34:06.0216 0x160c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys

18:34:06.0261 0x160c  monitor - ok

18:34:06.0285 0x160c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys

18:34:06.0295 0x160c  mouclass - ok

18:34:06.0309 0x160c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys

18:34:06.0334 0x160c  mouhid - ok

18:34:06.0342 0x160c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys

18:34:06.0354 0x160c  mountmgr - ok

18:34:06.0385 0x160c  [ 338037EFA0E8E8699B2667D57B751574, 59E0D39806D0C4EB57913AA013242837FD39AD378726AEE42D250CBA87C1C3BF ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

18:34:06.0399 0x160c  MozillaMaintenance - ok

18:34:06.0420 0x160c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys

18:34:06.0434 0x160c  mpio - ok

18:34:06.0457 0x160c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys

18:34:06.0487 0x160c  mpsdrv - ok

18:34:06.0564 0x160c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll

18:34:06.0619 0x160c  MpsSvc - ok

18:34:06.0674 0x160c  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys

18:34:06.0762 0x160c  MRxDAV - ok

18:34:06.0812 0x160c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys

18:34:06.0894 0x160c  mrxsmb - ok

18:34:06.0923 0x160c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys

18:34:06.0960 0x160c  mrxsmb10 - ok

18:34:06.0969 0x160c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys

18:34:06.0994 0x160c  mrxsmb20 - ok

18:34:07.0060 0x160c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys

18:34:07.0094 0x160c  msahci - ok

18:34:07.0133 0x160c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys

18:34:07.0164 0x160c  msdsm - ok

18:34:07.0190 0x160c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe

18:34:07.0216 0x160c  MSDTC - ok

18:34:07.0249 0x160c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys

18:34:07.0287 0x160c  Msfs - ok

18:34:07.0304 0x160c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys

18:34:07.0333 0x160c  mshidkmdf - ok

18:34:07.0354 0x160c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys

18:34:07.0364 0x160c  msisadrv - ok

18:34:07.0403 0x160c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll

18:34:07.0466 0x160c  MSiSCSI - ok

18:34:07.0473 0x160c  msiserver - ok

18:34:07.0506 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] MSK80Service    C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

18:34:07.0520 0x160c  MSK80Service - ok

18:34:07.0562 0x160c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys

18:34:07.0627 0x160c  MSKSSRV - ok

18:34:07.0653 0x160c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys

18:34:07.0716 0x160c  MSPCLOCK - ok

18:34:07.0743 0x160c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys

18:34:07.0827 0x160c  MSPQM - ok

18:34:07.0854 0x160c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys

18:34:07.0873 0x160c  MsRPC - ok

18:34:07.0897 0x160c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys

18:34:07.0907 0x160c  mssmbios - ok

18:34:07.0922 0x160c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys

18:34:07.0986 0x160c  MSTEE - ok

18:34:08.0004 0x160c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys

18:34:08.0029 0x160c  MTConfig - ok

18:34:08.0051 0x160c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys

18:34:08.0063 0x160c  Mup - ok

18:34:08.0101 0x160c  [ 7E11D1788F5B531D49EF0AF97202437B, 8BF4A65466D235F0AB8E8855B04920BEF81A7EAC29C066FFC258BE816EBED2F4 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

18:34:08.0116 0x160c  MyWiFiDHCPDNS - ok

18:34:08.0179 0x160c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll

18:34:08.0228 0x160c  napagent - ok

18:34:08.0287 0x160c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys

18:34:08.0334 0x160c  NativeWifiP - ok

18:34:08.0454 0x160c  [ 934BB0D23A25C8C136570800A5A149B6, 15D99CE4E970FECE257F6D69810F8104720B26D8DC3787BC38CC8692ACEABD37 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe

18:34:08.0474 0x160c  NAUpdate - ok

18:34:08.0630 0x160c  [ B498A14133BD09AD0817590ACE4470AD, 14CCC922C6596C97A5CF580209C4AFB6138A8FFD3A0E60CD506810DFCBC43A1A ] NBService       C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe

18:34:08.0665 0x160c  NBService - ok

18:34:08.0751 0x160c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys

18:34:08.0778 0x160c  NDIS - ok

18:34:08.0815 0x160c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys

18:34:08.0861 0x160c  NdisCap - ok

18:34:08.0888 0x160c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys

18:34:08.0917 0x160c  NdisTapi - ok

18:34:08.0932 0x160c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys

18:34:09.0000 0x160c  Ndisuio - ok

18:34:09.0032 0x160c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys

18:34:09.0078 0x160c  NdisWan - ok

18:34:09.0086 0x160c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys

18:34:09.0114 0x160c  NDProxy - ok

18:34:09.0141 0x160c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys

18:34:09.0181 0x160c  NetBIOS - ok

18:34:09.0196 0x160c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys

18:34:09.0299 0x160c  NetBT - ok

18:34:09.0317 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\windows\system32\lsass.exe

18:34:09.0329 0x160c  Netlogon - ok

18:34:09.0432 0x160c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll

18:34:09.0485 0x160c  Netman - ok

18:34:09.0574 0x160c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

18:34:09.0675 0x160c  NetMsmqActivator - ok

18:34:09.0701 0x160c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

18:34:09.0714 0x160c  NetPipeActivator - ok

18:34:09.0765 0x160c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll

18:34:09.0804 0x160c  netprofm - ok

18:34:09.0844 0x160c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

18:34:09.0856 0x160c  NetTcpActivator - ok

18:34:09.0877 0x160c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

18:34:09.0889 0x160c  NetTcpPortSharing - ok

18:34:10.0292 0x160c  [ 219A40EEEA50D638BA9D08680C354A0C, F4DD0B9A75C29BBB510D19719ABA283AC2FF3D47EE099A3197BBBD7658741BBD ] NETwNs64        C:\windows\system32\DRIVERS\Netwsw00.sys

18:34:10.0594 0x160c  NETwNs64 - ok

18:34:10.0633 0x160c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys

18:34:10.0659 0x160c  nfrd960 - ok

18:34:10.0716 0x160c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll

18:34:10.0771 0x160c  NlaSvc - ok

18:34:10.0909 0x160c  [ A328A46D87BB92CE4D8A4528E9D84787, D3245ED700151111592BA82FB675B284DA7FCE52B07A7F68352F64A402CAB37C ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe

18:34:10.0949 0x160c  NMIndexingService - ok

18:34:11.0505 0x160c  [ 6DF704264B7E31B3067872699641C2EA, 7D7E0CCF1A2206FF133E7A8AB3231ED19E1123F22094796886CEE34A499DA637 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

18:34:11.0599 0x160c  NOBU - ok

18:34:11.0662 0x160c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys

18:34:11.0724 0x160c  Npfs - ok

18:34:11.0771 0x160c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll

18:34:11.0852 0x160c  nsi - ok

18:34:11.0925 0x160c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys

18:34:12.0004 0x160c  nsiproxy - ok

18:34:12.0157 0x160c  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\windows\system32\drivers\Ntfs.sys

18:34:12.0260 0x160c  Ntfs - ok

18:34:12.0296 0x160c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys

18:34:12.0366 0x160c  Null - ok

18:34:12.0391 0x160c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys

18:34:12.0405 0x160c  nvraid - ok

18:34:12.0416 0x160c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys

18:34:12.0430 0x160c  nvstor - ok

18:34:12.0446 0x160c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys

18:34:12.0460 0x160c  nv_agp - ok

18:34:12.0611 0x160c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

18:34:12.0643 0x160c  odserv - ok

18:34:12.0668 0x160c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys

18:34:12.0710 0x160c  ohci1394 - ok

18:34:12.0791 0x160c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

18:34:12.0830 0x160c  ose - ok

18:34:13.0110 0x160c  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

18:34:13.0340 0x160c  osppsvc - ok

18:34:13.0429 0x160c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll

18:34:13.0495 0x160c  p2pimsvc - ok

18:34:13.0581 0x160c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll

18:34:13.0614 0x160c  p2psvc - ok

18:34:13.0648 0x160c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys

18:34:13.0674 0x160c  Parport - ok

18:34:13.0710 0x160c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys

18:34:13.0723 0x160c  partmgr - ok

18:34:13.0764 0x160c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll

18:34:13.0791 0x160c  PcaSvc - ok

18:34:13.0821 0x160c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys

18:34:13.0835 0x160c  pci - ok

18:34:13.0886 0x160c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys

18:34:22.0134 0x160c  pciide - ok

18:34:22.0350 0x160c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys

18:34:22.0411 0x160c  pcmcia - ok

18:34:22.0437 0x160c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys

18:34:22.0478 0x160c  pcw - ok

18:34:22.0594 0x160c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys

18:34:22.0746 0x160c  PEAUTH - ok

18:34:22.0897 0x160c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe

18:34:22.0953 0x160c  PerfHost - ok

18:34:23.0059 0x160c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll

18:34:23.0227 0x160c  pla - ok

18:34:23.0282 0x160c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll

18:34:23.0401 0x160c  PlugPlay - ok

18:34:23.0541 0x160c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll

18:34:23.0613 0x160c  PNRPAutoReg - ok

18:34:23.0686 0x160c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll

18:34:23.0726 0x160c  PNRPsvc - ok

18:34:23.0932 0x160c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll

18:34:24.0036 0x160c  PolicyAgent - ok

18:34:24.0072 0x160c  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\windows\system32\umpo.dll

18:34:24.0155 0x160c  Power - ok

18:34:24.0208 0x160c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys

18:34:24.0288 0x160c  PptpMiniport - ok

18:34:24.0316 0x160c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys

18:34:24.0363 0x160c  Processor - ok

18:34:24.0413 0x160c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll

18:34:24.0477 0x160c  ProfSvc - ok

18:34:24.0504 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\windows\system32\lsass.exe

18:34:24.0548 0x160c  ProtectedStorage - ok

18:34:24.0573 0x160c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys

18:34:24.0639 0x160c  Psched - ok

18:34:24.0696 0x160c  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\windows\system32\Drivers\PxHlpa64.sys

18:34:24.0727 0x160c  PxHlpa64 - ok

18:34:24.0994 0x160c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys

18:34:25.0440 0x160c  ql2300 - ok

18:34:25.0467 0x160c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys

18:34:25.0500 0x160c  ql40xx - ok

18:34:25.0578 0x160c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll

18:34:25.0645 0x160c  QWAVE - ok

18:34:25.0711 0x160c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys

18:34:25.0754 0x160c  QWAVEdrv - ok

18:34:25.0779 0x160c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys

18:34:25.0879 0x160c  RasAcd - ok

18:34:25.0914 0x160c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys

18:34:26.0011 0x160c  RasAgileVpn - ok

18:34:26.0062 0x160c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll

18:34:26.0142 0x160c  RasAuto - ok

18:34:26.0194 0x160c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys

18:34:26.0264 0x160c  Rasl2tp - ok

18:34:26.0326 0x160c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll

18:34:26.0493 0x160c  RasMan - ok

18:34:26.0521 0x160c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys

18:34:26.0609 0x160c  RasPppoe - ok

18:34:26.0641 0x160c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys

18:34:26.0731 0x160c  RasSstp - ok

18:34:26.0791 0x160c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys

18:34:26.0865 0x160c  rdbss - ok

18:34:26.0907 0x160c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys

18:34:26.0988 0x160c  rdpbus - ok

18:34:27.0032 0x160c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys

18:34:27.0138 0x160c  RDPCDD - ok

18:34:27.0170 0x160c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys

18:34:27.0272 0x160c  RDPENCDD - ok

18:34:27.0354 0x160c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys

18:34:27.0449 0x160c  RDPREFMP - ok

18:34:27.0512 0x160c  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys

18:34:27.0567 0x160c  RdpVideoMiniport - ok

18:34:27.0669 0x160c  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys

18:34:27.0769 0x160c  RDPWD - ok

18:34:27.0815 0x160c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys

18:34:27.0867 0x160c  rdyboost - ok

18:34:27.0973 0x160c  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

18:34:28.0011 0x160c  RealNetworks Downloader Resolver Service - ok

18:34:28.0103 0x160c  [ F09087C51C6AE42AE7DABE1EB3E44C17, DAE1CB123EA830DFCB68FD34A95FC427755FBBAD7AD16EE3F0D4941A25AD49F4 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

18:34:28.0144 0x160c  RegSrvc - ok

18:34:28.0228 0x160c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll

18:34:28.0308 0x160c  RemoteAccess - ok

18:34:28.0356 0x160c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll

18:34:28.0471 0x160c  RemoteRegistry - ok

18:34:28.0538 0x160c  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys

18:34:28.0657 0x160c  RFCOMM - ok

18:34:29.0883 0x160c  [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe

18:34:29.0999 0x160c  RoxMediaDB12OEM - ok

18:34:30.0040 0x160c  [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12      c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe

18:34:30.0064 0x160c  RoxWatch12 - ok

18:34:30.0107 0x160c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll

18:34:30.0200 0x160c  RpcEptMapper - ok

18:34:30.0249 0x160c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe

18:34:30.0309 0x160c  RpcLocator - ok

18:34:30.0388 0x160c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll

18:34:30.0480 0x160c  RpcSs - ok

18:34:30.0534 0x160c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys

18:34:30.0634 0x160c  rspndr - ok

18:34:30.0701 0x160c  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA, D6F76ECD30EDE1E5B1F01919B1492715947ACCA411D70BB2771427775736C055 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys

18:34:30.0740 0x160c  RSUSBSTOR - ok

18:34:30.0847 0x160c  [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys

18:34:30.0905 0x160c  RTL8167 - ok

18:34:30.0941 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\windows\system32\lsass.exe

18:34:30.0959 0x160c  SamSs - ok

18:34:31.0013 0x160c  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

18:34:31.0097 0x160c  SASDIFSV - ok

18:34:31.0117 0x160c  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

18:34:31.0190 0x160c  SASKUTIL - ok

18:34:31.0292 0x160c  [ E20128053F3F4641A2627ECFA7149ECA, CE5620BC170E76E53FEDCCEE12BBFBEE7C67B96E53E5D9C63FA7773C36699DC6 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys

18:34:31.0402 0x160c  SbieDrv - ok

18:34:31.0506 0x160c  [ 0FA1025D7AC725EEA5EA3076965EEA6B, 80AFCFD77BCE07F34C1276F5F416A156ABB9FEDC2AAF7AE68CEA500A4468D125 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe

18:34:31.0530 0x160c  SbieSvc - ok

18:34:31.0594 0x160c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys

18:34:31.0657 0x160c  sbp2port - ok

18:34:31.0711 0x160c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll

18:34:31.0844 0x160c  SCardSvr - ok

18:34:31.0891 0x160c  [ E25632DF954CE70928946BB36F829CF4, A0017814796AC42F159F73A3441A5BDD54F113EDD537EE16194BCE0E759651F3 ] SCDEmu          C:\windows\system32\drivers\SCDEmu.sys

18:34:31.0986 0x160c  SCDEmu - ok

18:34:32.0031 0x160c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys

18:34:32.0126 0x160c  scfilter - ok

18:34:32.0250 0x160c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll

18:34:32.0352 0x160c  Schedule - ok

18:34:32.0385 0x160c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll

18:34:32.0420 0x160c  SCPolicySvc - ok

18:34:32.0465 0x160c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll

18:34:32.0527 0x160c  SDRSVC - ok

18:34:32.0563 0x160c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys

18:34:32.0651 0x160c  secdrv - ok

18:34:32.0687 0x160c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll

18:34:32.0773 0x160c  seclogon - ok

18:34:32.0796 0x160c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\system32\sens.dll

18:34:32.0880 0x160c  SENS - ok

18:34:32.0922 0x160c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll

18:34:32.0994 0x160c  SensrSvc - ok

18:34:33.0045 0x160c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\drivers\serenum.sys

18:34:33.0086 0x160c  Serenum - ok

18:34:33.0155 0x160c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\drivers\serial.sys

18:34:33.0211 0x160c  Serial - ok

18:34:33.0239 0x160c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys

18:34:33.0295 0x160c  sermouse - ok

18:34:33.0430 0x160c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll

18:34:33.0531 0x160c  SessionEnv - ok

18:34:33.0569 0x160c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys

18:34:33.0795 0x160c  sffdisk - ok

18:34:34.0155 0x160c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys

18:34:34.0193 0x160c  sffp_mmc - ok

18:34:34.0246 0x160c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys

18:34:34.0290 0x160c  sffp_sd - ok

18:34:34.0343 0x160c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys

18:34:34.0421 0x160c  sfloppy - ok

18:34:34.0674 0x160c  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

18:34:34.0735 0x160c  SftService - ok

18:34:34.0830 0x160c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll

18:34:34.0984 0x160c  SharedAccess - ok

18:34:35.0090 0x160c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll

18:34:35.0194 0x160c  ShellHWDetection - ok

18:34:35.0213 0x160c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys

18:34:35.0244 0x160c  SiSRaid2 - ok

18:34:35.0284 0x160c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys

18:34:35.0312 0x160c  SiSRaid4 - ok

18:34:35.0391 0x160c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

18:34:35.0418 0x160c  SkypeUpdate - ok

18:34:35.0454 0x160c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys

18:34:35.0595 0x160c  Smb - ok



#12 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 05 March 2014 - 03:01 PM

TDSKiller log (part 2):

 

18:34:35.0689 0x160c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe

18:34:35.0806 0x160c  SNMPTRAP - ok

18:34:35.0894 0x160c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys

18:34:35.0932 0x160c  spldr - ok

18:34:36.0203 0x160c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe

18:34:36.0607 0x160c  Spooler - ok

18:34:36.0949 0x160c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe

18:34:37.0138 0x160c  sppsvc - ok

18:34:37.0185 0x160c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll

18:34:37.0280 0x160c  sppuinotify - ok

18:34:37.0356 0x160c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys

18:34:37.0491 0x160c  srv - ok

18:34:37.0569 0x160c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys

18:34:37.0614 0x160c  srv2 - ok

18:34:37.0636 0x160c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys

18:34:37.0668 0x160c  srvnet - ok

18:34:37.0737 0x160c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll

18:34:37.0775 0x160c  SSDPSRV - ok

18:34:37.0787 0x160c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll

18:34:37.0872 0x160c  SstpSvc - ok

18:34:37.0983 0x160c  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\windows\system32\DRIVERS\ssudmdm.sys

18:34:38.0099 0x160c  ssudmdm - ok

18:34:38.0182 0x160c  [ AFD0F0D36923A78958B0BFFB315DC744, 0A7E140C425B6178CE1AD771A1C70F42E6DAB0D637BFDF2E3479D20F598024B8 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe

18:34:38.0213 0x160c  STacSV - ok

18:34:38.0268 0x160c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys

18:34:38.0317 0x160c  stexstor - ok

18:34:38.0421 0x160c  [ A37D7A0BF7080DB437A5DDFFE06975BF, F120FA41B8F6CA5218ABD27646205590BCE466F735E28416D70370652113EAF9 ] STHDA           C:\windows\system32\DRIVERS\stwrt64.sys

18:34:38.0523 0x160c  STHDA - ok

18:34:38.0629 0x160c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll

18:34:38.0678 0x160c  stisvc - ok

18:34:38.0734 0x160c  [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

18:34:38.0850 0x160c  stllssvr - ok

18:34:38.0914 0x160c  [ 9CFEFD62D86DABFAC12D1C5ED72BA6A4, 1FFE4371450F53FD774CA0349CC28F559695761C18759CEB04933FDF2FD98F65 ] SWDUMon         C:\windows\system32\DRIVERS\SWDUMon.sys

18:34:38.0944 0x160c  SWDUMon - ok

18:34:38.0978 0x160c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys

18:34:39.0054 0x160c  swenum - ok

18:34:39.0197 0x160c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll

18:34:39.0330 0x160c  swprv - ok

18:34:39.0467 0x160c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll

18:34:39.0553 0x160c  SysMain - ok

18:34:39.0587 0x160c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll

18:34:39.0635 0x160c  TabletInputService - ok

18:34:39.0680 0x160c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll

18:34:39.0788 0x160c  TapiSrv - ok

18:34:39.0818 0x160c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll

18:34:39.0866 0x160c  TBS - ok

18:34:39.0999 0x160c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys

18:34:40.0157 0x160c  Tcpip - ok

18:34:40.0233 0x160c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys

18:34:40.0288 0x160c  TCPIP6 - ok

18:34:40.0345 0x160c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys

18:34:40.0407 0x160c  tcpipreg - ok

18:34:40.0466 0x160c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys

18:34:40.0572 0x160c  TDPIPE - ok

18:34:40.0598 0x160c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys

18:34:40.0626 0x160c  TDTCP - ok

18:34:40.0651 0x160c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys

18:34:40.0726 0x160c  tdx - ok

18:34:40.0767 0x160c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys

18:34:40.0812 0x160c  TermDD - ok

18:34:40.0878 0x160c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll

18:34:40.0930 0x160c  TermService - ok

18:34:40.0953 0x160c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll

18:34:40.0993 0x160c  Themes - ok

18:34:41.0034 0x160c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll

18:34:41.0129 0x160c  THREADORDER - ok

18:34:41.0169 0x160c  [ 68FE3D89829E27D4FD5EEA7BD2C41985, DCA9187F7480B4363BB57F604CC0172E03E50216CF9CF79CE5D053C6B60564E0 ] tihub3          C:\windows\system32\DRIVERS\tihub3.sys

18:34:41.0242 0x160c  tihub3 - ok

18:34:41.0298 0x160c  [ 0102C9633CE1F18A6AC021F28B734DB5, 247F8971739B62728D18B1D07F4B2BCFA4C873F38E978FE4D3F77CF3120AB584 ] tixhci          C:\windows\system32\DRIVERS\tixhci.sys

18:34:41.0408 0x160c  tixhci - ok

18:34:41.0497 0x160c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll

18:34:41.0599 0x160c  TrkWks - ok

18:34:41.0672 0x160c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

18:34:41.0777 0x160c  TrustedInstaller - ok

18:34:41.0840 0x160c  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys

18:34:41.0922 0x160c  tssecsrv - ok

18:34:41.0952 0x160c  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys

18:34:42.0068 0x160c  TsUsbFlt - ok

18:34:42.0152 0x160c  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys

18:34:42.0292 0x160c  TsUsbGD - ok

18:34:42.0357 0x160c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys

18:34:42.0454 0x160c  tunnel - ok

18:34:42.0503 0x160c  [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB          C:\windows\system32\DRIVERS\TurboB.sys

18:34:42.0548 0x160c  TurboB - ok

18:34:42.0623 0x160c  [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe

18:34:42.0672 0x160c  TurboBoost - ok

18:34:42.0738 0x160c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys

18:34:42.0786 0x160c  uagp35 - ok

18:34:42.0819 0x160c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys

18:34:42.0958 0x160c  udfs - ok

18:34:43.0007 0x160c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe

18:34:43.0053 0x160c  UI0Detect - ok

18:34:43.0112 0x160c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys

18:34:43.0152 0x160c  uliagpkx - ok

18:34:43.0200 0x160c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys

18:34:43.0242 0x160c  umbus - ok

18:34:43.0269 0x160c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys

18:34:43.0359 0x160c  UmPass - ok

18:34:43.0430 0x160c  [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

18:34:43.0451 0x160c  UMVPFSrv - ok

18:34:43.0571 0x160c  [ 4BBFC6FFD2CD2971CD3507E60AD01B6F, 1B74F2BBC9A0A16EB98D4D5186C06FB4299FD4E9F0A738CAB0CBD15080ACD429 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

18:34:43.0596 0x160c  UNS - ok

18:34:43.0688 0x160c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll

18:34:43.0911 0x160c  upnphost - ok

18:34:43.0985 0x160c  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys

18:34:44.0073 0x160c  USBAAPL64 - ok

18:34:44.0142 0x160c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\windows\system32\drivers\usbaudio.sys

18:34:44.0229 0x160c  usbaudio - ok

18:34:44.0297 0x160c  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys

18:34:44.0388 0x160c  usbccgp - ok

18:34:44.0460 0x160c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys

18:34:44.0588 0x160c  usbcir - ok

18:34:44.0636 0x160c  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\windows\system32\drivers\usbehci.sys

18:34:44.0707 0x160c  usbehci - ok

18:34:44.0793 0x160c  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys

18:34:44.0842 0x160c  usbhub - ok

18:34:44.0891 0x160c  [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci         C:\windows\system32\drivers\usbohci.sys

18:34:44.0962 0x160c  usbohci - ok

18:34:45.0019 0x160c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\drivers\usbprint.sys

18:34:45.0053 0x160c  usbprint - ok

18:34:45.0075 0x160c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS

18:34:45.0163 0x160c  USBSTOR - ok

18:34:45.0211 0x160c  [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci         C:\windows\system32\drivers\usbuhci.sys

18:34:45.0248 0x160c  usbuhci - ok

18:34:45.0320 0x160c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys

18:34:45.0374 0x160c  usbvideo - ok

18:34:45.0412 0x160c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll

18:34:45.0482 0x160c  UxSms - ok

18:34:45.0522 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\windows\system32\lsass.exe

18:34:45.0543 0x160c  VaultSvc - ok

18:34:45.0593 0x160c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys

18:34:45.0638 0x160c  vdrvroot - ok

18:34:45.0743 0x160c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe

18:34:45.0947 0x160c  vds - ok

18:34:46.0006 0x160c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys

18:34:46.0063 0x160c  vga - ok

18:34:46.0087 0x160c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys

18:34:46.0204 0x160c  VgaSave - ok

18:34:46.0247 0x160c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys

18:34:46.0302 0x160c  vhdmp - ok

18:34:46.0377 0x160c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys

18:34:46.0418 0x160c  viaide - ok

18:34:46.0475 0x160c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys

18:34:46.0528 0x160c  volmgr - ok

18:34:46.0567 0x160c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys

18:34:46.0656 0x160c  volmgrx - ok

18:34:46.0675 0x160c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys

18:34:46.0708 0x160c  volsnap - ok

18:34:46.0749 0x160c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys

18:34:46.0804 0x160c  vsmraid - ok

18:34:46.0927 0x160c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe

18:34:47.0130 0x160c  VSS - ok

18:34:47.0173 0x160c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys

18:34:47.0252 0x160c  vwifibus - ok

18:34:47.0291 0x160c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys

18:34:47.0384 0x160c  vwififlt - ok

18:34:47.0413 0x160c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys

18:34:47.0509 0x160c  vwifimp - ok

18:34:47.0596 0x160c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll

18:34:47.0737 0x160c  W32Time - ok

18:34:47.0787 0x160c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys

18:34:47.0816 0x160c  WacomPen - ok

18:34:47.0844 0x160c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys

18:34:47.0922 0x160c  WANARP - ok

18:34:47.0934 0x160c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys

18:34:47.0968 0x160c  Wanarpv6 - ok

18:34:48.0054 0x160c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe

18:34:48.0196 0x160c  WatAdminSvc - ok

18:34:48.0296 0x160c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe

18:34:48.0495 0x160c  wbengine - ok

18:34:48.0522 0x160c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll

18:34:48.0579 0x160c  WbioSrvc - ok

18:34:48.0679 0x160c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll

18:34:48.0797 0x160c  wcncsvc - ok

18:34:48.0868 0x160c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

18:34:48.0936 0x160c  WcsPlugInService - ok

18:34:48.0972 0x160c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys

18:34:49.0004 0x160c  Wd - ok

18:34:49.0060 0x160c  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\windows\system32\DRIVERS\wdcsam64.sys

18:34:49.0139 0x160c  WDC_SAM - ok

18:34:49.0250 0x160c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys

18:34:49.0368 0x160c  Wdf01000 - ok

18:34:49.0423 0x160c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll

18:34:49.0476 0x160c  WdiServiceHost - ok

18:34:49.0507 0x160c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll

18:34:49.0552 0x160c  WdiSystemHost - ok

18:34:49.0702 0x160c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll

18:34:49.0877 0x160c  WebClient - ok

18:34:49.0925 0x160c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll

18:34:50.0034 0x160c  Wecsvc - ok

18:34:50.0086 0x160c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll

18:34:50.0157 0x160c  wercplsupport - ok

18:34:50.0202 0x160c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll

18:34:50.0236 0x160c  WerSvc - ok

18:34:50.0279 0x160c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys

18:34:50.0361 0x160c  WfpLwf - ok

18:34:50.0396 0x160c  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\windows\system32\DRIVERS\wimfltr.sys

18:34:50.0428 0x160c  WimFltr - ok

18:34:50.0476 0x160c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys

18:34:50.0525 0x160c  WIMMount - ok

18:34:50.0556 0x160c  WinDefend - ok

18:34:50.0604 0x160c  WinHttpAutoProxySvc - ok

18:34:50.0714 0x160c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll

18:34:50.0799 0x160c  Winmgmt - ok

18:34:50.0953 0x160c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll

18:34:51.0157 0x160c  WinRM - ok

18:34:51.0231 0x160c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys

18:34:51.0284 0x160c  WinUsb - ok

18:34:51.0389 0x160c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll

18:34:51.0452 0x160c  Wlansvc - ok

18:34:51.0513 0x160c  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

18:34:51.0545 0x160c  wlcrasvc - ok

18:34:51.0708 0x160c  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

18:34:51.0773 0x160c  wlidsvc - ok

18:34:51.0830 0x160c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys

18:34:51.0849 0x160c  WmiAcpi - ok

18:34:51.0948 0x160c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe

18:34:52.0010 0x160c  wmiApSrv - ok

18:34:52.0055 0x160c  WMPNetworkSvc - ok

18:34:52.0122 0x160c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll

18:34:52.0201 0x160c  WPCSvc - ok

18:34:52.0225 0x160c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll

18:34:52.0268 0x160c  WPDBusEnum - ok

18:34:52.0309 0x160c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys

18:34:52.0393 0x160c  ws2ifsl - ok

18:34:52.0457 0x160c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\system32\wscsvc.dll

18:34:52.0519 0x160c  wscsvc - ok

18:34:52.0532 0x160c  WSearch - ok

18:34:52.0821 0x160c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll

18:34:52.0887 0x160c  wuauserv - ok

18:34:52.0956 0x160c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys

18:34:53.0013 0x160c  WudfPf - ok

18:34:53.0049 0x160c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys

18:34:53.0142 0x160c  WUDFRd - ok

18:34:53.0203 0x160c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll

18:34:53.0264 0x160c  wudfsvc - ok

18:34:53.0352 0x160c  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\windows\System32\wwansvc.dll

18:34:53.0423 0x160c  WwanSvc - ok

18:34:53.0669 0x160c  [ 5BCB1F6CB749B6826BE1C0F16FF2F600, EF36100ACC0591EB4E04D52E57423E43E331B5D5BA8DFF5854285198931CD3EE ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

18:34:53.0750 0x160c  ZeroConfigService - ok

18:34:53.0808 0x160c  ================ Scan global ===============================

18:34:53.0889 0x160c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll

18:34:53.0966 0x160c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll

18:34:54.0035 0x160c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll

18:34:54.0081 0x160c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll

18:34:54.0135 0x160c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe

18:34:54.0168 0x160c  [ Global ] - ok

18:34:54.0168 0x160c  ================ Scan MBR ==================================

18:34:54.0186 0x160c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

18:34:55.0139 0x160c  \Device\Harddisk0\DR0 - ok

18:34:55.0139 0x160c  ================ Scan VBR ==================================

18:34:55.0192 0x160c  [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1

18:34:55.0194 0x160c  \Device\Harddisk0\DR0\Partition1 - ok

18:34:55.0207 0x160c  [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2

18:34:55.0259 0x160c  \Device\Harddisk0\DR0\Partition2 - ok

18:34:55.0260 0x160c  ================ Scan active images ========================

18:34:55.0261 0x160c  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys

18:34:55.0261 0x160c  C:\Windows\System32\drivers\crashdmp.sys - ok

18:34:55.0264 0x160c  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys

18:34:55.0264 0x160c  C:\Windows\System32\drivers\dumpfve.sys - ok

18:34:55.0267 0x160c  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] C:\Windows\System32\drivers\iaStor.sys

18:34:55.0268 0x160c  C:\Windows\System32\drivers\iaStor.sys - ok

18:34:55.0271 0x160c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys

18:34:55.0271 0x160c  C:\Windows\System32\drivers\beep.sys - ok

18:34:55.0274 0x160c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys

18:34:55.0274 0x160c  C:\Windows\System32\drivers\cdrom.sys - ok

18:34:55.0278 0x160c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys

18:34:55.0278 0x160c  C:\Windows\System32\drivers\null.sys - ok

18:34:55.0281 0x160c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys

18:34:55.0281 0x160c  C:\Windows\System32\drivers\RDPCDD.sys - ok

18:34:55.0284 0x160c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys

18:34:55.0284 0x160c  C:\Windows\System32\drivers\RDPENCDD.sys - ok

18:34:55.0289 0x160c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys

18:34:55.0289 0x160c  C:\Windows\System32\drivers\vga.sys - ok

18:34:55.0294 0x160c  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys

18:34:55.0294 0x160c  C:\Windows\System32\drivers\videoprt.sys - ok

18:34:55.0298 0x160c  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys

18:34:55.0298 0x160c  C:\Windows\System32\drivers\watchdog.sys - ok

18:34:55.0303 0x160c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys

18:34:55.0303 0x160c  C:\Windows\System32\drivers\RDPREFMP.sys - ok

18:34:55.0306 0x160c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys

18:34:55.0306 0x160c  C:\Windows\System32\drivers\msfs.sys - ok

18:34:55.0309 0x160c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys

18:34:55.0309 0x160c  C:\Windows\System32\drivers\npfs.sys - ok

18:34:55.0312 0x160c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys

18:34:55.0312 0x160c  C:\Windows\System32\drivers\netbt.sys - ok

18:34:55.0315 0x160c  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys

18:34:55.0315 0x160c  C:\Windows\System32\drivers\tdi.sys - ok

18:34:55.0319 0x160c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys

18:34:55.0319 0x160c  C:\Windows\System32\drivers\tdx.sys - ok

18:34:55.0322 0x160c  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] C:\Windows\System32\drivers\afd.sys

18:34:55.0322 0x160c  C:\Windows\System32\drivers\afd.sys - ok

18:34:55.0326 0x160c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] C:\Windows\System32\drivers\ws2ifsl.sys

18:34:55.0326 0x160c  C:\Windows\System32\drivers\ws2ifsl.sys - ok

18:34:55.0330 0x160c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys

18:34:55.0330 0x160c  C:\Windows\System32\drivers\pacer.sys - ok

18:34:55.0334 0x160c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys

18:34:55.0334 0x160c  C:\Windows\System32\drivers\vwififlt.sys - ok

18:34:55.0338 0x160c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys

18:34:55.0338 0x160c  C:\Windows\System32\drivers\wfplwf.sys - ok

18:34:55.0342 0x160c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys

18:34:55.0343 0x160c  C:\Windows\System32\drivers\netbios.sys - ok

18:34:55.0346 0x160c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys

18:34:55.0346 0x160c  C:\Windows\System32\drivers\wanarp.sys - ok

18:34:55.0349 0x160c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys

18:34:55.0349 0x160c  C:\Windows\System32\drivers\termdd.sys - ok

18:34:55.0352 0x160c  [ E25632DF954CE70928946BB36F829CF4, A0017814796AC42F159F73A3441A5BDD54F113EDD537EE16194BCE0E759651F3 ] C:\Windows\System32\drivers\scdemu.sys

18:34:55.0352 0x160c  C:\Windows\System32\drivers\scdemu.sys - ok

18:34:55.0356 0x160c  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys

18:34:55.0356 0x160c  C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok

18:34:55.0360 0x160c  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys

18:34:55.0360 0x160c  C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok

18:34:55.0364 0x160c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys

18:34:55.0364 0x160c  C:\Windows\System32\drivers\rdbss.sys - ok

18:34:55.0368 0x160c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys

18:34:55.0368 0x160c  C:\Windows\System32\drivers\mssmbios.sys - ok

18:34:55.0371 0x160c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys

18:34:55.0371 0x160c  C:\Windows\System32\drivers\nsiproxy.sys - ok

18:34:55.0374 0x160c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys

18:34:55.0375 0x160c  C:\Windows\System32\drivers\dfsc.sys - ok

18:34:55.0378 0x160c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys

18:34:55.0378 0x160c  C:\Windows\System32\drivers\discache.sys - ok

18:34:55.0382 0x160c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys

18:34:55.0382 0x160c  C:\Windows\System32\drivers\blbdrive.sys - ok

18:34:55.0386 0x160c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys

18:34:55.0386 0x160c  C:\Windows\System32\drivers\tunnel.sys - ok

18:34:55.0389 0x160c  [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll

18:34:55.0389 0x160c  C:\Windows\System32\ntdll.dll - ok

18:34:55.0392 0x160c  [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe

18:34:55.0392 0x160c  C:\Windows\System32\smss.exe - ok

18:34:55.0395 0x160c  [ B9857625DF8B539ABCB90E15B5716568, 99393C74D6C5BB1D3B7399C628DEF47641563A3A1118988597091B0735805F06 ] C:\Windows\System32\drivers\igdkmd64.sys

18:34:55.0395 0x160c  C:\Windows\System32\drivers\igdkmd64.sys - ok

18:34:55.0398 0x160c  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe

18:34:55.0398 0x160c  C:\Windows\System32\autochk.exe - ok

18:34:55.0401 0x160c  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] C:\Windows\System32\drivers\dxgkrnl.sys

18:34:55.0401 0x160c  C:\Windows\System32\drivers\dxgkrnl.sys - ok

18:34:55.0405 0x160c  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys

18:34:55.0405 0x160c  C:\Windows\System32\drivers\dxgmms1.sys - ok

18:34:55.0409 0x160c  [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] C:\Windows\System32\drivers\HECIx64.sys

18:34:55.0409 0x160c  C:\Windows\System32\drivers\HECIx64.sys - ok

18:34:55.0411 0x160c  [ D7322DA647332AB0FA3809555BB04325, CD5FE99901A9B214205EF77B3C59FE78C5779E4B1AF4404195D708D6885A6FF0 ] C:\Windows\System32\drivers\usbport.sys

18:34:55.0412 0x160c  C:\Windows\System32\drivers\usbport.sys - ok

18:34:55.0415 0x160c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys

18:34:55.0415 0x160c  C:\Windows\System32\drivers\hdaudbus.sys - ok

18:34:55.0418 0x160c  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] C:\Windows\System32\drivers\usbehci.sys

18:34:55.0418 0x160c  C:\Windows\System32\drivers\usbehci.sys - ok

18:34:55.0422 0x160c  [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] C:\Windows\System32\drivers\Rt64win7.sys

18:34:55.0422 0x160c  C:\Windows\System32\drivers\Rt64win7.sys - ok

18:34:55.0425 0x160c  [ 219A40EEEA50D638BA9D08680C354A0C, F4DD0B9A75C29BBB510D19719ABA283AC2FF3D47EE099A3197BBBD7658741BBD ] C:\Windows\System32\drivers\Netwsw00.sys

18:34:55.0425 0x160c  C:\Windows\System32\drivers\Netwsw00.sys - ok

18:34:55.0428 0x160c  [ 0102C9633CE1F18A6AC021F28B734DB5, 247F8971739B62728D18B1D07F4B2BCFA4C873F38E978FE4D3F77CF3120AB584 ] C:\Windows\System32\drivers\tixhci.sys

18:34:55.0428 0x160c  C:\Windows\System32\drivers\tixhci.sys - ok

18:34:55.0431 0x160c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys

18:34:55.0431 0x160c  C:\Windows\System32\drivers\vwifibus.sys - ok

18:34:55.0435 0x160c  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll

18:34:55.0435 0x160c  C:\Windows\System32\imagehlp.dll - ok

18:34:55.0438 0x160c  [ 24ED0EB2B2558970176ECEE680F8F806, 262473534CBFB6DBA5258A981025BA4AB86BB06D9031A7379F1DFE48F69D789D ] C:\Windows\System32\drivers\Apfiltr.sys

18:34:55.0438 0x160c  C:\Windows\System32\drivers\Apfiltr.sys - ok

18:34:55.0441 0x160c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys

18:34:55.0441 0x160c  C:\Windows\System32\drivers\i8042prt.sys - ok

18:34:55.0444 0x160c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] C:\Windows\System32\drivers\GEARAspiWDM.sys

18:34:55.0444 0x160c  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok

18:34:55.0447 0x160c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys

18:34:55.0447 0x160c  C:\Windows\System32\drivers\intelppm.sys - ok

18:34:55.0451 0x160c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys

18:34:55.0451 0x160c  C:\Windows\System32\drivers\kbdclass.sys - ok

18:34:55.0455 0x160c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys

18:34:55.0456 0x160c  C:\Windows\System32\drivers\mouclass.sys - ok

18:34:55.0459 0x160c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys

18:34:55.0459 0x160c  C:\Windows\System32\drivers\CmBatt.sys - ok

18:34:55.0463 0x160c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys

18:34:55.0463 0x160c  C:\Windows\System32\drivers\wmiacpi.sys - ok

18:34:55.0467 0x160c  [ D46391F209DE0A98A97D1D1765F53438, 4D8C7D90BE3DB348ED4069CE3F4F403FCC6149D60B238E0B5DF9DCE4CF69C995 ] C:\Windows\System32\drivers\AmpPal.sys

18:34:55.0467 0x160c  C:\Windows\System32\drivers\AmpPal.sys - ok

18:34:55.0471 0x160c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys

18:34:55.0471 0x160c  C:\Windows\System32\drivers\agilevpn.sys - ok

18:34:55.0476 0x160c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys

18:34:55.0476 0x160c  C:\Windows\System32\drivers\CompositeBus.sys - ok

18:34:55.0480 0x160c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys

18:34:55.0480 0x160c  C:\Windows\System32\drivers\ndistapi.sys - ok

18:34:55.0484 0x160c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys

18:34:55.0484 0x160c  C:\Windows\System32\drivers\ndiswan.sys - ok

18:34:55.0488 0x160c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys

18:34:55.0488 0x160c  C:\Windows\System32\drivers\rasl2tp.sys - ok

18:34:55.0491 0x160c  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys

18:34:55.0491 0x160c  C:\Windows\System32\drivers\ks.sys - ok

18:34:55.0495 0x160c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys

18:34:55.0495 0x160c  C:\Windows\System32\drivers\raspppoe.sys - ok

18:34:55.0498 0x160c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys

18:34:55.0499 0x160c  C:\Windows\System32\drivers\raspptp.sys - ok

18:34:55.0501 0x160c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys

18:34:55.0501 0x160c  C:\Windows\System32\drivers\rassstp.sys - ok

18:34:55.0505 0x160c  [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] C:\Windows\System32\drivers\iwdbus.sys

18:34:55.0505 0x160c  C:\Windows\System32\drivers\iwdbus.sys - ok

18:34:55.0508 0x160c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys

18:34:55.0508 0x160c  C:\Windows\System32\drivers\swenum.sys - ok

18:34:55.0511 0x160c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys

18:34:55.0511 0x160c  C:\Windows\System32\drivers\umbus.sys - ok

18:34:55.0515 0x160c  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] C:\Windows\System32\drivers\usbhub.sys

18:34:55.0515 0x160c  C:\Windows\System32\drivers\usbhub.sys - ok

18:34:55.0518 0x160c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys

18:34:55.0518 0x160c  C:\Windows\System32\drivers\ndproxy.sys - ok

18:34:55.0522 0x160c  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll

18:34:55.0522 0x160c  C:\Windows\System32\setupapi.dll - ok

18:34:55.0525 0x160c  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys

18:34:55.0525 0x160c  C:\Windows\System32\drivers\drmk.sys - ok

18:34:55.0528 0x160c  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys

18:34:55.0528 0x160c  C:\Windows\System32\drivers\portcls.sys - ok

18:34:55.0531 0x160c  [ A37D7A0BF7080DB437A5DDFFE06975BF, F120FA41B8F6CA5218ABD27646205590BCE466F735E28416D70370652113EAF9 ] C:\Windows\System32\drivers\stwrt64.sys

18:34:55.0531 0x160c  C:\Windows\System32\drivers\stwrt64.sys - ok

18:34:55.0535 0x160c  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] C:\Windows\System32\drivers\IntcDAud.sys

18:34:55.0535 0x160c  C:\Windows\System32\drivers\IntcDAud.sys - ok

18:34:55.0539 0x160c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys

18:34:55.0539 0x160c  C:\Windows\System32\drivers\ksthunk.sys - ok

18:34:55.0543 0x160c  [ 68FE3D89829E27D4FD5EEA7BD2C41985, DCA9187F7480B4363BB57F604CC0172E03E50216CF9CF79CE5D053C6B60564E0 ] C:\Windows\System32\drivers\tihub3.sys

18:34:55.0543 0x160c  C:\Windows\System32\drivers\tihub3.sys - ok

18:34:55.0547 0x160c  [ 40C6FEC49D1CC4D112368A2BCD2BCBB7, E9ECEAA4F740A667C071EDEA1359491B221E5AA43A990744859CA7CC40E67F6C ] C:\Windows\System32\drivers\btmhsf.sys

18:34:55.0547 0x160c  C:\Windows\System32\drivers\btmhsf.sys - ok

18:34:55.0551 0x160c  [ FC47F5CF561BF0FD897EFD1A9604DCCF, C304737F78A772051993A68BB06F860733A8650013A46946A854E47C892C252E ] C:\Windows\System32\drivers\iBtFltCoex.sys

18:34:55.0551 0x160c  C:\Windows\System32\drivers\iBtFltCoex.sys - ok

18:34:55.0554 0x160c  [ 22874047B810B5B174C68ACD7C0B6510, D3DC88210DBC13A2F3B41960C6C0E59A16D1AE20FC24AD059DF3B46A40A77095 ] C:\Windows\System32\urlmon.dll

18:34:55.0554 0x160c  C:\Windows\System32\urlmon.dll - ok

18:34:55.0557 0x160c  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] C:\Windows\System32\drivers\bthport.sys

18:34:55.0557 0x160c  C:\Windows\System32\drivers\bthport.sys - ok

18:34:55.0561 0x160c  [ 1A13DCABD19D093B4D3949CE33EF1FA1, D336F2B721FB82FA06E855EFAC117F1C23F02BA35DF6F1C091B798FFDFD1B7FB ] C:\Windows\System32\drivers\usbd.sys

18:34:55.0561 0x160c  C:\Windows\System32\drivers\usbd.sys - ok

18:34:55.0564 0x160c  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] C:\Windows\System32\drivers\BTHUSB.SYS

18:34:55.0564 0x160c  C:\Windows\System32\drivers\BTHUSB.SYS - ok

18:34:55.0568 0x160c  [ 856E76B3641746ABBC2946BED1372098, FD93CC7F72560F72CA49AD5609C079E25B8A3A4802E72B127B63A9E7B4884710 ] C:\Windows\System32\drivers\hidparse.sys

18:34:55.0568 0x160c  C:\Windows\System32\drivers\hidparse.sys - ok

18:34:55.0571 0x160c  [ 597C3699384E53CC59587ED50CCE5CA2, 4F61E9B5BEB3BD1634D733983381E516664BD7E250DF4B0150B168E05EFD652A ] C:\Windows\System32\drivers\hidclass.sys

18:34:55.0571 0x160c  C:\Windows\System32\drivers\hidclass.sys - ok

18:34:55.0574 0x160c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys

18:34:55.0574 0x160c  C:\Windows\System32\drivers\hidusb.sys - ok

18:34:55.0578 0x160c  [ AD662B34B161198B9D66A564EDDA7D43, 335807AA4E88234BF2C639781E92D0DBC41D973754D61AB1DA6C8BA4E108AEBD ] C:\Windows\System32\shell32.dll

18:34:55.0578 0x160c  C:\Windows\System32\shell32.dll - ok

18:34:55.0581 0x160c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys

18:34:55.0581 0x160c  C:\Windows\System32\drivers\mouhid.sys - ok

18:34:55.0584 0x160c  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] C:\Windows\System32\drivers\usbccgp.sys

18:34:55.0584 0x160c  C:\Windows\System32\drivers\usbccgp.sys - ok

18:34:55.0587 0x160c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] C:\Windows\System32\drivers\usbvideo.sys

18:34:55.0587 0x160c  C:\Windows\System32\drivers\usbvideo.sys - ok

18:34:55.0590 0x160c  [ BC3D4F90978CD7C8EABD1BAF3BF7873A, 5978139650FC51BE0CAB12061702C7BC7BEDF6E7C3A047FF0A6328AA674E4226 ] C:\Windows\System32\drivers\CtClsFlt.sys

18:34:55.0590 0x160c  C:\Windows\System32\drivers\CtClsFlt.sys - ok

18:34:55.0593 0x160c  [ D8973E71F1B35CD3F3DEA7C12D49D0F0, 23CAE14BF9D7208CD2A0B2691B1A64313A24A23E6D70F40AA0572ED37E8B542C ] C:\Windows\System32\kernel32.dll

18:34:55.0593 0x160c  C:\Windows\System32\kernel32.dll - ok

18:34:55.0596 0x160c  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll

18:34:55.0596 0x160c  C:\Windows\System32\psapi.dll - ok

18:34:55.0599 0x160c  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] C:\Windows\System32\drivers\rfcomm.sys

18:34:55.0599 0x160c  C:\Windows\System32\drivers\rfcomm.sys - ok

18:34:55.0602 0x160c  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] C:\Windows\System32\drivers\bthenum.sys

18:34:55.0602 0x160c  C:\Windows\System32\drivers\bthenum.sys - ok

18:34:55.0605 0x160c  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] C:\Windows\System32\drivers\bthpan.sys

18:34:55.0606 0x160c  C:\Windows\System32\drivers\bthpan.sys - ok

18:34:55.0608 0x160c  [ 274E47BD9C1367BDBFA9DF10C2E6C544, 196D7274AE0A461F58E8D18866DFC5C5ED35740EFEE34C348A7B9B225E4ED438 ] C:\Windows\System32\drivers\btmaud.sys

18:34:55.0608 0x160c  C:\Windows\System32\drivers\btmaud.sys - ok

18:34:55.0612 0x160c  [ 75EAB5AAF6E9F83739249CE60B4B9C39, 7D6B4CFEC26C1403558153A2484A07C41CB61E6BBEA41A3D5FDDE0FFBD1C75EC ] C:\Windows\System32\drivers\btmaux.sys

18:34:55.0612 0x160c  C:\Windows\System32\drivers\btmaux.sys - ok

18:34:55.0615 0x160c  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll

18:34:55.0615 0x160c  C:\Windows\System32\oleaut32.dll - ok

18:34:55.0618 0x160c  [ DBF99FD9CAF75CA66D042BD8D050FF71, D11A863EAEDE80A731FD7A63F744E518D3921043CC3982BAA87992F9E82F044F ] C:\Windows\System32\usp10.dll

18:34:55.0618 0x160c  C:\Windows\System32\usp10.dll - ok

18:34:55.0621 0x160c  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll

18:34:55.0621 0x160c  C:\Windows\System32\sechost.dll - ok

18:34:55.0625 0x160c  [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll

18:34:55.0625 0x160c  C:\Windows\System32\advapi32.dll - ok

18:34:55.0629 0x160c  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll

18:34:55.0629 0x160c  C:\Windows\System32\nsi.dll - ok

18:34:55.0632 0x160c  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll

18:34:55.0632 0x160c  C:\Windows\System32\ws2_32.dll - ok

18:34:55.0636 0x160c  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll

18:34:55.0636 0x160c  C:\Windows\System32\Wldap32.dll - ok

18:34:55.0639 0x160c  [ 263B6E451526A90FF8B1CEC759F22956, 8225A6B0A31A68D3CB11A7A274A7E2153E98F7DF657195408A365A0AF789BD72 ] C:\Windows\System32\wininet.dll

18:34:55.0639 0x160c  C:\Windows\System32\wininet.dll - ok

18:34:55.0642 0x160c  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll

18:34:55.0642 0x160c  C:\Windows\System32\clbcatq.dll - ok

18:34:55.0645 0x160c  [ 26036E228D2467DE6975AD819C22C043, B4A30EC7ABAEFFF55DE662F4A17415F2BD737BD563215638C86C580B8F3EA907 ] C:\Windows\System32\rpcrt4.dll

18:34:55.0645 0x160c  C:\Windows\System32\rpcrt4.dll - ok

18:34:55.0648 0x160c  [ 56325BB1FF19F2A5AC8713756AC41140, B2124E57783312EE37D2621E689D8FB4C43A04BDBD4F481225C21038605A28CE ] C:\Windows\System32\gdi32.dll

18:34:55.0648 0x160c  C:\Windows\System32\gdi32.dll - ok

18:34:55.0651 0x160c  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll

18:34:55.0651 0x160c  C:\Windows\System32\difxapi.dll - ok

18:34:55.0654 0x160c  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll

18:34:55.0654 0x160c  C:\Windows\System32\msvcrt.dll - ok

18:34:55.0656 0x160c  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll

18:34:55.0656 0x160c  C:\Windows\System32\msctf.dll - ok

18:34:55.0659 0x160c  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll

18:34:55.0659 0x160c  C:\Windows\System32\normaliz.dll - ok

18:34:55.0661 0x160c  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll

18:34:55.0661 0x160c  C:\Windows\System32\comdlg32.dll - ok

18:34:55.0664 0x160c  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll

18:34:55.0664 0x160c  C:\Windows\System32\shlwapi.dll - ok

18:34:55.0666 0x160c  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll

18:34:55.0666 0x160c  C:\Windows\System32\user32.dll - ok

18:34:55.0669 0x160c  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll

18:34:55.0669 0x160c  C:\Windows\System32\ole32.dll - ok

18:34:55.0672 0x160c  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll

18:34:55.0672 0x160c  C:\Windows\System32\imm32.dll - ok

18:34:55.0675 0x160c  [ 6300AD525D639CECBB3D144B6D7B30F9, 9A7BA443CC0A40215AC99599F4DF6A852D1DE3BD7AD1FBBCEBCCFD7F86062FA6 ] C:\Windows\System32\iertutil.dll

18:34:55.0675 0x160c  C:\Windows\System32\iertutil.dll - ok

18:34:55.0678 0x160c  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll

18:34:55.0678 0x160c  C:\Windows\System32\lpk.dll - ok

18:34:55.0681 0x160c  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

18:34:55.0681 0x160c  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok

18:34:55.0684 0x160c  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll

18:34:55.0684 0x160c  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok

18:34:55.0687 0x160c  [ B22C00ED0491FD7B8803D7DDE2849F4C, 11AB01BF17A4130A3C4EF493A42406DF106B0923DD6DCBFF5958F5C886B9DA93 ] C:\Windows\System32\KernelBase.dll

18:34:55.0687 0x160c  C:\Windows\System32\KernelBase.dll - ok

18:34:55.0692 0x160c  [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll

18:34:55.0693 0x160c  C:\Windows\System32\wintrust.dll - ok

18:34:55.0695 0x160c  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll

18:34:55.0695 0x160c  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok

18:34:55.0699 0x160c  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll

18:34:55.0699 0x160c  C:\Windows\System32\comctl32.dll - ok

18:34:55.0701 0x160c  [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll

18:34:55.0702 0x160c  C:\Windows\System32\crypt32.dll - ok

18:34:55.0705 0x160c  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll

18:34:55.0705 0x160c  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok

18:34:55.0707 0x160c  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll

18:34:55.0708 0x160c  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok

18:34:55.0710 0x160c  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll

18:34:55.0710 0x160c  C:\Windows\System32\cfgmgr32.dll - ok

18:34:55.0713 0x160c  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll

18:34:55.0713 0x160c  C:\Windows\System32\devobj.dll - ok

18:34:55.0716 0x160c  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll

18:34:55.0716 0x160c  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok

18:34:55.0719 0x160c  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll

18:34:55.0719 0x160c  C:\Windows\System32\msasn1.dll - ok

18:34:55.0722 0x160c  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll

18:34:55.0722 0x160c  C:\Windows\SysWOW64\normaliz.dll - ok

18:34:55.0725 0x160c  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys

18:34:55.0725 0x160c  C:\Windows\System32\drivers\dxapi.sys - ok

18:34:55.0728 0x160c  [ F2BF71FCEAB8FB8A691408C478E2FF4C, B271A8B43FFC29C9CFEA2B50A2370760A38274D491CD2BA02A0EA4D0A3998DE6 ] C:\Windows\System32\win32k.sys

18:34:55.0728 0x160c  C:\Windows\System32\win32k.sys - ok

18:34:55.0731 0x160c  [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll

18:34:55.0731 0x160c  C:\Windows\System32\csrsrv.dll - ok

18:34:55.0733 0x160c  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe

18:34:55.0734 0x160c  C:\Windows\System32\csrss.exe - ok

18:34:55.0737 0x160c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll

18:34:55.0737 0x160c  C:\Windows\System32\basesrv.dll - ok

18:34:55.0739 0x160c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll

18:34:55.0739 0x160c  C:\Windows\System32\winsrv.dll - ok

18:34:55.0742 0x160c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys

18:34:55.0742 0x160c  C:\Windows\System32\drivers\monitor.sys - ok

18:34:55.0745 0x160c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll

18:34:55.0745 0x160c  C:\Windows\System32\sxssrv.dll - ok

18:34:55.0748 0x160c  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll

18:34:55.0748 0x160c  C:\Windows\System32\tsddd.dll - ok

18:34:55.0751 0x160c  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll

18:34:55.0751 0x160c  C:\Windows\System32\profapi.dll - ok

18:34:55.0755 0x160c  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe

18:34:55.0755 0x160c  C:\Windows\System32\wininit.exe - ok

18:34:55.0758 0x160c  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL

18:34:55.0759 0x160c  C:\Windows\System32\KBDUS.DLL - ok

18:34:55.0761 0x160c  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll

18:34:55.0761 0x160c  C:\Windows\System32\RpcRtRemote.dll - ok

18:34:55.0764 0x160c  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll

18:34:55.0764 0x160c  C:\Windows\System32\cdd.dll - ok

18:34:55.0767 0x160c  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll

18:34:55.0767 0x160c  C:\Windows\System32\WlS0WndH.dll - ok

18:34:55.0769 0x160c  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll

18:34:55.0769 0x160c  C:\Windows\System32\sxs.dll - ok

18:34:55.0772 0x160c  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll

18:34:55.0772 0x160c  C:\Windows\System32\cryptbase.dll - ok

18:34:55.0775 0x160c  [ 1151B1BAA6F350B1DB6598E0FEA7C457, B1506E0A7E826EFF0F5252EF5026070C46E2235438403A9A24D73EE69C0B8A49 ] C:\Windows\System32\winlogon.exe

18:34:55.0775 0x160c  C:\Windows\System32\winlogon.exe - ok

18:34:55.0778 0x160c  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll

18:34:55.0778 0x160c  C:\Windows\System32\winsta.dll - ok

18:34:55.0781 0x160c  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll

18:34:55.0781 0x160c  C:\Windows\System32\apphelp.dll - ok

18:34:55.0783 0x160c  [ 086F906B1D30C0A5D35FE0F6362DAB21, C4C8CD9C60C6426E0402A4BE1D30CE30792D0A5FE1057266467E0C143DD1050C ] C:\Windows\System32\lsasrv.dll

18:34:55.0783 0x160c  C:\Windows\System32\lsasrv.dll - ok

18:34:55.0786 0x160c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] C:\Windows\System32\lsass.exe

18:34:55.0786 0x160c  C:\Windows\System32\lsass.exe - ok

18:34:55.0789 0x160c  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe

18:34:55.0789 0x160c  C:\Windows\System32\lsm.exe - ok

18:34:55.0792 0x160c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe

18:34:55.0792 0x160c  C:\Windows\System32\services.exe - ok

18:34:55.0795 0x160c  [ B08EA91C774AA734E0B9881F85CD9F42, C0757F98D190D426EBF5B0B6C151BFFD0A128344BAA4A1BA36DB28C16BB4A0F2 ] C:\Windows\System32\sspicli.dll

18:34:55.0795 0x160c  C:\Windows\System32\sspicli.dll - ok

18:34:55.0798 0x160c  [ 7C46EC9CCDE6E793713FA01DB2EB918E, 36647EF5E68B39A972AE2EDBE446F4CCC59ADAC5C4C172F2A66D79139E66BB30 ] C:\Windows\System32\sspisrv.dll

18:34:55.0798 0x160c  C:\Windows\System32\sspisrv.dll - ok

18:34:55.0801 0x160c  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll

18:34:55.0801 0x160c  C:\Windows\System32\scesrv.dll - ok

18:34:55.0805 0x160c  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll

18:34:55.0805 0x160c  C:\Windows\System32\scext.dll - ok

18:34:55.0808 0x160c  [ 208EAAFF40DA400190AA0605C797BEA2, 24C349881E7102267D1648F9CA6A9AF871F1CAA3290AC96CEABCC3724D833C5B ] C:\Windows\System32\secur32.dll

18:34:55.0808 0x160c  C:\Windows\System32\secur32.dll - ok

18:34:55.0811 0x160c  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll

18:34:55.0811 0x160c  C:\Windows\System32\sysntfy.dll - ok

18:34:55.0814 0x160c  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll

18:34:55.0814 0x160c  C:\Windows\System32\wmsgapi.dll - ok

18:34:55.0817 0x160c  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll

18:34:55.0817 0x160c  C:\Windows\System32\samsrv.dll - ok

18:34:55.0820 0x160c  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll

18:34:55.0820 0x160c  C:\Windows\System32\srvcli.dll - ok

18:34:55.0824 0x160c  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll

18:34:55.0824 0x160c  C:\Windows\System32\cryptdll.dll - ok

18:34:55.0827 0x160c  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll

18:34:55.0827 0x160c  C:\Windows\System32\wevtapi.dll - ok

18:34:55.0829 0x160c  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll

18:34:55.0829 0x160c  C:\Windows\System32\authz.dll - ok

18:34:55.0832 0x160c  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll

18:34:55.0832 0x160c  C:\Windows\System32\cngaudit.dll - ok

18:34:55.0835 0x160c  [ 747B9BA5412422F27934CB21131F0A3E, 2441F925C3B46A15141A0A1E1AA9DFCCA2891D823D55C6E6DA0E30C2DE3A7341 ] C:\Windows\System32\ncrypt.dll

18:34:55.0835 0x160c  C:\Windows\System32\ncrypt.dll - ok

18:34:55.0837 0x160c  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll

18:34:55.0837 0x160c  C:\Windows\System32\bcrypt.dll - ok

18:34:55.0840 0x160c  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll

18:34:55.0840 0x160c  C:\Windows\System32\msprivs.dll - ok

18:34:55.0843 0x160c  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll

18:34:55.0843 0x160c  C:\Windows\System32\netjoin.dll - ok

18:34:55.0845 0x160c  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll

18:34:55.0846 0x160c  C:\Windows\System32\negoexts.dll - ok

18:34:55.0848 0x160c  [ 44E1A196DFCB53B01FE4B855C3B56A15, EDC31276EC325B642D07EE79F6E9021CBB7F8AFC32F9A408C91844175BF6B6E2 ] C:\Windows\System32\kerberos.dll

18:34:55.0848 0x160c  C:\Windows\System32\kerberos.dll - ok

18:34:55.0851 0x160c  [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll

18:34:55.0851 0x160c  C:\Windows\System32\atmfd.dll - ok

18:34:55.0854 0x160c  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll

18:34:55.0854 0x160c  C:\Windows\System32\cryptsp.dll - ok

18:34:55.0857 0x160c  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll

18:34:55.0857 0x160c  C:\Windows\System32\mswsock.dll - ok

18:34:55.0860 0x160c  [ EF12B8385AA2849999008A977918F96B, ADEF9F5D2B0C2A30CB1B395C774E7FE75437135A09D3D4E6F97EE8656CE139B4 ] C:\Windows\System32\msv1_0.dll

18:34:55.0860 0x160c  C:\Windows\System32\msv1_0.dll - ok

18:34:55.0863 0x160c  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll

18:34:55.0863 0x160c  C:\Windows\System32\wship6.dll - ok

18:34:55.0866 0x160c  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll

18:34:55.0866 0x160c  C:\Windows\System32\netlogon.dll - ok

18:34:55.0869 0x160c  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll

18:34:55.0869 0x160c  C:\Windows\System32\dnsapi.dll - ok

18:34:55.0872 0x160c  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll

18:34:55.0872 0x160c  C:\Windows\System32\logoncli.dll - ok

18:34:55.0874 0x160c  [ 31FFED18C7B836CEC1B559347E32E151, 80BA8E74EC60BF50240D95FC526485FD6A18F2316A4C4E2804C451164676EDEE ] C:\Windows\System32\schannel.dll

18:34:55.0874 0x160c  C:\Windows\System32\schannel.dll - ok

18:34:55.0877 0x160c  [ 95FB6CA4374E343DDD653FCC43F9D26B, 911A240F9C1DD155C2B1CD85FE4A8044EB2816AF166CD8CB66EEB905CA352881 ] C:\Windows\System32\wdigest.dll

18:34:55.0877 0x160c  C:\Windows\System32\wdigest.dll - ok

18:34:55.0880 0x160c  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll

18:34:55.0880 0x160c  C:\Windows\System32\rsaenh.dll - ok

18:34:55.0882 0x160c  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll

18:34:55.0882 0x160c  C:\Windows\System32\pku2u.dll - ok

18:34:55.0885 0x160c  [ 8A25506B6948EFBD5A7F37E53CCD36D9, 2A20562ED33ABD1D15C7BE9F4F1E623E3604BCC0F7214D067CD8C3D16B9EC6A7 ] C:\Windows\System32\TSpkg.dll

18:34:55.0885 0x160c  C:\Windows\System32\TSpkg.dll - ok

18:34:55.0888 0x160c  [ 55C892560C1B42BC57FB61AEFCED2F22, 9A15D6559B4FD2FE3A5C5CE13F3C1AD01D9576F6023BDBD12336A1654D33EC63 ] C:\Windows\System32\LIVESSP.DLL

18:34:55.0888 0x160c  C:\Windows\System32\LIVESSP.DLL - ok

18:34:55.0891 0x160c  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll

18:34:55.0891 0x160c  C:\Windows\System32\bcryptprimitives.dll - ok

18:34:55.0894 0x160c  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll

18:34:55.0894 0x160c  C:\Windows\System32\efslsaext.dll - ok

18:34:55.0897 0x160c  [ 52D3D5E3586988D4D9E34ACAAC33105C, C61B60BA962B25B8334F0941C3535EA4ACA1CC060B8A196E396CA3E11CEEF8A1 ] C:\Windows\System32\credssp.dll

18:34:55.0897 0x160c  C:\Windows\System32\credssp.dll - ok

18:34:55.0899 0x160c  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll

18:34:55.0899 0x160c  C:\Windows\System32\scecli.dll - ok

18:34:55.0902 0x160c  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll

18:34:55.0902 0x160c  C:\Windows\System32\ubpm.dll - ok

18:34:55.0905 0x160c  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe

18:34:55.0905 0x160c  C:\Windows\System32\svchost.exe - ok

18:34:55.0908 0x160c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll

18:34:55.0908 0x160c  C:\Windows\System32\umpnpmgr.dll - ok

18:34:55.0909 0x160c  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll

18:34:55.0909 0x160c  C:\Windows\System32\SPInf.dll - ok

18:34:55.0912 0x160c  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll

18:34:55.0912 0x160c  C:\Windows\System32\devrtl.dll - ok

18:34:55.0915 0x160c  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll

18:34:55.0915 0x160c  C:\Windows\System32\userenv.dll - ok

18:34:55.0927 0x160c  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll

18:34:55.0927 0x160c  C:\Windows\System32\gpapi.dll - ok

18:34:55.0931 0x160c  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll

18:34:55.0931 0x160c  C:\Windows\System32\pcwum.dll - ok

18:34:55.0934 0x160c  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] C:\Windows\System32\umpo.dll

18:34:55.0934 0x160c  C:\Windows\System32\umpo.dll - ok

18:34:55.0938 0x160c  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll

18:34:55.0938 0x160c  C:\Windows\System32\powrprof.dll - ok

18:34:55.0941 0x160c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys

18:34:55.0941 0x160c  C:\Windows\System32\drivers\luafv.sys - ok

18:34:55.0944 0x160c  [ D1895C38D9B1D85557F5514A68A48EC9, 2C39376A49A6FD78678F2ACB0D9F75F3361BC717D980EA7E6630E5BAE26937A6 ] C:\Windows\System32\drivers\mfehidk.sys

18:34:55.0944 0x160c  C:\Windows\System32\drivers\mfehidk.sys - ok

18:34:55.0946 0x160c  [ 4DB07846C1BC5ED4305C6481B6998EF9, 992D9AF39C816C8972DDDC5259E5DB5E18E0078696AC4967EEFA9924DB47920E ] C:\Windows\System32\drivers\mfewfpk.sys

18:34:55.0946 0x160c  C:\Windows\System32\drivers\mfewfpk.sys - ok

18:34:55.0949 0x160c  [ E06E9155364C4448B1529FB626256168, 9F7B4B3D23614667BB0C28FA189708648684C71568AB1D7FF0B27E5C8C39DECB ] C:\Windows\System32\drivers\mfeavfk.sys

18:34:55.0949 0x160c  C:\Windows\System32\drivers\mfeavfk.sys - ok

18:34:55.0952 0x160c  [ C2DA65EBCA098520CCA33B81343144A2, 9B3A20ED314C6E626618BE4E065F7355B5EF99BD377DE46A516D6E2EB83DDDCE ] C:\Windows\System32\drivers\mfefirek.sys

18:34:55.0952 0x160c  C:\Windows\System32\drivers\mfefirek.sys - ok

18:34:55.0956 0x160c  [ FDB02B0C2865DBDE9571D57D3ABC6A6B, 9AC814E8FEB1F928582B1AA76DD41B78981C9D211D8DB9F555AD5B334B14E11D ] C:\Windows\System32\drivers\mfencbdc.sys

18:34:55.0956 0x160c  C:\Windows\System32\drivers\mfencbdc.sys - ok

18:34:55.0959 0x160c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll

18:34:55.0959 0x160c  C:\Windows\System32\rpcss.dll - ok

18:34:55.0962 0x160c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll

18:34:55.0962 0x160c  C:\Windows\System32\RpcEpMap.dll - ok

18:34:55.0965 0x160c  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll

18:34:55.0965 0x160c  C:\Windows\System32\wshqos.dll - ok

18:34:55.0969 0x160c  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL

18:34:55.0969 0x160c  C:\Windows\System32\WSHTCPIP.DLL - ok

18:34:55.0972 0x160c  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll

18:34:55.0972 0x160c  C:\Windows\System32\FirewallAPI.dll - ok

18:34:55.0975 0x160c  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll

18:34:55.0975 0x160c  C:\Windows\System32\version.dll - ok

18:34:55.0978 0x160c  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe

18:34:55.0978 0x160c  C:\Windows\System32\LogonUI.exe - ok

18:34:55.0981 0x160c  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll

18:34:55.0981 0x160c  C:\Windows\System32\wevtsvc.dll - ok

18:34:55.0984 0x160c  [ 34152997FB906895290E0199AC94B85F, 6AEEB989FA6E4354F96F70D0169CC6CAAA56EEE3056F1CD20F5FE846EAC058C1 ] C:\Windows\System32\authui.dll

18:34:55.0984 0x160c  C:\Windows\System32\authui.dll - ok

18:34:55.0987 0x160c  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll

18:34:55.0987 0x160c  C:\Windows\System32\avrt.dll - ok

18:34:55.0990 0x160c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll

18:34:55.0990 0x160c  C:\Windows\System32\mmcss.dll - ok

18:34:55.0993 0x160c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll

18:34:55.0993 0x160c  C:\Windows\System32\audiosrv.dll - ok

18:34:55.0996 0x160c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll

18:34:55.0996 0x160c  C:\Windows\System32\FntCache.dll - ok

18:34:55.0999 0x160c  [ AFD0F0D36923A78958B0BFFB315DC744, 0A7E140C425B6178CE1AD771A1C70F42E6DAB0D637BFDF2E3479D20F598024B8 ] C:\Program Files\IDT\WDM\stacsv64.exe

18:34:55.0999 0x160c  C:\Program Files\IDT\WDM\stacsv64.exe - ok

18:34:56.0002 0x160c  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll

18:34:56.0002 0x160c  C:\Windows\System32\MMDevAPI.dll - ok

18:34:56.0005 0x160c  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll

18:34:56.0005 0x160c  C:\Windows\System32\propsys.dll - ok

18:34:56.0010 0x160c  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll

18:34:56.0010 0x160c  C:\Windows\System32\atl.dll - ok

18:34:56.0013 0x160c  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll

18:34:56.0013 0x160c  C:\Windows\System32\ntmarta.dll - ok

18:34:56.0016 0x160c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll

18:34:56.0016 0x160c  C:\Windows\System32\profsvc.dll - ok

18:34:56.0018 0x160c  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll

18:34:56.0018 0x160c  C:\Windows\System32\cryptui.dll - ok

18:34:56.0023 0x160c  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll

18:34:56.0023 0x160c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok

18:34:56.0025 0x160c  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll

18:34:56.0025 0x160c  C:\Windows\System32\samlib.dll - ok

18:34:56.0028 0x160c  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll

18:34:56.0028 0x160c  C:\Windows\System32\shacct.dll - ok

18:34:56.0031 0x160c  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll

18:34:56.0031 0x160c  C:\Windows\System32\uxtheme.dll - ok

18:34:56.0034 0x160c  [ 18CAAF21CBA3EAEE17BBA5D3807F29B8, 59C4FE015CCBE922F7AB3838D7F34CACC08DD437B2BAD62926BF4A9C416F7C19 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll

18:34:56.0034 0x160c  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok

18:34:56.0037 0x160c  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll

18:34:56.0037 0x160c  C:\Windows\System32\dui70.dll - ok

18:34:56.0040 0x160c  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll

18:34:56.0040 0x160c  C:\Windows\System32\duser.dll - ok

18:34:56.0044 0x160c  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll

18:34:56.0044 0x160c  C:\Windows\System32\SndVolSSO.dll - ok

18:34:56.0046 0x160c  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll

18:34:56.0046 0x160c  C:\Windows\System32\hid.dll - ok

18:34:56.0049 0x160c  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll

18:34:56.0049 0x160c  C:\Windows\System32\dwmapi.dll - ok

18:34:56.0052 0x160c  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll

18:34:56.0052 0x160c  C:\Windows\System32\xmllite.dll - ok

18:34:56.0056 0x160c  [ 3D7BB6DD7A87B3E36E44CA94444247A8, 8EC25387910A85624A76C0312A7A8C2A4624E9B7A546FD071F70FE3C2F7F7333 ] C:\Windows\System32\WindowsCodecs.dll

18:34:56.0056 0x160c  C:\Windows\System32\WindowsCodecs.dll - ok

18:34:56.0059 0x160c  [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll

18:34:56.0059 0x160c  C:\Windows\System32\dsound.dll - ok

18:34:56.0062 0x160c  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll

18:34:56.0062 0x160c  C:\Windows\System32\winbrand.dll - ok

18:34:56.0065 0x160c  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll

18:34:56.0065 0x160c  C:\Windows\System32\wtsapi32.dll - ok

18:34:56.0068 0x160c  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll

18:34:56.0068 0x160c  C:\Windows\System32\VaultCredProvider.dll - ok

18:34:56.0072 0x160c  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll

18:34:56.0072 0x160c  C:\Windows\System32\SmartcardCredentialProvider.dll - ok

18:34:56.0075 0x160c  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll

18:34:56.0075 0x160c  C:\Windows\System32\BioCredProv.dll - ok

18:34:56.0078 0x160c  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll

18:34:56.0078 0x160c  C:\Windows\System32\winbio.dll - ok

18:34:56.0081 0x160c  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll

18:34:56.0081 0x160c  C:\Windows\System32\credui.dll - ok

18:34:56.0084 0x160c  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll

18:34:56.0084 0x160c  C:\Windows\System32\netapi32.dll - ok

18:34:56.0087 0x160c  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll

18:34:56.0087 0x160c  C:\Windows\System32\netutils.dll - ok

18:34:56.0090 0x160c  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll

18:34:56.0090 0x160c  C:\Windows\System32\vaultcli.dll - ok

18:34:56.0093 0x160c  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll

18:34:56.0093 0x160c  C:\Windows\System32\wkscli.dll - ok

18:34:56.0096 0x160c  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll

18:34:56.0096 0x160c  C:\Windows\System32\winmm.dll - ok

18:34:56.0099 0x160c  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll

18:34:56.0099 0x160c  C:\Windows\System32\samcli.dll - ok

18:34:56.0102 0x160c  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll

18:34:56.0102 0x160c  C:\Windows\System32\certCredProvider.dll - ok

18:34:56.0105 0x160c  [ 7097425051CE67B450EBF2B1390AE492, 45354BA04E383B65D13A073F63EA5EA185D8B0C1E208B6671ED8EBC64711D109 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL

18:34:56.0105 0x160c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok

18:34:56.0108 0x160c  [ 9AB196E7EA14D5EA556F19EDD9F307D7, 37F16FCEAD93B6037E4511D7FEF9028AE60CCD1B17CCB4A9AFD684414E8F02EA ] C:\Windows\System32\stapi64.dll

18:34:56.0108 0x160c  C:\Windows\System32\stapi64.dll - ok



#13 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 05 March 2014 - 03:02 PM

TDSKiller log (part 3):

 

18:34:56.0111 0x160c  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll

18:34:56.0111 0x160c  C:\Windows\System32\rasplap.dll - ok

18:34:56.0114 0x160c  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll

18:34:56.0114 0x160c  C:\Windows\System32\radardt.dll - ok

18:34:56.0117 0x160c  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll

18:34:56.0117 0x160c  C:\Windows\System32\rasapi32.dll - ok

18:34:56.0121 0x160c  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll

18:34:56.0121 0x160c  C:\Windows\System32\rasman.dll - ok

18:34:56.0124 0x160c  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll

18:34:56.0124 0x160c  C:\Windows\System32\rtutils.dll - ok

18:34:56.0126 0x160c  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll

18:34:56.0126 0x160c  C:\Windows\System32\adtschema.dll - ok

18:34:56.0129 0x160c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] C:\Windows\System32\termsrv.dll

18:34:56.0129 0x160c  C:\Windows\System32\termsrv.dll - ok

18:34:56.0133 0x160c  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll

18:34:56.0133 0x160c  C:\Windows\System32\AudioSes.dll - ok

18:34:56.0137 0x160c  [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

18:34:56.0137 0x160c  C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe - ok

18:34:56.0141 0x160c  [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll

18:34:56.0141 0x160c  C:\Windows\SysWOW64\ntdll.dll - ok

18:34:56.0145 0x160c  [ 612C713CF5E2224213BD03FF9D7B3545, 225E2FD27FD8E5EC0D570F835007BD1E7AC10B1177C3ED2349740EBF72ADEC57 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slapoi64.dll

18:34:56.0145 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slapoi64.dll - ok

18:34:56.0149 0x160c  [ 750D645A204F2AB82E0FC5FAACE67B19, 51F02472F7B8E7BCF07C8F6CAB67BCA315A836D512393EFCB012A25EE76BC9F0 ] C:\Windows\System32\stapo64.dll

18:34:56.0149 0x160c  C:\Windows\System32\stapo64.dll - ok

18:34:56.0154 0x160c  [ 70833F5A59F65908698093889C34BCA2, 25777B910664827FC5C8258E4956CC936E0A1E42A9C7F2F390A83025E685D728 ] C:\Windows\System32\wow64.dll

18:34:56.0154 0x160c  C:\Windows\System32\wow64.dll - ok

18:34:56.0157 0x160c  [ 5674E21E82CFBEA36DDAD5DB285D6DBC, FBD2AC69D3E66E39651C5F2C88C0087EDC3CD1FD999FC2A574C97E9DDF2C1441 ] C:\Windows\System32\wow64win.dll

18:34:56.0157 0x160c  C:\Windows\System32\wow64win.dll - ok

18:34:56.0160 0x160c  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3, FCF173B0A324FA4780824CBD8C8FE4E402F27EACF1A41AAFEA636FA0B3AE7B35 ] C:\Windows\System32\wow64cpu.dll

18:34:56.0160 0x160c  C:\Windows\System32\wow64cpu.dll - ok

18:34:56.0162 0x160c  [ 365A5034093AD9E04F433046C4CDF6AB, 5D5B30A883B273D59C6C64286E0BA79DA0BDF1B7EBC791278248A9196701DDDF ] C:\Windows\SysWOW64\kernel32.dll

18:34:56.0162 0x160c  C:\Windows\SysWOW64\kernel32.dll - ok

18:34:56.0165 0x160c  [ 1B7343C3765638D4D17CB925F84F8ABE, FDD4F8B409A6C6870C56BBCDCD07902D825FCB13ABB316FD804B6AAAF996600B ] C:\Windows\SysWOW64\KernelBase.dll

18:34:56.0165 0x160c  C:\Windows\SysWOW64\KernelBase.dll - ok

18:34:56.0167 0x160c  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll

18:34:56.0168 0x160c  C:\Windows\SysWOW64\setupapi.dll - ok

18:34:56.0171 0x160c  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll

18:34:56.0171 0x160c  C:\Windows\SysWOW64\cfgmgr32.dll - ok

18:34:56.0174 0x160c  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll

18:34:56.0174 0x160c  C:\Windows\SysWOW64\msvcrt.dll - ok

18:34:56.0176 0x160c  [ 4DC999CED9429939D75682EBD7D48901, 4E2DB6E4C500980488010AF1125A73D0F958889379F05DB304A220B4BB2D1834 ] C:\Windows\SysWOW64\rpcrt4.dll

18:34:56.0177 0x160c  C:\Windows\SysWOW64\rpcrt4.dll - ok

18:34:56.0179 0x160c  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll

18:34:56.0179 0x160c  C:\Windows\SysWOW64\cryptbase.dll - ok

18:34:56.0182 0x160c  [ 42B924C5F3924C1EB2539F22C10D7DF1, 5C922A6B9F4B5320ECEF67E81B37E6736BF01AF964A6966E24C8B29D0DDDDA3B ] C:\Windows\SysWOW64\sspicli.dll

18:34:56.0183 0x160c  C:\Windows\SysWOW64\sspicli.dll - ok

18:34:56.0186 0x160c  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll

18:34:56.0186 0x160c  C:\Windows\SysWOW64\advapi32.dll - ok

18:34:56.0189 0x160c  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll

18:34:56.0189 0x160c  C:\Windows\SysWOW64\sechost.dll - ok

18:34:56.0191 0x160c  [ 56E3313690866F99CD17AA1342F64AE1, 4AD4E105C1A6E9BAB9568CA21B15A38C59702EF605AA9058490C56DA070CF846 ] C:\Windows\SysWOW64\gdi32.dll

18:34:56.0191 0x160c  C:\Windows\SysWOW64\gdi32.dll - ok

18:34:56.0194 0x160c  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll

18:34:56.0194 0x160c  C:\Windows\SysWOW64\user32.dll - ok

18:34:56.0197 0x160c  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll

18:34:56.0197 0x160c  C:\Windows\SysWOW64\lpk.dll - ok

18:34:56.0199 0x160c  [ B7230010D97787AF3D25E4C82F2B06B9, C795E9811CD461F8E98D1738667EB0C265A57065EA3420CE596D5038E7430C1E ] C:\Windows\SysWOW64\usp10.dll

18:34:56.0199 0x160c  C:\Windows\SysWOW64\usp10.dll - ok

18:34:56.0202 0x160c  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll

18:34:56.0202 0x160c  C:\Windows\SysWOW64\oleaut32.dll - ok

18:34:56.0205 0x160c  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll

18:34:56.0205 0x160c  C:\Windows\SysWOW64\ole32.dll - ok

18:34:56.0208 0x160c  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll

18:34:56.0208 0x160c  C:\Windows\SysWOW64\devobj.dll - ok

18:34:56.0211 0x160c  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll

18:34:56.0211 0x160c  C:\Windows\SysWOW64\imm32.dll - ok

18:34:56.0214 0x160c  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll

18:34:56.0214 0x160c  C:\Windows\SysWOW64\version.dll - ok

18:34:56.0217 0x160c  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll

18:34:56.0217 0x160c  C:\Windows\SysWOW64\msctf.dll - ok

18:34:56.0221 0x160c  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe

18:34:56.0221 0x160c  C:\Windows\System32\audiodg.exe - ok

18:34:56.0223 0x160c  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll

18:34:56.0223 0x160c  C:\Windows\SysWOW64\wintrust.dll - ok

18:34:56.0226 0x160c  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll

18:34:56.0226 0x160c  C:\Windows\SysWOW64\crypt32.dll - ok

18:34:56.0229 0x160c  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll

18:34:56.0229 0x160c  C:\Windows\SysWOW64\msasn1.dll - ok

18:34:56.0232 0x160c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll

18:34:56.0232 0x160c  C:\Windows\System32\themeservice.dll - ok

18:34:56.0235 0x160c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll

18:34:56.0235 0x160c  C:\Windows\System32\gpsvc.dll - ok

18:34:56.0237 0x160c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll

18:34:56.0237 0x160c  C:\Windows\System32\es.dll - ok

18:34:56.0240 0x160c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll

18:34:56.0240 0x160c  C:\Windows\System32\Sens.dll - ok

18:34:56.0243 0x160c  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv

18:34:56.0243 0x160c  C:\Windows\System32\wdmaud.drv - ok

18:34:56.0245 0x160c  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll

18:34:56.0245 0x160c  C:\Windows\System32\ksuser.dll - ok

18:34:56.0248 0x160c  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv

18:34:56.0248 0x160c  C:\Windows\System32\msacm32.drv - ok

18:34:56.0251 0x160c  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll

18:34:56.0251 0x160c  C:\Windows\System32\comres.dll - ok

18:34:56.0254 0x160c  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll

18:34:56.0254 0x160c  C:\Windows\System32\dsrole.dll - ok

18:34:56.0256 0x160c  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll

18:34:56.0256 0x160c  C:\Windows\System32\nlaapi.dll - ok

18:34:56.0259 0x160c  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll

18:34:56.0259 0x160c  C:\Windows\System32\slc.dll - ok

18:34:56.0262 0x160c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll

18:34:56.0262 0x160c  C:\Windows\System32\netprofm.dll - ok

18:34:56.0265 0x160c  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll

18:34:56.0265 0x160c  C:\Windows\System32\UXInit.dll - ok

18:34:56.0269 0x160c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll

18:34:56.0269 0x160c  C:\Windows\System32\wlansvc.dll - ok

18:34:56.0272 0x160c  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll

18:34:56.0272 0x160c  C:\Windows\System32\AudioEng.dll - ok

18:34:56.0275 0x160c  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll

18:34:56.0275 0x160c  C:\Windows\System32\WMALFXGFXDSP.dll - ok

18:34:56.0278 0x160c  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll

18:34:56.0278 0x160c  C:\Windows\System32\mfplat.dll - ok

18:34:56.0281 0x160c  [ 0FA1025D7AC725EEA5EA3076965EEA6B, 80AFCFD77BCE07F34C1276F5F416A156ABB9FEDC2AAF7AE68CEA500A4468D125 ] C:\Program Files\Sandboxie\SbieSvc.exe

18:34:56.0281 0x160c  C:\Program Files\Sandboxie\SbieSvc.exe - ok

18:34:56.0284 0x160c  [ C271AB9E42DAE1A1B4A8263D5D48E012, 612710CDCDEF569B7AFF97DCCFD909CAFB60C647A357D28E8AFB72A5B685BAA4 ] C:\Program Files\Sandboxie\SbieDll.dll

18:34:56.0284 0x160c  C:\Program Files\Sandboxie\SbieDll.dll - ok

18:34:56.0287 0x160c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll

18:34:56.0287 0x160c  C:\Windows\System32\uxsms.dll - ok

18:34:56.0290 0x160c  [ 64A14D7A28C7FEA8DB495F7FEDD302B6, 73C0DFA74FAC61F2CB13267785FAB6CA2BADF3234CDA91EBF867671FE7C6C982 ] C:\Windows\System32\imapo64.dll

18:34:56.0290 0x160c  C:\Windows\System32\imapo64.dll - ok

18:34:56.0292 0x160c  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll

18:34:56.0293 0x160c  C:\Windows\System32\msacm32.dll - ok

18:34:56.0295 0x160c  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll

18:34:56.0295 0x160c  C:\Windows\System32\midimap.dll - ok

18:34:56.0298 0x160c  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll

18:34:56.0298 0x160c  C:\Windows\System32\oleacc.dll - ok

18:34:56.0301 0x160c  [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll

18:34:56.0301 0x160c  C:\Windows\System32\UIAutomationCore.dll - ok

18:34:56.0304 0x160c  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL

18:34:56.0304 0x160c  C:\Windows\System32\IPHLPAPI.DLL - ok

18:34:56.0307 0x160c  [ 90F4D286C592EE0AD634A87EE4DAF24E, 0B200F2BE23D1F8673BF66E71EB67A3588C47AC7B3B5E0370FE2C74B16BCD496 ] C:\Windows\System32\imthx64.dll

18:34:56.0307 0x160c  C:\Windows\System32\imthx64.dll - ok

18:34:56.0310 0x160c  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll

18:34:56.0310 0x160c  C:\Windows\System32\winnsi.dll - ok

18:34:56.0312 0x160c  [ EF90FD1AA4B9ED4B0372E4BCAC761126, FD118A32643AE325D1CE98E2B7F971A02F7193A7185E1AD6F301C857B2E1CA83 ] C:\Windows\System32\AESTAR64.dll

18:34:56.0312 0x160c  C:\Windows\System32\AESTAR64.dll - ok

18:34:56.0315 0x160c  [ 5C69600A340125A83051334B23CF187B, AD9D6348F16B1C6F6582B4B19DDE1DB1F0223833DEA5A4AF105C6B626ED24B4A ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll

18:34:56.0316 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok

18:34:56.0319 0x160c  [ 558C42D165DB5799B4072DC0A9C27C0B, 2385E16ACF07252D5567EC091C1B39D39BB8199F60854D5A91EDC948C57B3A3F ] C:\Windows\System32\msdmo.dll

18:34:56.0319 0x160c  C:\Windows\System32\msdmo.dll - ok

18:34:56.0322 0x160c  [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll

18:34:56.0322 0x160c  C:\Program Files\Windows Defender\MpEvMsg.dll - ok

18:34:56.0325 0x160c  [ E20128053F3F4641A2627ECFA7149ECA, CE5620BC170E76E53FEDCCEE12BBFBEE7C67B96E53E5D9C63FA7773C36699DC6 ] C:\Program Files\Sandboxie\SbieDrv.sys

18:34:56.0325 0x160c  C:\Program Files\Sandboxie\SbieDrv.sys - ok

18:34:56.0329 0x160c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys

18:34:56.0329 0x160c  C:\Windows\System32\drivers\fltMgr.sys - ok

18:34:56.0332 0x160c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys

18:34:56.0332 0x160c  C:\Windows\System32\drivers\lltdio.sys - ok

18:34:56.0335 0x160c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys

18:34:56.0335 0x160c  C:\Windows\System32\drivers\nwifi.sys - ok

18:34:56.0338 0x160c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys

18:34:56.0338 0x160c  C:\Windows\System32\drivers\ndisuio.sys - ok

18:34:56.0340 0x160c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys

18:34:56.0341 0x160c  C:\Windows\System32\drivers\rspndr.sys - ok

18:34:56.0343 0x160c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll

18:34:56.0343 0x160c  C:\Windows\System32\dhcpcore.dll - ok

18:34:56.0346 0x160c  [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] C:\Windows\System32\drivers\TurboB.sys

18:34:56.0346 0x160c  C:\Windows\System32\drivers\TurboB.sys - ok

18:34:56.0350 0x160c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll

18:34:56.0350 0x160c  C:\Windows\System32\lmhsvc.dll - ok

18:34:56.0353 0x160c  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll

18:34:56.0353 0x160c  C:\Windows\System32\nrpsrv.dll - ok

18:34:56.0356 0x160c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll

18:34:56.0356 0x160c  C:\Windows\System32\nsisvc.dll - ok

18:34:56.0358 0x160c  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL

18:34:56.0358 0x160c  C:\Windows\System32\PSHED.DLL - ok

18:34:56.0361 0x160c  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll

18:34:56.0361 0x160c  C:\Windows\System32\AUDIOKSE.dll - ok

18:34:56.0364 0x160c  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll

18:34:56.0364 0x160c  C:\Windows\System32\dhcpcore6.dll - ok

18:34:56.0366 0x160c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll

18:34:56.0367 0x160c  C:\Windows\System32\dnsrslvr.dll - ok

18:34:56.0370 0x160c  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll

18:34:56.0370 0x160c  C:\Windows\System32\eapphost.dll - ok

18:34:56.0373 0x160c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll

18:34:56.0373 0x160c  C:\Windows\System32\eapsvc.dll - ok

18:34:56.0375 0x160c  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll

18:34:56.0375 0x160c  C:\Windows\System32\keyiso.dll - ok

18:34:56.0378 0x160c  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL

18:34:56.0378 0x160c  C:\Windows\System32\FWPUCLNT.DLL - ok

18:34:56.0381 0x160c  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll

18:34:56.0381 0x160c  C:\Windows\System32\umb.dll - ok

18:34:56.0384 0x160c  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll

18:34:56.0384 0x160c  C:\Windows\System32\wlanmsm.dll - ok

18:34:56.0387 0x160c  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll

18:34:56.0387 0x160c  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok

18:34:56.0390 0x160c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll

18:34:56.0390 0x160c  C:\Windows\System32\MPSSVC.dll - ok

18:34:56.0393 0x160c  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll

18:34:56.0393 0x160c  C:\Windows\System32\wlansec.dll - ok

18:34:56.0396 0x160c  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll

18:34:56.0396 0x160c  C:\Windows\System32\dhcpcsvc.dll - ok

18:34:56.0398 0x160c  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll

18:34:56.0398 0x160c  C:\Windows\System32\dnsext.dll - ok

18:34:56.0401 0x160c  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll

18:34:56.0401 0x160c  C:\Windows\System32\onex.dll - ok

18:34:56.0404 0x160c  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll

18:34:56.0404 0x160c  C:\Windows\System32\dhcpcsvc6.dll - ok

18:34:56.0407 0x160c  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll

18:34:56.0407 0x160c  C:\Windows\System32\eappprxy.dll - ok

18:34:56.0410 0x160c  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll

18:34:56.0410 0x160c  C:\Windows\System32\eappcfg.dll - ok

18:34:56.0412 0x160c  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll

18:34:56.0412 0x160c  C:\Windows\System32\l2gpstore.dll - ok

18:34:56.0415 0x160c  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll

18:34:56.0415 0x160c  C:\Windows\System32\wlgpclnt.dll - ok

18:34:56.0418 0x160c  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll

18:34:56.0418 0x160c  C:\Windows\System32\WinSCard.dll - ok

18:34:56.0421 0x160c  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll

18:34:56.0421 0x160c  C:\Windows\System32\wlanutil.dll - ok

18:34:56.0423 0x160c  [ 99B91C5D2FCEF218CAD3600ECB62A799, E28F2903F86D39C5A69B5F89CCD6594E93A1BF1E4ACD613A0F2E2348DFA88D65 ] C:\Windows\System32\msxml6.dll

18:34:56.0424 0x160c  C:\Windows\System32\msxml6.dll - ok

18:34:56.0426 0x160c  [ 3CE92053AD1000B95E7BE1E93CDA9AE3, 705DDC8E9AF08688B3194E2B623CBCFD85CC1AAD9BE106BBC618B9EBADEAE933 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll

18:34:56.0426 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll - ok

18:34:56.0429 0x160c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll

18:34:56.0429 0x160c  C:\Windows\System32\shsvcs.dll - ok

18:34:56.0432 0x160c  [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe

18:34:56.0432 0x160c  C:\Windows\System32\wlanext.exe - ok

18:34:56.0436 0x160c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll

18:34:56.0436 0x160c  C:\Windows\System32\schedsvc.dll - ok

18:34:56.0438 0x160c  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe

18:34:56.0439 0x160c  C:\Windows\System32\conhost.exe - ok

18:34:56.0441 0x160c  [ EF3D4E21691E5E51057ECA0A29DB743B, 488603F5BB299F1883086A697DC7884C8C995BB27356C2C64F07D8B7D49A67E5 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll

18:34:56.0442 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok

18:34:56.0445 0x160c  [ BAAB0A603C510D6202C47F992EB396FC, 86A7F94ECEE52F8262A7BFBD7B9EE1E6FC4AC8F0E014DA10B4D19111C7686C05 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll

18:34:56.0445 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll - ok

18:34:56.0448 0x160c  [ E8FCDAC15AB6B25611B4CA18FF9C72DF, 6EF9D10EB7A70B4842C1AAE711F42EED9BC4FB27EF2B5B6888363ED71700E47B ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll

18:34:56.0448 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll - ok

18:34:56.0451 0x160c  [ 8CEF53DF5240A13B194D38A48ED58124, 2C6CDE79F28468ECD38170ADD84BC34EC34BAB137CAD5F16109322BDC0146DD2 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll

18:34:56.0452 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok

18:34:56.0455 0x160c  [ 33FD2D719594DC9F49B80CE125D4B433, E40AC5E5D00BA67A285602BE6C5EF9095F7F9D30A728B223D63B45F874D9DF12 ] C:\Windows\System32\pstorec.dll

18:34:56.0455 0x160c  C:\Windows\System32\pstorec.dll - ok

18:34:56.0459 0x160c  [ 90FA302AE78086A4BA865353CDD7DBF5, 8461DE2B9A82540A20E15BBFD440D1E3CE21211F5AE64C9CBDFD33FCB929A5AC ] C:\Windows\System32\iwmssvc.dll

18:34:56.0459 0x160c  C:\Windows\System32\iwmssvc.dll - ok

18:34:56.0462 0x160c  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll

18:34:56.0462 0x160c  C:\Windows\System32\ktmw32.dll - ok

18:34:56.0465 0x160c  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll

18:34:56.0465 0x160c  C:\Windows\System32\taskcomp.dll - ok

18:34:56.0467 0x160c  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll

18:34:56.0467 0x160c  C:\Windows\System32\fveapi.dll - ok

18:34:56.0471 0x160c  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll

18:34:56.0471 0x160c  C:\Windows\System32\tbs.dll - ok

18:34:56.0473 0x160c  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll

18:34:56.0474 0x160c  C:\Windows\System32\fvecerts.dll - ok

18:34:56.0476 0x160c  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll

18:34:56.0476 0x160c  C:\Windows\System32\wiarpc.dll - ok

18:34:56.0479 0x160c  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe

18:34:56.0479 0x160c  C:\Windows\System32\taskeng.exe - ok

18:34:56.0482 0x160c  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll

18:34:56.0482 0x160c  C:\Windows\System32\imageres.dll - ok

18:34:56.0486 0x160c  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll

18:34:56.0486 0x160c  C:\Windows\System32\TSChannel.dll - ok

18:34:56.0489 0x160c  [ 96F9B56907FC386120CC1A9AB45DB6D0, 25C98861D34F64D683C57D36EECA167FB2283F18C6506A0A595CE81EEBBF28A7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slhlim64.dll

18:34:56.0489 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slhlim64.dll - ok

18:34:56.0492 0x160c  [ D099BD4ED0A1AABE8663E7E0B33C0BEF, 4C436F5D4368E2C8F125F2E7F6A873C5E59FEE9491852FDA9DBCA384D410EFBF ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slinit64.dll

18:34:56.0492 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slinit64.dll - ok

18:34:56.0495 0x160c  [ 5C96498E1BF3F1FCC8A209046FF98B6F, 9DFCC628C07E39AC65F52B5A24A547560BB81DD2FC279B9624AA60226AF8A8AF ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll

18:34:56.0495 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll - ok

18:34:56.0498 0x160c  [ CDF00E68ED34B38C056BBD96856C5230, 3E32E8472B3882C190E3BEFC5EFC00E0FCC202BEBE6C4D7C3A3925FFD3E695C3 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slprop64.dll

18:34:56.0498 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slprop64.dll - ok

18:34:56.0501 0x160c  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll

18:34:56.0501 0x160c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok

18:34:56.0504 0x160c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys

18:34:56.0504 0x160c  C:\Windows\System32\drivers\http.sys - ok

18:34:56.0507 0x160c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe

18:34:56.0507 0x160c  C:\Windows\System32\spoolsv.exe - ok

18:34:56.0510 0x160c  [ 8F70355F1E98FF7406A8069589DDD60F, F80A117C76A503797E12AEF6AD05A07B06EA6C307A9C562161F8E474EEA0304D ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll

18:34:56.0510 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok

18:34:56.0513 0x160c  [ 89597F4EF5F63DD13D74C0EEFFC03FCF, 0FB301FE1DABF9E9B74BC8396FB66C5E790DCA6ACD08ACF73BAC4E72237A8632 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll

18:34:56.0513 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll - ok

18:34:56.0516 0x160c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL

18:34:56.0516 0x160c  C:\Windows\System32\BFE.DLL - ok

18:34:56.0520 0x160c  [ 233131BA24FB2FE8E7EB8A638F23FF39, 829F2794721A19C4F548EA1CA804CBBAB7B853FAC4155A4B1545BDEE4CD936E7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll

18:34:56.0520 0x160c  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll - ok

18:34:56.0522 0x160c  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll

18:34:56.0522 0x160c  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok

18:34:56.0525 0x160c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys

18:34:56.0525 0x160c  C:\Windows\System32\drivers\bowser.sys - ok

18:34:56.0528 0x160c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys

18:34:56.0528 0x160c  C:\Windows\System32\drivers\mpsdrv.sys - ok

18:34:56.0531 0x160c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys

18:34:56.0531 0x160c  C:\Windows\System32\drivers\mrxsmb.sys - ok

18:34:56.0534 0x160c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys

18:34:56.0534 0x160c  C:\Windows\System32\drivers\mrxsmb10.sys - ok

18:34:56.0537 0x160c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys

18:34:56.0537 0x160c  C:\Windows\System32\drivers\mrxsmb20.sys - ok

18:34:56.0540 0x160c  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll

18:34:56.0540 0x160c  C:\Windows\System32\wfapigp.dll - ok

18:34:56.0542 0x160c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll

18:34:56.0542 0x160c  C:\Windows\System32\wkssvc.dll - ok

18:34:56.0545 0x160c  [ 581D88B25C4D4121824FED2CA38E562F, 838FFC4270ED32858A4AC14B389DEA1ECCCAAFC94BEAF683F8976B5F5A91DD15 ] C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

18:34:56.0545 0x160c  C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE - ok

18:34:56.0548 0x160c  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll

18:34:56.0548 0x160c  C:\Windows\System32\mscms.dll - ok

18:34:56.0551 0x160c  [ 1474F121C3DF1232D3E7239C03691EE6, 26D0F55010CB7C51269D94ECB5C5AA94802607685B9E9791A78B643C6227214F ] C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe

18:34:56.0551 0x160c  C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe - ok

18:34:56.0555 0x160c  [ 232C0B9155F6A2C3736A9488F0C456DA, 4025F4B1CF25534A3273FD672DE0368B78EB13DCE4CD6B67BB13688F621DCBE3 ] C:\Program Files (x86)\Adobe\Elements 9 Organizer\platform.DLL

18:34:56.0555 0x160c  C:\Program Files (x86)\Adobe\Elements 9 Organizer\platform.DLL - ok

18:34:56.0558 0x160c  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll

18:34:56.0558 0x160c  C:\Windows\SysWOW64\mswsock.dll - ok

18:34:56.0561 0x160c  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll

18:34:56.0561 0x160c  C:\Windows\SysWOW64\ws2_32.dll - ok

18:34:56.0564 0x160c  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll

18:34:56.0564 0x160c  C:\Windows\SysWOW64\nsi.dll - ok

18:34:56.0567 0x160c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll

18:34:56.0567 0x160c  C:\Windows\System32\pcasvc.dll - ok

18:34:56.0570 0x160c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe

18:34:56.0570 0x160c  C:\Windows\System32\snmptrap.exe - ok

18:34:56.0573 0x160c  [ 10EAB90C1AE8271B5FE5A8930987EE5C, 53E72964AA75526B161F859A509CB046809AE47C65DC998F0E49AC8AED9066EA ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll

18:34:56.0573 0x160c  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok

18:34:56.0576 0x160c  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll

18:34:56.0576 0x160c  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok

18:34:56.0579 0x160c  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll

18:34:56.0579 0x160c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok

18:34:56.0582 0x160c  [ E9A0777DCA9148157E0EF9B71D7DE353, 954A9A1BC2EF83705AFF479DAFD51C18752AEEB2DE7A7DADD1A0E5A1971868DB ] C:\Windows\System32\RdpGroupPolicyExtension.dll

18:34:56.0582 0x160c  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok

18:34:56.0584 0x160c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll

18:34:56.0585 0x160c  C:\Windows\System32\provsvc.dll - ok

18:34:56.0587 0x160c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll

18:34:56.0587 0x160c  C:\Windows\System32\sstpsvc.dll - ok

18:34:56.0590 0x160c  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll

18:34:56.0590 0x160c  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok

18:34:56.0593 0x160c  [ E02781D4871844DCD30DF1D69A650F78, DC77302F06CD6CF7FC2C3B0F433A4AE41DF869B9F342C0656CCD8A125B3D3318 ] C:\Windows\SysWOW64\shell32.dll

18:34:56.0593 0x160c  C:\Windows\SysWOW64\shell32.dll - ok

18:34:56.0596 0x160c  [ 7595386AFBA54A95AFF3BDD3FA5FFC48, EF2E0DF287AF95855B6B13173259DF847A2CB8A1872BA3D4573E82ABD4FB9699 ] C:\Windows\System32\mfc100.dll

18:34:56.0596 0x160c  C:\Windows\System32\mfc100.dll - ok

18:34:56.0599 0x160c  [ 366FD6F3A451351B5DF2D7C4ECF4C73A, AE3CB6C6AFBA9A4AA5C85F66023C35338CA579B30326DD02918F9D55259503D5 ] C:\Windows\System32\msvcr100.dll

18:34:56.0599 0x160c  C:\Windows\System32\msvcr100.dll - ok

18:34:56.0602 0x160c  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll

18:34:56.0602 0x160c  C:\Windows\System32\msimg32.dll - ok

18:34:56.0604 0x160c  [ D029339C0F59CF662094EDDF8C42B2B5, 934D882EFD3C0F3F1EFBC238EF87708F3879F5BB456D30AF62F3368D58B6AA4C ] C:\Windows\System32\msvcp100.dll

18:34:56.0605 0x160c  C:\Windows\System32\msvcp100.dll - ok

18:34:56.0607 0x160c  [ 5E2F28A979A0CE9B43F1815A593617C5, CE0905A140D0F72775EA5895C01910E4A492F39C2E35EDCE9E9B8886A9821FB1 ] C:\Windows\System32\mfc100enu.dll

18:34:56.0607 0x160c  C:\Windows\System32\mfc100enu.dll - ok

18:34:56.0610 0x160c  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll

18:34:56.0610 0x160c  C:\Windows\System32\wlanapi.dll - ok

18:34:56.0613 0x160c  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll

18:34:56.0613 0x160c  C:\Windows\SysWOW64\shlwapi.dll - ok

18:34:56.0616 0x160c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

18:34:56.0616 0x160c  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok

18:34:56.0619 0x160c  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll

18:34:56.0619 0x160c  C:\Windows\SysWOW64\ntmarta.dll - ok

18:34:56.0622 0x160c  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll

18:34:56.0622 0x160c  C:\Windows\SysWOW64\profapi.dll - ok

18:34:56.0625 0x160c  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll

18:34:56.0625 0x160c  C:\Windows\SysWOW64\Wldap32.dll - ok

18:34:56.0628 0x160c  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] C:\Program Files\IDT\WDM\AESTSr64.exe

18:34:56.0628 0x160c  C:\Program Files\IDT\WDM\AESTSr64.exe - ok

18:34:56.0631 0x160c  [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

18:34:56.0631 0x160c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok

18:34:56.0634 0x160c  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll

18:34:56.0634 0x160c  C:\Windows\SysWOW64\msvcp100.dll - ok

18:34:56.0637 0x160c  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll

18:34:56.0637 0x160c  C:\Windows\SysWOW64\msvcr100.dll - ok

18:34:56.0640 0x160c  [ 29158B1DC3F86D4B0D6A127FE586ADFF, 03C17FA518200CE5C53AED55C5AF22D0A2D483110FB1E7EA6F990C56936570E6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll

18:34:56.0640 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok

18:34:56.0643 0x160c  [ B18663FEBCDF060FCD182CBE1C1C6F1A, 3E0AA063E0322E74CD250653365F425F2BF9EE020C3FC0C2A9540011A7912E72 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll

18:34:56.0643 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok

18:34:56.0646 0x160c  [ 461299398E15909598B7002B3FAABCE8, 1965E672088268C91848A100D77A6CD6E689589185B528DD9E0907ED1AD60771 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll

18:34:56.0646 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok

18:34:56.0650 0x160c  [ EA6C35EBF9F3ED65724E1D65F09E6E7F, D39DD2D98277B0136C47E3C762E76EB12D6BDB79151F673E681B7EA49EBC6A6F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll

18:34:56.0650 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok

18:34:56.0653 0x160c  [ 8EAEB0ED23A98DE0F0C812D756E47CE9, D49AB526C0B0356AB1F778E3B6AFC4D148742942F8561C9C4C2183A649661A86 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll

18:34:56.0653 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok

18:34:56.0656 0x160c  [ 5760B2B5BAA3449C045B6FA222205F60, AC566245868530F6A8F80BEA9C6AB532DB2280F280CA4889C09BCCA9D057C1D4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll

18:34:56.0656 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok

18:34:56.0659 0x160c  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll

18:34:56.0660 0x160c  C:\Windows\SysWOW64\winmm.dll - ok

18:34:56.0663 0x160c  [ BCE7DD8098CE6DD28EE2B0D5D5028B47, C48E1E455A0C6FC351CA2A8938C78D6D278B753FA7A621628B4E843C3A8F02FE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll

18:34:56.0663 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok

18:34:56.0668 0x160c  [ 922563953E405AA9762F90778B711F77, 3DD35372DFC79F309BF419E9BF0043D1B1E00EDC47DCFF4D669416BDD5B094C5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll

18:34:56.0668 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok

18:34:56.0671 0x160c  [ 54023DF1A9A7D481B4762B09ECCA330F, 271B46804B2E944B7ABF707939CB498AE78B0EE6DDCE318E26BE0C7BA826DFA3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll

18:34:56.0671 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll - ok

18:34:56.0674 0x160c  [ 3452419032093CAB86ED6F5885B01F89, 8CB0919181741359D4D9B8F9B0390DE4D8339DD6DA22BA5F6754DD595B60C475 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll

18:34:56.0674 0x160c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok

18:34:56.0677 0x160c  [ 78B5B7A7932CFED6BE0DE992D8D94746, AC5EBE90DA16B3887CE7D8DD1684D3F5126BF4753213A12A37FB5ABC35DC533C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll

18:34:56.0677 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok

18:34:56.0680 0x160c  [ 062373995EAE5F0EAC9EAA9192136BFB, 0392D5656BD677C4C5CB74C96E7B85B0867F2535A37950AEC7F5C4A1A70D19AE ] C:\Windows\SysWOW64\dnssd.dll

18:34:56.0680 0x160c  C:\Windows\SysWOW64\dnssd.dll - ok

18:34:56.0684 0x160c  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll

18:34:56.0684 0x160c  C:\Windows\SysWOW64\userenv.dll - ok

18:34:56.0687 0x160c  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll

18:34:56.0687 0x160c  C:\Windows\SysWOW64\wsock32.dll - ok

18:34:56.0690 0x160c  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll

18:34:56.0690 0x160c  C:\Windows\SysWOW64\wtsapi32.dll - ok

18:34:56.0693 0x160c  [ DD09DA7F16575E5402D9891AD1C317CE, 573CA0D26ED687C336895C244913BB1327463A1693A951324AE0DFE892F677D1 ] C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe

18:34:56.0693 0x160c  C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe - ok

18:34:56.0696 0x160c  [ 9C8E85B318BE2619170D7A9D684CDFB5, F0F75AD61EB038A1A2CFA24D1D06E98E2EFB35A7F749B11F70505481E7AE5F8B ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll

18:34:56.0697 0x160c  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok

18:34:56.0699 0x160c  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL

18:34:56.0699 0x160c  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok

18:34:56.0702 0x160c  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv

18:34:56.0702 0x160c  C:\Windows\System32\winspool.drv - ok

18:34:56.0705 0x160c  [ 65608C44E71D7BA056C9EFCD8A00A7FE, A6B581A8354C7E2902AA1FFDD87C9465EFA2CD75A920CE3098E774292E4825CE ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe

18:34:56.0705 0x160c  C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe - ok

18:34:56.0708 0x160c  [ A6C29DB53ECA94FA8591C5388D604B82, F25E95BA669422286A8FA3A68E0C639A2F06319B6DC8FA641C965CFB27A50BD6 ] C:\Windows\SysWOW64\msi.dll

18:34:56.0708 0x160c  C:\Windows\SysWOW64\msi.dll - ok

18:34:56.0711 0x160c  [ 9C89246184979A070B0C6CCF61C68136, 409D5CB32E803B623F79A0CBAB094D33B078ED164002687B1CEA236E2B77C7D8 ] C:\Windows\SysWOW64\wininet.dll

18:34:56.0711 0x160c  C:\Windows\SysWOW64\wininet.dll - ok

18:34:56.0714 0x160c  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

18:34:56.0714 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok

18:34:56.0717 0x160c  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

18:34:56.0717 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok

18:34:56.0720 0x160c  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

18:34:56.0720 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok

18:34:56.0723 0x160c  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

18:34:56.0723 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok

18:34:56.0726 0x160c  [ 34CBED7698D557DDB43F8732FBC2ACB9, 2406E009E037F0C577984792FD41CECD96078AA8B6EAC9207051CDE8DBED89CD ] C:\Windows\SysWOW64\iertutil.dll

18:34:56.0726 0x160c  C:\Windows\SysWOW64\iertutil.dll - ok

18:34:56.0729 0x160c  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll

18:34:56.0729 0x160c  C:\Windows\SysWOW64\winhttp.dll - ok

18:34:56.0731 0x160c  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll

18:34:56.0731 0x160c  C:\Windows\SysWOW64\webio.dll - ok

18:34:56.0734 0x160c  [ 725AB72D5DD462F2EDAF1A6C59C8CFB5, 2420B0D7D132444E79B646787B1B6D89F45C6188E03FC1A4467B154D4774EFC3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

18:34:56.0734 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok

18:34:56.0738 0x160c  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

18:34:56.0738 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok

18:34:56.0741 0x160c  [ 7F5061210C2B7A91F4B58602DFE32E6C, 9F7BDFD6CAA9B24C166C12799C8D9650C219F2DDE52A84745CFED6177B595E40 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll

18:34:56.0741 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok

18:34:56.0744 0x160c  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\SysWOW64\cabinet.dll

18:34:56.0744 0x160c  C:\Windows\SysWOW64\cabinet.dll - ok

18:34:56.0747 0x160c  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll

18:34:56.0747 0x160c  C:\Windows\SysWOW64\clbcatq.dll - ok

18:34:56.0750 0x160c  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll

18:34:56.0750 0x160c  C:\Windows\SysWOW64\psapi.dll - ok

18:34:56.0753 0x160c  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll

18:34:56.0753 0x160c  C:\Windows\SysWOW64\SensApi.dll - ok

18:34:56.0756 0x160c  [ E4561704CBFA193761743E5AF746C669, DCABD67A2B988BEF70BDD0613B4271BCFD572FAF8018CFA2EA60B8AEFE08C73B ] C:\Windows\SysWOW64\msxml3.dll

18:34:56.0756 0x160c  C:\Windows\SysWOW64\msxml3.dll - ok

18:34:56.0758 0x160c  [ 5D9DC6332A4FC66388B09BBE7CF53750, 497961D2ED6C83E1198C3706E4A6CB8B01FE55FCD96E19EEB279352CF56679C1 ] C:\Windows\SysWOW64\urlmon.dll

18:34:56.0758 0x160c  C:\Windows\SysWOW64\urlmon.dll - ok

18:34:56.0761 0x160c  [ 4EDB186C455CDEADA24A708AAB884AE3, 836B3176A4A1B57F89D5B950BDA2F6C6F785899ED54632D8CF35DF55B364DB81 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

18:34:56.0761 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok

18:34:56.0764 0x160c  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL

18:34:56.0764 0x160c  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok

18:34:56.0767 0x160c  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll

18:34:56.0767 0x160c  C:\Windows\SysWOW64\winnsi.dll - ok

18:34:56.0770 0x160c  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

18:34:56.0770 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok

18:34:56.0773 0x160c  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

18:34:56.0773 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok

18:34:56.0777 0x160c  [ EAADD6E47ED2A7003ACE1793B98CF63F, EE090284CA4595B6A140949A41025926CEC3CCACCD2931B6AC77A1E14D20E5B4 ] C:\Windows\SysWOW64\msxml6.dll

18:34:56.0777 0x160c  C:\Windows\SysWOW64\msxml6.dll - ok

18:34:56.0780 0x160c  [ 57A6362D71B5003C48EE21F2DBB624B1, E6480D1F219BF3F8E7AC8347A8C50E48632B7BBC9618EEB36DAEA1079AA770B5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll

18:34:56.0780 0x160c  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok

18:34:56.0783 0x160c  [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\SysWOW64\credssp.dll

18:34:56.0783 0x160c  C:\Windows\SysWOW64\credssp.dll - ok

18:34:56.0786 0x160c  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll

18:34:56.0786 0x160c  C:\Windows\SysWOW64\cryptsp.dll - ok

18:34:56.0789 0x160c  [ 5FF7B9916A10E8E69E7C0D16F0B4787A, BD4DCCFF789A1899A7A97BCDEB0EF4A448AB2E49FD586742DDBA33905A6D1875 ] C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe

18:34:56.0789 0x160c  C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe - ok

18:34:56.0793 0x160c  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv

18:34:56.0793 0x160c  C:\Windows\SysWOW64\winspool.drv - ok

18:34:56.0796 0x160c  [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\SysWOW64\bthprops.cpl

18:34:56.0796 0x160c  C:\Windows\SysWOW64\bthprops.cpl - ok

18:34:56.0799 0x160c  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll

18:34:56.0799 0x160c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok

18:34:56.0802 0x160c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe

18:34:56.0802 0x160c  C:\Program Files\Bonjour\mDNSResponder.exe - ok

18:34:56.0805 0x160c  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll

18:34:56.0805 0x160c  C:\Windows\SysWOW64\rsaenh.dll - ok

18:34:56.0808 0x160c  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll

18:34:56.0808 0x160c  C:\Windows\SysWOW64\RpcRtRemote.dll - ok

18:34:56.0811 0x160c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] C:\Windows\System32\bthserv.dll

18:34:56.0811 0x160c  C:\Windows\System32\bthserv.dll - ok

18:34:56.0814 0x160c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll

18:34:56.0814 0x160c  C:\Windows\System32\cryptsvc.dll - ok

18:34:56.0816 0x160c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll

18:34:56.0816 0x160c  C:\Windows\System32\dps.dll - ok

18:34:56.0819 0x160c  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll

18:34:56.0819 0x160c  C:\Windows\System32\shfolder.dll - ok

18:34:56.0822 0x160c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] C:\Windows\ehome\ehrecvr.exe

18:34:56.0823 0x160c  C:\Windows\ehome\ehrecvr.exe - ok

18:34:56.0825 0x160c  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll

18:34:56.0825 0x160c  C:\Windows\System32\cryptnet.dll - ok

18:34:56.0828 0x160c  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll

18:34:56.0828 0x160c  C:\Windows\System32\taskschd.dll - ok

18:34:56.0831 0x160c  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll

18:34:56.0831 0x160c  C:\Windows\System32\vssapi.dll - ok

18:34:56.0833 0x160c  [ 4D842C5081F06E61BFF461CF87D13525, DAEAAC69D12DCC86891E88B22D130900F2AD4AA8D3CABA6F6059C38D4BF03498 ] C:\Windows\ehome\ehtrace.dll

18:34:56.0833 0x160c  C:\Windows\ehome\ehtrace.dll - ok

18:34:56.0836 0x160c  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll

18:34:56.0836 0x160c  C:\Windows\System32\vsstrace.dll - ok

18:34:56.0839 0x160c  [ C07D5582F2107ACAB4564E1DAE977C64, A9AE53F7D23DDC96A05F3B93F547ABD1896233F3D835C6B07AD9E9781788BC32 ] C:\Windows\ehome\ehprivjob.exe

18:34:56.0839 0x160c  C:\Windows\ehome\ehprivjob.exe - ok

18:34:56.0841 0x160c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] C:\Windows\ehome\ehsched.exe

18:34:56.0841 0x160c  C:\Windows\ehome\ehsched.exe - ok

18:34:56.0844 0x160c  [ 6EB16C7286FBCD3AB206743BA813EC48, DF0BEDEF0205C940A4F14E196CDF4626DDCA6C8BEDF2C414CF7BB89303272C0E ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe

18:34:56.0844 0x160c  C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok

18:34:56.0847 0x160c  [ D20FCB6844840554C1D79C28CE2BFE00, D7F8A7548A84AA6C1C94AB6CA851C00E1F76DAEC832661190E820B1CFD33B216 ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll

18:34:56.0847 0x160c  C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok

18:34:56.0849 0x160c  [ A5AE40808B72A25379A5499AD9977743, A38E9E93BB5A43D14E21DC9F2FE2C6A7C4A6599EDDA9D6E4B6C35908EDADEAB2 ] C:\Windows\System32\sbe.dll

18:34:56.0849 0x160c  C:\Windows\System32\sbe.dll - ok

18:34:56.0852 0x160c  [ DB76DB15EFC6E4D1153A6C5BC895948D, 71DDF02C7EE2DF66A08F1A2A08DA39802C354624880A2BE93A706EA7476422A3 ] C:\Windows\System32\sppc.dll

18:34:56.0852 0x160c  C:\Windows\System32\sppc.dll - ok

18:34:56.0855 0x160c  [ 9E0FF5DDD8B908DA5611445C35D6CD24, 2BA7EDFE35EA4CAE6A920541566F0A8359C223F055183710D549E2EA83166790 ] C:\Windows\System32\slcext.dll

18:34:56.0855 0x160c  C:\Windows\System32\slcext.dll - ok

18:34:56.0858 0x160c  [ 6F5BE3F67D7F66FFA861ABBFC6A8C973, 0D01568C0ABE1682DE8AFDCB1D5421E1AA9AFBC11714B801FE886455B4F76385 ] C:\Windows\System32\sppcext.dll

18:34:56.0858 0x160c  C:\Windows\System32\sppcext.dll - ok

18:34:56.0861 0x160c  [ 0191E738BF521FE6EC567148E73C086B, 86685DF7156ED76473617DC7690CF2686E11EAE0DD6DAE291CBA423F563ACCB1 ] C:\Windows\System32\MSVidCtl.dll

18:34:56.0861 0x160c  C:\Windows\System32\MSVidCtl.dll - ok

18:34:56.0864 0x160c  [ 44A8B9185030EA57F7999383643ADFFB, A37251ACC8BB1CD4DCD9398F0B470E123839D37187239C94F2F0CF7D22F529EC ] C:\Windows\System32\quartz.dll

18:34:56.0864 0x160c  C:\Windows\System32\quartz.dll - ok

18:34:56.0867 0x160c  [ 46767946E7B559D981C1DC04EC0AB36F, 69137AA9AEF9727FFD1B65AA4D658C6E8AAD3A062717B447260502B4D7DB90C6 ] C:\Windows\System32\devenum.dll

18:34:56.0867 0x160c  C:\Windows\System32\devenum.dll - ok

18:34:56.0871 0x160c  [ D38535978F93F9FC9F28BE6093A87DBE, AD56F5A81C0D046C473D666D2CE7C5A49EA2ACAE937E7DC8924D17800C91B5D7 ] C:\Windows\System32\msdri.dll

18:34:56.0871 0x160c  C:\Windows\System32\msdri.dll - ok

18:34:56.0873 0x160c  [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll

18:34:56.0873 0x160c  C:\Windows\System32\upnp.dll - ok

18:34:56.0875 0x160c  [ 73A023532B87CBB4F014227DA4F367A8, D7D6091BEEE82FED85D344B54BED05D9C98EDFC3DDDEAA6A5D140D1B0E252DC2 ] C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll

18:34:56.0876 0x160c  C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll - ok

18:34:56.0879 0x160c  [ A151C6C8E357B219D68BCC299752B614, 614F0552B055E3D86710BA901F2540ACED5764220B2BDC3A02CFF7DF374E6344 ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll

18:34:56.0879 0x160c  C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok

18:34:56.0882 0x160c  [ 7168BD208A230F45DCFCE2560E7F4A24, D2B4D8E36B8B7B0E94AEF04F6A26A7C1CD9DE1FB458DB770E9108477EF0E86BB ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll

18:34:56.0882 0x160c  C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll - ok

18:34:56.0885 0x160c  [ 6D8976BF5FE429DCB555D24113C547AA, F7530DB191F2528D64179B7ADB2EDC8B1192056F2AA83CD92EC8BE2F3B0FD195 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll

18:34:56.0885 0x160c  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok

18:34:56.0888 0x160c  [ 5706B33A889E30676871E36293B81358, D3AA9EE077009CA7E304EACD01637394E9B1492535D11C59B829607DA91F7994 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll

18:34:56.0888 0x160c  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok

18:34:56.0892 0x160c  [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] C:\Program Files\Intel\iCLS Client\HeciServer.exe

18:34:56.0892 0x160c  C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok

18:34:56.0895 0x160c  [ 05594BDB92880D61D33AC49694318777, C89D909B76F147BA5DCB613615B43F2BADBAEC1B4F65FCC928CE296D98E82E8D ] C:\Program Files\Intel\WiFi\bin\iWrap.exe

18:34:56.0895 0x160c  C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok

18:34:56.0898 0x160c  [ F480D0CFC2ADFAB058A1F11B89F781C9, DBDF0436CB58D3594666AE726B68FF59E657CDBC598E34CC65C27E28423E2614 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll

18:34:56.0898 0x160c  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok

18:34:56.0901 0x160c  [ 7D6E01ECD0DB185ABE02A63224B3E685, C25DF9EFDDFA638C285F875132D0A34C89CFFA37FF2C295F2D964391DE8B35A5 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll

18:34:56.0901 0x160c  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok

18:34:56.0904 0x160c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll

18:34:56.0904 0x160c  C:\Windows\System32\FDResPub.dll - ok

18:34:56.0908 0x160c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL

18:34:56.0908 0x160c  C:\Windows\System32\IKEEXT.DLL - ok

18:34:56.0910 0x160c  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll

18:34:56.0910 0x160c  C:\Windows\System32\WSDApi.dll - ok

18:34:56.0912 0x160c  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll

18:34:56.0912 0x160c  C:\Windows\System32\netcfgx.dll - ok

18:34:56.0915 0x160c  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll

18:34:56.0915 0x160c  C:\Windows\System32\webservices.dll - ok

18:34:56.0928 0x160c  [ 5C83E2DE29D603259AF04273D6485A42, 530DA9AEA7D05E4BAA1BF48C6B5D71704931AB27A09B16A301CB162ABC2A2976 ] C:\Windows\System32\drivers\mfeapfk.sys

18:34:56.0928 0x160c  C:\Windows\System32\drivers\mfeapfk.sys - ok

18:34:56.0931 0x160c  [ 7CF636B453743A1A9A437AC451F7B819, B5764981567DA846E61B6DDC7EADF15BC9E6882B41205D67A5A91E9EAC0161A8 ] C:\Windows\System32\mfevtps.exe

18:34:56.0931 0x160c  C:\Windows\System32\mfevtps.exe - ok

18:34:56.0933 0x160c  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll

18:34:56.0933 0x160c  C:\Windows\System32\vpnikeapi.dll - ok

18:34:56.0936 0x160c  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll

18:34:56.0936 0x160c  C:\Windows\System32\sfc.dll - ok

18:34:56.0939 0x160c  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll

18:34:56.0939 0x160c  C:\Windows\System32\sfc_os.dll - ok

18:34:56.0942 0x160c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll

18:34:56.0942 0x160c  C:\Windows\System32\nlasvc.dll - ok

18:34:56.0945 0x160c  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll

18:34:56.0945 0x160c  C:\Windows\System32\oledlg.dll - ok

18:34:56.0948 0x160c  [ 187E0B872232A2D0057D09F453EDADA4, 50BC32C5ABE93B6EE8183EB7646E4DD0FF8ABED32797A78E6D8237B20B1CCDD7 ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll

18:34:56.0948 0x160c  C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok

18:34:56.0950 0x160c  [ FB24438F64BAF5198EE7648B51FD3AB0, 69FC832A234847FFBC7691144F4ED21D28322BFEA13D15A98FEF79CF6B59A595 ] C:\Windows\System32\cacls.exe

18:34:56.0950 0x160c  C:\Windows\System32\cacls.exe - ok

18:34:56.0953 0x160c  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll

18:34:56.0953 0x160c  C:\Windows\System32\aepic.dll - ok

18:34:56.0956 0x160c  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll

18:34:56.0956 0x160c  C:\Windows\System32\winhttp.dll - ok

18:34:56.0959 0x160c  [ C92A993F7F0BD57F837A7097FCF7195B, D396D1A074FC50E7118869B383E0CCA07B494F1982086ADC84D3220C286AADF5 ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll

18:34:56.0959 0x160c  C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok

18:34:56.0962 0x160c  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll

18:34:56.0962 0x160c  C:\Windows\System32\ncsi.dll - ok

18:34:56.0965 0x160c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys

18:34:56.0966 0x160c  C:\Windows\System32\drivers\PEAuth.sys - ok

18:34:56.0968 0x160c  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll

18:34:56.0969 0x160c  C:\Windows\System32\fundisc.dll - ok

18:34:56.0972 0x160c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] C:\Windows\System32\drivers\vwifimp.sys

18:34:56.0972 0x160c  C:\Windows\System32\drivers\vwifimp.sys - ok

18:34:56.0975 0x160c  [ D03EA89F23445A9A6CB9A06C92B76104, 70E296F66F73E4BFC3755501AA473120C3B25F83F50BD114ECA688DECAA9DF0A ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll

18:34:56.0975 0x160c  C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok

18:34:56.0978 0x160c  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll

18:34:56.0978 0x160c  C:\Windows\System32\webio.dll - ok

18:34:56.0981 0x160c  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll

18:34:56.0981 0x160c  C:\Windows\System32\ssdpapi.dll - ok

18:34:56.0983 0x160c  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll

18:34:56.0984 0x160c  C:\Windows\System32\httpapi.dll - ok

18:34:56.0987 0x160c  [ 3BDCBB29D727C49DC3E3256253467281, 60E2505E662967064BFAC71568508212993D518E48A6477831DFA34863714B93 ] C:\Windows\System32\wmdrmsdk.dll

18:34:56.0987 0x160c  C:\Windows\System32\wmdrmsdk.dll - ok

18:34:56.0990 0x160c  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

18:34:56.0990 0x160c  C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe - ok

18:34:56.0993 0x160c  [ F09087C51C6AE42AE7DABE1EB3E44C17, DAE1CB123EA830DFCB68FD34A95FC427755FBBAD7AD16EE3F0D4941A25AD49F4 ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

18:34:56.0993 0x160c  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok

18:34:56.0996 0x160c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys

18:34:56.0997 0x160c  C:\Windows\System32\drivers\secdrv.sys - ok

18:34:56.0999 0x160c  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll

18:34:56.0999 0x160c  C:\Windows\System32\aeevts.dll - ok

18:34:57.0003 0x160c  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe

18:34:57.0003 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok

18:34:57.0006 0x160c  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll

18:34:57.0006 0x160c  C:\Windows\System32\wsock32.dll - ok

18:34:57.0010 0x160c  [ 0443D203AB7F9C476DE6398520715ECD, 08317F5D8109A1228A07C3F4276570E23A6E70D228E1AA880E97B0F64553499D ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll

18:34:57.0010 0x160c  C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok

18:34:57.0013 0x160c  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe

18:34:57.0013 0x160c  C:\Windows\System32\dllhost.exe - ok

18:34:57.0016 0x160c  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll

18:34:57.0016 0x160c  C:\Windows\System32\IDStore.dll - ok

18:34:57.0022 0x160c  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe

18:34:57.0022 0x160c  C:\Windows\System32\taskhost.exe - ok

18:34:57.0026 0x160c  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll

18:34:57.0026 0x160c  C:\Windows\SysWOW64\winsta.dll - ok

18:34:57.0032 0x160c  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll

18:34:57.0032 0x160c  C:\Windows\System32\mpr.dll - ok

18:34:57.0034 0x160c  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll

18:34:57.0035 0x160c  C:\Windows\System32\PlaySndSrv.dll - ok

18:34:57.0038 0x160c  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe

18:34:57.0038 0x160c  C:\Windows\System32\userinit.exe - ok

18:34:57.0041 0x160c  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe

18:34:57.0041 0x160c  C:\Windows\System32\dwm.exe - ok

18:34:57.0044 0x160c  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll

18:34:57.0044 0x160c  C:\Windows\System32\MsCtfMonitor.dll - ok

18:34:57.0046 0x160c  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll

18:34:57.0047 0x160c  C:\Windows\System32\msutb.dll - ok

18:34:57.0049 0x160c  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll

18:34:57.0050 0x160c  C:\Windows\System32\HotStartUserAgent.dll - ok

18:34:57.0053 0x160c  [ E14EC69620F1924A3318C3D7CA9A02B6, DBC7A44BFF3A9A8CCD4ECCED5DF0C2447A4869553A2FB6585AC8595E9072E7E0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll

18:34:57.0053 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok

18:34:57.0056 0x160c  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll

18:34:57.0056 0x160c  C:\Windows\System32\netshell.dll - ok

18:34:57.0059 0x160c  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll

18:34:57.0059 0x160c  C:\Windows\System32\dwmredir.dll - ok

18:34:57.0064 0x160c  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll

18:34:57.0064 0x160c  C:\Windows\SysWOW64\wbemcomn.dll - ok

18:34:57.0068 0x160c  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll

18:34:57.0068 0x160c  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok

18:34:57.0071 0x160c  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll

18:34:57.0071 0x160c  C:\Windows\System32\dwmcore.dll - ok

18:34:57.0074 0x160c  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll

18:34:57.0074 0x160c  C:\Windows\System32\d3d10_1.dll - ok

18:34:57.0077 0x160c  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll

18:34:57.0077 0x160c  C:\Windows\System32\d3d10_1core.dll - ok

18:34:57.0080 0x160c  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll

18:34:57.0080 0x160c  C:\Windows\System32\dxgi.dll - ok

18:34:57.0083 0x160c  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll

18:34:57.0083 0x160c  C:\Windows\System32\d3d11.dll - ok

18:34:57.0086 0x160c  [ 64EE0E4F0149A5DC07E8BCE712257740, 4E238ACEFB0C11148D3CA7FE2B3274406B15CAB40F63D7122CEA8028490B2B92 ] C:\Windows\System32\igd10umd64.dll

18:34:57.0086 0x160c  C:\Windows\System32\igd10umd64.dll - ok

18:34:57.0088 0x160c  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll

18:34:57.0088 0x160c  C:\Windows\System32\uDWM.dll - ok

18:34:57.0091 0x160c  [ 405E7F781E829EE0026B72F253B775F5, ADF8F8D2508F8D9E3685B4BACCA1506DFD2D697F90CE871100B1B23FF21FB14C ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll

18:34:57.0091 0x160c  C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok

18:34:57.0094 0x160c  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll

18:34:57.0094 0x160c  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok

18:34:57.0097 0x160c  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll

18:34:57.0097 0x160c  C:\Windows\System32\esent.dll - ok

18:34:57.0100 0x160c  [ 5C4F36D7579746D8D137F1917EBD6D07, 6576661FF1D65035162A53ACD4E28DA10F13E516E71EA29AEA5D64901754AEF5 ] C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe

18:34:57.0100 0x160c  C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe - ok

18:34:57.0103 0x160c  [ 2A356FA2650E30E139F0476979548BF6, C11BC218A72A6978E0590FD09CC0EDD8800B497441777F2A282DAF8F14F5AB76 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe

18:34:57.0103 0x160c  C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok

18:34:57.0106 0x160c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

18:34:57.0106 0x160c  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok

18:34:57.0109 0x160c  [ 094A47AB1D4966C8CD318AD7EB1521A6, 202743FE75FBE844557DC669B384ED9DD4CB6EBCCCA471B52761BA2B91773CB7 ] C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

18:34:57.0109 0x160c  C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe - ok

18:34:57.0111 0x160c  [ 28AD5E311996A34025CFB07E131058DD, 89C8B29105DE5917A33A7682C8A62CB543609F1227A4890D7130646A0F54D946 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

18:34:57.0112 0x160c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok

18:34:57.0114 0x160c  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll

18:34:57.0114 0x160c  C:\Windows\SysWOW64\uxtheme.dll - ok

18:34:57.0117 0x160c  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe

18:34:57.0117 0x160c  C:\Windows\explorer.exe - ok

18:34:57.0121 0x160c  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll

18:34:57.0121 0x160c  C:\Windows\SysWOW64\comdlg32.dll - ok

18:34:57.0124 0x160c  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll

18:34:57.0124 0x160c  C:\Windows\SysWOW64\msimg32.dll - ok

18:34:57.0127 0x160c  [ A43B937C580F5DFC43EF63EF72992FE9, 1B1C9B434BF12D39B2CC750AABB953169E3B43095827CD086750B2195BBC5B64 ] C:\Program Files (x86)\Google\Update\1.3.22.5\goopdate.dll

18:34:57.0127 0x160c  C:\Program Files (x86)\Google\Update\1.3.22.5\goopdate.dll - ok

18:34:57.0130 0x160c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] C:\Program Files (x86)\Skype\Updater\Updater.exe

18:34:57.0130 0x160c  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok

18:34:57.0133 0x160c  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll

18:34:57.0133 0x160c  C:\Windows\System32\wbem\wbemprox.dll - ok

18:34:57.0136 0x160c  [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll

18:34:57.0136 0x160c  C:\Program Files\Bonjour\mdnsNSP.dll - ok

18:34:57.0139 0x160c  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll

18:34:57.0139 0x160c  C:\Windows\SysWOW64\riched20.dll - ok

18:34:57.0142 0x160c  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll

18:34:57.0142 0x160c  C:\Windows\System32\localspl.dll - ok

18:34:57.0145 0x160c  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll

18:34:57.0145 0x160c  C:\Windows\System32\rasadhlp.dll - ok

18:34:57.0148 0x160c  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll

18:34:57.0148 0x160c  C:\Windows\SysWOW64\oledlg.dll - ok

18:34:57.0151 0x160c  [ A6154A954F08E99D27CEA4D3B9563172, 11D6FA5C15B7E1E03449A910E58AAE52EFE97AA1989A8A1D9B3E2EB715FFC58A ] C:\Windows\SysWOW64\newdev.dll

18:34:57.0151 0x160c  C:\Windows\SysWOW64\newdev.dll - ok

18:34:57.0154 0x160c  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll

18:34:57.0154 0x160c  C:\Windows\System32\ExplorerFrame.dll - ok

18:34:57.0156 0x160c  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll

18:34:57.0156 0x160c  C:\Windows\SysWOW64\devrtl.dll - ok

18:34:57.0159 0x160c  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll

18:34:57.0159 0x160c  C:\Windows\SysWOW64\apphelp.dll - ok

18:34:57.0162 0x160c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] C:\Windows\System32\sppsvc.exe

18:34:57.0162 0x160c  C:\Windows\System32\sppsvc.exe - ok

18:34:57.0164 0x160c  [ B3DC2359FA6E58C753ABE9D6F13B3608, B21984C2C1111698B9C1067EEBCAFAD6F78BAEF5D9487550BB814B3A5257555C ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe

18:34:57.0164 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok

18:34:57.0166 0x160c  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll

18:34:57.0167 0x160c  C:\Windows\SysWOW64\netapi32.dll - ok

18:34:57.0169 0x160c  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll

18:34:57.0169 0x160c  C:\Windows\SysWOW64\mscoree.dll - ok

18:34:57.0172 0x160c  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll

18:34:57.0172 0x160c  C:\Windows\SysWOW64\imagehlp.dll - ok

18:34:57.0175 0x160c  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll

18:34:57.0175 0x160c  C:\Windows\SysWOW64\netutils.dll - ok

18:34:57.0178 0x160c  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll

18:34:57.0178 0x160c  C:\Windows\SysWOW64\srvcli.dll - ok

18:34:57.0181 0x160c  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll

18:34:57.0181 0x160c  C:\Windows\SysWOW64\wkscli.dll - ok

18:34:57.0184 0x160c  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll

18:34:57.0184 0x160c  C:\Windows\SysWOW64\cscapi.dll - ok

18:34:57.0187 0x160c  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll

18:34:57.0187 0x160c  C:\Windows\SysWOW64\propsys.dll - ok

18:34:57.0190 0x160c  [ E0564E0B6D729D7D25B3C3F71CEDEC21, A8D1214580389912C70A40AE271BB2BB10EFD936310C16952AA4586C1180C642 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll

18:34:57.0190 0x160c  C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok

18:34:57.0193 0x160c  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll

18:34:57.0193 0x160c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok

18:34:57.0196 0x160c  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll

18:34:57.0196 0x160c  C:\Windows\SysWOW64\dbghelp.dll - ok

18:34:57.0199 0x160c  [ EBDD3032297EF6832A1D6D3AA6DC3537, 9B637CFF4C3E0B4621C911F57E17024BD47FC96F26F320FED72694414EB145F7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe

18:34:57.0199 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok

18:34:57.0202 0x160c  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll

18:34:57.0202 0x160c  C:\Windows\System32\spoolss.dll - ok

18:34:57.0205 0x160c  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll

18:34:57.0205 0x160c  C:\Windows\System32\FXSMON.dll - ok

18:34:57.0208 0x160c  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll

18:34:57.0208 0x160c  C:\Windows\System32\PrintIsolationProxy.dll - ok

18:34:57.0211 0x160c  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll

18:34:57.0211 0x160c  C:\Windows\System32\tcpmon.dll - ok

18:34:57.0213 0x160c  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll

18:34:57.0213 0x160c  C:\Windows\System32\snmpapi.dll - ok

18:34:57.0216 0x160c  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll

18:34:57.0216 0x160c  C:\Windows\System32\wsnmp32.dll - ok

18:34:57.0219 0x160c  [ 9839C4217EBD9A6B84B60FF2FBD9B1A5, C1299764B7284F7B6490A51FB6BDE515E3F380D7B3BA9343E7100D9EBB776177 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe

18:34:57.0220 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok

18:34:57.0222 0x160c  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll

18:34:57.0222 0x160c  C:\Windows\System32\usbmon.dll - ok

18:34:57.0225 0x160c  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll

18:34:57.0225 0x160c  C:\Windows\System32\WSDMon.dll - ok

18:34:57.0228 0x160c  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll

18:34:57.0228 0x160c  C:\Windows\System32\fdPnp.dll - ok

18:34:57.0231 0x160c  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll

18:34:57.0231 0x160c  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok

18:34:57.0234 0x160c  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll

18:34:57.0234 0x160c  C:\Windows\System32\win32spl.dll - ok

18:34:57.0237 0x160c  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll

18:34:57.0237 0x160c  C:\Windows\System32\mscoree.dll - ok

18:34:57.0240 0x160c  [ C98ACDE22458C8F46FD0503CB9E2D01F, C3B06C13F2EC3DCD6B91F02D11204FE06FBEE6C673E8CDEF1134C764250438AA ] C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe

18:34:57.0240 0x160c  C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe - ok

18:34:57.0243 0x160c  [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll

18:34:57.0243 0x160c  C:\Windows\System32\inetpp.dll - ok

18:34:57.0245 0x160c  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll

18:34:57.0246 0x160c  C:\Windows\System32\cscapi.dll - ok

18:34:57.0248 0x160c  [ 79FA7D8B488F90EDE325963379A6F738, 90E0F2022D1697D5FEBE00AAB7D7E232AE42EA2AB243CD132B3BB739A6987CDD ] C:\Windows\SysWOW64\ieframe.dll

18:34:57.0248 0x160c  C:\Windows\SysWOW64\ieframe.dll - ok

18:34:57.0251 0x160c  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll

18:34:57.0251 0x160c  C:\Windows\System32\wbemcomn.dll - ok

18:34:57.0254 0x160c  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll

18:34:57.0254 0x160c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok

18:34:57.0258 0x160c  [ CD4F7B90CB09831BCDEDE0A206CCDB35, 938FCE84B91950D557CD9381210D282FDEB30F2E9A73BCDEF170CC5A59F47E8C ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe

18:34:57.0258 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok

18:34:57.0261 0x160c  [ 84174CA0E190BB9D1EFD0F005FE13B35, B0146E651DAD4A8050FAF70026F1B7CE16EF454EB6E31088CDEBE3CD57E6591C ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll



#14 maestrale

maestrale
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:09:54 AM

Posted 05 March 2014 - 03:05 PM

TDSKiller log (part 4):

 

18:34:57.0261 0x160c  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok

18:34:57.0264 0x160c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys

18:34:57.0264 0x160c  C:\Windows\System32\drivers\srvnet.sys - ok

18:34:57.0267 0x160c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys

18:34:57.0267 0x160c  C:\Windows\System32\drivers\tcpipreg.sys - ok

18:34:57.0270 0x160c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll

18:34:57.0270 0x160c  C:\Windows\System32\sysmain.dll - ok

18:34:57.0273 0x160c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll

18:34:57.0273 0x160c  C:\Windows\System32\wiaservc.dll - ok

18:34:57.0276 0x160c  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll

18:34:57.0276 0x160c  C:\Windows\System32\wiatrace.dll - ok

18:34:57.0279 0x160c  [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys

18:34:57.0279 0x160c  C:\Windows\System32\drivers\spsys.sys - ok

18:34:57.0282 0x160c  [ 7E236CC26FF0C2513819FA453E2C5371, 45D3C83D60503A1D1F63398B2C8B7802C04B4E423A20F97FD15AECC994FB808F ] C:\Windows\System32\icaapi.dll

18:34:57.0282 0x160c  C:\Windows\System32\icaapi.dll - ok

18:34:57.0284 0x160c  [ 7CBB1D4D13DC62D7F529D87151FD3CD3, DA75C5E64777F6ACE6F77A72D3362A40F8BE59DF3E6BC83550A81D9E20730401 ] C:\Program Files\Windows Defender\MpSvc.dll

18:34:57.0284 0x160c  C:\Program Files\Windows Defender\MpSvc.dll - ok

18:34:57.0288 0x160c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll

18:34:57.0288 0x160c  C:\Windows\System32\trkwks.dll - ok

18:34:57.0291 0x160c  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

18:34:57.0291 0x160c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok

18:34:57.0294 0x160c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll

18:34:57.0294 0x160c  C:\Windows\System32\wbem\WMIsvc.dll - ok

18:34:57.0297 0x160c  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll

18:34:57.0297 0x160c  C:\Program Files\Windows Defender\MpClient.dll - ok

18:34:57.0300 0x160c  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll

18:34:57.0300 0x160c  C:\Windows\SysWOW64\oleacc.dll - ok

18:34:57.0303 0x160c  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll

18:34:57.0303 0x160c  C:\Windows\SysWOW64\dwmapi.dll - ok

18:34:57.0306 0x160c  [ 96C70BD48D49B87475F4572DEDC62EB9, DA841CEBDFF2C5821D4D3396BD9299940A4A2927C161554B66AB8F58CBF04467 ] C:\Windows\AppPatch\AcLayers.dll

18:34:57.0306 0x160c  C:\Windows\AppPatch\AcLayers.dll - ok

18:34:57.0309 0x160c  [ EA8B5B41163A06FFA8930F5316473035, 4F17F02AECBE5890ED5A2ECCEFDE519CB35754BE8ECE5F8ACC28410FC4774804 ] C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe

18:34:57.0309 0x160c  C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe - ok

18:34:57.0312 0x160c  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll

18:34:57.0312 0x160c  C:\Windows\SysWOW64\mstask.dll - ok

18:34:57.0315 0x160c  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

18:34:57.0315 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok

18:34:57.0318 0x160c  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll

18:34:57.0318 0x160c  C:\Windows\System32\dbghelp.dll - ok

18:34:57.0321 0x160c  [ 3F33D9CB732275D87D5E583CF87A6D3A, 9C2CB8909067517FECDE3CF69C01036AF2BC0A3D9BCFE000A361BBFCE22FCB13 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll

18:34:57.0321 0x160c  C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok

18:34:57.0324 0x160c  [ 372948BB5E41CE42341C4398DE572E56, A12A3CB0C04FD02A17E202FEE79EA1B4009DAE4B5DB8B9B9D4919D1FFB270CF3 ] C:\Windows\SysWOW64\secur32.dll

18:34:57.0324 0x160c  C:\Windows\SysWOW64\secur32.dll - ok

18:34:57.0326 0x160c  [ C863E5A2417DF0F2A31ED32C3B2CB23F, EC77B4DB94CF2D13304240CA7056C56BFFFF17BD7B93ADA4CA978723AEE3102C ] C:\Windows\SysWOW64\mshtml.dll

18:34:57.0327 0x160c  C:\Windows\SysWOW64\mshtml.dll - ok

18:34:57.0330 0x160c  [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll

18:34:57.0330 0x160c  C:\Windows\System32\sppwinob.dll - ok

18:34:57.0333 0x160c  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

18:34:57.0333 0x160c  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok

18:34:57.0337 0x160c  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll

18:34:57.0337 0x160c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok

18:34:57.0340 0x160c  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll

18:34:57.0340 0x160c  C:\Windows\SysWOW64\wship6.dll - ok

18:34:57.0344 0x160c  [ CE38536E05E23FE796C11AFFAB6FA842, C513ECE5B70D433C7D97009307C3CCFDD0E5ED77423AD57319EC8390DAEFD0BC ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll

18:34:57.0344 0x160c  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok

18:34:57.0348 0x160c  [ 09890A2F032B138A74B5DF2C1233FB1D, 41444DE5D883F252E343E0B980F1D0C6AAF43C4EBC146E8C1A6E87F3A173E526 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

18:34:57.0348 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok

18:34:57.0351 0x160c  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll

18:34:57.0351 0x160c  C:\Windows\SysWOW64\sfc.dll - ok

18:34:57.0355 0x160c  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll

18:34:57.0355 0x160c  C:\Windows\SysWOW64\sfc_os.dll - ok

18:34:57.0358 0x160c  [ 42EBC2ECBB81A0FFE720601500760C7E, 29960175ECB7459AB8EE9E238B66CF592255F333A63E9B6653C32091D73A830D ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe

18:34:57.0358 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok

18:34:57.0361 0x160c  [ 2B373B5F7E36B5ED5DA176D4400EF091, A7E220CC3661429D786693B277A7F39D5D9E24284B1D9E55DB6295AF7D97D104 ] C:\Windows\System32\sppobjs.dll

18:34:57.0361 0x160c  C:\Windows\System32\sppobjs.dll - ok

18:34:57.0364 0x160c  [ 65AF88D89E9F1F43198EB7D4DBF2E34B, F1E3BC3A4AF6D8481ACC2C20AAF99D63DC96B3B8163E4E503A1336188879367F ] C:\Program Files\Internet Explorer\sqmapi.dll

18:34:57.0364 0x160c  C:\Program Files\Internet Explorer\sqmapi.dll - ok

18:34:57.0366 0x160c  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll

18:34:57.0366 0x160c  C:\Windows\SysWOW64\mpr.dll - ok

18:34:57.0369 0x160c  [ 15B7225BBA691E4CF8A3D06238D46AE6, D9D10F3B6FF960373ECA79EA06383E9CAAEED5986C706967BF0A7B0714DE4FF2 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll

18:34:57.0369 0x160c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok

18:34:57.0372 0x160c  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll

18:34:57.0372 0x160c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok

18:34:57.0375 0x160c  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll

18:34:57.0375 0x160c  C:\Windows\System32\wbem\wbemcore.dll - ok

18:34:57.0378 0x160c  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll

18:34:57.0378 0x160c  C:\Windows\System32\wbem\WmiDcPrv.dll - ok

18:34:57.0381 0x160c  [ BF85366B209DFC11BAB31380C7C47E31, FCF733B04994664B17CD988B430D5C01AD9A02DF645342D0B8E387D49970D7FB ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe

18:34:57.0381 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok

18:34:57.0384 0x160c  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll

18:34:57.0384 0x160c  C:\Windows\System32\wbem\fastprox.dll - ok

18:34:57.0387 0x160c  [ 93C2D166F5C3C14B32B15184254049C3, 397879F4974CD03FBEE3DC3EA859F1BE3B9E3269603F053CE17DCBC384B83B34 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll

18:34:57.0387 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll - ok

18:34:57.0389 0x160c  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll

18:34:57.0390 0x160c  C:\Windows\System32\ntdsapi.dll - ok

18:34:57.0392 0x160c  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll

18:34:57.0392 0x160c  C:\Windows\System32\wbem\esscli.dll - ok

18:34:57.0395 0x160c  [ 780836BB63852990382DF27DE7FEFD20, 3BBBF787D5B383146AFDA55514A28764AE0CCD42C7F1298C94F0804DAE61D377 ] C:\Windows\System32\bcdedit.exe

18:34:57.0395 0x160c  C:\Windows\System32\bcdedit.exe - ok

18:34:57.0398 0x160c  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll

18:34:57.0398 0x160c  C:\Windows\System32\wbem\wbemsvc.dll - ok

18:34:57.0401 0x160c  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll

18:34:57.0401 0x160c  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok

18:34:57.0404 0x160c  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll

18:34:57.0404 0x160c  C:\Windows\SysWOW64\wbem\fastprox.dll - ok

18:34:57.0407 0x160c  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll

18:34:57.0407 0x160c  C:\Windows\SysWOW64\ntdsapi.dll - ok

18:34:57.0410 0x160c  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll

18:34:57.0410 0x160c  C:\Windows\System32\wbem\WinMgmtR.dll - ok

18:34:57.0413 0x160c  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL

18:34:57.0413 0x160c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok

18:34:57.0415 0x160c  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll

18:34:57.0415 0x160c  C:\Windows\System32\SensApi.dll - ok

18:34:57.0418 0x160c  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65, 914AD22D98975578BC14D821F72E8DFCE24F2092F9C299D24EBBAF5408FE8B8B ] C:\Windows\System32\wer.dll

18:34:57.0418 0x160c  C:\Windows\System32\wer.dll - ok

18:34:57.0421 0x160c  [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll

18:34:57.0421 0x160c  C:\Windows\System32\msvcr110_clr0400.dll - ok

18:34:57.0423 0x160c  [ A9F3BFC9345F49614D5859EC95B9E994, 306467D280E99D0616E839278A4DB5BED684F002AE284C3678CABB5251459CB3 ] C:\Program Files\Windows Media Player\wmpnetwk.exe

18:34:57.0423 0x160c  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok

18:34:57.0426 0x160c  [ B81737A402CA1BCEC7CDD33261E0D820, 60CDD7E71F3ED2B7933E0544B12EFB06D023895125DBCBF54053DE385F52E473 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\abf62e6545d2802fc60286678a67e6bf\mscorlib.ni.dll

18:34:57.0426 0x160c  C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\abf62e6545d2802fc60286678a67e6bf\mscorlib.ni.dll - ok

18:34:57.0429 0x160c  [ 6E9E439517D89EDC9A6CB1E94489620A, 2E56936B6780C7377DDF468EA5F4115BBBFE7B43E5813710621003F401E1F7ED ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll

18:34:57.0430 0x160c  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok

18:34:57.0433 0x160c  [ 47AC56BC5FA5D41F73940A02686627CB, D703882213C0B2972AA4A0D3608C4632477D4797961395158141FE8F6CF6EF2A ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll

18:34:57.0433 0x160c  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok

18:34:57.0436 0x160c  [ DC1BBA01FFB5745B8862931E7DE7304A, BE128A621B074FEB0EFEFD5642314E911C4D1EB07B175A502006CC9F53BB1CB4 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

18:34:57.0436 0x160c  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok

18:34:57.0439 0x160c  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll

18:34:57.0439 0x160c  C:\Windows\System32\wbem\wmiutils.dll - ok

18:34:57.0441 0x160c  [ 0D298133C359AB8CB9EB4FA178BF3947, C876CE5E463BB116E41D1C90105D75F2DFCAEBF5FDE2A68AED0D2988470CEB31 ] C:\Windows\System32\msxml3.dll

18:34:57.0442 0x160c  C:\Windows\System32\msxml3.dll - ok

18:34:57.0444 0x160c  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll

18:34:57.0444 0x160c  C:\Windows\System32\wbem\repdrvfs.dll - ok

18:34:57.0447 0x160c  [ 70A176BF2ED362862944C371838262F8, 7F54164AB73160826991B565D1B1804BA9F6223830503B5A4F84B7E8AEFAF6A1 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

18:34:57.0447 0x160c  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok

18:34:57.0450 0x160c  [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll

18:34:57.0450 0x160c  C:\Windows\System32\dssenh.dll - ok

18:34:57.0453 0x160c  [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\SysWOW64\ncrypt.dll

18:34:57.0453 0x160c  C:\Windows\SysWOW64\ncrypt.dll - ok

18:34:57.0455 0x160c  [ FE085839DF8AF76F958F0184E5C173B6, DAC508DEEB68961679AC370B9F45F939ADACADA20C8DFE231F720517C8FD8151 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\4d4a15d5d7968df7dedd4cf853848d90\System.ni.dll

18:34:57.0455 0x160c  C:\Windows\assembly\NativeImages_v4.0.30319_64\System\4d4a15d5d7968df7dedd4cf853848d90\System.ni.dll - ok

18:34:57.0459 0x160c  [ F2F7EED54D0970CACE9A579A562AFA7A, 0E4E2C139FEC9A65695C7A68DC26E110E2E47D899B7A011850AC94D9068802EB ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\7926c26400ff262c7fc48b729377085b\System.Drawing.ni.dll

18:34:57.0459 0x160c  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\7926c26400ff262c7fc48b729377085b\System.Drawing.ni.dll - ok

18:34:57.0462 0x160c  [ 3BDA50E1839E245BD83534F8DEAF9DFD, E9A01754DE05441A40BDD8E4AB3D7FE08FD050059021225205FC969FE2614449 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll

18:34:57.0462 0x160c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok

18:34:57.0465 0x160c  [ 22F7DE8F3E33AA52A80855B590464DFA, D11C0D0AB367D1E1EA7369A68A0FD5D1495017CE369548FE76B03D3A2A4ACE08 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll

18:34:57.0465 0x160c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok

18:34:57.0467 0x160c  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll

18:34:57.0468 0x160c  C:\Windows\System32\EhStorShell.dll - ok

18:34:57.0470 0x160c  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll

18:34:57.0471 0x160c  C:\Windows\System32\wbem\WmiPrvSD.dll - ok

18:34:57.0473 0x160c  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll

18:34:57.0473 0x160c  C:\Windows\System32\ncobjapi.dll - ok

18:34:57.0476 0x160c  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll

18:34:57.0476 0x160c  C:\Windows\System32\wbem\wbemess.dll - ok

18:34:57.0479 0x160c  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\SysWOW64\taskschd.dll

18:34:57.0479 0x160c  C:\Windows\SysWOW64\taskschd.dll - ok

18:34:57.0482 0x160c  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\SysWOW64\xmllite.dll

18:34:57.0482 0x160c  C:\Windows\SysWOW64\xmllite.dll - ok

18:34:57.0485 0x160c  [ 97BB37731F04CEBC15C4FD09C8CE5176, 432951DB264A1765BDFBE070DF25F6568842BFD2DBF0073644D1019FE9FFE66F ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL

18:34:57.0485 0x160c  C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok

18:34:57.0488 0x160c  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll

18:34:57.0488 0x160c  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok

18:34:57.0491 0x160c  [ 241AF87821FDA0F5792037B779F49BE0, B3F4FDA27430ACC6D6BC1C3CBD518B9CAE5BA0F22AB8917578A7F16270F94C8B ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll

18:34:57.0491 0x160c  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok

18:34:57.0494 0x160c  [ 57AC86AC664CC774C861DAB2B1D1E978, A3BB9203BA7B31A9E419F03C8902C656B0597B312B4E58A2B2D0163ECC9CEE67 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll

18:34:57.0494 0x160c  C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok

18:34:57.0497 0x160c  [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe

18:34:57.0497 0x160c  C:\Windows\System32\SearchIndexer.exe - ok

18:34:57.0500 0x160c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] C:\Windows\System32\wscsvc.dll

18:34:57.0500 0x160c  C:\Windows\System32\wscsvc.dll - ok

18:34:57.0503 0x160c  [ 423982DD851406A52B6399DDB196C606, 5FFBA6D1E9398E7C5D18553EE1C485F59174013622332F7BD8D461F707F1EC93 ] C:\Windows\System32\wmdrmdev.dll

18:34:57.0503 0x160c  C:\Windows\System32\wmdrmdev.dll - ok

18:34:57.0506 0x160c  [ 2189278AB7A6FA4428188606D93D202B, 3B5DB50D3BC4573597B14A9FDE66B5C7B884BECF5F9C7242B77EF6B9FC4AB8D6 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF

18:34:57.0507 0x160c  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok

18:34:57.0510 0x160c  [ 2C1055E2C6D42753241FB2A129136994, A8E858B4CB8E1E13C7574330C703E0060AEE8B7B19B682F9AE5B4A02BDC659E2 ] C:\Windows\System32\drmv2clt.dll

18:34:57.0510 0x160c  C:\Windows\System32\drmv2clt.dll - ok

18:34:57.0513 0x160c  [ 521202AA6F2B74FCCC6BC7E162109D71, 3B2F41EFDA68C82D9D50AF329AC9B403C806CBE74F87917CDB350E542ADDA017 ] C:\Windows\System32\wbem\unsecapp.exe

18:34:57.0513 0x160c  C:\Windows\System32\wbem\unsecapp.exe - ok

18:34:57.0516 0x160c  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll

18:34:57.0516 0x160c  C:\Windows\SysWOW64\bcrypt.dll - ok

18:34:57.0520 0x160c  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll

18:34:57.0520 0x160c  C:\Windows\SysWOW64\bcryptprimitives.dll - ok

18:34:57.0523 0x160c  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll

18:34:57.0523 0x160c  C:\Windows\SysWOW64\gpapi.dll - ok

18:34:57.0526 0x160c  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll

18:34:57.0526 0x160c  C:\Windows\SysWOW64\cryptnet.dll - ok

18:34:57.0529 0x160c  [ 09A116FB06C5E362EF8938D29CDAB27B, 887B39388C39FF262FBBE3047FA1F5F47EB649AF3D760865AFE614DE64160D33 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll

18:34:57.0529 0x160c  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok

18:34:57.0532 0x160c  [ 0F42F3605AB5C3679765FF1081275EF3, 50BD23EC2590C1083EA33E3D1E3448244A3D8995672DFB4DBC409E20FA9BF2FF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll

18:34:57.0532 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll - ok

18:34:57.0535 0x160c  [ 53FE14BD8160EBE29EF29B0A5366F34A, B3C76B38ED40610FDFCFE197BD92EACBCDFAA9F6CC27479C2E38B70570E02F85 ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll

18:34:57.0535 0x160c  C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok

18:34:57.0538 0x160c  [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll

18:34:57.0538 0x160c  C:\Windows\System32\tquery.dll - ok

18:34:57.0541 0x160c  [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll

18:34:57.0541 0x160c  C:\Windows\System32\mssrch.dll - ok

18:34:57.0544 0x160c  [ 5BCB1F6CB749B6826BE1C0F16FF2F600, EF36100ACC0591EB4E04D52E57423E43E331B5D5BA8DFF5854285198931CD3EE ] C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

18:34:57.0544 0x160c  C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe - ok

18:34:57.0547 0x160c  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll

18:34:57.0547 0x160c  C:\Windows\System32\msidle.dll - ok

18:34:57.0550 0x160c  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui

18:34:57.0550 0x160c  C:\Windows\System32\en-US\tquery.dll.mui - ok

18:34:57.0553 0x160c  [ 73A157E519DDA71B793E2AA8AB9FE3CB, 1F1624CAF88993DC7452575FA864B9D7AAEA04DDC7D9CE817A4378FE4F502EFE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\b0f9a4f138cc569a7526f97b93808d3e\System.Web.Services.ni.dll

18:34:57.0553 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\b0f9a4f138cc569a7526f97b93808d3e\System.Web.Services.ni.dll - ok

18:34:57.0556 0x160c  [ 20427929646784A482DF34EF8C4FED23, CC57C0ECDA99630F2315C2450EE2CB5A3525A2F825E5344988841710A4DD2BB2 ] C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe

18:34:57.0556 0x160c  C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe - ok

18:34:57.0559 0x160c  [ D8E026EB443B8701BBCD6A984C305A2D, ACBDCE5A003447E8707E69201D7734246BA8AD602609E4657A63A218A0B45A07 ] C:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll

18:34:57.0559 0x160c  C:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll - ok

18:34:57.0562 0x160c  [ 8CC33F757E817C7C03C6A5F7FDF85F09, C120CA09A37CAD9DD39B59B9C99476B38E666B32A907D68495F9E568DA5CE694 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll

18:34:57.0562 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll - ok

18:34:57.0565 0x160c  [ 2D394AB4EF56D0F3FD453637A9C7466F, EFBCA046C4D5B343A86418E9DAD03CF020B530EB000480363EB527AC859B981A ] C:\Program Files\mcafee\msc\McAPExe.exe

18:34:57.0565 0x160c  C:\Program Files\mcafee\msc\McAPExe.exe - ok

18:34:57.0568 0x160c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll

18:34:57.0568 0x160c  C:\Windows\System32\iphlpsvc.dll - ok

18:34:57.0571 0x160c  [ 065FED87FC6EEBD129B099476D1406B9, F476B41A119BC88C3085B4E3A6ADCBA6DF588D58628F7CB24CBAEE482347B93D ] C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe

18:34:57.0571 0x160c  C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe - ok

18:34:57.0574 0x160c  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll

18:34:57.0574 0x160c  C:\Windows\System32\sqmapi.dll - ok

18:34:57.0576 0x160c  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll

18:34:57.0576 0x160c  C:\Windows\System32\ntshrui.dll - ok

18:34:57.0579 0x160c  [ 9D73799180793E3D5D5089438AF5EA3D, B6925F5120A89D6382D185312A9BB4E2421701D04BD37636202B0E40BA7B3B02 ] C:\Program Files\Common Files\mcafee\AMCore\quarantine.dll

18:34:57.0579 0x160c  C:\Program Files\Common Files\mcafee\AMCore\quarantine.dll - ok

18:34:57.0582 0x160c  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll

18:34:57.0582 0x160c  C:\Windows\System32\wdscore.dll - ok

18:34:57.0585 0x160c  [ 16A0B5DE88ECBB8144A52D4DF350DF0A, FBA0D41825DA5FCE03A3A33E9620D7DB70F3B0F24E13B2D45198A8E092517F57 ] C:\Program Files\Common Files\mcafee\AMCore\mfezip.dll

18:34:57.0585 0x160c  C:\Program Files\Common Files\mcafee\AMCore\mfezip.dll - ok

18:34:57.0588 0x160c  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll

18:34:57.0588 0x160c  C:\Windows\System32\IconCodecService.dll - ok

18:34:57.0591 0x160c  [ 0BC27553F4537D628BF8711AF31FB717, 032C347F23EEB9BF76352C8926E9FF697D93BA0648B53AA6DCE8F3F45B58BD31 ] C:\Program Files\Common Files\mcafee\AMCore\mfeunzip.dll

18:34:57.0591 0x160c  C:\Program Files\Common Files\mcafee\AMCore\mfeunzip.dll - ok

18:34:57.0594 0x160c  [ AC122407B29378FF9646F03404AC7C54, 01F03A11C4419665557C3CB7E712B8AD59B13703115CB10C9F39FBE82D177BE6 ] C:\Windows\SysWOW64\wshbth.dll

18:34:57.0594 0x160c  C:\Windows\SysWOW64\wshbth.dll - ok

18:34:57.0597 0x160c  [ 641186738EEF453240D81FBF94809901, 1C018778C2F1993990F24E8913466AC7FD6E23CC635B26BB34545DE8358D6395 ] C:\Program Files\Common Files\mcafee\AMCore\MFE_DS.dll

18:34:57.0597 0x160c  C:\Program Files\Common Files\mcafee\AMCore\MFE_DS.dll - ok

18:34:57.0600 0x160c  [ E6660233118B02B905A53CA751C98708, A8EC1C1EE176F2132A473325B244AE7A468FB6EF163079577155443941B155DA ] C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe

18:34:57.0600 0x160c  C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe - ok

18:34:57.0603 0x160c  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll

18:34:57.0603 0x160c  C:\Windows\System32\hnetcfg.dll - ok

18:34:57.0606 0x160c  [ CB51B79C031FF3B399971CA73B59DB1A, 25B0CC4A7EFBD9FF036EFE615BFFB612B627FA61603BADA520944440A112902A ] C:\Program Files\Common Files\mcafee\AMCore\lua_lib.dll

18:34:57.0606 0x160c  C:\Program Files\Common Files\mcafee\AMCore\lua_lib.dll - ok

18:34:57.0609 0x160c  [ 437D32B6D06AACCCBED6ED278C5B854F, 91B24F0650ED7E645794AF9E8C378457D5E55A77F023F2E51E53CB19E6CBCD7F ] C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll

18:34:57.0609 0x160c  C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll - ok

18:34:57.0612 0x160c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys

18:34:57.0612 0x160c  C:\Windows\System32\drivers\srv2.sys - ok

18:34:57.0615 0x160c  [ 7CAE10CE6F23B4BD62E9E9C225D8DC6A, 7C61448BE3C18B05A8FAD7F5A2597B3ADFD5E6556DFFDAE7DD1709AD19C639D3 ] C:\Program Files\Common Files\mcafee\AMCore\MFE_CS.dll

18:34:57.0616 0x160c  C:\Program Files\Common Files\mcafee\AMCore\MFE_CS.dll - ok

18:34:57.0618 0x160c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys

18:34:57.0619 0x160c  C:\Windows\System32\drivers\srv.sys - ok

18:34:57.0621 0x160c  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll

18:34:57.0621 0x160c  C:\Windows\System32\nci.dll - ok

18:34:57.0624 0x160c  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

18:34:57.0624 0x160c  C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe - ok

18:34:57.0627 0x160c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll

18:34:57.0627 0x160c  C:\Windows\System32\srvsvc.dll - ok

18:34:57.0630 0x160c  [ F8B339E25A9713724F276BE0326CE046, 0D1A06F5103B4273FC0DC50BA9126D042C8B76BFB8EF093D012A95D42FE9BB3D ] C:\Program Files\Common Files\mcafee\Platform\McSvcHost\LogCntrl.dll

18:34:57.0630 0x160c  C:\Program Files\Common Files\mcafee\Platform\McSvcHost\LogCntrl.dll - ok

18:34:57.0633 0x160c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll

18:34:57.0633 0x160c  C:\Windows\System32\browser.dll - ok

18:34:57.0637 0x160c  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll

18:34:57.0637 0x160c  C:\Windows\System32\netmsg.dll - ok

18:34:57.0640 0x160c  [ A1437F5571D5D88D100E017C1E02CD41, 94639E1BC47381ACF7A618298C106A63C5836B2A9BC32A9D3A4396C39156CD7F ] C:\Program Files\Common Files\mcafee\AMCore\ncapi.dll

18:34:57.0640 0x160c  C:\Program Files\Common Files\mcafee\AMCore\ncapi.dll - ok

18:34:57.0643 0x160c  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll

18:34:57.0644 0x160c  C:\Windows\System32\sscore.dll - ok

18:34:57.0646 0x160c  [ E9B301168A59B46F492AF7AB6D54442B, 20A25282ADC40993FCBC149F84159A1D4B0EA967D64AFC7F73DB826D2E7848E2 ] C:\Program Files\Common Files\mcafee\AMCore\EMMain.dll

18:34:57.0646 0x160c  C:\Program Files\Common Files\mcafee\AMCore\EMMain.dll - ok

18:34:57.0649 0x160c  [ BF150AA4B8376925E753E5AAF964BC2C, 22635B4E19DB065F4FCA4ADB5F34FDC2AA04BC6250D6E529ED708ED1AA271857 ] C:\Program Files\Common Files\mcafee\systemcore\mfeapfa.dll

18:34:57.0649 0x160c  C:\Program Files\Common Files\mcafee\systemcore\mfeapfa.dll - ok

18:34:57.0652 0x160c  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll

18:34:57.0652 0x160c  C:\Windows\System32\clusapi.dll - ok

18:34:57.0655 0x160c  [ 295657F93F6B19DEEA804048E1CB4FF9, 1528AFDD25E59EBD1EFE3E694CCCA9365251DAC679D693AC9809A6D86B335770 ] C:\Windows\System32\lz32.dll

18:34:57.0655 0x160c  C:\Windows\System32\lz32.dll - ok

18:34:57.0658 0x160c  [ 1E128F2CC69DF81E50D246B73F82C2EC, 12F5E990A93F604AF0A3833EC3DF9CC91B57E4641DC3478111434E2C373B1F70 ] C:\Program Files\Common Files\mcafee\systemcore\mfeavfa.dll

18:34:57.0658 0x160c  C:\Program Files\Common Files\mcafee\systemcore\mfeavfa.dll - ok

18:34:57.0661 0x160c  [ 1D9E16F8A44C53FA7679C8DA70933376, 0D16E569074483D53D520687DC7CD6D5F5711310CB2BEDDD8E6D8B42FA551869 ] C:\Program Files\Common Files\mcafee\mcproxy\McProxy.dll

18:34:57.0661 0x160c  C:\Program Files\Common Files\mcafee\mcproxy\McProxy.dll - ok

18:34:57.0663 0x160c  [ 181C24DB71D9E2AF81192716BE2BC3D6, 90FC3E0C6CF1FD0EA0A0DE06A5972809B9167D36065906BA60EB5B67AC5CC1F8 ] C:\PROGRA~1\mcafee\mpf\MpfSvc.dll

18:34:57.0663 0x160c  C:\PROGRA~1\mcafee\mpf\MpfSvc.dll - ok

18:34:57.0666 0x160c  [ 0E93A1FA73429C0E97AC8684DF5F3D5F, 443C20574B08262F804C8D588B75BEE657271D628AC8E5EAF7F02A94B8BCE5B9 ] C:\Program Files\Common Files\mcafee\systemcore\mfefwctl.dll

18:34:57.0666 0x160c  C:\Program Files\Common Files\mcafee\systemcore\mfefwctl.dll - ok

18:34:57.0670 0x160c  [ 4647D64626D110E4CDF2C0343E855784, 1C5BA92D207422D963793E091F2DBC358FD8F54D4CA22A65D178F53D3721C086 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\868ad9d8acc0bf80a973c0e4e9cae4fa\System.Core.ni.dll

18:34:57.0670 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\868ad9d8acc0bf80a973c0e4e9cae4fa\System.Core.ni.dll - ok

18:34:57.0673 0x160c  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll

18:34:57.0673 0x160c  C:\Windows\System32\resutils.dll - ok

18:34:57.0676 0x160c  [ C0E490B633B738034FE6C90EB65B14B1, 16A14680A5B47BE2C7CEB1077A20F419D5B33A07CAB311DB8AE6F3DC59B82049 ] C:\PROGRA~1\mcafee\mps\mps.dll

18:34:57.0676 0x160c  C:\PROGRA~1\mcafee\mps\mps.dll - ok

18:34:57.0680 0x160c  [ 739AFF76CF8D1280EB3E10DD02748DDF, 6917FDD9C3CB48F550550A1BC4670C919FCD05D55AB91DE8A4BB025BFCAB918C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll

18:34:57.0680 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll - ok

18:34:57.0683 0x160c  [ 9892E0D72EEDF3DA1CDCFDAC318D556C, AF7E21907304CCAD550B6CCDB02464CBC163FA0E222EAD0594570E70360212B4 ] C:\Program Files (x86)\Advanced System Optimizer 3\System.Data.SQLite.dll

18:34:57.0683 0x160c  C:\Program Files (x86)\Advanced System Optimizer 3\System.Data.SQLite.dll - ok

18:34:57.0687 0x160c  [ 3D232BA8915FEA0694B07E535FC8D03A, 7995028113425BC802A77F5529D49E9EBC3012117585AE079F694D969AA05EEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll

18:34:57.0687 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll - ok

18:34:57.0692 0x160c  [ 74533144AACE6F435DBE39DAC714BC62, 5A942AF1791783F217CE1A6919F5D1B71D867EEA98BF23C681E5358FB5037CC0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\fe1942c05eda4f9744f80afb4ae76a2d\System.Data.ni.dll

18:34:57.0692 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\fe1942c05eda4f9744f80afb4ae76a2d\System.Data.ni.dll - ok

18:34:57.0695 0x160c  [ AB95FBAE4F9A5A56B177CEC427B2B35E, 59D7C2A5097F83E8D07CAAFCF9C6F9C6849AF24C28047FD4D4D6B5673EE8D089 ] C:\Windows\System32\psbase.dll

18:34:57.0695 0x160c  C:\Windows\System32\psbase.dll - ok

18:34:57.0698 0x160c  [ 35BA5AA671887FE8A62B88A9A6229FD5, 37C890ABCAC01F610F00E900A59B08CF4F17BFC49459EEBF0058EFE02FD628EE ] C:\Windows\System32\pstorsvc.dll

18:34:57.0698 0x160c  C:\Windows\System32\pstorsvc.dll - ok

18:34:57.0701 0x160c  [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe

18:34:57.0701 0x160c  C:\Windows\System32\SearchProtocolHost.exe - ok

18:34:57.0703 0x160c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll

18:34:57.0703 0x160c  C:\Windows\System32\ssdpsrv.dll - ok

18:34:57.0706 0x160c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll

18:34:57.0706 0x160c  C:\Windows\System32\wdi.dll - ok

18:34:57.0709 0x160c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] C:\Windows\System32\appinfo.dll

18:34:57.0709 0x160c  C:\Windows\System32\appinfo.dll - ok

18:34:57.0712 0x160c  [ 0EF6ADCF0AEC1EB8B758A72FBA757A95, D374559A2F0CA85AD5CC2562A4EA9F2FAF7B29185E817E8AF0B671B7D0939D3B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll

18:34:57.0712 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll - ok

18:34:57.0715 0x160c  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll

18:34:57.0715 0x160c  C:\Windows\System32\npmproxy.dll - ok

18:34:57.0718 0x160c  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll

18:34:57.0718 0x160c  C:\Windows\System32\perftrack.dll - ok

18:34:57.0721 0x160c  [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4, D9BED31C194C54A786A043D65D95093C3DEDF675948F4470CED6C3251E7FEE70 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll

18:34:57.0721 0x160c  C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok

18:34:57.0724 0x160c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll

18:34:57.0724 0x160c  C:\Windows\System32\wpdbusenum.dll - ok

18:34:57.0727 0x160c  [ B6D3C63C07085941446AA90BD77AC07F, F4E1144DFC8A6A5F81F7326BA3E6E1A6A6CE419C3FAA9513835FB17BFEE73842 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll

18:34:57.0727 0x160c  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll - ok

18:34:57.0730 0x160c  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll

18:34:57.0730 0x160c  C:\Windows\System32\diagperf.dll - ok

18:34:57.0733 0x160c  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll

18:34:57.0733 0x160c  C:\Windows\System32\ndiscapCfg.dll - ok

18:34:57.0736 0x160c  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll

18:34:57.0736 0x160c  C:\Windows\System32\mprapi.dll - ok

18:34:57.0739 0x160c  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll

18:34:57.0739 0x160c  C:\Windows\System32\rascfg.dll - ok

18:34:57.0741 0x160c  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll

18:34:57.0741 0x160c  C:\Windows\System32\mprmsg.dll - ok

18:34:57.0745 0x160c  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll

18:34:57.0745 0x160c  C:\Windows\System32\PortableDeviceApi.dll - ok

18:34:57.0748 0x160c  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll

18:34:57.0748 0x160c  C:\Windows\System32\NapiNSP.dll - ok

18:34:57.0751 0x160c  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll

18:34:57.0751 0x160c  C:\Windows\System32\msshooks.dll - ok

18:34:57.0754 0x160c  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll

18:34:57.0754 0x160c  C:\Windows\System32\pnrpnsp.dll - ok

18:34:57.0757 0x160c  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll

18:34:57.0757 0x160c  C:\Windows\System32\winrnr.dll - ok

18:34:57.0761 0x160c  [ 748849C42DEA24C723048E24BCA1BD55, 517DDE70E7CB8E94C6E8B9B05CCD4BC6490A8837FD8BB874C9E1186D8EF07659 ] C:\Windows\System32\wshbth.dll

18:34:57.0761 0x160c  C:\Windows\System32\wshbth.dll - ok

18:34:57.0764 0x160c  [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe

18:34:57.0764 0x160c  C:\Windows\System32\SearchFilterHost.exe - ok

18:34:57.0767 0x160c  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll

18:34:57.0768 0x160c  C:\Windows\System32\tcpipcfg.dll - ok

18:34:57.0771 0x160c  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll

18:34:57.0771 0x160c  C:\Windows\System32\pnpts.dll - ok

18:34:57.0774 0x160c  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll

18:34:57.0774 0x160c  C:\Windows\System32\wdiasqmmodule.dll - ok

18:34:57.0776 0x160c  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll

18:34:57.0776 0x160c  C:\Windows\System32\mssprxy.dll - ok