Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

heuristics.reserved.word.[Closed]

Started by Astraea687 , Jan 22 2013 08:37 PM

This topic is locked

#1
Astraea687

Posted 22 January 2013 - 08:37 PM

New Member

Member
5 posts

My computer would only run in safe mode - It would get a blue screen of death with a "page fault in non paged area" and shut down if you tried to start it in normal mode. I downloaded and ran AVG rescue disk from a USB drive. This removed several trojan horses. The computer will now start up, and I ran a Malwarebytes scan and it found a heuristics.reserved.word.exploit trojan.agent. It says it successfully quarantined and removed it. However, every 2-3 seconds it notifies me that it has blocked and quarantined a threat: C:\\Windows\svchost.exe Trojan.Agent. I have deleted all of these instances, but something is still causing it to keep trying to run. Running a scan reveals nothing new though. The computer is running well otherwise. It is a bit slow to boot up, and between the windows loading screen and the desktop loading the screen stays black for 2-3 minutes.

______________________________________________________
OTL logfile created on: 1/22/2013 9:21:02 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kat\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.92 Gb Total Physical Memory | 1.82 Gb Available Physical Memory | 46.59% Memory free
7.83 Gb Paging File | 5.06 Gb Available in Paging File | 64.68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 380.52 Gb Free Space | 84.37% Space Free | Partition Type: NTFS

Computer Name: KAT-PC | User Name: Kat | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/22 21:20:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kat\Downloads\OTL.exe
PRC - [2013/01/07 19:06:24 | 001,248,360 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012/12/14 16:49:28 | 000,824,232 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/12/14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/10/30 18:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/30 18:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/07/27 12:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/02/01 10:50:58 | 000,968,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
PRC - [2012/01/02 18:20:37 | 003,386,840 | ---- | M] (Webroot Software, Inc. ) -- C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
PRC - [2012/01/02 18:20:27 | 001,382,984 | ---- | M] (Webroot Software, Inc. ) -- C:\Program Files (x86)\Webroot\Security\Current\Framework\WRTray.exe
PRC - [2011/10/19 11:22:58 | 003,997,912 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) -- C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe
PRC - [2011/10/01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011/10/01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011/09/06 12:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/08/18 10:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 10:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/11 16:11:29 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2011/08/01 12:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2010/12/20 18:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/12/20 18:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/12/14 01:21:34 | 000,974,912 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2010/12/14 01:21:30 | 001,298,496 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2010/12/14 01:21:18 | 000,901,184 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2010/12/14 01:21:12 | 000,979,008 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
PRC - [2010/11/17 10:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2010/08/19 18:06:56 | 000,487,562 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2010/01/28 13:03:12 | 000,454,856 | ---- | M] (Blockbuster) -- C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\Movielink User.exe
PRC - [2010/01/28 13:02:40 | 001,867,464 | ---- | M] (Blockbuster) -- C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\MovielinkCore.exe

========== Modules (No Company Name) ==========

MOD - [2013/01/10 21:39:09 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\7d3a95d2123d5a7982a451f1319fab8d\System.Core.ni.dll
MOD - [2013/01/10 21:10:54 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0aeaf4f1629dbe8eafc8f47b1795b18a\PresentationFramework.Aero.ni.dll
MOD - [2013/01/10 21:10:18 | 014,325,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\36b839247bd1d22a7fd014a74abe9729\PresentationFramework.ni.dll
MOD - [2013/01/10 21:10:01 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c6fb88c8055653672314c29ca4b78a7e\System.Windows.Forms.ni.dll
MOD - [2013/01/10 21:09:54 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\e2ee5d77ebe0bd025e7a7a317a43d677\System.Drawing.ni.dll
MOD - [2013/01/10 21:09:49 | 012,218,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\549690bfac66934b7c7fd5cf8b120b7c\PresentationCore.ni.dll
MOD - [2013/01/10 21:09:38 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\82a4c4666ad83c3a375210247e69646b\WindowsBase.ni.dll
MOD - [2013/01/10 21:09:32 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\10aba2c167cc1119b80159fd9ac71ca8\System.Xml.ni.dll
MOD - [2013/01/10 21:09:28 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\96a3b737db1e72adaf32d2b350e50c23\System.Configuration.ni.dll
MOD - [2013/01/10 21:09:27 | 007,974,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c54750e64ba10d0fb7b6a636fb3695ca\System.ni.dll
MOD - [2013/01/10 21:09:20 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b0b8554c05f194f546a8ed531320760b\mscorlib.ni.dll
MOD - [2013/01/07 19:06:22 | 000,460,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll
MOD - [2013/01/07 19:06:21 | 012,459,624 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
MOD - [2013/01/07 19:06:19 | 004,012,648 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
MOD - [2013/01/07 19:05:29 | 000,598,120 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libglesv2.dll
MOD - [2013/01/07 19:05:28 | 000,124,520 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libegl.dll
MOD - [2013/01/07 19:05:25 | 001,553,000 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll
MOD - [2012/08/27 20:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/27 20:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/02/01 10:50:58 | 000,968,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
MOD - [2012/02/01 10:44:34 | 008,151,040 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
MOD - [2012/02/01 10:44:34 | 002,278,400 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
MOD - [2012/01/02 18:20:35 | 002,557,952 | ---- | M] () -- C:\Program Files (x86)\Webroot\Security\Current\Framework\frameworkresources.dll
MOD - [2011/08/18 10:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2011/03/16 23:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/11/24 22:44:02 | 000,375,280 | ---- | M] () -- c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
MOD - [2010/11/17 10:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
MOD - [2010/10/20 14:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll

========== Services (SafeList) ==========

SRV:64bit: - [2012/10/30 18:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2011/02/27 11:15:36 | 000,499,200 | ---- | M] (Red Bend Ltd.) [Auto | Running] -- C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe -- (DMAgent)
SRV:64bit: - [2011/02/27 11:09:36 | 000,885,248 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe -- (WiMAXAppSrv)
SRV:64bit: - [2010/12/17 14:41:32 | 001,515,792 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2010/12/17 14:28:46 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2010/12/17 14:26:50 | 000,836,880 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/11/17 21:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/01/10 21:44:38 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/09/18 11:04:49 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/07/27 12:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/01/02 18:20:37 | 003,386,840 | ---- | M] (Webroot Software, Inc. ) [Auto | Running] -- C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe -- (WRConsumerService)
SRV - [2011/10/19 11:22:58 | 003,997,912 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Auto | Running] -- C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe -- (WebrootSpySweeperService)
SRV - [2011/10/01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/08/18 10:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2010/12/20 18:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/12/20 18:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/12/14 01:21:34 | 000,974,912 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2010/12/14 01:21:30 | 001,298,496 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2010/12/14 01:21:18 | 000,901,184 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2010/11/25 05:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 05:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/28 13:02:40 | 001,867,464 | ---- | M] (Blockbuster) [Auto | Running] -- C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\MovielinkCore.exe -- (Movielink Core Service)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/10/30 18:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/30 18:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/30 18:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/30 18:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/30 18:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 11:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/07/09 12:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/03/01 01:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/10/01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011/10/01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011/10/01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011/10/01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011/05/18 16:31:32 | 000,136,224 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ssidrv.sys -- (ssidrv)
DRV:64bit: - [2011/05/18 16:31:30 | 000,056,408 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\ssfmonm.sys -- (ssfmonm)
DRV:64bit: - [2011/03/26 04:17:50 | 012,262,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/03/17 00:29:56 | 001,416,240 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2011/03/11 01:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/17 23:42:12 | 000,174,080 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpmp.sys -- (bpmp)
DRV:64bit: - [2011/02/17 23:42:06 | 000,081,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpusb.sys -- (bpusb)
DRV:64bit: - [2011/02/17 23:42:04 | 000,075,264 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpenum.sys -- (bpenum)
DRV:64bit: - [2011/02/10 17:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 17:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/12 20:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/12/21 20:08:48 | 008,505,856 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2010/12/14 08:18:50 | 000,058,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2010/12/14 08:10:10 | 000,059,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2010/12/14 01:21:06 | 000,274,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2010/12/01 11:12:06 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/12/01 05:02:22 | 000,042,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WDKMD.sys -- (wdkmd)
DRV:64bit: - [2010/11/30 17:02:54 | 000,412,264 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/10/19 19:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 11:28:18 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/08/12 10:51:30 | 000,175,168 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/02/27 02:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/01 12:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9FDA8F4B-B4DD-41B9-80EE-EAEE5A33F465}
IE:64bit: - HKLM\..\SearchScopes\{9FDA8F4B-B4DD-41B9-80EE-EAEE5A33F465}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {9FDA8F4B-B4DD-41B9-80EE-EAEE5A33F465}
IE - HKLM\..\SearchScopes\{9FDA8F4B-B4DD-41B9-80EE-EAEE5A33F465}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?PC=BNHP
IE - HKCU\..\SearchScopes,DefaultScope = {9FDA8F4B-B4DD-41B9-80EE-EAEE5A33F465}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.order.1: "Yahoo"
FF - prefs.js..browser.search.order.2: ""
FF - prefs.js..browser.search.param.yahoo-fr: "w3i&type=W3i_DS,157,0_0,Search,20111149,6902,0,21,0"
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..extensions.enabledAddons: {1266764D-FC4F-4FA7-B63B-884D53B1680F}:3.6.5
FF - prefs.js..extensions.enabledAddons: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.5.1.20121011034613
FF - prefs.js..extensions.enabledAddons: [email protected]:2.5
FF - prefs.js..extensions.netassistant.keyword.url: "http://click.w3i.com...94&searchterm="

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@bestbuy.com/npBestBuyPcAppDetector,version=1.0: C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll (Best Buy)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@bestbuy.com/npBestBuyPcAppDetector,version=1.0: C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll (Best Buy)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.660: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.660: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.660: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Kat\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\electronicarts.com/GameFacePlugin: C:\Users\Kat\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2013/01/22 15:55:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}: C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}\Coupons.com.xpi [2012/01/26 13:18:46 | 000,185,164 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/01/17 19:24:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/22 18:16:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/08/19 18:13:08 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/22 18:16:36 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/08/19 18:13:08 | 000,000,000 | ---D | M]

[2011/09/26 10:27:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kat\AppData\Roaming\Mozilla\Extensions
[2012/12/23 21:22:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kat\AppData\Roaming\Mozilla\Firefox\Profiles\s8d1ogjh.default\extensions
[2012/10/11 17:07:47 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Kat\AppData\Roaming\Mozilla\Firefox\Profiles\s8d1ogjh.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[1619/09/23 18:22:37 | 000,004,815 | ---- | M] () (No name found) -- C:\Users\Kat\AppData\Roaming\Mozilla\Firefox\Profiles\s8d1ogjh.default\extensions\[email protected]
[2011/11/29 18:10:36 | 000,011,658 | ---- | M] () (No name found) -- C:\Users\Kat\AppData\Roaming\Mozilla\Firefox\Profiles\s8d1ogjh.default\extensions\{1266764D-FC4F-4FA7-B63B-884D53B1680F}.xpi
[2011/09/26 10:27:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/09/18 11:04:50 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/02/22 17:58:26 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll
[2012/02/22 17:58:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll
[2012/05/10 18:24:05 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/05/10 18:24:05 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U24 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.89\npGoogleUpdate3.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Best Buy pc app Detector (Enabled) = C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll
CHR - plugin: RealNetworks™ RealPlayer Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Kat\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Game Face Plugin (Enabled) = C:\Users\Kat\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Google Docs = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Google Docs = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0\
CHR - Extension: Google Drive = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: Google Drive = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Gmail = C:\Users\Kat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/01/26 03:20:21 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (ShopAtHome.com Toolbar) - {66516A07-F617-488A-90CF-4E690CFB3C5F} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (TBSB07898 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O3 - HKLM\..\Toolbar: (Coupons.com CouponBar) - {8660E5B3-6C41-44DE-8503-98D99BBECD41} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (ShopAtHome.com Toolbar) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - C:\Program Files (x86)\ShopAtHome\tbcore3U.dll (ShopAtHome.com)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelWireless] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelWirelessWiMAX] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\QuickSet.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Dell Registration] C:\Program Files (x86)\System Registration\prodreg.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [LoadMSvcmm] C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\Movielink User.exe (Blockbuster)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [WebrootTrayApp] C:\Program Files (x86)\Webroot\Security\Current\Framework\WRTray.exe (Webroot Software, Inc. )
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanne..._IKEA_Win32.cab (20-20 3D Viewer for IKEA)
O16 - DPF: {8A5BE387-D09A-4DFA-A56B-DCB89BD11468} https://lowes.2020.n...X_WEB_Win32.cab (20-20 3D Viewer for WEB)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.cvsphoto....veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 66.18.32.2 66.18.32.3 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B25165EB-02B7-444B-BDA1-166251A1061E}: DhcpNameServer = 66.18.32.2 66.18.32.3 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/22 20:22:22 | 000,000,000 | ---D | C] -- C:\Users\Kat\AppData\Local\ElevatedDiagnostics
[2013/01/21 19:03:34 | 000,000,000 | -HSD | C] -- C:\found.000
[2013/01/21 11:59:15 | 000,000,000 | ---D | C] -- C:\Users\Kat\AppData\Roaming\Malwarebytes
[2013/01/21 11:59:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/01/21 11:59:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/01/21 11:59:09 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/01/21 11:59:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/01/21 11:58:55 | 000,000,000 | ---D | C] -- C:\Users\Kat\AppData\Local\Programs
[2013/01/17 19:24:46 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013/01/17 19:24:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2013/01/17 19:24:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/01/17 19:24:14 | 000,000,000 | ---D | C] -- C:\Users\Kat\AppData\Local\Google
[2013/01/17 19:24:10 | 000,370,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/01/17 19:24:10 | 000,025,232 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/01/17 19:24:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013/01/17 19:24:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013/01/17 19:24:09 | 000,984,144 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/01/17 19:24:09 | 000,059,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/01/17 19:24:09 | 000,054,072 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/01/17 19:24:08 | 000,285,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013/01/17 19:24:08 | 000,071,600 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/01/17 19:23:55 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/01/17 19:23:54 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2013/01/17 19:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013/01/17 19:23:40 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013/01/17 19:20:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Windows Genuine Advantage
[2013/01/11 03:01:30 | 000,000,000 | ---D | C] -- C:\ae0625d3d543b96bd65d48230baa95
[2013/01/10 21:12:36 | 000,000,000 | ---D | C] -- C:\8f3665c29ac37382d81f058093d3bb0d
[2013/01/10 17:38:45 | 000,000,000 | ---D | C] -- C:\Users\Kat\Documents\ED_Technology
[2013/01/10 16:57:18 | 000,000,000 | ---D | C] -- C:\Windows\Minidump

========== Files - Modified Within 30 Days ==========

[2013/01/22 20:53:59 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/22 20:53:58 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/22 20:51:47 | 000,744,406 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/22 20:51:47 | 000,637,496 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/22 20:51:47 | 000,111,354 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/01/22 20:46:19 | 000,000,398 | ---- | M] () -- C:\Windows\tasks\FreeFileViewerUpdateChecker.job
[2013/01/22 20:46:16 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/22 20:44:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/22 20:44:07 | 460,657,891 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/01/22 20:44:07 | 3153,727,488 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/22 20:29:01 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/22 19:44:21 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/22 19:33:20 | 000,007,611 | ---- | M] () -- C:\Users\Kat\AppData\Local\Resmon.ResmonCfg
[2013/01/22 15:05:44 | 000,001,960 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/01/22 15:05:33 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/01/21 11:59:10 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/18 05:19:46 | 000,002,281 | ---- | M] () -- C:\Users\Kat\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/01/17 19:24:40 | 000,002,257 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/01/10 21:16:49 | 000,461,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/10 21:11:46 | 000,000,129 | ---- | M] () -- C:\Windows\SysNative\MRT.INI

========== Files Created - No Company Name ==========

[2013/01/22 19:33:20 | 000,007,611 | ---- | C] () -- C:\Users\Kat\AppData\Local\Resmon.ResmonCfg
[2013/01/21 11:59:10 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/18 05:24:14 | 000,000,898 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/17 19:24:40 | 000,002,281 | ---- | C] () -- C:\Users\Kat\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/01/17 19:24:40 | 000,002,257 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/01/17 19:24:17 | 000,000,888 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/17 19:24:10 | 000,001,960 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/01/17 19:24:08 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2013/01/10 20:19:27 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/10 16:57:12 | 460,657,891 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011/09/04 11:08:19 | 000,030,424 | ---- | C] () -- C:\Windows\SysWow64\wrLZMA.dll
[2011/08/20 10:50:51 | 000,743,950 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/08/07 14:55:54 | 000,005,632 | ---- | C] () -- C:\Users\Kat\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/27 03:03:21 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011/05/27 03:03:01 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/05/27 03:02:58 | 000,216,876 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/05/27 03:02:56 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-996329622-3372043446-1913847376-1000\$792f41990b73e2f47b46706eb422a6b8\n.

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 00:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 20:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/08/23 19:41:26 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\Coxeof
[2012/04/24 20:04:52 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\Electronic Arts
[2012/09/06 16:41:47 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\Esxeug
[2012/08/19 18:07:04 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\Fingertapps
[2013/01/22 15:55:27 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\FreeFileViewer
[2011/08/07 12:44:09 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\Leadertech
[2012/09/14 00:03:11 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\Mouq
[2011/08/09 08:02:26 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\PCDr
[2013/01/02 20:36:21 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\SoftGrid Client
[2011/08/20 10:51:49 | 000,000,000 | ---D | M] -- C:\Users\Kat\AppData\Roaming\TP

========== Purity Check ==========

< End of report >

#2
zep516

Posted 22 January 2013 - 09:41 PM

Trusted Helper

Malware Removal
8,093 posts

Hi! My name is zep516 and Welcome to Geeks to Go!

I'll do the best I can to resolve your computer issue!
Please be patient with me as I am currently in training, and all of my responses to you have to be reviewed by my instructor before I post them. Just keep in mind that you get the advantage as you have 2 people examining your issue Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions!

I'll get back to you as soon as possible with instructions.

Joe

Edited by zep516, 22 January 2013 - 10:25 PM.

#3
zep516

Posted 23 January 2013 - 07:02 AM

Trusted Helper

Malware Removal
8,093 posts

Hi Astraea687,
Could you post the extras.txt log. OTL Creates 2 logs, and I need that one above too, you should find the log here C:\Users\Kat\Downloads\OTL.exe

Would you also move OTL to the desktop location it's currently in you downloads folder.

Next

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Next

Please download aswMBR ( 511KB ) to your desktop.

Double click the aswMBR.exe icon to run it
Click the Scan button to start the scan
On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

In your next reply please post.

Extras.txt Log
TDSSKiller log
aswMBR log
Please provide any other log reports that you have on the computer that you have ran like Malwarwarebytes etc.

#4
Astraea687

Posted 23 January 2013 - 07:33 AM

New Member

Topic Starter
Member
5 posts

Here is the other OTL logfile. I also moved OTL to my desktop. I'll run the other two things and post back this afternoon or tonight. In the meantime, avast network shield has been blocking a bunch of harmful sites. It says Infection: URL:Mal Process: \\.\globalroot\systemroot\svchost.exe. Seems like the same think MBAM was blocking, but with different details.

OTL Extras logfile created on: 1/22/2013 9:21:02 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kat\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.92 Gb Total Physical Memory | 1.82 Gb Available Physical Memory | 46.59% Memory free
7.83 Gb Paging File | 5.06 Gb Available in Paging File | 64.68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 380.52 Gb Free Space | 84.37% Space Free | Partition Type: NTFS

Computer Name: KAT-PC | User Name: Kat | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11DCC15D-5D98-4943-9238-599D27FC57E6}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{13ACC9CD-44B3-446F-B622-E2C469E00B01}" = lport=445 | protocol=6 | dir=in | app=system |
"{1909E315-00E5-4266-BC3D-70A9D5A548D0}" = rport=10243 | protocol=6 | dir=out | app=system |
"{1DD81029-9891-420C-80F3-ED22AFAE9FDB}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{22A3518D-307F-4DD1-8B76-75A6E42B1A15}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{29687312-64EC-4DD3-BAD3-8A5D3A21F442}" = rport=138 | protocol=17 | dir=out | app=system |
"{35BC2C3D-F3CB-4700-9254-905F9032FA05}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{55E47F90-6585-45C7-B964-5E106E031A95}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5798E5B7-6B77-45D6-8ACC-B7ED2E3CFAEA}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{5E71F724-38BA-443B-A422-A1592476FD80}" = lport=139 | protocol=6 | dir=in | app=system |
"{606DD979-E77C-445C-B734-811D8C7D62D2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6AE9FD3C-ECCF-4F89-9E4E-6925C031A527}" = lport=137 | protocol=17 | dir=in | app=system |
"{6D4B7855-D763-4121-8B6A-BCF4FB8B7E6F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{7A43F3DF-BBBA-46DA-BBA6-8BE21F2BE28D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{81413E3A-8CA2-4728-B418-E34D09EE44EA}" = rport=139 | protocol=6 | dir=out | app=system |
"{8BB8EE5E-4449-4D8E-907D-677669035349}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{8D9E56F9-BE81-4081-901A-184695893677}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{978411A1-CFB5-4D0C-BDB0-3C9EBFE63C1F}" = lport=138 | protocol=17 | dir=in | app=system |
"{A49F1E59-F7C4-4704-A624-C917A70995A3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{ACFA18F5-20FE-490B-B529-B55F8CC963CA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C4F90B54-F41E-4968-8732-9021A53FD063}" = rport=137 | protocol=17 | dir=out | app=system |
"{C61D44A4-A86A-43F1-A972-5054DF363B14}" = rport=445 | protocol=6 | dir=out | app=system |
"{C816EFB6-BC55-4E6B-9C25-5D6AD07D7A5E}" = lport=2869 | protocol=6 | dir=in | app=system |
"{D6B9099F-AA9A-44F9-88C3-6110D4AC2094}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E75DFEFC-CEBC-401C-BA30-BEE8A3E797C7}" = lport=10243 | protocol=6 | dir=in | app=system |
"{FB452651-F540-4D01-9E56-5B4B29659A29}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00315D0D-4357-4A0F-AAF8-F2EFB0C1B580}" = dir=in | app=c:\program files (x86)\intel corporation\intel wireless display\widiapp.exe |
"{0685111F-7256-498F-A91C-790328A209EA}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{06EE821A-2FB4-476A-9B2A-4B56188B5C64}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{08E50DDB-6F9F-4C24-8B7B-9409924BA22A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0C5AA0F0-5D55-4DFD-8D62-D9EB3A1FBE1F}" = protocol=6 | dir=in | app=c:\program files\intel\wimax\bin\dmagent.exe |
"{152A86EA-79AA-4632-890A-A8D576A697BF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1618D367-59C5-4F78-A051-A331A700DFE8}" = protocol=6 | dir=in | app=c:\program files\intel\wimax\bin\appsrv.exe |
"{1CD314F1-C3D9-43C4-9EA8-B1BCFF5D27C5}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{2356F311-C434-479F-9AD4-0A5F84B7B319}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2CE80A9D-9396-405B-AFBE-6531335058F4}" = protocol=1 | dir=out | [email protected],-28544 |
"{2E19B7FB-210F-4077-971B-16068EA55A30}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{3002B8EF-FB7E-4341-8D05-D2BDFCFBC40E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{32C53D9F-4EE5-426F-A545-45B3F91E2C0E}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{40528C9A-E9BD-4530-99B1-54D99517D667}" = protocol=58 | dir=in | [email protected],-28545 |
"{47F75235-E695-4C0F-92E7-934E627068F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4C4EADC5-F1A9-469F-837A-E1DF125B4B05}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{4E595272-4C11-4C0D-82DD-9FA409DE590A}" = dir=in | app=c:\program files (x86)\dell\videostage\videostage.exe |
"{56D1B851-BCA4-4C86-AC2F-723CEC6F3211}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{57963A57-12DD-4272-A66A-9F3E5428069C}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{5BAB4D7A-8E07-42CE-8A3F-C251AD8BBC91}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{68672A75-01AF-42A3-8DA6-1A0DC8C6390C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6BDA2FE0-5D92-4811-B1EE-C7E35D8D9EFD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CAA33CF-FA7C-4849-B1FE-56108CCBB02A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6CD69DD0-3E94-4C63-BE59-60E6922BB3D9}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{6E007539-4F9E-4E24-9FDD-9E054066BD38}" = protocol=17 | dir=in | app=c:\program files\intel\wimax\bin\dmagent.exe |
"{86AAAB1A-C123-4808-9A24-7104CF055570}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A09A26DD-D16E-4DB4-A3FB-CF1E0D3047D3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A6B2A72D-9F53-4239-9F15-7D5163DB02B4}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{ADFFE021-6E34-40DA-801D-6FC7B1585B43}" = protocol=58 | dir=out | [email protected],-28546 |
"{B667AC53-A6F8-4E16-B50C-1693242805DD}" = protocol=17 | dir=in | app=c:\program files\intel\wimax\bin\appsrv.exe |
"{C1B8488A-4B2F-4B56-B1CE-2CCC2B98606C}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{C60C941E-4279-4DDD-997F-CF117FA90326}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C785FBFC-3276-43CE-B666-0DEB2A8F57CF}" = protocol=1 | dir=in | [email protected],-28543 |
"{D18B7585-74A7-43BA-9407-06FB01AEAF4A}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{D8E943C0-579E-4E23-8F3C-22E64C2569AE}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{DD838604-4993-41FD-8E90-827B4B83ADFB}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{E56A50BA-6AC7-4551-80FB-17FC46168758}" = dir=in | app=c:\program files (x86)\freefileviewer\ffvcheckforupdates.exe |
"{E7989527-90BC-4840-947A-9153D976F438}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{EA1D89EF-CD8D-4F99-87C7-52ABC577251A}" = protocol=6 | dir=out | app=system |
"{ED2F8853-CF11-4CA1-8FAA-3BEB67B0DDF8}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{EDBB67DB-0DEF-434B-8586-94A8E96543A6}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F505DFB9-9B42-488C-AF87-EE0A8915B870}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{FF6F4451-AFCF-40DF-9EB6-BB3D43AA369C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}" = iTunes
"{18A6B663-A646-457B-A314-5CF58AECB06A}" = Intel® PROSet/Wireless WiMAX Software
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{26A24AE4-039D-4CA4-87B4-2F86416024FF}" = Java™ 6 Update 24 (64-bit)
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel® Wireless Display
"{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}" = Intel® PROSet/Wireless WiFi Software
"{5A80B0BA-79AF-4B11-B851-CCB9F7977AC0}" = Intel® PROSet/Wireless Software for Bluetooth® Technology
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}" = Apple Mobile Device Support
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FBBC4667-2521-4E78-B1BD-8706F774549B}" = Best Buy pc app
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"PC-Doctor for Windows" = Dell Support Center
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Dell Touchpad

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java™ 6 Update 24
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A0F2CC5-3065-492C-8380-B03AA7106B1A}" = Dell Product Registration
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3E8A1ADF-B72C-47FE-85F6-F7A73C487F6C}" = Dell MusicStage
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8B287B75-DF8D-40C8-9620-8E4492C38EF1}" = Webroot Software
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0116-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140011-0066-0409-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - English
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.4) MUI
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4335E82-17B3-460F-9E70-39D9BC269DB3}" = Dell PhotoStage
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F84906ED-BB54-4889-B131-FED9C9056FC8}" = Intel® Wireless Display
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FBBC4667-2521-4E78-B1BD-8706F774549B}" = Best Buy pc app
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE182796-F6BA-486A-8590-89B7E8D1D60F}" = Dell Stage
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"avast" = avast! Free Antivirus
"Coupon Printer for Windows5.0.0.1" = Coupon Printer for Windows
"CouponBar5.0.0.5" = CouponBar
"Dell Webcam Central" = Dell Webcam Central
"FreeFileViewer_is1" = Free File Viewer 2011
"Google Chrome" = Google Chrome
"InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"Movielink Manager" = BLOCKBUSTER Movielink
"Mozilla Firefox 14.0.1 (x86 en-US)" = Mozilla Firefox 14.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Praxis" = Praxis 1.0
"RealPlayer 12.0" = RealPlayer
"ShopAtHome.com Toolbar" = ShopAtHome.com Toolbar
"Trusted Software Assistant_is1" = File Type Assistant
"Webroot Software" = Webroot Software
"WinLiveSuite" = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"48e4cff94f039634" = Best Buy pc app
"EA SPORTS Game Face Browser Plugin" = EA SPORTS Game Face Browser Plugin 1.5.3.0
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:12:23 AM | Computer Name = Kat-PC | Source = McLogEvent | ID = 5051
Description =

Error - 1/22/2013 8:17:04 AM | Computer Name = Kat-PC | Source = CVHSVC | ID = 100
Description = Information only. Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error - 1/22/2013 10:14:17 AM | Computer Name = Kat-PC | Source = CVHSVC | ID = 100
Description = Information only. Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

[ Dell Events ]
Error - 2/25/2012 10:08:37 PM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 3/3/2012 9:32:23 AM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 3/3/2012 9:32:23 AM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 3/19/2012 9:38:06 PM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 3/19/2012 9:38:06 PM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 3/19/2012 10:39:01 PM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 3/19/2012 10:39:01 PM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 4/2/2012 10:00:02 AM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 4/2/2012 10:00:02 AM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

Error - 4/9/2012 8:35:01 PM | Computer Name = Kat-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.

[ System Events ]
Error - 9/14/2012 12:35:57 AM | Computer Name = Kat-PC | Source = DCOM | ID = 10010
Description =

Error - 9/16/2012 4:05:29 PM | Computer Name = Kat-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the WebrootSpySweeperService service.

Error - 9/18/2012 5:55:10 PM | Computer Name = Kat-PC | Source = Service Control Manager | ID = 7031
Description = The McShield service terminated unexpectedly. It has done this 1
time(s). The following corrective action will be taken in 5000 milliseconds: Restart
the service.

Error - 9/23/2012 10:06:45 AM | Computer Name = Kat-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Windows
Presentation Foundation Font Cache 3.0.0.0 service to connect.

Error - 9/23/2012 10:06:45 AM | Computer Name = Kat-PC | Source = Service Control Manager | ID = 7000
Description = The Windows Presentation Foundation Font Cache 3.0.0.0 service failed
to start due to the following error: %%1053

Error - 9/23/2012 1:03:59 PM | Computer Name = Kat-PC | Source = bowser | ID = 8003
Description =

Error - 9/23/2012 7:51:08 PM | Computer Name = Kat-PC | Source = iaStor | ID = 262153
Description = The device, \Device\Ide\iaStor0, did not respond within the timeout
period.

Error - 9/23/2012 8:39:45 PM | Computer Name = Kat-PC | Source = DCOM | ID = 10010
Description =

Error - 9/24/2012 5:58:51 PM | Computer Name = Kat-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.

Error - 9/26/2012 8:43:01 PM | Computer Name = Kat-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 8:40:45 PM on ?9/?26/?2012 was unexpected.

< End of report >

#5
Astraea687

Posted 23 January 2013 - 07:53 AM

New Member

Topic Starter
Member
5 posts

I downloaded TDSSKiller to the desktop,changed the check mark and told it to reboot. Upon trying to reboot it had a blue screen. I restarted it into windows again and it launched but wanted to run an exe from the temp directory. I could not determine if this was TDSS trying to run or something malicious, so I told it not to run.

Should I continue with trying to run TDSS?

The details from the blue screen:

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7600.2.0.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 1e
BCP1: FFFFFFFFC0000005
BCP2: FFFFF8000329E337
BCP3: 0000000000000000
BCP4: 000000007EFA0000
OS Version: 6_1_7600
Service Pack: 0_0
Product: 768_1

Files that help describe the problem:
C:\Windows\Minidump\012313-19344-01.dmp
C:\Users\Kat\AppData\Local\Temp\WER-192614-0.sysdata.xml

Read our privacy statement online:
http://go.microsoft....88&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:
C:\Windows\system32\en-US\erofflps.txt

#6
Astraea687

Posted 23 January 2013 - 09:13 PM

New Member

Topic Starter
Member
5 posts

I read some more about what TDSS does and decided to run it.

Here is the log: 20:10:20.0844 3260 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:10:21.0405 3260 ============================================================
20:10:21.0405 3260 Current date / time: 2013/01/23 20:10:21.0405
20:10:21.0405 3260 SystemInfo:
20:10:21.0405 3260
20:10:21.0405 3260 OS Version: 6.1.7600 ServicePack: 0.0
20:10:21.0405 3260 Product type: Workstation
20:10:21.0405 3260 ComputerName: KAT-PC
20:10:21.0405 3260 UserName: Kat
20:10:21.0405 3260 Windows directory: C:\Windows
20:10:21.0405 3260 System windows directory: C:\Windows
20:10:21.0405 3260 Running under WOW64
20:10:21.0405 3260 Processor architecture: Intel x64
20:10:21.0405 3260 Number of processors: 4
20:10:21.0405 3260 Page size: 0x1000
20:10:21.0405 3260 Boot type: Normal boot
20:10:21.0405 3260 ============================================================
20:10:27.0975 3260 BG loaded
20:10:28.0833 3260 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:10:28.0833 3260 ============================================================
20:10:28.0833 3260 \Device\Harddisk0\DR0:
20:10:28.0833 3260 MBR partitions:
20:10:28.0833 3260 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x33000, BlocksNum 0x1D4C000
20:10:28.0833 3260 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7F000, BlocksNum 0x38606830
20:10:28.0833 3260 ============================================================
20:10:28.0895 3260 C: <-> \Device\Harddisk0\DR0\Partition2
20:10:28.0895 3260 ============================================================
20:10:28.0895 3260 Initialize success
20:10:28.0895 3260 ============================================================
20:15:03.0412 4420 ============================================================
20:15:03.0412 4420 Scan started
20:15:03.0412 4420 Mode: Manual; SigCheck; TDLFS;
20:15:03.0412 4420 ============================================================
20:15:07.0714 4420 ================ Scan system memory ========================
20:15:07.0714 4420 System memory - ok
20:15:07.0718 4420 ================ Scan services =============================
20:15:08.0971 4420 [ 969C91060CBB5D17CB8440B5F78B4C51 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:15:09.0194 4420 1394ohci - ok
20:15:09.0380 4420 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
20:15:09.0408 4420 ACPI - ok
20:15:09.0479 4420 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
20:15:10.0147 4420 AcpiPmi - ok
20:15:10.0821 4420 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:15:10.0836 4420 AdobeARMservice - ok
20:15:11.0555 4420 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:15:11.0581 4420 AdobeFlashPlayerUpdateSvc - ok
20:15:11.0817 4420 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:15:11.0843 4420 adp94xx - ok
20:15:11.0958 4420 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:15:11.0984 4420 adpahci - ok
20:15:12.0318 4420 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:15:12.0363 4420 adpu320 - ok
20:15:12.0447 4420 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:15:12.0535 4420 AeLookupSvc - ok
20:15:12.0701 4420 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
20:15:12.0735 4420 AERTFilters - ok
20:15:12.0856 4420 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
20:15:12.0915 4420 AFD - ok
20:15:13.0191 4420 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
20:15:15.0214 4420 agp440 - ok
20:15:15.0269 4420 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:15:15.0357 4420 ALG - ok
20:15:15.0416 4420 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
20:15:15.0435 4420 aliide - ok
20:15:15.0474 4420 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
20:15:15.0492 4420 amdide - ok
20:15:15.0537 4420 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:15:15.0605 4420 AmdK8 - ok
20:15:15.0610 4420 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:15:15.0663 4420 AmdPPM - ok
20:15:15.0717 4420 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:15:15.0757 4420 amdsata - ok
20:15:15.0763 4420 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:15:15.0781 4420 amdsbs - ok
20:15:15.0799 4420 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:15:15.0813 4420 amdxata - ok
20:15:15.0894 4420 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
20:15:15.0971 4420 AppID - ok
20:15:16.0042 4420 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:15:16.0134 4420 AppIDSvc - ok
20:15:16.0191 4420 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
20:15:16.0297 4420 Appinfo - ok
20:15:16.0542 4420 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:15:16.0618 4420 Apple Mobile Device - ok
20:15:16.0687 4420 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:15:16.0721 4420 arc - ok
20:15:16.0758 4420 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:15:16.0786 4420 arcsas - ok
20:15:16.0900 4420 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
20:15:16.0943 4420 aswFsBlk - ok
20:15:17.0043 4420 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:15:17.0077 4420 aswMonFlt - ok
20:15:17.0128 4420 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
20:15:17.0160 4420 aswRdr - ok
20:15:17.0613 4420 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:15:17.0688 4420 aswSnx - ok
20:15:17.0763 4420 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:15:17.0785 4420 aswSP - ok
20:15:17.0828 4420 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
20:15:17.0859 4420 aswTdi - ok
20:15:17.0922 4420 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:15:18.0062 4420 AsyncMac - ok
20:15:18.0149 4420 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
20:15:18.0196 4420 atapi - ok
20:15:18.0511 4420 [ E1FFD1F7B043AEF0ACC9E7593043FD4C ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:15:18.0602 4420 AudioEndpointBuilder - ok
20:15:18.0618 4420 [ E1FFD1F7B043AEF0ACC9E7593043FD4C ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:15:18.0643 4420 AudioSrv - ok
20:15:19.0166 4420 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:15:19.0183 4420 avast! Antivirus - ok
20:15:19.0282 4420 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:15:19.0357 4420 AxInstSV - ok
20:15:19.0435 4420 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:15:19.0521 4420 b06bdrv - ok
20:15:19.0704 4420 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:15:19.0780 4420 b57nd60a - ok
20:15:19.0823 4420 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:15:19.0894 4420 BDESVC - ok
20:15:19.0914 4420 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:15:19.0956 4420 Beep - ok
20:15:20.0196 4420 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
20:15:20.0325 4420 BFE - ok
20:15:20.0383 4420 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:15:20.0423 4420 blbdrive - ok
20:15:20.0738 4420 [ C620C59D46F43BEECC556F65E801312B ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
20:15:20.0832 4420 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - warning
20:15:20.0832 4420 Bluetooth Device Monitor - detected UnsignedFile.Multi.Generic (1)
20:15:20.0885 4420 [ 5E5EDCCEEA4FA3FDF3A907AC204B5828 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
20:15:20.0929 4420 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - warning
20:15:20.0929 4420 Bluetooth Media Service - detected UnsignedFile.Multi.Generic (1)
20:15:21.0004 4420 [ 826E65C945738CBD64F89EAE4406687F ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
20:15:21.0023 4420 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - warning
20:15:21.0023 4420 Bluetooth OBEX Service - detected UnsignedFile.Multi.Generic (1)
20:15:21.0122 4420 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:15:21.0148 4420 Bonjour Service - ok
20:15:21.0220 4420 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:15:21.0302 4420 bowser - ok
20:15:21.0331 4420 [ 3DCB409BCBD02AB0675682F8E42A410F ] bpenum C:\Windows\system32\DRIVERS\bpenum.sys
20:15:21.0407 4420 bpenum - ok
20:15:21.0432 4420 [ 6C66EEF6669B14DF4F426990A1CA5112 ] bpmp C:\Windows\system32\DRIVERS\bpmp.sys
20:15:21.0477 4420 bpmp - ok
20:15:21.0481 4420 [ 2EE68405BBADE51CBE1C973FF3A1A400 ] bpusb C:\Windows\system32\Drivers\bpusb.sys
20:15:21.0574 4420 bpusb - ok
20:15:21.0628 4420 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:15:21.0703 4420 BrFiltLo - ok
20:15:21.0736 4420 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:15:21.0765 4420 BrFiltUp - ok
20:15:21.0839 4420 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
20:15:21.0951 4420 Browser - ok
20:15:22.0064 4420 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:15:22.0171 4420 Brserid - ok
20:15:22.0252 4420 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:15:22.0324 4420 BrSerWdm - ok
20:15:22.0340 4420 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:15:22.0360 4420 BrUsbMdm - ok
20:15:22.0364 4420 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:15:22.0427 4420 BrUsbSer - ok
20:15:22.0496 4420 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:15:22.0601 4420 BthEnum - ok
20:15:22.0695 4420 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:15:22.0756 4420 BTHMODEM - ok
20:15:22.0766 4420 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:15:22.0829 4420 BthPan - ok
20:15:22.0910 4420 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:15:23.0036 4420 BTHPORT - ok
20:15:23.0086 4420 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:15:23.0142 4420 bthserv - ok
20:15:23.0163 4420 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:15:23.0198 4420 BTHUSB - ok
20:15:23.0268 4420 [ 962BD3689E2C85F0BA97F3D7E7BA540B ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
20:15:23.0289 4420 btmaux - ok
20:15:23.0305 4420 [ EC1220B647F0D995DA5CAD4153454779 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
20:15:23.0359 4420 btmhsf - ok
20:15:23.0372 4420 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:15:23.0432 4420 cdfs - ok
20:15:23.0490 4420 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:15:23.0513 4420 cdrom - ok
20:15:23.0565 4420 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
20:15:23.0662 4420 CertPropSvc - ok
20:15:23.0719 4420 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:15:23.0794 4420 circlass - ok
20:15:23.0827 4420 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:15:23.0852 4420 CLFS - ok
20:15:24.0064 4420 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:15:24.0106 4420 clr_optimization_v2.0.50727_32 - ok
20:15:24.0179 4420 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:15:24.0198 4420 clr_optimization_v2.0.50727_64 - ok
20:15:24.0301 4420 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:15:24.0390 4420 clr_optimization_v4.0.30319_32 - ok
20:15:24.0476 4420 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:15:24.0506 4420 clr_optimization_v4.0.30319_64 - ok
20:15:24.0575 4420 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:15:24.0611 4420 CmBatt - ok
20:15:24.0656 4420 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
20:15:24.0690 4420 cmdide - ok
20:15:24.0722 4420 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
20:15:24.0766 4420 CNG - ok
20:15:24.0822 4420 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:15:24.0853 4420 Compbatt - ok
20:15:24.0901 4420 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:15:24.0970 4420 CompositeBus - ok
20:15:24.0988 4420 COMSysApp - ok
20:15:25.0015 4420 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:15:25.0050 4420 crcdisk - ok
20:15:25.0100 4420 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:15:25.0182 4420 CryptSvc - ok
20:15:25.0308 4420 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:15:25.0368 4420 CtClsFlt - ok
20:15:25.0560 4420 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:15:25.0595 4420 cvhsvc - ok
20:15:25.0667 4420 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:15:25.0770 4420 DcomLaunch - ok
20:15:25.0857 4420 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:15:25.0953 4420 defragsvc - ok
20:15:26.0059 4420 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:15:26.0146 4420 DfsC - ok
20:15:26.0205 4420 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
20:15:26.0283 4420 Dhcp - ok
20:15:26.0355 4420 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:15:26.0455 4420 discache - ok
20:15:26.0518 4420 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:15:26.0557 4420 Disk - ok
20:15:26.0687 4420 [ EC9D64CC2DD8A4C6D11550F364890DB1 ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
20:15:26.0744 4420 DMAgent ( UnsignedFile.Multi.Generic ) - warning
20:15:26.0745 4420 DMAgent - detected UnsignedFile.Multi.Generic (1)
20:15:26.0834 4420 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:15:26.0886 4420 Dnscache - ok
20:15:26.0919 4420 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
20:15:27.0030 4420 dot3svc - ok
20:15:27.0059 4420 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
20:15:27.0126 4420 DPS - ok
20:15:27.0192 4420 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:15:27.0239 4420 drmkaud - ok
20:15:27.0588 4420 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:15:27.0631 4420 DXGKrnl - ok
20:15:27.0687 4420 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:15:27.0779 4420 EapHost - ok
20:15:28.0625 4420 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:15:28.0747 4420 ebdrv - ok
20:15:28.0802 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
20:15:28.0867 4420 EFS - ok
20:15:29.0058 4420 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:15:29.0136 4420 ehRecvr - ok
20:15:29.0172 4420 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:15:29.0215 4420 ehSched - ok
20:15:29.0279 4420 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:15:29.0314 4420 elxstor - ok
20:15:29.0328 4420 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
20:15:29.0389 4420 ErrDev - ok
20:15:29.0446 4420 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:15:29.0515 4420 EventSystem - ok
20:15:29.0659 4420 [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:15:29.0759 4420 EvtEng - ok
20:15:29.0775 4420 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:15:29.0819 4420 exfat - ok
20:15:29.0840 4420 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:15:29.0882 4420 fastfat - ok
20:15:29.0948 4420 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
20:15:30.0047 4420 Fax - ok
20:15:30.0069 4420 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:15:30.0100 4420 fdc - ok
20:15:30.0127 4420 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:15:30.0186 4420 fdPHost - ok
20:15:30.0205 4420 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:15:30.0306 4420 FDResPub - ok
20:15:30.0369 4420 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:15:30.0401 4420 FileInfo - ok
20:15:30.0409 4420 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:15:30.0484 4420 Filetrace - ok
20:15:30.0488 4420 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:15:30.0506 4420 flpydisk - ok
20:15:30.0531 4420 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:15:30.0552 4420 FltMgr - ok
20:15:30.0632 4420 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
20:15:30.0737 4420 FontCache - ok
20:15:30.0836 4420 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:15:30.0866 4420 FontCache3.0.0.0 - ok
20:15:30.0891 4420 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:15:30.0906 4420 FsDepends - ok
20:15:30.0992 4420 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:15:31.0028 4420 Fs_Rec - ok
20:15:31.0121 4420 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:15:31.0158 4420 fvevol - ok
20:15:31.0196 4420 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:15:31.0218 4420 gagp30kx - ok
20:15:31.0283 4420 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:15:31.0303 4420 GEARAspiWDM - ok
20:15:31.0367 4420 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
20:15:31.0454 4420 gpsvc - ok
20:15:31.0637 4420 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:15:31.0663 4420 gupdate - ok
20:15:31.0667 4420 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:15:31.0680 4420 gupdatem - ok
20:15:31.0819 4420 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:15:31.0845 4420 gusvc - ok
20:15:31.0863 4420 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:15:31.0927 4420 hcw85cir - ok
20:15:32.0003 4420 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:15:32.0075 4420 HDAudBus - ok
20:15:32.0106 4420 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:15:32.0171 4420 HidBatt - ok
20:15:32.0209 4420 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:15:32.0293 4420 HidBth - ok
20:15:32.0322 4420 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:15:32.0406 4420 HidIr - ok
20:15:32.0471 4420 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:15:32.0571 4420 hidserv - ok
20:15:32.0638 4420 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:15:32.0687 4420 HidUsb - ok
20:15:32.0752 4420 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:15:32.0812 4420 hkmsvc - ok
20:15:32.0847 4420 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:15:32.0891 4420 HomeGroupListener - ok
20:15:32.0939 4420 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:15:33.0002 4420 HomeGroupProvider - ok
20:15:33.0028 4420 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
20:15:33.0043 4420 HpSAMD - ok
20:15:33.0085 4420 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:15:33.0168 4420 HTTP - ok
20:15:33.0179 4420 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:15:33.0193 4420 hwpolicy - ok
20:15:33.0273 4420 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:15:33.0309 4420 i8042prt - ok
20:15:33.0347 4420 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:15:33.0378 4420 iaStor - ok
20:15:33.0448 4420 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:15:33.0493 4420 iaStorV - ok
20:15:33.0541 4420 [ E44F0B4DC753C14930B8DC48BB7A1644 ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
20:15:33.0596 4420 iBtFltCoex - ok
20:15:33.0757 4420 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:15:33.0803 4420 idsvc - ok
20:15:34.0737 4420 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:15:35.0229 4420 igfx - ok
20:15:35.0275 4420 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:15:35.0293 4420 iirsp - ok
20:15:35.0336 4420 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
20:15:35.0425 4420 IKEEXT - ok
20:15:35.0486 4420 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
20:15:35.0592 4420 Impcd - ok
20:15:35.0766 4420 [ A9853214CC97796579D75B1F59C51DCD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:15:35.0870 4420 IntcAzAudAddService - ok
20:15:35.0917 4420 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
20:15:35.0996 4420 IntcDAud - ok
20:15:36.0041 4420 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
20:15:36.0100 4420 intelide - ok
20:15:36.0150 4420 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:15:36.0210 4420 intelppm - ok
20:15:36.0249 4420 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:15:36.0335 4420 IPBusEnum - ok
20:15:36.0339 4420 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:15:36.0424 4420 IpFilterDriver - ok
20:15:36.0491 4420 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:15:36.0576 4420 iphlpsvc - ok
20:15:36.0583 4420 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:15:36.0651 4420 IPMIDRV - ok
20:15:36.0668 4420 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:15:36.0714 4420 IPNAT - ok
20:15:36.0775 4420 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:15:36.0808 4420 iPod Service - ok
20:15:36.0865 4420 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:15:36.0912 4420 IRENUM - ok
20:15:36.0972 4420 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
20:15:37.0002 4420 isapnp - ok
20:15:37.0023 4420 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:15:37.0042 4420 iScsiPrt - ok
20:15:37.0096 4420 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:15:37.0124 4420 kbdclass - ok
20:15:37.0158 4420 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:15:37.0240 4420 kbdhid - ok
20:15:37.0258 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
20:15:37.0275 4420 KeyIso - ok
20:15:37.0326 4420 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:15:37.0361 4420 KSecDD - ok
20:15:37.0392 4420 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:15:37.0424 4420 KSecPkg - ok
20:15:37.0439 4420 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:15:37.0503 4420 ksthunk - ok
20:15:37.0574 4420 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:15:37.0654 4420 KtmRm - ok
20:15:37.0781 4420 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:15:37.0929 4420 LanmanServer - ok
20:15:37.0969 4420 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:15:38.0126 4420 LanmanWorkstation - ok
20:15:38.0733 4420 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:15:38.0812 4420 lltdio - ok
20:15:38.0835 4420 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:15:38.0880 4420 lltdsvc - ok
20:15:38.0974 4420 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:15:39.0040 4420 lmhosts - ok
20:15:39.0129 4420 [ 7F32D4C47A50E7223491E8FB9359907D ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:15:39.0164 4420 LMS - ok
20:15:39.0229 4420 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:15:39.0258 4420 LSI_FC - ok
20:15:39.0263 4420 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:15:39.0278 4420 LSI_SAS - ok
20:15:39.0301 4420 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:15:39.0327 4420 LSI_SAS2 - ok
20:15:39.0347 4420 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:15:39.0366 4420 LSI_SCSI - ok
20:15:39.0377 4420 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:15:39.0452 4420 luafv - ok
20:15:39.0525 4420 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:15:39.0553 4420 MBAMProtector - ok
20:15:39.0680 4420 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:15:39.0709 4420 MBAMScheduler - ok
20:15:39.0792 4420 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:15:39.0833 4420 MBAMService - ok
20:15:39.0883 4420 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:15:39.0943 4420 Mcx2Svc - ok
20:15:39.0947 4420 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:15:39.0961 4420 megasas - ok
20:15:40.0033 4420 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:15:40.0057 4420 MegaSR - ok
20:15:40.0124 4420 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:15:40.0349 4420 MEIx64 - ok
20:15:40.0449 4420 Microsoft SharePoint Workspace Audit Service - ok
20:15:40.0823 4420 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:15:40.0910 4420 MMCSS - ok
20:15:40.0948 4420 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:15:41.0007 4420 Modem - ok
20:15:41.0055 4420 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:15:41.0116 4420 monitor - ok
20:15:41.0145 4420 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:15:41.0160 4420 mouclass - ok
20:15:41.0180 4420 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:15:41.0230 4420 mouhid - ok
20:15:41.0251 4420 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:15:41.0267 4420 mountmgr - ok
20:15:41.0422 4420 [ 19E4BAA7BE36144C41AF844DE1CFB50D ] Movielink Core Service C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\MovielinkCore.exe
20:15:41.0472 4420 Movielink Core Service - ok
20:15:41.0549 4420 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:15:41.0564 4420 MozillaMaintenance - ok
20:15:41.0592 4420 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
20:15:41.0624 4420 mpio - ok
20:15:41.0677 4420 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:15:41.0736 4420 mpsdrv - ok
20:15:41.0888 4420 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:15:41.0949 4420 MpsSvc - ok
20:15:42.0221 4420 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:15:42.0604 4420 MRxDAV - ok
20:15:42.0654 4420 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:15:42.0789 4420 mrxsmb - ok
20:15:42.0821 4420 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:15:42.0863 4420 mrxsmb10 - ok
20:15:42.0884 4420 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:15:42.0938 4420 mrxsmb20 - ok
20:15:42.0979 4420 [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
20:15:42.0994 4420 msahci - ok
20:15:43.0020 4420 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
20:15:43.0053 4420 msdsm - ok
20:15:43.0103 4420 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:15:43.0177 4420 MSDTC - ok
20:15:43.0220 4420 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:15:43.0262 4420 Msfs - ok
20:15:43.0325 4420 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:15:43.0436 4420 mshidkmdf - ok
20:15:43.0456 4420 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
20:15:43.0471 4420 msisadrv - ok
20:15:43.0511 4420 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:15:43.0594 4420 MSiSCSI - ok
20:15:43.0597 4420 msiserver - ok
20:15:43.0658 4420 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:15:43.0742 4420 MSKSSRV - ok
20:15:43.0796 4420 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:15:43.0861 4420 MSPCLOCK - ok
20:15:43.0915 4420 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:15:43.0987 4420 MSPQM - ok
20:15:44.0008 4420 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:15:44.0048 4420 MsRPC - ok
20:15:44.0063 4420 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:15:44.0078 4420 mssmbios - ok
20:15:44.0125 4420 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:15:44.0218 4420 MSTEE - ok
20:15:44.0237 4420 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:15:44.0254 4420 MTConfig - ok
20:15:44.0276 4420 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:15:44.0290 4420 Mup - ok
20:15:44.0360 4420 [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:15:44.0389 4420 MyWiFiDHCPDNS - ok
20:15:44.0419 4420 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
20:15:44.0487 4420 napagent - ok
20:15:44.0538 4420 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:15:44.0594 4420 NativeWifiP - ok
20:15:44.0826 4420 [ A3151B3463EEA7E47F618F115D0D142E ] NDIS C:\Windows\system32\drivers\ndis.sys
20:15:44.0860 4420 NDIS - ok
20:15:44.0897 4420 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:15:44.0942 4420 NdisCap - ok
20:15:44.0985 4420 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:15:45.0082 4420 NdisTapi - ok
20:15:45.0136 4420 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:15:45.0191 4420 Ndisuio - ok
20:15:45.0236 4420 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:15:45.0295 4420 NdisWan - ok
20:15:45.0326 4420 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:15:45.0410 4420 NDProxy - ok
20:15:45.0429 4420 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:15:45.0478 4420 NetBIOS - ok
20:15:45.0504 4420 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:15:45.0596 4420 NetBT - ok
20:15:45.0623 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
20:15:45.0640 4420 Netlogon - ok
20:15:45.0667 4420 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:15:45.0773 4420 Netman - ok
20:15:45.0804 4420 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:15:45.0873 4420 netprofm - ok
20:15:45.0929 4420 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:15:45.0966 4420 NetTcpPortSharing - ok
20:15:46.0725 4420 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
20:15:46.0982 4420 NETwNs64 - ok
20:15:47.0035 4420 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:15:47.0078 4420 nfrd960 - ok
20:15:47.0197 4420 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:15:47.0301 4420 NlaSvc - ok
20:15:47.0334 4420 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:15:47.0428 4420 Npfs - ok
20:15:47.0463 4420 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:15:47.0550 4420 nsi - ok
20:15:47.0564 4420 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:15:47.0670 4420 nsiproxy - ok
20:15:47.0839 4420 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:15:47.0888 4420 Ntfs - ok
20:15:47.0913 4420 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:15:48.0000 4420 Null - ok
20:15:48.0051 4420 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
20:15:48.0136 4420 nusb3hub - ok
20:15:48.0196 4420 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:15:48.0246 4420 nusb3xhc - ok
20:15:48.0360 4420 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:15:48.0376 4420 nvraid - ok
20:15:48.0420 4420 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:15:48.0451 4420 nvstor - ok
20:15:48.0480 4420 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
20:15:48.0510 4420 nv_agp - ok
20:15:48.0532 4420 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:15:48.0570 4420 ohci1394 - ok
20:15:48.0653 4420 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:15:48.0692 4420 ose - ok
20:15:49.0156 4420 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:15:49.0345 4420 osppsvc - ok
20:15:49.0401 4420 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:15:49.0494 4420 p2pimsvc - ok
20:15:49.0659 4420 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:15:49.0681 4420 p2psvc - ok
20:15:49.0715 4420 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:15:49.0734 4420 Parport - ok
20:15:49.0761 4420 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:15:49.0777 4420 partmgr - ok
20:15:49.0851 4420 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:15:49.0954 4420 PcaSvc - ok
20:15:49.0984 4420 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
20:15:50.0020 4420 pci - ok
20:15:50.0042 4420 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
20:15:50.0072 4420 pciide - ok
20:15:50.0096 4420 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:15:50.0124 4420 pcmcia - ok
20:15:50.0150 4420 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:15:50.0166 4420 pcw - ok
20:15:50.0210 4420 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:15:50.0292 4420 PEAUTH - ok
20:15:50.0882 4420 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:15:50.0980 4420 PerfHost - ok
20:15:51.0128 4420 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
20:15:51.0240 4420 pla - ok
20:15:51.0385 4420 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:15:51.0478 4420 PlugPlay - ok
20:15:51.0545 4420 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:15:51.0564 4420 PNRPAutoReg - ok
20:15:51.0597 4420 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:15:51.0617 4420 PNRPsvc - ok
20:15:51.0714 4420 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:15:51.0783 4420 PolicyAgent - ok
20:15:51.0815 4420 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:15:51.0884 4420 Power - ok
20:15:51.0936 4420 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:15:52.0012 4420 PptpMiniport - ok
20:15:52.0107 4420 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:15:52.0176 4420 Processor - ok
20:15:52.0259 4420 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
20:15:52.0333 4420 ProfSvc - ok
20:15:52.0379 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:15:52.0396 4420 ProtectedStorage - ok
20:15:52.0484 4420 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:15:52.0525 4420 Psched - ok
20:15:52.0579 4420 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:15:52.0606 4420 PxHlpa64 - ok
20:15:52.0800 4420 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:15:52.0848 4420 ql2300 - ok
20:15:52.0884 4420 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:15:52.0902 4420 ql40xx - ok
20:15:52.0979 4420 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:15:53.0016 4420 QWAVE - ok
20:15:53.0039 4420 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:15:53.0110 4420 QWAVEdrv - ok
20:15:53.0150 4420 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:15:53.0216 4420 RasAcd - ok
20:15:53.0300 4420 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:15:53.0342 4420 RasAgileVpn - ok
20:15:53.0392 4420 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:15:53.0490 4420 RasAuto - ok
20:15:53.0526 4420 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:15:53.0604 4420 Rasl2tp - ok
20:15:53.0707 4420 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
20:15:53.0792 4420 RasMan - ok
20:15:53.0814 4420 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:15:53.0886 4420 RasPppoe - ok
20:15:53.0949 4420 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:15:54.0036 4420 RasSstp - ok
20:15:54.0149 4420 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:15:54.0238 4420 rdbss - ok
20:15:54.0270 4420 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:15:54.0342 4420 rdpbus - ok
20:15:54.0375 4420 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:15:54.0415 4420 RDPCDD - ok
20:15:54.0477 4420 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:15:54.0570 4420 RDPENCDD - ok
20:15:54.0602 4420 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:15:54.0661 4420 RDPREFMP - ok
20:15:54.0761 4420 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:15:54.0845 4420 RDPWD - ok
20:15:54.0892 4420 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:15:54.0919 4420 rdyboost - ok
20:15:55.0365 4420 [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:15:55.0394 4420 RegSrvc - ok
20:15:55.0429 4420 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:15:55.0504 4420 RemoteAccess - ok
20:15:55.0595 4420 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:15:55.0676 4420 RemoteRegistry - ok
20:15:55.0766 4420 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:15:55.0833 4420 RFCOMM - ok
20:15:56.0480 4420 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
20:15:56.0574 4420 RoxMediaDB12OEM - ok
20:15:56.0622 4420 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
20:15:56.0654 4420 RoxWatch12 - ok
20:15:56.0760 4420 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:15:56.0827 4420 RpcEptMapper - ok
20:15:56.0874 4420 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:15:56.0949 4420 RpcLocator - ok
20:15:56.0996 4420 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
20:15:57.0045 4420 RpcSs - ok
20:15:57.0095 4420 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:15:57.0162 4420 rspndr - ok
20:15:57.0286 4420 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:15:57.0302 4420 RSUSBSTOR - ok
20:15:57.0360 4420 [ A73ED14670220307874AD6BC2F279349 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:15:57.0404 4420 RTL8167 - ok
20:15:57.0423 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
20:15:57.0440 4420 SamSs - ok
20:15:57.0472 4420 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:15:57.0491 4420 sbp2port - ok
20:15:57.0519 4420 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:15:57.0591 4420 SCardSvr - ok
20:15:57.0622 4420 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:15:57.0721 4420 scfilter - ok
20:15:57.0910 4420 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
20:15:57.0997 4420 Schedule - ok
20:15:58.0042 4420 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:15:58.0111 4420 SCPolicySvc - ok
20:15:58.0168 4420 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:15:58.0283 4420 SDRSVC - ok
20:15:58.0338 4420 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:15:58.0441 4420 secdrv - ok
20:15:58.0450 4420 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
20:15:58.0549 4420 seclogon - ok
20:15:58.0590 4420 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:15:58.0715 4420 SENS - ok
20:15:58.0734 4420 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:15:58.0835 4420 SensrSvc - ok
20:15:58.0889 4420 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:15:58.0930 4420 Serenum - ok
20:15:58.0935 4420 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:15:58.0953 4420 Serial - ok
20:15:58.0987 4420 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:15:59.0022 4420 sermouse - ok
20:15:59.0060 4420 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
20:15:59.0104 4420 SessionEnv - ok
20:15:59.0118 4420 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:15:59.0250 4420 sffdisk - ok
20:15:59.0270 4420 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:15:59.0339 4420 sffp_mmc - ok
20:15:59.0378 4420 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:15:59.0410 4420 sffp_sd - ok
20:15:59.0420 4420 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:15:59.0490 4420 sfloppy - ok
20:15:59.0565 4420 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
20:15:59.0630 4420 Sftfs - ok
20:15:59.0733 4420 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:15:59.0755 4420 sftlist - ok
20:15:59.0793 4420 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
20:15:59.0829 4420 Sftplay - ok
20:15:59.0849 4420 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
20:15:59.0861 4420 Sftredir - ok
20:16:00.0422 4420 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:16:00.0474 4420 SftService - ok
20:16:00.0536 4420 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
20:16:00.0572 4420 Sftvol - ok
20:16:00.0593 4420 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:16:00.0610 4420 sftvsa - ok
20:16:00.0726 4420 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:16:00.0792 4420 SharedAccess - ok
20:16:00.0875 4420 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:16:00.0936 4420 ShellHWDetection - ok
20:16:00.0985 4420 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:16:01.0014 4420 SiSRaid2 - ok
20:16:01.0053 4420 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:16:01.0099 4420 SiSRaid4 - ok
20:16:01.0169 4420 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:16:01.0184 4420 SkypeUpdate - ok
20:16:01.0233 4420 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:16:01.0318 4420 Smb - ok
20:16:01.0370 4420 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:16:01.0421 4420 SNMPTRAP - ok
20:16:01.0446 4420 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:16:01.0471 4420 spldr - ok
20:16:01.0518 4420 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
20:16:01.0582 4420 Spooler - ok
20:16:01.0796 4420 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
20:16:01.0948 4420 sppsvc - ok
20:16:01.0998 4420 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:16:02.0104 4420 sppuinotify - ok
20:16:02.0234 4420 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:16:02.0349 4420 srv - ok
20:16:02.0411 4420 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:16:02.0447 4420 srv2 - ok
20:16:02.0472 4420 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:16:02.0545 4420 srvnet - ok
20:16:02.0579 4420 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:16:02.0676 4420 SSDPSRV - ok
20:16:02.0701 4420 [ 53E966ABDED5C56DC1A655F1945BDC6B ] ssfmonm C:\Windows\system32\DRIVERS\ssfmonm.sys
20:16:02.0714 4420 ssfmonm - ok
20:16:02.0725 4420 [ 1F22B15808A1D9A5637E52DEC860FA28 ] ssidrv C:\Windows\system32\DRIVERS\ssidrv.sys
20:16:02.0740 4420 ssidrv - ok
20:16:02.0757 4420 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:16:02.0801 4420 SstpSvc - ok
20:16:02.0825 4420 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:16:02.0859 4420 stexstor - ok
20:16:02.0987 4420 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
20:16:03.0098 4420 stisvc - ok
20:16:03.0168 4420 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
20:16:03.0193 4420 stllssvr - ok
20:16:03.0213 4420 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:16:03.0227 4420 swenum - ok
20:16:03.0245 4420 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:16:03.0356 4420 swprv - ok
20:16:03.0515 4420 [ BCD5B4AB94DA436F083FCD0C636D00F3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:16:03.0576 4420 SynTP - ok
20:16:03.0639 4420 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
20:16:03.0785 4420 SysMain - ok
20:16:03.0814 4420 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:16:03.0882 4420 TabletInputService - ok
20:16:03.0912 4420 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
20:16:03.0987 4420 TapiSrv - ok
20:16:04.0006 4420 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:16:04.0051 4420 TBS - ok
20:16:04.0148 4420 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:16:04.0243 4420 Tcpip - ok
20:16:04.0284 4420 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:16:04.0328 4420 TCPIP6 - ok
20:16:04.0393 4420 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:16:04.0449 4420 tcpipreg - ok
20:16:04.0470 4420 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:16:04.0544 4420 TDPIPE - ok
20:16:04.0633 4420 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:16:04.0681 4420 TDTCP - ok
20:16:04.0691 4420 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:16:04.0770 4420 tdx - ok
20:16:04.0858 4420 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:16:04.0900 4420 TermDD - ok
20:16:04.0948 4420 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
20:16:05.0064 4420 TermService - ok
20:16:05.0088 4420 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:16:05.0143 4420 Themes - ok
20:16:05.0233 4420 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:16:05.0290 4420 THREADORDER - ok
20:16:05.0374 4420 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:16:05.0586 4420 TrkWks - ok
20:16:05.0653 4420 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:16:05.0671 4420 TrustedInstaller - ok
20:16:05.0690 4420 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:16:05.0795 4420 tssecsrv - ok
20:16:05.0891 4420 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:16:05.0963 4420 tunnel - ok
20:16:05.0990 4420 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:16:06.0005 4420 uagp35 - ok
20:16:06.0047 4420 [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:16:06.0092 4420 udfs - ok
20:16:06.0122 4420 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:16:06.0163 4420 UI0Detect - ok
20:16:06.0175 4420 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
20:16:06.0190 4420 uliagpkx - ok
20:16:06.0234 4420 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:16:06.0267 4420 umbus - ok
20:16:06.0295 4420 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:16:06.0345 4420 UmPass - ok
20:16:06.0696 4420 [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:16:06.0748 4420 UNS - ok
20:16:06.0821 4420 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:16:06.0901 4420 upnphost - ok
20:16:06.0941 4420 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:16:07.0003 4420 USBAAPL64 - ok
20:16:07.0028 4420 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:16:07.0120 4420 usbccgp - ok
20:16:07.0177 4420 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:16:07.0229 4420 usbcir - ok
20:16:07.0233 4420 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:16:07.0255 4420 usbehci - ok
20:16:07.0301 4420 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:16:07.0337 4420 usbhub - ok
20:16:07.0356 4420 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:16:07.0372 4420 usbohci - ok
20:16:07.0384 4420 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:16:07.0404 4420 usbprint - ok
20:16:07.0478 4420 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:16:07.0541 4420 usbscan - ok
20:16:07.0570 4420 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:16:07.0631 4420 USBSTOR - ok
20:16:07.0679 4420 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:16:07.0720 4420 usbuhci - ok
20:16:07.0755 4420 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:16:07.0785 4420 usbvideo - ok
20:16:07.0805 4420 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:16:07.0878 4420 UxSms - ok
20:16:07.0900 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
20:16:07.0919 4420 VaultSvc - ok
20:16:07.0971 4420 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
20:16:07.0988 4420 vdrvroot - ok
20:16:08.0012 4420 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
20:16:08.0082 4420 vds - ok
20:16:08.0103 4420 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:16:08.0124 4420 vga - ok
20:16:08.0138 4420 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:16:08.0218 4420 VgaSave - ok
20:16:08.0241 4420 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
20:16:08.0259 4420 vhdmp - ok
20:16:08.0286 4420 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
20:16:08.0319 4420 viaide - ok
20:16:08.0343 4420 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
20:16:08.0359 4420 volmgr - ok
20:16:08.0383 4420 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:16:08.0406 4420 volmgrx - ok
20:16:08.0473 4420 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:16:08.0507 4420 volsnap - ok
20:16:08.0547 4420 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:16:08.0564 4420 vsmraid - ok
20:16:08.0654 4420 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
20:16:08.0818 4420 VSS - ok
20:16:08.0852 4420 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:16:08.0919 4420 vwifibus - ok
20:16:08.0948 4420 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:16:09.0017 4420 vwififlt - ok
20:16:09.0070 4420 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:16:09.0138 4420 vwifimp - ok
20:16:09.0267 4420 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:16:09.0362 4420 W32Time - ok
20:16:09.0370 4420 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:16:09.0419 4420 WacomPen - ok
20:16:09.0470 4420 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:16:09.0522 4420 WANARP - ok
20:16:09.0545 4420 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:16:09.0603 4420 Wanarpv6 - ok
20:16:09.0762 4420 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:16:09.0815 4420 WatAdminSvc - ok
20:16:10.0021 4420 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
20:16:10.0172 4420 wbengine - ok
20:16:10.0205 4420 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:16:10.0249 4420 WbioSrvc - ok
20:16:10.0281 4420 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:16:10.0379 4420 wcncsvc - ok
20:16:10.0438 4420 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:16:10.0487 4420 WcsPlugInService - ok
20:16:10.0519 4420 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:16:10.0534 4420 Wd - ok
20:16:10.0582 4420 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:16:10.0643 4420 Wdf01000 - ok
20:16:10.0666 4420 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:16:10.0747 4420 WdiServiceHost - ok
20:16:10.0752 4420 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:16:10.0777 4420 WdiSystemHost - ok
20:16:10.0858 4420 [ 94DC2BF6CBAAA95E369C3756D3115A76 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
20:16:10.0883 4420 wdkmd - ok
20:16:10.0914 4420 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
20:16:10.0991 4420 WebClient - ok
20:16:11.0321 4420 [ BE0050EA38AC55F12774B625CB4D7563 ] WebrootSpySweeperService C:\Program Files (x86)\Webroot\Security\current\plugins\antimalware\AEI.exe
20:16:11.0466 4420 WebrootSpySweeperService - ok
20:16:11.0519 4420 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:16:11.0589 4420 Wecsvc - ok
20:16:11.0625 4420 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:16:11.0685 4420 wercplsupport - ok
20:16:11.0748 4420 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:16:11.0817 4420 WerSvc - ok
20:16:11.0907 4420 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:16:11.0964 4420 WfpLwf - ok
20:16:12.0074 4420 [ 64DE79BF805724F0606FE7B3B2F13784 ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
20:16:12.0094 4420 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - warning
20:16:12.0094 4420 WiMAXAppSrv - detected UnsignedFile.Multi.Generic (1)
20:16:12.0290 4420 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:16:12.0308 4420 WimFltr - ok
20:16:12.0418 4420 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:16:12.0437 4420 WIMMount - ok
20:16:12.0454 4420 WinDefend - ok
20:16:12.0460 4420 WinHttpAutoProxySvc - ok
20:16:12.0551 4420 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:16:12.0602 4420 Winmgmt - ok
20:16:12.0794 4420 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
20:16:12.0878 4420 WinRM - ok
20:16:12.0936 4420 [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:16:13.0025 4420 WinUsb - ok
20:16:13.0178 4420 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:16:13.0263 4420 Wlansvc - ok
20:16:13.0318 4420 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:16:13.0350 4420 wlcrasvc - ok
20:16:13.0451 4420 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:16:13.0563 4420 wlidsvc - ok
20:16:13.0656 4420 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:16:13.0685 4420 WmiAcpi - ok
20:16:13.0772 4420 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:16:13.0856 4420 wmiApSrv - ok
20:16:13.0934 4420 WMPNetworkSvc - ok
20:16:13.0996 4420 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:16:14.0060 4420 WPCSvc - ok
20:16:14.0078 4420 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:16:14.0156 4420 WPDBusEnum - ok
20:16:14.0531 4420 [ D3B14A9CA2A03F8D0385C6BAA90FE928 ] WRConsumerService C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
20:16:14.0669 4420 WRConsumerService - ok
20:16:14.0695 4420 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:16:14.0791 4420 ws2ifsl - ok
20:16:14.0840 4420 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
20:16:14.0971 4420 wscsvc - ok
20:16:14.0980 4420 WSearch - ok
20:16:15.0214 4420 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:16:15.0270 4420 wuauserv - ok
20:16:15.0333 4420 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:16:15.0415 4420 WudfPf - ok
20:16:15.0514 4420 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:16:15.0571 4420 WUDFRd - ok
20:16:15.0606 4420 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:16:15.0669 4420 wudfsvc - ok
20:16:15.0733 4420 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:16:15.0794 4420 WwanSvc - ok
20:16:15.0827 4420 ================ Scan global ===============================
20:16:15.0865 4420 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:16:15.0922 4420 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\system32\winsrv.dll
20:16:15.0942 4420 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\system32\winsrv.dll
20:16:15.0981 4420 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:16:16.0048 4420 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:16:16.0060 4420 [Global] - ok
20:16:16.0061 4420 ================ Scan MBR ==================================
20:16:16.0088 4420 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:16:16.0091 4420 Suspicious mbr (Forged): \Device\Harddisk0\DR0
20:16:16.0166 4420 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
20:16:16.0166 4420 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
20:16:20.0621 4420 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:16:20.0621 4420 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:16:20.0622 4420 ================ Scan VBR ==================================
20:16:20.0675 4420 [ 5CCD80B2CBF4E0A09DA43A29BFFC2BF8 ] \Device\Harddisk0\DR0\Partition1
20:16:20.0679 4420 \Device\Harddisk0\DR0\Partition1 - ok
20:16:20.0765 4420 [ C845D5C8BB657EE4EBCDF33A84300C9A ] \Device\Harddisk0\DR0\Partition2
20:16:20.0768 4420 \Device\Harddisk0\DR0\Partition2 - ok
20:16:20.0770 4420 ================ Scan active images ========================
20:16:20.0774 4420 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
20:16:20.0774 4420 C:\Windows\System32\drivers\crashdmp.sys - ok
20:16:20.0783 4420 [ D469B77687E12FE43E344806740B624D ] C:\Windows\System32\drivers\iaStor.sys
20:16:20.0783 4420 C:\Windows\System32\drivers\iaStor.sys - ok
20:16:20.0791 4420 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
20:16:20.0791 4420 C:\Windows\System32\drivers\dumpfve.sys - ok
20:16:20.0798 4420 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
20:16:20.0798 4420 C:\Windows\System32\drivers\cdrom.sys - ok
20:16:20.0802 4420 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] C:\Windows\System32\drivers\aswSnx.sys
20:16:20.0802 4420 C:\Windows\System32\drivers\aswSnx.sys - ok
20:16:20.0806 4420 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
20:16:20.0806 4420 C:\Windows\System32\drivers\beep.sys - ok
20:16:20.0809 4420 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
20:16:20.0809 4420 C:\Windows\System32\drivers\null.sys - ok
20:16:20.0813 4420 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
20:16:20.0813 4420 C:\Windows\System32\drivers\vga.sys - ok
20:16:20.0816 4420 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
20:16:20.0816 4420 C:\Windows\System32\drivers\videoprt.sys - ok
20:16:20.0820 4420 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
20:16:20.0820 4420 C:\Windows\System32\drivers\watchdog.sys - ok
20:16:20.0823 4420 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
20:16:20.0823 4420 C:\Windows\System32\drivers\RDPCDD.sys - ok
20:16:20.0827 4420 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
20:16:20.0827 4420 C:\Windows\System32\drivers\RDPENCDD.sys - ok
20:16:20.0831 4420 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
20:16:20.0831 4420 C:\Windows\System32\drivers\msfs.sys - ok
20:16:20.0834 4420 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
20:16:20.0834 4420 C:\Windows\System32\drivers\RDPREFMP.sys - ok
20:16:20.0838 4420 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
20:16:20.0838 4420 C:\Windows\System32\drivers\aswTdi.sys - ok
20:16:20.0842 4420 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
20:16:20.0842 4420 C:\Windows\System32\drivers\npfs.sys - ok
20:16:20.0846 4420 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
20:16:20.0846 4420 C:\Windows\System32\drivers\tdi.sys - ok
20:16:20.0849 4420 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
20:16:20.0849 4420 C:\Windows\System32\drivers\tdx.sys - ok
20:16:20.0853 4420 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
20:16:20.0853 4420 C:\Windows\System32\drivers\afd.sys - ok
20:16:20.0856 4420 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
20:16:20.0856 4420 C:\Windows\System32\drivers\netbt.sys - ok
20:16:20.0860 4420 [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
20:16:20.0860 4420 C:\Windows\System32\drivers\aswRdr2.sys - ok
20:16:20.0863 4420 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
20:16:20.0863 4420 C:\Windows\System32\drivers\wfplwf.sys - ok
20:16:20.0870 4420 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
20:16:20.0870 4420 C:\Windows\System32\drivers\pacer.sys - ok
20:16:20.0872 4420 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
20:16:20.0872 4420 C:\Windows\System32\drivers\vwififlt.sys - ok
20:16:20.0876 4420 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
20:16:20.0876 4420 C:\Windows\System32\drivers\netbios.sys - ok
20:16:20.0880 4420 [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
20:16:20.0880 4420 C:\Windows\System32\drivers\wanarp.sys - ok
20:16:20.0884 4420 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
20:16:20.0884 4420 C:\Windows\System32\drivers\termdd.sys - ok
20:16:20.0887 4420 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
20:16:20.0887 4420 C:\Windows\System32\drivers\nsiproxy.sys - ok
20:16:20.0891 4420 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
20:16:20.0891 4420 C:\Windows\System32\drivers\rdbss.sys - ok
20:16:20.0895 4420 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
20:16:20.0895 4420 C:\Windows\System32\drivers\discache.sys - ok
20:16:20.0898 4420 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
20:16:20.0898 4420 C:\Windows\System32\drivers\mssmbios.sys - ok
20:16:20.0902 4420 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
20:16:20.0902 4420 C:\Windows\System32\drivers\dfsc.sys - ok
20:16:20.0905 4420 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
20:16:20.0905 4420 C:\Windows\System32\drivers\blbdrive.sys - ok
20:16:20.0909 4420 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] C:\Windows\System32\drivers\aswSP.sys
20:16:20.0909 4420 C:\Windows\System32\drivers\aswSP.sys - ok
20:16:20.0913 4420 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
20:16:20.0913 4420 C:\Windows\System32\drivers\tunnel.sys - ok
20:16:20.0916 4420 [ 56905D1F244981BAE418ED3096E8F544 ] C:\Windows\System32\ntdll.dll
20:16:20.0916 4420 C:\Windows\System32\ntdll.dll - ok
20:16:20.0920 4420 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
20:16:20.0920 4420 C:\Windows\System32\smss.exe - ok
20:16:20.0923 4420 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
20:16:20.0923 4420 C:\Windows\System32\drivers\wmiacpi.sys - ok
20:16:20.0927 4420 [ 795C99DC4F574C97C03D0BB39CF099EE ] C:\Windows\System32\drivers\igdkmd64.sys
20:16:20.0927 4420 C:\Windows\System32\drivers\igdkmd64.sys - ok
20:16:20.0930 4420 [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
20:16:20.0930 4420 C:\Windows\System32\drivers\dxgkrnl.sys - ok
20:16:20.0934 4420 [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
20:16:20.0934 4420 C:\Windows\System32\drivers\dxgmms1.sys - ok
20:16:20.0937 4420 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
20:16:20.0937 4420 C:\Windows\System32\drivers\HECIx64.sys - ok
20:16:20.0942 4420 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
20:16:20.0942 4420 C:\Windows\System32\drivers\usbehci.sys - ok
20:16:20.0945 4420 [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
20:16:20.0945 4420 C:\Windows\System32\drivers\usbport.sys - ok
20:16:20.0949 4420 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
20:16:20.0949 4420 C:\Windows\System32\drivers\hdaudbus.sys - ok
20:16:20.0952 4420 [ 5D262402B0634C998F8CBCEAD7DD8676 ] C:\Windows\System32\drivers\NETwNs64.sys
20:16:20.0952 4420 C:\Windows\System32\drivers\NETwNs64.sys - ok
20:16:20.0956 4420 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
20:16:20.0956 4420 C:\Windows\System32\drivers\vwifibus.sys - ok
20:16:20.0960 4420 [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
20:16:20.0960 4420 C:\Windows\System32\drivers\usbd.sys - ok
20:16:20.0964 4420 [ 7BDEC000D56D485021D9C1E63C2F81CA ] C:\Windows\System32\drivers\nusb3xhc.sys
20:16:20.0964 4420 C:\Windows\System32\drivers\nusb3xhc.sys - ok
20:16:20.0967 4420 [ A73ED14670220307874AD6BC2F279349 ] C:\Windows\System32\drivers\Rt64win7.sys
20:16:20.0967 4420 C:\Windows\System32\drivers\Rt64win7.sys - ok
20:16:20.0971 4420 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
20:16:20.0971 4420 C:\Windows\System32\drivers\i8042prt.sys - ok
20:16:20.0975 4420 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
20:16:20.0975 4420 C:\Windows\System32\drivers\kbdclass.sys - ok
20:16:20.0979 4420 [ BCD5B4AB94DA436F083FCD0C636D00F3 ] C:\Windows\System32\drivers\SynTP.sys
20:16:20.0979 4420 C:\Windows\System32\drivers\SynTP.sys - ok
20:16:20.0982 4420 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
20:16:20.0983 4420 C:\Windows\System32\drivers\mouclass.sys - ok
20:16:20.0986 4420 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
20:16:20.0986 4420 C:\Windows\System32\drivers\CmBatt.sys - ok
20:16:20.0988 4420 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
20:16:20.0988 4420 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
20:16:20.0992 4420 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
20:16:20.0992 4420 C:\Windows\System32\drivers\intelppm.sys - ok
20:16:20.0996 4420 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
20:16:20.0996 4420 C:\Windows\System32\drivers\agilevpn.sys - ok
20:16:21.0000 4420 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
20:16:21.0000 4420 C:\Windows\System32\drivers\CompositeBus.sys - ok
20:16:21.0003 4420 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
20:16:21.0003 4420 C:\Windows\System32\drivers\rasl2tp.sys - ok
20:16:21.0007 4420 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
20:16:21.0007 4420 C:\Windows\System32\drivers\ndistapi.sys - ok
20:16:21.0011 4420 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
20:16:21.0011 4420 C:\Windows\System32\drivers\ndiswan.sys - ok
20:16:21.0014 4420 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
20:16:21.0014 4420 C:\Windows\System32\drivers\raspppoe.sys - ok
20:16:21.0018 4420 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
20:16:21.0018 4420 C:\Windows\System32\drivers\raspptp.sys - ok
20:16:21.0021 4420 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
20:16:21.0021 4420 C:\Windows\System32\drivers\rassstp.sys - ok
20:16:21.0027 4420 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
20:16:21.0027 4420 C:\Windows\System32\drivers\ks.sys - ok
20:16:21.0030 4420 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
20:16:21.0030 4420 C:\Windows\System32\drivers\swenum.sys - ok
20:16:21.0034 4420 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
20:16:21.0034 4420 C:\Windows\System32\drivers\umbus.sys - ok
20:16:21.0037 4420 [ 3DCB409BCBD02AB0675682F8E42A410F ] C:\Windows\System32\drivers\bpenum.sys
20:16:21.0037 4420 C:\Windows\System32\drivers\bpenum.sys - ok
20:16:21.0041 4420 [ 94DC2BF6CBAAA95E369C3756D3115A76 ] C:\Windows\System32\drivers\WDKMD.sys
20:16:21.0041 4420 C:\Windows\System32\drivers\WDKMD.sys - ok
20:16:21.0045 4420 [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
20:16:21.0045 4420 C:\Windows\System32\drivers\usbhub.sys - ok
20:16:21.0048 4420 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] C:\Windows\System32\drivers\nusb3hub.sys
20:16:21.0048 4420 C:\Windows\System32\drivers\nusb3hub.sys - ok
20:16:21.0052 4420 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
20:16:21.0052 4420 C:\Windows\System32\drivers\ndproxy.sys - ok
20:16:21.0055 4420 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
20:16:21.0055 4420 C:\Windows\System32\drivers\drmk.sys - ok
20:16:21.0059 4420 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
20:16:21.0059 4420 C:\Windows\System32\drivers\portcls.sys - ok
20:16:21.0063 4420 [ A9853214CC97796579D75B1F59C51DCD ] C:\Windows\System32\drivers\RTKVHD64.sys
20:16:21.0063 4420 C:\Windows\System32\drivers\RTKVHD64.sys - ok
20:16:21.0067 4420 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
20:16:21.0067 4420 C:\Windows\System32\drivers\ksthunk.sys - ok
20:16:21.0070 4420 [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
20:16:21.0070 4420 C:\Windows\System32\drivers\IntcDAud.sys - ok
20:16:21.0074 4420 [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
20:16:21.0074 4420 C:\Windows\System32\autochk.exe - ok
20:16:21.0077 4420 [ 20BAEF7AE7848C873B6368A258230306 ] C:\Windows\System32\SsiEfr.exe
20:16:21.0077 4420 C:\Windows\System32\SsiEfr.exe - ok
20:16:21.0081 4420 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] C:\Windows\System32\drivers\usbccgp.sys
20:16:21.0081 4420 C:\Windows\System32\drivers\usbccgp.sys - ok
20:16:21.0085 4420 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
20:16:21.0086 4420 C:\Windows\System32\drivers\usbvideo.sys - ok
20:16:21.0090 4420 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] C:\Windows\System32\drivers\CtClsFlt.sys
20:16:21.0090 4420 C:\Windows\System32\drivers\CtClsFlt.sys - ok
20:16:21.0094 4420 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
20:16:21.0094 4420 C:\Windows\System32\ws2_32.dll - ok
20:16:21.0098 4420 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
20:16:21.0098 4420 C:\Windows\System32\urlmon.dll - ok
20:16:21.0101 4420 [ E3BC37881D92EB59EE0BA3B854A54D1E ] C:\Windows\System32\kernel32.dll
20:16:21.0101 4420 C:\Windows\System32\kernel32.dll - ok
20:16:21.0105 4420 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
20:16:21.0105 4420 C:\Windows\System32\msctf.dll - ok
20:16:21.0108 4420 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
20:16:21.0108 4420 C:\Windows\System32\rpcrt4.dll - ok
20:16:21.0112 4420 [ EC1220B647F0D995DA5CAD4153454779 ] C:\Windows\System32\drivers\btmhsf.sys
20:16:21.0112 4420 C:\Windows\System32\drivers\btmhsf.sys - ok
20:16:21.0116 4420 [ E44F0B4DC753C14930B8DC48BB7A1644 ] C:\Windows\System32\drivers\iBtFltCoex.sys
20:16:21.0116 4420 C:\Windows\System32\drivers\iBtFltCoex.sys - ok
20:16:21.0119 4420 [ D59773C7FDD3D795D6FE402EEEA8D71E ] C:\Windows\System32\drivers\bthport.sys
20:16:21.0119 4420 C:\Windows\System32\drivers\bthport.sys - ok
20:16:21.0123 4420 [ 8504842634DD144C075B6B0C982CCEC4 ] C:\Windows\System32\drivers\BTHUSB.SYS
20:16:21.0123 4420 C:\Windows\System32\drivers\BTHUSB.SYS - ok
20:16:21.0127 4420 [ 2EE68405BBADE51CBE1C973FF3A1A400 ] C:\Windows\System32\drivers\bpusb.sys
20:16:21.0127 4420 C:\Windows\System32\drivers\bpusb.sys - ok
20:16:21.0131 4420 [ 6C66EEF6669B14DF4F426990A1CA5112 ] C:\Windows\System32\drivers\bpmp.sys
20:16:21.0131 4420 C:\Windows\System32\drivers\bpmp.sys - ok
20:16:21.0134 4420 [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
20:16:21.0134 4420 C:\Windows\System32\drivers\rfcomm.sys - ok
20:16:21.0138 4420 [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
20:16:21.0138 4420 C:\Windows\System32\drivers\bthenum.sys - ok
20:16:21.0141 4420 [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
20:16:21.0142 4420 C:\Windows\System32\drivers\bthpan.sys - ok
20:16:21.0145 4420 [ 962BD3689E2C85F0BA97F3D7E7BA540B ] C:\Windows\System32\drivers\btmaux.sys
20:16:21.0145 4420 C:\Windows\System32\drivers\btmaux.sys - ok
20:16:21.0149 4420 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
20:16:21.0149 4420 C:\Windows\System32\clbcatq.dll - ok
20:16:21.0152 4420 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
20:16:21.0152 4420 C:\Windows\System32\oleaut32.dll - ok
20:16:21.0156 4420 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
20:16:21.0156 4420 C:\Windows\System32\imagehlp.dll - ok
20:16:21.0159 4420 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
20:16:21.0159 4420 C:\Windows\System32\nsi.dll - ok
20:16:21.0163 4420 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
20:16:21.0163 4420 C:\Windows\System32\setupapi.dll - ok
20:16:21.0167 4420 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
20:16:21.0167 4420 C:\Windows\System32\sechost.dll - ok
20:16:21.0170 4420 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
20:16:21.0170 4420 C:\Windows\System32\Wldap32.dll - ok
20:16:21.0174 4420 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
20:16:21.0174 4420 C:\Windows\System32\difxapi.dll - ok
20:16:21.0177 4420 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
20:16:21.0177 4420 C:\Windows\System32\normaliz.dll - ok
20:16:21.0181 4420 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
20:16:21.0181 4420 C:\Windows\System32\gdi32.dll - ok
20:16:21.0184 4420 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
20:16:21.0184 4420 C:\Windows\System32\psapi.dll - ok
20:16:21.0187 4420 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
20:16:21.0188 4420 C:\Windows\System32\imm32.dll - ok
20:16:21.0192 4420 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
20:16:21.0192 4420 C:\Windows\System32\lpk.dll - ok
20:16:21.0195 4420 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
20:16:21.0196 4420 C:\Windows\System32\msvcrt.dll - ok
20:16:21.0199 4420 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
20:16:21.0199 4420 C:\Windows\System32\wininet.dll - ok
20:16:21.0202 4420 [ BD5153969C41F697E23B9A43EF9228CE ] C:\Windows\System32\usp10.dll
20:16:21.0202 4420 C:\Windows\System32\usp10.dll - ok
20:16:21.0206 4420 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
20:16:21.0206 4420 C:\Windows\System32\advapi32.dll - ok
20:16:21.0209 4420 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
20:16:21.0209 4420 C:\Windows\System32\comdlg32.dll - ok
20:16:21.0213 4420 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
20:16:21.0213 4420 C:\Windows\System32\shell32.dll - ok
20:16:21.0217 4420 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
20:16:21.0217 4420 C:\Windows\System32\iertutil.dll - ok
20:16:21.0220 4420 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
20:16:21.0220 4420 C:\Windows\System32\user32.dll - ok
20:16:21.0224 4420 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
20:16:21.0224 4420 C:\Windows\System32\shlwapi.dll - ok
20:16:21.0227 4420 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
20:16:21.0227 4420 C:\Windows\System32\ole32.dll - ok
20:16:21.0231 4420 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
20:16:21.0231 4420 C:\Windows\System32\comctl32.dll - ok
20:16:21.0234 4420 [ 6657128E165146058C94E33FB497BB50 ] C:\Windows\System32\KernelBase.dll
20:16:21.0234 4420 C:\Windows\System32\KernelBase.dll - ok
20:16:21.0238 4420 [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
20:16:21.0238 4420 C:\Windows\System32\wintrust.dll - ok
20:16:21.0240 4420 [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
20:16:21.0240 4420 C:\Windows\System32\crypt32.dll - ok
20:16:21.0244 4420 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
20:16:21.0244 4420 C:\Windows\System32\cfgmgr32.dll - ok
20:16:21.0247 4420 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
20:16:21.0247 4420 C:\Windows\System32\devobj.dll - ok
20:16:21.0251 4420 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
20:16:21.0251 4420 C:\Windows\System32\msasn1.dll - ok
20:16:21.0254 4420 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
20:16:21.0254 4420 C:\Windows\SysWOW64\normaliz.dll - ok
20:16:21.0258 4420 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
20:16:21.0258 4420 C:\Windows\System32\drivers\dxapi.sys - ok
20:16:21.0262 4420 [ 298CC3E47CB19627639BFA84F424BDD4 ] C:\Windows\System32\win32k.sys
20:16:21.0262 4420 C:\Windows\System32\win32k.sys - ok
20:16:21.0265 4420 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
20:16:21.0265 4420 C:\Windows\System32\csrss.exe - ok
20:16:21.0269 4420 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
20:16:21.0269 4420 C:\Windows\System32\csrsrv.dll - ok
20:16:21.0272 4420 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
20:16:21.0272 4420 C:\Windows\System32\basesrv.dll - ok
20:16:21.0276 4420 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\System32\winsrv.dll
20:16:21.0276 4420 C:\Windows\System32\winsrv.dll - ok
20:16:21.0279 4420 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
20:16:21.0279 4420 C:\Windows\System32\drivers\monitor.sys - ok
20:16:21.0283 4420 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
20:16:21.0283 4420 C:\Windows\System32\sxssrv.dll - ok
20:16:21.0286 4420 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
20:16:21.0286 4420 C:\Windows\System32\tsddd.dll - ok
20:16:21.0290 4420 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
20:16:21.0290 4420 C:\Windows\System32\wininit.exe - ok
20:16:21.0293 4420 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
20:16:21.0293 4420 C:\Windows\System32\KBDUS.DLL - ok
20:16:21.0297 4420 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
20:16:21.0297 4420 C:\Windows\System32\profapi.dll - ok
20:16:21.0300 4420 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
20:16:21.0300 4420 C:\Windows\System32\RpcRtRemote.dll - ok
20:16:21.0307 4420 [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
20:16:21.0307 4420 C:\Windows\System32\cdd.dll - ok
20:16:21.0309 4420 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
20:16:21.0311 4420 C:\Windows\System32\sxs.dll - ok
20:16:21.0313 4420 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
20:16:21.0313 4420 C:\Windows\System32\WlS0WndH.dll - ok
20:16:21.0317 4420 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
20:16:21.0317 4420 C:\Windows\System32\cryptbase.dll - ok
20:16:21.0320 4420 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
20:16:21.0320 4420 C:\Windows\System32\apphelp.dll - ok
20:16:21.0324 4420 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
20:16:21.0324 4420 C:\Windows\System32\lsass.exe - ok
20:16:21.0327 4420 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
20:16:21.0327 4420 C:\Windows\System32\lsm.exe - ok
20:16:21.0331 4420 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
20:16:21.0331 4420 C:\Windows\System32\services.exe - ok
20:16:21.0334 4420 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
20:16:21.0335 4420 C:\Windows\System32\sspisrv.dll - ok
20:16:21.0338 4420 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
20:16:21.0338 4420 C:\Windows\System32\lsasrv.dll - ok
20:16:21.0341 4420 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
20:16:21.0341 4420 C:\Windows\System32\scesrv.dll - ok
20:16:21.0345 4420 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
20:16:21.0345 4420 C:\Windows\System32\scext.dll - ok
20:16:21.0348 4420 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
20:16:21.0348 4420 C:\Windows\System32\secur32.dll - ok
20:16:21.0352 4420 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
20:16:21.0352 4420 C:\Windows\System32\sspicli.dll - ok
20:16:21.0355 4420 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
20:16:21.0356 4420 C:\Windows\System32\sysntfy.dll - ok
20:16:21.0359 4420 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
20:16:21.0359 4420 C:\Windows\System32\wmsgapi.dll - ok
20:16:21.0363 4420 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
20:16:21.0363 4420 C:\Windows\System32\samsrv.dll - ok
20:16:21.0366 4420 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
20:16:21.0366 4420 C:\Windows\System32\cryptdll.dll - ok
20:16:21.0370 4420 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
20:16:21.0370 4420 C:\Windows\System32\srvcli.dll - ok
20:16:21.0374 4420 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
20:16:21.0374 4420 C:\Windows\System32\wevtapi.dll - ok
20:16:21.0377 4420 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
20:16:21.0377 4420 C:\Windows\System32\aelupsvc.dll - ok
20:16:21.0381 4420 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
20:16:21.0381 4420 C:\Windows\System32\authz.dll - ok
20:16:21.0384 4420 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
20:16:21.0384 4420 C:\Windows\System32\cngaudit.dll - ok
20:16:21.0388 4420 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
20:16:21.0388 4420 C:\Windows\System32\bcrypt.dll - ok
20:16:21.0391 4420 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
20:16:21.0391 4420 C:\Windows\System32\msprivs.dll - ok
20:16:21.0395 4420 [ E2D60E901428A72BB47931C938A1ED95 ] C:\Windows\System32\ncrypt.dll
20:16:21.0395 4420 C:\Windows\System32\ncrypt.dll - ok
20:16:21.0398 4420 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
20:16:21.0398 4420 C:\Windows\System32\netjoin.dll - ok
20:16:21.0402 4420 [ 778D7DFD114A300E79496291FDB9169F ] C:\Windows\System32\atmfd.dll
20:16:21.0402 4420 C:\Windows\System32\atmfd.dll - ok
20:16:21.0405 4420 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
20:16:21.0405 4420 C:\Windows\System32\negoexts.dll - ok
20:16:21.0409 4420 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
20:16:21.0409 4420 C:\Windows\System32\alg.exe - ok
20:16:21.0413 4420 [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
20:16:21.0413 4420 C:\Windows\System32\kerberos.dll - ok
20:16:21.0417 4420 [ 0BC381A15355A3982216F7172F545DE1 ] C:\Windows\System32\appidsvc.dll
20:16:21.0417 4420 C:\Windows\System32\appidsvc.dll - ok
20:16:21.0421 4420 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
20:16:21.0421 4420 C:\Windows\System32\winlogon.exe - ok
20:16:21.0424 4420 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
20:16:21.0424 4420 C:\Windows\System32\winsta.dll - ok
20:16:21.0428 4420 [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
20:16:21.0428 4420 C:\Windows\System32\appinfo.dll - ok
20:16:21.0432 4420 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
20:16:21.0432 4420 C:\Windows\System32\cryptsp.dll - ok
20:16:21.0435 4420 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
20:16:21.0435 4420 C:\Windows\System32\mswsock.dll - ok
20:16:21.0439 4420 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
20:16:21.0439 4420 C:\Windows\System32\msv1_0.dll - ok
20:16:21.0442 4420 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
20:16:21.0442 4420 C:\Windows\System32\netlogon.dll - ok
20:16:21.0446 4420 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
20:16:21.0446 4420 C:\Windows\System32\wship6.dll - ok
20:16:21.0449 4420 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
20:16:21.0449 4420 C:\Windows\System32\rascfg.dll - ok
20:16:21.0452 4420 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
20:16:21.0453 4420 C:\Windows\System32\dnsapi.dll - ok
20:16:21.0455 4420 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
20:16:21.0455 4420 C:\Windows\System32\logoncli.dll - ok
20:16:21.0459 4420 [ E1FFD1F7B043AEF0ACC9E7593043FD4C ] C:\Windows\System32\audiosrv.dll
20:16:21.0459 4420 C:\Windows\System32\audiosrv.dll - ok
20:16:21.0462 4420 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
20:16:21.0462 4420 C:\Windows\System32\schannel.dll - ok
20:16:21.0466 4420 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
20:16:21.0466 4420 C:\Windows\System32\wdigest.dll - ok
20:16:21.0469 4420 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
20:16:21.0469 4420 C:\Windows\System32\pku2u.dll - ok
20:16:21.0473 4420 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
20:16:21.0473 4420 C:\Windows\System32\rsaenh.dll - ok
20:16:21.0476 4420 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
20:16:21.0476 4420 C:\Windows\System32\TSpkg.dll - ok
20:16:21.0480 4420 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
20:16:21.0480 4420 C:\Windows\System32\LIVESSP.DLL - ok
20:16:21.0483 4420 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
20:16:21.0483 4420 C:\Windows\System32\bcryptprimitives.dll - ok
20:16:21.0487 4420 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
20:16:21.0487 4420 C:\Windows\System32\credssp.dll - ok
20:16:21.0489 4420 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
20:16:21.0489 4420 C:\Windows\System32\efslsaext.dll - ok
20:16:21.0493 4420 [ B20B5FA5CA050E9926E4D1DB81501B32 ] C:\Windows\System32\AxInstSv.dll
20:16:21.0493 4420 C:\Windows\System32\AxInstSv.dll - ok
20:16:21.0496 4420 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
20:16:21.0496 4420 C:\Windows\System32\scecli.dll - ok
20:16:21.0500 4420 [ FDE360167101B4E45A96F939F388AEB0 ] C:\Windows\System32\bdesvc.dll
20:16:21.0500 4420 C:\Windows\System32\bdesvc.dll - ok
20:16:21.0503 4420 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
20:16:21.0503 4420 C:\Windows\System32\BFE.DLL - ok
20:16:21.0506 4420 [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
20:16:21.0506 4420 C:\Windows\System32\browser.dll - ok
20:16:21.0510 4420 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
20:16:21.0510 4420 C:\Windows\System32\bthserv.dll - ok
20:16:21.0514 4420 [ 312E2F82AF11E79906898AC3E3D58A1F ] C:\Windows\System32\certprop.dll
20:16:21.0514 4420 C:\Windows\System32\certprop.dll - ok
20:16:21.0518 4420 [ FE1EC06F2253F691FE36217C592A0206 ] C:\Windows\System32\clfs.sys
20:16:21.0518 4420 C:\Windows\System32\clfs.sys - ok
20:16:21.0522 4420 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
20:16:21.0522 4420 C:\Windows\System32\comres.dll - ok
20:16:21.0526 4420 [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
20:16:21.0526 4420 C:\Windows\System32\cryptsvc.dll - ok
20:16:21.0529 4420 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
20:16:21.0529 4420 C:\Windows\System32\oleres.dll - ok
20:16:21.0533 4420 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] C:\Windows\System32\defragsvc.dll
20:16:21.0533 4420 C:\Windows\System32\defragsvc.dll - ok
20:16:21.0536 4420 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
20:16:21.0536 4420 C:\Windows\System32\dhcpcore.dll - ok
20:16:21.0540 4420 [ 14452ACDB09B70964C8C21BF80A13ACB ] C:\Windows\System32\dot3svc.dll
20:16:21.0540 4420 C:\Windows\System32\dot3svc.dll - ok
20:16:21.0544 4420 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
20:16:21.0544 4420 C:\Windows\System32\dps.dll - ok
20:16:21.0548 4420 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
20:16:21.0548 4420 C:\Windows\System32\eapsvc.dll - ok
20:16:21.0551 4420 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
20:16:21.0551 4420 C:\Windows\System32\efssvc.dll - ok
20:16:21.0554 4420 [ 47C071994C3F649F23D9CD075AC9304A ] C:\Windows\ehome\ehrecvr.exe
20:16:21.0554 4420 C:\Windows\ehome\ehrecvr.exe - ok
20:16:21.0558 4420 [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\Windows\ehome\ehsched.exe
20:16:21.0558 4420 C:\Windows\ehome\ehsched.exe - ok
20:16:21.0562 4420 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
20:16:21.0562 4420 C:\Windows\System32\wevtsvc.dll - ok
20:16:21.0565 4420 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
20:16:21.0565 4420 C:\Windows\System32\FXSRESM.dll - ok
20:16:21.0568 4420 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
20:16:21.0569 4420 C:\Windows\System32\fdPHost.dll - ok
20:16:21.0572 4420 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
20:16:21.0572 4420 C:\Windows\System32\FDResPub.dll - ok
20:16:21.0576 4420 [ 655661BE46B5F5F3FD454E2C3095B930 ] C:\Windows\System32\drivers\fileinfo.sys
20:16:21.0576 4420 C:\Windows\System32\drivers\fileinfo.sys - ok
20:16:21.0579 4420 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] C:\Windows\System32\drivers\filetrace.sys
20:16:21.0580 4420 C:\Windows\System32\drivers\filetrace.sys - ok
20:16:21.0583 4420 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
20:16:21.0583 4420 C:\Windows\System32\drivers\fltMgr.sys - ok
20:16:21.0587 4420 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
20:16:21.0587 4420 C:\Windows\System32\FntCache.dll - ok
20:16:21.0590 4420 [ E60BB0CDC5EA153F6D24C51AAD4A73FD ] C:\Windows\System32\PresentationHost.exe
20:16:21.0590 4420 C:\Windows\System32\PresentationHost.exe - ok
20:16:21.0594 4420 [ D43703496149971890703B4B1B723EAC ] C:\Windows\System32\drivers\fsdepends.sys
20:16:21.0594 4420 C:\Windows\System32\drivers\fsdepends.sys - ok
20:16:21.0598 4420 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] C:\Windows\System32\drivers\fvevol.sys
20:16:21.0598 4420 C:\Windows\System32\drivers\fvevol.sys - ok
20:16:21.0602 4420 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
20:16:21.0602 4420 C:\Windows\System32\gpapi.dll - ok
20:16:21.0606 4420 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
20:16:21.0606 4420 C:\Windows\System32\hidserv.dll - ok
20:16:21.0609 4420 [ EFA58EDE58DD74388FFD04CB32681518 ] C:\Windows\System32\KMSVC.DLL
20:16:21.0609 4420 C:\Windows\System32\KMSVC.DLL - ok
20:16:21.0613 4420 [ 046B2673767CA626E2CFB7FDF735E9E8 ] C:\Windows\System32\ListSvc.dll
20:16:21.0613 4420 C:\Windows\System32\ListSvc.dll - ok
20:16:21.0617 4420 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
20:16:21.0617 4420 C:\Windows\System32\provsvc.dll - ok
20:16:21.0620 4420 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
20:16:21.0620 4420 C:\Windows\System32\drivers\http.sys - ok
20:16:21.0624 4420 [ F17766A19145F111856378DF337A5D79 ] C:\Windows\System32\drivers\hwpolicy.sys
20:16:21.0624 4420 C:\Windows\System32\drivers\hwpolicy.sys - ok
20:16:21.0628 4420 [ B9E2DAF71E44626011D70B4889171504 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
20:16:21.0628 4420 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
20:16:21.0632 4420 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
20:16:21.0632 4420 C:\Windows\System32\IKEEXT.DLL - ok
20:16:21.0636 4420 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
20:16:21.0636 4420 C:\Windows\System32\IPBusEnum.dll - ok
20:16:21.0640 4420 [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
20:16:21.0640 4420 C:\Windows\System32\iphlpsvc.dll - ok
20:16:21.0643 4420 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
20:16:21.0643 4420 C:\Windows\System32\drivers\irenum.sys - ok
20:16:21.0647 4420 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
20:16:21.0647 4420 C:\Windows\System32\keyiso.dll - ok
20:16:21.0650 4420 [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
20:16:21.0650 4420 C:\Windows\System32\srvsvc.dll - ok
20:16:21.0654 4420 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
20:16:21.0654 4420 C:\Windows\System32\wkssvc.dll - ok
20:16:21.0657 4420 [ 7A757C41C3879CD34BDE15F0563C0CE2 ] C:\Windows\System32\lltdres.dll
20:16:21.0657 4420 C:\Windows\System32\lltdres.dll - ok
20:16:21.0661 4420 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
20:16:21.0661 4420 C:\Windows\System32\drivers\luafv.sys - ok
20:16:21.0665 4420 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
20:16:21.0665 4420 C:\Windows\System32\lmhsvc.dll - ok
20:16:21.0668 4420 [ E5DE3FFD785B6730291AD98E491D58BA ] C:\Windows\ehome\ehres.dll
20:16:21.0668 4420 C:\Windows\ehome\ehres.dll - ok
20:16:21.0672 4420 [ 791AF66C4D0E7C90A3646066386FB571 ] C:\Windows\System32\drivers\mountmgr.sys
20:16:21.0672 4420 C:\Windows\System32\drivers\mountmgr.sys - ok
20:16:21.0675 4420 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
20:16:21.0675 4420 C:\Windows\System32\mmcss.dll - ok
20:16:21.0679 4420 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
20:16:21.0679 4420 C:\Windows\System32\FirewallAPI.dll - ok
20:16:21.0682 4420 [ 733006127F235BE7C35354EBEE7B9A7B ] C:\Windows\System32\WebClnt.dll
20:16:21.0682 4420 C:\Windows\System32\WebClnt.dll - ok
20:16:21.0686 4420 [ F9D215A46A8B9753F61767FA72A20326 ] C:\Windows\System32\drivers\mshidkmdf.sys
20:16:21.0686 4420 C:\Windows\System32\drivers\mshidkmdf.sys - ok
20:16:21.0690 4420 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
20:16:21.0690 4420 C:\Windows\System32\iscsidsc.dll - ok
20:16:21.0693 4420 [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
20:16:21.0693 4420 C:\Windows\System32\msimsg.dll - ok
20:16:21.0697 4420 [ F9A18612FD3526FE473C1BDA678D61C8 ] C:\Windows\System32\drivers\mup.sys
20:16:21.0697 4420 C:\Windows\System32\drivers\mup.sys - ok
20:16:21.0700 4420 [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
20:16:21.0700 4420 C:\Windows\System32\QAGENTRT.DLL - ok
20:16:21.0704 4420 [ A3151B3463EEA7E47F618F115D0D142E ] C:\Windows\System32\drivers\ndis.sys
20:16:21.0704 4420 C:\Windows\System32\drivers\ndis.sys - ok
20:16:21.0707 4420 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
20:16:21.0707 4420 C:\Windows\System32\netman.dll - ok
20:16:21.0711 4420 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
20:16:21.0711 4420 C:\Windows\System32\netprofm.dll - ok
20:16:21.0715 4420 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
20:16:21.0715 4420 C:\Windows\System32\nlasvc.dll - ok
20:16:21.0721 4420 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
20:16:21.0721 4420 C:\Windows\System32\nsisvc.dll - ok
20:16:21.0723 4420 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
20:16:21.0723 4420 C:\Windows\System32\pnrpsvc.dll - ok
20:16:21.0726 4420 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
20:16:21.0726 4420 C:\Windows\System32\p2psvc.dll - ok
20:16:21.0730 4420 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] C:\Windows\System32\drivers\partmgr.sys
20:16:21.0730 4420 C:\Windows\System32\drivers\partmgr.sys - ok
20:16:21.0734 4420 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
20:16:21.0734 4420 C:\Windows\System32\pcasvc.dll - ok
20:16:21.0737 4420 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] C:\Windows\System32\pla.dll
20:16:21.0737 4420 C:\Windows\System32\pla.dll - ok
20:16:21.0741 4420 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
20:16:21.0741 4420 C:\Windows\System32\umpnpmgr.dll - ok
20:16:21.0744 4420 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] C:\Windows\System32\pnrpauto.dll
20:16:21.0744 4420 C:\Windows\System32\pnrpauto.dll - ok
20:16:21.0748 4420 [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
20:16:21.0748 4420 C:\Windows\System32\polstore.dll - ok
20:16:21.0751 4420 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
20:16:21.0751 4420 C:\Windows\System32\umpo.dll - ok
20:16:21.0755 4420 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
20:16:21.0755 4420 C:\Windows\System32\profsvc.dll - ok
20:16:21.0758 4420 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
20:16:21.0758 4420 C:\Windows\System32\psbase.dll - ok
20:16:21.0762 4420 [ 906191634E99AEA92C4816150BDA3732 ] C:\Windows\System32\qwave.dll
20:16:21.0762 4420 C:\Windows\System32\qwave.dll - ok
20:16:21.0766 4420 [ 76707BB36430888D9CE9D705398ADB6C ] C:\Windows\System32\drivers\qwavedrv.sys
20:16:21.0766 4420 C:\Windows\System32\drivers\qwavedrv.sys - ok
20:16:21.0769 4420 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] C:\Windows\System32\rasauto.dll
20:16:21.0769 4420 C:\Windows\System32\rasauto.dll - ok
20:16:21.0773 4420 [ 47394ED3D16D053F5906EFE5AB51CC83 ] C:\Windows\System32\rasmans.dll
20:16:21.0773 4420 C:\Windows\System32\rasmans.dll - ok
20:16:21.0776 4420 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
20:16:21.0776 4420 C:\Windows\System32\sstpsvc.dll - ok
20:16:21.0780 4420 [ 254FB7A22D74E5511C73A3F6D802F192 ] C:\Windows\System32\mprdim.dll
20:16:21.0780 4420 C:\Windows\System32\mprdim.dll - ok
20:16:21.0783 4420 [ E4D94F24081440B5FC5AA556C7C62702 ] C:\Windows\System32\regsvc.dll
20:16:21.0783 4420 C:\Windows\System32\regsvc.dll - ok
20:16:21.0787 4420 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
20:16:21.0787 4420 C:\Windows\System32\RpcEpMap.dll - ok
20:16:21.0791 4420 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] C:\Windows\System32\Locator.exe
20:16:21.0791 4420 C:\Windows\System32\Locator.exe - ok
20:16:21.0794 4420 [ C94DA20C7E3BA1DCA269BC8460D98387 ] C:\Windows\System32\drivers\scfilter.sys
20:16:21.0794 4420 C:\Windows\System32\drivers\scfilter.sys - ok
20:16:21.0798 4420 [ 9B7395789E3791A3B6D000FE6F8B131E ] C:\Windows\System32\SCardSvr.dll
20:16:21.0798 4420 C:\Windows\System32\SCardSvr.dll - ok
20:16:21.0801 4420 [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
20:16:21.0801 4420 C:\Windows\System32\schedsvc.dll - ok
20:16:21.0805 4420 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] C:\Windows\System32\sdrsvc.dll
20:16:21.0805 4420 C:\Windows\System32\sdrsvc.dll - ok
20:16:21.0808 4420 [ 463B386EBC70F98DA5DFF85F7E654346 ] C:\Windows\System32\seclogon.dll
20:16:21.0808 4420 C:\Windows\System32\seclogon.dll - ok
20:16:21.0812 4420 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
20:16:21.0812 4420 C:\Windows\System32\Sens.dll - ok
20:16:21.0815 4420 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] C:\Windows\System32\sensrsvc.dll
20:16:21.0815 4420 C:\Windows\System32\sensrsvc.dll - ok
20:16:21.0819 4420 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] C:\Windows\System32\SessEnv.dll
20:16:21.0819 4420 C:\Windows\System32\SessEnv.dll - ok
20:16:21.0822 4420 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
20:16:21.0822 4420 C:\Windows\System32\ipnathlp.dll - ok
20:16:21.0826 4420 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
20:16:21.0826 4420 C:\Windows\System32\shsvcs.dll - ok
20:16:21.0830 4420 [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
20:16:21.0830 4420 C:\Windows\System32\tcpipcfg.dll - ok
20:16:21.0833 4420 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
20:16:21.0833 4420 C:\Windows\System32\snmptrap.exe - ok
20:16:21.0837 4420 [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
20:16:21.0837 4420 C:\Windows\System32\spoolsv.exe - ok
20:16:21.0840 4420 [ 913D843498553A1BC8F8DBAD6358E49F ] C:\Windows\System32\sppsvc.exe
20:16:21.0840 4420 C:\Windows\System32\sppsvc.exe - ok
20:16:21.0844 4420 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] C:\Windows\System32\sppuinotify.dll
20:16:21.0844 4420 C:\Windows\System32\sppuinotify.dll - ok
20:16:21.0848 4420 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
20:16:21.0848 4420 C:\Windows\System32\ssdpsrv.dll - ok
20:16:21.0852 4420 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
20:16:21.0852 4420 C:\Windows\System32\wiaservc.dll - ok
20:16:21.0856 4420 [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
20:16:21.0856 4420 C:\Windows\System32\swprv.dll - ok
20:16:21.0859 4420 [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
20:16:21.0859 4420 C:\Windows\System32\sysmain.dll - ok
20:16:21.0863 4420 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] C:\Windows\System32\TabSvc.dll
20:16:21.0863 4420 C:\Windows\System32\TabSvc.dll - ok
20:16:21.0867 4420 [ 884264AC597B690C5707C89723BB8E7B ] C:\Windows\System32\tapisrv.dll
20:16:21.0867 4420 C:\Windows\System32\tapisrv.dll - ok
20:16:21.0870 4420 [ 1BE03AC720F4D302EA01D40F588162F6 ] C:\Windows\System32\tbssvc.dll
20:16:21.0870 4420 C:\Windows\System32\tbssvc.dll - ok
20:16:21.0874 4420 [ 0F05EC2887BFE197AD82A13287D2F404 ] C:\Windows\System32\termsrv.dll
20:16:21.0874 4420 C:\Windows\System32\termsrv.dll - ok
20:16:21.0877 4420 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
20:16:21.0877 4420 C:\Windows\System32\themeservice.dll - ok
20:16:21.0881 4420 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
20:16:21.0881 4420 C:\Windows\System32\trkwks.dll - ok
20:16:21.0884 4420 [ 840F7FB849F5887A49BA18C13B2DA920 ] C:\Windows\servicing\TrustedInstaller.exe
20:16:21.0884 4420 C:\Windows\servicing\TrustedInstaller.exe - ok
20:16:21.0888 4420 [ 61B96C26131E37B24E93327A0BD1FB95 ] C:\Windows\System32\drivers\tssecsrv.sys
20:16:21.0888 4420 C:\Windows\System32\drivers\tssecsrv.sys - ok
20:16:21.0892 4420 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe
20:16:21.0892 4420 C:\Windows\System32\UI0Detect.exe - ok
20:16:21.0895 4420 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
20:16:21.0895 4420 C:\Windows\System32\upnphost.dll - ok
20:16:21.0899 4420 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
20:16:21.0899 4420 C:\Windows\System32\dwm.exe - ok
20:16:21.0902 4420 [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
20:16:21.0902 4420 C:\Windows\System32\vaultsvc.dll - ok
20:16:21.0906 4420 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] C:\Windows\System32\vds.exe
20:16:21.0906 4420 C:\Windows\System32\vds.exe - ok
20:16:21.0909 4420 [ 99B0CBB569CA79ACAED8C91461D765FB ] C:\Windows\System32\drivers\volmgrx.sys
20:16:21.0909 4420 C:\Windows\System32\drivers\volmgrx.sys - ok
20:16:21.0913 4420 [ 787898BF9FB6D7BD87A36E2D95C899BA ] C:\Windows\System32\VSSVC.exe
20:16:21.0913 4420 C:\Windows\System32\VSSVC.exe - ok
20:16:21.0916 4420 [ 1C9D80CC3849B3788048078C26486E1A ] C:\Windows\System32\w32time.dll
20:16:21.0916 4420 C:\Windows\System32\w32time.dll - ok
20:16:21.0920 4420 [ 05E9265E2228799B68DC0F58A94E1AB8 ] C:\Windows\System32\Wat\WatUX.exe
20:16:21.0920 4420 C:\Windows\System32\Wat\WatUX.exe - ok
20:16:21.0923 4420 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] C:\Windows\System32\wbengine.exe
20:16:21.0923 4420 C:\Windows\System32\wbengine.exe - ok
20:16:21.0927 4420 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
20:16:21.0927 4420 C:\Windows\System32\wbiosrvc.dll - ok
20:16:21.0930 4420 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] C:\Windows\System32\wcncsvc.dll
20:16:21.0931 4420 C:\Windows\System32\wcncsvc.dll - ok
20:16:21.0934 4420 [ 20F7441334B18CEE52027661DF4A6129 ] C:\Windows\System32\WcsPlugInService.dll
20:16:21.0934 4420 C:\Windows\System32\WcsPlugInService.dll - ok
20:16:21.0938 4420 [ 442783E2CB0DA19873B7A63833FF4CB4 ] C:\Windows\System32\drivers\Wdf01000.sys
20:16:21.0938 4420 C:\Windows\System32\drivers\Wdf01000.sys - ok
20:16:21.0941 4420 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
20:16:21.0941 4420 C:\Windows\System32\wdi.dll - ok
20:16:21.0945 4420 [ C749025A679C5103E575E3B48E092C43 ] C:\Windows\System32\wecsvc.dll
20:16:21.0945 4420 C:\Windows\System32\wecsvc.dll - ok
20:16:21.0949 4420 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
20:16:21.0949 4420 C:\Windows\System32\wercplsupport.dll - ok
20:16:21.0952 4420 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
20:16:21.0952 4420 C:\Windows\System32\wersvc.dll - ok
20:16:21.0955 4420 [ 2DA738A0A6BEE483A5647A76695AF3B0 ] C:\Program Files\Windows Defender\MsMpRes.dll
20:16:21.0956 4420 C:\Program Files\Windows Defender\MsMpRes.dll - ok
20:16:21.0959 4420 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
20:16:21.0959 4420 C:\Windows\System32\winhttp.dll - ok
20:16:21.0963 4420 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
20:16:21.0963 4420 C:\Windows\System32\wbem\WMIsvc.dll - ok
20:16:21.0967 4420 [ 41FBB751936B387F9179E7F03A74FE29 ] C:\Windows\System32\WsmSvc.dll
20:16:21.0967 4420 C:\Windows\System32\WsmSvc.dll - ok
20:16:21.0970 4420 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
20:16:21.0970 4420 C:\Windows\System32\wlansvc.dll - ok
20:16:21.0974 4420 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] C:\Windows\System32\wbem\WmiApSrv.exe
20:16:21.0974 4420 C:\Windows\System32\wbem\WmiApSrv.exe - ok
20:16:21.0978 4420 [ 9BF014C20F91D97055532F2F5496E7BD ] C:\Program Files\Windows Media Player\wmpnetwk.exe
20:16:21.0978 4420 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
20:16:21.0982 4420 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] C:\Windows\System32\wpcsvc.dll
20:16:21.0982 4420 C:\Windows\System32\wpcsvc.dll - ok
20:16:21.0985 4420 [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
20:16:21.0985 4420 C:\Windows\System32\wpdbusenum.dll - ok
20:16:21.0989 4420 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
20:16:21.0989 4420 C:\Windows\System32\drivers\ws2ifsl.sys - ok
20:16:21.0992 4420 [ 8F9F3969933C02DA96EB0F84576DB43E ] C:\Windows\System32\wscsvc.dll
20:16:21.0992 4420 C:\Windows\System32\wscsvc.dll - ok
20:16:21.0995 4420 [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
20:16:21.0995 4420 C:\Windows\System32\SearchIndexer.exe - ok
20:16:21.0998 4420 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
20:16:21.0999 4420 C:\Windows\System32\drivers\WUDFPf.sys - ok
20:16:22.0002 4420 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
20:16:22.0002 4420 C:\Windows\System32\WUDFSvc.dll - ok
20:16:22.0006 4420 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] C:\Windows\System32\wwansvc.dll
20:16:22.0006 4420 C:\Windows\System32\wwansvc.dll - ok
20:16:22.0009 4420 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
20:16:22.0009 4420 C:\Windows\System32\ubpm.dll - ok
20:16:22.0013 4420 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
20:16:22.0013 4420 C:\Windows\System32\svchost.exe - ok
20:16:22.0016 4420 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
20:16:22.0016 4420 C:\Windows\System32\SPInf.dll - ok
20:16:22.0020 4420 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
20:16:22.0020 4420 C:\Windows\System32\devrtl.dll - ok
20:16:22.0023 4420 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
20:16:22.0023 4420 C:\Windows\System32\userenv.dll - ok
20:16:22.0026 4420 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
20:16:22.0026 4420 C:\Windows\System32\pcwum.dll - ok
20:16:22.0030 4420 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
20:16:22.0030 4420 C:\Windows\System32\powrprof.dll - ok
20:16:22.0034 4420 [ B50CDD87772D6A11CB90924AAD399DF8 ] C:\Windows\System32\drivers\aswMonFlt.sys
20:16:22.0034 4420 C:\Windows\System32\drivers\aswMonFlt.sys - ok
20:16:22.0037 4420 [ 92EB844D90615CB266F84C3202B8786E ] C:\Windows\System32\drivers\mbam.sys
20:16:22.0037 4420 C:\Windows\System32\drivers\mbam.sys - ok
20:16:22.0041 4420 [ 53E966ABDED5C56DC1A655F1945BDC6B ] C:\Windows\System32\drivers\ssfmonm.sys
20:16:22.0041 4420 C:\Windows\System32\drivers\ssfmonm.sys - ok
20:16:22.0045 4420 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] C:\Windows\System32\drivers\aswFsBlk.sys
20:16:22.0045 4420 C:\Windows\System32\drivers\aswFsBlk.sys - ok
20:16:22.0048 4420 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
20:16:22.0049 4420 C:\Windows\System32\drivers\Sftvollh.sys - ok
20:16:22.0052 4420 [ D3B14A9CA2A03F8D0385C6BAA90FE928 ] C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
20:16:22.0052 4420 C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe - ok
20:16:22.0056 4420 [ A0145206D9B6C9270D139ADB10CDDCF0 ] C:\Windows\SysWOW64\ntdll.dll
20:16:22.0056 4420 C:\Windows\SysWOW64\ntdll.dll - ok
20:16:22.0062 4420 [ 24BF2F4DD2D23A682967AD364D6AE967 ] C:\Windows\System32\wow64.dll
20:16:22.0063 4420 C:\Windows\System32\wow64.dll - ok
20:16:22.0067 4420 [ 6E52A8EADB1A931D39475800166FC32D ] C:\Windows\System32\wow64win.dll
20:16:22.0067 4420 C:\Windows\System32\wow64win.dll - ok
20:16:22.0073 4420 [ E9FCC0F9BC1F4FBEDAE00BBABA3679E4 ] C:\Windows\System32\wow64cpu.dll
20:16:22.0073 4420 C:\Windows\System32\wow64cpu.dll - ok
20:16:22.0079 4420 [ C95793F4BE3471AEED92F5BF367BE69E ] C:\Windows\SysWOW64\kernel32.dll
20:16:22.0079 4420 C:\Windows\SysWOW64\kernel32.dll - ok
20:16:22.0087 4420 [ D5487F73F2B1FB0A4CCB96AE653A489B ] C:\Windows\SysWOW64\KernelBase.dll
20:16:22.0087 4420 C:\Windows\SysWOW64\KernelBase.dll - ok
20:16:22.0095 4420 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
20:16:22.0095 4420 C:\Windows\SysWOW64\msvcrt.dll - ok
20:16:22.0100 4420 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
20:16:22.0100 4420 C:\Windows\SysWOW64\psapi.dll - ok
20:16:22.0104 4420 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
20:16:22.0104 4420 C:\Windows\SysWOW64\version.dll - ok
20:16:22.0108 4420 [ BEA4AEE74FEF171EB61DE1BAD8FAF427 ] C:\Program Files (x86)\Webroot\Security\Current\Framework\XMLLite.dll
20:16:22.0109 4420 C:\Program Files (x86)\Webroot\Security\Current\Framework\XMLLite.dll - ok
20:16:22.0112 4420 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
20:16:22.0112 4420 C:\Windows\SysWOW64\cryptbase.dll - ok
20:16:22.0116 4420 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
20:16:22.0116 4420 C:\Windows\SysWOW64\rpcrt4.dll - ok
20:16:22.0120 4420 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
20:16:22.0120 4420 C:\Windows\SysWOW64\sechost.dll - ok
20:16:22.0123 4420 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
20:16:22.0123 4420 C:\Windows\SysWOW64\sspicli.dll - ok
20:16:22.0127 4420 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
20:16:22.0127 4420 C:\Windows\SysWOW64\user32.dll - ok
20:16:22.0131 4420 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
20:16:22.0131 4420 C:\Windows\SysWOW64\gdi32.dll - ok
20:16:22.0135 4420 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
20:16:22.0135 4420 C:\Windows\SysWOW64\advapi32.dll - ok
20:16:22.0140 4420 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
20:16:22.0140 4420 C:\Windows\SysWOW64\lpk.dll - ok
20:16:22.0144 4420 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
20:16:22.0145 4420 C:\Windows\SysWOW64\shell32.dll - ok
20:16:22.0149 4420 [ 011B7A81E28C748D7631CF3D72323DD2 ] C:\Windows\SysWOW64\usp10.dll
20:16:22.0149 4420 C:\Windows\SysWOW64\usp10.dll - ok
20:16:22.0154 4420 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
20:16:22.0154 4420 C:\Windows\SysWOW64\ole32.dll - ok
20:16:22.0159 4420 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
20:16:22.0159 4420 C:\Windows\SysWOW64\shlwapi.dll - ok
20:16:22.0163 4420 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
20:16:22.0163 4420 C:\Windows\SysWOW64\dbghelp.dll - ok
20:16:22.0166 4420 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
20:16:22.0166 4420 C:\Windows\SysWOW64\oleaut32.dll - ok
20:16:22.0170 4420 [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
20:16:22.0170 4420 C:\Windows\SysWOW64\crypt32.dll - ok
20:16:22.0173 4420 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
20:16:22.0174 4420 C:\Windows\SysWOW64\netapi32.dll - ok
20:16:22.0177 4420 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
20:16:22.0177 4420 C:\Windows\SysWOW64\netutils.dll - ok
20:16:22.0181 4420 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
20:16:22.0181 4420 C:\Windows\SysWOW64\nsi.dll - ok
20:16:22.0185 4420 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
20:16:22.0185 4420 C:\Windows\SysWOW64\profapi.dll - ok
20:16:22.0189 4420 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
20:16:22.0189 4420 C:\Windows\SysWOW64\secur32.dll - ok
20:16:22.0192 4420 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
20:16:22.0192 4420 C:\Windows\SysWOW64\srvcli.dll - ok
20:16:22.0196 4420 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
20:16:22.0196 4420 C:\Windows\SysWOW64\userenv.dll - ok
20:16:22.0199 4420 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
20:16:22.0199 4420 C:\Windows\SysWOW64\wkscli.dll - ok
20:16:22.0203 4420 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
20:16:22.0203 4420 C:\Windows\SysWOW64\ws2_32.dll - ok
20:16:22.0206 4420 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
20:16:22.0206 4420 C:\Windows\SysWOW64\msasn1.dll - ok
20:16:22.0210 4420 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
20:16:22.0210 4420 C:\Windows\SysWOW64\wininet.dll - ok
20:16:22.0213 4420 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
20:16:22.0213 4420 C:\Windows\SysWOW64\iertutil.dll - ok
20:16:22.0217 4420 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
20:16:22.0217 4420 C:\Windows\SysWOW64\urlmon.dll - ok
20:16:22.0221 4420 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
20:16:22.0221 4420 C:\Windows\SysWOW64\webio.dll - ok
20:16:22.0224 4420 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
20:16:22.0224 4420 C:\Windows\SysWOW64\winhttp.dll - ok
20:16:22.0227 4420 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
20:16:22.0227 4420 C:\Windows\SysWOW64\atl.dll - ok
20:16:22.0231 4420 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
20:16:22.0231 4420 C:\Windows\SysWOW64\imm32.dll - ok
20:16:22.0234 4420 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
20:16:22.0234 4420 C:\Windows\SysWOW64\msctf.dll - ok
20:16:22.0238 4420 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
20:16:22.0238 4420 C:\Windows\SysWOW64\winmm.dll - ok
20:16:22.0241 4420 [ FF6FA8B0EFCA1C40060CF6884C4075A4 ] C:\Program Files (x86)\Webroot\Security\Current\Framework\frameworkresources.dll
20:16:22.0242 4420 C:\Program Files (x86)\Webroot\Security\Current\Framework\frameworkresources.dll - ok
20:16:22.0245 4420 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
20:16:22.0246 4420 C:\Windows\System32\rpcss.dll - ok
20:16:22.0248 4420 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
20:16:22.0248 4420 C:\Windows\System32\WSHTCPIP.DLL - ok
20:16:22.0252 4420 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
20:16:22.0252 4420 C:\Windows\SysWOW64\ntmarta.dll - ok
20:16:22.0255 4420 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
20:16:22.0255 4420 C:\Windows\SysWOW64\Wldap32.dll - ok
20:16:22.0259 4420 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
20:16:22.0259 4420 C:\Windows\System32\version.dll - ok
20:16:22.0263 4420 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
20:16:22.0263 4420 C:\Windows\System32\LogonUI.exe - ok
20:16:22.0266 4420 [ 9265D87F21F524D982F32E40479EBB21 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiMalware.dll
20:16:22.0267 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiMalware.dll - ok
20:16:22.0270 4420 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
20:16:22.0270 4420 C:\Windows\System32\authui.dll - ok
20:16:22.0274 4420 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
20:16:22.0274 4420 C:\Windows\System32\ntmarta.dll - ok
20:16:22.0277 4420 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
20:16:22.0277 4420 C:\Windows\System32\MMDevAPI.dll - ok
20:16:22.0281 4420 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
20:16:22.0281 4420 C:\Windows\System32\avrt.dll - ok
20:16:22.0284 4420 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
20:16:22.0284 4420 C:\Windows\System32\propsys.dll - ok
20:16:22.0288 4420 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
20:16:22.0289 4420 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
20:16:22.0292 4420 [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
20:16:22.0292 4420 C:\Windows\System32\audiodg.exe - ok
20:16:22.0296 4420 [ 8D6D2BA5B2801EEE770B8F018712F46A ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\antimalwareresources.dll
20:16:22.0296 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\antimalwareresources.dll - ok
20:16:22.0300 4420 [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
20:16:22.0300 4420 C:\Windows\System32\MPSSVC.dll - ok
20:16:22.0303 4420 [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
20:16:22.0303 4420 C:\Windows\System32\gpsvc.dll - ok
20:16:22.0307 4420 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
20:16:22.0307 4420 C:\Windows\System32\adtschema.dll - ok
20:16:22.0310 4420 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
20:16:22.0310 4420 C:\Windows\System32\PSHED.DLL - ok
20:16:22.0314 4420 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
20:16:22.0314 4420 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
20:16:22.0317 4420 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
20:16:22.0317 4420 C:\Windows\System32\cryptui.dll - ok
20:16:22.0321 4420 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
20:16:22.0321 4420 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
20:16:22.0325 4420 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
20:16:22.0325 4420 C:\Windows\System32\samlib.dll - ok
20:16:22.0329 4420 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
20:16:22.0329 4420 C:\Windows\System32\shacct.dll - ok
20:16:22.0333 4420 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
20:16:22.0333 4420 C:\Windows\System32\uxtheme.dll - ok
20:16:22.0337 4420 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
20:16:22.0337 4420 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
20:16:22.0340 4420 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
20:16:22.0340 4420 C:\Windows\System32\dui70.dll - ok
20:16:22.0343 4420 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
20:16:22.0344 4420 C:\Windows\System32\duser.dll - ok
20:16:22.0347 4420 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
20:16:22.0347 4420 C:\Windows\System32\SndVolSSO.dll - ok
20:16:22.0350 4420 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
20:16:22.0351 4420 C:\Windows\System32\dwmapi.dll - ok
20:16:22.0354 4420 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
20:16:22.0354 4420 C:\Windows\System32\hid.dll - ok
20:16:22.0357 4420 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
20:16:22.0357 4420 C:\Windows\System32\xmllite.dll - ok
20:16:22.0361 4420 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
20:16:22.0361 4420 C:\Windows\System32\nlaapi.dll - ok
20:16:22.0364 4420 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
20:16:22.0364 4420 C:\Windows\System32\atl.dll - ok
20:16:22.0368 4420 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
20:16:22.0368 4420 C:\Windows\System32\dsrole.dll - ok
20:16:22.0371 4420 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
20:16:22.0371 4420 C:\Windows\System32\slc.dll - ok
20:16:22.0375 4420 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
20:16:22.0375 4420 C:\Windows\System32\WindowsCodecs.dll - ok
20:16:22.0378 4420 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
20:16:22.0378 4420 C:\Windows\System32\es.dll - ok
20:16:22.0381 4420 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
20:16:22.0381 4420 C:\Windows\System32\uxsms.dll - ok
20:16:22.0385 4420 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
20:16:22.0385 4420 C:\Windows\System32\wtsapi32.dll - ok
20:16:22.0388 4420 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
20:16:22.0388 4420 C:\Windows\System32\WUDFPlatform.dll - ok
20:16:22.0394 4420 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
20:16:22.0394 4420 C:\Windows\System32\drivers\lltdio.sys - ok
20:16:22.0398 4420 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
20:16:22.0398 4420 C:\Windows\System32\drivers\nwifi.sys - ok
20:16:22.0401 4420 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
20:16:22.0401 4420 C:\Windows\System32\drivers\ndisuio.sys - ok
20:16:22.0405 4420 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
20:16:22.0405 4420 C:\Windows\System32\drivers\rspndr.sys - ok
20:16:22.0409 4420 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
20:16:22.0409 4420 C:\Windows\System32\IPHLPAPI.DLL - ok
20:16:22.0413 4420 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
20:16:22.0413 4420 C:\Windows\System32\nrpsrv.dll - ok
20:16:22.0416 4420 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
20:16:22.0416 4420 C:\Windows\System32\winbrand.dll - ok
20:16:22.0419 4420 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
20:16:22.0419 4420 C:\Windows\System32\winnsi.dll - ok
20:16:22.0423 4420 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
20:16:22.0423 4420 C:\Windows\System32\dhcpcore6.dll - ok
20:16:22.0426 4420 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
20:16:22.0426 4420 C:\Windows\System32\VaultCredProvider.dll - ok
20:16:22.0430 4420 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
20:16:22.0430 4420 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
20:16:22.0434 4420 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
20:16:22.0434 4420 C:\Windows\System32\dnsrslvr.dll - ok
20:16:22.0437 4420 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
20:16:22.0437 4420 C:\Windows\System32\eapphost.dll - ok
20:16:22.0441 4420 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
20:16:22.0441 4420 C:\Windows\System32\FWPUCLNT.DLL - ok
20:16:22.0444 4420 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
20:16:22.0444 4420 C:\Windows\System32\BioCredProv.dll - ok
20:16:22.0448 4420 [ 138BE04BF17193B27184DEDFE3028548 ] C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll
20:16:22.0448 4420 C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll - ok
20:16:22.0452 4420 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
20:16:22.0452 4420 C:\Windows\System32\dnsext.dll - ok
20:16:22.0455 4420 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
20:16:22.0455 4420 C:\Windows\System32\dhcpcsvc.dll - ok
20:16:22.0459 4420 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
20:16:22.0459 4420 C:\Windows\System32\dhcpcsvc6.dll - ok
20:16:22.0462 4420 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
20:16:22.0462 4420 C:\Windows\System32\winbio.dll - ok
20:16:22.0466 4420 [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
20:16:22.0466 4420 C:\Windows\System32\credui.dll - ok
20:16:22.0469 4420 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
20:16:22.0469 4420 C:\Windows\System32\vaultcli.dll - ok
20:16:22.0476 4420 [ A9B830EAF03F07CD92B045E613379117 ] C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll
20:16:22.0476 4420 C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll - ok
20:16:22.0480 4420 [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
20:16:22.0480 4420 C:\Windows\System32\netapi32.dll - ok
20:16:22.0483 4420 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
20:16:22.0483 4420 C:\Windows\System32\netutils.dll - ok
20:16:22.0487 4420 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
20:16:22.0487 4420 C:\Windows\System32\wkscli.dll - ok
20:16:22.0490 4420 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
20:16:22.0490 4420 C:\Windows\System32\samcli.dll - ok
20:16:22.0494 4420 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
20:16:22.0494 4420 C:\Windows\System32\certCredProvider.dll - ok
20:16:22.0498 4420 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
20:16:22.0498 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
20:16:22.0500 4420 [ A371EC60804CF07B4D052C295BE9FB9B ] C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll
20:16:22.0500 4420 C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll - ok
20:16:22.0504 4420 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
20:16:22.0504 4420 C:\Windows\System32\rasapi32.dll - ok
20:16:22.0509 4420 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
20:16:22.0509 4420 C:\Windows\System32\rasplap.dll - ok
20:16:22.0512 4420 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
20:16:22.0513 4420 C:\Windows\System32\rasman.dll - ok
20:16:22.0516 4420 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
20:16:22.0516 4420 C:\Windows\System32\rtutils.dll - ok
20:16:22.0519 4420 [ ABB8771F4C78B7D60DE24437502D6B55 ] C:\Windows\System32\rastls.dll
20:16:22.0519 4420 C:\Windows\System32\rastls.dll - ok
20:16:22.0523 4420 [ 1482CC99F7E2DA2FECF59C6A774FED0A ] C:\Windows\System32\raschap.dll
20:16:22.0523 4420 C:\Windows\System32\raschap.dll - ok
20:16:22.0526 4420 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
20:16:22.0526 4420 C:\Windows\System32\umb.dll - ok
20:16:22.0530 4420 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
20:16:22.0530 4420 C:\Windows\System32\UXInit.dll - ok
20:16:22.0535 4420 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
20:16:22.0535 4420 C:\Windows\System32\wlanmsm.dll - ok
20:16:22.0538 4420 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
20:16:22.0538 4420 C:\Windows\System32\wlansec.dll - ok
20:16:22.0542 4420 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
20:16:22.0542 4420 C:\Windows\System32\onex.dll - ok
20:16:22.0545 4420 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
20:16:22.0546 4420 C:\Windows\System32\eappprxy.dll - ok
20:16:22.0549 4420 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
20:16:22.0549 4420 C:\Windows\System32\eappcfg.dll - ok
20:16:22.0553 4420 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
20:16:22.0553 4420 C:\Windows\System32\wlgpclnt.dll - ok
20:16:22.0556 4420 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
20:16:22.0556 4420 C:\Windows\System32\l2gpstore.dll - ok
20:16:22.0560 4420 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
20:16:22.0560 4420 C:\Windows\System32\WinSCard.dll - ok
20:16:22.0563 4420 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
20:16:22.0563 4420 C:\Windows\System32\wlanutil.dll - ok
20:16:22.0567 4420 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
20:16:22.0567 4420 C:\Windows\System32\oleacc.dll - ok
20:16:22.0571 4420 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
20:16:22.0571 4420 C:\Windows\System32\UIAutomationCore.dll - ok
20:16:22.0574 4420 [ 7C02AD2F4BEF1D5C51CB9B402AB3603F ] C:\Windows\System32\msxml6.dll
20:16:22.0574 4420 C:\Windows\System32\msxml6.dll - ok
20:16:22.0578 4420 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
20:16:22.0578 4420 C:\Windows\System32\imageres.dll - ok
20:16:22.0581 4420 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
20:16:22.0581 4420 C:\Windows\System32\wlanext.exe - ok
20:16:22.0585 4420 [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:16:22.0585 4420 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
20:16:22.0589 4420 [ C6FEF8C40D6F9A3766FDBE31CB3F6640 ] C:\Windows\System32\conhost.exe
20:16:22.0589 4420 C:\Windows\System32\conhost.exe - ok
20:16:22.0592 4420 [ D00D44AEB6AF48BF81EE76B209AB0143 ] C:\Windows\System32\iwmssvc.dll
20:16:22.0592 4420 C:\Windows\System32\iwmssvc.dll - ok
20:16:22.0596 4420 [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
20:16:22.0596 4420 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
20:16:22.0600 4420 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
20:16:22.0600 4420 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
20:16:22.0604 4420 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
20:16:22.0604 4420 C:\Windows\System32\winspool.drv - ok
20:16:22.0607 4420 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
20:16:22.0607 4420 C:\Windows\System32\wlanapi.dll - ok
20:16:22.0611 4420 [ D844B11545F53AA0C10F78763381D9EC ] C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
20:16:22.0611 4420 C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll - ok
20:16:22.0615 4420 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
20:16:22.0615 4420 C:\Windows\System32\wsock32.dll - ok
20:16:22.0619 4420 [ 5DF2CF44F663D4FAD0BA30E8F41D65E4 ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
20:16:22.0620 4420 C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
20:16:22.0623 4420 [ 8AA0CB526AA26B5E8EAD473703772B26 ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll
20:16:22.0624 4420 C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll - ok
20:16:22.0628 4420 [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
20:16:22.0628 4420 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
20:16:22.0632 4420 [ 337D0075256F8266989A648C2EB3391D ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
20:16:22.0632 4420 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
20:16:22.0636 4420 [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
20:16:22.0636 4420 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
20:16:22.0644 4420 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
20:16:22.0644 4420 C:\Windows\System32\p2pcollab.dll - ok
20:16:22.0648 4420 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
20:16:22.0648 4420 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
20:16:22.0652 4420 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
20:16:22.0652 4420 C:\Windows\System32\fveui.dll - ok
20:16:22.0656 4420 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
20:16:22.0656 4420 C:\Windows\SysWOW64\propsys.dll - ok
20:16:22.0660 4420 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
20:16:22.0660 4420 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
20:16:22.0664 4420 [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
20:16:22.0664 4420 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
20:16:22.0667 4420 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
20:16:22.0667 4420 C:\Windows\SysWOW64\wsock32.dll - ok
20:16:22.0671 4420 [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
20:16:22.0671 4420 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
20:16:22.0675 4420 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
20:16:22.0675 4420 C:\Windows\System32\dllhost.exe - ok
20:16:22.0678 4420 [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
20:16:22.0678 4420 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
20:16:22.0682 4420 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
20:16:22.0682 4420 C:\Windows\SysWOW64\cscapi.dll - ok
20:16:22.0686 4420 [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
20:16:22.0686 4420 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
20:16:22.0689 4420 [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
20:16:22.0689 4420 C:\Windows\System32\fveapi.dll - ok
20:16:22.0693 4420 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
20:16:22.0693 4420 C:\Windows\System32\IDStore.dll - ok
20:16:22.0696 4420 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
20:16:22.0696 4420 C:\Windows\System32\tbs.dll - ok
20:16:22.0700 4420 [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
20:16:22.0700 4420 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
20:16:22.0704 4420 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
20:16:22.0704 4420 C:\Windows\System32\fvecerts.dll - ok
20:16:22.0707 4420 [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
20:16:22.0707 4420 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
20:16:22.0711 4420 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
20:16:22.0711 4420 C:\Windows\System32\wiarpc.dll - ok
20:16:22.0714 4420 [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
20:16:22.0714 4420 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
20:16:22.0717 4420 [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
20:16:22.0717 4420 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
20:16:22.0722 4420 [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
20:16:22.0722 4420 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
20:16:22.0729 4420 [ 47FBC576560C0032A841BDCDD6B2FF68 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
20:16:22.0729 4420 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
20:16:22.0734 4420 [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
20:16:22.0734 4420 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
20:16:22.0737 4420 [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
20:16:22.0737 4420 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
20:16:22.0741 4420 [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
20:16:22.0741 4420 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
20:16:22.0745 4420 [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
20:16:22.0745 4420 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
20:16:22.0749 4420 [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
20:16:22.0749 4420 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
20:16:22.0751 4420 [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
20:16:22.0751 4420 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
20:16:22.0755 4420 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
20:16:22.0755 4420 C:\Windows\System32\ktmw32.dll - ok
20:16:22.0758 4420 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
20:16:22.0758 4420 C:\Windows\SysWOW64\cfgmgr32.dll - ok
20:16:22.0762 4420 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
20:16:22.0762 4420 C:\Windows\SysWOW64\wtsapi32.dll - ok
20:16:22.0766 4420 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
20:16:22.0766 4420 C:\Windows\System32\AtBroker.exe - ok
20:16:22.0770 4420 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
20:16:22.0770 4420 C:\Windows\System32\mpr.dll - ok
20:16:22.0773 4420 [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
20:16:22.0773 4420 C:\Windows\System32\taskcomp.dll - ok
20:16:22.0777 4420 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
20:16:22.0777 4420 C:\Windows\System32\userinit.exe - ok
20:16:22.0781 4420 [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
20:16:22.0781 4420 C:\Windows\System32\dwmredir.dll - ok
20:16:22.0784 4420 [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
20:16:22.0784 4420 C:\Windows\System32\dwmcore.dll - ok
20:16:22.0788 4420 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
20:16:22.0788 4420 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
20:16:22.0791 4420 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
20:16:22.0791 4420 C:\Windows\explorer.exe - ok
20:16:22.0795 4420 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
20:16:22.0795 4420 C:\Windows\SysWOW64\wscisvif.dll - ok
20:16:22.0798 4420 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
20:16:22.0798 4420 C:\Windows\System32\drivers\bowser.sys - ok
20:16:22.0802 4420 [ 374B26395852A9092BDE2E4C8D4D0C8D ] C:\Windows\SysWOW64\wscapi.dll
20:16:22.0802 4420 C:\Windows\SysWOW64\wscapi.dll - ok
20:16:22.0805 4420 [ 346F4A6F625B3F8C31E19B6B5E306878 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll
20:16:22.0805 4420 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok
20:16:22.0809 4420 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
20:16:22.0809 4420 C:\Windows\System32\drivers\mpsdrv.sys - ok
20:16:22.0812 4420 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
20:16:22.0812 4420 C:\Windows\System32\wfapigp.dll - ok
20:16:22.0816 4420 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
20:16:22.0816 4420 C:\Windows\System32\drivers\mrxsmb.sys - ok
20:16:22.0819 4420 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
20:16:22.0820 4420 C:\Windows\System32\drivers\mrxsmb10.sys - ok
20:16:22.0823 4420 [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
20:16:22.0823 4420 C:\Windows\System32\mscms.dll - ok
20:16:22.0826 4420 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
20:16:22.0826 4420 C:\Windows\System32\drivers\mrxsmb20.sys - ok
20:16:22.0831 4420 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
20:16:22.0831 4420 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
20:16:22.0835 4420 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:16:22.0835 4420 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
20:16:22.0838 4420 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
20:16:22.0838 4420 C:\Windows\System32\d3d10_1.dll - ok
20:16:22.0842 4420 [ 4DB5518768F67D9FB87087DBB3CBB217 ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswEngin.dll
20:16:22.0842 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswEngin.dll - ok
20:16:22.0846 4420 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
20:16:22.0846 4420 C:\Windows\System32\d3d10_1core.dll - ok
20:16:22.0849 4420 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
20:16:22.0849 4420 C:\Windows\System32\dxgi.dll - ok
20:16:22.0853 4420 [ 4AE47FECD971F2B36FF750E407591FD0 ] C:\Windows\System32\igd10umd64.dll
20:16:22.0853 4420 C:\Windows\System32\igd10umd64.dll - ok
20:16:22.0856 4420 [ E895E417F04339B583A90A1959054BEA ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswCmnOS.dll
20:16:22.0857 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswCmnOS.dll - ok
20:16:22.0860 4420 [ C6443D159F145B5D812C8B0469DB0979 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
20:16:22.0860 4420 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
20:16:22.0864 4420 [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
20:16:22.0864 4420 C:\Windows\System32\taskhost.exe - ok
20:16:22.0868 4420 [ 3AE814769FD59498E9AF30A1B86417DF ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswCmnIS.dll
20:16:22.0868 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswCmnIS.dll - ok
20:16:22.0872 4420 [ 9F8ACDB49A8AEFBFF100B5488EB9D01D ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswCmnBS.dll
20:16:22.0872 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswCmnBS.dll - ok
20:16:22.0877 4420 [ A406DA6CC109194F623C9003AE0B7BE8 ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswScan.dll
20:16:22.0877 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswScan.dll - ok
20:16:22.0881 4420 [ FAD306DD70634B3168CB025C8432CE7E ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswRep.dll
20:16:22.0881 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswRep.dll - ok
20:16:22.0885 4420 [ C1F048B33A1BD8F5B05AF76469252F55 ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswFiDb.dll
20:16:22.0885 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswFiDb.dll - ok
20:16:22.0889 4420 [ 210200D1AF0935473AE17C35CAF88FA7 ] C:\Program Files\AVAST Software\Avast\defs\13012301\algo.dll
20:16:22.0889 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\algo.dll - ok
20:16:22.0893 4420 [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
20:16:22.0893 4420 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
20:16:22.0896 4420 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
20:16:22.0896 4420 C:\Windows\System32\uDWM.dll - ok
20:16:22.0900 4420 [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
20:16:22.0900 4420 C:\Windows\SysWOW64\wintrust.dll - ok
20:16:22.0903 4420 [ D1E343BC00136CE03C4D403194D06A80 ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
20:16:22.0903 4420 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
20:16:22.0907 4420 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
20:16:22.0907 4420 C:\Windows\System32\PlaySndSrv.dll - ok
20:16:22.0910 4420 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
20:16:22.0910 4420 C:\Windows\System32\ExplorerFrame.dll - ok
20:16:22.0914 4420 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
20:16:22.0914 4420 C:\Windows\System32\MsCtfMonitor.dll - ok
20:16:22.0918 4420 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
20:16:22.0918 4420 C:\Windows\System32\netcfgx.dll - ok
20:16:22.0921 4420 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
20:16:22.0921 4420 C:\Windows\System32\msutb.dll - ok
20:16:22.0925 4420 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:16:22.0925 4420 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
20:16:22.0929 4420 [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
20:16:22.0929 4420 C:\Windows\System32\HotStartUserAgent.dll - ok
20:16:22.0933 4420 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
20:16:22.0933 4420 C:\Windows\System32\winmm.dll - ok
20:16:22.0936 4420 [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
20:16:22.0937 4420 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
20:16:22.0940 4420 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
20:16:22.0940 4420 C:\Windows\System32\msi.dll - ok
20:16:22.0944 4420 [ 124D74013A8D62FEB73BBD9D7279BC3B ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
20:16:22.0944 4420 C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
20:16:22.0949 4420 [ 57E4BB38BA56F4307E16542977A60525 ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
20:16:22.0949 4420 C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
20:16:22.0953 4420 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
20:16:22.0953 4420 C:\Windows\System32\drivers\vwifimp.sys - ok
20:16:22.0957 4420 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
20:16:22.0957 4420 C:\Windows\System32\EhStorShell.dll - ok
20:16:22.0961 4420 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
20:16:22.0961 4420 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
20:16:22.0965 4420 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
20:16:22.0965 4420 C:\Windows\System32\netshell.dll - ok
20:16:22.0968 4420 [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\SysWOW64\winsta.dll
20:16:22.0968 4420 C:\Windows\SysWOW64\winsta.dll - ok
20:16:22.0972 4420 [ 94DC95B5FDC29C4B2930CB0B5F8B95B7 ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
20:16:22.0972 4420 C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok
20:16:22.0975 4420 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
20:16:22.0976 4420 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
20:16:22.0979 4420 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
20:16:22.0979 4420 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
20:16:22.0983 4420 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
20:16:22.0983 4420 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
20:16:22.0987 4420 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
20:16:22.0987 4420 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
20:16:22.0991 4420 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
20:16:22.0991 4420 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
20:16:22.0995 4420 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
20:16:22.0995 4420 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
20:16:22.0999 4420 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
20:16:22.0999 4420 C:\Windows\SysWOW64\fltLib.dll - ok
20:16:23.0001 4420 [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
20:16:23.0001 4420 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
20:16:23.0005 4420 [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
20:16:23.0005 4420 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
20:16:23.0009 4420 [ 5937E46ECDCD514C7A74D64E4EF5E21D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
20:16:23.0009 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
20:16:23.0013 4420 [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
20:16:23.0013 4420 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
20:16:23.0016 4420 [ D339D7F6E52AECCA9C0898CB547B2902 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
20:16:23.0017 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
20:16:23.0020 4420 [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
20:16:23.0020 4420 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
20:16:23.0024 4420 [ 5F3347EBA403EE64780980A5BAF10304 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
20:16:23.0024 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
20:16:23.0028 4420 [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
20:16:23.0028 4420 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
20:16:23.0032 4420 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
20:16:23.0032 4420 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
20:16:23.0036 4420 [ 1F942930893ED98204AE67260E03EE26 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
20:16:23.0036 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
20:16:23.0040 4420 [ 26655CA3645C49DA4A79AC18FE84EE11 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
20:16:23.0040 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
20:16:23.0043 4420 [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
20:16:23.0043 4420 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
20:16:23.0047 4420 [ 09B7E7CD6F202247B3CF2306108589C2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
20:16:23.0047 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
20:16:23.0053 4420 [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
20:16:23.0053 4420 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
20:16:23.0056 4420 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
20:16:23.0057 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
20:16:23.0060 4420 [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
20:16:23.0060 4420 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
20:16:23.0065 4420 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
20:16:23.0065 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
20:16:23.0069 4420 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
20:16:23.0069 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
20:16:23.0073 4420 [ EFC03638BF395CE1903FE6414296D95D ] C:\Program Files\AVAST Software\Avast\defs\13012301\ArPot.dll
20:16:23.0073 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\ArPot.dll - ok
20:16:23.0077 4420 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
20:16:23.0077 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
20:16:23.0081 4420 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
20:16:23.0081 4420 C:\Windows\System32\ntshrui.dll - ok
20:16:23.0085 4420 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
20:16:23.0085 4420 C:\Program Files\Bonjour\mdnsNSP.dll - ok
20:16:23.0088 4420 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
20:16:23.0088 4420 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
20:16:23.0092 4420 [ 24AA9776D6AB032071B61C88089AEA59 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
20:16:23.0092 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
20:16:23.0096 4420 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
20:16:23.0096 4420 C:\Windows\System32\rasadhlp.dll - ok
20:16:23.0100 4420 [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
20:16:23.0100 4420 C:\Windows\System32\localspl.dll - ok
20:16:23.0103 4420 [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
20:16:23.0103 4420 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
20:16:23.0107 4420 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
20:16:23.0107 4420 C:\Windows\System32\cscapi.dll - ok
20:16:23.0110 4420 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
20:16:23.0110 4420 C:\Windows\System32\IconCodecService.dll - ok
20:16:23.0114 4420 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
20:16:23.0114 4420 C:\Windows\SysWOW64\apphelp.dll - ok
20:16:23.0118 4420 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
20:16:23.0118 4420 C:\Windows\SysWOW64\clbcatq.dll - ok
20:16:23.0121 4420 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
20:16:23.0122 4420 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
20:16:23.0125 4420 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
20:16:23.0125 4420 C:\Windows\System32\spoolss.dll - ok
20:16:23.0129 4420 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
20:16:23.0129 4420 C:\Windows\SysWOW64\ieframe.dll - ok
20:16:23.0132 4420 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
20:16:23.0132 4420 C:\Windows\SysWOW64\setupapi.dll - ok
20:16:23.0136 4420 [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
20:16:23.0136 4420 C:\Windows\System32\PrintIsolationProxy.dll - ok
20:16:23.0139 4420 [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
20:16:23.0139 4420 C:\Windows\System32\FXSMON.dll - ok
20:16:23.0143 4420 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
20:16:23.0143 4420 C:\Windows\System32\hpz3lw71.dll - ok
20:16:23.0146 4420 [ C5E82BCFD577AF98F3A7937A69A338B9 ] C:\Windows\System32\HPZ3LWN7.DLL
20:16:23.0146 4420 C:\Windows\System32\HPZ3LWN7.DLL - ok
20:16:23.0150 4420 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
20:16:23.0150 4420 C:\Windows\System32\tcpmon.dll - ok
20:16:23.0153 4420 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
20:16:23.0153 4420 C:\Windows\SysWOW64\devobj.dll - ok
20:16:23.0157 4420 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
20:16:23.0157 4420 C:\Windows\System32\snmpapi.dll - ok
20:16:23.0161 4420 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
20:16:23.0161 4420 C:\Windows\SysWOW64\dnssd.dll - ok
20:16:23.0165 4420 [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
20:16:23.0165 4420 C:\Windows\System32\wsnmp32.dll - ok
20:16:23.0169 4420 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
20:16:23.0169 4420 C:\Windows\SysWOW64\mswsock.dll - ok
20:16:23.0173 4420 [ C620C59D46F43BEECC556F65E801312B ] C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
20:16:23.0173 4420 C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe - ok
20:16:23.0176 4420 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
20:16:23.0176 4420 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
20:16:23.0180 4420 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
20:16:23.0180 4420 C:\Windows\System32\usbmon.dll - ok
20:16:23.0184 4420 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
20:16:23.0184 4420 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
20:16:23.0187 4420 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
20:16:23.0187 4420 C:\Windows\SysWOW64\cryptsp.dll - ok
20:16:23.0191 4420 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
20:16:23.0191 4420 C:\Windows\System32\WSDMon.dll - ok
20:16:23.0194 4420 [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
20:16:23.0194 4420 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
20:16:23.0198 4420 [ 8195B745A9C3235E4715F0A1B59206CF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
20:16:23.0198 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
20:16:23.0202 4420 [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
20:16:23.0202 4420 C:\Windows\System32\WSDApi.dll - ok
20:16:23.0205 4420 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
20:16:23.0205 4420 C:\Windows\SysWOW64\rsaenh.dll - ok
20:16:23.0209 4420 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
20:16:23.0209 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
20:16:23.0213 4420 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
20:16:23.0213 4420 C:\Windows\SysWOW64\dnsapi.dll - ok
20:16:23.0216 4420 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
20:16:23.0216 4420 C:\Windows\SysWOW64\winrnr.dll - ok
20:16:23.0220 4420 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
20:16:23.0220 4420 C:\Windows\System32\webservices.dll - ok
20:16:23.0226 4420 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
20:16:23.0226 4420 C:\Windows\SysWOW64\NapiNSP.dll - ok
20:16:23.0230 4420 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
20:16:23.0230 4420 C:\Windows\SysWOW64\pnrpnsp.dll - ok
20:16:23.0234 4420 [ 3A2BB97D54A2189C9900A735C0531B59 ] C:\Windows\SysWOW64\wshbth.dll
20:16:23.0234 4420 C:\Windows\SysWOW64\wshbth.dll - ok
20:16:23.0238 4420 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
20:16:23.0238 4420 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
20:16:23.0242 4420 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
20:16:23.0242 4420 C:\Windows\System32\fundisc.dll - ok
20:16:23.0245 4420 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
20:16:23.0245 4420 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
20:16:23.0250 4420 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
20:16:23.0250 4420 C:\Windows\System32\fdPnp.dll - ok
20:16:23.0252 4420 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
20:16:23.0252 4420 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
20:16:23.0256 4420 [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
20:16:23.0256 4420 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
20:16:23.0259 4420 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
20:16:23.0259 4420 C:\Windows\SysWOW64\winnsi.dll - ok
20:16:23.0263 4420 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
20:16:23.0263 4420 C:\Windows\SysWOW64\rasadhlp.dll - ok
20:16:23.0267 4420 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
20:16:23.0267 4420 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
20:16:23.0271 4420 [ 8F1C949FD695C83C4E30C3BFC004C81F ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
20:16:23.0271 4420 C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
20:16:23.0275 4420 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
20:16:23.0275 4420 C:\Windows\SysWOW64\oleacc.dll - ok
20:16:23.0279 4420 [ 240D42CBD1691C6B7D54AF4E3365BAAC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
20:16:23.0279 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
20:16:23.0283 4420 [ 6CF93FC44E346AE4D117C7A1F340BE2F ] C:\Program Files\AVAST Software\Avast\defs\13012301\exts.dll
20:16:23.0283 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\exts.dll - ok
20:16:23.0286 4420 [ ABB515748212F8B5D3A9B07041E97B32 ] C:\Windows\System32\win32spl.dll
20:16:23.0286 4420 C:\Windows\System32\win32spl.dll - ok
20:16:23.0290 4420 [ 282F84E0096499C42102D7234A4D14EF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
20:16:23.0290 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
20:16:23.0294 4420 [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
20:16:23.0294 4420 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
20:16:23.0298 4420 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
20:16:23.0298 4420 C:\Windows\SysWOW64\security.dll - ok
20:16:23.0301 4420 [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
20:16:23.0301 4420 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
20:16:23.0305 4420 [ 1683774D357D5CFFCDC871493E19F58F ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswAR.dll
20:16:23.0305 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswAR.dll - ok
20:16:23.0309 4420 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
20:16:23.0309 4420 C:\Windows\SysWOW64\wship6.dll - ok
20:16:23.0312 4420 [ BFBFAFFC60EBB5754F37868CAA876BF1 ] C:\Program Files\AVAST Software\Avast\defs\13012301\aswRawFS.dll
20:16:23.0312 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aswRawFS.dll - ok
20:16:23.0316 4420 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
20:16:23.0316 4420 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
20:16:23.0320 4420 [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
20:16:23.0320 4420 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
20:16:23.0324 4420 [ 2D15C41214F518FC3C72A4C01C30882F ] C:\Windows\SysWOW64\bthprops.cpl
20:16:23.0324 4420 C:\Windows\SysWOW64\bthprops.cpl - ok
20:16:23.0327 4420 [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
20:16:23.0327 4420 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
20:16:23.0331 4420 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
20:16:23.0331 4420 C:\Windows\SysWOW64\comdlg32.dll - ok
20:16:23.0335 4420 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
20:16:23.0335 4420 C:\Program Files\Bonjour\mDNSResponder.exe - ok
20:16:23.0339 4420 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
20:16:23.0339 4420 C:\Windows\SysWOW64\winspool.drv - ok
20:16:23.0343 4420 [ 9392C25DEEDA9A79FDBF6559D47EAB1F ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
20:16:23.0343 4420 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
20:16:23.0346 4420 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
20:16:23.0346 4420 C:\Windows\SysWOW64\powrprof.dll - ok
20:16:23.0350 4420 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
20:16:23.0350 4420 C:\Windows\SysWOW64\msimg32.dll - ok
20:16:23.0353 4420 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
20:16:23.0353 4420 C:\Windows\SysWOW64\oledlg.dll - ok
20:16:23.0357 4420 [ 079FC5AAA9963057548DF29F069EC406 ] C:\Windows\AppPatch\AcGenral.dll
20:16:23.0357 4420 C:\Windows\AppPatch\AcGenral.dll - ok
20:16:23.0361 4420 [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
20:16:23.0361 4420 C:\Windows\System32\inetpp.dll - ok
20:16:23.0364 4420 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
20:16:23.0364 4420 C:\Windows\SysWOW64\uxtheme.dll - ok
20:16:23.0368 4420 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
20:16:23.0368 4420 C:\Windows\SysWOW64\samcli.dll - ok
20:16:23.0371 4420 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
20:16:23.0372 4420 C:\Windows\SysWOW64\dwmapi.dll - ok
20:16:23.0376 4420 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
20:16:23.0376 4420 C:\Windows\SysWOW64\msacm32.dll - ok
20:16:23.0380 4420 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
20:16:23.0380 4420 C:\Windows\SysWOW64\sfc.dll - ok
20:16:23.0385 4420 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
20:16:23.0385 4420 C:\Windows\SysWOW64\sfc_os.dll - ok
20:16:23.0389 4420 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
20:16:23.0389 4420 C:\Windows\SysWOW64\mpr.dll - ok
20:16:23.0393 4420 [ B9A4DAC2192FD78CDA097BFA79F6E7B2 ] C:\Windows\SysWOW64\net.exe
20:16:23.0393 4420 C:\Windows\SysWOW64\net.exe - ok
20:16:23.0397 4420 [ 63DD6FBAABF881385899FD39DF13DCE3 ] C:\Windows\System32\net.exe
20:16:23.0397 4420 C:\Windows\System32\net.exe - ok
20:16:23.0401 4420 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
20:16:23.0401 4420 C:\Windows\SysWOW64\wscproxystub.dll - ok
20:16:23.0404 4420 [ A81AF063D965A321D577AE3C24ADA449 ] C:\Windows\SysWOW64\browcli.dll
20:16:23.0404 4420 C:\Windows\SysWOW64\browcli.dll - ok
20:16:23.0407 4420 [ BA57DD1C2C77227930B6FBB93DEB600F ] C:\Windows\SysWOW64\net1.exe
20:16:23.0408 4420 C:\Windows\SysWOW64\net1.exe - ok
20:16:23.0411 4420 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
20:16:23.0411 4420 C:\Windows\System32\taskschd.dll - ok
20:16:23.0414 4420 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
20:16:23.0414 4420 C:\Windows\SysWOW64\dsrole.dll - ok
20:16:23.0418 4420 [ D8ECA7A87AAA3AE308B5277411666622 ] C:\Windows\SysWOW64\logoncli.dll
20:16:23.0418 4420 C:\Windows\SysWOW64\logoncli.dll - ok
20:16:23.0422 4420 [ 1C540B6FCD8A6F772650660CFB03A06A ] C:\Windows\System32\efscore.dll
20:16:23.0422 4420 C:\Windows\System32\efscore.dll - ok
20:16:23.0425 4420 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
20:16:23.0425 4420 C:\Windows\System32\shfolder.dll - ok
20:16:23.0428 4420 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
20:16:23.0428 4420 C:\Windows\System32\efsutil.dll - ok
20:16:23.0432 4420 [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
20:16:23.0432 4420 C:\Windows\System32\taskeng.exe - ok
20:16:23.0435 4420 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
20:16:23.0435 4420 C:\Windows\SysWOW64\samlib.dll - ok
20:16:23.0439 4420 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
20:16:23.0439 4420 C:\Windows\SysWOW64\ntdsapi.dll - ok
20:16:23.0442 4420 [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
20:16:23.0442 4420 C:\Windows\System32\cryptnet.dll - ok
20:16:23.0446 4420 [ 8B6C9924B0D333DBF76086B8258A0891 ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:16:23.0446 4420 C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok
20:16:23.0449 4420 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
20:16:23.0449 4420 C:\Windows\System32\TSChannel.dll - ok
20:16:23.0453 4420 [ 12257B3991C9FE858D9EA4652FF281AC ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
20:16:23.0453 4420 C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok
20:16:23.0457 4420 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:16:23.0457 4420 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
20:16:23.0460 4420 [ FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
20:16:23.0460 4420 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
20:16:23.0464 4420 [ 1525A7963B53A6741B67E075B32CF9B8 ] C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe
20:16:23.0464 4420 C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe - ok
20:16:23.0468 4420 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:16:23.0468 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
20:16:23.0472 4420 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
20:16:23.0472 4420 C:\Windows\System32\vssapi.dll - ok
20:16:23.0476 4420 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
20:16:23.0476 4420 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
20:16:23.0480 4420 [ 8624E0E2418413614EE1FECDB7B76B88 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
20:16:23.0480 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
20:16:23.0487 4420 [ 89B66A2846CA09FDDF49B352A58CB1A0 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
20:16:23.0487 4420 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
20:16:23.0489 4420 [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
20:16:23.0489 4420 C:\Windows\SysWOW64\imagehlp.dll - ok
20:16:23.0493 4420 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
20:16:23.0493 4420 C:\Windows\SysWOW64\msi.dll - ok
20:16:23.0496 4420 [ D4467A285C91752018F67CDBA8680BAB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
20:16:23.0497 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
20:16:23.0501 4420 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:16:23.0501 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
20:16:23.0503 4420 [ 150C73673B7FBE51FD8F2C980E528D5E ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
20:16:23.0504 4420 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
20:16:23.0507 4420 [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\SysWOW64\mshtml.dll
20:16:23.0507 4420 C:\Windows\SysWOW64\mshtml.dll - ok
20:16:23.0511 4420 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
20:16:23.0511 4420 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
20:16:23.0515 4420 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
20:16:23.0515 4420 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
20:16:23.0519 4420 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
20:16:23.0519 4420 C:\Windows\SysWOW64\mstask.dll - ok
20:16:23.0522 4420 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
20:16:23.0522 4420 C:\Windows\System32\vsstrace.dll - ok
20:16:23.0526 4420 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe
20:16:23.0526 4420 C:\Windows\svchost.exe - ok
20:16:23.0530 4420 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
20:16:23.0530 4420 C:\Windows\SysWOW64\dsound.dll - ok
20:16:23.0534 4420 [ 4BE1DCAD76BE96D1EC887A41E570C404 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
20:16:23.0534 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
20:16:23.0537 4420 [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
20:16:23.0537 4420 C:\Windows\System32\dbghelp.dll - ok
20:16:23.0541 4420 [ 19E4BAA7BE36144C41AF844DE1CFB50D ] C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\MovielinkCore.exe
20:16:23.0541 4420 C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\MovielinkCore.exe - ok
20:16:23.0545 4420 [ 7853D2AB445C10F97610B2B05FA4CF0A ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
20:16:23.0545 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
20:16:23.0549 4420 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
20:16:23.0549 4420 C:\Windows\System32\aepic.dll - ok
20:16:23.0552 4420 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
20:16:23.0552 4420 C:\Windows\System32\drivers\PEAuth.sys - ok
20:16:23.0556 4420 [ 189C5A8D2098E0AA14FD157A954B34FC ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:16:23.0556 4420 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok
20:16:23.0560 4420 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
20:16:23.0560 4420 C:\Windows\System32\sfc.dll - ok
20:16:23.0563 4420 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
20:16:23.0563 4420 C:\Windows\System32\sfc_os.dll - ok
20:16:23.0567 4420 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
20:16:23.0567 4420 C:\Windows\SysWOW64\wevtapi.dll - ok
20:16:23.0570 4420 [ 3F2DEAFC463D75611CB9C5E36A8CCF15 ] C:\Windows\SysWOW64\ncsi.dll
20:16:23.0570 4420 C:\Windows\SysWOW64\ncsi.dll - ok
20:16:23.0573 4420 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
20:16:23.0574 4420 C:\Windows\System32\ncsi.dll - ok
20:16:23.0577 4420 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
20:16:23.0577 4420 C:\Windows\System32\webio.dll - ok
20:16:23.0580 4420 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
20:16:23.0580 4420 C:\Windows\SysWOW64\credssp.dll - ok
20:16:23.0584 4420 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\SysWOW64\ssdpapi.dll
20:16:23.0584 4420 C:\Windows\SysWOW64\ssdpapi.dll - ok
20:16:23.0587 4420 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
20:16:23.0588 4420 C:\Windows\System32\ssdpapi.dll - ok
20:16:23.0591 4420 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
20:16:23.0591 4420 C:\Windows\System32\aeevts.dll - ok
20:16:23.0594 4420 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
20:16:23.0595 4420 C:\Windows\SysWOW64\bcrypt.dll - ok
20:16:23.0598 4420 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
20:16:23.0598 4420 C:\Windows\System32\drivers\secdrv.sys - ok
20:16:23.0602 4420 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
20:16:23.0602 4420 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
20:16:23.0607 4420 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
20:16:23.0607 4420 C:\Windows\System32\drivers\Sftfslh.sys - ok
20:16:23.0610 4420 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
20:16:23.0610 4420 C:\Windows\SysWOW64\sxs.dll - ok
20:16:23.0613 4420 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
20:16:23.0613 4420 C:\Windows\SysWOW64\rasapi32.dll - ok
20:16:23.0619 4420 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
20:16:23.0619 4420 C:\Windows\SysWOW64\rasman.dll - ok
20:16:23.0622 4420 [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
20:16:23.0622 4420 C:\Windows\SysWOW64\rtutils.dll - ok
20:16:23.0626 4420 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
20:16:23.0626 4420 C:\Windows\SysWOW64\SensApi.dll - ok
20:16:23.0630 4420 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
20:16:23.0630 4420 C:\Windows\SysWOW64\netprofm.dll - ok
20:16:23.0634 4420 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
20:16:23.0634 4420 C:\Windows\SysWOW64\nlaapi.dll - ok
20:16:23.0638 4420 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
20:16:23.0638 4420 C:\Windows\System32\drivers\Sftplaylh.sys - ok
20:16:23.0642 4420 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
20:16:23.0642 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
20:16:23.0645 4420 [ 63DBAF8058BE20B56DF95C075E63FD23 ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
20:16:23.0645 4420 C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok
20:16:23.0649 4420 [ E2C22DBC09036C97E62088B9793B2F90 ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
20:16:23.0649 4420 C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok
20:16:23.0653 4420 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
20:16:23.0653 4420 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
20:16:23.0657 4420 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
20:16:23.0657 4420 C:\Windows\System32\wbem\wbemprox.dll - ok
20:16:23.0661 4420 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
20:16:23.0661 4420 C:\Windows\SysWOW64\wbemcomn.dll - ok
20:16:23.0664 4420 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
20:16:23.0664 4420 C:\Windows\System32\wbemcomn.dll - ok
20:16:23.0669 4420 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:16:23.0669 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
20:16:23.0674 4420 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
20:16:23.0674 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
20:16:23.0678 4420 [ 462400256655B8DAE8DD8E33720481AF ] C:\Windows\SysWOW64\msxml3.dll
20:16:23.0678 4420 C:\Windows\SysWOW64\msxml3.dll - ok
20:16:23.0682 4420 [ 9B303458CDDAA21828AAD6AF567DE9C3 ] C:\Program Files\Intel\WiFi\bin\iWrap.exe
20:16:23.0682 4420 C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok
20:16:23.0687 4420 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
20:16:23.0687 4420 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
20:16:23.0691 4420 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
20:16:23.0691 4420 C:\Windows\System32\drivers\srvnet.sys - ok
20:16:23.0695 4420 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
20:16:23.0695 4420 C:\Windows\SysWOW64\svchost.exe - ok
20:16:23.0698 4420 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
20:16:23.0698 4420 C:\Windows\System32\oledlg.dll - ok
20:16:23.0703 4420 [ BE0050EA38AC55F12774B625CB4D7563 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe
20:16:23.0703 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe - ok
20:16:23.0707 4420 [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
20:16:23.0707 4420 C:\Windows\System32\drivers\tcpipreg.sys - ok
20:16:23.0711 4420 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
20:16:23.0711 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
20:16:23.0715 4420 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
20:16:23.0715 4420 C:\Windows\System32\wiatrace.dll - ok
20:16:23.0719 4420 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
20:16:23.0719 4420 C:\Windows\SysWOW64\wiatrace.dll - ok
20:16:23.0722 4420 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
20:16:23.0722 4420 C:\Windows\SysWOW64\wlanapi.dll - ok
20:16:23.0726 4420 [ 90691014D96030B69D7B8D6A0967FC67 ] C:\Windows\SysWOW64\msv1_0.dll
20:16:23.0726 4420 C:\Windows\SysWOW64\msv1_0.dll - ok
20:16:23.0729 4420 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
20:16:23.0729 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
20:16:23.0733 4420 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
20:16:23.0733 4420 C:\Windows\SysWOW64\cryptdll.dll - ok
20:16:23.0737 4420 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
20:16:23.0737 4420 C:\Windows\SysWOW64\wlanutil.dll - ok
20:16:23.0740 4420 [ 17F9F7ECF75616D7C165047DE54002C2 ] C:\Windows\SysWOW64\en-US\crypt32.dll.mui
20:16:23.0740 4420 C:\Windows\SysWOW64\en-US\crypt32.dll.mui - ok
20:16:23.0744 4420 [ 3CF42E15D0E49ED6E8FF7CDF20027E6C ] C:\Windows\SysWOW64\en-US\ntdll.dll.mui
20:16:23.0744 4420 C:\Windows\SysWOW64\en-US\ntdll.dll.mui - ok
20:16:23.0748 4420 [ 2F03490092C032392FB6FF635222B9B2 ] C:\Windows\SysWOW64\apisetschema.dll
20:16:23.0748 4420 C:\Windows\SysWOW64\apisetschema.dll - ok
20:16:23.0752 4420 [ E9DD4A43A187FE6A1EE947FA40345A13 ] C:\Windows\SysWOW64\en-US\shell32.dll.mui
20:16:23.0752 4420 C:\Windows\SysWOW64\en-US\shell32.dll.mui - ok
20:16:23.0755 4420 [ 7F2825DA411F6E7B8EB6797684D9F9B0 ] C:\Windows\SysWOW64\en-US\rpcrt4.dll.mui
20:16:23.0755 4420 C:\Windows\SysWOW64\en-US\rpcrt4.dll.mui - ok
20:16:23.0758 4420 [ 3035DC245A7824DD438FD93C7F2DC806 ] C:\Windows\SysWOW64\en-US\advapi32.dll.mui
20:16:23.0758 4420 C:\Windows\SysWOW64\en-US\advapi32.dll.mui - ok
20:16:23.0762 4420 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
20:16:23.0762 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
20:16:23.0767 4420 [ 7EDE37CE87B8CC356B2CBC282BAD03D1 ] C:\Windows\SysWOW64\en-US\wininet.dll.mui
20:16:23.0767 4420 C:\Windows\SysWOW64\en-US\wininet.dll.mui - ok
20:16:23.0770 4420 [ 6141A0E786FDB37C504A1153B54F699E ] C:\Windows\SysWOW64\en-US\urlmon.dll.mui
20:16:23.0770 4420 C:\Windows\SysWOW64\en-US\urlmon.dll.mui - ok
20:16:23.0774 4420 [ 2F1D61ECBAFEB6DAF6BBAE06252B7806 ] C:\Windows\SysWOW64\en-US\uxtheme.dll.mui
20:16:23.0774 4420 C:\Windows\SysWOW64\en-US\uxtheme.dll.mui - ok
20:16:23.0778 4420 [ FEAEF640CA195DD0A6DF766C56F1F392 ] C:\Windows\SysWOW64\en-US\ieframe.dll.mui
20:16:23.0778 4420 C:\Windows\SysWOW64\en-US\ieframe.dll.mui - ok
20:16:23.0782 4420 [ 9206CF803B9357E88EB34E3B56D09832 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\pcre3.dll
20:16:23.0782 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\pcre3.dll - ok
20:16:23.0786 4420 [ 1E7F7800F2EE1F15D866D7AAFF7B1EE5 ] C:\Windows\SysWOW64\en-US\oledlg.dll.mui
20:16:23.0786 4420 C:\Windows\SysWOW64\en-US\oledlg.dll.mui - ok
20:16:23.0789 4420 [ 96BFF501CF9B0B78741895829CED1411 ] C:\Windows\SysWOW64\en-US\wsock32.dll.mui
20:16:23.0789 4420 C:\Windows\SysWOW64\en-US\wsock32.dll.mui - ok
20:16:23.0793 4420 [ D877DFA95243902C326CB4E7767A98E4 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ZipTV06.dll
20:16:23.0793 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ZipTV06.dll - ok
20:16:23.0797 4420 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
20:16:23.0797 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
20:16:23.0801 4420 [ AEE6932D5DC37232811E402ABE1F7B91 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvcabinet.dll
20:16:23.0801 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvcabinet.dll - ok
20:16:23.0805 4420 [ 7FA6068EDCF59A8B79AB2F489DA0585E ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvunrar3.dll
20:16:23.0805 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvunrar3.dll - ok
20:16:23.0809 4420 [ 794CCFAEE7A4277842821692A8C44316 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\Lockbox.dll
20:16:23.0809 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\Lockbox.dll - ok
20:16:23.0813 4420 [ DB8D0C4A20C605865AD233612EF17C37 ] C:\Windows\SysWOW64\en-US\wlanapi.dll.mui
20:16:23.0813 4420 C:\Windows\SysWOW64\en-US\wlanapi.dll.mui - ok
20:16:23.0817 4420 [ 64DE79BF805724F0606FE7B3B2F13784 ] C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
20:16:23.0817 4420 C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe - ok
20:16:23.0821 4420 [ 0470997A5ADC2FCDDCB3461D92073FAA ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
20:16:23.0821 4420 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
20:16:23.0825 4420 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
20:16:23.0825 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
20:16:23.0829 4420 [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
20:16:23.0829 4420 C:\Windows\SysWOW64\devrtl.dll - ok
20:16:23.0834 4420 [ D720800C2AA3C6889B538011ED6C6B1B ] C:\Windows\SysWOW64\esent.dll
20:16:23.0834 4420 C:\Windows\SysWOW64\esent.dll - ok
20:16:23.0838 4420 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:16:23.0838 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
20:16:23.0842 4420 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
20:16:23.0842 4420 C:\Windows\System32\esent.dll - ok
20:16:23.0845 4420 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
20:16:23.0845 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
20:16:23.0849 4420 [ 8E79090CB0987CA102E845341E052537 ] C:\Windows\SysWOW64\vdmdbg.dll
20:16:23.0849 4420 C:\Windows\SysWOW64\vdmdbg.dll - ok
20:16:23.0853 4420 [ 623C9754952A35B018F2448AF8184075 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\dbghelp.dll
20:16:23.0853 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\dbghelp.dll - ok
20:16:23.0857 4420 [ 662398B18EE2A910265630893AD09B1B ] C:\Windows\SysWOW64\tzres.dll
20:16:23.0857 4420 C:\Windows\SysWOW64\tzres.dll - ok
20:16:23.0860 4420 [ 0E7441BE4D8C31C7F94D4E09AF8339C8 ] C:\Windows\SysWOW64\wbem\WmiDcPrv.dll
20:16:23.0860 4420 C:\Windows\SysWOW64\wbem\WmiDcPrv.dll - ok
20:16:23.0864 4420 [ DABCE6654CB86586FA1DC262D8D1B06D ] C:\Windows\SysWOW64\en-US\tzres.dll.mui
20:16:23.0864 4420 C:\Windows\SysWOW64\en-US\tzres.dll.mui - ok
20:16:23.0868 4420 [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
20:16:23.0868 4420 C:\Windows\SysWOW64\oleaccrc.dll - ok
20:16:23.0871 4420 [ 3BFAA4560430DC2B1B86E7EAD4A63F91 ] C:\Windows\SysWOW64\en-US\setupapi.dll.mui
20:16:23.0871 4420 C:\Windows\SysWOW64\en-US\setupapi.dll.mui - ok
20:16:23.0875 4420 [ EFBC1DD333C99CA52A1371C74D4BA7A7 ] C:\Windows\SysWOW64\vssapi.dll
20:16:23.0875 4420 C:\Windows\SysWOW64\vssapi.dll - ok
20:16:23.0879 4420 [ CB7633FF7131FB4AA25A09A619082F60 ] C:\Windows\AppPatch\AcLayers.dll
20:16:23.0879 4420 C:\Windows\AppPatch\AcLayers.dll - ok
20:16:23.0882 4420 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\SysWOW64\vsstrace.dll
20:16:23.0882 4420 C:\Windows\SysWOW64\vsstrace.dll - ok
20:16:23.0886 4420 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
20:16:23.0886 4420 C:\Windows\SysWOW64\es.dll - ok
20:16:23.0890 4420 [ F343D80C26B3BDFCA8066BD5FD397E73 ] C:\Windows\SysWOW64\en-US\vsstrace.dll.mui
20:16:23.0890 4420 C:\Windows\SysWOW64\en-US\vsstrace.dll.mui - ok
20:16:23.0893 4420 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
20:16:23.0893 4420 C:\Windows\System32\wbem\WinMgmtR.dll - ok
20:16:23.0897 4420 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
20:16:23.0897 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
20:16:23.0901 4420 [ C6711C2226AC422D8AE2AC6F18D07D60 ] C:\Windows\SysWOW64\en-US\propsys.dll.mui
20:16:23.0901 4420 C:\Windows\SysWOW64\en-US\propsys.dll.mui - ok
20:16:23.0905 4420 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
20:16:23.0905 4420 C:\Windows\SysWOW64\mscoree.dll - ok
20:16:23.0908 4420 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\SysWOW64\wbem\esscli.dll
20:16:23.0908 4420 C:\Windows\SysWOW64\wbem\esscli.dll - ok
20:16:23.0913 4420 [ 0786EA7E8DBDD3D8D6861E7D2C87E5E3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
20:16:23.0913 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
20:16:23.0916 4420 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
20:16:23.0916 4420 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
20:16:23.0920 4420 [ 2546C6CDC6D1EF6ECA1C1B2A6E4C4C12 ] C:\Windows\SysWOW64\wbem\en-US\wmiutils.dll.mui
20:16:23.0920 4420 C:\Windows\SysWOW64\wbem\en-US\wmiutils.dll.mui - ok
20:16:23.0925 4420 [ 425A3EB8EAE9E24A580A99D8DAEEBF24 ] C:\Windows\SysWOW64\en-US\comdlg32.dll.mui
20:16:23.0925 4420 C:\Windows\SysWOW64\en-US\comdlg32.dll.mui - ok
20:16:23.0929 4420 [ 21012407E8C74AA72BBB485B0FC197FE ] C:\Windows\SysWOW64\taskschd.dll
20:16:23.0929 4420 C:\Windows\SysWOW64\taskschd.dll - ok
20:16:23.0934 4420 [ 939F2F4C9B70686DB8A4EFA14B8AC229 ] C:\Windows\SysWOW64\en-US\ws2_32.dll.mui
20:16:23.0934 4420 C:\Windows\SysWOW64\en-US\ws2_32.dll.mui - ok
20:16:23.0940 4420 [ 0C2AE180D8C35F723BA13A16AA9AC453 ] C:\Windows\SysWOW64\xmllite.dll
20:16:23.0940 4420 C:\Windows\SysWOW64\xmllite.dll - ok
20:16:23.0943 4420 [ 338A801EBA1110051E75C657F114A8D9 ] C:\Windows\SysWOW64\en-US\wldap32.dll.mui
20:16:23.0943 4420 C:\Windows\SysWOW64\en-US\wldap32.dll.mui - ok
20:16:23.0947 4420 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
20:16:23.0947 4420 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
20:16:23.0951 4420 [ DCFF3A34C548C28B6ADCFB7CBD02CA58 ] C:\Windows\SysWOW64\en-US\oleaccrc.dll.mui
20:16:23.0951 4420 C:\Windows\SysWOW64\en-US\oleaccrc.dll.mui - ok
20:16:23.0956 4420 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\SysWOW64\ncobjapi.dll
20:16:23.0956 4420 C:\Windows\SysWOW64\ncobjapi.dll - ok
20:16:23.0960 4420 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
20:16:23.0960 4420 C:\Windows\System32\wbem\unsecapp.exe - ok
20:16:23.0964 4420 [ 9470444619E7F804D925B77F11BF8E06 ] C:\Windows\SysWOW64\en-US\wer.dll.mui
20:16:23.0964 4420 C:\Windows\SysWOW64\en-US\wer.dll.mui - ok
20:16:23.0967 4420 [ 3C33562F4FAE3D58E47F662DCE07675E ] C:\Windows\SysWOW64\WinSCard.dll
20:16:23.0967 4420 C:\Windows\SysWOW64\WinSCard.dll - ok
20:16:23.0971 4420 [ 2B0F70547A3E310DB6144DA9D6C07776 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b0b8554c05f194f546a8ed531320760b\mscorlib.ni.dll
20:16:23.0971 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b0b8554c05f194f546a8ed531320760b\mscorlib.ni.dll - ok
20:16:23.0976 4420 [ 5B3423AE92AB3B15B073A4337D76176C ] C:\Windows\SysWOW64\en-US\WinSCard.dll.mui
20:16:23.0976 4420 C:\Windows\SysWOW64\en-US\WinSCard.dll.mui - ok
20:16:23.0980 4420 [ 826E65C945738CBD64F89EAE4406687F ] C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
20:16:23.0980 4420 C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe - ok
20:16:23.0985 4420 [ 173ACF6C35627AF10D8A449AB8D61C0E ] C:\Windows\SysWOW64\framedynos.dll
20:16:23.0985 4420 C:\Windows\SysWOW64\framedynos.dll - ok
20:16:23.0988 4420 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\SysWOW64\winrshost.exe
20:16:23.0989 4420 C:\Windows\SysWOW64\winrshost.exe - ok
20:16:23.0992 4420 [ 0E8E88107A15365FFF6C7A891338AFF0 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbampt.exe
20:16:23.0992 4420 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbampt.exe - ok
20:16:23.0996 4420 [ 7DFD5F19554F25768275A65418FD3AE7 ] C:\Windows\SysWOW64\en-US\bthprops.cpl.mui
20:16:23.0996 4420 C:\Windows\SysWOW64\en-US\bthprops.cpl.mui - ok
20:16:24.0000 4420 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
20:16:24.0000 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
20:16:24.0003 4420 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
20:16:24.0003 4420 C:\Windows\SysWOW64\riched20.dll - ok
20:16:24.0006 4420 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
20:16:24.0006 4420 C:\Windows\SysWOW64\p2pcollab.dll - ok
20:16:24.0010 4420 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
20:16:24.0010 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
20:16:24.0013 4420 [ 5BBF32865EB3D66988C6E06834EC2675 ] C:\Windows\SysWOW64\ncrypt.dll
20:16:24.0013 4420 C:\Windows\SysWOW64\ncrypt.dll - ok
20:16:24.0017 4420 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
20:16:24.0017 4420 C:\Windows\SysWOW64\gpapi.dll - ok
20:16:24.0021 4420 [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
20:16:24.0021 4420 C:\Windows\SysWOW64\cryptnet.dll - ok
20:16:24.0025 4420 [ 2B6FC63A9D1D902B8B7B2B128D5D1C5A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
20:16:24.0025 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
20:16:24.0029 4420 [ 56892E1DA69ABAF325C4B83CF5CCC53A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c54750e64ba10d0fb7b6a636fb3695ca\System.ni.dll
20:16:24.0029 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c54750e64ba10d0fb7b6a636fb3695ca\System.ni.dll - ok
20:16:24.0033 4420 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
20:16:24.0033 4420 C:\Windows\System32\wbem\wbemcore.dll - ok
20:16:24.0038 4420 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
20:16:24.0039 4420 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
20:16:24.0043 4420 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
20:16:24.0043 4420 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
20:16:24.0049 4420 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
20:16:24.0049 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
20:16:24.0053 4420 [ F37CC8B9B50AD9009AA054F79C093A1F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\82a4c4666ad83c3a375210247e69646b\WindowsBase.ni.dll
20:16:24.0053 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\82a4c4666ad83c3a375210247e69646b\WindowsBase.ni.dll - ok
20:16:24.0057 4420 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\SysWOW64\dssenh.dll
20:16:24.0057 4420 C:\Windows\SysWOW64\dssenh.dll - ok
20:16:24.0061 4420 [ 9CA52CECE93D5C8F83E80EE3CC6AC8D2 ] C:\Windows\System32\bcdedit.exe
20:16:24.0061 4420 C:\Windows\System32\bcdedit.exe - ok
20:16:24.0065 4420 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
20:16:24.0065 4420 C:\Windows\System32\wbem\fastprox.dll - ok
20:16:24.0069 4420 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
20:16:24.0069 4420 C:\Windows\System32\wbem\esscli.dll - ok
20:16:24.0073 4420 [ 715770992D98E92095F5D7510311407C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\10aba2c167cc1119b80159fd9ac71ca8\System.Xml.ni.dll
20:16:24.0073 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\10aba2c167cc1119b80159fd9ac71ca8\System.Xml.ni.dll - ok
20:16:24.0077 4420 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
20:16:24.0077 4420 C:\Windows\System32\ntdsapi.dll - ok
20:16:24.0081 4420 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
20:16:24.0081 4420 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
20:16:24.0085 4420 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
20:16:24.0085 4420 C:\Windows\System32\wbem\wbemsvc.dll - ok
20:16:24.0089 4420 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
20:16:24.0089 4420 C:\Windows\System32\wbem\wmiutils.dll - ok
20:16:24.0093 4420 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
20:16:24.0093 4420 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
20:16:24.0097 4420 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
20:16:24.0097 4420 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
20:16:24.0101 4420 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
20:16:24.0101 4420 C:\Windows\System32\wbem\repdrvfs.dll - ok
20:16:24.0105 4420 [ 40B061D011F32073524624E6BB61C301 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\549690bfac66934b7c7fd5cf8b120b7c\PresentationCore.ni.dll
20:16:24.0105 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\549690bfac66934b7c7fd5cf8b120b7c\PresentationCore.ni.dll - ok
20:16:24.0110 4420 [ 7D5A321BDDE6AF03A0E5011A61387B8A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\96a3b737db1e72adaf32d2b350e50c23\System.Configuration.ni.dll
20:16:24.0110 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\96a3b737db1e72adaf32d2b350e50c23\System.Configuration.ni.dll - ok
20:16:24.0114 4420 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
20:16:24.0114 4420 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
20:16:24.0117 4420 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
20:16:24.0117 4420 C:\Windows\System32\drivers\fastfat.sys - ok
20:16:24.0122 4420 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
20:16:24.0122 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
20:16:24.0127 4420 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
20:16:24.0127 4420 C:\Windows\System32\SensApi.dll - ok
20:16:24.0132 4420 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
20:16:24.0132 4420 C:\Windows\System32\ncobjapi.dll - ok
20:16:24.0137 4420 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
20:16:24.0137 4420 C:\Windows\System32\wbem\wbemess.dll - ok
20:16:24.0141 4420 [ 8019A904EBB6F8CFBA9E41A76A99604A ] C:\Windows\SysWOW64\wer.dll
20:16:24.0141 4420 C:\Windows\SysWOW64\wer.dll - ok
20:16:24.0146 4420 [ 645C6F5BA45F6615CCB8878F375582F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\36b839247bd1d22a7fd014a74abe9729\PresentationFramework.ni.dll
20:16:24.0146 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\36b839247bd1d22a7fd014a74abe9729\PresentationFramework.ni.dll - ok
20:16:24.0151 4420 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
20:16:24.0151 4420 C:\Windows\System32\wer.dll - ok
20:16:24.0157 4420 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
20:16:24.0157 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
20:16:24.0162 4420 [ 85C3AB8341F13E94B16FE9A69582A42F ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
20:16:24.0163 4420 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
20:16:24.0168 4420 [ 2A089E7AB1C81D9D2EF5CE9554DB97BB ] C:\Windows\SysWOW64\msxml6.dll
20:16:24.0168 4420 C:\Windows\SysWOW64\msxml6.dll - ok
20:16:24.0172 4420 [ 27BED235F5497DEBC6EF6EFAF4BA1D60 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:16:24.0172 4420 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:16:24.0176 4420 [ 61B2873C02ECBF86CD6455A40F24CE33 ] C:\Windows\System32\msxml3.dll
20:16:24.0176 4420 C:\Windows\System32\msxml3.dll - ok
20:16:24.0180 4420 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
20:16:24.0180 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
20:16:24.0184 4420 [ 4538040E7B6B281A0468BFBD7BE6ADBB ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
20:16:24.0184 4420 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
20:16:24.0188 4420 [ C5B5CCDBF8ED1475240313ED88234E3F ] C:\Windows\SysWOW64\netcfgx.dll
20:16:24.0188 4420 C:\Windows\SysWOW64\netcfgx.dll - ok
20:16:24.0191 4420 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
20:16:24.0191 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
20:16:24.0195 4420 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
20:16:24.0195 4420 C:\Windows\System32\dssenh.dll - ok
20:16:24.0200 4420 [ 567B2B4082911211BCC37BF0944F4C60 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
20:16:24.0200 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
20:16:24.0206 4420 [ EC9D64CC2DD8A4C6D11550F364890DB1 ] C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
20:16:24.0206 4420 C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe - ok
20:16:24.0211 4420 [ 203C3380A744CA5B9B1A9CAEB57F7D57 ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
20:16:24.0211 4420 C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
20:16:24.0215 4420 [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
20:16:24.0215 4420 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
20:16:24.0219 4420 [ C8671C904A016F5A4802B6C3F1FB7931 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
20:16:24.0219 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
20:16:24.0223 4420 [ 6B42915AC7F560D78C5EE9EE88295A06 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
20:16:24.0223 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
20:16:24.0227 4420 [ BDC16E98EA13B1EBEBCF49385394F05B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
20:16:24.0227 4420 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
20:16:24.0230 4420 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
20:16:24.0231 4420 C:\Windows\System32\wbem\NCProv.dll - ok
20:16:24.0235 4420 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:16:24.0235 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
20:16:24.0239 4420 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
20:16:24.0239 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
20:16:24.0242 4420 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
20:16:24.0242 4420 C:\Windows\SysWOW64\FirewallAPI.dll - ok
20:16:24.0246 4420 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
20:16:24.0246 4420 C:\Windows\SysWOW64\d3d9.dll - ok
20:16:24.0252 4420 [ 6AC23D88F560593F5138F54C751A9979 ] C:\Windows\SysWOW64\sqmapi.dll
20:16:24.0252 4420 C:\Windows\SysWOW64\sqmapi.dll - ok
20:16:24.0254 4420 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
20:16:24.0254 4420 C:\Windows\SysWOW64\d3d8thk.dll - ok
20:16:24.0257 4420 [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
20:16:24.0257 4420 C:\Windows\System32\sqmapi.dll - ok
20:16:24.0260 4420 [ 56FAE4983A955B04216D1FE54FC7BAD7 ] C:\Windows\SysWOW64\igdumdx32.dll
20:16:24.0260 4420 C:\Windows\SysWOW64\igdumdx32.dll - ok
20:16:24.0264 4420 [ 36F0BAA49BD0EBB5E8DBDED3EC75806C ] C:\Windows\SysWOW64\wdscore.dll
20:16:24.0264 4420 C:\Windows\SysWOW64\wdscore.dll - ok
20:16:24.0268 4420 [ 22F04D9F4C8881A2CA303BAA27E88DF9 ] C:\Program Files\Intel\WiMAX\Bin\wimaxMO.dll
20:16:24.0268 4420 C:\Program Files\Intel\WiMAX\Bin\wimaxMO.dll - ok
20:16:24.0271 4420 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
20:16:24.0271 4420 C:\Windows\System32\wdscore.dll - ok
20:16:24.0275 4420 [ 2C8F782CB58DF73AB1952AA41879DF76 ] C:\Windows\SysWOW64\igdumd32.dll
20:16:24.0275 4420 C:\Windows\SysWOW64\igdumd32.dll - ok
20:16:24.0278 4420 [ 311822FD7D6A121D32A2794EDB9CDE9B ] C:\Windows\System32\iWmxSDK.dll
20:16:24.0278 4420 C:\Windows\System32\iWmxSDK.dll - ok
20:16:24.0282 4420 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\SysWOW64\hnetcfg.dll
20:16:24.0282 4420 C:\Windows\SysWOW64\hnetcfg.dll - ok
20:16:24.0286 4420 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
20:16:24.0286 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
20:16:24.0289 4420 [ 8A24EC079ED0144D1900DB2EE3272978 ] C:\Windows\System32\PipeHandler.dll
20:16:24.0289 4420 C:\Windows\System32\PipeHandler.dll - ok
20:16:24.0293 4420 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
20:16:24.0293 4420 C:\Windows\System32\hnetcfg.dll - ok
20:16:24.0297 4420 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
20:16:24.0297 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
20:16:24.0301 4420 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
20:16:24.0301 4420 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
20:16:24.0304 4420 [ 5F610783FBF01F9885D80A1DB1A2F220 ] C:\Windows\SysWOW64\nci.dll
20:16:24.0304 4420 C:\Windows\SysWOW64\nci.dll - ok
20:16:24.0308 4420 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
20:16:24.0308 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
20:16:24.0312 4420 [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
20:16:24.0312 4420 C:\Windows\System32\nci.dll - ok
20:16:24.0315 4420 [ 2A979B56AD277879CB4F25D25E531D79 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\e2ee5d77ebe0bd025e7a7a317a43d677\System.Drawing.ni.dll
20:16:24.0316 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\e2ee5d77ebe0bd025e7a7a317a43d677\System.Drawing.ni.dll - ok
20:16:24.0319 4420 [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\SysWOW64\tbs.dll
20:16:24.0320 4420 C:\Windows\SysWOW64\tbs.dll - ok
20:16:24.0323 4420 [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
20:16:24.0323 4420 C:\Windows\System32\wbem\wmiprov.dll - ok
20:16:24.0327 4420 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
20:16:24.0327 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
20:16:24.0331 4420 [ 10AA7F741C1C4B7B456D0960B972A941 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\savi.dll
20:16:24.0331 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\savi.dll - ok
20:16:24.0335 4420 [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
20:16:24.0335 4420 C:\Windows\System32\wbem\cimwin32.dll - ok
20:16:24.0339 4420 [ 0CE633BC0C8D3D65BEE97AEB2A1C548D ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\osdp.dll
20:16:24.0339 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\osdp.dll - ok
20:16:24.0343 4420 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
20:16:24.0343 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
20:16:24.0347 4420 [ C3102EE5F4B80457EA1FB69EB453A73D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c6fb88c8055653672314c29ca4b78a7e\System.Windows.Forms.ni.dll
20:16:24.0347 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c6fb88c8055653672314c29ca4b78a7e\System.Windows.Forms.ni.dll - ok
20:16:24.0351 4420 [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
20:16:24.0351 4420 C:\Windows\System32\framedynos.dll - ok
20:16:24.0355 4420 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
20:16:24.0355 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
20:16:24.0359 4420 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
20:16:24.0359 4420 C:\Windows\SysWOW64\SPInf.dll - ok
20:16:24.0363 4420 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
20:16:24.0363 4420 C:\Windows\System32\drivers\srv2.sys - ok
20:16:24.0367 4420 [ 8E73440F3D0DE7BB634A7FD1A5D12F9F ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\veex.dll
20:16:24.0367 4420 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\veex.dll - ok
20:16:24.0371 4420 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
20:16:24.0371 4420 C:\Windows\System32\drivers\srv.sys - ok
20:16:24.0374 4420 [ 7F23A2A521600C42145E34D3AE2E2ECC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0aeaf4f1629dbe8eafc8f47b1795b18a\PresentationFramework.Aero.ni.dll
20:16:24.0374 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0aeaf4f1629dbe8eafc8f47b1795b18a\PresentationFramework.Aero.ni.dll - ok
20:16:24.0378 4420 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
20:16:24.0378 4420 C:\Windows\System32\drivers\Sftredirlh.sys - ok
20:16:24.0382 4420 [ 76C48F0CD8A526858AB9A4886586942A ] C:\Windows\SysWOW64\schannel.dll
20:16:24.0382 4420 C:\Windows\SysWOW64\schannel.dll - ok
20:16:24.0386 4420 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
20:16:24.0386 4420 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
20:16:24.0389 4420 [ F7FE730CE31B54145DEE1F1482BCCDD7 ] C:\Windows\SysWOW64\ndiscapCfg.dll
20:16:24.0389 4420 C:\Windows\SysWOW64\ndiscapCfg.dll - ok
20:16:24.0393 4420 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
20:16:24.0393 4420 C:\Windows\System32\ndiscapCfg.dll - ok
20:16:24.0397 4420 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
20:16:24.0397 4420 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
20:16:24.0400 4420 [ 761A3A4038C1FD4F5795427907C28484 ] C:\Windows\SysWOW64\rascfg.dll
20:16:24.0401 4420 C:\Windows\SysWOW64\rascfg.dll - ok
20:16:24.0404 4420 [ E8D0FA821AAA7DF5EE42E1AA4D7E4193 ] C:\Windows\SysWOW64\mprapi.dll
20:16:24.0404 4420 C:\Windows\SysWOW64\mprapi.dll - ok
20:16:24.0407 4420 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
20:16:24.0407 4420 C:\Windows\System32\mprapi.dll - ok
20:16:24.0411 4420 [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\SysWOW64\mprmsg.dll
20:16:24.0411 4420 C:\Windows\SysWOW64\mprmsg.dll - ok
20:16:24.0414 4420 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
20:16:24.0414 4420 C:\Windows\System32\mprmsg.dll - ok
20:16:24.0418 4420 [ A6AB92DEBE2D8F08D3452D09FBAF73AE ] C:\Windows\SysWOW64\tcpipcfg.dll
20:16:24.0418 4420 C:\Windows\SysWOW64\tcpipcfg.dll - ok
20:16:24.0421 4420 [ E3E2E9A96E6BA95D0CF0F026C7B18654 ] C:\Windows\System32\wshbth.dll
20:16:24.0421 4420 C:\Windows\System32\wshbth.dll - ok
20:16:24.0425 4420 [ AFF03EAADAB9BE41A98B76332B980283 ] C:\Windows\SysWOW64\wmi.dll
20:16:24.0425 4420 C:\Windows\SysWOW64\wmi.dll - ok
20:16:24.0428 4420 [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
20:16:24.0428 4420 C:\Windows\System32\wmi.dll - ok
20:16:24.0431 4420 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
20:16:24.0431 4420 C:\Windows\SysWOW64\slc.dll - ok
20:16:24.0435 4420 [ 7F19838AC317C34FCED020BE529AF71E ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
20:16:24.0435 4420 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
20:16:24.0439 4420 [ FADD45B318EEEDE7CDFB2FA959217DB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\7d3a95d2123d5a7982a451f1319fab8d\System.Core.ni.dll
20:16:24.0439 4420 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\7d3a95d2123d5a7982a451f1319fab8d\System.Core.ni.dll - ok
20:16:24.0443 4420 [ E78813339794142D903006047778FD24 ] C:\Windows\System32\igdumd64.dll
20:16:24.0443 4420 C:\Windows\System32\igdumd64.dll - ok
20:16:24.0446 4420 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
20:16:24.0446 4420 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
20:16:24.0451 4420 [ 702A13ED6F2B4740FA77A7A19B382348 ] C:\Windows\SysWOW64\credui.dll
20:16:24.0451 4420 C:\Windows\SysWOW64\credui.dll - ok
20:16:24.0454 4420 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
20:16:24.0454 4420 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
20:16:24.0458 4420 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
20:16:24.0458 4420 C:\Windows\SysWOW64\hlink.dll - ok
20:16:24.0461 4420 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
20:16:24.0461 4420 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
20:16:24.0466 4420 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
20:16:24.0466 4420 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
20:16:24.0470 4420 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\SysWOW64\netmsg.dll
20:16:24.0470 4420 C:\Windows\SysWOW64\netmsg.dll - ok
20:16:24.0474 4420 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
20:16:24.0474 4420 C:\Windows\System32\netmsg.dll - ok
20:16:24.0478 4420 [ CC22DA73DA45F82FE98DB1AAECF1794F ] C:\Windows\SysWOW64\sscore.dll
20:16:24.0478 4420 C:\Windows\SysWOW64\sscore.dll - ok
20:16:24.0481 4420 [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
20:16:24.0481 4420 C:\Windows\System32\sscore.dll - ok
20:16:24.0485 4420 [ 9092668DAF4061898FD3F2C19D8C7F85 ] C:\Windows\SysWOW64\clusapi.dll
20:16:24.0485 4420 C:\Windows\SysWOW64\clusapi.dll - ok
20:16:24.0489 4420 [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
20:16:24.0489 4420 C:\Windows\System32\clusapi.dll - ok
20:16:24.0492 4420 [ 9015EE5171BCB15653DA27024BD27128 ] C:\Windows\SysWOW64\resutils.dll
20:16:24.0492 4420 C:\Windows\SysWOW64\resutils.dll - ok
20:16:24.0496 4420 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
20:16:24.0496 4420 C:\Windows\System32\resutils.dll - ok
20:16:24.0499 4420 [ 71402C7923F6B7F8ACB48E50F35463E7 ] C:\Windows\SysWOW64\SearchIndexer.exe
20:16:24.0500 4420 C:\Windows\SysWOW64\SearchIndexer.exe - ok
20:16:24.0507 4420 [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\SysWOW64\en-US\tquery.dll.mui
20:16:24.0507 4420 C:\Windows\SysWOW64\en-US\tquery.dll.mui - ok
20:16:24.0511 4420 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\SysWOW64\msidle.dll
20:16:24.0511 4420 C:\Windows\SysWOW64\msidle.dll - ok
20:16:24.0515 4420 [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\SysWOW64\FwRemoteSvr.dll
20:16:24.0515 4420 C:\Windows\SysWOW64\FwRemoteSvr.dll - ok
20:16:24.0519 4420 [ 36060A75D9EDB1AEF0825988C7DD8511 ] C:\Windows\SysWOW64\PortableDeviceApi.dll
20:16:24.0519 4420 C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
20:16:24.0523 4420 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\SysWOW64\PortableDeviceConnectApi.dll
20:16:24.0523 4420 C:\Windows\SysWOW64\PortableDeviceConnectApi.dll - ok
20:16:24.0526 4420 [ 01261E49DE616FAAD72494D0A061EC38 ] C:\Windows\SysWOW64\en-US\wuapi.dll.mui
20:16:24.0526 4420 C:\Windows\SysWOW64\en-US\wuapi.dll.mui - ok
20:16:24.0530 4420 [ 2EA045FDD715FB03F65F6915B7FE8916 ] C:\Windows\SysWOW64\wups.dll
20:16:24.0530 4420 C:\Windows\SysWOW64\wups.dll - ok
20:16:24.0533 4420 [ F0A1FE51E846E5E76F75D7F40298C96D ] C:\Windows\SysWOW64\en-US\wscsvc.dll.mui
20:16:24.0533 4420 C:\Windows\SysWOW64\en-US\wscsvc.dll.mui - ok
20:16:24.0537 4420 [ D6415224AD96840153E283A0268DE384 ] C:\Windows\SysWOW64\shacct.dll
20:16:24.0537 4420 C:\Windows\SysWOW64\shacct.dll - ok
20:16:24.0540 4420 [ 7271B48B193C9624416BD5006CD8B92F ] C:\Windows\SysWOW64\tquery.dll
20:16:24.0540 4420 C:\Windows\SysWOW64\tquery.dll - ok
20:16:24.0544 4420 [ AF7B90272B5A4E4B3D347B39702435CC ] C:\Windows\SysWOW64\mssrch.dll
20:16:24.0544 4420 C:\Windows\SysWOW64\mssrch.dll - ok
20:16:24.0547 4420 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
20:16:24.0547 4420 C:\Windows\SysWOW64\mssprxy.dll - ok
20:16:24.0551 4420 [ 53EC01707439C113AA7B495FFB24A0AB ] C:\Windows\SysWOW64\en-US\SearchIndexer.exe.mui
20:16:24.0551 4420 C:\Windows\SysWOW64\en-US\SearchIndexer.exe.mui - ok
20:16:24.0554 4420 [ 4F2595A7F283A8DCC86007FB24B77AB9 ] C:\Windows\SysWOW64\KBDUS.DLL
20:16:24.0554 4420 C:\Windows\SysWOW64\KBDUS.DLL - ok
20:16:24.0558 4420 [ B1D00F879817E58D51452ECA7EEF0B04 ] C:\Windows\SysWOW64\en-US\ESENT.dll.mui
20:16:24.0558 4420 C:\Windows\SysWOW64\en-US\ESENT.dll.mui - ok
20:16:24.0561 4420 [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
20:16:24.0561 4420 C:\Windows\System32\tquery.dll - ok
20:16:24.0565 4420 [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
20:16:24.0565 4420 C:\Windows\System32\mssrch.dll - ok
20:16:24.0568 4420 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
20:16:24.0568 4420 C:\Windows\System32\msidle.dll - ok
20:16:24.0572 4420 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\SysWOW64\wdi.dll
20:16:24.0572 4420 C:\Windows\SysWOW64\wdi.dll - ok
20:16:24.0578 4420 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
20:16:24.0578 4420 C:\Windows\SysWOW64\npmproxy.dll - ok
20:16:24.0580 4420 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
20:16:24.0580 4420 C:\Windows\System32\PortableDeviceApi.dll - ok
20:16:24.0584 4420 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
20:16:24.0584 4420 C:\Windows\System32\npmproxy.dll - ok
20:16:24.0587 4420 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
20:16:24.0587 4420 C:\Windows\System32\mssprxy.dll - ok
20:16:24.0591 4420 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
20:16:24.0591 4420 C:\Windows\SysWOW64\dllhost.exe - ok
20:16:24.0595 4420 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
20:16:24.0595 4420 C:\Windows\System32\winrnr.dll - ok
20:16:24.0599 4420 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
20:16:24.0599 4420 C:\Windows\System32\NapiNSP.dll - ok
20:16:24.0603 4420 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
20:16:24.0603 4420 C:\Windows\System32\pnrpnsp.dll - ok
20:16:24.0607 4420 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
20:16:24.0607 4420 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
20:16:24.0611 4420 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
20:16:24.0611 4420 C:\Windows\System32\en-US\tquery.dll.mui - ok
20:16:24.0614 4420 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\SysWOW64\IDStore.dll
20:16:24.0614 4420 C:\Windows\SysWOW64\IDStore.dll - ok
20:16:24.0618 4420 [ DD4400813589985677A363F8A589CD02 ] C:\Windows\SysWOW64\wuapi.dll
20:16:24.0618 4420 C:\Windows\SysWOW64\wuapi.dll - ok
20:16:24.0621 4420 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
20:16:24.0621 4420 C:\Windows\System32\wuapi.dll - ok
20:16:24.0625 4420 [ DEF30CBEA881149C2AFFDF9A059FB759 ] C:\Windows\SysWOW64\cabinet.dll
20:16:24.0625 4420 C:\Windows\SysWOW64\cabinet.dll - ok
20:16:24.0629 4420 [ 64E6A44177ACF348D68255A37F4723DA ] C:\Windows\System32\cabinet.dll
20:16:24.0629 4420 C:\Windows\System32\cabinet.dll - ok
20:16:24.0632 4420 [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
20:16:24.0632 4420 C:\Windows\System32\diagperf.dll - ok
20:16:24.0636 4420 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] C:\Windows\System32\IPSECSVC.DLL
20:16:24.0636 4420 C:\Windows\System32\IPSECSVC.DLL - ok
20:16:24.0639 4420 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
20:16:24.0639 4420 C:\Windows\System32\perftrack.dll - ok
20:16:24.0643 4420 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\SysWOW64\Apphlpdm.dll
20:16:24.0643 4420 C:\Windows\SysWOW64\Apphlpdm.dll - ok
20:16:24.0646 4420 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
20:16:24.0646 4420 C:\Windows\System32\Apphlpdm.dll - ok
20:16:24.0650 4420 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
20:16:24.0650 4420 C:\Windows\System32\pnpts.dll - ok
20:16:24.0653 4420 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\SysWOW64\authz.dll
20:16:24.0653 4420 C:\Windows\SysWOW64\authz.dll - ok
20:16:24.0657 4420 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
20:16:24.0657 4420 C:\Windows\System32\FwRemoteSvr.dll - ok
20:16:24.0660 4420 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
20:16:24.0660 4420 C:\Windows\SysWOW64\runonce.exe - ok
20:16:24.0664 4420 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
20:16:24.0664 4420 C:\Windows\System32\wups.dll - ok
20:16:24.0667 4420 [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\SysWOW64\radardt.dll
20:16:24.0668 4420 C:\Windows\SysWOW64\radardt.dll - ok
20:16:24.0672 4420 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
20:16:24.0672 4420 C:\Windows\System32\runonce.exe - ok
20:16:24.0675 4420 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
20:16:24.0675 4420 C:\Windows\System32\radardt.dll - ok
20:16:24.0679 4420 [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
20:16:24.0679 4420 C:\Windows\System32\wdiasqmmodule.dll - ok
20:16:24.0682 4420 [ 60236C8C3B8C2D8B9A59326890533EB8 ] C:\Windows\SysWOW64\sqlceqp30.dll
20:16:24.0682 4420 C:\Windows\SysWOW64\sqlceqp30.dll - ok
20:16:24.0686 4420 [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\SysWOW64\MsCtfMonitor.dll
20:16:24.0686 4420 C:\Windows\SysWOW64\MsCtfMonitor.dll - ok
20:16:24.0690 4420 [ 5D66CBCDA60ECCE893B8E69BD5F23F92 ] C:\Windows\SysWOW64\SearchProtocolHost.exe
20:16:24.0690 4420 C:\Windows\SysWOW64\SearchProtocolHost.exe - ok
20:16:24.0694 4420 [ BDDCD13F341CBA21775FF66A5C27F59E ] C:\Windows\System32\SearchProtocolHost.exe
20:16:24.0694 4420 C:\Windows\System32\SearchProtocolHost.exe - ok
20:16:24.0697 4420 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
20:16:24.0697 4420 C:\Windows\SysWOW64\mlang.dll - ok
20:16:24.0701 4420 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
20:16:24.0701 4420 C:\Windows\SysWOW64\msimtf.dll - ok
20:16:24.0704 4420 [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\SysWOW64\msshooks.dll
20:16:24.0704 4420 C:\Windows\SysWOW64\msshooks.dll - ok
20:16:24.0708 4420 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
20:16:24.0708 4420 C:\Windows\System32\msshooks.dll - ok
20:16:24.0711 4420 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\SysWOW64\dimsjob.dll
20:16:24.0711 4420 C:\Windows\SysWOW64\dimsjob.dll - ok
20:16:24.0715 4420 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
20:16:24.0715 4420 C:\Windows\SysWOW64\msls31.dll - ok
20:16:24.0718 4420 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
20:16:24.0719 4420 C:\Windows\System32\dimsjob.dll - ok
20:16:24.0722 4420 [ 7FFE38A9BCE22AED21A0CEA1E6EAD1B5 ] C:\Windows\SysWOW64\SearchFilterHost.exe
20:16:24.0722 4420 C:\Windows\SysWOW64\SearchFilterHost.exe - ok
20:16:24.0726 4420 [ F024058C391B99397EC3CCF6F77B7189 ] C:\Windows\System32\SearchFilterHost.exe
20:16:24.0726 4420 C:\Windows\System32\SearchFilterHost.exe - ok
20:16:24.0729 4420 [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\SysWOW64\jscript9.dll
20:16:24.0729 4420 C:\Windows\SysWOW64\jscript9.dll - ok
20:16:24.0733 4420 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\SysWOW64\pautoenr.dll
20:16:24.0733 4420 C:\Windows\SysWOW64\pautoenr.dll - ok
20:16:24.0737 4420 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
20:16:24.0737 4420 C:\Windows\System32\pautoenr.dll - ok
20:16:24.0740 4420 [ 124715CD10C62A78404F1A3B1048D062 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
20:16:24.0740 4420 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
20:16:24.0747 4420 [ 0174C3636D001197F10A52DB8BBF960D ] C:\Windows\SysWOW64\certcli.dll
20:16:24.0747 4420 C:\Windows\SysWOW64\certcli.dll - ok
20:16:24.0751 4420 [ 9FDF43178419CB0D4B50373C50396BDF ] C:\Windows\SysWOW64\d2d1.dll
20:16:24.0751 4420 C:\Windows\SysWOW64\d2d1.dll - ok
20:16:24.0755 4420 [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
20:16:24.0755 4420 C:\Windows\System32\certcli.dll - ok
20:16:24.0759 4420 [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
20:16:24.0759 4420 C:\Windows\SysWOW64\DWrite.dll - ok
20:16:24.0761 4420 [ 9D37CF187096B79ACD1C343F7C382352 ] C:\Windows\SysWOW64\CertEnroll.dll
20:16:24.0761 4420 C:\Windows\SysWOW64\CertEnroll.dll - ok
20:16:24.0765 4420 [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
20:16:24.0766 4420 C:\Windows\System32\CertEnroll.dll - ok
20:16:24.0770 4420 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
20:16:24.0770 4420 C:\Windows\System32\mscoree.dll - ok
20:16:24.0774 4420 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
20:16:24.0774 4420 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
20:16:24.0778 4420 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
20:16:24.0778 4420 C:\Windows\SysWOW64\ktmw32.dll - ok
20:16:24.0782 4420 [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
20:16:24.0782 4420 C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL - ok
20:16:24.0786 4420 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
20:16:24.0786 4420 C:\Windows\SysWOW64\dxgi.dll - ok
20:16:24.0789 4420 [ 3DD5EB724DF7287B5DEEEC33B13A23BF ] C:\Windows\SysWOW64\mssph.dll
20:16:24.0789 4420 C:\Windows\SysWOW64\mssph.dll - ok
20:16:24.0792 4420 [ AD8F6914F7A9AC28047389BE7AF56EBF ] C:\Windows\SysWOW64\d3d10_1.dll
20:16:24.0792 4420 C:\Windows\SysWOW64\d3d10_1.dll - ok
20:16:24.0799 4420 [ 58FAE29A82984E817BBA70D0144E52ED ] C:\Windows\System32\mssph.dll
20:16:24.0799 4420 C:\Windows\System32\mssph.dll - ok
20:16:24.0803 4420 [ 9103E020906FC7A166F380EF2D2516B2 ] C:\Windows\SysWOW64\d3d10_1core.dll
20:16:24.0803 4420 C:\Windows\SysWOW64\d3d10_1core.dll - ok
20:16:24.0807 4420 [ 000B3A704234C202D4D788A171B02243 ] C:\Windows\SysWOW64\mapi32.dll
20:16:24.0807 4420 C:\Windows\SysWOW64\mapi32.dll - ok
20:16:24.0811 4420 [ BEADABADC909D2C7F59CD3DEA77EE67E ] C:\Windows\SysWOW64\d3d10warp.dll
20:16:24.0811 4420 C:\Windows\SysWOW64\d3d10warp.dll - ok
20:16:24.0814 4420 [ 2A556E2D703DED03186C596B90AC6869 ] C:\Windows\System32\mapi32.dll
20:16:24.0814 4420 C:\Windows\System32\mapi32.dll - ok
20:16:24.0818 4420 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
20:16:24.0819 4420 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
20:16:24.0823 4420 [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
20:16:24.0823 4420 C:\Windows\SysWOW64\ntshrui.dll - ok
20:16:24.0827 4420 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
20:16:24.0827 4420 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
20:16:24.0830 4420 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
20:16:24.0830 4420 C:\Windows\SysWOW64\cmd.exe - ok
20:16:24.0834 4420 [ B998AB59D5541777A1E43175A9ACBE83 ] C:\Windows\System32\en-US\conhost.exe.mui
20:16:24.0834 4420 C:\Windows\System32\en-US\conhost.exe.mui - ok
20:16:24.0838 4420 [ D448B52149F95F1250100F9BD0ED7152 ] C:\Windows\SysWOW64\en-US\user32.dll.mui
20:16:24.0838 4420 C:\Windows\SysWOW64\en-US\user32.dll.mui - ok
20:16:24.0842 4420 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
20:16:24.0842 4420 C:\Windows\SysWOW64\winbrand.dll - ok
20:16:24.0846 4420 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
20:16:24.0846 4420 C:\Windows\SysWOW64\shdocvw.dll - ok
20:16:24.0850 4420 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Kat\AppData\Local\Temp\EB4A583D-1210-4AF2-977D-8139FB6DE313.exe
20:16:24.0850 4420 C:\Users\Kat\AppData\Local\Temp\EB4A583D-1210-4AF2-977D-8139FB6DE313.exe - ok
20:16:24.0855 4420 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
20:16:24.0855 4420 C:\Windows\SysWOW64\EhStorShell.dll - ok
20:16:24.0859 4420 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
20:16:24.0859 4420 C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll - ok
20:16:24.0863 4420 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
20:16:24.0863 4420 C:\Windows\SysWOW64\imageres.dll - ok
20:16:24.0867 4420 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
20:16:24.0867 4420 C:\Windows\SysWOW64\IconCodecService.dll - ok
20:16:24.0870 4420 [ 17C237AC01D7C8AB91A0E6AF767A5831 ] C:\Windows\SysWOW64\NaturalLanguage6.dll
20:16:24.0870 4420 C:\Windows\SysWOW64\NaturalLanguage6.dll - ok
20:16:24.0875 4420 [ BA7EC41CA58730A485270820F310CD4E ] C:\Windows\System32\NaturalLanguage6.dll
20:16:24.0875 4420 C:\Windows\System32\NaturalLanguage6.dll - ok
20:16:24.0881 4420 [ 2992932C1AB1D29A1A4A9E8CB8530CBF ] C:\Windows\SysWOW64\NlsData0009.dll
20:16:24.0882 4420 C:\Windows\SysWOW64\NlsData0009.dll - ok
20:16:24.0885 4420 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
20:16:24.0885 4420 C:\Windows\System32\NlsData0009.dll - ok
20:16:24.0889 4420 [ C8CB301BF896C7C556BBE963FADF5BB6 ] C:\Windows\SysWOW64\NlsLexicons0009.dll
20:16:24.0889 4420 C:\Windows\SysWOW64\NlsLexicons0009.dll - ok
20:16:24.0893 4420 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
20:16:24.0894 4420 C:\Windows\System32\NlsLexicons0009.dll - ok
20:16:24.0897 4420 [ 8444A7364D6877922049E99BF4B78C5C ] C:\Windows\SysWOW64\ELSCore.dll
20:16:24.0897 4420 C:\Windows\SysWOW64\ELSCore.dll - ok
20:16:24.0901 4420 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
20:16:24.0902 4420 C:\Windows\System32\ELSCore.dll - ok
20:16:24.0905 4420 [ 0CE23D8ED70AE07025911451557B2766 ] C:\Windows\SysWOW64\elsTrans.dll
20:16:24.0905 4420 C:\Windows\SysWOW64\elsTrans.dll - ok
20:16:24.0910 4420 [ B526181E3F6B9F5136B6B7F776B7468B ] C:\Windows\System32\elsTrans.dll
20:16:24.0910 4420 C:\Windows\System32\elsTrans.dll - ok
20:16:24.0914 4420 [ 02A2ED8497F437EA200DF3ACED255AFE ] C:\Windows\SysWOW64\elslad.dll
20:16:24.0914 4420 C:\Windows\SysWOW64\elslad.dll - ok
20:16:24.0919 4420 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
20:16:24.0919 4420 C:\Windows\System32\elslad.dll - ok
20:16:24.0923 4420 [ 61B33014F2D2A4F9553F6EF64FB82E31 ] C:\Windows\SysWOW64\NlsData000c.dll
20:16:24.0923 4420 C:\Windows\SysWOW64\NlsData000c.dll - ok
20:16:24.0927 4420 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
20:16:24.0927 4420 C:\Windows\System32\NlsData000c.dll - ok
20:16:24.0930 4420 [ AC7D0114246661B1E29A0939039157C5 ] C:\Windows\SysWOW64\NlsLexicons000c.dll
20:16:24.0930 4420 C:\Windows\SysWOW64\NlsLexicons000c.dll - ok
20:16:24.0934 4420 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
20:16:24.0934 4420 C:\Windows\System32\NlsLexicons000c.dll - ok
20:16:24.0938 4420 [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
20:16:24.0938 4420 C:\Windows\System32\wmploc.DLL - ok
20:16:24.0941 4420 [ 740304CDCAA54E4312DEDA7F288CEB06 ] C:\Windows\System32\themeui.dll
20:16:24.0941 4420 C:\Windows\System32\themeui.dll - ok
20:16:24.0945 4420 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
20:16:24.0945 4420 C:\Windows\System32\ie4uinit.exe - ok
20:16:24.0948 4420 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
20:16:24.0948 4420 C:\Windows\System32\iedkcs32.dll - ok
20:16:24.0952 4420 [ 6B18F23108E6FA70B9F62B4D89668ED8 ] C:\Windows\SysWOW64\SndVolSSO.dll
20:16:24.0952 4420 C:\Windows\SysWOW64\SndVolSSO.dll - ok
20:16:24.0956 4420 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
20:16:24.0956 4420 C:\Windows\SysWOW64\hid.dll - ok
20:16:24.0960 4420 [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\SysWOW64\MMDevAPI.dll
20:16:24.0960 4420 C:\Windows\SysWOW64\MMDevAPI.dll - ok
20:16:24.0963 4420 [ C338915320CBEBFDB6DA3F0E6B069754 ] C:\Windows\SysWOW64\timedate.cpl
20:16:24.0963 4420 C:\Windows\SysWOW64\timedate.cpl - ok
20:16:24.0967 4420 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
20:16:24.0967 4420 C:\Windows\System32\timedate.cpl - ok
20:16:24.0971 4420 [ B6C4063297C7D07CD0532BDC3350436C ] C:\Windows\SysWOW64\actxprxy.dll
20:16:24.0971 4420 C:\Windows\SysWOW64\actxprxy.dll - ok
20:16:24.0974 4420 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
20:16:24.0974 4420 C:\Windows\System32\actxprxy.dll - ok
20:16:24.0978 4420 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
20:16:24.0978 4420 C:\Windows\System32\shdocvw.dll - ok
20:16:24.0981 4420 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
20:16:24.0981 4420 C:\Windows\SysWOW64\linkinfo.dll - ok
20:16:24.0985 4420 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
20:16:24.0985 4420 C:\Windows\System32\linkinfo.dll - ok
20:16:24.0989 4420 [ 64B328D52DFC8CDA123093E3F6E4C37C ] C:\Windows\System32\unregmp2.exe
20:16:24.0989 4420 C:\Windows\System32\unregmp2.exe - ok
20:16:24.0992 4420 [ EF19CFF37E0FF7023577636D0787DC2F ] C:\Windows\System32\accessibilitycpl.dll
20:16:24.0993 4420 C:\Windows\System32\accessibilitycpl.dll - ok
20:16:24.0996 4420 [ FBE9BC55CF7ED9CC1452F7AF02C31864 ] C:\Windows\SysWOW64\msftedit.dll
20:16:24.0996 4420 C:\Windows\SysWOW64\msftedit.dll - ok
20:16:25.0000 4420 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
20:16:25.0000 4420 C:\Windows\System32\msftedit.dll - ok
20:16:25.0005 4420 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
20:16:25.0005 4420 C:\Windows\System32\msls31.dll - ok
20:16:25.0010 4420 [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
20:16:25.0010 4420 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
20:16:25.0013 4420 [ B915928816C34CB9E680ACA9356F8AD0 ] C:\Windows\System32\sud.dll
20:16:25.0013 4420 C:\Windows\System32\sud.dll - ok
20:16:25.0017 4420 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\75329304.sys
20:16:25.0017 4420 C:\Windows\System32\drivers\75329304.sys - ok
20:16:25.0021 4420 [ FABFC817547EABB19B74849CEF410622 ] C:\Windows\SysWOW64\authui.dll
20:16:25.0021 4420 C:\Windows\SysWOW64\authui.dll - ok
20:16:25.0024 4420 [ E8132FB3BAC7C0CDBD581485B8BA947F ] C:\Windows\SysWOW64\cryptui.dll
20:16:25.0024 4420 C:\Windows\SysWOW64\cryptui.dll - ok
20:16:25.0028 4420 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
20:16:25.0028 4420 C:\Windows\System32\wucltux.dll - ok
20:16:25.0031 4420 [ 415132079EAF93D6E90D9CA1B641F068 ] C:\Windows\SysWOW64\msutb.dll
20:16:25.0031 4420 C:\Windows\SysWOW64\msutb.dll - ok
20:16:25.0035 4420 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
20:16:25.0035 4420 C:\Windows\System32\DeviceCenter.dll - ok
20:16:25.0039 4420 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
20:16:25.0039 4420 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
20:16:25.0042 4420 [ 8FC6C4EE0A2D3EBAA70FA38F99141BCE ] C:\Program Files\Windows Sidebar\sidebar.exe
20:16:25.0042 4420 C:\Program Files\Windows Sidebar\sidebar.exe - ok
20:16:25.0046 4420 [ 98E7BB8A4815C831F9AB0C821F822F2A ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
20:16:25.0046 4420 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
20:16:25.0050 4420 [ FDA49D1D0C201F6C76BD2593F562BF80 ] C:\Windows\System32\WindowsAnytimeUpgradeui.exe
20:16:25.0050 4420 C:\Windows\System32\WindowsAnytimeUpgradeui.exe - ok
20:16:25.0053 4420 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
20:16:25.0053 4420 C:\Windows\SysWOW64\duser.dll - ok
20:16:25.0057 4420 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
20:16:25.0057 4420 C:\Windows\System32\ieframe.dll - ok
20:16:25.0060 4420 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
20:16:25.0060 4420 C:\Windows\SysWOW64\dui70.dll - ok
20:16:25.0064 4420 [ 8D9818AA1621B947776BC7D224EFC4A2 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
20:16:25.0064 4420 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe - ok
20:16:25.0067 4420 [ E83D2495D5867E224FBF42EF40D8856C ] C:\Program Files\DVD Maker\DVDMaker.exe
20:16:25.0068 4420 C:\Program Files\DVD Maker\DVDMaker.exe - ok
20:16:25.0071 4420 [ 6FAFF54A3667C9EEF9BE11F42078DE19 ] C:\Windows\SysWOW64\en-US\stobject.dll.mui
20:16:25.0071 4420 C:\Windows\SysWOW64\en-US\stobject.dll.mui - ok
20:16:25.0075 4420 [ 6850CAB88C6689D9A9936AFF033578AF ] C:\Windows\SysWOW64\stobject.dll
20:16:25.0075 4420 C:\Windows\SysWOW64\stobject.dll - ok
20:16:25.0078 4420 [ 642725C62F565DCC3697885EE72BCB32 ] C:\Windows\SysWOW64\en-US\glu32.dll.mui
20:16:25.0078 4420 C:\Windows\SysWOW64\en-US\glu32.dll.mui - ok
20:16:25.0082 4420 [ 2C108AE88C8C051466E2E79721870ACB ] C:\Windows\System32\hccutils.dll
20:16:25.0082 4420 C:\Windows\System32\hccutils.dll - ok
20:16:25.0085 4420 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
20:16:25.0085 4420 C:\Windows\System32\stobject.dll - ok
20:16:25.0089 4420 [ 8CF38068B59C2983E10A93994639AB94 ] C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll
20:16:25.0089 4420 C:\Program Files\Common Files\Intel\WirelessCommon\CustomUIResource.dll - ok
20:16:25.0093 4420 [ 1A0FD55BCB5A9D2E4912B3057EB6B0E6 ] C:\Windows\SysWOW64\SynCOM.dll
20:16:25.0093 4420 C:\Windows\SysWOW64\SynCOM.dll - ok
20:16:25.0097 4420 [ DAD1F753E1F8563629FBC93F8B15D9F8 ] C:\Windows\SysWOW64\batmeter.dll
20:16:25.0097 4420 C:\Windows\SysWOW64\batmeter.dll - ok
20:16:25.0100 4420 [ 6DD6B4511D51987765AB492B809602FB ] C:\Windows\System32\igfxsrvc.exe
20:16:25.0100 4420 C:\Windows\System32\igfxsrvc.exe - ok
20:16:25.0104 4420 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
20:16:25.0104 4420 C:\Windows\SysWOW64\ddraw.dll - ok
20:16:25.0107 4420 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
20:16:25.0107 4420 C:\Windows\System32\batmeter.dll - ok
20:16:25.0111 4420 [ 52863819A3B2F5B4FCCE2386A218897B ] C:\Windows\System32\SynTPAPI.dll
20:16:25.0111 4420 C:\Windows\System32\SynTPAPI.dll - ok
20:16:25.0114 4420 [ DBE2AA52B5D67DA319D33A175B8BB41E ] C:\Windows\SysWOW64\thumbcache.dll
20:16:25.0114 4420 C:\Windows\SysWOW64\thumbcache.dll - ok
20:16:25.0118 4420 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
20:16:25.0118 4420 C:\Windows\SysWOW64\dciman32.dll - ok
20:16:25.0121 4420 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
20:16:25.0122 4420 C:\Windows\System32\thumbcache.dll - ok
20:16:25.0126 4420 [ 87D32202404483FA9860BC3774F04031 ] C:\Windows\System32\igfxtray.exe
20:16:25.0126 4420 C:\Windows\System32\igfxtray.exe - ok
20:16:25.0130 4420 [ B2A88B3F19791E540B4A6228E5412C16 ] C:\PROGRA~2\WIC4A1~1\Mail\maillang.dll
20:16:25.0130 4420 C:\PROGRA~2\WIC4A1~1\Mail\maillang.dll - ok
20:16:25.0133 4420 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
20:16:25.0133 4420 C:\Windows\SysWOW64\glu32.dll - ok
20:16:25.0137 4420 [ 4622326894F106D8F7BB60391A7D6C75 ] C:\Windows\SysWOW64\AudioSes.dll
20:16:25.0137 4420 C:\Windows\SysWOW64\AudioSes.dll - ok
20:16:25.0140 4420 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
20:16:25.0140 4420 C:\Windows\SysWOW64\opengl32.dll - ok
20:16:25.0145 4420 [ 9701FCD12B3528411048A0D23A27A403 ] C:\Windows\SysWOW64\en-US\NetworkExplorer.dll.mui
20:16:25.0145 4420 C:\Windows\SysWOW64\en-US\NetworkExplorer.dll.mui - ok
20:16:25.0148 4420 [ FDC95C72AB019973D467D29B15868735 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
20:16:25.0148 4420 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
20:16:25.0152 4420 [ 803768444B482D61B92D715A05B5712A ] C:\Windows\SysWOW64\prnfldr.dll
20:16:25.0152 4420 C:\Windows\SysWOW64\prnfldr.dll - ok
20:16:25.0156 4420 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
20:16:25.0156 4420 C:\Windows\System32\RtkCfg64.dll - ok
20:16:25.0159 4420 [ 9315293B5F47E1BDEBCAFF53F279C1BF ] C:\Windows\SysWOW64\en-US\prnfldr.dll.mui
20:16:25.0159 4420 C:\Windows\SysWOW64\en-US\prnfldr.dll.mui - ok
20:16:25.0163 4420 [ E48592D99D6024DDCC76F2FB0347A9C7 ] C:\Windows\System32\hkcmd.exe
20:16:25.0163 4420 C:\Windows\System32\hkcmd.exe - ok
20:16:25.0167 4420 [ 6BEB9E7BC40775B8DA3BB2A3B5128F02 ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll
20:16:25.0167 4420 C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll - ok
20:16:25.0171 4420 [ 28CAAA8B3DAC4604B6871F311C6B9F49 ] C:\Windows\SysWOW64\NlsData0000.dll
20:16:25.0171 4420 C:\Windows\SysWOW64\NlsData0000.dll - ok
20:16:25.0175 4420 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
20:16:25.0176 4420 C:\Windows\System32\NlsData0000.dll - ok
20:16:25.0180 4420 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
20:16:25.0180 4420 C:\Windows\System32\opengl32.dll - ok
20:16:25.0183 4420 [ 4A056D7392F31EDA3AE1975E7010D7E3 ] C:\Windows\SysWOW64\networkexplorer.dll
20:16:25.0183 4420 C:\Windows\SysWOW64\networkexplorer.dll - ok
20:16:25.0187 4420 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
20:16:25.0187 4420 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
20:16:25.0190 4420 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
20:16:25.0190 4420 C:\Windows\System32\glu32.dll - ok
20:16:25.0194 4420 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
20:16:25.0194 4420 C:\Windows\System32\networkexplorer.dll - ok
20:16:25.0197 4420 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
20:16:25.0197 4420 C:\Windows\System32\ddraw.dll - ok
20:16:25.0201 4420 [ B4481DFC20384878841C514CDC128AA0 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\ara.dll
20:16:25.0201 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\ara.dll - ok
20:16:25.0205 4420 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
20:16:25.0205 4420 C:\Windows\System32\prnfldr.dll - ok
20:16:25.0208 4420 [ 7945EBC57F8B0E410AD0BF10A7452685 ] C:\Windows\System32\igfxsrvc.dll
20:16:25.0208 4420 C:\Windows\System32\igfxsrvc.dll - ok
20:16:25.0212 4420 [ C7AF6465C7062DEA8528F26AF7349839 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\chs.dll
20:16:25.0212 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\chs.dll - ok
20:16:25.0215 4420 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
20:16:25.0216 4420 C:\Windows\System32\dciman32.dll - ok
20:16:25.0219 4420 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
20:16:25.0219 4420 C:\Windows\System32\dsound.dll - ok
20:16:25.0223 4420 [ 88A186BC307825427338252EB4A82D87 ] C:\Windows\System32\igfxpers.exe
20:16:25.0223 4420 C:\Windows\System32\igfxpers.exe - ok
20:16:25.0226 4420 [ 08690151B983903A5D9447DE818EAEC8 ] C:\Windows\System32\igfxdev.dll
20:16:25.0226 4420 C:\Windows\System32\igfxdev.dll - ok
20:16:25.0230 4420 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
20:16:25.0230 4420 C:\Windows\System32\msimg32.dll - ok
20:16:25.0233 4420 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
20:16:25.0233 4420 C:\Windows\System32\DXP.dll - ok
20:16:25.0238 4420 [ 4F3DCE40EA36E6132290C348FC0780C4 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\cht.dll
20:16:25.0238 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\cht.dll - ok
20:16:25.0243 4420 [ EB8224F66FD54B08DCBB52C409B1C3F4 ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL
20:16:25.0243 4420 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL - ok
20:16:25.0247 4420 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\SysWOW64\Syncreg.dll
20:16:25.0247 4420 C:\Windows\SysWOW64\Syncreg.dll - ok
20:16:25.0258 4420 [ 7594DBEF5C0A10CCD9C235DCA7D290B4 ] C:\Windows\System32\igfxrenu.lrc
20:16:25.0258 4420 C:\Windows\System32\igfxrenu.lrc - ok
20:16:25.0260 4420 [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
20:16:25.0260 4420 C:\Windows\System32\AudioSes.dll - ok
20:16:25.0265 4420 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
20:16:25.0265 4420 C:\Windows\System32\Syncreg.dll - ok
20:16:25.0269 4420 [ 23E6E5C5061A44C32E9922B4AF22D895 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
20:16:25.0269 4420 C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe - ok
20:16:25.0273 4420 [ F4055BF49A90375FD7672A604F3B0B8E ] C:\Windows\SysWOW64\ActionCenter.dll
20:16:25.0273 4420 C:\Windows\SysWOW64\ActionCenter.dll - ok
20:16:25.0277 4420 [ 7D0720281803F7000F1E7F3F148FE160 ] C:\Windows\System32\igfxress.dll
20:16:25.0277 4420 C:\Windows\System32\igfxress.dll - ok
20:16:25.0281 4420 [ 8BC00C736E67A75D936E5B440917359B ] C:\Windows\System32\ActionCenter.dll
20:16:25.0281 4420 C:\Windows\System32\ActionCenter.dll - ok
20:16:25.0284 4420 [ 0F6FEDA25E7BA3E318BD6FF1DAFAFEA2 ] C:\Program Files\Synaptics\SynTP\DellTpad.exe
20:16:25.0284 4420 C:\Program Files\Synaptics\SynTP\DellTpad.exe - ok
20:16:25.0288 4420 [ 550741239025DA1BFC81B05532CCFDCF ] C:\Windows\System32\RtkAPO64.dll
20:16:25.0288 4420 C:\Windows\System32\RtkAPO64.dll - ok
20:16:25.0292 4420 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
20:16:25.0292 4420 C:\Windows\ehome\ehSSO.dll - ok
20:16:25.0296 4420 [ 89F4D0DD6606A2FE15931E6888DBBC8D ] C:\Windows\SysWOW64\stdole2.tlb
20:16:25.0296 4420 C:\Windows\SysWOW64\stdole2.tlb - ok
20:16:25.0299 4420 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
20:16:25.0299 4420 C:\Windows\System32\IccLibDll_x64.dll - ok
20:16:25.0303 4420 [ D875FF86664F102B97A4BD5746AD40F5 ] C:\Windows\SysWOW64\en-US\msctf.dll.mui
20:16:25.0303 4420 C:\Windows\SysWOW64\en-US\msctf.dll.mui - ok
20:16:25.0307 4420 [ F3DCED5400D006C80F7B08CC3515647B ] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
20:16:25.0307 4420 C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll - ok
20:16:25.0311 4420 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
20:16:25.0311 4420 C:\Windows\System32\FXSST.dll - ok
20:16:25.0314 4420 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\SysWOW64\FXSAPI.dll
20:16:25.0314 4420 C:\Windows\SysWOW64\FXSAPI.dll - ok
20:16:25.0318 4420 [ F12F93EC4BB3DE452F31925F03724ADC ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
20:16:25.0318 4420 C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok
20:16:25.0321 4420 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
20:16:25.0321 4420 C:\Windows\System32\FXSAPI.dll - ok
20:16:25.0325 4420 [ F6FFD0DD7BE7BC682350F1296E1E9742 ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\WL09BB~1.DLL
20:16:25.0325 4420 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\WL09BB~1.DLL - ok
20:16:25.0330 4420 [ F7611E0F05B4EB272102CA9883CA98A7 ] C:\Windows\SysWOW64\netshell.dll
20:16:25.0330 4420 C:\Windows\SysWOW64\netshell.dll - ok
20:16:25.0333 4420 [ F571AD7F5E6B8196356355F59927D92A ] C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL
20:16:25.0333 4420 C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.DLL - ok
20:16:25.0337 4420 [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\SysWOW64\FXSRESM.dll
20:16:25.0337 4420 C:\Windows\SysWOW64\FXSRESM.dll - ok
20:16:25.0341 4420 [ 75207C9F09AE0E3712DC3864EFFA20EF ] C:\Windows\System32\SynCOM.dll
20:16:25.0341 4420 C:\Windows\System32\SynCOM.dll - ok
20:16:25.0345 4420 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
20:16:25.0345 4420 C:\Windows\SysWOW64\rundll32.exe - ok
20:16:25.0348 4420 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
20:16:25.0348 4420 C:\Windows\System32\rundll32.exe - ok
20:16:25.0352 4420 [ B24ABFAB2D541996A38905369D511953 ] C:\Windows\SysWOW64\wdmaud.drv
20:16:25.0352 4420 C:\Windows\SysWOW64\wdmaud.drv - ok
20:16:25.0356 4420 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
20:16:25.0356 4420 C:\Windows\System32\wdmaud.drv - ok
20:16:25.0360 4420 [ B657FD73A04B8D7BA8E0B4A6CDDF18D2 ] C:\Windows\SysWOW64\Query.dll
20:16:25.0360 4420 C:\Windows\SysWOW64\Query.dll - ok
20:16:25.0364 4420 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
20:16:25.0364 4420 C:\Windows\SysWOW64\ksuser.dll - ok
20:16:25.0368 4420 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
20:16:25.0368 4420 C:\Windows\System32\ksuser.dll - ok
20:16:25.0372 4420 [ C0CCBA2DDADBB8B068F50D1A832F07EC ] C:\Windows\System32\Query.dll
20:16:25.0372 4420 C:\Windows\System32\Query.dll - ok
20:16:25.0375 4420 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
20:16:25.0375 4420 C:\Windows\SysWOW64\avrt.dll - ok
20:16:25.0379 4420 [ BF164444875AF45D34936684DF87CF40 ] C:\Windows\SysWOW64\en-US\rundll32.exe.mui
20:16:25.0379 4420 C:\Windows\SysWOW64\en-US\rundll32.exe.mui - ok
20:16:25.0382 4420 [ E0ADEA2AC3C5086ECE812975E945CAE3 ] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
20:16:25.0382 4420 C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll - ok
20:16:25.0387 4420 [ F5EB1E039498D6F1D106E96CE7C1F3C6 ] C:\Windows\SysWOW64\WPDShServiceObj.dll
20:16:25.0387 4420 C:\Windows\SysWOW64\WPDShServiceObj.dll - ok
20:16:25.0390 4420 [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
20:16:25.0390 4420 C:\Windows\System32\consent.exe - ok
20:16:25.0394 4420 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
20:16:25.0394 4420 C:\Windows\System32\WPDShServiceObj.dll - ok
20:16:25.0397 4420 [ 492CB6A624D5DAD73EE0294B5DB37DD6 ] C:\Windows\System32\xpsrchvw.exe
20:16:25.0397 4420 C:\Windows\System32\xpsrchvw.exe - ok
20:16:25.0401 4420 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\SysWOW64\PortableDeviceTypes.dll
20:16:25.0401 4420 C:\Windows\SysWOW64\PortableDeviceTypes.dll - ok
20:16:25.0405 4420 [ C020DEB7937BF1EDE0320AB9E260FB28 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\csy.dll
20:16:25.0405 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\csy.dll - ok
20:16:25.0409 4420 [ AE796D3FD1C69CE62BB6AFACDFB950AA ] C:\Windows\SysWOW64\msgsm32.acm
20:16:25.0409 4420 C:\Windows\SysWOW64\msgsm32.acm - ok
20:16:25.0412 4420 [ 347AAE83C7C7B787CED89544532AA47D ] C:\Windows\SysWOW64\PhotoMetadataHandler.dll
20:16:25.0412 4420 C:\Windows\SysWOW64\PhotoMetadataHandler.dll - ok
20:16:25.0416 4420 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
20:16:25.0416 4420 C:\Windows\System32\PhotoMetadataHandler.dll - ok
20:16:25.0419 4420 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
20:16:25.0419 4420 C:\Windows\System32\PortableDeviceTypes.dll - ok
20:16:25.0424 4420 [ 1C7F1C3EA5894995E6C563E9AE9F029F ] C:\Windows\SysWOW64\l3codeca.acm
20:16:25.0424 4420 C:\Windows\SysWOW64\l3codeca.acm - ok
20:16:25.0427 4420 [ 9D34F6D0DAB7E01B9A18847E758A0518 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\dan.dll
20:16:25.0427 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\dan.dll - ok
20:16:25.0431 4420 [ A2AE80FA8313DBE48931A5E1DDC89E0E ] C:\Program Files (x86)\Intel\Bluetooth\Resources\deu.dll
20:16:25.0431 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\deu.dll - ok
20:16:25.0434 4420 [ D4C438883154C3D082FB2E629191C45F ] C:\Windows\SysWOW64\srchadmin.dll
20:16:25.0435 4420 C:\Windows\SysWOW64\srchadmin.dll - ok
20:16:25.0438 4420 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\SysWOW64\wmsgapi.dll
20:16:25.0438 4420 C:\Windows\SysWOW64\wmsgapi.dll - ok
20:16:25.0442 4420 [ A67346351B05AC9DE2F4479F05DF7EC6 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\ell.dll
20:16:25.0442 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\ell.dll - ok
20:16:25.0445 4420 [ A0EC5976E86CEED540992CD634D3BCEE ] C:\Windows\System32\en-US\consent.exe.mui
20:16:25.0445 4420 C:\Windows\System32\en-US\consent.exe.mui - ok
20:16:25.0450 4420 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
20:16:25.0450 4420 C:\Windows\System32\srchadmin.dll - ok
20:16:25.0454 4420 [ 20BC1826858CBF29DCFD23438CA0138A ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe
20:16:25.0454 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe - ok
20:16:25.0457 4420 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
20:16:25.0457 4420 C:\Windows\System32\FXSSVC.exe - ok
20:16:25.0461 4420 [ ABB425B7C6AD956BFCABDF5F59541AD5 ] C:\Windows\System32\fsquirt.exe
20:16:25.0461 4420 C:\Windows\System32\fsquirt.exe - ok
20:16:25.0465 4420 [ C1E1C15475A3968F6CB4291DCBBCA9B9 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\esn.dll
20:16:25.0465 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\esn.dll - ok
20:16:25.0469 4420 [ 7C74C407EEFE30A423B49E2D10850281 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
20:16:25.0469 4420 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll - ok
20:16:25.0473 4420 [ B86F92571034A5FD4869830AEBBECC14 ] C:\Program Files\Dell\QuickSet\quickset.exe
20:16:25.0473 4420 C:\Program Files\Dell\QuickSet\quickset.exe - ok
20:16:25.0477 4420 [ 3DB574270266765AA286130CA5C56455 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\fin.dll
20:16:25.0478 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\fin.dll - ok
20:16:25.0481 4420 [ 0E601550B5CD0C5C0502E928AD2DC11B ] C:\Program Files (x86)\Intel\Bluetooth\Resources\fra.dll
20:16:25.0482 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\fra.dll - ok
20:16:25.0485 4420 [ B795E6138E29A37508285FC31E92BD78 ] C:\Windows\System32\DisplaySwitch.exe
20:16:25.0485 4420 C:\Windows\System32\DisplaySwitch.exe - ok
20:16:25.0489 4420 [ B701CD6DC1659244DE8C1A4C70758F61 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
20:16:25.0489 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
20:16:25.0493 4420 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\SysWOW64\webcheck.dll
20:16:25.0493 4420 C:\Windows\SysWOW64\webcheck.dll - ok
20:16:25.0496 4420 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
20:16:25.0496 4420 C:\Windows\System32\webcheck.dll - ok
20:16:25.0500 4420 [ 9DBB1DD00E013907A875A7A433E9AAE2 ] C:\Program Files\Intel\WiFi\bin\PanApi.dll
20:16:25.0500 4420 C:\Program Files\Intel\WiFi\bin\PanApi.dll - ok
20:16:25.0504 4420 [ 08ABD960A6C45C9F5E016FE038115DB2 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\heb.dll
20:16:25.0504 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\heb.dll - ok
20:16:25.0507 4420 [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
20:16:25.0507 4420 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
20:16:25.0511 4420 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
20:16:25.0511 4420 C:\Windows\System32\mlang.dll - ok
20:16:25.0515 4420 [ CEB22D221314BDCE338FB31FB04E042D ] C:\Program Files (x86)\Intel\Bluetooth\Resources\hun.dll
20:16:25.0515 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\hun.dll - ok
20:16:25.0517 4420 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\SysWOW64\AltTab.dll
20:16:25.0517 4420 C:\Windows\SysWOW64\AltTab.dll - ok
20:16:25.0522 4420 [ 3B13C3FA70498492CF512FF7D3FADF9F ] C:\Program Files\Intel\WiFi\bin\DbEngine.dll
20:16:25.0522 4420 C:\Program Files\Intel\WiFi\bin\DbEngine.dll - ok
20:16:25.0526 4420 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
20:16:25.0526 4420 C:\Windows\System32\AltTab.dll - ok
20:16:25.0529 4420 [ 17A8D4C3B678EA61580FD198B1C391CE ] C:\Program Files (x86)\Intel\Bluetooth\Resources\ita.dll
20:16:25.0530 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\ita.dll - ok
20:16:25.0533 4420 [ 8C7FE6B9559204765849BFF308764FA5 ] C:\Windows\SysWOW64\SyncCenter.dll
20:16:25.0533 4420 C:\Windows\SysWOW64\SyncCenter.dll - ok
20:16:25.0537 4420 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\SysWOW64\eappcfg.dll
20:16:25.0537 4420 C:\Windows\SysWOW64\eappcfg.dll - ok
20:16:25.0541 4420 [ E96E5B1027F67ED02FB1447A5B670F7D ] C:\Program Files (x86)\Intel\Bluetooth\Resources\jpn.dll
20:16:25.0541 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\jpn.dll - ok
20:16:25.0544 4420 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\SysWOW64\eappprxy.dll
20:16:25.0544 4420 C:\Windows\SysWOW64\eappprxy.dll - ok
20:16:25.0548 4420 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
20:16:25.0548 4420 C:\Windows\System32\SyncCenter.dll - ok
20:16:25.0551 4420 [ C1CA079F9579782F74D5C58FF0877616 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\kor.dll
20:16:25.0551 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\kor.dll - ok
20:16:25.0555 4420 [ C43C6CEC0A207A46EB69CE5B46D4C726 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\nld.dll
20:16:25.0555 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\nld.dll - ok
20:16:25.0559 4420 [ 9FCA314E02437C35C4A8571EAE8B3421 ] C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe
20:16:25.0559 4420 C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe - ok
20:16:25.0564 4420 [ 0F0EE7DE3436E6F8F0E19DACAC7B5730 ] C:\Windows\SysWOW64\mf.dll
20:16:25.0564 4420 C:\Windows\SysWOW64\mf.dll - ok
20:16:25.0567 4420 [ A1139571ACADBBB9199B05636EC86672 ] C:\Windows\System32\igfxext.exe
20:16:25.0567 4420 C:\Windows\System32\igfxext.exe - ok
20:16:25.0571 4420 [ D48056EFFA9927CF6B3B9400E11C2A70 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\nor.dll
20:16:25.0571 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\nor.dll - ok
20:16:25.0575 4420 [ 7FD58BA8562948EE374E2513C6771EF9 ] C:\Windows\System32\mf.dll
20:16:25.0575 4420 C:\Windows\System32\mf.dll - ok
20:16:25.0578 4420 [ 2862A3819BBC9757DD27BAC41A4E0A3E ] C:\Windows\SysWOW64\pnidui.dll
20:16:25.0578 4420 C:\Windows\SysWOW64\pnidui.dll - ok
20:16:25.0582 4420 [ 812DD9FBA5EF2136AEF738CAA499D47C ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
20:16:25.0582 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe - ok
20:16:25.0586 4420 [ 72F10370DCF8D86406FD625AA78C87AE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\b8281946f37a029183f8bdff96ba8602\mscorlib.ni.dll
20:16:25.0586 4420 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\b8281946f37a029183f8bdff96ba8602\mscorlib.ni.dll - ok
20:16:25.0590 4420 [ 5972B401CCC2054387B9F51FC093470E ] C:\Program Files\Intel\WiFi\bin\LangResources\enu\PanTrENU.dll
20:16:25.0590 4420 C:\Program Files\Intel\WiFi\bin\LangResources\enu\PanTrENU.dll - ok
20:16:25.0593 4420 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
20:16:25.0594 4420 C:\Windows\System32\pnidui.dll - ok
20:16:25.0597 4420 [ E3DA7A19680496E15D04B28D10B8C896 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\plk.dll
20:16:25.0597 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\plk.dll - ok
20:16:25.0601 4420 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
20:16:25.0601 4420 C:\Windows\SysWOW64\mfplat.dll - ok
20:16:25.0604 4420 [ 45F0F12A11861CE0FB682B87A310FE41 ] C:\Windows\SysWOW64\QUTIL.DLL
20:16:25.0604 4420 C:\Windows\SysWOW64\QUTIL.DLL - ok
20:16:25.0608 4420 [ DBDC96353C8FA66E6015286BA86351D6 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\ptb.dll
20:16:25.0608 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\ptb.dll - ok
20:16:25.0612 4420 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
20:16:25.0612 4420 C:\Windows\System32\mfplat.dll - ok
20:16:25.0615 4420 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
20:16:25.0615 4420 C:\Windows\System32\QUTIL.DLL - ok
20:16:25.0619 4420 [ 2C68D1CEAA96FE39E44B4979ACD6D9B3 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll
20:16:25.0619 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll - ok
20:16:25.0623 4420 [ F9FC0EF1F8B9DC0A0C394764F99F787D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9b5409ff43680d37d5d9eb5c70928a9c\System.ni.dll
20:16:25.0623 4420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9b5409ff43680d37d5d9eb5c70928a9c\System.ni.dll - ok
20:16:25.0627 4420 [ 0FBE3477085A6724A6CD3687AD517AE0 ] C:\Program Files (x86)\Intel\Bluetooth\Resources\ptg.dll
20:16:25.0627 4420 C:\Program Files (x86)\Intel\Bluetooth\Resources\ptg.dll - ok
20:16:25.0630 4420 [ 8CC4ECA2177510674DB92BB8F1CEBBEE ] C:\Windows\SysWOW64\hgcpl.dll
20:16:25.0630 4420 C:\Windows\SysWOW64\hgcpl.dll - ok
20:16:25.0634 4420 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
20:16:25.0634 4420 C:\Windows\System32\hgcpl.dll - ok
20:16:25.0637 4420 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll
20:16:25.0637 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll - ok
20:16:25.0641 4420 [ CD10B8CA47401B11B0F449B9D2CBF3F3 ] C:\Windows\System32\igfxexps.dll
20:16:25.0641 4420 C:\Windows\System32\igfxexps.dll - ok
20:16:25.0645 4420 [ 79336EC275429FD9538E772EE2486A0D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\b63f1623847adcba30569d93c4246451\System.Drawing.ni.dll
20:16:25.0645 4420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\b63f1623847adcba30569d93c4246451\System.Drawing.ni.dll - ok
20:16:25.0648 4420 [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
20:16:25.0649 4420 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
20:16:25.0652 4420 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] C:\Windows\SysWOW64\provsvc.dll
20:16:25.0652 4420 C:\Windows\SysWOW64\provsvc.dll - ok
20:16:25.0656 4420 [ D5A787E18D3C67894CDAC0A81D617DB4 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
20:16:25.0656 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll - ok
20:16:25.0659 4420 [ 823BD5F4D89FEDCD90809B8C53D167CC ] C:\Windows\System32\mblctr.exe
20:16:25.0660 4420 C:\Windows\System32\mblctr.exe - ok
20:16:25.0663 4420 [ 234C6332DE002EE43A08C46B5B988EB2 ] C:\Windows\System32\SampleRes.dll
20:16:25.0663 4420 C:\Windows\System32\SampleRes.dll - ok
20:16:25.0668 4420 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
20:16:25.0668 4420 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
20:16:25.0672 4420 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
20:16:25.0672 4420 C:\Windows\SysWOW64\msacm32.drv - ok
20:16:25.0676 4420 [ FB4945158469FE50A87451AB5218E40B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\25fda033ab1e38bc6ad875a992060ab1\System.Windows.Forms.ni.dll
20:16:25.0676 4420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\25fda033ab1e38bc6ad875a992060ab1\System.Windows.Forms.ni.dll - ok
20:16:25.0679 4420 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
20:16:25.0680 4420 C:\Windows\System32\msacm32.drv - ok
20:16:25.0684 4420 [ 30293898C1A9DFBCFE38EB6A2F7D555A ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
20:16:25.0684 4420 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
20:16:25.0688 4420 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
20:16:25.0688 4420 C:\Windows\System32\msacm32.dll - ok
20:16:25.0692 4420 [ 9AEEEF46F7BD01A7B52CDFEB9993BBFF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
20:16:25.0692 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
20:16:25.0695 4420 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
20:16:25.0695 4420 C:\Windows\SysWOW64\midimap.dll - ok
20:16:25.0699 4420 [ 2ECD9D9087DC15E7AAD130883E665219 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
20:16:25.0699 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll - ok
20:16:25.0702 4420 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
20:16:25.0702 4420 C:\Windows\System32\bthprops.cpl - ok
20:16:25.0706 4420 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
20:16:25.0706 4420 C:\Windows\System32\midimap.dll - ok
20:16:25.0710 4420 [ 216D599379984AD5E6D845178231FDBE ] C:\Program Files (x86)\System Registration\prodreg.exe
20:16:25.0710 4420 C:\Program Files (x86)\System Registration\prodreg.exe - ok
20:16:25.0713 4420 [ 5E115854DA4767CF8071F76211DDAC06 ] C:\Windows\System32\mstsc.exe
20:16:25.0713 4420 C:\Windows\System32\mstsc.exe - ok
20:16:25.0717 4420 [ FB023BF95759519EAC8B04672A723128 ] C:\Windows\SysWOW64\AudioEng.dll
20:16:25.0717 4420 C:\Windows\SysWOW64\AudioEng.dll - ok
20:16:25.0720 4420 [ DE6F4B7E62FDE776F3DE8E5FB5A05C48 ] C:\Windows\SysWOW64\fdWSD.dll
20:16:25.0720 4420 C:\Windows\SysWOW64\fdWSD.dll - ok
20:16:25.0724 4420 [ 206ECCF79765E9F3FC6CCA04114EE058 ] C:\Windows\SysWOW64\WSDApi.dll
20:16:25.0724 4420 C:\Windows\SysWOW64\WSDApi.dll - ok
20:16:25.0728 4420 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
20:16:25.0728 4420 C:\Windows\System32\fdWSD.dll - ok
20:16:25.0732 4420 [ 496F689C23FE3490072F2D5EFAD15463 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_UICustomControls.dll
20:16:25.0732 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_UICustomControls.dll - ok
20:16:25.0736 4420 [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\Windows\System32\SnippingTool.exe
20:16:25.0736 4420 C:\Windows\System32\SnippingTool.exe - ok
20:16:25.0739 4420 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
20:16:25.0739 4420 C:\Windows\System32\AudioEng.dll - ok
20:16:25.0744 4420 [ 544013C383833189A61C2F72B8814319 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
20:16:25.0744 4420 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
20:16:25.0747 4420 [ 47F0F526AD4982806C54B845B3289DE1 ] C:\Windows\System32\SoundRecorder.exe
20:16:25.0747 4420 C:\Windows\System32\SoundRecorder.exe - ok
20:16:25.0751 4420 [ 4262220B609AD082CE66914172597A96 ] C:\Windows\SysWOW64\webservices.dll
20:16:25.0751 4420 C:\Windows\SysWOW64\webservices.dll - ok
20:16:25.0755 4420 [ 0A8BEC706DBC33BEA9A919BEDA137A2D ] C:\Windows\System32\SNTSearch.dll
20:16:25.0755 4420 C:\Windows\System32\SNTSearch.dll - ok
20:16:25.0759 4420 [ 1FF8939ABF6B9CF81F22BD768E5449BD ] C:\Windows\System32\OobeFldr.dll
20:16:25.0759 4420 C:\Windows\System32\OobeFldr.dll - ok
20:16:25.0763 4420 [ 8ADACCE09EEB1F783D85504B1D7493D7 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_WiMAXSDKInterop.dll
20:16:25.0763 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_WiMAXSDKInterop.dll - ok
20:16:25.0766 4420 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
20:16:25.0766 4420 C:\Windows\SysWOW64\Nlsdl.dll - ok
20:16:25.0768 4420 [ A7749965A3923D024922A86BAAECAFF4 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
20:16:25.0768 4420 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe - ok
20:16:25.0773 4420 [ B1670EA59AD99EDF91B32237E5D53031 ] C:\Windows\SysWOW64\AUDIOKSE.dll
20:16:25.0773 4420 C:\Windows\SysWOW64\AUDIOKSE.dll - ok
20:16:25.0776 4420 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
20:16:25.0776 4420 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
20:16:25.0780 4420 [ F121FF27B30D62EB148E928C4769328B ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
20:16:25.0781 4420 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
20:16:25.0785 4420 [ 719DD0C052170354606A31AF02F8C079 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_Common.dll
20:16:25.0785 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_Common.dll - ok
20:16:25.0790 4420 [ 4164A47F3A2DA7EA44572904C3DF44A4 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
20:16:25.0790 4420 C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe - ok
20:16:25.0793 4420 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
20:16:25.0794 4420 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
20:16:25.0797 4420 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\SysWOW64\fundisc.dll
20:16:25.0797 4420 C:\Windows\SysWOW64\fundisc.dll - ok
20:16:25.0801 4420 [ 674611721264013DB169EC12AFC9C3B6 ] C:\Windows\SysWOW64\fdSSDP.dll
20:16:25.0801 4420 C:\Windows\SysWOW64\fdSSDP.dll - ok
20:16:25.0804 4420 [ BA20A9E8D5057D1164E8A20CD2936DBC ] C:\Windows\System32\AUDIOKSE.dll
20:16:25.0804 4420 C:\Windows\System32\AUDIOKSE.dll - ok
20:16:25.0808 4420 [ BD4C1D83353BFB80F6BA019F6D0BA95B ] C:\Windows\ehome\ehshell.exe
20:16:25.0808 4420 C:\Windows\ehome\ehshell.exe - ok
20:16:25.0812 4420 [ BE33E6A340B7C740226C28B177857948 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
20:16:25.0812 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
20:16:25.0816 4420 [ 901AA7A38CE13F14B6BBEC38C0595698 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
20:16:25.0816 4420 C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe - ok
20:16:25.0820 4420 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
20:16:25.0820 4420 C:\Windows\System32\fdSSDP.dll - ok
20:16:25.0823 4420 [ B114DB354D13A21C1AC2B1807EE2F500 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
20:16:25.0823 4420 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
20:16:25.0827 4420 [ 3B1864AE25C30F7385FE69495DF772D1 ] C:\Windows\System32\dfrgui.exe
20:16:25.0827 4420 C:\Windows\System32\dfrgui.exe - ok
20:16:25.0831 4420 [ B7FB481F897D05BA9560C0F86542807E ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl
20:16:25.0831 4420 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl - ok
20:16:25.0834 4420 [ 8E33E2B24306C5249154322BC99493F5 ] C:\Windows\SysWOW64\httpapi.dll
20:16:25.0834 4420 C:\Windows\SysWOW64\httpapi.dll - ok
20:16:25.0838 4420 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
20:16:25.0838 4420 C:\Windows\SysWOW64\devenum.dll - ok
20:16:25.0842 4420 [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
20:16:25.0842 4420 C:\Windows\System32\httpapi.dll - ok
20:16:25.0846 4420 [ F190C58B56CE59DC979D8AF71139B0DD ] C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\Movielink User.exe
20:16:25.0846 4420 C:\Program Files (x86)\Blockbuster\BLOCKBUSTERMovielink\Movielink User.exe - ok
20:16:25.0849 4420 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\SysWOW64\pcwum.dll
20:16:25.0849 4420 C:\Windows\SysWOW64\pcwum.dll - ok
20:16:25.0853 4420 [ AF36C246EB34999281A4CB34EA14915F ] C:\Windows\System32\wdc.dll
20:16:25.0853 4420 C:\Windows\System32\wdc.dll - ok
20:16:25.0857 4420 [ 7E6CA0FBCFDD2B6E2D99EDD8B673A192 ] C:\Windows\System32\MBWrp64.dll
20:16:25.0857 4420 C:\Windows\System32\MBWrp64.dll - ok
20:16:25.0860 4420 [ 5E5EDCCEEA4FA3FDF3A907AC204B5828 ] C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
20:16:25.0860 4420 C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe - ok
20:16:25.0864 4420 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
20:16:25.0864 4420 C:\Windows\SysWOW64\avicap32.dll - ok
20:16:25.0868 4420 [ 424888058FF23A191D329D87879C110A ] C:\Program Files (x86)\Webroot\Security\Current\Framework\WRTray.exe
20:16:25.0868 4420 C:\Program Files (x86)\Webroot\Security\Current\Framework\WRTray.exe - ok
20:16:25.0872 4420 [ 7D7677D3E17614F69B27B9EB9A8EFE5E ] C:\Windows\System32\msinfo32.exe
20:16:25.0873 4420 C:\Windows\System32\msinfo32.exe - ok
20:16:25.0876 4420 [ B9D2FAF624031311CA3E45CC60EDDDE7 ] C:\Windows\System32\rstrui.exe
20:16:25.0876 4420 C:\Windows\System32\rstrui.exe - ok
20:16:25.0880 4420 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
20:16:25.0880 4420 C:\Windows\SysWOW64\d3d10.dll - ok
20:16:25.0884 4420 [ 51D186B582C905E49D84B70322F70B21 ] C:\Windows\System32\miguiresource.dll
20:16:25.0884 4420 C:\Windows\System32\miguiresource.dll - ok
20:16:25.0893 4420 [ 2DEEB96A0957BD058753FF250E85EF49 ] C:\Windows\SysWOW64\msvfw32.dll
20:16:25.0893 4420 C:\Windows\SysWOW64\msvfw32.dll - ok
20:16:25.0897 4420 [ 45C35D957F41098B291C9337015AFDA9 ] C:\Windows\System32\MBAPO64.dll
20:16:25.0897 4420 C:\Windows\System32\MBAPO64.dll - ok
20:16:25.0901 4420 [ 2B7AAA05D43988BEC320F965F6384E67 ] C:\Windows\System32\migwiz\wet.dll
20:16:25.0901 4420 C:\Windows\System32\migwiz\wet.dll - ok
20:16:25.0905 4420 [ C0D46CA25972777BD01AF2580EADA639 ] C:\Windows\SysWOW64\en-US\msvfw32.dll.mui
20:16:25.0905 4420 C:\Windows\SysWOW64\en-US\msvfw32.dll.mui - ok
20:16:25.0908 4420 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
20:16:25.0908 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
20:16:25.0912 4420 [ C1F569D8469517038D1A68762810907A ] C:\Windows\SysWOW64\en-US\avicap32.dll.mui
20:16:25.0912 4420 C:\Windows\SysWOW64\en-US\avicap32.dll.mui - ok
20:16:25.0916 4420 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
20:16:25.0916 4420 C:\Windows\SysWOW64\d3d10core.dll - ok
20:16:25.0920 4420 [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\SysWOW64\fdProxy.dll
20:16:25.0920 4420 C:\Windows\SysWOW64\fdProxy.dll - ok
20:16:25.0924 4420 [ DB8BF64BE3932ADC407505D21C4F2C2C ] C:\Windows\System32\fdProxy.dll
20:16:25.0924 4420 C:\Windows\System32\fdProxy.dll - ok
20:16:25.0927 4420 [ 53EDBE9C1D6B0CEC11A573852B5B6DAD ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
20:16:25.0927 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe - ok
20:16:25.0931 4420 [ 0DFF557D796B6ABFB28208C6680FB5C9 ] C:\Windows\SysWOW64\igd10umd32.dll
20:16:25.0931 4420 C:\Windows\SysWOW64\igd10umd32.dll - ok
20:16:25.0935 4420 [ 9D9C0DD19ED1D36E1FAB8805EA5CE1AF ] C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe
20:16:25.0935 4420 C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe - ok
20:16:25.0939 4420 [ 4A826F98E1B0860840FE227D1A4FFC05 ] C:\Program Files\Windows Journal\Journal.exe
20:16:25.0939 4420 C:\Program Files\Windows Journal\Journal.exe - ok
20:16:25.0942 4420 [ E32B288B38C3182D9F890F45B067A5DB ] C:\Windows\SysWOW64\vfwwdm32.dll
20:16:25.0942 4420 C:\Windows\SysWOW64\vfwwdm32.dll - ok
20:16:25.0946 4420 [ 492F46162045686EC99B5B13CA68D6E3 ] C:\Windows\SysWOW64\en-US\vfwwdm32.dll.mui
20:16:25.0946 4420 C:\Windows\SysWOW64\en-US\vfwwdm32.dll.mui - ok
20:16:25.0950 4420 [ 82CC8F77E9EC61C6B4D48DD4D5CA78E7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
20:16:25.0950 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
20:16:25.0954 4420 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
20:16:25.0954 4420 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
20:16:25.0958 4420 [ D6E46FE21CC8E662A7A88000FDD77DAF ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
20:16:25.0958 4420 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
20:16:25.0962 4420 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
20:16:25.0962 4420 C:\Windows\System32\WindowsCodecsExt.dll - ok
20:16:25.0965 4420 [ 4AFFDCAADCB1DBBFFAF06C7F82E7F6FC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
20:16:25.0965 4420 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
20:16:25.0969 4420 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\SysWOW64\rasdlg.dll
20:16:25.0969 4420 C:\Windows\SysWOW64\rasdlg.dll - ok
20:16:25.0973 4420 [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
20:16:25.0973 4420 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
20:16:25.0980 4420 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
20:16:25.0980 4420 C:\Windows\System32\WMALFXGFXDSP.dll - ok
20:16:25.0983 4420 [ 852D67A27E454BD389FA7F02A8CBE23F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
20:16:25.0983 4420 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
20:16:25.0987 4420 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
20:16:25.0987 4420 C:\Windows\System32\rasdlg.dll - ok
20:16:25.0991 4420 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] C:\Windows\SysWOW64\shsvcs.dll
20:16:25.0991 4420 C:\Windows\SysWOW64\shsvcs.dll - ok
20:16:25.0994 4420 [ 171557D91DFC05D047941A8DF3322AA0 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_BizTier.dll
20:16:25.0994 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_BizTier.dll - ok
20:16:26.0001 4420 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\SysWOW64\tapi32.dll
20:16:26.0001 4420 C:\Windows\SysWOW64\tapi32.dll - ok
20:16:26.0004 4420 [ 06A6FE79BD96C7FEF7322AFE5B45FFFF ] C:\Windows\System32\mycomput.dll
20:16:26.0004 4420 C:\Windows\System32\mycomput.dll - ok
20:16:26.0008 4420 [ 53E81C75B3C260C8FE9FD9ED4D8DB8F0 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll
20:16:26.0008 4420 C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll - ok
20:16:26.0012 4420 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
20:16:26.0012 4420 C:\Windows\System32\odbcint.dll - ok
20:16:26.0016 4420 [ B9CE8CF2FF2D5EAFFDBAA340E7B385A5 ] C:\Windows\System32\iscsicpl.dll
20:16:26.0016 4420 C:\Windows\System32\iscsicpl.dll - ok
20:16:26.0018 4420 [ A8F0E356CE2A84B31A7D1043CDE31F07 ] C:\Windows\System32\MdSched.exe
20:16:26.0018 4420 C:\Windows\System32\MdSched.exe - ok
20:16:26.0023 4420 [ DE038C40F3033EDA732655FA42DCBD18 ] C:\Windows\System32\filemgmt.dll
20:16:26.0023 4420 C:\Windows\System32\filemgmt.dll - ok
20:16:26.0026 4420 [ A7253C6B106DAAEBB5499FC7AEF68BAB ] C:\Windows\System32\msconfig.exe
20:16:26.0026 4420 C:\Windows\System32\msconfig.exe - ok
20:16:26.0030 4420 [ 11F174ED2050121C394C17B4F7B69983 ] C:\Windows\System32\AuthFWGP.dll
20:16:26.0030 4420 C:\Windows\System32\AuthFWGP.dll - ok
20:16:26.0034 4420 [ 2C68D1CEAA96FE39E44B4979ACD6D9B3 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll
20:16:26.0034 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll - ok
20:16:26.0038 4420 [ 0CD666503B26081E4E7BA8193017422F ] C:\PROGRA~3\PC-DOC~1\STARTM~1\603247~1.MUI
20:16:26.0038 4420 C:\PROGRA~3\PC-DOC~1\STARTM~1\603247~1.MUI - ok
20:16:26.0042 4420 [ C91FABAA63C489C874B97A19906E901C ] C:\Windows\System32\gameux.dll
20:16:26.0042 4420 C:\Windows\System32\gameux.dll - ok
20:16:26.0046 4420 [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
20:16:26.0046 4420 C:\Program Files\Internet Explorer\ieproxy.dll - ok
20:16:26.0050 4420 [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
20:16:26.0050 4420 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
20:16:26.0053 4420 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
20:16:26.0053 4420 C:\Windows\SysWOW64\msvcp71.dll - ok
20:16:26.0058 4420 [ F7B5CCD32B506B166E4144C967F8B938 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
20:16:26.0058 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
20:16:26.0062 4420 [ C278130206CE9DC89EF74F15E7227224 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_ServicePublisher.dll
20:16:26.0062 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_ServicePublisher.dll - ok
20:16:26.0066 4420 [ 5963633010616B25503EE126F55E8DE4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
20:16:26.0066 4420 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll - ok
20:16:26.0070 4420 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
20:16:26.0070 4420 C:\Windows\SysWOW64\msvcr71.dll - ok
20:16:26.0074 4420 [ 70F03B29A62194E69911952B3640D9D2 ] C:\Windows\SysWOW64\msdmo.dll
20:16:26.0074 4420 C:\Windows\SysWOW64\msdmo.dll - ok
20:16:26.0077 4420 [ 0B0604BC02CA5F77A1F23C6B0D86AE8C ] C:\Windows\System32\msdmo.dll
20:16:26.0078 4420 C:\Windows\System32\msdmo.dll - ok
20:16:26.0081 4420 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
20:16:26.0081 4420 C:\Windows\SysWOW64\msisip.dll - ok
20:16:26.0085 4420 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll
20:16:26.0085 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll - ok
20:16:26.0090 4420 [ EF5BB4ED30AFD9B5C3BE50A978D4B5B7 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_WiFiCoEx.dll
20:16:26.0090 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_WiFiCoEx.dll - ok
20:16:26.0094 4420 [ 84A1BF103F98EEE3990C208912FADAC8 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
20:16:26.0094 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
20:16:26.0098 4420 [ 827C3645F4CBE912249EFC4D676CE11B ] C:\PROGRA~1\Intel\WiMAX\Bin\MUIRES~1.DLL
20:16:26.0098 4420 C:\PROGRA~1\Intel\WiMAX\Bin\MUIRES~1.DLL - ok
20:16:26.0102 4420 [ 7B845BFE314509D08AB5865CB141E332 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
20:16:26.0102 4420 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
20:16:26.0106 4420 [ B9E362680ADB83F0E0134F4567DBF656 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll
20:16:26.0106 4420 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll - ok
20:16:26.0110 4420 [ 4A7A076EA3B1FE59CF4303F6B0BB2C6F ] C:\Windows\System32\sdcpl.dll
20:16:26.0110 4420 C:\Windows\System32\sdcpl.dll - ok
20:16:26.0114 4420 [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\SysWOW64\P2P.dll
20:16:26.0114 4420 C:\Windows\SysWOW64\P2P.dll - ok
20:16:26.0117 4420 [ CC19B60A901A415624F5771F1F0A6060 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
20:16:26.0117 4420 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
20:16:26.0121 4420 [ CDE81C3D7B325B33D8E0EA1AD7E93655 ] C:\Windows\System32\recdisc.exe
20:16:26.0121 4420 C:\Windows\System32\recdisc.exe - ok
20:16:26.0125 4420 [ E79DF53BAD587E24B3CF965A5746C7B6 ] C:\Windows\System32\msra.exe
20:16:26.0125 4420 C:\Windows\System32\msra.exe - ok
20:16:26.0128 4420 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
20:16:26.0128 4420 C:\Windows\System32\P2P.dll - ok
20:16:26.0132 4420 [ D5A787E18D3C67894CDAC0A81D617DB4 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
20:16:26.0132 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll - ok
20:16:26.0136 4420 [ C748A1C505275DD139AECB73DCF8E0FB ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll
20:16:26.0136 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcsii64.dll - ok
20:16:26.0140 4420 [ 1F0C93C5EF2624C922798AB3F0C91BD1 ] C:\PROGRA~2\WIC4A1~1\Mesh\WLSYNC~3.DLL
20:16:26.0140 4420 C:\PROGRA~2\WIC4A1~1\Mesh\WLSYNC~3.DLL - ok
20:16:26.0144 4420 [ 7A35B7C5B821E0673A769DC1A4787100 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll
20:16:26.0144 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll - ok
20:16:26.0148 4420 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
20:16:26.0148 4420 C:\Windows\System32\IdListen.dll - ok
20:16:26.0151 4420 [ 2ECD9D9087DC15E7AAD130883E665219 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
20:16:26.0151 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll - ok
20:16:26.0155 4420 [ EC971A8E4CA132D6F8482B0C8B79A9AD ] C:\PROGRA~2\WIC4A1~1\Writer\WI68BE~1.DLL
20:16:26.0155 4420 C:\PROGRA~2\WIC4A1~1\Writer\WI68BE~1.DLL - ok
20:16:26.0159 4420 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
20:16:26.0159 4420 C:\Windows\SysWOW64\shfolder.dll - ok
20:16:26.0163 4420 [ A51A7D0C82C93827532DF3B8FE7804EA ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll
20:16:26.0163 4420 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll - ok
20:16:26.0167 4420 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
20:16:26.0167 4420 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
20:16:26.0171 4420 [ 000E69150815F9773DAD78BF2244326E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
20:16:26.0171 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
20:16:26.0175 4420 [ 3B1247FC09F82A1ECD1294EA13C79C3E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll
20:16:26.0175 4420 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll - ok
20:16:26.0179 4420 [ 072C64FE4977D1D7FECDB03AE7DFF45D ] C:\Windows\SysWOW64\gameux.dll
20:16:26.0179 4420 C:\Windows\SysWOW64\gameux.dll - ok
20:16:26.0183 4420 [ 701AAEA33113AA4BDB80BA4D6BD21996 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\47b69f0a1685d16970dd7a7cbeb6caae\System.Xml.ni.dll
20:16:26.0183 4420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\47b69f0a1685d16970dd7a7cbeb6caae\System.Xml.ni.dll - ok
20:16:26.0187 4420 [ 720F80691C90D389442A46256F466D71 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit64.dll
20:16:26.0187 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit64.dll - ok
20:16:26.0191 4420 [ C63CE5A402972896E10BCA107A720EA7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll
20:16:26.0191 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll - ok
20:16:26.0194 4420 [ B9C7F88D85369548A69F2EDD1A40441E ] C:\Windows\System32\hgprint.dll
20:16:26.0194 4420 C:\Windows\System32\hgprint.dll - ok
20:16:26.0198 4420 [ F168869067FDF08BC6291988173B5025 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
20:16:26.0198 4420 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe - ok
20:16:26.0202 4420 [ A7146C0C90D7BA0F251AC073E655D4D2 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
20:16:26.0202 4420 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
20:16:26.0207 4420 [ 9DEE004269DADEE715BD572410AA6076 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
20:16:26.0207 4420 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
20:16:26.0211 4420 [ 1BC8A289BFDE02DF0DA6C06689FA89C3 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll
20:16:26.0211 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll - ok
20:16:26.0215 4420 [ 9E0C5C8535613763CB1FAF257AF19393 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\45ec9c1e591cfab672027218ada2f061\System.Configuration.ni.dll
20:16:26.0215 4420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\45ec9c1e591cfab672027218ada2f061\System.Configuration.ni.dll - ok
20:16:26.0219 4420 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
20:16:26.0219 4420 C:\Windows\SysWOW64\msiltcfg.dll - ok
20:16:26.0223 4420 [ 5CEDF292F4573A1F36CC7DE598ECCFC7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
20:16:26.0223 4420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
20:16:26.0227 4420 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
20:16:26.0227 4420 C:\Windows\System32\msiltcfg.dll - ok
20:16:26.0231 4420 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
20:16:26.0231 4420 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
20:16:26.0235 4420 [ 37FF55162C2DE0EC40746E6AC8D5CEAD ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
20:16:26.0235 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
20:16:26.0239 4420 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
20:16:26.0239 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
20:16:26.0243 4420 [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\SysWOW64\UIAnimation.dll
20:16:26.0243 4420 C:\Windows\SysWOW64\UIAnimation.dll - ok
20:16:26.0246 4420 [ F79828CEF4F501F60F94B1CD00C47041 ] C:\Windows\SysWOW64\dot3api.dll
20:16:26.0246 4420 C:\Windows\SysWOW64\dot3api.dll - ok
20:16:26.0250 4420 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
20:16:26.0250 4420 C:\Windows\System32\dot3api.dll - ok
20:16:26.0253 4420 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
20:16:26.0253 4420 C:\Windows\System32\UIAnimation.dll - ok
20:16:26.0258 4420 [ 0D200BDE5E00860A7B5FC57169C27583 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll
20:16:26.0258 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll - ok
20:16:26.0262 4420 [ CF8D43B5CE132414CC0667E9C5EB5574 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll
20:16:26.0262 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll - ok
20:16:26.0266 4420 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\SysWOW64\wlanhlp.dll
20:16:26.0266 4420 C:\Windows\SysWOW64\wlanhlp.dll - ok
20:16:26.0268 4420 [ 9B4EBE1F290B635F7CEAE0661B3192A3 ] C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
20:16:26.0268 4420 C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe - ok
20:16:26.0272 4420 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
20:16:26.0272 4420 C:\Windows\System32\wlanhlp.dll - ok
20:16:26.0276 4420 [ 364B684A9F64C89C817D5763F5A7D836 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\chrome.dll
20:16:26.0276 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\chrome.dll - ok
20:16:26.0280 4420 [ 167A5A203B2F60EEAE8D224BF5021AA8 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll
20:16:26.0280 4420 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slviq64.dll - ok
20:16:26.0285 4420 [ 837115C004022C7C9317848645D714FD ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
20:16:26.0285 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
20:16:26.0289 4420 [ 841A005EC594A4D435A8D9E2615D0A52 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
20:16:26.0290 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
20:16:26.0294 4420 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
20:16:26.0294 4420 C:\Windows\SysWOW64\snmpapi.dll - ok
20:16:26.0298 4420 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
20:16:26.0298 4420 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
20:16:26.0302 4420 [ 6046C98205A35C2CEC330B15F88D4443 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
20:16:26.0302 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
20:16:26.0307 4420 [ 9ABFDABADA3F1A5F83590F336F40C941 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\icudt.dll
20:16:26.0307 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\icudt.dll - ok
20:16:26.0312 4420 [ 2B901BE56097B97F15D1DBE5F0ED063B ] C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll
20:16:26.0312 4420 C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll - ok
20:16:26.0316 4420 [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
20:16:26.0316 4420 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
20:16:26.0320 4420 [ 5BD85ABB12E057257D9D93C0838ABC0B ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
20:16:26.0320 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
20:16:26.0324 4420 [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
20:16:26.0325 4420 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
20:16:26.0329 4420 [ 72E6BB97A33137004FAC46CA43938F6C ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll
20:16:26.0329 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll - ok
20:16:26.0333 4420 [ CDE5E2EEF12D20FCFEC5A3CCA8DF9FAD ] C:\Program Files (x86)\Real\RealPlayer\realjbox.exe
20:16:26.0333 4420 C:\Program Files (x86)\Real\RealPlayer\realjbox.exe - ok
20:16:26.0338 4420 [ 08FE8BD61F783F03AAB590019A784798 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
20:16:26.0338 4420 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
20:16:26.0343 4420 [ E325D1DB76B13B33692D6318F67DC4EC ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll
20:16:26.0343 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll - ok
20:16:26.0347 4420 [ D666F929C5960162DD78385E370A31C4 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
20:16:26.0347 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
20:16:26.0351 4420 [ 132AB9DB9A673FC20EE2D786E8CEC447 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll
20:16:26.0351 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll - ok
20:16:26.0355 4420 [ 8F17CA7CD61AF4602FC88647BAEA9F54 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll
20:16:26.0355 4420 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll - ok
20:16:26.0359 4420 [ AB6E3DF509C6BD59062F685A40395C23 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
20:16:26.0359 4420 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
20:16:26.0362 4420 [ 1372E8E8FD066002131E3D509275E697 ] C:\Windows\SysWOW64\P2PGraph.dll
20:16:26.0362 4420 C:\Windows\SysWOW64\P2PGraph.dll - ok
20:16:26.0366 4420 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:16:26.0366 4420 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
20:16:26.0370 4420 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
20:16:26.0370 4420 C:\Windows\System32\P2PGraph.dll - ok
20:16:26.0373 4420 [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
20:16:26.0373 4420 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
20:16:26.0377 4420 [ 887E034C28F7F379AC7B1C498E708A26 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
20:16:26.0377 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
20:16:26.0381 4420 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
20:16:26.0381 4420 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
20:16:26.0385 4420 [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
20:16:26.0385 4420 C:\Windows\System32\browcli.dll - ok
20:16:26.0388 4420 [ 0DA799A261DED34749433028A4FB7933 ] C:\Windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll
20:16:26.0388 4420 C:\Windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll - ok
20:16:26.0392 4420 [ C68E175584E01B58328681A08BBCDDE4 ] C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll
20:16:26.0392 4420 C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll - ok
20:16:26.0396 4420 [ 7F87FEBFBCEE844A080A76C83A1B013F ] C:\Windows\SysWOW64\schedcli.dll
20:16:26.0396 4420 C:\Windows\SysWOW64\schedcli.dll - ok
20:16:26.0400 4420 [ DC553264A749613C331C8B989A1A9B2A ] C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.dll
20:16:26.0400 4420 C:\Program Files (x86)\Common Files\microsoft shared\VSTA\Pipeline.v10.0\AddInViews\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.dll - ok
20:16:26.0404 4420 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\SysWOW64\WWanAPI.dll
20:16:26.0404 4420 C:\Windows\SysWOW64\WWanAPI.dll - ok
20:16:26.0416 4420 [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
20:16:26.0416 4420 C:\Windows\System32\schedcli.dll - ok
20:16:26.0419 4420 [ 07DD9DCD1CC2840751A1F8772F3C0195 ] C:\Program Files\Microsoft Games\Chess\Chess.exe
20:16:26.0419 4420 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
20:16:26.0423 4420 [ 807B6562009E5858C93E1C0F435C0382 ] C:\Windows\SysWOW64\netbios.dll
20:16:26.0423 4420 C:\Windows\SysWOW64\netbios.dll - ok
20:16:26.0427 4420 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
20:16:26.0427 4420 C:\Windows\System32\WWanAPI.dll - ok
20:16:26.0431 4420 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
20:16:26.0431 4420 C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
20:16:26.0435 4420 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\SysWOW64\wwapi.dll
20:16:26.0435 4420 C:\Windows\SysWOW64\wwapi.dll - ok
20:16:26.0439 4420 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
20:16:26.0439 4420 C:\Windows\System32\wwapi.dll - ok
20:16:26.0443 4420 [ 99BD4B9B15A823A6C46B561329178122 ] C:\Windows\SysWOW64\QAGENT.DLL
20:16:26.0443 4420 C:\Windows\SysWOW64\QAGENT.DLL - ok
20:16:26.0446 4420 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
20:16:26.0446 4420 C:\Windows\System32\QAGENT.DLL - ok
20:16:26.0450 4420 [ B4B957E16F2013D78DD27FB3C1EE4B70 ] C:\Windows\System32\sdclt.exe
20:16:26.0450 4420 C:\Windows\System32\sdclt.exe - ok
20:16:26.0454 4420 [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\SysWOW64\mscms.dll
20:16:26.0454 4420 C:\Windows\SysWOW64\mscms.dll - ok
20:16:26.0458 4420 [ ED520370FA548DC614DE52D2EDD61F43 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
20:16:26.0458 4420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
20:16:26.0462 4420 [ 9BCB54208A456D67FB1B11CF0B428130 ] C:\Windows\SysWOW64\Wpc.dll
20:16:26.0462 4420 C:\Windows\SysWOW64\Wpc.dll - ok
20:16:26.0465 4420 [ 7E57B6D3D74CB9EF3055BA4E89F038D4 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx
20:16:26.0466 4420 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx - ok
20:16:26.0470 4420 [ 35A75C922D5827944CBD0F013186F0EF ] C:\Program Files\AVAST Software\Avast\defs\13012301\uiext.dll
20:16:26.0470 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\uiext.dll - ok
20:16:26.0474 4420 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
20:16:26.0474 4420 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
20:16:26.0477 4420 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
20:16:26.0478 4420 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
20:16:26.0481 4420 [ 6E50CFA46527B39015B750AAD161C5CC ] C:\Program Files\iPod\bin\iPodService.exe
20:16:26.0481 4420 C:\Program Files\iPod\bin\iPodService.exe - ok
20:16:26.0485 4420 [ 04DDAF3468330D91C6C49D94734AE61A ] C:\Windows\SysWOW64\ReAgent.dll
20:16:26.0485 4420 C:\Windows\SysWOW64\ReAgent.dll - ok
20:16:26.0489 4420 [ B2B73C20C1FC56336C5D4A27EBAD8FE2 ] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_UIDisplayWiMAX.dll
20:16:26.0489 4420 C:\Program Files\Intel\WiMAX\Bin\WiMAXCU_UIDisplayWiMAX.dll - ok
20:16:26.0493 4420 [ 854DF746499457C83F8CE2C4892F6A55 ] C:\Windows\System32\ReAgent.dll
20:16:26.0493 4420 C:\Windows\System32\ReAgent.dll - ok
20:16:26.0497 4420 [ EB5364944E67E9D88BD02958F40E14CD ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
20:16:26.0497 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll - ok
20:16:26.0501 4420 [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\d3dcompiler_43.dll
20:16:26.0501 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\d3dcompiler_43.dll - ok
20:16:26.0505 4420 [ 2CC285229D62D29E050ECC7AF834C31A ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll
20:16:26.0505 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppgooglenaclpluginchrome.dll - ok
20:16:26.0509 4420 [ 86E39E9161C3D930D93822F1563C280D ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\d3dx9_43.dll
20:16:26.0509 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\d3dx9_43.dll - ok
20:16:26.0513 4420 [ 9FE37D8C04C0F449714B19B03708B93D ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll
20:16:26.0513 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ffmpegsumo.dll - ok
20:16:26.0516 4420 [ ADC312A0C102713D41BC2924848577DE ] C:\Windows\SysWOW64\spp.dll
20:16:26.0516 4420 C:\Windows\SysWOW64\spp.dll - ok
20:16:26.0518 4420 [ 8044B0D9959B03894973BBD805CA4F36 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
20:16:26.0518 4420 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
20:16:26.0523 4420 [ 9AF2D062007C2C39BFC04679E13DC0C4 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
20:16:26.0523 4420 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
20:16:26.0527 4420 [ 3D66F83C21F7C73594B258139DAEF74D ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libglesv2.dll
20:16:26.0527 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libglesv2.dll - ok
20:16:26.0531 4420 [ D117EA73EB95604ECA34F87B7C7526FC ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libegl.dll
20:16:26.0531 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\libegl.dll - ok
20:16:26.0534 4420 [ 57193858CCEA03BD038FCFE7E396AEC4 ] C:\Windows\System32\spp.dll
20:16:26.0534 4420 C:\Windows\System32\spp.dll - ok
20:16:26.0538 4420 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
20:16:26.0538 4420 C:\Windows\SysWOW64\dxva2.dll - ok
20:16:26.0542 4420 [ 9D9F66B5411540E942436194194D9016 ] C:\Windows\System32\sdengin2.dll
20:16:26.0542 4420 C:\Windows\System32\sdengin2.dll - ok
20:16:26.0546 4420 [ 3DE43BFDAF3F8979699650202AA18B12 ] C:\Windows\SysWOW64\msmpeg2vdec.dll
20:16:26.0546 4420 C:\Windows\SysWOW64\msmpeg2vdec.dll - ok
20:16:26.0550 4420 [ 04F67570891E3F064408E7D1A9F85687 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
20:16:26.0550 4420 C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll - ok
20:16:26.0553 4420 [ AA3B91B70E79BCE70AD3B190789B9574 ] C:\Windows\SysWOW64\drttransport.dll
20:16:26.0553 4420 C:\Windows\SysWOW64\drttransport.dll - ok
20:16:26.0558 4420 [ FF7E3A2EE80ADEE757021E967BBB77F0 ] C:\Windows\SysWOW64\evr.dll
20:16:26.0558 4420 C:\Windows\SysWOW64\evr.dll - ok
20:16:26.0562 4420 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
20:16:26.0562 4420 C:\Windows\System32\drttransport.dll - ok
20:16:26.0566 4420 [ EE29FCC244C8033E2F748D863DCBF378 ] C:\Windows\SysWOW64\drt.dll
20:16:26.0566 4420 C:\Windows\SysWOW64\drt.dll - ok
20:16:26.0570 4420 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
20:16:26.0570 4420 C:\Windows\System32\drt.dll - ok
20:16:26.0574 4420 [ 9DA78C1F1F15CE5424EDF18CE4728C01 ] C:\Windows\SysWOW64\wmpps.dll
20:16:26.0574 4420 C:\Windows\SysWOW64\wmpps.dll - ok
20:16:26.0577 4420 [ 7B1B69554D86DC0A237642A01246663B ] C:\Windows\SysWOW64\wmpmde.dll
20:16:26.0577 4420 C:\Windows\SysWOW64\wmpmde.dll - ok
20:16:26.0581 4420 [ 0A7B01235B1CBFA387B04A91E2F2B7D0 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
20:16:26.0581 4420 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll - ok
20:16:26.0585 4420 [ DE701BA817285375789D9C56C216CE21 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
20:16:26.0585 4420 C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll - ok
20:16:26.0589 4420 [ AB403572A5C6D077769005B859BBD3CA ] C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
20:16:26.0590 4420 C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll - ok
20:16:26.0593 4420 [ 0A7B01235B1CBFA387B04A91E2F2B7D0 ] C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
20:16:26.0594 4420 C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll - ok
20:16:26.0597 4420 [ 52799EAD792B0E9AE7FD4BA5BD18FE5C ] C:\Windows\SysWOW64\wbem\WMIADAP.exe
20:16:26.0597 4420 C:\Windows\SysWOW64\wbem\WMIADAP.exe - ok
20:16:26.0601 4420 [ 7E2B763CF671ADB558D5F7110889D469 ] C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
20:16:26.0601 4420 C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL - ok
20:16:26.0605 4420 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:16:26.0605 4420 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
20:16:26.0608 4420 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
20:16:26.0608 4420 C:\Windows\System32\wbem\WMIADAP.exe - ok
20:16:26.0612 4420 [ 7B882AEBC5F6DBEA4E0361C0FC3E36D4 ] C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
20:16:26.0612 4420 C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL - ok
20:16:26.0616 4420 [ DE76461D3E5EBE1C762967D21C17B8C0 ] C:\Windows\SysWOW64\wmdrmdev.dll
20:16:26.0616 4420 C:\Windows\SysWOW64\wmdrmdev.dll - ok
20:16:26.0619 4420 [ 84CBD6F6AA7EE399FBDC265B8EA64474 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
20:16:26.0619 4420 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - ok
20:16:26.0623 4420 [ 529879612A7FAE235914E3AA6A9A669C ] C:\Windows\SysWOW64\loadperf.dll
20:16:26.0623 4420 C:\Windows\SysWOW64\loadperf.dll - ok
20:16:26.0627 4420 [ 302B93586DFA480545C320EBA5BA6572 ] C:\Windows\System32\wmdrmdev.dll
20:16:26.0628 4420 C:\Windows\System32\wmdrmdev.dll - ok
20:16:26.0631 4420 [ 586FDC4E02623EE228EC35B9604AE5F2 ] C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
20:16:26.0631 4420 C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll - ok
20:16:26.0635 4420 [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\SysWOW64\drmv2clt.dll
20:16:26.0635 4420 C:\Windows\SysWOW64\drmv2clt.dll - ok
20:16:26.0639 4420 [ 4E8238CA1046D97636E63ABF173772CD ] C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
20:16:26.0639 4420 C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll - ok
20:16:26.0643 4420 [ 56B73E1ADFD768E80369C4A2E68F35DF ] C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
20:16:26.0643 4420 C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll - ok
20:16:26.0646 4420 [ 73CB14F8CDE1BBF1A6A40919E3FFC84F ] C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
20:16:26.0646 4420 C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll - ok
20:16:26.0651 4420 [ 9967BCE6CF289223ADC2FBF311C6A78F ] C:\Windows\SysWOW64\wmp.dll
20:16:26.0651 4420 C:\Windows\SysWOW64\wmp.dll - ok
20:16:26.0655 4420 [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
20:16:26.0655 4420 C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
20:16:26.0659 4420 [ C1680C34DE8A405C8829AB93236576FD ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
20:16:26.0659 4420 C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
20:16:26.0663 4420 [ 86D9244AFB81D684C25103A72EBE3252 ] C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll
20:16:26.0663 4420 C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll - ok
20:16:26.0667 4420 [ 215BBC07AAD6CB4772D2A1CA5E048C37 ] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
20:16:26.0667 4420 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll - ok
20:16:26.0671 4420 [ 8F323545429C457FE6F8CED13E62AB3D ] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
20:16:26.0671 4420 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll - ok
20:16:26.0675 4420 [ 1F0D662B7BE2AB2D3A7E2C6A44A02BC1 ] C:\Users\Kat\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
20:16:26.0675 4420 C:\Users\Kat\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - ok
20:16:26.0679 4420 [ 96059D94D053961A791D70110CC81055 ] C:\Users\Kat\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll
20:16:26.0679 4420 C:\Users\Kat\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll - ok
20:16:26.0683 4420 [ 9AC863FD5976316C29D4CB5E4C9EFD9C ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll
20:16:26.0683 4420 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll - ok
20:16:26.0686 4420 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
20:16:26.0686 4420 C:\Windows\System32\msvcr100_clr0400.dll - ok
20:16:26.0690 4420 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
20:16:26.0690 4420 C:\Windows\System32\drmv2clt.dll - ok
20:16:26.0694 4420 [ 139677BB4CA72DBB99FDF80E74FA0B95 ] C:\Program Files\Windows Media Player\WMPMediaSharing.dll
20:16:26.0694 4420 C:\Program Files\Windows Media Player\WMPMediaSharing.dll - ok
20:16:26.0697 4420 [ FBC18BEE67E9179F02E7894EB548F18D ] C:\Windows\SysWOW64\en-US\svchost.exe.mui
20:16:26.0697 4420 C:\Windows\SysWOW64\en-US\svchost.exe.mui - ok
20:16:26.0701 4420 [ 9BF7BDBD1EC69D44EA8D9BE222FC93BB ] C:\Windows\SysWOW64\sxshared.dll
20:16:26.0701 4420 C:\Windows\SysWOW64\sxshared.dll - ok
20:16:26.0704 4420 [ DD7596A0BC60AFFCCEB07E64F876FB59 ] C:\Windows\SysWOW64\sxproxy.dll
20:16:26.0704 4420 C:\Windows\SysWOW64\sxproxy.dll - ok
20:16:26.0708 4420 [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
20:16:26.0708 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
20:16:26.0713 4420 [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
20:16:26.0713 4420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
20:16:26.0717 4420 [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
20:16:26.0717 4420 C:\Windows\System32\wmp.dll - ok
20:16:26.0720 4420 [ FA05241C7BC7EBCC36AF78299D0D37FE ] C:\Windows\SysWOW64\wmploc.DLL
20:16:26.0720 4420 C:\Windows\SysWOW64\wmploc.DLL - ok
20:16:26.0724 4420 [ 9013599B12923A45C029C34E8D2211AC ] C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
20:16:26.0724 4420 C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll - ok
20:16:26.0728 4420 [ F47C819863235B8C4E2A2E32BA81AA74 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
20:16:26.0728 4420 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
20:16:26.0732 4420 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
20:16:26.0732 4420 C:\Windows\System32\loadperf.dll - ok
20:16:26.0736 4420 [ E7FBBF3193E248EE05CBC9562810C44A ] C:\Windows\System32\sxshared.dll
20:16:26.0737 4420 C:\Windows\System32\sxshared.dll - ok
20:16:26.0741 4420 [ 55BA6C87FFB2C478E1C9351FA631CC1A ] C:\Windows\System32\sxproxy.dll
20:16:26.0741 4420 C:\Windows\System32\sxproxy.dll - ok
20:16:26.0746 4420 [ 6814300419C92B2B99CE4AAE4D1BA17A ] C:\Windows\SysWOW64\upnp.dll
20:16:26.0746 4420 C:\Windows\SysWOW64\upnp.dll - ok
20:16:26.0753 4420 [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
20:16:26.0753 4420 C:\Windows\System32\upnp.dll - ok
20:16:26.0757 4420 [ 2D444C361F758D6CC4B2F51655ECF528 ] C:\Windows\System32\wmpps.dll
20:16:26.0757 4420 C:\Windows\System32\wmpps.dll - ok
20:16:26.0760 4420 [ DD37622A478EDFE1D43DF561A19C02DD ] C:\Windows\System32\wmpmde.dll
20:16:26.0760 4420 C:\Windows\System32\wmpmde.dll - ok
20:16:26.0768 4420 [ 62D6C0C69ADFB00C3EB9A0CC81F39EE6 ] C:\Windows\SysWOW64\WinSATAPI.dll
20:16:26.0768 4420 C:\Windows\SysWOW64\WinSATAPI.dll - ok
20:16:26.0770 4420 [ EC7EB038EA11E0D04214D143E0CB6002 ] C:\Windows\System32\WinSATAPI.dll
20:16:26.0770 4420 C:\Windows\System32\WinSATAPI.dll - ok
20:16:26.0775 4420 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
20:16:26.0775 4420 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
20:16:26.0779 4420 [ 25FC9E3237D9DC8F7511AF13E70C49BC ] C:\Windows\SysWOW64\MSMPEG2ENC.DLL
20:16:26.0779 4420 C:\Windows\SysWOW64\MSMPEG2ENC.DLL - ok
20:16:26.0782 4420 [ F175E53C7C3B25A9029A131FB578B155 ] C:\Windows\SysWOW64\wscinterop.dll
20:16:26.0782 4420 C:\Windows\SysWOW64\wscinterop.dll - ok
20:16:26.0786 4420 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
20:16:26.0786 4420 C:\Windows\System32\wscinterop.dll - ok
20:16:26.0789 4420 [ 2BF5A09197251572A74C426EE3E35117 ] C:\Windows\System32\MSMPEG2ENC.DLL
20:16:26.0789 4420 C:\Windows\System32\MSMPEG2ENC.DLL - ok
20:16:26.0793 4420 [ 85409DCE247D97E4D6958B7C5916BE4A ] C:\Windows\System32\wscapi.dll
20:16:26.0793 4420 C:\Windows\System32\wscapi.dll - ok
20:16:26.0796 4420 [ 7FD5532C142DB6C9CC47AA4DCF71FDEC ] C:\Windows\SysWOW64\wscui.cpl
20:16:26.0796 4420 C:\Windows\SysWOW64\wscui.cpl - ok
20:16:26.0800 4420 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
20:16:26.0800 4420 C:\Windows\System32\devenum.dll - ok
20:16:26.0803 4420 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
20:16:26.0803 4420 C:\Windows\System32\wscui.cpl - ok
20:16:26.0808 4420 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
20:16:26.0808 4420 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
20:16:26.0811 4420 [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\SysWOW64\upnphost.dll
20:16:26.0811 4420 C:\Windows\SysWOW64\upnphost.dll - ok
20:16:26.0815 4420 [ 7F32D4C47A50E7223491E8FB9359907D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:16:26.0815 4420 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
20:16:26.0819 4420 [ C3626E674990EF003B6C94807E82B501 ] C:\Windows\System32\werconcpl.dll
20:16:26.0819 4420 C:\Windows\System32\werconcpl.dll - ok
20:16:26.0822 4420 [ 57CE9D8350B1DD76EEC596C423C3C0BC ] C:\Windows\SysWOW64\hcproviders.dll
20:16:26.0822 4420 C:\Windows\SysWOW64\hcproviders.dll - ok
20:16:26.0826 4420 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
20:16:26.0826 4420 C:\Windows\System32\hcproviders.dll - ok
20:16:26.0830 4420 [ 2B73088CC2CA757A172B425C9398E5BC ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
20:16:26.0830 4420 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe - ok
20:16:26.0834 4420 [ AAA0B3B32484156599B3BE5E3B88528A ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll
20:16:26.0834 4420 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll - ok
20:16:26.0837 4420 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
20:16:26.0837 4420 C:\Windows\SysWOW64\drprov.dll - ok
20:16:26.0841 4420 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
20:16:26.0841 4420 C:\Windows\System32\drprov.dll - ok
20:16:26.0844 4420 [ 06018B349666595970E15397E78A0D77 ] C:\Windows\SysWOW64\ntlanman.dll
20:16:26.0844 4420 C:\Windows\SysWOW64\ntlanman.dll - ok
20:16:26.0848 4420 [ 7273921B6DDFEFF3A8567B9800C5673A ] C:\Windows\System32\ntlanman.dll
20:16:26.0848 4420 C:\Windows\System32\ntlanman.dll - ok
20:16:26.0852 4420 [ 7FB5696EBCB8131AD2E2DEFE5F19C4B5 ] C:\Windows\SysWOW64\davclnt.dll
20:16:26.0852 4420 C:\Windows\SysWOW64\davclnt.dll - ok
20:16:26.0855 4420 [ 73A1430ABA9119A2C25892EF9C3CB7A1 ] C:\Windows\System32\davclnt.dll
20:16:26.0856 4420 C:\Windows\System32\davclnt.dll - ok
20:16:26.0859 4420 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
20:16:26.0860 4420 C:\Windows\SysWOW64\davhlpr.dll - ok
20:16:26.0863 4420 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
20:16:26.0864 4420 C:\Windows\System32\davhlpr.dll - ok
20:16:26.0867 4420 [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\Windows\SysWOW64\udhisapi.dll
20:16:26.0867 4420 C:\Windows\SysWOW64\udhisapi.dll - ok
20:16:26.0871 4420 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
20:16:26.0871 4420 C:\Windows\System32\udhisapi.dll - ok
20:16:26.0876 4420 [ 0BDF121EBD33DA510BD82051C795E199 ] C:\Windows\SysWOW64\NlsData0003.dll
20:16:26.0876 4420 C:\Windows\SysWOW64\NlsData0003.dll - ok
20:16:26.0879 4420 [ 28943370E3AF1D34D77D22911F891213 ] C:\Windows\System32\NlsData0003.dll
20:16:26.0879 4420 C:\Windows\System32\NlsData0003.dll - ok
20:16:26.0883 4420 [ E08BD8A403E169971B499E59203B0FB8 ] C:\Windows\SysWOW64\NlsLexicons0003.dll
20:16:26.0883 4420 C:\Windows\SysWOW64\NlsLexicons0003.dll - ok
20:16:26.0887 4420 [ 4F0429B763D05E721C0DD50693B7EFBE ] C:\Windows\System32\NlsLexicons0003.dll
20:16:26.0887 4420 C:\Windows\System32\NlsLexicons0003.dll - ok
20:16:26.0890 4420 [ 58A0DAEAF0F340441875825E50CB027A ] C:\Windows\System32\en-US\sppsvc.exe.mui
20:16:26.0890 4420 C:\Windows\System32\en-US\sppsvc.exe.mui - ok
20:16:26.0894 4420 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
20:16:26.0894 4420 C:\Windows\System32\drivers\spsys.sys - ok
20:16:26.0899 4420 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
20:16:26.0899 4420 C:\Program Files\Windows Defender\MpSvc.dll - ok
20:16:26.0902 4420 [ 2898035F522BA2989BBA8B9CFB020FD2 ] C:\Program Files\AVAST Software\Avast\defs\13012301\aspColl.dll
20:16:26.0903 4420 C:\Program Files\AVAST Software\Avast\defs\13012301\aspColl.dll - ok
20:16:26.0908 4420 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
20:16:26.0908 4420 C:\Program Files\Windows Defender\MpClient.dll - ok
20:16:26.0911 4420 [ B7BDBEBC74105E68A3093073C30E3498 ] C:\Windows\System32\sppwinob.dll
20:16:26.0911 4420 C:\Windows\System32\sppwinob.dll - ok
20:16:26.0915 4420 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
20:16:26.0915 4420 C:\Windows\System32\wuaueng.dll - ok
20:16:26.0918 4420 [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\SysWOW64\mspatcha.dll
20:16:26.0918 4420 C:\Windows\SysWOW64\mspatcha.dll - ok
20:16:26.0922 4420 [ 2F530C1448D4984F2A3F995895F2D532 ] C:\Windows\System32\sppobjs.dll
20:16:26.0922 4420 C:\Windows\System32\sppobjs.dll - ok
20:16:26.0926 4420 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
20:16:26.0926 4420 C:\Windows\System32\mspatcha.dll - ok
20:16:26.0930 4420 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
20:16:26.0930 4420 C:\Windows\System32\wups2.dll - ok
20:16:26.0933 4420 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
20:16:26.0933 4420 C:\Program Files\Windows Defender\MpRTP.dll - ok
20:16:26.0937 4420 [ 8D47D01378347889A662D54037A988CC ] C:\Windows\SysWOW64\tdh.dll
20:16:26.0937 4420 C:\Windows\SysWOW64\tdh.dll - ok
20:16:26.0940 4420 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
20:16:26.0940 4420 C:\Windows\System32\tdh.dll - ok
20:16:26.0944 4420 [ 30042487E83BF3B518DD9B92A2F52F42 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BDA823E-76D2-418D-8FC4-AD8749C85B69}\mpengine.dll
20:16:26.0944 4420 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BDA823E-76D2-418D-8FC4-AD8749C85B69}\mpengine.dll - ok
20:16:26.0948 4420 [ 4C1A82E9362DF1282355FBA3037DF0C4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BDA823E-76D2-418D-8FC4-AD8749C85B69}\mpasbase.vdm
20:16:26.0948 4420 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BDA823E-76D2-418D-8FC4-AD8749C85B69}\mpasbase.vdm - ok
20:16:26.0951 4420 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
20:16:26.0952 4420 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
20:16:26.0955 4420 [ 4E5C55B7DAF60B01D8586C8E068EB723 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BDA823E-76D2-418D-8FC4-AD8749C85B69}\mpasdlta.vdm
20:16:26.0955 4420 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2BDA823E-76D2-418D-8FC4-AD8749C85B69}\mpasdlta.vdm - ok
20:16:26.0959 4420 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
20:16:26.0959 4420 C:\Program Files\Windows Defender\MsMpLics.dll - ok
20:16:26.0963 4420 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
20:16:26.0963 4420 C:\Windows\System32\wscisvif.dll - ok
20:16:26.0967 4420 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
20:16:26.0967 4420 C:\Windows\System32\wscproxystub.dll - ok
20:16:26.0971 4420 [ 2C16648A12999AE69A9EBF41974B0BA2 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:16:26.0971 4420 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
20:16:26.0975 4420 [ D480C9220BFE667DE65A46CDE80EA7E9 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
20:16:26.0975 4420 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll - ok
20:16:26.0979 4420 [ 122F89E0905FC656D56F65CD7A2E9B4D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
20:16:26.0979 4420 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll - ok
20:16:26.0983 4420 [ 816FA57475CE5032E063BF69BFCD4C85 ] C:\Windows\SysWOW64\NlsData0021.dll
20:16:26.0983 4420 C:\Windows\SysWOW64\NlsData0021.dll - ok
20:16:26.0987 4420 [ A42FBC61385A5F5F444209EE94D89F27 ] C:\Windows\System32\NlsData0021.dll
20:16:26.0987 4420 C:\Windows\System32\NlsData0021.dll - ok
20:16:26.0991 4420 [ 5003ADEC6FF342D5C0BBAB94B76FE5E0 ] C:\Windows\SysWOW64\NlsLexicons0021.dll
20:16:26.0991 4420 C:\Windows\SysWOW64\NlsLexicons0021.dll - ok
20:16:26.0994 4420 [ E5283AFD7590ECC37F8D62C4D6F1FB48 ] C:\Windows\System32\NlsLexicons0021.dll
20:16:26.0994 4420 C:\Windows\System32\NlsLexicons0021.dll - ok
20:16:26.0998 4420 [ A80E96E4D060B4073785C6A80A9F070E ] C:\Windows\SysWOW64\fms.dll
20:16:26.0998 4420 C:\Windows\SysWOW64\fms.dll - ok
20:16:27.0001 4420 [ 5B37F7EC6940FEE5DAB6098CB49FCB3D ] C:\Windows\SysWOW64\sud.dll
20:16:27.0001 4420 C:\Windows\SysWOW64\sud.dll - ok
20:16:27.0005 4420 [ 1BE028941A8A77932C2948AB780046F6 ] C:\Windows\System32\WFS.exe
20:16:27.0005 4420 C:\Windows\System32\WFS.exe - ok
20:16:27.0009 4420 [ 53DA0477158774940C7FB45AC70645AA ] C:\Windows\SysWOW64\clb.dll
20:16:27.0009 4420 C:\Windows\SysWOW64\clb.dll - ok
20:16:27.0012 4420 [ 7BB83E451AF929C0A07EE0D22224287C ] C:\Windows\SysWOW64\wdc.dll
20:16:27.0012 4420 C:\Windows\SysWOW64\wdc.dll - ok
20:16:27.0016 4420 [ 753F8EC778F0591D896EDC56FA0892AB ] C:\Windows\SysWOW64\desk.cpl
20:16:27.0016 4420 C:\Windows\SysWOW64\desk.cpl - ok
20:16:27.0019 4420 [ 4071D132E66ACDA3776F1FEAD19E6E01 ] C:\Windows\SysWOW64\vbscript.dll
20:16:27.0019 4420 C:\Windows\SysWOW64\vbscript.dll - ok
20:16:27.0021 4420 [ 2E2C17DF779AD51A7209754685B010A1 ] C:\Windows\SysWOW64\apss.dll
20:16:27.0021 4420 C:\Windows\SysWOW64\apss.dll - ok
20:16:27.0025 4420 [ F93C84B307573327779AE0DA41115957 ] C:\Windows\SysWOW64\ulib.dll
20:16:27.0025 4420 C:\Windows\SysWOW64\ulib.dll - ok
20:16:27.0028 4420 [ ADEE99F825F8C247C37541EA102CA975 ] C:\Windows\SysWOW64\onex.dll
20:16:27.0028 4420 C:\Windows\SysWOW64\onex.dll - ok
20:16:27.0032 4420 [ 7D44EE5DBCC3A6E90EB60EDF72B66D99 ] C:\Windows\SysWOW64\apds.dll
20:16:27.0032 4420 C:\Windows\SysWOW64\apds.dll - ok
20:16:27.0035 4420 [ 21B62252D283FBF75A5F67849EBD9B2E ] C:\Windows\System32\WFSR.dll
20:16:27.0035 4420 C:\Windows\System32\WFSR.dll - ok
20:16:27.0039 4420 [ 20F8D71759AB3A36DD2F1F5D42F40DDE ] C:\Windows\SysWOW64\msra.exe
20:16:27.0039 4420 C:\Windows\SysWOW64\msra.exe - ok
20:16:27.0042 4420 [ 432B85561AEEC4DCE1117F8DDC55F45B ] C:\Windows\SysWOW64\intl.cpl
20:16:27.0042 4420 C:\Windows\SysWOW64\intl.cpl - ok
20:16:27.0045 4420 [ D72282F706C46C7CC74093FC92C09665 ] C:\Windows\SysWOW64\main.cpl
20:16:27.0045 4420 C:\Windows\SysWOW64\main.cpl - ok
20:16:27.0049 4420 [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\SysWOW64\ubpm.dll
20:16:27.0049 4420 C:\Windows\SysWOW64\ubpm.dll - ok
20:16:27.0052 4420 [ 0012F729B30FB6278F08516B9E449FDC ] C:\Windows\SysWOW64\wuapp.exe
20:16:27.0052 4420 C:\Windows\SysWOW64\wuapp.exe - ok
20:16:27.0056 4420 [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\SysWOW64\pku2u.dll
20:16:27.0056 4420 C:\Windows\SysWOW64\pku2u.dll - ok
20:16:27.0059 4420 [ 04C20DBC09884A27F65EBD721B42F073 ] C:\Windows\SysWOW64\mssha.dll
20:16:27.0059 4420 C:\Windows\SysWOW64\mssha.dll - ok
20:16:27.0063 4420 [ DAB5808E0C26740577AE67878A87136E ] C:\Windows\SysWOW64\aclui.dll
20:16:27.0063 4420 C:\Windows\SysWOW64\aclui.dll - ok
20:16:27.0066 4420 [ A739793F1A4F04B66E2444E90AE9E694 ] C:\Windows\SysWOW64\TSpkg.dll
20:16:27.0066 4420 C:\Windows\SysWOW64\TSpkg.dll - ok
20:16:27.0070 4420 [ 34F9C8CFC697C50952997E56C8D97BF5 ] C:\Windows\SysWOW64\mmsys.cpl
20:16:27.0070 4420 C:\Windows\SysWOW64\mmsys.cpl - ok
20:16:27.0073 4420 [ 701E1E51BD75DF0F3B4709F81E61F6CC ] C:\Windows\SysWOW64\Vault.dll
20:16:27.0073 4420 C:\Windows\SysWOW64\Vault.dll - ok
20:16:27.0077 4420 [ 6FC137CFD70DDEFD2DBD5906EF487564 ] C:\Windows\SysWOW64\mssvp.dll
20:16:27.0077 4420 C:\Windows\SysWOW64\mssvp.dll - ok
20:16:27.0081 4420 [ 79DE9216B4800813CC3EFA8048F7B038 ] C:\Windows\SysWOW64\mmres.dll
20:16:27.0081 4420 C:\Windows\SysWOW64\mmres.dll - ok
20:16:27.0084 4420 [ 9548DE32CA6857A51950563386EBB382 ] C:\Windows\SysWOW64\appwiz.cpl
20:16:27.0084 4420 C:\Windows\SysWOW64\appwiz.cpl - ok
20:16:27.0088 4420 [ 49358A80DED5A4F564A203C0E0CAB253 ] C:\Windows\SysWOW64\cscdll.dll
20:16:27.0088 4420 C:\Windows\SysWOW64\cscdll.dll - ok
20:16:27.0092 4420 [ 69A1D7C29CFF256BECBD4E39E2159636 ] C:\Windows\SysWOW64\scrrun.dll
20:16:27.0092 4420 C:\Windows\SysWOW64\scrrun.dll - ok
20:16:27.0096 4420 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
20:16:27.0096 4420 C:\Windows\System32\icaapi.dll - ok
20:16:27.0100 4420 [ 0DF34F7EF3BD18DC00C3E03E6E1CA315 ] C:\Windows\SysWOW64\WsmRes.dll
20:16:27.0100 4420 C:\Windows\SysWOW64\WsmRes.dll - ok
20:16:27.0103 4420 [ 274992D0945889A6B56D0E1BD4288A6E ] C:\Windows\SysWOW64\psbase.dll
20:16:27.0103 4420 C:\Windows\SysWOW64\psbase.dll - ok
20:16:27.0106 4420 [ E8F6851E4600CD3674422487EE240941 ] C:\Windows\SysWOW64\wshext.dll
20:16:27.0106 4420 C:\Windows\SysWOW64\wshext.dll - ok
20:16:27.0111 4420 [ C4F5D3901D1B41D602DDC196E0B95B51 ] C:\Windows\SysWOW64\WsmSvc.dll
20:16:27.0111 4420 C:\Windows\SysWOW64\WsmSvc.dll - ok
20:16:27.0114 4420 [ 26073302DAEA83CC5B944C546D6B47D2 ] C:\Windows\SysWOW64\scecli.dll
20:16:27.0114 4420 C:\Windows\SysWOW64\scecli.dll - ok
20:16:27.0118 4420 [ 9FA14FFC9150B48C5D582DCF6A79D6F2 ] C:\Windows\SysWOW64\EAPQEC.DLL
20:16:27.0118 4420 C:\Windows\SysWOW64\EAPQEC.DLL - ok
20:16:27.0121 4420 [ 8D34930EC77FE466883F3C791100EA82 ] C:\Windows\SysWOW64\syncui.dll
20:16:27.0121 4420 C:\Windows\SysWOW64\syncui.dll - ok
20:16:27.0125 4420 [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\SysWOW64\keyiso.dll
20:16:27.0125 4420 C:\Windows\SysWOW64\keyiso.dll - ok
20:16:27.0129 4420 [ F5F9CB23EDBF2C77AAE5A2A2FC4FC333 ] C:\Windows\SysWOW64\devmgr.dll
20:16:27.0129 4420 C:\Windows\SysWOW64\devmgr.dll - ok
20:16:27.0133 4420 [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\SysWOW64\winbio.dll
20:16:27.0133 4420 C:\Windows\SysWOW64\winbio.dll - ok
20:16:27.0136 4420 [ 53F5F7117AE4A0ECD60E1B5C41BAF2CD ] C:\Windows\SysWOW64\mydocs.dll
20:16:27.0136 4420 C:\Windows\SysWOW64\mydocs.dll - ok
20:16:27.0140 4420 [ 44884DF14DA8961092CC250E6AC48D14 ] C:\Windows\System32\wpccpl.dll
20:16:27.0140 4420 C:\Windows\System32\wpccpl.dll - ok
20:16:27.0143 4420 [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\SysWOW64\aeevts.dll
20:16:27.0143 4420 C:\Windows\SysWOW64\aeevts.dll - ok
20:16:27.0147 4420 [ 5A8BF4E8810541C23F4067536FB48CA3 ] C:\Windows\SysWOW64\vss_ps.dll
20:16:27.0147 4420 C:\Windows\SysWOW64\vss_ps.dll - ok
20:16:27.0151 4420 [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\SysWOW64\UXInit.dll
20:16:27.0151 4420 C:\Windows\SysWOW64\UXInit.dll - ok
20:16:27.0154 4420 [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\SysWOW64\comres.dll
20:16:27.0154 4420 C:\Windows\SysWOW64\comres.dll - ok
20:16:27.0158 4420 [ 1C9CDBDF895A556E66AEBFD93A36B536 ] C:\Windows\SysWOW64\scesrv.dll
20:16:27.0158 4420 C:\Windows\SysWOW64\scesrv.dll - ok
20:16:27.0162 4420 [ 4739F795BEC2F1170B7B7D671E28E0A2 ] C:\Windows\SysWOW64\regapi.dll
20:16:27.0162 4420 C:\Windows\SysWOW64\regapi.dll - ok
20:16:27.0165 4420 [ EEEED2431A88E4C36B0A771137BE1086 ] C:\Windows\SysWOW64\tsgqec.dll
20:16:27.0165 4420 C:\Windows\SysWOW64\tsgqec.dll - ok
20:16:27.0169 4420 [ 5F16C07CFA97228DB5AC98D61D770827 ] C:\Windows\SysWOW64\imapi2.dll
20:16:27.0169 4420 C:\Windows\SysWOW64\imapi2.dll - ok
20:16:27.0172 4420 [ 234A775E4BE3D63FC28003AE7B632D0D ] C:\Windows\SysWOW64\dfrgui.exe
20:16:27.0172 4420 C:\Windows\SysWOW64\dfrgui.exe - ok
20:16:27.0176 4420 [ E290E3FDF645DF29D00D6368B9127E30 ] C:\Windows\SysWOW64\msfeeds.dll
20:16:27.0176 4420 C:\Windows\SysWOW64\msfeeds.dll - ok
20:16:27.0180 4420 [ DE6652B4B4E9795B53142959FD02A4EB ] C:\Windows\SysWOW64\inetcpl.cpl
20:16:27.0180 4420 C:\Windows\SysWOW64\inetcpl.cpl - ok
20:16:27.0183 4420 [ FA849121BF8384BC9F9F93710616B134 ] C:\Windows\SysWOW64\msident.dll
20:16:27.0183 4420 C:\Windows\SysWOW64\msident.dll - ok
20:16:27.0187 4420 [ 8F55CE568C543D5ADF45C409D16718FC ] C:\Windows\SysWOW64\SessEnv.dll
20:16:27.0187 4420 C:\Windows\SysWOW64\SessEnv.dll - ok
20:16:27.0191 4420 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
20:16:27.0191 4420 C:\Windows\SysWOW64\odbcint.dll - ok
20:16:27.0194 4420 [ 9CB30A4E79BE55751312991DE827F6ED ] C:\Windows\SysWOW64\INETRES.dll
20:16:27.0194 4420 C:\Windows\SysWOW64\INETRES.dll - ok
20:16:27.0198 4420 [ 4FE6AA4422BEC5DC3995051C670FFB26 ] C:\Windows\SysWOW64\advpack.dll
20:16:27.0198 4420 C:\Windows\SysWOW64\advpack.dll - ok
20:16:27.0202 4420 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
20:16:27.0202 4420 C:\Windows\System32\security.dll - ok
20:16:27.0206 4420 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
20:16:27.0206 4420 C:\Windows\System32\bitsigd.dll - ok
20:16:27.0212 4420 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
20:16:27.0212 4420 C:\Windows\System32\wbem\wmipcima.dll - ok
20:16:27.0217 4420 [ C1AE600C554A0EBC6CD211541FA6815F ] C:\Windows\SysWOW64\netjoin.dll
20:16:27.0217 4420 C:\Windows\SysWOW64\netjoin.dll - ok
20:16:27.0219 4420 [ BA25800813148F910A600B6DE1F78B2B ] C:\Windows\SysWOW64\themeui.dll
20:16:27.0219 4420 C:\Windows\SysWOW64\themeui.dll - ok
20:16:27.0223 4420 [ 7F68E4752E3B9A41D75A556A7A24201A ] C:\Windows\SysWOW64\fontsub.dll
20:16:27.0223 4420 C:\Windows\SysWOW64\fontsub.dll - ok
20:16:27.0227 4420 [ 2765B91A9EE086C20B451E80D2709CC9 ] C:\Windows\SysWOW64\DHCPQEC.DLL
20:16:27.0227 4420 C:\Windows\SysWOW64\DHCPQEC.DLL - ok
20:16:27.0231 4420 [ 52FC6799B30366814D1CE6E5C2E28875 ] C:\Windows\SysWOW64\ntprint.dll
20:16:27.0231 4420 C:\Windows\SysWOW64\ntprint.dll - ok
20:16:27.0235 4420 [ EF642E6825015405E325105D215093FF ] C:\Windows\System32\DiagCpl.dll
20:16:27.0236 4420 C:\Windows\System32\DiagCpl.dll - ok
20:16:27.0239 4420 [ B9ADA43CB3FFAF6669D34F432AA44A0F ] C:\Windows\SysWOW64\pstorec.dll
20:16:27.0239 4420 C:\Windows\SysWOW64\pstorec.dll - ok
20:16:27.0244 4420 [ 0A866897039E42DF8080BE5DD83BC8E0 ] C:\Windows\SysWOW64\jscript.dll
20:16:27.0244 4420 C:\Windows\SysWOW64\jscript.dll - ok
20:16:27.0248 4420 [ 60CC965A89E2072EBD26D63D5E1E1D18 ] C:\Windows\SysWOW64\dwmcore.dll
20:16:27.0248 4420 C:\Windows\SysWOW64\dwmcore.dll - ok
20:16:27.0252 4420 [ 802B0229D904E28C1EA9A5274AB457FC ] C:\Windows\SysWOW64\iesetup.dll
20:16:27.0252 4420 C:\Windows\SysWOW64\iesetup.dll - ok
20:16:27.0255 4420 [ 68563AC389F92EE79F1C714288BA1DCE ] C:\Windows\SysWOW64\imgutil.dll
20:16:27.0255 4420 C:\Windows\SysWOW64\imgutil.dll - ok
20:16:27.0259 4420 [ 4B9E4CE667DF26ADA061AA81E9AA841D ] C:\Windows\SysWOW64\spfileq.dll
20:16:27.0259 4420 C:\Windows\SysWOW64\spfileq.dll - ok
20:16:27.0262 4420 [ 04A8B2F67825380BC0C7C46D56776133 ] C:\Windows\SysWOW64\pngfilt.dll
20:16:27.0262 4420 C:\Windows\SysWOW64\pngfilt.dll - ok
20:16:27.0266 4420 [ B7592E80772071D66336B3EC9B82101D ] C:\Windows\SysWOW64\msoert2.dll
20:16:27.0266 4420 C:\Windows\SysWOW64\msoert2.dll - ok
20:16:27.0269 4420 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll
20:16:27.0269 4420 C:\Windows\SysWOW64\adsldpc.dll - ok
20:16:27.0272 4420 [ E62BF5A49D8023F2384AB7F31031535B ] C:\Windows\SysWOW64\Magnify.exe
20:16:27.0272 4420 C:\Windows\SysWOW64\Magnify.exe - ok
20:16:27.0275 4420 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
20:16:27.0275 4420 C:\Windows\System32\wuauclt.exe - ok
20:16:27.0279 4420 [ A3FFDF7E8B0986D810C39581B365BF84 ] C:\Windows\SysWOW64\Display.dll
20:16:27.0279 4420 C:\Windows\SysWOW64\Display.dll - ok
20:16:27.0283 4420 [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\SysWOW64\rasplap.dll
20:16:27.0283 4420 C:\Windows\SysWOW64\rasplap.dll - ok
20:16:27.0286 4420 [ 30EFF24123E5A2A24F2308DDBCFB633C ] C:\Windows\SysWOW64\synceng.dll
20:16:27.0286 4420 C:\Windows\SysWOW64\synceng.dll - ok
20:16:27.0290 4420 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\SysWOW64\hidserv.dll
20:16:27.0290 4420 C:\Windows\SysWOW64\hidserv.dll - ok
20:16:27.0293 4420 [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\SysWOW64\wdigest.dll
20:16:27.0293 4420 C:\Windows\SysWOW64\wdigest.dll - ok
20:16:27.0297 4420 [ 494E31F87662C486EF2F2048D599AC46 ] C:\Windows\SysWOW64\ACCTRES.dll
20:16:27.0297 4420 C:\Windows\SysWOW64\ACCTRES.dll - ok
20:16:27.0300 4420 [ 0A3CCB2C4F603D99F34D742FC9544B97 ] C:\Windows\SysWOW64\pstorsvc.dll
20:16:27.0300 4420 C:\Windows\SysWOW64\pstorsvc.dll - ok
20:16:27.0304 4420 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\SysWOW64\iedkcs32.dll
20:16:27.0304 4420 C:\Windows\SysWOW64\iedkcs32.dll - ok
20:16:27.0310 4420 [ 929759E0775E6D00B4B2F4A08042439F ] C:\Windows\SysWOW64\napipsec.dll
20:16:27.0310 4420 C:\Windows\SysWOW64\napipsec.dll - ok
20:16:27.0313 4420 [ BBB88F8D0FE67314A7A2421E626A0E0D ] C:\Windows\SysWOW64\prncache.dll
20:16:27.0313 4420 C:\Windows\SysWOW64\prncache.dll - ok
20:16:27.0317 4420 [ 59B7280D73906B43B13B273A1F9CC3DD ] C:\Windows\SysWOW64\xpsrchvw.exe
20:16:27.0317 4420 C:\Windows\SysWOW64\xpsrchvw.exe - ok
20:16:27.0321 4420 [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\SysWOW64\vaultcli.dll
20:16:27.0321 4420 C:\Windows\SysWOW64\vaultcli.dll - ok
20:16:27.0326 4420 [ C56495FBD770712367CAD35E5DE72DA6 ] C:\Windows\SysWOW64\dhcpcore.dll
20:16:27.0326 4420 C:\Windows\SysWOW64\dhcpcore.dll - ok
20:16:27.0330 4420 [ C6595B078842E187C6587A285B43A565 ] C:\Windows\SysWOW64\inetcomm.dll
20:16:27.0330 4420 C:\Windows\SysWOW64\inetcomm.dll - ok
20:16:27.0333 4420 [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\SysWOW64\cngaudit.dll
20:16:27.0333 4420 C:\Windows\SysWOW64\cngaudit.dll - ok
20:16:27.0337 4420 [ EAA75D9000B71F10EEC04D2AE6C60E81 ] C:\Windows\SysWOW64\netlogon.dll
20:16:27.0337 4420 C:\Windows\SysWOW64\netlogon.dll - ok
20:16:27.0340 4420 [ A3E23DD82AA7963D9F7D184BEEEE5448 ] C:\Windows\SysWOW64\filemgmt.dll
20:16:27.0340 4420 C:\Windows\SysWOW64\filemgmt.dll - ok
20:16:27.0344 4420 [ 496C56361F57C2CA54931EBBC7D6C2CF ] C:\Windows\SysWOW64\eapphost.dll
20:16:27.0344 4420 C:\Windows\SysWOW64\eapphost.dll - ok
20:16:27.0347 4420 [ BAF10E9C4A0A20BBCE6DE4B5A1417351 ] C:\Windows\SysWOW64\wpdshext.dll
20:16:27.0347 4420 C:\Windows\SysWOW64\wpdshext.dll - ok
20:16:27.0351 4420 [ EF8808FEA65723214D79734BDB79EBF6 ] C:\Windows\SysWOW64\taskcomp.dll
20:16:27.0351 4420 C:\Windows\SysWOW64\taskcomp.dll - ok
20:16:27.0354 4420 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
20:16:27.0354 4420 C:\Windows\SysWOW64\qmgrprxy.dll - ok
20:16:27.0358 4420 [ 93F1D409D2454D67CE99A0DB859A7193 ] C:\Windows\SysWOW64\activeds.dll
20:16:27.0358 4420 C:\Windows\SysWOW64\activeds.dll - ok
20:16:27.0363 4420 [ 056B0E466AD1C99D9892F9C7DD4A8449 ] C:\Windows\SysWOW64\kerberos.dll
20:16:27.0363 4420 C:\Windows\SysWOW64\kerberos.dll - ok
20:16:27.0367 4420 [ 7CA00998C1AAF913AC089E29DB746037 ] C:\Windows\SysWOW64\unregmp2.exe
20:16:27.0367 4420 C:\Windows\SysWOW64\unregmp2.exe - ok
20:16:27.0371 4420 [ 78F07C95826B064C886E6871A1FA9D41 ] C:\Windows\System32\recovery.dll
20:16:27.0371 4420 C:\Windows\System32\recovery.dll - ok
20:16:27.0374 4420 [ 0FA760BF380B08D0B67B5507CD8B32AA ] C:\Windows\System32\mctadmin.exe
20:16:27.0374 4420 C:\Windows\System32\mctadmin.exe - ok
20:16:27.0378 4420 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\SysWOW64\negoexts.dll
20:16:27.0378 4420 C:\Windows\SysWOW64\negoexts.dll - ok
20:16:27.0381 4420 [ 6707E0DAC75C45BB543B9A783068B9CF ] C:\Windows\SysWOW64\msoeacct.dll
20:16:27.0381 4420 C:\Windows\SysWOW64\msoeacct.dll - ok
20:16:27.0385 4420 [ A3D9528E228DDD9A404E5EF4295AE35F ] C:\Windows\SysWOW64\msinfo32.exe
20:16:27.0385 4420 C:\Windows\SysWOW64\msinfo32.exe - ok
20:16:27.0388 4420 [ ED3BD924446F34C5E10926AB2F059050 ] C:\Windows\SysWOW64\mscories.dll
20:16:27.0388 4420 C:\Windows\SysWOW64\mscories.dll - ok
20:16:27.0392 4420 [ F945ADCEF203E6104AEC8EC9C337CFD0 ] C:\Windows\SysWOW64\iscsicpl.dll
20:16:27.0392 4420 C:\Windows\SysWOW64\iscsicpl.dll - ok
20:16:27.0396 4420 [ CA75367CE419922291A11227E32FBA0C ] C:\Windows\SysWOW64\wsecedit.dll
20:16:27.0396 4420 C:\Windows\SysWOW64\wsecedit.dll - ok
20:16:27.0400 4420 [ B22CB67919EBAD88B0E8BB9CDA446010 ] C:\Windows\System32\StikyNot.exe
20:16:27.0400 4420 C:\Windows\System32\StikyNot.exe - ok
20:16:27.0404 4420 [ 4EEB1EA6495682B5446F06F1814611AC ] C:\Windows\SysWOW64\lsmproxy.dll
20:16:27.0404 4420 C:\Windows\SysWOW64\lsmproxy.dll - ok
20:16:27.0407 4420 [ E1DB4372935218D62D416A3E37410D3B ] C:\Windows\SysWOW64\powercpl.dll
20:16:27.0407 4420 C:\Windows\SysWOW64\powercpl.dll - ok
20:16:27.0411 4420 [ 1AF22468786A58B11F6601ADEADC162A ] C:\Windows\SysWOW64\cryptdlg.dll
20:16:27.0411 4420 C:\Windows\SysWOW64\cryptdlg.dll - ok
20:16:27.0415 4420 [ 432BE6CF7311062633459EEF6B242FB5 ] C:\Windows\SysWOW64\regsvr32.exe
20:16:27.0415 4420 C:\Windows\SysWOW64\regsvr32.exe - ok
20:16:27.0419 4420 [ DD670B01D42CCC61232320E120B62033 ] C:\Windows\SysWOW64\win32spl.dll
20:16:27.0419 4420 C:\Windows\SysWOW64\win32spl.dll - ok
20:16:27.0423 4420 [ CE7B235C57F3E16654875A41B20448C4 ] C:\Windows\SysWOW64\icardres.dll
20:16:27.0423 4420 C:\Windows\SysWOW64\icardres.dll - ok
20:16:27.0426 4420 [ 6DE80F60D7DE9CE6B8C2DDFDF79EF175 ] C:\Windows\SysWOW64\userinit.exe
20:16:27.0426 4420 C:\Windows\SysWOW64\userinit.exe - ok
20:16:27.0430 4420 [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED ] C:\Windows\SysWOW64\cryptsvc.dll
20:16:27.0430 4420 C:\Windows\SysWOW64\cryptsvc.dll - ok
20:16:27.0433 4420 [ 0BBDB0F5A25A2FE0502F44CA7D04AB61 ] C:\Windows\SysWOW64\mycomput.dll
20:16:27.0433 4420 C:\Windows\SysWOW64\mycomput.dll - ok
20:16:27.0437 4420 [ 704A8B68374E6309B8D67F997FD3034B ] C:\Windows\SysWOW64\bitsperf.dll
20:16:27.0437 4420 C:\Windows\SysWOW64\bitsperf.dll - ok
20:16:27.0440 4420 [ 81241E7723D5675AF6E27A7F0E7F3324 ] C:\Windows\SysWOW64\AuthFWGP.dll
20:16:27.0440 4420 C:\Windows\SysWOW64\AuthFWGP.dll - ok
20:16:27.0444 4420 [ 42B2A7CBD7838214EECE6B6455C34BC6 ] C:\Windows\SysWOW64\verclsid.exe
20:16:27.0444 4420 C:\Windows\SysWOW64\verclsid.exe - ok
20:16:27.0448 4420 [ 0D07A576772CFA4930F2E369018C2E3C ] C:\Windows\SysWOW64\autoplay.dll
20:16:27.0448 4420 C:\Windows\SysWOW64\autoplay.dll - ok
20:16:27.0451 4420 [ 9B0E6A2C9F12AE8361185A87F87B8DEC ] C:\Windows\SysWOW64\drvstore.dll
20:16:27.0451 4420 C:\Windows\SysWOW64\drvstore.dll - ok
20:16:27.0455 4420 [ 990A58A0B01720E419B55EFC5FF387F8 ] C:\Windows\SysWOW64\dhcpcore6.dll
20:16:27.0455 4420 C:\Windows\SysWOW64\dhcpcore6.dll - ok
20:16:27.0458 4420 [ B2ACE731DBE4060617E43356161C078B ] C:\Windows\SysWOW64\netcenter.dll
20:16:27.0458 4420 C:\Windows\SysWOW64\netcenter.dll - ok
20:16:27.0462 4420 [ 4B80D1F847C0658977E1E8051A4DE002 ] C:\Windows\SysWOW64\msfeedsbs.dll
20:16:27.0462 4420 C:\Windows\SysWOW64\msfeedsbs.dll - ok
20:16:27.0466 4420 [ 1FC31851613B25060A5815D6935310A9 ] C:\Windows\SysWOW64\msidcrl30.dll
20:16:27.0466 4420 C:\Windows\SysWOW64\msidcrl30.dll - ok
20:16:27.0470 4420 [ A00CE26108ABD32E57704939D9AB7F9F ] C:\Windows\System32\taskbarcpl.dll
20:16:27.0470 4420 C:\Windows\System32\taskbarcpl.dll - ok
20:16:27.0474 4420 [ 5160448D0B636ABC65B5C143589CEF8B ] C:\Windows\SysWOW64\migwiz\wet.dll
20:16:27.0474 4420 C:\Windows\SysWOW64\migwiz\wet.dll - ok
20:16:27.0478 4420 [ D9E9390C34E5A941F9336BD1F5D35A11 ] C:\Windows\SysWOW64\SensorsCpl.dll
20:16:27.0478 4420 C:\Windows\SysWOW64\SensorsCpl.dll - ok
20:16:27.0482 4420 [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\SysWOW64\PlaySndSrv.dll
20:16:27.0482 4420 C:\Windows\SysWOW64\PlaySndSrv.dll - ok
20:16:27.0485 4420 [ 0DFD0ADD7FF9C48938757220F1CEBE95 ] C:\Windows\SysWOW64\d3d10level9.dll
20:16:27.0485 4420 C:\Windows\SysWOW64\d3d10level9.dll - ok
20:16:27.0489 4420 [ 871729545BE131CD049D34D461F25154 ] C:\Windows\System32\rdpcorekmts.dll
20:16:27.0489 4420 C:\Windows\System32\rdpcorekmts.dll - ok
20:16:27.0493 4420 [ EB8C6098A8A33979969CF962BB327621 ] C:\Windows\SysWOW64\TSWorkspace.dll
20:16:27.0493 4420 C:\Windows\SysWOW64\TSWorkspace.dll - ok
20:16:27.0496 4420 [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\SysWOW64\BioCredProv.dll
20:16:27.0496 4420 C:\Windows\SysWOW64\BioCredProv.dll - ok
20:16:27.0500 4420 [ 8EE1C58444B8CE7F055199C696AF8B68 ] C:\Windows\System32\oobe\oobeldr.exe
20:16:27.0500 4420 C:\Windows\System32\oobe\oobeldr.exe - ok
20:16:27.0504 4420 [ 3E19163966261CCDBA4C8C030E601998 ] C:\Windows\SysWOW64\DeviceCenter.dll
20:16:27.0504 4420 C:\Windows\SysWOW64\DeviceCenter.dll - ok
20:16:27.0508 4420 [ 47098E5D669470801621AC09C7C77CC0 ] C:\Windows\SysWOW64\SearchFolder.dll
20:16:27.0508 4420 C:\Windows\SysWOW64\SearchFolder.dll - ok
20:16:27.0513 4420 [ BA4E1A60BD20CA7978C76D79F19E37F0 ] C:\Windows\SysWOW64\DisplaySwitch.exe
20:16:27.0513 4420 C:\Windows\SysWOW64\DisplaySwitch.exe - ok
20:16:27.0517 4420 [ 6F6759407B843B99E0367036632EC798 ] C:\Windows\SysWOW64\HelpPaneProxy.dll
20:16:27.0517 4420 C:\Windows\SysWOW64\HelpPaneProxy.dll - ok
20:16:27.0522 4420 [ B72F77DA5A69F5626696182E17B503BA ] C:\Windows\SysWOW64\miguiresource.dll
20:16:27.0522 4420 C:\Windows\SysWOW64\miguiresource.dll - ok
20:16:27.0525 4420 [ 8D908F346EEDD752005A32787A6DCAFA ] C:\Windows\SysWOW64\StructuredQuery.dll
20:16:27.0525 4420 C:\Windows\SysWOW64\StructuredQuery.dll - ok
20:16:27.0530 4420 [ C17C5BBBDF1B35DB457EBAFA3185F222 ] C:\Windows\SysWOW64\ActionCenterCPL.dll
20:16:27.0530 4420 C:\Windows\SysWOW64\ActionCenterCPL.dll - ok
20:16:27.0534 4420 [ EA5B2E99FC932AF500F8863683BAB5B3 ] C:\Windows\SysWOW64\accessibilitycpl.dll
20:16:27.0534 4420 C:\Windows\SysWOW64\accessibilitycpl.dll - ok
20:16:27.0537 4420 [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\SysWOW64\certCredProvider.dll
20:16:27.0537 4420 C:\Windows\SysWOW64\certCredProvider.dll - ok
20:16:27.0541 4420 [ EE09D820F6F783856886EAC19415E906 ] C:\Windows\SysWOW64\FirewallControlPanel.dll
20:16:27.0541 4420 C:\Windows\SysWOW64\FirewallControlPanel.dll - ok
20:16:27.0545 4420 [ 9F1BB2E5177D8C7AF7CC45BFC18010C8 ] C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
20:16:27.0545 4420 C:\Windows\SysWOW64\SmartcardCredentialProvider.dll - ok
20:16:27.0549 4420 [ 2875B386B45B8A77E2343C5E129AE50C ] C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll
20:16:27.0549 4420 C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll - ok
20:16:27.0553 4420 [ 92F44E405DB16AC55D97E3BFE3B132FA ] C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
20:16:27.0553 4420 C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe - ok
20:16:27.0557 4420 [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\SysWOW64\Sens.dll
20:16:27.0557 4420 C:\Windows\SysWOW64\Sens.dll - ok
20:16:27.0561 4420 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
20:16:27.0561 4420 C:\Windows\SysWOW64\WMASF.DLL - ok
20:16:27.0564 4420 [ A1BFA4E821D2CEA205ABD3D5FEAFD0E2 ] C:\Windows\SysWOW64\usercpl.dll
20:16:27.0564 4420 C:\Windows\SysWOW64\usercpl.dll - ok
20:16:27.0568 4420 [ 2F51AAF9872133173F7F8CDD0FF66B3D ] C:\Windows\SysWOW64\fontext.dll
20:16:27.0568 4420 C:\Windows\SysWOW64\fontext.dll - ok
20:16:27.0571 4420 ============================================================
20:16:27.0571 4420 Scan finished
20:16:27.0571 4420 ============================================================
20:16:27.0584 6380 Detected object count: 7
20:16:27.0584 6380 Actual detected object count: 7
20:20:14.0203 6380 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - skipped by user
20:20:14.0204 6380 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:20:14.0204 6380 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:20:14.0204 6380 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:20:14.0205 6380 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:20:14.0205 6380 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:20:14.0207 6380 DMAgent ( UnsignedFile.Multi.Generic ) - skipped by user
20:20:14.0207 6380 DMAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:20:14.0208 6380 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:20:14.0208 6380 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:20:15.0148 6380 \Device\Harddisk0\DR0\# - copied to quarantine
20:20:15.0153 6380 \Device\Harddisk0\DR0 - copied to quarantine
20:20:15.0221 6380 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
20:20:15.0449 6380 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
20:20:15.0590 6380 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
20:20:29.0659 6380 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
20:20:29.0825 6380 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
20:20:29.0827 6380 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
20:20:29.0830 6380 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
20:20:29.0833 6380 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
20:20:29.0919 6380 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
20:20:29.0982 6380 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
20:20:29.0984 6380 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
20:20:29.0986 6380 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
20:20:30.0016 6380 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
20:20:30.0017 6380 \Device\Harddisk0\DR0 - ok
20:20:30.0108 6380 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
20:20:30.0109 6380 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:20:30.0109 6380 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
20:27:02.0265 0964 Deinitialize success

--------------------------------------------------------------
aswMBR log

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-23 20:43:40
-----------------------------
20:43:40.254 OS Version: Windows x64 6.1.7600
20:43:40.254 Number of processors: 4 586 0x2A07
20:43:40.255 ComputerName: KAT-PC UserName: Kat
20:43:41.368 Initialize success
20:43:42.518 AVAST engine defs: 13012301
20:43:57.430 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:43:57.436 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
20:43:57.462 Disk 0 MBR read successfully
20:43:57.468 Disk 0 MBR scan
20:43:57.928 Disk 0 Windows VISTA default MBR code
20:43:57.935 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
20:43:58.269 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 208896
20:43:58.481 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461837 MB offset 30928896
20:43:58.640 Disk 0 scanning C:\Windows\system32\drivers
20:44:13.716 Service scanning
20:44:34.571 Modules scanning
20:44:34.592 Disk 0 trace - called modules:
20:44:34.614 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:44:34.618 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80065f9060]
20:44:34.626 3 CLASSPNP.SYS[fffff8800122243f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800480f050]
20:44:35.509 AVAST engine scan C:\Windows
20:44:37.875 AVAST engine scan C:\Windows\system32
20:47:09.724 AVAST engine scan C:\Windows\system32\drivers
20:47:19.412 AVAST engine scan C:\Users\Kat
21:00:25.010 AVAST engine scan C:\ProgramData
21:04:12.671 Scan finished successfully
21:05:08.615 Disk 0 MBR has been saved successfully to "C:\Users\Kat\Desktop\MBR.dat"
21:05:08.621 The log file has been saved successfully to "C:\Users\Kat\Desktop\aswMBR.txt"

__________________________________________

Malwarebytes log:

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.22.01

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Kat :: KAT-PC [administrator]

Protection: Enabled

1/22/2013 8:30:09 PM
mbam-log-2013-01-22 (20-30-09).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 221160
Time elapsed: 8 minute(s), 22 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

(end)

_________________________________________________
Another Malwarebyes log:

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.21.08

Windows 7 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Kat :: KAT-PC [administrator]

Protection: Disabled

1/21/2013 12:01:10 PM
mbam-log-2013-01-21 (12-01-10).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 219489
Time elapsed: 4 minute(s), 5 second(s)

Memory Processes Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> 272 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 5
C:\Users\Kat\AppData\Local\Temp\0.5969389603720606 (Trojan.Happili) -> Quarantined and deleted successfully.
C:\Users\Kat\AppData\Local\Temp\1E18.tmp (Trojan.Agent.NIX) -> Quarantined and deleted successfully.
C:\Users\Kat\AppData\Local\Temp\msimg32.dll (Spyware.Zbot.USBV) -> Quarantined and deleted successfully.
C:\Users\Kat\wgsdgsdgdsgsd.exe (Spyware.Zbot.USBV) -> Quarantined and deleted successfully.
C:\Windows\svchost.exe (Trojan.Agent) -> Delete on reboot.

(end)

------------------------------------------------------
That's all the logs I have. Thank you for your efforts! One thing that would have been nice to know before running TDSSkiller was that i should have disabled Avast before hand. When TDSS quarantined the file, Avast picked it up.

#7
zep516

Posted 26 January 2013 - 09:21 AM

Trusted Helper

Malware Removal
8,093 posts

Hello Astraea687,

I apologize for the delay here, I am still researching your log file.

Thank you so much for your patience!

Joe

#8
Astraea687

Posted 26 January 2013 - 09:41 AM

New Member

Topic Starter
Member
5 posts

OK. Thank you. The computer is running fine. No blue screens and no quarantined files popping up.

#9
zep516

Posted 28 January 2013 - 10:57 PM

Trusted Helper

Malware Removal
8,093 posts

Hello Astraea687,

I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Although an attempt could be made to clean this machine, it could never be considered to be truly clean, secure, or trustworthy. We could not say definitively that unknown and unseen malware will have been removed, nor will your system be restored to its pre-infection state. We cannot remedy unknown changes the malware may likely have made in order to allow itself access, nor can we repair the damage it may possibly have caused to vital system files. Additionally, it is quite possible that changes made to the system by the malware may impact negatively on your computer during the removal process. In short, your system may never regain its former stability or its full functionality without a reformat. Therefore, your best and safest course of action is a reformat and re-installation of the Windows operating system, and that is the course we strongly recommend. Please let me know your decision. If you would like to continue to clean the machine please follow instructions below:

Next
Please re-run TDSSKiller as outlined prior and use the Delete option for these entries only if they appear:

\Device\Harddisk0\DR0 ( TDSS File System )
\Device\Harddisk0\DR0 ( TDSS File System )
Reboot your machine if not prompted to do so and post the new log in your next reply.

Next
Please download Listparts64

please place a check mark in List BCD
Run the tool, click Scan and post the log (Result.txt) it makes.

Next
Please download Farbar Service Scanner and run it
Make sure the following options are checked:

Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update
Windows Defender

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

In your next reply please post:

TDSSKiller log.
Result.txt log.
FSS.txt log.

Thanks,
Joe

#10
Dakeyras

Posted 04 February 2013 - 08:50 AM

Anti-Malware Mammoth

Expert
9,772 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.