Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Multiple windows keep opening in firefox and ie [Solved]

Started by gweng , Jan 29 2013 09:10 PM

  • This topic is locked This topic is locked

#1
gweng
Posted 29 January 2013 - 09:10 PM

gweng

    Member

  • Member
  • PipPip
  • 50 posts
My son's computer appears to have another virus. Both IE9 and Firefox continually open new windows when the browser is first opened. When you "close all tabs" the browser reopens and once again starts adding new windows(tabs). I uninstalled Firefox. I have not reinstalled it because when I opened IE9 to re-download firefox, the issue started happening in IE9. Here is the OTL.txt file:

OTL logfile created on: 1/29/2013 7:04:00 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Troy\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.80 Gb Total Physical Memory | 2.08 Gb Available Physical Memory | 54.76% Memory free
7.61 Gb Paging File | 5.59 Gb Available in Paging File | 73.47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 170.93 Gb Free Space | 37.90% Space Free | Partition Type: NTFS

Computer Name: TROYSDELL | User Name: Troy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/29 15:49:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Troy\Desktop\OTL (1).exe
PRC - [2013/01/09 22:17:52 | 000,699,400 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe
PRC - [2012/11/26 21:03:29 | 007,880,664 | ---- | M] (Spotify Ltd) -- C:\Users\Troy\AppData\Roaming\Spotify\spotify.exe
PRC - [2012/11/26 21:03:18 | 001,199,576 | ---- | M] (Spotify Ltd) -- C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2012/10/09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe
PRC - [2012/09/25 10:05:20 | 000,247,728 | ---- | M] (Facebook) -- C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe
PRC - [2012/07/27 13:51:38 | 000,823,224 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
PRC - [2012/07/27 13:51:28 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/06/15 14:44:04 | 000,548,264 | ---- | M] (Splashtop Inc.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
PRC - [2012/06/15 14:44:02 | 002,463,648 | ---- | M] (Splashtop Inc.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
PRC - [2012/06/15 14:43:54 | 006,526,888 | ---- | M] (Splashtop Inc.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
PRC - [2012/03/14 22:20:30 | 000,370,504 | ---- | M] (Splashtop Inc.) -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
PRC - [2012/02/20 18:05:12 | 000,101,048 | ---- | M] () -- C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe
PRC - [2011/09/06 10:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/09/01 02:22:18 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2011/08/18 08:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 08:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/01 10:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/03/01 11:23:28 | 000,144,616 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2010/06/08 09:49:30 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/06/08 09:49:26 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/03/03 13:42:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/03/03 13:41:58 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2009/06/24 15:21:38 | 000,409,744 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2009/05/19 16:11:52 | 000,136,544 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/10 04:02:25 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\77dfcfed5fd5f67d0d3edc545935bb21\System.Core.ni.dll
MOD - [2013/01/10 04:01:31 | 000,452,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3f3abe5e86f6df8943d5d2802bdf964c\IAStorUtil.ni.dll
MOD - [2013/01/10 03:50:22 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
MOD - [2013/01/10 03:50:10 | 011,833,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0ac577a8ad6528ff03b50db5eeeac8be\System.Web.ni.dll
MOD - [2013/01/10 03:50:01 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013/01/10 03:49:59 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll
MOD - [2013/01/10 03:49:51 | 014,340,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
MOD - [2013/01/10 03:49:38 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
MOD - [2013/01/10 03:49:32 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/01/10 03:49:29 | 012,237,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
MOD - [2013/01/10 03:49:19 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013/01/10 03:49:14 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/01/10 03:49:11 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013/01/10 03:49:10 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/01/10 03:48:59 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2012/11/26 21:03:19 | 020,220,376 | ---- | M] () -- C:\Users\Troy\AppData\Roaming\Spotify\Data\libcef.dll
MOD - [2012/09/25 10:05:32 | 022,423,984 | ---- | M] () -- C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\libcef.dll
MOD - [2012/09/25 10:05:08 | 000,181,680 | ---- | M] () -- C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\CefSharp.WinForms.dll
MOD - [2012/09/25 10:05:00 | 000,286,640 | ---- | M] () -- C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\CefSharp.dll
MOD - [2012/02/20 18:05:12 | 000,101,048 | ---- | M] () -- C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe
MOD - [2012/02/06 17:46:53 | 000,971,776 | ---- | M] () -- C:\Program Files (x86)\ContourStoryteller\QtNetwork4.dll
MOD - [2012/02/06 17:46:52 | 008,191,488 | ---- | M] () -- C:\Program Files (x86)\ContourStoryteller\QtGui4.dll
MOD - [2012/02/06 17:46:52 | 002,296,320 | ---- | M] () -- C:\Program Files (x86)\ContourStoryteller\QtCore4.dll
MOD - [2011/09/27 06:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 06:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/08/18 08:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2010/11/04 18:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2010/09/22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/06/17 22:10:14 | 000,258,048 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/02/02 21:13:10 | 000,048,128 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2009/12/29 13:19:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2009/11/02 11:48:18 | 000,126,352 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2009/03/03 03:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2013/01/28 21:58:10 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/01/09 22:40:37 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/27 13:51:28 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/06/15 14:44:04 | 000,548,264 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe -- (SplashtopRemoteService)
SRV - [2012/03/14 22:20:30 | 000,370,504 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe -- (SSUService)
SRV - [2011/09/01 02:22:18 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2011/08/18 08:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/03/01 11:23:42 | 000,240,360 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe -- (CLKMSVC10_1628BCEA)
SRV - [2011/02/14 21:23:46 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2010/09/04 00:15:22 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/09/04 00:14:26 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/08/25 19:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/06/08 09:49:30 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/03 13:42:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/03/03 13:41:58 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 14:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/05 17:07:28 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe -- (GameConsoleService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/09/28 10:32:56 | 000,053,760 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/02/29 23:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/10 23:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 23:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 06:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 04:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/08/30 05:17:36 | 000,289,280 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/08/25 13:36:02 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/07/30 16:36:38 | 000,025,072 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- c:\Program Files\Dell Support Center\pcdsrvc_x64.pkms -- (PCDSRVC{1E208CE0-FB7451FF-06020101}_0)
DRV:64bit: - [2010/06/17 22:10:14 | 000,515,584 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010/06/08 09:33:14 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/03/30 12:58:06 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2010/03/30 12:58:06 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2010/03/30 12:58:06 | 000,053,800 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt)
DRV:64bit: - [2010/03/30 12:58:06 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2010/03/30 12:58:06 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2010/03/19 02:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/03/17 14:44:44 | 000,301,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/03/17 14:41:48 | 000,325,152 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/03/17 14:29:52 | 000,232,480 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/02/26 17:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010/02/02 21:13:08 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2010/02/02 21:13:08 | 000,020,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcmvwl64.sys -- (BcmVWL)
DRV:64bit: - [2010/02/02 21:13:06 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009/11/02 11:48:02 | 000,013,784 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2009/09/17 11:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:64bit: - [2009/07/13 18:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 18:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 18:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/15 12:06:42 | 000,172,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2009/06/10 13:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 13:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 13:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 13:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 13:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/01 11:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/12/29 15:35:40 | 000,146,928 | ---- | M] (CyberLink Corp.) [2012/09/09 23:57:07] [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl -- ({1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7})
DRV - [2009/07/13 18:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://dell.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 32 C2 2F 1B A3 CD CD 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{D3C12570-9F97-4468-AA14-6E29593DA9F6}: "URL" = http://www.google.co...&rlz=1I7GDHP_en
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Troy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll (Facebook, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/11/27 11:56:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2012/12/17 16:42:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

[2011/02/24 16:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Troy\AppData\Roaming\Mozilla\Extensions
[2011/02/24 16:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Troy\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011/05/04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2012/11/28 13:04:59 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [ContourCameraFinder] C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe ()
O4 - HKCU..\Run: [Facebook Update] C:\Users\Troy\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe File not found
O4 - HKCU..\Run: [Spotify] C:\Users\Troy\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O4 - Startup: C:\Users\Troy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk = C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe (Facebook)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Free YouTube Download - C:\Users\Troy\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Free YouTube Download - C:\Users\Troy\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{227AF717-0032-4490-8155-D218189E4BA9}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\cozi - No CLSID value found
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKCU\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/29 19:02:12 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Troy\Desktop\OTL (1).exe
[2013/01/29 15:37:30 | 000,000,000 | ---D | C] -- C:\Users\Troy\Desktop\Old Firefox Data
[2013/01/29 15:31:49 | 000,000,000 | ---D | C] -- C:\Users\Troy\AppData\Local\Programs
[2013/01/11 18:11:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[1 C:\Users\Troy\Documents\*.tmp files -> C:\Users\Troy\Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/01/29 19:11:46 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/29 19:03:33 | 000,013,872 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/29 19:03:33 | 000,013,872 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/29 18:55:51 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3538851650-2368974318-2016122414-1001UA.job
[2013/01/29 18:55:15 | 3062,902,784 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/29 18:39:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/29 15:49:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Troy\Desktop\OTL (1).exe
[2013/01/29 15:32:07 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/28 23:26:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3538851650-2368974318-2016122414-1001Core.job
[2013/01/10 03:47:57 | 005,027,136 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/10 03:21:34 | 000,740,814 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/10 03:21:34 | 000,624,412 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/10 03:21:34 | 000,106,756 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[1 C:\Users\Troy\Documents\*.tmp files -> C:\Users\Troy\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/11/20 23:21:43 | 000,003,584 | ---- | C] () -- C:\Users\Troy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/03/11 22:36:47 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/11/15 21:59:12 | 000,001,456 | ---- | C] () -- C:\Users\Troy\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011/02/24 15:52:02 | 000,744,030 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/02/23 13:48:06 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/02/14 22:36:01 | 000,870,560 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
[2011/02/14 22:36:01 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2011/02/14 22:36:01 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2011/02/14 22:36:01 | 000,127,868 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
[2011/02/14 22:36:01 | 000,104,796 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
[2011/02/14 22:33:33 | 000,000,271 | ---- | C] () -- C:\Windows\WisPriority.ini
[2011/02/14 22:33:33 | 000,000,035 | ---- | C] () -- C:\Windows\DELL_LANGCODE.ini
[2011/02/14 22:33:33 | 000,000,033 | ---- | C] () -- C:\Windows\DELL_OSTYPE.ini
[2011/02/14 22:33:33 | 000,000,032 | ---- | C] () -- C:\Windows\WisHWDest.ini
[2011/02/14 22:33:33 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2011/02/14 22:33:33 | 000,000,023 | ---- | C] () -- C:\Windows\WisSysInfo.ini
[2011/02/14 21:33:05 | 000,000,074 | RHS- | C] () -- C:\Windows\CT4CET.bin

========== ZeroAccess Check ==========

[2009/07/13 21:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 22:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 21:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 18:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 05:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 18:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2011/03/17 14:01:41 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\Canon
[2011/11/09 14:28:56 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2011/12/02 17:46:03 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\DVDVideoSoft
[2011/12/02 17:45:58 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\DVDVideoSoftIEHelpers
[2011/06/14 13:51:58 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\Elluminate
[2012/03/03 01:07:46 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\Fingertapps
[2011/11/27 20:33:11 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\FlixsterCollections
[2011/04/13 17:53:35 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\PCDr
[2011/09/25 11:28:33 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\RFB&&D Download Manager
[2013/01/29 19:12:59 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\Spotify
[2012/03/01 01:55:06 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011/02/24 16:02:31 | 000,000,000 | ---D | M] -- C:\Users\Troy\AppData\Roaming\Thunderbird

========== Purity Check ==========



< End of report >
  • 0

Advertisements

#2
gringo_pr
Posted 30 January 2013 - 01:47 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
  • 0

#3
gweng
Posted 30 January 2013 - 10:25 AM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Thanks for helping me out with this Gringo. As I mentioned before, I did uninstall Firefox to stop it from opening multiple tabs. This time I also had to disable IE9 because it was opening tabs so fast. I have not re-enabled IE9 to check if the problem still exists.

Logs:

Results of screen317's Security Check version 0.99.57
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.70.0.1100
Java 7 Update 9
Java version out of Date!
Adobe Flash Player 11.5.502.146
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Thunderbird (17.0.)
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

# AdwCleaner v2.109 - Logfile created 01/30/2013 at 09:10:06
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Troy - TROYSDELL
# Boot Mode : Normal
# Running from : C:\Users\Troy\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASMANCS
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SProtector

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v [Unable to get version]

File : C:\Users\Troy\AppData\Roaming\Mozilla\Firefox\Profiles\8zya1c0b.default-1359499046072\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3009 octets] - [27/11/2012 13:45:38]
AdwCleaner[S2].txt - [1661 octets] - [30/01/2013 09:10:06]

########## EOF - C:\AdwCleaner[S2].txt - [1721 octets] ##########RogueKiller V8.4.3 [Jan 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Troy [Admin rights]
Mode : Remove -- Date : 01/30/2013 09:22:07
| ARK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] FacebookMessenger.exe -- C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 5 ¤¤¤
[STARTUP][SUSP PATH] Facebook Messenger.lnk @Troy : C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[SHELLSPWN] HKCU\[...]\command : ("%1" %*) -> REPLACED ("%1" %*)
[FILEASSO] HKCR\[...].exe : (exefile) -> REPLACED (exefile)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : Rogue.AntiSpy-AH ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

ÿ₫1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000BEVT-75A0RT0 +++++
--- User ---
[MBR] 3c79b7325279e2717971729602b95614
[BSP] 5165e7b51e9a013cb8a127544d905c5d : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[3]_D_01302013_02d0922.txt >>
RKreport[1]_S_01302013_02d0921.txt ; RKreport[2]_S_01302013_02d0921.txt ; RKreport[3]_D_01302013_02d0922.txt
  • 0

#4
gringo_pr
Posted 30 January 2013 - 12:07 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings

I want you to run these next,

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
  • 0

#5
gweng
Posted 30 January 2013 - 04:09 PM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
14:43:59.0553 1344 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
14:44:00.0083 1344 ============================================================
14:44:00.0083 1344 Current date / time: 2013/01/30 14:44:00.0083
14:44:00.0083 1344 SystemInfo:
14:44:00.0083 1344
14:44:00.0083 1344 OS Version: 6.1.7601 ServicePack: 1.0
14:44:00.0083 1344 Product type: Workstation
14:44:00.0083 1344 ComputerName: TROYSDELL
14:44:00.0083 1344 UserName: Troy
14:44:00.0083 1344 Windows directory: C:\Windows
14:44:00.0083 1344 System windows directory: C:\Windows
14:44:00.0083 1344 Running under WOW64
14:44:00.0083 1344 Processor architecture: Intel x64
14:44:00.0083 1344 Number of processors: 4
14:44:00.0083 1344 Page size: 0x1000
14:44:00.0083 1344 Boot type: Normal boot
14:44:00.0083 1344 ============================================================
14:44:00.0801 1344 BG loaded
14:44:02.0595 1344 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:44:02.0704 1344 ============================================================
14:44:02.0704 1344 \Device\Harddisk0\DR0:
14:44:02.0704 1344 MBR partitions:
14:44:02.0704 1344 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
14:44:02.0704 1344 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
14:44:02.0704 1344 ============================================================
14:44:02.0891 1344 C: <-> \Device\Harddisk0\DR0\Partition2
14:44:02.0891 1344 ============================================================
14:44:02.0891 1344 Initialize success
14:44:02.0891 1344 ============================================================
14:46:25.0082 6644 ============================================================
14:46:25.0082 6644 Scan started
14:46:25.0082 6644 Mode: Manual; SigCheck; TDLFS;
14:46:25.0082 6644 ============================================================
14:46:25.0675 6644 ================ Scan system memory ========================
14:46:25.0675 6644 System memory - ok
14:46:25.0675 6644 ================ Scan services =============================
14:46:26.0299 6644 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:46:26.0439 6644 1394ohci - ok
14:46:26.0533 6644 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:46:26.0549 6644 ACPI - ok
14:46:26.0611 6644 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:46:26.0751 6644 AcpiPmi - ok
14:46:27.0048 6644 [ C245E08EC469A52A622EFDC9787A0DCC ] AdobeActiveFileMonitor10.0 C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
14:46:27.0063 6644 AdobeActiveFileMonitor10.0 - ok
14:46:27.0204 6644 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:46:27.0219 6644 AdobeARMservice - ok
14:46:27.0500 6644 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:46:27.0531 6644 AdobeFlashPlayerUpdateSvc - ok
14:46:27.0594 6644 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:46:27.0625 6644 adp94xx - ok
14:46:27.0656 6644 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:46:27.0687 6644 adpahci - ok
14:46:27.0734 6644 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:46:27.0750 6644 adpu320 - ok
14:46:27.0828 6644 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:46:28.0046 6644 AeLookupSvc - ok
14:46:28.0280 6644 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
14:46:28.0374 6644 AESTFilters - ok
14:46:28.0436 6644 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:46:28.0577 6644 AFD - ok
14:46:28.0623 6644 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:46:28.0655 6644 agp440 - ok
14:46:28.0701 6644 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:46:28.0795 6644 ALG - ok
14:46:28.0857 6644 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:46:28.0873 6644 aliide - ok
14:46:28.0889 6644 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:46:28.0904 6644 amdide - ok
14:46:28.0935 6644 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:46:29.0013 6644 AmdK8 - ok
14:46:29.0045 6644 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:46:29.0123 6644 AmdPPM - ok
14:46:29.0201 6644 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:46:29.0216 6644 amdsata - ok
14:46:29.0247 6644 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:46:29.0279 6644 amdsbs - ok
14:46:29.0325 6644 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:46:29.0341 6644 amdxata - ok
14:46:29.0403 6644 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:46:29.0653 6644 AppID - ok
14:46:29.0715 6644 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:46:29.0793 6644 AppIDSvc - ok
14:46:29.0903 6644 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:46:29.0965 6644 Appinfo - ok
14:46:30.0043 6644 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:46:30.0059 6644 Apple Mobile Device - ok
14:46:30.0121 6644 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:46:30.0137 6644 arc - ok
14:46:30.0168 6644 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:46:30.0183 6644 arcsas - ok
14:46:30.0215 6644 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:46:30.0355 6644 AsyncMac - ok
14:46:30.0449 6644 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:46:30.0480 6644 atapi - ok
14:46:30.0636 6644 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:46:30.0745 6644 AudioEndpointBuilder - ok
14:46:30.0823 6644 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:46:30.0885 6644 AudioSrv - ok
14:46:31.0010 6644 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:46:31.0119 6644 AxInstSV - ok
14:46:31.0197 6644 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:46:31.0291 6644 b06bdrv - ok
14:46:31.0322 6644 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:46:31.0400 6644 b57nd60a - ok
14:46:31.0463 6644 [ AC4E2D84DE54CD3A013AEFF0CC56095C ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
14:46:31.0478 6644 BCM42RLY - ok
14:46:31.0728 6644 [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
14:46:31.0790 6644 BCM43XX - ok
14:46:31.0899 6644 [ D224B2E6BB543F1D8F1177D57FEC2950 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
14:46:31.0915 6644 BcmVWL - ok
14:46:32.0118 6644 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:46:32.0243 6644 BDESVC - ok
14:46:32.0289 6644 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:46:32.0399 6644 Beep - ok
14:46:32.0601 6644 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:46:32.0679 6644 BFE - ok
14:46:32.0804 6644 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:46:32.0929 6644 BITS - ok
14:46:32.0991 6644 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:46:33.0054 6644 blbdrive - ok
14:46:33.0132 6644 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:46:33.0147 6644 Bonjour Service - ok
14:46:33.0210 6644 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:46:33.0257 6644 bowser - ok
14:46:33.0288 6644 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:46:33.0381 6644 BrFiltLo - ok
14:46:33.0444 6644 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:46:33.0475 6644 BrFiltUp - ok
14:46:33.0615 6644 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
14:46:33.0693 6644 Browser - ok
14:46:33.0740 6644 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:46:33.0803 6644 Brserid - ok
14:46:33.0818 6644 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:46:33.0865 6644 BrSerWdm - ok
14:46:33.0912 6644 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:46:33.0943 6644 BrUsbMdm - ok
14:46:33.0974 6644 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:46:33.0990 6644 BrUsbSer - ok
14:46:34.0052 6644 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
14:46:34.0177 6644 BthEnum - ok
14:46:34.0193 6644 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:46:34.0286 6644 BTHMODEM - ok
14:46:34.0333 6644 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
14:46:34.0364 6644 BthPan - ok
14:46:34.0505 6644 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
14:46:34.0614 6644 BTHPORT - ok
14:46:34.0645 6644 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:46:34.0739 6644 bthserv - ok
14:46:34.0832 6644 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
14:46:34.0863 6644 BTHUSB - ok
14:46:34.0895 6644 [ D3466F77C2C49C6E393BA5FBA963A33E ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
14:46:34.0910 6644 btusbflt - ok
14:46:34.0973 6644 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
14:46:34.0988 6644 btwaudio - ok
14:46:35.0019 6644 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
14:46:35.0035 6644 btwavdt - ok
14:46:35.0097 6644 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
14:46:35.0129 6644 btwdins - ok
14:46:35.0175 6644 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
14:46:35.0175 6644 btwl2cap - ok
14:46:35.0253 6644 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
14:46:35.0269 6644 btwrchid - ok
14:46:35.0363 6644 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:46:35.0487 6644 cdfs - ok
14:46:35.0659 6644 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
14:46:35.0675 6644 cdrom - ok
14:46:35.0768 6644 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:46:35.0877 6644 CertPropSvc - ok
14:46:35.0924 6644 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:46:35.0987 6644 circlass - ok
14:46:36.0033 6644 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:46:36.0065 6644 CLFS - ok
14:46:36.0221 6644 [ DE48552360FA8BDF569D83F07CB1B566 ] CLKMSVC10_1628BCEA C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe
14:46:36.0236 6644 CLKMSVC10_1628BCEA - ok
14:46:36.0408 6644 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:46:36.0439 6644 clr_optimization_v2.0.50727_32 - ok
14:46:36.0533 6644 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:46:36.0564 6644 clr_optimization_v2.0.50727_64 - ok
14:46:36.0642 6644 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:46:36.0751 6644 clr_optimization_v4.0.30319_32 - ok
14:46:36.0829 6644 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:46:36.0860 6644 clr_optimization_v4.0.30319_64 - ok
14:46:36.0938 6644 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:46:37.0047 6644 CmBatt - ok
14:46:37.0063 6644 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:46:37.0079 6644 cmdide - ok
14:46:37.0125 6644 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
14:46:37.0157 6644 CNG - ok
14:46:37.0203 6644 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:46:37.0219 6644 Compbatt - ok
14:46:37.0281 6644 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:46:37.0359 6644 CompositeBus - ok
14:46:37.0375 6644 COMSysApp - ok
14:46:37.0391 6644 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:46:37.0406 6644 crcdisk - ok
14:46:37.0469 6644 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:46:37.0547 6644 CryptSvc - ok
14:46:37.0593 6644 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
14:46:37.0656 6644 CtClsFlt - ok
14:46:37.0781 6644 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:46:37.0859 6644 DcomLaunch - ok
14:46:37.0905 6644 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:46:37.0983 6644 defragsvc - ok
14:46:38.0030 6644 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:46:38.0124 6644 DfsC - ok
14:46:38.0202 6644 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:46:38.0280 6644 Dhcp - ok
14:46:38.0311 6644 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:46:38.0389 6644 discache - ok
14:46:38.0467 6644 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:46:38.0483 6644 Disk - ok
14:46:38.0592 6644 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:46:38.0670 6644 Dnscache - ok
14:46:38.0732 6644 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:46:38.0810 6644 dot3svc - ok
14:46:38.0888 6644 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:46:38.0982 6644 DPS - ok
14:46:39.0013 6644 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:46:39.0060 6644 drmkaud - ok
14:46:39.0185 6644 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:46:39.0216 6644 DXGKrnl - ok
14:46:39.0309 6644 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:46:39.0387 6644 EapHost - ok
14:46:40.0292 6644 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:46:40.0479 6644 ebdrv - ok
14:46:40.0526 6644 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:46:40.0589 6644 EFS - ok
14:46:40.0760 6644 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:46:40.0838 6644 ehRecvr - ok
14:46:40.0869 6644 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:46:40.0916 6644 ehSched - ok
14:46:40.0963 6644 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:46:41.0010 6644 elxstor - ok
14:46:41.0057 6644 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:46:41.0150 6644 ErrDev - ok
14:46:41.0213 6644 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:46:41.0306 6644 EventSystem - ok
14:46:41.0337 6644 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:46:41.0415 6644 exfat - ok
14:46:41.0447 6644 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:46:41.0509 6644 fastfat - ok
14:46:41.0587 6644 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:46:41.0681 6644 Fax - ok
14:46:41.0712 6644 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:46:41.0743 6644 fdc - ok
14:46:41.0774 6644 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:46:41.0805 6644 fdPHost - ok
14:46:41.0821 6644 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:46:41.0899 6644 FDResPub - ok
14:46:41.0930 6644 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:46:41.0946 6644 FileInfo - ok
14:46:41.0961 6644 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:46:42.0039 6644 Filetrace - ok
14:46:42.0086 6644 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:46:42.0102 6644 flpydisk - ok
14:46:42.0164 6644 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:46:42.0195 6644 FltMgr - ok
14:46:42.0273 6644 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
14:46:42.0367 6644 FontCache - ok
14:46:42.0492 6644 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:46:42.0507 6644 FontCache3.0.0.0 - ok
14:46:42.0585 6644 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:46:42.0617 6644 FsDepends - ok
14:46:42.0679 6644 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:46:42.0710 6644 Fs_Rec - ok
14:46:42.0819 6644 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:46:42.0835 6644 fvevol - ok
14:46:42.0866 6644 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:46:42.0882 6644 gagp30kx - ok
14:46:42.0991 6644 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
14:46:43.0007 6644 GameConsoleService - ok
14:46:43.0085 6644 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:46:43.0100 6644 GEARAspiWDM - ok
14:46:43.0194 6644 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
14:46:43.0209 6644 GoToAssist - ok
14:46:43.0287 6644 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:46:43.0397 6644 gpsvc - ok
14:46:43.0568 6644 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:46:43.0584 6644 gusvc - ok
14:46:43.0662 6644 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:46:43.0755 6644 hcw85cir - ok
14:46:43.0865 6644 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:46:43.0958 6644 HdAudAddService - ok
14:46:44.0052 6644 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:46:44.0099 6644 HDAudBus - ok
14:46:44.0145 6644 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
14:46:44.0161 6644 HECIx64 - ok
14:46:44.0223 6644 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:46:44.0239 6644 HidBatt - ok
14:46:44.0301 6644 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:46:44.0379 6644 HidBth - ok
14:46:44.0473 6644 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:46:44.0551 6644 HidIr - ok
14:46:44.0629 6644 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:46:44.0707 6644 hidserv - ok
14:46:44.0801 6644 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
14:46:44.0832 6644 HidUsb - ok
14:46:44.0910 6644 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:46:44.0972 6644 hkmsvc - ok
14:46:45.0066 6644 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:46:45.0159 6644 HomeGroupListener - ok
14:46:45.0222 6644 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:46:45.0300 6644 HomeGroupProvider - ok
14:46:45.0362 6644 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:46:45.0378 6644 HpSAMD - ok
14:46:45.0471 6644 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:46:45.0549 6644 HTTP - ok
14:46:45.0690 6644 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:46:45.0705 6644 hwpolicy - ok
14:46:45.0799 6644 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:46:45.0815 6644 i8042prt - ok
14:46:45.0893 6644 [ 2064090C9FAAD92C090D77E50E735B2E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
14:46:45.0924 6644 iaStor - ok
14:46:46.0017 6644 [ A9BE186ABF28B3D3D698CB855EDF457E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:46:46.0033 6644 IAStorDataMgrSvc - ok
14:46:46.0095 6644 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:46:46.0127 6644 iaStorV - ok
14:46:46.0548 6644 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:46:46.0704 6644 idsvc - ok
14:46:47.0624 6644 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
14:46:47.0811 6644 igfx - ok
14:46:47.0874 6644 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:46:47.0889 6644 iirsp - ok
14:46:48.0061 6644 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:46:48.0155 6644 IKEEXT - ok
14:46:48.0201 6644 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
14:46:48.0248 6644 Impcd - ok
14:46:48.0295 6644 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
14:46:48.0373 6644 IntcDAud - ok
14:46:48.0435 6644 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:46:48.0435 6644 intelide - ok
14:46:48.0482 6644 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:46:48.0513 6644 intelppm - ok
14:46:48.0545 6644 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:46:48.0623 6644 IPBusEnum - ok
14:46:48.0779 6644 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:46:48.0857 6644 IpFilterDriver - ok
14:46:49.0044 6644 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:46:49.0153 6644 iphlpsvc - ok
14:46:49.0200 6644 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:46:49.0231 6644 IPMIDRV - ok
14:46:49.0262 6644 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:46:49.0325 6644 IPNAT - ok
14:46:49.0449 6644 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:46:49.0481 6644 iPod Service - ok
14:46:49.0527 6644 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:46:49.0621 6644 IRENUM - ok
14:46:49.0683 6644 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:46:49.0699 6644 isapnp - ok
14:46:49.0824 6644 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:46:49.0855 6644 iScsiPrt - ok
14:46:49.0886 6644 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
14:46:49.0902 6644 kbdclass - ok
14:46:49.0964 6644 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:46:49.0980 6644 kbdhid - ok
14:46:50.0042 6644 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:46:50.0058 6644 KeyIso - ok
14:46:50.0183 6644 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:46:50.0198 6644 KSecDD - ok
14:46:50.0245 6644 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:46:50.0276 6644 KSecPkg - ok
14:46:50.0307 6644 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:46:50.0385 6644 ksthunk - ok
14:46:50.0604 6644 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:46:50.0729 6644 KtmRm - ok
14:46:50.0822 6644 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:46:50.0916 6644 LanmanServer - ok
14:46:50.0978 6644 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:46:51.0056 6644 LanmanWorkstation - ok
14:46:51.0072 6644 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:46:51.0134 6644 lltdio - ok
14:46:51.0181 6644 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:46:51.0259 6644 lltdsvc - ok
14:46:51.0290 6644 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:46:51.0321 6644 lmhosts - ok
14:46:51.0384 6644 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:46:51.0399 6644 LMS - ok
14:46:51.0462 6644 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:46:51.0493 6644 LSI_FC - ok
14:46:51.0493 6644 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:46:51.0509 6644 LSI_SAS - ok
14:46:51.0524 6644 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:46:51.0555 6644 LSI_SAS2 - ok
14:46:51.0555 6644 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:46:51.0571 6644 LSI_SCSI - ok
14:46:51.0587 6644 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:46:51.0633 6644 luafv - ok
14:46:51.0696 6644 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:46:51.0727 6644 Mcx2Svc - ok
14:46:51.0743 6644 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:46:51.0774 6644 megasas - ok
14:46:51.0805 6644 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:46:51.0836 6644 MegaSR - ok
14:46:51.0977 6644 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
14:46:51.0992 6644 Microsoft Office Groove Audit Service - ok
14:46:52.0023 6644 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:46:52.0101 6644 MMCSS - ok
14:46:52.0133 6644 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:46:52.0195 6644 Modem - ok
14:46:52.0226 6644 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:46:52.0273 6644 monitor - ok
14:46:52.0335 6644 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
14:46:52.0351 6644 mouclass - ok
14:46:52.0382 6644 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:46:52.0429 6644 mouhid - ok
14:46:52.0491 6644 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:46:52.0507 6644 mountmgr - ok
14:46:52.0647 6644 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:46:52.0679 6644 MozillaMaintenance - ok
14:46:52.0757 6644 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
14:46:52.0788 6644 MpFilter - ok
14:46:52.0913 6644 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:46:52.0928 6644 mpio - ok
14:46:52.0975 6644 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:46:53.0037 6644 mpsdrv - ok
14:46:53.0178 6644 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:46:53.0287 6644 MpsSvc - ok
14:46:53.0349 6644 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:46:53.0412 6644 MRxDAV - ok
14:46:53.0474 6644 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:46:53.0568 6644 mrxsmb - ok
14:46:53.0630 6644 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:46:53.0677 6644 mrxsmb10 - ok
14:46:53.0739 6644 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:46:53.0755 6644 mrxsmb20 - ok
14:46:53.0833 6644 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:46:53.0849 6644 msahci - ok
14:46:53.0864 6644 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:46:53.0895 6644 msdsm - ok
14:46:53.0958 6644 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:46:53.0989 6644 MSDTC - ok
14:46:54.0020 6644 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:46:54.0051 6644 Msfs - ok
14:46:54.0098 6644 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:46:54.0192 6644 mshidkmdf - ok
14:46:54.0254 6644 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:46:54.0285 6644 msisadrv - ok
14:46:54.0379 6644 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:46:54.0457 6644 MSiSCSI - ok
14:46:54.0457 6644 msiserver - ok
14:46:54.0488 6644 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:46:54.0551 6644 MSKSSRV - ok
14:46:54.0644 6644 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
14:46:54.0675 6644 MsMpSvc - ok
14:46:54.0769 6644 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:46:54.0863 6644 MSPCLOCK - ok
14:46:54.0894 6644 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:46:54.0956 6644 MSPQM - ok
14:46:55.0003 6644 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:46:55.0034 6644 MsRPC - ok
14:46:55.0081 6644 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:46:55.0097 6644 mssmbios - ok
14:46:55.0143 6644 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:46:55.0221 6644 MSTEE - ok
14:46:55.0237 6644 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:46:55.0268 6644 MTConfig - ok
14:46:55.0331 6644 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:46:55.0346 6644 Mup - ok
14:46:55.0471 6644 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:46:55.0549 6644 napagent - ok
14:46:55.0627 6644 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:46:55.0674 6644 NativeWifiP - ok
14:46:55.0767 6644 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:46:55.0830 6644 NDIS - ok
14:46:55.0861 6644 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:46:55.0939 6644 NdisCap - ok
14:46:55.0970 6644 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:46:56.0033 6644 NdisTapi - ok
14:46:56.0079 6644 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:46:56.0126 6644 Ndisuio - ok
14:46:56.0173 6644 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:46:56.0235 6644 NdisWan - ok
14:46:56.0267 6644 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:46:56.0329 6644 NDProxy - ok
14:46:56.0360 6644 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:46:56.0438 6644 NetBIOS - ok
14:46:56.0485 6644 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:46:56.0563 6644 NetBT - ok
14:46:56.0610 6644 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:46:56.0625 6644 Netlogon - ok
14:46:56.0672 6644 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:46:56.0750 6644 Netman - ok
14:46:56.0766 6644 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:46:56.0813 6644 netprofm - ok
14:46:56.0859 6644 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:46:56.0891 6644 NetTcpPortSharing - ok
14:46:56.0922 6644 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:46:56.0953 6644 nfrd960 - ok
14:46:57.0015 6644 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:46:57.0047 6644 NisDrv - ok
14:46:57.0109 6644 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
14:46:57.0140 6644 NisSrv - ok
14:46:57.0312 6644 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:46:57.0359 6644 NlaSvc - ok
14:46:57.0577 6644 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
14:46:57.0624 6644 NOBU - ok
14:46:57.0686 6644 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:46:57.0733 6644 Npfs - ok
14:46:57.0780 6644 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:46:57.0858 6644 nsi - ok
14:46:57.0889 6644 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:46:57.0920 6644 nsiproxy - ok
14:46:58.0154 6644 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:46:58.0248 6644 Ntfs - ok
14:46:58.0326 6644 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:46:58.0435 6644 Null - ok
14:46:58.0529 6644 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:46:58.0560 6644 nvraid - ok
14:46:58.0591 6644 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:46:58.0607 6644 nvstor - ok
14:46:58.0685 6644 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:46:58.0700 6644 nv_agp - ok
14:46:58.0919 6644 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:46:58.0950 6644 odserv - ok
14:46:58.0997 6644 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:46:59.0028 6644 ohci1394 - ok
14:46:59.0090 6644 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:46:59.0121 6644 ose - ok
14:46:59.0168 6644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:46:59.0246 6644 p2pimsvc - ok
14:46:59.0293 6644 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:46:59.0324 6644 p2psvc - ok
14:46:59.0340 6644 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:46:59.0371 6644 Parport - ok
14:46:59.0433 6644 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:46:59.0449 6644 partmgr - ok
14:46:59.0480 6644 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:46:59.0574 6644 PcaSvc - ok
14:46:59.0652 6644 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
14:46:59.0714 6644 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
14:46:59.0777 6644 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:46:59.0792 6644 pci - ok
14:46:59.0855 6644 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:46:59.0870 6644 pciide - ok
14:46:59.0917 6644 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:46:59.0933 6644 pcmcia - ok
14:46:59.0964 6644 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:46:59.0964 6644 pcw - ok
14:46:59.0995 6644 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:47:00.0089 6644 PEAUTH - ok
14:47:00.0463 6644 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:47:00.0510 6644 PerfHost - ok
14:47:00.0603 6644 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:47:00.0697 6644 pla - ok
14:47:00.0791 6644 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:47:00.0837 6644 PlugPlay - ok
14:47:00.0869 6644 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:47:00.0915 6644 PNRPAutoReg - ok
14:47:00.0947 6644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:47:00.0978 6644 PNRPsvc - ok
14:47:01.0056 6644 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:47:01.0134 6644 PolicyAgent - ok
14:47:01.0181 6644 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:47:01.0259 6644 Power - ok
14:47:01.0321 6644 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:47:01.0399 6644 PptpMiniport - ok
14:47:01.0446 6644 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:47:01.0508 6644 Processor - ok
14:47:01.0586 6644 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:47:01.0664 6644 ProfSvc - ok
14:47:01.0664 6644 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:47:01.0680 6644 ProtectedStorage - ok
14:47:01.0758 6644 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:47:01.0805 6644 Psched - ok
14:47:01.0851 6644 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
14:47:01.0867 6644 PxHlpa64 - ok
14:47:01.0929 6644 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:47:02.0007 6644 ql2300 - ok
14:47:02.0039 6644 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:47:02.0054 6644 ql40xx - ok
14:47:02.0085 6644 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:47:02.0148 6644 QWAVE - ok
14:47:02.0163 6644 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:47:02.0241 6644 QWAVEdrv - ok
14:47:02.0273 6644 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:47:02.0351 6644 RasAcd - ok
14:47:02.0382 6644 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:47:02.0444 6644 RasAgileVpn - ok
14:47:02.0460 6644 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:47:02.0507 6644 RasAuto - ok
14:47:02.0600 6644 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:47:02.0725 6644 Rasl2tp - ok
14:47:02.0819 6644 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:47:02.0865 6644 RasMan - ok
14:47:02.0897 6644 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:47:02.0975 6644 RasPppoe - ok
14:47:03.0006 6644 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:47:03.0115 6644 RasSstp - ok
14:47:03.0162 6644 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:47:03.0271 6644 rdbss - ok
14:47:03.0302 6644 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:47:03.0349 6644 rdpbus - ok
14:47:03.0365 6644 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:47:03.0427 6644 RDPCDD - ok
14:47:03.0458 6644 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:47:03.0552 6644 RDPENCDD - ok
14:47:03.0567 6644 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:47:03.0599 6644 RDPREFMP - ok
14:47:03.0957 6644 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:47:04.0051 6644 RDPWD - ok
14:47:04.0113 6644 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:47:04.0129 6644 rdyboost - ok
14:47:04.0191 6644 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:47:04.0254 6644 RemoteAccess - ok
14:47:04.0316 6644 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:47:04.0410 6644 RemoteRegistry - ok
14:47:04.0457 6644 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
14:47:04.0488 6644 RFCOMM - ok
14:47:04.0769 6644 [ BDDC447AB46625A54619808575D5CB46 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
14:47:04.0847 6644 RoxMediaDB12OEM - ok
14:47:04.0878 6644 [ CE203243ADF512540249DF9C264F12DD ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
14:47:04.0893 6644 RoxWatch12 - ok
14:47:04.0940 6644 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:47:05.0018 6644 RpcEptMapper - ok
14:47:05.0081 6644 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:47:05.0143 6644 RpcLocator - ok
14:47:05.0205 6644 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:47:05.0252 6644 RpcSs - ok
14:47:05.0315 6644 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:47:05.0424 6644 rspndr - ok
14:47:05.0471 6644 [ 30F463768D5143BFD7B2DF822B53CF4D ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
14:47:05.0502 6644 RSUSBSTOR - ok
14:47:05.0549 6644 [ FD978B2BF8A9B2390DCBEF435E9C1F9F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
14:47:05.0564 6644 RTL8167 - ok
14:47:05.0595 6644 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:47:05.0627 6644 SamSs - ok
14:47:05.0736 6644 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:47:05.0751 6644 sbp2port - ok
14:47:05.0783 6644 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:47:05.0829 6644 SCardSvr - ok
14:47:05.0876 6644 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:47:05.0939 6644 scfilter - ok
14:47:06.0063 6644 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:47:06.0219 6644 Schedule - ok
14:47:06.0282 6644 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:47:06.0329 6644 SCPolicySvc - ok
14:47:06.0438 6644 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:47:06.0516 6644 SDRSVC - ok
14:47:06.0563 6644 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:47:06.0625 6644 secdrv - ok
14:47:06.0687 6644 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:47:06.0750 6644 seclogon - ok
14:47:06.0797 6644 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:47:06.0843 6644 SENS - ok
14:47:06.0859 6644 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:47:06.0921 6644 SensrSvc - ok
14:47:06.0953 6644 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:47:06.0984 6644 Serenum - ok
14:47:07.0015 6644 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:47:07.0046 6644 Serial - ok
14:47:07.0062 6644 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:47:07.0109 6644 sermouse - ok
14:47:07.0155 6644 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:47:07.0233 6644 SessionEnv - ok
14:47:07.0296 6644 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:47:07.0358 6644 sffdisk - ok
14:47:07.0421 6644 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:47:07.0452 6644 sffp_mmc - ok
14:47:07.0452 6644 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:47:07.0483 6644 sffp_sd - ok
14:47:07.0499 6644 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:47:07.0514 6644 sfloppy - ok
14:47:07.0779 6644 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
14:47:07.0811 6644 SftService - ok
14:47:08.0045 6644 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:47:08.0123 6644 SharedAccess - ok
14:47:08.0232 6644 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:47:08.0325 6644 ShellHWDetection - ok
14:47:08.0372 6644 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:47:08.0388 6644 SiSRaid2 - ok
14:47:08.0403 6644 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:47:08.0419 6644 SiSRaid4 - ok
14:47:08.0466 6644 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:47:08.0481 6644 SkypeUpdate - ok
14:47:08.0528 6644 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:47:08.0591 6644 Smb - ok
14:47:08.0622 6644 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:47:08.0669 6644 SNMPTRAP - ok
14:47:08.0871 6644 [ 5FA669007BD7874FBB70199211FFF64D ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
14:47:08.0887 6644 SplashtopRemoteService - ok
14:47:08.0934 6644 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:47:08.0965 6644 spldr - ok
14:47:09.0074 6644 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
14:47:09.0152 6644 Spooler - ok
14:47:09.0386 6644 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:47:09.0464 6644 sppsvc - ok
14:47:09.0511 6644 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:47:09.0573 6644 sppuinotify - ok
14:47:09.0620 6644 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:47:09.0698 6644 srv - ok
14:47:09.0714 6644 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:47:09.0776 6644 srv2 - ok
14:47:09.0792 6644 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:47:09.0839 6644 srvnet - ok
14:47:09.0870 6644 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:47:09.0948 6644 SSDPSRV - ok
14:47:09.0963 6644 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:47:10.0041 6644 SstpSvc - ok
14:47:10.0151 6644 [ 1CFA4A1F3C7BB4C8F299E00428EB8677 ] SSUService C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
14:47:10.0166 6644 SSUService - ok
14:47:10.0229 6644 [ 463E33B1EA7AF1E6EB87B66B831DB41A ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
14:47:10.0291 6644 STacSV - ok
14:47:10.0322 6644 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:47:10.0338 6644 stexstor - ok
14:47:10.0400 6644 [ 4304B75094E106FB5423A290C95841E5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
14:47:10.0447 6644 STHDA - ok
14:47:10.0494 6644 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:47:10.0572 6644 stisvc - ok
14:47:10.0665 6644 [ 9E182DD94496550A22A392CC1A8E0F52 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
14:47:10.0775 6644 stllssvr - ok
14:47:10.0821 6644 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:47:10.0853 6644 swenum - ok
14:47:11.0024 6644 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:47:11.0040 6644 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
14:47:11.0040 6644 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
14:47:11.0118 6644 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:47:11.0180 6644 swprv - ok
14:47:11.0258 6644 [ 8A3FBCB3D6D4710730D27DA4392A4863 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
14:47:11.0274 6644 SynTP - ok
14:47:11.0399 6644 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:47:11.0477 6644 SysMain - ok
14:47:11.0539 6644 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:47:11.0601 6644 TabletInputService - ok
14:47:11.0695 6644 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:47:11.0789 6644 TapiSrv - ok
14:47:11.0851 6644 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:47:11.0882 6644 TBS - ok
14:47:12.0116 6644 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:47:12.0194 6644 Tcpip - ok
14:47:12.0241 6644 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:47:12.0272 6644 TCPIP6 - ok
14:47:12.0335 6644 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:47:12.0350 6644 tcpipreg - ok
14:47:12.0428 6644 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:47:12.0475 6644 TDPIPE - ok
14:47:12.0522 6644 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:47:12.0537 6644 TDTCP - ok
14:47:12.0600 6644 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:47:12.0647 6644 tdx - ok
14:47:12.0709 6644 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:47:12.0725 6644 TermDD - ok
14:47:12.0834 6644 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:47:12.0912 6644 TermService - ok
14:47:12.0959 6644 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:47:13.0005 6644 Themes - ok
14:47:13.0021 6644 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:47:13.0083 6644 THREADORDER - ok
14:47:13.0099 6644 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:47:13.0177 6644 TrkWks - ok
14:47:13.0458 6644 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:47:13.0520 6644 TrustedInstaller - ok
14:47:13.0598 6644 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:47:13.0676 6644 tssecsrv - ok
14:47:13.0754 6644 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:47:13.0817 6644 TsUsbFlt - ok
14:47:13.0895 6644 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:47:13.0973 6644 tunnel - ok
14:47:14.0019 6644 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
14:47:14.0066 6644 TurboB - ok
14:47:14.0097 6644 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
14:47:14.0144 6644 TurboBoost - ok
14:47:14.0175 6644 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:47:14.0191 6644 uagp35 - ok
14:47:14.0331 6644 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:47:14.0378 6644 udfs - ok
14:47:14.0409 6644 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:47:14.0425 6644 UI0Detect - ok
14:47:14.0487 6644 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:47:14.0503 6644 uliagpkx - ok
14:47:14.0534 6644 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:47:14.0581 6644 umbus - ok
14:47:14.0612 6644 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:47:14.0643 6644 UmPass - ok
14:47:14.0753 6644 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:47:14.0815 6644 UNS - ok
14:47:14.0924 6644 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:47:15.0002 6644 upnphost - ok
14:47:15.0065 6644 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:47:15.0127 6644 USBAAPL64 - ok
14:47:15.0174 6644 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:47:15.0205 6644 usbccgp - ok
14:47:15.0252 6644 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:47:15.0283 6644 usbcir - ok
14:47:15.0345 6644 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:47:15.0361 6644 usbehci - ok
14:47:15.0408 6644 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:47:15.0455 6644 usbhub - ok
14:47:15.0486 6644 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:47:15.0501 6644 usbohci - ok
14:47:15.0517 6644 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:47:15.0548 6644 usbprint - ok
14:47:15.0579 6644 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:47:15.0626 6644 USBSTOR - ok
14:47:15.0657 6644 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:47:15.0704 6644 usbuhci - ok
14:47:15.0767 6644 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
14:47:15.0798 6644 usbvideo - ok
14:47:15.0876 6644 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:47:15.0969 6644 UxSms - ok
14:47:15.0985 6644 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:47:16.0001 6644 VaultSvc - ok
14:47:16.0079 6644 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:47:16.0094 6644 vdrvroot - ok
14:47:16.0157 6644 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:47:16.0250 6644 vds - ok
14:47:16.0281 6644 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:47:16.0297 6644 vga - ok
14:47:16.0313 6644 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:47:16.0359 6644 VgaSave - ok
14:47:16.0437 6644 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:47:16.0453 6644 vhdmp - ok
14:47:16.0500 6644 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:47:16.0531 6644 viaide - ok
14:47:16.0547 6644 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:47:16.0562 6644 volmgr - ok
14:47:16.0671 6644 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:47:16.0703 6644 volmgrx - ok
14:47:16.0718 6644 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:47:16.0749 6644 volsnap - ok
14:47:16.0781 6644 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:47:16.0796 6644 vsmraid - ok
14:47:16.0983 6644 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:47:17.0093 6644 VSS - ok
14:47:17.0108 6644 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:47:17.0124 6644 vwifibus - ok
14:47:17.0139 6644 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:47:17.0186 6644 vwififlt - ok
14:47:17.0233 6644 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:47:17.0311 6644 W32Time - ok
14:47:17.0358 6644 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:47:17.0389 6644 WacomPen - ok
14:47:17.0483 6644 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:47:17.0545 6644 WANARP - ok
14:47:17.0545 6644 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:47:17.0576 6644 Wanarpv6 - ok
14:47:17.0670 6644 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:47:17.0732 6644 WatAdminSvc - ok
14:47:17.0873 6644 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:47:17.0951 6644 wbengine - ok
14:47:17.0982 6644 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:47:18.0013 6644 WbioSrvc - ok
14:47:18.0091 6644 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:47:18.0153 6644 wcncsvc - ok
14:47:18.0185 6644 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:47:18.0231 6644 WcsPlugInService - ok
14:47:18.0247 6644 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:47:18.0263 6644 Wd - ok
14:47:18.0325 6644 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:47:18.0387 6644 Wdf01000 - ok
14:47:18.0403 6644 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:47:18.0528 6644 WdiServiceHost - ok
14:47:18.0528 6644 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:47:18.0543 6644 WdiSystemHost - ok
14:47:18.0590 6644 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:47:18.0653 6644 WebClient - ok
14:47:18.0684 6644 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:47:18.0777 6644 Wecsvc - ok
14:47:18.0793 6644 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:47:18.0871 6644 wercplsupport - ok
14:47:18.0918 6644 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:47:18.0965 6644 WerSvc - ok
14:47:18.0980 6644 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:47:19.0011 6644 WfpLwf - ok
14:47:19.0043 6644 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
14:47:19.0074 6644 WimFltr - ok
14:47:19.0105 6644 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:47:19.0121 6644 WIMMount - ok
14:47:19.0136 6644 WinHttpAutoProxySvc - ok
14:47:19.0199 6644 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:47:19.0277 6644 Winmgmt - ok
14:47:19.0479 6644 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:47:19.0604 6644 WinRM - ok
14:47:19.0667 6644 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:47:19.0713 6644 WinUsb - ok
14:47:19.0776 6644 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:47:19.0838 6644 Wlansvc - ok
14:47:19.0916 6644 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:47:19.0932 6644 wlcrasvc - ok
14:47:20.0025 6644 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:47:20.0088 6644 wlidsvc - ok
14:47:20.0150 6644 [ DE816A0624D54D68E1FB8A9028DCF81A ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
14:47:20.0197 6644 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
14:47:20.0197 6644 wltrysvc - detected UnsignedFile.Multi.Generic (1)
14:47:20.0244 6644 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:47:20.0275 6644 WmiAcpi - ok
14:47:20.0306 6644 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:47:20.0353 6644 wmiApSrv - ok
14:47:20.0384 6644 WMPNetworkSvc - ok
14:47:20.0415 6644 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:47:20.0447 6644 WPCSvc - ok
14:47:20.0493 6644 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:47:20.0525 6644 WPDBusEnum - ok
14:47:20.0571 6644 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:47:20.0634 6644 ws2ifsl - ok
14:47:20.0649 6644 WSearch - ok
14:47:20.0852 6644 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
14:47:20.0899 6644 wuauserv - ok
14:47:20.0977 6644 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:47:21.0071 6644 WudfPf - ok
14:47:21.0164 6644 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:47:21.0195 6644 WUDFRd - ok
14:47:21.0258 6644 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:47:21.0320 6644 wudfsvc - ok
14:47:21.0351 6644 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:47:21.0383 6644 WwanSvc - ok
14:47:21.0414 6644 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
14:47:21.0445 6644 yukonw7 - ok
14:47:21.0570 6644 [ 74983ADDCA2D9618512C088D856D6615 ] {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
14:47:21.0585 6644 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
14:47:21.0632 6644 ================ Scan global ===============================
14:47:21.0663 6644 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:47:21.0788 6644 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
14:47:21.0788 6644 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
14:47:21.0882 6644 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:47:21.0975 6644 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:47:21.0975 6644 [Global] - ok
14:47:21.0975 6644 ================ Scan MBR ==================================
14:47:22.0007 6644 [ C3220EB08ADD62E3ED9F72A1F4E4B1BB ] \Device\Harddisk0\DR0
14:47:32.0318 6644 \Device\Harddisk0\DR0 - ok
14:47:32.0318 6644 ================ Scan VBR ==================================
14:47:32.0350 6644 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
14:47:32.0350 6644 \Device\Harddisk0\DR0\Partition1 - ok
14:47:32.0381 6644 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
14:47:32.0381 6644 \Device\Harddisk0\DR0\Partition2 - ok
14:47:32.0381 6644 ================ Scan active images ========================
14:47:32.0381 6644 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
14:47:32.0381 6644 C:\Windows\System32\drivers\crashdmp.sys - ok
14:47:32.0381 6644 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
14:47:32.0381 6644 C:\Windows\System32\drivers\dumpfve.sys - ok
14:47:32.0396 6644 [ 2064090C9FAAD92C090D77E50E735B2E ] C:\Windows\System32\drivers\iaStor.sys
14:47:32.0396 6644 C:\Windows\System32\drivers\iaStor.sys - ok
14:47:32.0396 6644 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
14:47:32.0396 6644 C:\Windows\System32\drivers\beep.sys - ok
14:47:32.0412 6644 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
14:47:32.0412 6644 C:\Windows\System32\drivers\cdrom.sys - ok
14:47:32.0412 6644 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
14:47:32.0412 6644 C:\Windows\System32\drivers\null.sys - ok
14:47:32.0412 6644 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
14:47:32.0428 6644 C:\Windows\System32\drivers\RDPCDD.sys - ok
14:47:32.0428 6644 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
14:47:32.0428 6644 C:\Windows\System32\drivers\vga.sys - ok
14:47:32.0428 6644 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
14:47:32.0428 6644 C:\Windows\System32\drivers\videoprt.sys - ok
14:47:32.0428 6644 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
14:47:32.0428 6644 C:\Windows\System32\drivers\watchdog.sys - ok
14:47:32.0428 6644 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
14:47:32.0428 6644 C:\Windows\System32\drivers\RDPENCDD.sys - ok
14:47:32.0443 6644 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
14:47:32.0443 6644 C:\Windows\System32\drivers\RDPREFMP.sys - ok
14:47:32.0443 6644 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
14:47:32.0443 6644 C:\Windows\System32\drivers\msfs.sys - ok
14:47:32.0443 6644 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
14:47:32.0443 6644 C:\Windows\System32\drivers\npfs.sys - ok
14:47:32.0443 6644 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
14:47:32.0443 6644 C:\Windows\System32\drivers\netbt.sys - ok
14:47:32.0443 6644 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
14:47:32.0443 6644 C:\Windows\System32\drivers\tdi.sys - ok
14:47:32.0459 6644 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
14:47:32.0459 6644 C:\Windows\System32\drivers\tdx.sys - ok
14:47:32.0459 6644 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
14:47:32.0459 6644 C:\Windows\System32\drivers\afd.sys - ok
14:47:32.0459 6644 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
14:47:32.0459 6644 C:\Windows\System32\drivers\pacer.sys - ok
14:47:32.0459 6644 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
14:47:32.0459 6644 C:\Windows\System32\drivers\vwififlt.sys - ok
14:47:32.0474 6644 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
14:47:32.0474 6644 C:\Windows\System32\drivers\wfplwf.sys - ok
14:47:32.0474 6644 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
14:47:32.0474 6644 C:\Windows\System32\drivers\netbios.sys - ok
14:47:32.0474 6644 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
14:47:32.0474 6644 C:\Windows\System32\drivers\termdd.sys - ok
14:47:32.0474 6644 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
14:47:32.0474 6644 C:\Windows\System32\drivers\wanarp.sys - ok
14:47:32.0474 6644 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
14:47:32.0474 6644 C:\Windows\System32\drivers\rdbss.sys - ok
14:47:32.0490 6644 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
14:47:32.0490 6644 C:\Windows\System32\drivers\mssmbios.sys - ok
14:47:32.0490 6644 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
14:47:32.0490 6644 C:\Windows\System32\drivers\nsiproxy.sys - ok
14:47:32.0490 6644 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
14:47:32.0490 6644 C:\Windows\System32\drivers\blbdrive.sys - ok
14:47:32.0490 6644 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
14:47:32.0490 6644 C:\Windows\System32\drivers\dfsc.sys - ok
14:47:32.0506 6644 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
14:47:32.0506 6644 C:\Windows\System32\drivers\discache.sys - ok
14:47:32.0506 6644 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
14:47:32.0506 6644 C:\Windows\System32\drivers\tunnel.sys - ok
14:47:32.0506 6644 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
14:47:32.0506 6644 C:\Windows\System32\ntdll.dll - ok
14:47:32.0506 6644 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
14:47:32.0506 6644 C:\Windows\System32\smss.exe - ok
14:47:32.0506 6644 [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
14:47:32.0506 6644 C:\Windows\System32\drivers\igdkmd64.sys - ok
14:47:32.0521 6644 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
14:47:32.0521 6644 C:\Windows\System32\autochk.exe - ok
14:47:32.0521 6644 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
14:47:32.0521 6644 C:\Windows\System32\drivers\dxgkrnl.sys - ok
14:47:32.0521 6644 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
14:47:32.0521 6644 C:\Windows\System32\drivers\dxgmms1.sys - ok
14:47:32.0521 6644 [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
14:47:32.0521 6644 C:\Windows\System32\drivers\HECIx64.sys - ok
14:47:32.0537 6644 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
14:47:32.0537 6644 C:\Windows\System32\drivers\usbport.sys - ok
14:47:32.0537 6644 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
14:47:32.0537 6644 C:\Windows\System32\drivers\usbehci.sys - ok
14:47:32.0537 6644 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
14:47:32.0537 6644 C:\Windows\System32\drivers\hdaudbus.sys - ok
14:47:32.0537 6644 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
14:47:32.0537 6644 C:\Windows\System32\user32.dll - ok
14:47:32.0537 6644 [ 8B5D16D20774FC3727F44E161BE2C0AC ] C:\Windows\System32\drivers\BCMWL664.SYS
14:47:32.0537 6644 C:\Windows\System32\drivers\BCMWL664.SYS - ok
14:47:32.0552 6644 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
14:47:32.0552 6644 C:\Windows\System32\usp10.dll - ok
14:47:32.0552 6644 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
14:47:32.0552 6644 C:\Windows\System32\drivers\vwifibus.sys - ok
14:47:32.0552 6644 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
14:47:32.0552 6644 C:\Windows\System32\drivers\i8042prt.sys - ok
14:47:32.0552 6644 [ FD978B2BF8A9B2390DCBEF435E9C1F9F ] C:\Windows\System32\drivers\Rt64win7.sys
14:47:32.0552 6644 C:\Windows\System32\drivers\Rt64win7.sys - ok
14:47:32.0568 6644 [ 8A3FBCB3D6D4710730D27DA4392A4863 ] C:\Windows\System32\drivers\SynTP.sys
14:47:32.0568 6644 C:\Windows\System32\drivers\SynTP.sys - ok
14:47:32.0568 6644 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
14:47:32.0568 6644 C:\Windows\System32\drivers\usbd.sys - ok
14:47:32.0568 6644 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
14:47:32.0568 6644 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
14:47:32.0568 6644 [ DD587A55390ED2295BCE6D36AD567DA9 ] C:\Windows\System32\drivers\Impcd.sys
14:47:32.0568 6644 C:\Windows\System32\drivers\Impcd.sys - ok
14:47:32.0568 6644 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
14:47:32.0568 6644 C:\Windows\System32\drivers\kbdclass.sys - ok
14:47:32.0584 6644 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
14:47:32.0584 6644 C:\Windows\System32\drivers\mouclass.sys - ok
14:47:32.0584 6644 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
14:47:32.0584 6644 C:\Windows\System32\drivers\CmBatt.sys - ok
14:47:32.0584 6644 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
14:47:32.0584 6644 C:\Windows\System32\drivers\wmiacpi.sys - ok
14:47:32.0584 6644 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
14:47:32.0584 6644 C:\Windows\System32\drivers\agilevpn.sys - ok
14:47:32.0599 6644 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
14:47:32.0599 6644 C:\Windows\System32\drivers\CompositeBus.sys - ok
14:47:32.0599 6644 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
14:47:32.0599 6644 C:\Windows\System32\drivers\intelppm.sys - ok
14:47:32.0599 6644 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
14:47:32.0599 6644 C:\Windows\System32\drivers\rasl2tp.sys - ok
14:47:32.0599 6644 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
14:47:32.0599 6644 C:\Windows\System32\drivers\ndistapi.sys - ok
14:47:32.0599 6644 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
14:47:32.0599 6644 C:\Windows\System32\drivers\ndiswan.sys - ok
14:47:32.0615 6644 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
14:47:32.0615 6644 C:\Windows\System32\drivers\raspppoe.sys - ok
14:47:32.0615 6644 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
14:47:32.0615 6644 C:\Windows\System32\drivers\raspptp.sys - ok
14:47:32.0615 6644 [ D224B2E6BB543F1D8F1177D57FEC2950 ] C:\Windows\System32\drivers\bcmvwl64.sys
14:47:32.0615 6644 C:\Windows\System32\drivers\bcmvwl64.sys - ok
14:47:32.0615 6644 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
14:47:32.0615 6644 C:\Windows\System32\drivers\rassstp.sys - ok
14:47:32.0630 6644 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
14:47:32.0630 6644 C:\Windows\System32\drivers\ks.sys - ok
14:47:32.0630 6644 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
14:47:32.0630 6644 C:\Windows\System32\drivers\swenum.sys - ok
14:47:32.0630 6644 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
14:47:32.0630 6644 C:\Windows\System32\drivers\umbus.sys - ok
14:47:32.0630 6644 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
14:47:32.0630 6644 C:\Windows\System32\imagehlp.dll - ok
14:47:32.0630 6644 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
14:47:32.0630 6644 C:\Windows\System32\drivers\usbhub.sys - ok
14:47:32.0646 6644 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
14:47:32.0646 6644 C:\Windows\System32\msvcrt.dll - ok
14:47:32.0646 6644 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
14:47:32.0646 6644 C:\Windows\System32\nsi.dll - ok
14:47:32.0646 6644 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
14:47:32.0646 6644 C:\Windows\System32\setupapi.dll - ok
14:47:32.0646 6644 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
14:47:32.0646 6644 C:\Windows\System32\drivers\ndproxy.sys - ok
14:47:32.0646 6644 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
14:47:32.0662 6644 C:\Windows\System32\difxapi.dll - ok
14:47:32.0662 6644 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
14:47:32.0662 6644 C:\Windows\System32\kernel32.dll - ok
14:47:32.0662 6644 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
14:47:32.0662 6644 C:\Windows\System32\normaliz.dll - ok
14:47:32.0662 6644 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
14:47:32.0662 6644 C:\Windows\System32\psapi.dll - ok
14:47:32.0662 6644 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
14:47:32.0662 6644 C:\Windows\System32\wininet.dll - ok
14:47:32.0677 6644 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
14:47:32.0677 6644 C:\Windows\System32\comdlg32.dll - ok
14:47:32.0677 6644 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
14:47:32.0677 6644 C:\Windows\System32\lpk.dll - ok
14:47:32.0677 6644 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
14:47:32.0677 6644 C:\Windows\System32\ws2_32.dll - ok
14:47:32.0677 6644 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
14:47:32.0677 6644 C:\Windows\System32\msctf.dll - ok
14:47:32.0677 6644 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
14:47:32.0677 6644 C:\Windows\System32\rpcrt4.dll - ok
14:47:32.0693 6644 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
14:47:32.0693 6644 C:\Windows\System32\sechost.dll - ok
14:47:32.0693 6644 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
14:47:32.0693 6644 C:\Windows\System32\drivers\drmk.sys - ok
14:47:32.0693 6644 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
14:47:32.0693 6644 C:\Windows\System32\drivers\portcls.sys - ok
14:47:32.0693 6644 [ 4304B75094E106FB5423A290C95841E5 ] C:\Windows\System32\drivers\stwrt64.sys
14:47:32.0693 6644 C:\Windows\System32\drivers\stwrt64.sys - ok
14:47:32.0693 6644 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
14:47:32.0693 6644 C:\Windows\System32\drivers\ksthunk.sys - ok
14:47:32.0708 6644 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] C:\Windows\System32\drivers\IntcDAud.sys
14:47:32.0708 6644 C:\Windows\System32\drivers\IntcDAud.sys - ok
14:47:32.0708 6644 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
14:47:32.0708 6644 C:\Windows\System32\advapi32.dll - ok
14:47:32.0708 6644 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
14:47:32.0708 6644 C:\Windows\System32\Wldap32.dll - ok
14:47:32.0708 6644 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
14:47:32.0708 6644 C:\Windows\System32\iertutil.dll - ok
14:47:32.0724 6644 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
14:47:32.0724 6644 C:\Windows\System32\shell32.dll - ok
14:47:32.0724 6644 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
14:47:32.0724 6644 C:\Windows\System32\gdi32.dll - ok
14:47:32.0724 6644 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
14:47:32.0724 6644 C:\Windows\System32\clbcatq.dll - ok
14:47:32.0724 6644 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
14:47:32.0724 6644 C:\Windows\System32\urlmon.dll - ok
14:47:32.0724 6644 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
14:47:32.0724 6644 C:\Windows\System32\oleaut32.dll - ok
14:47:32.0740 6644 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
14:47:32.0740 6644 C:\Windows\System32\imm32.dll - ok
14:47:32.0740 6644 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
14:47:32.0740 6644 C:\Windows\System32\shlwapi.dll - ok
14:47:32.0740 6644 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
14:47:32.0740 6644 C:\Windows\System32\ole32.dll - ok
14:47:32.0740 6644 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
14:47:32.0740 6644 C:\Windows\System32\cfgmgr32.dll - ok
14:47:32.0740 6644 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
14:47:32.0740 6644 C:\Windows\System32\comctl32.dll - ok
14:47:32.0755 6644 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
14:47:32.0755 6644 C:\Windows\System32\devobj.dll - ok
14:47:32.0755 6644 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
14:47:32.0755 6644 C:\Windows\System32\KernelBase.dll - ok
14:47:32.0755 6644 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
14:47:32.0755 6644 C:\Windows\System32\wintrust.dll - ok
14:47:32.0755 6644 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
14:47:32.0755 6644 C:\Windows\System32\crypt32.dll - ok
14:47:32.0755 6644 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
14:47:32.0755 6644 C:\Windows\System32\msasn1.dll - ok
14:47:32.0771 6644 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
14:47:32.0771 6644 C:\Windows\SysWOW64\normaliz.dll - ok
14:47:32.0771 6644 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
14:47:32.0771 6644 C:\Windows\System32\drivers\dxapi.sys - ok
14:47:32.0771 6644 [ 523B9B64F2B6C630A2E0A87116C05F12 ] C:\Windows\System32\win32k.sys
14:47:32.0771 6644 C:\Windows\System32\win32k.sys - ok
14:47:32.0771 6644 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
14:47:32.0771 6644 C:\Windows\System32\csrsrv.dll - ok
14:47:32.0786 6644 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
14:47:32.0786 6644 C:\Windows\System32\csrss.exe - ok
14:47:32.0786 6644 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
14:47:32.0786 6644 C:\Windows\System32\basesrv.dll - ok
14:47:32.0786 6644 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\System32\winsrv.dll
14:47:32.0786 6644 C:\Windows\System32\winsrv.dll - ok
14:47:32.0786 6644 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
14:47:32.0786 6644 C:\Windows\System32\drivers\usbccgp.sys - ok
14:47:32.0786 6644 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
14:47:32.0786 6644 C:\Windows\System32\drivers\usbvideo.sys - ok
14:47:32.0802 6644 [ ED5CF92396A62F4C15110DCDB5E854D9 ] C:\Windows\System32\drivers\CtClsFlt.sys
14:47:32.0802 6644 C:\Windows\System32\drivers\CtClsFlt.sys - ok
14:47:32.0802 6644 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
14:47:32.0802 6644 C:\Windows\System32\drivers\hidparse.sys - ok
14:47:32.0802 6644 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
14:47:32.0802 6644 C:\Windows\System32\drivers\hidclass.sys - ok
14:47:32.0802 6644 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
14:47:32.0802 6644 C:\Windows\System32\drivers\hidusb.sys - ok
14:47:32.0818 6644 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
14:47:32.0818 6644 C:\Windows\System32\drivers\monitor.sys - ok
14:47:32.0818 6644 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
14:47:32.0818 6644 C:\Windows\System32\drivers\mouhid.sys - ok
14:47:32.0818 6644 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
14:47:32.0818 6644 C:\Windows\System32\sxssrv.dll - ok
14:47:32.0818 6644 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
14:47:32.0818 6644 C:\Windows\System32\tsddd.dll - ok
14:47:32.0818 6644 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
14:47:32.0818 6644 C:\Windows\System32\wininit.exe - ok
14:47:32.0833 6644 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
14:47:32.0833 6644 C:\Windows\System32\KBDUS.DLL - ok
14:47:32.0833 6644 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
14:47:32.0833 6644 C:\Windows\System32\profapi.dll - ok
14:47:32.0833 6644 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
14:47:32.0833 6644 C:\Windows\System32\RpcRtRemote.dll - ok
14:47:32.0833 6644 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
14:47:32.0833 6644 C:\Windows\System32\cdd.dll - ok
14:47:32.0849 6644 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
14:47:32.0849 6644 C:\Windows\System32\WlS0WndH.dll - ok
14:47:32.0849 6644 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
14:47:32.0849 6644 C:\Windows\System32\sxs.dll - ok
14:47:32.0849 6644 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
14:47:32.0849 6644 C:\Windows\System32\cryptbase.dll - ok
14:47:32.0849 6644 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
14:47:32.0849 6644 C:\Windows\System32\drivers\kbdhid.sys - ok
14:47:32.0849 6644 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
14:47:32.0849 6644 C:\Windows\System32\apphelp.dll - ok
14:47:32.0864 6644 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
14:47:32.0864 6644 C:\Windows\System32\lsasrv.dll - ok
14:47:32.0864 6644 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
14:47:32.0864 6644 C:\Windows\System32\lsass.exe - ok
14:47:32.0864 6644 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
14:47:32.0864 6644 C:\Windows\System32\lsm.exe - ok
14:47:32.0864 6644 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
14:47:32.0864 6644 C:\Windows\System32\services.exe - ok
14:47:32.0864 6644 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
14:47:32.0864 6644 C:\Windows\System32\sspisrv.dll - ok
14:47:32.0880 6644 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
14:47:32.0880 6644 C:\Windows\System32\sspicli.dll - ok
14:47:32.0880 6644 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
14:47:32.0880 6644 C:\Windows\System32\scesrv.dll - ok
14:47:32.0880 6644 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
14:47:32.0880 6644 C:\Windows\System32\scext.dll - ok
14:47:32.0880 6644 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
14:47:32.0880 6644 C:\Windows\System32\secur32.dll - ok
14:47:32.0896 6644 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
14:47:32.0896 6644 C:\Windows\System32\sysntfy.dll - ok
14:47:32.0896 6644 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
14:47:32.0896 6644 C:\Windows\System32\wmsgapi.dll - ok
14:47:32.0896 6644 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
14:47:32.0896 6644 C:\Windows\System32\samsrv.dll - ok
14:47:32.0896 6644 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
14:47:32.0896 6644 C:\Windows\System32\cryptdll.dll - ok
14:47:32.0896 6644 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
14:47:32.0896 6644 C:\Windows\System32\wevtapi.dll - ok
14:47:32.0911 6644 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
14:47:32.0911 6644 C:\Windows\System32\srvcli.dll - ok
14:47:32.0911 6644 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
14:47:32.0911 6644 C:\Windows\System32\authz.dll - ok
14:47:32.0911 6644 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
14:47:32.0911 6644 C:\Windows\System32\cngaudit.dll - ok
14:47:32.0911 6644 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
14:47:32.0911 6644 C:\Windows\System32\ncrypt.dll - ok
14:47:32.0927 6644 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
14:47:32.0927 6644 C:\Windows\System32\bcrypt.dll - ok
14:47:32.0927 6644 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
14:47:32.0927 6644 C:\Windows\System32\msprivs.dll - ok
14:47:32.0927 6644 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
14:47:32.0927 6644 C:\Windows\System32\netjoin.dll - ok
14:47:32.0927 6644 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
14:47:32.0927 6644 C:\Windows\System32\negoexts.dll - ok
14:47:32.0927 6644 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
14:47:32.0927 6644 C:\Windows\System32\winlogon.exe - ok
14:47:32.0942 6644 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
14:47:32.0942 6644 C:\Windows\System32\atmfd.dll - ok
14:47:32.0942 6644 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
14:47:32.0942 6644 C:\Windows\System32\kerberos.dll - ok
14:47:32.0942 6644 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
14:47:32.0942 6644 C:\Windows\System32\winsta.dll - ok
14:47:32.0942 6644 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
14:47:32.0942 6644 C:\Windows\System32\cryptsp.dll - ok
14:47:32.0942 6644 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
14:47:32.0942 6644 C:\Windows\System32\mswsock.dll - ok
14:47:32.0958 6644 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
14:47:32.0958 6644 C:\Windows\System32\msv1_0.dll - ok
14:47:32.0958 6644 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
14:47:32.0958 6644 C:\Windows\System32\netlogon.dll - ok
14:47:32.0958 6644 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
14:47:32.0958 6644 C:\Windows\System32\wship6.dll - ok
14:47:32.0958 6644 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
14:47:32.0958 6644 C:\Windows\System32\dnsapi.dll - ok
14:47:32.0958 6644 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
14:47:32.0958 6644 C:\Windows\System32\logoncli.dll - ok
14:47:32.0974 6644 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
14:47:32.0974 6644 C:\Windows\System32\schannel.dll - ok
14:47:32.0974 6644 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
14:47:32.0974 6644 C:\Windows\System32\wdigest.dll - ok
14:47:32.0974 6644 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
14:47:32.0974 6644 C:\Windows\System32\rsaenh.dll - ok
14:47:32.0974 6644 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
14:47:32.0974 6644 C:\Windows\System32\TSpkg.dll - ok
14:47:32.0989 6644 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
14:47:32.0989 6644 C:\Windows\System32\pku2u.dll - ok
14:47:32.0989 6644 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
14:47:32.0989 6644 C:\Windows\System32\LIVESSP.DLL - ok
14:47:32.0989 6644 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
14:47:32.0989 6644 C:\Windows\System32\bcryptprimitives.dll - ok
14:47:32.0989 6644 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
14:47:32.0989 6644 C:\Windows\System32\credssp.dll - ok
14:47:32.0989 6644 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
14:47:32.0989 6644 C:\Windows\System32\efslsaext.dll - ok
14:47:33.0005 6644 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
14:47:33.0005 6644 C:\Windows\System32\ubpm.dll - ok
14:47:33.0005 6644 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
14:47:33.0005 6644 C:\Windows\System32\scecli.dll - ok
14:47:33.0005 6644 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
14:47:33.0005 6644 C:\Windows\System32\svchost.exe - ok
14:47:33.0005 6644 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
14:47:33.0005 6644 C:\Windows\System32\umpnpmgr.dll - ok
14:47:33.0020 6644 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
14:47:33.0020 6644 C:\Windows\System32\devrtl.dll - ok
14:47:33.0020 6644 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
14:47:33.0020 6644 C:\Windows\System32\SPInf.dll - ok
14:47:33.0020 6644 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
14:47:33.0020 6644 C:\Windows\System32\userenv.dll - ok
14:47:33.0020 6644 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
14:47:33.0020 6644 C:\Windows\System32\gpapi.dll - ok
14:47:33.0020 6644 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
14:47:33.0020 6644 C:\Windows\System32\umpo.dll - ok
14:47:33.0036 6644 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
14:47:33.0036 6644 C:\Windows\System32\pcwum.dll - ok
14:47:33.0036 6644 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
14:47:33.0036 6644 C:\Windows\System32\drivers\luafv.sys - ok
14:47:33.0036 6644 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
14:47:33.0036 6644 C:\Windows\System32\powrprof.dll - ok
14:47:33.0036 6644 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
14:47:33.0036 6644 C:\Windows\System32\drivers\WUDFPf.sys - ok
14:47:33.0036 6644 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
14:47:33.0036 6644 C:\Windows\System32\rpcss.dll - ok
14:47:33.0052 6644 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
14:47:33.0052 6644 C:\Windows\System32\RpcEpMap.dll - ok
14:47:33.0052 6644 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
14:47:33.0052 6644 C:\Windows\System32\wshqos.dll - ok
14:47:33.0052 6644 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
14:47:33.0052 6644 C:\Windows\System32\WSHTCPIP.DLL - ok
14:47:33.0052 6644 [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
14:47:33.0052 6644 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
14:47:33.0067 6644 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
14:47:33.0067 6644 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
14:47:33.0067 6644 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
14:47:33.0067 6644 C:\Windows\System32\FirewallAPI.dll - ok
14:47:33.0067 6644 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
14:47:33.0067 6644 C:\Windows\System32\version.dll - ok
14:47:33.0067 6644 [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
14:47:33.0067 6644 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
14:47:33.0067 6644 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
14:47:33.0067 6644 C:\Windows\System32\wtsapi32.dll - ok
14:47:33.0083 6644 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
14:47:33.0083 6644 C:\Windows\System32\LogonUI.exe - ok
14:47:33.0083 6644 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
14:47:33.0083 6644 C:\Windows\System32\ntmarta.dll - ok
14:47:33.0083 6644 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
14:47:33.0083 6644 C:\Windows\System32\authui.dll - ok
14:47:33.0083 6644 [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
14:47:33.0083 6644 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
14:47:33.0098 6644 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
14:47:33.0098 6644 C:\Windows\System32\cryptui.dll - ok
14:47:33.0098 6644 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
14:47:33.0098 6644 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
14:47:33.0098 6644 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
14:47:33.0098 6644 C:\Windows\System32\propsys.dll - ok
14:47:33.0098 6644 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
14:47:33.0098 6644 C:\Windows\System32\samlib.dll - ok
14:47:33.0098 6644 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
14:47:33.0098 6644 C:\Windows\System32\shacct.dll - ok
14:47:33.0114 6644 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
14:47:33.0114 6644 C:\Windows\System32\uxtheme.dll - ok
14:47:33.0114 6644 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
14:47:33.0114 6644 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
14:47:33.0114 6644 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
14:47:33.0114 6644 C:\Windows\System32\dui70.dll - ok
14:47:33.0114 6644 [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
14:47:33.0114 6644 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
14:47:33.0130 6644 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
14:47:33.0130 6644 C:\Windows\System32\fltLib.dll - ok
14:47:33.0130 6644 [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
14:47:33.0130 6644 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
14:47:33.0130 6644 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
14:47:33.0130 6644 C:\Windows\System32\wevtsvc.dll - ok
14:47:33.0130 6644 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
14:47:33.0130 6644 C:\Windows\System32\audiosrv.dll - ok
14:47:33.0130 6644 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
14:47:33.0130 6644 C:\Windows\System32\MMDevAPI.dll - ok
14:47:33.0145 6644 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
14:47:33.0145 6644 C:\Windows\System32\duser.dll - ok
14:47:33.0145 6644 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
14:47:33.0145 6644 C:\Windows\System32\profsvc.dll - ok
14:47:33.0145 6644 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
14:47:33.0145 6644 C:\Windows\System32\avrt.dll - ok
14:47:33.0145 6644 [ 463E33B1EA7AF1E6EB87B66B831DB41A ] C:\Program Files\IDT\WDM\stacsv64.exe
14:47:33.0145 6644 C:\Program Files\IDT\WDM\stacsv64.exe - ok
14:47:33.0145 6644 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
14:47:33.0145 6644 C:\Windows\System32\dsound.dll - ok
14:47:33.0161 6644 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
14:47:33.0161 6644 C:\Windows\System32\winmm.dll - ok
14:47:33.0161 6644 [ 81E60CBA5B448B7DBAD26D02E21BF4BA ] C:\Windows\System32\stapi64.dll
14:47:33.0161 6644 C:\Windows\System32\stapi64.dll - ok
14:47:33.0161 6644 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
14:47:33.0161 6644 C:\Windows\System32\mmcss.dll - ok
14:47:33.0161 6644 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
14:47:33.0161 6644 C:\Windows\System32\adtschema.dll - ok
14:47:33.0176 6644 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
14:47:33.0176 6644 C:\Windows\System32\drivers\MpFilter.sys - ok
14:47:33.0176 6644 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
14:47:33.0176 6644 C:\Windows\System32\wlansvc.dll - ok
14:47:33.0176 6644 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
14:47:33.0176 6644 C:\Windows\System32\SndVolSSO.dll - ok
14:47:33.0176 6644 [ 12FD09889C8A6141C8D10F7AE48BBAC8 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
14:47:33.0176 6644 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
14:47:33.0176 6644 [ 30042487E83BF3B518DD9B92A2F52F42 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A0070C5B-3991-4C5F-9E52-30B7A8FCBE40}\mpengine.dll
14:47:33.0176 6644 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A0070C5B-3991-4C5F-9E52-30B7A8FCBE40}\mpengine.dll - ok
14:47:33.0192 6644 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
14:47:33.0192 6644 C:\Windows\System32\hid.dll - ok
14:47:33.0192 6644 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
14:47:33.0192 6644 C:\Windows\System32\dwmapi.dll - ok
14:47:33.0192 6644 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
14:47:33.0192 6644 C:\Windows\System32\xmllite.dll - ok
14:47:33.0192 6644 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
14:47:33.0192 6644 C:\Windows\System32\WindowsCodecs.dll - ok
14:47:33.0208 6644 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
14:47:33.0208 6644 C:\Windows\System32\winbrand.dll - ok
14:47:33.0208 6644 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
14:47:33.0208 6644 C:\Windows\System32\VaultCredProvider.dll - ok
14:47:33.0208 6644 [ 000A55397EED4C3172AC16CA7C975C11 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
14:47:33.0208 6644 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
14:47:33.0208 6644 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
14:47:33.0208 6644 C:\Windows\System32\winspool.drv - ok
14:47:33.0208 6644 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
14:47:33.0208 6644 C:\Windows\System32\bthprops.cpl - ok
14:47:33.0223 6644 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
14:47:33.0223 6644 C:\Windows\System32\BioCredProv.dll - ok
14:47:33.0223 6644 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
14:47:33.0223 6644 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
14:47:33.0223 6644 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
14:47:33.0223 6644 C:\Windows\System32\winbio.dll - ok
14:47:33.0223 6644 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
14:47:33.0223 6644 C:\Windows\System32\credui.dll - ok
14:47:33.0223 6644 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
14:47:33.0223 6644 C:\Windows\System32\netapi32.dll - ok
14:47:33.0239 6644 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
14:47:33.0239 6644 C:\Windows\System32\netutils.dll - ok
14:47:33.0239 6644 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
14:47:33.0239 6644 C:\Windows\System32\samcli.dll - ok
14:47:33.0239 6644 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
14:47:33.0239 6644 C:\Windows\System32\vaultcli.dll - ok
14:47:33.0239 6644 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
14:47:33.0239 6644 C:\Windows\System32\wkscli.dll - ok
14:47:33.0254 6644 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
14:47:33.0254 6644 C:\Windows\System32\certCredProvider.dll - ok
14:47:33.0254 6644 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
14:47:33.0254 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
14:47:33.0254 6644 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
14:47:33.0254 6644 C:\Windows\System32\rasplap.dll - ok
14:47:33.0254 6644 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
14:47:33.0254 6644 C:\Windows\System32\rasapi32.dll - ok
14:47:33.0254 6644 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
14:47:33.0254 6644 C:\Windows\System32\rasman.dll - ok
14:47:33.0270 6644 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
14:47:33.0270 6644 C:\Windows\System32\rtutils.dll - ok
14:47:33.0270 6644 [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
14:47:33.0270 6644 C:\Windows\System32\termsrv.dll - ok
14:47:33.0270 6644 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
14:47:33.0270 6644 C:\Windows\System32\audiodg.exe - ok
14:47:33.0270 6644 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
14:47:33.0270 6644 C:\Windows\System32\AudioSes.dll - ok
14:47:33.0270 6644 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
14:47:33.0270 6644 C:\Windows\System32\wdmaud.drv - ok
14:47:33.0286 6644 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
14:47:33.0286 6644 C:\Windows\System32\gpsvc.dll - ok
14:47:33.0286 6644 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
14:47:33.0286 6644 C:\Windows\System32\ksuser.dll - ok
14:47:33.0286 6644 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
14:47:33.0286 6644 C:\Windows\System32\msacm32.dll - ok
14:47:33.0286 6644 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
14:47:33.0286 6644 C:\Windows\System32\msacm32.drv - ok
14:47:33.0301 6644 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
14:47:33.0301 6644 C:\Windows\System32\midimap.dll - ok
14:47:33.0301 6644 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
14:47:33.0301 6644 C:\Windows\System32\atl.dll - ok
14:47:33.0301 6644 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
14:47:33.0301 6644 C:\Windows\System32\AudioEng.dll - ok
14:47:33.0301 6644 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
14:47:33.0301 6644 C:\Windows\System32\nlaapi.dll - ok
14:47:33.0301 6644 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
14:47:33.0301 6644 C:\Windows\System32\themeservice.dll - ok
14:47:33.0317 6644 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
14:47:33.0317 6644 C:\Windows\System32\dsrole.dll - ok
14:47:33.0317 6644 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
14:47:33.0317 6644 C:\Windows\System32\es.dll - ok
14:47:33.0317 6644 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
14:47:33.0317 6644 C:\Windows\System32\AUDIOKSE.dll - ok
14:47:33.0317 6644 [ 4416A4796FC9BA1EF2BD06833B2FFD81 ] C:\Windows\System32\stapo64.dll
14:47:33.0317 6644 C:\Windows\System32\stapo64.dll - ok
14:47:33.0317 6644 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
14:47:33.0317 6644 C:\Windows\System32\Sens.dll - ok
14:47:33.0332 6644 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
14:47:33.0332 6644 C:\Windows\System32\slc.dll - ok
14:47:33.0332 6644 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
14:47:33.0332 6644 C:\Windows\System32\uxsms.dll - ok
14:47:33.0332 6644 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
14:47:33.0332 6644 C:\Windows\System32\WUDFPlatform.dll - ok
14:47:33.0332 6644 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
14:47:33.0332 6644 C:\Windows\System32\WUDFSvc.dll - ok
14:47:33.0348 6644 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
14:47:33.0348 6644 C:\Windows\System32\drivers\lltdio.sys - ok
14:47:33.0348 6644 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
14:47:33.0348 6644 C:\Windows\System32\drivers\nwifi.sys - ok
14:47:33.0348 6644 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
14:47:33.0348 6644 C:\Windows\System32\drivers\ndisuio.sys - ok
14:47:33.0348 6644 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
14:47:33.0348 6644 C:\Windows\System32\drivers\rspndr.sys - ok
14:47:33.0364 6644 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] C:\Windows\System32\drivers\TurboB.sys
14:47:33.0364 6644 C:\Windows\System32\drivers\TurboB.sys - ok
14:47:33.0364 6644 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
14:47:33.0364 6644 C:\Windows\System32\IPHLPAPI.DLL - ok
14:47:33.0364 6644 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
14:47:33.0364 6644 C:\Windows\System32\lmhsvc.dll - ok
14:47:33.0379 6644 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
14:47:33.0379 6644 C:\Windows\System32\nsisvc.dll - ok
14:47:33.0379 6644 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
14:47:33.0379 6644 C:\Windows\System32\dhcpcore.dll - ok
14:47:33.0379 6644 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
14:47:33.0379 6644 C:\Windows\System32\dhcpcore6.dll - ok
14:47:33.0379 6644 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
14:47:33.0379 6644 C:\Windows\System32\dnsrslvr.dll - ok
14:47:33.0395 6644 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
14:47:33.0395 6644 C:\Windows\System32\nrpsrv.dll - ok
14:47:33.0395 6644 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
14:47:33.0395 6644 C:\Windows\System32\winnsi.dll - ok
14:47:33.0395 6644 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
14:47:33.0395 6644 C:\Windows\System32\FWPUCLNT.DLL - ok
14:47:33.0395 6644 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
14:47:33.0395 6644 C:\Windows\System32\UXInit.dll - ok
14:47:33.0395 6644 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
14:47:33.0395 6644 C:\Windows\System32\dnsext.dll - ok
14:47:33.0410 6644 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
14:47:33.0410 6644 C:\Windows\System32\eapsvc.dll - ok
14:47:33.0410 6644 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
14:47:33.0410 6644 C:\Windows\System32\keyiso.dll - ok
14:47:33.0410 6644 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
14:47:33.0410 6644 C:\Windows\System32\eapphost.dll - ok
14:47:33.0410 6644 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
14:47:33.0410 6644 C:\Windows\System32\comres.dll - ok
14:47:33.0426 6644 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
14:47:33.0426 6644 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
14:47:33.0426 6644 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
14:47:33.0426 6644 C:\Windows\System32\netprofm.dll - ok
14:47:33.0426 6644 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
14:47:33.0426 6644 C:\Windows\System32\drivers\fltMgr.sys - ok
14:47:33.0426 6644 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
14:47:33.0426 6644 C:\Windows\System32\MPSSVC.dll - ok
14:47:33.0426 6644 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
14:47:33.0426 6644 C:\Windows\System32\PSHED.DLL - ok
14:47:33.0442 6644 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
14:47:33.0442 6644 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
14:47:33.0442 6644 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
14:47:33.0442 6644 C:\Windows\System32\dhcpcsvc.dll - ok
14:47:33.0442 6644 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
14:47:33.0442 6644 C:\Windows\System32\dhcpcsvc6.dll - ok
14:47:33.0442 6644 [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
14:47:33.0442 6644 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
14:47:33.0442 6644 [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
14:47:33.0442 6644 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
14:47:33.0457 6644 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
14:47:33.0457 6644 C:\Windows\System32\conhost.exe - ok
14:47:33.0457 6644 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
14:47:33.0457 6644 C:\Windows\System32\cabinet.dll - ok
14:47:33.0457 6644 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
14:47:33.0457 6644 C:\Windows\System32\p2pcollab.dll - ok
14:47:33.0457 6644 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
14:47:33.0457 6644 C:\Windows\System32\QAGENTRT.DLL - ok
14:47:33.0473 6644 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
14:47:33.0473 6644 C:\Windows\System32\fveui.dll - ok
14:47:33.0473 6644 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
14:47:33.0473 6644 C:\Windows\System32\WMALFXGFXDSP.dll - ok
14:47:33.0473 6644 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
14:47:33.0473 6644 C:\Windows\System32\mfplat.dll - ok
14:47:33.0473 6644 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
14:47:33.0473 6644 C:\Windows\System32\umb.dll - ok
14:47:33.0473 6644 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
14:47:33.0473 6644 C:\Windows\System32\wlanmsm.dll - ok
14:47:33.0488 6644 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
14:47:33.0488 6644 C:\Windows\System32\wlansec.dll - ok
14:47:33.0488 6644 [ B4F1BFD9165FDD72C03B7D9C20A39F71 ] C:\Windows\System32\ctapo64.dll
14:47:33.0488 6644 C:\Windows\System32\ctapo64.dll - ok
14:47:33.0488 6644 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
14:47:33.0488 6644 C:\Windows\System32\eappprxy.dll - ok
14:47:33.0488 6644 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
14:47:33.0488 6644 C:\Windows\System32\onex.dll - ok
14:47:33.0488 6644 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
14:47:33.0488 6644 C:\Windows\System32\eappcfg.dll - ok
14:47:33.0504 6644 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
14:47:33.0504 6644 C:\Windows\System32\l2gpstore.dll - ok
14:47:33.0504 6644 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
14:47:33.0504 6644 C:\Windows\System32\WinSCard.dll - ok
14:47:33.0504 6644 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
14:47:33.0504 6644 C:\Windows\System32\wlanutil.dll - ok
14:47:33.0504 6644 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
14:47:33.0504 6644 C:\Windows\System32\wlgpclnt.dll - ok
14:47:33.0504 6644 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
14:47:33.0504 6644 C:\Windows\System32\msxml6.dll - ok
14:47:33.0520 6644 [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
14:47:33.0520 6644 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
14:47:33.0520 6644 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
14:47:33.0520 6644 C:\Windows\System32\AESTAR64.dll - ok
14:47:33.0520 6644 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
14:47:33.0520 6644 C:\Windows\System32\oleacc.dll - ok
14:47:33.0520 6644 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
14:47:33.0520 6644 C:\Windows\System32\slwga.dll - ok
14:47:33.0520 6644 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
14:47:33.0520 6644 C:\Windows\System32\sppc.dll - ok
14:47:33.0535 6644 [ 3D9FC44CA93001B423F89876369F1348 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
14:47:33.0535 6644 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
14:47:33.0535 6644 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
14:47:33.0535 6644 C:\Windows\System32\wlanext.exe - ok
14:47:33.0535 6644 [ DE816A0624D54D68E1FB8A9028DCF81A ] C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
14:47:33.0535 6644 C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE - ok
14:47:33.0535 6644 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
14:47:33.0535 6644 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
14:47:33.0551 6644 [ 95CAE3D82E682CB56BF6F02D281C4E08 ] C:\Windows\System32\bcmihvsrv64.dll
14:47:33.0551 6644 C:\Windows\System32\bcmihvsrv64.dll - ok
14:47:33.0551 6644 [ B6F0676FC23D543452FE81D8B71D24E7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
14:47:33.0551 6644 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
14:47:33.0551 6644 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
14:47:33.0551 6644 C:\Windows\System32\UIAutomationCore.dll - ok
14:47:33.0551 6644 [ F7BA79CEFBD9DF4AF781E00356FBF48E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
14:47:33.0551 6644 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
14:47:33.0566 6644 [ 79E25E0628A2FF7A74356EAEF5011C26 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
14:47:33.0566 6644 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
14:47:33.0566 6644 [ BEDAD3F3FDD6B0B736D097E8CF3847E7 ] C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
14:47:33.0566 6644 C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE - ok
14:47:33.0566 6644 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
14:47:33.0566 6644 C:\Windows\System32\shsvcs.dll - ok
14:47:33.0566 6644 [ 5A4635A1385F2E10AC02BE81A617A706 ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
14:47:33.0566 6644 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
14:47:33.0566 6644 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
14:47:33.0566 6644 C:\Windows\System32\schedsvc.dll - ok
14:47:33.0582 6644 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
14:47:33.0582 6644 C:\Windows\System32\ktmw32.dll - ok
14:47:33.0582 6644 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
14:47:33.0582 6644 C:\Windows\System32\wlanapi.dll - ok
14:47:33.0582 6644 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
14:47:33.0582 6644 C:\Windows\System32\fveapi.dll - ok
14:47:33.0582 6644 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
14:47:33.0582 6644 C:\Windows\System32\netcfgx.dll - ok
14:47:33.0582 6644 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
14:47:33.0582 6644 C:\Windows\System32\fvecerts.dll - ok
14:47:33.0598 6644 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
14:47:33.0598 6644 C:\Windows\System32\tbs.dll - ok
14:47:33.0598 6644 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
14:47:33.0598 6644 C:\Windows\System32\taskcomp.dll - ok
14:47:33.0598 6644 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
14:47:33.0598 6644 C:\Windows\System32\wiarpc.dll - ok
14:47:33.0598 6644 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
14:47:33.0598 6644 C:\Windows\System32\mscoree.dll - ok
14:47:33.0613 6644 [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
14:47:33.0613 6644 C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
14:47:33.0613 6644 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
14:47:33.0613 6644 C:\Windows\System32\msimg32.dll - ok
14:47:33.0613 6644 [ 252DF481AA820A659440307B8261013F ] C:\Program Files\Dell\DW WLAN Card\Packet.dll
14:47:33.0613 6644 C:\Program Files\Dell\DW WLAN Card\Packet.dll - ok
14:47:33.0613 6644 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
14:47:33.0613 6644 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
14:47:33.0613 6644 [ DB4BC74DC444CC7A5F8F6DF2D38FBD96 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
14:47:33.0613 6644 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll - ok
14:47:33.0629 6644 [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
14:47:33.0629 6644 C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
14:47:33.0629 6644 [ 324C4D3C3FC6ACCB72D5D83986442EBB ] C:\Windows\System32\drivers\npf.sys
14:47:33.0629 6644 C:\Windows\System32\drivers\npf.sys - ok
14:47:33.0629 6644 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
14:47:33.0629 6644 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
14:47:33.0629 6644 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
14:47:33.0629 6644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
14:47:33.0644 6644 [ 6061114558D3D1CBE66F2EF2AF148966 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80.dll
14:47:33.0644 6644 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80.dll - ok
14:47:33.0644 6644 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
14:47:33.0644 6644 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
14:47:33.0644 6644 [ 442235AC4F20B195F932990CAE47408E ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll
14:47:33.0644 6644 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll - ok
14:47:33.0644 6644 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
14:47:33.0644 6644 C:\Windows\System32\imageres.dll - ok
14:47:33.0660 6644 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
14:47:33.0660 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
14:47:33.0660 6644 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
14:47:33.0660 6644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
14:47:33.0660 6644 [ EC73B1951132C3681C685D01F520171F ] C:\Program Files\Dell\DW WLAN Card\bcmwlrmt.dll
14:47:33.0660 6644 C:\Program Files\Dell\DW WLAN Card\bcmwlrmt.dll - ok
14:47:33.0660 6644 [ D6A13669CC7B9D4625A0CAAF0B1ED85B ] C:\Windows\System32\wltrynt.dll
14:47:33.0660 6644 C:\Windows\System32\wltrynt.dll - ok
14:47:33.0660 6644 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
14:47:33.0660 6644 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
14:47:33.0676 6644 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
14:47:33.0676 6644 C:\Windows\System32\drivers\http.sys - ok
14:47:33.0676 6644 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
14:47:33.0676 6644 C:\Windows\System32\spoolsv.exe - ok
14:47:33.0676 6644 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
14:47:33.0676 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
14:47:33.0676 6644 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
14:47:33.0676 6644 C:\Windows\System32\BFE.DLL - ok
14:47:33.0691 6644 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
14:47:33.0691 6644 C:\Windows\System32\drivers\bowser.sys - ok
14:47:33.0691 6644 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
14:47:33.0691 6644 C:\Windows\System32\drivers\mpsdrv.sys - ok
14:47:33.0691 6644 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
14:47:33.0691 6644 C:\Windows\System32\wfapigp.dll - ok
14:47:33.0691 6644 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
14:47:33.0691 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
14:47:33.0707 6644 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
14:47:33.0707 6644 C:\Windows\System32\mscms.dll - ok
14:47:33.0707 6644 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
14:47:33.0707 6644 C:\Windows\System32\pcasvc.dll - ok
14:47:33.0707 6644 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
14:47:33.0707 6644 C:\Windows\System32\snmptrap.exe - ok
14:47:33.0707 6644 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
14:47:33.0707 6644 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
14:47:33.0707 6644 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
14:47:33.0707 6644 C:\Windows\System32\provsvc.dll - ok
14:47:33.0722 6644 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
14:47:33.0722 6644 C:\Windows\System32\sstpsvc.dll - ok
14:47:33.0722 6644 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
14:47:33.0722 6644 C:\Windows\System32\drivers\mrxsmb.sys - ok
14:47:33.0722 6644 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
14:47:33.0722 6644 C:\Windows\System32\drivers\mrxsmb10.sys - ok
14:47:33.0722 6644 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
14:47:33.0722 6644 C:\Windows\System32\drivers\mrxsmb20.sys - ok
14:47:33.0722 6644 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
14:47:33.0722 6644 C:\Windows\System32\wkssvc.dll - ok
14:47:33.0738 6644 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:47:33.0738 6644 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
14:47:33.0738 6644 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
14:47:33.0738 6644 C:\Windows\SysWOW64\ntdll.dll - ok
14:47:33.0738 6644 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
14:47:33.0738 6644 C:\Windows\System32\wow64.dll - ok
14:47:33.0738 6644 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
14:47:33.0738 6644 C:\Windows\System32\wow64win.dll - ok
14:47:33.0754 6644 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
14:47:33.0754 6644 C:\Windows\System32\wow64cpu.dll - ok
14:47:33.0754 6644 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
14:47:33.0754 6644 C:\Windows\SysWOW64\kernel32.dll - ok
14:47:33.0754 6644 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
14:47:33.0754 6644 C:\Windows\SysWOW64\KernelBase.dll - ok
14:47:33.0754 6644 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
14:47:33.0754 6644 C:\Windows\SysWOW64\user32.dll - ok
14:47:33.0754 6644 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
14:47:33.0754 6644 C:\Windows\SysWOW64\gdi32.dll - ok
14:47:33.0769 6644 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
14:47:33.0769 6644 C:\Windows\SysWOW64\lpk.dll - ok
14:47:33.0769 6644 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
14:47:33.0769 6644 C:\Windows\SysWOW64\usp10.dll - ok
14:47:33.0769 6644 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
14:47:33.0769 6644 C:\Windows\SysWOW64\msvcrt.dll - ok
14:47:33.0769 6644 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
14:47:33.0769 6644 C:\Windows\SysWOW64\advapi32.dll - ok
14:47:33.0769 6644 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
14:47:33.0769 6644 C:\Windows\SysWOW64\rpcrt4.dll - ok
14:47:33.0785 6644 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
14:47:33.0785 6644 C:\Windows\SysWOW64\sechost.dll - ok
14:47:33.0785 6644 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
14:47:33.0785 6644 C:\Windows\SysWOW64\cryptbase.dll - ok
14:47:33.0785 6644 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
14:47:33.0785 6644 C:\Windows\SysWOW64\shell32.dll - ok
14:47:33.0785 6644 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
14:47:33.0785 6644 C:\Windows\SysWOW64\sspicli.dll - ok
14:47:33.0785 6644 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
14:47:33.0785 6644 C:\Windows\SysWOW64\ole32.dll - ok
14:47:33.0800 6644 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
14:47:33.0800 6644 C:\Windows\SysWOW64\shlwapi.dll - ok
14:47:33.0800 6644 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
14:47:33.0800 6644 C:\Windows\SysWOW64\oleaut32.dll - ok
14:47:33.0800 6644 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
14:47:33.0800 6644 C:\Windows\SysWOW64\crypt32.dll - ok
14:47:33.0800 6644 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
14:47:33.0800 6644 C:\Windows\SysWOW64\msasn1.dll - ok
14:47:33.0816 6644 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
14:47:33.0816 6644 C:\Windows\SysWOW64\wintrust.dll - ok
14:47:33.0816 6644 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
14:47:33.0816 6644 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
14:47:33.0816 6644 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
14:47:33.0816 6644 C:\Windows\SysWOW64\imm32.dll - ok
14:47:33.0816 6644 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
14:47:33.0816 6644 C:\Windows\SysWOW64\msctf.dll - ok
14:47:33.0816 6644 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
14:47:33.0816 6644 C:\Program Files\IDT\WDM\AESTSr64.exe - ok
14:47:33.0832 6644 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:47:33.0832 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
14:47:33.0832 6644 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
14:47:33.0832 6644 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
14:47:33.0832 6644 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
14:47:33.0832 6644 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
14:47:33.0832 6644 [ 848BC9A0BB2361E549FD4C22D7548FB8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
14:47:33.0832 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
14:47:33.0847 6644 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
14:47:33.0847 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
14:47:33.0847 6644 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
14:47:33.0847 6644 C:\Windows\SysWOW64\version.dll - ok
14:47:33.0847 6644 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
14:47:33.0847 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
14:47:33.0847 6644 [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
14:47:33.0847 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
14:47:33.0863 6644 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
14:47:33.0863 6644 C:\Windows\SysWOW64\nsi.dll - ok
14:47:33.0863 6644 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
14:47:33.0863 6644 C:\Windows\SysWOW64\ws2_32.dll - ok
14:47:33.0863 6644 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
14:47:33.0863 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
14:47:33.0863 6644 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
14:47:33.0863 6644 C:\Windows\SysWOW64\wsock32.dll - ok
14:47:33.0863 6644 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
14:47:33.0863 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
14:47:33.0878 6644 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
14:47:33.0878 6644 C:\Windows\SysWOW64\winmm.dll - ok
14:47:33.0878 6644 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
14:47:33.0878 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
14:47:33.0878 6644 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
14:47:33.0878 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
14:47:33.0878 6644 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
14:47:33.0878 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
14:47:33.0894 6644 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
14:47:33.0894 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
14:47:33.0894 6644 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
14:47:33.0894 6644 C:\Windows\SysWOW64\profapi.dll - ok
14:47:33.0894 6644 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
14:47:33.0894 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
14:47:33.0894 6644 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
14:47:33.0894 6644 C:\Windows\SysWOW64\setupapi.dll - ok
14:47:33.0910 6644 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
14:47:33.0910 6644 C:\Windows\SysWOW64\cfgmgr32.dll - ok
14:47:33.0910 6644 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
14:47:33.0910 6644 C:\Windows\SysWOW64\devobj.dll - ok
14:47:33.0910 6644 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
14:47:33.0910 6644 C:\Windows\SysWOW64\dnssd.dll - ok
14:47:33.0910 6644 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
14:47:33.0910 6644 C:\Windows\SysWOW64\ntmarta.dll - ok
14:47:33.0910 6644 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
14:47:33.0910 6644 C:\Windows\SysWOW64\userenv.dll - ok
14:47:33.0925 6644 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
14:47:33.0925 6644 C:\Windows\SysWOW64\wtsapi32.dll - ok
14:47:33.0925 6644 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
14:47:33.0925 6644 C:\Windows\SysWOW64\Wldap32.dll - ok
14:47:33.0925 6644 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
14:47:33.0925 6644 C:\Program Files\Bonjour\mDNSResponder.exe - ok
14:47:33.0925 6644 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
14:47:33.0925 6644 C:\Windows\SysWOW64\mswsock.dll - ok
14:47:33.0941 6644 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
14:47:33.0941 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
14:47:33.0941 6644 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
14:47:33.0941 6644 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
14:47:33.0941 6644 [ 10FFB5FA51D5713D872B41A59DFC2213 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
14:47:33.0941 6644 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
14:47:33.0941 6644 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
14:47:33.0941 6644 C:\Windows\SysWOW64\wininet.dll - ok
14:47:33.0941 6644 [ DE48552360FA8BDF569D83F07CB1B566 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe
14:47:33.0941 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe - ok
14:47:33.0956 6644 [ 86C76B0121446D954997C22BFF550531 ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
14:47:33.0956 6644 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
14:47:33.0956 6644 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
14:47:33.0956 6644 C:\Windows\SysWOW64\iertutil.dll - ok
14:47:33.0956 6644 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
14:47:33.0956 6644 C:\Windows\System32\cryptsvc.dll - ok
14:47:33.0956 6644 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
14:47:33.0956 6644 C:\Windows\System32\dps.dll - ok
14:47:33.0972 6644 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
14:47:33.0972 6644 C:\Windows\System32\fdPHost.dll - ok
14:47:33.0972 6644 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
14:47:33.0972 6644 C:\Windows\System32\FDResPub.dll - ok
14:47:33.0972 6644 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
14:47:33.0972 6644 C:\Windows\System32\fdWSD.dll - ok
14:47:33.0972 6644 [ 23DE5B62B0445A6F874BE633C95B483E ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:47:33.0972 6644 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
14:47:33.0972 6644 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
14:47:33.0972 6644 C:\Windows\System32\IKEEXT.DLL - ok
14:47:33.0988 6644 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
14:47:33.0988 6644 C:\Windows\System32\WSDApi.dll - ok
14:47:33.0988 6644 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
14:47:33.0988 6644 C:\Windows\System32\webservices.dll - ok
14:47:33.0988 6644 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
14:47:33.0988 6644 C:\Windows\System32\mlang.dll - ok
14:47:33.0988 6644 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
14:47:33.0988 6644 C:\Windows\System32\taskschd.dll - ok
14:47:34.0003 6644 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
14:47:34.0003 6644 C:\Windows\System32\cryptnet.dll - ok
14:47:34.0003 6644 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
14:47:34.0003 6644 C:\Windows\System32\vssapi.dll - ok
14:47:34.0003 6644 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
14:47:34.0003 6644 C:\Windows\SysWOW64\dnsapi.dll - ok
14:47:34.0003 6644 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
14:47:34.0003 6644 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
14:47:34.0003 6644 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
14:47:34.0003 6644 C:\Windows\SysWOW64\winnsi.dll - ok
14:47:34.0019 6644 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] C:\Windows\System32\drivers\NisDrvWFP.sys
14:47:34.0019 6644 C:\Windows\System32\drivers\NisDrvWFP.sys - ok
14:47:34.0019 6644 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
14:47:34.0019 6644 C:\Windows\System32\winhttp.dll - ok
14:47:34.0019 6644 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
14:47:34.0019 6644 C:\Windows\System32\fundisc.dll - ok
14:47:34.0019 6644 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
14:47:34.0019 6644 C:\Windows\SysWOW64\urlmon.dll - ok
14:47:34.0034 6644 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
14:47:34.0034 6644 C:\Windows\System32\vpnikeapi.dll - ok
14:47:34.0034 6644 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
14:47:34.0034 6644 C:\Windows\System32\webio.dll - ok
14:47:34.0034 6644 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
14:47:34.0034 6644 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe - ok
14:47:34.0034 6644 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
14:47:34.0034 6644 C:\Windows\System32\fdSSDP.dll - ok
14:47:34.0034 6644 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
14:47:34.0034 6644 C:\Windows\System32\msi.dll - ok
14:47:34.0050 6644 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
14:47:34.0050 6644 C:\Windows\System32\ssdpapi.dll - ok
14:47:34.0050 6644 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
14:47:34.0050 6644 C:\Windows\System32\vsstrace.dll - ok
14:47:34.0050 6644 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
14:47:34.0050 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
14:47:34.0050 6644 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
14:47:34.0050 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
14:47:34.0050 6644 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
14:47:34.0050 6644 C:\Windows\System32\nlasvc.dll - ok
14:47:34.0066 6644 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
14:47:34.0066 6644 C:\Windows\System32\ncsi.dll - ok
14:47:34.0066 6644 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
14:47:34.0066 6644 C:\Windows\System32\httpapi.dll - ok
14:47:34.0066 6644 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
14:47:34.0066 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
14:47:34.0066 6644 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
14:47:34.0066 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
14:47:34.0081 6644 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
14:47:34.0081 6644 C:\Windows\System32\tapi32.dll - ok
14:47:34.0081 6644 [ 0EA9959EAA4B1B2C4153FA2E94D1117E ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
14:47:34.0081 6644 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
14:47:34.0081 6644 [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll
14:47:34.0081 6644 C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll - ok
14:47:34.0081 6644 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
14:47:34.0081 6644 C:\Windows\System32\wsock32.dll - ok
14:47:34.0097 6644 [ 78DD49438AAD322B9409A51B8962687C ] C:\Windows\System32\drivers\rikvm_1628BCEA.sys
14:47:34.0097 6644 C:\Windows\System32\drivers\rikvm_1628BCEA.sys - ok
14:47:34.0097 6644 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
14:47:34.0097 6644 C:\Windows\System32\aepic.dll - ok
14:47:34.0097 6644 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
14:47:34.0097 6644 C:\Windows\System32\drivers\PEAuth.sys - ok
14:47:34.0097 6644 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
14:47:34.0097 6644 C:\Windows\System32\sfc.dll - ok
14:47:34.0097 6644 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
14:47:34.0097 6644 C:\Windows\System32\sfc_os.dll - ok
14:47:34.0112 6644 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
14:47:34.0112 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
14:47:34.0112 6644 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
14:47:34.0112 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
14:47:34.0112 6644 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
14:47:34.0112 6644 C:\Windows\System32\drivers\secdrv.sys - ok
14:47:34.0112 6644 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
14:47:34.0112 6644 C:\Program Files\Bonjour\mdnsNSP.dll - ok
14:47:34.0128 6644 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
14:47:34.0128 6644 C:\Windows\System32\rasadhlp.dll - ok
14:47:34.0128 6644 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
14:47:34.0128 6644 C:\Windows\SysWOW64\psapi.dll - ok
14:47:34.0128 6644 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
14:47:34.0128 6644 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
14:47:34.0128 6644 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
14:47:34.0128 6644 C:\Windows\SysWOW64\clbcatq.dll - ok
14:47:34.0128 6644 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
14:47:34.0128 6644 C:\Windows\SysWOW64\cryptsp.dll - ok
14:47:34.0144 6644 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
14:47:34.0144 6644 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
14:47:34.0144 6644 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
14:47:34.0144 6644 C:\Windows\SysWOW64\rsaenh.dll - ok
14:47:34.0144 6644 [ 5FA669007BD7874FBB70199211FFF64D ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
14:47:34.0144 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe - ok
14:47:34.0144 6644 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
14:47:34.0144 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
14:47:34.0144 6644 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
14:47:34.0144 6644 C:\Windows\SysWOW64\winspool.drv - ok
14:47:34.0159 6644 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
14:47:34.0159 6644 C:\Windows\SysWOW64\comdlg32.dll - ok
14:47:34.0159 6644 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
14:47:34.0159 6644 C:\Windows\SysWOW64\wbemcomn.dll - ok
14:47:34.0159 6644 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
14:47:34.0159 6644 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
14:47:34.0159 6644 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
14:47:34.0159 6644 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
14:47:34.0175 6644 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
14:47:34.0175 6644 C:\Windows\System32\drivers\srvnet.sys - ok
14:47:34.0175 6644 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
14:47:34.0175 6644 C:\Windows\SysWOW64\winsta.dll - ok
14:47:34.0175 6644 [ 1CFA4A1F3C7BB4C8F299E00428EB8677 ] C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
14:47:34.0175 6644 C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe - ok
14:47:34.0175 6644 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
14:47:34.0175 6644 C:\Windows\System32\ssdpsrv.dll - ok
14:47:34.0175 6644 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
14:47:34.0190 6644 C:\Windows\SysWOW64\apphelp.dll - ok
14:47:34.0190 6644 [ D9A4FB1EBD6FF1625F8D718CE9062520 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
14:47:34.0190 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe - ok
14:47:34.0190 6644 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
14:47:34.0190 6644 C:\Windows\SysWOW64\winhttp.dll - ok
14:47:34.0190 6644 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
14:47:34.0190 6644 C:\Windows\SysWOW64\webio.dll - ok
14:47:34.0190 6644 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
14:47:34.0190 6644 C:\Windows\System32\drivers\tcpipreg.sys - ok
14:47:34.0206 6644 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
14:47:34.0206 6644 C:\Windows\System32\wiaservc.dll - ok
14:47:34.0206 6644 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
14:47:34.0206 6644 C:\Windows\System32\icaapi.dll - ok
14:47:34.0206 6644 [ 988121D083B7AB61D4A7E244290BAAB0 ] C:\Windows\System32\lsmproxy.dll
14:47:34.0206 6644 C:\Windows\System32\lsmproxy.dll - ok
14:47:34.0206 6644 [ E377BBA01F34E4183C32E5BBD688CE83 ] C:\Windows\System32\regapi.dll
14:47:34.0206 6644 C:\Windows\System32\regapi.dll - ok
14:47:34.0206 6644 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
14:47:34.0206 6644 C:\Windows\System32\wbem\WMIsvc.dll - ok
14:47:34.0222 6644 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
14:47:34.0222 6644 C:\Windows\System32\wiatrace.dll - ok
14:47:34.0222 6644 [ 6D5DCC1579B3961D791ABDE286A1CB5E ] C:\Windows\System32\rdpwsx.dll
14:47:34.0222 6644 C:\Windows\System32\rdpwsx.dll - ok
14:47:34.0222 6644 [ 1B4A711265FEA91259553D7B4E83394B ] C:\Windows\System32\tlscsp.dll
14:47:34.0222 6644 C:\Windows\System32\tlscsp.dll - ok
14:47:34.0222 6644 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
14:47:34.0222 6644 C:\Windows\System32\wbemcomn.dll - ok
14:47:34.0237 6644 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
14:47:34.0237 6644 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
14:47:34.0237 6644 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
14:47:34.0237 6644 C:\Windows\System32\wbem\WinMgmtR.dll - ok
14:47:34.0237 6644 [ 5B236296E233CAA6BF86BE0C6501A224 ] C:\Windows\System32\rdpcorekmts.dll
14:47:34.0237 6644 C:\Windows\System32\rdpcorekmts.dll - ok
14:47:34.0237 6644 [ E61608AA35E98999AF9AAEEEA6114B0A ] C:\Windows\System32\drivers\rdpwd.sys
14:47:34.0237 6644 C:\Windows\System32\drivers\rdpwd.sys - ok
14:47:34.0237 6644 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] C:\Windows\System32\drivers\tdtcp.sys
14:47:34.0237 6644 C:\Windows\System32\drivers\tdtcp.sys - ok
14:47:34.0253 6644 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] C:\Windows\System32\drivers\tssecsrv.sys
14:47:34.0253 6644 C:\Windows\System32\drivers\tssecsrv.sys - ok
14:47:34.0253 6644 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
14:47:34.0253 6644 C:\Windows\System32\wbem\fastprox.dll - ok
14:47:34.0253 6644 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
14:47:34.0253 6644 C:\Windows\System32\ntdsapi.dll - ok
14:47:34.0253 6644 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
14:47:34.0253 6644 C:\Windows\System32\wbem\wbemprox.dll - ok
14:47:34.0253 6644 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
14:47:34.0253 6644 C:\Windows\System32\wbem\wbemcore.dll - ok
14:47:34.0268 6644 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
14:47:34.0268 6644 C:\Windows\System32\wbem\esscli.dll - ok
14:47:34.0268 6644 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
14:47:34.0268 6644 C:\Windows\System32\wbem\wbemsvc.dll - ok
14:47:34.0268 6644 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
14:47:34.0268 6644 C:\Windows\System32\wbem\wmiutils.dll - ok
14:47:34.0268 6644 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
14:47:34.0268 6644 C:\Windows\System32\wbem\repdrvfs.dll - ok
14:47:34.0284 6644 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] C:\Windows\System32\drivers\bthport.sys
14:47:34.0284 6644 C:\Windows\System32\drivers\bthport.sys - ok
14:47:34.0284 6644 [ D3466F77C2C49C6E393BA5FBA963A33E ] C:\Windows\System32\drivers\btusbflt.sys
14:47:34.0284 6644 C:\Windows\System32\drivers\btusbflt.sys - ok
14:47:34.0284 6644 [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS
14:47:34.0284 6644 C:\Windows\System32\drivers\BTHUSB.SYS - ok
14:47:34.0284 6644 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
14:47:34.0284 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
14:47:34.0284 6644 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
14:47:34.0284 6644 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
14:47:34.0300 6644 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
14:47:34.0300 6644 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
14:47:34.0300 6644 [ 893C44082C97F7AED3E7C180FA1F93D8 ] C:\Windows\System32\mpnotify.exe
14:47:34.0300 6644 C:\Windows\System32\mpnotify.exe - ok
14:47:34.0300 6644 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
14:47:34.0300 6644 C:\Windows\SysWOW64\ntdsapi.dll - ok
14:47:34.0300 6644 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:47:34.0300 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
14:47:34.0315 6644 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
14:47:34.0315 6644 C:\Windows\System32\sysmain.dll - ok
14:47:34.0315 6644 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
14:47:34.0315 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
14:47:34.0315 6644 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
14:47:34.0315 6644 C:\Windows\System32\SensApi.dll - ok
14:47:34.0315 6644 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
14:47:34.0315 6644 C:\Windows\System32\wer.dll - ok
14:47:34.0315 6644 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
14:47:34.0315 6644 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
14:47:34.0331 6644 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
14:47:34.0331 6644 C:\Windows\System32\aeevts.dll - ok
14:47:34.0331 6644 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
14:47:34.0331 6644 C:\Windows\System32\trkwks.dll - ok
14:47:34.0331 6644 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
14:47:34.0331 6644 C:\Windows\SysWOW64\msxml3.dll - ok
14:47:34.0331 6644 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
14:47:34.0331 6644 C:\Windows\System32\msxml3.dll - ok
14:47:34.0331 6644 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
14:47:34.0331 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
14:47:34.0346 6644 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
14:47:34.0346 6644 C:\Windows\System32\mpr.dll - ok
14:47:34.0346 6644 [ 108FD130A38FD2C315C876EB4415E940 ] C:\Windows\System32\BCMLogon.dll
14:47:34.0346 6644 C:\Windows\System32\BCMLogon.dll - ok
14:47:34.0346 6644 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
14:47:34.0346 6644 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
14:47:34.0346 6644 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
14:47:34.0346 6644 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
14:47:34.0362 6644 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
14:47:34.0362 6644 C:\Windows\SysWOW64\oleacc.dll - ok
14:47:34.0362 6644 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
14:47:34.0362 6644 C:\Windows\SysWOW64\d3d9.dll - ok
14:47:34.0362 6644 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
14:47:34.0362 6644 C:\Windows\SysWOW64\d3d8thk.dll - ok
14:47:34.0362 6644 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
14:47:34.0362 6644 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
14:47:34.0362 6644 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
14:47:34.0362 6644 C:\Windows\System32\ncobjapi.dll - ok
14:47:34.0378 6644 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
14:47:34.0378 6644 C:\Windows\System32\wbem\wbemess.dll - ok
14:47:34.0378 6644 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
14:47:34.0378 6644 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
14:47:34.0378 6644 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
14:47:34.0378 6644 C:\Windows\System32\wbem\cimwin32.dll - ok
14:47:34.0378 6644 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
14:47:34.0378 6644 C:\Windows\System32\framedynos.dll - ok
14:47:34.0393 6644 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
14:47:34.0393 6644 C:\Windows\SysWOW64\dwmapi.dll - ok
14:47:34.0393 6644 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
14:47:34.0393 6644 C:\Windows\SysWOW64\hid.dll - ok
14:47:34.0393 6644 [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
14:47:34.0393 6644 C:\Windows\System32\drivers\rfcomm.sys - ok
14:47:34.0393 6644 [ 74983ADDCA2D9618512C088D856D6615 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
14:47:34.0393 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl - ok
14:47:34.0409 6644 [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
14:47:34.0409 6644 C:\Windows\System32\drivers\bthenum.sys - ok
14:47:34.0409 6644 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
14:47:34.0409 6644 C:\Windows\System32\drivers\srv2.sys - ok
14:47:34.0409 6644 [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
14:47:34.0409 6644 C:\Windows\System32\drivers\bthpan.sys - ok
14:47:34.0409 6644 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
14:47:34.0409 6644 C:\Windows\SysWOW64\uxtheme.dll - ok
14:47:34.0424 6644 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
14:47:34.0424 6644 C:\Windows\System32\IPBusEnum.dll - ok
14:47:34.0424 6644 [ AF838D8029AE7C27470862D63FA54D24 ] C:\Windows\System32\drivers\btwaudio.sys
14:47:34.0424 6644 C:\Windows\System32\drivers\btwaudio.sys - ok
14:47:34.0424 6644 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] C:\Windows\System32\drivers\btwavdt.sys
14:47:34.0424 6644 C:\Windows\System32\drivers\btwavdt.sys - ok
14:47:34.0424 6644 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
14:47:34.0424 6644 C:\Windows\System32\iphlpsvc.dll - ok
14:47:34.0440 6644 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
14:47:34.0440 6644 C:\Windows\System32\wmi.dll - ok
14:47:34.0440 6644 [ 6149301DC3F81D6F9667A3FBAC410975 ] C:\Windows\System32\drivers\btwl2cap.sys
14:47:34.0440 6644 C:\Windows\System32\drivers\btwl2cap.sys - ok
14:47:34.0440 6644 [ 3E1991AFA851A36DC978B0A1B0535C8B ] C:\Windows\System32\drivers\btwrchid.sys
14:47:34.0440 6644 C:\Windows\System32\drivers\btwrchid.sys - ok
14:47:34.0456 6644 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
14:47:34.0456 6644 C:\Windows\System32\drivers\srv.sys - ok
14:47:34.0456 6644 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] C:\Windows\System32\Mcx2Svc.dll
14:47:34.0456 6644 C:\Windows\System32\Mcx2Svc.dll - ok
14:47:34.0456 6644 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
14:47:34.0456 6644 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
14:47:34.0456 6644 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
14:47:34.0456 6644 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
14:47:34.0456 6644 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
14:47:34.0456 6644 C:\Windows\ehome\ehtrace.dll - ok
14:47:34.0471 6644 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
14:47:34.0471 6644 C:\Windows\System32\sqmapi.dll - ok
14:47:34.0471 6644 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
14:47:34.0471 6644 C:\Windows\SysWOW64\credssp.dll - ok
14:47:34.0471 6644 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
14:47:34.0471 6644 C:\Windows\System32\fdPnp.dll - ok
14:47:34.0471 6644 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
14:47:34.0471 6644 C:\Windows\System32\fdProxy.dll - ok
14:47:34.0471 6644 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
14:47:34.0471 6644 C:\Windows\System32\wdscore.dll - ok
14:47:34.0487 6644 [ 59D4CA652176A91B13320D9BE8903529 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppAnnotation.dll
14:47:34.0487 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppAnnotation.dll - ok
14:47:34.0487 6644 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
14:47:34.0487 6644 C:\Windows\System32\dssenh.dll - ok
14:47:34.0487 6644 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
14:47:34.0487 6644 C:\Windows\System32\srvsvc.dll - ok
14:47:34.0487 6644 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
14:47:34.0487 6644 C:\Windows\System32\browser.dll - ok
14:47:34.0502 6644 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
14:47:34.0502 6644 C:\Windows\System32\hnetcfg.dll - ok
14:47:34.0502 6644 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
14:47:34.0502 6644 C:\Windows\System32\netmsg.dll - ok
14:47:34.0502 6644 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
14:47:34.0502 6644 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
14:47:34.0502 6644 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
14:47:34.0502 6644 C:\Windows\System32\clusapi.dll - ok
14:47:34.0502 6644 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
14:47:34.0502 6644 C:\Windows\System32\sscore.dll - ok
14:47:34.0518 6644 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
14:47:34.0518 6644 C:\Windows\System32\resutils.dll - ok
14:47:34.0518 6644 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
14:47:34.0518 6644 C:\Windows\SysWOW64\msimg32.dll - ok
14:47:34.0518 6644 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
14:47:34.0518 6644 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
14:47:34.0518 6644 [ C47BF8845505762E8A3E4F42200700D0 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppBrowser.dll
14:47:34.0518 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppBrowser.dll - ok
14:47:34.0534 6644 [ 66053311A00613B22878625B0CD08559 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppCam.dll
14:47:34.0534 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppCam.dll - ok
14:47:34.0534 6644 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
14:47:34.0534 6644 C:\Windows\SysWOW64\devenum.dll - ok
14:47:34.0534 6644 [ AC4E2D84DE54CD3A013AEFF0CC56095C ] C:\Windows\System32\drivers\bcm42rly.sys
14:47:34.0534 6644 C:\Windows\System32\drivers\bcm42rly.sys - ok
14:47:34.0534 6644 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
14:47:34.0534 6644 C:\Windows\SysWOW64\avicap32.dll - ok
14:47:34.0534 6644 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
14:47:34.0534 6644 C:\Windows\SysWOW64\msdmo.dll - ok
14:47:34.0549 6644 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
14:47:34.0549 6644 C:\Windows\SysWOW64\msvfw32.dll - ok
14:47:34.0549 6644 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
14:47:34.0549 6644 C:\Windows\SysWOW64\vfwwdm32.dll - ok
14:47:34.0549 6644 [ 79E80B10FE8F6662E0C9162A68C43444 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
14:47:34.0549 6644 C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
14:47:34.0549 6644 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
14:47:34.0549 6644 C:\Windows\System32\wdi.dll - ok
14:47:34.0549 6644 [ 132045285DCC8654C14F1CFB4A8DCDA1 ] C:\Program Files\Microsoft Security Client\NisLog.dll
14:47:34.0549 6644 C:\Program Files\Microsoft Security Client\NisLog.dll - ok
14:47:34.0565 6644 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
14:47:34.0565 6644 C:\Windows\System32\perftrack.dll - ok
14:47:34.0565 6644 [ 885BD633BE24EE07E072F1105BC43641 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppED.dll
14:47:34.0565 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppED.dll - ok
14:47:34.0565 6644 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
14:47:34.0565 6644 C:\Windows\System32\npmproxy.dll - ok
14:47:34.0565 6644 [ 9D0FD9EC632E38B4222762203AB9FE78 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppFileHound.dll
14:47:34.0565 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\plugin\SRAppFileHound.dll - ok
14:47:34.0580 6644 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
14:47:34.0580 6644 C:\Windows\System32\ndiscapCfg.dll - ok
14:47:34.0580 6644 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
14:47:34.0580 6644 C:\Windows\System32\rascfg.dll - ok
14:47:34.0580 6644 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
14:47:34.0580 6644 C:\Windows\System32\mprapi.dll - ok
14:47:34.0580 6644 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
14:47:34.0580 6644 C:\Windows\SysWOW64\NapiNSP.dll - ok
14:47:34.0580 6644 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
14:47:34.0580 6644 C:\Windows\SysWOW64\nlaapi.dll - ok
14:47:34.0596 6644 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
14:47:34.0596 6644 C:\Windows\SysWOW64\pnrpnsp.dll - ok
14:47:34.0596 6644 [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
14:47:34.0596 6644 C:\Windows\SysWOW64\wshbth.dll - ok
14:47:34.0596 6644 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
14:47:34.0596 6644 C:\Windows\System32\hidserv.dll - ok
14:47:34.0596 6644 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
14:47:34.0596 6644 C:\Windows\System32\mprmsg.dll - ok
14:47:34.0612 6644 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
14:47:34.0612 6644 C:\Windows\System32\wpdbusenum.dll - ok
14:47:34.0612 6644 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
14:47:34.0612 6644 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
14:47:34.0612 6644 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
14:47:34.0612 6644 C:\Windows\System32\Apphlpdm.dll - ok
14:47:34.0612 6644 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
14:47:34.0612 6644 C:\Windows\System32\diagperf.dll - ok
14:47:34.0612 6644 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
14:47:34.0612 6644 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
14:47:34.0627 6644 [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
14:47:34.0627 6644 C:\Windows\System32\certprop.dll - ok
14:47:34.0627 6644 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
14:47:34.0627 6644 C:\Windows\System32\NapiNSP.dll - ok
14:47:34.0627 6644 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
14:47:34.0627 6644 C:\Windows\System32\PortableDeviceApi.dll - ok
14:47:34.0627 6644 [ 0B6231BF38174A1628C4AC812CC75804 ] C:\Windows\System32\SessEnv.dll
14:47:34.0627 6644 C:\Windows\System32\SessEnv.dll - ok
14:47:34.0643 6644 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
14:47:34.0643 6644 C:\Windows\SysWOW64\winrnr.dll - ok
14:47:34.0643 6644 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
14:47:34.0643 6644 C:\Windows\System32\dllhost.exe - ok
14:47:34.0643 6644 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
14:47:34.0643 6644 C:\Windows\System32\pnrpnsp.dll - ok
14:47:34.0643 6644 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
14:47:34.0643 6644 C:\Windows\System32\tcpipcfg.dll - ok
14:47:34.0643 6644 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
14:47:34.0643 6644 C:\Windows\System32\wshbth.dll - ok
14:47:34.0658 6644 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
14:47:34.0658 6644 C:\Windows\System32\IDStore.dll - ok
14:47:34.0658 6644 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
14:47:34.0658 6644 C:\Windows\System32\winrnr.dll - ok
14:47:34.0658 6644 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
14:47:34.0658 6644 C:\Windows\System32\taskhost.exe - ok
14:47:34.0674 6644 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
14:47:34.0674 6644 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
14:47:34.0674 6644 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
14:47:34.0674 6644 C:\Windows\System32\radardt.dll - ok
14:47:34.0674 6644 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
14:47:34.0674 6644 C:\Windows\System32\pnpts.dll - ok
14:47:34.0674 6644 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
14:47:34.0674 6644 C:\Windows\System32\AtBroker.exe - ok
14:47:34.0690 6644 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
14:47:34.0690 6644 C:\Windows\System32\wdiasqmmodule.dll - ok
14:47:34.0690 6644 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
14:47:34.0690 6644 C:\Windows\System32\HotStartUserAgent.dll - ok
14:47:34.0705 6644 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
14:47:34.0705 6644 C:\Windows\System32\userinit.exe - ok
14:47:34.0705 6644 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
14:47:34.0705 6644 C:\Windows\System32\dwm.exe - ok
14:47:34.0705 6644 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
14:47:34.0705 6644 C:\Windows\System32\IPSECSVC.DLL - ok
14:47:34.0705 6644 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
14:47:34.0705 6644 C:\Windows\System32\bthserv.dll - ok
14:47:34.0721 6644 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
14:47:34.0721 6644 C:\Windows\System32\dwmredir.dll - ok
14:47:34.0721 6644 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
14:47:34.0721 6644 C:\Windows\System32\FwRemoteSvr.dll - ok
14:47:34.0721 6644 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
14:47:34.0721 6644 C:\Windows\System32\shfolder.dll - ok
14:47:34.0721 6644 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
14:47:34.0721 6644 C:\Windows\System32\MsCtfMonitor.dll - ok
14:47:34.0721 6644 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
14:47:34.0721 6644 C:\Windows\System32\msutb.dll - ok
14:47:34.0736 6644 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
14:47:34.0736 6644 C:\Windows\System32\dimsjob.dll - ok
14:47:34.0736 6644 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
14:47:34.0736 6644 C:\Windows\System32\PlaySndSrv.dll - ok
14:47:34.0736 6644 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
14:47:34.0736 6644 C:\Windows\System32\certcli.dll - ok
14:47:34.0736 6644 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
14:47:34.0736 6644 C:\Windows\System32\pautoenr.dll - ok
14:47:34.0752 6644 [ 20C7F2ADAE249D6708941BC8CDD9735F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0145F08-BDCE-4A3C-B8A0-3AE2AF618AB9}\gapaengine.dll
14:47:34.0752 6644 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0145F08-BDCE-4A3C-B8A0-3AE2AF618AB9}\gapaengine.dll - ok
14:47:34.0752 6644 [ D729084195C952B7ED14AA6DA4B44DCA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0145F08-BDCE-4A3C-B8A0-3AE2AF618AB9}\nisfull.vdm
14:47:34.0752 6644 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C0145F08-BDCE-4A3C-B8A0-3AE2AF618AB9}\nisfull.vdm - ok
14:47:34.0752 6644 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
14:47:34.0752 6644 C:\Program Files\Windows Defender\MpClient.dll - ok
14:47:34.0752 6644 [ B72A255AC56D712BC57558B2978778A4 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\NvFBC.dll
14:47:34.0752 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\NvFBC.dll - ok
14:47:34.0752 6644 [ BB7E865599FA258C70DF8B1F70109F6F ] C:\Windows\System32\newdev.dll
14:47:34.0752 6644 C:\Windows\System32\newdev.dll - ok
14:47:34.0768 6644 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
14:47:34.0768 6644 C:\Windows\System32\CertEnroll.dll - ok
14:47:34.0768 6644 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
14:47:34.0768 6644 C:\Windows\System32\dwmcore.dll - ok
14:47:34.0768 6644 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
14:47:34.0768 6644 C:\Windows\System32\d3d10_1.dll - ok
14:47:34.0768 6644 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
14:47:34.0768 6644 C:\Windows\System32\d3d10_1core.dll - ok
14:47:34.0783 6644 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
14:47:34.0783 6644 C:\Windows\System32\dxgi.dll - ok
14:47:34.0783 6644 [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
14:47:34.0783 6644 C:\Windows\System32\igd10umd64.dll - ok
14:47:34.0783 6644 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
14:47:34.0783 6644 C:\Windows\System32\uDWM.dll - ok
14:47:34.0783 6644 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
14:47:34.0783 6644 C:\Windows\explorer.exe - ok
14:47:34.0783 6644 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
14:47:34.0783 6644 C:\Windows\SysWOW64\rasadhlp.dll - ok
14:47:34.0799 6644 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
14:47:34.0799 6644 C:\Windows\SysWOW64\wship6.dll - ok
14:47:34.0799 6644 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
14:47:34.0799 6644 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
14:47:34.0799 6644 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
14:47:34.0799 6644 C:\Windows\System32\ExplorerFrame.dll - ok
14:47:34.0799 6644 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
14:47:34.0799 6644 C:\Windows\SysWOW64\schannel.dll - ok
14:47:34.0799 6644 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
14:47:34.0799 6644 C:\Windows\System32\EhStorShell.dll - ok
14:47:34.0814 6644 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
14:47:34.0814 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
14:47:34.0814 6644 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
14:47:34.0814 6644 C:\Windows\SysWOW64\ncrypt.dll - ok
14:47:34.0814 6644 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
14:47:34.0814 6644 C:\Windows\SysWOW64\secur32.dll - ok
14:47:34.0814 6644 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
14:47:34.0814 6644 C:\Windows\System32\ntshrui.dll - ok
14:47:34.0814 6644 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
14:47:34.0814 6644 C:\Windows\SysWOW64\bcrypt.dll - ok
14:47:34.0830 6644 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
14:47:34.0830 6644 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
14:47:34.0830 6644 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
14:47:34.0830 6644 C:\Windows\SysWOW64\propsys.dll - ok
14:47:34.0830 6644 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
14:47:34.0830 6644 C:\Windows\System32\nci.dll - ok
14:47:34.0830 6644 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
14:47:34.0830 6644 C:\Windows\System32\wlaninst.dll - ok
14:47:34.0830 6644 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
14:47:34.0830 6644 C:\Windows\System32\wwaninst.dll - ok
14:47:34.0846 6644 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
14:47:34.0846 6644 C:\Windows\System32\cscapi.dll - ok
14:47:34.0846 6644 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
14:47:34.0846 6644 C:\Windows\System32\IconCodecService.dll - ok
14:47:34.0846 6644 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
14:47:34.0846 6644 C:\Windows\SysWOW64\gpapi.dll - ok
14:47:34.0846 6644 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
14:47:34.0846 6644 C:\Windows\System32\appinfo.dll - ok
14:47:34.0846 6644 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
14:47:34.0846 6644 C:\Windows\SysWOW64\ieframe.dll - ok
14:47:34.0861 6644 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
14:47:34.0861 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
14:47:34.0861 6644 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
14:47:34.0861 6644 C:\Windows\SysWOW64\devrtl.dll - ok
14:47:34.0861 6644 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
14:47:34.0861 6644 C:\Windows\SysWOW64\sfc.dll - ok
14:47:34.0877 6644 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
14:47:34.0877 6644 C:\Windows\SysWOW64\sfc_os.dll - ok
14:47:34.0877 6644 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
14:47:34.0877 6644 C:\Windows\SysWOW64\mpr.dll - ok
14:47:34.0877 6644 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
14:47:34.0877 6644 C:\Windows\SysWOW64\mscoree.dll - ok
14:47:34.0892 6644 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
14:47:34.0892 6644 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
14:47:34.0892 6644 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
14:47:34.0892 6644 C:\Windows\System32\runonce.exe - ok
14:47:34.0892 6644 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
14:47:34.0892 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
14:47:34.0892 6644 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
14:47:34.0892 6644 C:\Windows\SysWOW64\runonce.exe - ok
14:47:34.0892 6644 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
14:47:34.0892 6644 C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
14:47:34.0908 6644 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
14:47:34.0908 6644 C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
14:47:34.0908 6644 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
14:47:34.0908 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
14:47:34.0908 6644 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
14:47:34.0908 6644 C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
14:47:34.0908 6644 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
14:47:34.0908 6644 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
14:47:34.0924 6644 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
14:47:34.0924 6644 C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
14:47:34.0924 6644 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
14:47:34.0924 6644 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
14:47:34.0924 6644 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
14:47:34.0924 6644 C:\Windows\SysWOW64\cmd.exe - ok
14:47:34.0924 6644 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
14:47:34.0924 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
14:47:34.0939 6644 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
14:47:34.0939 6644 C:\Windows\SysWOW64\riched20.dll - ok
14:47:34.0939 6644 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
14:47:34.0939 6644 C:\Windows\SysWOW64\winbrand.dll - ok
14:47:34.0939 6644 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
14:47:34.0939 6644 C:\Windows\SysWOW64\imagehlp.dll - ok
14:47:34.0939 6644 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
14:47:34.0939 6644 C:\Windows\SysWOW64\cryptnet.dll - ok
14:47:34.0939 6644 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
14:47:34.0939 6644 C:\Windows\System32\aelupsvc.dll - ok
14:47:34.0955 6644 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
14:47:34.0955 6644 C:\Windows\SysWOW64\shdocvw.dll - ok
14:47:34.0955 6644 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
14:47:34.0955 6644 C:\Windows\SysWOW64\SensApi.dll - ok
14:47:34.0955 6644 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
14:47:34.0955 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
14:47:34.0955 6644 [ DA9EF90FE324675E66E877CA60161C01 ] C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
14:47:34.0955 6644 C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe - ok
14:47:34.0970 6644 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
14:47:34.0970 6644 C:\Windows\SysWOW64\FirewallAPI.dll - ok
14:47:34.0970 6644 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
14:47:34.0970 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
14:47:34.0970 6644 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
14:47:34.0970 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
14:47:34.0970 6644 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
14:47:34.0970 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
14:47:34.0986 6644 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
14:47:34.0986 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
14:47:34.0986 6644 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
14:47:34.0986 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
14:47:34.0986 6644 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
14:47:34.0986 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
14:47:34.0986 6644 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
14:47:34.0986 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
14:47:35.0002 6644 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
14:47:35.0002 6644 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
14:47:35.0002 6644 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
14:47:35.0002 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
14:47:35.0002 6644 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
14:47:35.0002 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
14:47:35.0002 6644 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
14:47:35.0002 6644 C:\Windows\AppPatch\AcLayers.dll - ok
14:47:35.0002 6644 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
14:47:35.0002 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
14:47:35.0017 6644 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
14:47:35.0017 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
14:47:35.0017 6644 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
14:47:35.0017 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
14:47:35.0017 6644 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Troy\AppData\Local\Temp\16008629-6EC4-4452-B384-298AACC6E613.exe
14:47:35.0017 6644 C:\Users\Troy\AppData\Local\Temp\16008629-6EC4-4452-B384-298AACC6E613.exe - ok
14:47:35.0017 6644 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
14:47:35.0017 6644 C:\Windows\SysWOW64\oledlg.dll - ok
14:47:35.0033 6644 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
14:47:35.0033 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
14:47:35.0033 6644 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
14:47:35.0033 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
14:47:35.0033 6644 [ 1E3CB1435EC745058628AE40FEA9F471 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
14:47:35.0033 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll - ok
14:47:35.0033 6644 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
14:47:35.0033 6644 C:\Windows\SysWOW64\EhStorShell.dll - ok
14:47:35.0033 6644 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
14:47:35.0033 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
14:47:35.0048 6644 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
14:47:35.0048 6644 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
14:47:35.0048 6644 [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
14:47:35.0048 6644 C:\Windows\System32\bcdedit.exe - ok
14:47:35.0048 6644 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
14:47:35.0048 6644 C:\Windows\SysWOW64\ntshrui.dll - ok
14:47:35.0048 6644 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
14:47:35.0048 6644 C:\Windows\SysWOW64\srvcli.dll - ok
14:47:35.0064 6644 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
14:47:35.0064 6644 C:\Windows\SysWOW64\cscapi.dll - ok
14:47:35.0064 6644 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
14:47:35.0064 6644 C:\Windows\SysWOW64\slc.dll - ok
14:47:35.0064 6644 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
14:47:35.0064 6644 C:\Windows\SysWOW64\imageres.dll - ok
14:47:35.0064 6644 [ EE74A0FF7C5752E49911986F22BBAEEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
14:47:35.0064 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll - ok
14:47:35.0064 6644 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
14:47:35.0064 6644 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
14:47:35.0080 6644 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
14:47:35.0080 6644 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
14:47:35.0080 6644 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
14:47:35.0080 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
14:47:35.0080 6644 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
14:47:35.0080 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
14:47:35.0080 6644 [ BA38C50F523DC053488AC3F9EF99AA0B ] C:\Windows\SysWOW64\igdumdx32.dll
14:47:35.0080 6644 C:\Windows\SysWOW64\igdumdx32.dll - ok
14:47:35.0095 6644 [ 10AB9C9ADB89816BEFB077E72659D029 ] C:\Windows\SysWOW64\igdumd32.dll
14:47:35.0095 6644 C:\Windows\SysWOW64\igdumd32.dll - ok
14:47:35.0095 6644 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
14:47:35.0095 6644 C:\Windows\SysWOW64\powrprof.dll - ok
14:47:35.0095 6644 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
14:47:35.0095 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
14:47:35.0095 6644 [ 31E7CF1736A3CB25098CEE6E07FE270C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
14:47:35.0095 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll - ok
14:47:35.0095 6644 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
14:47:35.0095 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
14:47:35.0111 6644 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
14:47:35.0111 6644 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
14:47:35.0111 6644 [ F86654DF03C8AD1C2CE6F95FA5240060 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\77dfcfed5fd5f67d0d3edc545935bb21\System.Core.ni.dll
14:47:35.0111 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\77dfcfed5fd5f67d0d3edc545935bb21\System.Core.ni.dll - ok
14:47:35.0111 6644 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
14:47:35.0111 6644 C:\Windows\System32\localspl.dll - ok
14:47:35.0111 6644 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
14:47:35.0111 6644 C:\Windows\System32\spoolss.dll - ok
14:47:35.0126 6644 [ D38E5A781E4F4763387AFE0B866DFEE2 ] C:\Windows\System32\AdobePDF.dll
14:47:35.0126 6644 C:\Windows\System32\AdobePDF.dll - ok
14:47:35.0126 6644 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
14:47:35.0126 6644 C:\Windows\System32\PrintIsolationProxy.dll - ok
14:47:35.0126 6644 [ 5F87B939BC90CF1FBABB09F6721A6E0C ] C:\Windows\System32\CNMLMA0.DLL
14:47:35.0126 6644 C:\Windows\System32\CNMLMA0.DLL - ok
14:47:35.0126 6644 [ 4DB7376155E964D49AE8296FA36F2290 ] C:\Windows\System32\CNMN6PPM.DLL
14:47:35.0126 6644 C:\Windows\System32\CNMN6PPM.DLL - ok
14:47:35.0126 6644 [ 12A0531ADED17176D6B0CBFE8F9B4326 ] C:\Windows\System32\cpwmon64.dll
14:47:35.0126 6644 C:\Windows\System32\cpwmon64.dll - ok
14:47:35.0142 6644 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
14:47:35.0142 6644 C:\Windows\System32\FXSMON.dll - ok
14:47:35.0142 6644 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
14:47:35.0142 6644 C:\Windows\System32\tcpmon.dll - ok
14:47:35.0142 6644 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
14:47:35.0142 6644 C:\Windows\System32\snmpapi.dll - ok
14:47:35.0142 6644 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
14:47:35.0142 6644 C:\Windows\System32\usbmon.dll - ok
14:47:35.0158 6644 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
14:47:35.0158 6644 C:\Windows\System32\wsnmp32.dll - ok
14:47:35.0158 6644 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
14:47:35.0158 6644 C:\Windows\System32\WSDMon.dll - ok
14:47:35.0158 6644 [ EA0A76678005B3CCBF15FB1F0082289B ] C:\Windows\System32\spool\prtprocs\x64\CNMPDA0.DLL
14:47:35.0158 6644 C:\Windows\System32\spool\prtprocs\x64\CNMPDA0.DLL - ok
14:47:35.0158 6644 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
14:47:35.0158 6644 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
14:47:35.0158 6644 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
14:47:35.0158 6644 C:\Windows\System32\win32spl.dll - ok
14:47:35.0173 6644 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
14:47:35.0173 6644 C:\Windows\System32\inetpp.dll - ok
14:47:35.0173 6644 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
14:47:35.0173 6644 C:\Windows\System32\drivers\fastfat.sys - ok
14:47:35.0173 6644 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
14:47:35.0173 6644 C:\Windows\System32\spfileq.dll - ok
14:47:35.0173 6644 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
14:47:35.0173 6644 C:\Windows\System32\esent.dll - ok
14:47:35.0173 6644 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
14:47:35.0173 6644 C:\Windows\System32\wbem\NCProv.dll - ok
14:47:35.0189 6644 [ C245E08EC469A52A622EFDC9787A0DCC ] C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
14:47:35.0189 6644 C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe - ok
14:47:35.0189 6644 [ 75C0634FD2D8D12601114C75E2B65C7B ] C:\Program Files (x86)\Adobe\Elements 10 Organizer\platform.DLL
14:47:35.0189 6644 C:\Program Files (x86)\Adobe\Elements 10 Organizer\platform.DLL - ok
14:47:35.0189 6644 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
14:47:35.0189 6644 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
14:47:35.0189 6644 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:47:35.0189 6644 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
14:47:35.0204 6644 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
14:47:35.0204 6644 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
14:47:35.0204 6644 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:47:35.0204 6644 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
14:47:35.0204 6644 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
14:47:35.0204 6644 C:\Windows\System32\msvcr100_clr0400.dll - ok
14:47:35.0204 6644 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
14:47:35.0204 6644 C:\Windows\System32\FntCache.dll - ok
14:47:35.0204 6644 [ A9BE186ABF28B3D3D698CB855EDF457E ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:47:35.0204 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
14:47:35.0220 6644 [ 06B742609EF06DACDF52A98C2088DDEA ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
14:47:35.0220 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
14:47:35.0220 6644 [ 80514C8022C35B2D75C885603277CBFB ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
14:47:35.0220 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
14:47:35.0220 6644 [ C5E49B0FE6118EEA2E658C057ED83AD1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\075817483fdd479c74e62483dc9a0f78\IAStorDataMgrSvc.ni.exe
14:47:35.0220 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\075817483fdd479c74e62483dc9a0f78\IAStorDataMgrSvc.ni.exe - ok
14:47:35.0220 6644 [ D049551C58FDB7C7E2245FDFC373C77C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\68f617caf670fefc0be769a294dc4ffd\System.ServiceProcess.ni.dll
14:47:35.0220 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\68f617caf670fefc0be769a294dc4ffd\System.ServiceProcess.ni.dll - ok
14:47:35.0236 6644 [ 63E00682C9FD90FB6BEDAD1B9EAF9E49 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
14:47:35.0236 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
14:47:35.0236 6644 [ 7A32D623F5E9F3D001D53DD7192BE929 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\ee0779823ba7a739e3e9b99a3c616739\IAStorDataMgr.ni.dll
14:47:35.0236 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\ee0779823ba7a739e3e9b99a3c616739\IAStorDataMgr.ni.dll - ok
14:47:35.0236 6644 [ 6B2049249737590B67E2B62E4194D53B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3f3abe5e86f6df8943d5d2802bdf964c\IAStorUtil.ni.dll
14:47:35.0236 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3f3abe5e86f6df8943d5d2802bdf964c\IAStorUtil.ni.dll - ok
14:47:35.0236 6644 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
14:47:35.0236 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
14:47:35.0251 6644 [ 4A4865114DFBFF661FBA0C822BF8824E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\6e0e5d6d7d5fe4e011335c395f6a8031\IsdiInterop.ni.dll
14:47:35.0251 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\6e0e5d6d7d5fe4e011335c395f6a8031\IsdiInterop.ni.dll - ok
14:47:35.0251 6644 [ CE203243ADF512540249DF9C264F12DD ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
14:47:35.0251 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe - ok
14:47:35.0251 6644 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
14:47:35.0251 6644 C:\Windows\SysWOW64\msvcp71.dll - ok
14:47:35.0251 6644 [ 11AE198CEB747D3FFFE94C3DA538E325 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll
14:47:35.0251 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll - ok
14:47:35.0267 6644 [ EF26754BE533EB78ADDDE4828D47AEB5 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
14:47:35.0267 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
14:47:35.0267 6644 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
14:47:35.0267 6644 C:\Windows\SysWOW64\msvcr71.dll - ok
14:47:35.0267 6644 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
14:47:35.0267 6644 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
14:47:35.0267 6644 [ E7F7FBF6A16B5F67C508F40A7E9B008B ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll
14:47:35.0267 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll - ok
14:47:35.0267 6644 [ B78DBA0BD5F9EE605BF42F6324182728 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll
14:47:35.0267 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll - ok
14:47:35.0282 6644 [ 06CC2A3D9026022D4E1ED798092BF5D5 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll
14:47:35.0282 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll - ok
14:47:35.0282 6644 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
14:47:35.0282 6644 C:\Windows\SysWOW64\netapi32.dll - ok
14:47:35.0282 6644 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
14:47:35.0282 6644 C:\Windows\SysWOW64\netutils.dll - ok
14:47:35.0282 6644 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
14:47:35.0282 6644 C:\Windows\SysWOW64\wkscli.dll - ok
14:47:35.0298 6644 [ EAD1710951035903DF1850644F15B45A ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
14:47:35.0298 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
14:47:35.0298 6644 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
14:47:35.0298 6644 C:\Windows\System32\sppsvc.exe - ok
14:47:35.0298 6644 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
14:47:35.0298 6644 C:\Windows\SysWOW64\snmpapi.dll - ok
14:47:35.0298 6644 [ E0A46FED61F22D34375B2EF282A7F587 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
14:47:35.0298 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
14:47:35.0298 6644 [ 2C315D557298FEEE9A41C491DF73B4C7 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
14:47:35.0314 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
14:47:35.0314 6644 [ 5BE41AA95AD5ECA6DCCC50C589A30372 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll
14:47:35.0314 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll - ok
14:47:35.0314 6644 [ 04518E7E6C1026C35572361C1D0BE0F7 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll
14:47:35.0314 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll - ok
14:47:35.0314 6644 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
14:47:35.0314 6644 C:\Windows\System32\drivers\spsys.sys - ok
14:47:35.0314 6644 [ CC3775100ABA633984F73DFAE1F55CAE ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:47:35.0314 6644 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
14:47:35.0329 6644 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
14:47:35.0329 6644 C:\Windows\System32\browcli.dll - ok
14:47:35.0329 6644 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
14:47:35.0329 6644 C:\Windows\System32\schedcli.dll - ok
14:47:35.0329 6644 [ 807B6562009E5858C93E1C0F435C0382 ] C:\Windows\SysWOW64\netbios.dll
14:47:35.0329 6644 C:\Windows\SysWOW64\netbios.dll - ok
14:47:35.0329 6644 [ D480C9220BFE667DE65A46CDE80EA7E9 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
14:47:35.0329 6644 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll - ok
14:47:35.0345 6644 [ 122F89E0905FC656D56F65CD7A2E9B4D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
14:47:35.0345 6644 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll - ok
14:47:35.0345 6644 [ 1CBAD5EEE017FAFEA2BF75E82330783D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\DTMessageLib.dll
14:47:35.0345 6644 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\DTMessageLib.dll - ok
14:47:35.0345 6644 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
14:47:35.0345 6644 C:\Windows\System32\sppwinob.dll - ok
14:47:35.0345 6644 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
14:47:35.0345 6644 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
14:47:35.0345 6644 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
14:47:35.0345 6644 C:\Windows\System32\wmdrmdev.dll - ok
14:47:35.0360 6644 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
14:47:35.0360 6644 C:\Windows\System32\drmv2clt.dll - ok
14:47:35.0360 6644 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
14:47:35.0360 6644 C:\Windows\System32\SearchIndexer.exe - ok
14:47:35.0360 6644 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
14:47:35.0360 6644 C:\Windows\System32\tquery.dll - ok
14:47:35.0360 6644 [ F5B8D77FA5372CA79EDDB3094E6527F5 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
14:47:35.0360 6644 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
14:47:35.0360 6644 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
14:47:35.0376 6644 C:\Windows\System32\mssrch.dll - ok
14:47:35.0376 6644 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
14:47:35.0376 6644 C:\Windows\System32\msidle.dll - ok
14:47:35.0376 6644 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
14:47:35.0376 6644 C:\Windows\System32\upnp.dll - ok
14:47:35.0376 6644 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
14:47:35.0376 6644 C:\Windows\System32\wmp.dll - ok
14:47:35.0376 6644 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
14:47:35.0376 6644 C:\Windows\System32\sppobjs.dll - ok
14:47:35.0392 6644 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
14:47:35.0392 6644 C:\Windows\System32\wmploc.DLL - ok
14:47:35.0392 6644 [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
14:47:35.0392 6644 C:\Program Files\Internet Explorer\ieproxy.dll - ok
14:47:35.0392 6644 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
14:47:35.0392 6644 C:\Windows\System32\wmpps.dll - ok
14:47:35.0392 6644 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
14:47:35.0392 6644 C:\Windows\System32\wmpmde.dll - ok
14:47:35.0392 6644 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
14:47:35.0392 6644 C:\Windows\System32\WinSATAPI.dll - ok
14:47:35.0407 6644 [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
14:47:35.0407 6644 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
14:47:35.0407 6644 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
14:47:35.0407 6644 C:\Windows\System32\MSMPEG2ENC.DLL - ok
14:47:35.0407 6644 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
14:47:35.0407 6644 C:\Windows\System32\devenum.dll - ok
14:47:35.0407 6644 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
14:47:35.0407 6644 C:\Windows\System32\msdmo.dll - ok
14:47:35.0407 6644 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
14:47:35.0423 6644 C:\Windows\System32\upnphost.dll - ok
14:47:35.0423 6644 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
14:47:35.0423 6644 C:\Windows\System32\wbem\wmiprov.dll - ok
14:47:35.0423 6644 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
14:47:35.0423 6644 C:\Windows\System32\en-US\tquery.dll.mui - ok
14:47:35.0423 6644 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
14:47:35.0423 6644 C:\Windows\System32\udhisapi.dll - ok
14:47:35.0423 6644 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
14:47:35.0423 6644 C:\Windows\System32\linkinfo.dll - ok
14:47:35.0438 6644 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
14:47:35.0438 6644 C:\Windows\System32\networkexplorer.dll - ok
14:47:35.0438 6644 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
14:47:35.0438 6644 C:\Windows\System32\drprov.dll - ok
14:47:35.0438 6644 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
14:47:35.0438 6644 C:\Windows\System32\ntlanman.dll - ok
14:47:35.0438 6644 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
14:47:35.0438 6644 C:\Windows\System32\davclnt.dll - ok
14:47:35.0438 6644 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
14:47:35.0438 6644 C:\Windows\System32\davhlpr.dll - ok
14:47:35.0454 6644 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll
14:47:35.0454 6644 C:\Windows\System32\CertPolEng.dll - ok
14:47:35.0454 6644 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
14:47:35.0454 6644 C:\Windows\System32\wuaueng.dll - ok
14:47:35.0454 6644 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
14:47:35.0454 6644 C:\Windows\System32\mspatcha.dll - ok
14:47:35.0454 6644 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
14:47:35.0454 6644 C:\Windows\System32\wups.dll - ok
14:47:35.0470 6644 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
14:47:35.0470 6644 C:\Windows\System32\wups2.dll - ok
14:47:35.0470 6644 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
14:47:35.0470 6644 C:\Windows\System32\PhotoMetadataHandler.dll - ok
14:47:35.0470 6644 [ 20ECAC7791DCBA69121631CB627E5A96 ] C:\Windows\System32\mf.dll
14:47:35.0470 6644 C:\Windows\System32\mf.dll - ok
14:47:35.0470 6644 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
14:47:35.0470 6644 C:\Windows\System32\WindowsCodecsExt.dll - ok
14:47:35.0485 6644 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
14:47:35.0485 6644 C:\Windows\System32\ie4uinit.exe - ok
14:47:35.0485 6644 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
14:47:35.0485 6644 C:\Windows\System32\timedate.cpl - ok
14:47:35.0485 6644 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
14:47:35.0485 6644 C:\Windows\System32\actxprxy.dll - ok
14:47:35.0485 6644 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
14:47:35.0485 6644 C:\Windows\System32\shdocvw.dll - ok
14:47:35.0501 6644 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
14:47:35.0501 6644 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
14:47:35.0501 6644 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
14:47:35.0501 6644 C:\Windows\System32\msftedit.dll - ok
14:47:35.0501 6644 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
14:47:35.0501 6644 C:\Windows\System32\msls31.dll - ok
14:47:35.0501 6644 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
14:47:35.0501 6644 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
14:47:35.0516 6644 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
14:47:35.0516 6644 C:\Windows\System32\gameux.dll - ok
14:47:35.0516 6644 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
14:47:35.0516 6644 C:\Windows\System32\DeviceCenter.dll - ok
14:47:35.0516 6644 [ 71B4CE3E69FCF0B4603C5A7D98C797E6 ] C:\Windows\System32\igfxtray.exe
14:47:35.0516 6644 C:\Windows\System32\igfxtray.exe - ok
14:47:35.0516 6644 [ 05EA520BFB1D3085CB12A4355598081D ] C:\Windows\System32\hccutils.dll
14:47:35.0516 6644 C:\Windows\System32\hccutils.dll - ok
14:47:35.0532 6644 [ 96305625A2552BF9AC62C4736971E1B6 ] C:\Windows\System32\hkcmd.exe
14:47:35.0532 6644 C:\Windows\System32\hkcmd.exe - ok
14:47:35.0532 6644 [ E6EA1C8C14003F5454672D315EB41892 ] C:\Windows\System32\igfxpers.exe
14:47:35.0532 6644 C:\Windows\System32\igfxpers.exe - ok
14:47:35.0532 6644 [ 71115C82459067A4E720EC6B578115C5 ] C:\Windows\System32\igfxsrvc.exe
14:47:35.0532 6644 C:\Windows\System32\igfxsrvc.exe - ok
14:47:35.0532 6644 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
14:47:35.0532 6644 C:\Windows\System32\ieframe.dll - ok
14:47:35.0532 6644 [ F51059EE3C543CB364A069CAFB252031 ] C:\Windows\System32\igfxdev.dll
14:47:35.0532 6644 C:\Windows\System32\igfxdev.dll - ok
14:47:35.0548 6644 [ 31A6D4B8803CCBA44271F05E08C4955A ] C:\Windows\System32\igfxsrvc.dll
14:47:35.0548 6644 C:\Windows\System32\igfxsrvc.dll - ok
14:47:35.0548 6644 [ 352C7C2470C03AFD41889236D849D75C ] C:\Windows\System32\igfxrenu.lrc
14:47:35.0548 6644 C:\Windows\System32\igfxrenu.lrc - ok
14:47:35.0548 6644 [ C7F22545C0C424265E57AA1D220090C6 ] C:\Windows\System32\igfxress.dll
14:47:35.0548 6644 C:\Windows\System32\igfxress.dll - ok
14:47:35.0548 6644 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\23876050.sys
14:47:35.0548 6644 C:\Windows\System32\drivers\23876050.sys - ok
14:47:35.0548 6644 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
14:47:35.0548 6644 C:\Windows\System32\msiltcfg.dll - ok
14:47:35.0563 6644 [ 4A8C07E86AF82ED7F8677BDDDAD9A1A3 ] C:\Program Files\Dell\QuickSet\quickset.exe
14:47:35.0563 6644 C:\Program Files\Dell\QuickSet\quickset.exe - ok
14:47:35.0563 6644 [ FAEEC93DC80776C2EEA335607F926FD5 ] C:\Windows\System32\GfxUI.exe
14:47:35.0563 6644 C:\Windows\System32\GfxUI.exe - ok
14:47:35.0563 6644 [ 82A420C1388C76FD18018B0676933D33 ] C:\Program Files\IDT\WDM\sttray64.exe
14:47:35.0563 6644 C:\Program Files\IDT\WDM\sttray64.exe - ok
14:47:35.0563 6644 [ FD0816AEA467268B44865BBED9392294 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
14:47:35.0563 6644 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
14:47:35.0579 6644 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
14:47:35.0579 6644 C:\Windows\System32\mfc42u.dll - ok
14:47:35.0579 6644 [ EE25C4AF92A0EF42E275ED73421A3F21 ] C:\Windows\System32\SynCOM.dll
14:47:35.0579 6644 C:\Windows\System32\SynCOM.dll - ok
14:47:35.0579 6644 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
14:47:35.0579 6644 C:\Windows\System32\odbc32.dll - ok
14:47:35.0579 6644 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
14:47:35.0579 6644 C:\Windows\System32\oledlg.dll - ok
14:47:35.0579 6644 [ 4B061E2D495153C8C436488B881BDC54 ] C:\Windows\System32\SynTPAPI.dll
14:47:35.0579 6644 C:\Windows\System32\SynTPAPI.dll - ok
14:47:35.0594 6644 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
14:47:35.0594 6644 C:\Windows\SysWOW64\msi.dll - ok
14:47:35.0594 6644 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
14:47:35.0594 6644 C:\Windows\System32\thumbcache.dll - ok
14:47:35.0594 6644 [ CFDFBCF821E14B00EC0DA1A4E7954258 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
14:47:35.0594 6644 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
14:47:35.0594 6644 [ D98EF2E62B94F243E1BAF4350BF48C61 ] C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
14:47:35.0594 6644 C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE - ok
14:47:35.0594 6644 [ 8FFD6B88B0A488022CD258AF855BAABC ] C:\Program Files\IDT\WDM\stlang64.dll
14:47:35.0594 6644 C:\Program Files\IDT\WDM\stlang64.dll - ok
14:47:35.0610 6644 [ BA636F9E95FA09C1F7A0F394B75AC85B ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
14:47:35.0610 6644 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
14:47:35.0610 6644 [ 223AD0CA4092AEFFE0D0DE25502A3DB6 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE
14:47:35.0610 6644 C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE - ok
14:47:35.0610 6644 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
14:47:35.0610 6644 C:\Windows\System32\consent.exe - ok
14:47:35.0610 6644 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
14:47:35.0610 6644 C:\Windows\System32\odbcint.dll - ok
14:47:35.0626 6644 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
14:47:35.0626 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
14:47:35.0626 6644 [ 37F04C533F3D8BA106B9F52FCE76616A ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
14:47:35.0626 6644 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
14:47:35.0626 6644 [ 7CD07AC37A76C99FAB31FCE90AE28D71 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
14:47:35.0626 6644 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
14:47:35.0626 6644 [ 46C2A18FC521B94000BF5C918C4BC02D ] C:\Windows\System32\igfxext.exe
14:47:35.0626 6644 C:\Windows\System32\igfxext.exe - ok
14:47:35.0626 6644 [ 0C35A42D35B5655A503EE5EC05E28881 ] C:\Windows\System32\igfxexps.dll
14:47:35.0626 6644 C:\Windows\System32\igfxexps.dll - ok
14:47:35.0641 6644 [ 3181F76ED237CC3D50D10CEA05AF8B60 ] C:\Windows\System32\riched32.dll
14:47:35.0641 6644 C:\Windows\System32\riched32.dll - ok
14:47:35.0641 6644 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
14:47:35.0641 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
14:47:35.0641 6644 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
14:47:35.0641 6644 C:\Windows\System32\riched20.dll - ok
14:47:35.0641 6644 [ F9C48B76DA59CF5FF2ED937B62F5ED39 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
14:47:35.0641 6644 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
14:47:35.0657 6644 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
14:47:35.0657 6644 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
14:47:35.0657 6644 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
14:47:35.0657 6644 C:\Windows\SysWOW64\duser.dll - ok
14:47:35.0657 6644 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
14:47:35.0657 6644 C:\Windows\SysWOW64\dui70.dll - ok
14:47:35.0657 6644 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
14:47:35.0657 6644 C:\Windows\SysWOW64\taskschd.dll - ok
14:47:35.0657 6644 [ A6071FCAC74DB12D8CE03D78D6154D86 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\cd91841321f9942330b6097dcd96dce9\System.Web.ni.dll
14:47:35.0657 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\cd91841321f9942330b6097dcd96dce9\System.Web.ni.dll - ok
14:47:35.0672 6644 [ 812DD9FBA5EF2136AEF738CAA499D47C ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
14:47:35.0672 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe - ok
14:47:35.0672 6644 [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
14:47:35.0672 6644 C:\Program Files\Microsoft Security Client\msseces.exe - ok
14:47:35.0672 6644 [ 42B6A94DD747DF2B5F628A2752E62A98 ] C:\Windows\System32\ctfmon.exe
14:47:35.0672 6644 C:\Windows\System32\ctfmon.exe - ok
14:47:35.0672 6644 [ F023A14FE899F5401935CAC119A723CE ] C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe
14:47:35.0672 6644 C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe - ok
14:47:35.0688 6644 [ 2A3FB4C98F139038E23330D2439DB8A4 ] C:\Users\Troy\AppData\Local\Facebook\Update\FacebookUpdate.exe
14:47:35.0688 6644 C:\Users\Troy\AppData\Local\Facebook\Update\FacebookUpdate.exe - ok
14:47:35.0688 6644 [ DC5B5D3A1BF59A74ECA9C2EBB34574BE ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
14:47:35.0688 6644 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
14:47:35.0688 6644 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
14:47:35.0688 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
14:47:35.0688 6644 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
14:47:35.0688 6644 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
14:47:35.0704 6644 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
14:47:35.0704 6644 C:\Windows\SysWOW64\pdh.dll - ok
14:47:35.0704 6644 [ 2C68D1CEAA96FE39E44B4979ACD6D9B3 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll
14:47:35.0704 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll - ok
14:47:35.0704 6644 [ DB1976563498431B55D1A5D6F0548663 ] C:\Users\Troy\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
14:47:35.0704 6644 C:\Users\Troy\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll - ok
14:47:35.0704 6644 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
14:47:35.0704 6644 C:\Windows\SysWOW64\dbghelp.dll - ok
14:47:35.0719 6644 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
14:47:35.0719 6644 C:\Windows\SysWOW64\mstask.dll - ok
14:47:35.0719 6644 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
14:47:35.0719 6644 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
14:47:35.0719 6644 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
14:47:35.0719 6644 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
14:47:35.0719 6644 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
14:47:35.0719 6644 C:\Windows\SysWOW64\security.dll - ok
14:47:35.0735 6644 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
14:47:35.0735 6644 C:\Windows\SysWOW64\msv1_0.dll - ok
14:47:35.0735 6644 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
14:47:35.0735 6644 C:\Windows\SysWOW64\cryptdll.dll - ok
14:47:35.0735 6644 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll
14:47:35.0735 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll - ok
14:47:35.0735 6644 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
14:47:35.0735 6644 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
14:47:35.0750 6644 [ 0EC4190B22A0E37010CC69371432FC0C ] C:\Windows\System32\gfxSrvc.dll
14:47:35.0750 6644 C:\Windows\System32\gfxSrvc.dll - ok
14:47:35.0750 6644 [ 58957A04853F47B791D68B960258043C ] C:\Windows\System32\IGFXDEVLib.dll
14:47:35.0750 6644 C:\Windows\System32\IGFXDEVLib.dll - ok
14:47:35.0750 6644 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
14:47:35.0750 6644 C:\Windows\System32\d3d9.dll - ok
14:47:35.0750 6644 [ D5A787E18D3C67894CDAC0A81D617DB4 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
14:47:35.0750 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll - ok
14:47:35.0766 6644 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
14:47:35.0766 6644 C:\Windows\System32\d3d8thk.dll - ok
14:47:35.0766 6644 [ 9C253164E7016B42591F08BEB90FB494 ] C:\Windows\System32\igdumd64.dll
14:47:35.0766 6644 C:\Windows\System32\igdumd64.dll - ok
14:47:35.0766 6644 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
14:47:35.0766 6644 C:\Windows\System32\security.dll - ok
14:47:35.0766 6644 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
14:47:35.0766 6644 C:\Windows\System32\wbem\wmipcima.dll - ok
14:47:35.0766 6644 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
14:47:35.0766 6644 C:\Windows\System32\UIAnimation.dll - ok
14:47:35.0782 6644 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
14:47:35.0782 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
14:47:35.0782 6644 [ 2ECD9D9087DC15E7AAD130883E665219 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
14:47:35.0782 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll - ok
14:47:35.0782 6644 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
14:47:35.0782 6644 C:\Windows\SysWOW64\msacm32.dll - ok
14:47:35.0782 6644 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
14:47:35.0782 6644 C:\Windows\SysWOW64\opengl32.dll - ok
14:47:35.0797 6644 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
14:47:35.0797 6644 C:\Windows\System32\stobject.dll - ok
14:47:35.0797 6644 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
14:47:35.0797 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
14:47:35.0797 6644 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
14:47:35.0797 6644 C:\Windows\SysWOW64\glu32.dll - ok
14:47:35.0797 6644 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
14:47:35.0797 6644 C:\Windows\SysWOW64\ddraw.dll - ok
14:47:35.0797 6644 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
14:47:35.0797 6644 C:\Windows\System32\batmeter.dll - ok
14:47:35.0813 6644 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
14:47:35.0813 6644 C:\Windows\SysWOW64\dciman32.dll - ok
14:47:35.0813 6644 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
14:47:35.0813 6644 C:\Windows\System32\icm32.dll - ok
14:47:35.0813 6644 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
14:47:35.0813 6644 C:\Windows\System32\prnfldr.dll - ok
14:47:35.0813 6644 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
14:47:35.0813 6644 C:\Windows\SysWOW64\d3d10.dll - ok
14:47:35.0813 6644 [ 65E77DE21ECDB99625B754D304E33534 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f14d92947409b66f348ab20efb80da08\WindowsFormsIntegration.ni.dll
14:47:35.0813 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f14d92947409b66f348ab20efb80da08\WindowsFormsIntegration.ni.dll - ok
14:47:35.0828 6644 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
14:47:35.0828 6644 C:\Windows\System32\DXP.dll - ok
14:47:35.0828 6644 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
14:47:35.0828 6644 C:\Windows\System32\Syncreg.dll - ok
14:47:35.0828 6644 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
14:47:35.0828 6644 C:\Windows\ehome\ehSSO.dll - ok
14:47:35.0828 6644 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
14:47:35.0828 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
14:47:35.0828 6644 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
14:47:35.0828 6644 C:\Windows\SysWOW64\d3d10core.dll - ok
14:47:35.0828 6644 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
14:47:35.0828 6644 C:\Windows\System32\netshell.dll - ok
14:47:35.0844 6644 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
14:47:35.0844 6644 C:\Windows\SysWOW64\dxgi.dll - ok
14:47:35.0844 6644 [ B0335E0E041106E15ACC6D36D6D75BF5 ] C:\Windows\SysWOW64\igd10umd32.dll
14:47:35.0844 6644 C:\Windows\SysWOW64\igd10umd32.dll - ok
14:47:35.0844 6644 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
14:47:35.0844 6644 C:\Windows\System32\AltTab.dll - ok
14:47:35.0844 6644 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
14:47:35.0844 6644 C:\Windows\System32\WPDShServiceObj.dll - ok
14:47:35.0860 6644 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
14:47:35.0860 6644 C:\Windows\System32\pnidui.dll - ok
14:47:35.0860 6644 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
14:47:35.0860 6644 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
14:47:35.0860 6644 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
14:47:35.0860 6644 C:\Windows\System32\QUTIL.DLL - ok
14:47:35.0860 6644 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
14:47:35.0860 6644 C:\Windows\System32\PortableDeviceTypes.dll - ok
14:47:35.0860 6644 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
14:47:35.0860 6644 C:\Windows\System32\ActionCenter.dll - ok
14:47:35.0875 6644 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
14:47:35.0875 6644 C:\Windows\System32\srchadmin.dll - ok
14:47:35.0875 6644 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
14:47:35.0875 6644 C:\Windows\System32\mssprxy.dll - ok
14:47:35.0875 6644 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
14:47:35.0875 6644 C:\Windows\System32\netman.dll - ok
14:47:35.0875 6644 [ B357CD8DE270EA730AEC3111708781E7 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
14:47:35.0875 6644 C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
14:47:35.0875 6644 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
14:47:35.0875 6644 C:\Windows\System32\webcheck.dll - ok
14:47:35.0891 6644 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
14:47:35.0891 6644 C:\Windows\System32\SyncCenter.dll - ok
14:47:35.0891 6644 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
14:47:35.0891 6644 C:\Windows\System32\imapi2.dll - ok
14:47:35.0891 6644 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
14:47:35.0891 6644 C:\Windows\System32\rasdlg.dll - ok
14:47:35.0891 6644 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
14:47:35.0891 6644 C:\Windows\System32\hgcpl.dll - ok
14:47:35.0891 6644 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
14:47:35.0891 6644 C:\Windows\System32\dot3api.dll - ok
14:47:35.0906 6644 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
14:47:35.0906 6644 C:\Windows\System32\wlanhlp.dll - ok
14:47:35.0906 6644 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
14:47:35.0906 6644 C:\Windows\System32\ListSvc.dll - ok
14:47:35.0906 6644 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
14:47:35.0906 6644 C:\Windows\System32\P2P.dll - ok
14:47:35.0906 6644 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
14:47:35.0906 6644 C:\Windows\System32\IdListen.dll - ok
14:47:35.0906 6644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
14:47:35.0906 6644 C:\Windows\System32\pnrpsvc.dll - ok
14:47:35.0922 6644 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
14:47:35.0922 6644 C:\Windows\SysWOW64\rasapi32.dll - ok
14:47:35.0922 6644 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
14:47:35.0922 6644 C:\Windows\System32\hgprint.dll - ok
14:47:35.0922 6644 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
14:47:35.0922 6644 C:\Windows\SysWOW64\rasman.dll - ok
14:47:35.0922 6644 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
14:47:35.0922 6644 C:\Windows\SysWOW64\rtutils.dll - ok
14:47:35.0938 6644 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
14:47:35.0938 6644 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
14:47:35.0938 6644 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
14:47:35.0938 6644 C:\Windows\SysWOW64\perfos.dll - ok
14:47:35.0938 6644 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
14:47:35.0938 6644 C:\Windows\System32\WWanAPI.dll - ok
14:47:35.0938 6644 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
14:47:35.0938 6644 C:\Windows\System32\wwapi.dll - ok
14:47:35.0938 6644 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
14:47:35.0953 6644 C:\Windows\System32\p2psvc.dll - ok
14:47:35.0953 6644 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
14:47:35.0953 6644 C:\Windows\System32\QAGENT.DLL - ok
14:47:35.0953 6644 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
14:47:35.0953 6644 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
14:47:35.0953 6644 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
14:47:35.0953 6644 C:\Windows\System32\P2PGraph.dll - ok
14:47:35.0953 6644 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
14:47:35.0953 6644 C:\Windows\System32\FXSST.dll - ok
14:47:35.0969 6644 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
14:47:35.0969 6644 C:\Windows\System32\FXSAPI.dll - ok
14:47:35.0969 6644 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
14:47:35.0969 6644 C:\Windows\System32\FXSRESM.dll - ok
14:47:35.0969 6644 [ B0033D0723317C9D71B3BB80245D1FA5 ] C:\Users\Troy\AppData\Roaming\Spotify\spotify.exe
14:47:35.0969 6644 C:\Users\Troy\AppData\Roaming\Spotify\spotify.exe - ok
14:47:35.0969 6644 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
14:47:35.0969 6644 C:\Windows\System32\FXSSVC.exe - ok
14:47:35.0984 6644 [ 8FEDBE7A5D3E5F91FD4B96DAFA4DD197 ] C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
14:47:35.0984 6644 C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
14:47:35.0984 6644 [ 5598E41378C6295A3CEA075398844BDF ] C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe
14:47:35.0984 6644 C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe - ok
14:47:35.0984 6644 [ CBEBF85763814AD2CA23491050B08D76 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
14:47:35.0984 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
14:47:35.0984 6644 [ ECF207CD20FB05CEF8F3C7A101ED812C ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
14:47:35.0984 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe - ok
14:47:35.0984 6644 [ 452FA961163EF4AEE4815796A13AB2CF ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
14:47:35.0984 6644 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
14:47:36.0000 6644 [ 8B57BA74C6F5782BB4FD5FDBE6691A31 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll
14:47:36.0000 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll - ok
14:47:36.0000 6644 [ 32CB8AE7EA0A353E2060C96F401566B3 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
14:47:36.0000 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe - ok
14:47:36.0000 6644 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll
14:47:36.0000 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll - ok
14:47:36.0000 6644 [ D5243E8A867A914C668E32C751F28E38 ] C:\Program Files (x86)\ContourStoryteller\QtGui4.dll
14:47:36.0000 6644 C:\Program Files (x86)\ContourStoryteller\QtGui4.dll - ok
14:47:36.0016 6644 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll
14:47:36.0016 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll - ok
14:47:36.0016 6644 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll
14:47:36.0016 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll - ok
14:47:36.0016 6644 [ 81353C4568E2771E091615B0FE612229 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll
14:47:36.0016 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll - ok
14:47:36.0016 6644 [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\Windows\SysWOW64\MFC71ENU.DLL
14:47:36.0016 6644 C:\Windows\SysWOW64\MFC71ENU.DLL - ok
14:47:36.0016 6644 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
14:47:36.0016 6644 C:\Windows\SysWOW64\shfolder.dll - ok
14:47:36.0031 6644 [ 51F158D2E2B8346ADA3565ED20ACBCC7 ] C:\Users\Troy\AppData\Roaming\Spotify\Data\libcef.dll
14:47:36.0031 6644 C:\Users\Troy\AppData\Roaming\Spotify\Data\libcef.dll - ok
14:47:36.0031 6644 [ C70C5A851288C608BC2D8D82313CFA8F ] C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll
14:47:36.0031 6644 C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll - ok
14:47:36.0031 6644 [ BD5D86F912424002212D8F2E4B613C3D ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
14:47:36.0031 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
14:47:36.0031 6644 [ 36732C0A7013FD15BC803282671DE00C ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll
14:47:36.0031 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll - ok
14:47:36.0047 6644 [ 3A09CB35E44055D35411B829E53B412F ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll
14:47:36.0047 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll - ok
14:47:36.0047 6644 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
14:47:36.0047 6644 C:\Windows\SysWOW64\sxs.dll - ok
14:47:36.0047 6644 [ 09DEF3ABB6A196749299359AC5578DD8 ] C:\Windows\SysWOW64\msxml4.dll
14:47:36.0047 6644 C:\Windows\SysWOW64\msxml4.dll - ok
14:47:36.0047 6644 [ CE77765FC737EF485E50542FE0D45CFE ] C:\Program Files (x86)\ContourStoryteller\QtCore4.dll
14:47:36.0047 6644 C:\Program Files (x86)\ContourStoryteller\QtCore4.dll - ok
14:47:36.0062 6644 [ 40682F132185A0452449DACDAC7D005E ] C:\Program Files (x86)\ContourStoryteller\QtNetwork4.dll
14:47:36.0062 6644 C:\Program Files (x86)\ContourStoryteller\QtNetwork4.dll - ok
14:47:36.0062 6644 [ 6B0AF3B3621DDAAD5C17A5C298177944 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0ac577a8ad6528ff03b50db5eeeac8be\System.Web.ni.dll
14:47:36.0062 6644 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0ac577a8ad6528ff03b50db5eeeac8be\System.Web.ni.dll - ok
14:47:36.0062 6644 [ BDDC447AB46625A54619808575D5CB46 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
14:47:36.0062 6644 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe - ok
14:47:36.0062 6644 [ 80B62FF105908EC9E4B072AFB1CFC824 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
14:47:36.0062 6644 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
14:47:36.0078 6644 [ EBE1962DC5EEFC13D20543013A891ABC ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
14:47:36.0078 6644 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe - ok
14:47:36.0078 6644 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
14:47:36.0078 6644 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
14:47:36.0078 6644 [ F6933596E3C8893A04ECD5453DC8C855 ] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
14:47:36.0078 6644 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe - ok
14:47:36.0078 6644 [ 4197A51AEC1FD501B1E68F0FA06091BF ] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_ENU.dll
14:47:36.0078 6644 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_ENU.dll - ok
14:47:36.0094 6644 [ 3FBBF6092C4EF5F50302707063E853EF ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
14:47:36.0094 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe - ok
14:47:36.0094 6644 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:47:36.0094 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
14:47:36.0094 6644 [ 3129AC158EA2682786939973420D5C0C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll
14:47:36.0094 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll - ok
14:47:36.0094 6644 [ A0A42BB19E085F4B3367F5057307C194 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
14:47:36.0094 6644 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
14:47:36.0109 6644 [ D8D2F54F39A7B26CEF7B8455976D89C3 ] C:\Windows\SysWOW64\CNMNPPM.DLL
14:47:36.0109 6644 C:\Windows\SysWOW64\CNMNPPM.DLL - ok
14:47:36.0109 6644 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
14:47:36.0109 6644 C:\Windows\SysWOW64\Nlsdl.dll - ok
14:47:36.0109 6644 [ 57549093CA2C536855F7C04E8789679A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll
14:47:36.0109 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll - ok
14:47:36.0109 6644 [ 82B242C493F0AECD332C8BE94D9A4739 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\zlib1.dll
14:47:36.0109 6644 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\zlib1.dll - ok
14:47:36.0125 6644 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
14:47:36.0125 6644 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
14:47:36.0125 6644 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
14:47:36.0125 6644 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
14:47:36.0125 6644 [ 89D9685F59184F2D52BEE50E8298C8D9 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll
14:47:36.0125 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll - ok
14:47:36.0125 6644 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
14:47:36.0125 6644 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
14:47:36.0125 6644 [ DFA05C3902FFEC580B09AEA0584D2F4C ] C:\Users\Troy\AppData\Roaming\Spotify\Data\icudt.dll
14:47:36.0125 6644 C:\Users\Troy\AppData\Roaming\Spotify\Data\icudt.dll - ok
14:47:36.0140 6644 [ F3E06B350048CF40DC99342C05278A59 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl
14:47:36.0140 6644 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl - ok
14:47:36.0140 6644 [ F577910A133A592234EBAAD3F3AFA258 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:47:36.0140 6644 C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe - ok
14:47:36.0140 6644 [ 14A1301778D69A64A0E79C4EF97BA42C ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
14:47:36.0140 6644 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
14:47:36.0140 6644 [ FBFC6686495B65D3B2FB37CC22C8E49A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
14:47:36.0140 6644 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
14:47:36.0156 6644 [ E1636F57581CAB5D995FD54D2991EF57 ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
14:47:36.0156 6644 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe - ok
14:47:36.0156 6644 [ 2763D61D132BB47028BA7A6D67E54998 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll
14:47:36.0156 6644 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll - ok
14:47:36.0156 6644 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:47:36.0156 6644 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
14:47:36.0156 6644 [ 1C338290116B8D8D91018E8E6C66E555 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe
14:47:36.0156 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe - ok
14:47:36.0172 6644 [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\SysWOW64\ksproxy.ax
14:47:36.0172 6644 C:\Windows\SysWOW64\ksproxy.ax - ok
14:47:36.0172 6644 [ 114E5342884A174F0E261526F07B63A1 ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libcurl.dll
14:47:36.0172 6644 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libcurl.dll - ok
14:47:36.0172 6644 [ 6307849B9BE3C206DB46A62316BF191F ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libeay32.dll
14:47:36.0172 6644 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libeay32.dll - ok
14:47:36.0172 6644 [ 880798F61D6FAA41556CE9FA25E146F5 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
14:47:36.0172 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe - ok
14:47:36.0187 6644 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
14:47:36.0187 6644 C:\Windows\SysWOW64\ksuser.dll - ok
14:47:36.0187 6644 [ 53EDBE9C1D6B0CEC11A573852B5B6DAD ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
14:47:36.0187 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe - ok
14:47:36.0187 6644 [ AAA55B127EC38BDEBD2A3891A2E5FD54 ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\ssleay32.dll
14:47:36.0187 6644 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\ssleay32.dll - ok
14:47:36.0187 6644 [ 8F77B32860FA6541F7F4AE494EEA670F ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Esl\Aiod.dll
14:47:36.0187 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Esl\Aiod.dll - ok
14:47:36.0203 6644 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
14:47:36.0203 6644 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
14:47:36.0203 6644 [ 3F2D0111ED59CF2847E0E2551117D3F3 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodist.exe
14:47:36.0203 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodist.exe - ok
14:47:36.0203 6644 [ 907B50DE97ED835EFE151F203818216D ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\zlib1.dll
14:47:36.0203 6644 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\zlib1.dll - ok
14:47:36.0203 6644 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
14:47:36.0203 6644 C:\Windows\SysWOW64\vidcap.ax - ok
14:47:36.0203 6644 [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
14:47:36.0203 6644 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
14:47:36.0218 6644 [ 630A31F277349109299E590856A4B004 ] C:\Windows\SysWOW64\Kswdmcap.ax
14:47:36.0218 6644 C:\Windows\SysWOW64\Kswdmcap.ax - ok
14:47:36.0218 6644 [ 27A6ADA12783F1065924460674BE4191 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodistdll.dll
14:47:36.0218 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodistdll.dll - ok
14:47:36.0218 6644 [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
14:47:36.0218 6644 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
14:47:36.0218 6644 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
14:47:36.0218 6644 C:\Windows\SysWOW64\mfc42.dll - ok
14:47:36.0218 6644 [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
14:47:36.0218 6644 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
14:47:36.0234 6644 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
14:47:36.0234 6644 C:\Windows\SysWOW64\odbc32.dll - ok
14:47:36.0234 6644 [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
14:47:36.0234 6644 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
14:47:36.0234 6644 [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
14:47:36.0234 6644 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
14:47:36.0234 6644 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
14:47:36.0234 6644 C:\Windows\SysWOW64\odbcint.dll - ok
14:47:36.0250 6644 [ 97EA663282E10C6306769FEAD4E76867 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ahclient.dll
14:47:36.0250 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ahclient.dll - ok
14:47:36.0250 6644 [ 06CABCD25920159660B4F73B8BE85D5A ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeXMP.dll
14:47:36.0250 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeXMP.dll - ok
14:47:36.0250 6644 [ 2C68D1CEAA96FE39E44B4979ACD6D9B3 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll
14:47:36.0250 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll - ok
14:47:36.0250 6644 [ 819EB5ABEAE5B1728EDFF0AC8B696769 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ACE.dll
14:47:36.0250 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ACE.dll - ok
14:47:36.0265 6644 [ 7E57B6D3D74CB9EF3055BA4E89F038D4 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx
14:47:36.0265 6644 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx - ok
14:47:36.0265 6644 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
14:47:36.0265 6644 C:\Windows\System32\wbem\WMIADAP.exe - ok
14:47:36.0265 6644 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
14:47:36.0265 6644 C:\Windows\System32\loadperf.dll - ok
14:47:36.0265 6644 [ DA6A7AF9E7030C7C2933A697EE1189BE ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe
14:47:36.0265 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe - ok
14:47:36.0281 6644 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
14:47:36.0281 6644 C:\Windows\System32\qmgr.dll - ok
14:47:36.0281 6644 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
14:47:36.0281 6644 C:\Windows\System32\bitsperf.dll - ok
14:47:36.0281 6644 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
14:47:36.0281 6644 C:\Windows\System32\bitsigd.dll - ok
14:47:36.0281 6644 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
14:47:36.0281 6644 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
14:47:36.0281 6644 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
14:47:36.0281 6644 C:\Windows\SysWOW64\MMDevAPI.dll - ok
14:47:36.0296 6644 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
14:47:36.0296 6644 C:\Windows\System32\qmgrprxy.dll - ok
14:47:36.0296 6644 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
14:47:36.0296 6644 C:\Windows\SysWOW64\qmgrprxy.dll - ok
14:47:36.0296 6644 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
14:47:36.0296 6644 C:\Windows\SysWOW64\wdmaud.drv - ok
14:47:36.0296 6644 [ 0F261EC4F514926177C70C1832374231 ] C:\Program Files\iPod\bin\iPodService.exe
14:47:36.0296 6644 C:\Program Files\iPod\bin\iPodService.exe - ok
14:47:36.0312 6644 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
14:47:36.0312 6644 C:\Windows\SysWOW64\avrt.dll - ok
14:47:36.0312 6644 [ 5EF8A000C7927E87332D8CB6B7970067 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
14:47:36.0312 6644 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
14:47:36.0312 6644 [ C7E02E0BF58E7764CD8E0B526C56C434 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobePDFL.dll
14:47:36.0312 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobePDFL.dll - ok
14:47:36.0312 6644 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
14:47:36.0312 6644 C:\Windows\SysWOW64\AudioSes.dll - ok
14:47:36.0312 6644 [ 763E2BBEFCD523AB3B7163A5671BF5EF ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
14:47:36.0312 6644 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
14:47:36.0328 6644 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
14:47:36.0328 6644 C:\Windows\SysWOW64\msacm32.drv - ok
14:47:36.0328 6644 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
14:47:36.0328 6644 C:\Windows\SysWOW64\midimap.dll - ok
14:47:36.0328 6644 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll
14:47:36.0328 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll - ok
14:47:36.0328 6644 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
14:47:36.0328 6644 C:\Windows\SysWOW64\xmllite.dll - ok
14:47:36.0343 6644 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
14:47:36.0343 6644 C:\Windows\SysWOW64\linkinfo.dll - ok
14:47:36.0343 6644 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\SysWOW64\wmp.dll
14:47:36.0343 6644 C:\Windows\SysWOW64\wmp.dll - ok
14:47:36.0343 6644 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
14:47:36.0343 6644 C:\Windows\System32\drttransport.dll - ok
14:47:36.0343 6644 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
14:47:36.0343 6644 C:\Windows\System32\drt.dll - ok
14:47:36.0343 6644 [ FDB069972B81AA52BFBA7AE45FF7BF7B ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\JP2KLib.dll
14:47:36.0343 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\JP2KLib.dll - ok
14:47:36.0359 6644 [ D5A787E18D3C67894CDAC0A81D617DB4 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
14:47:36.0359 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll - ok
14:47:36.0359 6644 [ 759D71FC9442AB5A9B5749C0F6C0C263 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIB.dll
14:47:36.0359 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIB.dll - ok
14:47:36.0359 6644 [ B05953F956EB87A02E62096EAAFA9C5F ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIBUtils.dll
14:47:36.0359 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIBUtils.dll - ok
14:47:36.0359 6644 [ AB9D511F0CA51F683CD72870AB989141 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AGM.dll
14:47:36.0359 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AGM.dll - ok
14:47:36.0374 6644 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\SysWOW64\wmploc.DLL
14:47:36.0374 6644 C:\Windows\SysWOW64\wmploc.DLL - ok
14:47:36.0374 6644 [ 87EFA9CF72AA7059022008348BF6085A ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\CoolType.dll
14:47:36.0374 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\CoolType.dll - ok
14:47:36.0374 6644 [ 2ECD9D9087DC15E7AAD130883E665219 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
14:47:36.0374 6644 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll - ok
14:47:36.0374 6644 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
14:47:36.0374 6644 C:\Windows\SysWOW64\mfplat.dll - ok
14:47:36.0390 6644 [ 0CFB90C28768E26498834D780FBBD754 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AXE8SharedExpat.dll
14:47:36.0390 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AXE8SharedExpat.dll - ok
14:47:36.0390 6644 [ 79BFC537A2D5005EDE7CBDE543B2C114 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ARE.dll
14:47:36.0390 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ARE.dll - ok
14:47:36.0390 6644 [ 73CB26E2DD5A28B08C7260CEC63172C1 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Adist.dll
14:47:36.0390 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Adist.dll - ok
14:47:36.0390 6644 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
14:47:36.0390 6644 C:\Windows\SysWOW64\IconCodecService.dll - ok
14:47:36.0406 6644 [ FE51EEF2F9842C7A14768A48219F96C2 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\adistres.dll
14:47:36.0406 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\adistres.dll - ok
14:47:36.0406 6644 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
14:47:36.0406 6644 C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
14:47:36.0406 6644 [ 28D2C5CE5944E1B027CF5C8004CF89A1 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
14:47:36.0406 6644 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll - ok
14:47:36.0406 6644 [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll
14:47:36.0406 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll - ok
14:47:36.0406 6644 [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll
14:47:36.0406 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll - ok
14:47:36.0421 6644 [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll
14:47:36.0421 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll - ok
14:47:36.0421 6644 [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll
14:47:36.0421 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll - ok
14:47:36.0421 6644 [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
14:47:36.0421 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll - ok
14:47:36.0421 6644 [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll
14:47:36.0421 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll - ok
14:47:36.0421 6644 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
14:47:36.0437 6644 C:\Windows\SysWOW64\mscms.dll - ok
14:47:36.0437 6644 [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll
14:47:36.0437 6644 C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll - ok
14:47:36.0437 6644 [ 9ED8AA7D69B73EFF77A6D18A2ACFB954 ] C:\Users\Troy\AppData\Roaming\Mozilla\Plugins\npicaN.dll
14:47:36.0437 6644 C:\Users\Troy\AppData\Roaming\Mozilla\Plugins\npicaN.dll - ok
14:47:36.0437 6644 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
14:47:36.0437 6644 C:\Windows\SysWOW64\msxml6.dll - ok
14:47:36.0437 6644 [ 84CBD6F6AA7EE399FBDC265B8EA64474 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
14:47:36.0437 6644 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll - ok
14:47:36.0452 6644 [ CE252B04FB9F4F773A7DB5338BFEEA5B ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
14:47:36.0452 6644 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL - ok
14:47:36.0452 6644 [ 54BC55D3D9BD33A6CE38F811CF836794 ] C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
14:47:36.0452 6644 C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll - ok
14:47:36.0452 6644 [ C04FCB7EEBEB5097B30468828F20FB9E ] C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
14:47:36.0452 6644 C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll - ok
14:47:36.0452 6644 [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
14:47:36.0452 6644 C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
14:47:36.0468 6644 [ 3FCF47BD73094FA62D81373515F46110 ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
14:47:36.0468 6644 C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
14:47:36.0468 6644 [ 6AD8DB9CD0AC44811C75AA0CB4DF4AFC ] C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll
14:47:36.0468 6644 C:\Users\Troy\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll - ok
14:47:36.0468 6644 [ 0B31B0F8FA99CFD009C8FBEA9E20C9DE ] C:\Users\Troy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
14:47:36.0468 6644 C:\Users\Troy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - ok
14:47:36.0468 6644 [ 9AC863FD5976316C29D4CB5E4C9EFD9C ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll
14:47:36.0468 6644 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll - ok
14:47:36.0484 6644 [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
14:47:36.0484 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
14:47:36.0484 6644 [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
14:47:36.0484 6644 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
14:47:36.0484 6644 [ 2C82D753EF779945977C82A3908DA20A ] C:\Windows\SysWOW64\npDeployJava1.dll
14:47:36.0484 6644 C:\Windows\SysWOW64\npDeployJava1.dll - ok
14:47:36.0484 6644 [ 711A2E6A55EC7BFD59B5F649D58B704B ] C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
14:47:36.0484 6644 C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll - ok
14:47:36.0484 6644 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
14:47:36.0484 6644 C:\Windows\SysWOW64\msisip.dll - ok
14:47:36.0499 6644 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\SysWOW64\pcwum.dll
14:47:36.0499 6644 C:\Windows\SysWOW64\pcwum.dll - ok
14:47:36.0499 6644 [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\SysWOW64\wmpps.dll
14:47:36.0499 6644 C:\Windows\SysWOW64\wmpps.dll - ok
14:47:36.0499 6644 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
14:47:36.0499 6644 C:\Windows\System32\wscinterop.dll - ok
14:47:36.0499 6644 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
14:47:36.0499 6644 C:\Windows\System32\wscapi.dll - ok
14:47:36.0499 6644 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
14:47:36.0499 6644 C:\Windows\System32\wscui.cpl - ok
14:47:36.0515 6644 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
14:47:36.0515 6644 C:\Windows\System32\werconcpl.dll - ok
14:47:36.0515 6644 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
14:47:36.0515 6644 C:\Windows\System32\wercplsupport.dll - ok
14:47:36.0515 6644 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
14:47:36.0515 6644 C:\Windows\System32\hcproviders.dll - ok
14:47:36.0515 6644 ============================================================
14:47:36.0515 6644 Scan finished
14:47:36.0515 6644 ============================================================
14:47:36.0530 6712 Detected object count: 2
14:47:36.0530 6712 Actual detected object count: 2
14:47:59.0010 6712 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
14:47:59.0010 6712 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:47:59.0010 6712 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
14:47:59.0010 6712 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:48:52.0394 0640 Deinitialize success

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-30 14:55:53
-----------------------------
14:55:53.739 OS Version: Windows x64 6.1.7601 Service Pack 1
14:55:53.739 Number of processors: 4 586 0x2505
14:55:53.739 ComputerName: TROYSDELL UserName: Troy
14:55:55.143 Initialize success
14:57:07.950 AVAST engine defs: 13013000
14:58:44.982 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:58:44.982 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
14:58:44.998 Disk 0 MBR read successfully
14:58:44.998 Disk 0 MBR scan
14:58:45.013 Disk 0 Windows 7 default MBR code
14:58:45.013 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 100 MB offset 2048
14:58:45.044 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
14:58:45.091 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
14:58:45.154 Disk 0 scanning C:\Windows\system32\drivers
14:59:04.513 Service scanning
15:00:09.191 Modules scanning
15:00:09.191 Disk 0 trace - called modules:
15:00:09.222 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
15:00:09.721 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c0a060]
15:00:09.721 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800497d050]
15:00:11.562 AVAST engine scan C:\Windows
15:00:15.415 AVAST engine scan C:\Windows\system32
15:05:10.897 AVAST engine scan C:\Windows\system32\drivers
15:05:32.191 AVAST engine scan C:\Users\Troy
15:08:39.875 Disk 0 MBR has been saved successfully to "C:\Users\Troy\Documents\MBR.dat"
15:08:39.875 The log file has been saved successfully to "C:\Users\Troy\Documents\aswMBR.txt"
  • 0

#6
gringo_pr
Posted 30 January 2013 - 07:57 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings,

first I would like you to go here and click on the fixit button - http://support.microsoft.com/kb/923737


Then I want you to do the following

  • Start Internet Explorer.
  • click on "safety"
  • click on "Delete Browsing History"
  • make sure all boxes are checked
  • click on "Delete"
  • click on "Tools",
  • click "Internet Options".
  • On the "Advanced" tab, click "Reset"
  • put a check mark next to "Delete Personal Settings"
  • click "Reset" to confirm
  • when complete click the "Close" button
  • restart IE


Gringo
  • 0

#7
gweng
Posted 30 January 2013 - 08:55 PM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Gringo,

I get the following message when running fixit ("The Microsoft Fix it does not apply to your operating system or application version). I still have IE9 disabled. Should I re-enable it before running fixit?
  • 0

#8
gringo_pr
Posted 30 January 2013 - 09:11 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
yes enable it and then try the fixit and if it still does not work continue with the rest of the instructions
  • 0

#9
gweng
Posted 30 January 2013 - 10:33 PM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
I was able to run fixit after re-enabling IE9. I followed the rest of the instructions and restarted IE. There are no longer multiple windows opening!
  • 0

#10
gringo_pr
Posted 30 January 2013 - 10:39 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Clean Out Temp Files

  • This small application you may want to keep and use once a week to keep the computer clean.

    Download CCleaner from here http://www.ccleaner.com/

  • Run the installer to install the application.
  • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
  • Run CCleaner. default settings are fine
  • Click Run Cleaner.
  • Close CCleaner.

Run Malwarebytes

Please download Malwarebytes' Anti-Malware to your desktop.

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to
    • Update Malwarebytes' Anti-Malware
    • and Launch Malwarebytes' Anti-Malware
  • then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
    • If you accidently close it, the log file is saved here and will be named like this:
    • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.


Download HijackThis

  • Go Here to download HijackThis program
  • Save HijackThis to your desktop.
  • Right Click on Hijackthis and select "Run as Admin" (XP users just need to double click to run)
  • Click on "Do A system scan and save a logfile" (if you do not see "Do A system scan and save a logfile" then click on main menu)
  • copy and paste hijackthis report into the topic

"information and logs"

  • In your next post I need the following

  • Log From MBAM
  • report from Hijackthis
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

Advertisements

#11
gweng
Posted 31 January 2013 - 09:02 AM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
The computer seems to be working well now. I have not reinstalled firefox yet. Waiting for your ok to do so. Here are the logs:

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.31.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Troy :: TROYSDELL [administrator]

1/31/2013 7:52:22 AM
mbam-log-2013-01-31 (07-52-22).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 236005
Time elapsed: 4 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:00:27 AM, on 1/31/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe
C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe
C:\Users\Troy\AppData\Roaming\Spotify\spotify.exe
C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe
C:\Users\Troy\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ÿ₫127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Troy\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [Spotify] "C:\Users\Troy\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [ContourCameraFinder] "C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: CyberLink Product - 2012/09/09 23:57:02 (CLKMSVC10_1628BCEA) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Splashtop® Remote Service (SplashtopRemoteService) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Splashtop Software Updater Service (SSUService) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TurboBoost - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15318 bytes
  • 0

#12
gringo_pr
Posted 31 January 2013 - 03:17 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings

go ahead and install it

These logs are looking very good, we are almost done!!! Just one more scan to go.

:Remove unneeded start-up entries:

This part of the fix is purely optional
These are programs that start up when you turn on your computer but don't need to be, any of these programs you can click on their icons (or start from the control panel) and start the program when you need it. By stopping these programs you will boot up faster and your computer will work faster.

  • Run HijackThis (rightclick and run as admin)
  • Click on the Scan button
  • Put a check beside all of the items listed below (if present):

    • O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
      O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
      O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
      O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
      O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
      O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
      O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
      O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
      O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
      O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
      O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
      O4 - HKLM\..\Run: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
      O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Troy\AppData\Local\Akamai\netsession_win.exe"
      O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Troy\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
      O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
      O4 - HKCU\..\Run: [Spotify] "C:\Users\Troy\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
      O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Troy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
      O4 - HKCU\..\Run: [ContourCameraFinder] "C:\Program Files (x86)\ContourStoryteller\ContourAutoplay.exe"
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
      O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
      O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

  • Close all open windows and browsers/email, etc...
  • Click on the "Fix Checked" button
  • When completed, close the application.

    NOTE**You can research each of those lines >here< and see if you want to keep them or not
    just copy the name between the brackets and paste into the search space
    O4 - HKLM\..\Run: [IntelliPoint]


Eset Online Scanner

**Note** You will need to use Internet explorer for this scan - Vista and win 7 right click on IE shortcut and run as admin

Go Eset web page to run an online scanner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • click on the Run ESET Online Scanner button
  • Tick the box next to YES, I accept the Terms of Use.
    • Click Start
  • When asked, allow the add/on to be installed
    • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings, ensure the options
    Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
  • Click Scan
  • wait for the virus definitions to be downloaded
  • Wait for the scan to finish

When the scan is complete

  • If no threats were found
  • put a checkmark in "Uninstall application on close"
  • close program
  • report to me that nothing was found

  • If threats were found
  • click on "list of threats found"
  • click on "export to text file" and save it as ESET SCAN and save to the desktop
  • Click on back
  • put a checkmark in "Uninstall application on close"
  • click on finish
  • close program
  • copy and paste the report here

Gringo
  • 0

#13
gweng
Posted 01 February 2013 - 08:33 AM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
I have reinstalled Firefox with no issues.

Eset Log:

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application
C:\Users\Troy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C624IWP6\Firefox_setup.exe probably a variant of Win32/Adware.iBryte.D application
C:\Users\Troy\Downloads\CuteWriter.exe a variant of Win32/Bundled.Toolbar.Ask application
  • 0

#14
gringo_pr
Posted 01 February 2013 - 08:55 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello gweng

There are some minor things in your online scan that should be removed.


delete files

  • Copy all text in the quote box (below)...to Notepad.

    @echo off
    rd /s /q "C:\Users\Troy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C624IWP6\"
    del /f /s /q "C:\Users\Troy\Downloads\CuteWriter.exe"
    del %0

  • Save the Notepad file on your desktop...as delfile.bat... save type as "All Files"
    It should look like this: Posted Image<--XPPosted Image<--vista
  • Double click on delfile.bat to execute it.
    A black CMD window will flash, then disappear...this is normal.
  • The files and folders, if found...will have been deleted and the "delfile.bat" file will also be deleted.


The rest of the Online scan is only reporting backups created during the course of this fix C:\Qoobox\Quarantine\, and/or items located in System Restore's cache C:\System Volume Information\, Whatever is in these folders can't harm you unless you choose to perform a manual restore. the following steps will remove these backups.




Very well done!! This is my general post for when your logs show no more signs of malware - Please let me know if you still are having problems with your computer and what these problems are.


:Why we need to remove some of our tools:

Some of the tools we have used to clean your computer were made by fellow malware fighters and are very powerful and if used incorrectly or at the wronge time can make the computer an expensive paper weight.
They are updated all the time and some of them more than once a day so by the time you are ready to use them again they will already be outdated.

The following procedures will implement some cleanup procedures to remove these tools. It will also reset your System Restore by flushing out previous restore points and create a new restore point. It will also remove all the backups our tools may have made.
:DeFogger:

Note** Defogger only needs to be run if it was run when we first started. If you have not already run it then skip this.

  • To re-enable your Emulation drivers, double click DeFogger to run the tool.
  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK.
Your Emulation drivers are now re-enabled.

:Uninstall ComboFix:

  • turn off all active protection software
  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box ComboFix /Uninstall and click OK.
  • Note the space between the X and the /Uninstall, it needs to be there.
  • Posted Image

:Remove the rest of our tools:

Please download OTCleanIt and save it to desktop. This tool will remove all the tools we used to clean your pc.
  • Double-click OTCleanIt.exe.
  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes, if not delete it by yourself.
  • If asked to restart the computer, please do so
Note: If you receive a warning from your firewall or other security programs regarding OTCleanIt attempting to contact the internet, please allow it to do so.

:The programs you can keep:

Some of the programs that we have used would be a good idea to keep and used often in helping to keep the computer clean. I use these programs on my computer.

Revo Uninstaller Free - this is the uninstaller that I had you download and works allot better than add/remove in windows and has saved me more than once from corrupted installs and uninstalls

CCleaner - This is a good program to clean out temp files, I would use this once a week or before any malware scan to remove unwanted temp files - It has a built in registry cleaner but I would leave that alone and not use any registry cleaner

Malwarebytes' Anti-Malware The Gold standerd today in antimalware scanners

:Security programs:

One of the questions I am asked all the time is "What programs do you use" I have at this time 4 computers in my home and I have this setup on all 4 of them.

  • Microsoft Security Essentials - provides real-time protection for your home PC that guards against viruses, spyware, and other malicious software.
  • WinPatrol As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
  • Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is
    totally free but for real-time protection you will have to pay a small one-time fee. We used this to help clean your computer and recomend keeping it and using often. (I have upgraded to the paid version of MBAM and I am glad I did)


    Note** If you decide to install MSE you will need to uninstall your present Antivirus

:Security awareness:


It is good security practice to change your passwords to all your online accounts on a fairly regular basis, this is especially true after an infection. Refer to this Microsoft article
Strong passwords: How to create and use them Then consider a password keeper, to keep all your passwords safe. KeePass is a small utility that allows you to manage all your passwords.


The other question I am asked all the time is "How can I prevent this from happening again." and the short answer to that is to be aware of what is out there and how to start spotting dangers.

Here are some articles that are must reads and should be read by everybody in your household that uses the internet

internetsafety

Internet Safety for Kids

Here is some more reading for you from some of my colleges

PC Safety and Security - What Do I Need? from my friends at Tech Support Forum

COMPUTER SECURITY - a short guide to staying safer online from my friends at Malware Removal

quoted from Tech Support Forum

Conclusion

There is no such thing as 'perfect security'. This applies to many things, not just computer systems. Using the above guide you should be able to take all the reasonable steps you can to prevent infection. However, the most important part of all this is you, the user. Surf sensibly and think before you download a file or click on a link. Take a few moments to assess the possible risks and you should be able to enjoy all the internet has to offer.


I'd be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can then be closed.

I Will Keep This Open For About Three Days, If Anything Comes Up - Just Come Back And Let Me Know, after that time you will have to send me a PM

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->Posted Image<-- Don't worry every little bit helps.

Gringo
  • 0

#15
gweng
Posted 01 February 2013 - 10:22 AM

gweng

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Gringo, Thanks for all of your help. I appreciate it very much! :thumbsup:
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP